CN101409822B - System and method for tracking user smart card - Google Patents

System and method for tracking user smart card Download PDF

Info

Publication number
CN101409822B
CN101409822B CN2007101756213A CN200710175621A CN101409822B CN 101409822 B CN101409822 B CN 101409822B CN 2007101756213 A CN2007101756213 A CN 2007101756213A CN 200710175621 A CN200710175621 A CN 200710175621A CN 101409822 B CN101409822 B CN 101409822B
Authority
CN
China
Prior art keywords
group
card
control word
user smart
smart card
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN2007101756213A
Other languages
Chinese (zh)
Other versions
CN101409822A (en
Inventor
卢增祥
王天星
韩坚
关宏超
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Shibo Digital TV Technology Co Ltd
Original Assignee
Beijing Shibo Digital TV Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Shibo Digital TV Technology Co Ltd filed Critical Beijing Shibo Digital TV Technology Co Ltd
Priority to CN2007101756213A priority Critical patent/CN101409822B/en
Publication of CN101409822A publication Critical patent/CN101409822A/en
Application granted granted Critical
Publication of CN101409822B publication Critical patent/CN101409822B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The invention provides a user intelligent card tracing system and a method. The method comprises as follows: a tracing device analyzes the mark of a descrambling flow descrambled by a cryptograph control character sequence obtained from the set-up box of a service terminal according to a corresponding relation among a card group, a preadditive scrambling flow and a mark in the primary grouping of a user intelligent card group/card transmitted by a front terminal system and generates the feedback information in each card group for the probability of the user intelligent card which is traced; if the probability of one card group in the feedback information is larger than a pre-regulated value, then the card group only has one card group/card and the card/card in the card group is considered to be processed by the traced user intelligent card; or the feedback information is fed back to the front terminal system to carry out next grouping. The invention effectively controls and avoids the diffusion of the control character by tracing the card group/ user intelligent card where the user intelligent card of the control character which is illegally diffused is.

Description

A kind of user smart card tracing system and method
Technical field
The present invention relates to digital television system, relate in particular to a kind of user smart card tracing system and method, by the sign in the analytic solution scrambler stream, follow the trail of the card group/user smart card at the user smart card place of illegal diffusion control word (CW:Control Word), find the diffusion ISP, with effective control with avoid control word diffusion.
Background technology
Fast development along with digital television techniques, the fail safe of control word in the receiving course of the transmission of digital TV front-end system and digital TV set-top box of decryption information that comprises digital television program is more and more important, the digital television conditional access system of present domestic release (CAS:Conditional AccessSystem) all is to adopt the smart card of " machine one card; machine card pairing " to manage at receiving terminal basically, server end can not in time be understood the situation of user side, if the smart card of user side is cracked, cause control word to be divulged a secret, whole system just performs practically no function, and causes service provider's enormous economic loss.Along with popularizing of Digital Television, it is more and more urgent that the solution of this problem also becomes.
At present, the mode that a kind of illegal diffusion control word is arranged, as shown in Figure 1, in the control word diffusion, from legal smart card, read control word by the diffusion server, the control word quilt that is spread illegally diffusion person is encrypted with the mode of oneself, then the control word of this encryption is sent to illegal terminal, this illegal terminal can be under the situation of directly authorizing without operator, with the mode of diffusion person's appointment control word in client set top box chip internal decrypt encrypted, the scrambling code stream that the decrypted back of the control word of encrypting directly sends in order to the descrambling front end in same chip is so the user just can enjoy digital television service.In this case, the control word that decrypts at the client set top box chip internal can't be obtained by the external world.
Why the control word diffusion can take place, mainly be derived from digital video broadcasting (DVB:Digital Video Broadcasting) system architecture design itself, because DVB with the dense body system structure in, adding descrambling is two processes of separating with encryption and decryption, scrambling is finished by front end scrambling equipment, descrambling realizes that by the descrambling circuit of set-top-box chip encryption and decryption is then mainly finished adding the protection of descrambled control words, and concrete process is: the scrambling equipment of DVB system front end generates control word; The condition receiving system (CAS:Conditional Access System) that is coupled with this scrambling equipment utilizes its encryption equipment that described control word is encrypted; Described condition receiving system provides user smart card in addition, and this user smart card is used for being decrypted through the control word of encrypting.
Under with close situation, the border of condition receiving system is defined in front end control word is encrypted, to user smart card control word is separated expressly by ciphertext, control word deciphering is finished and the process of giving after the set-top box by interface does not then clearly define from user smart card, this process generally is considered to belong to the set-top box scope.In addition, because the needs of set-top-box chip standardized production, default being required of set-top-box chip do not have difference when supporting the different condition receiving system, under this theory, the interface that control word is set on the set-top-box chip is implemented as the expressly mode of transmitting control word, as shown in Figure 2, under this condition, then have at least three places can obtain expressly control word, the one, machine cartoon letters process 21, the 2nd, the random access memory of set-top box (RAM:Random Access Memory) 22, the 3rd, set-top box drives send in the process that control word gives descrambling circuit 23, and because the key of set-top box is stored among the Flash, Flash also is that of possible causing divulging a secret divulges a secret a little 24.
Under present system, it is impossible avoiding the control word diffusion fully, but several solution to this problem are provided in the prior art.
The first improves the threshold of control word diffusion, to stop a part of poor diffusion research fan.As shown in Figure 3; this mode is according to obtaining the expressly approach of control word; at machine cartoon letters process; take following measure: communicating by letter between set-top box and the user smart card adopted cryptographic key protection, adopts the key that consults to encrypt before promptly from smart card transmission control word to the Conditional Access Module of set-top box, forms the ciphertext control word; i.e. " (CW) " shown in the figure; behind the set-top box conditional receiver module, re-use software decryption, form expressly control word, i.e. " CW " shown in the figure.This is divulged a secret a little because this mode has only solved the machine cartoon letters, other two control words divulge a secret a little 32,33 and key divulge a secret a little 34 and do not take the precautionary measures, following two defectives have been caused: 1) because of adopting the software decryption mode, must use set-top box RAM, so key, expressly control word is also read from RAM by hacker (Hackers) easily; 2) hacker (Hackers) gives the descrambling chip this step at the set-top box conditional receiver module, can steal out expressly control word equally.
It two is the hidden danger that exists under first kind of solution, promptly steal decruption key at set-top box Flash or RAM, spreading the mode that server spreads plaintext control word CW again, take following measure, as shown in Figure 4, setting up the path of safety between smart card and set-top box descrambling module, adopt so-called set-top box safety chip, also is deciphering chip.Set-top box is used this deciphering chip, at deciphering chip storage inside key and decipherment algorithm, also stores corresponding key and algorithm in smartcard internal equally.In user smart card and set-top box descrambling module communication process, utilize key and algorithm, construct the path of a safety, make that expressly control word CW is only in the inner appearance of descrambling module, the outside can't obtain.Yet, this settling mode, also can because of the technology of set-top box safety chip not as smart card, cause divulging a secret a little and 44 obtained key and algorithm by hacker (Hackers) reverse engineering as one.In addition since in set-top-box chip the pre-buried key of condition receiving system producer, have certain locking, when if operator thinks more to change original condition receiving system, except changing user smart card, also need change set-top box, so also increased cost.
Its three is some technological means that operator adopts as the case may be, for example adopts special counter technological means, and operator is by sending unfathomed instruction, makes the diffusion server can't operate as normal; Or, cause by network and share large quantities of sharing users of control word owing to receive the untimely and rating blank screen of control word by having shortened the transmission frequency of packet; Or adopt special set-top box; Or limited subscriber smart card read-write number of times is with the cost that increases the diffusion server greatly etc.Although these measures have solved the problems referred to above to a certain extent, the headend equipment of digital television system, set-top box etc. have been proposed special demand, limited the operation flexibility of operator, often all can only work over a period to come.
Therefore, in the face of this defective that the condition receiving system under at present all DVB frameworks all exists, controlling and avoiding the control word diffusion is the challenge that all conditions receiving system manufacturer faces.
Summary of the invention
In order to solve defective pointed in the above-mentioned prior art, the invention provides a kind of user smart card tracing system and method, by the sign in the analytic solution scrambler stream, follow the trail of the card group/user smart card at the user smart card place of illegal diffusion control word, find the diffusion ISP, with effective control with avoid control word diffusion.
According to a preferred embodiment of the present invention, a kind of user smart card diffusion method for tracing is proposed, this method comprises the following steps: that tracing equipment is according to the corresponding relation between the card group in the once grouping of the user smart card group/card of front end system transmission, pre-scrambling code stream and the sign, the sign of analysis and utilization from the descrambling code stream of the ciphertext control word sequence descrambling of service end set-top box acquisition produces the feedback information that occurs the probability of tracked user smart card in each card group; If the described probability of a card group is greater than prior setting in the described feedback information, and should have only a card group/card in the card group, then card/the card in this card group is regarded as tracked user smart card processing; Otherwise described feedback information is turned back to front end system, divide into groups next time.
According to another preferred embodiment of the present invention, a kind of user smart card diffusion tracing system is proposed, this system comprises front end system and tracing equipment, wherein: tracing equipment is used for the once card group of grouping according to the user smart card group/card of front end system transmission, corresponding relation between pre-scrambling code stream and the sign, the sign of analysis and utilization from the descrambling code stream of the ciphertext control word sequence descrambling of service end set-top box acquisition, produce in each card group the feedback information of the probability that tracked user smart card occurs, as divide into groups and judge diffusion person's foundation next time; Front end system comprises: the grouping information generation unit is used for generating according to the grouping strategy of described feedback information and oneself grouping information of all user smart card group/cards; Control word sequence generation unit, be used for according to described grouping information, corresponding identical pre-scrambling code stream, user smart card group/different control word sequence of card generation for the different cards group, make the corresponding user of user smart card group/card of same card group use identical control word sequence, and the corresponding user of the user smart card of different cards group group/card use different control word sequences; Marker generator, be used for according to grouping information, corresponding identical pre-scrambling code stream, user smart card group/different sign of card generation for the different cards group, be embedded into identical sign in the descrambling code stream that makes the corresponding user of the user smart card group of same card group/card use, and be embedded into different signs in the descrambling code stream of the corresponding user's use of the user smart card of different cards group group/card; Scrambling unit, be used to use the different sign of described corresponding different cards group to be embedded into described pre-scrambling code stream, and use the described pre-scrambling code stream of different control word sequence scramblings of described corresponding different cards group, generate the scrambling code stream, and transmit by transmission network with Entitlement Management Message and Entitlement Control Message; The corresponding relation generation unit is used for according to aforementioned groupings information and sign, and the corresponding relation that produces between the card group in this grouping, pre-scrambling code stream and the sign sends to described tracing equipment.
Said method and system according to the embodiment of the invention, by analysis to the sign in the descrambling code stream, obtain the evidence that the diffusion ISP illegally provides service on the internet, relevant department seals its domain name, IP address etc. with application, and lawing, the profound strike spread the service provider.
Description of drawings
Accompanying drawing described herein is used to provide further understanding of the present invention, constitutes the application's a part, does not constitute limitation of the invention.In the accompanying drawings:
Fig. 1 is a schematic diagram of realizing the control word diffusion in the prior art;
Fig. 2 is the schematic diagram of divulging a secret in the machine cartoon letters process of prior art;
Fig. 3 is a schematic diagram of divulging a secret of the set-top box of an example in the machine cartoon letters process of prior art;
Fig. 4 is a schematic diagram of divulging a secret of the set-top box of another example in the machine cartoon letters process of prior art;
Fig. 5 is the structured flowchart of user smart card tracing system of the present invention;
Fig. 6 A is the schematic diagram of program stream before the scrambling;
Fig. 6 B is the schematic diagram that uses control word scrambled program stream in the prior art;
Fig. 7 A is the schematic diagram according to the parallel scrambled program stream of one embodiment of the invention scrambled program stream;
Fig. 7 B is the serial scrambled program flow diagram according to another embodiment of the present invention scrambled program stream;
Fig. 8 is the structured flowchart of user smart card tracing system according to an embodiment of the invention.
Embodiment
For the purpose, technical scheme and the advantage that make the embodiment of the invention is clearer,, the embodiment of the invention is described in further details below in conjunction with embodiment and accompanying drawing.At this, illustrative examples of the present invention and explanation thereof are used to explain the present invention, but not as a limitation of the invention.
The present invention has introduced the notion of a card group, and it is the set of user smart card group/card, and the control word that the user that the card group in the same card group/card is corresponding receives is identical with descrambling code stream, and the view reception effect of acquisition is identical.Wherein, card group comprises at least one card, and they can be as the least unit of grouping, when card group was divided into groups, what track was card group, because the more than card of possibility in the card group, so the card in the card that the is tracked to group all will be as the diffusion object handles, so that finally find diffusion person; When to the card grouping, what track is card, and a series of information according to this card find diffusion person.
By the front to the analysis of background technology as can be known, the control word diffusion is a serious problem.If can allow user's the view reception effect of all card group correspondences identical, but the control word that the user of different cards group correspondence uses is different with descrambling code stream, just can track diffusion person by analytic solution scrambler stream.
Make user's the view reception effect of all card group correspondences identical, but the control word that the user of different cards group correspondence uses is different with descrambling code stream, also just mean the same code stream that sends at program source, the control word that the user of the different cards group correspondence of terminal uses is different with descrambling code stream.
Main purpose of the present invention is exactly the same code stream that sends at program source, the control word that allows the user of different cards group correspondence of terminal use is different with descrambling code stream, by analysis to the descrambling code stream that gets access to, find out the card group (when card group is divided into groups) at the user smart card place of these control words of diffusion or spread the user smart card (when when sticking into the row grouping) of these control words, and then finally track diffusion person.
Be elaborated below in conjunction with the user smart card tracing system and the method for accompanying drawing to the embodiment of the invention.
Please refer to Fig. 5, this embodiment is applied to digital television system with user smart card tracing system of the present invention, tracking may exist the user smart card 59 of service end set-top box 58 of control word diffusion for example describes, and in this embodiment, is that user smart card group is divided into groups.Because described tracked user smart card 59 is used for service end set-top box 58, and tracing equipment 57 and can't learn the details of this tracked user smart card 59, as total several, householder be respectively who etc.Purpose of the present invention is exactly to find out the card group at the user smart card place of these diffusion control words, so that finally track diffusion person.
As shown in the figure, the user smart card tracing system of this embodiment mainly comprises front end system and tracing equipment two large divisions, wherein:
The grouping information generation unit 51 of front end system is used for generating the grouping information that all user smart cards are rolled into a ball according to the feedback information of tracing equipment 57 and the grouping strategy of oneself.Above-mentioned feedback information has comprised in each card group the probability that described tracked user smart card 59 occurs, this feedback information is that the analysis by 57 pairs of descrambling code streams of tracing equipment draws, this descrambling code stream is the encrypted control word sequence descrambling that obtained from the service end set-top box 58 of using tracked user smart card 59 by the tracing equipment utilization scrambling code stream received of termination and getting in the past, and this part will be elaborated when introducing tracing equipment 57 following.
Above-mentioned grouping strategy is exactly the group programs of front end system to all user smart card groups, for example can be: probability is merged grouping again less than the group of the user smart card in all card groups of prior setting, probability is rolled into a ball greater than the user smart card in each card group of prior setting further be subdivided into many groups respectively.Above-mentioned prior setting is a percentage, as 20%, 80% etc., can stipulate according to actual conditions.Illustrate, grouping strategy can comprise according to described feedback information, probability is divided into four groups less than the merging of the group of the user smart card in all card groups of prior predetermined value (as 20%), is two groups with probability greater than the basic in order respectively mean allocation of the group of the user smart card in each card group of prior predetermined value (as 20%), and the grouping strategy that uses when the generation grouping information first time can comprise that it is four groups that all user smart cards are rolled into a ball basic in order mean allocation.This grouping strategy can be one or more, can be according to the actual conditions adjustment, also can be for fixing grouping foundation, and immutable.
Reaching basic mean allocation described below herein is because the numerical limitations of user smart card group might can't average distribution, at this time as long as the general of distribution equates just passable.Certainly, basic mean allocation also is a kind of of grouping strategy, the present invention not with this as restriction.
Draw thus, above-mentioned grouping information is the grouping situation that is used to show all user smart card groups, has therefore comprised the time started of this grouping, the group number of grouping, the sign of each group and the user smart card group that each group has etc.Illustrate, when dividing into groups for the first time, owing to do not receive feedback information, then according to above-mentioned grouping strategy, the grouping information under current grouping situation comprises: 1. the grouping time such as the 10:00 of this grouping; 2. all user smart card groups (f of 1~card group of card group) are divided into four groups; 3. the sign of each group is respectively card group I, card group II, card group III, card group IV; 4. the user smart card group that comprises of each group is respectively: card group I comprises the c of 1~card group of card group, and card group II comprises the c+1 of card group~d of card group, and card group III comprises the d+1 of card group~card e, and card group IV comprises a card e+1~card f, and c<d<e<f.For another example, when dividing into groups for the second time, receive feedback information once, suppose that this feedback information comprises: the probability that occurs tracked user smart card 59 among the card group I is 30%, the probability that occurs tracked user smart card 59 among the card group II is 40%, the probability that occurs tracked user smart card 59 among the card group III is 15%, the probability that occurs tracked user smart card 59 among the card group IV is 15%, predetermined value is 20% in advance, according to this feedback information and above-mentioned grouping strategy, this time grouping information comprises: the grouping time is as 10:15; All user smart card groups are divided into 8 groups; The sign of card group is respectively ID1, ID2, ID3, ID4, ID5, ID6, ID7, ID8; Card group ID1 comprises the c/2 of 1~card group of card group, card group ID2 comprises the c/2+1 of card group~c of card group, card group ID3 comprises the c+1 of card group~card group (c+1+d)/2, card group ID4 comprises (the c+1+d)/2+1 of card group~d of card group, card group ID5 comprises the d+1 of card group~card group (d+1+e)/2, and card group ID6 comprises (the d+1+e)/2+1 of card group~e of card group, and card group ID7 comprises the e+1 of card group~card group (e+1+f)/2, card group ID8 comprises (the e+1+f)/2+1 of card group~f of card group, and c<d<e<f.
Need to prove that above-mentioned grouping strategy is just according to an embodiment of the invention, and non-limiting, also all be contained in protection scope of the present invention, lift an example below again and describe according to the grouping strategy of other rules and Rulemaking.
For example grouping strategy can be: probability further is subdivided into greater than the group of the user smart card in the card group of prior setting and this probability maximum organizes more, remaining user smart card is rolled into a ball to merge again divide into groups, and generation grouping information next time, and repeat subsequent step.Above-mentioned prior setting is a percentage, as 20%, 80% etc., can stipulate according to actual conditions.Illustrate, grouping strategy can comprise according to described feedback information, is three groups with probability greater than the basic in order mean allocation of the group of the user smart card in the card group of prior predetermined value (as 20%) and this probability maximum, the merging of user smart card in remaining card group group is divided into six groups, and the grouping strategy that uses when the generation grouping information first time can comprise that with the basic in order mean allocation of all user smart card groups be four groups.This grouping strategy can be one or more, can be according to the actual conditions adjustment, also can be for fixing grouping foundation, and immutable.
Draw thus, above-mentioned grouping information is the grouping situation that is used to show all user smart cards, has therefore comprised the time started of this grouping, the group number of grouping, the sign of each group and the user smart card group that each group has etc.Illustrate, when dividing into groups for the first time, owing to do not receive feedback information, then according to above-mentioned grouping strategy, the grouping information under current grouping situation comprises: 1. the grouping time 10:00 of this grouping; 2. all user smart card groups (f of 1~card group of card group) are divided into four groups; 3. the sign of each group is respectively card group I, card group II, card group III, card group IV; 4. the user smart card group that comprises of each group is respectively: card group I comprises the c of 1~card group of card group, and card group II comprises the c+1 of card group~d of card group, and card group III comprises the d+1 of card group~card e, and card group IV comprises a card e+1~card f, and c<d<e<f.For another example, when dividing into groups for the second time, receive feedback information once, suppose that this feedback information comprises: the probability that occurs tracked user smart card 59 among the card group I is 40%, the probability that occurs tracked user smart card 59 among the card group II is 30%, the probability that occurs tracked user smart card 59 among the card group III is 15%, the probability that occurs tracked user smart card 59 among the card group IV is 15%, predetermined value is 20% in advance, according to this feedback information and above-mentioned grouping strategy, this time grouping information comprises: the grouping time is 10:15; All user smart card groups are divided into 9 groups; The sign of card group is respectively ID0, ID1, ID2, ID3, ID4, ID5, ID6, ID7, ID8; Card group ID0 comprises the c/3 of 1~card group of card group, card group ID1 comprises the c/3+1 of card group~2c/3 of card group, card group ID2 comprises the 2c/3+1 of card group~c of card group, card group ID3 comprises the c+1 of card group~card group (c+1+d)/2, card group ID4 comprises (the c+1+d)/2+1 of card group~d of card group, card group ID5 comprises the d+1 of card group~card group (d+1+e)/2, card group ID6 comprises (the d+1+e)/2+1 of card group~e of card group, card group ID7 comprises the e+1 of card group~card group (e+1+f)/2, card group ID8 comprises (the e+1+f)/2+1 of card group~f of card group, and c<d<e<f.
Above-mentioned grouping information has been arranged, the control word sequence generation unit 522 of front end system is also wanted corresponding pre-scrambling code stream, user smart card group generation control word sequence separately for each card group, according to this embodiment of the invention, the identical pre-scrambling code stream of these control word sequence generation unit 522 correspondences, the different control word sequence of user smart card group generation for the different cards group, make the user smart card group of same card group use identical control word sequence, and the user smart card of different cards group group is to the different control word sequence of scrambling code stream use in advance to scrambling code stream in advance; And in same card group corresponding all pre-scrambling code streams, this control word sequence generation unit can generate identical control word sequence for the user smart card group of this card group, make that all corresponding pre-scrambling code streams all use this control word sequence in this card group, certainly, in same card group, corresponding all pre-scrambling code streams also can use different control word sequences, the present invention not with this as restriction.
The pre-scrambling code stream here is to use identical control word that elementary streams is carried out the set of the elementary streams of scrambling, can be an elementary streams, also can be all elementary streams of a channel, can also be all elementary streams of a plurality of channels.That is to say that if an elementary streams is as a pre-scrambling code stream, the control word used of this elementary streams is identical so; If all elementary streams of a channel are as a pre-scrambling code stream, the control word used of these elementary streams of this channel is identical so; If all elementary streams of a plurality of channels are as a pre-scrambling code stream, the control word used of these elementary streams of these a plurality of channels is identical so.Described elementary streams is the least unit of transmission program, for example elementary streams of the elementary streams of audio frequency L channel, audio frequency R channel, video elementary stream etc.
Be example when still dividing into groups with the above-mentioned first time, what control word sequence generation unit 522 need be done is according to above-mentioned grouping information, as the group number of grouping, some attribute of each card group, corresponding same pre-scrambling code stream is the different control word sequence of user smart card group generation of different cards group.
The method that generates can produce a source control word by control word sequence generation unit 522, again by algorithm (as: addition, the XOR etc.) generation according to appointment of some attribute (as: group id) of this source control word and each card group.Illustrate, suppose that user smart card group is divided into two groups, every group id is respectively card group I and card group II, and the algorithm of appointment is an addition, a then corresponding fragment of an elementary streams of a certain pre-scrambling code stream of input in real time is as the fragment S of an elementary streams of a certain pre-scrambling code stream imported constantly at i i', control word sequence generation unit 522 generates a source control word CWi earlier, then to should fragment, for card group I generates control word: CWi+I, for card group II generates control word: CWi+II, and to the fragment of all elementary streams of this pre-scrambling code stream constantly, the user smart card of card group I and card group II correspondence group all uses above-mentioned control word separately.So, to all fragment S of scrambling code stream in advance 1'~S i', for card group I generated control word sequence C W1+I, CW2+I ..., CWi+I; For card group II generated control word sequence C W1+II, CW2+II ..., CWi+II.Corresponding other pre-scrambling code streams, the method for rolling into a ball the different control words of generation for the user smart card of different cards group is identical therewith.And, as previously mentioned, the user smart card group of corresponding same card group, different pre-scrambling code streams can use identical control word, also can use different control words.
Need to prove; above-mentioned generation method is just according to an embodiment of the invention; and it is non-limiting; the method that generates control word according to other rules and the corresponding same pre-scrambling code stream of the rule user smart card that is the different cards group also all is contained in protection scope of the present invention; it for example is different card group generation at random control words different, that have nothing to do each other; and then obtain the control word sequence of pre-scrambling code stream of the real-time Transmission of different cards group correspondence, describe for example below.
In this embodiment, still suppose that user smart card group is divided into two groups, i.e. card group I (the card group 1~m of card group) and card group II (m+1 of card group~card n), all elementary streams of supposing each channel are a pre-scrambling code stream, for a certain pre-scrambling code stream, as pre-scrambling code stream CCTV1, then according to the grouping information first time, all fragment S of corresponding this each elementary streams of pre-scrambling code stream (CCTV1) 0'~S i', control word sequence generation unit is that the user smart card group (the card group 1~m of card group) among the card group I generates one group of control word sequence at random, as CW10, CW11 ..., CW1i; For the user smart card group among the card group II (m+1 of the card group~n of card group) generates one group of control word sequence at random, as CW20, CW21 ..., CW2i, i is constantly, and this control word sequence that just makes user smart card group in the same card group use is identical, as card group I; And the control word sequence difference that the group of the user smart card in the different cards group uses, as card group I and card group II.In addition, above-mentioned is that corresponding pre-scrambling code stream CCTV1 is an example when dividing into groups for the first time, corresponding other pre-scrambling code streams, and according to the grouping information of other times situation can the rest may be inferred, repeat no more.And the above-mentioned different control word sequence that generates at random for each card group of lifting just illustrates, not as restriction of the present invention.
It should be noted that also the purpose that the user smart card that the same pre-scrambling code stream of above-mentioned correspondence is the different cards group generates control word sequence separately is, uses the corresponding pre-scrambling code stream of these control word sequence scramblings, below will be elaborated.
In addition, all corresponding pre-scrambling code streams of user smart card group in the corresponding same card group, whether use identical control word sequence, the present invention does not limit, with the user smart card group among the card group I is example, as above routine, at this pre-scrambling code stream of CCTV1, the control word sequence that generates for the group of the user smart card among the card group I is CW10, CW11, ..., CW1i, at other pre-scrambling code stream, as CCTV2, pre-scrambling code stream such as BTV1, user smart card group among the card group I can use and the pre-identical control word sequence C W10 of scrambling code stream CCTV1, CW11, ..., CW1i, also can use the control word sequence that is different from pre-scrambling code stream CCTV1, as long as guarantee at identical pre-scrambling code stream, the control word sequence of different cards group is different to get final product.
In addition, front end system also comprises a marker generator 521, is used for each the fragment S at each elementary streams of pre-scrambling code stream i', the group number of respective user smart card/card group grouping, the sign of generation corresponding number embeds described fragment S i', same making at identical pre-scrambling code stream, the descrambling code stream that the user that the user smart card group of same card group/card is corresponding uses is embedded into identical sign, and the descrambling code stream that the corresponding user of the user smart card of different cards group group/card uses is embedded into different signs, and the method for embedding will be done introduction in following method for scrambling.
So, corresponding relation generation unit 53 also will generate in this packet cycle of card group/card, and the corresponding relation of card group, pre-scrambling code stream and sign is an example with above-mentioned, and this corresponding relation is: card group I → CCTV1 → symbol 10, symbol 11..., symbol 1iCard group II → CCTV1 → symbol 20, symbol 21..., symbol 2i, and this corresponding relation directly or indirectly is handed down to tracing equipment.
The corresponding relation that above-mentioned card group, pre-scrambling code stream and sign have been arranged, tracing equipment 57 just can utilize the scrambling code stream that receives from front end system from the ciphertext control word sequence descrambling of service end set-top box 58 acquisitions of using tracked user smart card 59, by analyzing the sign in this descrambling code stream, produce in each card group the feedback information of the probability that described tracked user smart card 59 occurs, this feedback information is a foundation of finding out diffusion person, also is one of front end system foundation of next time dividing into groups.
According to one embodiment of the present invention, if the described probability of a certain card group is greater than prior setting in the described feedback information, and should have only a card group in the card group, then the user smart card in this card group is regarded as tracked user smart card processing, by analyzing all user smart cards in this card group, finally find diffusion person; Otherwise described feedback information is turned back to front end system, divide into groups next time.
Be example still, suppose the symbol that is masked as that tracing equipment 57 obtains from the descrambling code stream with above-mentioned 10, symbol 11, symbol 12, symbol 13, symbol 14, symbol 15, symbol 16, symbol 17, symbol 18, symbol 29, so, because sign symbol 10~symbol 18Be contained in the sign of corresponding card group I, and sign symbol 29Be contained in the sign of corresponding card group II, then having the probability of the user smart card of control word diffusion among the card group I is 90%, having the probability of the user smart card of control word diffusion among the card group II is 10%, suppose that prior setting is 20%, tracing equipment 57 can return to front end system with this feedback information, so that front end system divides into groups in conjunction with grouping strategy more next time.Simultaneously,, then the user smart card in this user smart card group is used as tracked user smart card and handles, from these user smart cards, find real diffusion person if the group of the user smart card among the card group I only has one.
Here need to prove, in the above-mentioned example, the sign that tracing equipment 57 obtains is not in same card group, this is because the control word sequence that is spread may be by the user smart card of different cards group collusion diffusion, at this moment tracing equipment may not can track unique card group, therefore can produce above-mentioned feedback information.That is to say, diffusion person may use a more than user smart card to come the diffusion control word, when it uses two and these two not in same card group, obtain two groups of ciphertext control word sequences, thereby obtain two group marks, because corresponding same pre-scrambling code stream, though the corresponding control word sequence difference of the user smart card of different cards group group, but the view reception effect that obtains is identical, therefore, diffusion person may reconfigure diffusion with two groups of control word sequences, and the not influence of rating for the user has suffered but the sign after reconfiguring just may appear at same card group incessantly.
So through repeatedly returning feedback information and repeatedly grouping, when feedback information satisfies above-mentioned condition, be that described probability in a certain card group is greater than prior setting, as 20%, and should have only one to block when rolling into a ball in the card group, then this card group is the card group at tracked user smart card place, and the user smart card that this card is rolled into a ball is considered as tracked user smart card.
Other execution modes of the present invention also can only divide into groups to user smart card, the process that produces grouping information, control word sequence, sign and corresponding relation is divided into groups identical with aforementioned to user smart card group, do not repeat them here, for final definite diffusion person, can be by following several modes.
When feedback information be in a certain card group described probability greater than prior setting (such as: 20%), and the user smart card of each card group is when being one, the user smart card of the user smart card in the then above-mentioned card group for following the trail of.
For example, sign when the descrambling code stream of the ciphertext control word sequence descrambling that tracing equipment 57 obtains from the service end set-top box 58 of using tracked user smart card 59 is positioned at same card group, also be, a certain card group the probability of this tracked user smart card 59 occurs greater than prior setting, and when the user smart card of each card group is one, this just means, probability is tracked user smart card 59 greater than the user smart card in the card group of prior setting, relevant information according to this user smart card, determine final diffusion person, reach purpose of the present invention.
Again for example, sign when the descrambling code stream of the ciphertext control word sequence descrambling that tracing equipment 57 obtains from the service end set-top box 58 of using tracked user smart card 59 is not to be positioned at same card group, but a plurality of card groups the probability of this tracked user smart card 59 occurs greater than prior setting, and when the user smart card of each card group of above-mentioned different cards group has only one, mean too, these user smart cards in these several card groups are tracked user smart card 59, relevant information according to these user smart cards, determine final diffusion person, reach purpose of the present invention.
Another situation is, sign when the descrambling code stream of the ciphertext control word sequence descrambling that tracing equipment 57 obtains from the service end set-top box 58 of using tracked user smart card 59 is not to be positioned at same card group, but a plurality of card groups the probability of this tracked user smart card 59 occurs greater than prior setting, and when the user smart card in should the card group has only a few (as two), tracing equipment equally can be according to the relevant information of this several users smart card in the above-mentioned card group that has a probability, as whether diffusion previous conviction etc. is arranged, determine final diffusion person, perhaps directly according to the user smart card relevant information, go to investigate the user of this several users smart card, reach purpose of the present invention.
The purpose of the above-mentioned execution mode of the present invention is to follow the trail of the card group/user smart card at the user smart card place of diffusion control word, be by analysis by tracing equipment 57 to the sign the descrambling code stream of the ciphertext control word sequence descrambling that obtains from the service end set-top box 58 of using tracked user smart card 59, the corresponding relation that issues according to front end system, produce required foundation of grouping next time of front end system and definite diffusion person's foundation, it is feedback information, front end system according to feedback information and grouping strategy through after (at least once) grouping repeatedly, progressively dwindle tracking range, finally track the card group/user smart card at the user smart card place of diffusion control word sequence, find diffusion person.
Because being respectively the control word sequence generation unit 522 and the marker generators 521 of front end system, above-mentioned control word sequence and sign produce according to grouping information, and sign is embedded into described pre-scrambling code stream by scrambling unit 54, re-use described control word sequence to corresponding pre-scrambled code sts-stream scrambling sts, above-mentioned control word sequence is by Entitlement Management Message (EMM:Entitle Manage Message) and Entitlement Control Message (ECM:Entitle Control Message) transmission, therefore received the scrambling code stream that issues from front end in described service end set-top box 58, behind Entitlement Management Message and the Entitlement Control Message, can be by through authorizing but tracked user smart card 59 decrypts described control word sequence, the described control word sequence that decrypts is encrypted once more by diffusion person, be handed down to client set top box, as stated in the Background Art, what be handed down to client set top box so is exactly ciphertext control word sequence, and use this ciphertext control word sequence descrambling scrambling code stream of receiving of termination in the past in the mode of diffusion person regulation, and this control word sequence can't be obtained by the external world.At this moment, because the present invention had embedded corresponding sign to pre-scrambling code stream before the pre-scrambling code stream of scrambling, so, tracing equipment 57 can be by the client set top box that disguises oneself as, utilization obtains described ciphertext control word sequence from the service end set-top box, scrambling code stream by mode descrambling the past termination of diffusion person's regulation is received by the analysis to the sign in the descrambling code stream, produces described feedback information.
According to the abovementioned embodiments of the present invention, use the pre-scrambled code stream of control word sequence scrambling of control word sequence generation unit 522 generations to illustrate to embedding sign and scrambling unit 54 below.
At first please refer to Fig. 6 A, the elementary streams that embeds before sign and the scrambling is the set of the carrier element of like-identified (as the PID bag), and the data of carrier element institute load at this moment are by scrambling, S i' represent the fragment of elementary streams, the just elementary streams of transmitting constantly in difference.
Please refer to Fig. 6 B again, generally speaking, the fragment S of each elementary streams of scrambled program stream (scrambling code stream) i" in the load of carrier element be to use CW i' to S i' in the load of carrier element do scrambling and draw, be i.e. S i"=CSA (CW i', S i'), CW wherein i' be the used control word of scrambling, each S i' only by a CW i' scrambling, the S after the scrambling i' also be S i" be put in the original carrier element and transmit.
Because in the current transmission system, all user smart cards are under the identical situation of the view reception effect of correspondence, and corresponding control word all is identical with descrambling code stream, so by the analysis to control word or descrambling code stream, can't distinguish user smart card, also promptly mean to track diffusion person.
By method of the present invention, at the user smart card group/card of different cards group, use different signs to embed same pre-scrambling code stream, re-use this pre-scrambling code stream of different control word sequence scramblings, can address the above problem.Scrambling mode according to this embodiment of the present invention is divided into serial and walks abreast two kinds, and the structure of the scrambling elementary streams of generation also is divided into serial and walks abreast two kinds, is introduced respectively below in conjunction with Fig. 7 A, Fig. 7 B.
The elementary streams of serial structure is the set of the bag of identical PID, the PID0 shown in Fig. 7 B; The elementary streams of parallel organization is the set of the bag of multiple PID, the PID0 shown in Fig. 7 A, PID1, PID2, PID3, PID4.
This embodiment is only to the fragment S of one tunnel elementary streams of a pre-scrambling code stream of program source input i' embedding indicates and scrambling describes, other are identical.
At first, scrambling unit is divided into main leaf section and auxilliary fragment with the fragment of the elementary streams of input.
Fragment S for the elementary streams of program source input i', no matter produce serial structure or parallel organization, will be before the scrambling with the fragment S of elementary streams i' be divided into main leaf section C iWith auxilliary fragment S iTwo subclass, S i'=S i+ C i, wherein, S iBe S i' the middle C that removes iThe part that the back is remaining is not having C iAnd the S that decodes separately iThe Shi Wufa S that obtains and decode i' time same visual effect, C iIt can be the PES bag on the I frame.
Then, according to grouping information, for described main leaf section generates multiple copies, and according to the corresponding relation of the main leaf section and the card group of prior regulation, determine the corresponding relation of all main leaf sections and card group, wherein, the number of ghost main leaf section is to determine according to the packet group number in the grouping information.
For example, if user smart card group/card is divided into the k group, then scrambling unit 54 will generate k-1 copy main leaf section C i, these copies C iOriginal C will be inserted continuously iThe back.In the present embodiment, be with C iAccount for S i' packet of total bandwidth 5% is example.With above-mentioned is example, supposes that user smart card group/card is divided into two groups, i.e. card group I, card group II, and then scrambling unit generates 2-1=1 part copy main leaf section, and definite main leaf section C iCorresponding card group I, copy main leaf section C iCorresponding card group II.
Again then, according to the corresponding relation of above-mentioned main leaf section and card group, use the sign of the card group number of aforementioned marker generator 521 generations to embed each main leaf section C respectively i, and use aforementioned control word sequence generation unit 522 at this pre-scrambling code stream, and for the control word that the different cards group generates, carry out scrambling for the main leaf section of each card group correspondence, obtain the scrambling code stream.
Still be example, according to corresponding relation (original main leaf section C with aforementioned iCorresponding card group I, copy main leaf section C iCorresponding card group II), use control word (the card group I:CWi+I of each card group; Card group II:CWi+II) is the scrambling of corresponding main leaf section, promptly uses control word CWi+I scrambling original main leaf section C i, use control word CWi+II scrambling copy main leaf section C i
Here need to prove, no matter the C of serial or parallel structure iOriginal and C iCopy all will be by scrambling, according to the DVB standard, scrambling can occur in TS transport layer or PES data Layer, is used for each C of scrambling i(original C iWith all copy C i) employed control word is according to the difference of card group and difference.In the serial structure, S iNot by scrambling; In the parallel organization, S iCan be by scrambling, also can be not by scrambling.Shown in the figure all is not by the situation of scrambling.
In addition, in the structure of the elementary streams of serial scrambling mode scrambling, these are by the C of scrambling iCopy, C iOriginal and S iBy the carrier element load of like-identified, PID0 as shown in FIG.; In the elementary streams structure of parallel scrambling mode scrambling, S i, by the original C of scrambling iAnd C iEach copy is respectively by the carrier element load of different identification, PID0 as shown in FIG., PID1, PID2, PID3, PID4.
Control word sequence generation unit 522 is at same pre-scrambling code stream, after the different control word sequence of the group of the user smart card in the different cards group/card generation, can use these different control word sequences that described same pre-scrambled code stream is carried out scrambling (scrambling mode according to an embodiment of the invention as previously mentioned) by scrambling unit 54, transmit according to Entitlement Management Message and the Entitlement Control Message that this control word sequence or source control word generate together with Entitlement Management Message generation unit 55 and Entitlement Control Message generation unit 56, this process is identical with the transmission course of existing digital television system, does not repeat them here.For generating Entitlement Management Message according to control word sequence or source control word and Entitlement Control Message also can be finished by the means of prior art, the present invention does not limit.
Next, service end set-top box 58, the equipment that also promptly may have the control word diffusion, receive the scrambling code stream that front end system issues, Entitlement Management Message, Entitlement Control Message, the same with prior art, the 59 pairs of described Entitlement Management Messages of tracked user smart card that use it to obtain the authorization, the Entitlement Control Message deciphering, and after the control word sequence that will finally obtain encrypts by the mode of oneself, be handed down to not client set top box through authorizing, the scrambling code stream that uses the mode descrambling of its regulation to receive for the illegitimate client set-top box from front end system, watch program, and this control word sequence can't be obtained by the external world.
Tracing equipment 57 of the present invention just can be by the client set top box that disguises oneself as, obtain above-mentioned ciphertext control word sequence, according to the mode descrambling of the diffusion person regulation scrambling code stream received of termination in the past, obtain the descrambling code stream, extract the sign in this descrambling code stream, again according to the card group that obtains from front end system, pre-scrambling code stream, corresponding relation between the sign, analyze above-mentioned sign, obtain occurring in each card group the feedback information of the probability of tracked user smart card, as follow the trail of the foundation of judging diffusion person and offer the foundation that front end system divides into groups next time.In a certain card group, has only a card group/card, and described probability that should the card group illustrates that greater than the value of regulation in advance this card group/card is tracked card group/card, and the card/card during this is blocked is all as described tracked user smart card processing, as previously mentioned, repeat no more.
In addition, for the ease of following the trail of, embodiments of the invention can also increase a watch-dog or output equipment (figure does not show), be used to show or export the tracking result of tracing equipment 57 when at every turn dividing into groups, as feedback information etc., thus, the described probability of each card group when the operator can grasp each the grouping very intuitively is so that follow the trail of diffusion person.
According to a preferred embodiment of the present invention, this user smart card tracing system is applied to existing digital television system, and above-mentioned grouping information generation unit can be realized by following the trail of sequencer; Above-mentioned control word sequence generation unit, marker generator, corresponding relation generation unit, scrambling unit can be realized by the scrambler of digital television system; Above-mentioned Entitlement Management Message generation unit and Entitlement Control Message generation unit can be realized by the condition receiving system of digital television system, wherein, following the trail of sequencer and described scrambler is coupled, so that scrambler is followed the trail of the grouping information that sequencer generates according to this, corresponding same pre-scrambling code stream, user smart card group/different control word sequence of card generation for the different cards group, and the corresponding sign of generation, on the one hand above-mentioned sign is embedded into corresponding pre-scrambling code stream, use the pre-scrambling code stream of above-mentioned control word sequence scrambling correspondence, transmit by transmission system, on the other hand, produce card group in this grouping, corresponding relation between pre-scrambling code stream and the sign, offer condition receiving system together with this control word sequence or source control word, by condition receiving system described corresponding relation is issued to tracing equipment, and generate Entitlement Management Message and Entitlement Control Message returns to scrambler according to above-mentioned control word sequence or source control word, so that scrambler transmits by transmission network.And according to this embodiment, the tracing equipment of user smart card tracing system of the present invention then can be realized by the client set top box that disguises oneself as, it is after having obtained ciphertext control word sequence from the service end set-top box, descrambling is the scrambling code stream of termination receipts in the past, extract the sign in the descrambling code stream, the corresponding relation that issues according to above-mentioned condition receiving system again, analyze above-mentioned sign, producing feedback information returns to and follows the trail of sequencer and divide into groups next time and produces the grouping information of next time dividing into groups, so circulation is up to tracking diffusion person according to feedback information.
Wherein, for the user smart card group of different cards group/card generates the mode that different control word sequences can be derived by the source control word, also can by for different card group generations at random different, irrelevant each other control word (as previously mentioned) realizes, can pass through other producing methods, the present invention does not limit yet.If the mode of deriving by the source control word generates control word, as long as so this source control word is handed down to condition receiving system, if the control word of Sheng Chenging at random will be handed down to condition receiving system with all control word sequences so.
Same as the prior art, condition receiving system obtains product key to described source control word or control word sequential encryption from the product key generator, encrypt described source control word or control word sequence with this product key again, again this source control word or control word sequential encryption value are put into the Entitlement Control Message ECM load unit of respective identification.In addition, condition receiving system also will be encrypted all product keys of its correspondence respectively with user smart card key in each card group, if the mode of deriving by the source control word generates control word, some attribute of the product key of encrypting and each card place card group is put into the corresponding Entitlement Management Message EMM load unit of each card, if the control word of Sheng Chenging at random, the product key of encryption is put into the corresponding Entitlement Management Message EMM load unit of each card.Then, condition receiving system sends to scrambler to aforementioned Entitlement Control Message ECM load unit and Entitlement Management Message EMM load unit again.
Process as for service end set-top box and smart card decryption control words, also can take the mode of prior art, as by the service end set-top box ECM and the EMM that obtains being filtered earlier, ECM and the EMM that needs is provided to user smart card, product key among the card key deciphering EMM of smart card usefulness oneself, with the control word among the product key deciphering ECM, if this control word is the source control word, then generate control word with the aforementioned attribute of the card group among source control word and the EMM according to aforesaid computing again and offer the service end set-top box, utilize the control word descrambling of this acquisition to go out elementary streams main leaf section by the service end set-top box again and then code stream is decoded.As diffusion server top box, described service end set-top box also can be handed down to illegitimate client with the control word of its acquisition, so that client is carried out the work of descrambling, decoding to scrambled code stream.For safety, diffusion person may encrypt the control word that decrypts by the mode of oneself, and allows mode descrambling that client uses its regulation scrambling code stream received of termination in the past, and so the control word sequence that spreads of this quilt can't be obtained by the external world.
Wherein, at the scrambling elementary streams of serial structure, set-top box will be with the control word descrambling that obtains by a kind of main leaf section of a plurality of continuous scrambling of carrier element load of sign, but can only main leaf section of successful descrambling; At the scrambling elementary streams of parallel organization, the main leaf section C of a scrambling of the carrier element load of certain sign of descrambling i, the scrambling main leaf section C of the carrier element load of other signs iWithout descrambling.
Please refer to accompanying drawing 8, this is the system block diagram according to this preferred embodiment, below the method according to this invention and system the system of this embodiment is formed and the each several part function is carried out simple declaration.
As shown in the figure, program source 81 is issued to scrambler 82 with program stream, and this program stream is divided into a plurality of pre-scrambling code streams.Follow the trail of sequencer 83 and send to scrambler 82 according to the feedback information of tracing equipment 84 and the grouping information of the each grouping of the grouping strategy of oneself generation.Scrambler 82 is according to this grouping information (supposing that all user smart card group/cards are divided into the k group), can generate a source control word, and some attribute that uses this source control word and each card group generate k control word according to the algorithm of appointment (also can be different for different card group generations at random, Wu Guan control word each other), and k sign of generation, also to generate (k-1) individual copy to the main leaf section of the fragment of each elementary streams of the pre-scrambling code stream of input, constitute k main leaf section, and the corresponding relation of definite each main leaf section and each card group, aforementioned k sign is embedded into k main leaf section, re-use aforementioned k the control word difference scrambling main leaf section of card group correspondence accordingly, obtain the scrambling code stream; In addition, scrambler also will produce the corresponding relation between card group in this grouping, pre-scrambling code stream and the sign, and sends this corresponding relation to condition receiving system 85 with described source control word (or the control word that produces at random); Condition receiving system 85 is handed down to tracing equipment 84 with described corresponding relation, and generate ECM/EMM according to described source control word (perhaps at random produce control word) and return to scrambler 82, so that scrambler transmits with the scrambling code stream this ECM/EMM by transmission network.Tracing equipment 84 obtains ciphertext control word sequence from the service end set-top box, with the scrambling code stream of ciphertext control word sequence according to the mode descrambling front end transmission of service end set-top box regulation, extract the sign in the descrambling code stream, corresponding relation according to described card group, pre-scrambling code stream and sign produces feedback information.According to this feedback information, can determine diffusion person and divide into groups next time.
The foregoing description is a better embodiment of system and a method according to the invention, and aforesaid various execution modes can be applied to this embodiment.
The method according to this invention and system, be to allow the user smart card corresponding different sign or the control word of different cards group, obtain identical view reception effect, by analysis to the sign that gets access to, determine to exist the card group of control word diffusion, and then the card group/user smart card at the user smart card place of definite diffusion control word, finally find diffusion person, reach purpose of the present invention.
Above-described specific embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is specific embodiments of the invention; and be not intended to limit the scope of the invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.

Claims (24)

1. a user smart card method for tracing is characterized in that, this method comprises the following steps:
The grouping strategy of front end system basis oneself generates the initial packet information of all user smart card group/cards, according to this grouping information, corresponding identical pre-scrambling code stream, user smart card group/different control word sequences and different signs of card generation for the different cards group, make control word sequence and the sign that the user smart card group of same card group/card is corresponding identical, and corresponding different control word sequence and the signs of the user smart card of different cards group group/card, use the different sign of corresponding different cards group to embed corresponding pre-scrambling code stream, and the corresponding pre-scrambling code stream of the different control word sequence scrambling of using corresponding different cards group, generate the scrambling code stream, produce the card group in this grouping, corresponding relation between pre-scrambling code stream and the sign sends to tracing equipment;
Tracing equipment is according to the corresponding relation between the card group in the once grouping of the user smart card group/card of front end system transmission, pre-scrambling code stream and the sign, the sign of analysis and utilization from the descrambling code stream of the ciphertext control word sequence descrambling of service end set-top box acquisition produces the feedback information that occurs the probability of tracked user smart card in each card group;
If the described probability of a card group is greater than prior setting in the described feedback information, and should have only a card group/card in the card group, then card/the card in this card group is regarded as tracked user smart card processing; Otherwise described feedback information is turned back to front end system, divide into groups next time.
2. method according to claim 1 is characterized in that, comprises the following steps: described next time the grouping
Front end system generates a grouping information of all user smart card group/cards according to described feedback information and the grouping strategy of oneself, according to this grouping information, corresponding identical pre-scrambling code stream, user smart card group/different control word sequences and different signs of card generation for the different cards group, make control word sequence and the sign that the user smart card group of same card group/card is corresponding identical, and corresponding different control word sequence and the signs of the user smart card of different cards group group/card, use the different sign of corresponding different cards group to embed corresponding pre-scrambling code stream, and the corresponding pre-scrambling code stream of the different control word sequence scrambling of using corresponding different cards group, generate the scrambling code stream, produce the card group in this grouping, corresponding relation between pre-scrambling code stream and the sign sends to described tracing equipment.
3. method according to claim 2 is characterized in that, according to grouping information, and corresponding identical pre-scrambling code stream, for the step of the different control word sequence of user smart card group/card generation of different cards group comprises:
Corresponding each pre-scrambling code stream that transmits constantly, produce a source control word, one attribute of this source control word and each card group is generated the control corresponding word respectively according to the algorithm of appointment, obtain the different control word of different cards group correspondence, and then obtain the control word sequence of pre-scrambling code stream of the real-time Transmission of different cards group correspondence.
4. method according to claim 2 is characterized in that, according to grouping information, and corresponding identical pre-scrambling code stream, for the step of the different control word sequence of user smart card group/card generation of different cards group comprises:
Be different card group generations at random different, irrelevant control word each other, and then obtain the control word sequence of pre-scrambling code stream of the real-time Transmission of different cards group correspondence.
5. according to claim 3 or 4 described methods, it is characterized in that this method also comprises:
Generate Entitlement Management Message and Entitlement Control Message according to described source control word or irrelevant each other control word;
Described scrambling code stream and described Entitlement Management Message and Entitlement Control Message are together transmitted.
6. method according to claim 2 is characterized in that, uses the different sign of described corresponding different cards group to embed corresponding pre-scrambling code stream, and uses the step of the different described pre-scrambling code stream of control word sequence scrambling of corresponding different cards group to comprise:
The fragment of the elementary streams of described pre-scrambling code stream is divided into main leaf section and auxilliary fragment;
Described main leaf section is made n-1 copy, and this n-1 copy main leaf section is inserted into original main leaf section back continuously, wherein n is the group number of grouping, determines the corresponding relation of each main leaf section and card group;
The different sign of described corresponding different cards group is embedded into corresponding main leaf section;
Use the main leaf section of the corresponding card group of the different control word sequence scrambling correspondence of above-mentioned corresponding different cards group.
7. method according to claim 5 is characterized in that, utilization comprises from the step of the ciphertext control word sequence descrambling scrambling code stream that the service end set-top box obtains:
The service end set-top box will offer user smart card from Entitlement Control Message and the Entitlement Management Message that transmission network receives, and decrypt the control word sequence by user smart card, and return to the service end set-top box;
The service end set-top box uses the mode of oneself to described control word sequential encryption, generates ciphertext control word sequence;
The service end set-top box offers client set top box with described ciphertext control word sequence;
The tracing equipment of the client set top box that disguises oneself as obtains described ciphertext control word sequence from the service end set-top box, utilizes the scrambling code stream of this ciphertext control word sequence descrambling from the front end system reception according to the mode of service end regulation.
8. method according to claim 2 is characterized in that, described step of next time dividing into groups comprises:
Probability further is subdivided into many groups respectively greater than the user smart card group/card in each card group of prior setting, probability is also divided into groups less than the user smart card group/engaging in all card groups of prior setting again, generate grouping information next time according to the group result under aforementioned two kinds of situations, and repeat subsequent step.
9. method according to claim 2 is characterized in that, described step of next time dividing into groups comprises:
Probability further is subdivided into many groups greater than the user smart card group/card in the card group of prior setting and this probability maximum, with remaining user smart card group/engaging and grouping again, according to the generation of the group result under aforementioned two kinds of situations grouping information next time, and repeat subsequent step.
10. method according to claim 2 is characterized in that, described grouping information comprises: to time started, the group number of grouping, the sign of each group and the user smart card group/card that each group has of all user smart card groups/stick into this grouping of row.
11. method according to claim 1 is characterized in that, described pre-scrambling code stream comprises: an elementary streams, perhaps all elementary streams of a channel, perhaps all elementary streams of a plurality of channels.
12. method according to claim 1 is characterized in that, described card comprises a user smart card in rolling into a ball at least.
13. a user smart card tracing system is characterized in that this system comprises front end system and tracing equipment, wherein:
Tracing equipment is used for according to the corresponding relation between the card group of the once grouping of the user smart card group/card of front end system transmission, pre-scrambling code stream and the sign, the sign of analysis and utilization from the descrambling code stream of the ciphertext control word sequence descrambling of service end set-top box acquisition, produce in each card group the feedback information of the probability that tracked user smart card occurs, as divide into groups and judge diffusion person's foundation next time;
Front end system comprises:
The grouping information generation unit is used for generating according to the grouping strategy of described feedback information and oneself grouping information of all user smart card group/cards;
Control word sequence generation unit, be used for according to described grouping information, corresponding identical pre-scrambling code stream, user smart card group/different control word sequence of card generation for the different cards group, make the control word sequence that the user smart card group of same card group/card is corresponding identical, and the control word sequence that the user smart card of different cards group group/card correspondence is different;
Marker generator, be used for according to grouping information, corresponding identical pre-scrambling code stream, user smart card group/different sign of card generation for the different cards group, be embedded into identical sign in the descrambling code stream that makes the corresponding user of the user smart card group of same card group/card use, and be embedded into different signs in the descrambling code stream of the corresponding user's use of the user smart card of different cards group group/card;
Scrambling unit, be used to use the different sign of described corresponding different cards group to be embedded into described pre-scrambling code stream, and use the described pre-scrambling code stream of different control word sequence scramblings of described corresponding different cards group, generate the scrambling code stream, and transmit by transmission network with Entitlement Management Message and Entitlement Control Message;
The corresponding relation generation unit is used for according to aforementioned groupings information and sign, and the corresponding relation that produces between the card group in this grouping, pre-scrambling code stream and the sign sends to described tracing equipment.
14. system according to claim 13, it is characterized in that, described grouping strategy comprises: probability less than user smart card group/engaging in all card groups of prior setting and grouping again, further is subdivided into organize with probability respectively greater than the user smart card group/card in each card group of prior setting more.
15. system according to claim 13, it is characterized in that, described grouping strategy comprises: probability further is subdivided into many groups greater than the user smart card group/card in the card group of prior setting and this probability maximum, remaining user smart card group/engaging is also divided into groups again.
16. system according to claim 13, it is characterized in that, described control word sequence generation unit is used to produce a source control word, one attribute of this source control word and each card group is generated control corresponding word sequence respectively according to the algorithm of appointment, obtain the different control word sequence of different cards group correspondence.
17. system according to claim 13 is characterized in that, described control word sequence generation unit is used to different card group generations at random control word sequence different, that have nothing to do each other.
18. system according to claim 16, it is characterized in that, described front end system also comprises Entitlement Management Message generation unit and Entitlement Control Message generation unit, is used for generating Entitlement Management Message and Entitlement Control Message according to described source control word or different control word sequences respectively.
19. system according to claim 13, it is characterized in that, if the described probability in the described feedback information in the card group is greater than prior setting, and should have only a card group/card in the card group, then card/the card in this card group is regarded as tracked user smart card processing, determines diffusion person according to this tracked user smart card.
20. system according to claim 13 is characterized in that, described scrambling unit is used for the fragment of each elementary streams of described pre-scrambling code stream is divided into main leaf section and auxilliary fragment; Described main leaf section is made n-1 copy, and this n-1 copy main leaf section is inserted into original main leaf section back continuously, wherein n is the group number of grouping, determines the corresponding relation of each main leaf section and card group; It is disconnected to use the unlike signal of above-mentioned corresponding different cards group to be embedded into corresponding main leaf, and uses the main leaf section of the corresponding card group of the different control word sequence scrambling correspondence of above-mentioned corresponding different cards group, obtains the scrambling code stream.
21. system according to claim 13 is characterized in that, described grouping information comprises: to time started, the group number of grouping, the sign of each group and the user smart card group/card that each group has of all user smart card groups/stick into this grouping of row.
22. system according to claim 13 is characterized in that, described pre-scrambling code stream comprises: an elementary streams, perhaps all elementary streams of a channel, perhaps all elementary streams of a plurality of channels.
23. system according to claim 13 is characterized in that, described card comprises a user smart card in rolling into a ball at least.
24. system according to claim 18 is characterized in that, described grouping information generation unit is realized by following the trail of sequencer; Described control word sequence generation unit, marker generator, corresponding relation generation unit and scrambling unit are realized by scrambler; Described Entitlement Management Message generation unit, Entitlement Control Message generation unit realize by condition receiving system, wherein:
Tracing equipment links to each other with service terminal top box with the tracking sequencer, is used for feedback information is sent to the tracking sequencer, and obtains ciphertext control word sequence from the service end set-top box;
Follow the trail of sequencer and link to each other, be used for grouping information is sent to scrambler with scrambler;
Scrambler links to each other with condition receiving system with program source, is used for the pre-scrambling code stream embedding sign to the program source transmission, and this pre-scrambling code stream of scrambling, and control word sequence and corresponding relation are sent to condition receiving system;
Condition receiving system links to each other with scrambler with tracing equipment again, is used for Entitlement Management Message and Entitlement Control Message are sent to scrambler, and corresponding relation is sent to tracing equipment.
CN2007101756213A 2007-10-09 2007-10-09 System and method for tracking user smart card Active CN101409822B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2007101756213A CN101409822B (en) 2007-10-09 2007-10-09 System and method for tracking user smart card

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2007101756213A CN101409822B (en) 2007-10-09 2007-10-09 System and method for tracking user smart card

Publications (2)

Publication Number Publication Date
CN101409822A CN101409822A (en) 2009-04-15
CN101409822B true CN101409822B (en) 2010-10-20

Family

ID=40572574

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2007101756213A Active CN101409822B (en) 2007-10-09 2007-10-09 System and method for tracking user smart card

Country Status (1)

Country Link
CN (1) CN101409822B (en)

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1284818A (en) * 2000-09-29 2001-02-21 清华大学 Full digital conditioned receiving method for video broadcost in cable TV network
EP1798976A2 (en) * 2005-12-16 2007-06-20 LG Electronics Inc. Apparatuses and methods for copy protection
CN101018320A (en) * 2007-02-13 2007-08-15 中国移动通信集团广东有限公司 A digital TV condition receiving system and its encryption method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1284818A (en) * 2000-09-29 2001-02-21 清华大学 Full digital conditioned receiving method for video broadcost in cable TV network
EP1798976A2 (en) * 2005-12-16 2007-06-20 LG Electronics Inc. Apparatuses and methods for copy protection
CN101018320A (en) * 2007-02-13 2007-08-15 中国移动通信集团广东有限公司 A digital TV condition receiving system and its encryption method

Also Published As

Publication number Publication date
CN101409822A (en) 2009-04-15

Similar Documents

Publication Publication Date Title
CN100366083C (en) Method for operating conditional access system for broadcast applications
CN1150760C (en) Mehtod for protecting audio-visual data across NRSS interface
US5590200A (en) Apparatus and method for securing communication systems
CN1168304C (en) Global copy protection system for digital home networks
CN101282456B (en) Method and apparatus for receiving digital television condition
CN101827246A (en) Provide control word from smart card to the access modules safety of having ready conditions
CN101035253B (en) Encryption or decryption implementing method, device and system
CN101390391A (en) Method for the transmission of management data
CN105491409B (en) Enhance CA system in a kind of digital television system
CN100442839C (en) Information transmitting method and apparatus for interactive digital broadcast television system
CN100502496C (en) Digital TV user authentication system based on mobile device
CN102111681B (en) Key system for digital television broadcast condition receiving system
CA2735080A1 (en) Personalized whitebox descramblers
CN102340702B (en) IPTV (Internet protocol television) network playing system and rights management and descrambling method based on USB (Universal serial bus) Key
RU2547230C2 (en) Method of receiving multimedia content scrambled using control words
CN102265634B (en) Transmission, reception and identification methods, security processor and information recording medium for said methods
CN101409820B (en) System and method for tracking user smart card
CN101409822B (en) System and method for tracking user smart card
CN100544429C (en) A kind of mobile phone TV services content protecting method
CN106559682B (en) A kind of method and device of DTV finger water-print protection
CN101409821B (en) System and method for tracking user smart card
CN100421468C (en) Method and system for realizing combined authorization of enciphering system
CN207744080U (en) A kind of digital television program steaming transfer system based on quantum cryptography
CN105959738A (en) Bidirectional conditional access system and method
US20060098822A1 (en) Interoperable conditional access receptors without consensual key sharing

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant