Skip to main content

Full text of "USPTO Patents Application 09870801"

See other formats


I 




FIG. 2A 



REPLACED 


CONTENT USER 1 12 


FIG. 3 


REQUEST 


USAGE 
REPORT 


BILUREPORT. 





FIG. 5A 



302 



FIG. 6 



SECURE PROCESSING ENVIRONMENT 503 


V TAMPER 
RESISTANT 
BARRIER 



600 


CPU 
654 


CPU 654(M) |- 


RAM 
656 


ROM 
658 


} 


SPU 
500 


SPU 
500(N) 


FIG 8 ELECTRONIC APPLIANCE 600 
fVDENODEl 


POWER 
SUPPLY 


653 


612,614 



KEYBOARD/ 
DISPLAY 


660 


'U 


BACKUP 
STORAGE 


I/O 

CONTROLLER 





COMMUNICATIONS 

CONTROLLER 


652 


SECONDARY STORAGE 


APPLICATION PROGRAMS 
608 


VDE AWARE 
608a 


NON-VDE 
AWARE 608b 


VDE OBJECTS 
300 


OTHER 
INFORMATION 
673 


SECURE 
DATABASE 
610 


RIGHTS OPERATING SYSTEM fROS*) 


602 


VDE 
FUNCTIONS 
604 


OTHER 
OPERATING 
SYSTEM 
FUNCTIONS 606 





'tZOZO) 


PA7A ST£UCTUe£S 



I I 0 LOAD MODULC 



( 




CO 
DC 


§2 





.a _ 


ac uj 
g o 

tf ! 

II 

MAIL 
RLTE 
784b 




M 




CN 
CO 



AIL 





2 




CO 

o 


LU 
^ -5 <D 

I" 



(T W - 


Ui £ 
UJ U UJ ffi 

<L > > n 
X uj Q£ 
Q Q 


1 


a: co — 


SPE 
DEVICE 
DRIVER 

736 




CO 


CD 


o 
m 


O 
cr 

> 

2 
UJ 

O 

z 

CO 
UJ 

o 
O 
cr 

o 
o 

UJ 

»- 
o 

0. 


if) 
if) 
CO 

CO 

s 



< <2J°< 


o 



: / 

(X UJ UJ 







ji 

s uj s 


co co S 



i 


8 



•a: 



•CO 



KERNEL/DISPATCHER 652 


b£vi££ Firm Wire l6w l£v£l 
SERVICES S82 


INITIALIZATION 


POST 


DOWNLOAD 

CHALLENGE/RESPONSE AND 
AUTHENTICATION 


RECOVERY 


EEPROM/FLASH MEMORY 
MANAGER 


INITIALIZATION 


TASK MANAGER 576 
(SLEEP/AWAKE/CONTEXT SWAP) 


INTERRUPT HANDLER 584 
(TIMER/BIU/POWER FAIUWATCHDOG 
TIMER/ENCRYPTION COMPLETED) 


BIU HANDLER 586 


MEMORY MANAGER 578 


INITIALIZE HUM (SkllM, 
TABLES 


ALLOCATE 


DELLOCATE 


VIRTUAL MEMORY MANAGER 580 


SWAP BLOCK PAGING 


EXTERNAL MODULE PAGING 


MEMORY COMPRESS 


RPC AND TABLES 650 


INITIALIZATION 


MESSAGING CODE /SERVICES 
MANAGER 


SEND/RECEIVE 


STATUS 


RPC SERVICE TABLE 


FIG. 14A 


TIME BASE MANAGER 554 


ENCRYTI0N/DECRYPT10N MANAGER 656 


PK 


BULK 


KEY AND TAG MANAGER 558 


KEY STORAGE IN EEPROM 


KEY LOCATOR 


KEY GENERATOR 


CONVOLUTION ALGORITHM 


SUMMARY SERVICES MANAGER 660 


EVENT SUMMARIES 


BUDGET SUMMARIES 


DISTRIBUTER SUMMARY SERVICES 


CHANNEL SERVICES MANAGER 562 


CHANNEL HEADERS 


CHANNEL DETAILS 


LOAD MODULE EXECUTION SERVICES 
568 


AUTHENTICATION MANAGER/SECURE 
COMMUNICATION MANAGER 564 


fc) ATABAS£ MANAGER 566 ~ 

MANAGEMENT £lL£ SUPPORT 


TRANSACTION AND 
SEQUENCE NUMBER SUPPORT 


SRN/ HASH 

DTD INTERPRETER 590 


LIBRARY ROUTINES 674 


17 O CALLS(STRING SEARCH ETC.) 
MISC. ITEMS THAT ARE PROBABLY 
LIBRARY ROUTINES 


lAGCHfcUKlNG.MUb.CKC' S — 
IN T ERNAL LM ' S 5 7 2 FOR BASIC 
METHODS 


METER LOAD MOBUlE(S) 


BILLING LOAD MODULE (5) 


BUDGET LOAD MODULE(S) 


AUDIT LOAD MODUL£(S) 


READ OBJECT LOAD MODULE(S) 


WRITE OBJECT LOAD MODULE(S) 


open object load modules 
close object load module(S) 


SPU ROM/EEPROM/FLASH 532 


FIG. 14B 


• 


PUBLIC KEY AND PRIVATE KEY. SYSTEM ID, 
AUTHENTICATION CERTIFICATE t VDE SYSTEM PUBLIC 
KEY, PRIVATE DES KEY 


TOP LEVEL KEYS FOR OBJECTS 


TOP LEVEL BUDGET INFO 

METER SUMMATION VALUES 

KEY RECORDS FOR BUDGET RECORDS, AUDIT 
RECORDS, STATIC MANAGEMENT RECORDS, UPDATED 
MANAGEMENT RECORDS, ETC. 


DEVICE DATA TABLE 

SITE ID 

TIME 

ALARMS 

TRANSACTION/SEQUENCE rS 
MISCELLANEOUS 

MEMORY MAP 

MAP METERS 

LMAJDT TABLE 

TASK MANAGER S76 

CHANNEL(S) 

SUMMARY SERVICES 660 


SECURE DATABASE TAGS 
SRN ENTRIES " 
HASH ENTRIES 


NON-VOLATILE MEMORY 534b 


FIG. 14C 


STACK 

• 
• 

CHANNEL SWAP BLOCK 




CHANNEL LM 



CHANNEL HEADER & D1 

CONTROL SWAP BLOCK 




CONTROL LM 



CONTROL D1 



COMMIT LM 



COMMIT D1, D2, D3 

EVENT SWAP BLOCK 




EVENT LM 



MAP TABLE (SINGLE) D1 

METER SWAP BLOCK 




METER LM 


METER UDE DELTA.DELTA 


METER TRAIL LM 


METER TRAIL UDE 
DELTA, DELTA 

BUDGET SWAP BLOCK 



METER LM 


METER UDE DELTA.DELTA 


METER TRAIL LM 


METER TRAIL UDE 
DELTA, DELTA 

BILLING SWAP BLOCK 




BILLING LM 


METER UDE 


BUDGET UDE 


BILLING TABLE UDE 


BILLING TRAIL LM 


BILLING TRAIL UDE DELTA* 


SPU RAM 532 

I 



■v 


FIG. 15A 


CHANNEL 
HEADER j 
596 ^ 
598(1) 
598(2)- 

598<N). 
599- 


CDRI 
594(1)* 


CHANNEL ID 


USER ID 


OBJECT ID 


RIGHT ID/REF. 


EVENT QUEUE 


EVENT CODE 1/PTR. TO CDR(1) 


EVENT CODE 2/PTR TO CDR(2) 


EVENT CODE N/PTR TO CDR(N) 


JUMP/REFERENCE TABLE 


CHANNEL DETAIL RECORD (1) 


.597(1) 
597(2) 

597(3) 
- 597(4) 

,597(5) 


CONTROL METHOD LOAD MODULE REF. 


URT REF 


REF TO OTHER DATA STRUCTURE(S) 


CDR2 
594(2) 


CHANNEL DETAIL RECORD (2) 


LM(1) REF. 


REF. TO DATA STRUCTURE(S) 


LM(2) REF 


REF. TO DATA STRUCTURE(S) 


LM(N) REF. 


REF TO DATA STRUCTURE(S) 



FIG. 15B 


'OPEN channel^ 

(OBJECT, USER. RIGHT) 
1125 


ALLOCATE 
"AVAILABLE" 
CHANNEL 


ACCESS 
"BLUEPRINT* 


WRITE TO 
CHANNEL HEADER 


1127 


1129 


OBTAIN CONTROL 
METHOD 


1131 


"BIND" CONTROL 
METHOD TO 
CHANNEL 


I 1133 


PASS INir EVENT 
TO CHANNEL 


1135 


ACCESS 
COMPONENTS 


I 1137 


-BIND- COMPONENTS TO 
CHANNEL BY CONSTRUCTING 
CHANNEL DETAIL RECORD(S) 
FOR EACH EVENT 
WITHIN "RIGHT 



2 3 
So 

u. O 

z ui 
o oc 
o 


Ui rn 

55^ 


en _ 
3' 


CO 

O 
ll 


Ui 
CO 

< 

CD 
< 

< 

O 

UI 

cc: 

O 
UJ 
CO 


CO CO 


NAME 
ERVICE 
ECORD 


CO tc 



CO 






s *° 





CO 
UJ 

-J 

Q 
O 

s 

Q 
< 

o 


o 



z 







BJECT REGISTRY 

JECT REGISTRATIO 
TABLE 460 

SUBJECT TABLE 
462 

UJ 

-j 

% 

Is 

0V 

Ui 

CO 

ADMINISTRATIVE 
EVENT LOG 
442 

SHIPPING TABLE 
444 

RECEIVING TABLE 
446 


O 

OB 


3 








m O 


00 


302 


800 


PUBLIC HEADER 


802 


PRIVATE HEADER 


PRIVATE BODY 
(METHODS 1000) 


804 


. --606 


PERMISSIONS RECORDS 
KEY BLOCK(S) 


DATA BLOCK 


808 
.810 

812a 


CONTENT C 


DATA BLOCK 


DATA BLOCK 


r812b 


,812c 


LOGICAL OBJECT 

FIG. 17 


850 


PUBLIC HEADER 802 


CLEAR 

PRIVATE HEADER 
804 

COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


PRIVATE 
HEADER 
KEY 

(1 OF MANY) 



PRIVATE BODY(OBJECT LOCAL METHODS. 
LOAD MODULES, AND UDEs) 
806 


PRIVATE BODY 
KEY (IN PERC) 




CONTENTS 

CONTENT 812a 

DATA BLOCK 1 


KEY 1 
(IN PERC) 

■ • • 


• ■ « 




CONTENTS 

812n 

DATA BLOCK n 


KEY n 
(IN PERC) 


STATIONARY OBJECT 


FIG. 18 


860 





i 


PUBLIC HEADER 802 



CLEAR 

PRIVATE HEADER 
804 

COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


PRIVATE 
HEADER 
KEY 

808^ 

' KEY BLOCKS 810 


(1 OF MANY) 

PRIVATE BODY(OBJECT METHODS, 
LOAD MODULES, AND UDEs) 
806 


PRIVATE BODY 
KEY (IN PERC) 

CONTENT 812a 


DATA BLOCK 1 


CONTENTS 
KEY 1 
(IN PERC) 

■ ■ • 


■ • • 

81 2n 


DATA BLOCK n 


CONTENTS 

KEY n 
(IN PERC) 


TRAVELING OBJECT 


FIG. 19 


880 


PUBLIC HEADER 802 


PRIVATE HEADER 
804 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


PRIVATE BODY(OBJECT LOCAL METHODS, 
LOAD MODULES, AND UDEs) 
806 


CONTENT 812a 


DATA BLOCK 1 


300 



ADMINISTRATIVE 
OBJECT 

EMBEDDED 
CONTENT 
OBJECT 


812b 



870 


812n 


DATA BLOCK n 


CONTENT OBJECT 

FIG. 20 


CLEAR 


PRIVATE 
HEADER 
KEY 

(1 OF MANY) 


PRIVATE BODY 
KEY (IN PERC) 


CONTENTS 
KEY 1 
(IN PERC) 


CONTENTS 

KEY n 
(IN PERC) 



PUBLIC HEADER 802 


PRIVATE HEADER 
804 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


808, 


PERC 


PRIVATE BODY(OBJECT LOCAL METHODS, 
LOAD MODULES, AND UDEs) 
806 


CONTENT 812 


872a ADMINISTRATIVE INFORMATION 


872b 


872n 


-X — 

EVENT 1 

PARAMETERS! DATA ! 

' EVENT 2 

PARAMETERS! DATA ! 

_1 1 

• • • 

• • • 

• • • 

EVENT N 

PARAMETERS! DATA ! 

- ui 

874 J 876 87Q J 


CLEAR 


PRIVATE 
HEADER 
KEY 

(1 OF MANY) 


PRIVATE BODY 
KEY (IN PERC) 


CONTENTS 
KEY 

(IN PERC) 


ADMINISTRATIVE OBJECT 

FIG. 21 


FIG. 22 


1000* 


PUBLIC HEADER 802 


PRIVATE HEADER 804 


EVENT 1 
1014 


EVENT 2 


EVENT 3 


EVENT 4 


1006 


EVENT 5 


EVENT 6 


EVENT 7 


EVENT N 


1006 


COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC HEADER 


1016 I 1018a J 1018b 

" METHOD EVENT TABLE 


PERC/ 
LMREF. 


DATA 
REF1 


DATA 
REF2 


METHOD LOCAL DATA AREA 
(MDEs, UDE«, DTDs OR PORTIONS THEREOF, 
OR REFERENCES THERETO) 


CLEAR 
TEXT 


,1012(1) 
1012(2) 


3012(3) 
SITE 

SPECIFIC 
METHOD 
KEY 

-1012(4) 


1012(5) 


.1012(6) 


.1012(7) 


,1012(N) 


SITE 

SPECIFIC 
METHOD 
KEY 


METHOD "CORE' 


FIG. 23 

1100 


PUBLIC HEADER 802 


n fap 

PRIVATE HEADER 
804 

COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 


SITE SPECIFIC 
LM KEY 




ENCRYPTED EXECUTABLE BODY 
1106 


SITE SPECIFIC 
LM KEY 

DTD 1 1108(a) 


SITE SPECIFIC 
LM KEY 

• ■ • 


• • • 

DTD n 1108(n) 


SITE SPECIFIC 
LM KEY 


LOAD MODULE 


FIG. 24 


1200, 1202 

) 


PUBLIC HEADER 802 


CLEAR 

PRIVATE HEADER 

COPY OF IDENTIFICATION 
ELEMENTS FROM PUBLIC 
HEADER 



804 




DATA AREA 
1206 

(MAY REFERENCE ONE OR MORE DTDs) 


SITE SPECIFIC 
UDEKEY 


* 




UDE(MDE) 


FIG. 25A 


USAGE BIT MAP 


A. 


ELEMENT REPRESENTING PAST 
USAGE OF ONE ATOMIC ELEMENT OF 
OBJECT 


1010 


1206 


FIG. 25B 

TIME 


JAN. FEB MAR. APRIL MAY JUNE* 



FIG. 25C 


USAGE PAID FOR 5 MONTHS AGO 

USAGE PAID FOR 4 MONTHS AGO 

USAGE PAID FOR 3 MONTHS AGO 

USAGE PAID FOR 2 MONTHS AGO 

\USAGE PAID FOR IN PRIOR MONTH 

vUSAGE PAID FOR IN CURRENT MONTH 


1206a 



WIDE BITMAP 
METER METHOD 


BILLING METHOD 


404 


406 


FIG. 25C 


USAGE PAID FOR 5 MONTHS AGO 

USAGE PAID FOR 4 MONTHS AGO 

USAGE PAID FOR 3 MONTHS AGO 
USAGE PAID FOR 2 MONTHS AGO 

\USAGE PAID FOR IN PRIOR MONTH 
\ \USAGE PAID FOR IN CURRENT MONTH 


1206a 









-nT \ v 120 6c 

\ ^ 1206d 
M206e 






















• 
• 
• 

*— WIDbBIIMAP 
METER METHOD' 



BILLING METHOD 


404 


406 


900 


906a v 

920(aK1)(') v 
914a(1) 

920(a)(1)(ii) 


920(aH2)(i), 
914(a)(2), 

920(aK2Kii) 


906b. 


914(b)(1). 


FIG. 26 

PERMISSIONS RECORD 


902 


r 


808 


904 


PERC HEADER 


CS0 


4- 


PRIVATE BODY KEYS 


RIGHTS RECORD HEADER 1 
908a 


CSRl RIGHT KEYS 
910a ■ 912a 


CONTROL SET HEADER 1 916(a)(1) 


CONTROL METHOD 918(a)(1 ) 


REQUIRED METHOD HEADER 1 922(a)(1)0) 


924(aKD(i)(A) ■ 
METHOD OPTION ! 

924(aK1Mi)(B) i 
METHOD OPTION ! 

■ • • 

REQUIRED METHOD HEADER 2 922(a)(1)(H) 

924(aX1Xii)(A) 
METHOD OPTION 

j 924(aK1p)(B) 
! METHOD OPTION 

\ * * * 



CONTROL SET HEADER 2 916(a)(2) 

CONTROL METHOD 918(a)(2) 


REQUIRED METHOD HEADER 1 922(a)(2)(i) 

924(aM2K0(A) | 
METHOD OPTION 

924(aX2)(i)(B) i 
METHOD OPTION 

■ • • 

REQUIRED METHOD HEADER 2 922(a)(1)(ii) 

924(aX2)(iiXA) 
METHOD OPTION 

i 924(aX2)(ii)(B) 
! METHOD OPTION 

i • ■ « 


RIGHTS RECORD HEADER 2 
908b 


CSR • RIGHT KEYS 


\ 


910b ! 

I 


912b 


916(6X1) 
CONTROL SET HEADER 1 


916(b)(2) 
CONTROL METHOD 


FIG. 26A 


608 



940 

942- 


914(0) 


924(o)(a). 


B24(o)(a)(i; 


«4(o)(a){2) 


«2<HoKb) 


906b- 


HEADER 900 


SITE RECORD NUMBER 


LENGTH OF PRIVATE BODY KEY BLOCK 


LENGTH OF THIS RECORD 


EXPIRATION DATE/TIME FOR THIS RECORD 


LAST MODIFICATION DATE/TJME 


ORIGINAL DISTRIBUTOR ID 


LAST DISTRIBUTOR ID 


OBJECT ID 


CLASS OR TYPE OF PERMISSIONS RECORD/INSTANCE ID 
FOR RECORD CLASS 


NUMBER OF RIGHTS RECORDS 


VALIDATION TAG FOR THE RECORD 


KEY BLOCKS FOR THE PRIVATE BODY(e.g., METHODS) \H OBJECT 
CONTROL SET RECORD 0 - COMMON TO ALL RIGHTS 


LENGTH OF THIS RECORD 


NUMBER OF REQUIRED METHOD RECORDS 


ACCESS TAG TO CONTROL MODIFICATION OF THIS RECORD 


REQUIRED METHOD RECORD 1 


LENGTH OF THIS RECORD 


NUMBER OF METHOD OPTION RECORDS 

ACCESS TAG TO CONTROL MODIFICATION OF THIS RECORD 


METHOD OPTION RECORD 1 


LENGTH OF THIS RECORD 


LENGTH OF DATA AREA 


METHOD ID (TYPE/OWNER/CLASS/INSTANCE) 


CORRELATION TAG FOR CORRELATION WITH REQUIRED METHOD 

ACCESS TA5 TO CONTROL MODIFICATION OF THIS RECORD 
METHOD SPECIFIC ATTRIBUTES 1 


DATA AREA 


CHECK VALUE 


METHOD OPTION RECORD 2 


REQUIRED METHOD RECORD 4 


CHECK VALUE 


RIGHTS RECORD 1 


RIGHTS RECORD 2 


CHECK VALUE 


„932 
.934 
.936 
.938 


^944 
'946 
-950 

-952 

.954 
.956 

.956 

960 
962 

»964 
966 
968 

.970 

.972 
.974 

978 

978 


960 


PERC 


FIG. 26B 


908d 
982. 


_ HEADER 


LENGTH OF KEY BLOCK 


LENGTH OF THIS RECORD 


EXPIRATION DATE/TIME FOR THIS RECORD 


RIGHT ID 


NUMBER OF CONTROL SETS FOR THIS RIGHT 


ACCESS TAG TO CONTROL MODIFICATION OF 
THIS RECORD 


906a 


CONTROL SET FOR RIGHT 


KEY BLOCK FOR USE WITH THIS RIGHT 


^ 984 
„ 986 
^988 

- 990 

- 992 

-910 
-912 


914(a)(1). 
914(a)(2). 


CONTROL SET 1 


CONTROL SET 2 


CHECK VALUE 


994 


PERC RIGHTS RECORD 


FIG. 27 

SHIPPING TABLE 


444A(1) 

I 


HEADER 
444A 


SHIPPING 
RECORD 
445(1) 


SITE RECORD NUMBER 


USER (GROUP) ID 


REF. TO "FIRST COMPLETED OUTGOING SHIPPING RECORD 


REF. TO "LAST" COMPLETED OUTGOING SHIPPING RECORD 


REF. TO "FIRST" SCHEDULED OUTGOING SHIPPING RECORD 


„444A(2) 
444A(3) 
,444A(4) 
,444A(5) 

REF. TO "LAST" SCHEDULED OUTGOING SHIPPING RECORD J_ 444A(6) 

,444A(7) 

.444A<8) 
444A(9) 


VALIDATION TAG FROM NAME SERVICES RECORD 


VALIDATION TAG FOR "FIRST" OUTGOING SHIPPING RECORD(S) 


CHECK VALUE 


SITE RECORD NUMBER 


FIRST DATE/TIME FOR SCHEDULED SHIPMENT 


LAST DATE/TIME FOR SCHEDULED SHIPMENT 


ACTUAL DATE/TIME OF COMPLETED SHIPMENT 


OBJECT ID OF ADMINISTRATIVE OBJECT (TO BE) SHIPPED 


REF. TO ENTRY IN ADMINISTRATIVE EVENT LOG 


REF. TO NAME SERVICES RECORD NAMING RECIPIENT 


PURPOSE OF SHIPMENT 


STATUS OF SHIPMENT 


REF. TO "PREVIOUS" OUTGOING SHIPPING RECORD 


REF. TO "NEXT OUTGOING SHIPPING RECORD 


VALIDATION TAG FROM HEADER 


VALIDATION TAG TO ADMINISTRATIVE EVENT LOG 


VALIDATION TAG TO NAME SERVICES RECORD 


VALIDATION TAG FROM PREVIOUS RECORD 


VALIDATION TAG TO NEXT RECORD 


CHECK VALUE 


SHIPPING RECORD N 


.445(1)(A) 
,445(1 )(B) 
445(1 )(C) 
.445(1 )(D) 
, 445(1 )(E) 
. 445(1 )(F) 
,445(1)(G) 
, 445(1 )(H) 

- 445(1 XI) 

* 445(1 X J) 

- 445(1 XK) 

,445(1 XL) 
-445(1XM) 
^445(1 XN) 
.445(1X0) 

-445(1 XP) 

- 445(1 XQ) 


-445(1XR) 


FIG. 28 

RECEIVING TABLE 


HEADER 
446A 


446A(1) 


SITE RECORD NUMBER 


USER (GROUP) ID 


REF. TO "FIRST* COMPLETED INCOMING RECEIVING RECORD 


446A(2) 
446A(3) 

REF. TO "LAST* COMPLETED INCOMING RECEIVING RECORD 4^446A{4) 

446A(5) 

REF. TO "LAST" SCHEDULED INCOMING RECEIVING RECORD J 446A(6) 

446A(7) 

VALIDATION TAG FOR "FIRST 1 INCOMING RECEIVING RECORD(S) ^ 446A(8) 
CHECK VALUE -I— 446A{9) 


.446 


RECEIVING 
RECORD J 
447(1) A 


SITE RECORD NUMBER 


_ 447(1 KA) 

FIRST DATEHIME FOR SCHEDULED RECEPTION 


_^447(1)(B) 

LAST DATE/TIME FOR SCHEDULED RECEPTION 


- 447(1 XC) 

ACTUAL DATE/TIME OF COMPLETED RECEPTION 


__447(1)(D) 

OBJECT ID OF ADMINISTRATIVE OBJECT (TO BE) RECEIVED 

^ 447(1 )(E) 

REF. TO ENTRY IN ADMINISTRATIVE EVENT LOG 

_ 447(1 )(F) 

REF. TO NAME SERVICES RECORD NAMING SENDER 


_ 447(1 )(G) 

PURPOSE OF RECEPTION 


^ 447(1 XH) 

STATUS OF RECEPTION 

— 447(1X1) 

REF. TO "PREVIOUS" INCOMING RECEIVING RECORD 


— 447(1 XJ) 

REF. TO "NEXT INCOMING RECEIVING RECORD 


- 447(1 )(K) 

VALIDATION TAGS 

^447(1XL) 

CHECK VALUE 

_ 447(1 KM) 


RECEIVING RECORD N 


447(2) 


FIG. 29 

ADMINISTRATIVE EVENT LOG 


ADMIN. 
EVENT LOG 
RECORD < 
442(J) A 



443A(6) 
442(J)(1)(a) 
442(J)(1)(b) 
442(J)(D(C) 

442(J)(1)(d) 
442(J)(1)(e) 
442(J)(1)(0 
442(J)(D(g) 


442(J)(N) 


( 



466(1) ^ 

466(2) ^ 

466(3) _ 
466(4), 


TO 


OBJECT 


466(5) 

466(6) 
466(7) 

466(8) 
466(9) 


SITE RECORD NUMBER 


OBJECT TYPE 


CREATOR ID 


OBJECT ID 


POINTER INTO SUBJECT 
TABLE 462 


ATTRIBUTE(S) 


MINIMUM REGISTRATION INTERVAL 


TAG TO SUBJECT TABLE 
RECORD 


CHECK VALUE 


460 


TO SUBJECT 
TABLE RECORD(S) 


>-460(N) 


FIG. 31 

OBJECT REGISTRATION TABLE 


FIG. 32 _ 


SUBJECT 
TABLE 


"HEADER* 
468 


SUBJECT 
RECORD ^ 
470(1) ^ 


SITE RECORD NUMBER 


CREATOR ID 


ORIGINAL DISTRIBUTOR ID 


LAST DISTRIBUTOR ID 


OBJECT ID 


REF. TO "FIRST" SUBJECT 
RECORD 470 


TAG FROM OBJECT REGISTRATION 
TABLE RECORD 


TAG TO TIRSr SUBJECT RECORD 


CHECK VALUE 


SITE RECORD NUMBER 


USER (USER GROUP) ID 


USER (USER GROUP) ATTRIBUTES 


REF. INTO USER RIGHTS TABLE 


REF. TO "NEXT" SUBJECT 
RECORD 


TAG FROM HEADER 


TAG TO USER RIGHTS TABLE RECORD 


TAG TO "NEXT SUBJECT RECORD 


CHECK VALUE 


462 

468(1) 

468(2) 

.468(3^ 

.468(4) 

,468(5) 
468(6) 


462(M) 


468(7) 
468(8) 
468(9) 



TO URT 

^472(4) RECORD(S). 

.472(5) 


--472(6) 


,472(7) 

,472(8) 
. 472(9) 


FIG. 33 USER RIGHTS TABLE 


FROM 
SUBJECT 
TABLE 


474 


476 


v. 


URT 
HEADER 


SITE RECORD NUMBER 


NUMBER OF RIGHTS RECORDS 


REF. TO "FIRST" RIGHT RECORD 


TAG FROM SUBJECT TABLE 


TAG TO RIGHTS RECORD 


CHECK VALUE 


RIGHTS 
RECORD 
HEADER 


476(7) 


SITE RECORD NUMBER FOR THIS 
RIGHTS RECORD 


RIGHT ID 


POINTER TO "NEXT" RIGHTS RECORD 


POINTER TO "FIRST SET OF USER 
CHOICE RECORDS 


TAG FROM URT HEADER 


TAG TO "FIRST" SET OF USER 
CHOICE RECORDS 


CHECK VALUE 


SET 
OF 
USER 
CHOICE 
(RECORDSf 


478 


SITE RECORD NUMBER FOR THIS 
USER CHOICE RECORD 


USER(USER GROUP) ID 


ATTRIBUTES 


464 

474(1) 

,474(2) 

474(3) 464(K) 
474(4) ^/ 

474(5) 

474(6) 

,476(1) 

•476(2) 
476(3) 
476(4) 


-476(5) 
476(6) 


/478(1) 

478(2) 
, 478(3) 


REF. TO "NEXT SET OF USER CHOICE RECORDS 


NUMBER OF USER CHOICES 


TAG FROM RIGHTS RECORD HEADER 


USER CHOICE RECORD 1 


USER CHOICE RECORD 2 


USSR CHOICE RECORD H 


478(4) 

.478(5) 

, 478(6) 
.480(1) 

480(2) 
<N) 


CHECK VALUE 


FIG. 34 


460 


SITE RECORD TABLE 


OBJECT 
REGISTRATION 
TABLE 


1 


462 



GROUP RECORD 
TABLE 


AUDIT 1 


AUDIT 2 


BUDGE T ^ 
BUDGET 2 


BILLING 2 


FIG. 34A 

SITE RECORD 


L 


482(J) 


482 


TYPE OF RECORD 


484(1) 


OWNER OR CREATOR OF RECORD . _484(2) 

CLASS _4B4{3) 

INSTANCE _ _484(4) 

TYPE SPECIFIC DESCRIPTOR (e.g., OBJECT ID) ASSOCIATED 484(5) 
WITH RECORD 

TABLE IN WHICH THE RECORD IS LOCATED 1*84(6) 


POINTER - OFFSET, WITHIN THE TABLE. TO WHERE ^484(7) 
THE RECORD BEGINS 

RECORD LENGTH ^484(8) 

484(9) 


VALIDATION TAG FOR RECORD 


CHECK VALUE - - 484(10) 


FIG. 34B 


GROUP RECORD 


L 


486<J> 


SITE RECORD NUMBER 


NUMBER OF REFERENCE SUBRECORDS 


VALIDATION TAG FOR GROUP OF RECORDS 


REFERENCE SUBRECORD 1 


REP. (SITE RECORb HumBER i) I 'OR 1ST RECORD \H 

GROUP 


VALIDATION TAG FOR RECORD 


REFERENCE SUBRECORD 2 


ft£F(SiTS RECORD MUM5ER 2) FOR 1ST RECORD IN 
GROUP __ 


VALIDATION TAG FOR RECORD 


486 


_488(1) 

_488(2) 

_488(3) 
-488(4) 
/ 490(A) 

^ 490(B) 
• 488(5) 
490(C) 
490(D) 


CHECKSUM (CRC) 


_ _488(6) 


1150 


^ START ^ 


FIG, 35 


1152 
1154 


APPLIANCE CALLS CLEARINGHOUSE 


APPLIANCE AND CLEARINGHOUSE AUTHENTICATE ONE 
ANOTHER AND AGREE ON A MESSAGE KEY 


1158 



DOES APPLIANCE HAVE 
AUDIT INFO TO SEND? 


APPLIANCE SENDS ADMINISTRATIVE OBJECT(S) 
CONTAINING AUDIT INFO 


1160 


CLEARINGHOUSE SENDS RESPONSIVE ADMIN. OBJECT(S 


1162 


1164 


1166 


1168 


] 


APPLIANCE UPDATES SECURE DATABASE 
BASED ON OBJECTS RECEIVED 


1163 



APPLIANCE SENDS ADMINISTRATIVE OBJECT(S) 
REQUESTING BUDGETS AND/OR PERMISSIONS 


CLEARINGHOUSE SENDS RESPONSIVE 
ADMINISTRATIVE OBJECT(S) 


APPLIANCE UPDATES SECURE DATABASE BASED! 

ON OBJECTS RECEIVED I 


c 


IE 

END 



CM 



VIVO 
Q31dAM0N3 


viva aw 

A3M31U19W 


CO 

2 



viva awA3>» 

103TSO MIWOV 


o 

o S 
< 


3SN0dS3M 


QW 13X011 



Ui 


3f» 


2 >- 3! ^ 



(0 


i 


CM 

8 


O 

z 

Ul 


VIVO 


— viva onv 


UJ UJ o 


1^ 
CO 

2 

n 



SW1 



viva N0U.«UH3N3 aw 

A3MnUlN3W3SVWW 


3 UJ 


FIG. 38 



YES 


"READ AND DECKYFT 
OTHER RECORD(S) 
FROM SECURE 
DATABASE 

i tgmft OLD KEYfSl 


RE-ENCRYPT SAID 
OTHER RECORD(S) 
USING NEW KEY 


1094 


1 10 

DISCARD OLD KEY(S) 

F= 


1096 


SAVE NEW KEY 


STORE ENCRYPTED 

RECORD(S) 
IN SECURE DATABASE 


c 


END 


I 109: 

1 10 

Y 
3 


c 


BACKUP 


FIG. 39 

BACKUP 


1252 


GENERATE 
BACKUP KEY(S) 


1254 


125* 


1258 


1260 


READ AND DECRYPT 
ITEM 


1262 


ENCRYPT ITEM WITH 
BACKUP KEY(S) 


5 


WRITE EdoRVWkb 

ITEM TO BACKUP 
STORE 


1250 



ENCRYPT SUMMARY 
SERVICES AUDIT INFO. 
WITH BACKUP KEY(S), 
WRITE TO 
BACKUP STORE 


1264 


ENCRYPT BACKUP 
KEY(S) AND OTHER ID 
INFO. 
WITH PUBLIC KEY; 
WRITE TO 
BACKUP STORE 


1266 


ENCRYPT BACKUP 
KEY(S) WITH ADMIN. 
KEY; WRITE TO 
BACKUP STORE 


c 


DONE 


\ 


START 


FIG. 40 

RECOVER SECURE DATABASE 


126B 


ESTABLISH 
SECURE 
COMMUNICATIONS 


EXTRACT 
■WORK IN PROGRESS" 
AND SUMMARY VALUES 


REQUEST CURRENT 
BACKUP FROM SPU 


1270 


1272 


1274 


RESET SUMMARY 
VALUES AND COUNTERS 
CONSISTENT WITH LAST 
BACKUP 


1276 


RESTORE SECURE DB 
FROM BACKUP 


1278 


COMPUTE BILLS BASED 
ON RECOVERED 
VALUES 


1280 


1282 


PERFORM OTHER 
ACTIONS TO RECOVER 
FROM SPU DOWNTIME 


c 


END 


600B] % 


VDE Node 


1000B 




a 
o 


METH 

Response-1 




[T454 


60QAK 


1452} . ^ 
Event and opti&nal information 


VDE Node 


1000A] 




a 
0 

, Request-1 

METh 





[uso 


Figure 41 


600B] v 

VDE Node 

iooob]^ 


1454 


a 




Q 
O 


* 

METH 

\ Response-1 



, Request-4 

[T468 


VDE Node 

ioooa]^ 


{T450 




0 

0 

: Request-1 

X 


; Response-4 



|T470 


1469} • . _ 
Event and optional information 


145 5~ - * . 

Event and optional information 


Figure 41b 


600C] X 


VDE node 


146£l 


iooocJ- • 




Q * 
O 


METH 

Response-2 



,Request-3 

[7462 


1464 


g- 


600Bj v 


Event 
•rid 
optional 
information 


Event 
and 
optional 
Information 


VDE node 


iooo¥} '* 


Q > 
O 

; Response-3 

' Request-2 

METH 

1 Response-1 



s Request-4 

' 1468 


[1466 
4 


1469 


600A| s 


Event 
and 

optional 
information 


Event 
and 
optional 
information 


•5 


1452 


VDE node 


iooc5J' 


juso 



Q 
O 

Request-1 

X 

tu 


s 

■ Response-4 




147oj' 


Figure 41c 


102 


g.. 


Content object creator VDE node_ 

148 **1 Of 60 * 


1510*)- 


o 

Q 
O 
CD 


Use 


1476A 
k Use 


Request 


Response 


Reply 


Distribute 


1472A]' 


14B2AB] v 

X 

1474ABj v 


Request 
More 
\Budget 


1482AB 


106 


Grant 
Budget 


More 
Budget 


Content object distributor VDE node 


14S4b] jueoB 


1510b} 



; Use 

JDGET 

Request 

Response 

—J 

CD 

Reply 


^ Distribute 


1476Bjl478B 


-Use- 


1475B] ]U72B 


1482BC] 

1474BC], ^ 


Request 
More 
Budget 


14S2BC 


Grant 
Budget 


More 
Budget 


Content use VDE node 


1510C 


1475C]' 



; Use ' 


' Request 

0 


CD 

Reply 




-Use 


Figure 41 d 


/Start BUDGET Methi 
I Use Process 


Atomic Element Event 
Count 


Prime BUDGET Audit 
Trail 


2252 


-Write 


2256 


Obtain DTD for 
BUDGET 


-Read 


,{2260 


Obtain BUDGET 


-Read- 



2270 


-Yes- 


Update BUDGET using 
AE and count 


- Write - 


,{2274 


Save BUDGET Use 
Audit Record 


c 


(2250 


,(2254 



BUDGET Audit 
Trail UDE 



DTD for BUDGET 
UDE 


,{2262 


BUDGET UDE 


Commit BUDGET 
Failure Audit Record 


,[2272 


BUDGET UDE 


,{2276 


-Writ»- 


f 

V 


BUDGET Audit 
Trail UDE 


BUDGET Method 
Succeeded 


y 


I 2278 


BUDGET 
Method Use 
Process Flow 


,{2266 


BUDGET Method 
Failed 


Figure 42a 


fort BUDGET Metf* 

Administrative 
.Response Process 


iod 


,{2306 


1 

Prime B 
Communic 
Response 

UDGET 
ationsand - 
Audit Trail 




-Write 


Unpack Admin. 
Object and retrieve 
BUDGET 
requests), audit 
trail(s) and 
record(s) 


-Write 




Retrieve request and 

determine the 
response method to * 
run to process the 
request 


r 


2314 


-Read- 


contained in 
Request record(s) 
to the Response 
Method and 
generate 
Response records 
and Response 
request 


-Read/Write- 


Write BUDGET 
Administrative 
Response records 
into Administrative 
Object 


-Read- 


2326 


Save communications 

and response 
processing audit trail 


-Write- 


■{2250- 



Communications 
and Response 
Audit Trail 


j> JDGET Method 
Administrative 

Response 
Process Flow 



BUDGET 
Administrative 
Request Budget 
records, and audit 
information 


,5 


2316 


Administrative 
Request 


BUDGET Request 
and Response 
records 


,[2324 


BUDGET UDE and 
BUDGET 
Administrative 
Response 
Records 


Communications 
and response 
processing audit 
trail 


.6 


2330 


rnd BUDGET Metho* 

Administration 
Response Process^ 


Figure 42c 


/ S6ft BUDGET Method 
(Administrative Request! 
y Process J 


,[2280 


Prime BUDGEr 
Administrative Audit 
Trail 


-Write 



- [2250 BUDGET Method 

Administrative 
Request Process 
Flow 


BUDGET 
Administrative 
Audit Trail 


7 


2284 


Queue Request for 
Administrative 
Processing of 
BUDGET 


-Write- 


V 


BUDGET 
Administrative 
Request 


,5 


2288 


Save BUDGET 
Administrative Audit 
Trail 


-Write - 


BUDGET 
Administrative 
Audit Trail 


,[2290 

7 


Some time later 


2294 



Communications 
audit trail 


Write BUDGET 
Administrative 
Request into 
Administrative 
Object 


-Read- 


BUDGET UDE, 
BUDGET Audit 
Trail UDE(s), and 
BUDGET 
Administrative 
Request 
Record(s) 


,[2300 


Save communications 
audit trail 


Communications 
audit trail 


.[2298 


,{2302 


I 2 


2304 


/End BUDGET Method 
(Administration Request! 
V Process J 


Figure 42b 


Start BUDGET Method 
{Adrrtnistralive Reply J 
V Process J 


(2250 


Prime BUDGET 
Administrative and 
Communications Audit 
Trail 



BUDGET 
Administrative and ] 
Communications 
Audit Trail 


BU[ GET Method 
Administrative 
Reply Process 

F|0W 


Extract Response 
Records and 
Requests from 
Administrative 
Object and write 
Reply records to 
the secure 
database 


,[2336 


-Write 



BUDGET Reply / rj^ 
Records and I -' L 
Requests 


Save BUDGET 
Administrative and 
Communications Audit 
Trail 


,{2340 
Write - 


BUDGET 
Administrative and j 
Communications 
Audit Trail 


',{2341 


Some time later 


Prime audit trail (if 
required) 

Write J 

^ 

' „ r- 

Retrieve Reply record 
and determine method 
required to process it 

✓ 

« Rtad 

\ 


r ~ 

Send event(s) 
contained in Reply 

record(s) to the 
Reply method and 
generate / update 
database records 


^348 / 
— Raad/wm*— J 

V 

Delete Reply record(s) 
from database 

Detete »| 


,(2343 


Audit Trail UDE 


V 


BUDGET Reply 
records 


,[2346 


2350 


BUDGET records 


7.-6 


2353 


BUDGET Reply 
Record(s) 


Audit Trail UDE 


Write 



Prime audit trail (if 
required) 

1 » 



r 


Administration Reply 
Process > 


Figure 42d 


<5 


Start Register Method 
Use Process 


5 


(2400 


REGISTER Event ,[2402 
i ^ 


Prime REGISTER 
Audit Trail 


-Write- 


Extract REGISTER 
record set from PERC 
or REGISTER MDE 



2414 


-No- 


Yes 


2422 


User selects 
registration options 
from method 
options in PERC 


Validate user selected 
registration options 


[2426 



,{2404 


REGISTER 
Method Use 
Process Flow 


REGISTER Trail 
UDE 



,(2408 


REGISTER Method 
completed 


PERC and/or 
REGISTER MDE 
(catalog) 


{2410 

7 


Queue REGISTER 
request record 


..6 


REGISTER Method 
Suspended 



2424 


Display 



2416 


2418 


f 

V 


,{2420 

"7 


REGISTER 
Request Record 


,{2432 


URT 


^{2432 



Write URT containing 
user selections to 
database 


REGISTER Method 
Completed 


-[2430 


Figure 43a 


f Start REGISTER > 
Method Administrative 
V Request Process^ 


2440 


Prime 
communications audit 
trait 


,{2446 


Determine site 
configuration as 
permitted by privacy 
filter 


-Read 


,[2448 


Write REGISTER 
Administrative 
Request into 
Administrative 
Object 


-Read- 


2452 


Save communications 
audit trail 


-Write 


2456 


^End REGISTER^ 
Method Administration , 
V Request Process y 



REGISTER 

2400 Method 
~~ .,c*« Administrative 
Request Process 
Flow 


Cc> Ttunications 
audit trail 



,{2444 

"7 


Stored data 


,{2450 


REGISTER 
Administrative 
Request 
Record(s) 


2454 



Communications 
audit trail 


Figure 43b 


/^Start REGISTER ^ 
Method Administrative 
^ Response Process^/ 


|2400 


,|a» 


2462 


Prime REGISTER 
Communications and 
Response Audit Trail 


-Write 



Communications 
and Response 
Audit Trail 


REGISTER 

Method 
Administrative 

Response 
Process Flow 


Unpack Admin. 
Object and retrieve 
REGISTER 
requests) 


-Write- 


REGISTER 
Administrative 
Requests and 
configuration 

information 


Retrieve request and 

determine the 
response method to 
run to process the 
request 


,[2468 


-Read 



Administrative 
Request 


,(2474 


2472 


Ser provic 
though information 
to register the 
object? 


-No- 


Write failure response 
record to database 


Send eyent(s) 
contacted in 
Request record(s) 
to the Response 
Method and 
generate 
Response records 
and Response 
request 


,[2*76 


*-R©ad/Write- 


Write REGISTER 

Administrative 
Response records 
into Administrative 
Object 


2480 


REGISTER 
Request and 
Response records 
(response records. 1 
PERC, UDE(s)) 


PERC, UDE(S), / 
Methods and / ,{2482 
REGISTER 
Administrative 
Response 
Records 


Save communications 

and response 
processing audit trail 



Communications 
and response 
processing audit 
trail 


7 


2486 


(Me 

VJE 


2468 


End REGISTER^ 
Method Administration 
Response Processy 


Figure 43c 


/Start AUDIT MethodX 
(Administrative Request) 
y Process y 


}2520 


2522 


P AUDIT 
Administrative Audit 
Trail 


-Write- 


AUDIT 
Administrative 
Audit Trail 


. .JDIT Method 
Administrative 
Request Process 
Flow 


,(2526 


,{2528 


Queue Request for 

Administrative 
Processing of AUDIT 


-Writs 



AUDIT 
Administrative 
Request 


,(2532 


Save AUDIT 
Administrative Audit 
Trail 


/ AUDIT ' 


-Write- 


V 


Administrative 
Audit Trail 


Some time later 


,{2536 


Prime 
communications audit 
trail 


2534 


-Write- 


V 


Communications 
audit trail 


2538 


7 

1 


Write AUDIT 
Administrative 
Requests) into 
Administrative 
Object 


-Read- 


Specific UDE, 
Audit Trail 
UDE(s), and 
Administrative 
Request 
Record(s) 


7 


,(2542 


_,{2S44 


Save communications 
audit trail 


-Write 



Communications 
audit trail 


(Adr 


,{2546 


nd AUDIT Methc 
Administration Request) 
Process 


Figure 44a 


f Start REGISTER N 
Method Administrative , 
^ Reply Process J 


Prime REGISTER 
Administrative and 
Communications Audit 
Trail 


Extract Response 
Records and 
Requests from 
Administrative 
Object and write 
Reply records to 
the secure 
database 


Save REGISTER 
Administrative and 
Communications Audit 
Trail 


Some time later 


Prime Audit Trail (if 
required) 


Retrieve Reply record 
and determine method 
required to process it 


Send event(s) 
contained in Reply 

record(s) to the 
Reply method and 
generate / update 
database records 


|2400 



REGISTER 
Administrative and 
Communications 
Audit Trail 


-5 


2494 


-Write 



REGISTER Reply 
Records and 
Requests 


REGISTER 
Method 
Administrative 
C2492 Reply Process 
Flow 

,{2496 



REGISTER 
Administrative and 
Communications 
Audit Trail 


,{2500 



2502 


Audit trait records 


,[2513 


Audit trail records 


Writ© 



2504 


,{2506 


-Rmd/Writ»-~» 


V 


REGISTER Reply 
records 


REGISTER secure 
database records 
(Methods, Load 
Modules, MDE, 
UDE) 


.{250S 


Delete Reply record(s) 
from database 



(2511 


REGISTER Reply 
Record(s) 


Write Audit Trail (if 
required) 


,{2512 


2514 


f End REGISTER >^ 
Method Administration 
V Reply Process J 


Figure 43d 


'Start AUDIT Me 
Administrative Reply 
. Process 


ithodN 
teply) 


, (2520 


J? 


