The safe unit that is used for encrypted signals transmission
Invention field
The present invention relates to secure transmission system, more particularly the present invention relates to the decrypting device in this system or the fail safe of descrambling unit.An application of the present invention is a subscriber television system, no matter is radiovision, cable TV or satellite television.Yet the present invention can also be applied to the secure transmission system between remote system and the local system, and wherein the local system utilization is stored in the safe and portable medium (for example: smart card) Nei key is decrypted transmission.
Background technology
In pay television system, the encrypted or scrambling of the signal of transmission so just has only the broadcasting service user can receive this signal.Fig. 1 illustrates a kind of like this system, and in Fig. 1, " remote system " is DVB broadcast head end equipment, and " local system " is television receiver set top box decodes device.Remote system utilizes signal to be broadcast that this signal is encrypted or scrambling, and set-top box (STB) is decrypted this signal in " fixed key " that the receiver user utilization is stored in STB.This fixed key is with encrypt employed key in remote system identical.Wherein signal comprises data, and does not comprise video information, and local system has the equipment of storage data.The poor stability of this prior art is because illegally enter local system easily and duplicate this fixed key.
Fig. 2 illustrates a kind of transformation system of said system.In this system, use smart cards for storage key and data (if can use) and must when the local system joint operation, insert.This system is dangerous equally, because the channel between local system and the smart card is dangerous.The hacker can monitor the agreement between local system and the smart card, forges smart card then.
Fig. 3 (also being prior art) illustrates a kind of improvement system, wherein local system and specific smart card coupling.The pairwise key that utilization produces after matching between local system and smart card and handling is realized this matching relationship.Because each local system-smart card is to being unique, so even pairwise key is attacked, the smart card of being attacked still can not be used for other local system.Carrying out under the TV broadcasting situation, can not destroy local system-smart card to and produce serious security risk.Yet in E-business applications, a local system-smart card is destroyed to also not wishing, because in this case, smart card can be used for various uses, comprises the change storing value.
Summary of the invention
The object of the invention just provides a kind of secure decryption unit that uses in various secure transmission systems.
Therefore, aspect first, present invention resides in the safety system of the decrypting device of using in the safety signal transport service between transmitting terminal and the one or more receiving terminal, this transmitting terminal is encrypted signal, this receiving terminal is decrypted such signal that its decrypted signal key or its part are stored in the memory device removably, and this safety system comprises:
Memory is positioned at described decrypting device, is used to store the first coupling key;
Be used for the described first coupling phase-key replication to the described device that loads and unloads memory device;
Be positioned at described decrypting device, be used for to load and unload the coupling of first in memory device key and be stored in the device that the coupling of first in described memory key compares;
Has only when two first coupling key agreements the device that utilizes decrypting device that signal is decrypted; Be positioned at the device that transmitting terminal is used for periodically producing the new first coupling key and this key is sent at least one decrypting device;
Be used to extract the device that is included in the new first coupling key in this signal often by transmitting terminal; And
The new signal key that is used for extracting writes the device of described memory device.
Aspect second, the decrypting device of using in the encrypted signals transmission that the present invention relates between transmitting terminal and one or more receiving terminal, carry out, this receiving terminal is decrypted this class signal that its decrypted signal key or its part are stored in the memory device removably, and this decrypting device comprises:
Memory is used to store the first coupling key;
Be used for the described first coupling phase-key replication to the described device that loads and unloads memory device;
Be used for to be stored in the device that first coupling key that can load and unload in the memory device and the first coupling key that is stored in the described memory compare;
Have only when two first coupling key agreements, just the device that signal is decrypted;
Be used to extract the device that is included in the new first coupling key in this signal often by transmitting terminal; And
The new signal key that is used for extracting writes the device of described memory device.
In this specification, term " encryption " and " deciphering " comprise " scrambling " and " descrambling " process respectively.In addition, " deciphering " comprise that " decoding " process and " decrypting device " have equivalent meaning.
Description of drawings
Fig. 1 illustrates to utilize has the block diagram that carries out encrypted transmission (prior art) that is arranged on the decruption key in the local decryption device;
Fig. 2 illustrates not only identical with system shown in Figure 1 system, but also comprises decruption key (prior art) block diagram that uses jointly and be stored in local decryption device in the smart card;
Fig. 3 illustrates and utilizes pairwise key to make the channel safety between local system and the smart card carry out improved system (prior art) to system shown in Figure 2;
Fig. 4 illustrates the block diagram that is used for overview explanation system according to the invention;
Fig. 5 illustrates and realizes more more detailed block diagram of the present invention.
Embodiment
For user's television broadcasting system, the preferred embodiments of the present invention are described now with reference to figure 4 and Fig. 5.Above-mentioned technology can be used for providing fail safe to any data that are stored in the portable memory apparatus equally.The broadcasting equipment that comprises remote system 1 produces TV signal, is utilizing before known encryption device 2 transmits, and TV station encrypts TV signal.Target local equipment 3 (is set-top box for user's TV) receives this encrypted broadcast signals, and keep to encrypt till the key of the signal cipher key match that will use with TV station is delivered to the deciphering module of subscriber equipment 3.This signal key is stored in safety device 6, and safety device is smart card preferably.When being electrically connected (insertion card reader) with local device, the signal key is sent to the decrypting device of local device 3, and broadcast singal is decrypted to be presented on the television receiver.
Smart card 6 mates to guarantee that smart card can not be used to another local system with local system 3.Local system and smart card are respectively provided to few " dynamically " key, " dynamically " key is compared coupling after, local system just can be visited the signal that is stored on the card or other protects key or data.Just be meant the key of can be at random or changing periodically by " dynamically ".This Dynamic matching key has improved fail safe greatly than static keys, to safeguard the integrality of card or channel.
Dynamic key can be single key, also can be a plurality of combination of keys that produce respectively.One be can change and key, remote cipher key 10 formed.Be that new Dynamic matching key 10 can be produced by key generator 4, and send at the broadcast singal that from the data-signal of remote cipher key interface 5, is extracted by STB, by interface ciphering engine 8 it is written into memory 7 then, crypto engine 8 writes smart card 6 by intelligent card interface 9 with new key conversely.
In this preferred embodiment, use 3 keys to be used for the protection card interface altogether.Except remote cipher key 10, also can use second dynamic key 11 and static keys 12, with further raising fail safe.
Second key 11 is random numbers that often change.It is in the local generation of STB3.Set-top box has software control random key maker, and it produces a new key every a period of time.In the simplest operational mode, produce a key 11 at every turn, duplicate this new key and store it in the safety device 16 memory address 14 (shown in the dotted line in Fig. 5 13).Produce the process of new random key and have only corresponding secret key in this key and the safety device to mate and just can carry out the requirement of decrypted signal process, be meant safety device only be used for when primary importance produces the specific STB of this key useful.
The 3rd key 12 can be stored into the storage address 15 in the safety device 6 and be used for further guaranteeing STB and the safety device coupling.This is a static coupling key, it remain unchanged and for example can by the secret sequence number of STB derive or with the secret sequence number equivalence of STB, with this secret sequence number initial duplicate when inserting this safety device and permanent storage to safety device.
In a kind of more complicated operational mode according to the present invention, do not duplicate this 3 keys 10,11 and 12, their couplings respectively between STB3 and card 6, and they are combined form a combination (change with changeable) dynamic key 16.No matter whether this key changes, and all utilizes STB3 that this phase-key replication is arrived card memory address 17.Interface ciphering engine 8 and 18 continues the key that remains in the STB is compared with the key that remains in the card.
Be used for signal and data that the signal from the remote system to the local system or data are decrypted are stored in card memory address 19 (data key mapping), and read this address by data encryption engine 20.
In one embodiment, the remote cipher key 10 of a part that is used as the Dynamic matching key is identical with the data key that is used to decipher the signal that sent by remote system or data, and the Dynamic matching key is guaranteed the fail safe of STB to card.Therefore it is copied to data key mapping 19 from remote cipher key mapping 21.
Pairing process or initialization procedure can be set up local key 12.In the pairing process, for example produce local key according to local system ID, smart card ID and the remote cipher key group that produces by remote system.In order to improve randomness, use the set of cipher key relative with single key.Right for specific local system and smart card, the local key that is produced is static.When from remote system receiving remote key, remote cipher key is stored in the remote cipher key mapping table.
No matter when produce or receive new random key or new remote cipher key at random, all just carry out Synchronous Processing between local system and smart card, the result produces the Dynamic matching key of renewal.For example carry out Synchronous Processing as follows:
(1) according to initial dynamic key, local system and smart card communications; (2) exist check to communicate the test period of process according to the Dynamic matching key that upgrades; (3) if be up to the standards, in this case renewal process is confirmed usually so; (4) if disqualified upon inspection promptly mean also to have some fault, then display alarm message.
The purposes of random key is to guarantee even connect designer (designer of design cryptographic algorithm) to decode this intelligent card interface.