CN101567961B - Information updating method of terminal safety device of conditional access system and front-end thereof - Google Patents
Information updating method of terminal safety device of conditional access system and front-end thereof Download PDFInfo
- Publication number
- CN101567961B CN101567961B CN2008101045061A CN200810104506A CN101567961B CN 101567961 B CN101567961 B CN 101567961B CN 2008101045061 A CN2008101045061 A CN 2008101045061A CN 200810104506 A CN200810104506 A CN 200810104506A CN 101567961 B CN101567961 B CN 101567961B
- Authority
- CN
- China
- Prior art keywords
- safety device
- information
- read
- write equipment
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The present invention provides an information updating method of a terminal safety device of a conditional access system and a front-end thereof. The method comprises the steps: a server receives an information updating request sent by a read-write device, wherein the information updating request carries relevant information of the safety device, and the relevant information comprises identification number and current version of the safety device; and the server determines whether the safety device is up to the information updating request, and if being up to the request the server generates corresponding latest information according to the relevant information and transmits the latest information to the read-write device so as to make the read-write device write the latest information in the safety device. The method ensures that information stored in the safety device is consistent with information in a front-end data base and a terminal user can receive any authorization information sent by the front-end, thereby effectively protecting the vital interest of service providers and terminal users and guaranteeing the legitimate rights of the service providers and the terminal users.
Description
Technical field
The present invention is about the receiving terminal for digital television technology, especially in regard to the safety device of the terminal of digital television conditional access system, specifically about a kind of information updating method and front end thereof of terminal safety device of condition receiving system.
Background technology
Along with the development of Digital Television with popularize, domestic many operators have made up digital TV network and have started operation, and the receiving terminal for digital television (including but not limited to Digital Television or set-top box etc.) as user terminal just progresses into increasing family thus.
The operation of this receiving terminal for digital television also will rely on the support of condition receiving system (CAS:Conditional Access System) except relying on the support of hardware and software system.As everyone knows, condition receiving system CAS is meant and is used for controlling the system that the user receives broadcast service, realizes the paid service of broadcast system usually by empowerment management.
Condition receiving system comprises front end and terminal.Wherein, front end comprises Entitlement Control Message Generator (ECMG:Entitlement Control Message Generator), EMM Generator (EMMG:Entitlement Management Message Generator) at least; Terminal can comprise set-top box and safety device, can be with in the safety device insertion machine top box during use.
Wherein, safety device can be smart card, but is not limited thereto.Unique identification number of this safety device and coding are stored in the memory cell (not shown) of CAS front end, front end sends the various information that needs at the identification number of this storage, for example can be mandate/anti-authorization message, wallet is set, information such as characteristic value is set.EMMG can produce corresponding Entitlement Management Message (EMM:Entitlement Management Message) packet, and be sent to terminal, terminal set top box can receive the EMM authorization message of oneself according to the identification number of this safety device from code stream, then this EMM authorization message is sent to safety device.
In above-mentioned safety device, the data message that writes comprises: the manufacturer's information data (information of CAS manufacturer, the safety device card number information), operator's data (write down each operator's manufacturer's information, version, identification number etc.), key information data (user key, service key etc.), authorizing product data (the product IDs that the user can watch, attribute, expired time), machine card corresponding data (record be this numbering that is stuck in the machine card correspondence in the use), wallet data (credit line of each wallet reaches to have spent and counts), PIN code (recording smart card password), child and parent card (child and parent card mark, the nursing time) information such as.
But, if safety device is not in set-top box or in situation such as start not and cause it for a long time need not, in the meantime, the CAS front end has carried out some operation to safety device, as send mandate/anti-authorization message, wallet is set, information such as characteristic value are set, and this safety device is not received these EMM packets, this will cause in the database of the memory cell of canned data and CAS front end in this safety device canned data inconsistent, in severe case, the version gap that may cause the version (Card Version) of this card of database internal record of memory cell of CAS front end and the card in this safety device is greater than certain threshold value, for example greater than 255, then this safety device will be rejected the EMM bag that the CAS front end sends over, thereby can't carry out operate as normal, promptly can't normally decipher and descrambling etc.Like this, make the user can't watch TV programme, make user or service provider's vital interests all may suffer damage; And along with popularizing of Digital Television, it is more and more urgent that the solution of this problem also becomes.
Summary of the invention
The object of the present invention is to provide a kind of information updating method of terminal safety device of condition receiving system; be consistent by the information in canned data and the front end data storehouse in this method assurance safety device; guarantee that the terminal use can receive any authorization message that front end sends; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
The object of the present invention is to provide a kind of conditional access system front-end; read the relevant information of safety device by read-write equipment; utilize server to generate up-to-date information or key message; by read-write equipment above-mentioned information is write safety device; guaranteed no matter when safety device can realize that the information of this secure device stores and the information in the front end data storehouse are consistent; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
For achieving the above object, the invention provides a kind of information updating method of receiving terminal for digital television safety device, this method comprises:
Server receives the information updating request that read-write equipment transmits; Wherein, the relevant information of this information updating request device safe to carry, this relevant information comprises the identification number and the current version of this safety device at least;
Described server generates corresponding up-to-date information according to described relevant information;
This up-to-date information is sent to described read-write equipment;
Described read-write equipment writes described safety device with this up-to-date information.
For achieving the above object, the present invention also provides a kind of conditional access system front-end, and this front end comprises read-write equipment and server; Wherein,
Described read-write equipment is used to read the relevant information of this safety device, generates the information updating request and also sends this information updating request to described server; Wherein, the relevant information of this safety device is carried in this information updating request, and this relevant information comprises the identification number and the current version of this safety device at least;
Described server, be used to receive the information updating request that this read-write equipment transmits, judge whether this safety device meets the information updating requirement, if judged result is for being, then described server generates corresponding up-to-date information according to the information of this safety device of described relevant information and storage, and should corresponding up-to-date information be sent to described read-write equipment;
Described read-write equipment also is used to receive the up-to-date information that described server transmits, and the up-to-date information of should being correlated with writes described safety device.
The beneficial effect of embodiment of the present invention is; read the relevant information of safety device by read-write equipment; utilize server to generate up-to-date information or key message; by read-write equipment above-mentioned information is write safety device; guaranteed that the information in the canned data and front end data storehouse is consistent in the safety device; guarantee that the terminal use can receive any authorization message that front end sends; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
Description of drawings
Accompanying drawing described herein is used to provide further understanding of the present invention, constitutes the application's a part, does not constitute limitation of the invention.In the accompanying drawings:
Fig. 1 is that the front end of embodiment of the present invention constitutes schematic diagram;
Fig. 2 is the formation schematic diagram of read-write equipment among Fig. 1;
Fig. 3 is the formation schematic diagram of server among Fig. 1;
Fig. 4 is the method flow diagram of embodiment of the present invention lastest imformation.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer,, the present invention is described in further details below in conjunction with execution mode and accompanying drawing.At this, exemplary embodiment of the present invention and explanation thereof are used to explain the present invention, but not as a limitation of the invention.
Below in conjunction with accompanying drawing embodiments of the present invention are elaborated.
Execution mode one
The invention provides a kind of conditional access system front-end.As shown in Figure 1, this front end comprises read-write equipment 101 and server 102; Wherein, read-write equipment 101 is used for the relevant information of reading terminals safety device, sends the information updating request to server 102; Wherein, the relevant information of this safety device is carried in this information updating request, and this relevant information comprises the identification number and the current version of this safety device at least;
And this read-write equipment 101 also is used for the relevant up-to-date information that reception server 102 transmits, and the up-to-date information of should being correlated with writes safety device.
From the above; read the relevant information of safety device by read-write equipment 101; utilize server 102 to generate up-to-date information; and obtain key message; by read-write equipment 101 above-mentioned information is write safety device; guaranteed no matter when safety device can realize that the information of this secure device stores and the information in the front end data storehouse are consistent, thereby protected service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
In the present embodiment, this safety device can be smart card; Read-write equipment 101 can adopt read write line, and this safety device can insert this read-write equipment 101, and this read-write equipment 101 is used to read the relevant information of safety device.
In addition, the relevant information of this safety device is except the identification number and current version (Card Version) that comprise safety device, also can comprise safety device current time and/or product subscription information etc., but be not limited to above-mentioned information, can read corresponding information according to actual conditions.
Wherein, product subscription information can be mill run; Perhaps this product subscription information is all pay-per-view rating program (IPPV:Impulse Pay Per View) ordering informations, the information that comprises all expired and not out of date products, wherein IPPV information comprises IPPV (CPPV:CallbackIPPV) programme information of taking back biography.
As shown in Figure 1, this front end also comprises memory cell 103, and this memory cell 103 is connected with server 102, is used to store the information or the key message of this safety device.
In the present embodiment, server 102 is evened up packet and is safeguarded authorization packets and/or the passback feedback packet according to the version that the corresponding up-to-date information of obtaining that relevant information produced can be this safety device.Wherein,
When relevant information that read-write equipment 201 read during for the sign of this safety device and current version, the difference of the version that stores when this current version and system front end is during greater than preset value, and server 102 generation versions are evened up packet; Then, server 102 obtains the key message of this safety device correspondence from memory cell 103, and this key message for example can comprise authorization message and/or anti-authorization message, as authorization data packets/anti-authorization data packets, but be not limited thereto, also can comprise out of Memory as required.
Fig. 2 is the formation schematic diagram of read-write equipment among Fig. 1.As shown in Figure 2, this read-write equipment 101 comprises:
Writing unit 203, this writing unit 203 are used for the up-to-date information that reception server 102 transmits, and this up-to-date information is write safety device.
In addition, this read-write equipment 101 also comprises detecting unit 204, this detecting unit 204 is used to detect safety device and whether connects this read-write equipment 101, if testing result connects this read-write equipment 101 for safety device is arranged, then this detecting unit 204 is sent to reading unit 201 with testing result.
Fig. 3 is the formation schematic diagram of server 102 among Fig. 1.This server 102 comprises receiving element 301, judging unit 302, information generating unit 303: wherein,
This receiving element 301 is used to receive the information updating request that this read-write equipment 101 transmits, and this information updating request is transmitted; This judging unit 302 is used to judge whether this safety device meets the information updating requirement, if judged result for meeting the information updating request, then meets this information updating information requested and transmits; This information generating unit 303 is used to receive the information that this judging unit 302 transmits, if the information that is received is for meeting the information updating information requested, then this information generating unit 303 generates corresponding up-to-date information according to the information of this safety device of this relevant information and storage, and should corresponding up-to-date information be sent to read-write equipment 101.
In addition, this server 102 also comprises key message acquiring unit 304, this key message acquiring unit 304 is connected with memory cell 103, after these information generating unit 303 generation versions are evened up packet, be used for obtaining key message, and this key message is sent to this read-write equipment 101 from memory cell;
This read-write equipment 101 also is used to receive this key message, and this key message is write safety device.
By above-mentioned conditional access system front-end; read the relevant information of safety device by read-write equipment 101; and utilize server 102 to obtain corresponding up-to-date information; by read-write equipment 101 above-mentioned information is write safety device; guaranteed safety device no matter when the information in this safety device all with the front end data storehouse in information be consistent; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
Execution mode two
The present invention also provides a kind of information updating method of terminal safety device of condition receiving system, and this method comprises:
This server 102 generates corresponding up-to-date information according to the relevant information that receives;
This up-to-date information is sent to this read-write equipment 201;
Described read-write equipment 201 writes safety device with this up-to-date information.
By the way; make terminal safety device to realize that at front end this safety device store information is consistent with stored information in the front end data storehouse at any time; avoid this safety device excessive etc. former thereby cause the situation of the packet that terminal can't receiving front-end sends to take place because of the information version gap that stores with the front end data storehouse; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
In the present embodiment, before server 102 received the information updating request of read-write equipment 101 transmission, this method also comprised: whether read-write equipment 101 detects has safety device to be connected to this read-write equipment 101; If judged result is for being that then this read-write equipment 101 reads the relevant information of safety device; Transmit the information updating request to server 102.
Before this server 102 generated corresponding up-to-date information according to relevant information, this method also comprised: this server 102 judges that whether this safety device meets the information updating requirement, can judge in the following way:
This server 102 judges whether received identification number is correct; If judged result is for being, then in the database of front-end stores unit 103, inquires about this identification number and whether exist; If Query Result is for existing, then this server 102 obtains the version of this identification number correspondence from the database of front end memory cell 103 according to the identification number of this received safety device; Judge that whether the version that obtains is more than or equal to this safety device current version; If judged result is for being, then definite this safety device meets the information updating requirement.
Meet at this safety device under the situation of information updating requirement, this server 102 generates corresponding up-to-date information, can be in the following way: whether the difference of judging the version that obtains and this safety device current version is greater than preset value; If judged result is for being, then this server 102 generates version according to this difference and evens up packet, and this version is evened up the version that identification number that packet comprises this safety device and this version are evened up packet.
Wherein, this preset value can be provided with arbitrarily, and in the present embodiment, this preset value can be 255.If judged result is less than preset value, does not then generate Card Version and even up packet.
Like this, server 102 can be evened up packet with this Card Version and be delivered to read-write equipment 101, at this read-write equipment 101 this up-to-date information is write the pairing safety device of identification number, this safety device is evened up the current version that version in the packet upgrades this safety device according to this Card Version.Card-Version in the database of Card Version in this safety device of assurance and front-end stores unit 103 evens up like this.
With this up-to-date information, promptly version is evened up after packet writes the safety device of this identification number correspondence at this read-write equipment 101, and this method also comprises: server 102 reads the key message of storing in the database of front-end stores unit 103 according to this identification number; This key message is sent to read-write equipment 101; This read-write equipment 101 writes safety device with this key message.
Like this, under the prerequisite that Card Version evens up, the key message of storing in the database with front-end stores unit 103 writes safety device by read-write equipment 101, realizes that further this safety device store information is consistent with stored information in the front end data storehouse.
Wherein, this key message can comprise authorization packets/anti-authorization packets, but is not limited to above-mentioned information, also can comprise out of Memory according to actual needs.
In another execution mode of the present invention, the relevant information that read-write equipment 101 reads also can be identification number, current version and the current time of this safety device.
Meet at this safety device under the situation of information updating requirement, this server 102 generates corresponding up-to-date information according to relevant information, can be in the following way: server 102 judges that whether the difference of the version that obtains and this safety device current version is greater than preset value, as 255; If judged result is for being, then this server 102 generates version according to this difference and evens up packet, and this version is evened up the version that identification number that packet comprises this safety device and this version are evened up packet; This server 102 judges that whether the described current time that receives is less than the current time in system; If judged result is for being, then server 102 is safeguarded authorization data packets according to this current time in system generation, and this safeguards that authorization data packets comprises the identification number and the up-to-date temporal information of this safety device.Wherein, the deterministic process that whether meets the information updating requirement repeats no more as mentioned above herein.
In this case, server 102 can be evened up version packet and be safeguarded that with this authorization data packets is sent to read-write equipment 101; After read-write equipment 101 write described safety device with this up-to-date information, this method also comprised: this safety device is evened up the current version that version in the packet upgrades this safety device according to this version; This safety device safeguards that according to described up-to-date temporal information in the authorization data packets upgrades the current time of this safety device.Like this, this safety device safeguards that according to this up-to-date temporal information in authorization data packets upgrades the current time of this safety device, thereby can reach the purpose of the expired authorizing product in the maintenance safe device.
In the above-mentioned execution mode, generate and send version and even up packet and safeguard that the order of authorization packets is not subjected to any restriction, can set according to actual needs.
In yet another embodiment of the present invention, the relevant information that reads of read-write equipment 101 also can be identification number, current version and the product subscription information of this safety device.
Meet at this safety device under the situation of information updating requirement, after this server 102 receives the information updating request, the product subscription information in this information updating request is stored, for example IPPV ordering information new in this product subscription information is stored.
In addition, this server 102 generates corresponding up-to-date information according to relevant information, can be in the following way: server 102 judges that whether the difference of the version that obtains and this safety device current version is greater than preset value, as 255; If judged result is for being, then this server 102 generates version according to this difference and evens up packet, and this version is evened up the version that identification number that packet comprises this safety device and this version are evened up packet; This server 102 judges in this product subscription information whether have expired product information; If judged result is for being, then this server 102 generates according to the expired product information that comprises in this relevant information and returns feedback data packet, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device.Wherein, the deterministic process that whether meets the information updating requirement repeats no more as mentioned above herein,
In this case, server 102 can be evened up this version packet and return feedback data packet and is sent to read-write equipment 101; After read-write equipment 101 write described safety device with this up-to-date information, this method also comprised: this safety device is evened up the current version that version in the packet upgrades this safety device according to this version; Server 102 can be sent to read-write equipment 101 with this passback feedback data packet, this read-write equipment 101 should return feedback data packet and write this safety device, this safety device can be deleted corresponding expired product in this safety device according to this expired product mark (ID) that returns in the feedback data packet, otherwise this expired product information will be stored in this safety device always; Wherein, this expired product is the CPPV product in the present embodiment.
In the above-described embodiment, the order that generation and transmission version are evened up packet and feedback authorization data packets is not subjected to any restriction, can set according to actual needs.
In yet another embodiment of the present invention, this relevant information can comprise this safety device identification number, current version, current time and product ordering information, like this, meet at this safety device under the situation of information updating requirement, this server 102 produces version and evens up packet, safeguards authorization data packets and passback feedback data packet; And the packet that is generated is sent to read-write equipment 101, and read-write equipment 101 can write safety device with above-mentioned packet, and this safety device is handled after receiving above-mentioned packet accordingly, and processing procedure repeats no more as mentioned above herein.In addition, to the sequencing that generates above-mentioned packet and after transmitting above-mentioned packet to the sequencing of safety device and safety device and receiving above-mentioned packet, the sequencing of handling does not impose any restrictions.For example, after server 102 generates above-mentioned packet, from the database of front end memory cell 103, obtain the key message of this safety device again, can even up packet formerly according to Card-Version, remaining packet after mode be sent to read-write equipment 101, but be not limited thereto, also can handle in proper order according to other.
Pass through said process; guaranteed that no matter when the information of this secure device stores and information in the front end data storehouse are consistent; thereby avoid can't the receiving front-end packet situation take place; protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
In addition, in the present embodiment, this method also comprises:
This read-write equipment 101 detects this safety device, judges whether this safety device returns related data; If judged result for not returning data, then finishes whole information updating process.
If judged result is for there being the passback data, then this method also comprises:
This read-write equipment 101 is sent to server 102 with the related data of this safety device passback; Wherein, this related data comprises the identification number and the anti-license confirmation code data of this safety device; After server 102 receives these related datas, in the deletion front end data storehouse with corresponding anti-authority record of this identification number and anti-authorization data packets; And stop to send anti-authorization data packets.Like this, the product that can make this anti-license confirmation sign indicating number correspondence in safety device and the data that in the front end data storehouse, write down be consistent.
In yet another embodiment of the present invention, if judged result is for there being the passback data, then this method also comprises: this read-write equipment 101 is sent to server 102 with the related data of safety device passback; Wherein, this related data can comprise the identification number and the product subscription information of this safety device, and this ordering information repeats no more as mentioned above herein.
After server 102 receives these related datas, with IPPV information stores new in this ordering information in database, thereby realized that the front end data storehouse can correctly write down the purpose of IPPV purchase order information.
In addition, the related data of these read-write equipment 101 passbacks also can comprise the identification number of this safety device, anti-license confirmation code data and product subscription information simultaneously.In this case, server 102 according in the identification number of this safety device and the anti-license confirmation sign indicating number delete database with corresponding anti-authority record of described identification number and anti-authorization data packets, and stop to send anti-authorization data packets; Simultaneously, server 102 generates the passback feedback data packet according to the expired product information in this product subscription information, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device.
Like this, after this server 102 generated described passback feedback data packet, also comprise: this server 102 was sent to read-write equipment 101 with described passback feedback data packet; This read-write equipment 101 should return feedback data packet and write this safety device, and then this safety device is deleted expired product in this safety device according to the expired product mark in this passback feedback data packet; Wherein, described expired product is the CPPV product.
Below be that smart card is an example with the safety device, and 1-2 is elaborated to information updating method of the present invention in conjunction with the accompanying drawings.
Step 401,402 after read-write equipment 101 starts, is carried out cycle detection, has judged whether that smart card inserts this read-write equipment 101; If judged result is inserted this read-write equipment 101 for smart card is arranged, then execution in step 403;
In the present embodiment, be that smart card numbers, Card Version, current time and IPPV product subscription information are that example describes with this relevant information.
Step 404 after read-write equipment 101 reads the smart card relevant information, sends the information updating request to server 102, wherein, carries the above-mentioned relevant information of relevant smart card in this information updating request, and this data format is as shown in table 1:
Table 1
Title | Explanation |
Card?SN | Smart card numbers |
Operator?ID | Operator's numbering |
Card?Version | Version in the smart card |
Card?Time | The smart card current time |
Card?IPPV | Smart card IPPV ordering information (comprising CPPV) |
Check?Number | The anti-license confirmation sign indicating number of smart card |
At first this server 102 judges that whether first data item is identification number, then returns mistake (seeing step 412) if not correct identification number; If judged result is identification number, then whether this server 102 is inquired about this identification number and is existed in front-end stores unit 103; If judged result is then obtained the Card Version of the identification number correspondence of this smart card for existing from this memory cell 103;
If judged result is greater than preset value, then server 102 generates version and evens up packet, does not even up packet otherwise do not generate this version; It is as shown in table 2 that this version is evened up the form of packet:
Table 2
Grammer | Note |
Card?Version?Data(){ | |
Card?SN | The smart card numbering |
Operator?ID | Carrier ID |
Card?Version | Version |
} |
Whether server 102 judges this current times less than the current time in system, if judged result is for being that then server 102 is safeguarded authorization packets according to the current time in system generation; This safeguards that authorization packets is as shown in table 3:
Table 3
Grammer | Note |
EMM?Refresh?Entitle?Data(){ | |
Card?SN | The smart card numbering |
Operator?ID | Carrier ID |
Current?Time | The smart card current time |
} |
At last, server 102 can generate the passback feedback data packet as expired CPPV product information according to expired product information in the product subscription information.The form of this passback feedback data packet is as shown in table 4:
Table 4
Grammer | Note |
?Call?back?Resp?Data(){ | |
Card?SN | The smart card numbering |
Operator?ID | Carrier ID |
For(int?I=0;I<N;I++){ | N is the number of expired CPPV product |
CPPV?Product?ID | Expired CPPV product IDs |
} | |
?} |
Above-mentioned server 102 generates version and evens up packet, safeguards that the order of authorization data packets and passback feedback data packet is unrestricted, can be random order, only is an execution mode herein.
Above-mentioned version is evened up packet, is safeguarded that authorization data packets and passback feedback data packet can be the EMM packet, but is not limited thereto.
Step 408 after server 102 obtains key message, can be evened up packet preceding according to version in the present embodiment, and the mode after remainder data wraps in is sent to read-write equipment 101; This read-write equipment 101 writes smart card with the packet of packet that generates and the key message that obtains, but is not limited thereto order, also can be other orders;
Wherein, this smart card obtains version and evens up packet, according to the version in this smart card of the version updating that comprises in this packet, version with storage in the version that guarantees the storage of this smart card memory and the front-end stores unit 103 is consistent, and has avoided causing because of the version gap is excessive terminal can't receiving front-end to send data conditions and has taken place.For example, this safety device version Card Version=100, the version Card Version=400 of this safety device in the database (DB) of CAS front-end stores unit 103, the version that generates of server 102 version of evening up in the packet can be Card Version=355 so, makes the version of storing in the version of renewal of this safety device and the database get final product less than preset value (255).
This smart card obtains safeguards authorization data packets, safeguard that according to this temporal information that comprises in authorization data packets upgrades the current time of this smart card, make that this smart card current time is consistent with the current time in system, thereby reach the purpose of safeguarding expired product in this smart card.For example, the current time of this safety device is: 20080401 09:10:00 as the expired time of CPPV are: 20080401 09:30:00, can judge that according to the current time of this safety device this CPPV product does not also have expired; But, current time in system is at present: 20080401 10:10:00, promptly the current time of this safety device is less than this current time in system, like this, after this safety device receives to safeguard authorization data packets, can safeguard that the temporal information in the authorization data packets is updated to 20080401 10:10:00 with the current time in this safety device according to this, like this, this safety device can be safeguarded expired product according to this up-to-date time, for example for mill run, can directly expired mill run be deleted; For the product of needs passback, as the CPPV product, then expired CPPV product information just need be back to server 102 by read-write equipment 101 and handle.
This smart card obtains the passback feedback data packet, and according to the quantity and the product mark (ID) of the expired CPPV product that comprises in this packet, with CPPV product deletion expired in this smart card, otherwise this expired product information will be stored in the smart card always.
Step 410,411, read-write equipment 101 reads smart card, judges whether this smart card has the data of passback; If judged result is for having, then this read-write equipment 101 is sent to server 102 with the related data of this smart card passback; Wherein, this related data can comprise identification number and the anti-license confirmation code data and/or the product subscription information of this smart card;
After server 102 receives this anti-license confirmation sign indicating numbers, store in the deletion front-end stores unit 103 with corresponding anti-authority record of this identification number and anti-authorization data packets; And stop to send anti-authorization data packets.Thereby reach in this smart card with front-end stores unit 103 in the consistency of record.
And, after this server 102 receives this product subscription information, confirm to have expired product information in this product subscription information, behind expired CPPV product, this server execution in step 406 then generates the passback feedback data packet, and should return feedback data packet and be sent to smart card (seeing step 408), after receiving, can delete this smart card this expired CPPV product in this smart card, thus the consistency that writes down with front end in the assurance smart card.
And then carry out step 410,411, like this, read-write equipment 101 and server 102 carry out repeatedly the final data consistent that guarantees storage in smart card and the front-end stores unit 103 in mutual back, thereby finish the renewal of information.
By above-mentioned execution mode as can be known; read the relevant information of safety device by read-write equipment 101; utilize server 102 to generate up-to-date information and obtain key message; by read-write equipment 101 above-mentioned information is write safety device; guaranteed that the information in the canned data and front end data storehouse is consistent in the safety device; guarantee that the terminal use can receive any authorization message that front end sends; thereby protect service provider and terminal use's vital interests effectively, ensured service provider and terminal use's just rights and interests.
Above-described embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is the specific embodiment of the present invention; and be not intended to limit the scope of the invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (14)
1. the information updating method of the terminal safety device of a condition receiving system is characterized in that, this method comprises:
Server receives the information updating request that read-write equipment transmits, wherein, the relevant information of this information updating request device safe to carry, this relevant information comprises the identification number and the current version of this safety device;
Described server judges whether this safety device meets the information updating requirement, comprise: judge whether received identification number is correct, if judged result is for being, then whether this identification number of inquiry exists in the front end data storehouse, if Query Result is for existing, then obtain the version of this identification number correspondence from front end according to described identification number, judge that whether the version that obtains is more than or equal to this safety device current version, if judged result is for being, then definite this safety device meets the information updating requirement;
If judged result meets the information updating requirement for this safety device, then described server generates corresponding up-to-date information according to described relevant information, comprise: whether the version that judgement is obtained and the difference of this safety device current version be greater than preset value, if judged result is for being, then generate version according to this difference and even up packet as described up-to-date information, described version is evened up packet and is comprised the identification number of this safety device and the version that this version is evened up packet;
Described server is sent to described read-write equipment with this up-to-date information, so that described read-write equipment writes described safety device with this up-to-date information, so that described safety device is evened up the current version that version in the packet upgrades this safety device according to this version;
Described server reads the key message of storing in the front end data storehouse according to described identification number, described key message is sent to described read-write equipment, so that described read-write equipment writes described safety device with this key message, wherein, described key message comprises authorization message and/or anti-authorization message at least.
2. method according to claim 1 is characterized in that, receives at described server before the information updating request of read-write equipment transmission, and this method also comprises:
Whether described read-write equipment detects has safety device to be connected to this read-write equipment;
If testing result is for being that then described read-write equipment reads the relevant information of safety device;
Described read-write equipment transmits the information updating request to described server.
3. method according to claim 1 is characterized in that, this method also comprises:
Described read-write equipment detects this safety device, judges whether this safety device returns related data;
If judged result then finishes for not.
4. method according to claim 3 is characterized in that, if judged result is for being that then this method also comprises:
Described read-write equipment is sent to described server with the related data of described safety device passback; Wherein, this related data comprises the identification number and the anti-license confirmation sign indicating number of this safety device;
After described server receives this related data, in the delete database with corresponding anti-authority record of described identification number and anti-authorization data packets;
Described server stops to send anti-authorization data packets.
5. method according to claim 3 is characterized in that, if judged result is for being that then this method also comprises:
Described read-write equipment is sent to described server with the related data of described safety device passback; Wherein, this related data comprises the identification number and the product subscription information of this safety device;
After described server received this related data, described server generated the passback feedback data packet according to the expired product information in this product subscription information, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device;
Described server is sent to described read-write equipment with described passback feedback data packet;
Described read-write equipment should return feedback data packet and write described safety device.
6. method according to claim 5 is characterized in that, after described read-write equipment write described safety device with this up-to-date information, this method also comprised:
Described safety device is deleted expired product in this safety device according to the expired product mark in the described passback feedback data packet; Wherein, described expired product is the CPPV product.
7. method according to claim 3 is characterized in that, if judged result is for being that then this method also comprises:
Described read-write equipment is sent to described server with the related data of described safety device passback; Wherein, this related data comprises the identification number of this safety device, anti-license confirmation sign indicating number and product subscription information;
After described server receives this related data, according in the identification number of this safety device and the anti-license confirmation sign indicating number delete database with corresponding anti-authority record of described identification number and anti-authorization data packets, and stop to send anti-authorization data packets;
Described server generates the passback feedback data packet according to expired product information in this product subscription information, and this passback feedback data packet comprises the identification number and the expired product mark of this safety device.
8. method according to claim 7 is characterized in that, after this server generates described passback feedback data packet, also comprises:
Described server is sent to described read-write equipment with described passback feedback data packet;
Described read-write equipment should return feedback data packet and write described safety device.
9. method according to claim 8 is characterized in that, after described read-write equipment write described safety device with this up-to-date information, this method also comprised:
Described safety device is deleted expired product in this safety device according to the expired product mark in the described passback feedback data packet; Wherein, described expired product is the CPPV product.
10. a conditional access system front-end is characterized in that, this front end comprises read-write equipment, server and memory cell, wherein:
Described read-write equipment is used to read the relevant information of safety device, generates the information updating request and also sends this information updating request to described server; Wherein, the relevant information of this safety device is carried in this information updating request, and this relevant information comprises the identification number and the current version of this safety device at least;
Described server, be used to receive the information updating request that this read-write equipment transmits, judge whether this safety device meets the information updating requirement, if judged result is for being, then described server generates corresponding up-to-date information according to the information of this safety device of described relevant information and storage, and should corresponding up-to-date information be sent to described read-write equipment;
Described read-write equipment also is used to receive the up-to-date information that described server transmits, and the up-to-date information of should being correlated with writes described safety device;
Described memory cell is connected with described server, is used for stored key information; Wherein, described key message comprises authorization message and/or anti-authorization message at least.
11. conditional access system front-end according to claim 10 is characterized in that, described read-write equipment comprises:
Reading unit, described reading unit is used to read the relevant information of described safety device;
Request generation unit, described request generation unit are used for generating the information updating request according to the relevant information that reads, and send this information updating request to described server;
Writing unit, said write unit are used to receive the up-to-date information that described server transmits, and this up-to-date information is write described safety device.
12. conditional access system front-end according to claim 11, it is characterized in that, described read-write equipment also comprises detecting unit, this detecting unit is used to detect described safety device and whether connects described read-write equipment, if testing result connects this read-write equipment for safety device is arranged, then this detecting unit is sent to described reading unit with testing result.
13. conditional access system front-end according to claim 10 is characterized in that, described server comprises:
Receiving element, described receiving element are used to receive the information updating request that described read-write equipment transmits, and this information updating request is transmitted;
Judging unit, described judging unit are used to judge whether this safety device meets the information updating requirement, if judged result for meeting the information updating request, then meets this information updating information requested and transmits;
Information generating unit, described information generating unit is used to receive the information that described judging unit transmits, if the information that is received is for meeting the information updating information requested, then this information generating unit generates corresponding up-to-date information according to the information of this safety device of described relevant information and storage, and should corresponding up-to-date information be sent to described read-write equipment.
14. conditional access system front-end according to claim 13 is characterized in that, described server also comprises:
The key message acquiring unit, described key message acquiring unit is connected with described memory cell, is used for obtaining key message from described memory cell, and described key message is sent to described read-write equipment;
Described read-write equipment also is used to receive described key message, and this key message is write described safety device.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2008101045061A CN101567961B (en) | 2008-04-21 | 2008-04-21 | Information updating method of terminal safety device of conditional access system and front-end thereof |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN2008101045061A CN101567961B (en) | 2008-04-21 | 2008-04-21 | Information updating method of terminal safety device of conditional access system and front-end thereof |
Publications (2)
Publication Number | Publication Date |
---|---|
CN101567961A CN101567961A (en) | 2009-10-28 |
CN101567961B true CN101567961B (en) | 2011-09-07 |
Family
ID=41283895
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN2008101045061A Active CN101567961B (en) | 2008-04-21 | 2008-04-21 | Information updating method of terminal safety device of conditional access system and front-end thereof |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN101567961B (en) |
-
2008
- 2008-04-21 CN CN2008101045061A patent/CN101567961B/en active Active
Also Published As
Publication number | Publication date |
---|---|
CN101567961A (en) | 2009-10-28 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8191160B2 (en) | Method and system for auditing and correcting authorization inconsistencies for reception equipment in a content delivery network | |
KR100629413B1 (en) | Smartcard for use with a receiver of encrypted broadcast signal, and receiver | |
JP4079282B2 (en) | Broadcast / reception system and conditional access system therefor | |
US7570762B2 (en) | Content delivery service providing apparatus and content delivery service terminal unit | |
KR100589447B1 (en) | Signal generation and broadcasting | |
MXPA04009312A (en) | Smart card mating protocol. | |
US9900638B2 (en) | Pay-per-view sharing | |
US8401187B2 (en) | Processing recordable content in a stream | |
CA2708928A1 (en) | Processing recordable content in a stream | |
EP2191682A1 (en) | System for maintaining the broadcasting information in usim unlock environment and method thereof | |
KR100989495B1 (en) | Messaging over mobile phone network for digital multimedia network | |
CN101567961B (en) | Information updating method of terminal safety device of conditional access system and front-end thereof | |
US20070201701A1 (en) | Prepaid access control method | |
CN101945247B (en) | Message sending method and device thereof | |
CN101489098A (en) | Service unsubscription method, system and terminal thereof for conditional receiving system | |
CN101771858A (en) | Program control method and device thereof | |
AU760416B2 (en) | Smartcard for use with a receiver of encrypted broadcast signals, and receiver | |
EP2747443A1 (en) | Method to enforce processing of management messages by a security module | |
CN101729746A (en) | Televiewing control method and device | |
AU1553002A (en) | Broadcast and reception system, and receiver therefor | |
MXPA99008541A (en) | Smartcard for use with a receiver of encrypted broadcast signals, and receiver | |
MXPA99008544A (en) | Signal generation and broadcasting | |
CN101742230A (en) | Information processing method and device thereof | |
RU2000130173A (en) | METHOD AND SYSTEM FOR DELIVERY OF INFORMATION TO SUBSCRIBERS ON A COMMUNICATION NETWORK, METHOD AND APPARATUS FOR CONNECTING A TERMINAL WITH AN INTERNET HOST SERVER IN RESPONSE TO AN INCOMPLETE URL |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
C14 | Grant of patent or utility model | ||
GR01 | Patent grant |