CN101626484A - Method for protecting control word in condition access system, front end and terminal - Google Patents
Method for protecting control word in condition access system, front end and terminal Download PDFInfo
- Publication number
- CN101626484A CN101626484A CN200810116199.9A CN200810116199A CN101626484A CN 101626484 A CN101626484 A CN 101626484A CN 200810116199 A CN200810116199 A CN 200810116199A CN 101626484 A CN101626484 A CN 101626484A
- Authority
- CN
- China
- Prior art keywords
- control word
- top box
- key
- safety device
- security chip
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 47
- 238000010586 diagram Methods 0.000 description 7
- 230000005540 biological transmission Effects 0.000 description 6
- 230000008569 process Effects 0.000 description 4
- 230000009286 beneficial effect Effects 0.000 description 2
- 230000008676 import Effects 0.000 description 2
- 208000033748 Device issues Diseases 0.000 description 1
- 208000027418 Wounds and injury Diseases 0.000 description 1
- 238000013475 authorization Methods 0.000 description 1
- 230000015572 biosynthetic process Effects 0.000 description 1
- 230000006378 damage Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 208000014674 injury Diseases 0.000 description 1
- 238000003780 insertion Methods 0.000 description 1
- 230000037431 insertion Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
Images
Abstract
The invention provides a method for protecting a control word in a condition access system, a front end and a terminal. The method comprises the following steps that: a terminal security device judges whether to encrypt a scrambling control word or not; if the scrambling control word is to be encrypted, the terminal security device generates an agreement key and uses a prestored security chip key to encrypt the agreement key and the agreement key to encrypt the obtained scrambling control word; and the terminal security device transmits the encrypted agreement key and the scrambling control word to a set-top box. The method uses the security chip key to encrypt and decrypt the agreement key and the control word transmitted between an intelligent card and the set-top box, thereby effectively preventing malicious embezzlement of the control word and effectively protecting the vital interests of program operators.
Description
Technical field
The present invention is about the digital TV conditional reception technique, specifically about a kind of method of protection control word of digital television conditional access system, the front end and the terminal of condition receiving system.
Background technology
As everyone knows, condition receiving system CAS is meant and is used for controlling the system that the user receives broadcast service, realizes the paid service of broadcast system usually by empowerment management.
Condition receiving system is by broadcast data is carried out scrambling to the control of broadcast service, and the scrambling control information encrypted realize.The safety of control word CW transmits and depends on product key, through after the product secret key encryption with scrambling after broadcast data together send.
As shown in Figure 1, the user is by the front end order program, and front end utilizes product key that control word CW is encrypted, transmission in Entitlement Control Message (ECM:Entitlement Control Message).Front end utilizes user key that product key is encrypted, and the product key after encrypting is sent to terminal set top box by the EMM packet.
Set-top box is filtered the EMM packet according to the smart card numbering, and the EMM packet that is filled into is sent into smart card, and smart card utilizes pre-buried user key that the product key after encrypting is decrypted, and the product key after the deciphering is stored in the smart card.
Set-top box filters out the ECM bag of current channel according to the identification number of ECM bag, and sends into smart card, and the product key after the smart card utilization deciphering is decrypted encrypted control word CW, and the control word CW after the deciphering is returned to set-top box descrambling program.Behind this digital program descrambling, the user just can watch the product of mandate by the display unit of terminal.
Generally speaking, transmit control word CW with clear-text way between smart card and the set-top box, such transmission means is very dangerous, some illegal hackers may malice intercept expressly control word CW in control word CW transmission course, utilize the control word CW of intercepting to come the program stream of descrambling process scrambling to watch program, therefore, grievous injury the vital interests of operator.
Summary of the invention
The object of the present invention is to provide a kind of method of protecting control word; this method utilizes security chip key that arranging key and the control word transmitted between smart card and the set-top box are carried out enciphering/deciphering; prevent that effectively malice from stealing the phenomenon of control word and taking place, greatly protected the vital interests of program operator.
The object of the present invention is to provide a kind of program de-scrambling method of condition receiving system; this method utilizes safety chip that the control word of transmitting between smart card and the set-top box is carried out enciphering/deciphering; prevent that effectively malice from stealing the phenomenon of control word and taking place, greatly protected the vital interests of program operator.
The present invention also aims to provide a kind of conditional access system front-end, the security chip key of this front end transmitter top box correspondence is to terminal, make terminal obtain security chip key, and utilize this security chip key to carry out encryption and decryption, prevent that malice from stealing the phenomenon of control word and taking place.
The present invention also aims to provide a kind of set-top box, this set-top box can be held consultation with terminal safety device, and the scrambling control word of encrypting through safety device is decrypted, and prevents that effectively malice from stealing the phenomenon of control word and taking place.
The present invention also aims to provide a kind of safety device, this safety device is encrypted the scrambling control word, prevents that effectively malice from stealing the phenomenon of control word and taking place.
For achieving the above object, the invention provides a kind of method of protection control word of condition receiving system, after terminal safety device obtained the scrambling control word, described method comprised: described terminal safety device judges whether the scrambling control word is encrypted; If judged result is for being then to produce arranging key; Utilize described security chip key that described arranging key is encrypted, utilize described arranging key that the scrambling control word that obtains is encrypted; Described arranging key and scrambling control word after encrypting are sent to described set-top box.
For achieving the above object, the present invention also provides a kind of program de-scrambling method of condition receiving system, and after terminal safety device obtained the scrambling control word, this method comprised:
Terminal safety device judges whether the scrambling control word is encrypted;
If judged result then produces arranging key for existing;
Utilize described security chip key that described arranging key is encrypted, utilize described arranging key that the scrambling control word that obtains is encrypted, and the described arranging key after will encrypting and scrambling control word are sent to described set-top box;
Described set-top box is decrypted scrambling control word and the arranging key after encrypting, to obtain described scrambling control word;
Utilize described scrambling control word that the program that receives is carried out descrambling.
For achieving the above object, the present invention also provides a kind of conditional access system front-end, and this front end comprises:
The Entitlement Management Message generation unit, described Entitlement Management Message generation unit is used to generate Entitlement Management Message; Described Entitlement Management Message comprises the security chip key and the corresponding set-top box numbering of terminal safety device correspondence;
Transmitting element, described transmitting element are used for described Entitlement Management Message is sent to described terminal.
For achieving the above object, the present invention also provides a kind of safety device, and this safety device comprises:
Judging unit, described judging unit are used to judge whether whether the scrambling control word is encrypted;
The key generation unit, when the judged result of described judging unit when being, described key generation unit produces arranging key;
Ciphering unit, described ciphering unit is used for utilizing the security chip key that prestores that described arranging key is encrypted, utilize described arranging key that the scrambling control word that obtains is encrypted, and the described arranging key after will encrypting and scrambling control word are sent to described set-top box.
For achieving the above object, the present invention also provides a kind of set-top box, and this set-top box comprises:
Safety chip, described safety chip stores described security chip key;
Decrypting device, described decrypting device are used to receive described scrambling control word and the arranging key after the encryption that described safety device transmits, and utilize described security chip key that the described arranging key of encrypting is decrypted, to obtain described arranging key; The described arranging key that utilization is obtained is decrypted the described scrambling control word of encrypting, to obtain described scrambling control word.
The beneficial effect of embodiment of the present invention is, utilizes security chip key that the control word of transmitting between smart card and the set-top box is carried out enciphering/deciphering, prevents that effectively malice from stealing the phenomenon of control word and taking place, and has greatly protected the vital interests of program operator.
Description of drawings
Accompanying drawing described herein is used to provide further understanding of the present invention, constitutes the application's a part, does not constitute limitation of the invention.In the accompanying drawings:
Fig. 1 is that condition receiving system adds the descrambling flow chart in the correlation technique;
Fig. 2 is that conditional access system front-end of the present invention constitutes schematic diagram;
Fig. 3 is that conditional receiving system terminal of the present invention constitutes schematic diagram;
Fig. 4 is that set-top box constitutes schematic diagram among Fig. 3;
Fig. 5 is that safety device constitutes schematic diagram among Fig. 3;
Fig. 6 is the method flow diagram of the protection control word of the embodiment of the invention;
Fig. 7 is the flow chart of the set-top box deciphering of the embodiment of the invention.
Embodiment
For making the purpose, technical solutions and advantages of the present invention clearer,, the present invention is described in further details below in conjunction with execution mode and accompanying drawing.At this, exemplary embodiment of the present invention and explanation thereof are used to explain the present invention, but not as a limitation of the invention.
