CN102026092B - Method and network for mobile multimedia broadcasting service key synchronization - Google Patents

Method and network for mobile multimedia broadcasting service key synchronization Download PDF

Info

Publication number
CN102026092B
CN102026092B CN200910092719.1A CN200910092719A CN102026092B CN 102026092 B CN102026092 B CN 102026092B CN 200910092719 A CN200910092719 A CN 200910092719A CN 102026092 B CN102026092 B CN 102026092B
Authority
CN
China
Prior art keywords
cas
cipher key
business cipher
business
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN200910092719.1A
Other languages
Chinese (zh)
Other versions
CN102026092A (en
Inventor
柯尊友
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
ZTE Corp
Original Assignee
ZTE Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by ZTE Corp filed Critical ZTE Corp
Priority to CN200910092719.1A priority Critical patent/CN102026092B/en
Priority to PCT/CN2010/073765 priority patent/WO2011032400A1/en
Priority to RU2012112904/08A priority patent/RU2507711C2/en
Publication of CN102026092A publication Critical patent/CN102026092A/en
Application granted granted Critical
Publication of CN102026092B publication Critical patent/CN102026092B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04HBROADCAST COMMUNICATION
    • H04H60/00Arrangements for broadcast applications with a direct linking to broadcast information or broadcast space-time; Broadcast-related systems
    • H04H60/09Arrangements for device control with a direct linkage to broadcast information or to broadcast space-time; Arrangements for control of broadcast-related services
    • H04H60/14Arrangements for conditional access to broadcast information or to broadcast-related services
    • H04H60/23Arrangements for conditional access to broadcast information or to broadcast-related services using cryptography, e.g. encryption, authentication, key distribution
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04HBROADCAST COMMUNICATION
    • H04H20/00Arrangements for broadcast or for distribution combined with broadcast
    • H04H20/53Arrangements specially adapted for specific applications, e.g. for traffic information or for mobile receivers
    • H04H20/57Arrangements specially adapted for specific applications, e.g. for traffic information or for mobile receivers for mobile receivers
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04HBROADCAST COMMUNICATION
    • H04H60/00Arrangements for broadcast applications with a direct linking to broadcast information or broadcast space-time; Broadcast-related systems
    • H04H60/35Arrangements for identifying or recognising characteristics with a direct linkage to broadcast information or to broadcast space-time, e.g. for identifying broadcast stations or for identifying users
    • H04H60/49Arrangements for identifying or recognising characteristics with a direct linkage to broadcast information or to broadcast space-time, e.g. for identifying broadcast stations or for identifying users for identifying locations
    • H04H60/51Arrangements for identifying or recognising characteristics with a direct linkage to broadcast information or to broadcast space-time, e.g. for identifying broadcast stations or for identifying users for identifying locations of receiving stations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/03Protecting confidentiality, e.g. by encryption
    • H04W12/033Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/04Key management, e.g. using generic bootstrapping architecture [GBA]
    • H04W12/043Key management, e.g. using generic bootstrapping architecture [GBA] using a trusted network node as an anchor
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2463/00Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00
    • H04L2463/062Additional details relating to network architectures or network communication protocols for network security covered by H04L63/00 applying encryption of the keys

Abstract

The invention provides a method and a network for mobile multimedia broadcasting service key synchronization. The method comprises the following steps that a plurality of area mobile-condition access systems (M-CASs) generate corresponding area service keys and synchronize the area service keys with a central mobile-condition access system through an area platform interface; the central mobile-condition access system generates a central service key and synchronizes a central service key and the area service keys with the area mobile-condition access systems through a central platform interface; and each area mobile-condition access system correspondingly stores the private information of an attributive mobile terminal, wherein the private information is used for authenticating the mobile terminal. The invention can reduce the synchronization data volume and supports the acquisition of the service key when in roaming.

Description

A kind of method of mobile multimedia broadcasting service key synchronization and network
Technical field
The present invention relates to China mobile multi-media broadcasting technology, relate in particular to a kind of method and network of mobile multimedia broadcasting service key synchronization.
Background technology
In mobile multimedia broadcast system, M-CAS (movement-CAS, CAS: condition receiving system) for user terminal provides SK (Service Key, business cipher key).
Roamer is carrying out SK while obtaining, and needs visited place M-CAS to provide SK for user terminal.The SK that user obtains can be visited place business SK, ownership place business SK, national business SK.Visited place business SK, ownership place business SK, national business SK generate and management at visited place M-CAS, ownership place M-CAS, central M-CAS respectively.For visited place M-CAS can provide SK for user terminal, it is synchronous that a kind of method is exactly first to carry out SK at each M-CAS of radio network.
How to provide a kind of business cipher key synchronous method, to reduce synchronous data volume, and while supporting terminal roaming in mobile multimedia broadcast system business cipher key the function such as obtain, be to have problem to be solved.
Summary of the invention
The method and the network that the object of this invention is to provide a kind of mobile multimedia broadcasting service key synchronization, can reduce synchronous data volume, and while supporting roaming, business cipher key obtains.
To achieve these goals, on the one hand, provide a kind of method of mobile multimedia broadcasting service key synchronization, comprising:
A plurality of region mobile condition receiving system M-CAS generate corresponding area business key, and by described area business key synchronization, give central M-CAS by regional platform interface;
Described central M-CAS generates central business cipher key, and by described central business cipher key and described area business key synchronization, gives described a plurality of region M-CAS by central platform interface;
Described in each, region M-CAS utilizes the private information of the mobile terminal of corresponding ownership, and described mobile terminal is signed to power.
Preferably, in above-mentioned method, described central business cipher key is the free corresponding business cipher key of secure service channel in the whole nation;
Described region M-CAS is for economizing M-CAS, and described area business key is the business cipher key of this province Ji Gaisheng jurisdiction districts and cities business;
Described in each, between the M-CAS of region, pass through business cipher key encipher interface transport service secret key encryption request and encrypt rear business cipher key.
Preferably, in above-mentioned method, described private information comprises order relations and the User Status of described mobile terminal.
Preferably, in above-mentioned method, also comprise:
Roaming place M-CAS in described a plurality of region M-CAS obtains request by the described business cipher key of the network application function entity mobile terminal receive of mobile communications network, and to ownership place M-CAS, sends described business cipher key encryption request according to the request of obtaining of described business cipher key;
Ownership place M-CAS in described a plurality of region M-CAS encrypts and asks to carry out authentication described business cipher key according to the described private information of the described mobile terminal of storage, after authentication is passed through, to described business cipher key be encrypted to encrypt after business cipher key, to described mobile terminal, return to business cipher key after described encryption.
Preferably, in above-mentioned method, the request of encrypting of described business cipher key comprises business key label SKID, Mobile Multimedia Broadcasting user ID CMMBSN and the mobile user identification of described mobile terminal; The request of encrypting of described business cipher key comprises the charging set meal sign that described SKID is corresponding.
Preferably, in above-mentioned method, described business cipher key is encrypted to the rear business cipher key of acquisition encryption and specifically comprises:
Described ownership place M-CAS sends described business cipher key and described CMMBSN to encryption equipment, and described encryption equipment is encrypted described business cipher key according to described CMMBSN, obtains business cipher key after described encryption.
The present invention also provides a kind of network of mobile multimedia broadcasting service key synchronization, comprises central mobile condition receiving system M-CAS and a plurality of region M-CAS,
Described a plurality of region M-CAS is used for: generate corresponding area business key, and by described area business key synchronization, give central M-CAS by regional platform interface;
Described central M-CAS is used for: generate central business cipher key, and by described central business cipher key and described area business key synchronization, give described a plurality of region M-CAS by central platform interface;
Described in each, region M-CAS is also for the private information of the mobile terminal of: corresponding stored ownership, and described private information is for signing power to described mobile terminal.
Preferably, in above-mentioned network, also comprise:
Described a plurality of region M-CAS comprises roaming place M-CAS, described roaming place M-CAS is used for: the described business cipher key of the network application function entity mobile terminal receive by mobile communications network obtains request, and according to the request of obtaining of described business cipher key, to ownership place M-CAS, sends described business cipher key and encrypt request;
Described a plurality of region M-CAS comprises ownership place M-CAS, described ownership place M-CAS is used for: according to the described private information of the described mobile terminal of storage, described business cipher key is encrypted and asked to carry out authentication, after authentication is passed through, to described business cipher key be encrypted to encrypt after business cipher key, to described mobile terminal, return to business cipher key after described encryption.
Preferably, in above-mentioned network, described central business cipher key is the free corresponding business cipher key of secure service channel in the whole nation;
Described region M-CAS is for economizing M-CAS, and described area business key is the business cipher key of this province business Ji Gaisheng jurisdiction districts and cities business;
Described in each, between the M-CAS of region, by business cipher key encipher interface, transmit described business cipher key and encrypt business cipher key after request and described encryption.
Preferably, in above-mentioned network, the request of encrypting of described business cipher key comprises business key label SKID, Mobile Multimedia Broadcasting user ID CMMBSN and the mobile user identification of described mobile terminal; The request of encrypting of described business cipher key comprises the charging set meal sign that described SKID is corresponding;
Described private information comprises order relations and the User Status of described mobile terminal;
Described ownership place M-CAS also has encryption equipment, and described encryption equipment is used for: according to described CMMBSN, described business cipher key is encrypted, obtains business cipher key after described encryption.
At least there is following technique effect in the present invention:
In the present invention, the private informations such as user profile, order relations are only in user ascription area M-CAS management, and private information does not need synchronously, and the own data volume of SK that will be synchronous is with respect to user profile, order relations etc., much less.Thereby the present invention reduced M-CAS synchrodata amount, M-CAS overall system performance, reliability have been promoted.The present invention has realized SK synchronously and SK obtains, and has supported preferably mobile multi-media broadcasting service.
Accompanying drawing explanation
Fig. 1 is the flow chart of steps of synchronous method of the present invention;
Fig. 2 is the synchronous schematic diagram of business cipher key of the present invention;
Fig. 3 is schematic network structure of the present invention;
Fig. 4 is that roaming terminal of the present invention obtains business cipher key schematic diagram.
Embodiment
For making object, technical scheme and the advantage of the embodiment of the present invention clearer, below in conjunction with accompanying drawing, specific embodiment is described in detail.
The present invention, in mobile multimedia broadcast system, provides a kind of business cipher key synchronous method, and while roaming for mobile multimedia broadcast system support terminal, business cipher key the function such as obtains.
Fig. 1 is the flow chart of steps of synchronous method of the present invention, and as shown in the figure, the method for mobile multimedia broadcasting service key synchronization comprises:
Step 101, a plurality of region mobile condition receiving system M-CAS generate corresponding area business key, and by described area business key synchronization, give central M-CAS by regional platform interface;
Step 102, described central M-CAS generates central business cipher key, and by described central business cipher key and described area business key synchronization, gives described a plurality of region M-CAS by central platform interface;
Step 103, the private information of the mobile terminal of region M-CAS corresponding stored ownership described in each, described private information is for signing power to described mobile terminal.
Wherein, described central M-CAS is central M-CAS, and described central business cipher key is the free corresponding business cipher key of secure service channel in the whole nation; Described region M-CAS is for economizing M-CAS, and described area business key is the business cipher key of this province business Ji Gaisheng jurisdiction districts and cities business; Described in each, between the M-CAS of region, pass through business cipher key encipher interface transport service secret key encryption request and encrypt rear business cipher key.
Fig. 2 is the synchronous schematic diagram of business cipher key of the present invention, and as shown in Figure 2, business cipher key synchronously specifically comprises following steps:
1), central M-CAS generates business cipher key corresponding to central business, and synchronous to each province M-CAS by IF1 interface (central platform interface).Especially, for the free secure service channel in all whole nations, use same business cipher key, by central M-CAS, generated, IF1 interface synchronization is to each province, and SKID consults configuration, and concrete value is referring to appendix: SKID coding rule.
2), each province M-CAS generates the business cipher key of this province's business, jurisdiction districts and cities business, and by IF2 interface (regional platform interface), to all business cipher keys of synchronous this province of central M-CAS.
3), central M-CAS is also by IF1 interface, the business cipher key transmitting on synchronous to other (or all provinces) synchronized transmission each province of provinceing, realize all business cipher keys of the whole network each province M-CAS, central M-CAS synchronously.
4), in addition, each province M-CAS can be to central M-CAS request synchronous service key, and this interface is optional.
5), user is when roam, M-CAS is economized by IF3 interface (business cipher key encipher interface) in user visiting ground, from user ascription area, economizes the business cipher key that M-CAS request user key is encrypted.
As shown in Figure 3, network configuration of the present invention comprises: M-CAS, mobile communications network NAF (network application function entity), mobile terminal etc.
M-CAS: be responsible for business cipher key management and synchronize, and ciphered program stream secrete key, the functions such as User Status and order relations management and authentication.
Mobile communications network NAF (network application function entity): major function is the encapsulation of finishing service key message and user key management and Service control.
Mobile terminal: comprise the mobile communication equipments such as mobile phone.Be responsible for receiving, representing ESG information, and the service of two-way request Mobile Multimedia Broadcasting, comprise and obtain SK, and represent the functions such as business tine.
In mobile multimedia broadcast system, the deployment of BOSS (Business Operation Support System, business operation support system), ESG (electron service instruction) Jun You districts and cities, province, central node.M-CAS is central authorities, the region networking structure of economizing more.
For CAS, the function of economize, central node being disposed is not quite similar.Described in form 1, form 2 and form 3.
Form 1 abbreviation
Abbreviation Original text Chinese implication
CAS Conditional Access System Condition receiving system
CMMB China Mobile Multimedia Broadcasting Mobile Multimedia Broadcasting
ESG Electronic Service Guide Electron service instruction
MBBMS Multimedia Broadcast Business Management System Multi-media broadcasting service management system (system of mobile communications network)
MUX Multiplexer Multiplexer
NAF Net Application Function Network application function
SG Service Guide Business guide
SK Service Key Business cipher key
SKG Service Key Generator Business cipher key generation module
STK Short Term Key Program current cipher key
STKMG Short Term Key Management and Generator ShortTermKey (program current cipher key) management and maker
UK User’s Key User key
UKMS User’s Key Management System User key management system
The functional module of form 2 central authorities, province and district city CAS
Figure G2009100927191D00061
Form 3 each functional modules are described
cAS condition receiving system module (main control module) realize mobile multi-media broadcasting service empowerment management and receive the functional module of controlling.Allow that authorized user uses a certain business, unwarranted user can not use this business.
uKMS user key management system module simultaneous user's information, order relations, obtain UK and use UK to encrypt the module of the correlation functions such as SK.
sKG business cipher key generation module the information such as synchronous set meal, business, generation, renewal, synchronous service key, and use business cipher key to encrypt the module of the correlation functions such as STK.
sTKMG shortTermKey management and generation module the module that obtains STK and encrypted the correlation functions such as rear encapsulation.
sK Collector business cipher key collection module the business cipher key that each province M-CAS is generated is synchronized to other and economizes M-CAS.
As shown in Figure 4, for roaming terminal of the present invention obtains business cipher key schematic diagram, comprise following technical step:
1). broadcasting and TV each province platform M-CAS and the synchronous SK of central M-CAS the whole network.
2). customer mobile terminal, by mobile communications network NAF, is economized M-CAS (R broadcasting and TV are economized M-CAS) to roaming place broadcasting and TV and is obtained SK request, and request message carries mobile user identification and CMMB user ID (CMMBSN), SKID etc.
3). the SKID that roaming place broadcasting and TV province M-CAS carries according to subscription request message searches corresponding PurchaseItemID, carry the one or more PurchaseItemID that find and economize M-CAS (H broadcasting and TV are economized M-CAS) request use this user (CMMBSN) user key to user ascription area broadcasting and TV, encrypt business cipher key corresponding to SKID.
4). ownership place broadcasting and TV are economized M-CAS this user's order relations and User Status are carried out to authentication, to encryption equipment, send SK, CMMBSN, and close rear SK is encrypted and obtains in request.
5). roaming place broadcasting and TV are economized M-CAS by close rear SK, send to mobile network to economize platform, and then send to terminal from response message.
In above-mentioned mobile multimedia broadcast system, SK is synchronous and obtain the interface message that flow process uses and can adopt as given a definition:
One, SK sync cap--IF1 and IF2
Radio network is inner to be used.Comprise:
The CAS--> each province M-CAS of central authorities, synchronous central business cipher key and other each province's business cipher keys;
Each province M-CAS--> central authorities M-CAS, the synchronously business cipher key of this province.
Form 6-1SKSync.REQ message
title type whether essential corresponding relation describe data type
sKSync.RE Q e m 1 key synchronization update notification request message
msgHeader e1 m 1 message header information msgHeader Schema
items e1 m 1 the list of upgrading
item e2 m 1..N the business cipher key upgrading
sKID e3 m 1 key identification, this identifies referring to appendix: SKID coding rule base64binar y
sKFlag e3 m 1 0: general service key; 1: encrypt coin free service key; Other: retain. integer
sK e3 m 1 business cipher key base64binar y
serviceIDLis t e3 m 1 the list of ServiceID
serviceID e4 m 1..N service identification unsignedSh ort
validFrom e3 m 1 the time that this business cipher key comes into effect, ECMG brings into use the time of this business cipher key ciphered program stream secrete key dateTime
validTo e3 m 1 the deadline of this business cipher key term of validity, ECMG does not re-use the time of this business cipher key ciphered program stream secrete key dateTime
cityID e3 m 1 business place districts and cities.4 10 system numbers, for example 0010 represents Beijing.City's sign (4 trunk codes, 4 of less thaies mend 0 above) 0000: the whole nation 1111: this province, needs further to use RegionID identification region string
regionID e3 m 1 this business location domain information.The administrative area code of the whole network unified definition regionid ,Yi provincial capital (municipality directly under the Central Government) is sign, adopts the consolidation form of 3 position digital codings, removes 0 first place, and the mantissa that less than is 3 mends 0.In detail string
appendix B is shown in definition.
mode e3 m 1 mode comes into force.0: be the key of this month, come into force at once 1: be the key of next month, come into force next month integer
mDate e3 m 1 be key generation time for the first time; It is the last security key change time later. DateTime
Manually upgrading in the situations such as SK, may exist within same month, have two or more SK, now Mode value 0.
Form 6-2SKSync.RES message
Title Type Whether essential Corresponding relation Describe Data type
SKSync.RES E M 1 Key updating push-notification-answer message
MsgHeader E1 M 1 Message header information MsgHeader Schema
Result E1 M 1 Return value integer
Desc E1 O 0..1 Descriptor to the return value of Result sign string
Two, encrypt SK interface-IF3
Radio network is inner to be used.
Roaming economizes platform M-CAS-> ownership and economizes interface use between platform M-CAS system.
Form 6-3 encrypts SK request message
Title Type Whether essential Corresponding relation Explanation Data type
SKEncrypt.R E M 1 Between M-CAS system
eQ
msgHeader e1 m 1 message header information msgHeade rSchema
userID e1 m 1 mobile network user sign string
cMMBSN e1 m 1 open mobile TV user's CMMB sequence number string
homeRegion ID e1 m 1 the ownership place at this user place.The administrative area code of the whole network unified definition regionid ,Yi provincial capital (municipality directly under the Central Government) is sign, adopts the consolidation form of 3 position digital codings, removes 0 first place, and the mantissa that less than is 3 mends 0.Specific definition is shown in appendix B. string
items e1 m 1 business cipher key list
item e2 m 1..N the business cipher key that request is encrypted
sKID e3 m 1 key identification base64bin ary
PurchaseItem ID E3 M 1...N Set meal sign
Form 6-4 encrypts SK response message
Title Type Whether essential Corresponding relation Explanation Data type
SKEncrypt. RES E M 1 Between M-CAS system
MsgHeader E1 M 1 Message header information MsgHeaderS chema
UserID E1 M 1 Mobile network user sign String
CMMBSN E1 M 1 Open mobile TV user's CMMB sequence number string
Items E1 M 1 Business cipher key list
Item E2 M 1..N Business cipher key and error code
Result E3 M 1 Return value integer
Desc E3 O 0..1 Descriptor to the return value of Result sign string
SKID E3 M 1 Key identification Base64binary
SK E3 M 1 Use the business cipher key after radio and television users secret key encryption Base64binary
In a word, the invention provides a kind of synchronous method of business cipher key, while roaming for mobile multimedia broadcast system support terminal, business cipher key the function such as obtains.
In the present invention, the information that between M-CAS, active synchronization BOSS does not manage.These information comprise: information, the order relations such as user profile, package information, business.These information of central authorities, province CAS are all from the BOSS synchronization gain of corresponding central authorities, province, and user profile, order relations are only managed at user ascription area M-CAS.And the data volume of SK own is with respect to user profile, order relations etc., much less.Thereby the present invention reduced M-CAS synchrodata amount, M-CAS overall system performance, reliability have been promoted.And exploitation of innovation ground method has realized synchronous and has obtained SK, has supported preferably mobile multi-media broadcasting service.
The above is only the preferred embodiment of the present invention; it should be pointed out that for those skilled in the art, under the premise without departing from the principles of the invention; can also make some improvements and modifications, these improvements and modifications also should be considered as protection scope of the present invention.

Claims (8)

1. a method for mobile multimedia broadcasting service key synchronization, is characterized in that, comprising:
A plurality of region mobile condition receiving system M-CAS generate corresponding area business key, and by described area business key synchronization, give central M-CAS by regional platform interface;
Described central M-CAS generates central business cipher key, and by described central business cipher key and described area business key synchronization, gives described a plurality of region M-CAS by central platform interface;
Described in each, region M-CAS utilizes the private information of the mobile terminal of corresponding ownership, and described mobile terminal is signed to power;
Roaming place M-CAS in described a plurality of region M-CAS obtains request by the business cipher key of the network application function entity mobile terminal receive of mobile communications network, and to ownership place M-CAS, sends business cipher key encryption request according to the request of obtaining of described business cipher key;
Ownership place M-CAS in described a plurality of region M-CAS encrypts and asks to carry out authentication described business cipher key according to the described private information of the described mobile terminal of storage, after authentication is passed through, to described business cipher key be encrypted to encrypt after business cipher key, to described mobile terminal, return to business cipher key after described encryption.
2. method according to claim 1, is characterized in that,
Described central business cipher key is the free corresponding business cipher key of secure service channel in the whole nation;
Described region M-CAS is for economizing M-CAS, and described area business key is the business cipher key of this province Ji Gaisheng jurisdiction districts and cities business;
Described in each, between the M-CAS of region, pass through business cipher key encipher interface transport service secret key encryption request and encrypt rear business cipher key.
3. method according to claim 1 and 2, is characterized in that, described private information comprises order relations and the User Status of described mobile terminal.
4. method according to claim 1, is characterized in that, the request of encrypting of described business cipher key comprises business key label SKID, Mobile Multimedia Broadcasting user ID CMMBSN and the mobile user identification of described mobile terminal; The request of encrypting of described business cipher key comprises the charging set meal sign that described SKID is corresponding.
5. method according to claim 4, is characterized in that, described business cipher key is encrypted to the rear business cipher key of acquisition encryption and specifically comprises:
Described ownership place M-CAS sends described business cipher key and described CMMBSN to encryption equipment, and described encryption equipment is encrypted described business cipher key according to described CMMBSN, obtains business cipher key after described encryption.
6. a network for mobile multimedia broadcasting service key synchronization, comprises central mobile condition receiving system M-CAS and a plurality of region M-CAS, it is characterized in that,
Described a plurality of region M-CAS is used for: generate corresponding area business key, and by described area business key synchronization, give central M-CAS by regional platform interface;
Described central M-CAS is used for: generate central business cipher key, and by described central business cipher key and described area business key synchronization, give described a plurality of region M-CAS by central platform interface;
Described in each, region M-CAS is also for the private information of the mobile terminal of: corresponding stored ownership, and described private information is for signing power to described mobile terminal;
Also comprise:
Described a plurality of region M-CAS comprises roaming place M-CAS, described roaming place M-CAS is used for: the business cipher key of the network application function entity mobile terminal receive by mobile communications network obtains request, and according to the request of obtaining of described business cipher key, to ownership place M-CAS, sends business cipher key and encrypt request;
Described a plurality of region M-CAS comprises ownership place M-CAS, described ownership place M-CAS is used for: according to the described private information of the described mobile terminal of storage, described business cipher key is encrypted and asked to carry out authentication, after authentication is passed through, to described business cipher key be encrypted to encrypt after business cipher key, to described mobile terminal, return to business cipher key after described encryption.
7. network according to claim 6, is characterized in that,
Described central business cipher key is the free corresponding business cipher key of secure service channel in the whole nation;
Described region M-CAS is for economizing M-CAS, and described area business key is the business cipher key of this province business Ji Gaisheng jurisdiction districts and cities business;
Described in each, between the M-CAS of region, by business cipher key encipher interface, transmit described business cipher key and encrypt business cipher key after request and described encryption.
8. network according to claim 6, is characterized in that,
The request of encrypting of described business cipher key comprises business key label SKID, Mobile Multimedia Broadcasting user ID CMMBSN and the mobile user identification of described mobile terminal; The request of encrypting of described business cipher key comprises the charging set meal sign that described SKID is corresponding;
Described private information comprises order relations and the User Status of described mobile terminal;
Described ownership place M-CAS also has encryption equipment, and described encryption equipment is used for: according to described CMMBSN, described business cipher key is encrypted, obtains business cipher key after described encryption.
CN200910092719.1A 2009-09-16 2009-09-16 Method and network for mobile multimedia broadcasting service key synchronization Expired - Fee Related CN102026092B (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
CN200910092719.1A CN102026092B (en) 2009-09-16 2009-09-16 Method and network for mobile multimedia broadcasting service key synchronization
PCT/CN2010/073765 WO2011032400A1 (en) 2009-09-16 2010-06-10 Method and network for synchronizing mobile multimedia broadcast service key, and region mobile conditional access system
RU2012112904/08A RU2507711C2 (en) 2009-09-16 2010-06-10 Method and network for synchronising mobile multimedia broadcast service key and regional mobile conditional access system

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN200910092719.1A CN102026092B (en) 2009-09-16 2009-09-16 Method and network for mobile multimedia broadcasting service key synchronization

Publications (2)

Publication Number Publication Date
CN102026092A CN102026092A (en) 2011-04-20
CN102026092B true CN102026092B (en) 2014-03-12

Family

ID=43758060

Family Applications (1)

Application Number Title Priority Date Filing Date
CN200910092719.1A Expired - Fee Related CN102026092B (en) 2009-09-16 2009-09-16 Method and network for mobile multimedia broadcasting service key synchronization

Country Status (3)

Country Link
CN (1) CN102026092B (en)
RU (1) RU2507711C2 (en)
WO (1) WO2011032400A1 (en)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
AU2013255471B2 (en) * 2012-05-03 2016-11-17 Telefonaktiebolaget L M Ericsson (Publ) Centralized key management in eMBMS
EP3662653B1 (en) * 2017-08-03 2023-08-02 IPCom GmbH & Co. KG Ue adapted to transmit service validation messages

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101448256A (en) * 2008-12-02 2009-06-03 中兴通讯股份有限公司 Method for managing mobile multimedia broadcasting service operation and system thereof
CN101478725A (en) * 2009-01-24 2009-07-08 中兴通讯股份有限公司 Service cipher key synchronization method and system

Family Cites Families (9)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20030235305A1 (en) * 2002-06-20 2003-12-25 Hsu Raymond T. Key generation in a communication system
JP4848421B2 (en) * 2005-04-22 2011-12-28 トムソン ライセンシング Secure anonymous wireless LAN access mechanism
US8135645B2 (en) * 2005-12-06 2012-03-13 Microsoft Corporation Key distribution for secure messaging
CN101030849B (en) * 2006-03-01 2010-10-27 华为技术有限公司 Method and system for realizing packet key synchronization between multiple base stations
RU2006114900A (en) * 2006-05-03 2007-11-20 Самсунг Электроникс Ко., Лтд. (KR) METHOD OF DISTRIBUTED KEY MANAGEMENT BASED ON THE PRELIMINARY KEY DISTRIBUTION SCHEME
CN1845599B (en) * 2006-05-17 2010-09-01 中国移动通信集团公司 Method for obtaining and updating service key in mobile television service
US8189544B2 (en) * 2006-06-26 2012-05-29 Alcatel Lucent Method of creating security associations in mobile IP networks
FI122847B (en) * 2006-10-23 2012-07-31 Valimo Wireless Oy Procedure and system for secure registration of a Public Key Infrastructure (PKI) key in a mobile environment
US7941663B2 (en) * 2007-10-23 2011-05-10 Futurewei Technologies, Inc. Authentication of 6LoWPAN nodes using EAP-GPSK

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101448256A (en) * 2008-12-02 2009-06-03 中兴通讯股份有限公司 Method for managing mobile multimedia broadcasting service operation and system thereof
CN101478725A (en) * 2009-01-24 2009-07-08 中兴通讯股份有限公司 Service cipher key synchronization method and system

Also Published As

Publication number Publication date
WO2011032400A1 (en) 2011-03-24
RU2507711C2 (en) 2014-02-20
CN102026092A (en) 2011-04-20
RU2012112904A (en) 2013-10-27

Similar Documents

Publication Publication Date Title
CN101061666B (en) Method for managing digital rights in broadcast/multicast service
CN102197631B (en) Method and apparatus for billing and security architecture for venue-cast services
CN101981864B (en) Method and apparatus for providing broadcast service using encryption key in a communication system
CN1845599B (en) Method for obtaining and updating service key in mobile television service
US20060115084A1 (en) Conditional access for a multimedia broadcast service using a wireless terminal
CN101009553A (en) Secret key safety method and system for realizing multi-network integration mobile multi-media broadcasting system
CN102057619A (en) Encryption key distribution method in mobile broadcasting system and system for the same
CN102045639B (en) Order relation authentication method, system and receiving system of mobile multimedia broadcasting condition
CN104782075A (en) Security for mobility between MBMS servers
CN102026092B (en) Method and network for mobile multimedia broadcasting service key synchronization
US20100106648A1 (en) Method and apparatus for acquiring encryption key to provide pay channel
CN100433684C (en) Method, system and application server for providing broadcast multicast service
CN101917671B (en) Method for managing authentication parameters and terminal
CN100505906C (en) An access method for integrating mobile multi-media broadcast channel in the network
CN101621390B (en) Protection method and system thereof for data download service in broadcast multicast
CN101267294B (en) Secret key distribution method
CN101442661B (en) Method and mobile terminal for playing stream medium program
CN101267590A (en) Service unsubscription method and system, mobile terminal, card and service server
CN101478725B (en) Service cipher key synchronization method and system
CN101394243B (en) System and method for realizing mobile multimedia broadcast service
CN101212641A (en) Encryption and authorization method for DTV conditional receiving system
CN101162991B (en) System and method for performing authorization to broadcast service content
CN1863045B (en) Method for receiving and deleting media data key
CN102123390A (en) Method, device and terminal for processing service keys
CN101784013B (en) Safe multicasting method and system based on service

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20140312

Termination date: 20200916