EP2047680A1 - Method for generating the counter block value - Google Patents

Method for generating the counter block value

Info

Publication number
EP2047680A1
EP2047680A1 EP07768840A EP07768840A EP2047680A1 EP 2047680 A1 EP2047680 A1 EP 2047680A1 EP 07768840 A EP07768840 A EP 07768840A EP 07768840 A EP07768840 A EP 07768840A EP 2047680 A1 EP2047680 A1 EP 2047680A1
Authority
EP
European Patent Office
Prior art keywords
value
counter
message
counter block
generating
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP07768840A
Other languages
German (de)
French (fr)
Other versions
EP2047680A4 (en
Inventor
Jin-Hwan Lee
Yong-Hoon Lee
Young-Kwon Hahm
Chung-Hyun Ahn
Soo-In Lee
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Electronics and Telecommunications Research Institute ETRI
Original Assignee
Electronics and Telecommunications Research Institute ETRI
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Electronics and Telecommunications Research Institute ETRI filed Critical Electronics and Telecommunications Research Institute ETRI
Priority to EP14153685.4A priority Critical patent/EP2739045A3/en
Publication of EP2047680A1 publication Critical patent/EP2047680A1/en
Publication of EP2047680A4 publication Critical patent/EP2047680A4/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04HBROADCAST COMMUNICATION
    • H04H40/00Arrangements specially adapted for receiving broadcast information
    • H04H40/18Arrangements characterised by circuits or components specially adapted for receiving
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04HBROADCAST COMMUNICATION
    • H04H60/00Arrangements for broadcast applications with a direct linking to broadcast information or broadcast space-time; Broadcast-related systems
    • H04H60/02Arrangements for generating broadcast information; Arrangements for generating broadcast-related information with a direct linking to broadcast information or to broadcast space-time; Arrangements for simultaneous generation of broadcast information and broadcast-related information
    • H04H60/07Arrangements for generating broadcast information; Arrangements for generating broadcast-related information with a direct linking to broadcast information or to broadcast space-time; Arrangements for simultaneous generation of broadcast information and broadcast-related information characterised by processes or methods for the generation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/23Processing of content or additional data; Elementary server operations; Server middleware
    • H04N21/234Processing of video elementary streams, e.g. splicing of video streams, manipulating MPEG-4 scene graphs
    • H04N21/2347Processing of video elementary streams, e.g. splicing of video streams, manipulating MPEG-4 scene graphs involving video stream encryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
    • H04N21/4405Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
    • H04N21/4408Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream encryption, e.g. re-encrypting a decrypted video stream for redistribution in a home network

Definitions

  • the present invention relates to a method for generating a counter block value; and, more particularly, to a method for simply processing a counter block value without additionally transmitting/receiving the counter block value.
  • This work was partly supported by the Information Technology (IT) research and development program of the Korean Ministry of Information and Communication (MIC) and the Korean Institute for Information Technology Advancement (IITA) [2005-S-403-02, "Development of Super- intelligent Multimedia Anytime-anywhere Realistic TV (SmarTV) Technology"] .
  • DAB Digital Audio Broadcasting
  • Eureka- 147 provides not only digital audio broadcasting service but also diverse multimedia services, such as slide show, broadcast web sites, traffic and travelers information service.
  • multimedia services such as slide show, broadcast web sites, traffic and travelers information service.
  • DMB Digital Multimedia Broadcasting
  • the frame configuration of the Eureka-147 includes an audio service part, a video service part, and a data service part. Information on each service is multiplexed and transmitted on the basis of a 24-msec unit frame.
  • a DMB transmission frame is formed of a synchronization channel, a Fast Information Channel (FIC), and a Main Service Channel (MSC) .
  • FIC Fast Information Channel
  • MSC Main Service Channel
  • An FIC includes a plurality of fast information blocks (FIBs), and an MSC includes a plurality of common interleaved frames (CIFs) .
  • FIBs fast information blocks
  • MSC common interleaved frames
  • the CIFs include video data and audio data
  • the FIBs include information on the configuration of the data included in the CIFs.
  • Each of the FIGs includes a fast information group (FIG), which transmits signals for setting up parameters for conditional access.
  • the first FIB of each transmission frame includes a CIF count information.
  • the CIF count information is transmitted by being carried on the FIG.
  • the CIF count information is used to calculate a corresponding CIF count value and the data are encoded/decoded on a unit of CIF basis.
  • the CIF count value is 13-bit-long and the counter operates in a 5,000 binary.
  • a conditional access synchronization parameter (CASyncParam) is used in a process of descrambling a message in a receiver to synchronize the message with a descrambler or another function of the receiver.
  • the conditional access synchronization parameter (CASyncParam) is transmitted by being carried on a prefix of a message to be scrambled or descrambled.
  • the conditional access parameter (CASyncParam) delivers a message identifier as well as toggle information representing a change of a control word and a CIF count value . Whether a particular content is accessible is determined by a receiver in a Conditional Access System (CAS) . Those who pay for the content can use the content in the conditional access system.
  • CAS Conditional Access System
  • a conditional access system requires scrambling and descrambling functions to protect a content from unauthorized users, an entitlement control function and an entitlement management function to provide a content only those who have made a predetermined payment.
  • scrambling is a technique for deforming a content using a control word (CW) to protect the content from unauthorized users.
  • a transmitter needs encryption to protect the scrambled content and the control word to be transmitted to a decryptor of a receiver.
  • the receiver needs the same secrete key that the transmitter has to execute descrambling.
  • the entitlement control is a technique for encrypting the control word.
  • Encrypted control word is transmitted to the receiver by being carried on an entitlement control message (ECM) .
  • ECM entitlement control message
  • the entitlement control message is periodically transmitted for the sake of security, and the transmitted entitlement control message includes an encrypted control word.
  • the entitlement control message also includes a control parameter.
  • the receiver compares the control parameter included in the transmitted entitlement control message with an authorization parameter stored in the receiver, determines whether a user has an authority for accessing to a content. When it is determined that the user has an access authority, the receiver decrypts the control word using the secrete key and descrambles the received content using the decrypted control word.
  • control word and a counter block value that is changed for each counter block are required.
  • ETSI European Telecommunication Standards Institute
  • TS 102 367 which is the international standard for conditional access to terrestrial DMB contents defines three conditional access modes according to a scrambling method: sub-channel conditional access, a data group conditional access, and a Multimedia Object Transfer
  • MOT conditional access
  • Scrambling and descrambling are executed for each message in a content.
  • one message to be scrambled should be processed continuously, and the control word used for scrambling or descrambling one message should not be changed.
  • the length of messages to be scrambled or descrambled is different and message transmission periods are not the same, either.
  • a message transmission/reception period is the same as CIF, which is 24msec.
  • the message transmission/reception period is not regular and a message may be transmitted/received over one or more CIFs.
  • the scrambling method is divided into two types: a block encryption and a stream encryption.
  • the block encryption method such as an Advanced Encryption Standard (AES) is superior to the stream encryption with respect to the security.
  • AES Advanced Encryption Standard
  • NIST Special Publication 800-38A which is recommended standard for the use of the block encryption method, suggests five AES standard operation modes.
  • the NIST Special Publication 800-38A defines the following five modes: an Electric Code Book (ECB) mode, a Cipher Block Chaining (CBC) mode, a Cipher
  • CFB Feedback Feedback
  • OFB Output Feedback
  • the present invention involves in the counter mode among the five block encryption methods .
  • the NIST Special Publication 800-38A suggests two methods to set up a counter block value of a message to be scrambled.
  • the counter block value denotes a value given differently for each block to execute scrambling or descrambling in the counter mode.
  • the counter mode of block encryptions which is used in a scrambler, a message is divided into a plurality of blocks and the blocks are scrambled.
  • the first counter block value of a message is a value obtained by adding a predetermined number to the last counter block value of a previous message.
  • the first counter block value of the first message is initialized to "0" and a value increased by "1" for each block is used as a counter block value.
  • the first counter block value of the second message is a value obtained by adding "1" to the last counter block value of the first message.
  • the above-described method cannot normally present the content to the user, because the changed channel needs a new control word and no counter block value is known until the new control word is received.
  • the method has a shortcoming that a user should wait until a new control word is received whenever a channel is changed.
  • the second method is similar to the first method for a half-bit part of a counter block.
  • the first counter block value of each message is initialized to "0" and each of the subsequent counter block values increases by "1" in one message.
  • the other half-bit part of the counter block includes an identifier having values that are not overlapped with other messages.
  • the second method also has a problem in that frequency is consumed to transmit the identifier to the receiver so that each message has a different identifier.
  • Fig. 1 illustrates a counter mode of block encryptions that is used in a conventional scrambler/descrambler .
  • a scrambler scrambles a content, which is a sequence of counter blocks, using a control word, and the control word varies into random numbers at a period of several to scores of seconds to be protected from being hacked.
  • the counter mode of block encryptions which is used as a scrambler, a content is divided into a plurality of blocks and scrambled.
  • the counter values of the blocks which will be referred to as counter block values herein, should be different from each other.
  • Ciphers 111, 112,... Hn of the scrambler outputs encrypted data for each counter block using the control word and the counter block values, which are different for each block.
  • XOR operators 121, 122, ... 12n of the scrambler executes XOR operation onto the encrypted output data and the unscrambled counter blocks that are divided into n.
  • the operation result of the XOR operators in the scrambler is a scrambled content.
  • Deciphers 131, 132,... 13n of a descrambler decrypts the scrambled content using the same counter block values and control word that are used in the scrambler.
  • the ciphers have two types. One is a forward cipher and the other is a backward cipher.
  • the deciphers of a descrambler used in the counter mode are same as the forward ciphers of the scrambler.
  • the counter mode of block encryptions requires transmitting a control word and counter block values from the transmitter to the receiver, and frequency is used to transmit the counter block values that are different for each counter block. Thus, it is inefficient with the respect of using frequency.
  • An embodiment of the present invention is directed to providing a method for generating counter block values that are not repeated throughout the blocks while the same control word is used in order not to additionally transmit counter block values in a scrambling or descrambling process.
  • the method of the present invention generates counter block values by combining CIF count values and counters. Since counter block values are not additionally transmitted, frequency utility efficiency can be increased.
  • Fig. 1 illustrates a counter mode of block encryptions that is used in conventional scramblers and descramblers .
  • Fig. 2 is a flowchart describing a method for generating counter block values required in a scrambler or descrambler in accordance with an embodiment of the present invention.
  • a method for generating a counter block value required by a scrambler or a descrambler which includes the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing a Common Interleaved Frame (CIF) count value corresponding to the initial part of the message in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the CIF count value stored in the step b) and the counter increased in the step c) .
  • CIF Common Interleaved Frame
  • a method for generating a counter block value required by a scrambler or a descrambler which includes the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing an identifier of the message carried on a conditional access synchronization parameter
  • CASyncParam in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the identifier of the message stored in the step b) and the counter increased in the step c) .
  • a method for generating a counter block value required by a scrambler or a descrambler which includes the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing an initialization counter block value in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the initialization counter block value stored in the step b) and the counter increased in the step c) .
  • a method for generating a counter block value required by a scrambler or a descrambler which includes the steps of: a) extracting a first value from data received or to be transmitted; b) generating a second value altering for each counter block of a unit message; and c) generating the counter block value by using the first value and the second value.
  • the first value may be a Common Interleaved Frame (CIF) count value corresponding to the initial part of a message or a value included in a conditional access synchronization parameter.
  • CIF Common Interleaved Frame
  • Examples of the value included in a conditional access synchronization parameter are an identifier of the message and an initialization counter value.
  • the second value is initialized on a basis of a unit message and the second value alters as much as a predetermined value for each of the counter blocks of the unit message.
  • a control word alters at several to scores of seconds, and a Common Interleaved Frame (CIF) count values increase by "1" at every 24msec. Since the increment period of the CIF count values is shorter than the alteration period of the control word, the CIF count value may be used for part of counter block values. Also, the identifier of a message that can be transmitted by being carried on a conditional access synchronization parameter (CASyncParam) may be used for part of the counter block values instead of the CIF count values.
  • CASyncParam conditional access synchronization parameter
  • the initialization counter block value defined in conditional access modes of terrestrial DMB contents which are a sub-channel scrambling mode, a data group scrambling mode, and an MOT scrambling mode, may be used as the identifier of a message for part of the counter block values instead of the CIF count values.
  • the initialization counter block value is included in a conditional access prefix (CAPrefix) for each message and transmitted in a terrestrial DMB conditional access method.
  • CAPrefix conditional access prefix
  • the initialization counter block value may be disposed in the second and third bytes when a padding packet indicator is "0," or it is disposed in the third and fourth bytes when the padding packet indicator is "1.”
  • the initialization counter block value may be disposed in the first byte.
  • the initialization counter block value may be disposed in the first and second bytes.
  • Fig. 2 is a flowchart describing a method for generating counter block values required in a scrambler or descrambler in accordance with an embodiment of the present invention.
  • the drawing shows an embodiment using a CIF count value.
  • the initialization counter block value may be used as the identifier of a message, instead of the CIF count value.
  • step S201 when a message is inputted, it is determined in step S201 whether a counter block to be scrambled or descrambled is the initial part of the message .
  • step S203 a CIF count value corresponding to the initial part of the message is stored.
  • step S205 when the counter block is the initial part of the message, a counter of the message is initialized into a predetermined initial value. Subsequently, the initialized counter of the message alters by a predetermined value in step S207. For example, the counter may increase as much as the predetermined value for each counter block of a unit message . Meanwhile, when the counter block is not the initial part of the message, the counter alters, for example, increases, as much as the predetermined value for each counter block of a unit message in the step S207.
  • a counter block value is generated using the stored CIF count value and the counter of the message that is increased by the predetermined value in step S209.
  • the counter block value may be generated by simply combining the stored CIF count value and the counter of the message that is increased by the predetermined value, or by executing a predetermined operation.
  • the stored CIF count value is a CIF count value corresponding to the initial part of the message. For example, when a 128-bit counter block value is generated, the 13 most significant bits (MSB) use the CIF count value and the remaining 115 least significant bits (LSB) use the counter of the message.
  • the counter block of each block is generated in the above-described method. Therefore, it is possible to generate counter block values used in a scrambler and a descrambler without transmitting the counter block values.
  • the method of the present invention described in the above may be realized as a program and stored in a computer-readable recording medium, such as CD-ROM, RAM, ROM, floppy disks, hard disks, and magneto-optical disks. Since the process can be easily implemented by those skilled in the art to which the present invention pertains, detailed description will not be provided herein.
  • the present invention provides a method for generating counter block values not repeated throughout the blocks of a message as long as the same control word is used without additionally transmitting the counter block values in a process of scrambling or descrambling.

Abstract

Provided is a method for simply generating counter block values without additionally transmitting the counter block values. The method for generating a counter block value required by a scrambler or a descrambler includes the steps of : a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing a Common Interleaved Frame (CIF) count value corresponding to the initial part of the message in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the CIF count value stored in the step b) and the counter increased in the step c).

Description

DESCRIPTION
METHOD FOR GENERATING THE COUNTER BLOCK VALUE
TECHNICAL FIELD The present invention relates to a method for generating a counter block value; and, more particularly, to a method for simply processing a counter block value without additionally transmitting/receiving the counter block value. This work was partly supported by the Information Technology (IT) research and development program of the Korean Ministry of Information and Communication (MIC) and the Korean Institute for Information Technology Advancement (IITA) [2005-S-403-02, "Development of Super- intelligent Multimedia Anytime-anywhere Realistic TV (SmarTV) Technology"] .
BACKGROtJND ART
Digital Audio Broadcasting (DAB) based on Eureka- 147 provides not only digital audio broadcasting service but also diverse multimedia services, such as slide show, broadcast web sites, traffic and travelers information service. The standard and technology for providing the
Eureka-147-based DAB technology with a moving picture video service is Digital Multimedia Broadcasting (DMB) standard and technology.
The frame configuration of the Eureka-147 includes an audio service part, a video service part, and a data service part. Information on each service is multiplexed and transmitted on the basis of a 24-msec unit frame.
A DMB transmission frame is formed of a synchronization channel, a Fast Information Channel (FIC), and a Main Service Channel (MSC) .
An FIC includes a plurality of fast information blocks (FIBs), and an MSC includes a plurality of common interleaved frames (CIFs) .
The CIFs include video data and audio data, and the FIBs include information on the configuration of the data included in the CIFs. Each of the FIGs includes a fast information group (FIG), which transmits signals for setting up parameters for conditional access. The first FIB of each transmission frame includes a CIF count information. In other words, the CIF count information is transmitted by being carried on the FIG. The CIF count information is used to calculate a corresponding CIF count value and the data are encoded/decoded on a unit of CIF basis. The CIF count value is 13-bit-long and the counter operates in a 5,000 binary.
Also, a conditional access synchronization parameter (CASyncParam) is used in a process of descrambling a message in a receiver to synchronize the message with a descrambler or another function of the receiver. The conditional access synchronization parameter (CASyncParam) is transmitted by being carried on a prefix of a message to be scrambled or descrambled. The conditional access parameter (CASyncParam) delivers a message identifier as well as toggle information representing a change of a control word and a CIF count value . Whether a particular content is accessible is determined by a receiver in a Conditional Access System (CAS) . Those who pay for the content can use the content in the conditional access system.
In general, a conditional access system requires scrambling and descrambling functions to protect a content from unauthorized users, an entitlement control function and an entitlement management function to provide a content only those who have made a predetermined payment. First, scrambling is a technique for deforming a content using a control word (CW) to protect the content from unauthorized users. A transmitter needs encryption to protect the scrambled content and the control word to be transmitted to a decryptor of a receiver. The receiver needs the same secrete key that the transmitter has to execute descrambling.
The entitlement control is a technique for encrypting the control word. Encrypted control word is transmitted to the receiver by being carried on an entitlement control message (ECM) . The entitlement control message is periodically transmitted for the sake of security, and the transmitted entitlement control message includes an encrypted control word. The entitlement control message also includes a control parameter. The receiver compares the control parameter included in the transmitted entitlement control message with an authorization parameter stored in the receiver, determines whether a user has an authority for accessing to a content. When it is determined that the user has an access authority, the receiver decrypts the control word using the secrete key and descrambles the received content using the decrypted control word.
In order to encrypt and decrypt a content in a scrambler and a descrambler using a counter mode of block encryptions, the control word and a counter block value that is changed for each counter block are required.
Meanwhile, the European Telecommunication Standards Institute (ETSI) Technical Specification (TS) 102 367, which is the international standard for conditional access to terrestrial DMB contents defines three conditional access modes according to a scrambling method: sub-channel conditional access, a data group conditional access, and a Multimedia Object Transfer
(MOT) conditional access. Scrambling and descrambling are executed for each message in a content. Thus, one message to be scrambled should be processed continuously, and the control word used for scrambling or descrambling one message should not be changed. In a terrestrial DMB content, the length of messages to be scrambled or descrambled is different and message transmission periods are not the same, either. In case of the sub-channel conditional access mode, a message transmission/reception period is the same as CIF, which is 24msec. In case of the data group conditional access mode and the MOT conditional access mode, the message transmission/reception period is not regular and a message may be transmitted/received over one or more CIFs.
The scrambling method is divided into two types: a block encryption and a stream encryption. The block encryption method such as an Advanced Encryption Standard (AES) is superior to the stream encryption with respect to the security.
National Institute of Standards and Technology (NIST) Special Publication 800-38A, which is recommended standard for the use of the block encryption method, suggests five AES standard operation modes. To be specific, the NIST Special Publication 800-38A defines the following five modes: an Electric Code Book (ECB) mode, a Cipher Block Chaining (CBC) mode, a Cipher
Feedback (CFB) mode, an Output Feedback (OFB) mode, and a
Counter (CTR) mode. The present invention involves in the counter mode among the five block encryption methods .
The NIST Special Publication 800-38A suggests two methods to set up a counter block value of a message to be scrambled. Herein, the counter block value denotes a value given differently for each block to execute scrambling or descrambling in the counter mode. According to the counter mode of block encryptions, which is used in a scrambler, a message is divided into a plurality of blocks and the blocks are scrambled.
According to the first method, the first counter block value of a message is a value obtained by adding a predetermined number to the last counter block value of a previous message. In other words, the first counter block value of the first message is initialized to "0" and a value increased by "1" for each block is used as a counter block value. The first counter block value of the second message is a value obtained by adding "1" to the last counter block value of the first message.
However, when the user changes a channel, the above-described method cannot normally present the content to the user, because the changed channel needs a new control word and no counter block value is known until the new control word is received. In short, the method has a shortcoming that a user should wait until a new control word is received whenever a channel is changed.
The second method is similar to the first method for a half-bit part of a counter block. The first counter block value of each message is initialized to "0" and each of the subsequent counter block values increases by "1" in one message. The other half-bit part of the counter block includes an identifier having values that are not overlapped with other messages. The second method, however, also has a problem in that frequency is consumed to transmit the identifier to the receiver so that each message has a different identifier.
Fig. 1 illustrates a counter mode of block encryptions that is used in a conventional scrambler/descrambler . Referring to Fig. 1, a scrambler scrambles a content, which is a sequence of counter blocks, using a control word, and the control word varies into random numbers at a period of several to scores of seconds to be protected from being hacked. According to the counter mode of block encryptions, which is used as a scrambler, a content is divided into a plurality of blocks and scrambled. As long as the same control word is used, the counter values of the blocks, which will be referred to as counter block values herein, should be different from each other. Therefore, when a content is divided into n blocks and scrambled using the same control word, n different counter block values are needed. Ciphers 111, 112,... Hn of the scrambler outputs encrypted data for each counter block using the control word and the counter block values, which are different for each block. XOR operators 121, 122, ... 12n of the scrambler executes XOR operation onto the encrypted output data and the unscrambled counter blocks that are divided into n. The operation result of the XOR operators in the scrambler is a scrambled content.
Deciphers 131, 132,... 13n of a descrambler decrypts the scrambled content using the same counter block values and control word that are used in the scrambler. Herein, the ciphers have two types. One is a forward cipher and the other is a backward cipher. The deciphers of a descrambler used in the counter mode are same as the forward ciphers of the scrambler. The counter mode of block encryptions requires transmitting a control word and counter block values from the transmitter to the receiver, and frequency is used to transmit the counter block values that are different for each counter block. Thus, it is inefficient with the respect of using frequency.
Therefore, it is required to develop a method for generating counter block values that are not repeated throughout the blocks while the same control word is used in order not to additionally transmit counter block values. DISCLOSURE TECHNICAL PROBLEM
An embodiment of the present invention is directed to providing a method for generating counter block values that are not repeated throughout the blocks while the same control word is used in order not to additionally transmit counter block values in a scrambling or descrambling process.
TECHNICAL SOLUTION
In accordance with an aspect of the present invention, which is devised to satisfy the demand, there is provided a method for simply processing counter block values while not additionally transmitting or receiving the counter block values.
ADVANTAGEOUS EFFECTS
The method of the present invention generates counter block values by combining CIF count values and counters. Since counter block values are not additionally transmitted, frequency utility efficiency can be increased.
BRIEF DESCRIPTION OF THE DRAWINGS
Fig. 1 illustrates a counter mode of block encryptions that is used in conventional scramblers and descramblers .
Fig. 2 is a flowchart describing a method for generating counter block values required in a scrambler or descrambler in accordance with an embodiment of the present invention.
BEST MODE FOR THE INVENTION In accordance with an aspect of the present invention, which is devised to achieve the object, there is provided a method for generating a counter block value required by a scrambler or a descrambler, which includes the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing a Common Interleaved Frame (CIF) count value corresponding to the initial part of the message in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the CIF count value stored in the step b) and the counter increased in the step c) . In accordance with another aspect of the present invention, which is devised to achieve the object, there is provided a method for generating a counter block value required by a scrambler or a descrambler, which includes the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing an identifier of the message carried on a conditional access synchronization parameter
(CASyncParam) in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the identifier of the message stored in the step b) and the counter increased in the step c) . In accordance with another aspect of the present invention, which is devised to achieve the object, there is provided a method for generating a counter block value required by a scrambler or a descrambler, which includes the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing an initialization counter block value in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the initialization counter block value stored in the step b) and the counter increased in the step c) .
In accordance with another aspect of the present invention, which is devised to achieve the object, there is provided a method for generating a counter block value required by a scrambler or a descrambler, which includes the steps of: a) extracting a first value from data received or to be transmitted; b) generating a second value altering for each counter block of a unit message; and c) generating the counter block value by using the first value and the second value.
Also, the first value may be a Common Interleaved Frame (CIF) count value corresponding to the initial part of a message or a value included in a conditional access synchronization parameter. Examples of the value included in a conditional access synchronization parameter are an identifier of the message and an initialization counter value. Meanwhile, the second value is initialized on a basis of a unit message and the second value alters as much as a predetermined value for each of the counter blocks of the unit message.
The advantages, features and aspects of the invention will become apparent from the following description of the embodiments with reference to the accompanying drawings, which is set forth hereinafter.
In general, a control word alters at several to scores of seconds, and a Common Interleaved Frame (CIF) count values increase by "1" at every 24msec. Since the increment period of the CIF count values is shorter than the alteration period of the control word, the CIF count value may be used for part of counter block values. Also, the identifier of a message that can be transmitted by being carried on a conditional access synchronization parameter (CASyncParam) may be used for part of the counter block values instead of the CIF count values.
According to an embodiment of the present invention, the initialization counter block value defined in conditional access modes of terrestrial DMB contents, which are a sub-channel scrambling mode, a data group scrambling mode, and an MOT scrambling mode, may be used as the identifier of a message for part of the counter block values instead of the CIF count values. To be specific, the initialization counter block value is included in a conditional access prefix (CAPrefix) for each message and transmitted in a terrestrial DMB conditional access method. In case of 1) the sub-channel scrambling mode, the initialization counter block value may be disposed in the second and third bytes when a padding packet indicator is "0," or it is disposed in the third and fourth bytes when the padding packet indicator is "1." In case of 2) the data group scrambling mode, the initialization counter block value may be disposed in the first byte. In case of 3) the MOT scrambling mode, the initialization counter block value may be disposed in the first and second bytes.
Fig. 2 is a flowchart describing a method for generating counter block values required in a scrambler or descrambler in accordance with an embodiment of the present invention. The drawing shows an embodiment using a CIF count value. Herein, the initialization counter block value may be used as the identifier of a message, instead of the CIF count value. Referring to Fig. 2, when a message is inputted, it is determined in step S201 whether a counter block to be scrambled or descrambled is the initial part of the message . In step S203, a CIF count value corresponding to the initial part of the message is stored.
In step S205, when the counter block is the initial part of the message, a counter of the message is initialized into a predetermined initial value. Subsequently, the initialized counter of the message alters by a predetermined value in step S207. For example, the counter may increase as much as the predetermined value for each counter block of a unit message . Meanwhile, when the counter block is not the initial part of the message, the counter alters, for example, increases, as much as the predetermined value for each counter block of a unit message in the step S207.
Subsequently, a counter block value is generated using the stored CIF count value and the counter of the message that is increased by the predetermined value in step S209. The counter block value may be generated by simply combining the stored CIF count value and the counter of the message that is increased by the predetermined value, or by executing a predetermined operation. Herein, when it is determined that the counter block is not the initial part of the message, the stored CIF count value is a CIF count value corresponding to the initial part of the message. For example, when a 128-bit counter block value is generated, the 13 most significant bits (MSB) use the CIF count value and the remaining 115 least significant bits (LSB) use the counter of the message.
The counter block of each block is generated in the above-described method. Therefore, it is possible to generate counter block values used in a scrambler and a descrambler without transmitting the counter block values. The method of the present invention described in the above may be realized as a program and stored in a computer-readable recording medium, such as CD-ROM, RAM, ROM, floppy disks, hard disks, and magneto-optical disks. Since the process can be easily implemented by those skilled in the art to which the present invention pertains, detailed description will not be provided herein.
While the present invention has been described with respect to the specific embodiments, it will be apparent to those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention as defined in the following claims.
INDUSTRIAL APPLICABILITY
The present invention provides a method for generating counter block values not repeated throughout the blocks of a message as long as the same control word is used without additionally transmitting the counter block values in a process of scrambling or descrambling.

Claims

WHAT IS CLAIMED IS
1. A method for generating a counter block value required by a scrambler or a descrambler, comprising the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing a Common Interleaved Frame (CIF) count value corresponding to the initial part of the message in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the CIF count value stored in the step b) and the counter increased in the step c) .
2. The method of claim 1, wherein the CIF count value is entire or part of a CIF count value included in a Fast Information Group (FIG) of a transmission frame.
3. The method of claim 1, wherein the CIF count value is entire or part of a CIF count value included in a conditional access synchronization parameter (CASyncParam) .
4. A method for generating a counter block value required by a scrambler or a descrambler, comprising the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing an identifier of the message carried on a conditional access synchronization parameter (CASyncParam) in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the identifier of the message stored in the step b) and the counter increased in the step c) .
5. A method for generating a counter block value required by a scrambler or a descrambler, comprising the steps of: a) setting up a counter of a message to a predetermined initial value, when a counter block to be scrambled or descrambled is in an initial part of the message; b) storing an initialization counter block value in a buffer, when the counter block to be scrambled or descrambled is in the initial part of the message; c) increasing the counter by a predetermined number; and d) generating the counter block value by using the initialization counter block value stored in the step b) and the counter increased in the step c) .
6. The method of claim 5, wherein the initialization counter block value is included in a conditional access prefix for each message and transmitted.
7. A method for generating a counter block value required by a scrambler or a descrambler, comprising the steps of: a) extracting a first value from data received or to be transmitted; b) generating a second value altering for each counter block of a unit message; and c) generating the counter block value by using the first value and the second value.
8. The method of claim 7, wherein the first value and the second value are simply combined in a bit level in the step c) .
9. The method of claim 8, wherein the first value forms Most Significant Bits (MSBs) of the counter block value, and the second value forms Least Significant Bits (LSBs) of the counter block value.
10. The method of claim 7, wherein a predetermined operation is executed onto the first value and the second value in the step c) .
11. The method of claim 7, wherein the first value is a Common Interleaved Frame (CIF) count value corresponding to an initial part of a message.
12. The method of claim 7, wherein the first value is a value included in a conditional access synchronization parameter.
13. The method of claim 12, wherein the first value is an identifier of the message.
14. The method of claim 12, wherein the first value is an initialization counter value.
15. The method of claim 7, wherein the second value is initialized on a basis of a unit message.
16. The method of claim 15, wherein the second value alters as much as a predetermined value for each of the counter blocks of the unit message.
EP07768840A 2006-07-20 2007-07-20 Method for generating the counter block value Withdrawn EP2047680A4 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
EP14153685.4A EP2739045A3 (en) 2006-07-20 2007-07-20 Method for generating the counter block value