Execution mode one
The invention provides a kind of conditional access system front-end, as shown in Figure 2, this front end comprises Entitlement Management Message generation unit 201 and transmitting element 202; Wherein,
This Entitlement Management Message generation unit 201 is used to generate Entitlement Management Message; Wherein this Entitlement Management Message comprises the security chip key and the corresponding set-top box numbering of terminal safety device correspondence; This transmitting element 202 is used for this Entitlement Management Message is sent to conditional receiving system terminal.
From the above, this front end sends security chip key and corresponding set-top box is numbered terminal, makes terminal safety device obtain security chip key, and utilizes this security chip key to carry out encryption and decryption, prevents that malice from stealing the phenomenon of control word and taking place.
In the present embodiment, this Entitlement Management Message generation unit 201 can adopt EMMG, and this EMMG breaks into the EMM packet with security chip key (DSK) and set-top box numbering (STBID), by transmitting element 202 this EMM packet is sent to terminal then.
In addition, this front end also comprises edit cell 203 and memory cell 204; Wherein,
This edit cell 203 is used to edit this security chip key and corresponding set-top box numbering; This memory cell 204 is used to store editor's this security chip key and corresponding set-top box numbering.
As shown in Figure 2, this front end also comprises Entitlement Control Message generation unit 205, this Entitlement Control Message is used to generate Entitlement Control Message, and this Entitlement Control Message that will generate (ECM packet) is sent to terminal by transmitting element 202, and wherein this Entitlement Control Message carries described scrambling control word CW.
In the present embodiment, this Entitlement Control Message generation unit 205 can be ECMG.
From the above, front end at first imports set-top box numbering (STBID) and security chip key (DSK) tabulation by edit cell 203, and stores in the memory cell 204.Like this, just can be at front end to each safety device, as smart card transmitter top box numbering and security chip key, promptly the set-top box of front end appointment numbering STBID and security chip key DSK are broken into common authorization packets, and then call transmitting element 202 this EMM bag is sent to terminal by EMMG201.
In the present embodiment, the EMM data packet format of transmission is as shown in table 1.
Table 1
| Grammer | Note |
| ??EMMData(){ | |
| ??CardSN | Smart card numbers |
| ??OperatorID | Operator's numbering |
| ??... | |
| ??STBID | The set-top box numbering |
| ??DSK | The security chip key of corresponding set-top box |
| ??... | |
| ??} |
Execution mode two
The present invention also provides a kind of conditional receiving system terminal, and as shown in Figure 3, this terminal comprises safety device 302 and set-top box 301; Wherein,
After this safety device 302 obtained scrambling control word CW, this safety device 302 judged whether scrambling control word CW is encrypted; If judged result is for being then to produce arranging key DCK; Utilize this security chip key DSK that this arranging key DCK is encrypted then, utilize this arranging key DCK that the scrambling control word CW that obtains is encrypted; Arranging key DCK ' and scrambling control word CW ' after encrypting are sent to set-top box 301.
From the above; this terminal utilization prestores security chip key (DSK) and the arranging key (DCK) that generates carries out encryption and decryption to the scrambling control word; prevent that effectively malice from stealing the phenomenon of control word and taking place, greatly protected the vital interests of program operator.
Fig. 4 is that set-top box constitutes schematic diagram among Fig. 3.As shown in Figure 4, this set-top box 301 comprises decrypting device 402 and safety chip 403; Wherein, this decrypting device 402 is used to receive scrambling control word CW ' and the arranging key DCK ' after the encryption that this safety device 301 transmits, and utilizes this security chip key (DSK) that the arranging key DCK ' of encryption is decrypted, to obtain this arranging key DCK; The arranging key DCK that utilization is obtained is decrypted the scrambling control word CW ' that encrypts, to obtain scrambling control word CW; This safety chip 403 is used to store this security chip key (DSK).
As shown in Figure 4, this set-top box 301 also comprises descrambling unit 404, and this descrambling unit 404 utilizes the scrambling control word CW after the deciphering that program is carried out descrambling.Therefore, set-top box 301 just can be carried out descrambling to program by the scrambling control word CW after the deciphering, thereby makes the terminal use watch program behind the descrambling by broadcast unit 405.
As shown in Figure 4, this set-top box 301 also comprises receiving element 401, this receiving element 401 is used for the Entitlement Management Message that receiving front-end sends, and this Entitlement Management Message is sent to this safety device 302, wherein this Entitlement Management Message chip keys DSK safe to carry and corresponding set-top box numbering.In the present embodiment, this Entitlement Management Message can be the EMM packet.
In addition, this receiving element 401 also is used for the Entitlement Control Message that receiving front-end sends, and this Entitlement Control Message is sent to this safety device 302, and wherein this Entitlement Control Message comprises scrambling control word CW.In the present embodiment, this Entitlement Control Message can be the ECM packet.In addition, but the program stream that sends of receiving front-end also, and this program stream is sent to descrambling unit 404 utilizes CW to carry out delivering to broadcast unit 405 behind the descrambling to play.
Fig. 5 is the formation schematic diagram of safety device among Fig. 3.As shown in Figure 5, this safety device 302 comprises judging unit 501, key generation unit 502 and ciphering unit 503; Wherein,
This judging unit 501 judges whether scrambling control word CW is encrypted; If judged result is for being, this key generation unit 502 generation arranging key DCK then; This ciphering unit 503 utilizes this security chip key DSK that this arranging key DCK is encrypted then, utilize this arranging key DCK that the scrambling control word CW that obtains is encrypted, arranging key DCK ' and scrambling control word CW ' after encrypting are sent to set-top box 301.
Like this; terminal safety device 302 can utilize security chip key DSK that the CW of transmission between set-top box 301 and the safety device 302 is encrypted; set-top box 301 deciphering backs obtain this CW; utilize this CW that program is carried out descrambling; prevent that effectively malice from stealing the phenomenon of control word and taking place, greatly protected the vital interests of program operator.
As shown in Figure 5, this safety device 302 also comprises Entitlement Management Message resolution unit 504 and memory cell 505; Wherein, this Entitlement Management Message resolution unit 504 is used for receiving Entitlement Management Message from set-top box 301, and this Entitlement Management Message is resolved, to obtain this security chip key DSK and set-top box numbering STBID; Wherein, this Entitlement Management Message carries this security chip key DSK and corresponding set-top box numbering STBID; This memory cell 505 is used to store the tabulation of this security chip key DSK and set-top box numbering STBID.
Like this, this safety device 302 judges whether scrambling control word CW is encrypted, can be in the following way: this safety device 302 is searched this DSK and STBID tabulation according to described set-top box numbering; Judge whether this terminal set top box numbering is present in this tabulation; If judged result is for existing, then 302 pairs of these scrambling control words of safety device CW encrypts.
In the present embodiment, this Entitlement Management Message resolution unit 504 is the EMM resolution unit, and Entitlement Management Message is the EMM packet.Like this, the EMM packet that 504 pairs of front ends of EMM resolution unit by safety device issue is resolved, obtain wherein security chip key DSK and set-top box numbering STBID, and this security chip key DSK and set-top box numbering STBID are stored in the memory cell 505 use when encrypting for ciphering unit 503 and judging unit 501.
As shown in Figure 5, this safety device 302 also comprises Entitlement Control Message resolution unit 506, this Entitlement Control Message resolution unit 506 is used for the Entitlement Control Message that receives is resolved, and obtaining scrambling control word CW, and this scrambling control word is sent to ciphering unit 503 encrypts.
In the present embodiment, this Entitlement Control Message resolution unit 506 is the ECM resolution unit, and Entitlement Control Message is the ECM packet.
From the above; this terminal safety device 302 utilizes the arranging key (DCK) that prestores security chip key (DSK) and generate that the scrambling control word is encrypted; prevent that effectively malice from stealing the phenomenon of control word and taking place, greatly protected the vital interests of program operator.
Embodiment three
The present invention also provides a kind of method of protection control word of condition receiving system, shown in Fig. 3,6, resolves acquisition scrambling control word CW (seeing step 600) afterwards at the ECM packet that 302 pairs of terminal safety devices receive, and this method comprises:
Step 602 is in step 601, if judged result is for being then to generate arranging key DCK;
Step 603 utilizes this arranging key DCK that the scrambling control word CW that obtains is encrypted, and obtains the scrambling control word CW ' that encrypts;
Step 604 utilizes the security chip key DSK that prestores that this arranging key DCK is encrypted, and obtains the arranging key DCK ' that encrypts;
Step 605 is sent to set-top box 301 with arranging key DCK ' and scrambling control word CW ' after encrypting.
Wherein, the order of the ciphering process of step 603 and step 604 is unrestricted, can exchange.
In addition, in step 602, if judged result is not, then this safety device 302 returns error message and gives set-top box 301, promptly reports an error, can not plaintext transmission control word CW (seeing step 606).
From the above; this terminal safety device 302 utilizes the arranging key (DCK) that prestores security chip key (DSK) and generate that the scrambling control word is encrypted; prevent that effectively malice from stealing the phenomenon of control word and taking place, greatly protected the vital interests of program operator.
In the present embodiment, after safety device 302 was sent to set-top box 302 with CW ' and DCK ', as shown in Figure 7, this method also comprised:
Step 702 utilizes security chip key DSK that DCK ' is decrypted, to obtain this arranging key DCK;
Step 703 utilizes this arranging key DCK that obtains that CW ' is decrypted, to obtain this scrambling control word CW.Like this, the descrambling unit 404 of this set-top box 301 can utilize this CW that program is carried out descrambling.
In the present embodiment, this method also comprises: this security chip key of conditional access system front-end editor DSK and corresponding set-top box numbering STBID; Editor's security chip key DSK and corresponding set-top box numbering STBID are stored.
Then, the front end of condition receiving system generates Entitlement Management Message according to the security chip key DSK and the corresponding set-top box numbering of the safety device correspondence that prestores, as the EMM packet; Front end is sent to terminal with this EMM packet.
In the present embodiment, this method also comprises:
The Entitlement Management Message that the terminal receiving front-end sends, as the EMM packet, wherein this EMM packet carries this security chip key DSK and corresponding set-top box numbering;
504 pairs of these EMM packets of the EMM resolution unit of this safety device are resolved, to obtain this security chip key DSK and set-top box numbering; Then, this security chip key DSK and set-top box are numbered among the DSK and STBID tabulation that is stored in the memory cell 505.
Like this, in step 601, this safety device 302 judges whether scrambling control word CW is encrypted, can be in the following way: this safety device 302 is searched this DSK and STBID tabulation according to described set-top box numbering; Judge whether this terminal set top box numbering is present in this tabulation; If judged result is for existing, then 302 pairs of these scrambling control words of safety device CW encrypts.Wherein, the set-top box of 302 foundations of this safety device numbering can be obtained when these safety device 302 insertion machine top boxs automatically, and is stored in the memory cell 505.
In addition, this safety device 302 obtains scrambling control word CW, comprising:
The Entitlement Control Message that the terminal receiving front-end sends, as the ECM packet, wherein this ECM packet comprises scrambling control word CW; The ECM packet that 302 pairs of terminal safety devices receive is resolved, to obtain this scrambling control word CW.
Embodiment four
The invention provides a kind of program de-scrambling method of condition receiving system, with reference to figure 6 and Fig. 7, after terminal safety device 302 obtained scrambling control word CW, this method comprised:
In addition, in the present embodiment, safety device 302 obtains CW, obtains EMM packet and ECM packet, and to its process of resolving such as embodiment three, repeats no more herein.In addition, the process that front-end edit imports security chip key and set-top box numbering, generate the EMM packet repeats no more as described in the embodiment three herein.
From the above, CW ' and DCK ' that 301 pairs of this terminal set top boxes are encrypted through safety device 302 are decrypted, and prevent that effectively malice from stealing the phenomenon of control word and taking place, and have greatly protected the vital interests of program operator.
Above-described embodiment; purpose of the present invention, technical scheme and beneficial effect are further described; institute is understood that; the above only is the specific embodiment of the present invention; and be not intended to limit the scope of the invention; within the spirit and principles in the present invention all, any modification of being made, be equal to replacement, improvement etc., all should be included within protection scope of the present invention.
Claims (22)
1. the method for the protection control word of a condition receiving system is characterized in that, after terminal safety device obtained the scrambling control word, described method comprised:
Described terminal safety device judges whether described scrambling control word is encrypted;
If judged result is for being then to produce arranging key;
Utilize described security chip key that described arranging key is encrypted, utilize described arranging key that the scrambling control word that obtains is encrypted;
Described arranging key and scrambling control word after encrypting are sent to described set-top box.
2. method according to claim 1 is characterized in that, described method also comprises:
Described set-top box receives described arranging key and the scrambling control word after encrypting;
Utilize described security chip key that the described arranging key of encrypting is decrypted, to obtain described arranging key;
The described arranging key that utilization is obtained is decrypted the described scrambling control word of encrypting, to obtain described scrambling control word.
3. method according to claim 1 is characterized in that, described method also comprises:
The Entitlement Management Message that the terminal receiving front-end sends, wherein said Entitlement Management Message carry described security chip key and corresponding set-top box numbering;
Described terminal safety device is resolved described Entitlement Management Message, to obtain described security chip key and set-top box numbering;
Described security chip key and set-top box numbering are stored in the tabulation.
4. method according to claim 3 is characterized in that, described terminal safety device judges whether described scrambling control word is encrypted, and comprising:
Described safety device is searched the tabulation of the security chip key of set-top box numbering and correspondence according to described set-top box numbering;
Judge whether described set-top box numbering is present in the described tabulation;
If judged result for existing, is then determined described scrambling control word is encrypted.
5. method according to claim 3 is characterized in that, before the Entitlement Control Message that described terminal receiving front-end sends, also comprises:
Described front end generates Entitlement Management Message according to the described security chip key and the corresponding set-top box numbering of the described safety device correspondence that prestores;
Described Entitlement Management Message is sent to described terminal.
6. method according to claim 5 is characterized in that, before generating described Entitlement Management Message, described method also comprises:
Edit described security chip key and corresponding set-top box numbering;
Editor's described security chip key and corresponding set-top box numbering are stored.
7. method according to claim 1 is characterized in that, described terminal safety device obtains the scrambling control word, comprising:
The Entitlement Control Message that the terminal receiving front-end sends, wherein said Entitlement Control Message comprises the scrambling control word;
Described terminal safety device is resolved the Entitlement Control Message that receives, to obtain described scrambling control word.
8. the program de-scrambling method of a condition receiving system is characterized in that, after terminal safety device obtained the scrambling control word, described method comprised:
Described terminal safety device judges whether described scrambling control word is encrypted
If judged result is for being then to produce arranging key;
Utilize described security chip key that described arranging key is encrypted, utilize described arranging key that the scrambling control word that obtains is encrypted, and the described arranging key after will encrypting and scrambling control word are sent to described set-top box;
Described set-top box is decrypted scrambling control word and the arranging key after encrypting, to obtain described scrambling control word;
Utilize described scrambling control word that the program that receives is carried out descrambling.
9. method according to claim 8 is characterized in that, described set-top box is decrypted scrambling control word and the arranging key after encrypting, and comprising:
Utilize described security chip key that the described arranging key of encrypting is decrypted, to obtain described arranging key;
The described arranging key that utilization is obtained is decrypted the described scrambling control word of encrypting, to obtain described scrambling control word.
10. method according to claim 8 is characterized in that, described method also comprises:
The Entitlement Management Message that the terminal receiving front-end sends, wherein said Entitlement Management Message carry described security chip key and corresponding set-top box numbering;
Described terminal safety device is resolved described Entitlement Management Message, to obtain described security chip key and set-top box numbering;
Described security chip key and set-top box numbering are stored in the tabulation.
11. method according to claim 10 is characterized in that, described terminal safety device judges whether described scrambling control word is encrypted, and comprising:
Described safety device is searched the tabulation of the security chip key of set-top box numbering and correspondence according to described set-top box numbering;
Judge whether described set-top box numbering is present in the described tabulation;
If judged result for existing, is then determined described scrambling control word is encrypted.
12. method according to claim 10 is characterized in that, before the Entitlement Control Message that described terminal receiving front-end sends, also comprises:
Edit described security chip key and corresponding set-top box numbering;
Editor's described security chip key and corresponding set-top box numbering are stored;
Described front end generates Entitlement Management Message according to the described security chip key and the corresponding set-top box numbering of the described safety device correspondence that prestores;
Described Entitlement Management Message is sent to described terminal.
13. method according to claim 8 is characterized in that, described terminal safety device obtains the scrambling control word, comprising:
The Entitlement Control Message that the terminal receiving front-end sends, wherein said Entitlement Control Message comprises the scrambling control word;
Described terminal safety device is resolved the Entitlement Control Message that receives, to obtain described scrambling control word.
14. a conditional access system front-end is characterized in that, described front end comprises:
The Entitlement Management Message generation unit, described Entitlement Management Message generation unit is used to generate Entitlement Management Message; Described Entitlement Management Message comprises the security chip key and the corresponding set-top box numbering of terminal safety device correspondence;
Transmitting element, described transmitting element are used for described Entitlement Management Message is sent to described terminal.
15. front end according to claim 14 is characterized in that, described front end also comprises:
Edit cell, described edit cell are used to edit described security chip key and corresponding set-top box numbering;
Memory cell, described memory cell are used to store editor's described security chip key and corresponding set-top box numbering.
16. front end according to claim 14, it is characterized in that, described front end also comprises the Entitlement Control Message generation unit, described Entitlement Control Message generation unit is used to generate Entitlement Control Message, and the described Entitlement Control Message that will generate is sent to described terminal, and wherein said Entitlement Control Message carries described scrambling control word.
17. a safety device is characterized in that, described safety device comprises:
Judging unit, described judging unit are used to judge whether the scrambling control word is encrypted;
The key generation unit, when the judged result of described judging unit when being, described key generation unit produces arranging key;
Ciphering unit, described ciphering unit is used for utilizing the security chip key that prestores that described arranging key is encrypted, utilize described arranging key that the scrambling control word that obtains is encrypted, and the described arranging key after will encrypting and scrambling control word are sent to described set-top box.
18. safety device according to claim 17 is characterized in that, described safety device also comprises:
Entitlement Management Message resolution unit, described Entitlement Management Message resolution unit are used for receiving Entitlement Management Message from set-top box, and described Entitlement Management Message is resolved, to obtain described security chip key and set-top box numbering; Wherein, described Entitlement Management Message carries described security chip key and corresponding set-top box numbering;
Memory cell, described memory cell are used to store described security chip key and set-top box numbering.
19. safety device according to claim 18 is characterized in that, described safety device also comprises:
The Entitlement Control Message resolution unit, described Entitlement Control Message resolution unit is used for described Entitlement Control Message is resolved, and obtaining described scrambling control word, and described scrambling control word is sent to described ciphering unit.
20. a set-top box is characterized in that, described set-top box comprises:
Safety chip, described safety chip stores described security chip key;
Decrypting device, described decrypting device are used to receive described scrambling control word and the arranging key after the encryption that described safety device transmits, and utilize described security chip key that the described arranging key of encrypting is decrypted, to obtain described arranging key; The described arranging key that utilization is obtained is decrypted the described scrambling control word of encrypting, to obtain described scrambling control word.
21. set-top box according to claim 20 is characterized in that, described set-top box also comprises the descrambling unit, and the described scrambling control word of described descrambling unit by using is carried out descrambling to described program.
22. set-top box according to claim 20 is characterized in that, described set-top box also comprises:
Receiving element, described receiving element are used for the Entitlement Management Message that receiving front-end sends, and described Entitlement Management Message is sent to described safety device, and wherein said Entitlement Management Message carries described security chip key and corresponding set-top box numbering;
Also be used for the Entitlement Control Message that receiving front-end sends, and described Entitlement Control Message is sent to described safety device, wherein said Entitlement Control Message comprises the scrambling control word.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810116199.9A CN101626484A (en) | 2008-07-07 | 2008-07-07 | Method for protecting control word in condition access system, front end and terminal |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200810116199.9A CN101626484A (en) | 2008-07-07 | 2008-07-07 | Method for protecting control word in condition access system, front end and terminal |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101626484A true CN101626484A (en) | 2010-01-13 |
Family
ID=41522129
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200810116199.9A Pending CN101626484A (en) | 2008-07-07 | 2008-07-07 | Method for protecting control word in condition access system, front end and terminal |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101626484A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102752635A (en) * | 2012-02-23 | 2012-10-24 | 中央电视台 | Downloadable and replaceable condition receiving system |
| CN102752636A (en) * | 2012-02-23 | 2012-10-24 | 中央电视台 | Generation method of root key at transmitting end of condition receiving system |
| CN103024476A (en) * | 2013-01-08 | 2013-04-03 | 北京视博数字电视科技有限公司 | Digital television gateway device and content safeguard method |
| CN103402129A (en) * | 2013-07-29 | 2013-11-20 | 深圳创维数字技术股份有限公司 | Condition receiving method, condition receiving equipment and condition receiving system |
| CN103929659A (en) * | 2014-04-28 | 2014-07-16 | 四川金网通电子科技有限公司 | Method for controlling CA authorization prompts from basic frequency point and system thereof |
| CN103974122A (en) * | 2013-02-04 | 2014-08-06 | 澜起科技(上海)有限公司 | Set top box chip and digital signature implementation method applied to same |
| CN107734389A (en) * | 2017-10-31 | 2018-02-23 | 成都德芯数字科技股份有限公司 | Information processing method and digital reception device |
| CN111277802A (en) * | 2020-03-03 | 2020-06-12 | 浙江宇视科技有限公司 | Video code stream processing method, device, equipment and storage medium |
-
2008
- 2008-07-07 CN CN200810116199.9A patent/CN101626484A/en active Pending
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102752636A (en) * | 2012-02-23 | 2012-10-24 | 中央电视台 | Generation method of root key at transmitting end of condition receiving system |
| CN102752635A (en) * | 2012-02-23 | 2012-10-24 | 中央电视台 | Downloadable and replaceable condition receiving system |
| CN102752636B (en) * | 2012-02-23 | 2015-01-21 | 中央电视台 | Generation method of root key at transmitting end of condition receiving system |
| CN102752635B (en) * | 2012-02-23 | 2015-03-18 | 中央电视台 | Downloadable and replaceable condition receiving system |
| CN103024476A (en) * | 2013-01-08 | 2013-04-03 | 北京视博数字电视科技有限公司 | Digital television gateway device and content safeguard method |
| CN103024476B (en) * | 2013-01-08 | 2018-08-03 | 北京视博数字电视科技有限公司 | DTV gateway equipment and the method for content safety protection |
| CN103974122B (en) * | 2013-02-04 | 2018-04-24 | 上海澜至半导体有限公司 | Set-top-box chip and apply the digital signature implementation method in set-top-box chip |
| CN103974122A (en) * | 2013-02-04 | 2014-08-06 | 澜起科技(上海)有限公司 | Set top box chip and digital signature implementation method applied to same |
| CN103402129A (en) * | 2013-07-29 | 2013-11-20 | 深圳创维数字技术股份有限公司 | Condition receiving method, condition receiving equipment and condition receiving system |
| CN103402129B (en) * | 2013-07-29 | 2016-06-01 | 深圳创维数字技术有限公司 | The method of a kind of condition reception, equipment and system |
| CN103929659B (en) * | 2014-04-28 | 2017-10-27 | 四川金网通电子科技有限公司 | CA is controlled to authorize the method and its system pointed out from dominant frequency point |
| CN103929659A (en) * | 2014-04-28 | 2014-07-16 | 四川金网通电子科技有限公司 | Method for controlling CA authorization prompts from basic frequency point and system thereof |
| CN107734389A (en) * | 2017-10-31 | 2018-02-23 | 成都德芯数字科技股份有限公司 | Information processing method and digital reception device |
| CN111277802A (en) * | 2020-03-03 | 2020-06-12 | 浙江宇视科技有限公司 | Video code stream processing method, device, equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101005356B (en) | Method of descrambling a scrambled content data object | |
| CN100380966C (en) | Content playback apparatus, method, and program, and key management apparatus and system | |
| CN101448130B (en) | Method, system and device for protecting data encryption in monitoring system | |
| EP2461534A1 (en) | Control word protection | |
| CN101282456B (en) | Method and apparatus for receiving digital television condition | |
| CN101626484A (en) | Method for protecting control word in condition access system, front end and terminal | |
| CN101827246A (en) | Provide control word from smart card to the access modules safety of having ready conditions | |
| JPH04288743A (en) | Information processing device provided with changeable safety protection element and system | |
| EP2192773A1 (en) | Content decryption device and encryption system using an additional key layer | |
| CN102724568A (en) | Authentication certificates | |
| CN102075812B (en) | Data receiving method and system of digital television | |
| JP4691244B2 (en) | Limited reception device and security module of limited reception system, limited reception system, limited reception device authentication method, and encryption communication method | |
| CN100442839C (en) | Information transmitting method and apparatus for interactive digital broadcast television system | |
| WO2011120901A1 (en) | Secure descrambling of an audio / video data stream | |
| KR20100058840A (en) | Method for downloading cas in iptv | |
| CN102595198B (en) | A kind of key management system based on safety chip, terminal equipment and method | |
| CN101335579A (en) | Method implementing conditional reception and conditional receiving apparatus | |
| CN100547955C (en) | A kind of method of protecting mobile multimedia service, system and equipment | |
| CN201515456U (en) | Safe device, set-top box and receiving terminal for digital television receiving terminals | |
| CN101505400B (en) | Bi-directional set-top box authentication method, system and related equipment | |
| CN102271284A (en) | A method and apparatus for decrypting encrypted content | |
| CN202475692U (en) | Security chip-based secret key management system and terminal device | |
| CN101790073A (en) | Method for establishing safety communication channel and communication device thereof | |
| CN101583012B (en) | Method for realizing two-stage condition receiving system and front end and final end of two-stage condition receiving system | |
| CN103402129B (en) | The method of a kind of condition reception, equipment and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Open date: 20100113 |