JP2016063264A - Receiver, reception method, transmitter, and transmission method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To enable a further flexible conditional access system to be realized.SOLUTION: A receiver acquires an application for operating in relation to encryption content obtained by encrypting broadcast content using a scramble key; acquires a license for the encryption content from a server on the Internet, according to a request from the application; acquires a common message that is transmitted with the encryption content and includes the scramble key; determines whether or not the license is valid, on the basis of the common message and the license; and decrypts the encryption content by using the scramble key included in the common message when it is determined that the license is valid. This technology can be applied to, for example, a television receiver capable of receiving a digital broadcast signal.SELECTED DRAWING: Figure 23

Description

  The present technology relates to a reception device, a reception method, a transmission device, and a transmission method, and in particular, a reception device, a reception method, a transmission device, and a transmission that can realize a more flexible limited reception system. Regarding the method.

  In recent years, service studies and system studies for ultra-high-definition television broadcasting called 4K and 8K have been underway. In digital broadcasting, a technique for protecting content such as a conditional access system (CAS) is employed (see, for example, Patent Document 1).

JP-A-10-290222

  By the way, there is a demand for paying for ultra high definition TV programs such as 4K by paying PPV (Pay Per View) from the viewpoint of service, but there are restrictions on promotion and billing methods in existing conditional access systems. For this reason, it has been required to realize a conditional access system with higher flexibility.

  The present technology has been made in view of such a situation, and is intended to realize a conditional access system with higher flexibility.

  The receiving device according to the first aspect of the present technology includes an application acquisition unit that acquires an application that operates in association with encrypted content obtained by encrypting broadcast content using a scramble key, and in response to a request from the application A license acquisition unit for acquiring a license of the encrypted content from a server on the Internet; a message acquisition unit for acquiring a common message including the scramble key that is transmitted together with the encrypted content; the common message and the A license determination unit that determines whether the license is valid based on a license; and, if it is determined that the license is valid, the encrypted content using the scramble key included in the common message And a decoding unit for decoding It is a communication apparatus.

  The receiving device according to the first aspect of the present technology may be an independent device, or may be an internal block constituting one device. The reception method according to the first aspect of the present technology is a reception method corresponding to the reception device according to the first aspect of the present technology described above.

  In the receiving device and the receiving method according to the first aspect of the present technology, an application that operates in association with encrypted content obtained by encrypting broadcast content using a scramble key is acquired, and a request from the application is received. In response, a license for the encrypted content is obtained from a server on the Internet, and a common message including the scramble key transmitted together with the encrypted content is obtained. Based on the common message and the license, It is determined whether the license is valid. If it is determined that the license is valid, the encrypted content is decrypted using the scramble key included in the common message.

  The transmission device according to the second aspect of the present technology encrypts broadcast content using a scramble key, and generates an encryption unit that generates encrypted content, and an application that operates in association with the encrypted content. Together with an application generation unit, a message generation unit including the scramble key, the message generation unit generating the common message used for determining whether the license obtained by the receiving device is valid, and the encrypted content The transmission device includes the application and a transmission unit that transmits the common message.

  The transmission device according to the second aspect of the present technology may be an independent device, or may be an internal block constituting one device. A transmission method according to the second aspect of the present technology is a transmission method corresponding to the transmission device according to the second aspect of the present technology described above.

  In the transmission device and the transmission method according to the second aspect of the present technology, there is an application that encrypts broadcast content using a scramble key, generates encrypted content, and operates in association with the encrypted content. A common message that is generated and includes the scramble key, and is used to determine whether the license obtained by the receiving device is valid, and is shared with the application and the application together with the encrypted content A message is sent.

  According to the first aspect and the second aspect of the present technology, it is possible to realize a limited reception system with higher flexibility.

  Note that the effects described here are not necessarily limited, and may be any of the effects described in the present disclosure.

It is a figure which shows the structural example of one Embodiment of the broadcast communication system to which this technique is applied. It is a figure explaining a use case scenario. It is a figure explaining the outline | summary of a conditional access system. It is a figure explaining PPV service system 1. FIG. It is a sequence diagram explaining PPV service system 1 of advance purchase. It is a sequence diagram explaining PPV service system 1 of purchase after preview. It is a figure explaining PPV service system 2. FIG. It is a sequence diagram explaining PPV service system 2 of advance purchase. It is a sequence diagram explaining PPV service system 2 of purchase after preview. It is a figure explaining the PPV service system 3. FIG. It is a sequence diagram explaining PPV service system 3 of prior purchase. It is a sequence diagram explaining PPV service system 3 of purchase after preview. It is a figure explaining the PPV service system 4. FIG. It is a figure which shows the detailed structural example of a CAS system. It is a figure which shows the structure of the information element of a license. It is a figure which shows the structure of the information element of ECM. It is a figure which shows the example of API of CAS platform. It is a figure which shows the structural example of a license key. It is a figure which shows the specific example of a license key. It is a figure which shows the specific example of a license key. It is a figure which shows the specific example of a license key. It is a figure which shows the structural example of a transmitter. It is a figure which shows the structural example of a receiver. It is a figure which shows the functional structural example of a control part. It is a figure which shows the structural example of each server. It is a flowchart explaining the flow of a transmission process. It is a flowchart explaining the flow of a prior purchase process. It is a flowchart explaining the flow of a license acquisition process. It is a flowchart explaining the flow of a license provision process. It is a flowchart explaining the flow of a license determination process. It is the figure which represented typically the comparison content of the license determination process. It is a flowchart explaining the flow of a license key collation process. It is a flowchart explaining the flow of PPV content reproduction processing. It is a flowchart explaining the flow of an application starting process. It is a flowchart explaining the flow of the purchase process after a preview. It is a figure which shows the structural example of a computer.

  Hereinafter, embodiments of the present technology will be described with reference to the drawings. The description will be made in the following order.

1. 1. System configuration Use case (1) PPV service method 1
(2) PPV service method 2
(3) PPV service method 3
(4) PPV service method 4
3. 3. Detailed configuration of CAS system 4. Configuration of license key Configuration of each device 6. 6. Process flow executed by each device Computer configuration

<1. System configuration>

(Broadcast communication system)
FIG. 1 is a diagram illustrating a configuration example of an embodiment of a broadcast communication system to which the present technology is applied.

  In FIG. 1, the broadcast communication system 1 includes a transmission device 10, a reception device 20, a web server 30, a CAS server 40, a billing settlement server 50, and a mobile terminal device 70. In FIG. 1, the receiving device 20, the web server 30, the CAS server 40, the billing settlement server 50, and the mobile terminal device 70 are connected via the Internet 90.

  The transmitting device 10 transmits paid broadcast content such as PPV (hereinafter referred to as “PPV content”) via a transmission path 80 by a digital broadcast signal corresponding to a predetermined standard of digital broadcasting. Further, the transmission device 10 can distribute an application that operates in association with the PPV content by data broadcasting. Note that the transmission device 10 is provided by a broadcaster and placed in a broadcast station. The PPV content can be, for example, 4K or 8K ultra-high definition content.

  The receiving device 20 is, for example, a television receiver capable of receiving a digital broadcast signal corresponding to a predetermined standard for digital broadcasting, and is disposed at a user's home. The receiving device 20 can receive the digital broadcast signal transmitted from the transmitting device 10 via the transmission path 80 and reproduce the PPV content. The receiving device 20 can receive and execute an application distributed by data broadcasting.

  The web server 30 distributes an application that operates in association with the PPV content via the Internet 90 in response to a request from the receiving device 20. The receiving device 20 can receive and execute an application distributed from the web server 30 via the Internet 90.

  The web server 30 and CAS server 40 perform processing related to the license of the PPV content. The web server 30 and the CAS server 40 distribute the license of the PPV content via the Internet 90 in response to a request from the receiving device 20. Note that the web server 30 is provided by, for example, a broadcaster and disposed at a broadcasting station. Further, the web server 30 can provide a web page of the portal site via the Internet 90 in response to a request from the receiving device 20.

  The billing settlement server 50 performs billing settlement processing for the PPV content instructed to purchase in response to a request from the receiving device 20.

  The mobile terminal device 70 is, for example, a portable electronic device such as a smartphone, a tablet terminal, or a mobile phone. Here, the receiving device 20 and the mobile terminal device 70 have a communication function such as a wireless local area network (LAN) and Bluetooth (registered trademark), and can communicate with each other. For example, the mobile terminal device 70 receives (acquires) an application distributed by data broadcasting from the transmission device 10 or an application distributed from the web server 30 via the Internet 90 and cooperates with the reception device 20. The application can be executed.

<2. Use Case>

(Use case scenario)
FIG. 2 is a diagram for explaining a use case scenario.

  FIG. 2 illustrates three use cases of “TV advance purchase”, “mobile advance purchase”, and “TV preview purchase”. In “TV advance purchase” as use case 1, when a purchase operation is performed by a user on a screen for purchasing PPV content displayed on the receiving device 20, a license for the PPV content is acquired. . In this way, for example, by purchasing a pre-sale of a paid music program, the license is acquired, so that the user can view the music program.

  In “mobile advance purchase” as use case 2, when the user performs a purchase operation on the screen for purchasing PPV content displayed on the mobile terminal device 70, the license of the PPV content is acquired and the mobile Since the terminal device 70 and the receiving device 20 are connected, the license can be transferred to the receiving device 20 so that the user can view the music program on the screen of the receiving device 20.

  In “TV preview purchase” as use case 3, the user performs a purchase operation on the preview screen of the PPV content displayed on the receiving apparatus 20 within a predetermined time during preview reproduction of a music program, for example. If this happens, the music program license is acquired. In this case, the music program is continuously viewed. On the other hand, if the purchase operation is not performed by the user within a predetermined time during the preview playback of the music program, the license for the music program has not been acquired. The reproduction of the music program is ended, and a message indicating that is displayed.

  Hereinafter, four PPV service systems for realizing these three use cases will be described.

(Outline of conditional access system)
FIG. 3 is a diagram for explaining the outline of the conditional access system.

  In a conditional access system (CAS), audio and video data constituting PPV content is encrypted using a scramble key (Ks) by a transmitter 10 of a broadcasting station, while a receiver 20 Thus, the encrypted audio or video data is decrypted using the scramble key (Ks).

  In addition, the transmitting device 10 provides the receiving device 20 with EMM (Entitlement Management Message) as related information (individual message) of the identification unit of the receiving device 20 and related information (common message) common to each receiving device 20. ) As an ECM (Entitlement Control Message).

  The EMM is composed of an encryption part and a non-encryption part. In the EMM, the encryption unit is encrypted with a device key (Kd), and a work key (Kw), a work key ID (KwID), and device key update information are arranged there. In addition, a device ID, a protocol number, a business entity identification, an update number, and the like are arranged in the non-encryption unit.

  The ECM is composed of an encryption part and a non-encryption part. In the ECM, the encryption unit is encrypted using a work key (Kw), and a scramble key (Ks) is arranged there. In addition, a protocol number, business entity identification, work key ID (KwID), and the like are arranged in the non-encryption unit.

  In the receiving device 20, since the EMM and ECM distributed from the transmitting device 10 are acquired, the work key (Kw) is acquired by decrypting the EMM using the device key (Kd). Also, the scramble key (Ks) is obtained by decrypting the ECM using the work key (Kw). As a result, the receiving device 20 can decrypt the encrypted audio and video data obtained from the broadcast stream using the scramble key (Ks).

  In FIG. 3, a scramble control bit, a scramble method identifier, and the like are arranged in an extension header of a packet storing encrypted audio and video data transmitted as a broadcast stream.

(1) PPV service method 1

  FIG. 4 is a diagram for explaining the PPV service method 1.

  In PPV service method 1, users who only watch normal terrestrial digital TV broadcasts without a special PPV subscription contract, can purchase PPV content in advance or purchase PPV content after preview playback. The operation of the service that enables viewing of PPV content is assumed.

  In FIG. 4, EMM is composed of an encryption part and a non-encryption part, and is distributed together with a broadcast stream. In the EMM, the encryption unit is encrypted with a device key (Kd), and a work key (Kw), a work key ID (KwID), and device key update information are arranged there. In addition, a device ID, a protocol number, a business entity identification, an update number, and the like are arranged in the non-encryption unit.

  The ECM is composed of an encryption part and a non-encryption part, and is distributed together with the broadcast stream. In ECM, the encryption unit is encrypted using a work key (Kw), and a scramble key (Ks), a current time, a reference license key, and preview information are arranged there. In addition, a protocol number, business entity identification, work key ID (KwID), license ID, and the like are arranged in the non-encryption unit.

  The license includes an encryption part and a non-encryption part, and is distributed from a server on the Internet 90. In the license, the encryption unit is encrypted using the master key (Km), and the license key and the expiration date are arranged there. In addition, a CAS platform ID (hereinafter may be abbreviated as “CAPID” in the figure), a license ID, and the like are arranged in the non-encrypted part.