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR20060068038 2006-07-20
PCT/KR2007/003521 WO2008010689A1 (en) 2006-07-20 2007-07-20 Method for generating the counter block value

Related Child Applications (1)

Application Number Title Priority Date Filing Date
EP14153685.4A Division EP2739045A3 (en) 2006-07-20 2007-07-20 Method for generating the counter block value

Publications (2)

Publication Number Publication Date
EP2047680A1 true EP2047680A1 (en) 2009-04-15
EP2047680A4 EP2047680A4 (en) 2012-02-01

Family

ID=38956986

Family Applications (2)

Application Number Title Priority Date Filing Date
EP14153685.4A Ceased EP2739045A3 (en) 2006-07-20 2007-07-20 Method for generating the counter block value
EP07768840A Withdrawn EP2047680A4 (en) 2006-07-20 2007-07-20 Method for generating the counter block value

Family Applications Before (1)

Application Number Title Priority Date Filing Date
EP14153685.4A Ceased EP2739045A3 (en) 2006-07-20 2007-07-20 Method for generating the counter block value

Country Status (4)

Country Link
EP (2) EP2739045A3 (en)
KR (1) KR100863748B1 (en)
CN (1) CN101518073A (en)
WO (1) WO2008010689A1 (en)

Families Citing this family (19)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20130108106A (en) * 2010-06-01 2013-10-02 카프니아, 인코포레이티드 Gas dispenser for dispensing accurate doses of therapeutic gas from a reservoir containing highly compressed therapeutic gas
US8584167B2 (en) 2011-05-31 2013-11-12 Echostar Technologies L.L.C. Electronic programming guides combining stored content information and content provider schedule information
US8627349B2 (en) 2011-08-23 2014-01-07 Echostar Technologies L.L.C. User interface
US8447170B2 (en) 2011-08-23 2013-05-21 Echostar Technologies L.L.C. Automatically recording supplemental content
US8763027B2 (en) 2011-08-23 2014-06-24 Echostar Technologies L.L.C. Recording additional channels of a shared multi-channel transmitter
US9357159B2 (en) 2011-08-23 2016-05-31 Echostar Technologies L.L.C. Grouping and presenting content
US9185331B2 (en) 2011-08-23 2015-11-10 Echostar Technologies L.L.C. Storing multiple instances of content
US9621946B2 (en) 2011-08-23 2017-04-11 Echostar Technologies L.L.C. Frequency content sort
US8660412B2 (en) 2011-08-23 2014-02-25 Echostar Technologies L.L.C. System and method for dynamically adjusting recording parameters
US8959566B2 (en) 2011-08-23 2015-02-17 Echostar Technologies L.L.C. Storing and reading multiplexed content
US8850476B2 (en) 2011-08-23 2014-09-30 Echostar Technologies L.L.C. Backwards guide
US8437622B2 (en) 2011-08-23 2013-05-07 Echostar Technologies L.L.C. Altering presentation of received content based on use of closed captioning elements as reference locations
US9489981B2 (en) 2012-03-15 2016-11-08 Echostar Technologies L.L.C. Successive initialization of television channel recording
US8819722B2 (en) 2012-03-15 2014-08-26 Echostar Technologies L.L.C. Smartcard encryption cycling
US8989562B2 (en) 2012-03-15 2015-03-24 Echostar Technologies L.L.C. Facilitating concurrent recording of multiple television channels
US8959544B2 (en) 2012-03-15 2015-02-17 Echostar Technologies L.L.C. Descrambling of multiple television channels
US8793724B2 (en) 2012-11-08 2014-07-29 Eldon Technology Limited Image domain compliance
US9628838B2 (en) 2013-10-01 2017-04-18 Echostar Technologies L.L.C. Satellite-based content targeting
US9756378B2 (en) 2015-01-07 2017-09-05 Echostar Technologies L.L.C. Single file PVR per service ID

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1628420A2 (en) * 2004-08-18 2006-02-22 LG Electronics, Inc. Mobile broadcast receiver for decoding broadcast services selected by the user
CN1812486A (en) * 2005-01-26 2006-08-02 乐金电子(惠州)有限公司 Method for synchronizing service component of digital multimedia broadcasting receiver
EP1693979A2 (en) * 2005-02-21 2006-08-23 Samsung Electronics Co., Ltd. Apparatus and method for synchronizing a transport packet in digital multimedia broadcasting (DMB)

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4723246A (en) * 1982-05-11 1988-02-02 Tandem Computers Incorporated Integrated scrambler-encoder using PN sequence generator
EP0151147B1 (en) * 1983-07-22 1988-04-20 Independent Broadcasting Authority Security system for television signal encryption
DE69416183T2 (en) * 1993-04-15 1999-06-10 Matsushita Electric Ind Co Ltd Arrangement for encrypting a video signal
WO2000064092A1 (en) * 1999-04-16 2000-10-26 Sony Corporation Communication device, communication method, and recorded medium
GB2374260B (en) 2001-10-12 2003-08-13 F Secure Oyj Data encryption
KR20050107535A (en) * 2004-05-07 2005-11-11 삼성전자주식회사 Apparatus and method for broadcast service encryption in wideband wireless communication system
US7904714B2 (en) * 2005-01-11 2011-03-08 Samsung Electronics Co., Ltd Apparatus and method for ciphering/deciphering a signal in a communication system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1628420A2 (en) * 2004-08-18 2006-02-22 LG Electronics, Inc. Mobile broadcast receiver for decoding broadcast services selected by the user
CN1812486A (en) * 2005-01-26 2006-08-02 乐金电子(惠州)有限公司 Method for synchronizing service component of digital multimedia broadcasting receiver
EP1693979A2 (en) * 2005-02-21 2006-08-23 Samsung Electronics Co., Ltd. Apparatus and method for synchronizing a transport packet in digital multimedia broadcasting (DMB)

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
"Digital Audio Broadcasting (DAB); Guidelines and rules for implementation and operation; Part 2: System features; ETSI TR 101 496-2", 20010501, vol. BC, no. V1.1.2, 1 May 2001 (2001-05-01), XP014004881, ISSN: 0000-0001 *
See also references of WO2008010689A1 *

Also Published As

Publication number Publication date
EP2739045A3 (en) 2014-07-30
CN101518073A (en) 2009-08-26
KR100863748B1 (en) 2008-10-16
KR20080009001A (en) 2008-01-24
EP2047680A4 (en) 2012-02-01
WO2008010689A1 (en) 2008-01-24
EP2739045A2 (en) 2014-06-04

Similar Documents

Publication Publication Date Title
EP2739045A2 (en) Method for generating the counter block value
EP1560361B1 (en) A secure key authentication and ladder system
US5381481A (en) Method and apparatus for uniquely encrypting a plurality of services at a transmission site
RU2433548C2 (en) Method of descrambling scrambled content data object
EP0194769B1 (en) Cryptographic system for a direct broadcast by satellite network
JP3978441B2 (en) Control over global transport data streams
JP4976107B2 (en) Method for scrambling and descrambling a unit of data
JPH06125554A (en) Protective method for encoding of sunscribed satellite television
KR20100089228A (en) Method and apparatus for encrypting transport stream of multimedia content, method and apparatus for descrypting transport stream of multimedia content
JP4043669B2 (en) Related information processing device in conditional access system
KR20110096056A (en) Content decryption device and encryption system using an additional key layer
EP0179612A2 (en) Cryptographic system for direct broadcast satellite network
CN101939962A (en) Controlling media distribution
JPH01248891A (en) Encipherment key delivery system
KR101005844B1 (en) Conditional access system for ts packet processing based on memory card
JP2001333032A (en) Restricted reception system
JP4865463B2 (en) Transmitter and receiver
JP4536092B2 (en) Conditional reception processing device
KR20060113091A (en) Conditional access system in digital receiver
JP2004208107A (en) Scrambled broadcast system, broadcast transmission device, and reception device
CA2168748C (en) Method and apparatus for uniquely encrypting a plurality of services at a transmission site
JP5290372B2 (en) Transmitter and receiver
Rashed et al. AN EFFICIENT REVOCATION SCHEME FOR STATELESS RECEIVER WITH LESS ENCRYPTION AND LESS KEY STORAGE
Rashed et al. Video Casting Application Oriented Key Exchange
JP2012054945A (en) Transmitter and receiver

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20090220

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LI LT LU LV MC MT NL PL PT RO SE SI SK TR

AX Request for extension of the european patent

Extension state: AL BA HR MK RS

A4 Supplementary search report drawn up and despatched

Effective date: 20120102

RIC1 Information provided on ipc code assigned before grant

Ipc: H04N 5/04 20060101ALI20111227BHEP

Ipc: H04H 40/18 20080101ALI20111227BHEP

Ipc: H04H 60/07 20080101ALI20111227BHEP

Ipc: H04N 7/167 20110101AFI20111227BHEP

DAX Request for extension of the european patent (deleted)
GRAP Despatch of communication of intention to grant a patent

Free format text: ORIGINAL CODE: EPIDOSNIGR1

RIC1 Information provided on ipc code assigned before grant

Ipc: H04H 60/07 20080101ALN20130919BHEP

Ipc: H04N 21/2347 20110101AFI20130919BHEP

Ipc: H04N 5/04 20060101ALN20130919BHEP

Ipc: H04N 7/167 20110101ALN20130919BHEP

Ipc: H04H 40/18 20080101ALN20130919BHEP

INTG Intention to grant announced

Effective date: 20131002

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20140213