JP2010016557A - Digital broadcast viewing system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a digital broadcast viewing system which provides pay broadcast with restriction on viewing without requiring alteration of a digital television and reducing image quality while preventing the unauthorized use due to communication decoding. <P>SOLUTION: A digital television 5 is connected to a terminal device 7 by a LAN. A headend device 3 sends data broadcast and pay broadcast contents. A television-side viewing restriction control part 51 of the digital television 5 generates intermediate key data on the basis of the data broadcast received from the headend device and transmits the intermediate key data to the terminal device 7. A terminal-side viewing restriction control part 71 of the terminal device 7 generates main key data from the intermediate key data to transmit it to the digital television 5 when information is read from a PET card 9. The television-side viewing restriction control part 51 performs authentication processing of the main key data and removes restrictions on viewing of the pay broadcast contents when succeeding the authentication. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to a digital broadcast viewing system capable of restricting viewing of pay broadcast content in digital broadcast.

2. Description of the Related Art Conventionally, hotels and the like have been provided with a broadcast viewing system capable of viewing pay broadcasting. In a conventional broadcast viewing system, a television and a card reader are connected to each guest room, and the card reader has a charging card insertion slot for pay broadcast viewing. The conventional broadcast viewing system supports analog video signals, and the video signals distributed to the guest room are once taken into a card reader and supplied from the card reader to the television. When a valid billing card is inserted, the card reader releases viewing restrictions and supplies a video signal to the television. When no billing card is inserted, or when an invalid billing card such as used is inserted, the card reader restricts the supply of video signals to the television. Thus, conventionally, viewing of pay broadcasts has been restricted by a card reader (see, for example, Patent Document 1).
JP 2004-48590 A

  However, the conventional broadcast viewing system is compatible with analog video signals, and there is a problem that digital broadcast cannot be handled as it is. Conventionally, since the card reader is configured to supply an analog video signal to an analog video terminal (S terminal) of a television, it cannot be applied to a digital television.

  It is also conceivable to modify a conventional analog-compatible system for digital broadcasting. However, in this case, there is a problem that the digital television needs to be modified. In addition, there is a problem in that image quality deteriorates due to pay broadcast data passing through a plurality of circuits. In addition, when it is intended to provide pay broadcasting with a digital broadcast viewing system, it is important to reliably prevent unauthorized use due to communication decoding.

  The present invention has been made to solve the conventional problems, and its purpose is not to modify digital television, to reduce image quality, to prevent unauthorized use by communication decoding, and to pay with viewing restrictions. An object of the present invention is to provide a digital broadcast viewing system that enables broadcasting.

  The digital broadcast viewing system of the present invention is connected to a headend device that transmits digital broadcast, a digital television that receives the digital broadcast from the headend device, and data communication with the digital television so that pay broadcast content can be viewed. And a terminal device that reads information from a billing medium for transmitting the digital broadcast including the data broadcast and the pay broadcast content to the digital television, and the digital television and the terminal device are televisions, respectively. A side viewing restriction control unit and a terminal side viewing restriction control unit, and the television side viewing restriction control unit generates intermediate key data based on the data broadcast received from the headend device and sends the intermediate key data to the terminal device. The terminal side viewing restriction control unit transmits the billing medium by the terminal device. When the information is read, the main key data is generated from the intermediate key data and transmitted to the digital television, and the television-side viewing restriction control unit performs authentication processing of the main key data and succeeds in authentication. Release viewing restrictions on pay broadcast content.

  With this configuration, the head-end device transmits a digital broadcast including data broadcast and pay broadcast content to the digital television, and the television-side viewing restriction control unit of the digital television generates intermediate key data based on the data broadcast to the terminal device. And when the terminal-side viewing restriction control unit of the terminal device reads the information from the charging medium, the key-side key data is generated from the intermediate key data and transmitted to the digital television. If the authentication process is successful and the authentication is successful, the viewing restriction on the pay broadcast content is released. Thus, according to the present invention, it is possible to provide pay broadcasting with viewing restrictions in the digital broadcasting viewing system by data broadcasting included in the digital broadcasting and data communication between the digital television and the terminal device. The digital television is equipped with a data broadcast receiving function and a data communication function with the outside. Therefore, the system of the present invention can be realized by a standard function installed in the digital television. In addition, since the digital broadcast is sent from the head end device to the digital television, it is possible to avoid a deterioration in image quality due to passage of a plurality of circuits. Further, the intermediate key data and the real key data are transmitted between the digital television and the terminal device, so that illegal use can be eliminated by encryption, and viewing can be suitably limited. In this way, it is possible to provide pay broadcasting with viewing restrictions while preventing unauthorized use due to communication decoding without remodeling the digital television and without degrading image quality.

  In the digital broadcast viewing system of the present invention, the headend device adds an intermediate key generation function used for generating the intermediate key data and a main key generation function used for generating the main key data to the data broadcast. The television-side viewing restriction control unit generates an intermediate key data based on the intermediate key generation function, and processes the intermediate key data with the main key generation function. A television-side real key generation unit that generates the real key data, the terminal device includes a terminal-side information storage unit that stores the real key generation function in advance, and the terminal-side viewing restriction control unit includes: A terminal-side real key generation unit that generates the real key data by processing the intermediate key data with the real key generation function stored in the terminal-side information storage unit; Furthermore, the end Said it generated by said transmitted from the device and the key data the television side the key generating unit having a key verification unit which collates the present key data.

  With this configuration, the intermediate key generation function and the main key generation function are sent to the digital television by data broadcasting. In digital television, intermediate key data is generated using an intermediate key generation function. The intermediate key data is sent to the terminal device, and the terminal device generates the main key data from the intermediate key data using a pre-stored main key generation function. On the other hand, in digital television, the main key data is generated from the intermediate key data using the main key generation function acquired by data broadcasting. If these two key data are collated and they match, the authentication is successful. As described above, according to the present invention, a configuration using the intermediate key generation function and the main key generation function is provided, and high security can be secured, and viewing restrictions for digital broadcasting can be suitably realized.

  In the digital broadcast viewing system of the present invention, the function adding unit embeds the intermediate key generation function and the main key generation function in a script in the BML content of the data broadcast, and the television side viewing restriction control unit The intermediate key generation function and the real key generation function are acquired from the BML content.

  With this configuration, the intermediate key generation function and the main key generation function can be suitably added to the data broadcast and provided to the digital television.

  In the digital broadcast viewing system according to the present invention, the intermediate key generation unit generates the intermediate key data by processing time information included in the digital broadcast with the intermediate key generation function.

  With this configuration, since the time information is used as the original data for generating the intermediate key data, the intermediate key data changes according to the original time. The main key data generated from the intermediate key data also changes according to the original time. Therefore, security can be further improved.

  In the digital broadcast viewing system according to the present invention, the digital television has a television-side information storage unit that stores authentication ID data, and the medium-side information storage unit of the terminal device is the same as the television-side information storage unit. ID data is stored, and each of the television side real key generation unit and the terminal side real key generation unit generates the real key data by processing the intermediate key data and the authentication ID data with the real key generation function. To do.

  With this configuration, the intermediate key data and the authentication ID data are processed by the main key generation function to generate the main key data. By using the authentication ID data as the original data for generating the key, security can be further improved.

  In the digital broadcast viewing system of the present invention, the television-side information storage unit further stores daily information indicating a switching time of the viewing date, and the television-side viewing restriction control unit is configured to view based on the daily information. It has a date change processing unit that determines whether or not the date has been changed and performs viewing restriction when the view date changes.

  With this configuration, daily management can be appropriately performed, and viewing restriction using a charging medium can be suitably performed.

  In the digital broadcast viewing system of the present invention, the television-side information storage unit is configured by an area for independent broadcast in the NV-RAM of the digital television.

  With this configuration, it is possible to suitably realize the digital broadcast viewing system of the present invention and the viewing restriction by using the NV-RAM provided as standard in the digital television.

  In the digital broadcast viewing system of the present invention, the head end device includes an ID adding unit that adds a medium ID of the charging medium to the data broadcast, and the terminal-side viewing restriction control unit is read from the charging medium. The medium ID is transmitted to the digital television, and the television-side viewing restriction control unit includes an ID collation unit that collates the medium ID included in the data broadcast with the medium ID received from the terminal device. With this configuration, since the medium ID is also verified, the security can be further improved.

  Another aspect of the present invention is a viewing restriction control program executed for restricting viewing of a digital broadcast by a program processing unit incorporated in the digital television, wherein the digital broadcast including data broadcast and pay broadcast content is received. To the terminal device that generates the intermediate key data based on the data broadcast included in the digital broadcast, is connected to the digital television so as to be communicable, and reads information from the charging medium for viewing the pay broadcast Providing the intermediate key data, and when the terminal device reads information from the charging medium, obtains the main key data generated from the intermediate key data from the terminal device, and authenticates the key data If the program is successfully authenticated, the program processing unit of the digital television sets a process for releasing the viewing restriction on the pay broadcast content. To row. This aspect also provides the above-described advantages of the present invention. The various configurations described above can also be applied to this aspect.

  Another aspect of the present invention is a headend device that stores the viewing restriction control program described above, transmits the viewing restriction control program to the digital television, and generates the intermediate key data and the main key data. A data broadcast including a key generation function is provided to the digital television. This aspect also provides the above-described advantages of the present invention. The various configurations described above can also be applied to this aspect.

  Another aspect of the present invention is a terminal device that is connected to a digital television so as to be able to perform data communication and reads information from a charging medium for viewing a pay broadcast, wherein the key data is obtained from intermediate key data for viewing restriction processing. A terminal-side information storage unit that stores the key generation function for generating the intermediate key data, and the intermediate key data when the intermediate key data is acquired from the digital television and the terminal device reads the information from the charging medium And a terminal-side viewing restriction control unit that generates the key data by processing the key key generation function and supplies the key data to the digital television. This aspect also provides the above-described advantages of the present invention. The various configurations described above can also be applied to this aspect.

  Another aspect of the present invention is a digital broadcast viewing method for restricting viewing of pay broadcast content in a digital broadcast viewing system that transmits a digital broadcast from a head end device to a digital television set, from the head end device to the digital television set. Sending digital broadcasts including data broadcasts and pay broadcast contents, generating intermediate key data based on the data broadcasts received from the headend device on the digital television, The intermediate key data is transmitted to a terminal device that reads information, and when the information is read from the charging medium at the terminal device, the key data is generated from the intermediate key data, and the key data is The terminal device transmits to the digital television, and the digital television transmits the key data. A successful authentication process carried out the authentication of the release parental control of the pay-TV content. This method also provides the advantages of the present invention described above. The various configurations described above can also be applied to this aspect.

  Another aspect of the present embodiment is a viewing restriction control method for restricting viewing of pay broadcast content on a digital television, and receives the data broadcast and the digital broadcast including the pay broadcast content, and the received data broadcast The intermediate key data is generated based on the digital television, and is connected to the digital television so as to be communicable. The intermediate key data is provided to a terminal device that reads information from a charging medium for viewing pay broadcasts. When the information is read from the billing medium, the main key data generated from the intermediate key data is acquired from the terminal device, and the authentication process of the main key data is performed and the authentication is successful. Is released. This method also provides the advantages of the present invention described above. The various configurations described above can also be applied to this aspect.

  The present invention can realize digital broadcast viewing restriction by data broadcasting included in digital broadcasting and data communication between the digital television and the terminal device, without remodeling the digital television, without reducing the image quality, It is possible to provide a digital broadcast viewing system that has the effect of being able to provide pay broadcasting with viewing restrictions while preventing unauthorized use due to communication decoding.

  Hereinafter, a digital broadcast viewing system according to an embodiment of the present invention will be described with reference to the drawings.

  A digital broadcast viewing system according to an embodiment of the present invention is shown in FIGS. In the example of the present embodiment, a digital broadcast viewing system is provided in a hotel, and paid broadcast content is provided with viewing restrictions in the hotel's own broadcast. FIG. 1 shows an overview of independent broadcasting and its viewing restrictions, FIG. 2 shows a configuration related to viewing restrictions, FIG. 3 shows an overall configuration, and FIG. 4 shows an overview of independent broadcasting viewing. In the following, the system overview will be described first with reference to FIGS. 3 and 4, and then the present invention will be described in more detail with reference to FIGS. 1 and 2.

  As shown in FIG. 3, the digital broadcast viewing system 1 includes a head end device 3, a plurality of digital televisions 5, and a plurality of terminal devices 7. The digital television 5 and the terminal device 7 are installed in each guest room. The head end device 3 is connected to a plurality of digital televisions 5 by a hotel broadcast wiring such as a coaxial cable, and the digital television 5 is connected to a terminal device 7 via a LAN.

  The head end device 3 is a device that transmits digital broadcasts, and the digital broadcasts are received and displayed by a plurality of digital televisions 5. As will be described later, the digital television 5 and the terminal device 7 perform data communication to limit viewing of pay broadcast contents. The terminal device 7 is a card reader, into which a PET card 9 can be inserted. The PET card 9 is a typical example of the billing medium of the present invention.

  In addition, a card issuing machine 11 is installed in an appropriate place such as a hotel corridor, and the PET card 9 is issued by the card issuing machine 11 and inserted into the terminal device 7.

  As shown in FIG. 3, the head end device 3 includes a general broadcast transmission unit 13, an independent broadcast transmission unit 15, and a mixer 17. With these configurations, the common broadcast transmission can be viewed in a plurality of guest rooms. Realize a listening system.

  The general broadcast transmission unit 13 transmits terrestrial digital broadcast and BS digital broadcast as free broadcasts at hotels. Terrestrial digital broadcasting and BS digital broadcasting are received from the outside by an antenna or the like, supplied to the general broadcast sending unit 13, and redistributed from the general broadcast sending unit 13.

  The independent broadcast transmission unit 15 transmits the independent broadcast. Voluntary broadcasts are digital broadcasts, which are paid broadcasts at hotels. The pay broadcast content is received from, for example, a CS tuner and supplied to the independent broadcast transmission unit 15. The pay broadcast content is reproduced by a recorder such as a DVD and supplied to the independent broadcast transmission unit 15. The independent broadcast transmission unit 15 converts the data format of the pay broadcast content so as to be adapted to the digital broadcast as necessary. A real-time encoder may be provided in the independent broadcast transmission unit 15 or outside thereof, and digital broadcast data of pay broadcast content may be generated by the real-time encoder.

  Digital broadcast data sent from the general broadcast sending unit 13 and the independent broadcast sending unit 15 are mixed by the mixer 17 and distributed to the digital television 5 in all the guest rooms. The digital television 5 receives the digital broadcast of the selected channel.

  Of the above, terrestrial digital broadcasting and BS digital broadcasting are free broadcasts at hotels, and are displayed on each digital television 5 without viewing restrictions. On the other hand, the independent broadcast is a pay broadcast and is subject to viewing restrictions. In the example of the present embodiment, the viewing restriction technique of the present invention is applied to independent broadcasting. Therefore, the configuration for independent broadcasting will be mainly described below.

  In the present embodiment, the independent broadcast is provided by the “data broadcast type service” in the ARIB standard, and the data broadcast is used to realize the viewing restriction of the pay broadcast content. The data broadcast is provided by being multiplexed by a multiplexing function provided in the independent broadcasting device 15. By using the data broadcasting mechanism defined in the ARIB standard, video is not displayed (full-screen overlay), and audio is muted, thereby restricting viewing of pay broadcast content. At this time, the multiplexed data broadcast functions as a viewing restriction screen. If the authentication for viewing the pay broadcast is successful, the viewing restriction is released and the pay broadcast content is displayed on the digital television 5.

  FIG. 4 is a diagram illustrating an image of independent broadcast (paid broadcast) viewing in the digital broadcast viewing system 1 of the present embodiment. As shown in the figure, when the television is turned on, first, a terrestrial digital broadcast is received as a general broadcast. When an independent broadcast channel (for example, 11ch) is selected by a user's remote control operation, the independent broadcast is received and a data broadcast screen is displayed.

  Next, when a pay program is selected by a user's remote control operation, the digital television communicates with the terminal device to check whether an unused PET card is inserted. As a result of the confirmation, if the viewing condition is satisfied, the viewing restriction is released and the pay program is displayed. The PET card may have a time limit. In this case, it may be confirmed whether the remaining timer amount remains as a viewing permission condition by communication with the terminal device, and the remaining timer amount is also confirmed during display. Good.

  FIG. 1 shows an overview of viewing restrictions of the digital broadcast viewing system 1. As shown in FIG. 1, the head end device 3 sends data broadcast and pay broadcast content to the digital television 5. The data broadcast includes an intermediate key generation function and a main key generation function as functions used for authentication, and these are embedded in the BML content by a script. In addition, card IDs of all PET cards 9 provided in the system are added to the BML content. The card ID corresponds to the medium ID of the present invention. Further, the head end device 3 transmits a TOT (Time Offset Table) in the TS based on the ARIB standard. TOT is information on the current date and time, and corresponds to time information of the present invention.

  The digital television 5 communicates with the terminal device 7 in accordance with the BML standard, and performs authentication using the various pieces of information described above. The digital television 5 has a television-side viewing restriction control unit 51, and the terminal device 7 has a terminal-side viewing restriction control unit 71. These control units may be realized by a processor of each device. First, the television-side viewing restriction control unit 51 calculates TOT using an intermediate key generation function to generate intermediate key data. The intermediate key data is transmitted to the terminal device 7 and processed inside the digital television 5.

  In the terminal device 7, when information is read from an appropriate PET card 9, the terminal-side viewing restriction control unit 71 uses the key generation function to calculate the intermediate key data and the authentication ID data, thereby Generate key data. The authentication ID data and the key generation function are registered in the terminal device 7 in advance. The generated main key data is transmitted to the digital television 5.

  The television-side viewing restriction control unit 51 also generates the main key data by the calculation process of the intermediate key data and the authentication ID data using the main key generation function. This key generation function is extracted from the received data from the headend device 3. The authentication ID data is registered in advance in the digital television 5, and preferably the NV-RAM of the digital television 5 is used as a storage device as will be described later.

  The television-side viewing restriction control unit 51 collates the real key data received from the terminal device 7 with the real key data generated by itself, and if the two match, the key authentication is successful.

  The television-side viewing restriction control unit 51 further performs authentication using the card ID. The card ID is the ID of the PET card 9. As described above, the card IDs of all PET cards 9 are held in the BML content of the data broadcast. In addition, the terminal device 7 transmits the card ID read from the PET card 9 to the digital television 5. The television-side viewing restriction control unit 51 determines whether the card ID received from the terminal device 7 is included in the card IDs of all the PET cards 9 acquired from the headend device 3. If a matching card ID is included, the card ID is successfully authenticated.

  When the authentication of the key and the authentication of the card ID are successful, the television-side viewing restriction control unit 51 releases the viewing restriction of the pay broadcast content.

  As described above, in the present embodiment, the intermediate key data is based on the time (TOT) at the time of key generation, and therefore becomes a random value. This key data is also created from the intermediate key data and becomes a random value. Therefore, the intermediate key and the main key may be called a random number key (an intermediate random number key and the main random number key, or a first random number key and a second random number key).

  The overview of voluntary broadcast viewing restrictions in the digital broadcast viewing system 1 of the present embodiment has been described above with reference to FIG. Next, a configuration for realizing the above viewing restriction will be described in more detail with reference to FIG.

  FIG. 2 shows a configuration related to viewing restriction in the digital broadcast viewing system 1 of the present embodiment.

  As shown in FIG. 2, in the headend device 3, the digital broadcast sending unit 15 includes a data broadcast providing unit 31, a pay broadcast content providing unit 33, a function adding unit 35, a time information adding unit 37, and an ID adding unit 39. .

  The digital broadcast providing unit 31 is configured to provide a data broadcast described in BML, and pay broadcast viewing guidance (menu screen) is provided by the data broadcast. The pay broadcast content providing unit 33 provides pay broadcast content. The pay broadcast content is acquired from the outside and converted into a digital broadcast format as necessary. The function addition unit 35 adds the intermediate key generation function and the main key generation function to the data broadcast. These functions are embedded in the BML content of the data broadcast with a script. The time information adding unit 37 adds time information to the digital broadcast. The time information is specifically a TOT and is transmitted in the TS. The ID adding unit 39 adds the card IDs of all the PET cards 9 provided from the card issuing machine 11 to the data broadcast. The card ID information is held in the BML content and supplied to the digital television 5.

  Next, the configuration of the digital television 5 and the terminal device 7 will be described. The digital television 5 includes a television-side viewing restriction control unit 51 described with reference to FIG. 1, a broadcast reception unit 53 that receives a digital broadcast from the headend device 3, and a communication unit 55 that performs data communication with the terminal device 7. And a television-side information storage unit 57 that stores information used for the viewing restriction process.

  On the other hand, the terminal device 7 controls the terminal-side viewing restriction control unit 71, the reader / writer unit 73 that reads and writes the PET card 9, and the card reader / writer unit 73 to perform processing related to the PET card 9. A card processing unit 75, a communication unit 77 that performs data communication with the digital television 5, and a terminal-side information storage unit 79 that stores information used for viewing restriction processing.

  The PET card 9 is a magnetic card, and reading and writing of magnetic information is performed by the reader / writer unit 73. The reader / writer unit 73 includes a motor that transports the PET card 9 for insertion and ejection, a sensor that detects the presence / absence of the PET card 9, and a head that reads / writes information from / to the PET card 9.

  The communication unit 55 of the digital television 5 and the communication unit 77 of the terminal device 7 are connected via a LAN. As a standard function, the digital television is configured to be connectable to a BML server via a LAN. This connection function is used for the connection. Therefore, the terminal device 7 functions as a BML server, the digital television 5 functions as a client, and both perform BML communication.

  The TV-side information storage unit 59 of the digital TV 5 is composed of NV-RAM. The NV-RAM is standardly installed in a digital television, and a storage area of a predetermined size is assigned to each of a number of channels. In the present embodiment, the area for independent broadcasting is used as the television-side information storage unit 59.

  The television-side viewing restriction control unit 51 is realized by the processor of the digital television 5. The processor executes a program that realizes the function of the television-side viewing restriction control unit 51. This program corresponds to the viewing restriction control program of the present invention, and although not shown, may be transmitted from the head end device 3 to the digital television 5. The terminal-side viewing restriction control unit 71 and the card processing unit 75 of the terminal device 7 are also realized by the processor of the terminal device 7. The processor executes a program that realizes the functions of these configurations.

  The television-side viewing restriction control unit 51 includes a television-side registration unit 511, an intermediate key generation unit 512, a television-side real key generation unit 513, a key verification unit 514, an ID verification unit 515, and a daily processing unit 516. The terminal-side viewing restriction control unit 71 includes a terminal-side registration unit 711 and a terminal-side real key generation unit 712. The card processing unit 75 includes a card presence / absence determination unit 751 and a regular card determination unit 752.

  The television side registration unit 511 of the television side viewing restriction control unit 51 registers information used for authentication together with the terminal side registration unit 711 of the terminal side viewing restriction control unit 71 in advance.

  FIG. 5 shows an example of the registration process. In the registration process, the authentication ID is registered in the digital television 5 and the terminal device 7. The registration process is performed on the initial management screen of the digital television 5 by the administrator prior to viewing by the user. As shown in the figure, the TV remote controller is operated to display a management screen, and an authentication ID is input. In the illustrated example, the authentication ID is a four-digit number (for example, 1234). The authentication ID data is stored in the TV-side information storage unit 57 of the digital TV 5. The TV-side information storage unit 57 is an in-TV NV-RAM area, and more specifically, is an area allocated to independent broadcasting in the NV-RAM.

  The authentication ID data is transmitted from the digital television 5 to the terminal device 7. The authentication ID data is transmitted by a bidirectional communication function based on the ARIB standard. The authentication ID data is acquired by the terminal side registration unit 711 of the terminal device 7 and stored in the terminal side information storage unit 79.

  On the management screen of FIG. 5, registration of daily settings is also performed. In daily setting registration, daily information is input by the administrator. The daily information represents the daily time, that is, the viewing date switching time. Daily information is also registered in the television information storage unit 57 by the television registration unit 511. Daily information may also be stored in the NV-RAM.

  In the terminal device 7, the key generation function is stored in the terminal-side information storage unit 79 by the terminal-side registration unit 711 as a pre-registration process. This key generation function is the same as the key generation function embedded in the BML content transmitted from the headend device 3 to the digital television 5 by a script. This key generation function may be stored at the time of factory shipment. This key generation function may be registered by an administrator's operation on the terminal device 7. The key generation function may be input on the management screen of the digital television 5 and transmitted to the terminal device 7.

  FIG. 6 shows the processing of the intermediate key generation unit 512 of the television-side viewing restriction control unit 51. The intermediate key generation unit 512 is configured to generate intermediate key data. The intermediate key generation unit 512 acquires an intermediate key generation function from the received data broadcast, and generates intermediate key data by processing TOT (time information) with the intermediate key generation function. In the example of FIG. 6, the time is 22:00 and the time is handled as a 4-digit numerical value “2200”. The intermediate key generation function is “× 2”, that is, “double”. Therefore, the intermediate key data is 4400 (twice 2200). The intermediate key generation unit 512 supplies the intermediate key data to the television side real key generation unit 513 for processing in the television. Further, the intermediate key generation unit 512 transmits the intermediate key data to the terminal device 7 via the communication unit 55 and provides the terminal key real key generation unit 712 with the intermediate key data.

  FIG. 7 shows the processing of the television side real key generation unit 513 and the terminal side real key generation unit 712. The TV-side real key generation unit 513 acquires the authentication ID data from the TV-side information storage unit 57 and acquires the main key generation function from the data broadcast received from the headend device 3. The TV-side real key generation unit 513 processes the intermediate key data and the authentication ID data with the real key generation function to generate real key data. In the example in the figure, the intermediate key data is “4400” and the authentication ID data is “1234”. This key generation function is “(intermediate key + authentication ID) × 3 last 4 digits”. Therefore, this key data is “6902”.

  Further, the terminal-side real key generation unit 712 generates real key data using the intermediate key data received from the digital television 5. This key generation process is the same as that on the television side. However, the authentication ID data and the key generation function are registered in advance and acquired from the terminal side information storage unit 79.

  This key generation on the terminal side is performed only when an appropriate PET card 9 is recognized by the card processing unit 75 in FIG. The card presence / absence determination unit 751 of the card processing unit 75 determines whether or not the PET card 9 is attached to the reader / writer unit 73, and the regular card determination unit 752 determines whether or not the attached PET card 9 is a regular card. Determine whether or not. Based on information from the card processing unit 75, the terminal-side real key generation unit 712 generates real key data when a regular PET card 9 is attached. This key data is transmitted to the digital television 5.

  Next, the key verification unit 514, the ID verification unit 515, and the daily processing unit 516 of the television-side viewing restriction control unit 51 shown in FIG. 2 will be described. The key verification unit 514 acquires the real key data from the television side real key generation unit 513 and acquires the real key data generated by the terminal side real key generation unit 712 of the terminal device 7. The key collation unit 514 collates two pieces of key data, and determines that the key authentication is successful when the two match.

  The ID verification unit 515 performs verification of the card ID. The ID collation unit 515 acquires the card IDs of all the PET cards 9 supplied from the head end device 3 by data broadcasting. In the terminal device 7, the card ID is read from the PET card 9 by the reader / writer unit 73. The card ID is supplied from the reader / writer unit 73 to the terminal-side viewing restriction control unit 71 via the card processing unit 75, further transmitted to the digital television 5 via the communication unit 77, and acquired by the ID verification unit 515. The ID collation unit 515 determines whether or not the card ID acquired from the terminal device 7 exists in the card IDs of all the PET cards 9. If there is a matching card ID, authentication is successful.

  The daily change processing unit 516 is configured to restrict viewing based on the daily change information stored in the television-side information storage unit 57, that is, information on the daily change time. The day change time may be the same as the checkout time of the hotel, for example. The daily change processing unit 516 determines whether or not the daily change time has been exceeded. If the day change time has not been exceeded, viewing is permitted.

  The TV-side viewing restriction control unit 51 releases the viewing restriction on the pay broadcast content when the authentication by the key collating unit 514 and the ID collating unit 515 is successful and the viewing is permitted by the daily processing unit 516. To do.

  The daily change processing unit 516 continues the daily change determination process even while pay broadcast content is being provided. When the day change time elapses, viewing is restricted.

  The configuration of the digital broadcast viewing system 1 according to the present embodiment has been described in detail above. Next, the operation of the digital broadcast viewing system 1 will be described with reference to FIGS. In the figure, processing on the digital television 5 side and processing on the terminal device 7 side are shown. On the digital television 5 side, video display processing and data broadcasting processing are performed. The data broadcasting process is controlled by the television side viewing restriction control unit 51. As for data broadcasting, as shown in the figure, BML processing is performed internally together with the data broadcasting display on the screen. In the terminal device 7, a television response process and a card process are performed. The television response process is a process performed by the terminal-side viewing restriction control unit 71 and is a process related to communication with the digital television 5. As described above, the BML server provided in the card terminal device 7 performs the television response process in the drawing to realize the function of the terminal-side viewing restriction control unit 71. Card processing is performed by the card processing unit 75.

  FIG. 8 shows an initial setting operation. On the TV side, the management screen is displayed (S1), the data broadcast display becomes “Please enter the terminal ID” (S2), the terminal ID is input as the authentication ID, and an authentication ID registration request is generated ( S3), the authentication ID data is written into the NV-RAM (TV side information storage unit 57) (S4). Further, the authentication ID data is transmitted to the terminal device 7 and registered (S5).

  The terminal device 7 returns a terminal ID registration completion notification to the digital television 5 (S6). The digital TV 5 receives a notification of completion of registration of the terminal ID (S7) and requests an operation for setting the daily change by the data broadcast display “Please select the daily change setting” (S8). Here, the daily time is selected from a plurality of options. When the daily setting operation is performed, the daily setting registration is performed (S9), and the daily time is written in the NV-RAM as daily information (S10). Then, the digital television 5 sets the data broadcast display as “initial setting has been completed” and ends the initial registration.

  FIG. 9 to FIG. 11 show operations when a self-broadcast channel is selected by a user (hotel guest).

  In FIG. 9, when a guide channel (independent broadcast channel) is selected (S21), a pay broadcast guide screen is presented by data broadcast display. When a pay program is selected on this screen (S22), trial squeeze viewing is performed as a video display (S23). Further, the data broadcast display becomes “please wait for a while” (S24), the intermediate key generation unit 512 generates intermediate key data from the intermediate key generation function and TOT (time information), and a viewing permission request is generated ( S25).

  The viewing permission request and the intermediate key data are transmitted from the digital television 5 and received by the terminal device 7 (S26). When the viewing permission request is received, card confirmation is requested from the television response process to the card process. This request is made from the terminal-side viewing restriction control unit 71 to the card processing unit 75, and in response to the request, the card presence / absence determination unit 751 first determines the presence / absence of a PET card (S27).

  If there is no PET card 9, a card-notification notice is transmitted from the terminal device 7 (S28) and received by the digital television 5 (S29). The card insertion is requested by the data broadcast display “Please insert card” (S30), and the data broadcast display returns to the guidance TOP screen (S47).

  If the PET card 9 is attached to the terminal device 7 in step S27, a card presence notification is transmitted from the terminal device 7 (S31) and received by the digital television 5 (S32). The data broadcast display is maintained at “Please wait for a while” (S33). In the terminal device 7, it is determined whether or not the PET card is normal by the normal card determination unit 752 (S34). This determination is performed based on the magnetic information read from the PET card 9 by the reader / writer unit 73. When the PET card is an irregular card (including used card), a notice of the irregular card is transmitted from the terminal device 7 (S35) and received by the digital television 5 (S36). The data broadcast display “card is different” is presented (S37), and the data broadcast display returns to the guidance TOP screen (S47).

  When it is determined in step S34 that the PET card is a regular card, the process proceeds to FIG. 10, and the terminal device 7 generates the key data and transmits it to the digital television 5 (S38). This key data is generated by processing the intermediate key data and the authentication ID data with the key generation function by the terminal-side main key generation unit 712.

  On the other hand, the digital TV 5 also generates real key data from the intermediate key data (S39). In the digital television 5, the real key data is generated by the TV-side real key generation unit 513. Then, the key verification unit 514 compares the two key data generated in steps S38 and S39 (two key data generated separately in the terminal device 7 and the digital television 5), and whether they match. It is determined whether or not (S40).

  If the two key data do not match in step S40, the data broadcast display “cannot be authenticated” is presented (S41), and the data broadcast display returns to the guidance TOP screen (S47).

  In the terminal device 7, the card processing unit 75 supplies the card ID read by the reader / writer unit 73 in the determination process of step S <b> 34 to the terminal-side viewing restriction control unit 71. The notification of the card ID is transmitted from the terminal device 7 to the digital television 5 (S42). In the digital television 5, if the determination in step S40 is OK, a card ID match determination is further performed by the ID verification unit 515 (S43). The ID collation unit 515 determines whether or not the card ID acquired from the terminal device 7 is present in the card IDs of all PET cards 9 acquired from the data broadcast. If there is no matching card ID, the ID match determination is NG, the data broadcast display “cannot be authenticated” is presented (S44), and the data broadcast display returns to the guidance TOP screen (S47).

  If the determination in step S43 is OK, the daily processing unit 516 determines whether or not the current time exceeds the daily time (S45). The daily change information is acquired from the TV-side information storage unit 57 that is an NV-RAM. If the current time exceeds the day change time, the determination result is NG, the data broadcast display “cannot be authenticated” is presented (S46), and the data broadcast display returns to the guidance TOP screen (S47).

  If it is determined in step S45 that the current time does not exceed the daily time, the determination result is OK, and viewing start processing and authentication completion notification are performed (S48). The video display is switched to the full screen display, the audio mute is canceled, and the audio is output (S49). Further, the completion notification is received by the terminal device 7 (S50). When the card completion notification is received, the card used processing is performed (S51). Here, the used information is written to the PET card 9 by the reader / writer unit 73 in accordance with an instruction from the card processing unit 75. Then, the card processing unit 75 causes the reader / writer unit 73 to sweep out the PET card 9 (S52).

  FIG. 11 shows the operation after the start of viewing. After the start of viewing, the daily change determination process is continuously performed by the daily change processing unit 516 of the digital television 5 (S53). As the daily change determination, it is determined whether or not the current time exceeds the daily change time (S54). If the current time does not exceed the daily time, the current state is “not exceeded”, and the process returns to step S30. If the current time exceeds the daily time, the current state is “excess”. In this case, viewing end processing is performed (S55), the program viewing ends, and the data broadcast display returns to the guidance TOP screen (S56).

  The operation of the digital broadcast viewing system 1 according to the present embodiment has been described above. The digital broadcast viewing system 1 of the present embodiment is designed to ensure high security in a configuration that uses data broadcasting and BML communication, ensuring security between the headend device 3 and the digital television 5, and digital Ensuring the security of the television 5 and the terminal device 7 and ensuring the security between the terminal device 7 and the card-issuing machine 11 are achieved as follows.

(1) Between Headend Device and Digital Television (Guest Room) In this part, it is required to prevent the broadcast stream transmitted from the headend device 3 from being stored in a storage medium in the cabin and analyzed. In order to meet this requirement, in this embodiment, “Copy never” is set in the PMT copy control descriptor, and copying to a consumer storage device such as a DVD recorder is restricted. In addition, by setting an authentication ID in the NV-RAM in advance initial setting, it is impossible to overlook it only by stream analysis, thereby ensuring security.

(2) Between digital TV and terminal device Since LAN connection is applied in this part, it is required to bring in a hub and a personal computer to prevent communication contents from being hacked. With respect to this request, in the present embodiment, the “intermediate key data” is a “disposable key” that is generated every time authentication is performed using “time information” that is a “variable” as a key, and is difficult to decipher.

  Furthermore, “real key data” is generated each time from “intermediate key data” using two elements of “real key generation function” and “authentication ID” as keys. The “real key generation function” is shared by the terminal device and the head end device, and the “authentication ID” is supplied by the terminal device and the digital television. In this way, the “real key data” is generated from two elements, ie, “real key generation function” and “authentication ID” that the terminal device shares in advance with different parties (head end device and digital television). Is considered nearly impossible.

(3) Between terminal device and card ticket issuing machine In this part, it is required to prevent fraud due to remodeling or forgery of the PET card. In this embodiment, the internal processing of the terminal device is divided into a terminal-side viewing restriction control unit and a card processing unit, that is, application processing (BML communication server software) that communicates with a digital television and PET (magnetic) card reading. Accordingly, the counterfeit PET card countermeasure can be limited to the problem of the card issuing machine and the PET card reading determination process. By this separation, it is possible to ensure high security as shown in (2) above against intrusion into the system.

  As described above, high security can be obtained in this embodiment. Next, the effect of this embodiment will be described.

  According to the present embodiment, the head-end device 3 sends a digital broadcast including data broadcast and pay broadcast content to the digital television, and the television-side viewing restriction control unit 51 of the digital television 5 uses the intermediate key data based on the data broadcast. Is transmitted to the terminal device 7, and the terminal-side viewing restriction control unit 71 of the terminal device 7 generates this key data from the intermediate key data and transmits it to the digital television 5 when the information is read from the accounting medium. When the television-side viewing restriction control unit 51 performs the authentication process of the key data and succeeds in the authentication, the viewing restriction of the pay broadcast content is released.

  Thus, according to the present invention, it is possible to provide pay broadcasting with viewing restrictions in the digital broadcasting viewing system 1 by data broadcasting included in the digital broadcasting and data communication between the digital television 5 and the terminal device 7. The digital television 5 is equipped with a data broadcast receiving function and a data communication function with the outside. Therefore, the system of the present invention can be realized by a standard function installed in the digital television 5. In addition, since the digital broadcast is sent from the headend device 3 to the digital television 5, it is possible to avoid a deterioration in image quality due to the passage of a plurality of circuits. Further, the intermediate key data and the main key data are transmitted between the digital television 5 and the terminal device 7, and unauthorized use can be eliminated by encryption, so that viewing can be suitably limited. In this way, it is possible to provide pay broadcasting with viewing restrictions while preventing unauthorized use due to communication decoding without remodeling the digital television 5 and without degrading image quality.

  To supplement the above description, the BML bidirectional communication function of the digital television 5 is usually used for Internet connection with an external center or the like. However, in the present invention, the bidirectional communication function is used for communication with the terminal device 7 in the cabin. By utilizing such a bidirectional communication function and the above-described data broadcasting, pay broadcasting can be provided that can restrict viewing with high security within the range of existing digital television equipment. Viewing is restricted using data broadcasting, and it is only necessary to perform one-way digital broadcasting from the head-end device 3 to the digital television 5, so that wiring facilities such as coaxial cables can be used. The invention is advantageous.

  Further, according to the present embodiment, the intermediate key generation function and the main key generation function are sent to the digital television 5 by data broadcasting. In the digital television 5, intermediate key data is generated using an intermediate key generation function. The intermediate key data is sent to the terminal device 7, and the terminal device 7 generates main key data from the intermediate key data using a pre-stored main key generation function. On the other hand, the digital television 5 also generates real key data from the intermediate key data using the real key generation function acquired by data broadcasting. If these two key data are collated and they match, the authentication is successful. In this way, according to the present invention, a configuration using the intermediate key generation function and the main key generation function is provided, and viewing restrictions for digital broadcasting can be realized while ensuring high security.

  Further, according to the present embodiment, the intermediate key generation function and the main key generation function are embedded in the BML content of the data broadcast with a script. In the digital television 5, the intermediate key generation function and the main key generation function are acquired from the BML content. The intermediate key generation function and the main key generation function can be suitably provided to the digital television by adding to the data broadcast.

  In addition, according to the present embodiment, intermediate key data is generated by processing time information included in a digital broadcast with an intermediate key generation function. Since time information is used as the original data for generating the intermediate key data, the intermediate key data changes according to the original time. The main key data generated from the intermediate key data also changes according to the original time. Therefore, security can be further improved.

  Further, according to the present embodiment, the same authentication ID data is stored in the digital television 5 and the terminal device 7. In each of the digital TV 5 and the terminal device 7, the intermediate key data and the authentication ID data are processed by the present key generation function, thereby generating the actual key data. By using the authentication ID data as the original data for generating the key, security can be further improved.

  Moreover, according to the present embodiment, the digital television 5 further stores the daily information indicating the switching time of the viewing date. It is determined whether or not the viewing date has been switched based on the daily information (daily determination), and viewing restriction is performed when the viewing date changes. Thereby, daily management can also be performed appropriately, and viewing restriction using a charging medium can be suitably performed.

  Moreover, according to this Embodiment, the television side information storage part is comprised by the area | region for independent broadcasting in NV-RAM of a digital television. The digital broadcast viewing system of the present invention and the viewing restriction by the NV-RAM provided as standard in the digital television can be suitably realized.

  Further, according to the present embodiment, the medium ID of the charging medium (in the above example, the card ID of the PET card) is added to the data broadcast. The medium ID read from the charging medium is transmitted from the terminal device 7 to the digital television 5. Then, the medium ID included in the data broadcast is collated with the medium ID received from the terminal device. Since the medium ID is also checked, the security can be further improved.

  The preferred embodiments of the present invention have been described above. However, the present invention is not limited to the above-described embodiments, and it goes without saying that those skilled in the art can modify the above-described embodiments within the scope of the present invention.

  As described above, the digital broadcast viewing system according to the present invention is capable of providing pay broadcasts with viewing restrictions while preventing unauthorized use due to communication decoding without remodeling the digital television and without degrading image quality. It is useful as a digital broadcast viewing system for hotels.

The figure which shows the structure of the digital broadcast viewing-and-listening system in embodiment of this invention. Diagram showing the configuration of the digital broadcast viewing system in more detail The figure which shows the whole structure of the digital broadcast viewing system when installed in a hotel The figure which shows the image of pay broadcast viewing in this Embodiment The figure which shows the initial setting process of a digital broadcast viewing system Diagram showing intermediate key data generation processing The figure which shows the generation processing of this key data The figure which shows the operation of the digital broadcasting viewing / listening system at the time of initial setting The figure which shows the operation of the digital broadcasting viewing system when the independent broadcasting channel is selected The figure which shows the operation of the digital broadcasting viewing system when the independent broadcasting channel is selected The figure which shows the operation of the digital broadcasting viewing system when the independent broadcasting channel is selected

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Digital broadcast viewing system 3 Headend apparatus 5 Digital television 7 Terminal apparatus 9 PET card 11 Card ticketing machine 13 General broadcast transmission part 15 Voluntary broadcast transmission part 17 Mixer 31 Data broadcast provision part 33 Pay broadcast content provision part 35 Function addition part 37 Time information adding unit 39 ID adding unit 51 Television side viewing restriction control unit 53 Broadcast receiving unit 55 Communication unit 57 Television side information storage unit 71 Terminal side viewing restriction control unit 73 Reader / writer unit 75 Card processing unit 77 Communication unit 79 Terminal side Information storage unit 511 Television side registration unit 512 Intermediate key generation unit 513 Television side real key generation unit 514 Key verification unit 515 ID verification unit 516 Daily processing unit 711 Terminal side registration unit 712 Terminal side real key generation unit 751 Card presence / absence determination unit 752 Genuine card determination part

Claims (13)

A head-end device that transmits digital broadcasts, a digital television that receives the digital broadcasts from the head-end device, and is connected to the digital television so that data communication is possible, and reads information from a billing medium for viewing paid broadcast content A terminal device,
The head end device sends a digital broadcast including data broadcast and the pay broadcast content to the digital television,
The digital television and the terminal device each have a television-side viewing restriction control unit and a terminal-side viewing restriction control unit, and the television-side viewing restriction control unit is an intermediate unit based on the data broadcast received from the headend device. The terminal side viewing restriction control unit generates key data from the intermediate key data when information is read from the billing medium by the terminal device, and generates key data. The digital broadcast viewing system, wherein the television-side viewing restriction control unit transmits the digital key data to the digital television, and when the authentication is successful and the authentication is successful, the viewing restriction on the pay broadcast content is released. The headend device has an intermediate key generation function used to generate the intermediate key data and a function addition unit that adds the main key generation function used to generate the main key data to the data broadcast,
The television-side viewing restriction control unit generates the intermediate key data based on the intermediate key generation function, and generates the main key data by processing the intermediate key data with the main key generation function. A TV-side real key generation unit
The terminal device includes a terminal-side information storage unit that stores the key generation function in advance,
The terminal-side viewing restriction control unit includes a terminal-side real key generation unit that generates the real key data by processing the intermediate key data with the real key generation function stored in the terminal-side information storage unit,
The television-side viewing restriction control unit further includes a key collating unit that collates the real key data sent from the terminal device and the real key data generated by the television-side real key generation unit. The digital broadcast viewing system according to claim 1, wherein the system is a digital broadcast viewing system.   The function adding unit embeds the intermediate key generation function and the main key generation function in a script in the BML content of the data broadcast, and the television-side viewing restriction control unit generates the intermediate key generation function and the intermediate key generation function from the BML content. The digital broadcast viewing system according to claim 2, wherein the key generation function is acquired.   The digital broadcast viewing system according to claim 2 or 3, wherein the intermediate key generation unit generates the intermediate key data by processing time information included in the digital broadcast with the intermediate key generation function. . The digital television has a television-side information storage unit that stores authentication ID data,
The medium side information storage unit of the terminal device stores the same authentication ID data as the television side information storage unit,
Each of the television-side real key generation unit and the terminal-side real key generation unit generates the real key data by processing the intermediate key data and the authentication ID data with the real key generation function. The digital broadcast viewing system according to any one of claims 2 to 4. The television-side information storage unit further stores daily information representing the switching time of the viewing date,
The television-side viewing restriction control unit includes a daily processing unit that determines whether or not a viewing date has been switched based on the daily information, and performs viewing restriction when the viewing date changes. 5. The digital broadcast viewing system according to 5.   The digital broadcast viewing system according to claim 5 or 6, wherein the television-side information storage unit is configured by an area for independent broadcasting in an NV-RAM of the digital television. The head end device has an ID adding unit that adds a medium ID of the charging medium to the data broadcast,
The terminal-side viewing restriction control unit transmits the medium ID read from the billing medium to the digital television,
The television side viewing restriction control unit includes an ID collation unit that collates the medium ID included in the data broadcast and the medium ID received from the terminal device. The digital broadcast viewing system described in 1. A viewing restriction control program executed to restrict viewing of digital broadcasting by a program processing unit incorporated in a digital television,
When a digital broadcast including data broadcast and pay broadcast content is received, intermediate key data is generated based on the data broadcast included in the digital broadcast,
Communicably connected to the digital television, providing the intermediate key data to a terminal device that reads information from a charging medium for viewing a pay broadcast;
When the terminal device reads information from the charging medium, obtains the key data generated from the intermediate key data from the terminal device,
A viewing restriction control program for causing the program processing unit of the digital television to execute a process of releasing the viewing restriction of pay broadcast contents when the authentication process of the key data is performed and the authentication is successful.   10. A viewing restriction control program according to claim 9, wherein the viewing restriction control program is transmitted to the digital television, and includes a key generation function for generating the intermediate key data and the main key data. A headend device for supplying data broadcasting to the digital television. A terminal device connected to a digital television so as to be able to perform data communication, and reading information from a charging medium for viewing a pay broadcast,
A terminal-side information storage unit that stores a main key generation function for generating main key data from intermediate key data for viewing restriction processing;
The intermediate key data is obtained from the digital television, and when the terminal device reads information from the billing medium, the intermediate key data is processed by the real key generation function to generate real key data, A terminal-side viewing restriction control unit for supplying key data to the digital television;
The terminal device characterized by having. A digital broadcast viewing method for restricting viewing of pay broadcast content in a digital broadcast viewing system for sending a digital broadcast from a headend device to a digital television,
Sending digital broadcasting including data broadcasting and pay broadcasting content from the headend device to the digital television,
In the digital television, generate intermediate key data based on the data broadcast received from the headend device,
The intermediate key data is transmitted from the digital television to a terminal device that reads information from a billing medium,
In the terminal device, when the information is read from the billing medium, the key data is generated from the intermediate key data,
Transmitting the key data from the terminal device to the digital television;
A digital broadcast viewing method, wherein when the digital key is authenticated by the digital television and the authentication is successful, the viewing restriction of the pay broadcast content is released. A viewing restriction control method for restricting viewing of pay broadcast content on a digital TV,
Receiving digital broadcasts including data broadcasts and the paid broadcast content;
Generate intermediate key data based on the received data broadcast,
Communicably connected to the digital television, providing the intermediate key data to a terminal device that reads information from a charging medium for viewing a pay broadcast;
When the terminal device reads information from the charging medium, obtains the key data generated from the intermediate key data from the terminal device,
A viewing restriction control method, wherein the viewing restriction of pay broadcast content is released when the authentication process of the key data is performed and the authentication is successful.

Images