Platform-hardened digital rights management key provisioning

What is claimed is: 1. A processor comprising: a hardware access control unit to restrict access to the memory space of a secure enclave; and an instruction decoder circuit to decode a first instruction, wherein the first instruction is a secure-enclave-create instruction to be executed to create the secure enclave in which to run an application to request digital rights management (DRM) provisioning information from a provisioning server, to receive a first key component from the provisioning server, to request authentication from a verification server, to generate a second key component, to provide proof of authentication to the provisioning server, to send the second key component to the provisioning server, to generate a shared secret key, to receive the DRM provisioning information from the provisioning server, to decrypt the DRM provisioning information using the shared secret key, to seal the DRM provisioning information to the secure enclave, to store the sealed DRM provisioning information in a non-volatile memory, to unseal the DRM provisioning information in the secure enclave, and to use the content from a content server without repeating the requesting of DRM provisioning information from the provisioning server, wherein the seal is to be performed using a second instruction of the processor, wherein the second instruction is a secure-enclave-seal instruction. 2. The processor of claim 1 , wherein the digital rights management (DRM) provisioning information includes a Digital Transmission Content Protection key. 3. The processor of claim 1 , wherein the authentication involves an Enhanced Protection ID algorithm. 4. The processor of claim 1 , wherein the application in the secure enclave is also to generate an identity report. 5. The processor of claim 4 , wherein the application in the secure enclave is to use an Enhanced Protection ID (EPID) private key, the identity report. 6. The processor of claim 5 , wherein requesting authentication includes sending the signed identity report to the verification server. 7. The processor of claim 6 , wherein the application in the secure enclave is also to receive, from the verification server, the proof of authentication, wherein the authentication involves verifying the signed identity report. 8. The processor of claim 7 , wherein verifying the signed identity report uses an EPID public key corresponding to the EPID private key. 9. A system comprising: a non-volatile memory; and a processor including a hardware access control unit to restrict access to the memory space of a secure enclave, wherein the processor is to execute a secure-enclave-create instruction to create the secure enclave in which to run an application to request digital rights management (DRM) provisioning information from a provisioning server, to receive a first key component from the provisioning server, to request authentication from a verification server, to generate a second key component, to provide proof of authentication to the provisioning server, to send the second key component to the provisioning server, to generate a shared secret key, to receive the DRM provisioning information from the provisioning server, to decrypt the DRM provisioning information using the shared secret key, to seal the DRM provisioning information to the secure enclave, to store the sealed DRM provisioning information in the non-volatile memory, to unseal the DRM provisioning information in the secure enclave, and to use the content from a content server without repeating the requesting of DRM provisioning information from the provisioning server, wherein the seal is to be performed using a secure-enclave-seal instruction of the processor. 10. The system of claim 9 wherein the DRM provisioning information includes a Digital Transmission Content Protection key.