2560 


,{2582 


Prime 
Administr 
Communis 
Tr 

AUDIT 
ative and 
itions Audit 
ail 




-Write 



AUDIT 
Administrative and 
Communications 
Audit Trail 


/ DIT Method 
Administrative 
Reply Process 
Flow 


Extract Response 
Records and 
Requests from 
Administrative 
Object and write 
Reply records to 
the secure 
database 


2584 


,{2586 


-Write- 


AUDIT Reply 
Records and 
Requests 


7 

[ 


Save AUDIT 
Administrative and 
Communications Audit 
Trail 


2588 


-Write- 


AUDIT 
Administrative and 
Communications 
Audit Trail 


Some time later 


,{2594 


Retrieve Reply record 
and determine method 
required to process it 


,{2592 


-Rtad- 


V 


AUDIT Reply 
records 


,[2595 


,{2596 


Send events) 
contained in Reply 

record(s) to the 
Reply method and 
generate / update 
database records 


-Read/Write 



1 


secure database 
records 


,{2599 


,{2597 


,{2598 


Delete Reply record(s) 
from database 


AUDIT Reply 
Record(s) 


/End AUDIT Methods 
( Administration Reply J 
y Process J 


Figure 44c 


Start AUDIT Mettv 
Administrative 
Response Process 


oo\ 


,{2550 


1 

Prime 
Communic 
Response 

AUDIT 
ations and - 
Audit Trail 




Unpack Admin. 
Object and retrieve 
AUDIT request(s), 

audit trail(s) and 
record(s) 


-Write 


-Write- 


§520 



,{2552 


Communications 
and Response 
Audit Trail 


AUDIT Method 
Administrative 

Response 
Process Flow 


2556 


AUDIT 
Administrative 
Request Budget 
records, and audit 
information 


Retrieve request and 

determine the 
response method to 
run to process the 
request 


Send event(s) 
contained in 
Request record(s) 
to the Response 
Method and 
generate 
Response records 
and Response 
request 


Write AUDIT 
Administrative 
Response records 
into Administrative 
Object 


-Read 



Administrative 
Request 


,{2562 


.6 


2564 


-Read/Write- 


AUDIT Request 
and Response 
records 


,{2566 


,{2568 


-Read- 


AUDIT UDE(s) and 
Administrative 
Response 
Records 


,{2570 


,{?572 


Save communications 

and response 
processing audit trail 


-Write- 


Communications 
and response 
processing audit 
trail 


.6 


2574 


c 


nd AUDIT Metric 
Administration 
Response Process^ 


Figure 44b 


K Ml _ _ 

tu < O uj O 


2 

41. 



Q 
UJ . 

*i 

uj 5 

o Q 

UJ Mj 

hd 

Ui CD 
O CD 
CD 


a 

UJ 


£0 

I- 
Z 

UJ 

> 

UJ 


So 

zQ 

uj tr 

>o 
uj w 


a 

UJ 


a 

UJ 

> 

UJ 


> m o 
co o 


FIG. 46 


SYSTEM EVENT 
OCCURS 


CONTROL SET 
FROM PERC " 


CONTROL 
METHOD 


410 



408 


EVENT 
METHOD 

A 


METER 
METHOD 


402 


BILLING 
METHOD 


METER UDE 


BUDGET 
METHOD 


BILLING 
TRAIL 


METER TRAIL 
UDE 


BUDGET UDE 
METER UDE 
BILLING UDE 


BUDGET 
UDE 


BUDGET TRAIL 
UDE 




f'Start of OPEN Methods 
I Process ) 


(T500 


OPEN 
Method Use 
Process Flow 


OPEN Event 


CONTROL Method 


-OPEN Event- 


-Atomic Element end Ceunt- 


- Atomic Dement and Count- 
Meter Value 


— Meter Vtkje- 
- Billing Amount - 


, Bitting Value -1 

Create Read Channel Budget vtiue 
and establish read / 
use controls 


Reed Channel 
I 

'End of OPEN MethodN 
Process J 


R510 


BUDGET 
Method 


Rsos 


BILLING 
Method 



1504 


,[1506 


METER 
Method 



fiio" 


Figure 49 


OPEN Event 


1524 


URT, PERC for 
(object user) 


1632 


OPEN Method 
Elements (Method 
core, LM, UDE, 
MDE) 


,|lS34 


Audit UDE 


i- 


Determine identification 
of object and user to be 
opened. 


[1520 


OPEN Event Object 10. User 10 

,[1522 



-No- 


-Read- 


Create channel and 
bind OPEN control 
elements to it 


1530 


OPEN Evert. Object ID. User ID. Channel ID 


i_ 


-Write- 


Prime Audit (if 
required) 


£533 



HS26 


Call the 
REGISTER 
Method for the 
Object Restart the 
OPEN Method 

once the 
registration is 
complete. 


Yes 


CONTROL Method 


Figure 49a 



.[[502 


{1504 


538 


1540 


Prime EVENT 
Audit Trail (if 
required) 



EVENT Method 
Audit Trail UDE 


4? 


1542 


1544 


Map OPEN Event to 
Atomic Element # and 
event count using Map 
MOE 


-Read- 


EVENT Method Map j 
MDE 


Event. Event Count. Atomic Element #. Object ID, User 10 


1548 


1546 


•1 


Write EVENT Audit 
Trail (if required) 


-Write- 


EVENT Method 
Audit Trail UDE 


Atomic Element *. Event 
Count 


-Yes, Pass- 


-No. Fan EVENT Method 



1550 


EVENT Method 



Ron back tecum 
database transaction 


-»^OPEN Method Failed^ 


^554 CONTROL Method (cont'd) 


Figure 49b 



1564 


Add EVENT Count 
to Meter value 


*-RtadMMta« 


METER Methodi 
UDE (the 
Meter) 


,-[lS62 


1S66 


Write METER 
Audit Trail (if 
required) 


METER Method 
Audit Trail UDE 


METER Value 



1570 


-No. FsH METER Method 


METER Method 


1572 



No* 


Roll back secure 


database transaction 

— < 


,5 


1576 


OPEN Method Failed 


' * - |i«74 CONTROL Method (cont'd) 


Figure 49c 


|?502 


...■(1510 


1602 


160 fh 


^598 


Prime 
BUDGET 
Audit Trail (if 
required) 



Writa- 


fjeoo 


BUDGET 
Method Audit 
Trail UDE 


V 

Add Billinj 
to Budgi 

3 Amount ^ 
et value 



Write BUDGET 
Audit Trail (if - 
required) 


•-Rud/WiiteH 


BUDGET 
Method UDE 
(the Budget) 


-Write - 


BUDGET 
Method Audit 
Trail UDE 


[ 


-Yes, FAILS 



-No. Fate 


BUDGET Method 


2 



Roll back secure 
database franeaction 


1616 


X 


OPEN Method Failed 


^QeM CONTROL Method (cont'd) 


Figure 49e 


,.£[508 


£578 


1586 


•1 


Prime 
BILLING 
Audit Trail (if 
required) 



Map Atomic 
Element #, Count, 
and Meter Value to 
Billing Amount 
using Map MDE 


BILLING 
Method Audit 
Trail UDE 


-Rud- 


BILLING 
Method Map 
MDE (Price list) 


BiNinQ Amount 

4 


Write BILLING 
Audit Trail (if 
required) 


BILLING 
Method Audit 
Trail UDE 


Bitting Amount 


■Yw, PSM- 


-No, Fai BILLING Method 



1590 


BILLING Method 



No-* 


Roll back secure 

— < 

database transaction 



.{1896 


OPEN Method Failed 


CONTROL Method (cont'd) 


Figure 49d 


16ll] 



1 

Write OP 
Trail (if r 

- 

EN Audit 
equired) 



Establish channel 
for READ Event 
Processing 


Channel ID 



.{T502 


,(1620 



Audit UDE 


URT, PERCfor| 
(object, user) 


Roll back secure 
database 
transaction 


Ye* 


1628 


1624 


1630 


OPEN Method 
Failed 


1632 


Commit secure 
database 
transaction 


1634 


*1 


Tear down channel 
for open 
processing 
(optional) 


CONTROL Method (cont'd) 


1636 


•3- 


PEN Method Proce*^ 
Completed J 


Figure 49f 


Il650 


rSUrt of READ Method 
l Process J 


READ 
Method Use 
Process Flow 


READ Event 


-READ Event 


-Atomic Bement end ount 


-Atomic Element end Count- 
Meter Value 


— Meter VeJue- 
- Bating Amount- 


CONTROL Method Bue^Vet?" 


Decrypt, fingerprint and 
obscure content 


Decrypted Content 

, — * — , 

End of READ Method' 
Process 


£660 


BUDGET 
Method 



1654 


£658 


PILLING 
Method 


^656 



METER 
Method 


610 


Figure 50 


1650 


'Start of READ Method^ 
i. Process J 


1652 


■E 1 


1672 


j 
V 


Audit UDE 4 Wnte 


7 


READ Event 


Determine identification 
of object and user ID 
for read 


[l662 


READ Event Obftct ID. User tD 



Call the OPEN 
Method for the 
Object Restart the 
READ Method 

once the 
registration is 
complete. 


1666 



J? 


1668 


CONTROL Method 


Figure 50a 



1678], 


Map READ Event to 
Atomic Element # and 
event count using Map 
MOE 


-Read- 


EVENT Method Map | 
MDE 


1680 


Event. Event Count. Atomic Element #, Object ID. User 

ID 


1682 


Write EVENT Audit 
Trail (if required) 


-Write- 


EVENT Method 
Audit Trail UOE 


1684 


Atomic Element #. Event Count 



1666 


-No. Fail EVENT Method 


EVENT Method 


1688 



Roll back secure 
database transaction 


16S2 


READ Method FaHed 


1680 


CONTROL Method (cont'd) 


Figure 50b 



B 


....£652 


£656 


1694 


1656 


Prime 
METER 
Audit Trail (if 
required) 



METER Method 
Audit Trail UDE 


41698 


1 

Add EVE 
to Mete 

NT Count ^ 
\r value 


* 

Write METER 
Audit Trail (if - 
required) 


^700 


METER Method] 
UDE (the 
Meter) 



\©/"" N 


Figure 50c 



..{1652 


(T658 


11714 


11716 


Prime 
BILLING 
Audit Trail (if 
required) 



BILLING 
Method Audit 
Trail UDE 


.(1718 


Map Atomic 
Elements Count, 
and Meter Value to 
Billing Amount 
using Map MDE 


-Read- 


BILLING 
Method Map 
MDE (Price list) 


Billing Amount |l722 


1724 


Write BILLING 
Audit Trail (if 
required) 


- Write - 


BILLING 
Method Audit 
Trail UDE 


7 
A 


Billing Amount 



Rott back secure 
database transaction 


READ Method Failed 


% [mo CONTROL Method (cont'd) 


Figure 50d 



.{[562 


£660 


fin* 


Prime 
BUDGET 
Audit Trail (if 
required) 



BUDGET 
Method Audit 
Trail UDE 


1738 


1740 


Add Billing Amount 
to Budget value 


•-Reid/Write^ 


BUDGET 
Method UDE 
(the Budget) 


,[l742 


1744 


Write BUDGET 
Audit Trail (if 
required) 


-Write- 


BUDGET 
Method Audit 
Trail UDE 


-Y«s. FAILS 



-No, PASS 


BUDGET Method 



No* 


Roll back secure 
database transaction 


.Q752 


READ Method Failed 


Sv Q706 


CONTROL Method (cont'd) 


Figure 50e 



■|Tbw 2 Figure 50f 


1756 


Write OPEN Audit 
Trail (if required) 


-Wril«- 


Audit UDE 


1758 


1760 


Determine key to 
use to decrypt 
content 


-Rud- 


PERC for 
(object, user) 


1762 


Obtain 
encrypted 
content using 
ACCESS 
Method 


1764 


Decrypt content 
using DECRYPT 
method 


CONTROL Method (cont'd) 



/^tart of WRITE Methcrf\ 
I Process J 


j?780 


WRITE 
Method Use 
Process Flow 


WRITE Event 


1782 


CONTROL Method 

Encrypt content and 
update event 


-WRITE Event - 


-Atorrac Element and Count- 


-Atomic Element and Count- 
Meter Vahie 


— Meter Value - 
-Billing Amount- 


Biffing Value- 
Budget Value 


Encrypted Content 

1 

i^End of WRITE Method^ 
I Process 


EVENT 
Method 


,0 


1784 



1786 


Figure 51 


1780 


/^tart of 


WRITE Method 
Process 


792 


[T782 


WRITE Event 


1804 


Audit UOE 


1794 


Determine identification 
of object and user ID 
for read 


i 

WRITE Evtrt, Otjftd 10, User ID 




"iBOO 



Start Secure Database 


Transaction 





,[1798 



Call the OPEN 
Method for the 
Object Restart the 
WRITE Method 

once the 
registration is 
complete. 


Figure 51a 



.{T782 


{T784 


1S06 


1808 


Prime EVENT 
-K Audit Trail (if 
required) 


Map WRITE Event to 
Atomic Element # and 
event count using Map 
MDE 



EVENT Method 
Audit Trail UOE 


,Qei2 


EVENT Method Map | 
MDE 


Event. Event Court Atomic Bement #, Object ID. User 
ID 


1816 


1814]- - 


Write EVENT Audit 
Trail (if required) 


-Wnte- 


EVENT Method 
Audit Trail UDE 


Atomic Element #. Event 
Count 


1820 



Update EVENT Method 
Map MDE to reflect 
new data 


-PASS if update succeeded. FAIL otherwise - 


EVENT Method 


1822 



No-* 


Roll back secure 
database transaction 


824 


1826 





WRITE Method Failed 


CONTROL Method (cont'd) 


Figure 51b 



-11782 


(T786 





Prime 


METER 


Audit Trait (if 

> 

required) 




,|l834 


-WrHe- 


,(«30 

7 


METER Method 
Audit Trail UDE 


Add EVENT Count 
to Meter value 


METER Method) 
KRud/wite-*! UDE (the 
Meter) 


1638 


1840 


Write METER 
Audit Trail (if 
required) 


-Wnte- 


METER Method 
Audit Trail UDEj 


METER Value 



-Yt*. P«S 


-No. Fait METER Method 


METER Method 



No* 


Rot! back secure 
database transaction 


,[104* 



WRITE Method Failed 


CONTROL Method (cont'd) 


Figure 51c 


{j>82 


1788 


Prime 
BILLING 
Audit Trail (if 
required) 



854 


Map Atomic 
Element #, Count, 
and Meter Value to 
Billing Amount 
using Map MDE 


-Read- 


Bilbng Amount 


1858 


Write BILLING 
Audit Trail (if 
required) 


-Wrrte- 


,[1852 


BILLING 
Method Audit 
Trail UDE 


18S6 


BILLING 
Method Map 
MDE (Price list) ' 


I860 


BILLING 
Method Audit 
Trail UDE 


Billing Amount 



1862 


-No. Fti BILLING Method 


BILLING Method 



No* 


Roll back secure 
database transaction 


WRITE Method Failed 


^Q868 CONTROL Method (cont'd) 

Figure 51 d 


-,©./ 


■Yw. FAILS 


{1782 


Prime 
BUDGET 
Audit Trail (if 
required) 



1790 


,{1872 


BUDGET 
Method Audit 
Trail UDE 


1 

,[1876 

* 

Add Billing Amount 
to Budget value 

/ BUDGET / 
*-R«adA(VMa J Method UDE 
I (the Budget) I 


,[l878 ,fl880 

Write BUDGET 
Audit Trail (if 
required) 

/ BUDGET / 
— wnte— J Method Audit 
\ Trail UDE I 


,[l882 



BUDGET Method 


-No. PASS 



No* 


Roll back secure 
database transaction 


1888 


WRITE Method Failed 


* x [l886 


Yn 



CONTROL Method (cont'd) 


Figure 51 e 



...{1782 


1890 


1892 


Write WRITE Audit 
Trail (if required) 


-Wrtte- 


Audit UDE 


J? 


1894 


Determine key to 
use to encrypt 
content 


-Rtad- 


PERC for 
(object user) 


1896 


1898 


Encrypt content 
using ENCRYPT 
method 


1900 


CONTROL Method (cont'd) 


Write content to 

object using 
ACCESS method 


-IT 


1902 


Update container TOC 
and related information 


1904 


Commit secure 
database transaction 


1906 


ITE Method Proces\ 
Completed J 


Figure 51 f 


Start CLOSE Method 
Process 


,[«2 


Prime Audit trail (if 
required) 


-Wrrte 


,{l926 


Destroy channel and 
release resources 


,[1928 


Write Audit Trail (if 
required) 


-Write- 


1920 



Audit UDE 


Audit UDE 


V 


924 


7 

1 


1930 


7 
V 


CLOSE 
Method 
Process Flow 


End CLOSE Method 
Process 


Figure 52 


^ EVENT Method Start ^ 

- i 

EVENT, Event Count, Event 
Parameters 

__i 


Prime EVENT 
Audit Trail (if 
required) 


[1940 



,{1944 

~7 


EVENT Method 
Audit Trail UDE 


Load MAP MDE DTD 


-Read- 


V 


EVENT Method Map | 
DTD 


,{l950 


,[l952 


Map Event to Atomic 
Element # and event 
count using Map MDE 


-Read- 


1 

?nt, Event Count, Atomic Element #, Object ID, User 
ID 

4 


r 

v 


EVENT Method Map j 
MDE 


,{1972 


Write EVENT Audit 
Trail (if required) 


,,{1970 


-Write 



EVENT Method 
Audit Trail UDE 


Atomic Element #, Event 
Count 



,{7976 


EVENT Method failed 


EVENT Method 
Succeeded 


EVENT 
Method 
Process 
Flows 


Figure 53a 


r Start of MAP A 
I Proce ss y 
I 

Event Event Count. AE #. Object ID. User 
ID 

+ 


Look up event in MDE 


{T954 


Sample 
EVENT 
Method 
Mapping 
Process 



Compare event range 
to AE translation table 
and determine AE # 
and optional count 



Yes 


i 


Calculate AE count 
from event range 


End of EVENT Map 
Process 


Figure 53t 


BILLING Method Start 


[[980 


Meter Vali* 


Prime BILLING 
Audit Trail (if 
required) 



BILLING Method 
Audit Trail UDE 


,{l986 


i -I. 


Load MAP MDE DTD 


-Read 



7 


BILLING Method 
Map DTD 


1988 


1989 


Map meter value to 
billing amount using 

Map MDE (and 
possibly database 
elements) 


-Read 



BILLING Method 
Map MDE (and 
optionally others) 


Billing Amount 


Write BILLING Audit 
Trail (if required) 


1990 


-Write- 


r 

V 


~7 


BILLING Method 
Audit Trail UDE 


V 



994 


,[l996 


-no- 


billing Method failed 


Bitting amount / |l998 

f BILLING Method A 
I Succeeded ) 


BILLING 
Method 
Process 
Flows 


Figure 53c 


[ACCESS Method Start 


art^ 


Prime 
ACCESS Audit 
Trail (if 
required) 



{2002 


Write 


42006 


Load ACCESS Method 
MDE DTD 


-Read 


.{£010 


Load encrypted 
content source and 
routing information 


-Reed 


Location of Content 


(2000 


.£004 



ACCESS Method 
Audit Trail UDE 


, |i 008 



ACCESS Method 
DTD 


^{§012 



ACCESS Method 
MDE 


Open connection to the 
content service. 



7 


ACCESS 
Method 
Process Flow 


-Failure 


.{2018 



ACCESS Method 
Failed 


1 


Write ACCESS Audit 
Trail (if required) 

1 



2024 



ACCESS Method 
Audit Trail UDE 


End of ACCESS 
Method 


Figure 54 


Start DECRYPT > 
Method J 

• r 

Block lo decrypt ,{2032 

A .i 


Select key number 
from key block 


3034 


Load key from PERC 


-Read 



,{£ 038 


Convolute key (if 
required) 


,{5mo 


(2030 


2036 


PERC 


7 


DECRYPT 
Method 
Process Flow 


Decrypt block 


Decrypted Nock ,12042 
1 

End of DECRYPT^ 
Method J 


Figure 55a 


Start ENCRYPT 
Method 

Stock to Encrypt ,[5o52 

; 



Read/Write 


Eiwyptodbto* 


End of ENCRYPT 
block 


(2050 


ENCRYPT 

Method 
Process Flow 



Figure 55b 



...|2070 

,(2078 


Derived—* 


Securely read 
information from 
container 
(according to 
synopsis algorithm) 
and produce 
synopsis 
z 


Static 


Read 


2074 


1 

Readc 
information 

r 

jontent 
from object 

i 


4 

r 

1 

Release content 
description 


-Rwd- 


Object container 


v 


End of CONTENT 
Method 


CONTENT 
Method 
Process Flow 


Figure 56 


r Start EXTRACT *\ — 
Method Process J 

Object 10. Soorw container rjj^ 

i 


(2080 


Prime Audit 


"7 


EXTRACT 
Method 
Process Flow 


♦Read- 


Audit UDE 


Call BUDGET 
method to check 
extract budget for 

original object 


2086 



,{2°90 


Write Failure Audit 


record 

— A 


,{2092 


End of EXTRACT 
Method 


Create copy of 
extracted object 
with specified 
controls (this is a 
call to a method 
that controls the 
copy) 


£094 


2106 



Figure 57a 


f Start EMBED Method^ 
I Process J 
i 

Object ID, Destination container 

5 


Prime Audit 


*- Write - 


Call BUDGET 
method to check 
embed budget for 
destination object 


16 


Budget permits 
embedding? 