  In the receiving device 20, the EMM, ECM, and license are acquired at a predetermined timing. First, the receiving device 20 decrypts the EMM encryption unit using the device key (Kd), and obtains a work key (Kw). The receiving device 20 obtains the reference license key obtained by decrypting the ECM encryption unit using the work key (Kw) and the license encryption unit using the master key (Km). Judgment processing is performed to match the license key.

  Here, for example, when it is determined by the determination process that the current time of the ECM is within the expiration date of the license and the reference license key matches the license key, the scramble key (Ks) is sent from the ECM encryption unit. Is read out. Note that by using the current time of the ECM, for example, even when an accurate time is not measured as the time measured by the receiving device 20, the expiration date can be reliably determined.

  In the receiving device 20, the audio or video data (packets) obtained from the broadcast stream received from the transmitting device 10 is encrypted with the scramble key (Ks), so the scramble key (Ks) acquired from the ECM. The encrypted audio or video data (packet) is decrypted using. As a result, the receiving device 20 reproduces the PPV content.

  Note that the preview time of 10 minutes or the like is designated in the ECM preview information. In the receiving device 20, when it is within the preview allowable period specified by the preview information, the scramble key (Ks) is provided regardless of the presence or absence of the license so that the PPV content can be viewed. To do.

(Pre-purchase PPV service method 1)
FIG. 5 is a sequence diagram for explaining the pre-purchased PPV service method 1. In FIG. 5, between the transmission device 10, the web server 30, the CAS server 40, and the billing settlement server 50 as the transmission side, and the reception device 20 and the mobile terminal device 70 as the reception side. The flow of information exchanged in is shown.

  However, in the receiving device 20, the resident application 20A, the CAS platform 20B, and the receiver browser 20C are operating, and the processes executed by them are shown. Further, in the mobile terminal device 70, a mobile browser 70A is operating and its processing is shown.

  Each of the receiver browser 20C and the mobile browser 70A for executing the application has a function of presenting information to the user or accepting an operation from the user. Although a description may be used here, a case where the dotted line in the figure is ignored and the receiver browser 20C is operated by the user will be described as an example. If the mobile browser 70A is used without using the receiver browser 20C, processing similar to that performed by the receiver browser 20C is performed in the mobile browser 70A as indicated by the dotted line in the figure. . These relationships are the same in other figures described later.

  In FIG. 5, the transmitting apparatus 10 distributes, for example, EMM corresponding to a content rights protection dedicated method (RMP: Rights Management and Protection) together with a stream (broadcast stream) of PPV content (S11). In the receiving device 20, the resident application 20A acquires the EMM distributed from the transmitting device 10, decrypts the encryption part with the device key (Kd), acquires the work key (Kw), and the CAS platform 20B. (S12).

  Thereafter, in the receiving device 20, the receiver browser 20C requests an application from the web server 30 via the Internet 90 in accordance with a user operation (S13), and acquires the application (S14). As a result, the receiving device 20 displays a screen for purchasing PPV content by the application (S15). The application may display a promotion of PPV content or the like.

  Here, in the receiving device 20, when the user instructs the purchase of the PPV content on the screen for purchasing the PPV content (S16), the receiver browser 20C makes an inquiry to the CAS platform 20B to obtain the CAS platform ID. Is acquired (S17). Then, the receiver browser 20C transmits a license request including the CAS platform ID acquired in step S17 to the web server 30 via the Internet 90 (S18).

  Based on the license request from the receiving device 20 (the receiver browser 20C), the web server 30 generates data (hereinafter referred to as “license raw data”) that is a raw license (S19). Further, the web server 30 transmits the license raw data generated in the process of step S19 to the CAS server 40, and requests encryption with the master key (Km) (S20).

  In response to the encryption request from the web server 30, the CAS server 40 generates a license by encrypting the encryption part of the license raw data using the master key (Km) (S21). 30. The web server 30 transfers the license transmitted from the CAS server 40 to the receiving device 20 (the receiver browser 20C) via the Internet 90 (S22).

  In the receiving device 20, the receiver browser 20C acquires (receives) a license transmitted from the web server 30 via the Internet 90 (S23). The receiver browser 20C inputs (injects) the license acquired in the process of step S23 into the CAS platform 20B and holds it (S24). The CAS platform 20B decrypts the license encryption part stored in step S24 with the master key (Km) stored in advance, and stores information such as the license key and the expiration date arranged there. Try to keep it.

  When the license is held by the CAS platform 20B, the receiver browser 20C makes a PPV billing settlement request to the billing settlement server 50 via the Internet 90 (S25). The billing settlement server 50 performs PPV billing settlement processing based on the PPV billing settlement request from the receiving device 20 (the receiver browser 20C) (S26). The billing settlement server 50 notifies the receiving device 20 (the receiver browser 20C) of the result of the PPV billing settlement processing in step S26 via the Internet 90.

  In this way, PPV content is purchased in advance and the license is retained. Thereafter, the transmission device 10 distributes the stream (broadcast stream) of the PPV content, and the audio and video data of the PPV content is encrypted with the scramble key (Ks). Further, the transmission device 10 distributes the ECM together with the stream of PPV content. In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S27).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in the process of step S12, the reference license key arranged there, and the process of step S24. The license determination process is performed by comparing with the license key of the license held in (S28). In this determination process, when the current time of ECM is within the expiration date of the license and the reference license key and the license key match, the scramble key (Ks) is read from the encryption part of the ECM and the CAS platform 20B. To the resident application 20A (S29).

  As a result, the resident application 20A uses the scramble key (Ks) from the CAS platform 20B to decrypt the PPV content audio and video encrypted data distributed from the transmission device 10 and reproduce the PPV content ( S30).

  Since the ECM is repeatedly sent at a predetermined timing, for example, the CAS platform 20B performs a license determination process every time the ECM is updated, and notifies the scramble key (Ks) to the resident application 20A. Become. The scramble key (Ks) is updated every predetermined time, and is updated once every several seconds, for example.

  The PPV service method 1 for advance purchase has been described above. In this pre-purchased PPV service method 1, the promotion by the application and the PPV content are connected by the screen for purchasing the PPV content at the time of pre-purchase, and a situation where the user can easily purchase the PPV content can be created. it can. In addition, when the user is instructed to purchase PPV content, the license acquisition processing and billing settlement processing for the PPV content can be handled as a series of processes starting from the promotion of PPV content. Since there is no particular limitation on the processing, a more flexible conditional access system can be realized.

(PPV service method purchased after preview 1)
FIG. 6 is a sequence diagram for explaining the PPV service method 1 for purchase after preview.

  In FIG. 6, the transmitting apparatus 10 distributes EMM and ECM corresponding to RMP together with a stream of PPV content (S41). In the receiving device 20, the resident application 20A acquires the EMM distributed from the transmitting device 10, decrypts the encryption part with the device key (Kd), acquires the work key (Kw), and the CAS platform 20B. (S42).

  Even after that, the transmitting apparatus 10 distributes the stream of the PPV content, but the audio and video data of the PPV content is encrypted with the scramble key (Ks). In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S43).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in step S42, and refers to the preview information arranged there (S44). Here, since a predetermined preview allowable period such as 10 minutes is specified in the preview information (preview time), preview playback of the PPV content is performed within the preview allowable period regardless of the license. It is possible.

  Therefore, the CAS platform 20B reads the scramble key (Ks) from the ECM encryption unit without performing the license determination process, and notifies the resident application 20A (S45). As a result, the resident application 20A can decrypt the audio and video encrypted data of the PPV content distributed from the transmission device 10 using the scramble key (Ks) from the CAS platform 20B.

  As a result, the receiver 20 previews and reproduces the PPV content (for example, a music program). This preview playback is continuously played within the preview allowable period of PPV content, but if the purchase of PPV content is not instructed within that period, the preview playback ends after the preview allowable period ends. .

  The transmitting apparatus 10 distributes the application by data broadcasting together with the stream of PPV content. In the receiving device 20, the receiver browser 20C acquires the application from the transmitting device 10 and automatically starts it (S46, S47). As a result, the receiving device 20 displays a screen for purchasing PPV content. The application may display a promotion of PPV content or the like.

  Here, in the receiving device 20, when purchase of PPV content is instructed on the screen for purchasing PPV content within the preview allowable period (S48), the receiver browser 20C makes an inquiry to the CAS platform 20B. The CAS platform ID is acquired (S49). Then, the receiver browser 20C makes a license request including the CAS platform ID acquired in step S49 to the web server 30 via the Internet 90 (S50).

  In steps S51 to S54, as in steps S19 to S22 of FIG. 5, the license raw data corresponding to the license request is generated by the web server 30, and the encryption unit receives the master key (Km) by the CAS server 40. The license obtained by encryption is transferred to the receiving device 20.

  In the receiving device 20, the receiver browser 20C acquires (receives) a license transmitted from the web server 30 via the Internet 90 (S55). The receiver browser 20C inputs (injects) the license acquired in the process of step S55 into the CAS platform 20B and holds it (S56). Now, since the PPV content being played is in the preview allowable period, it can be played back regardless of whether or not there is a license. However, the license is retained in the process of step S56, so that even after the preview allowable period has elapsed. The license allows the PPV content to be played.

  When the license is held by the CAS platform 20B, in steps S57 to S58, the PPV billing settlement process is performed by the billing settlement server 50 as in steps S25 to S26 of FIG.

  Thereafter, although the preview allowable period ends, the reproduction of the PPV content is continued even after the period has elapsed. That is, in the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S59).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in the process of step S42, the reference license key arranged there, and the process of step S56 The license determination process is performed by comparing with the license key of the license held in (S60). In this determination process, when the current time of ECM is within the expiration date of the license and the reference license key and the license key match, the scramble key (Ks) is read from the encryption part of the ECM and the CAS platform 20B. To the resident application 20A (S61).

  As a result, the resident application 20A uses the scramble key (Ks) from the CAS platform 20B to decrypt the PPV content audio and video encrypted data distributed from the transmission device 10 and reproduce the PPV content ( S62).

  The PPV service method 1 purchased after preview has been described above. In this PPV service method 1 for purchase after preview, a screen for purchasing PPV content at the time of purchase after preview connects the promotion by the application and the PPV content, creating a situation where the user can easily purchase PPV content. be able to. In addition, when the user is instructed to purchase PPV content, the license acquisition processing and billing settlement processing for the PPV content can be handled as a series of processes starting from the promotion of PPV content. Since there is no particular limitation on the processing, a more flexible conditional access system can be realized. In the PPV service method 1 purchased after previewing, if the receiving device 20 has a device key (Kd), preview playback of PPV content can be performed without acquiring a license.

(2) PPV service method 2

  FIG. 7 is a diagram for explaining the PPV service method 2.

  PPV service method 2 is a service that enables viewing of PPV content only for users who have signed a PPV subscription contract, after purchasing the PPV content, or purchasing PPV content after preview playback. Is assumed.

  In FIG. 7, the EMM is composed of an encryption part and a non-encryption part. In the EMM, the encryption unit is encrypted with a master key (Km) for a PPV contractor, and a work key (Kw), a work key ID (KwID), and an expiration date are arranged there. In addition, a device ID, a protocol number, a business entity identification, an update number, and the like are arranged in the non-encryption unit.

  The ECM is composed of an encryption part and a non-encryption part. In ECM, the encryption unit is encrypted using a work key (Kw), and a scramble key (Ks), a current time, a reference license key, and preview information are arranged there. In addition, a protocol number, business entity identification, work key ID (KwID), license ID, and the like are arranged in the non-encryption unit.

  The license is composed of an encryption part and a non-encryption part. In the license, the encryption unit is encrypted using the master key (Km), and the license key and the expiration date are arranged there. In the non-encrypted part, a CAS platform ID and a license ID are arranged.

  In the receiving device 20, the EMM, ECM, and license are acquired at a predetermined timing. First, the receiving device 20 decrypts the encryption part of the EMM using the master key (Km), and acquires the work key (Kw). The receiving device 20 obtains the reference license key obtained by decrypting the ECM encryption unit using the work key (Kw) and the license encryption unit using the master key (Km). Judgment processing is performed to match the license key.

  Here, for example, when it is determined by the determination process that the current time of the ECM is within the expiration date of the license and the reference license key matches the license key, the scramble key (Ks) is sent from the ECM encryption unit. Is read out.

  In the receiving device 20, the audio and video data (packets) obtained from the broadcast stream received from the transmitting device 10 is encrypted with the scramble key (Ks), so the scramble key (Ks) acquired from the ECM. The encrypted audio or video data (packet) is decrypted using. As a result, the receiving device 20 reproduces the PPV content.

  As described above, in the PPV service method 2 in FIG. 7, the EMM encryption unit uses the master key (Km) instead of the device key (Kd) in comparison with the PPV service method 1 in FIG. Is different.

(PPV service method 2 in advance purchase)
FIG. 8 is a sequence diagram for explaining the pre-purchased PPV service method 2.

  In step S71, the receiver browser 20C of the receiving device 20 requests the web page of the portal site for the PPV contract from the web server 30 via the Internet 90 according to the user's operation, and the web of the portal site. A page is acquired (S72). As a result, the receiving device 20 displays a PPV contract screen (S73).

  Here, when the PPV contract is instructed by the user to the PPV contract screen in the receiving device 20 (S74), the receiver browser 20C obtains the CAS platform ID by making an inquiry to the CAS platform 20B. (S75). Then, the receiver browser 20C transmits a contract request including the CAS platform ID acquired in step S75 to the web server 30 via the Internet 90 (S76).

  The web server 30 generates EMM raw data in response to the contract request from the receiving device 20 (the receiver browser 20C) (S77). Further, the web server 30 transmits the EMM raw data generated in the process of step S77 to the CAS server 40 and requests encryption using the master key (Km) (S78).

  In response to the encryption request from the web server 30, the CAS server 40 generates an EMM by encrypting the encryption part of the EMM raw data using the master key (Km) (S79). Send to. The web server 30 transmits the EMM transmission request transmitted from the CAS server 40 to the transmission device 10 (S80). In response to the EMM transmission request from the web server 30, the transmission device 10 distributes the EMM (EMM according to the contract request from the user) together with the broadcast stream (S81).

  In the receiving device 20, the resident application 20A acquires the EMM distributed from the transmitting device 10, acquires the work key (Kw) by decrypting the encryption part using the master key (Km), and the CAS platform 20B. (S82).

  Thereafter, in the receiving device 20, the receiver browser 20C requests an application from the web server 30 via the Internet 90 in accordance with a user operation (S83), and acquires the application (S84). As a result, the receiving device 20 displays a screen for purchasing PPV content (S85). The application may display a promotion of PPV content or the like.

  Here, in the receiving device 20, when the user instructs the purchase of PPV content on the screen for purchasing PPV content (S86), the receiver browser 20C makes an inquiry to the CAS platform 20B to obtain the CAS platform ID. Is acquired (S87). Then, the receiver browser 20C transmits a license request including the CAS platform ID acquired in step S87 to the web server 30 via the Internet 90 (S88).

  The web server 30 generates license raw data based on the license request from the receiving device 20 (the receiver browser 20C) (S89). Further, the web server 30 transmits the license raw data generated in the process of step S89 to the CAS server 40, and requests encryption with the master key (Km) (S90).

  In response to the encryption request from the web server 30, the CAS server 40 generates a license by encrypting the encryption part of the license raw data using the master key (Km) (S 91). Send to server 30. The web server 30 transfers the license transmitted from the CAS server 40 to the receiving device 20 (the receiver browser 20C) via the Internet 90 (S92).

  In the receiving device 20, the receiver browser 20C acquires (receives) the license transmitted from the web server 30 via the Internet 90 (S93). The receiver browser 20C inputs (injects) and holds the license acquired in step S93 in the CAS platform 20B (S94). The CAS platform 20B decrypts the license encryption part stored in step S94 with the master key (Km) stored in advance, and stores information such as the license key and expiration date arranged there. Try to keep it.

  When the license is held by the CAS platform 20B, the receiver browser 20C makes a PPV billing settlement request to the billing settlement server 50 via the Internet 90 (S95). The billing settlement server 50 performs PPV billing settlement processing based on the PPV billing settlement request from the receiving device 20 (the receiver browser 20C) (S96). The billing settlement server 50 notifies the receiving device 20 (the receiver browser 20C) of the result of the PPV billing settlement processing in step S96 via the Internet 90.

  In this way, the PPV content is purchased in advance and the license is retained. Thereafter, the transmission device 10 distributes the stream (broadcast stream) of the PPV content, and the audio and video data of the PPV content is encrypted with the scramble key (Ks). Further, the transmission device 10 distributes the ECM together with the stream of PPV content. In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S97).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in the process of step S82, the reference license key arranged there, and the process of step S94 The license determination process is performed by comparing with the license key of the license held in (S98). In this determination process, when the current time of ECM is within the expiration date of the license and the reference license key and the license key match, the scramble key (Ks) is read from the encryption part of the ECM and the CAS platform 20B. To the resident application 20A (S99).

  As a result, the resident application 20A uses the scramble key (Ks) from the CAS platform 20B to decrypt the PPV content audio and video encrypted data distributed from the transmission device 10 and reproduce the PPV content ( S100).

  In the above, the PPV service method 2 of prior purchase was demonstrated. In this pre-purchased PPV service method 2, the promotion by the application and the PPV content are connected by the screen for purchasing PPV content at the time of pre-purchase, and it is possible to create a situation where users can easily purchase PPV content. it can. In addition, when the user is instructed to purchase PPV content, the license acquisition processing and billing settlement processing for the PPV content can be handled as a series of processes starting from the promotion of PPV content. Since there is no particular limitation on the processing, a more flexible conditional access system can be realized.

(PPV service method 2 purchased after preview)
FIG. 9 is a sequence diagram for explaining the PPV service method 2 for purchase after preview.

  In steps S101 to S103, as in steps S71 to S73 of FIG. 8, the receiving device 20 receives the web page of the portal site for the PPV contract from the web server 30, and displays the screen for the PPV contract. Then, when a PPV contract is instructed by the user on the screen for PPV contract (S104), in steps S105 to S106, the CAS platform ID is obtained from the CAS platform 20B in the same manner as in steps S75 to S76 of FIG. The acquired contract request including the CAS platform ID is transmitted to the web server 30.

  Further, in steps S107 to S111, as in steps S77 to S81 of FIG. 8, EMM raw data is generated by the web server 30, and the encryption part is encrypted by the CAS server 40. And the EMM (EMM according to the contract request from a user) is delivered by the transmitter 10. Thereby, in the receiving device 20, the resident application 20A acquires the EMM distributed from the transmitting device 10, acquires the work key (Kw) by decrypting the encryption part with the master key (Km), The CAS platform 20B is held (S112).

  Thereafter, the transmitting apparatus 10 distributes the stream of the PPV content, and the audio and video data of the PPV content is encrypted with the scramble key (Ks). In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S113).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in step S112, and refers to the preview information arranged there (S114). Here, since preview time such as 10 minutes is designated in the preview information, PPV content can be viewed within the preview allowable period regardless of whether or not there is a license.

  Therefore, the CAS platform 20B reads out the scramble key (Ks) from the encryption part of the ECM without performing the license determination process, and notifies it to the resident application 20A (S115). As a result, the resident application 20A can decrypt the audio and video encrypted data of the PPV content distributed from the transmission device 10 using the scramble key (Ks) from the CAS platform 20B.

  As a result, the receiver 20 previews and reproduces the PPV content (for example, a music program). This preview playback is continuously played within the preview allowable period of PPV content, but if the purchase of PPV content is not instructed within that period, the preview playback ends after the preview allowable period ends. .

  The transmitting apparatus 10 distributes the application by data broadcasting together with the stream of PPV content. In the receiving device 20, the receiver browser 20C acquires the application from the transmitting device 10 and automatically starts it (S116, S117). As a result, the receiving device 20 displays a screen for purchasing PPV content. The application may display a promotion of PPV content or the like.

  Here, in the receiving apparatus 20, when the user instructs the purchase of the PPV content on the screen for purchasing the PPV content within the preview allowable period (S118), the receiver browser 20C makes an inquiry to the CAS platform 20B. Thus, the CAS platform ID is acquired (S119). Then, the receiver browser 20C makes a license request including the CAS platform ID acquired in step S119 to the web server 30 via the Internet 90 (S120).

  In steps S121 to S124, as in steps S89 to S92 of FIG. 8, the license raw data corresponding to the license request is generated by the web server 30, and the encryption unit receives the master key (Km) by the CAS server 40. The license obtained by encryption is transferred to the receiving device 20.

  In the receiving device 20, the receiver browser 20C acquires (receives) a license transmitted from the web server 30 via the Internet 90 (S125). The receiver browser 20C inputs (injects) the license acquired in step S125 into the CAS platform 20B and holds it (S126). Now, since the PPV content being played is within the allowable preview period, it can be played regardless of whether or not there is a license. However, the license is retained in step S126, so that the preview allowable period has elapsed. In addition, the PPV content can be reproduced by the license.

  When the license is held by the CAS platform 20B, in steps S127 to S128, the PPV billing settlement process is performed by the billing settlement server 50 as in steps S95 to S96 of FIG.

  Thereafter, although the preview allowable period ends, the reproduction of the PPV content is continued even after the period has elapsed. That is, in the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S129).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in the process of step S112, the reference license key arranged there, and the process of step S126. The license determination process is performed by comparing with the license key of the license held in (S130). In this determination process, when the current time of ECM is within the expiration date of the license and the reference license key and the license key match, the scramble key (Ks) is read from the encryption part of the ECM and the CAS platform 20B. To the resident application 20A (S131).

  As a result, the resident application 20A uses the scramble key (Ks) from the CAS platform 20B to decrypt the PPV content audio and video encrypted data distributed from the transmission device 10 and reproduce the PPV content ( S132).

  The PPV service method 2 purchased after preview has been described above. In this PPV service method 2 for purchase after preview, a screen for purchasing PPV content at the time of purchase after preview connects the promotion by the application and the PPV content, creating a situation where users can easily purchase PPV content. be able to. In addition, when the user is instructed to purchase PPV content, the license acquisition processing and billing settlement processing for the PPV content can be handled as a series of processes starting from the promotion of PPV content. Since there is no particular limitation on the processing, a more flexible conditional access system can be realized.

(3) PPV service method 3

  FIG. 10 is a diagram for explaining the PPV service method 3.

  In PPV service method 3, users who are only watching normal digital terrestrial television broadcasting without a special PPV subscription contract can purchase PPV content in advance or purchase PPV content after preview playback. The operation of the service that enables viewing of PPV content is assumed.

  In FIG. 10, the ECM is composed of an encryption part and a non-encryption part. In the ECM, the encryption unit is encrypted using a work key (Kw), and a scramble key (Ks), a current time, and a reference license key are arranged there. In addition, a protocol number, business entity identification, work key ID (KwID), license ID, and the like are arranged in the non-encryption unit.

  The license is composed of an encryption part and a non-encryption part. In the license, the encryption unit is encrypted using a master key (Km), and a license key, an expiration date, a work key (Kw), and a work key ID (KwID) are arranged there. In the non-encrypted part, a CAS platform ID and a license ID are arranged.

  In the receiving device 20, the ECM and the license are acquired at a predetermined timing. First, the receiving device 20 decrypts the license encryption part using the master key (Km), and obtains the work key (Kw). The receiving device 20 obtains the reference license key obtained by decrypting the ECM encryption unit using the work key (Kw) and the license encryption unit using the master key (Km). Judgment processing is performed to match the license key.

  Here, for example, when it is determined by the determination process that the current time of the ECM is within the expiration date of the license and the reference license key matches the license key, the scramble key (Ks) is sent from the ECM encryption unit. Is read out.

  In the receiving device 20, the audio and video data (packets) obtained from the broadcast stream received from the transmitting device 10 is encrypted with the scramble key (Ks), so the scramble key (Ks) acquired from the ECM. The encrypted audio or video data (packet) is decrypted using. As a result, the receiving device 20 reproduces the PPV content.

  As described above, in the PPV service method 3 in FIG. 10, compared to the PPV service method 1 in FIG. 4, the EMM is not used, and the work key (Kw) is arranged in the encryption part of the license. Are different.

(PPV service method 3 in advance purchase)
FIG. 11 is a sequence diagram for explaining the pre-purchased PPV service method 3.

  In step S131, the receiver browser 20C of the receiving device 20 requests an application from the web server 30 via the Internet 90 in accordance with a user operation, and acquires the application (S132). As a result, the receiving device 20 displays a screen for purchasing PPV content (S133). The application may display a promotion of PPV content or the like.

  Here, in the receiving device 20, when the user instructs the purchase of the PPV content on the screen for purchasing the PPV content (S134), the receiver browser 20C makes an inquiry to the CAS platform 20B to obtain the CAS platform ID. Is acquired (S135). Then, the receiver browser 20C transmits a license request including the CAS platform ID acquired in step S135 to the web server 30 via the Internet 90 (S136).

  The web server 30 generates license raw data in response to a license request from the receiving device 20 (the receiver browser 20C) (S137). Further, the web server 30 transmits the license raw data generated by the process of step S137 to the CAS server 40, and requests encryption using the master key (Km) (S138).

  In response to the encryption request from the web server 30, the CAS server 40 generates a license by encrypting the encryption part of the license raw data using the master key (Km) (S139). Send to. The web server 30 transfers the license transmitted from the CAS server 40 to the receiving device 20 (the receiver browser 20C) via the Internet 90 (S140).

