CN101729254B - Multimedia broadcasting system and method - Google Patents

Multimedia broadcasting system and method Download PDF

Info

Publication number
CN101729254B
CN101729254B CN 200810173630 CN200810173630A CN101729254B CN 101729254 B CN101729254 B CN 101729254B CN 200810173630 CN200810173630 CN 200810173630 CN 200810173630 A CN200810173630 A CN 200810173630A CN 101729254 B CN101729254 B CN 101729254B
Authority
CN
China
Prior art keywords
information
characteristic
signature
secure broadcast
multimedia broadcasting
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN 200810173630
Other languages
Chinese (zh)
Other versions
CN101729254A (en
Inventor
黄谆
尹伟
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
VIA TECHNOLOGIES (CHINA) Inc
Via Technologies Inc
Original Assignee
VIA TECHNOLOGIES (CHINA) Inc
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by VIA TECHNOLOGIES (CHINA) Inc filed Critical VIA TECHNOLOGIES (CHINA) Inc
Priority to CN 200810173630 priority Critical patent/CN101729254B/en
Publication of CN101729254A publication Critical patent/CN101729254A/en
Application granted granted Critical
Publication of CN101729254B publication Critical patent/CN101729254B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Landscapes

  • Television Systems (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The invention provides a multimedia broadcasting system and method and in particular relates to a method for verifying legality and integrity of multimedia broadcasting information. The method comprises the following steps: extracting safe broadcasting information from channel code stream of the multimedia broadcasting information, verifying safe broadcasting signature information to confirm the legality of the multimedia broadcasting information and verifying service content feature signature information to confirm the integrity of the multimedia broadcasting information if the safe broadcasting signature information passes through verification, wherein the safe broadcasting information comprises the safe broadcasting signature information and the service content feature signature information. The invention can identify the legality and integrity of the broadcasting information through the safe broadcasting information, thus being favorable to safety improvement of the entire broadcasting system.

Description

Multi-media broadcasting system and method
Technical field
The present invention relates to digital television techniques, relate in particular to a kind of digital television broadcasting system and method.
Background technology
Along with the development of science and technology, digital television techniques has the advantages such as transmission quality height, scope is wide, speed is fast because of it, and is widely used gradually.Yet, how be accompanied by problem that digital television techniques occurs and be fail safe, integrality and the real-time of guarantee information.
Digital signature is the technology that Information Security is strengthened at present comparatively common being used for.Digital signature technology refers to message is carried out mathematic(al) manipulation, produces one group of particular data.When this group data and message transmitted together, the recipient can verify sender of the message's identity, reaches the effect of signing on the similar traditional sense.Common digital signature technology general using asymmetric cryptographic algorithm is realized.Asymmetric cryptographic algorithm refers to that encrypting messages uses different keys with decrypt.Digital signature technology has utilized these characteristics: signer uses secret encryption key that message or the characteristic information are encrypted, and the ciphertext that obtains sends together as digital signature and message itself.Signer openly offers recipient's use with decruption key simultaneously.During certifying signature, if the result that decrypted signature obtains is consistent with message, attestation-signatures is really produced by the signer of grasping encryption key so; If inconsistent, then attestation-signatures is not from the signer that is known as.
This asymmetrical characteristics of digital signature are generally based on unidirectional difficult math question.Because the difficulty of these mathematical problems can't recover encryption key by decruption key or other public informations, therefore when lacking encryption key, can't forge digital signature to the message that process is distorted.So digital signature can also guarantee the integrality of message except traditional proof of identification function.
In multi-media broadcasting system, if need to differentiate broadcasted content, the transmitting terminal of broadcast system (or front end) can be to broadcasted content, for example video flowing, audio stream carry out digital signature, send to user terminal after again digital signature and broadcasted content is multiplexing, user terminal can the normal play broadcasted content behind certifying digital signature.But because radio data system has very high requirement for real-time, if broadcasted content is carried out digital signature, must finish mass data computing in the digital signature procedure with high performance treatment facility so, thereby so that the high expensive of whole multi-media broadcasting system, stability reduce.Moreover, because digital signature is very responsive to error code, when using the higher wireless broadcast channel transmitting multimedia contents of the error rate, because causing terminal, can't play the normal channel error code easily.
Given this, being necessary to provide a kind of can reduce the amount of calculation of digital signature and the insensitive multimedia broadcasting of error code is differentiated protection system.
Summary of the invention
For addressing the above problem, the invention provides a kind of multi-media broadcasting system and method, it is more insensitive and do not need to carry out the data signature computing of big data quantity to error code.
The invention provides a kind of legitimacy of multimedia broadcasting information and method of integrality verified, it comprises: extract secure broadcast information in the channel code stream of described multimedia broadcasting information, wherein said secure broadcast information comprises secure broadcast signing messages and business tine characteristic signature information; Described secure broadcast signing messages is verified to determine the legitimacy of described multimedia broadcasting information; And if described secure broadcast signing messages then verifies to determine the integrality of described multimedia broadcasting information to described business tine characteristic signature information by checking.
The present invention also provides a kind of legitimacy for the checking multimedia broadcasting information and the equipment of integrality, it comprises: demultiplexing unit, be used for extracting secure broadcast information from described multimedia broadcasting information, wherein said secure broadcast information comprises secure broadcast signing messages, business tine characteristic signature information and broadcast channel control information; Secure broadcast Information Authentication unit is used for according to described broadcast channel control information described secure broadcast signing messages being verified to determine the legitimacy of described multimedia broadcasting information; And characteristic signature Information Authentication unit, be used for described business tine characteristic signature information is verified to determine the integrality of described multimedia broadcasting information.
The present invention only need to carry out digital signature to the characteristic information of broadcasted content, effectively reduces the data amount of calculation of data signature, is conducive to reduce identification system to the sensitivity of broadcast channel error code, and the computation complexity that reduces front end and terminal.
Description of drawings
What Fig. 1 showed is the transmission frame-form schematic diagram of one embodiment of the invention;
What Fig. 2 showed is the multiplexed sub frame structural representation of one embodiment of the invention;
What Fig. 3 showed is the form schematic diagram of the timestamp of one embodiment of the invention;
What Fig. 4 showed is the flow chart that produces secure broadcast information according to one embodiment of the invention;
Fig. 5 shows is to extract and the flow chart of authenticating security broadcast message according to one embodiment of the invention;
Fig. 6 shows is the schematic block diagram of front terminal system of the multi-media broadcasting system of one embodiment of the invention; And
Fig. 7 shows that one is the schematic block diagram of terminal of the multi-media broadcasting system of one embodiment of the invention.
Embodiment
For above and other purpose of the present invention, feature and advantage can be become apparent, cited below particularlyly go out preferred embodiment, and cooperate appended graphicly, be described in detail as follows.
The front terminal system of the multi-media broadcasting system of one embodiment of the invention carries out digital signature by the content characteristic to business and obtains business tine characteristic signature information.On the other hand, a secure broadcast signing messages also can be signed to obtain to the control information of broadcast channel by the front terminal system.This secure broadcast signing messages and business tine characteristic signature information are inserted in the transmission frame of broadcast channel according to certain rule by the front terminal system.Terminal at multi-media broadcasting system is provided with corresponding extraction and inspection machine, with legitimacy and the integrality by secure broadcast signing messages and business tine characteristic signature Information Authentication broadcasted content.Because the present invention only needs the computing of signing of the control information of channel and the professional content characteristic that changes, and non-business content itself (for example video, audio frequency or data itself), thereby can lower operand and error code susceptibility.
Fig. 1 shows is the structure of a kind of transmission frame TF for the bearing multimedia broadcast content.Transmission is detectd TF and can be comprised a plurality of multiplexed frame MF0 to MFn, each multiplexed frame MFO-MFn includes multiplex frame head MFH, multiplexed frame payload MFP and filler cells MFS, as: multiplexed frame MF0 comprises multiplex frame head MFH0, multiplexed frame payload MFP0 and filler cells MFS 0, multiplexed frame MFi comprises multiplex frame head MFH i, multiplexed frame payload MFP i and filler cells MFS i, and the structure of all the other multiplexed frames by that analogy.
The control information of multimedia broadcast contents, for example broadcast channel control information, generally be stored among the control information table CITO to CITk-1 of multiplexed frame MF0, concrete broadcasted content (business tine) then is placed in all the other multiplexed frames (also can be called traffic frame).For instance, the control information table of this enforcement can comprise network information table, continues period service duplexing configuration list, continue service allocation list, short-period service duplexing configuration list and short time service allocation table.Understand such as persons skilled in the art, the channel of broadcast channel and multiplexing control information have been comprised in the above-mentioned control information table, if terminal needs the normal play broadcasted content, must come with the channel in the control information table and multiplexing control information the broadcast message of rectification and the transmission of demultiplexing front end.The secure broadcast information that the present invention produces, can be used as a kind of special control information table transmits in multiplexed frame MFO, as be placed among h the control information table CITh, also can transmit by other multiplexed frames, as be placed among the multiplexed sub frame SMFi of multiplexed frame payload MFPi.
(structure that is multiplexed frame MF1~MFn) is all identical, thereby following only take multiplexed frame MFi as the example explanation because the multiplexed frame among the transmission frame TF except multiplexed frame MF0.Multiplexed frame MFi is made of multiplex frame head MFHi, the quiet lotus MFPi of multiplexed frame and filling MFSi, and the quiet lotus MFPi of multiplexed frame includes a plurality of multiplexed sub frames, for example multiplexed sub frame SMF0~SMFn.Figure 2 shows that the structural representation of the multiplexed sub frame of one embodiment of the invention.Take multiplexed sub frame SMFn shown in Figure 1 as example, multiplexed sub frame SMFn comprises a subframe ZZH, video-data fragment ZZV, audio data section ZZA and data segment ZZD.Wherein a subframe ZZH can comprise the fields such as initial reproduction time, video-frequency band indication, audio section indication, data segment indication and CRC.Video-frequency band indication, audio section indication and data segment indication are respectively applied to identify this multiplexed sub frame and whether comprise video information, audio-frequency information or clear data information.Video-data fragment ZZV is made of the video unit VD of video paragraph header VH and carrying video data, audio data section ZZA is comprised of the audio unit AD of audio frequency paragraph header AH and carrying voice data, and data segment ZZD then comprises the data cell DD of data segment header DH and carrying clear data content (for example condition reception information).Video unit VD, audio unit AD and data cell DD all might be made of a plurality of subelements.For instance, video unit VD can include video subelement VD0~VDn.Furthermore, video paragraph header VH comprises video-frequency band length VH0, V parameter H1 and CRC (cyclic redundancy check (CRC) code) the field VH2 of video unit of the length of sign video paragraph header.At least the video unit length VH10 and other the V parameter H11 for the attribute of sign video unit that include the length value of sign video unit VD among the V parameter H1 of video unit.The audio frequency subelement that audio frequency paragraph header AH includes the number of the subelement that identification audio unit AD comprises is counted parameter A H1 and the crc field AH2 of AHO, audio unit.Wherein, the parameter A H1 of audio unit comprises at least audio unit length A H10 and is used for other parameter A H11 of other attributes of description audio section AH1.AH is similar with the audio frequency paragraph header, and data segment header DH includes parameter DH1 and the crc field DH2 that the data subelement is counted DH0, data cell.The parameter DH1 of data cell includes data unit length DH10 and other parameters DH11.
In present embodiment, the multiplexed sub frame that transmission frame TF comprises can be respectively applied to carry the corresponding service of broadcasted content.For instance, multiplexed sub frame SMF0~SMF2 of multiplexed frame MFi is respectively applied to carry the business 0~2 in the broadcasted content, for example the TV programme of CCTV1, CCTV2 and CCTV3.Therefore, the business that each of the transmission frame TF of present embodiment is used for carrying broadcasted content can have a corresponding business tine characteristic signature information, these business tine characteristic signature information can disperse to be placed in the corresponding multiplexed sub frame, also a plurality of business tine characteristic signature information aggregates corresponding to the multiplexed sub frame of same multiplexed frame can be monopolized a multiplexed sub frame as a particular service together, or all business tine characteristic signature information aggregates are placed in the secure broadcast information together transmit.The particular location of business tine characteristic signature information can define in the control information table, or can come clear and definite standard by standard or industry standard, waits to broadcast professional business tine characteristic signature information so that terminal can be extracted to assigned address according to standard.Because placing business tine characteristic signature information according to above-mentioned variety of way is known with respect to persons skilled in the art, therefore no longer is described in detail.Need to prove no matter whether business tine characteristic signature information puts together with the secure broadcast signing messages, secure broadcast information can logically be interpreted as and comprise business tine characteristic signature information and secure broadcast signing messages.
In one embodiment of the invention; extract and checking business tine characteristic signature for making things convenient for terminal; the business tine characteristic signature information of front terminal system in combination business to be producing broadcasted content feature protection information, and this broadcasted content feature protection information is placed in the extra data segment of secure broadcast information and transmits.The below will carry out exemplary explanation to secure broadcast information, broadcasted content feature protection information and the business tine characteristic signature object of one embodiment of the invention, with better understanding technology contents of the present invention.
In one embodiment of the invention, secure broadcast information comprises secure broadcast signing messages and the extra data segment that is comprised of timestamp, secure broadcast configuration information, extra data segment attribute information and secure broadcast signature.
Wherein, timestamp is used for the generation time of sign secure broadcast data, and concrete structure as shown in Figure 3.Wherein, the time calculated since 2000; The order of same second interior timestamp of sequence number sign, terminal can use this timestamp to prevent Replay Attack.
The secure broadcast configuration information is used for describing attribute and the control information of this secure broadcast information, for example can comprise: sign is used for sign secure broadcast information; Version number is for the version number of sign secure broadcast information data structure; Network information table protection sign, expression should comprise network information table when calculating digital signature, if be 0, then expression does not comprise; Continue period service duplexing configuration list protection sign, if this parameter is 1, expression should comprise lasting period service duplexing configuration list when calculating digital signature, if be 0, then expression does not comprise; Continue service allocation list protection sign, if this parameter is 1, expression should comprise lasting service allocation list when calculating digital signature, if be 0, then expression does not comprise; Short-period service duplexing configuration list protection sign, if this parameter is 1, expression should comprise short-period service duplexing configuration list when calculating digital signature, if be 0, then expression does not comprise; Short time service allocation table protection sign, if this parameter is 1, expression should comprise short time service allocation table when calculating digital signature, if be 0, then expression does not comprise.
Extra data segment is usually located at the last part of secure broadcast information, is used for carrying other information except secure broadcast configuration information and timestamp, for example broadcasted content feature protection information.The extra data segment attribute information can comprise the additional information hop count amount of the sum that is used to refer to the additional information section, the additional information segment identification of type that is used for identifying the additional information section and the additional information segment length that is used to refer to the length of additional information section.
The secure broadcast signature is the result to control information table, secure broadcast configuration information, timestamp and extra data segment attribute information signature.Specifically need to sign and to come concrete regulation by the secure broadcast configuration information which control information table; for example only need to sign to network information table, lasting period service duplexing configuration list; then the protection of the network information table in secure broadcast configuration information sign and lasting service protection are designated 1, and the protection of other three allocation lists is designated 0.
In one embodiment of the invention, the broadcasted content feature protection information that includes a plurality of business tine characteristic signature information is to put into secure broadcast information as an extra data segment to transmit.Specifically, see also shown in the table 1, broadcasted content feature protection information can be comprised of system protection configuration information, service protection configuration information and business tine characteristic signature.Wherein, service protection configuration information and business tine characteristic signature consist of business tine characteristic signature information jointly.In present embodiment, the system protection configuration information comprises: transmission frame postpones, identify the corresponding transmission frame of business tine characteristic signature information that this broadcasted content feature protection information section comprises, for example, if be 1, then identify the feature that this message segment is last transmission frame, the value that this transmission frame postpones can be set in control information by configuration server; And number of services, representing the number of the business that described transmission frame carries, this information can obtain in the control information table by multiplexed frame MF0.The service protection configuration information then is used for describing respectively corresponding professional attribute information, and it can comprise: service identification, sign thereafter the described information of each field corresponding to which business; Initial reproduction time represents the initial reproduction time of the multiplexed sub frame of this business correspondence; Do not comprise initial reproduction time such as the multiplexed sub frame frame head, this field should be 0, and this field is used for synchronized broadcasting content and professional content characteristic information; Whether video protection sign, sign comprise the tabulation of video unit length when calculating corresponding to this professional business tine characteristic signature, 1 expression comprises that 0 expression does not comprise; And audio frequency protection sign, whether sign comprises the tabulation of audio unit length when calculating corresponding to this professional business tine characteristic signature, 1 expression comprises that 0 expression does not comprise.Table 1 is depicted as the composition of the broadcasted content feature protection information of one embodiment of the invention.
Table 1 broadcasted content feature protection information
Grammer Figure place
Broadcasted content feature protection information ()
Keep transmission frame deferred traffic quantity (n) for (i=0; I<n; I++) the initial reproduction time video protection of service identification identification audio protection sign reservation if (the video protection sign==1|| audio frequency protection sign==1) { business tine characteristic signature } } 4481632116 is variable
The business tine characteristic signature is the data integrity of verifying corresponding business tine feature in terminal.In one embodiment of the invention; as shown in table 2, the object of professional business tine characteristic signature can comprise: be used for the timestamp, system protection configuration information, service protection configuration information of synchronous safety broadcast message and broadcasted content characteristic signature and content characteristic that should business.For instance, the system protection configuration information comprises transmission frame and postpones and number of services, and the service protection configuration information comprises service identification, initial reproduction time, video protection sign and audio frequency protection sign.Professional content characteristic should be the information of the attribute that can embody this professional content real-time change, such as the length of initial reproduction time, specific fields or the content of specific fields etc., and concrete the selection to which attribute information signed and can be set as required.In present embodiment, professional content characteristic includes: video subelement quantity, the sum of video subelement in multiplexed sub frame corresponding to expression service identification; Audio frequency subelement quantity, the sum of the multiplexed sub frame sound intermediate frequency subelement that the expression service identification is corresponding; Video unit length, the length of expression video unit, unit is byte; And audio unit length, the length of expression audio unit, unit is byte.The video paragraph header of the multiplexed sub frame that as shown in Figure 2, above-mentioned every terms of information can be by reading this business correspondence, the audio frequency paragraph header obtains or carrying out simple operation according to the information of video paragraph header and audio frequency paragraph header can obtain.Table 2 is depicted as the signature object of the business tine characteristic signature of one embodiment of the invention.
Table 2 business tine characteristic signature object
Grammer Figure place
{ timestamp keeps the initial reproduction time video protection of transmission frame deferred traffic quantity (n) service identification identification audio protection sign and keeps if (video protection sign==1) { video unit quantity (Vn) for (j=0 signature object (); J<Vn; J++) { video unit length 404481632116816
If (audio frequency protection sign==1) { audio unit quantity (An) for (j=0; J<An; J++) { audio unit length } } } 816
Need to prove; the description of above-mentioned relevant secure broadcast information, broadcasted content feature protection information and business tine characteristic signature object is exemplary; in the application of reality, can be according to using situation to reconfigure or do adaptive increase or deleting.For instance, business tine characteristic signature object can not comprise initial reproduction time, timestamp, also can add the information that data subelement number and audio unit length etc. could represent or reflect the content characteristic that corresponding service constantly changes.On the other hand, if each professional business tine characteristic signature information is all separated in corresponding multiplexed sub frame, then can comprises the system protection configuration information in the business tine characteristic signature information and also can not comprise the system protection configuration information.If do not comprise, then the system protection configuration information can be placed in the extra data segment of secure broadcast information or be placed in the control information table.
Illustrate that below with reference to Fig. 4 and Fig. 5 one embodiment of the invention produces and the flow process of authenticating security broadcast message.
Fig. 4 inserts the flow chart of the step of secure broadcast information in broadcast service content for explanation front terminal system.At first, in step S401, the front terminal system produces timestamp shown in Figure 3 according to system's real-time clock, with the generation time of sign secure broadcast data.Then, in step S402, the front terminal system receives broadcast channel control information (being the above-mentioned control information table that is carried among the multiplexed frame MF0).Subsequently, in step S403, according to the first front end private key that is stored in the front terminal system timestamp and broadcast channel control information are signed computing to produce the secure broadcast signature.Certainly, the secure broadcast signature object also can include the secure broadcast configuration information, for example the protection of sign, version number and corresponding control information table sign.If adopt the computing of signing of variable front end private key, then the secure broadcast configuration information also should comprise the front end PKI index of the PKI that marking terminal should use when the authenticating security broadcasting multisignatures, and the front end PKI normally is transferred to terminal with the form of front-end certificate.In present embodiment, front-end certificate can be carried on and transfer to terminal in the extra data segment.Owing to also need composite service content characteristic signature when in the subsequent step of present embodiment, producing secure broadcast information, thereby the secure broadcast signature object can also comprise the attribute information of extra data segment, for example extra data segment quantity, additional data segment length and additional data segment identification.Moreover, if business tine characteristic signature information and secure broadcast signing messages are separated, then the secure broadcast signature object can comprise and represent whether business tine characteristic signature information is packaged in the existence sign in the extra data segment and the field that represents business tine characteristic information length.After obtaining the secure broadcast signature, execution in step S404, the front terminal system extracts each professional content characteristic in broadcast service content, video subelement quantity, audio frequency subelement quantity, video unit length and audio unit length that for example should business.Then, in step S405, respectively each professional content characteristic is signed computing to produce a plurality of business tine characteristic signatures according to the second front end private key that is stored in the front terminal system.In fact; as previously mentioned; the signature object of business tine characteristic signature can also comprise timestamp, the system protection configuration information that produces among the step S401 except the content characteristic of business; for example transmission frame delay and number of services and service protection configuration information, such as service identification, initial reproduction time, video protection sign, video protection sign etc.After step S405, the execution in step S406 of front terminal system, assembly time stamp, secure broadcast signing messages and business tine characteristic signature information are to produce secure broadcast information.For persons skilled in the art; include extra data segment attribute information and configuration information if readily understand the signature object when step S403 and step S405 generation secure broadcast signature and business tine characteristic signature; be secure broadcast configuration information, system protection configuration information and service protection configuration information; then when producing secure broadcast information, also should make up above-mentioned configuration information, so that terminal can authenticating security broadcasting multisignatures and business tine characteristic signature.After step S406, the execution in step S407 of front terminal system, multiplexing and emission control information, secure broadcast information and broadcast service content.
See also Fig. 5, Fig. 5 is the flow chart of the step of the extraction of explanation terminal and authenticating security broadcast message.
At first, in step S501, the channel code stream that end-on is received carries out de-multiplex operation, to extract broadcast channel control information (step S502) and secure broadcast information (S503).Certainly, the broadcast channel control information might not be often to change, thereby can be preset at terminal or the broadcast channel control information of first transmission frame that will receive after startup stores, and need not again extract from the channel code stream.Then, terminal execution in step S504 judges whether secure broadcast information exists and legal.In present embodiment, terminal can judge whether the secure broadcast signing messages exists and legal from the following aspects: the frequency point information the multiplexed frame is with whether actual to receive frequency consistent; Whether secure broadcast information exists and correct format; Whether the timestamp in the secure broadcast information is later than the timestamp that has received; The time of reception interval of twice timestamp is consistent with the interval of timestamp own; Timestamp and terminal system time is larger error not; And the secure broadcast signature is correct.If above-mentioned any one verification failure thinks that then secure broadcast information is by verification.When whether verification secure broadcast signature was correct, whether terminal can utilize the first front-end certificate that includes the first front end PKI to come the authenticating security broadcasting multisignatures to be complementary with secure broadcast signature object (being broadcast channel control information and the secure broadcast information extracted).Specifically how to come the authenticating security broadcasting multisignatures by above-mentioned three information, belong to the common practise of persons skilled in the art, no longer describe in detail herein.If judge that secure broadcast information exists and legal by above-mentioned several verifications, execution in step S505 then, on the contrary then execution in step S513 stops to play broadcasted content.In step S505, terminal extracts business tine characteristic signature information in secure broadcast information or other message segments.In step S506, the business tine characteristic signature information that terminal judges extracts is (if comprise a plurality of business/programs, business tine characteristic signature information that then should these are professional all extracts) whether comprise the business tine characteristic signature information of business to be played (program), namely judge whether remain the service identification and/or the business tine characteristic signature corresponding with this service identification of play service in the business tine characteristic signature information.If the business tine characteristic signature packets of information that extracts contains the business tine characteristic signature information of business to be played, execution in step S507 then, otherwise execution in step S513 stops broadcast program.In step S507, terminal extracts the content characteristic of program to be broadcast in the broadcast service content that receives, front terminal systems such as video subelement quantity, audio frequency subelement quantity, video unit length and audio unit length also needs the content characteristic that extracts when producing the business tine characteristic signature.Subsequently, terminal execution in step S508, S512 and S509 are with the business tine characteristic signature information of checking corresponding to program to be broadcast.Specifically, terminal is in step S508, content characteristic corresponding to this program to be broadcast is carried out CRC check, namely multiplexed sub frame head, video paragraph header, audio frequency paragraph header and data segment header are carried out CRC check whether there to be transmission error code in the content characteristic of judging program to be broadcast.If the CRC check mistake is then thought to have transmission error code in this professional content characteristic, and execution in step S512, continue to judge whether to occur the error code of continuous certain hour (for example 3 seconds), if then execution in step S513 stops broadcast program.If in step S512, execution in step S511 then, normal play program the error code of continuous certain hour not yet appear.If in step S508; there is not transmission error code in the content characteristic of the business to be played that terminal receives; execution in step S509 then; utilization is stored in second front-end certificate that includes the second front end PKI of terminal; business tine characteristic signature and the business tine characteristic signature object (content characteristic of program namely to be broadcast; the system protection configuration information and corresponding to the service protection configuration information of program to be broadcast) judge that whether the business tine characteristic signature is by checking; if then broadcast program (step S511) is passed through in checking, otherwise stops broadcast program (step S513).Need to prove that the described terminal of one embodiment of the invention can not show or play any content from broadcast message when stopping broadcast program.
The front terminal system of multi-media broadcasting system of one embodiment of the invention and the structured flowchart of terminal are described below with reference to Fig. 6 and Fig. 7.
In present embodiment, multi-media broadcasting system 100 is comprised of front terminal system 600, channel (not shown) and the terminal 700 that is coupled to channel.As shown in Figure 6, the front terminal system 600 of one embodiment of the invention comprises secure broadcast signing messages generation module 610, business tine characteristic signature information-generation module 620, certificate control module 630, secure broadcast information combination module 640 and Multiplexing Unit 650.
Certificate control module 630 is used for providing the relevant control information (upgrade and cancel) of the first front-end certificate and the second front-end certificate and first, second front-end certificate to secure broadcast signing messages generation module 610 and secure broadcast information combination module 640.Be simplified illustration, hypothesis can be upgraded or be cancelled for the first front end PKI of authenticating security broadcasting multisignatures in the present embodiment, and is used for verifying that the second front end PKI of business tine characteristic signature does not need to upgrade, and 600 broadcasting of front terminal system once get final product.So, when the first front-end certificate need to be upgraded or cancel, certificate control module 630 need to export the relevant control information (for example front end sign and front end PKI index) of the first front-end certificate and the second front-end certificate to secure broadcast signing messages generation module 610 and secure broadcast information combination module 640.
Secure broadcast signing messages generation module 610 is comprised of timestamp generation unit 612, secure broadcast signature generation unit 614 and the first private key memory cell 616.Timestamp generation unit 612 produces a timestamp according to real-time clock, and this timestamp is sent to secure broadcast signature generation unit 614.The form of timestamp and in front narration, thereby omits as shown in Figure 3 herein.Secure broadcast signature generation unit 614 not only time of reception stabs the timestamp that generation unit 612 is sent, also need to receive the first front end private key that the first private key memory cell 616 sends and other the secure broadcast signature object outside the timestamp, for example broadcast channel control information (being the foregoing control information table that is carried among the multiplexed frame MF0), the secure broadcast configuration information, certificate control module 630 send first, the business tine characteristic signature information that the second front-end certificate and certificate control information and business tine characteristic signature information-generation module 620 are sent is to produce the secure broadcast signing messages.
Business tine characteristic signature information-generation module 620 includes the second private key memory cell 622, characteristic signature information generation unit 624 and Content Feature Extraction unit 626.The second private key memory cell 622 is used for storage and exports the second front end private key to characteristic signature information generation unit 624.Content Feature Extraction unit 626 is used for extracting from the broadcast service content that receives the content characteristic that can show the fast-changing attribute of content of each business (program), for example video subelement quantity, audio frequency subelement quantity, video unit length, audio unit length etc.Characteristic signature information generation unit 624 is used for according to the second front end private key business tine characteristic signature object being signed computing producing the business tine characteristic signature of corresponding service, and makes up these business tine characteristic signatures and the characteristic information protection is configured to produce business tine characteristic signature information.In present embodiment, business tine characteristic signature object is business tine feature and characteristic information protection configuration.Characteristic information protection configuration is above-mentioned system protection configuration information; such as transmission frame delay, number of services; and correspond to each professional service protection configuration information, such as information such as service identification, initial reproduction time, video protection sign, audio frequency protection signs.Number of services also can be obtained in broadcast service content by Content Feature Extraction unit 626.
Certificate, secure broadcast signing messages and business tine characteristic signature information combination that secure broadcast information combination module 640 is used for receiving are secure broadcast information, and wherein business tine characteristic signature information and certificate place the extra data segment of secure broadcast information.
Multiplexing Unit 650 is used for receiving broadcast service content and secure broadcast information, with and emission broadcast service content and secure broadcast information multiplexing according to certain rule.
Figure 7 shows that the schematic block diagram of the receiving terminal of one embodiment of the invention.As shown in Figure 7, terminal 700 comprises demultiplexing unit 710 and correction verification module 720.Demultiplexing unit 710 is used for the channel code stream of self-channel receiving front-end subsystem 600 emissions, and extracts each professional business tine characteristic signature information, secure broadcast information and broadcast service content in the self-channel code stream.Correction verification module 720 is used for verification business tine characteristic signature information and secure broadcast information, and determines whether to play broadcast service content according to check results.
Correction verification module 720 comprises secure broadcast Information Authentication unit 721, certificate storage unit 722, characteristic signature Information Authentication unit 723, feature extraction unit 724, the first switch element 727 and second switch unit 728.Certificate storage unit 722 is for exporting the first front-end certificate and the second front-end certificate to secure broadcast Information Authentication unit 721 and characteristic signature Information Authentication unit 723, comprise the first front end PKI corresponding with the first front end private key in the first front-end certificate, comprise the second front end PKI corresponding with the second front end private key in the second front-end certificate.Secure broadcast Information Authentication unit 721 is used for receiving the first front-end certificate, broadcast channel control information and secure broadcast information, and judge whether the secure broadcast signing messages exists and legal, the respective description of step please refer to the drawing 5 of specifically verifying.Secure broadcast Information Authentication unit 721 also sends the state that one first control signal is controlled the first switch element 727 according to the result.For instance, if secure broadcast information does not exist or is illegal, then the value of sending makes the first switch element 727 be in off-state for first control signal of " 1 ", broadcasts any content from broadcast channel to stop terminal 700.If the secure broadcast information exchange has been crossed checking, then secure broadcast Information Authentication unit 721 can the value of sending be first control signal of " 0 ", so that feature extraction unit 724 can be extracted the content characteristic of business/program to be played in broadcast service content, for example video subelement quantity, audio frequency subelement quantity, video unit length and audio unit length.Characteristic signature Information Authentication unit 723 is used for receiving the second front-end certificate, waits to broadcast professional content characteristic and the business tine characteristic signature information that each is professional, and judges and wait to broadcast whether professional content characteristic signing messages exists and correctly.Furthermore, characteristic signature Information Authentication unit 723 comprises characteristic signature authentication unit 725 and policy control unit 726.Characteristic signature authentication unit 725 is used for judging whether the business tine characteristic signature information that receives comprises the business tine characteristic signature information of program to be broadcast, and the second front-end certificate that certificate of utility memory cell 722 is sent verifies whether the business tine characteristic signature of business to be played is complementary with signature object (content characteristic of business to be played and characteristic information protection configuration).Its concrete verification step corresponding paragraph in Fig. 5 has explanation, no longer repeats herein.Policy control unit 726 carries out CRC check for the content characteristic for the treatment of the business broadcast, namely reads multiplexed sub frame head, video paragraph header, audio frequency paragraph header and the data segment header of business to be played, and carries out CRC check.The state of second switch unit 728 will be controlled according to the result of CRC check result and 725 outputs of characteristic signature authentication unit in policy control unit 726.For instance, if do not comprise the characteristic signature information of business to be played in the business tine characteristic signature information, then the value of sending makes second switch unit 728 be in off-state for second control signal of " 1 ", avoids terminal 700 to broadcast broadcast service content; If comprise the correlated characteristic signing messages of business to be played in the business tine characteristic signature information and be complementary with the content characteristic of business to be played, then output valve makes second switch unit 728 be in closure state for second control signal of " 0 ", impels terminal 700 to broadcast broadcast program; If comprise the correlated characteristic signing messages of business to be played in the business tine characteristic signature information but do not mate with the content characteristic of business to be played, and wait to broadcast professional content characteristic CRC check success, then output valve for " 1 " second control signal to second switch unit 728, make terminal 700 stop broadcasting program broadcast; And comprise the correlated characteristic signing messages of business to be played in the business tine characteristic signature information but do not mate with the content characteristic of business to be played, if above-mentioned CRC check mistake, and certain hour (for example 3 seconds) appears in this kind situation continuously, then output valve for " 1 " and the second control signal second switch unit 728 is disconnected, if above-mentioned CRC check mistake, but this kind situation does not continue this certain hour, then output valve is come closed second switch unit 728 for second control signal of " 0 ", makes the terminal 700 can program content playing.
The above only is preferred embodiment of the present invention; so it is not to limit scope of the present invention; any personnel that are familiar with the technology; without departing from the spirit and scope of the present invention; can do on this basis further improvement and variation, so the scope that claims were defined that protection scope of the present invention is worked as with the application is as the criterion.

Claims (19)

1. verify the legitimacy of multimedia broadcasting information and the method for integrality for one kind, it is characterized in that, comprising:
In the channel code stream of described multimedia broadcasting information, extract secure broadcast information, wherein said secure broadcast information comprises secure broadcast signing messages and business tine characteristic signature information, described secure broadcast signing messages be by to broadcast channel control information sign and obtain, described business tine characteristic signature information is to carry out digital signature by the content characteristic to business to obtain;
Described secure broadcast signing messages is verified to determine the legitimacy of described multimedia broadcasting information; And
If described secure broadcast signing messages by checking, then verifies to determine the integrality of described multimedia broadcasting information to described business tine characteristic signature information.
2. the method for the legitimacy of checking multimedia broadcasting information according to claim 1 and integrality, it is characterized in that, described secure broadcast signing messages comprises length, secure broadcast configuration information and the secure broadcast signature of timestamp, described business tine characteristic signature information, described secure broadcast signature is to produce by described timestamp and described broadcast channel control information are signed, and wherein said described secure broadcast signing messages is verified that the step with the legitimacy of determining described multimedia broadcasting information comprises:
Judge whether described secure broadcast signing messages exists;
Judge whether described timestamp is later than the timestamp that has received; And
Judge whether described secure broadcast signature is correct,
Wherein, be no if in above-mentioned three judgements any one is arranged, think that then described secure broadcast signing messages is not by checking.
3. the method for the legitimacy of checking multimedia broadcasting information according to claim 2 and integrality is characterized in that, describedly judges whether correct step further comprises described secure broadcast signature:
Obtain the first front end PKI;
And
Utilize the length of the described broadcast channel control information of described the first front end public key verifications, described business tine characteristic signature information and described secure broadcast configuration information whether with described secure broadcast signatures match.
4. the method for the legitimacy of checking multimedia broadcasting information according to claim 2 and integrality is characterized in that, described secure broadcast configuration information comprises one or more in following:
Sign is used for identifying described secure broadcast information;
Version number is for the version number that identifies described secure broadcast information;
Control information table protection sign is used for being identified at the broadcast channel control information that should comprise when calculating described secure broadcast signature.
5. the method for the legitimacy of checking multimedia broadcasting information according to claim 1 and integrality; it is characterized in that; described business tine characteristic signature information comprises characteristic information protection configuration and business tine characteristic signature; described business tine characteristic signature is to carry out digital signature by the content characteristic to described business to produce, and wherein said described business tine characteristic signature information is verified that the step with the integrality of determining described multimedia broadcasting information further comprises:
Extract the content characteristic of business to be played;
Judge that whether described business tine characteristic signature information comprises the service identification of described business to be played, if not, then stops to play described multimedia broadcasting information;
Whether the content characteristic of judging described business to be played exists transmission error code;
If there is transmission error code in the content characteristic of described business to be played, and the lasting special time of described situation, then stop to play described multimedia broadcasting information; And
If there is not transmission error code in the content characteristic of described business to be played, judge whether described business tine characteristic signature is correct, if described business tine characteristic signature is incorrect, then stop to play described multimedia broadcasting information.
6. the method for the legitimacy of checking multimedia broadcasting information according to claim 5 and integrality is characterized in that, describedly judges whether correct step further comprises described business tine characteristic signature:
Obtain the second front end PKI; And
Utilize content characteristic and the characteristic information protection configuration of the described business to be played of described the second front end public key verifications whether to mate with described business tine characteristic signature.
7. the method for the legitimacy of checking multimedia broadcasting information according to claim 6 and integrality, it is characterized in that, the content characteristic of described business to be played comprise in initial reproduction time, video subelement quantity, audio frequency subelement quantity, video unit length and the audio unit length of described business any one or a plurality of.
8. the method for the legitimacy of checking multimedia broadcasting information according to claim 5 and integrality is characterized in that, described service feature information protection configuration comprises one or more in following:
Transmission frame postpones, and is used for identifying the corresponding transmission frame of business tine characteristic signature information that described secure broadcast information comprises;
Number of services is for the number that represents the business that described transmission frame carries;
Service identification is used for identifying the corresponding business of described business tine characteristic signature;
The video protection sign is used for being identified at whether comprise the video unit length information when calculating described business tine characteristic signature; And
Audio frequency protection sign is used for being identified at whether comprise the audio unit length information when calculating described business tine characteristic signature.
9. one kind is used for the legitimacy of checking multimedia broadcasting information and the equipment of integrality, it is characterized in that, comprising:
Demultiplexing unit, be used for extracting secure broadcast information from described multimedia broadcasting information, wherein said secure broadcast information comprises secure broadcast signing messages and business tine characteristic signature information, described secure broadcast signing messages is to obtain by the control information of broadcast channel is signed, and described business tine characteristic signature information is to carry out digital signature by the content characteristic to business to obtain;
Secure broadcast Information Authentication unit is used for described secure broadcast signing messages is verified to determine the legitimacy of described multimedia broadcasting information; And
Characteristic signature Information Authentication unit is used for described business tine characteristic signature information is verified to determine the integrality of described multimedia broadcasting information.
10. according to claim 9 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality, it is characterized in that, described secure broadcast signing messages comprises the length of timestamp, secure broadcast configuration information, business tine characteristic signature information and secure broadcast signature, and wherein said secure broadcast signature is to produce by described timestamp and described broadcast channel control information are signed.
11. according to claim 10 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality, it is characterized in that the legitimacy of described multimedia broadcasting information is determined in described secure broadcast Information Authentication unit by following three judgements:
Judge whether described secure broadcast signing messages exists;
Judge whether described timestamp is later than the timestamp that has received; And
Judge whether described secure broadcast signature is correct,
Wherein, be no if in above-mentioned three judgements any one is arranged, then think described secure broadcast signing messages not by checking, and stop to play described multimedia broadcasting information.
12. according to claim 11 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality, it is characterized in that, the length of the described broadcast channel control information of described secure broadcast Information Authentication unit by using the first front end public key verifications, described business tine characteristic signature information and described secure broadcast configuration information whether with described secure broadcast signatures match.
13. according to claim 12ly it is characterized in that for the checking legitimacy of multimedia broadcasting information and the equipment of integrality that described secure broadcast configuration information comprises one or more in following:
Sign is used for identifying described secure broadcast information;
Version number is for the version number that identifies described secure broadcast information;
Control information table protection sign is used for being identified at the broadcast channel control information that should comprise when calculating described secure broadcast signature.
14. according to claim 9 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality; it is characterized in that; described business tine characteristic signature information comprises characteristic information protection configuration and business tine characteristic signature, and wherein said business tine characteristic signature is to carry out digital signature by the content characteristic to described business to produce.
15. according to claim 14ly it is characterized in that for the checking legitimacy of multimedia broadcasting information and the equipment of integrality, also comprise:
The first switch element is coupled to described secure broadcast Information Authentication unit, is used for determining whether to play described multimedia broadcasting information according to the result of described secure broadcast signing messages;
Feature extraction unit is coupled to described the first switch element and described characteristic signature Information Authentication unit, is used for extracting from described multimedia broadcasting information the content characteristic of business to be played; And
The second switch unit is coupled to described characteristic signature Information Authentication unit,
Wherein, the state of described second switch unit is controlled in described characteristic signature Information Authentication unit according to its result.
16. according to claim 15 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality, it is characterized in that described characteristic signature Information Authentication unit is used for:
Judge that whether described business tine characteristic signature information comprises the service identification of described business to be played, if not, then disconnects described second switch unit;
Whether the content characteristic of judging described business to be played exists transmission error code, if there is transmission error code in the content characteristic of described business to be played, and the lasting special time of described situation, then disconnect described second switch unit; And
If there is not transmission error code in the content characteristic of described business to be played, judge whether described business tine characteristic signature is correct, if described business tine characteristic signature is incorrect, then disconnect described second switch unit.
17. according to claim 16 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality; it is characterized in that whether the content characteristic of the described business to be played of described characteristic signature Information Authentication unit by using the second front end public key verifications and described characteristic information protection configuration mate with described business tine characteristic signature.
18. according to claim 15 for the legitimacy of checking multimedia broadcasting information and the equipment of integrality, it is characterized in that, the content characteristic of described business comprise in initial reproduction time, video subelement quantity, audio frequency subelement quantity, video unit length and the audio unit length of described business any one or a plurality of.
19. legitimacy and the equipment of integrality for the checking multimedia broadcasting information according to claim 14 is characterized in that, described service feature information protection is disposed and is comprised one or more in following:
Transmission frame postpones, and is used for identifying the corresponding transmission frame of business tine characteristic signature information that described secure broadcast information comprises;
Number of services is for the number that represents the business that described transmission frame carries;
Service identification is used for identifying the corresponding business of described business tine characteristic signature;
The video protection sign is used for being identified at whether comprise the video unit length information when calculating described business tine characteristic signature; And
Audio frequency protection sign is used for being identified at whether comprise the audio unit length information when calculating described business tine characteristic signature.
CN 200810173630 2008-11-03 2008-11-03 Multimedia broadcasting system and method Active CN101729254B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200810173630 CN101729254B (en) 2008-11-03 2008-11-03 Multimedia broadcasting system and method

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200810173630 CN101729254B (en) 2008-11-03 2008-11-03 Multimedia broadcasting system and method

Publications (2)

Publication Number Publication Date
CN101729254A CN101729254A (en) 2010-06-09
CN101729254B true CN101729254B (en) 2013-02-20

Family

ID=42449534

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200810173630 Active CN101729254B (en) 2008-11-03 2008-11-03 Multimedia broadcasting system and method

Country Status (1)

Country Link
CN (1) CN101729254B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN111711863A (en) * 2020-06-29 2020-09-25 北京数码视讯科技股份有限公司 Method and device for preventing program insertion, electronic equipment and storage medium

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1874486A (en) * 2005-06-03 2006-12-06 中国科学院研究生院 Digital TV broadcast system and method
CN101193266A (en) * 2007-04-05 2008-06-04 国家广播电影电视总局广播科学研究院 An identity identification method for digital TV broadcast signal

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1874486A (en) * 2005-06-03 2006-12-06 中国科学院研究生院 Digital TV broadcast system and method
CN101193266A (en) * 2007-04-05 2008-06-04 国家广播电影电视总局广播科学研究院 An identity identification method for digital TV broadcast signal

Also Published As

Publication number Publication date
CN101729254A (en) 2010-06-09

Similar Documents

Publication Publication Date Title
KR100919907B1 (en) Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment
CN101902477B (en) Transmission system, reception system, the recognition methods of media stream and system
CN104506503B (en) A kind of security certification system based on broadcasting and TV one-way transport network
US7464266B2 (en) Cheap signatures for synchronous broadcast communication
EP1402679B1 (en) Security devices and processes for protecting and identifying messages
CN100588246C (en) Identity identification method for digital TV broadcast signal
CN101051906B (en) Method for transmitting and receiving stream type media and certifying system for stream type media
EP1764974A1 (en) Inter-entity coupling method, apparatus and system for content protection
US8279342B2 (en) System for receiving and storing broadcast content, and device for reception and storage
CN100484233C (en) Safety certification device for digital TV signal, and TV equipment with the device
CN105992040A (en) Multichannel audio data transmitting method, audio data synchronization playing method and devices
EP2482551B1 (en) Method, device and system for implementing the grouping of broadcast services
CN106941629A (en) Real-time live broadcast method based on SIP+RTP Yu RTMP protocol interconnections
CN100484234C (en) Method for real-time inserting signature and identifying signature in indigit TV transmission flow
EP2161930A1 (en) A method and a system for transmitting encrypted control message based on the mobile multimedia broadcast
CN100525293C (en) Method for the anonymous authentication of a data transmitter
CN113259315B (en) Communication message safety protection method and system suitable for power distribution network
CN101729254B (en) Multimedia broadcasting system and method
CN101651507B (en) Method and system for securely playing multimedia broadcast content and multimedia broadcast system
CN111541699B (en) Method for safely transmitting data based on IEC102 communication protocol
CN101729501A (en) Multimedia broadcasting system and method
EP3323215B1 (en) Authentication of digital broadcast data
CN101729253B (en) Multimedia broadcasting system and method
CN1972433B (en) Real-time authentication apparatus for digital TV transmission stream and television device with same
CN101651509B (en) Terminal and method for securely playing multimedia broadcast content

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant