CN102523503B - Video-on-demand control method and relative device and system - Google Patents
Video-on-demand control method and relative device and system Download PDFInfo
- Publication number
- CN102523503B CN102523503B CN201110426421.7A CN201110426421A CN102523503B CN 102523503 B CN102523503 B CN 102523503B CN 201110426421 A CN201110426421 A CN 201110426421A CN 102523503 B CN102523503 B CN 102523503B
- Authority
- CN
- China
- Prior art keywords
- card
- equipment
- top box
- set top
- plaintext
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Landscapes
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
The embodiment of the invention relates to the field of video on demand and discloses a video-on-demand control method and a relative device and a system, wherein the video-on-demand control method comprises the following steps that a content delivery network (CDN) device receives a heartbeat information sent by a set-top-box (STB), wherein the heartbeat information carries an integrated circuit (IC) card number ciphertext; the CDN device obtains the IC card number ciphertext from the heartbeat information and decrypts the IC card number ciphertext by using a stored decryption key to obtain an IC card number plaintext; and if the IC card number plaintext obtained by decrypting is empty, the CDN device stops pushing the video stream on demand to the STB. The embodiment of the invention can effectively prevent a plurality of STBs from using one IC card jointly at the same time to realize video on demand business and reduce revenue loss of TV operators.
Description
Technical field
The present invention relates to video request program (Video On Demand, VOD) field, be specifically related to a kind of video-on-demand control method and relevant device, system.
Background technology
VOD system is a kind of by Set Top Box (Set-top Box, STB), electronic program guides (Electronic Program Guide, EPG) the interactive television VOD system that equipment, Batch Processing management (BackOffice) equipment and content distributing network (Content Delivery Network, CDN) equipment form.Wherein, STB is mainly used in being responsible for electronic programming to be shown, for user provides, uses interface; EPG equipment is mainly used in being responsible for electronic programming and generates; BackOffice arranges and is mainly used in being responsible for user log-in authentication, program request authorisation process; CDN equipment is mainly used in being responsible for storage and distribution of video stream.
The video request program flow process simplified summary of VOD system is as follows: user selects to trigger STB to EPG equipment transmission EPG homepage access request after VOD business, carries parameters for authentication (as the Mac address of STB, STB version number and STB decoding capability etc.) in this EPG homepage access request; EPG equipment is sent to BackOffice equipment by authentication request by parameters for authentication and authenticates, if BackOffice device authentication passes through, EPG generates EPG homepage and returns to STB and shows; When user browses EPG homepage and selects program to play, STB equipment will send program authorization requests to BackOffice equipment by EPG equipment, carry the parameters such as column numbering at program ID, program place in this program authorization requests; When BackOffice UC user has the right to accept within limits while seeing this program, EPG equipment issues program request parameter to STB, triggers STB and enters program request flow process, wherein, program request parameter comprises plays URL(uniform resource locator) (Uniform Resource Locator, URL); STB sends to CDN equipment the on-demand session request that creates to play URL, and CDN equipment pushes video flowing to STB after accepting to create on-demand session, and STB utilizes IC-card (IC-card is called again smart card) to carry out decoding and the broadcasting of video flowing.
In VOD system, whether STB can periodically detect IC-card and exist, if there is no, point out user to insert IC-card, if user does not insert IC-card within a certain period of time, STB is forced shutdown so, thereby can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business and cause television operator income to run off.Yet, by STB, detect IC-card and whether exist the fail safe of this kind of mode poor, be easy to be identified by illegal STB or software terminal, thereby cannot effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business.
Summary of the invention
The embodiment of the present invention provides a kind of video-on-demand control method and relevant device, system, can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, reduces television operator income and runs off.
A video-on-demand control method, comprising:
The heartbeat message that content distributing network equipment receiver top box sends, carries IC-card ciphertext in described heartbeat message;
Described content distributing network equipment obtains described IC-card ciphertext from described heartbeat message, and utilizes the decruption key of storage to be decrypted described IC-card ciphertext, to obtain IC-card plaintext;
If described IC-card plaintext is empty, the pushing video streaming that described content distributing network equipment stops program request looking is to described Set Top Box.
A video-on-demand control method, comprising:
Batch Processing management BackOffice equipment receives the IC-card number checking request that content distributing network equipment sends, and in number checking request of described IC-card, carries IC-card ciphertext and authorizes sign Purchase Token;
The decruption key of described BackOffice equipment utilization storage is decrypted described IC-card ciphertext, to obtain IC-card plaintext;
If described IC-card plaintext is empty, described BackOffice equipment sends verification failed message to described content distributing network equipment, triggers described content distributing network equipment and sends establishment on-demand session failed message to Set Top Box.
A video-on-demand control method, comprising:
The heartbeat message that Set Top Box transmission carries IC-card ciphertext is to content distributing network equipment, so that described content distributing network equipment is decrypted to obtain IC-card plaintext to described IC-card ciphertext, and when being sky, described IC-card plaintext stops the pushing video streaming of program request to described Set Top Box;
Described Set Top Box detects the video flowing of whether receiving that described content distributing network equipment pushes, if not, points out user to insert IC-card.
A content distributing network equipment, comprising:
Transmit-Receive Unit, the heartbeat message sending for receiving set up box, carries IC-card ciphertext in described heartbeat message;
Acquiring unit, for obtaining described IC-card ciphertext from described heartbeat message;
Decryption unit, for utilizing the decruption key of storage to be decrypted described IC-card ciphertext, to obtain IC-card plaintext;
Video flowing Dispatching Unit, when being empty at described IC-card plaintext, stops the pushing video streaming of program request to described Set Top Box.
A Batch Processing management equipment, comprising:
Receiving element, the IC-card number checking request sending for receiving content distributing network equipment, carries IC-card ciphertext and authorizes sign Purchase Token in number checking request of described IC-card;
Decryption unit, for utilizing the decruption key of storage to be decrypted described IC-card ciphertext, to obtain IC-card plaintext;
Control unit, while being empty for the IC-card plaintext in described decryption unit deciphering acquisition, sends verification failed message to described content distributing network equipment, triggers described content distributing network equipment and sends establishment on-demand session failed message to Set Top Box.
A Set Top Box, comprising:
Transmit-Receive Unit, for send carry IC-card ciphertext heartbeat message to content distributing network equipment, so that described content distributing network equipment is decrypted to obtain IC-card plaintext to described IC-card ciphertext, and when being sky, described IC-card plaintext stops order video stream to push to described Set Top Box;
Whether Tip element, receive for detection of described Transmit-Receive Unit the video flowing that described content distributing network equipment pushes, and if not, points out user to insert IC-card.
A video request program control system, comprising:
Set Top Box, for send carry IC-card ciphertext heartbeat message to content distributing network equipment, and detect the video flowing whether receive that described content distributing network equipment pushes, if not, point out user to insert IC-card;
Described content distributing network equipment, the heartbeat message sending for receiving described Set Top Box, and from described heartbeat message, obtain described IC-card ciphertext; And utilize the decruption key of storage to be decrypted described IC-card ciphertext, to obtain IC-card plaintext; And when described IC-card plaintext is sky, the pushing video streaming that stops program request looking is to described Set Top Box.
In the embodiment of the present invention, the heartbeat message that carries IC-card ciphertext that content distributing network equipment can receiving set up box sends in real time, and from heartbeat message, obtain IC-card ciphertext, and utilize the decruption key of storage to be decrypted to obtain IC-card plaintext to this IC-card ciphertext, when the IC-card plaintext obtaining in deciphering is empty, the pushing video streaming that content distributing network equipment can stop program request looking is to Set Top Box.By this scheme, content distributing network equipment can be decrypted in the IC-card ciphertext that the broadcasting stage sends by heartbeat message in real time to Set Top Box, when the IC-card number of deciphering acquisition is expressly sky, illustrate that IC-card transferred to Set Top Box, the pushing video streaming that content distribution device can stop program request looking is to Set Top Box.
In the embodiment of the present invention, Batch Processing management equipment can receive the IC-card number checking request that carries IC-card ciphertext and authorize sign Purchase Token that content distributing network equipment sends, and utilize the decruption key of storage to be decrypted to obtain IC-card plaintext to this IC-card ciphertext, when the IC-card plaintext obtaining in deciphering is empty, Batch Processing management equipment can send verification failed message to content distributing network equipment, content distributing network equipment is sent and create on-demand session failed message to Set Top Box.By this scheme, Batch Processing management equipment can creating session stage, to content distributing network equipment, the IC-card ciphertext by IC-card number checking request transmission be decrypted, when the IC-card number of deciphering acquisition is expressly sky, illustrate that IC-card transferred to Set Top Box, Batch Processing management equipment will not allow Set Top Box to create on-demand session.
In sum, the embodiment of the present invention can detect whether insertion machine top box of IC by content distributing network equipment or Batch Processing management equipment, if not, forbids that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Accompanying drawing explanation
In order to be illustrated more clearly in the technical scheme in the embodiment of the present invention, to the accompanying drawing of required use in embodiment be briefly described below, apparently, accompanying drawing in the following describes is only some embodiments of the present invention, for those of ordinary skills, do not paying under the prerequisite of creative work, can also obtain according to these accompanying drawings other accompanying drawing.
Fig. 1 is the flow chart of a kind of video-on-demand control method of providing of the embodiment of the present invention one;
Fig. 2 is the flow chart of a kind of video-on-demand control method of providing of the embodiment of the present invention two;
Fig. 3 is the flow chart of a kind of video-on-demand control method of providing of the embodiment of the present invention three;
Fig. 4 is the flow chart of a kind of video-on-demand control method of providing of the embodiment of the present invention four;
Fig. 5 is the structure chart of a kind of content distributing network equipment of providing of the embodiment of the present invention five;
Fig. 6 is the structure of the another kind of content distributing network equipment that provides of the embodiment of the present invention five;
Fig. 7 is the structure chart of a kind of Batch Processing management equipment of providing of the embodiment of the present invention six;
Fig. 8 is the structure chart of the another kind of Batch Processing management equipment that provides of the embodiment of the present invention six;
Fig. 9 is the structure chart of another Batch Processing management equipment of providing of the embodiment of the present invention six;
Figure 10 is the structural representation of a kind of Set Top Box of providing of the embodiment of the present invention seven;
Figure 11 is the structural representation of the video request program control system that provides of the embodiment of the present invention eight.
Embodiment
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is clearly and completely described, obviously, described embodiment is only the present invention's part embodiment, rather than whole embodiment.Embodiment based in the present invention, those of ordinary skills, not making the every other embodiment obtaining under creative work prerequisite, belong to the scope of protection of the invention.
The embodiment of the present invention provides a kind of video-on-demand control method and relevant device, system, can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, and the income that reduces television operator runs off.Below be elaborated respectively.
Embodiment mono-:
Refer to Fig. 1, the flow chart of a kind of video-on-demand control method that Fig. 1 provides for the embodiment of the present invention one.Wherein, the embodiment of the present invention one discusses from the angle of CDN equipment the video-on-demand control method that the embodiment of the present invention provides in detail.As shown in Figure 1, this VOD method can comprise the following steps:
101, CDN equipment receives the heartbeat message that STB sends, and carries IC-card ciphertext in this heartbeat message.
Wherein, above-mentioned heartbeat message is that STB is sent in real time CDN equipment in the process of the video flowing of decoding and the propelling movement of play CD N equipment.Wherein, STB can read IC-card number in real time, and Message Digest Algorithm 5 (MD5) or triple DEA (Triple Data Encryption Algorithm of employing agreement, 3DES) etc. cryptographic algorithm is encrypted to obtain IC-card ciphertext to the IC-card reading number, and by heartbeat message, this IC-card ciphertext is sent to CDN equipment.In the embodiment of the present invention, for convenience of description, the IC-card not being encrypted is known as for IC-card plaintext, the embodiment of the present invention is follow-up not to be repeated.
102, CDN equipment obtains IC-card ciphertext from heartbeat message, and utilizes the decruption key of storage to be decrypted this IC-card ciphertext, to obtain IC-card plaintext.
If the IC-card plaintext that 103 deciphering obtain is empty, the pushing video streaming that CDN equipment stops program request looking is to STB.
As a kind of optional execution mode, if the IC-card plaintext that in above-mentioned steps 102, the decruption key of CDN equipment utilization storage is decrypted acquisition to this IC-card ciphertext is not for empty, whether the CDN network equipment can further contrast the IC-card plaintext that deciphering obtains so consistent with pre-stored IC-card plaintext, if consistent, CDN can continue the pushing video streaming of program request to STB; If inconsistent, illustrate that IC-card is illegal, CDN equipment will stop the pushing video streaming of program request to SBT.As can be seen here, by this execution mode, the video request program control mode that the embodiment of the present invention provides can also further detect whether insert the IC-card of STB legal, if illegal, forbids that STB realizes VOD business.By CDN, detect the whether legal mode of IC-card safer, reliable, make illegal STB or software terminal be not easy identification, thereby can reduce the income loss of television operator.
As a kind of optional execution mode, in the video-on-demand control method that the embodiment of the present invention one provides, CND equipment, before carrying out above-mentioned steps 101, can also be carried out following steps:
11), CDN equipment receives the establishment on-demand session request that STB sends to play URL, in this establishments on-demand session request, carry IC-card ciphertext and authorize to identify Purchase Token.
Wherein, CDN equipment, needs to create session connection with STB in advance to before STB at the video flowing that pushes program request, and CDN equipment and STB create session connection and sent and create on-demand session request and trigger to play URL by STB.
12), CDN equipment is asked above-mentioned IC-card ciphertext and is authorized sign Purchase Token to be sent to BackOffice equipment and carry out verification by IC-card number checking.
The embodiment of the present invention is follow-up will, by specific embodiment, discuss BackOffice equipment to IC-card number the IC-card ciphertext that checking request is carried and the specific implementation process of authorizing sign Purchase Token to carry out verification from the angle of BackOffice equipment in detail.
13), CDN equipment receives and stores verification that BackOffice equipment sends by result, this verification comprises IC-card plaintext and decruption key by result.
Wherein, above-mentioned decruption key can be STB while registering one's residence and BackOffice equipment appoint.
14), CDN equipment by the pushing video streaming of program request to STB.
As a kind of optional execution mode, if it is failed that BackOffice equipment is verified the IC-card ciphertext that request is carried and authorized sign Purchase Token to carry out verification IC-card number, CDN equipment can also receive BackOffice equipment and send verification failed message so, and send establishment on-demand session failed message to STB, do not allow STB to create on-demand session, make STB cannot realize VOD business.
In the embodiment of the present invention one, CDN equipment can receive the heartbeat message that carries IC-card ciphertext that STB sends in real time, and from heartbeat message, obtain IC-card ciphertext, and utilize the decruption key of storage to be decrypted to obtain IC-card plaintext to this IC-card ciphertext, when the IC-card plaintext obtaining in deciphering is empty, the pushing video streaming that CDN equipment can stop program request looking is to STB.By this scheme, CDN equipment can be decrypted in the IC-card ciphertext that the broadcasting stage sends by heartbeat message in real time to STB, when the IC-card number obtaining when deciphering is expressly sky, illustrate that IC-card transferred to STB, the pushing video streaming that CDN equipment can stop program request looking is to STB.Whether the embodiment of the present invention one inserts STB by CDN equipment Inspection IC, if not, forbids that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention one can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment bis-:
Refer to Fig. 2, the flow chart of a kind of video-on-demand control method that Fig. 2 provides for the embodiment of the present invention two.Wherein, the embodiment of the present invention two discusses from the angle of BackOffice equipment the video-on-demand control method that the embodiment of the present invention provides in detail.As shown in Figure 2, this VOD method can comprise the following steps:
201, BackOffice equipment receives the IC-card number checking request that CDN equipment sends, and in number checking request of this IC-card, carries IC-card ciphertext and authorizes sign Purchase Token.
202, the decruption key of BackOffice equipment utilization storage verifies that to IC-card number the IC-card ciphertext that request is carried is decrypted, to obtain IC-card plaintext.
If the IC-card plaintext that 203 deciphering obtain is empty, BackOffice equipment sends verification failed message to CDN equipment, and triggering CDN equipment sends and creates on-demand session failed message to STB.
As a kind of optional execution mode, if the IC-card plaintext that in above-mentioned steps 202, the decruption key of BackOffice equipment utilization storage is decrypted acquisition to the IC-card IC-card ciphertext that number checking request is carried is for empty, whether BackOffice equipment can further be inquired about in its Purchase Token cache table and store with the mandate of deciphering acquisition and identify the target P urchase Token that Purchase Token is identical so, if had, from Purchase Token cache table, obtain the IC-card plaintext that target P urchase Token is corresponding; And when the IC-card plaintext that the IC-card plaintext obtaining in deciphering is corresponding with target P urchase Token is consistent, BackOffice equipment can send verification by result to CDN equipment, triggering CDN equipment is by the pushing video streaming of program request to STB, and this verification comprises IC-card plaintext and decruption key by result.
Correspondingly, if BackOffice equipment query goes out in its Purchase Token cache table, do not store with the mandate of deciphering acquisition and identify the target P urchase Token that Purchase Token is identical, BackOffice equipment can send verification failed message to CDN equipment, triggering CDN preparation send establishment on-demand session failed message to STB, thereby do not allow STB to create on-demand session, make STB cannot realize VOD business.
Or, if BackOffice equipment query goes out in its Purchase Token cache table, store with the mandate of deciphering acquisition and identify the target P urchase Token that Purchase Token is identical, but the IC-card plaintext that the IC-card plaintext that deciphering obtains is corresponding with target P urchase Token is inconsistent, BackOffice equipment also can send verification failed message to CDN equipment, trigger CDN equipment and send establishment on-demand session failed message to STB, thereby do not allow STB to create on-demand session, make STB cannot realize VOD business.
As a kind of optional execution mode, in the video-on-demand control method that the embodiment of the present invention two provides, BackOffice equipment, before carrying out above-mentioned steps 201, can also be carried out following steps:
21), BackOffice equipment receives STB by the program authorization requests sending through EPG equipment, at least carries the column numbering at IC-card ciphertext, program identification (ID) and program place in this program authorization requests.
22), the decruption key of BackOffice equipment utilization storage IC-card ciphertext that program authorization requests is carried is decrypted, to obtain IC-card plaintext.
23), the BackOffice equipment IC-card plaintext that the IC-card ciphertext that program authorization requests is carried is decrypted to acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, generates and authorize sign Purchase Token.
Wherein, the pre-stored IC-card plaintext of BackOffice equipment is generally STB while registering one's residence, and stores in advance on BackOffice equipment.
24), BackOffice equipment is set up the mandate sign Purchase Token generating and is decrypted the corresponding relation of the IC-card plaintext of acquisition with the IC-card ciphertext that program authorization requests is carried, and this corresponding relation is stored in its Purchase Token cache table.
Wherein, the Purchase Token cache table on BackOffice equipment can be as shown in table 1.
Purchase Token cache table on table 1 BackOffice equipment
As shown in table 1, in Purchase Token cache table, stored the corresponding relation of 20110203123625001256 a9748cbdbea that obtain with deciphering that generate, and the corresponding relation of having stored 20110203123625001257 a9748cbdbeb that obtain with deciphering that generate.
25), BackOffice equipment sends to EPG equipment by the mandate sign Purchase Token of generation, trigger EPG equipment mandates sign Purchase Token and broadcasting URL be handed down to STB.
As a kind of optional execution mode, BackOmce equipment can also carry out overtime control to each the Purchase Token storing in Purchase Token cache table.Whether the holding time that for example BackOffice equipment can detect each the Purchase Token storing in Purchase Token cache table surpasses default life cycle separately (unit for minute or second), if so, from Purchase Token cache table, delete Purchase Token and the corresponding IC-card plaintext thereof that the holding time surpasses default life cycle; Otherwise, do not delete.
As a kind of optional execution mode, if BackOffice equipment is by above-mentioned steps 22) the IC-card plaintext that obtains of deciphering be sky, illustrate that IC-card has been pulled out STB in authorization stages, BackOffice equipment can issue program authorization failure message to EPG equipment, triggers EPG equipment program authorization failure message is handed down to STB.Be that BackOffice equipment can detect IC-card at authorization stages and has been pulled out STB, make STB cannot realize VOD business, thereby can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, the income that reduces television operator runs off.
Or, if BackOffice equipment is by above-mentioned steps 22) the IC-card plaintext that obtains of deciphering be sky, but in step 23) in contrast IC-card plaintext that deciphering obtains when inconsistent with pre-stored IC-card plaintext, illustrate that IC-card identity is illegal in authorization stages, BackOffice equipment can issue program authorization failure message to EPG equipment, triggers EPG equipment program authorization failure message is handed down to STB.It is illegal to be that BackOffice equipment can detect IC-card at authorization stages, makes STB cannot realize VOD business.Wherein, by BackOffice equipment, at authorization stages, detect the whether legal mode of IC-card safer, reliable, make illegal STB or software terminal be not easy identification, thereby can reduce the income loss of television operator.
As a kind of optional execution mode, in the video-on-demand control method that the embodiment of the present invention two provides, BackOffice equipment is being carried out above-mentioned steps 21) before, can also carry out following steps:
211), BackOffice equipment receives the authentication request that carries Set Top Box parameters for authentication that EPG equipment sends, this Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box.
Wherein, above-mentioned authentication request is after EPG equipment receives the EPG homepage access request that carries above-mentioned Set Top Box parameters for authentication that STB sends, then is sent to BackOffice equipment.
212), the decruption key of BackOffice equipment utilization storage IC-card ciphertext that Set Top Box parameters for authentication is comprised is decrypted, to obtain IC-card plaintext.
213) the IC-card plaintext that, BackOffice equipment is decrypted the IC-card ciphertext that Set Top Box parameters for authentication is comprised acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, transmission authentication, is triggered EPG equipment generation EPG homepage and also sends to STB to show to EPG equipment by result.
As a kind of optional execution mode, if BackOffice equipment is by above-mentioned steps 212) the IC-card plaintext that obtains of deciphering be sky, illustrate that IC-card has been pulled out STB in authentication phase, BackOffice equipment can issue authentification failure message to EPG equipment, triggers EPG equipment and issues EPG homepage access failed message to STB.Be that BackOffice equipment can detect IC-card in authentication phase and has been pulled out STB, make STB cannot realize VOD business, thereby can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, the income that reduces television operator runs off.
Or, if BackOffice equipment is by above-mentioned steps 212) the IC-card plaintext that obtains of deciphering be sky, but in step 213) in contrast IC-card plaintext that deciphering obtains when inconsistent with pre-stored IC-card plaintext, illustrate that IC-card identity is illegal in authentication phase, BackOffice equipment can issue authentification failure message to EPG equipment, triggers EPG equipment and issues EPG homepage access failed message to STB.Wherein, by BackOffice equipment, in authentication phase, detect the whether legal mode of IC-card safer, reliable, make illegal STB or software terminal be not easy identification, thereby can reduce the income loss of television operator.
Whether the embodiment of the present invention two inserts STB by BackOffice equipment Inspection IC, if not, forbids that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment tri-:
Refer to Fig. 3, the flow chart of a kind of video-on-demand control method that Fig. 3 provides for the embodiment of the present invention three.Wherein, the embodiment of the present invention three discusses from the angle of Set Top Box the video-on-demand control method that the embodiment of the present invention provides in detail.As shown in Figure 3, this VOD method can comprise the following steps:
301, the heartbeat message that STB transmission carries IC-card ciphertext, to CDN equipment, so that CDN equipment is decrypted to obtain IC-card plaintext to this IC-card ciphertext, and stops the pushing video streaming of program request to STB when the IC-card plaintext of deciphering acquisition is sky.
302, STB detects the video flowing of whether receiving that CDN equipment pushes, if not, points out user to insert IC-card.
For instance, whether STB detects in Preset Time (as 5 seconds) and receives the video flowing that CDN equipment pushes, and if not, points out user to insert IC-card.
As a kind of optional execution mode, in the video-on-demand control method that the embodiment of the present invention three provides, STB, before carrying out above-mentioned steps 301, can also carry out following steps:
31), STB sends and carries IC-card ciphertext and authorize the establishment on-demand session request of sign Purchase Token to CDN equipment to play URL, trigger CDN equipment by IC-card number checking request by this IC-card ciphertext with authorize sign Purchase Token to be sent to BackOffice equipment and carry out verification.
32) STB receives the video flowing that CDN equipment pushes, and this video flowing is decoded and play; Wherein, this video flowing is that CDN equipment receives verification that BackOffice equipment sends by triggering and push after result, and this verification comprises IC-card plaintext and decruption key by result.
As a kind of optional execution mode, STB is carrying out above-mentioned steps 31) afterwards, can also receive CDN equipment and send establishment on-demand session failed message, and point out user to insert IC-card; Wherein, above-mentioned establishment on-demand session failed message is that CDN equipment receives after the verification failed message that BackOffice equipment sends and triggers and send.By this execution mode, BackOffice equipment can detect IC-card at establishment session stage and be pulled out STB, make STB cannot realize VOD business, can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, the income that reduces television operator runs off; Or by this execution mode, it is illegal that BackOffice equipment can detect IC-card identity at establishment session stage, makes STB cannot realize VOD business, and the income that reduces television operator runs off.
As a kind of optional execution mode, in the video-on-demand control method that the embodiment of the present invention three provides, STB is carrying out above-mentioned steps 31) before, can also carry out following steps:
311), STB is by sending program authorization requests to BackOffice equipment through EPG equipment, at least carry the column numbering at IC-card ciphertext, program ID and program place in this program authorization requests.
312), STB receives mandate sign Purchase Token and the broadcasting URL that EPG equipment issues; Wherein, this mandate sign Purchase Token is that the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage carries program authorization requests is decrypted, and the IC-card plaintext that obtains of deciphering generates and sends after consistent with pre-stored IC-card plaintext to EPG equipment.
As a kind of optional execution mode, STB is carrying out above-mentioned steps 311) afterwards, can also receive the program authorization failure message that EPG equipment issues, and point out user to insert IC-card; Wherein, above-mentioned program authorization failure message is that the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage carries program authorization requests is decrypted, and when the IC-card plaintext that deciphering obtains is empty, or the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage carries program authorization requests is decrypted, and when the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext, by BackOffice equipment, issues program authorization failure message to EPG equipment and trigger EPG equipment and be handed down to STB's.By this execution mode, BackOffice equipment can detect IC-card at authorization stages and be pulled out STB (the IC-card plaintext that deciphering obtains is for empty), make STB cannot realize VOD business, can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, the income that reduces television operator runs off.Or by this execution mode, BackOffice equipment can detect IC-card identity illegal (the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext) at authorization stages, make STB cannot realize VOD business, the income that reduces television operator runs off.
As a kind of optional execution mode, in the video-on-demand control method that the embodiment of the present invention three provides, STB is carrying out above-mentioned steps 311) before, can also carry out following steps:
3111), STB send carry Set Top Box parameters for authentication EPG homepage access request to EPG equipment, trigger EPG equipment and by authentication request, this Set Top Box parameters for authentication be sent to BackOffice equipment and authenticate; Wherein, this Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box.
3112), STB receives and shows the EPG homepage of EPG equipment transmission; Wherein, this EPG homepage is that the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage comprises Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, by BackOffice equipment send authentication by result to EPG equipment, trigger EPG equipment and generate and send to STB's.
As a kind of optional execution mode, STB is carrying out above-mentioned steps 3111) afterwards, can also receive the EPG homepage access failed message that EPG equipment issues, and point out user to insert IC-card; Wherein, above-mentioned EPG homepage access failed message is that the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage comprises Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is empty, or the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage comprises Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext, by BackOffice equipment, issue authentification failure message to EPG equipment, trigger EPG equipment and be issued to STB's.By this execution mode, BackOffice equipment can detect IC-card in authentication phase and be pulled out STB (the IC-card plaintext that deciphering obtains is for empty), make STB cannot realize VOD business, can effectively prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business, the income that reduces television operator runs off.Or by this execution mode, BackOffice equipment can detect IC-card identity illegal (the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext) in authentication phase, make STB cannot realize VOD business, the income that reduces television operator runs off.
The embodiment of the present invention three can, by CDN or BackOffice equipment Inspection IC insertion machine top box whether, if not, forbid that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention three can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment tetra-:
Refer to Fig. 4, the flow chart of a kind of video-on-demand control method that Fig. 4 provides for the embodiment of the present invention four.Wherein, the embodiment of the present invention four discusses from the angle of STB, EPG equipment, CDN equipment and BackOffice equipment the video-on-demand control method that the embodiment of the present invention provides in detail.As shown in Figure 4, this VOD method can comprise the following steps:
401, STB starting up.
402, user's choice for use VOD business.
403, STB reads IC-card number in real time, and IC-card number is encrypted, to obtain IC-card ciphertext.
Wherein, STB can adopt the MD5 of agreement or 3DES cryptographic algorithm to be encrypted the IC-card reading number, to obtain IC-card ciphertext.
404, STB sends EPG homepage access request to EPG equipment, and this EPG homepage access request can comprise following Set Top Box parameters for authentication: IC-card ciphertext, Set Top Box Mac address, Set Top Box version number and set top box decodes ability.
405, EPG equipment sends authentication request to BackOffice equipment, and this authentication request carries above-mentioned Set Top Box parameters for authentication.
406, BackOffice equipment carries out authentication processing, be that the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage comprises Set Top Box parameters for authentication is decrypted to obtain IC-card plaintext, if the IC-card plaintext that deciphering obtains is empty, or the IC-card plaintext that deciphering obtains is not empty, but the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext, perform step 407, and process ends.If the IC-card plaintext that deciphering obtains is not empty, and the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, performs step 408.
407, BackOffice equipment issues program authorization failure message to described EPG equipment, triggers EPG equipment program authorization failure message is handed down to STB.
408, BackOffice equipment passes through result to EPG equipment return authentication.
409, the authentication that EPG equipment reception BackOffice equipment returns, by result, dynamically generates EPG homepage.
410, EPG equipment returns to the EPG homepage of generation to STB and shows.
411, user browses the video frequency program of showing in EPG homepage, selects video program play.
412, STB is in real time from reading IC-card number, and IC-card number is encrypted, to obtain IC-card ciphertext.
413, STB sends program authorization requests to EPG equipment, carries following parameter in this program authorization requests: the column numbering at program ID, IC-card ciphertext and program place.
414, EPG equipment is to this program authorization requests of BackOffice device forwards.
415, BackOffice equipment carries out authorisation process, i.e. the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage carries program authorization requests is decrypted to obtain IC-card plaintext; If the IC-card plaintext that deciphering obtains be empty, or the IC-card plaintext that deciphering obtains be empty, but it is inconsistent with pre-stored IC-card plaintext to decipher the IC-card plaintext of acquisition, performs step 416.If the IC-card plaintext that deciphering obtains is not empty, and the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, BackOffice equipment generates mandate sign Purchase Token for this program request of user, and sets up the mandate sign Purchase Token of generation and the corresponding relation of the IC-card plaintext that deciphering obtains and store in its Purchase Token cache table; Execution step 417.
In step 415, BackOffice equipment can also detect the holding time of each the Purchase Token storing in Purchase Token cache table, and from Purchase Token cache table, deletes Purchase Token and corresponding IC-card plaintext thereof that the holding time surpasses default life cycle.
416, BackOffice equipment issues program authorization failure message to EPG equipment, and trigger EPG equipment program authorization failure message is handed down to Set Top Box, and process ends.
417, BackOffice equipment returns to program Authorization result to EPG equipment, and this Authorization result comprises the mandate sign Purchase Token of generation.
418, EPG equipment issues program request parameter to STB, triggers STB and enters program request flow process, and this program request parameter comprises to be play URL and authorize sign Purchase Token.
419, STB is in real time from reading IC-card number, and IC-card number is encrypted, to obtain IC-card ciphertext.
420, STB sends to CDN equipment the on-demand session request that creates to play URL, creates in on-demand session request and carries IC-card ciphertext and authorize sign Purchase Token.
Wherein, the embodiment of the present invention can be expanded the request of existing establishment on-demand session, and making increases and can carry IC-card ciphertext and authorize sign PurchaseToken field in the establishment on-demand session request after expansion.Wherein, the extended mode of existing establishment session request can be in two ways, mode one: in RTSP consensus standard header field, expand; Mode two: splice IC-card ciphertext and authorize sign PurchaseToken after RTSPURL.Wherein, mode one and mode two specific implementations can be as follows:
Mode one
SETUP?rtsp://12.78.163.57/jb2.ts?RTSP/1.0
CSeq:2
Session:374299253
ICCARD:a9748cbdbea
Purchase?Token:20110203123625001256
Transport:MP2T/UDP;unicast;mode=″PLAY″;destination=12.78.163.157;client_port=3853-3854
User-Agent:SUMA?SZ1771RTSP?1.0
Mode two
SETUP?rtsp://12.78.163.57/jb2.tsICCARD=a9748cbdbea&PurchaseToken=20110203123625001256RTSP/1.0
CSeq:2
Session:374299253
Transport:MP2T/UDP;unicast;mode=″PLAY″;destination=12.78.163.157;client_port=3853-3854
User-Agent:SUMA?SZ1771RTSP?1.0
421, CDN equipment sends IC-card check request to BackOffice equipment, carries IC-card ciphertext and authorize sign Purchase Token in IC-card check request.
422, BackOffice equipment carries out checking treatment, i.e. the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage carries IC-card check request is decrypted to obtain IC-card plaintext, if the IC-card plaintext that deciphering obtains is not empty, and inquire in Purchase Token cache table and store with the mandate of deciphering acquisition and identify the target P urchase Token that Purchase Token is identical, from Purchase Token cache table, obtain the IC-card plaintext that target P urchase Token is corresponding, and perform step 424, if it is empty that deciphering obtains IC-card plaintext, or the IC-card plaintext that deciphering obtains is not empty, but in Purchase Token cache table, do not store the target P urchase Token identical with the mandate sign Purchase Token that deciphers acquisition, or the IC-card plaintext that deciphering obtains is not empty, and in Purchase Token cache table, store the target P urchase Token identical with the mandate sign Purchase Token that deciphers acquisition, but the IC-card plaintext that the IC-card plaintext that deciphering obtains is corresponding with target P urchase Token is inconsistent, BackOffice equipment execution step 423.
423, BackOffice equipment sends verification failed message to CDN equipment, triggers CDN equipment and sends establishment on-demand session failed message to STB, process ends.
424, BackOffice equipment back-checking is by result to CDN equipment, and verification comprises IC-card plaintext and decruption key by result; CDN is saved in IC-card plaintext and decruption key in on-demand session.
425, after conversation establishing success, the video flowing that CDN pushes program request by Cable or IP network to STB, is decoded and is play by STB.
426, STB is in real time from reading IC-card number, and IC-card number is encrypted, to obtain IC-card ciphertext.
427, STB periodically sends heartbeat message to CDN equipment, and heartbeat message carries IC-card ciphertext.
428, CDN equipment carries out checking treatment, and CDN equipment obtains IC-card ciphertext from heartbeat message, and utilizes the decruption key of storage to be decrypted to obtain IC-card plaintext to IC-card ciphertext; If the IC-card plaintext that deciphering obtains be empty, and the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, the continuation of CDN equipment, by the pushing video streaming of program request to STB, and is waited for next heart beat cycle; If the IC-card plaintext that deciphering obtains be empty, but the IC-card plaintext of deciphering acquisition and pre-stored IC-card plaintext are inconsistent, and CDN equipment stops the pushing video streaming of program request to STB.
The embodiment of the present invention four can, by CDN or BackOffice equipment Inspection IC insertion machine top box whether, if not, forbid that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention four can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment five:
Refer to Fig. 5, the structure chart of a kind of CDN equipment that Fig. 5 provides for the embodiment of the present invention five.As shown in Figure 5, this CDN equipment can comprise:
Transmit-Receive Unit 501, the heartbeat message sending for receiving STB, carries IC-card ciphertext in this heartbeat message.
Acquiring unit 502, for obtaining IC-card ciphertext from heartbeat message.
Decryption unit 503, for utilizing the decruption key of storage to be decrypted to obtain IC-card plaintext to IC-card ciphertext.
Video flowing Dispatching Unit 504, while being empty for the IC-card plaintext obtaining in deciphering, stops the pushing video streaming of program request to STB.
See also Fig. 6, the structure chart of the another kind of CDN equipment that Fig. 6 provides for the embodiment of the present invention five.Compare with the CDN equipment shown in Fig. 5, the CDN equipment shown in Fig. 6 can also comprise verification unit 505 and report unit 506:
Wherein, verification unit 505, while not being empty for the IC-card plaintext obtaining in deciphering, whether the IC-card plaintext that contrast deciphering obtains is consistent with pre-stored IC-card plaintext, if consistent, notify video flowing Dispatching Unit 504 by the pushing video streaming of program request to STB; If inconsistent, notify video flowing Dispatching Unit 504 to stop the pushing video streaming of program request to STB.
Correspondingly, video flowing Dispatching Unit 504 also for according to the notice of verification unit 505 by the pushing video streaming of program request to STB, or stop the pushing video streaming of program request to STB.
In the CDN equipment shown in Fig. 6, Transmit-Receive Unit 501 can also receive the establishment on-demand session request that STB sends to play URL, carries IC-card ciphertext and authorize sign Purchase Token in the request of described establishment on-demand session;
Correspondingly, report unit 506 to carry out verification for this IC-card ciphertext being sent to BackOffice equipment with mandate sign Purchase Token by IC-card number checking request; And receiving and store BackOffice equipment transmission verification by result, this verification comprises IC-card plaintext and decruption key by result.
Correspondingly, video flowing Dispatching Unit 504 is being also for reporting unit 506 to receive verification that BackOffice equipment sends by after result, by the pushing video streaming of program request to STB.
As a kind of optional execution mode, report unit 506 also for receiving the verification failed message of BackOffice equipment transmission and notifying Transmit-Receive Unit 501.
Correspondingly, Transmit-Receive Unit 501 is also for sending and create on-demand session failed message to STB according to the notice that reports unit 501.
Whether the embodiment of the present invention five can insert STB by CDN equipment Inspection IC, if not, forbids that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention five can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment six:
Refer to Fig. 7, the structure chart of a kind of BackOffice equipment that Fig. 7 provides for the embodiment of the present invention six.As shown in Figure 7, this BackOffice equipment can comprise:
Receiving element 701, the IC-card number checking request sending for receiving CDN equipment, carries IC-card ciphertext and authorizes sign Purchase Token in number checking request of this IC-card.
Decryption unit 702, for utilizing the decruption key of storage to verify that to above-mentioned IC-card number the IC-card ciphertext that request is carried is decrypted to obtain IC-card plaintext.
Control unit 703, while being sky for the IC-card plaintext obtaining in decryption unit 702 deciphering, sends verification failed message to CDN equipment, and triggering CDN equipment sends and creates on-demand session failed message to STB.
See also Fig. 8, the structure chart of the another kind of BackOffice equipment that Fig. 8 provides for the embodiment of the present invention six.Compare with the BackOffice equipment shown in Fig. 7, the BackOffice equipment shown in Fig. 8 can also comprise:
Query unit 704, while not being sky for the IC-card plaintext obtaining in decryption unit 702 deciphering, in inquiry Purchase Token cache table, whether store the target P urchase Token identical with the mandate sign Purchase Token that deciphers acquisition, if had, from Purchase Token cache table, obtain the IC-card plaintext that target P urchase Token is corresponding.
Whether verification unit 705 is consistent for contrasting the IC-card plaintext that IC-card plaintext that decryption unit 702 deciphering obtains is corresponding with target P urchase Token.
Wherein, control unit 703 is also for contrasting IC-card plaintext that the IC-card plaintext of decryption unit solution 702 close acquisitions is corresponding with target P urchase Token when consistent in verification unit 705, send verification by result to CND equipment, triggering CND equipment is by the pushing video streaming of program request to STB, and this verification comprises IC-card plaintext and decruption key by result.
As a kind of optional execution mode, control unit 703 does not also store the target P urchase Token identical with the mandate sign Purchase Token that deciphers acquisition for inquire Purchase Token cache table in query unit 704, or contrast IC-card plaintext that IC-card plaintext that decryption unit 702 deciphering obtains is corresponding with target P urchase Token when inconsistent in verification unit 705, send verification failed message to CDN equipment, trigger CDN equipment and send establishment on-demand session failed message to STB.
See also Fig. 9, the structure chart of the another kind of BackOffice equipment that Fig. 9 provides for the embodiment of the present invention six.Compare with the BackOffice equipment shown in Fig. 8, the BackOffice equipment shown in Fig. 9 can also comprise authorizes identify unit 706 and overtime control unit 707.In the BackOffice equipment shown in Fig. 9, receiving element 701 can also, for receiving STB by the program authorization requests sending through EPG equipment, at least carry the column numbering at IC-card ciphertext, program identification and program place in this program authorization requests; Correspondingly, decryption unit 702 is also decrypted to obtain IC-card plaintext for the IC-card ciphertext of utilizing the decruption key of storage to carry program authorization requests; Whether verification unit 705 is also consistent with pre-stored IC-card plaintext for contrasting the IC-card plaintext that IC-card ciphertext that decryption unit 702 deciphering program authorization requests carry obtains; While authorizing IC-card plaintext that identify unit 706 obtains for the IC-card ciphertext that contrasts decryption unit 702 deciphering program authorization requests in verification unit 705 and carry consistent with pre-stored IC-card plaintext, generate and authorize sign Purchase Token; And set up the corresponding relation of the mandate sign Purchase Token of generation and the IC-card plaintext of the IC-card ciphertext acquisition that decryption unit 702 deciphering program authorization requests are carried, and this corresponding relation is stored in its Purchase Token cache table.
Wherein, control unit 703 is also handed down to Set Top Box for the mandate sign Purchase Token that authorizes identify unit 706 to generate being sent to EPG equipment, triggering EPG equipment by mandate sign Purchase Token and play URL.
Overtime control unit 707, for detection of authorizing the holding time of each the Purchase Token storing in the Purchase Token cache table of identify unit 706 whether to surpass default life cycle separately, if so, from Purchase Token cache table, delete Purchase Token and the corresponding IC-card plaintext thereof that the holding time surpasses default life cycle.
As a kind of optional execution mode, control unit 703 is also decrypted for the IC-card ciphertext of utilizing the decruption key of storage to carry program authorization requests in decryption unit 702, and when the IC-card plaintext that deciphering obtains is empty, or contrast IC-card plaintext that decryption unit 702 deciphering obtains when inconsistent with pre-stored IC-card plaintext in verification unit 705, issue program authorization failure message to EPG equipment, trigger EPG equipment program authorization failure message is handed down to STB.
As a kind of optional execution mode, the authentication request that carries Set Top Box parameters for authentication that receiving element 701 also sends for receiving EPG equipment, Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box; Decryption unit 702 is also decrypted for the IC-card ciphertext of utilizing the decruption key of storage to comprise Set Top Box parameters for authentication, to obtain IC-card plaintext; The IC-card plaintext that verification unit 705 is also decrypted acquisition for the IC-card ciphertext that 702 pairs of Set Top Box parameters for authentication of decryption unit are comprised contrasts with pre-stored IC-card plaintext; Control unit 703 is also for contrasting IC-card plaintext that IC-card ciphertext that 702 pairs of Set Top Box parameters for authentication of decryption unit comprise is decrypted acquisition when consistent with pre-stored IC-card plaintext in verification unit 705, transmission authentication, is triggered EPG equipment generation EPG homepage and also sends to STB to show to EPG equipment by result.
As a kind of optional execution mode, control unit 703 is also decrypted for the IC-card ciphertext of utilizing the decruption key of storage to comprise Set Top Box parameters for authentication in decryption unit 702, and when the IC-card plaintext that deciphering obtains is empty, or contrast IC-card plaintext that IC-card ciphertext that 702 pairs of Set Top Box parameters for authentication of decryption unit comprise is decrypted acquisition when inconsistent with pre-stored IC-card plaintext in verification unit 705, issue authentification failure message to EPG equipment, trigger EPG equipment and issue EPG homepage access failed message to STB.
Whether the embodiment of the present invention six can insert STB by BackOffice equipment Inspection IC, if not, forbids that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention six can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment seven:
Refer to Figure 10, the structure chart of a kind of STB that Figure 10 provides for the embodiment of the present invention seven.As shown in figure 10, this STB can comprise:
Transmit-Receive Unit 1001, for send carry IC-card ciphertext heartbeat message to CDN equipment, so that CDN equipment is decrypted to obtain IC-card plaintext to IC-card ciphertext, and (IC-card is pulled out STB) stops order video stream to push to STB when IC-card plaintext is sky.
Whether Tip element 1002, receive for detection of Transmit-Receive Unit 1001 video flowing that CDN equipment pushes, and if not, points out user to insert IC-card.
As a kind of optional execution mode, the STB as shown in 10 can also comprise decoding broadcast unit 1003.Wherein, Transmit-Receive Unit 1001 also, for carrying IC-card ciphertext and authorize the establishment on-demand session request of sign Purchase Token to CDN equipment playing URL transmission, triggers CDN equipment and is verified request by IC-card ciphertext and authorized sign Purchase Token to be sent to BackOffice equipment and carry out verification by IC-card number; And the video flowing that receives the propelling movement of CDN equipment; Wherein, this video flowing is that CDN equipment receives verification that BackOffice equipment sends by triggering and push after result, and this verification comprises IC-card plaintext and decruption key by result.Wherein, decoding broadcast unit 1003 is decoded and plays for the video flowing that Transmit-Receive Unit 1001 is received.
As a kind of optional execution mode, the establishment on-demand session failed message that Transmit-Receive Unit 1001 also sends for receiving CDN equipment; Tip element 1002 also points out user to insert IC-card when receiving the establishment on-demand session failed message that CDN equipment sends at Transmit-Receive Unit 1001; Wherein, creating on-demand session failed message is that CDN equipment receives after the verification failed message that BackOffice equipment sends and triggers and send.
As a kind of optional execution mode, Transmit-Receive Unit 1001 also, for by sending program authorization requests to BackOffice equipment through EPG equipment, at least carries the column numbering at IC-card ciphertext, program identification and program place in this program authorization requests; And the mandate that reception EPG equipment issues identifies Purchase Token and plays URL; Wherein, authorizing sign Purchase Token is that the decruption key of BackOffice equipment utilization storage is decrypted IC-card ciphertext, and the IC-card plaintext that obtains of deciphering generates and sends after consistent with pre-stored IC-card plaintext.
As a kind of optional execution mode, the program authorization failure message that Transmit-Receive Unit 1001 also issues for receiving EPG equipment; Wherein, this program authorization failure message is that the decruption key of BackOffice equipment utilization storage is decrypted IC-card ciphertext, and when the IC-card plaintext that deciphering obtains is empty (IC-card is pulled out STB), or the decruption key of the BackOffice equipment utilization storage IC-card plaintext that IC-card ciphertext is decrypted to acquisition is when inconsistent with pre-stored IC-card plaintext (IC-card identity is illegal), by BackOffice equipment, issues program authorization failure message to EPG equipment and trigger that EPG equipment issues; Tip element 1002 is also when receiving the program authorization failure message that EPG equipment issues at Transmit-Receive Unit 1001, prompting user inserts IC-card.
As a kind of optional execution mode, the STB as shown in 10 can also comprise display unit 1004.Wherein, Transmit-Receive Unit 1001 also for send carry Set Top Box parameters for authentication EPG homepage access request to EPG equipment, trigger EPG equipment and by authentication request, Set Top Box parameters for authentication be sent to BackOffice equipment and authenticate; This Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box; And the EPG homepage that receives the transmission of EPG equipment; Wherein, EPG homepage is that the IC-card ciphertext that the decruption key of BackOffice equipment utilization storage comprises Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, by BackOffice equipment send authentication by result to EPG equipment, trigger that EPG equipment generates and sends.Wherein, the EPG homepage that display unit 1004 receives for showing Transmit-Receive Unit 1001.
As a kind of optional execution mode, the EPG homepage access failed message that Transmit-Receive Unit 1001 also issues for receiving EPG equipment, wherein, EPG homepage access failed message is that the decruption key of BackOffice equipment utilization storage is decrypted IC-card ciphertext, and when the IC-card plaintext that deciphering obtains is empty, or the decruption key of the BackOffice equipment utilization storage IC-card plaintext that IC-card ciphertext is decrypted to acquisition is when inconsistent with pre-stored IC-card plaintext, by BackOffice equipment, issue authentification failure message to EPG equipment, triggering EPG equipment issues, Tip element 1002 also points out user to insert IC-card for receiving at Transmit-Receive Unit 1001 when EPG homepage is accessed failed message.
Whether the embodiment of the present invention seven can insert STB by CDN equipment or BackOffice equipment Inspection IC, if not, forbids that STB realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention six can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
Embodiment eight:
Refer to Figure 11, the structure chart of a kind of video request program control system that Figure 11 provides for the embodiment of the present invention eight.As shown in figure 11, this video request program control system can comprise Set Top Box 1101 and content distributing network equipment 1102; Wherein:
Set Top Box 1101, for send carry IC-card ciphertext heartbeat message to content distributing network equipment 1102, and detect the video flowing whether receive that content distributing network equipment 1102 pushes, if not, point out user to insert IC-card.
Content distributing network establishes 1102, the heartbeat message sending for receiving set up box 1101, and from heartbeat message, obtain IC-card ciphertext; And utilize the decruption key of storage to be decrypted IC-card ciphertext, to obtain IC-card plaintext; And when IC-card plaintext is sky (IC-card is pulled out Set Top Box 1101), the pushing video streaming that stops program request looking is to Set Top Box 1101.
As a kind of optional execution mode, the video request program control system shown in Figure 11 can also comprise:
Batch Processing management equipment 1103, for receiving the IC-card number checking request of content distributing network equipment 1102 transmissions, and utilizes the decruption key of storage to verify that to IC-card number the IC-card ciphertext that request is carried is decrypted to obtain IC-card plaintext; And whether store with IC-card number checking and ask the mandate of carrying to identify the target P urchase Token that Purchase Token is identical inquire about Purchase Token cache table when the IC-card plaintext of deciphering acquisition is not sky in, if had, from Purchase Token cache table, obtain the IC-card plaintext that target P urchase Token is corresponding; And when the IC-card plaintext of the deciphering acquisition IC-card plaintext corresponding with target P urchase Token is consistent, transmission verification is by result to content distributing network equipment 1102, verification comprises IC-card plaintext and decruption key by result.Correspondingly, the establishment on-demand session request that content distributing network equipment 1102 also sends to play URL for receiving set up box 1101, and ask IC-card ciphertext and authorize sign Purchase Token to be sent to Batch Processing management equipment 1103 and carry out verification by IC-card number checking; And receive and store verification that Batch Processing management equipment 1103 sends by result, and by the pushing video streaming of program request to Set Top Box 1101.Correspondingly, Set Top Box 1101 is also for carrying IC-card ciphertext and authorize the establishment on-demand session request of sign Purchase Token to content distributing network equipment 1102 playing URL transmission; And receive the video flowing that content distributing network equipment 1102 pushes, and video flowing is decoded and play.
As a kind of optional execution mode, when Batch Processing management equipment 1103 is also empty for the IC-card plaintext obtaining in deciphering, send verification failed message to content distributing network equipment 1102; Or the IC-card plaintext obtaining in deciphering is not empty, and inquire while not storing the identical target P urchase Token of the mandate sign Purchase Token that carries with IC-card number checking request in Purchase Token cache table, send verification failed message to content distributing network equipment 1102; Or be not empty for the IC-card plaintext obtaining in deciphering, and inquire in Purchase Token cache table, store and ask the mandate of carrying to identify the target P urchase Token that Purchase Token is identical with IC-card number checking, and when the IC-card plaintext that the IC-card plaintext that deciphering obtains is corresponding with target P urchase Token is inconsistent, send verification failed message to content distributing network equipment 1102.Correspondingly, the verification failed message that content distributing network equipment 1102 also sends for receiving Batch Processing management equipment 1103, and send establishment on-demand session failed message to Set Top Box 1101.Correspondingly, the establishment on-demand session failed message that Set Top Box 1101 also sends for receiving content distributing network equipment 1102, and point out user to insert IC-card.
As a kind of optional execution mode, the video request program control system shown in Figure 11 can also comprise:
Electronic program guide (EPG) equipment 1104, the program authorization requests sending for receiving set up box 1101, and this program authorization requests is sent to Batch Processing management equipment 1103, in this program authorization requests, at least carry the column numbering at IC-card ciphertext, program identification and program place.Correspondingly, the program authorization requests that Batch Processing management equipment 1103 also sends for receiving EPG equipment 1104, the IC-card ciphertext that the decruption key of utilization storage carries program authorization requests is decrypted to obtain IC-card plaintext; And the IC-card plaintext that the IC-card ciphertext that program authorization requests is carried is decrypted to acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, generates and authorize sign Purchase Token; And the mandate set up generating sign Purchase Token and the described IC-card ciphertext that program authorization requests is carried are decrypted the corresponding relation of the IC-card plaintext of acquisition, and described corresponding relation is stored in its Purchase Token cache table, and the mandate sign Purchase Token of generation is sent to described EPG equipment 1104; EPG equipment 1104 is also for being handed down to described Set Top Box 1101 by described mandate sign Purchase Token and broadcasting URL(uniform resource locator); Set Top Box 1101 is also for sending described program authorization requests to described EPG equipment 1104, and receives the described mandate sign Purchase Token that described EPG equipment 1104 issues and play URL.
As a kind of optional execution mode, the IC-card ciphertext that Batch Processing management equipment 1103 is also carried described program authorization requests for the decruption key utilizing storage is decrypted, and when the IC-card plaintext that deciphering obtains is empty, issue program authorization failure message to described EPG equipment 1104; Or at the IC-card plaintext that the IC-card ciphertext that described program authorization requests is carried is decrypted to acquisition and pre-stored IC-card plaintext, contrast when inconsistent, issue program authorization failure message to described EPG equipment 1104; The program authorization failure message that described EPG equipment 1104 also issues for receiving described Batch Processing management equipment 1103, and described program authorization failure message is handed down to described Set Top Box 1101; The program authorization failure message that described Set Top Box 1101 also issues for receiving described EPG equipment 1104, and point out user to insert IC-card.
As a kind of optional execution mode, the authentication request that carries Set Top Box parameters for authentication that Batch Processing management equipment 1103 also sends for receiving EPG equipment 1104, described Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box; And the IC-card ciphertext that the decruption key that utilizes storage comprises described Set Top Box parameters for authentication is decrypted, to obtain IC-card plaintext; And the IC-card plaintext that the IC-card ciphertext that described Set Top Box parameters for authentication is comprised is decrypted to acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, send authentication by result to EPG equipment 1104; The EPG homepage access request that carries described Set Top Box parameters for authentication that described EPG equipment 1104 also sends for receiving described Set Top Box 1101, and by authentication request, described Set Top Box parameters for authentication is sent to described Batch Processing management equipment 1103 and authenticates; And the described authentication that receives described Batch Processing management equipment 1103 transmissions is by result, generates the concurrent feeding device top box 1101 of EPG homepage; Described Set Top Box 1101 also for send carry described Set Top Box parameters for authentication EPG homepage access request to described EPG equipment 1104, and the EPG homepage that receives and show described EPG equipment 1104 transmissions.
As a kind of optional execution mode, the IC-card ciphertext that Batch Processing management equipment 1103 also comprises described Set Top Box parameters for authentication for the decruption key utilizing storage is decrypted, and the IC-card plaintext that obtains of deciphering is while be empty, issues extremely described EPG equipment 1104 of authentification failure message; Or the IC-card plaintext that is decrypted acquisition in the IC-card ciphertext that described Set Top Box parameters for authentication is comprised and pre-stored IC-card plaintext contrast when inconsistent, issue authentification failure message to described EPG equipment 1104; Described EPG equipment 1104, the authentification failure message also issuing for receiving described Batch Processing management equipment 1103, and issue EPG homepage access failed message to described Set Top Box 1101; The EPG homepage access failed message that described Set Top Box 1101 also issues for receiving described EPG equipment 1104, and point out user to insert IC-card.
In the embodiment of the present invention, the structure of Set Top Box 1101, content distributing network equipment 1102 and Batch Processing management equipment 1103 is described in detail in embodiment above, and the embodiment of the present invention is not repeated herein.
Inventive embodiments eight can detect whether insertion machine top box 1101 of IC by content distributing network equipment 1102 or Batch Processing management equipment 1103, if not, forbids that Set Top Box 1101 realizes VOD business.Compare with the mode whether existing STB detection IC-card exists, the embodiment of the present invention six can prevent that a plurality of STB from sharing same IC-card simultaneously and realizing VOD business effectively, and the income that reduces television operator runs off.
For stream media protocol, the present invention does not limit in the present invention, can be SIP, RTSP, SSP/LSCP etc.It need to (be that service terminal can read IC-card number in real time as all service terminals of the means of service operation and charging by IC-card that the present invention can be applied to, then in key business process, IC-card number is reported to head end operation system and carry out verification), can prevent that user from using same IC-card on a plurality of service terminals, to use business simultaneously simultaneously, prevent that the income of operator runs off.
One of ordinary skill in the art will appreciate that all or part of step in the whole bag of tricks of above-described embodiment is to come the hardware that instruction is relevant to complete by program, this program can be stored in a computer-readable recording medium, storage medium can comprise: flash disk, read-only memory (Read-Only Memory, ROM), random access device (Random Access Memory, RAM), disk or CD etc.
The video-on-demand control method above embodiment of the present invention being provided and relevant device, system are described in detail, applied specific case herein principle of the present invention and execution mode are set forth, the explanation of above embodiment is just for helping to understand method of the present invention and core concept thereof; , for one of ordinary skill in the art, according to thought of the present invention, all will change in specific embodiments and applications, in sum, this description should not be construed as limitation of the present invention meanwhile.
Claims (38)
1. a video-on-demand control method, is characterized in that, comprising:
The heartbeat message that content distributing network equipment receiver top box sends, carries IC-card ciphertext in described heartbeat message;
Described content distributing network equipment obtains described IC-card ciphertext from described heartbeat message, and utilizes the decruption key of storage to be decrypted to obtain IC-card plaintext to described IC-card ciphertext;
If described IC-card plaintext is empty, illustrate that IC-card transferred to Set Top Box, described content distributing network equipment stops the pushing video streaming of program request to described Set Top Box;
Before the heartbeat message sending at content distributing network equipment receiver top box, described method also comprises:
The establishment on-demand session request that content distributing network equipment receiver top box sends to play URL(uniform resource locator), carries IC-card ciphertext and authorizes sign Purchase Token in the request of described establishment on-demand session;
Described content distributing network equipment is sent to Batch Processing management BackOffice equipment by described IC-card ciphertext with mandate sign Purchase Token by IC-card number checking request and carries out verification;
Described content distributing network equipment receives and stores the verification of described BackOffice equipment transmission by result, and described verification comprises IC-card plaintext and decruption key by result;
Described content distributing network equipment by the pushing video streaming of program request to described Set Top Box.
2. method according to claim 1, is characterized in that, described method also comprises:
If described IC-card plaintext is not empty, whether described content distributing network equipment to contrast described IC-card plaintext consistent with pre-stored IC-card plaintext, if consistent, described content distributing network equipment by the pushing video streaming of program request to described Set Top Box; If inconsistent, described content distributing network equipment stops the pushing video streaming of program request to described Set Top Box.
3. method according to claim 1, is characterized in that, described method also comprises:
Described content distributing network equipment receives described BackOffice equipment and sends verification failed message, and sends establishment on-demand session failed message to described Set Top Box.
4. a video-on-demand control method, is characterized in that, comprising:
Batch Processing management BackOffice equipment receives the IC-card number checking request that content distributing network equipment sends, in number checking request of described IC-card, carry IC-card ciphertext and authorize sign Purchase Token, described IC-card ciphertext is sent to described content distributing network equipment by Set Top Box by heartbeat message;
The decruption key of described BackOffice equipment utilization storage is decrypted to obtain IC-card plaintext to described IC-card ciphertext;
If described IC-card plaintext is empty, illustrate that IC-card transferred to Set Top Box, described BackOffice equipment sends verification failed message to described content distributing network equipment, triggers described content distributing network equipment and sends establishment on-demand session failed message to Set Top Box;
Receive the IC-card number checking request of content distributing network equipment transmission at BackOffice equipment before, described method also comprises:
Described BackOffice equipment receiver top box, by the program authorization requests sending through electronic program guides equipment, at least carries the column numbering at IC-card ciphertext, program identification and program place in described program authorization requests;
The IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage carries described program authorization requests is decrypted to obtain IC-card plaintext;
The IC-card plaintext that described BackOffice equipment is decrypted the IC-card ciphertext that described program authorization requests is carried acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, generates and authorizes sign Purchase Token;
Described BackOffice equipment is set up the mandate sign Purchase Token of generation and the described IC-card ciphertext that described program authorization requests is carried is decrypted the corresponding relation of the IC-card plaintext of acquisition, and described corresponding relation is stored in its Purchase Token cache table;
Described BackOffice equipment sends to described electronic program guides equipment by the mandate sign Purchase Token of generation, triggers described electronic program guides equipment by described mandate sign Purchase Token and play URL(uniform resource locator) to be handed down to Set Top Box.
5. method according to claim 4, is characterized in that, described method also comprises:
If described IC-card plaintext is not empty, in described BackOffice equipment query Purchase Token cache table, whether store the target P urchase Token identical with described mandate sign Purchase Token, if had, from described Purchase Token cache table, obtain the IC-card plaintext that described target P urchase Token is corresponding;
If the IC-card plaintext that described IC-card plaintext is corresponding with described target P urchase Token is consistent, described BackOffice equipment send verification by result to described content distributing network equipment, trigger described content distributing network equipment by the pushing video streaming of program request to described Set Top Box, described verification comprises IC-card plaintext and decruption key by result.
6. method according to claim 5, is characterized in that, described method also comprises:
If do not store the target P urchase Token identical with described mandate sign Purchase Token in described Purchase Token cache table, or the IC-card plaintext that described IC-card plaintext is corresponding with described target P urchase Token is inconsistent, described BackOffice equipment sends verification failed message to described content distributing network equipment, triggers described content distributing network equipment and sends establishment on-demand session failed message to described Set Top Box.
7. method according to claim 4, is characterized in that, described method also comprises:
Whether the holding time of each the Purchase Token storing in Purchase Token cache table described in described BackOffice equipment Inspection surpasses default life cycle separately, if so, from described Purchase Token cache table, delete Purchase Token and the corresponding IC-card plaintext thereof that the holding time surpasses default life cycle.
8. method according to claim 4, is characterized in that, described method also comprises:
If the IC-card ciphertext that described program authorization requests is carried is decrypted the IC-card plaintext of acquisition for empty, if or the IC-card plaintext that the IC-card ciphertext that described program authorization requests is carried is decrypted acquisition contrasts inconsistent with pre-stored IC-card plaintext, described BackOffice equipment issues program authorization failure message to described electronic program guides equipment, triggers described electronic program guides equipment program authorization failure message is handed down to described Set Top Box.
9. method according to claim 4, is characterized in that, before the program authorization requests sending through electronic program guides electronic program guides equipment at BackOffice equipment receiver top box, described method also comprises:
Described BackOffice equipment receives the authentication request that carries Set Top Box parameters for authentication that electronic program guides equipment sends, and described Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box;
The IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage comprises described Set Top Box parameters for authentication is decrypted to obtain IC-card plaintext;
The IC-card plaintext that described BackOffice equipment is decrypted the IC-card ciphertext that described Set Top Box parameters for authentication is comprised acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, transmission authentication, is triggered described electronic program guides equipment and generates the concurrent feeding device top box displaying of electronic program guides homepage to electronic program guides equipment by result.
10. method according to claim 9, is characterized in that, described method also comprises:
If be decrypted the IC-card plaintext of acquisition in the IC-card ciphertext that described Set Top Box parameters for authentication is comprised for empty, if or the IC-card plaintext that is decrypted acquisition in the IC-card ciphertext that described Set Top Box parameters for authentication is comprised contrasts inconsistent with pre-stored IC-card plaintext, described BackOffice equipment issues authentification failure message to described electronic program guides equipment, triggers described electronic program guides equipment and issues electronic program guides homepage access failed message to described Set Top Box.
11. 1 kinds of video-on-demand control methods, is characterized in that, comprising:
The heartbeat message that Set Top Box transmission carries IC-card ciphertext is to content distributing network equipment, so that described content distributing network equipment is decrypted to obtain IC-card plaintext to described IC-card ciphertext, and when being sky, described IC-card plaintext stops the pushing video streaming of program request to described Set Top Box;
Described Set Top Box detects the video flowing of whether receiving that described content distributing network equipment pushes, if not, points out user to insert IC-card;
In Set Top Box, send the heartbeat message carry IC-card ciphertext to before described content distributing network equipment, described method also comprises:
Set Top Box carries IC-card ciphertext and authorizes the establishment on-demand session request of sign Purchase Token to content distributing network equipment to play URL(uniform resource locator) transmission, triggers described content distributing network equipment and is asked described IC-card ciphertext and authorized sign Purchase Token to be sent to Batch Processing management BackOffice equipment and carry out verification by IC-card number checking;
Described Set Top Box receives the video flowing that described content distributing network equipment pushes, and described video flowing is decoded and play; Wherein, described video flowing is that described content distributing network equipment receives verification that described BackOffice equipment sends by triggering and push after result, and described verification comprises IC-card plaintext and decruption key by result.
12. methods according to claim 11, is characterized in that, described method also comprises:
Described Set Top Box receives described content distributing network equipment and sends establishment on-demand session failed message, and points out user to insert IC-card; Wherein, described establishment on-demand session failed message is that described content distributing network equipment receives after the verification failed message that described BackOffice equipment sends and triggers and send.
13. according to the method described in claim 11 or 12, it is characterized in that, in Set Top Box, to play URL(uniform resource locator), send the establishment on-demand session request that carries IC-card ciphertext and authorize sign Purchase Token to before content distributing network equipment, described method also comprises:
Described Set Top Box, by sending program authorization requests to BackOffice equipment through electronic program guides equipment, at least carries the column numbering at IC-card ciphertext, program identification and program place in described program authorization requests;
Described Set Top Box receives mandate sign Purchase Token and the broadcasting URL(uniform resource locator) that described electronic program guides equipment issues; Wherein, described mandate sign Purchase Token is that the IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage carries described program authorization requests is decrypted, and the IC-card plaintext that obtains of deciphering generates and sends after consistent with pre-stored IC-card plaintext to described electronic program guides equipment.
14. methods according to claim 13, is characterized in that, described method also comprises:
Described Set Top Box receives the program authorization failure message that EPG equipment issues, and points out user to insert IC-card, wherein, described program authorization failure message is that the IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage carries described program authorization requests is decrypted, and when the IC-card plaintext that deciphering obtains is empty, or the IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage carries described program authorization requests is decrypted, and when the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext, by described BackOffice equipment, issuing program authorization failure message gives described electronic program guides equipment and triggers described electronic program guides equipment and be handed down to described Set Top Box.
15. methods according to claim 13, is characterized in that, in Set Top Box, by sending program authorization requests through electronic program guides equipment to before BackOffice equipment, described method also comprises:
Described Set Top Box send carry Set Top Box parameters for authentication electronic program guides homepage access request to electronic program guides equipment, trigger described electronic program guides equipment and by authentication request, described Set Top Box parameters for authentication be sent to BackOffice equipment and authenticate; Described Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box;
Described Set Top Box receives and shows the electronic program guides homepage of described electronic program guides equipment transmission; Wherein, described electronic program guides homepage is that the IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage comprises described Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, by described BackOffice equipment send authentication by result to electronic program guides equipment, trigger that described electronic program guides equipment generates and sends to Set Top Box.
16. methods according to claim 15, is characterized in that, described method also comprises:
Described Set Top Box receives the electronic program guides homepage access failed message that described electronic program guides equipment issues, and points out user to insert IC-card, wherein, the IC-card ciphertext that the decruption key that described electronic program guides homepage access failed message is described BackOffice equipment utilization storage comprises described Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is empty, or the IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage comprises described Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is inconsistent with pre-stored IC-card plaintext, by described BackOffice equipment, issue authentification failure message to described electronic program guides equipment, trigger described electronic program guides equipment and be issued to described Set Top Box.
17. 1 kinds of content distributing network equipment, is characterized in that, comprising:
Transmit-Receive Unit, the heartbeat message sending for receiving set up box, carries IC-card ciphertext in described heartbeat message;
Acquiring unit, for obtaining described IC-card ciphertext from described heartbeat message;
Decryption unit, for utilizing the decruption key of storage to be decrypted to obtain IC-card plaintext to described IC-card ciphertext;
Video flowing Dispatching Unit, when being empty at described IC-card plaintext, stops the pushing video streaming of program request to described Set Top Box;
Described Transmit-Receive Unit, the establishment on-demand session request also sending to play URL(uniform resource locator) for receiving set up box, carries IC-card ciphertext and authorizes sign Purchase Token in the request of described establishment on-demand session;
Described content distributing network equipment also comprises:
Report unit, for described IC-card ciphertext being sent to Batch Processing management BackOffice equipment with mandate sign Purchase Token by IC-card number checking request, carry out verification; And receiving and store described BackOffice equipment transmission verification by result, described verification comprises IC-card plaintext and decruption key by result;
Described video flowing Dispatching Unit, also for receiving verification that described BackOffice equipment sends by after result in the described unit that reports, by the pushing video streaming of program request to described Set Top Box.
18. content distributing network equipment according to claim 17, is characterized in that, also comprise:
Verification unit, when not being empty at described IC-card plaintext, contrasts described IC-card plaintext whether consistent with pre-stored IC-card plaintext, if consistent, notify described video flowing Dispatching Unit by the pushing video streaming of program request to described Set Top Box; If inconsistent, notify described video flowing Dispatching Unit to stop the pushing video streaming of program request to described Set Top Box;
Described video flowing Dispatching Unit, also for according to the notice of described verification unit by the pushing video streaming of program request to described Set Top Box, or stop the pushing video streaming of program request to described Set Top Box.
19. content distributing network equipment according to claim 17, is characterized in that,
The described unit that reports, also for receiving the verification failed message of described BackOffice equipment transmission and notifying described Transmit-Receive Unit;
Described Transmit-Receive Unit, also creates on-demand session failed message to described Set Top Box for reporting the notice of unit to send described in basis.
20. 1 kinds of Batch Processing management equipments, is characterized in that, comprising:
Receiving element, the IC-card number checking request sending for receiving content distributing network equipment, in number checking request of described IC-card, carry IC-card ciphertext and authorize sign Purchase Token, described IC-card ciphertext is sent to described content distributing network equipment by Set Top Box by heartbeat message;
Decryption unit, for utilizing the decruption key of storage to be decrypted to obtain IC-card plaintext to described IC-card ciphertext;
Control unit, while being empty for the IC-card plaintext in described decryption unit deciphering acquisition, sends verification failed message to described content distributing network equipment, triggers described content distributing network equipment and sends establishment on-demand session failed message to Set Top Box;
Described receiving element, the program authorization requests also sending through electronic program guides equipment for receiving set up box, the column that at least carries IC-card ciphertext, program identification and program place in described program authorization requests is numbered;
Described decryption unit, is also decrypted to obtain IC-card plaintext for the IC-card ciphertext of utilizing the decruption key of storage to carry described program authorization requests;
Verification unit, whether for contrasting IC-card ciphertext that described decryption unit carries described program authorization requests, to be decrypted the IC-card plaintext of acquisition consistent with pre-stored IC-card plaintext;
Described Batch Processing management equipment also comprises:
Authorize identify unit, for contrasting IC-card plaintext that IC-card ciphertext that described decryption unit carries described program authorization requests is decrypted acquisition in described verification unit when consistent with pre-stored IC-card plaintext, generate and authorize sign Purchase Token; And set up the mandate sign Purchase Token and the described decryption unit that generate and decipher the corresponding relation of the IC-card plaintext obtaining, and described corresponding relation is stored in its Purchase Token cache table;
Described control unit, also for the mandate sign Purchase Token that described mandate identify unit is generated, send to described electronic program guides equipment, trigger described electronic program guides equipment by described mandate sign Purchase Token and play URL(uniform resource locator) and be handed down to Set Top Box.
21. Batch Processing management equipments according to claim 20, is characterized in that, also comprise:
Query unit, while not being sky for the IC-card plaintext obtaining in described decryption unit deciphering, in inquiry Purchase Token cache table, whether store the target P urchase Token identical with described mandate sign Purchase Token, if had, from described Purchase Token cache table, obtain the IC-card plaintext that described target P urchase Token is corresponding;
Whether described verification unit is also consistent for contrasting the IC-card plaintext that IC-card plaintext that the deciphering of described decryption unit obtains is corresponding with described target P urchase Token;
Described control unit, also for contrasting IC-card plaintext that IC-card plaintext that the deciphering of described decryption unit obtains is corresponding with described target P urchase Token in described verification unit when consistent, send verification by result to described content distributing network equipment, trigger described content distributing network equipment by the pushing video streaming of program request to described Set Top Box, described verification comprises IC-card plaintext and decruption key by result.
22. Batch Processing management equipments according to claim 21, is characterized in that,
Described control unit, also for inquire described Purchase Token cache table in described query unit, do not store the target P urchase Token identical with described mandate sign Purchase Token, or contrast IC-card plaintext that IC-card plaintext that the deciphering of described decryption unit obtains is corresponding with described target P urchase Token when inconsistent in described verification unit, send verification failed message to described content distributing network equipment, trigger described content distributing network equipment and send establishment on-demand session failed message to described Set Top Box.
23. Batch Processing management equipments according to claim 20, is characterized in that, also comprise:
Overtime control unit, whether the holding time of each the Purchase Token storing in the Purchase Token cache table for detection of described mandate identify unit surpasses default life cycle separately, if so, from described Purchase Token cache table, delete Purchase Token and the corresponding IC-card plaintext thereof that the holding time surpasses default life cycle.
24. Batch Processing management equipments according to claim 20, is characterized in that,
Described control unit, also for the IC-card ciphertext of described program authorization requests being carried in described decryption unit, be decrypted, and when the IC-card plaintext that deciphering obtains is empty, or contrast IC-card plaintext that IC-card ciphertext that described decryption unit carries described program authorization requests is decrypted acquisition when whether consistent with pre-stored IC-card plaintext in described verification unit, issue program authorization failure message to described electronic program guides equipment, trigger described electronic program guides equipment described program authorization failure message is handed down to Set Top Box.
25. Batch Processing management equipments according to claim 20, is characterized in that,
Described receiving element, the authentication request that carries Set Top Box parameters for authentication also sending for receiving electronic program guides equipment, described Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box;
Described decryption unit, is also decrypted for the IC-card ciphertext of utilizing the decruption key of storage to comprise described Set Top Box parameters for authentication, to obtain IC-card plaintext;
Described verification unit, also contrasts with pre-stored IC-card plaintext for the IC-card plaintext that the IC-card ciphertext that described decryption unit is comprised described Set Top Box parameters for authentication is decrypted acquisition;
Described control unit, also for contrasting IC-card plaintext that IC-card ciphertext that described decryption unit comprises described Set Top Box parameters for authentication is decrypted acquisition in described verification unit when consistent with pre-stored IC-card plaintext, transmission authentication, is triggered described electronic program guides equipment and generates the concurrent feeding device top box displaying of electronic program guides homepage to electronic program guides equipment by result.
26. Batch Processing management equipments according to claim 25, is characterized in that,
Described control unit, the IC-card ciphertext also for the decruption key in described decryption unit utilization storage, described Set Top Box parameters for authentication being comprised is decrypted, and when the IC-card plaintext that deciphering obtains is empty, or contrast IC-card plaintext that IC-card ciphertext that described decryption unit comprises described Set Top Box parameters for authentication is decrypted acquisition when inconsistent with pre-stored IC-card plaintext in described verification unit, issue authentification failure message to described electronic program guides equipment, trigger described electronic program guides equipment and issue electronic program guides homepage access failed message to described Set Top Box.
27. 1 kinds of Set Top Box, is characterized in that, comprising:
Transmit-Receive Unit, for send carry IC-card ciphertext heartbeat message to content distributing network equipment, so that described content distributing network equipment is decrypted to obtain IC-card plaintext to described IC-card ciphertext, and when being sky, described IC-card plaintext stops order video stream to push to described Set Top Box;
Whether Tip element, receive for detection of described Transmit-Receive Unit the video flowing that described content distributing network equipment pushes, and if not, points out user to insert IC-card;
Described Transmit-Receive Unit, also, for carrying IC-card ciphertext and authorize the establishment on-demand session request of sign Purchase Token to content distributing network equipment playing URL(uniform resource locator) transmission, trigger described content distributing network equipment and ask described IC-card ciphertext and authorize sign Purchase Token to be sent to Batch Processing management BackOffice equipment and carry out verification by IC-card number checking; And the video flowing that receives described content distributing network equipment propelling movement; Wherein, described video flowing is that described content distributing network equipment receives verification that described BackOffice equipment sends by triggering and push after result, and described verification comprises IC-card plaintext and decruption key by result;
Described Set Top Box also comprises:
Decoding broadcast unit, decodes and plays for the video flowing that described Transmit-Receive Unit is received.
28. Set Top Box according to claim 27, is characterized in that,
Described Transmit-Receive Unit, the establishment on-demand session failed message also sending for receiving described content distributing network equipment;
Described Tip element, also points out user to insert IC-card when receiving the establishment on-demand session failed message that described content distributing network equipment sends at described Transmit-Receive Unit; Wherein, described establishment on-demand session failed message is that described content distributing network equipment receives after the verification failed message that described BackOffice equipment sends and triggers and send.
29. according to the Set Top Box described in claim 27 or 28, it is characterized in that,
Described Transmit-Receive Unit, also, for by sending program authorization requests to BackOffice equipment through electronic program guides equipment, at least carries the column numbering at IC-card ciphertext, program identification and program place in described program authorization requests; And receive the mandate sign Purchase Token that described electronic program guides equipment issues and play URL(uniform resource locator); Wherein, described mandate sign Purchase Token is that the decruption key of described BackOffice equipment utilization storage is decrypted described IC-card ciphertext, and the IC-card plaintext that obtains of deciphering generates and sends after consistent with pre-stored IC-card plaintext.
30. Set Top Box according to claim 29, is characterized in that,
Described Transmit-Receive Unit, the program authorization failure message also issuing for receiving described electronic program guides equipment; Wherein, described program authorization failure message is that the decruption key of described BackOffice equipment utilization storage is decrypted described IC-card ciphertext, and when the IC-card plaintext that deciphering obtains is empty, or the decruption key of the described BackOffice equipment utilization storage IC-card plaintext that described IC-card ciphertext is decrypted to acquisition is when inconsistent with pre-stored IC-card plaintext, by described BackOffice equipment, issues program authorization failure message to described electronic program guides equipment and trigger that described electronic program guides equipment issues;
Described Tip element, also when receiving the program authorization failure message that described electronic program guides equipment issues at described Transmit-Receive Unit, prompting user inserts IC-card.
31. Set Top Box according to claim 29, is characterized in that,
Described Transmit-Receive Unit, also for send carry Set Top Box parameters for authentication electronic program guides homepage access request to electronic program guides equipment, trigger described electronic program guides equipment and by authentication request, described Set Top Box parameters for authentication be sent to BackOffice equipment and authenticate; Described Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box; And the electronic program guides homepage that receives described electronic program guides equipment transmission; Wherein, described electronic program guides homepage is that the IC-card ciphertext that the decruption key of described BackOffice equipment utilization storage comprises described Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is consistent with pre-stored IC-card plaintext, by described BackOffice equipment send authentication by result to electronic program guides equipment, trigger that described electronic program guides equipment generates and sends;
Described Set Top Box also comprises:
Display unit, for the electronic program guides homepage of showing that described Transmit-Receive Unit receives.
32. Set Top Box according to claim 31, is characterized in that,
Described Transmit-Receive Unit, the electronic program guides homepage access failed message also issuing for receiving described electronic program guides equipment, wherein, described electronic program guides homepage access failed message is that the IC-card ciphertext that described BackOffice equipment comprises described Set Top Box parameters for authentication is decrypted, and when the IC-card plaintext that deciphering obtains is empty, or described BackOffice equipment IC-card ciphertext that described Set Top Box parameters for authentication the is comprised IC-card plaintext that is decrypted acquisition is when inconsistent with pre-stored IC-card plaintext, by described BackOffice equipment, issue authentification failure message to described electronic program guides equipment, trigger that described electronic program guides equipment issues,
Described Tip element, also points out user to insert IC-card for receiving at described Transmit-Receive Unit when described electronic program guides homepage is accessed failed message.
33. 1 kinds of video request program control system, is characterized in that, comprising:
Set Top Box, for send carry IC-card ciphertext heartbeat message to content distributing network equipment, and detect the video flowing whether receive that described content distributing network equipment pushes, if not, point out user to insert IC-card;
Described content distributing network equipment, the heartbeat message sending for receiving described Set Top Box, and from described heartbeat message, obtain described IC-card ciphertext; And utilize the decruption key of storage to be decrypted to obtain IC-card plaintext to described IC-card ciphertext; And when described IC-card plaintext is sky, stop the pushing video streaming of program request to described Set Top Box;
Described video request program control system also comprises:
Batch Processing management equipment, for receiving the IC-card number checking request of described content distributing network equipment transmission, and utilizes the decruption key of storage to verify that to described IC-card number the IC-card ciphertext that request is carried is decrypted to obtain IC-card plaintext; And whether store with number checking of described IC-card and ask the mandate of carrying to identify the target P urchase Token that Purchase Token is identical inquire about Purchase Token cache table when the described IC-card plaintext of deciphering acquisition is not sky in, if had, from described Purchase Token cache table, obtain the IC-card plaintext that described target P urchase Token is corresponding; And when the IC-card plaintext of the deciphering acquisition IC-card plaintext corresponding with described target P urchase Token is consistent, transmission verification is by result to described content distributing network equipment, described verification comprises IC-card plaintext and decruption key by result;
Described content distributing network equipment, the establishment on-demand session request also sending to play URL(uniform resource locator) for receiving set up box, and ask described IC-card ciphertext and authorize sign Purchase Token to be sent to described Batch Processing management equipment and carry out verification by number checking of described IC-card; And receive and store described verification that described Batch Processing management equipment sends by result, and by the pushing video streaming of program request to described Set Top Box;
Described Set Top Box, also for carrying described IC-card ciphertext and authorize the establishment on-demand session request of sign Purchase Token to content distributing network equipment playing URL(uniform resource locator) transmission; And receive the video flowing that described content distributing network equipment pushes, and described video flowing is decoded and play.
34. video request program control system according to claim 33, is characterized in that,
Described Batch Processing management equipment, while being also empty for the described IC-card plaintext obtaining in deciphering, sends verification failed message to described content distributing network equipment; Or the described IC-card plaintext obtaining in deciphering is not empty, and inquire while not storing the identical target P urchase Token of the mandate sign Purchase Token that carries with number checking request of described IC-card in described Purchase Token cache table, send verification failed message to described content distributing network equipment; Or be not empty for the described IC-card plaintext obtaining in deciphering, and inquire in described Purchase Token cache table, store and ask the mandate of carrying to identify the target P urchase Token that Purchase Token is identical with number checking of described IC-card, and when the IC-card plaintext that the described IC-card plaintext that deciphering obtains is corresponding with described target P urchase Token is inconsistent, send verification failed message to described content distributing network equipment;
Described content distributing network equipment, the verification failed message also sending for receiving described Batch Processing management equipment, and send establishment on-demand session failed message to described Set Top Box;
Described Set Top Box, the establishment on-demand session failed message also sending for receiving described content distributing network equipment, and point out user to insert IC-card.
35. according to the system described in claim 33 or 34, it is characterized in that, also comprises:
Electronic program guides equipment, the program authorization requests sending for receiving described Set Top Box, and described program authorization requests is sent to described Batch Processing management equipment, in described program authorization requests, at least carry the column numbering at IC-card ciphertext, program identification and program place;
Described Batch Processing management equipment, the program authorization requests also sending for receiving described electronic program guides equipment, the IC-card ciphertext that the decruption key of utilization storage carries described program authorization requests is decrypted to obtain IC-card plaintext; And the IC-card plaintext that the IC-card ciphertext that described program authorization requests is carried is decrypted to acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, generates and authorize sign Purchase Token; And the mandate set up generating sign Purchase Token and the described IC-card ciphertext that described program authorization requests is carried are decrypted the corresponding relation of the IC-card plaintext of acquisition, and described corresponding relation is stored in its Purchase Token cache table, and the mandate sign Purchase Token of generation is sent to described electronic program guides equipment;
Described electronic program guides equipment, also for being handed down to described Set Top Box by described mandate sign Purchase Token and broadcasting URL(uniform resource locator);
Described Set Top Box, also for sending described program authorization requests to described electronic program guides equipment, and receives described mandate sign Purchase Token and the broadcasting URL that described electronic program guides equipment issues.
36. systems according to claim 35, is characterized in that,
Described Batch Processing management equipment, the IC-card ciphertext of also for the decruption key utilizing storage, described program authorization requests being carried is decrypted, and when the IC-card plaintext that deciphering obtains is empty, issue program authorization failure message to described electronic program guides equipment; Or at the IC-card plaintext that the IC-card ciphertext that described program authorization requests is carried is decrypted to acquisition and pre-stored IC-card plaintext, contrast when inconsistent, issue program authorization failure message to described electronic program guides equipment;
Described electronic program guides equipment, the program authorization failure message also issuing for receiving described Batch Processing management equipment, and described program authorization failure message is handed down to described Set Top Box;
Described Set Top Box, the program authorization failure message also issuing for receiving described electronic program guides equipment, and point out user to insert IC-card.
37. systems according to claim 35, is characterized in that,
Described Batch Processing management equipment, the authentication request that carries Set Top Box parameters for authentication also sending for receiving electronic program guides equipment, described Set Top Box parameters for authentication at least comprises Mac address, Set Top Box version number and the set top box decodes ability of IC-card ciphertext, Set Top Box; And the IC-card ciphertext that the decruption key that utilizes storage comprises described Set Top Box parameters for authentication is decrypted, to obtain IC-card plaintext; And the IC-card plaintext that the IC-card ciphertext that described Set Top Box parameters for authentication is comprised is decrypted to acquisition contrasts with pre-stored IC-card plaintext, if contrast is consistent, send authentication by result to electronic program guides equipment;
Described electronic program guides equipment, the electronic program guides homepage access request that carries described Set Top Box parameters for authentication also sending for receiving described Set Top Box, and by authentication request, described Set Top Box parameters for authentication is sent to described Batch Processing management equipment and authenticates; And the described authentication that receives described Batch Processing management equipment transmission is by result, generates the concurrent feeding device top box of electronic program guides homepage;
Described Set Top Box, also for send carry described Set Top Box parameters for authentication electronic program guides homepage access request to described electronic program guides equipment, and the electronic program guides homepage that receives and show described electronic program guides equipment transmission.
38. according to the system described in claim 37, it is characterized in that,
Described Batch Processing management equipment, the IC-card ciphertext also for the decruption key utilizing storage, described Set Top Box parameters for authentication being comprised is decrypted, and the IC-card plaintext that obtains of deciphering is while be empty, issues extremely described electronic program guides equipment of authentification failure message; Or the IC-card plaintext that is decrypted acquisition in the IC-card ciphertext that described Set Top Box parameters for authentication is comprised and pre-stored IC-card plaintext contrast when inconsistent, issue authentification failure message to described electronic program guides equipment;
Described electronic program guides equipment, the authentification failure message also issuing for receiving described Batch Processing management equipment, and issue electronic program guides homepage access failed message to described Set Top Box;
Described Set Top Box, the electronic program guides homepage access failed message also issuing for receiving described electronic program guides equipment, and point out user to insert IC-card.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110426421.7A CN102523503B (en) | 2011-12-19 | 2011-12-19 | Video-on-demand control method and relative device and system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201110426421.7A CN102523503B (en) | 2011-12-19 | 2011-12-19 | Video-on-demand control method and relative device and system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN102523503A CN102523503A (en) | 2012-06-27 |
| CN102523503B true CN102523503B (en) | 2014-08-20 |
Family
ID=46294277
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201110426421.7A Active CN102523503B (en) | 2011-12-19 | 2011-12-19 | Video-on-demand control method and relative device and system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN102523503B (en) |
Families Citing this family (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105871982A (en) * | 2015-12-07 | 2016-08-17 | 乐视云计算有限公司 | Content pushing method, device and system |
| CN109379606A (en) * | 2018-10-11 | 2019-02-22 | 苏宁智能终端有限公司 | A kind of broadcasting method for authenticating and system |
| CN111107109A (en) * | 2020-01-08 | 2020-05-05 | 世纪恒通科技股份有限公司 | Log-in-free technology based on token |
Family Cites Families (9)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7631336B2 (en) * | 2004-07-30 | 2009-12-08 | Broadband Itv, Inc. | Method for converting, navigating and displaying video content uploaded from the internet to a digital TV video-on-demand platform |
| CN1808975B (en) * | 2006-01-26 | 2010-09-08 | 黄涛 | System and method of preventing network account from stolen |
| CN100531299C (en) * | 2006-08-25 | 2009-08-19 | 上海文广互动电视有限公司 | Method of controlling security of terminal set top box applied under environment of living broadcast and broadcast on demand |
| CN101018317A (en) * | 2007-02-15 | 2007-08-15 | 深圳市数视通信息技术有限公司 | A virtual intelligent card security authentication method and system |
| CN101083660A (en) * | 2007-05-30 | 2007-12-05 | 北京润汇科技有限公司 | Session control based IP network authentication method of dynamic address distribution protocol |
| CN100544427C (en) * | 2007-10-31 | 2009-09-23 | 北京数码视讯科技股份有限公司 | A kind of conditional receiver system of digital television and application thereof |
| CN101742236B (en) * | 2009-12-22 | 2015-06-10 | 山东泰信电子股份有限公司 | Method for preventing and countering smart card from being shared |
| CN101783929B (en) * | 2010-03-04 | 2012-01-04 | 北京惠信博思技术有限公司 | Method for sending heartbeats to video server by set top box |
| CN102064985B (en) * | 2010-11-24 | 2013-04-24 | 深圳市同洲电子股份有限公司 | Digital and intelligent remote control system and method for household electrical appliances on basis of interactive TV application |
-
2011
- 2011-12-19 CN CN201110426421.7A patent/CN102523503B/en active Active
Also Published As
| Publication number | Publication date |
|---|---|
| CN102523503A (en) | 2012-06-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US20200302031A1 (en) | Streamlined Digital Rights Management | |
| US7383438B2 (en) | System and method for secure conditional access download and reconfiguration | |
| US7933410B2 (en) | System and method for a variable key ladder | |
| US9026782B2 (en) | Token-based entitlement verification for streaming media decryption | |
| CN101796837B (en) | Secure signing method, secure authentication method and IPTV system | |
| US8086851B2 (en) | Methods for broadcasting and receiving a scrambled multimedia programme, network head, terminal, receiver and security processor for these methods | |
| US9325502B2 (en) | Identity management for transactional content | |
| US20090180614A1 (en) | Content protection of internet protocol (ip)-based television and video content delivered over an ip multimedia subsystem (ims)-based network | |
| EP2273405A1 (en) | Processing recordable content in a stream | |
| US9215505B2 (en) | Method and system for secure processing a stream of encrypted digital audio/video data | |
| CN101945249B (en) | Process stream in can recorded content | |
| CN102356640A (en) | Delivering secure iptv services to PC platforms | |
| JP2008545308A (en) | How to control access to encrypted data | |
| CN102523503B (en) | Video-on-demand control method and relative device and system | |
| CN102340702B (en) | IPTV (Internet protocol television) network playing system and rights management and descrambling method based on USB (Universal serial bus) Key | |
| CN100531364C (en) | Method for implementing parameter registration of controlled access and digital publication right management system | |
| US20160165279A1 (en) | Method of transmitting messages between distributed authorization server and conditional access module authentication sub-system in renewable conditional access system, and renewable conditional access system headend | |
| CN102497269A (en) | Bill authentication method and bill authentication system | |
| KR20120072030A (en) | The apparatus and method for remote authentication | |
| MX2007015688A (en) | Method and system for providing conditional access to data in an mhp or ocap broadcast system. | |
| CN102857821A (en) | IPTV (internet protocol television) security terminal | |
| CN100358361C (en) | Encipher and decipher method of electronic program guide | |
| CN101505402A (en) | Authentication method for uni-directional network digital television conditional receiving system terminal deciphering module | |
| CN100366082C (en) | Method of on-line user authentication in digital TV network | |
| KR20160067722A (en) | Method for tramsmitting message between distributed authorization server and cam authentication sub-system and rcas headend |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C14 | Grant of patent or utility model | ||
| GR01 | Patent grant |