  In the receiving device 20, the receiver browser 20C acquires (receives) a license transmitted from the web server 30 via the Internet 90 (S141). The receiver browser 20C inputs (injects) the license acquired in the process of step S141 into the CAS platform 20B and holds it (S142). The CAS platform 20B uses the master key (Km) stored in advance to decrypt the license encryption unit stored in step S142, and the work key (Kw), license key, and valid key stored there. Keep information such as deadlines.

  When the license is held by the CAS platform 20B, the receiver browser 20C makes a PPV billing settlement request to the billing settlement server 50 via the Internet 90 (S143). The billing settlement server 50 performs PPV billing settlement processing based on the PPV billing settlement request from the receiving device 20 (the receiver browser 20C) (S144). The billing settlement server 50 notifies the receiving device 20 (the receiver browser 20C) of the result of the PPV billing settlement processing in step S144 via the Internet 90.

  In this way, the PPV content is purchased in advance and the license is retained. Thereafter, the transmission device 10 distributes the stream (broadcast stream) of the PPV content, and the audio and video data of the PPV content is encrypted with the scramble key (Ks). Further, the transmission device 10 distributes the ECM together with the stream of PPV content. In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S145).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) obtained from the license held in the process of step S142, and the reference license key arranged there, A license determination process is performed by comparing with the license key of the license held in the process of step S142 (S146). In this determination process, when the current time of ECM is within the expiration date of the license and the reference license key and the license key match, the scramble key (Ks) is read from the encryption part of the ECM and the CAS platform 20B. To the resident application 20A (S147).

  As a result, the resident application 20A uses the scramble key (Ks) from the CAS platform 20B to decrypt the PPV content audio and video encrypted data distributed from the transmission device 10 and reproduce the PPV content ( S148).

  The PPV service method 3 for advance purchase has been described above. In this pre-purchased PPV service method 3, the screen for purchasing PPV content at the time of pre-purchase can connect the promotion by the application and the PPV content, creating a situation where users can easily purchase PPV content. it can. In addition, when the user is instructed to purchase PPV content, the license acquisition processing and billing settlement processing for the PPV content can be handled as a series of processes starting from the promotion of PPV content. Since there is no particular limitation on the processing, a more flexible conditional access system can be realized.

(PPV service method purchased after preview 3)
FIG. 12 is a sequence diagram for explaining the PPV service method 3 for purchase after preview.

  In FIG. 12, the transmitting apparatus 10 distributes ECM together with a stream of PPV content. In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S161). In step S162, the CAS platform 20B performs the license determination process. Here, since the license has not been acquired, the scramble key (Ks) is not acquired from the ECM, and as a result, the audio and video encryption of the PPV content is not acquired. The encrypted data cannot be decrypted.

  The transmitting apparatus 10 distributes the application by data broadcasting together with the stream of PPV content. In the receiving device 20, the receiver browser 20C acquires the application from the transmitting device 10 and automatically starts it (S163, S164). As a result, the receiving device 20 displays a screen for instructing preview playback of the PPV content. The application may display a promotion of PPV content or the like.

  Here, in the receiving apparatus 20, when a preview instruction for PPV content is instructed by the user on the preview playback instruction screen (S165), the receiver browser 20C makes an inquiry to the CAS platform 20B to inquire about the CAS platform 20B. A platform ID is acquired (S166). The receiver browser 20C makes a preview license request including the CAS platform ID acquired in step S166 to the web server 30 via the Internet 90 (S167).

  The web server 30 generates raw preview license data in response to the preview license request from the receiving device 20 (the receiver browser 20C) (S168). Further, the web server 30 transmits the preview license raw data generated in the process of step S168 to the CAS server 40, and requests encryption with the master key (Km) (S169).

  In response to the encryption request from the web server 30, the CAS server 40 generates a preview license by encrypting the encryption portion of the preview license raw data using the master key (Km) (S170). The web server 30 transfers the preview license generated by the CAS server 40 to the receiving device 20 (the receiver browser 20C) via the Internet 90 (S171).

  In the receiving device 20, the receiver browser 20C acquires (receives) the preview license transmitted from the web server 30 via the Internet 90 (S172). The receiver browser 20C inputs (injects) the preview license acquired in step S172 into the CAS platform 20B and holds it (S173). The CAS platform 20B decrypts the encryption part of the preview license held in step S173 with the master key (Km) held in advance, and the work key (Kw), license key, Keep information such as expiration date.

  In the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S174). The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in the process of step S173, the reference license key arranged there, and the process of step S173 In step S175, the license determination process is performed by comparing with the license key of the preview license held in step S175.

  In this determination process, when the current ECM time is within the expiration date of the preview license and the reference license key matches the license key, the scramble key (Ks) is read from the encryption part of the ECM and the resident The application 20A is notified (S176). However, since the preview license is a temporary license for preview, its valid period is limited to, for example, 10 minutes, and cannot be used when the preview allowable period is exceeded.

  The resident application 20A uses the scramble key (Ks) to decrypt the encrypted data, thereby preview-playing the PPV content (S177). This preview playback is continuously played within the preview allowable period of PPV content, but if the purchase of PPV content is not instructed within that period, the preview playback ends after the preview allowable period ends. .

  On the other hand, in the receiving device 20, when the user instructs the purchase of the PPV content on the screen for purchasing the PPV content within the preview allowable period (S178), the receiver browser 20C performs the process of step S166. The license request including the CAS platform ID acquired in step S1 is made to the web server 30 via the Internet 90 (S179).

  In steps S180 to S183, as in steps S137 to S140 of FIG. 11, license raw data corresponding to the license request is generated, and the encryption part is encrypted by the CAS server 40 using the master key (Km). The license obtained thereby is transferred to the receiving device 20.

  In the receiving device 20, the receiver browser 20C acquires (receives) a license transmitted from the web server 30 via the Internet 90 (S184). The receiver browser 20C inputs (injects) the license acquired in the process of step S184 into the CAS platform 20B and holds it (S185).

  Here, the preview license held in the process of step S173 is rewritten with an official license having the same license ID. That is, since the PPV content being played was within the preview allowable period, it was made possible to play with the preview license without a formal license, but the formal license is retained in the process of step S185. Even after the preview allowable period has elapsed, the PPV content can be played back with the license. In addition, here, the encrypted part of the formal license held in the process of step S185 is decrypted with the master key (Km) held in advance, and the work key (Kw), license key and valid key arranged there Keep information such as deadlines.

  When the license is held by the CAS platform 20B, in steps S186 to S187, the PPV billing settlement process is performed by the billing settlement server 50 as in steps S143 to S144 of FIG.

  Thereafter, although the preview allowable period ends, the reproduction of the PPV content is continued even after the period has elapsed. That is, in the receiving device 20, the resident application 20A acquires the ECM distributed from the transmitting device 10 and inputs (injects) it into the CAS platform 20B (S188).

  The CAS platform 20B decrypts the encryption part of the ECM injected from the resident application 20A with the work key (Kw) held in the process of step S185, and the reference license key arranged there and the process of step S185 The license determination process is performed by comparing with the license key of the license held in (S189). In this determination process, when the current time of ECM is within the expiration date of the license and the reference license key and the license key match, the scramble key (Ks) is read from the encryption part of the ECM and the resident application 20A. (S190).

  As a result, the resident application 20A uses the scramble key (Ks) from the CAS platform 20B to decrypt the PPV content audio and video encrypted data distributed from the transmission device 10 and reproduce the PPV content ( S191).

  The PPV service method 3 purchased after preview has been described above. In the PPV service method 3 for purchase after preview, the PPV content preview playback instruction screen and the PPV content purchase screen etc. connect the promotion with the application to the PPV content, and the user purchases the PPV content. It is possible to create a situation that is easy to do. In addition, when the user is instructed to purchase PPV content, the license acquisition processing and billing settlement processing for the PPV content can be handled as a series of processes starting from the promotion of PPV content. Since there is no particular limitation on the processing, a more flexible conditional access system can be realized.

(4) PPV service method 4

  FIG. 13 is a diagram for explaining the PPV service method 4.

  In FIG. 13, the EMM is composed of an encryption part and a non-encryption part. In the EMM, the encryption unit is encrypted with a master key (Km), and a license key, an expiration date, a work key (Kw), and a work key ID (KwID) are arranged there. In the non-encrypted part, a CAS platform ID and a license ID are arranged.

  The ECM is composed of an encryption part and a non-encryption part. In the ECM, the encryption unit is encrypted using a work key (Kw), and a scramble key (Ks), a current time, and a reference license key are arranged there. In addition, a protocol number, business entity identification, work key ID (KwID), license ID, and the like are arranged in the non-encryption unit.

  In the receiving device 20, EMM and ECM are acquired at a predetermined timing. First, the receiving device 20 decrypts the encryption part of the EMM using the master key (Km), and acquires the work key (Kw). Then, the receiving device 20 is obtained by decrypting the EMM cipher part using the reference license key obtained by decrypting the ECM cipher part using the work key (Kw) and the master key (Km). Judgment processing is performed to match the license key.

  Here, for example, when it is determined by the determination process that the current time of the ECM is within the validity period of the EMM and the reference license key matches the license key, the scramble key (Ks) is sent from the encryption unit of the ECM. Is read out.

  In the receiving device 20, the audio and video data (packets) obtained from the broadcast stream received from the transmitting device 10 is encrypted with the scramble key (Ks), so the scramble key (Ks) acquired from the ECM. The encrypted audio or video data (packet) is decrypted using. As a result, the receiving device 20 reproduces the PPV content.

  As described above, the PPV service method 4 shown in FIG. 13 differs from the PPV service method 1 shown in FIG. 4 in that no license is used and that the license key is arranged in the encryption part of the EMM.

<3. Detailed configuration of CAS system>

(Detailed configuration example of CAS system)
FIG. 14 is a diagram illustrating a detailed configuration example of the CAS system.

  In FIG. 14, the left side in the drawing represents functions on the broadcasting station side such as the transmission device 10 and the server, and the right side in the drawing represents functions of the receiving device 20. FIG. 14 illustrates a case where the above-described license-related function in the web server 30 is provided as a license server 60 on another server.

  In the receiving device 20, an API (Application Programming Interface) for using the functions and data of the CAS platform 20B is provided from the receiver browser 20C or the like. “API-1” in the figure represents a CAS platform configuration information acquisition function. With this function, a CAS platform ID and other CAS platform configuration information can be read out. In addition, “API-2” in the figure represents a license input function, and a license can be input (injected) into the CAS platform 20B and held by this function.

  “API-3” in the figure represents a license information reading function, and the license information array held in the CAS platform 20B can be read by this function. “API-4” in the figure represents a contract information read function, and the contract information held in the CAS platform 20B can be read by this function.

  For example, when a PPV contract is instructed by the user, the receiver browser 20C executes a CAS platform configuration information acquisition function to acquire a CAS platform ID from the CAS platform 20B, and sends a contract request including the CAS platform ID. , To the web server 30 via the Internet 90.

  In this case, “Subscr.Info” (EMM raw data) is generated by SAS on the broadcasting station side, and further encrypted with the master key (Km) after including the work key (Kw). The EMM generated in this way is sent out as a digital broadcast signal via the transmission path 80. The receiving device 20 receives the EMM sent as a digital broadcast signal from the broadcasting station side via the transmission path 80 and decrypts it with the master key (Km) held in advance, thereby obtaining the work key (Kw) and , “Subscr.Info” is held.

  Further, the receiver browser 20C, for example, executes the CAS platform configuration information acquisition function when the user is instructed to purchase PPV content, acquires the CAS platform ID from the CAS platform 20B, and acquires the CAS platform ID. The license request including the license request is transmitted to the web server 30 via the Internet 90.

  In this case, since the license request is notified to the license server 60, the license raw data is generated by the license server 60, and further, the license raw data is encrypted by the CAS server 40 with the master key (Km). Then, the web server 30 transfers the license obtained by encryption with the master key (Km) to the receiving device 20 via the Internet 90.

  Accordingly, the receiver browser 20C and the like acquire the license transmitted from the web server 30 via the Internet 90 and execute the license input function, thereby inputting (injecting) the license into the CAS platform 20B. Can be held. Since the license is encrypted with the master key (Km), it is necessary to decrypt it with the master key (Km) held in advance. The license key included in the license is supplied to a determination processing unit (Permission judge).

  On the broadcast station side, audio and video data from the AV encoder is encrypted with a scramble key (Ks) by a scrambler and sent as a digital broadcast signal via a transmission path 80. . In addition, the ECM including the scramble key (Ks) and the reference license key is encrypted with the work key (Kw) by the scrambler on the broadcasting station side, and is transmitted as a digital broadcast signal via the transmission path 80. The

  The receiving device 20 receives the ECM transmitted as a digital broadcast signal from the broadcasting station side via the transmission path 80 and decrypts it using the work key (Kw) acquired from the EMM, thereby including a reference included in the ECM. The license key and the like are supplied to a determination processing unit (Permission judge). In the determination processing unit (Permission judge), the license key included in the license and the reference license key included in the EMM are collated, and it is determined whether the license is valid. When the license is valid, the scramble key (Ks) included in the ECM is supplied to the decryption unit in the previous stage of the AV decoder.

