CN101567961B - Information updating method of terminal safety device of conditional access system and front-end thereof - Google Patents

Information updating method of terminal safety device of conditional access system and front-end thereof Download PDF

Info

Publication number
CN101567961B
CN101567961B CN2008101045061A CN200810104506A CN101567961B CN 101567961 B CN101567961 B CN 101567961B CN 2008101045061 A CN2008101045061 A CN 2008101045061A CN 200810104506 A CN200810104506 A CN 200810104506A CN 101567961 B CN101567961 B CN 101567961B
Authority
CN
China
Prior art keywords
safety device
information
read
write equipment
server
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN2008101045061A
Other languages
Chinese (zh)
Other versions
CN101567961A (en
Inventor
王宇
王天星
卢增祥
韩坚
王文军
李伟东
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Shibo Digital TV Technology Co Ltd
Original Assignee
Beijing Shibo Digital TV Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Shibo Digital TV Technology Co Ltd filed Critical Beijing Shibo Digital TV Technology Co Ltd
Priority to CN2008101045061A priority Critical patent/CN101567961B/en
Publication of CN101567961A publication Critical patent/CN101567961A/en
Application granted granted Critical
Publication of CN101567961B publication Critical patent/CN101567961B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Storage Device Security (AREA)

Abstract

The present invention provides an information updating method of a terminal safety device of a conditional access system and a front-end thereof. The method comprises the steps: a server receives an information updating request sent by a read-write device, wherein the information updating request carries relevant information of the safety device, and the relevant information comprises identification number and current version of the safety device; and the server determines whether the safety device is up to the information updating request, and if being up to the request the server generates corresponding latest information according to the relevant information and transmits the latest information to the read-write device so as to make the read-write device write the latest information in the safety device. The method ensures that information stored in the safety device is consistent with information in a front-end data base and a terminal user can receive any authorization information sent by the front-end, thereby effectively protecting the vital interest of service providers and terminal users and guaranteeing the legitimate rights of the service providers and the terminal users.

Description

The information updating method of the terminal safety device of condition receiving system and front end thereof
Technical field
The present invention is about the receiving terminal for digital television technology, especially in regard to the safety device of the terminal of digital television conditional access system, specifically about a kind of information updating method and front end thereof of terminal safety device of condition receiving system.
Background technology
Along with the development of Digital Television with popularize, domestic many operators have made up digital TV network and have started operation, and the receiving terminal for digital television (including but not limited to Digital Television or set-top box etc.) as user terminal just progresses into increasing family thus.
The operation of this receiving terminal for digital television also will rely on the support of condition receiving system (CAS:Conditional Access System) except relying on the support of hardware and software system.As everyone knows, condition receiving system CAS is meant and is used for controlling the system that the user receives broadcast service, realizes the paid service of broadcast system usually by empowerment management.
Condition receiving system comprises front end and terminal.Wherein, front end comprises Entitlement Control Message Generator (ECMG:Entitlement Control Message Generator), EMM Generator (EMMG:Entitlement Management Message Generator) at least; Terminal can comprise set-top box and safety device, can be with in the safety device insertion machine top box during use.
Wherein, safety device can be smart card, but is not limited thereto.Unique identification number of this safety device and coding are stored in the memory cell (not shown) of CAS front end, front end sends the various information that needs at the identification number of this storage, for example can be mandate/anti-authorization message, wallet is set, information such as characteristic value is set.EMMG can produce corresponding Entitlement Management Message (EMM:Entitlement Management Message) packet, and be sent to terminal, terminal set top box can receive the EMM authorization message of oneself according to the identification number of this safety device from code stream, then this EMM authorization message is sent to safety device.
In above-mentioned safety device, the data message that writes comprises: the manufacturer's information data (information of CAS manufacturer, the safety device card number information), operator's data (write down each operator's manufacturer's information, version, identification number etc.), key information data (user key, service key etc.), authorizing product data (the product IDs that the user can watch, attribute, expired time), machine card corresponding data (record be this numbering that is stuck in the machine card correspondence in the use), wallet data (credit line of each wallet reaches to have spent and counts), PIN code (recording smart card password), child and parent card (child and parent card mark, the nursing time) information such as.
But, if safety device is not in set-top box or in situation such as start not and cause it for a long time need not, in the meantime, the CAS front end has carried out some operation to safety device, as send mandate/anti-authorization message, wallet is set, information such as characteristic value are set, and this safety device is not received these EMM packets, this will cause in the database of the memory cell of canned data and CAS front end in this safety device canned data inconsistent, in severe case, the version gap that may cause the version (Card Version) of this card of database internal record of memory cell of CAS front end and the card in this safety device is greater than certain threshold value, for example greater than 255, then this safety device will be rejected the EMM bag that the CAS front end sends over, thereby can't carry out operate as normal, promptly can't normally decipher and descrambling etc.Like this, make the user can't watch TV programme, make user or service provider's vital interests all may suffer damage; And along with popularizing of Digital Television, it is more and more urgent that the solution of this problem also becomes.
Summary of the invention
The object of the present invention is to provide a kind of information updating method of terminal safety device of condition receiving system; be consistent by the information in canned data and the front end data storehouse in this method assurance safety device; guarantee that the terminal use can receive any authorization message that front end sends; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
The object of the present invention is to provide a kind of conditional access system front-end; read the relevant information of safety device by read-write equipment; utilize server to generate up-to-date information or key message; by read-write equipment above-mentioned information is write safety device; guaranteed no matter when safety device can realize that the information of this secure device stores and the information in the front end data storehouse are consistent; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
For achieving the above object, the invention provides a kind of information updating method of receiving terminal for digital television safety device, this method comprises:
Server receives the information updating request that read-write equipment transmits; Wherein, the relevant information of this information updating request device safe to carry, this relevant information comprises the identification number and the current version of this safety device at least;
Described server generates corresponding up-to-date information according to described relevant information;
This up-to-date information is sent to described read-write equipment;
Described read-write equipment writes described safety device with this up-to-date information.
For achieving the above object, the present invention also provides a kind of conditional access system front-end, and this front end comprises read-write equipment and server; Wherein,
Described read-write equipment is used to read the relevant information of this safety device, generates the information updating request and also sends this information updating request to described server; Wherein, the relevant information of this safety device is carried in this information updating request, and this relevant information comprises the identification number and the current version of this safety device at least;
Described server, be used to receive the information updating request that this read-write equipment transmits, judge whether this safety device meets the information updating requirement, if judged result is for being, then described server generates corresponding up-to-date information according to the information of this safety device of described relevant information and storage, and should corresponding up-to-date information be sent to described read-write equipment;
Described read-write equipment also is used to receive the up-to-date information that described server transmits, and the up-to-date information of should being correlated with writes described safety device.
The beneficial effect of embodiment of the present invention is; read the relevant information of safety device by read-write equipment; utilize server to generate up-to-date information or key message; by read-write equipment above-mentioned information is write safety device; guaranteed that the information in the canned data and front end data storehouse is consistent in the safety device; guarantee that the terminal use can receive any authorization message that front end sends; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
Description of drawings
Accompanying drawing described herein is used to provide further understanding of the present invention, constitutes the application's a part, does not constitute limitation of the invention.In the accompanying drawings:
Fig. 1 is that the front end of embodiment of the present invention constitutes schematic diagram;
Fig. 2 is the formation schematic diagram of read-write equipment among Fig. 1;
Fig. 3 is the formation schematic diagram of server among Fig. 1;
Fig. 4 is the method flow diagram of embodiment of the present invention lastest imformation.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer,, the present invention is described in further details below in conjunction with execution mode and accompanying drawing.At this, exemplary embodiment of the present invention and explanation thereof are used to explain the present invention, but not as a limitation of the invention.
Below in conjunction with accompanying drawing embodiments of the present invention are elaborated.
Execution mode one
The invention provides a kind of conditional access system front-end.As shown in Figure 1, this front end comprises read-write equipment 101 and server 102; Wherein, read-write equipment 101 is used for the relevant information of reading terminals safety device, sends the information updating request to server 102; Wherein, the relevant information of this safety device is carried in this information updating request, and this relevant information comprises the identification number and the current version of this safety device at least;
Server 102 is used to receive the information updating request that this read-write equipment 101 transmits, judge whether this safety device meets the information updating requirement, if judged result is for being, then this server 102 obtains relevant up-to-date information according to the information of this safety device of this relevant information and front end storage, and the up-to-date information of should being correlated with is sent to read-write equipment 101;
And this read-write equipment 101 also is used for the relevant up-to-date information that reception server 102 transmits, and the up-to-date information of should being correlated with writes safety device.
From the above; read the relevant information of safety device by read-write equipment 101; utilize server 102 to generate up-to-date information; and obtain key message; by read-write equipment 101 above-mentioned information is write safety device; guaranteed no matter when safety device can realize that the information of this secure device stores and the information in the front end data storehouse are consistent, thereby protected service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
In the present embodiment, this safety device can be smart card; Read-write equipment 101 can adopt read write line, and this safety device can insert this read-write equipment 101, and this read-write equipment 101 is used to read the relevant information of safety device.
In addition, the relevant information of this safety device is except the identification number and current version (Card Version) that comprise safety device, also can comprise safety device current time and/or product subscription information etc., but be not limited to above-mentioned information, can read corresponding information according to actual conditions.
Wherein, product subscription information can be mill run; Perhaps this product subscription information is all pay-per-view rating program (IPPV:Impulse Pay Per View) ordering informations, the information that comprises all expired and not out of date products, wherein IPPV information comprises IPPV (CPPV:CallbackIPPV) programme information of taking back biography.
As shown in Figure 1, this front end also comprises memory cell 103, and this memory cell 103 is connected with server 102, is used to store the information or the key message of this safety device.
In the present embodiment, server 102 is evened up packet and is safeguarded authorization packets and/or the passback feedback packet according to the version that the corresponding up-to-date information of obtaining that relevant information produced can be this safety device.Wherein,
When relevant information that read-write equipment 201 read during for the sign of this safety device and current version, the difference of the version that stores when this current version and system front end is during greater than preset value, and server 102 generation versions are evened up packet; Then, server 102 obtains the key message of this safety device correspondence from memory cell 103, and this key message for example can comprise authorization message and/or anti-authorization message, as authorization data packets/anti-authorization data packets, but be not limited thereto, also can comprise out of Memory as required.
Fig. 2 is the formation schematic diagram of read-write equipment among Fig. 1.As shown in Figure 2, this read-write equipment 101 comprises:
Reading unit 201, this reading unit 201 is used to read the relevant information of safety device;
Request generation unit 202, this request generation unit 202 are used for generating the information updating request according to the relevant information that reads, and send this information updating request to server 102;
Writing unit 203, this writing unit 203 are used for the up-to-date information that reception server 102 transmits, and this up-to-date information is write safety device.
In addition, this read-write equipment 101 also comprises detecting unit 204, this detecting unit 204 is used to detect safety device and whether connects this read-write equipment 101, if testing result connects this read-write equipment 101 for safety device is arranged, then this detecting unit 204 is sent to reading unit 201 with testing result.
Fig. 3 is the formation schematic diagram of server 102 among Fig. 1.This server 102 comprises receiving element 301, judging unit 302, information generating unit 303: wherein,
This receiving element 301 is used to receive the information updating request that this read-write equipment 101 transmits, and this information updating request is transmitted; This judging unit 302 is used to judge whether this safety device meets the information updating requirement, if judged result for meeting the information updating request, then meets this information updating information requested and transmits; This information generating unit 303 is used to receive the information that this judging unit 302 transmits, if the information that is received is for meeting the information updating information requested, then this information generating unit 303 generates corresponding up-to-date information according to the information of this safety device of this relevant information and storage, and should corresponding up-to-date information be sent to read-write equipment 101.
In addition, this server 102 also comprises key message acquiring unit 304, this key message acquiring unit 304 is connected with memory cell 103, after these information generating unit 303 generation versions are evened up packet, be used for obtaining key message, and this key message is sent to this read-write equipment 101 from memory cell;
This read-write equipment 101 also is used to receive this key message, and this key message is write safety device.
By above-mentioned conditional access system front-end; read the relevant information of safety device by read-write equipment 101; and utilize server 102 to obtain corresponding up-to-date information; by read-write equipment 101 above-mentioned information is write safety device; guaranteed safety device no matter when the information in this safety device all with the front end data storehouse in information be consistent; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
Execution mode two
The present invention also provides a kind of information updating method of terminal safety device of condition receiving system, and this method comprises:
Server 102 receives the information updating request that read-write equipment 101 transmits; Wherein, the relevant information of this information updating request device safe to carry, this relevant information comprises the identification number and the current version of this safety device at least;
This server 102 generates corresponding up-to-date information according to the relevant information that receives;
This up-to-date information is sent to this read-write equipment 201;
Described read-write equipment 201 writes safety device with this up-to-date information.
By the way; make terminal safety device to realize that at front end this safety device store information is consistent with stored information in the front end data storehouse at any time; avoid this safety device excessive etc. former thereby cause the situation of the packet that terminal can't receiving front-end sends to take place because of the information version gap that stores with the front end data storehouse; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
In the present embodiment, before server 102 received the information updating request of read-write equipment 101 transmission, this method also comprised: whether read-write equipment 101 detects has safety device to be connected to this read-write equipment 101; If judged result is for being that then this read-write equipment 101 reads the relevant information of safety device; Transmit the information updating request to server 102.
Before this server 102 generated corresponding up-to-date information according to relevant information, this method also comprised: this server 102 judges that whether this safety device meets the information updating requirement, can judge in the following way:
This server 102 judges whether received identification number is correct; If judged result is for being, then in the database of front-end stores unit 103, inquires about this identification number and whether exist; If Query Result is for existing, then this server 102 obtains the version of this identification number correspondence from the database of front end memory cell 103 according to the identification number of this received safety device; Judge that whether the version that obtains is more than or equal to this safety device current version; If judged result is for being, then definite this safety device meets the information updating requirement.
Meet at this safety device under the situation of information updating requirement, this server 102 generates corresponding up-to-date information, can be in the following way: whether the difference of judging the version that obtains and this safety device current version is greater than preset value; If judged result is for being, then this server 102 generates version according to this difference and evens up packet, and this version is evened up the version that identification number that packet comprises this safety device and this version are evened up packet.
Wherein, this preset value can be provided with arbitrarily, and in the present embodiment, this preset value can be 255.If judged result is less than preset value, does not then generate Card Version and even up packet.
Like this, server 102 can be evened up packet with this Card Version and be delivered to read-write equipment 101, at this read-write equipment 101 this up-to-date information is write the pairing safety device of identification number, this safety device is evened up the current version that version in the packet upgrades this safety device according to this Card Version.Card-Version in the database of Card Version in this safety device of assurance and front-end stores unit 103 evens up like this.
With this up-to-date information, promptly version is evened up after packet writes the safety device of this identification number correspondence at this read-write equipment 101, and this method also comprises: server 102 reads the key message of storing in the database of front-end stores unit 103 according to this identification number; This key message is sent to read-write equipment 101; This read-write equipment 101 writes safety device with this key message.
Like this, under the prerequisite that Card Version evens up, the key message of storing in the database with front-end stores unit 103 writes safety device by read-write equipment 101, realizes that further this safety device store information is consistent with stored information in the front end data storehouse.
Wherein, this key message can comprise authorization packets/anti-authorization packets, but is not limited to above-mentioned information, also can comprise out of Memory according to actual needs.
In another execution mode of the present invention, the relevant information that read-write equipment 101 reads also can be identification number, current version and the current time of this safety device.
Meet at this safety device under the situation of information updating requirement, this server 102 generates corresponding up-to-date information according to relevant information, can be in the following way: server 102 judges that whether the difference of the version that obtains and this safety device current version is greater than preset value, as 255; If judged result is for being, then this server 102 generates version according to this difference and evens up packet, and this version is evened up the version that identification number that packet comprises this safety device and this version are evened up packet; This server 102 judges that whether the described current time that receives is less than the current time in system; If judged result is for being, then server 102 is safeguarded authorization data packets according to this current time in system generation, and this safeguards that authorization data packets comprises the identification number and the up-to-date temporal information of this safety device.Wherein, the deterministic process that whether meets the information updating requirement repeats no more as mentioned above herein.
In this case, server 102 can be evened up version packet and be safeguarded that with this authorization data packets is sent to read-write equipment 101; After read-write equipment 101 write described safety device with this up-to-date information, this method also comprised: this safety device is evened up the current version that version in the packet upgrades this safety device according to this version; This safety device safeguards that according to described up-to-date temporal information in the authorization data packets upgrades the current time of this safety device.Like this, this safety device safeguards that according to this up-to-date temporal information in authorization data packets upgrades the current time of this safety device, thereby can reach the purpose of the expired authorizing product in the maintenance safe device.
In the above-mentioned execution mode, generate and send version and even up packet and safeguard that the order of authorization packets is not subjected to any restriction, can set according to actual needs.
In yet another embodiment of the present invention, the relevant information that reads of read-write equipment 101 also can be identification number, current version and the product subscription information of this safety device.
Meet at this safety device under the situation of information updating requirement, after this server 102 receives the information updating request, the product subscription information in this information updating request is stored, for example IPPV ordering information new in this product subscription information is stored.
In addition, this server 102 generates corresponding up-to-date information according to relevant information, can be in the following way: server 102 judges that whether the difference of the version that obtains and this safety device current version is greater than preset value, as 255; If judged result is for being, then this server 102 generates version according to this difference and evens up packet, and this version is evened up the version that identification number that packet comprises this safety device and this version are evened up packet; This server 102 judges in this product subscription information whether have expired product information; If judged result is for being, then this server 102 generates according to the expired product information that comprises in this relevant information and returns feedback data packet, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device.Wherein, the deterministic process that whether meets the information updating requirement repeats no more as mentioned above herein,
In this case, server 102 can be evened up this version packet and return feedback data packet and is sent to read-write equipment 101; After read-write equipment 101 write described safety device with this up-to-date information, this method also comprised: this safety device is evened up the current version that version in the packet upgrades this safety device according to this version; Server 102 can be sent to read-write equipment 101 with this passback feedback data packet, this read-write equipment 101 should return feedback data packet and write this safety device, this safety device can be deleted corresponding expired product in this safety device according to this expired product mark (ID) that returns in the feedback data packet, otherwise this expired product information will be stored in this safety device always; Wherein, this expired product is the CPPV product in the present embodiment.
In the above-described embodiment, the order that generation and transmission version are evened up packet and feedback authorization data packets is not subjected to any restriction, can set according to actual needs.
In yet another embodiment of the present invention, this relevant information can comprise this safety device identification number, current version, current time and product ordering information, like this, meet at this safety device under the situation of information updating requirement, this server 102 produces version and evens up packet, safeguards authorization data packets and passback feedback data packet; And the packet that is generated is sent to read-write equipment 101, and read-write equipment 101 can write safety device with above-mentioned packet, and this safety device is handled after receiving above-mentioned packet accordingly, and processing procedure repeats no more as mentioned above herein.In addition, to the sequencing that generates above-mentioned packet and after transmitting above-mentioned packet to the sequencing of safety device and safety device and receiving above-mentioned packet, the sequencing of handling does not impose any restrictions.For example, after server 102 generates above-mentioned packet, from the database of front end memory cell 103, obtain the key message of this safety device again, can even up packet formerly according to Card-Version, remaining packet after mode be sent to read-write equipment 101, but be not limited thereto, also can handle in proper order according to other.
Pass through said process; guaranteed that no matter when the information of this secure device stores and information in the front end data storehouse are consistent; thereby avoid can't the receiving front-end packet situation take place; protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
In addition, in the present embodiment, this method also comprises:
This read-write equipment 101 detects this safety device, judges whether this safety device returns related data; If judged result for not returning data, then finishes whole information updating process.
If judged result is for there being the passback data, then this method also comprises:
This read-write equipment 101 is sent to server 102 with the related data of this safety device passback; Wherein, this related data comprises the identification number and the anti-license confirmation code data of this safety device; After server 102 receives these related datas, in the deletion front end data storehouse with corresponding anti-authority record of this identification number and anti-authorization data packets; And stop to send anti-authorization data packets.Like this, the product that can make this anti-license confirmation sign indicating number correspondence in safety device and the data that in the front end data storehouse, write down be consistent.
In yet another embodiment of the present invention, if judged result is for there being the passback data, then this method also comprises: this read-write equipment 101 is sent to server 102 with the related data of safety device passback; Wherein, this related data can comprise the identification number and the product subscription information of this safety device, and this ordering information repeats no more as mentioned above herein.
After server 102 receives these related datas, with IPPV information stores new in this ordering information in database, thereby realized that the front end data storehouse can correctly write down the purpose of IPPV purchase order information.
In addition, the related data of these read-write equipment 101 passbacks also can comprise the identification number of this safety device, anti-license confirmation code data and product subscription information simultaneously.In this case, server 102 according in the identification number of this safety device and the anti-license confirmation sign indicating number delete database with corresponding anti-authority record of described identification number and anti-authorization data packets, and stop to send anti-authorization data packets; Simultaneously, server 102 generates the passback feedback data packet according to the expired product information in this product subscription information, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device.
Like this, after this server 102 generated described passback feedback data packet, also comprise: this server 102 was sent to read-write equipment 101 with described passback feedback data packet; This read-write equipment 101 should return feedback data packet and write this safety device, and then this safety device is deleted expired product in this safety device according to the expired product mark in this passback feedback data packet; Wherein, described expired product is the CPPV product.
Below be that smart card is an example with the safety device, and 1-2 is elaborated to information updating method of the present invention in conjunction with the accompanying drawings.
Step 401,402 after read-write equipment 101 starts, is carried out cycle detection, has judged whether that smart card inserts this read-write equipment 101; If judged result is inserted this read-write equipment 101 for smart card is arranged, then execution in step 403;
Step 403, read-write equipment 101 reads the smart card relevant information, wherein, this relevant information can be this smart card numbers, current C ard Version, can comprise current time, smart card product ordering information in addition, as IPPV purchase order information (comprising CPPV), wherein this product can be mill run, also can be IPPV (comprising CPPV) product, and ordering information can be expired and not out of date information.
In the present embodiment, be that smart card numbers, Card Version, current time and IPPV product subscription information are that example describes with this relevant information.
Step 404 after read-write equipment 101 reads the smart card relevant information, sends the information updating request to server 102, wherein, carries the above-mentioned relevant information of relevant smart card in this information updating request, and this data format is as shown in table 1:
Table 1
Title Explanation
Card?SN Smart card numbers
Operator?ID Operator's numbering
Card?Version Version in the smart card
Card?Time The smart card current time
Card?IPPV Smart card IPPV ordering information (comprising CPPV)
Check?Number The anti-license confirmation sign indicating number of smart card
Step 405, server 102 receive the information updating request that read-write equipments 101 transmit, and judge whether this safety device meets the information updating requirement, if judged result is for being that then execution in step 406; If judged result is that (seeing step 412) then do not report an error; Wherein, judge that whether this safety device meets the information updating requirement, can judge in the following way:
At first this server 102 judges that whether first data item is identification number, then returns mistake (seeing step 412) if not correct identification number; If judged result is identification number, then whether this server 102 is inquired about this identification number and is existed in front-end stores unit 103; If judged result is then obtained the Card Version of the identification number correspondence of this smart card for existing from this memory cell 103;
Server 102 judges that whether the version Card Version that obtains is more than or equal to this safety device current version; If judged result be the version Card Version that obtains more than or equal to this safety device current version, then this server 102 can determine that this safety device meets the information updating requirement.
Step 406, server 102 generates relevant up-to-date information, promptly generates new packet; Wherein, this server 102 judges that further whether the gap of the version Card Version that obtains and this smart card current version Card-Version is greater than preset value; As this preset value is 255, but is not limited thereto, and also can be set to other numerical value as required;
If judged result is greater than preset value, then server 102 generates version and evens up packet, does not even up packet otherwise do not generate this version; It is as shown in table 2 that this version is evened up the form of packet:
Table 2
Grammer Note
Card?Version?Data(){
Card?SN The smart card numbering
Operator?ID Carrier ID
Card?Version Version
}
Whether server 102 judges this current times less than the current time in system, if judged result is for being that then server 102 is safeguarded authorization packets according to the current time in system generation; This safeguards that authorization packets is as shown in table 3:
Table 3
Grammer Note
EMM?Refresh?Entitle?Data(){
Card?SN The smart card numbering
Operator?ID Carrier ID
Current?Time The smart card current time
}
At last, server 102 can generate the passback feedback data packet as expired CPPV product information according to expired product information in the product subscription information.The form of this passback feedback data packet is as shown in table 4:
Table 4
Grammer Note
?Call?back?Resp?Data(){
Card?SN The smart card numbering
Operator?ID Carrier ID
For(int?I=0;I<N;I++){ N is the number of expired CPPV product
CPPV?Product?ID Expired CPPV product IDs
}
?}
Above-mentioned server 102 generates version and evens up packet, safeguards that the order of authorization data packets and passback feedback data packet is unrestricted, can be random order, only is an execution mode herein.
Above-mentioned version is evened up packet, is safeguarded that authorization data packets and passback feedback data packet can be the EMM packet, but is not limited thereto.
Step 407, server 102 are obtained all key messages that this smart card information is upgraded to be needed from front end memory cell 103, in the present embodiment, this key message is the EMM packet, and its concrete information repeats no more as mentioned above herein.
Step 408 after server 102 obtains key message, can be evened up packet preceding according to version in the present embodiment, and the mode after remainder data wraps in is sent to read-write equipment 101; This read-write equipment 101 writes smart card with the packet of packet that generates and the key message that obtains, but is not limited thereto order, also can be other orders;
Wherein, this smart card obtains version and evens up packet, according to the version in this smart card of the version updating that comprises in this packet, version with storage in the version that guarantees the storage of this smart card memory and the front-end stores unit 103 is consistent, and has avoided causing because of the version gap is excessive terminal can't receiving front-end to send data conditions and has taken place.For example, this safety device version Card Version=100, the version Card Version=400 of this safety device in the database (DB) of CAS front-end stores unit 103, the version that generates of server 102 version of evening up in the packet can be Card Version=355 so, makes the version of storing in the version of renewal of this safety device and the database get final product less than preset value (255).
This smart card obtains safeguards authorization data packets, safeguard that according to this temporal information that comprises in authorization data packets upgrades the current time of this smart card, make that this smart card current time is consistent with the current time in system, thereby reach the purpose of safeguarding expired product in this smart card.For example, the current time of this safety device is: 20080401 09:10:00 as the expired time of CPPV are: 20080401 09:30:00, can judge that according to the current time of this safety device this CPPV product does not also have expired; But, current time in system is at present: 20080401 10:10:00, promptly the current time of this safety device is less than this current time in system, like this, after this safety device receives to safeguard authorization data packets, can safeguard that the temporal information in the authorization data packets is updated to 20080401 10:10:00 with the current time in this safety device according to this, like this, this safety device can be safeguarded expired product according to this up-to-date time, for example for mill run, can directly expired mill run be deleted; For the product of needs passback, as the CPPV product, then expired CPPV product information just need be back to server 102 by read-write equipment 101 and handle.
This smart card obtains the passback feedback data packet, and according to the quantity and the product mark (ID) of the expired CPPV product that comprises in this packet, with CPPV product deletion expired in this smart card, otherwise this expired product information will be stored in the smart card always.
Step 409, whether read-write equipment 101 judgements write successful, if this read-write equipment 101 occurs in ablation process unusually, (seeing step 412) then reports an error; Otherwise, execution in step 410;
Step 410,411, read-write equipment 101 reads smart card, judges whether this smart card has the data of passback; If judged result is for having, then this read-write equipment 101 is sent to server 102 with the related data of this smart card passback; Wherein, this related data can comprise identification number and the anti-license confirmation code data and/or the product subscription information of this smart card;
After server 102 receives this anti-license confirmation sign indicating numbers, store in the deletion front-end stores unit 103 with corresponding anti-authority record of this identification number and anti-authorization data packets; And stop to send anti-authorization data packets.Thereby reach in this smart card with front-end stores unit 103 in the consistency of record.
And, after this server 102 receives this product subscription information, confirm to have expired product information in this product subscription information, behind expired CPPV product, this server execution in step 406 then generates the passback feedback data packet, and should return feedback data packet and be sent to smart card (seeing step 408), after receiving, can delete this smart card this expired CPPV product in this smart card, thus the consistency that writes down with front end in the assurance smart card.
And then carry out step 410,411, like this, read-write equipment 101 and server 102 carry out repeatedly the final data consistent that guarantees storage in smart card and the front-end stores unit 103 in mutual back, thereby finish the renewal of information.
By above-mentioned execution mode as can be known; read the relevant information of safety device by read-write equipment 101; utilize server 102 to generate up-to-date information and obtain key message; by read-write equipment 101 above-mentioned information is write safety device; guaranteed that the information in the canned data and front end data storehouse is consistent in the safety device; guarantee that the terminal use can receive any authorization message that front end sends; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
Above-described embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is the specific embodiment of the present invention; and be not intended to limit the scope of the invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.

Claims (14)

1. the information updating method of the terminal safety device of a condition receiving system is characterized in that, this method comprises:
Server receives the information updating request that read-write equipment transmits, wherein, the relevant information of this information updating request device safe to carry, this relevant information comprises the identification number and the current version of this safety device;
Described server judges whether this safety device meets the information updating requirement, comprise: judge whether received identification number is correct, if judged result is for being, then whether this identification number of inquiry exists in the front end data storehouse, if Query Result is for existing, then obtain the version of this identification number correspondence from front end according to described identification number, judge that whether the version that obtains is more than or equal to this safety device current version, if judged result is for being, then definite this safety device meets the information updating requirement;
If judged result meets the information updating requirement for this safety device, then described server generates corresponding up-to-date information according to described relevant information, comprise: whether the version that judgement is obtained and the difference of this safety device current version be greater than preset value, if judged result is for being, then generate version according to this difference and even up packet as described up-to-date information, described version is evened up packet and is comprised the identification number of this safety device and the version that this version is evened up packet;
Described server is sent to described read-write equipment with this up-to-date information, so that described read-write equipment writes described safety device with this up-to-date information, so that described safety device is evened up the current version that version in the packet upgrades this safety device according to this version;
Described server reads the key message of storing in the front end data storehouse according to described identification number, described key message is sent to described read-write equipment, so that described read-write equipment writes described safety device with this key message, wherein, described key message comprises authorization message and/or anti-authorization message at least.
2. method according to claim 1 is characterized in that, receives at described server before the information updating request of read-write equipment transmission, and this method also comprises:
Whether described read-write equipment detects has safety device to be connected to this read-write equipment;
If testing result is for being that then described read-write equipment reads the relevant information of safety device;
Described read-write equipment transmits the information updating request to described server.
3. method according to claim 1 is characterized in that, this method also comprises:
Described read-write equipment detects this safety device, judges whether this safety device returns related data;
If judged result then finishes for not.
4. method according to claim 3 is characterized in that, if judged result is for being that then this method also comprises:
Described read-write equipment is sent to described server with the related data of described safety device passback; Wherein, this related data comprises the identification number and the anti-license confirmation sign indicating number of this safety device;
After described server receives this related data, in the delete database with corresponding anti-authority record of described identification number and anti-authorization data packets;
Described server stops to send anti-authorization data packets.
5. method according to claim 3 is characterized in that, if judged result is for being that then this method also comprises:
Described read-write equipment is sent to described server with the related data of described safety device passback; Wherein, this related data comprises the identification number and the product subscription information of this safety device;
After described server received this related data, described server generated the passback feedback data packet according to the expired product information in this product subscription information, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device;
Described server is sent to described read-write equipment with described passback feedback data packet;
Described read-write equipment should return feedback data packet and write described safety device.
6. method according to claim 5 is characterized in that, after described read-write equipment write described safety device with this up-to-date information, this method also comprised:
Described safety device is deleted expired product in this safety device according to the expired product mark in the described passback feedback data packet; Wherein, described expired product is the CPPV product.
7. method according to claim 3 is characterized in that, if judged result is for being that then this method also comprises:
Described read-write equipment is sent to described server with the related data of described safety device passback; Wherein, this related data comprises the identification number of this safety device, anti-license confirmation sign indicating number and product subscription information;
After described server receives this related data, according in the identification number of this safety device and the anti-license confirmation sign indicating number delete database with corresponding anti-authority record of described identification number and anti-authorization data packets, and stop to send anti-authorization data packets;
Described server generates the passback feedback data packet according to expired product information in this product subscription information, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device.
8. method according to claim 7 is characterized in that, after this server generates described passback feedback data packet, also comprises:
Described server is sent to described read-write equipment with described passback feedback data packet;
Described read-write equipment should return feedback data packet and write described safety device.
9. method according to claim 8 is characterized in that, after described read-write equipment write described safety device with this up-to-date information, this method also comprised:
Described safety device is deleted expired product in this safety device according to the expired product mark in the described passback feedback data packet; Wherein, described expired product is the CPPV product.
10. a conditional access system front-end is characterized in that, this front end comprises read-write equipment, server and memory cell, wherein:
Described read-write equipment is used to read the relevant information of safety device, generates the information updating request and also sends this information updating request to described server; Wherein, the relevant information of this safety device is carried in this information updating request, and this relevant information comprises the identification number and the current version of this safety device at least;
Described server, be used to receive the information updating request that this read-write equipment transmits, judge whether this safety device meets the information updating requirement, if judged result is for being, then described server generates corresponding up-to-date information according to the information of this safety device of described relevant information and storage, and should corresponding up-to-date information be sent to described read-write equipment;
Described read-write equipment also is used to receive the up-to-date information that described server transmits, and the up-to-date information of should being correlated with writes described safety device;
Described memory cell is connected with described server, is used for stored key information; Wherein, described key message comprises authorization message and/or anti-authorization message at least.
11. conditional access system front-end according to claim 10 is characterized in that, described read-write equipment comprises:
Reading unit, described reading unit is used to read the relevant information of described safety device;
Request generation unit, described request generation unit are used for generating the information updating request according to the relevant information that reads, and send this information updating request to described server;
Writing unit, said write unit are used to receive the up-to-date information that described server transmits, and this up-to-date information is write described safety device.
12. conditional access system front-end according to claim 11, it is characterized in that, described read-write equipment also comprises detecting unit, this detecting unit is used to detect described safety device and whether connects described read-write equipment, if testing result connects this read-write equipment for safety device is arranged, then this detecting unit is sent to described reading unit with testing result.
13. conditional access system front-end according to claim 10 is characterized in that, described server comprises:
Receiving element, described receiving element are used to receive the information updating request that described read-write equipment transmits, and this information updating request is transmitted;
Judging unit, described judging unit are used to judge whether this safety device meets the information updating requirement, if judged result for meeting the information updating request, then meets this information updating information requested and transmits;
Information generating unit, described information generating unit is used to receive the information that described judging unit transmits, if the information that is received is for meeting the information updating information requested, then this information generating unit generates corresponding up-to-date information according to the information of this safety device of described relevant information and storage, and should corresponding up-to-date information be sent to described read-write equipment.
14. conditional access system front-end according to claim 13 is characterized in that, described server also comprises:
The key message acquiring unit, described key message acquiring unit is connected with described memory cell, is used for obtaining key message from described memory cell, and described key message is sent to described read-write equipment;
Described read-write equipment also is used to receive described key message, and this key message is write described safety device.
CN2008101045061A 2008-04-21 2008-04-21 Information updating method of terminal safety device of conditional access system and front-end thereof Active CN101567961B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN2008101045061A CN101567961B (en) 2008-04-21 2008-04-21 Information updating method of terminal safety device of conditional access system and front-end thereof

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN2008101045061A CN101567961B (en) 2008-04-21 2008-04-21 Information updating method of terminal safety device of conditional access system and front-end thereof

Publications (2)

Publication Number Publication Date
CN101567961A CN101567961A (en) 2009-10-28
CN101567961B true CN101567961B (en) 2011-09-07

Family

ID=41283895

Family Applications (1)

Application Number Title Priority Date Filing Date
CN2008101045061A Active CN101567961B (en) 2008-04-21 2008-04-21 Information updating method of terminal safety device of conditional access system and front-end thereof

Country Status (1)

Country Link
CN (1) CN101567961B (en)

Also Published As

Publication number Publication date
CN101567961A (en) 2009-10-28

Similar Documents

Publication Publication Date Title
US8191160B2 (en) Method and system for auditing and correcting authorization inconsistencies for reception equipment in a content delivery network
KR100629413B1 (en) Smartcard for use with a receiver of encrypted broadcast signal, and receiver
JP4079282B2 (en) Broadcast / reception system and conditional access system therefor
US7570762B2 (en) Content delivery service providing apparatus and content delivery service terminal unit
KR100589447B1 (en) Signal generation and broadcasting
MXPA04009312A (en) Smart card mating protocol.
US9900638B2 (en) Pay-per-view sharing
US8401187B2 (en) Processing recordable content in a stream
CA2708928A1 (en) Processing recordable content in a stream
EP2191682A1 (en) System for maintaining the broadcasting information in usim unlock environment and method thereof
KR100989495B1 (en) Messaging over mobile phone network for digital multimedia network
CN101567961B (en) Information updating method of terminal safety device of conditional access system and front-end thereof
US20070201701A1 (en) Prepaid access control method
CN101945247B (en) Message sending method and device thereof
CN101489098A (en) Service unsubscription method, system and terminal thereof for conditional receiving system
CN101771858A (en) Program control method and device thereof
AU760416B2 (en) Smartcard for use with a receiver of encrypted broadcast signals, and receiver
EP2747443A1 (en) Method to enforce processing of management messages by a security module
CN101729746A (en) Televiewing control method and device
AU1553002A (en) Broadcast and reception system, and receiver therefor
MXPA99008541A (en) Smartcard for use with a receiver of encrypted broadcast signals, and receiver
MXPA99008544A (en) Signal generation and broadcasting
CN101742230A (en) Information processing method and device thereof
RU2000130173A (en) METHOD AND SYSTEM FOR DELIVERY OF INFORMATION TO SUBSCRIBERS ON A COMMUNICATION NETWORK, METHOD AND APPARATUS FOR CONNECTING A TERMINAL WITH AN INTERNET HOST SERVER IN RESPONSE TO AN INCOMPLETE URL

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant