CN101267639B - a memory card - Google Patents

a memory card Download PDF

Info

Publication number
CN101267639B
CN101267639B CN2008101059628A CN200810105962A CN101267639B CN 101267639 B CN101267639 B CN 101267639B CN 2008101059628 A CN2008101059628 A CN 2008101059628A CN 200810105962 A CN200810105962 A CN 200810105962A CN 101267639 B CN101267639 B CN 101267639B
Authority
CN
China
Prior art keywords
memory card
service
data
control
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN2008101059628A
Other languages
Chinese (zh)
Other versions
CN101267639A (en
Inventor
姜涌
曹会扬
王晨阳
廖剑
张海英
陶雄强
陈庆芳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Potevio Institute of Technology Co Ltd
Original Assignee
Potevio Institute of Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Potevio Institute of Technology Co Ltd filed Critical Potevio Institute of Technology Co Ltd
Priority to CN2008101059628A priority Critical patent/CN101267639B/en
Publication of CN101267639A publication Critical patent/CN101267639A/en
Application granted granted Critical
Publication of CN101267639B publication Critical patent/CN101267639B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The invention discloses a memory card, realizes condition reception of a mobile terminal via a general memory card interface, such as SD/MMC, by using a condition reception unit as a composing part of the memory card, performs set/card separation condition reception of mobile terminal digital television services, is convenient for development of the mobile terminal digital television services, largely reduces modification cost of the mobile terminal, such as a handset. Further, the invention discloses a method for a memory card realizing condition reception, which realizes the mobile terminal digital television services and saves cost.

Description

一种存储卡 a memory card

技术领域technical field

本发明涉及存储技术,尤指一种存储卡。 The invention relates to storage technology, in particular to a storage card. the

背景技术Background technique

目前,实现移动终端(如手机或其它终端)数字电视业务条件接收的方式主要有两种: At present, there are mainly two ways to realize conditional reception of digital TV services on mobile terminals (such as mobile phones or other terminals):

一种方式通过移动通信网络来实现,通常是采用流媒体方式,利用移动运营商能控制的SIM卡来进行鉴权和条件接收,中国移动和中国联通已经利用这种方式推出了手机数字电视业务,但是这种方式具有成本高,用户难以接受的问题; One method is realized through the mobile communication network, usually by means of streaming media, using the SIM card controlled by the mobile operator for authentication and conditional access. China Mobile and China Unicom have already launched mobile digital TV services in this way , but this method has the problem of high cost and unacceptable by users;

另一种方式通过卫星或地面广播来实现,这种方式需要在移动终端中内置一颗芯片或外置条件接收卡来实现条件接收和解扰,这种方式最大的好处是传输成本低,可以预见,这种方式是数字电视运营商和用户的一种新的选择。但是,由于数字电视运营商通常希望采用多CA厂家,以避免被某家CA厂家垄断。而这种做法对移动终端生产厂家来说是非常不利的,使得移动终端生产厂家必须生产多种主板,而且生产量少、种类多,成本大大提高,而且各个数字电视运营商采用的标准不同,使得移动终端生产厂家要提供不同标准接口的条件接收卡来满足相应要求。这样,电视运营商、移动终端生产厂家的成本也提高了, 无疑会直接损害终端用户的利益。综上所述,这种方式一个明显弊端是无法实现机卡分离,从而带来一系列问题。 Another method is realized through satellite or terrestrial broadcasting. This method requires a built-in chip or an external conditional access card in the mobile terminal to achieve conditional access and descrambling. The biggest advantage of this method is that the transmission cost is low and can be predicted , this way is a new choice for digital TV operators and users. However, digital TV operators usually hope to adopt multiple CA manufacturers to avoid being monopolized by a certain CA manufacturer. And this approach is very unfavorable for mobile terminal manufacturers, making mobile terminal manufacturers have to produce a variety of motherboards, and the production volume is small, there are many types, the cost is greatly increased, and the standards adopted by various digital TV operators are different. This makes mobile terminal manufacturers provide conditional access cards with different standard interfaces to meet corresponding requirements. In this way, the cost of TV operators and mobile terminal manufacturers has also increased, which will undoubtedly directly damage the interests of end users. To sum up, an obvious disadvantage of this method is that it is impossible to separate the machine card, which brings a series of problems. the

目前,我国基于采用在移动终端中内置一颗芯片或外置条件接收卡实现条件接收的方式的相应技术研究和产品开发正处于积极研制阶段,具体实现方案还没有。 At present, my country's corresponding technical research and product development based on the method of implementing conditional access with a built-in chip or an external conditional access card in the mobile terminal is in the active development stage, and there is no specific implementation plan yet. the

发明内容Contents of the invention

有鉴于此,本发明实施例的目的在于提供一种存储卡,能够实现移动终端数字电视业务,实现机卡分离,节约成本。 In view of this, the purpose of the embodiment of the present invention is to provide a memory card, which can realize the digital TV service of the mobile terminal, realize the separation of the machine and the card, and save costs. the

为达到上述目的,本发明实施例的技术方案具体是这样实现的: In order to achieve the above object, the technical solution of the embodiment of the present invention is specifically implemented as follows:

一种存储卡,所述存储卡包括:存储卡控制单元、条件接收单元、存储单元,以及存储卡接口,其中, A memory card, the memory card includes: a memory card control unit, a conditional access unit, a storage unit, and a memory card interface, wherein,

存储卡控制单元,用于控制存储卡接口进行数据收发并进行协议解析,对存储单元进行管理,以及存储卡中各单元的协调工作; The memory card control unit is used to control the memory card interface to send and receive data and perform protocol analysis, manage the storage unit, and coordinate the work of each unit in the memory card;

存储卡接口,用于接收来自外部的数据,并在存储卡控制单元的控制下存储到存储单元中;所述外部的数据包括第一信息流、第二信息流和加扰信息; The memory card interface is used to receive data from the outside and store it in the storage unit under the control of the memory card control unit; the external data includes the first information flow, the second information flow and scrambling information;

条件接收单元,在存储卡控制单元的控制下,获取第一信息流、第二信息流和加扰信息,并根据第二信息流判断出所属移动终端具有对加扰信息的业务使用权限,根据第二信息流获取对应的业务密钥,利用该业务密钥对第一信息流中的密文控制字解密并获得明文控制字;在明文控制字的控制下,对加扰信息进行解扰以获得移动终端用户所需的业务数据流。 The conditional receiving unit, under the control of the memory card control unit, acquires the first information flow, the second information flow and the scrambling information, and judges according to the second information flow that the mobile terminal to which it belongs has the service use authority for the scrambling information, according to The second information flow obtains the corresponding service key, uses the service key to decrypt the ciphertext control word in the first information flow and obtains the plaintext control word; under the control of the plaintext control word, descrambles the scrambled information to obtain Obtain the business data flow required by mobile terminal users. the

所述条件接收单元包括:权限控制模块、业务密钥提取模块、控制字提取模块、解扰模块、文件管理模块和密钥管理模块,其中, The conditional access unit includes: authority control module, service key extraction module, control word extraction module, descrambling module, file management module and key management module, wherein,

权限控制模块,在接收到的第二信息流中的业务标识与文件管理模块中预先存储的用户终端支持的条件接收业务所对应的业务标识相同时,向业务密钥提取模块发送鉴权成功通知,并将第二信息流发送给业务密钥提取模块;在接收到的业务标识与存储的不相同时,退出当前触发的条件接收业务; The authority control module sends an authentication success notification to the service key extraction module when the service identifier in the received second information flow is the same as the service identifier corresponding to the conditional access service supported by the user terminal pre-stored in the file management module , and send the second information flow to the service key extraction module; when the received service identifier is different from the stored one, exit the currently triggered conditional access service;

业务密钥提取模块,接收鉴权成功通知,并根据接收到的第二信息流中的密钥种子ID号,在密钥管理模块中存有该密钥种子ID号对应的业务密钥时,根据该密钥种子ID号从密钥管理模块中提取对应的业务密钥,并将提取的业务密钥发送给控制字提取模块;当第二信息流中的密钥种子ID号改变时,更新存储卡内对应的业务密钥ID号; The service key extraction module receives the authentication success notification, and according to the received key seed ID number in the second information stream, when the service key corresponding to the key seed ID number is stored in the key management module, Extract the corresponding service key from the key management module according to the key seed ID number, and send the extracted service key to the control word extraction module; when the key seed ID number in the second information stream changes, update The corresponding service key ID number in the memory card;

控制字提取模块,从权限控制模块获取第一信息流,并从第一信息流中获取密文控制字,利用来自业务密钥提取模块的业务密钥对该密文控制字进行解密,得到明文控制字,并发送给解扰模块; The control word extraction module obtains the first information flow from the authority control module, and obtains the ciphertext control word from the first information flow, and uses the service key from the service key extraction module to decrypt the ciphertext control word to obtain the plaintext Control word, and sent to the descrambling module;

解扰模块,用于在存储卡控制单元的控制下,从存储单元中获取加扰数据,并利用来自控制字提取模块的明文控制字,对加扰数据进行解扰,将解扰后的数据通过存储卡接口发送给终端。 The descrambling module is used to obtain scrambled data from the storage unit under the control of the memory card control unit, and use the plaintext control word from the control word extraction module to descramble the scrambled data, and descramble the descrambled data Send it to the terminal through the memory card interface. the

所述存储卡接口的协议为数字安全存储卡或MMC通用接口标准协议。 The protocol of the memory card interface is a digital security memory card or MMC universal interface standard protocol. the

所述存储卡控制单元与条件接收单元之间通过数据线,请求发送数据信号、准备好接收/发送数据信号、请求接收数据信号和数据锁存时钟信号连接。 The memory card control unit is connected to the conditional receiving unit through a data line to request to send a data signal, to be ready to receive/send a data signal, to request to receive a data signal, and to be connected to a data latch clock signal. the

由上述技术方案可见,本发明实施例通过将条件接收单元作为存储卡的 一个组成部分,实现了在移动终端通过SD/MMC等通用存储卡接口完成条件接收,达到了移动终端数字电视业务进行机卡分离的条件接收,方便了移动终端数字电视业务的开展,大大降低了移动终端如手机的改造成本。 It can be seen from the above-mentioned technical solution that the embodiment of the present invention realizes conditional reception at the mobile terminal through a universal memory card interface such as SD/MMC by using the conditional access unit as a component of the memory card, and achieves a mobile terminal digital TV service implementation mechanism. The conditional access of card separation facilitates the development of mobile terminal digital TV services and greatly reduces the cost of transformation of mobile terminals such as mobile phones. the

附图说明Description of drawings

图1是本发明存储卡的组成结构示意图; Fig. 1 is the composition structure schematic diagram of memory card of the present invention;

图2是本发明条件接收单元的组成结构示意图; Fig. 2 is a schematic diagram of the composition structure of the conditional access unit of the present invention;

图3是本发明实现条件接收的流程图; Fig. 3 is the flow chart that the present invention realizes conditional access;

图4是本发明条件接口单元与存储卡接口单元连接实施例示意图; Fig. 4 is a schematic diagram of an embodiment of the connection between the conditional interface unit and the memory card interface unit of the present invention;

图5a是本发明存储卡控制单元向条件接收单元发送数据的时序图; Fig. 5 a is the timing diagram of the memory card control unit of the present invention sending data to the conditional receiving unit;

图5b是存储卡控制单元接收来自条件接收单元的数据的时序图。 Fig. 5b is a timing diagram of the memory card control unit receiving data from the conditional access unit. the

具体实施方式Detailed ways

为使本发明的目的、技术方案及优点更加清楚明白,以下参照附图并举较佳实施例,对本发明进一步详细说明。 In order to make the object, technical solution and advantages of the present invention clearer, the present invention will be further described in detail below with reference to the accompanying drawings and preferred embodiments. the

图1是本发明存储卡的组成结构示意图,如图1所示,本发明存储卡主要包括:存储卡控制单元100、条件接收单元101、存储单元102,以及存储卡接口103。其中, FIG. 1 is a schematic diagram of the composition and structure of the memory card of the present invention. As shown in FIG. in,

存储卡控制单元100,用于控制存储卡接口103进行数据收发并进行协议解析,对存储单元102进行管理,以及存储卡中各单元的协调工作。 The memory card control unit 100 is used to control the memory card interface 103 to send and receive data and perform protocol analysis, manage the storage unit 102, and coordinate the work of each unit in the memory card. the

存储卡接口103:用于接收来自外部的数据,比如用户需要存储的数据,与音视频等数字流如数字电视信号有关的第一信息流、第二信息流和加扰信息等,并在存储卡控制单元100的控制下,存储到存储单元102中。存储卡接口103的协议可以是数字安全存储卡(SD卡)/MMC等通用接口标准协议,但不限于任何接口方式。 Memory card interface 103: used to receive data from the outside, such as the data that the user needs to store, the first information stream, the second information stream, and scrambled information related to digital streams such as audio and video, such as digital TV signals, and store them It is stored in the storage unit 102 under the control of the card control unit 100 . The protocol of the memory card interface 103 may be a general interface standard protocol such as a digital secure memory card (SD card)/MMC, but is not limited to any interface method. the

其中,第一信息流主要包括授权控制信息(Entitlement Control Messages):如密文控制字、时间信息等; Among them, the first information stream mainly includes Entitlement Control Messages: such as ciphertext control words, time information, etc.;

第二信息流主要包括授权管理信息(Entitlement Management Messages):如业务标识、密钥种子ID号、时间信息等; The second information flow mainly includes Entitlement Management Messages: such as business identification, key seed ID number, time information, etc.;

加扰信息就是被加扰过的视音频信号如数字电视信号。 The scrambled information is scrambled video and audio signals such as digital television signals. the

存储单元102:用于存储发送给存储卡的数据,可以是FLASH、EEPROM、ROM等。 Storage unit 102: for storing data sent to the memory card, which may be FLASH, EEPROM, ROM, etc. the

条件接收单元101:用于对加扰信息如音视频等数据流进行解扰,以及用户管理,其中用户管理包括权限控制和密钥管理等功能。在存储卡控制单元100的控制下,获取第一信息流、第二信息流和加扰信息,并根据第二信息流判断出所属移动终端具有对加扰信息的业务使用权限后,再根据第二信息流获取对应的业务密钥,利用该业务密钥对第一信息流中的密文控制字解密并获得明文控制字,最后在控制字的控制下,对加扰信息进行解扰以获得移动终端用户所需的业务数据流。 Conditional access unit 101: used for descrambling scrambled information such as audio and video data streams, and user management, where user management includes functions such as authority control and key management. Under the control of the memory card control unit 100, the first information stream, the second information stream and the scrambling information are acquired, and after judging from the second information stream that the mobile terminal to which the mobile terminal belongs has the service use authority for the scrambling information, then according to the second information stream The second information flow obtains the corresponding service key, uses the service key to decrypt the ciphertext control word in the first information flow and obtains the plaintext control word, and finally under the control of the control word, descrambles the scrambled information to obtain The business data flow required by mobile terminal users. the

是否需要进行条件接收,是由用户通过终端选取的,当用户做出选择后,会触发存储卡控制单元100对条件接收的处理。关于条件接收的选取以及触发存储卡控制单元100对条件接收的处理属于现有公知技术,这里不再赘述。本发明强调的是,将条件接收单元作为存储卡的一个组成部分,这样,在移动终端通过SD/MMC等通用存储卡接口实现了条件接收,实现了移动终端数字电视业务进行机卡分离的条件接收,方便了移动终端数字电视业务的开展,大大降低了移动终端如手机的改造成本。 Whether conditional access is required is selected by the user through the terminal, and when the user makes a selection, the memory card control unit 100 will be triggered to process the conditional access. The selection of the conditional access and the process of triggering the memory card control unit 100 on the conditional access belong to the prior art and will not be repeated here. What the present invention emphasizes is that the conditional access unit is used as a component of the memory card, so that the conditional access is realized in the mobile terminal through the universal memory card interface such as SD/MMC, and the condition for separating the machine card from the digital TV service of the mobile terminal is realized Reception facilitates the development of mobile terminal digital TV services and greatly reduces the cost of transformation of mobile terminals such as mobile phones. the

需要说明的是,图1所示的存储卡组成结构仅涉及与条件接收相关的单元,其它现有已存在的单元没有在图1中显示。 It should be noted that the composition structure of the memory card shown in FIG. 1 only involves units related to conditional access, and other existing units are not shown in FIG. 1 . the

图2是本发明条件接收单元的组成结构示意图,下面具体描述条件接收单元的工作原理。如图2所示,条件接收单元101包括:权限控制模块1011、业务密钥提取模块1012、控制字提取模块1013、解扰模块1014、文件管理模块1015和密钥管理模块1016。当用户触发了条件接收业务后,条件接收单元中各组成模块的工作包括: FIG. 2 is a schematic diagram of the composition and structure of the conditional access unit of the present invention. The working principle of the conditional access unit will be described in detail below. As shown in FIG. 2 , the conditional access unit 101 includes: an authority control module 1011 , a service key extraction module 1012 , a control word extraction module 1013 , a descrambling module 1014 , a file management module 1015 and a key management module 1016 . When the user triggers the conditional access service, the work of each component module in the conditional access unit includes:

权限控制模块1011,用于获取第一信息流、第二信息流,并根据第二信息 流中的业务标识,以及文件管理模块1015中预先存储的用户终端支持的条件接收业务所对应的业务标识,判断该存储卡是否具有使用当前触发的条件接收业务的权限,如果接收到的业务标识与存储的相同,则向业务密钥提取模块1012发送鉴权成功通知,并将第二信息流发送给业务密钥提取模块1012;如果接收到的业务标识与存储的不相同,则退出当前触发的条件接收业务,如通过终端给用户显示无权限使用当前业务等。 The authority control module 1011 is configured to obtain the first information flow and the second information flow, and according to the service identification in the second information flow, and the service identification corresponding to the conditional access service supported by the user terminal pre-stored in the file management module 1015 , to determine whether the memory card has the authority to receive services using the currently triggered conditions, if the received service identifier is the same as the stored one, then send an authentication success notification to the service key extraction module 1012, and send the second information flow to Service key extraction module 1012; if the received service identifier is different from the stored one, exit the currently triggered conditional access service, such as displaying to the user through the terminal that there is no right to use the current service. the

这里,第一信息流,第二信息流的获取是在存储卡控制单元100的控制下,从存储单元102中获取后传送给权限控制模块1011的,具体获取的方法很多,属于本领域技术人员惯用技术手段,这里不再详述。 Here, the acquisition of the first information stream and the second information stream is obtained from the storage unit 102 under the control of the memory card control unit 100 and then transmitted to the authority control module 1011. There are many specific acquisition methods, which belong to those skilled in the art. Conventional technical means are not described in detail here. the

业务密钥提取模块1012,接收鉴权成功通知,并根据接收到的第二信息流中的密钥种子ID号,查询密钥管理模块1017中是否存有该密钥种子ID号对应的业务密钥,若存在,则根据该密钥种子ID号从密钥管理模块1016中提取对应的业务密钥,并将提取的业务密钥发送给控制字提取模块1013。当第二信息流中的密钥种子ID号改变时,更新存储卡内对应的业务密钥ID号。这里说明,在存储卡中将密钥种子ID号称为业务密钥ID号。 The service key extraction module 1012 receives the authentication success notification, and checks whether the service key corresponding to the key seed ID number exists in the key management module 1017 according to the key seed ID number in the received second information flow. If it exists, extract the corresponding service key from the key management module 1016 according to the key seed ID number, and send the extracted service key to the control word extraction module 1013. When the key seed ID number in the second information stream changes, the corresponding service key ID number in the memory card is updated. It is explained here that the key seed ID number is called the service key ID number in the memory card. the

需要说明的是,在密钥管理模块1016中预先存储有密钥种子ID号与业务密钥的一一对应关系。 It should be noted that the one-to-one correspondence between key seed ID numbers and service keys is pre-stored in the key management module 1016 . the

控制字提取模块1013,从权限控制模块1011获取第一信息流,并从第一信息流中获取密文控制字,利用来自业务密钥提取模块1012的业务密钥对该密文控制字进行解密,得到明文控制字,并发送给解扰模块1015。 The control word extraction module 1013 obtains the first information flow from the authority control module 1011, and obtains the ciphertext control word from the first information flow, and uses the service key from the service key extraction module 1012 to decrypt the ciphertext control word , to obtain the plaintext control word and send it to the descrambling module 1015. the

解扰模块1014,在存储卡控制单元100的控制下,从存储单元102中获取加扰数据,并利用来自控制字提取模块1013的明文控制字,对加扰数据进行解扰,最后将解扰后的数据通过存储卡接口105发送给终端。解扰的具体实现属于本领域技术人员公知技术,不是本发明的重点,这里不再赘述。 The descrambling module 1014, under the control of the memory card control unit 100, obtains the scrambled data from the storage unit 102, and uses the plaintext control word from the control word extraction module 1013 to descramble the scrambled data, and finally descrambles the descrambled data The final data is sent to the terminal through the memory card interface 105. The specific implementation of descrambling belongs to the technology known to those skilled in the art, and is not the focus of the present invention, so it will not be repeated here. the

需要说明的是,解扰模块1014可以是存储卡的一个组成部分,如图2所示,由于解扰在存储卡内完成,所有密钥都不出存储卡,提高了条件接收系统的安全性,同时降低了移动终端的性能开销; It should be noted that the descrambling module 1014 can be an integral part of the memory card, as shown in Figure 2, since the descrambling is completed in the memory card, all keys are not out of the memory card, which improves the security of the conditional access system , while reducing the performance overhead of the mobile terminal;

解扰模块1014也可以是独立于存储卡之外,如在安全算法芯片内,因为在安全算法芯片中有CPU,所以可以进一步提高终端的解扰速度。当解扰模块1014设置在安全算法芯片中时,在存储卡控制单元100的控制下,从存储单元102中获取加扰数据,从控制字提取模块1013获取明文控制字,并通过存储卡接口105将加扰数据和明文控制字发送给安全算法芯片。 The descrambling module 1014 can also be independent from the memory card, such as in the security algorithm chip, because there is a CPU in the security algorithm chip, so the descrambling speed of the terminal can be further improved. When the descrambling module 1014 is set in the security algorithm chip, under the control of the memory card control unit 100, the scrambled data is obtained from the storage unit 102, and the plaintext control word is obtained from the control word extraction module 1013, and is passed through the memory card interface 105 Send the scrambled data and plaintext control word to the security algorithm chip. the

解扰模块收到数据后进行解扰处理,解扰后的数据通过存储卡接口105发送给终端。解扰算法可以采用前端处理器的反加密算法来实现,属于现有技术,这里不再详述。 After receiving the data, the descrambling module performs descrambling processing, and the descrambled data is sent to the terminal through the memory card interface 105 . The descrambling algorithm can be implemented by using the anti-encryption algorithm of the front-end processor, which belongs to the prior art and will not be described in detail here. the

图3是本发明实现条件接收的流程图,当用户通过终端选取选择条件接收业务后,触发存储卡对条件接收进行处理,主要包括以下步骤: Fig. 3 is a flow chart of the present invention to realize conditional access. When the user selects and selects the conditional access service through the terminal, the memory card is triggered to process the conditional access, which mainly includes the following steps:

步骤300:判断是否具有使用当前触发的条件接收业务的权限,如有进入步骤301;否则进入步骤304。 Step 300: Determine whether you have the right to receive services using the currently triggered conditions, if yes, go to step 301; otherwise, go to step 304. the

用户通过终端选择条件接收业务后,存储卡会接收来自外部的条件接收业务数据,比如用户需要存储的数据,与音视频等数字流如数字电视信号有关的第一信息流、第二信息流和加扰信息等,其中,第一信息流主要包括授权控制信息:如密文控制字、时间信息等;第二信息流主要包括授权管理信息:如业务标识、密钥种子ID号、时间信息等;加扰信息就是被加扰过的视音频信号如数字电视信号。 After the user selects the conditional access service through the terminal, the memory card will receive external conditional access service data, such as the data that the user needs to store, the first information stream, the second information stream and the Scrambling information, etc., wherein the first information flow mainly includes authorization control information: such as ciphertext control words, time information, etc.; the second information flow mainly includes authorization management information: such as business identification, key seed ID number, time information, etc. ; The scrambled information is a scrambled video and audio signal such as a digital television signal. the

如果接收到的第二信息流中携带的业务标识与存储卡中存储的相同,则表明该存储卡有权限使用当前触发的条件接收业务。 If the service identifier carried in the received second information flow is the same as that stored in the memory card, it indicates that the memory card has the right to use the currently triggered condition to receive the service. the

步骤301:判断是否有当前触发的条件接收业务对应的业务密钥,如果有,进入步骤302;否则进入步骤304。 Step 301: Determine whether there is a service key corresponding to the currently triggered conditional access service, if yes, go to step 302; otherwise go to step 304. the

根据接收到的第二信息流中的密钥种子ID号,查询存储卡中是否存有该密钥种子ID号对于的业务密钥,若有则判定具有当前触发的条件接收业务对应的业务密钥。当第二信息流中的密钥种子ID号改变时,更新存储卡内对应的业务密钥ID号。 According to the key seed ID number in the second information flow received, query whether the service key corresponding to the key seed ID number is stored in the memory card, and if there is, determine that there is a service key corresponding to the currently triggered conditional access service key. When the key seed ID number in the second information stream changes, the corresponding service key ID number in the memory card is updated. the

步骤302:利用对应的业务密钥对密文控制字进行解密获得明文控制字。 Step 302: Use the corresponding service key to decrypt the ciphertext control word to obtain the plaintext control word. the

所述密文控制字携带在第一信息流中。本步骤中解密的方法很多,如现有的AES CTR和AES ECB等,这里不再详述。 The ciphertext control word is carried in the first information flow. There are many decryption methods in this step, such as the existing AES CTR and AES ECB, etc., which will not be described in detail here. the

步骤303:利用获得的明文控制字对加扰信息进行解扰以获得条件接收业务数据。 Step 303: Use the obtained plaintext control word to descramble the scrambled information to obtain conditional access service data. the

解扰的具体实现属于本领域技术人员公知技术,不是本发明的重点,这里不再赘述。 The specific implementation of descrambling belongs to the technology known to those skilled in the art, and is not the focus of the present invention, so it will not be repeated here. the

步骤304:退出本流程。 Step 304: exit this process. the

退出当前触发的条件接收业务方法很多,如通过终端给用户显示无权限使用当前业务等。 There are many ways to exit the currently triggered conditional access service, such as displaying to the user through the terminal that there is no permission to use the current service. the

图4是本发明条件接口单元与存储卡接口单元连接实施例示意图,如图4所示,条件接口单元与存储卡接口单元之间通过8根数据线(DB0~DB8),以及四根控制信号即请求发送数据信号(nInIntQ)、准备好接收/发送数据信号(nInReady/nOutReady)、请求接收数据信号(nOutIntQ)和数据锁存时钟信号(nLE)。从条件接收单元来看各控制信号的功能如表1所示: Figure 4 is a schematic diagram of an embodiment of the connection between the conditional interface unit and the memory card interface unit of the present invention. As shown in Figure 4, eight data lines (DB0-DB8) and four control signals are passed between the conditional interface unit and the memory card interface unit That is, request to send data signal (nInIntQ), ready to receive/send data signal (nInReady/nOutReady), request to receive data signal (nOutIntQ) and data latch clock signal (nLE). From the conditional receiving unit, the functions of each control signal are shown in Table 1:

 控制信号 control signal   输入/输出 input Output   功能说明 Function Description  使用方法 Instructions  准备好接收信号  (nInReady)Ready to receive signal (nInReady)   输出output   条件接收单元内输入缓  冲器状态标志位;与     nInIntQ构成一对握手   信号Input buffer status flag in the conditional receiving unit; form a pair of handshake signals with nInIntQ  nInReady=1时,输入缓冲器忙,不接收 数据;nInReady=0时,输入缓冲器可以  接收数据。When nInReady=1, the input buffer is busy and does not receive data; when nInReady=0, the input buffer can receive data.  请求发送数据信  号(nInIntQ)Request to send data signal (nInIntQ)   输入input   向条件接收单元输入数  据请求信号;与     nInReady构成一对握手  信号Input a data request signal to the conditional receiving unit; form a pair of handshake signals with nInReady  如设置为低电平有效If set to active low  准备好发送数据  信号(nOutReady)Ready to send data signal (nOutReady)   输出output   条件接收单元内输出缓  冲器状态标志位;与     nOutIntQ构成一对握手  信号Output buffer status flag in the conditional receiving unit; form a pair of handshake signals with nOutIntQ  nOutReady=1时,输出缓冲器中无数据 可以输出;nOutReady=0时,输出缓冲 器中有数据可以输出。When nOutReady=1, there is no data to output in the output buffer; when nOutReady=0, there is data to output in the output buffer.  请求接收数据信  号(nOutIntQ)Request to receive data signal (nOutIntQ)   输入input   从条件接收单元输出数  据信号;与nOutReady     构成一对握手信号Output data signal from conditional receiving unit; form a pair of handshake signals with nOutReady  如设置为低电平有效If set to active low

  数据锁存时钟信   号(nLE)Data latch clock signal (nLE)   输入input   输入/输出数据锁存时   钟Input/Output Data Latch Clock nInReady=0,nInIntQ=0且nLE=0时,DB0~DB8数据被条件接收单元锁存; nOutReady=0,nOutIntQ=0且nLE=0时,DB0~DB8输出数据。When nInReady=0, nInIntQ=0 and nLE=0, DB0~DB8 data are latched by the conditional receiving unit; nOutReady=0, nOutIntQ=0 and nLE=0, DB0~DB8 output data.   DB<7:0>DB<7:0>   双向two-way   双向数据总线bidirectional data bus nInReady=0,nInIntQ=0且nLE=0时,DB0~DB8为输入状态;   nOutReady=0,nOutIntQ=0且nLE=0时,DB0~DB8为输出状态;其它为高阻态When nInReady=0, nInIntQ=0 and nLE=0, DB0~DB8 are in input state; nOutReady=0, nOutIntQ=0 and nLE=0, DB0~DB8 are in output state; others are in high impedance state

下面具体描述条件接收单元与存储控制单元之间进行数据交互的过程。 The process of data interaction between the conditional access unit and the storage control unit will be specifically described below. the

图5a是本发明存储卡控制单元向条件接收单元发送数据的时序图,发送过程大致如下: Fig. 5a is a sequence diagram of sending data from the memory card control unit to the conditional receiving unit of the present invention, and the sending process is roughly as follows:

存储卡控制单元上电自检后,向条件接收单元发送nInIntQ低脉冲信号,请求发送数据;条件接收单元准备好后,向存储卡控制单元返回nInReady低脉冲信号,双方握手成功;存储卡控制单元产生发送数据的时序即nLE信号给条件接收单元,并按此时序发送数据给条件接收单元。 After power-on self-test, the memory card control unit sends nInIntQ low pulse signal to the conditional receiving unit, requesting to send data; when the conditional receiving unit is ready, it returns nInReady low pulse signal to the memory card control unit, and the handshake is successful; the memory card control unit Generate the timing of sending data, that is, the nLE signal to the conditional receiving unit, and send data to the conditional receiving unit according to this timing. the

在条件接收单元接收数据的过程中,只要nInReady=0,即可写入数据,无需等待;nLE的脉宽不小于2ns,nLE上升沿之前1ns,DB0~DB8上的数据必须稳定。nLE上升沿后,DB0~DB8上的数据至少保留1ns。 In the process of receiving data by the conditional receiving unit, as long as nInReady=0, data can be written without waiting; the pulse width of nLE is not less than 2ns, and the data on DB0~DB8 must be stable 1ns before the rising edge of nLE. After the rising edge of nLE, the data on DB0~DB8 is kept for at least 1ns. the

图5b是存储卡控制单元接收来自条件接收单元的数据的时序图,接收过程大致如下: Figure 5b is a sequence diagram of the memory card control unit receiving data from the conditional access unit, and the receiving process is roughly as follows:

存储卡控制单元发送nOutIntQ低脉冲,等待接收条件接收单元处理后的数据;条件接收单元准备好后,向存储卡控制单元返回nOutReady低脉冲信号,双方握手成功;存储卡控制单元产生接收数据的时序即nLE信号给条件接收单元,并按此时序接收数据。 The memory card control unit sends the nOutIntQ low pulse, waiting to receive the data processed by the conditional receiving unit; after the conditional receiving unit is ready, it returns the nOutReady low pulse signal to the memory card control unit, and the handshake is successful; the memory card control unit generates the timing of receiving data That is, the nLE signal is given to the conditional receiving unit, and the data is received according to this timing. the

在条件接收单元发送数据的过程中,只要nOutReady=0,即可读入数据无需等待;nLE的脉宽不小于2ns,nLE下降沿后1ns之内,DB0~DB8上的数据即可稳定有效,而nLE上升沿后1ns之内,DB0~DB8为三态。 In the process of sending data by the conditional receiving unit, as long as nOutReady=0, the data can be read without waiting; the pulse width of nLE is not less than 2ns, and the data on DB0~DB8 can be stable and valid within 1ns after the falling edge of nLE. And within 1ns after the rising edge of nLE, DB0-DB8 are three-state. the

图5a和图5b是存储卡控制单元与条件接收单元实现数据传输的一种总线 方式的实施例,也可以采用现有的总线,如I2C、SPI等进行传输,这里不做限制。 Fig. 5 a and Fig. 5 b are the embodiment of a kind of bus mode that memory card control unit and conditional receiving unit realize data transmission, also can adopt existing bus line, as I2C, SPI etc. carry out transmission, do not limit here. the

以上所述,仅为本发明的较佳实施例而已,并非用于限定本发明的保护范围,凡在本发明的精神和原则之内所做的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。 The above is only a preferred embodiment of the present invention, and is not used to limit the protection scope of the present invention. Any modification, equivalent replacement, improvement, etc. made within the spirit and principles of the present invention shall include Within the protection scope of the present invention. the

Claims (4)

1. A memory card, comprising: a memory card control unit (100), a conditional access unit (101), a storage unit (102), and a memory card interface (103), wherein,
the memory card control unit (100) is used for controlling the memory card interface (103) to transmit and receive data, analyzing a protocol, managing the memory unit (102) and coordinating the units in the memory card;
a memory card interface (103) for receiving data from the outside and storing the data in the storage unit (102) under the control of the memory card control unit (100); the external data comprises a first information stream, a second information stream and scrambling information;
the conditional access unit (101) is used for acquiring a first information stream, a second information stream and scrambling information under the control of the memory card control unit (100), judging that the mobile terminal has service use authority for the scrambling information according to the second information stream, acquiring a corresponding service key according to the second information stream, decrypting a ciphertext control word in the first information stream by using the service key and acquiring a plaintext control word; and descrambling the scrambled information under the control of the plaintext control word to obtain the service data stream required by the mobile terminal user.
2. The memory card according to claim 1, wherein the conditional access unit (101) comprises: a right control module (1011), a service key extraction module (1012), a control word extraction module (1013), a descrambling module (1014), a file management module (1015) and a key management module (1016), wherein,
the authority control module (1011) sends an authentication success notification to the service key extraction module (1012) when the service identifier in the received second information flow is the same as the service identifier corresponding to the conditional access service supported by the user terminal and stored in the file management module (1015) in advance, and sends the second information flow to the service key extraction module (1012); when the received service identification is different from the stored service identification, exiting the current triggered conditional reception service;
a service key extraction module (1012) for receiving the authentication success notification, extracting the corresponding service key from the key management module (1016) according to the key seed ID number when the service key corresponding to the key seed ID number is stored in the key management module (1017) according to the key seed ID number, and sending the extracted service key to the control word extraction module (1013); when the ID number of the key seed in the second information flow is changed, the ID number of the corresponding service key in the memory card is updated;
the control word extraction module (1013) acquires a first information stream from the authority control module (1011), acquires a ciphertext control word from the first information stream, decrypts the ciphertext control word by using the service key from the service key extraction module (1012) to obtain a plaintext control word, and sends the plaintext control word to the descrambling module (1015);
and the descrambling module (1014) is used for acquiring the scrambled data from the storage unit (102) under the control of the memory card control unit (100), descrambling the scrambled data by using the plaintext control word from the control word extraction module (1013), and transmitting the descrambled data to the terminal through the memory card interface (105).
3. A memory card according to claim 1 or 2, characterized in that the protocol of the memory card interface (103) is a digital secure memory card or an MMC universal interface standard protocol.
4. The memory card according to claim 1 or 2, wherein the memory card control unit (100) and the conditional access unit (101) are connected by a data line to request transmission of a data signal, ready reception/transmission of a data signal, request reception of a data signal, and a data latch clock signal.
CN2008101059628A 2008-05-06 2008-05-06 a memory card Expired - Fee Related CN101267639B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2008101059628A CN101267639B (en) 2008-05-06 2008-05-06 a memory card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2008101059628A CN101267639B (en) 2008-05-06 2008-05-06 a memory card

Publications (2)

Publication Number Publication Date
CN101267639A CN101267639A (en) 2008-09-17
CN101267639B true CN101267639B (en) 2011-01-26

Family

ID=39989699

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2008101059628A Expired - Fee Related CN101267639B (en) 2008-05-06 2008-05-06 a memory card

Country Status (1)

Country Link
CN (1) CN101267639B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2010017703A1 (en) * 2008-08-12 2010-02-18 北京数码视讯科技股份有限公司 Set-card separation method in digital tv receiving terminal
CN102036113A (en) * 2010-12-31 2011-04-27 华为终端有限公司 Control method of digital television programs, television data card and digital televiewing system
US9888283B2 (en) * 2013-03-13 2018-02-06 Nagrastar Llc Systems and methods for performing transport I/O
USD864968S1 (en) 2015-04-30 2019-10-29 Echostar Technologies L.L.C. Smart card interface
CN112356792A (en) * 2020-11-25 2021-02-12 航天科技控股集团股份有限公司 Communication method of automobile instrument bottom plate and core plate

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1413025A (en) * 2001-10-08 2003-04-23 北京中视联数字系统有限公司 Condition receiving method based on digital video-voice frequency flow
CN200973155Y (en) * 2006-11-21 2007-11-07 中兴通讯股份有限公司 Receiving terminal of mobile multimedia broadcast system

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1413025A (en) * 2001-10-08 2003-04-23 北京中视联数字系统有限公司 Condition receiving method based on digital video-voice frequency flow
CN200973155Y (en) * 2006-11-21 2007-11-07 中兴通讯股份有限公司 Receiving terminal of mobile multimedia broadcast system

Also Published As

Publication number Publication date
CN101267639A (en) 2008-09-17

Similar Documents

Publication Publication Date Title
CN1150761C (en) Security-improved access control system using smart cards
US9479825B2 (en) Terminal based on conditional access technology
JP5797267B2 (en) Mechanism for partial encryption of data stream
CN101267639B (en) a memory card
CN102957961A (en) Method and device for sharing encrypted digital television programs and digital television receiver
CN102124761B (en) System for maintaining the broadcasting information in usim unlock environment and method thereof
CN103596050A (en) Digital television signal reception system and reception method thereof
CN100479354C (en) Method for transmitting condition receiving information in mobile multimedia broadcast network
CN103581751A (en) System and method for receiving digital television signals
CN102227138B (en) Conditional access module card and realization method thereof
KR20080000950A (en) Method for the mobile terminal to decrypt the encrypted broadcast using the IC chip and the mobile terminal
CN105791954B (en) Digital TV terminal condition receiving method, terminal and system
CN101291419B (en) Authorizing and descrambling method and apparatus in CAS of mobile multimedia broadcast
CN101321261B (en) Front-end system, user terminal and authorization management information distribution method
CN113727159A (en) System and method for processing multi-repeater programs by integrated conditional access module
CN201750507U (en) Conditional access (CA) equipment based on USB interface
WO2001037562A1 (en) Adaptive trans-scrambling mechanism for digital television multiple data transport system
CN104244080A (en) Digital television signal descramble device, system and terminal
US8458454B2 (en) Conditional access apparatus
US20050160448A1 (en) Smartcard uart for minimizing processor demands in a conditional access system
CN201957187U (en) Digital television conditional receiving device based on secure digital input/output (SDIO) interface
KR20060056965A (en) Method of automatic detection of transmission protocol of portable object such as chip card or chip key
CN201403162Y (en) Digital broadcast decoding circuit
CN101198011B (en) Method for transmitting condition receiving information in mobile multimedia broadcasting network
CN101436913A (en) Mobile condition receiving system client terminal device of digital multimedia broadcast

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
ASS Succession or assignment of patent right

Owner name: CHINA POTEVIO CO., LTD.

Free format text: FORMER OWNER: PUTIAN IT TECH INST CO., LTD.

Effective date: 20130916

C41 Transfer of patent application or patent right or utility model
TR01 Transfer of patent right

Effective date of registration: 20130916

Address after: 100080, No. two, 2 street, Zhongguancun science and Technology Park, Beijing, Haidian District

Patentee after: China Potevio Information Industry Co., Ltd.

Address before: 100080 Beijing, Haidian, North Street, No. two, No. 6, No.

Patentee before: Putian IT Tech Inst Co., Ltd.

ASS Succession or assignment of patent right

Owner name: PUTIAN IT TECH INST CO., LTD.

Free format text: FORMER OWNER: CHINA POTEVIO CO., LTD.

Effective date: 20131128

C41 Transfer of patent application or patent right or utility model
TR01 Transfer of patent right

Effective date of registration: 20131128

Address after: 100080 Beijing, Haidian, North Street, No. two, No. 6, No.

Patentee after: Putian IT Tech Inst Co., Ltd.

Address before: 100080, No. two, 2 street, Zhongguancun science and Technology Park, Beijing, Haidian District

Patentee before: China Potevio Information Industry Co., Ltd.

CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20110126

Termination date: 20210506

CF01 Termination of patent right due to non-payment of annual fee