  The receiving device 20 receives the encrypted data of audio and video transmitted as a digital broadcast signal from the broadcasting station side via the transmission path 80. Therefore, the decoding unit at the front stage of the AV decoder Using the key (Ks), the encrypted audio or video data is decrypted and output to the AV decoder. As a result, the receiving device 20 reproduces the PPV content.

(License information element)
FIG. 15 is a diagram showing the configuration of the license information element.

  The license includes a CAS platform ID, a license ID, a license type, a CAS program ID, a license key (KI), a work key ID (KwID), a work key (Kw), and an expiration date. However, the work key ID (KwID) and the work key (Kw) are arranged only in the case of the PPV service method 3.

  The license is composed of an encryption part and a non-encryption part, and is arranged in the encryption part. The license type, CAS program ID, license key (KI), work key ID (KwID), work key (Kw), and The expiration date is encrypted using the master key (Km).

  The CAS platform ID is an identifier of the CAS platform 20B to be licensed. An application or a terminal device such as the receiving device 20 or the mobile terminal device 70 needs to confirm the match before injecting the license into the CAS platform 20B.

  The license ID is an identifier of the license. The application needs to check whether the license is appropriate before injecting the license into the CAS platform 20B. The license type is type information indicating a license format type. The CAS program ID indicates a CAS program ID that can use the license.

  The license key (KI) is key data for license determination processing. In the CAS platform 20B, a license determination process is performed by matching with a reference license key (RKI) included in the ECM.

  The work key ID (KwID) is an identifier of a work key (Kw) for ECM encryption / decryption. The work key (Kw) is a work key (Kw) body for ECM encryption / decryption. The work key ID (KwID) and the work key (Kw) are arranged only in the case of the PPV service method 3.

  The expiration date indicates the expiration date of the license. After the expiration date, the information element of the license becomes unusable. Note that the preview license used in the case of the PPV service method 3 is basically composed of the same information elements as the license of FIG. 15 except that the expiration date is shorter than the official license. The

  In FIG. 15, the number of occurrences, but when “1” is specified, only one element or attribute is always specified, and when “0..1” is specified, the element Whether or not to specify an attribute is arbitrary. Further, when “0..N” is designated, whether or not one or more of its elements or attributes is designated is arbitrary. The meaning of the number of appearances is the same in the information element of the ECM in FIG.

(Information element of ECM)
FIG. 16 is a diagram illustrating a configuration of an ECM information element.

  In the ECM, a work key ID (KwID), a license ID, a scramble key (Ks), a current time, a reference license key (RKI), and preview information (preview availability and preview time) are arranged. The ECM is composed of an encryption part and a non-encryption part. The scramble key (Ks), current time, reference license key (RKI), and preview information arranged in the encryption part include a work key (Kw). It is encrypted using.

  The work key ID (KwID) is an identifier of the work key (Kw) applied to the encryption of the ECM. The license ID is an identifier of a license applied to the target program (PPV content) of the ECM. This license ID is used for checking when receiving an application or a terminal device such as the receiving device 20 or the mobile terminal device 70, and reading the corresponding license in the CAS platform 20B.

  The scramble key (Ks) is a scramble key for scramble decoding of a component signal constituting a program (PPV content). The scramble key (Ks) is composed of a pair of “odd” and “even”. For example, the scramble key (even key) is a key for decrypting the current encrypted component, and the scramble key (odd key) is a key for decrypting the next encrypted component.

  The current time indicates the current time. In the CAS platform 20B, the license expiration date is confirmed and the preview period is controlled based on the current time.

  The reference license key (RKI) is reference key data for determining a license to be applied to a target program (PPV content) of the ECM. Here, the license determination process is performed by matching (matching) the reference license key (RKI) with the license key (KI) stored in the CAS platform 20B.

  The preview availability indicates whether or not preview playback of the target program (PPV content) is permitted at this time. For example, the preview availability is a 1-bit flag, and when “1” is designated, it can be assumed that preview reproduction is permitted. The preview time indicates the length of time during which preview playback is permitted for terminal devices such as the receiving device 20 and the mobile terminal device 70 for the target program (PPV content).

(Example of CAS platform API)
FIG. 17 is a diagram illustrating an example of the API of the CAS platform 20B.

  In FIG. 17, a CAS platform configuration information acquisition function, a license input function, a license information read function, and a contract information read function are APIs for using the functions and data of the CAS platform 20B from the receiver browser 20C and the like.

  The CAS platform configuration information acquisition function is a function for reading the CAS platform ID and other CAS platform configuration information. In the CAS platform configuration information acquisition function, it is not necessary to specify the argument, and a CAS platform configuration information array is returned as the return value. Note that the CAS platform configuration information acquisition function is an API corresponding to “API-1” in FIG.

  The license input function is a function for inputting (injecting) a license into the CAS platform 20B and holding it. However, when the license input function is executed, if the CAS platform 20B cannot hold the correct license, an error is returned. In the license input function, the arguments are a license, a license length, and a license type, and an error code may be returned as the return value. The license input function is an API corresponding to “API-2” in FIG.

  The license information read function is a function for reading the license information array held in the CAS platform 20B. However, when executing the license information read function, a specific license information array can be read by designating the license ID. In the license information read function, the argument is an arbitrary license ID, and a license information array is returned as the return value. The license information reading function is an API corresponding to “API-3” in FIG.

  The contract information read function is a function for reading the contract information array held in the CAS platform 20B. In the contract information read function, it is not necessary to specify the argument, and a contract information array is returned as the return value. The contract information read function is an API corresponding to “API-4” in FIG.

<4. License Key Configuration>

(License key configuration)
FIG. 18 is a diagram illustrating a configuration example of a license key.

  In FIG. 18, the license key is composed of a code part (Code part (C)) and a tier bit part (Tier Bit part (T)). That is, both the license key (KI) included in the license and the reference license key (RKI) included in the ECM have the configuration shown in FIG.

  A specific code is specified as the code part. In the license key verification process, a predetermined calculation is performed on the code part of the license key (KI) and the code part of the reference license key (RKI), and it is determined whether or not these code parts match.

  As an example of a simple calculation method, calculation is performed as to whether the value of the code part of the license key (KI) and the value of the code part of the reference license key (RKI) are the same value. Also, here, for example, other calculation methods such as using a specific numerical value by complement or four arithmetic operations may be adopted. In short, since a predetermined calculation is performed to fulfill the purpose of concealment as a license for a single or a plurality of PPV content aggregates, any calculation method can be adopted as the calculation method. .

  The tier bit part consists of a specific bit string, and each bit indicates whether or not the target receiving apparatus 20 has contracted each PPV service. For example, in the tier bit part, among the bits that are “1” or “0”, the bit corresponding to the contracted PPV service is “1”. By using such a tier bit part, it is possible to realize a variation of a contract that is simultaneously operated for the same license. For example, a program package or series operation and a single program can be operated simultaneously, and a plurality of series can be operated simultaneously.

  In the license key verification process, an AND operation (logical product) of the tier bit part of the license key (KI) and the tier bit part of the reference license key (RKI) is performed, and all bits are "0" (all zeros). ) Is determined.

  In the license key verification process, it is determined that the code part of the license key (KI) and the code part of the reference license key (RKI) match by a predetermined operation, and further, the tier bit part of the license key (KI) By AND operation (logical product) with the tier bit part of the reference license key (RKI), it is determined that all bits are not "0" (any bit is "1") The license keys are considered to match.

  In other words, in the license key matching process, when the relationship between the condition (1) and the condition (2) as shown below is satisfied, the license key (KI) and the reference license key (RKI) are one. On the other hand, if the relationship between the condition (1) and the condition (2) is not satisfied, the license key (KI) and the reference license key (RKI) are regarded as not matching.

  However, in condition (1), Ct represents the code part of the license key (KI), Cr represents the code part of the reference license key (RKI), and F represents a predetermined function. In condition (2), Tt represents the tier bit part of the license key (KI), and Tr represents the tier bit part of the reference license key (RKI).

  The code part and the tier bit part have variable lengths, and the length and the code part calculation method depend on the license type and CAS program.

(Specific example of license key)
19 to 21 show specific examples of license keys.

(Operation Example 1)
FIG. 19 shows an operation example in the case where a license key corresponding to the viewing right of each episode of a continuous drama and a license key corresponding to the viewing right of all episodes are operated simultaneously.

  In FIG. 19, “rc1” is assigned to the code part of the reference license key (RKI), “tc1” is assigned to the code part of the license key (KI), and these code parts match. . Each bit of the bit string of the tier bit part corresponds to each episode of the continuous drama.

  For example, in the left side of FIG. 19, when only a specific episode of a serial drama is contracted, “1” is assigned only to the bit corresponding to the contracted specific episode to the tier bit part of the license key in that license. Other bits are assigned “0”.

  When a specific episode of a continuous drama is distributed, an ECM assigned with “1” is transmitted as the ECM only for the bit corresponding to the specific episode, so the tier bit of the reference license key (RKI) If AND operation is performed on the part ("0000100000") and the tier bit part ("0000100000") of the license key, all bits do not become "0". It is regarded.

  On the other hand, for example, on the right side of FIG. 19, when all episodes of a continuous drama are contracted, “1” is assigned to all bits in the tier bit part of the license key in the license.

  When a specific episode of a continuous drama is distributed, an ECM assigned with “1” is transmitted as the ECM only for the bit corresponding to the specific episode, so the tier bit of the reference license key (RKI) If the AND operation of the part ("0000100000") and the tier bit part of the license key ("1111111111") is performed, all bits do not become "0", so these license keys match. It is regarded.

  In this way, the content of the tier bit of the license key in those licenses differs between contracting only a specific episode of a serial drama and contracting all episodes of a serial drama, but which license is used It will also be possible to watch specific episodes.

(Operation example 2)
FIG. 20 shows an operation example in which a license key corresponding to a viewing right of a channel package A of a certain broadcaster and a license key corresponding to a viewing right of another channel package B are operated simultaneously. Show.

  In FIG. 20, “rc2” is assigned to the code part of the reference license key (RKI), “tc2” is assigned to the code part of the license key (KI), and these code parts match. . Each bit of the bit string of the tier bit part corresponds to a channel provided by a certain broadcaster.

  For example, if the channel package A is contracted on the left side of FIG. 20, only the bit corresponding to the channel included in the channel package A is assigned to the tier bit part of the license key in the license, Other bits are assigned “0”.

  When a program of a specific channel included in a channel package A provided by a certain broadcaster is distributed, an ECM in which only “1” is assigned is transmitted as the ECM only for the bit corresponding to the specific channel. Is done. Here, if AND operation is performed on the tier bit part ("0000100000") of the reference license key (RKI) and the tier bit part ("0010100100") of the license key, all bits do not become "0". So these license keys are considered to match.

  On the other hand, for example, when channel package B is contracted on the right side of FIG. 20, only 1 bit corresponding to the channel included in channel package B is assigned to the tier bit part of the license key in the license. Other bits are assigned “0”.

  When a program of a specific channel included in a channel package B provided by a certain broadcaster is distributed, an ECM to which “1” is assigned is transmitted as the ECM only for the bit corresponding to the specific channel. Is done. Here, if AND operation is performed on the tier bit part ("0000100000") of the reference license key (RKI) and the tier bit part ("1111100000") of the license key, all bits will not be "0". So these license keys are considered to match.

  As described above, when the channel package A is contracted and when the channel package B is contracted, the content of the tier bit of the license key in the license differs depending on the channel included in those packages. Even if a contract is made for a package including a channel being distributed, the program of that channel can be viewed.

(Operation Example 3)
FIG. 21 shows an operation example in the case where a contract for a series package consisting of a plurality of programs such as a package for a sports program and a contract for a specific channel or channel package are operated simultaneously.

  In FIG. 21, when a program of a specific channel provided by a certain broadcaster is distributed, a reference license key (RKI) for a series package and a reference license key (RKI) for a channel package are used as the ECM. ), That is, a plurality of reference license keys (RKI) are transmitted.

  For example, in the left side of FIG. 21, when a series package is contracted, only “1” is assigned to the bit corresponding to a specific program included in the series package as the license key tier bit in the license. Bits other than are assigned "0".

  Here, the code part of the reference license key (RKI) for the series package included in the ECM and the code part of the license key (KI) of the license for the series package are the same in "rc1" and "tc1" . Also, an AND operation is performed on the tier bit part ("00100000") of the reference license key (RKI) for the series package and the tier bit part ("11111111") of the license key (KI) of the license for the series package. Since all bits do not become "0", these license keys are considered to match.