-No- 


2110 


~7 


Audit UOE 


,{2120 


Write Failure Audit 


record 

— i 


EMBED 
Method 
Process Flow 


2122 


(End of EMBED Method 


Write object into 
destination 
container, 
abstracting 
controls (calling a 
method to abstract 
or change the 
controls) 


,[2124 


2130 



Write Audit 


End of EMBED 
Process 


y 


Figure 57b 


Start OBSCURE 
Method 


Call EVENT 
Method to 
determine if 
content is in range 
to be obscured 


,[2142 


Load obscure formula 
and patterns 


-Read- 


2154 


Apply transform 


(2140 



2146 


End of OBSCURE 
Method 


,[2152 

* 

~l 


OBSCURE Method 
MDE(s) 


OBSCURE 

Method 
Process Flow 


No 


End of OBSCURE A 
Method J 


Figure 58a 


Start FINGERPRINT 
Method 


Call EVENT 
Method to 

determine if 
content is in range 
to be fingerprinted 


2160 


.6 


2162 


FINGERPRINT 
Method Process 
Flow 



,0 178 


'End of FINGERPRINT* 
l Method l 


Figure 58b 




DESTROY 

Method 
Process Flow 


Call ACCESS 
Method to write 
garbage at head of 
object 


,{2188 


Mark URTor other 
control structures as 
damaged 


-Write 


,(2192 


Write Audit 


-Write- 


.6 


2190 



URT or other 
control structures 


7 
1 


V 


,(2194 


Audit UDE 


2196 


End of DESTROYN 
Method J 


Figure 59 


Start of PANIC Method 


,[2202 


Prime Audit 


-Write 


,[2206 


Call CLOSE 
Method to close 
the channel 


Mark controls as 
damaged 


,{2212 


Write Audit 


-Write 


|2200 


2204 



Audit UDE 


,{2210 


-Write *\ URT, PERC(s) 



Audit UDE 


,(2214 


PANIC 
Method 
Process Flow 


,{2216 


^End of PANIC Method^ 


Figure 60 


Start METER Method 
■ Use Proc ess ^ 

1 

Atemc Elamant Evwit 
Count 

* 


Prime METER Audit 
Trail 


.§ 


-Writ* 


Obtain DTD for 
METER 


-RMd 


,{2230 


Obtain METER 


-R««d 



-Yw- 


Update METER using 
Atomic Element and 
count 


Save METER Use 
Audit Record 


c 


METER Method 
Succeeded 


y 


(2220 


,{2224 



METER Audit Trail | 
UDE 


,{2228 



DTD for METER 
UDE 



,{2232 

"7 


METER UDE 


,[2236 


Commit METER 
Failure Audit Record 


,{2240 


METER UDE 


V 



{2244 


METER Audit Trail 
UDE 


METER 
Method Use 
Process Flow 


,{2236 


METER Method Failed 


Figure 61 


( 


FIG. 62 

KEY CONVOLUTION PROCESS 


2821 


SECRET KEY 
CONVOLUTION SEED 
VALUE 


v 


2861 


SITE ID 


RTC 528 
HIGH BITS 



IN 


DES 


.2871 


OUT 


CURRENT 
CONVOLUTION 
KEY 


810 


-2862 


KEY 


CONTENT KEY FROM 
PERC 808 


IN 


▼ 

DES 


OUT 


ACTUAL 
CONTENT 
KEY 


— 2863 


2872 




oo 

CM 


UJ 

> 


O 



UJ 


CD 
CO 
CM 



CO 
CO 


CO 
CO 
CM 


CD 
CO 
CM 


CO 
CM 



CM 

V. 

«? 






CM 
+ 

1 

a 

o 






a 

& 


5 






tr 


FIG. 64 


SPU KEY INITIALIZATION/INSTALLATION 


LM CERT. PUB KEY(S) 
DOWNLOAD PUB KEY(S) 


2813, 2814 


MFG SITE CERT 
PUB KEY 


>2811 
- 


MFG SITE CERT 
PRIV KEY 


2812 


SITE ID AND 
CHARACTERISTICS 


2821,2822 


PPE EXTENSION TO 
GEN SITE CERT 
DURING MFG 
(OPTIONAL) 


MFG CERT. GEN 
(PK SIGN) 

2804 


SITE PUB KEY 


SITE PRIV KEY 


SITE DB KEYS 


2815 
281 

> 

281 

> 


2823 


SITE ID 
CERT 


EEE I SITE PRNG SEED 
£22 V 


^ 2816 


VDE 
CERTIF. 
DB 

2803 


SECURE 
NON-VOLATILE 
KEY 
STORAGE 


2802 


FIG. 65 KEY INSTALLATION & UPDATE 


c 


PRIV HDR KEYS 



2813 

VDE 
CERTIF 
DB 

SITE PUB KEY^ f 

FROM SITE CERT ^ 
2823 j 


■N. 2831 

y 


EXT, COMM KEYS 


2804 


2842, 


i 


PPE 650 


2832 

y 


( 


AOMIN OBJ KEYS 


-s^ 2833 


OTHER SHARED KEYS 


--2834 

5 


PK ENCRYPT 


i 2841 


SITE PRIV KEY 2816 


PK DECRYPT 


4 


SECURE 
NON-VOLATILE 
KEY 
STORAGE 


2802 


PPE 650 


SECURE NON- 
VOLATILE KEY 
STORAGE 
2802 


PRIV HDR KEY 
2831 


ADMIN OBJECT* 
(CONTROLS) 
870 


SECURE DB KEY 
2817 


▼ - 

DECRYPT 


r 


PERC 


2843 


STATIONARY 
CONTENT 
OBJECT 
850 


f 

ENCRYPT 


PRIVATE BODY 
KEY FROM 
PERC 810 


2844 


DECRYPT 


2845 


SECURE 
DATABASE 
610 


CONTENT 


FIG. 66 STATIONARY OBJECT DECRYPTION 


PPE 650 


TRAVELING 
OBJECT 
860 


SECURE NVKEY 
STORAGE 


PRIVATE HEADER 
KEY 2831 


? 

OECRYPT 


^2843 


2802 


SECURE FILE/ 
DATABASE KEY 2817 


2844 


PERC 
880 


IENCRYPTED 
CONTENT 


2845. 


ENCRYPT 


PRIVATE BOOY KEY 
FROM PERC 810 


DECRYPT 


L — — — 


SECURE DB 
610 


CONTENT 


FIG. 67 TRAVELING OBJECT DECRYPTION 


1370 


FIG. 68 

SPU INITIALIZATION 


c 


START 

RESET 
SPU 


1372 


ESTABLISH 
SECURE 
COMMUNICATIONS 


1374 


UPDATE 
SPU INTERNAL 
BOOTSTRAP 


1376 


DOWNLOAD . 
FIRMWARE ^/ 
INTO SPU 


1378 


DOWNLOAD 
UNIQUE DEVICE 
ID INTO SPU 


1380 


J 


DOWNLOAD/INIT. 
KEYS, TAGS 
AND CERTIFICATES 


k 1382 

Y 


INITIALIZE 
SPU 

REAL TIME CLOCK 


INITIALIZE 
SUMMARY 
VALUES 


1384 


1386 


INITIALIZE 
SECURE 
DATABASE 


v 


1390 



1394 


1398 


1400 


1402 


1404 


YES 


CALCULATE DIGITAL 
SIGNATURE 



NO 


FAIL 


^ 1401 

y 


NO {STORE IN SECURE DB) 


STORE IN SPU 
NON-VOLATILE 
MEMORY 


TAG 
FIRMWARE 


*YPT 


ENCRYPT AND 1 1408 
STORE IN SECURE 
DB 


Y 


y 


1406 


FIG. 69 

SPU FIRMWARE 
DOWNLOAO 


2630 

\ 


600(1) 


654(1) 


653(1) 


CPU 


2632(1) 


ROM 
658(lT^" 


656(1 


RAM 

!7 — 


500(1) 


SPU 
7 


V INTER- 
fFACE/ 
CTRL 


2634(1) 


CONN 


654(2). 


600(2) 


..■.-.- m==== -- -— — -f , 

STORAGE \ f 12634(2) , 

MECHANISM!— 4H CONTROLLER [ ^ j 


2636 


653(2) 


2632(2) 

"f 


620 


656(2) 


ROM 
m ^7 m 


RAM 

656(2) 


BUS 


SPU 
500(2)"^" 


INTER- 
FACE/ 
CTRL 


CONN, 


2631 
(672) 


614 


600(3) 


2638 
653(3) 


DISPLAY 
MECHANISM 


654(3) 


JJ CONTROLLER 


L 


II 


ROM 

658(3)-/ 


RAM 

656(3)^ 


BUS 


SPU 

500(3)7 


2632(3) 

f 2*634f3lj 


INTER- 
FACE/ 
CTRL 


CONN 


622. 


600(N) >^ »^654(N) 2 632{N) 

i,2634(N)' 



[INTER- 
FACE/ 
CTRL 


ROM 
658^7^" 


656(N)37 


CONN. 


500(74)-' 


FIG. 70 


( 



LOG IN USER INTERFACE 


182 


USER NAME: 
PASSWORD: 


SHEAR. V. 


* * * * * 


□ 


LOGIN AT STARTUP 


LOGIN 


CANCEL 


HELP 


FIG. 72A 


FIG. 72B 


2660 


A YOU HAVE REQUESTED THESE 
/J\ PROPERTIES: 


LOONEY TUNES NEWS! 


PROPERTY INFO 


2662 


APPROVE 


CANCEL 


SUSPEND 


Your Cost $7.50 


OPTIONS 


a 


2664 


FIG. 72C 


SET LIMITS: 

SESSION DOLLAR LIMIT: $ 

TRANSACTION DOLLAR LIMIT: $ 

TIME LIMIT (IN MINUTES): 

UNIT LIMIT: 


2666 


£ 


2674 


OK 


50 


SO 


-2668 
-2670 


CANCEL 


50 


HELP! 


2672 


Q 

CM 

6 



si 

o 

i 



Q 


Z 


UJ 


Q. 


CO 


3 


CO 


a 
o 

2 
o 


CO 
UJ 

UJ 
CL 

o 

CT 
CL 
UJ 
CO 
UJ 
X 
*- 

Q 

UJ 

CO 
UJ 

a 

UJ 

ac 

UJ 

I 

o 


UJ 

> 
o 

a. 

Q. 
< 


! 

S 

o 
o 

•4 


co 
o 
a 

o 
>- 


O I mi 


4 4 •< 


5 V 

LU <f 

* i 

a. Q 


vn 

CM 


Q 


(0 

< < 

5 o 

LU LU 

2 2 

§ 5 

LU LU 

z z 

a: <r 

UJ UJ 

1 1 

i i 


ffi 

s 


co 

- 5 


8 

si 
co 

LU 

z 
o 

a 

3 
Z 

a 


ui 
a. 
-> 

z 

3 
CO 
CO 
C 
3 
D 

► 


CL CL 

CO CO 

5 o 


o 

cr 

CL 

Z CL CL 

5 R ° 


8 S 8 8 8 8 


S S 8 S$ ft 8 St 


2 „ 
2 * 


3 

CN § 

in o 

CM CM 


o a 

tr a 

o o 

o o 

LU LU 

a: cr 


CM 

< < 

a o 

* % 

LU LU 

z z 

cr cr 

LU LU 

i § 


CD CD 

5 2 


£ 2 uj 

O UJ p 

h a 5 

o or 2 

UJ LU = 

CO CL 2 


Sop 
V: m r- 


2 


z 
or 

I 


Q 

LU 


< 

a a 

LU LU 

2 

Ui UJ LU 

- z z 

cr tr 

Ui LU 

~ z 
cr 

I 


cr 

I 


< *" 

— o 

a 2 

lu =; 

CL CO 

co o 


< 3 

Q Q 

LU UJ 

2 5 

Lu Uj 

z £ 

cr cc 

LU UJ 

* I 
1 


cr 

I 


CD CD _ 

* * to 

CM CM CO 


CD £ 

S § 

CM <0 



UJ 
X 


(J 

< 

GO 

a 

LU 
LU 


CO 
LU 
O 

z 

LU 

cr 

LU 
LL 
LU 

cr 
a. 


cr 

LU 
LL. 
CO 

z 


> 

cr 
o 

H 

CO 

x 


LU 

o 
o 

ffi 
LU 

cr 

D 
O 

o 
< 


CO 
H 
LU 
O 
Q 
D 
ffi 

§ 

X 
CO 


CO 

2 


LU 

CO 


FIG. 73 3000 


300 > 


806a 


806b 
806d 


806*. 


300z, 


300y, 


300x 


300w 


PUBLIC HEADER 


PRIVATE HEADER 


PRIVATE BODY 


RULES 
FOR 
CONTAINER 300 


RULES 
FOR 
CONTAINER 
300x 


RULES 

FOR 
RIGHTS 
NEGOTIATION 


RULES 
FOR 
CONTAINER 300y 


CONTENT 
OBJECT 


SOFTWARE AGENT 
JL 


RULES 
FOR 

CONTAINER 300w 


RULES 
FOR 

CONTAINER 300z 


RULES 

FOR 
AGENT 
EXECUTION 


CONTENT 
OBJECT 


RULES 
FOR 
INFORMATION 
SEARCH 


INFORMATION (ROUTING) 
LOCATIONS AND RELATED DATA 


CONTENT 
OBJECT 


RULES 
FOR 
INFORMATION 
RETRIEVED 


INFORMATION RETRIEVED 


ADMIN* 
OBJECT 


AUDIT HISTORY OF 
AGENT 
EXECUTION 


RULES 
FOR 
AUDIT 
RETURNED 


802 


. 804 
806 


806c 


806f 


, 300z(1) 

, 300z(2) 
. 300y(1) 

300y(2) 
300x(1) 

- 300x(2) 
300w(1) 


_ _^300w(2) 


FIG. 74 



VDE SITE WITH AGENT 
EXECUTION SERVICE AND 
SOFTWARE DESCRIPTION 
LIST DATABASE 



3020 


VDE SITE WITH AGENT 
EXECUTION SERVICE AND 
SOFTWARE DESCRIPTION 
LIST DATABASE 


HI 
§il 


SMART OBJECT 
SEND TO SECOND VDE 
SITE AFTER FAILURE ON 
FIRST VDE SITE 


^3018 


VDE SITE WITH 
INFORMATION LOCATOR 
SERVICE 



SMART OBJECT 
SENT TO VDE SITE 
DESIRED SERVICES 


3022 


SMART OBJECT 
WITH DESIRED 
INFORMATION 
RETURNS TO 
SENDER 


3024 


3012 


4 


SMART OFJECT SENT TO DETERMINE 
LOCATION OF DATABASE TO USE 


USER VDE SITE 


FIG. 75A 


3104 


3106, 


PERC HEADER 


CSO 


PRIVATE 
BOOYKEYS 


3100 

/ 


USE RIGHT HDR 


CSR 


KEYS 


PERMI TT ED CON T ROL SE T 
(USE W/O INFO. PASSBACK) 


CONTROL METHOD (VENDING) 


REQUIRED METHOD, BUDGET 

METHOD OPTION: 
VISA 

METHOD OPTION: 
MASTERCARD 

METHOD OPTION: 
AMEX 


REQUIRED METHOD, BILLING ($100 FIXED. ONE TIME) 



DESIRED CONTROL SET 
(USE WITH INFO. PASSBACK) 

CONTROL METHOD (VENDING _ 
WITH "RESPONSE CARD") 


REQUIRED METHOD, BUDGET 

1S-4JMETHOD OPTION:! METHOD OPTION: 
VISA MASTERCARD 


METHOD OPTION: 
AMEX 


REQUIRED METHOD, AUDIT (COLLECTION 
PERSONAL INFORMATION) 


REQUIRED 
y FIELDS 


DESIRED FIELDS 


REQUIRED METHOD, BILLING ($25 FIXED, ONE TIME) 


FIG. 75B 


PERC HEADER 


3127. 


USE RIGHT HDR 


3131a 


3137 fc 


CSO 


CSR 


3125 

I 


PRIVATE 
BODY KEYS 


KEYS 


CSR 


(METHOD OPTION 
VISA 


DESIRED METHOD, BUDGET 

DESIRED UDE: 

MYVISABUDGET 


REQUIRED METHOD, BILLING (<$150 FIXED, ONE TIME) 



DESIRED CONTROL SET 
(USE WITH INFO. PASSBACK) 

CONTROL METHOD (VENDING 
WITH "RESPONSE CARD**) - 


REQUIRED METHOD, AUDIT 
(COLLECTION PERSONAL INFORMATION) , 

PERMITTED 
FIELDS 



REQUIRED METHOD, BILLING (<$30, FIXED, ONE TIME) 


3131b- 


PERMITTED CONTROL SET 
(USE W/O INFO PASSBACK) 


CONTROL METHOD (VENDING) 


FIG. 75C 


PERC HEADER 


CSO 


3150 


PRIVATE 
BODY KEYS 


NEGOTIATE 
RIGHT HDR 


CSR 


KEYS 


PERMITTED CONTROL SET 
(TRUSTED NEGOTIATOR) 


CONTROL METHOD 
(NEGOTIATE) 


REQUIRED UDE 

REQUIRED UDE: 

PERC1 

PERC2 


3156 


PERMITTED CONTROL SET 
(MULTIPLE NEGOT. PROCESSES) 


CONTROL METHOD (NEGOTIATE) 


REQUIRED METHOD: NEGOTIATE1 

REQUIRED UDE: 
PERC1 



REQUIRED METHOD: NEGOTIATE2 

REQUIRED UDE: 
PERC2 



FIG. 75D 


3162*. 
3164 


3166. 


3170 


URT HEADER 


USE 
RIGHT HDR 


CSO 


DIGITAL 
SIGNATURE 


CSR 


CON T ROL 5E T (U5EWI I H 
INFO. PASSBACK) 


CONTROL METHOD(VENDING 
WITH "RESPONSE CARD") 


REQUIRED METHOD, BUDGET 

METHOD OPTION: 
VISA 

DESIRED UDE: 
MYVISABUDGET 



REQUIRED METHOD, AUDIT (COLLECTION 
PERSONAL INFORMATION) 

PERMITTED 
FIELDS 



REQUIRED METHOD, BILLING($2S, FIXED, ONE TIME) 


3160 


ELECTRONIC 
CONTRACT 


3202(1) 


3202(2) 


3202(N) 


CLAUSE 1 



CLAUSE 2 

• 

• 

• 


CLAUSE N 




DIGITAL 
StGNTURE 


DIGITAL 
SIGNATURE 


3204(1 


v 


3204(M) 


7 


FIG. 75E 


3200 


3208(1), 


3208(2), 


STEP 1 


STEP 2 


3208(3) 



STEP 3 


3208(4) 


v. 


STEP 4 


3206 


FIG. 75F 


STEPS 

L 


3208(5) 


FIG. 76A 


PERC1 


7s 

/ 808a 


RULES SET 1 


PERC 


— 7 

N M 808n 


RULES SET N 


SHARED NEGOTIATION 


PROCESS 


3172 



ELECTRONIC CONTRACT 1 ELECTRONIC 


CONTRACT 2 


NEGOTIATION 
'PROCESS RULES 
AND CONTROLS 


3150 


7 


7 


PERC/URT 1 


PERC/URT N 


3160a 


3160n 


FIG. 76B 



FIG. 77 


VDE CONTENT 
CREATOR 



VDE RIGHT/ 
DISTRIBUTOR 



CLIENT 
ADMINISTRATOR 


112(2) 1t2(n) 


114 




vd£ 




USER 




TWO 



VDE 



VDE 



USER 



USER 

ONE 



N 






116a 


21 


FINANCIAL 
CLEARINGHOUSE 

vol 

ADMINISTRATOR 






> 

o 

s> 
o 

Qu 
UJ 

ft 

UJ 
O 
> 


UJ 

U. > fO 
UJ CO « 


2 

Q Q h 

CC < >-ri 
O U cor) 



Ui § o 
K tl u> 

z 5 2 
o > w 
(J 0) 



UJ 


a 2 

uj > S 




CO 


UJ 





« 

uj q: 

w 

fc uj 

o 



O UJ 








FIG. 79 






USERS 


U USERO 


FIG. 80 


CREATOR A 



USER/DISTRIBUTOR B 
UD.lUDJD.fCJ>) 


USER B 

U,(UD,(UD.(D A (C 4 )))) 




FIG. 83 


CREATOR D 
C 0 


CREATOR B 
C. 


DISTRIBUTOR C 
D e (C.C e C 0 ) 


USER B 
U.(D c (C t C e C B )) 


CREATOR C 


DISTRIBUTOR B 
D.(D c (C.C c C 0 )C e ) 


USER B 
U.(D.(D c (C,C c C 0 )C e )) 


CREATOR E 


CLIENT ADMINISTRATOR 
CA(D.(D e (C.C e C 0 )C l )) 


USERC 
U c (CA(D.(D c (C.C e C 0 )C I ))) 


USERE 
U E (D,(D e (C 8 C c C 0 )C f )) 


USER/DISTRIBUTOR C 
UD e (CA(D.(D c (C,C c C 0 )C f ))) 


USER D 
Uo(CA(D.(D c (C.C e C 0 )C i m 


USER E 
Ut(CA(D.(0 e (C.C e C o )C,))) 


USERD 

U 0 (UD c (CA(D.(D e (C i C c C D )C I )))) 



FIG. 85 


DISPLAY 

EDTf 
EXTRACT 


DISTRIBUTE 
BUDGET- 
$22,000 
PRINT 


.300(A) 


DISPLAY 


PRINT 
DISTRIBUTE 


BUDGET^ 
$8,000 


.300(B) 


3452(1) 


3450 


CLIENT ADMINISTRATOR 


SALES & MARKETING 
ADMINISTRATOR 



DISPLAY 
BUDGET ■ 
$2 t 000 
DISTRIBUTE 


PRINT 


BUDGET ' 
$3,000 


DISTRIBUTE 


3454(3). 


3452(2) 



PLANNING . 
ADMINISTRATOR 





DISPLAY 



ebit 



BUDGET* 
$10,000 



DISTRIBUTE 




3452(K) 


RESEARCH & DEVELOPMENT 
ADMINISTRATOR 


DISPLAY 
EXTRACT 
BUDGE T ' 
$10,000 

PRINT 


B 


DISPLAY 
BUDGET - 
$5,000 


DISTRIBUTE 


USER 5 


DISPLAY ] 

EDIT 
SUBSET 
■$1000 


D15TCRY1 


BUDGET 
-$1000 


3454(5) 


USER 3 


DISPLAY 


BUDGET* 
$400 


DISPLAY 


BUDGET" 
$100 



DISPLAY] 
PRINT 


BUDGET 
■$500 


DISPLAY 


BUDGET 
■$100 



DISPLAY 



3454(5)