CN1972433B - Real-time authentication apparatus for digital TV transmission stream and television device with same - Google Patents

Real-time authentication apparatus for digital TV transmission stream and television device with same Download PDF

Info

Publication number
CN1972433B
CN1972433B CN 200510115048 CN200510115048A CN1972433B CN 1972433 B CN1972433 B CN 1972433B CN 200510115048 CN200510115048 CN 200510115048 CN 200510115048 A CN200510115048 A CN 200510115048A CN 1972433 B CN1972433 B CN 1972433B
Authority
CN
China
Prior art keywords
digital
unit
transport stream
digital signature
hash calculation
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Expired - Fee Related
Application number
CN 200510115048
Other languages
Chinese (zh)
Other versions
CN1972433A (en
Inventor
荆继武
冯登国
许良玉
王晶
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Graduate School of CAS
University of Chinese Academy of Sciences
Original Assignee
University of Chinese Academy of Sciences
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by University of Chinese Academy of Sciences filed Critical University of Chinese Academy of Sciences
Priority to CN 200510115048 priority Critical patent/CN1972433B/en
Publication of CN1972433A publication Critical patent/CN1972433A/en
Application granted granted Critical
Publication of CN1972433B publication Critical patent/CN1972433B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Abstract

This invention discloses one digital television transmission real-time safety identification device, which comprises flow unit, complex and data identification and control unit, certificates extraction and test unit, digital signature unit and control logic unit, wherein, the digital television transmission flow identification device can test the received digital television transmission flow. This invention also discloses one television device for digital television transmission flow for safety identification device.

Description

Digital TV transmission stream real-time authenticating device and have the television equipment of this device
Technical field
The present invention relates to digital television techniques, the television equipment that is specifically related to digital TV transmission stream actual time safety authenticate device and has this safety certification device.
Background technology
Along with science and technology development, digital television techniques arises at the historic moment.Because digital television techniques has advantages such as transmission quality height, scope is wide, the user is many, speed is fast, will replace traditional simulated television gradually, thereby has boundless market prospects.
Fig. 1 shows the basic structure of existing digital television broadcasting system.As can be seen from Figure 1, a digital television broadcasting system 100 comprises that TV programme provides subsystem 101, TV signal broadcast subsystem 102, network transmit subsystem 103 and terminal plays subsystem 104.Wherein, television programming provider provides subsystem 101 to provide the digital television program transport stream to TV signal broadcast subsystem 102 by TV programme; TV signal broadcast subsystem 102 will provide the transport stream of subsystem 101 to send to network transmit subsystem 103 from TV programme; Network transmit subsystem 103 will be sent to terminal plays subsystem 104 by wired or satellite transmits mode from the transport stream of TV signal broadcast subsystem 102; Terminal plays subsystem 104, but the digital television in the user family or have the simulated television of the set-top box of receiving digital signals just, then receive the transport stream of automatic network transmit subsystem 103, and play, thereby the digital television program that makes the user can watch television programming provider to provide by the mode that video shows.
Above-mentioned digital television broadcasting system is as a kind of new application model, and its fail safe also has the new feature that is different from simulated television.Specifically, present digital television broadcasting system mainly faces following safety problem:
(1) how realization condition receives, and just has only the paying customer to receive, and non-paying customer then can not receive;
(2) how to realize copyright protection, thereby guarantee the interests of television programming provider effectively;
(3) how to prevent that television programming provider from broadcasting illegal TV programme signal, for example broadcast laws such as relating to undue violence and forbid the content broadcasted;
(4) how to prevent that unauthorized person from transmitting the illegal TV programme of network insertion by controlling wired or satellite etc.
In order to solve first and second problems; require digital television broadcasting system to have confidentiality; just protect the fail safe of digital television signal; the person deciphers information encrypted to prevent not have the key; guarantee to have only the paying customer just can watch digital television program like this, but not the paying customer can not watch then.Simultaneously,, also guaranteed the copyright of digital television program conscientiously, and thereby guaranteed the interests of television programming provider because other user except the paying customer can not arbitrarily watch.
In the prior art, first and second problems have obtained solution to a certain extent, but third and fourth problem but never has practical solution, thereby have reduced the fail safe of whole digital television broadcasting system.
Summary of the invention
In view of this, the present invention is devoted to the television equipment that a kind of digital TV transmission stream actual time safety authenticate device is provided and has this safety certification device, by with the cooperation of digital television broadcasting system transmitting terminal, to prevent that effectively television programming provider from broadcasting illegal TV programme signal and preventing that effectively unauthorized person from transmitting the illegal TV programme of network insertion by controlling wired or satellite etc.
According to above-mentioned purpose, the invention provides a kind of digital TV transmission stream actual time safety authenticate device and comprise:
Dividing cell 301, the digital TV transmission stream that is used for receiving from transmission network send to control logic unit 304 and demultiplexing and identification of data packets control unit 302 respectively;
Demultiplexing and identification of data packets control unit 302, be used to discern the transport stream that receives, and come commands for controlling logical block 304 whether to export described transport stream data packet by identification to transport stream data packet, when initially receiving transport stream, receive the bag that comprises Program Association Table PAT information and comprise other bags of receiving before the bag of Program Map Table PMT information and will abandon and not send, and, the basic bag that separated transmission stream comprises, signature packets, basic bag is sent to digital signature authentication unit 305, comprising digital signature, the signature packets of digital permission certificate sends to certificate and extracts and authentication unit 303;
Certificate extracts and authentication unit 303, be used for extracting the digital permission certificate from signature packets, and whether the digital permission certificate that higher level's certification authentication of utilization oneself preservation is extracted is legal, under legal situation, digital signature result and the PKI that is included in the digital permission certificate are sent to digital signature authentication unit 305, stop output transport stream in the illegal situation control logic unit 304 that sends a notice, if there is not the digital permission certificate in the signature packets, then directly digital signature result is sent to digital signature authentication unit 305;
Digital signature authentication unit 305, be used for verifying according to the digital signature result that is received from certificate extraction and authentication unit 303 whether the basic bag that is received from demultiplexing and identification of data packets control unit 302 is correct, stop output transport stream in the situation of the validation failure control logic unit (304) that gives an order, at the correct situation of checking control logic unit (304) output transport stream that gives an order; With
Control logic unit 304 is used for according to the instruction that receives transport stream being exported processing or being stopped output.
The functional unit that does not have other between control logic unit 304 and the dividing cell 301.
Digital signature authentication unit 305 comprises:
PKI decrypting device 313 is used to use the PKI that is received from certificate extraction and authentication unit 303 that digital signature result is decrypted, and the Hash calculation end value that the digital signature device after the deciphering 211 is generated sends to Hash comparing unit 315;
Hash calculation unit 314, the basic bag that is used for reception is explained by oneself multiplexing and identification of data packets control unit 302 carries out Hash calculation, obtains the Hash calculation end value;
Hash comparing unit 315, be used for the Hash calculation end value of comparative figures signature apparatus 211 generations and the Hash calculation end value that Hash calculation unit 314 generates, at the situation of two values coupling control logic unit 304 output transport streams that give an order, ELSE instruction control logic unit 304 stops output transport stream.
Demultiplexing and identification of data packets control unit 302 send segment information to Hash calculation unit 314; Hash calculation unit 314 carries out Hash calculation according to segment information to basic bag, obtains the Hash calculation end value.
This digital TV transmission stream real-time authenticating device forms independent chip, perhaps is integrated on the existing chip of television equipment.
If transport stream is the data more than one road program, demultiplexing and identification of data packets control unit 302 are further used for selecting the data of one road program from described each road program.
A kind of television equipment of described transmission flow real-time authenticating device comprises " condition receiving element " and " receiving the decode the unit ", digital TV transmission stream actual time safety authenticate device is positioned between described " condition receiving element " and " receiving the decode the unit ", the transport stream that is received from the condition receiving element is authenticated, and will output to the described unit that receives the decode through the transport stream of safety certification.
In the present invention, owing to issue a digital license passport for each television programming provider at the digital broadcast television transmitter side, television programming provider need carry out digital signature to transport stream when TV programme is provided, and the digital permission certificate of digital signature result and oneself is added to together is sent to end side in this transport stream, extract the digital permission certificate by a brand-new digital TV transmission stream actual time safety authenticate device and it is verified in end side like this, extract digital signature result and it is verified, and under the situation that any one checking is not passed through, abandon this transport stream, only under the situation that two checkings are all passed through, television equipment just can be play the pairing TV programme of this transport stream.
If unauthorized person transmits the illegal TV programme of network insertion by controlling wired or satellite etc. like this, because unauthorized person does not have the digital permission certificate of program provider, therefore transport stream can't be by checking, the illegal TV programme of being inserted can be dropped in end side, even unauthorized person has obtained the digital permission certificate of program provider by various means, can be because it does not have private key yet can not be by the checking of digital signature result, thereby make the illegal TV programme of inserting be dropped.Therefore, the present invention can prevent effectively that unauthorized person from transmitting the illegal TV programme of network insertion by controlling wired or satellite etc.
Simultaneously, transport stream sends to end side because television programming provider must be added to the digital permission certificate of oneself, and can extract this digital permission certificate in digital TV transmission stream actual time safety authenticate device.If therefore legal television programming provider has been play illegal TV programme, can find the source of this illegal TV programme so at an easy rate by the digital permission certificate of following this illegal TV programme, just be which television programming provider provides this illegal programs.Be aided with other criminal or economic punishment measures then and punish, other program provider of preparing to play illegal programs is caused fright, thereby prevented that from the source television programming provider from broadcasting illegal TV programme signal.
In sum, the present invention has greatly improved the fail safe of digital television broadcasting.
In addition, the present invention also has good compatibility, just as long as a safety certification device is installed on existing television equipment, this safety certification device can not influence the structure and the work of existing television equipment, thereby realization and existing equipment is seamless integrated.
Description of drawings
Fig. 1 is the schematic diagram according to the digital television broadcasting system of prior art.
Fig. 2 is the schematic diagram according to digital television broadcasting system of the present invention.
Fig. 3 is the general structure schematic diagram of safety certification device according to an embodiment of the invention.
Fig. 4 is the concrete structure schematic diagram of safety certification device according to an embodiment of the invention.
Fig. 5 is the structural representation that has the digital television devices of safety certification device.
Embodiment
The present invention is described in detail below in conjunction with the drawings and specific embodiments.
Fig. 2 shows the schematic diagram according to digital television broadcasting system of the present invention.As shown in Figure 2, digital television broadcasting system 200 according to the present invention provides subsystem 201, TV signal broadcast subsystem 202, network transmit subsystem 203 and the terminal plays subsystem 204 except comprising TV programme, comprises further that also the digital permission certificate issues subsystem 205.The digital permission certificate is issued subsystem 205 and is used for providing subsystem 201 to issue the digital permission certificate to TV programme, and sends this certificate to TV programme subsystem 201 is provided, and uses for subsequent operation.
For different TV programme provides subsystem 201, mutually different digital permission certificate can be provided, that is to say that the digital permission certificate is unique, two TV programme can not occur provides subsystem 201 to have the situation of same numbers license passport.Here TV programme subsystem 201 and television programming provider can be one-to-one relationships, also can be that a television programming provider has a plurality of TV programme subsystems 201, for example can there be a plurality of channels or a plurality of making department in TV station, and each channel or each making department can have a digital license passport independently like this.Digital license is issued system 205 and is actually system of a certificate verification mechanism (CA).
When specifically issuing the digital permission certificate, it is right to need TV programme subsystem 201 at first to generate a public and private key, TV programme subsystem 201 uses PKI wherein to issue subsystem 205 application digital permission certificates to the digital permission certificate then, the digital permission certificate is issued subsystem 205 and is generated a digital license passport for this TV programme provides subsystem 201, wherein comprises the PKI of this public and private key centering.Then, the digital permission certificate is issued digital permission certificate that subsystem 205 will comprise PKI and is sent to TV programme subsystem 201 is provided.
TV programme of the present invention provides subsystem 201 further to comprise TV programme digital signature device 211.Digital signature device 211 uses the private key of the public and private key centering that oneself generates that the TV programme transport stream is carried out digital signature, then digital signature result and digital permission certificate are added to and send in the transport stream of network transmit subsystem 203, like this, at least comprise the basic bag that comprises audio frequency and video and data message, the signature packets that comprises digital signature and digital permission certificate information in the transport stream, also can comprise the bag that comprises Program Association Table (PAT), the bag that comprises program map table (PMT) etc. in this transport stream.
Preferably transport stream is carried out segmentation in the present invention, it is one section transport stream that the transport stream data packet that comprises specific quantity can be set, for example 200 transport stream data packet are one section, respectively each section being carried out Hash (hash) then calculates, use private key to carry out digital signature to result of calculation, for example carry out asymmetric cryptographic algorithm (RSA) signature operation.Here specifically how carrying out Hash calculation and how carrying out the digital signature operation is known to those skilled in the art, therefore no longer describes in detail.
Above-mentionedly transport stream to be carried out segmentation respectively each section to be carried out digital signature then to be the program of being distorted in order can in time finding in each relatively short time cycle, thereby do not influence the fluency of playing programs, when system runs into security attack, guarantee normally watching of TV programme to a greater extent, and making the checking to transport stream have real-time.
Digital signature device 211 is added to digital signature result and digital permission certificate in the original transport stream, and along with this transport stream together is sent to end side through TV signal broadcast subsystem 202 and network transmit subsystem 203.The unperturbed mode is adopted in the stack here, for example the digital signature result of about 6K bit is packaged as the transport stream data packet of standard, transmission after being sent completely by one section transport stream of being signed is perhaps inserted described transport stream data packet in next section transport stream and is sent.
At terminal plays subsystem 204 of the present invention, just digital television or for example set-top box can receiving digital signals similar device in, digital TV transmission stream actual time safety authenticate device 213 further is installed, safety certification device stores and is used to verify that TV programme provides higher level's certificate of the certificate of subsystem 201, whether be used for the digital permission certificate that superposes according to this higher level's certification authentication transport stream legal, and whether the digital signature result of checking transport stream is correct, only under situation by described two judgements, terminal plays subsystem 204 is play the pairing TV programme of this transport stream, otherwise abandons this transport stream.
Specify the structure and the operation principle of safety certification device 213 according to an embodiment of the invention below with reference to Fig. 3 and Fig. 4.
As shown in Figure 3, safety certification device 213 comprises dividing cell 301, demultiplexing and identification of data packets control unit 302, certificate extraction and authentication unit 303, digital signature authentication unit 305, control logic unit 304.After the transport stream incoming terminal that is superimposed with digital signature is play subsystem 204, the dividing cell 301 of safety certification device 213 will be entered directly.The digital TV transmission stream that dividing cell 301 will receive from transmission network is divided into two-way, one tunnel transport stream is sent to control logic unit 304, another road transport stream is sent to demultiplexing and identification of data packets control unit 302, and promptly dividing cell 301 sends the transport stream of receiving to control logic unit 304 and demultiplexing and identification of data packets control unit 302 respectively.The packet that demultiplexing and 302 identifications of identification of data packets control unit are received, audio frequency and video will be comprised in the transport stream, the basic bag of data message and comprise digital signature and the signature packets of digital permission certificate information is separated into two parts, promptly wrapped substantially, and obtain digital signature and digital permission certificate, if multi-channel program is arranged, demultiplexing and identification of data packets control unit 302 can select one road program to verify, or each road program all verified, can select at random or select when selecting one road program according to other information, as control command etc., and demultiplexing and identification of data packets control unit 302 come commands for controlling logical block 304 whether to export described transport stream data packet by the identification to packet, when initially receiving transport stream, because will obtain transport stream, so will abandon and not send receiving the bag that comprises PAT information and comprise other bags of receiving before the bag of PMT information according to bag that comprises PAT information and the bag that comprises PMT information; In addition, demultiplexing and identification of data packets control unit 302 send to digital signature authentication unit 305 to the fundamental packets of described program, the signature packet that comprises described digital signature, digital permission certificate is sent to certificate extract and authentication unit 303; Certificate extracts and authentication unit 303 extracts the digital permission certificate from signature packet, and whether the digital permission certificate that higher level's certification authentication of utilization oneself preservation is extracted is legal, under legal situation, digital signature result and the PKI that is included in the digital permission certificate are sent to digital signature authentication unit 305, stop output transport stream in the illegal situation control logic unit 304 that sends a notice; If there is not the digital permission certificate in the signature packet, then directly digital signature result is sent to digital signature authentication unit 305; Whether digital signature authentication unit 305 is correct according to the basic bag that the signature result verification that is received from certificate extraction and authentication unit 303 is received from demultiplexing and identification of data packets control unit 302, at correct situation control logic unit 304 output transport streams that give an order, ELSE instruction control logic unit 304 stops output transport stream.
Certificate extracts and authentication unit 303 stores higher level's certificate of the digital permission certificate that is used to verify program provider, receiving digital signature and digital license postscript, therefrom extract the digital permission certificate, whether the digital permission certificate of higher level's certification authentication extraction of use oneself is legal then, if digital signature result and the PKI that is included in the digital permission certificate are sent to digital signature authentication unit 305; ELSE instruction control logic unit 304 abandons this transport stream.
Whether digital signature authentication unit 305 is correct according to the basic bag that the signature result verification that is received from certificate extraction and authentication unit 303 is received from demultiplexing and identification of data packets control unit 302, at correct situation control logic unit 304 output transport streams that give an order, ELSE instruction control logic unit 304 stops output transport stream.
Can adopt various feature extraction algorithms that transport stream is verified in proof procedure, only be that example is done explanation in more detail with the hash algorithm among the present invention.With reference to figure 4, digital signature authentication unit 305 can specifically comprise PKI decrypting device 313, Hash calculation unit 314, Hash comparing unit 315.In this case, certificate extract and authentication unit 303 after verifying that the digital permission certificate is legal, the PKI that comprises in digital signature and the digital permission certificate is sent to PKI decrypting device 313 in the digital signature authentication unit 305.PKI decrypting device 313 utilizes the PKI that comprises in the digital permission certificate that digital signature result is decrypted, thereby obtains the Hash calculation end value, and this Hash calculation end value is sent to Hash comparing unit 315.Hash calculation unit 314 carries out Hash calculation according to segment information to the fundamental packets of the transport stream of removing digital signature, then the Hash calculation result who obtains is sent to Hash comparing unit 315, described segment information is from demultiplexing and identification of data packets control unit 302, and this segment information can be the control character of Hash calculation start-stop.The fundamental packets that Hash calculation unit 314 in the digital signature authentication unit 305 receives is from demultiplexing and identification of data packets control unit 302.
Hash comparing unit 315 relatively is received from the Hash calculation end value after the deciphering of PKI decrypting device 313 and is received from the Hash calculation end value of the new calculating of Hash calculation unit 314, if two value couplings, for example equate, then indicate 304 checkings of control logic unit to pass through, control logic unit 304 output transport streams, so that data stream is carried out subsequent treatment, the user just can see the digital television program that program provider provides like this; On the contrary, if two values do not match, Hash comparing unit 315 indication control logic unit 304 abandon this transport stream, and control logic unit 304 is carried out this transport stream according to the indication of Hash comparing unit 315 and abandoned operation, and the user just can not see illegal TV programme like this.The functional unit that does not have other between control logic unit 304 and the dividing cell 301, that is to say that transport stream can directly be sent to control logic unit 304 and not delay from dividing cell 301, processing such as checking for transport stream are carried out in other unit, so just can guarantee the real-time transmission of transport stream, make not postpone when the user watches program.
Fig. 5 shows a structural representation that is equipped with according to the television equipment of digital TV transmission stream actual time safety authenticate device of the present invention, and the digital TV transmission stream actual time safety authenticate device here is installed in this television equipment with the form of an independent safety device.Digital TV transmission stream actual time safety authenticate device is installed between television equipment " condition receiving element " and " receiving the decode the unit ", reception is from the transport stream of condition receiving element, and will output to the unit that receives the decode of this television equipment through the transport stream of safety certification.
Specifically, the tuned cell that receives the decode in this television equipment in the unit is responsible for radio frequency reception, frequency conversion, filtering and automatic gain control etc., and will handle signal interference problem well, common disturbs, faces problem such as channel interference as image signal.The demodulating unit that receives the decode in the unit is used for the analog signal that receives is become digital signal, digital television signal transport stream through above-mentioned processing enters safety device provided by the invention through the condition receiving element, if safety certification success, just successfully by above-mentioned checking to digital license passport and digital signature result, transport stream will output to basic stream demultiplexing and the audio/video decoding unit that receives the decode the unit from safety device, carry out to pass through display and audio amplifier difference playing image and sound after the Voice ﹠ Video decoding, thereby make the user can see digital television program.Therefore other unit in this television equipment describe in detail here no longer one by one owing to be the existing unit that does not have direct relation with the present invention all.
In the present embodiment, transport stream is carried out segmentation, then each section is carried out Hash calculation and digital signature, certainly can understand, also can be undertaken, as long as can in transport stream, superpose digital signature result and digital permission certificate by other modes.
Digital TV transmission stream actual time safety authenticate device of the present invention can be chip form, for example can form an independent chip, then this chip is integrated in digital television or the set-top box.In addition, safety certification device also can be integrated on the existing chip, for example on the decoder chip.
Be that example has illustrated the present invention above with the digital TV transmission stream, thought of the present invention can also be applied among the IPTV, like this a safety certification device can be installed in the router of IP network, thereby the transport stream of transmitting in the IP network is authenticated.
Therefore being appreciated that above-mentioned only is displaying to spirit of the present invention, rather than restriction.

Claims (7)

1. digital TV transmission stream actual time safety authenticate device, described transport stream comprises the basic bag that comprises audio frequency and video and data message, the signature packets that comprises digital signature and digital permission certificate information at least, it is characterized in that this device comprises:
Dividing cell (301), the digital TV transmission stream that is used for receiving from transmission network send to control logic unit (304) and demultiplexing and identification of data packets control unit (302) respectively;
Demultiplexing and identification of data packets control unit (302), be used to discern the transport stream that receives, and come commands for controlling logical block (304) whether to export described transport stream data packet by identification to transport stream data packet, when initially receiving transport stream, receive the bag that comprises Program Association Table PAT information and comprise other bags of receiving before the bag of Program Map Table PMT information and will abandon and not send, and, the basic bag that separated transmission stream comprises, signature packets, described basic bag is sent to digital signature authentication unit (305), the described digital signature that comprises, the signature packets of digital permission certificate sends to certificate and extracts and authentication unit (303);
Certificate extracts and authentication unit (303), be used for extracting the digital permission certificate from signature packets, and whether the digital permission certificate that higher level's certification authentication of utilization oneself preservation is extracted is legal, under legal situation, digital signature result and the PKI that is included in the digital permission certificate are sent to digital signature authentication unit (305), stop output transport stream in the illegal situation control logic unit (304) that sends a notice, if there is not the digital permission certificate in the signature packets, then directly digital signature result is sent to digital signature authentication unit (305);
Digital signature authentication unit (305), be used for verifying according to the digital signature result that is received from certificate extraction and authentication unit (303) whether the basic bag that is received from demultiplexing and identification of data packets control unit (302) is correct, stop output transport stream in the situation of the validation failure control logic unit (304) that gives an order, at the correct situation of checking control logic unit (304) output transport stream that gives an order; With
Control logic unit (304) is used for according to the instruction that receives transport stream being exported processing or being stopped output.
2. device according to claim 1 is characterized in that, does not have other functional unit between described control logic unit (304) and the described dividing cell (301).
3. device according to claim 1 is characterized in that, described digital signature authentication unit (305) comprising:
PKI decrypting device (313), be used for using the PKI that is received from certificate extraction and authentication unit (303) that digital signature result is decrypted, the Hash calculation end value that the digital signature device (211) after the deciphering is generated sends to Hash comparing unit (315);
Hash calculation unit (314) is used for that reception is explained by oneself basic bag multiplexing and identification of data packets control unit (302) and carries out Hash calculation, obtains the Hash calculation end value;
Hash comparing unit (315), be used for the Hash calculation end value of comparative figures signature apparatus (211) generation and the Hash calculation end value that Hash calculation unit (314) generate, at the situation of two values coupling control logic unit (304) output transport stream that gives an order, ELSE instruction control logic unit (304) stops output transport stream.
4. digital TV transmission stream actual time safety authenticate device according to claim 3 is characterized in that, it is one section transport stream that the transport stream data packet that comprises specific quantity is set,
Described demultiplexing and identification of data packets control unit (302) are further used for sending segment information to Hash calculation unit (314);
Hash calculation unit (314) is further used for according to segment information basic bag being carried out Hash calculation, obtains the Hash calculation end value.
5. according to the arbitrary described digital TV transmission stream actual time safety authenticate device of claim 1 to 4, it is characterized in that described digital TV transmission stream actual time safety authenticate device forms independent chip, perhaps is integrated on the existing chip of television equipment.
6. according to the arbitrary described digital TV transmission stream actual time safety authenticate device of claim 1 to 4, it is characterized in that, if described transport stream is the data more than one road program, described demultiplexing and identification of data packets control unit (302) are further used for selecting the data of one road program from described each road program.
7. television equipment that has the described device of claim 1, described television equipment comprises " condition receiving element " and " receiving the decode the unit ", it is characterized in that, digital TV transmission stream actual time safety authenticate device is positioned between described " condition receiving element " and " receiving the decode the unit ", the transport stream that is received from the condition receiving element is authenticated, and will output to the described unit that receives the decode through the transport stream of safety certification.
CN 200510115048 2005-11-25 2005-11-25 Real-time authentication apparatus for digital TV transmission stream and television device with same Expired - Fee Related CN1972433B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN 200510115048 CN1972433B (en) 2005-11-25 2005-11-25 Real-time authentication apparatus for digital TV transmission stream and television device with same

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN 200510115048 CN1972433B (en) 2005-11-25 2005-11-25 Real-time authentication apparatus for digital TV transmission stream and television device with same

Publications (2)

Publication Number Publication Date
CN1972433A CN1972433A (en) 2007-05-30
CN1972433B true CN1972433B (en) 2010-11-17

Family

ID=38112977

Family Applications (1)

Application Number Title Priority Date Filing Date
CN 200510115048 Expired - Fee Related CN1972433B (en) 2005-11-25 2005-11-25 Real-time authentication apparatus for digital TV transmission stream and television device with same

Country Status (1)

Country Link
CN (1) CN1972433B (en)

Families Citing this family (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102970582A (en) * 2012-11-23 2013-03-13 四川长虹电器股份有限公司 Digital certificate transmission method
CN105224875B (en) * 2015-11-13 2018-04-06 上海斐讯数据通信技术有限公司 The secure startup system and method for a kind of terminal
CN108055573B (en) * 2017-12-22 2020-12-08 深圳Tcl数字技术有限公司 Data processing method and smart television
CN110868641B (en) * 2018-08-28 2021-12-07 中国电信股份有限公司 Method and system for detecting validity of live broadcast source

Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1522069A (en) * 2003-02-14 2004-08-18 清华大学 A method for preventing illegal broadcasting in cable digital TV broadcasting
CN1592126A (en) * 2003-08-27 2005-03-09 三星电子株式会社 Digital multimedia broadcasting receiver and method for reproducing digital multimedia data

Patent Citations (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN1522069A (en) * 2003-02-14 2004-08-18 清华大学 A method for preventing illegal broadcasting in cable digital TV broadcasting
CN1592126A (en) * 2003-08-27 2005-03-09 三星电子株式会社 Digital multimedia broadcasting receiver and method for reproducing digital multimedia data

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
王晶,荆继武,高能,向继.一种数字电视节目提供商许可证管理系统.全国网络与信息安全技术研讨会2005论文集下册.2005,(2005),36-41页. *

Also Published As

Publication number Publication date
CN1972433A (en) 2007-05-30

Similar Documents

Publication Publication Date Title
CN100484233C (en) Safety certification device for digital TV signal, and TV equipment with the device
CN100584008C (en) Scrambling non-scrambling transmission flow real-time authenticating device and television device with same
KR101449478B1 (en) Digital tv conditional access system and receiving method thereof
CN100484232C (en) Digital TV broadcast system and method
CN101051906B (en) Method for transmitting and receiving stream type media and certifying system for stream type media
CN101902477B (en) Transmission system, reception system, the recognition methods of media stream and system
EP2802152B1 (en) Method for secure processing a stream of encrypted digital audio / video data
CN105939484A (en) Audio/video encrypted playing method and system thereof
CN102724568A (en) Authentication certificates
CN103444195A (en) Content encryption
CN101449511A (en) Methods for broadcasting and receiving a scrambled multimedia programme, network head, terminal, receiver and security processor for these methods
CN102075812B (en) Data receiving method and system of digital television
KR20060064469A (en) Apparatus and method for protecting multicast streamed motion picture files
CN1972433B (en) Real-time authentication apparatus for digital TV transmission stream and television device with same
RU2605923C2 (en) Secure transmission method and apparatus for transport stream
CN110868641B (en) Method and system for detecting validity of live broadcast source
KR20160003675A (en) Method and device to embed watermark in uncompressed video data
WO2006042467A1 (en) A processing method in accessing catv signal
KR20030036108A (en) Digital contents processing apparatus, digital contents processing system, digital broadcasting system, digital contents processing method, computer-readable storage medium, and computer program
CN101500156A (en) Information ciphering, deciphering method and apparatus and information ciphering and deciphering system
CN105744321A (en) Broadcasting receiving apparatus and method for controlling thereof
CN103237245A (en) Vehicle-mounted DVB (Digital Video Broadcasting) conditional access system for identifying set-top-box identity
CN201142735Y (en) Digital television conditional access system
CN114244615A (en) Signal self-encryption system of communication equipment
JP4127778B2 (en) Broadcast transmission / reception method, broadcast reception method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
C14 Grant of patent or utility model
GR01 Patent grant
DD01 Delivery of document by public notice
DD01 Delivery of document by public notice

Addressee: Zhang Shi

Document name: Notification of Termination of Patent Right

CF01 Termination of patent right due to non-payment of annual fee
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20101117

Termination date: 20191125