  On the other hand, the code part of the reference license key (RKI) for the channel package included in the ECM matches the code part of the license key (KI) of the license for the series package in “rc2” and “tc2”. In addition, the AND operation of the tier bit part ("0000100000") of the reference license key (RKI) for the series package and the tier bit part ("1111111111") of the license key (KI) of the license for the series package is performed. Since all bits do not become "0", these license keys are considered to match.

  As described above, since the ECM includes a plurality of reference license keys, for example, when a contract is made for at least one of a series package and a channel package, the license key (KI) of the license is the ECM. If it matches any of a plurality of reference license keys (RKI) included in the channel, it is possible to view the program of that channel.

<5. Configuration of each device>

(Configuration example of transmitter)
FIG. 22 is a diagram illustrating a configuration example of the transmission device 10 of FIG.

  In FIG. 22, the transmission apparatus 10 includes an audio data acquisition unit 111, an audio encoder 112, a video data acquisition unit 113, a video encoder 114, an application acquisition unit 115, an application processing unit 116, a scrambler 117, a control information generation unit 118, and a control. An information processing unit 119, a Mux 120, and a transmission unit 121 are included.

  The audio data acquisition unit 111 acquires audio data as a component from a built-in storage, an external server, a microphone, or the like, and supplies the audio data to the audio encoder 112. The audio encoder 112 encodes the audio data supplied from the audio data acquisition unit 111 in accordance with an encoding method such as MPEG (Moving Picture Experts Group) and supplies the encoded data to the scrambler 117.

  The video data acquisition unit 113 acquires video data as a component from a built-in storage, an external server, a camera, and the like, and supplies the video data to the video encoder 114. The video encoder 114 encodes the video data supplied from the video data acquisition unit 113 in accordance with an encoding method such as MPEG, and supplies the encoded data to the scrambler 117.

  When transmitting an application, the application acquisition unit 115 generates file data of the application based on information acquired from a built-in storage or an external server, and supplies the file data to the application processing unit 116. The application includes, for example, files such as documents in HTML (Hyper Text Markup Language) format and BML (Broadcast Markup Language) format. The application processing unit 116 performs processing for transmitting the application file data supplied from the application acquisition unit 115 as a data broadcast, and supplies the processed data to the Mux 120.

  The scrambler 117 is supplied with audio data from the audio encoder 112 and video data from the video encoder 114. The scrambler 117 encrypts the data of these components using the scramble key (Ks), and supplies it to the Mux 120.

  The control information generation unit 118 generates control information based on information acquired from a built-in storage or an external server, and supplies the control information to the control information processing unit 119. For example, this control information includes EMM and ECM. In the ECM, the scramble key (Ks) used by the scrambler 117 to encrypt the component data is encrypted by the EMM work key (Kw). It has become. The control information processing unit 119 processes the control information supplied from the control information generation unit 118 and supplies it to the Mux 120.

  The Mux 120 multiplexes the encrypted component data from the scrambler 117 and the control information from the control information processing unit 119 to generate a stream, and supplies the stream to the transmission unit 121. Note that when application file data is supplied from the application processing unit 116, the Mux 120 further multiplexes the application file data. The transmission unit 121 transmits the stream supplied from the Mux 120 via the antenna 122 as a digital broadcast signal (broadcast wave).

  In the configuration of the transmission device 10 in FIG. 22, the scrambler 117 is provided in the previous stage of the Mux 120, but the scrambler 117 may be provided in the subsequent stage of the Mux 120.

(Configuration example of receiving device)
FIG. 23 is a diagram illustrating a configuration example of the receiving device 20 of FIG.

  23, the receiving apparatus 20 includes a tuner 212, a Demux 213, a control unit 214, an input unit 215, a memory 216, a CAS platform 217, a descrambler 218, an audio decoder 219, an audio output unit 220, a speaker 221, a video decoder 222, a video. An output unit 223, a display 224, a communication unit 225, and an application engine 226 are configured.

  In accordance with control from the control unit 214, the tuner 212 extracts and demodulates the digital broadcast signal of the service instructed to be selected from the digital broadcast signal received by the antenna 211, and sends the resulting stream to the Demux 213. Supply.

  The Demux 213 separates the stream supplied from the tuner 212 into audio data, video data, and control information in accordance with control from the control unit 214. The Demux 213 supplies encrypted component data such as audio data and video data to the descrambler 218. In addition, the Demux 213 supplies control information to the control unit 214. When the application file data is separated by the Demux 213, the application file data is supplied to the application engine 226.

  The control unit 214 controls the operation of each unit of the reception device 20 based on the control information supplied from the Demux 213 and the operation signal supplied from the input unit 215. For example, the control unit 214 controls the CAS platform 217 and the descrambler 218 according to the analysis result of the control information (for example, EMM, ECM, etc.), and controls the decryption process of the encrypted component data. The detailed configuration of the control unit 214 will be described later with reference to FIG.

  The input unit 215 supplies an operation signal to the control unit 214 in accordance with a user operation. The memory 216 records various information in accordance with control from the control unit 214. The CAS platform 217 corresponds to the CAS platform 20B shown in FIGS. 5 and 14, and provides a function related to a conditional access system (CAS) in the receiving device 20.

  The descrambler 218 decrypts encrypted component data such as audio data and video data supplied from the Demux 213 in accordance with control from the control unit 214 and the CAS platform 217. The descrambler 218 supplies audio data to the audio decoder 219 and video data to the video decoder 222 among the decoded component data.

  The audio decoder 219 decodes the audio data supplied from the descrambler 218 according to the control from the control unit 214 using a decoding method corresponding to the audio encoder 112 (FIG. 22), for example, and supplies the audio data to the audio output unit 220. The audio output unit 220 supplies the audio data supplied from the audio decoder 219 to the speaker 221. Thereby, for example, the sound of the PPV content is output from the speaker 221.

  The video decoder 222 decodes the video data supplied from the descrambler 218 according to the control from the control unit 214 using a decoding method corresponding to the video encoder 114 (FIG. 22), for example, and supplies the video data to the video output unit 223. The video output unit 223 outputs the video data supplied from the video decoder 222 to the display 224 according to the control from the control unit 214. Thereby, for example, the video of the PPV content is displayed on the display 224.

  The communication unit 225 communicates with each server such as the web server 30 and the CAS server 40 provided on the Internet 90 according to control from the control unit 214 and exchanges information. For example, the communication unit 225 accesses the web server 30 via the Internet 90 according to the control from the control unit 214, acquires file data of the application, and supplies it to the application engine 226.

  The application engine 226 is supplied with the application file data from the Demux 213 or the application file data from the communication unit 225. The application engine 226 controls the operation of the application according to the control from the control unit 214. Video data corresponding to the video of the application is supplied to the video output unit 223. The video output unit 223 displays the video data supplied from the application engine 226 on the display 224. As a result, the video of the application is displayed on the display 224. The application engine 226 corresponds to the receiver browser 20C shown in FIG.

  23, the descrambler 218 is provided in the subsequent stage of the Demux 213. However, the descrambler 218 may be provided in the previous stage of the Demux 213. 23 illustrates the configuration including the speaker 221 and the display 224. For example, when the receiving device 20 is configured as an STB (Set Top Box) or a recorder, for example. May adopt a configuration in which the speaker 221 and the display 224 are not provided.

  When the receiving device 20 operates in cooperation with the mobile terminal device 70, the control unit 214 exchanges various information with the mobile terminal device 70 via the communication unit 225. For example, in the mobile terminal device 70 such as a smartphone, PPV content promotion, billing settlement processing, and license acquisition processing can be performed, and then the information can be transferred to the receiving device 20. The communication between the receiving device 20 and the mobile terminal device 70 is, for example, wireless communication such as wireless LAN or Bluetooth (registered trademark), as well as wired communication, or communication in which wireless communication and wired communication are mixed, that is, Wireless communication may be performed in a certain section, and wired communication may be performed in another section.

(Functional configuration example of control unit)
FIG. 24 is a diagram illustrating a functional configuration example of the control unit 214 of FIG.

  24, the control unit 214 includes a broadcast control unit 251, a communication control unit 252, an application control unit 253, a CAS control unit 254, and a reproduction control unit 255.

  The broadcast control unit 251 controls the operation of each unit that performs processing related to broadcasting, such as the tuner 212 and the Demux 213, for example. For example, the broadcast control unit 251 acquires EMM or ECM as control information supplied from the Demux 213 and supplies it to the CAS control unit 254. The communication control unit 252 controls the operation of each unit that performs processing related to communication, such as the communication unit 225. For example, the communication control unit 252 acquires a license transmitted from the web server 30 and supplies the license to the CAS control unit 254.

  The application control unit 253 controls the operation of each unit that performs processing related to the application, such as the application engine 226. The CAS control unit 254 is supplied with the EMM or ECM from the broadcast control unit 251 and the license from the communication control unit 252. The CAS control unit 254 controls the operation of each unit that performs processing related to CAS, such as the CAS platform 217 and the descrambler 218, based on information such as EMM, ECM, or license.

  The playback control unit 255 controls the operation of each unit that performs processing related to playback of PPV content, such as the audio decoder 219, the audio output unit 220, the video decoder 222, and the video output unit 223.

  In FIG. 24, the control unit 214 has been described as being configured from the broadcast control unit 251 to the reproduction control unit 255, but a part of the functions of these blocks is included in the function of the application engine 226. Also good.

(Configuration example of each server)
FIG. 25 is a diagram illustrating a configuration example of the web server 30 and the CAS server 40 of FIG.

(Web server configuration example)
25, the web server 30 includes a communication unit 311, an application generation unit 312, an application data holding unit 313, a license raw data generation unit 314, and a license data holding unit 315.

  The communication unit 311 communicates with the receiving device 20 via the Internet 90 to exchange information. The communication unit 311 communicates with the CAS server 40 via the Internet 90 or other networks to exchange information.

  When an application is requested from the receiving device 20 via the Internet 90, the communication unit 311 notifies the application generation unit 312 of the request. In response to the notification from the communication unit 311, the application generation unit 312 reads data for generating an application held in the application data holding unit 313 and generates file data of the application. The application data holding unit 313 holds HTML document files, image files, and the like.

  The file data of the application is supplied to the communication unit 311. The communication unit 311 transmits the application file data supplied from the application generation unit 312 to the receiving device 20 that is the request source of the application via the Internet 90.

  When a license is requested from the receiving device 20 via the Internet 90, the communication unit 311 notifies the license raw data generation unit 314 of the request. In response to the notification from the communication unit 311, the license raw data generation unit 314 reads data for generating the license raw data held in the license data holding unit 315 and generates license raw data. The license raw data is supplied to the communication unit 311.

  The communication unit 311 transmits the license raw data supplied from the license raw data generation unit 314 to the CAS server 40 via a network such as the Internet 90 and requests encryption using the master key (Km). In addition, the communication unit 311 receives a license transmitted from the CAS server 40 via a network such as the Internet 90 and transfers the license to the receiving device 20 that has requested the license via the Internet 90.

  In FIG. 25, the web server 30 has been described as having both functions relating to applications and functions relating to licenses. However, each of these functions may be configured as a separate server. In other words, an application server including a communication unit 311, an application generation unit 312, and an application data holding unit 313, and a license server including a communication unit 311, a license raw data generation unit 314, and a license data holding unit 315. May be provided separately.

(CAS server configuration example)
In FIG. 25, the CAS server 40 includes a communication unit 411, a license generation unit 412, and a master key (Km) holding unit 413.

  The communication unit 411 communicates with the web server 30 via the Internet 90 or other networks to exchange information. When the web server 30 requests encryption of license raw data using the master key (Km) via a network such as the Internet 90, the communication unit 411 notifies the license generating unit 412 of the license raw data together with the request. To do.

  In response to the notification from the communication unit 411, the license generation unit 412 reads the master key (Km) from the master key (Km) holding unit 413, and encrypts the license raw data using the master key (Km). Then, generate a license. The license generated by the license generation unit 412 is supplied to the communication unit 411. The communication unit 411 transmits the license supplied from the license generation unit 412 to the web server 30 via a network such as the Internet 90.

  In FIG. 25, it has been described that both the web server 30 and the CAS server 40 perform processing related to the license. However, the CAS server 40 has a function related to the license of the web server 30 so that all license-related functions are performed. It may be configured as a dedicated license server for processing.

<6. Flow of processing executed by each device>
Next, with reference to the flowcharts of FIGS. 26 to 35, the flow of specific processing executed by each device constituting the broadcast communication system 1 of FIG. 1 will be described.

(Transmission process)
First, the flow of transmission processing executed by the transmission device 10 of FIG. 1 will be described with reference to the flowchart of FIG.

  In step S211, the audio data acquisition unit 111 acquires audio data from a storage or the like. In step S212, the audio encoder 112 encodes the audio data acquired in step S211.

  In step S213, the video data acquisition unit 113 acquires video data from a storage or the like. In step S214, the video encoder 114 encodes the video data acquired in the process of step S213.

  In step S215, it is determined whether to transmit (transmit) the application by data broadcasting. If it is determined in step S215 that the application is to be transmitted, the process proceeds to step S216.

  In step S216, the application acquisition unit 115 acquires (generates) file data of the application. In step S217, the application processing unit 116 processes the file data of the application acquired in the process of step S216. If it is determined in step S215 that the application is not transmitted, the processes in steps S216 to S217 are skipped, and the process proceeds to step S218.

  In step S218, the scrambler 117 encrypts the audio data encoded by the process of step S212 and the video data encoded by the process of step S214 using the scramble key (Ks). The audio data and video data encrypted by the scramble process by the scramble 117 are supplied to the Mux 120.

  In step S219, the control information generation unit 118 generates control information based on information acquired from a storage or the like. In step S220, the control information processing unit 119 processes the control information generated in the process of step S219. For example, this control information includes EMM and ECM. In the ECM, the scramble key (Ks) used by the scrambler 117 to encrypt the component data is encrypted by the EMM work key (Kw). It has become.

  In step S221, the Mux 120 multiplexes the component data encrypted by the process of step S218 and the control information processed by the process of step S220 to generate a stream. If it is determined in step S215 that the application is to be transmitted, the Mux 120 further multiplexes the file data of the application processed in step S217.

  In step S222, the transmission unit 121 transmits the stream generated by the processing in step S221 via the antenna 122 as a digital broadcast signal. When the process of step S222 ends, the transmission process of FIG. 26 ends.

  The flow of transmission processing has been described above.

(Pre-purchase processing)
Next, the flow of the advance purchase process executed by the receiving device 20 in FIG. 1 will be described with reference to the flowchart in FIG.

  In step S241, a menu screen is displayed on the display 224. This menu screen is displayed, for example, when the application engine 226 acquires and processes an application distributed via broadcast or communication.

  In step S242, it is determined whether or not a predetermined function is selected by a user operation on the menu screen displayed in the process of step S241. If it is determined in step S242 that the predetermined function is not selected, the process returns to step S241, and the subsequent processes are repeated. In step S242, after waiting for a predetermined function to be selected by a user operation, the process proceeds to step S243.

  In step S243, the display screen 224 displays a PPV content promotion screen as a transition destination of the menu screen. This promotion screen is displayed when the application engine 226 acquires and processes an application distributed via broadcast or communication, for example, as in the process of step S241.

  In step S244, it is determined whether or not the user has performed a purchase operation of the PPV content on the promotion screen displayed in the process of step S244. That is, as the promotion screen, for example, a screen for promoting a paid music program or the like is displayed, and whether or not an operation for purchasing the music program in advance is performed by the user is determined in the determination process in step S244.

  If it is determined in step S244 that an operation for purchasing PPV content has been performed, the process proceeds to step S245. In step S245, a license acquisition process for acquiring a license for the target PPV content from a server on the Internet 90 is executed. The detailed contents of this license acquisition process will be described later with reference to the flowchart of FIG. Although detailed description is omitted, when a license is acquired (held) by this license acquisition process, a billing settlement process for the purchased PPV content is executed.

  When the process of step S245 ends, the process returns to step S243, and the subsequent processes are repeated. On the other hand, if it is determined in step S244 that no PPV content purchase operation has been performed, the process proceeds to step S246.

  In step S246, it is determined whether a return operation has been performed on the promotion screen. If it is determined in step S246 that no return operation has been performed, the process returns to step S243, and the subsequent processes are repeated. In this case, the display of the promotion screen is continued. On the other hand, if it is determined in step S246 that a return operation has been performed, the process returns to step S241 and the subsequent processes are repeated. In this case, the screen changes from the promotion screen to the menu screen.

  The flow of the advance purchase process has been described above.

(License acquisition process)
Next, the flow of the license acquisition process corresponding to the process in step S245 of FIG. 27 will be described with reference to the flowchart of FIG.

  In step S <b> 261, the CAS control unit 254 acquires the CAS platform ID from the CAS platform 217. In the process of step S261, for example, the CAS platform ID can be acquired by executing a CAS platform configuration information acquisition function (FIG. 17).

  In step S262, the communication control unit 252 controls the communication unit 225 to transmit a license request including the CAS platform ID acquired in the process of step S261 to the web server 30 via the Internet 90.

  In step S263, the communication control unit 252 controls the communication unit 225 to determine whether a license has been transmitted and acquired from the web server 30 via the Internet 90. In step S263, waiting for the license from the web server 30 to be acquired, the process proceeds to step S264.

  In step S264, the CAS control unit 254 injects the license acquired in the process of step S263 into the CAS platform 217. In the process of step S264, for example, a license can be input (injected) into the CAS platform 217 by executing a license input function (FIG. 17).

  In step S265, the CAS control unit 254 controls the CAS platform 217 to read out license information (license information array). In the process of step S265, for example, the license information array can be read by executing a license information read function (FIG. 17).

  In step S266, it is determined whether the license acquisition is completed based on the license information acquired in the process of step S265. If it is determined in step S266 that the license acquisition has not been completed, the process returns to step S265, and the subsequent processes are repeated. On the other hand, if it is determined in step S266 that the license has been acquired, the license acquisition process in FIG. 28 is terminated.

  The flow of license acquisition processing has been described above.

(License provision processing)
Next, the flow of the license provision process executed by the web server 30 and the CAS server 40 of FIG. 1 will be described with reference to the flowchart of FIG. This license provision process is a process executed in correspondence with the license acquisition process of FIG.

  In step S <b> 281, the communication unit 311 of the web server 30 determines whether a license request is received from the receiving device 20 via the Internet 90. In step S281, after receiving a license request from the receiving device 20, the process proceeds to step S282.

  In step S <b> 282, the license raw data generation unit 314 of the web server 30 generates license raw data based on the data held in the license data holding unit 315. The license raw data generated in the process of step S282 is sent from the web server 30 to the CAS server 40.

  In step S283, the license generation unit 412 of the CAS server 40 encrypts the license raw data generated in the process of step S282 using the master key (Km) held in the master key (Km) holding unit 413, and Generate a license. The license generated in step S283 is sent from the CAS server 40 to the web server 30.

  In step S284, the communication unit 311 of the web server 30 transmits (transfers) the license from the CAS server 40 to the receiving device 20 that is the request source of the license via the Internet 90. When the process of step S284 ends, the license provision process of FIG. 29 ends.

  The flow of the license provision process has been described above.

(License judgment processing)
Next, the flow of the license determination process executed by the reception device 20 of FIG. 1 will be described with reference to the flowchart of FIG. Note that this license determination process is executed, for example, at the timing when the ECM acquired at a predetermined interval is acquired.

  In step S301, the CAS platform 217 determines whether a license corresponding to the ECM has been acquired. Here, if the license has already been injected into the CAS platform 217 in the process of step S264 of FIG. 28, the license has already been acquired, so the process proceeds to step S302.

  If it is determined in step S301 that the license has not been acquired, the process proceeds to step S308. In step 308, the CAS platform 217 determines that it is “NG”. That is, in this case, since the target PPV content is not licensed, the PPV content cannot be reproduced.

  In step S302, the CAS platform 217 executes verification processing (license key verification processing) between the license key (KI) of the license and the ECM reference license key (RKI). This license key verification process determines whether the license key (KI) and the reference license key (RKI) match. The detailed contents of the license key verification process will be described later with reference to the flowchart of FIG.

  In step S303, it is determined whether or not the license key (KI) matches the reference license key (RKI) according to the processing result of the license key collation processing in step S302. If it is determined in step S303 that the license keys match, the process proceeds to step S307. In step S307, the CAS platform 217 determines that it is “OK”. That is, in this case, since the license of the target PPV content is possessed, the scramble key (Ks) is read from the ECM, and the PPV content can be reproduced.

  On the other hand, if it is determined in step S303 that the license keys do not match, the process proceeds to step S304. In step S304, the CAS platform 217 determines whether preview playback is possible (permitted) by checking the ECM preview availability flag (PVF). If it is determined in step S304 that preview reproduction is not permitted, the process proceeds to step S308. In this case, it is determined to be “NG” (S308).

  If it is determined in step S304 that preview reproduction is permitted, the process proceeds to step S305. In step S305, the CAS platform 217 accumulates the preview time. In step S306, the CAS platform 217 determines whether or not the preview time has been exceeded by comparing the preview time accumulated in step S305 with the ECM preview time (PVD).

  If it is determined in step S306 that the preview time has not been exceeded, the preview playback time still remains, so the process proceeds to step S307. In this case, it is determined to be “OK” (S307). On the other hand, if it is determined in step S306 that the preview period has expired, the process proceeds to step S308. In this case, it is determined to be “NG” (S308).

  When the process of step S307 or S308 ends, the license determination process of FIG. 30 ends.

  The flow of the license determination process has been described above. In this license determination processing, as shown in FIG. 31, the license key (KI) and reference license key (RKI) are collated, and preview playback is performed using preview information (preview availability flag (PVF), preview time (PVD)). Whether the license is valid (OK) or invalid (NG) is determined depending on whether the license is valid or not. Although omitted in the license determination process of FIG. 30, the validity of the license can also be determined based on whether or not the current ECM time (Tc) is within the license expiration date (Tx). .

(License key verification process)
Next, the flow of the license key matching process corresponding to the process of step S302 of FIG. 30 will be described with reference to the flowchart of FIG.

  In step S321, the CAS platform 217 confirms the license format by confirming the license type of the license.

  In step S322, the CAS platform 217 calculates whether the code part of the license key (KI) matches the code part of the reference license key (RKI). In step S323, the CAS platform 217 determines whether the code part of the license key (KI) matches the code part of the reference license key (RKI) based on the calculation result of the process in step S322. .

  When it is determined in step S323 that the code part of the license key (KI) and the code part of the reference license key (RKI) do not match, the process proceeds to step S327. In step S327, the CAS platform 217 considers that the license key (KI) and the reference license key (RKI) do not match.

  On the other hand, if it is determined in step S323 that the code part of the license key (KI) matches the code part of the reference license key (RKI), the process proceeds to step S324. In step S324, the CAS platform 217 performs an AND operation (logical product) of the tier bit part of the license key (KI) and the tier bit part of the reference license key (RKI).

  In step S325, if the CAS platform 217 determines that the calculation result is Non-Zero, that is, one of the bits is “1” based on the calculation result of the process of step S324, The process proceeds to step S326. In step S326, the CAS platform 217 considers the license key (KI) and the reference license key (RKI) to match.

  In step S325, the CAS platform 217 determines that the calculation result is Non-Zero, that is, “0” (all zeros) in all bits, based on the calculation result of the process in step S324. If so, the process proceeds to step S327. In step S327, the CAS platform 217 considers that the license key (KI) and the reference license key (RKI) do not match.

  When the result of the license key matching process is obtained in the process of step S326 or S327, the process returns to step S302 of FIG. 30, and the subsequent processes are executed.

  The flow of the license key verification process has been described above.

(PPV content playback processing)
Next, the flow of the PPV content reproduction process executed by the receiving device 20 of FIG. 1 will be described with reference to the flowchart of FIG.

  In step S331, the CAS platform 217 reads the scramble key (Ks) from the ECM and supplies it to the descrambler 218 when it is determined that the license is valid in the license determination process of FIG. In step S332, the descrambler 218 uses the scramble key (Ks) acquired in step S331 to decrypt the PPV content audio and video encrypted data.

  In step S333, the playback control unit 255 controls each unit such as the audio decoder 219, the audio output unit 220, the video decoder, and the video output unit 223 to perform rendering processing. As a result, the video of the PPV content is displayed on the display 224, and audio synchronized with the video is output from the speaker 221. When the process of step S333 ends, the PPV content reproduction process of FIG. 33 ends.

  The flow of PPV content playback processing has been described above.

(Application startup process)
Next, the flow of application activation processing executed by the receiving device 20 of FIG. 1 will be described with reference to the flowchart of FIG.

  When the PPV content is selected by the user's operation (S341), the communication control unit 252 controls the communication unit 225 to access the web server 30 via the Internet 90 and relate to the PPV content. Start getting the application to work. In step S342, the application engine 226 determines whether or not an application from the web server 30 has been acquired. After waiting for the application to be acquired, the process proceeds to step S343.

  In step S343, the application engine 226 automatically starts the application acquired in the process of step S342 in accordance with the control from the application control unit 253. In step S344, it is determined whether an instruction to end the selected PPV content is given.

  If it is determined in step S344 that the end of the PPV content being selected is not instructed, the determination process in step S344 is repeated. That is, in this case, the application automatically started in the process of step S343 continues to be executed.

  On the other hand, if it is determined in step S344 that the end of the selected PPV content has been instructed, the process proceeds to step S345. In step S345, the application engine 226 terminates the operation of the application automatically started in step S343 according to the control from the application control unit 253. Thus, the application is executed in conjunction with the PPV content.

  The flow of application activation processing has been described above.

(Purchase processing after preview)
Finally, the flow of the after-preview purchase process executed by the receiving device 20 of FIG. 1 will be described with reference to the flowchart of FIG. Note that this post-preview purchase process is, for example, a process executed when an application is activated in conjunction with the PPV content in the application activation process of FIG.

  In step S361, the CAS control unit 254 controls the CAS platform 217 to read out license information (license information array). In the process of step SS361, for example, the license information array can be read by executing a license information reading function (FIG. 17).

  In step S362, it is determined whether a license has been acquired based on the license information acquired in the process of step S361. If it is determined in step S362 that the license has been acquired, the process proceeds to step S367. In step S367, since the license has been acquired, the PPV content reproduction process of FIG. 33 is executed, and the main screen is displayed on the display 224.

  On the other hand, if it is determined in step S362 that the license has not been acquired, the process proceeds to step S363. In step S363, it is determined whether a default preview is possible. If it is determined in step S363 that default preview is possible, the process proceeds to step S364. In step S364, a preview / promotion screen is displayed on the display 224. This preview / promotion screen is displayed by the application being activated in the application activation process of FIG.

  In step S365, it is determined whether or not the user has performed an operation for purchasing PPV content on the preview / promotion screen displayed in the process of step S364. That is, as the preview / promotion screen, for example, whether or not a paid music program is preview-played and an operation for purchasing the music program is performed by a user who has viewed the program is determined in the determination process in step S365.

  If it is determined in step S365 that an operation for purchasing PPV content has been performed, the process proceeds to step S366. In step S366, a license acquisition process is executed. The detailed contents of the license acquisition process are as described with reference to the flowchart of FIG.

  When the license is acquired in step S366, the license determination process shown in FIG. 30 is executed. If the license is valid, the PPV content playback process shown in FIG. 33 is executed. A screen is displayed (S367). Although detailed description is omitted, when a license is acquired (held) by this license acquisition process, a billing settlement process for the purchased PPV content is executed.

  If it is determined in step S365 that no PPV content purchase operation has been performed, the process returns to step S364, and the subsequent processes are repeated.

  If it is determined in step S363 that default preview is not possible, the process proceeds to step S369. In step S369, a full screen promotion screen is displayed on the display 224. This full-screen promotion screen is displayed by the application being activated in the application activation process of FIG.

  In step S370, it is determined whether preview reproduction is requested by the user's operation on the full-screen promotion screen displayed in the process of step S369. If it is determined in step S370 that preview reproduction is not requested, the process returns to step S369, and the subsequent processes are repeated.

  On the other hand, if it is determined in step S370 that preview playback has been requested, the process proceeds to step S371. In step S371, a license acquisition process for acquiring a preview license is executed. The detailed contents of the license acquisition process are as described with reference to the flowchart of FIG. When the preview license is acquired by the process of step S371, the process proceeds to step S364. As described above, the preview / promotion screen is displayed in accordance with the preview license (S364). When a purchase operation of the PPV content is performed (“Yes” in S365), an official license is acquired. The main screen is displayed (S367).

  When the main screen is displayed in step S367, the display is continued until the end of the PPV content is instructed in the determination processing in step S368. If it is determined in step S368 that the end of the PPV content has been instructed, the post-preview purchase process in FIG. 35 ends.

  The flow of the purchase process after preview has been described above.

<7. Computer configuration>

  The series of processes described above can be executed by hardware or can be executed by software. When a series of processing is executed by software, a program constituting the software is installed in the computer. FIG. 36 is a diagram illustrating a hardware configuration example of a computer that executes the above-described series of processing by a program.

  In the computer 900, a CPU (Central Processing Unit) 901, a ROM (Read Only Memory) 902, and a RAM (Random Access Memory) 903 are connected to each other by a bus 904. An input / output interface 905 is further connected to the bus 904. An input unit 906, an output unit 907, a recording unit 908, a communication unit 909, and a drive 910 are connected to the input / output interface 905.

  The input unit 906 includes a keyboard, a mouse, a microphone, and the like. The output unit 907 includes a display, a speaker, and the like. The recording unit 908 includes a hard disk, a nonvolatile memory, and the like. The communication unit 909 includes a network interface or the like. The drive 910 drives a removable medium 911 such as a magnetic disk, an optical disk, a magneto-optical disk, or a semiconductor memory.

  In the computer 900 configured as described above, the CPU 901 loads the program stored in the ROM 902 or the recording unit 908 to the RAM 903 via the input / output interface 905 and the bus 904 and executes the program. A series of processing is performed.

  The program executed by the computer 900 (CPU 901) can be provided by being recorded on a removable medium 911 as a package medium, for example. The program can be provided via a wired or wireless transmission medium such as a local area network, the Internet, or digital satellite broadcasting.

  In the computer 900, the program can be installed in the recording unit 908 via the input / output interface 905 by attaching the removable medium 911 to the drive 910. Further, the program can be received by the communication unit 909 via a wired or wireless transmission medium and installed in the recording unit 908. In addition, the program can be installed in the ROM 902 or the recording unit 908 in advance.

  Here, in the present specification, the processing performed by the computer according to the program does not necessarily have to be performed in time series in the order described as the flowchart. That is, the processing performed by the computer according to the program includes processing executed in parallel or individually (for example, parallel processing or object processing). The program may be processed by a single computer (processor) or may be distributedly processed by a plurality of computers.

  The embodiments of the present technology are not limited to the above-described embodiments, and various modifications can be made without departing from the gist of the present technology.

  Moreover, this technique can take the following structures.

(1)
An application acquisition unit that acquires an application that operates in association with encrypted content obtained by encrypting broadcast content using a scramble key;
A license acquisition unit that acquires a license of the encrypted content from a server on the Internet in response to a request from the application;
A message acquisition unit for acquiring a common message including the scramble key, which is transmitted together with the encrypted content;
A license determination unit that determines whether the license is valid based on the common message and the license;
And a decrypting unit configured to decrypt the encrypted content using the scramble key included in the common message when it is determined that the license is valid.
(2)
The license includes a license key consisting of a license determination code and a bit string,
The common message includes a license key and a reference license key consisting of a bit string,
The receiving device according to (1), wherein the license determination unit determines whether the license is valid by performing a predetermined operation on the code and the bit string.
(3)
The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with a device key,
The receiving device according to (2), wherein the message acquisition unit acquires the individual message transmitted together with the encrypted content.
(4)
The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with the master key,
The receiving device according to (2), wherein the message acquisition unit acquires the individual message transmitted together with the encrypted content.
(5)
The common message is encrypted with a work key;
The receiving device according to (2), wherein the license including the work key is encrypted with a master key.
(6)
The reception device according to any one of (2) to (4), wherein the common message includes information related to preview reproduction of the encrypted content.
(7)
The receiving apparatus according to any one of (1) to (6), wherein the broadcast content is paid content.
(8)
In the receiving method of the receiving device,
The receiving device is
Acquire an application that operates in association with encrypted content obtained by encrypting broadcast content using a scramble key,
In response to a request from the application, obtain a license for the encrypted content from a server on the Internet,
Obtaining a common message transmitted with the encrypted content and including the scramble key;
Determining whether the license is valid based on the common message and the license;
A reception method including a step of decrypting the encrypted content using the scramble key included in the common message when it is determined that the license is valid.
(9)
An encryption unit that encrypts broadcast content using a scramble key and generates encrypted content;
An application generation unit that generates an application that operates in association with the encrypted content;
A message generator for generating the common message including the scramble key and used for determining whether the license obtained by the receiving device is valid;
A transmission apparatus comprising: the application and the transmission unit that transmits the common message together with the encrypted content.
(10)
The license includes a license key consisting of a license determination code and a bit string,
The common message includes a license key and a reference license key consisting of a bit string,
The transmission apparatus according to (9), wherein in the license determination, it is determined whether or not the license is valid by performing a predetermined operation on the code and the bit string.
(11)
The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with a device key,
The transmission device according to (10), wherein the transmission unit transmits the individual message together with the encrypted content.
(12)
The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with the master key,
The transmission device according to (10), wherein the transmission unit transmits the individual message together with the encrypted content.
(13)
The common message is encrypted with a work key;
The transmission device according to (10), wherein the license including the work key is encrypted with a master key.
(14)
The transmission device according to any one of (10) to (12), wherein the common message includes information related to preview reproduction of the encrypted content.
(15)
The transmission device according to any one of (9) to (14), wherein the broadcast content is paid content.
(16)
In the transmission method of the transmission device,
The transmitting device is
Encrypt broadcast content with a scramble key to generate encrypted content,
Generating an application that operates in conjunction with the encrypted content;
A common message including the scramble key, the common message used to determine whether a license obtained by a receiving device is valid,
A transmission method including the step of transmitting the application and the common message together with the encrypted content.

  DESCRIPTION OF SYMBOLS 1 Broadcasting communication system, 10 Transmitting device, 20 Receiving device, 30 Web server, 40 CAS server, 50 Charge settlement server, 70 Mobile terminal device, 90 Internet, 111 Audio data acquisition part, 113 Video data acquisition part, 115 Application acquisition part , 117 scrambler, 118 control information generation unit, 121 transmission unit, 212 tuner, 214 control unit, 217 CAS platform, 225 communication unit, 226 application engine, 251 broadcast control unit, 252 communication control unit, 253 application control unit, 254 CAS control unit, 255 playback control unit, 311 communication unit, 312 application generation unit, 314 license data generation unit, 411 communication unit, 412 license Generating unit, 900 computer, 901 CPU

Claims (16)

An application acquisition unit that acquires an application that operates in association with encrypted content obtained by encrypting broadcast content using a scramble key;
A license acquisition unit that acquires a license of the encrypted content from a server on the Internet in response to a request from the application;
A message acquisition unit for acquiring a common message including the scramble key, which is transmitted together with the encrypted content;
A license determination unit that determines whether the license is valid based on the common message and the license;
And a decrypting unit configured to decrypt the encrypted content using the scramble key included in the common message when it is determined that the license is valid. The license includes a license key consisting of a license determination code and a bit string,
The common message includes a license key and a reference license key consisting of a bit string,
The receiving apparatus according to claim 1, wherein the license determination unit determines whether the license is valid by performing a predetermined operation on the code and the bit string. The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with a device key,
The receiving device according to claim 2, wherein the message acquisition unit acquires the individual message transmitted together with the encrypted content. The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with the master key,
The receiving device according to claim 2, wherein the message acquisition unit acquires the individual message transmitted together with the encrypted content. The common message is encrypted with a work key;
The receiving device according to claim 2, wherein the license including the work key is encrypted with a master key. The receiving device according to claim 2, wherein the common message includes information related to preview reproduction of the encrypted content. The receiving apparatus according to claim 1, wherein the broadcast content is paid content. In the receiving method of the receiving device,
The receiving device is
Acquire an application that operates in association with encrypted content obtained by encrypting broadcast content using a scramble key,
In response to a request from the application, obtain a license for the encrypted content from a server on the Internet,
Obtaining a common message transmitted with the encrypted content and including the scramble key;
Determining whether the license is valid based on the common message and the license;
A reception method including a step of decrypting the encrypted content using the scramble key included in the common message when it is determined that the license is valid. An encryption unit that encrypts broadcast content using a scramble key and generates encrypted content;
An application generation unit that generates an application that operates in association with the encrypted content;
A message generator for generating the common message including the scramble key and used for determining whether the license obtained by the receiving device is valid;
A transmission apparatus comprising: the application and the transmission unit that transmits the common message together with the encrypted content. The license includes a license key consisting of a license determination code and a bit string,
The common message includes a license key and a reference license key consisting of a bit string,
The transmission apparatus according to claim 9, wherein in the license determination, it is determined whether the license is valid by performing a predetermined operation on the code and the bit string. The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with a device key,
The transmission device according to claim 10, wherein the transmission unit transmits the individual message together with the encrypted content. The common message is encrypted with a work key;
The license is encrypted with a master key,
The individual message including the work key is encrypted with the master key,
The transmission device according to claim 10, wherein the transmission unit transmits the individual message together with the encrypted content. The common message is encrypted with a work key;
The transmission device according to claim 10, wherein the license including the work key is encrypted with a master key. The transmission device according to claim 10, wherein the common message includes information related to preview reproduction of the encrypted content. The transmission device according to claim 9, wherein the broadcast content is paid content. In the transmission method of the transmission device,
The transmitting device is
Encrypt broadcast content with a scramble key to generate encrypted content,
Generating an application that operates in conjunction with the encrypted content;
A common message including the scramble key, the common message used to determine whether a license obtained by a receiving device is valid,
A transmission method including the step of transmitting the application and the common message together with the encrypted content.

Images