EP1234449A1 - Method for releasing customer-specific authorisations using security modules in conditional-access systems for chargeable services - Google Patents

Method for releasing customer-specific authorisations using security modules in conditional-access systems for chargeable services

Info

Publication number
EP1234449A1
EP1234449A1 EP00960512A EP00960512A EP1234449A1 EP 1234449 A1 EP1234449 A1 EP 1234449A1 EP 00960512 A EP00960512 A EP 00960512A EP 00960512 A EP00960512 A EP 00960512A EP 1234449 A1 EP1234449 A1 EP 1234449A1
Authority
EP
European Patent Office
Prior art keywords
customer
service
emm
activation
security
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
EP00960512A
Other languages
German (de)
French (fr)
Inventor
Rolf Lakomy
Jörg Schwenk
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Deutsche Telekom AG
Original Assignee
Deutsche Telekom AG
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Deutsche Telekom AG filed Critical Deutsche Telekom AG
Publication of EP1234449A1 publication Critical patent/EP1234449A1/en
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G07CHECKING-DEVICES
    • G07FCOIN-FREED OR LIKE APPARATUS
    • G07F7/00Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
    • G07F7/08Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
    • G07F7/10Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
    • G07F7/1008Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/341Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/355Personalisation of cards for use
    • G06Q20/3552Downloading or loading of personalisation data
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/34Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
    • G06Q20/357Cards having a plurality of specified features
    • G06Q20/3576Multiple memory zones on card
    • G06Q20/35765Access rights to memory zones
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/409Device specific authentication in transaction processing
    • G06Q20/4097Device specific authentication in transaction processing using mutual authentication between devices and transaction partners
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/23Processing of content or additional data; Elementary server operations; Server middleware
    • H04N21/235Processing of additional data, e.g. scrambling of additional data or processing content descriptors
    • H04N21/2351Processing of additional data, e.g. scrambling of additional data or processing content descriptors involving encryption of additional data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • H04N21/26606Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing entitlement messages, e.g. Entitlement Control Message [ECM] or Entitlement Management Message [EMM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/418External card to be used in combination with the client device, e.g. for conditional access
    • H04N21/4181External card to be used in combination with the client device, e.g. for conditional access for conditional access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4623Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/61Network physical structure; Signal processing
    • H04N21/6106Network physical structure; Signal processing specially adapted to the downstream path of the transmission network
    • H04N21/6131Network physical structure; Signal processing specially adapted to the downstream path of the transmission network involving transmission via a mobile phone network
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/81Monomedia components thereof
    • H04N21/8166Monomedia components thereof involving executable data, e.g. software
    • H04N21/8193Monomedia components thereof involving executable data, e.g. software dedicated tools, e.g. video decoder software or IPMP tool
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/162Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
    • H04N7/163Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing by receiver means only

Definitions

  • the invention relates to a method for the activation of customer-relevant access authorizations in conditional access systems for the reception of chargeable services, such as pay-TV, digital radio data services in DAB, DVB, Swift, video-on-demand and any digital services that are broadcast via radio systems.
  • chargeable services such as pay-TV, digital radio data services in DAB, DVB, Swift, video-on-demand and any digital services that are broadcast via radio systems.
  • security modules such as smart cards, on which security algorithms and / or customer-specific authorizations in the form of software programs and data are stored, according to the preamble of claim 1.
  • Security modules in the form of smart cards are already used in many areas in which it is necessary to grant people or machines authorization-dependent or conditional access [Conditional Access (CA systems)] to data or programs or other machines, if the set conditions or permissions are met (e.g. Pay TV).
  • CA systems Consumer Access
  • Other typical areas of application for smart cards are electronic means of payment, GSM telephony or digital radio data services in DAB, DVB, Swift and video-on-demand in the future.
  • conditional access systems take place almost exclusively on the basis of smart cards in chip card technology. These smart cards contain a stored security algorithm and customer-specific authorizations for receiving paid data services.
  • the problem for conditional access systems is that a provider of services, a content provider, certainly wants to reach more than one customer, but again not all of them. Only authorized customers should be able to receive a service. These are those customers who meet certain defined conditions by purchasing entitlements, for example that they have paid the monthly subscription fee. Radio systems are used to transmit such authorizations. The problem thus arises that access to certain information distributed via broadcasting systems should be controlled, but which in principle can be received by anyone.
  • Securing access to such information e.g. Pay-TV, by means of conditional access systems, is done by scrambling, which is encryption of the program content, by storing
  • Terminal devices for receiving a pay TV program are usually the so-called set-top boxes or decoders.
  • other end devices are also possible, for example mobile receiving devices, PC cards or PCMCIA modules, or the end device can be integrated into the television.
  • the activation of smart cards in broadcasting systems particularly when used in devices for mobile reception of services without point-to-point connection, such as with the telephone, is problematic because of the lack of reception guarantee. Only the activation enables a customer to use the service they want immediately after purchasing a card. However, the sender of an activation usually has no information as to whether the activation has actually reached the customer.
  • Activation does not take place if radio reception is impossible for the device used, e.g. due to building shielding in underground garages or e.g. in cases where a radio network required to send authorizations has not yet been expanded to such an extent that reception of authorizations by a So-called EMM message (Entitlement Management Messages) is not possible nationwide.
  • EMM message Entitlement Management Messages
  • a controlled initial activation with feedback is very safe and also enables instant collection for the activated service at the time of its acquisition.
  • Program contents are scrambled by the data being encrypted by an encryption algorithm under the control of a so-called control word CW.
  • the algorithm used in digital television based on the MPEG-2 standard in Europe is mainly the DVB Common Scrambling Algorithm. However, other algorithms are also possible, such as, for example, DES or Triple DES (cf. Bruce Schneier, Angewandte Kryptographie, Wiley, 1996).
  • ECM Entitlement Controll Messages
  • CW new control words
  • Entitlement Management Messages are used to set and change receive authorizations that are stored in the decoder or in the security module. EMM messages must be sent to the customer's individual address (or the decoder or the security module). Customer address and EMM messages must be protected against change; it must be ensured that only the program provider can generate EMM messages. Individual addresses always appear unencrypted in the EMM messages; Duplication protection can only be achieved by means of supplementary information that is stored so that it cannot be read by the customer. This is the personal key (PK) that is linked to the customer address. EMM messages are about the same Broadcasting system as the user data sent.
  • PK personal key
  • EMM messages are not permanently linked to the program content, but to the logical address of the customer's end device or that of the security module, so that EMM can be addressed to individual customers or to groups of customers.
  • a return channel can also be available, either manually (call a service center) or automatically (e.g. connection from the decoder to the transmission center via TCP / IP) becomes.
  • Permissions can change if e.g. the cost accounts of customers are not settled, which can result in the blocking of a reception authorization, for example.
  • EMMs can also be used to activate services on smart cards for the first time or to reactivate them.
  • the authorizations in the security module such as a smart card, must be reset.
  • chip cards are mostly used as security modules, which are not permanently connected to the end device, but can also be removed from it and exchanged.
  • the invention is therefore based on the object of specifying a method by means of which a chip card of an authorized customer can be made individually addressable for modification for pay services, the pay services also being intended to be used for mobile customers.
  • the solution to the problem is that at the request of a service provider, i.e. an institution authorized to issue or sell security modules, such as a T-point to a service center responsible for authorization control, e.g. Data service center in the DAB, the service center for indirect activation either by telephone or data transmission system sends an EMM activation signal specifically assigned to this security module to the service provider and there this EMM activation signal for the relevant service in a control device of the service provider feeds in and is given to the security module and the security module is activated with this EMM activation signal via the control device or, in the case of direct activation, the service center with the aid of a data transmission service in a digital radio service such as the DAB single-frequency network transmits the specifically assigned EMM activation signal to the security module of the sends inquiring customers and unlocks them.
  • the invention is based on the advantage that the activation of a service on a security module such as a smart card by means of the respective
  • Transmission systems such as by using commercially available DAB or DVB receivers themselves, with direct activation, or with the aid of a service other than the sending service is possible with indirect activation.
  • the service center grants the authorization after payment of the corresponding data service fee by means of the above-mentioned direct or indirect activation via the smart card-specific EMM.
  • a control device installed at the service provider confirms the activation of the security module, such as a smart card, for the service in question.
  • an allocation of an electronically stored, service-specific credit, token, in monetary units can advantageously be given to the security module.
  • the data transmission service can advantageously via a landline-bound modem, via a GSM modem or via GSM SMS services.
  • the customer's security module when the customer's security module is directly activated, it can be approximately localized with the help of the mobile radio network used by him, for example the GSM network, and the specific EMM activation signal can only be routed into the DAB single-frequency network to activate the customer in which the customer is at the time of the call and ordering the EMM activation signal.
  • the mobile radio network used by him for example the GSM network
  • the specific EMM activation signal can only be routed into the DAB single-frequency network to activate the customer in which the customer is at the time of the call and ordering the EMM activation signal.
  • the customer reports e.g. by GSM from his vehicle at the data service center in the DAB, for an activation, for example for a single data service or for a subscription or if an activation is not received or an allocation of electronic, service-specific credit, tokens, on the smart card to demand.
  • the corresponding EMM with the activation is routed to the DAB single-frequency network in which the subscriber is located.
  • the advantages of the method according to the invention can thus be seen in particular in that EMMs no longer have to be broadcast nationwide, but only locally in the DAB coverage areas in which the subscriber is also located. This significantly reduces the data rate required for EMMs.
  • the caller When a call is made, it is ensured that the caller can also receive the EMM, since the fact that a GSM connection has been established can be used to infer the possibility of DAB reception.
  • Another important advantage is that there is a return channel for new services.
  • the EMMs are e.g. not sent over a GSM channel, as this would require a data connection between the cell phone and the DAB receiver, which is, however, theoretically conceivable.
  • the method according to the invention can be used commercially in particular for the release of customer-relevant access authorizations in conditional access systems for the reception of fee-based media services.

Abstract

The invention relates to a method for releasing customer-specific access authorisations in conditional-access systems for receiving chargeable media services, using security modules, such as smart cards, in which security algorithms and/or customer-specific authorisations are stored in the form of software programmes. At the request of a service provider, for example, a telecom shop or another institution which is authorised to sell security modules, a service centre which is responsible for controlling authorisations sends an entitlement management message (EMM) release signal to the service provider which is allocated uniquely to the security module by indirect release, either using a telephone or remote data transmission system. Once received, the EMM release signal for the relevant media service is stored in a control device of the service provider, issued to the security module and said security module is then activated by this EMM release signal, using the control device. In the direct release procedure, the service centre uses an additional data transmission service in a digital radio broadcasting network, such as the DAB synchronised network, to send the uniquely allocated EMM release signal to the security module of the customer concerned and the centre then activates said module.

Description

Verfahren zur Freischaltung von kundenrelevanten Berechtigungen auf Sicherheitsmodulen in Conditional Access Systemen für Pay-Dienste Procedure for the activation of customer-relevant authorizations on security modules in conditional access systems for pay services
Technisches Gebiet:Technical field:
Die Erfindung betrifft ein Verfahren zur Freischaltung von kundenrelevanten Zugangsberechtigungen in Conditional Access-Systemen zum Empfang gebührenpflichtiger Dienste, wie Pay-TV, digitale Rundfunkdatendienste im DAB, DVB, Swift, Video-on-Demand sowie beliebiger digitaler Dienste, die über Rundfunksysteme ausgestrahlt werden, unter Benutzung von Sicherheitsmodulen, wie Smart Cards, auf welchen Sicherheitsalgorithmen und/oder kundenspezifische Berechtigungen in Form von Softwareprogrammen und Daten gespeichert sind, gemäß dem Oberbegriff des Anspruchs 1.The invention relates to a method for the activation of customer-relevant access authorizations in conditional access systems for the reception of chargeable services, such as pay-TV, digital radio data services in DAB, DVB, Swift, video-on-demand and any digital services that are broadcast via radio systems. using security modules, such as smart cards, on which security algorithms and / or customer-specific authorizations in the form of software programs and data are stored, according to the preamble of claim 1.
Stand der Technik:State of the art:
Sicherheitsmodule in Form von Smart Cards werden heute bereits in vielen Bereichen eingesetzt, in denen es gilt, Personen oder auch Maschinen einen berechtigungs- oder bedingungsabhängigen Zugriff [Conditional Access (CA-Systeme)] auf Daten oder Programme oder weitere Maschinen zu gewähren, wenn die gesetzten Bedingungen oder Berechtigungen erfüllt sind (z.B. Pay-TV). Andere typische Einsatzbereiche für Smart Cards sind elektronische Zahlungsmittel, GSM-Telefonie oder digitale Rundfunkdatendienste im DAB, DVB, Swift wie auch künftig Video-on-Demand.Security modules in the form of smart cards are already used in many areas in which it is necessary to grant people or machines authorization-dependent or conditional access [Conditional Access (CA systems)] to data or programs or other machines, if the set conditions or permissions are met (e.g. Pay TV). Other typical areas of application for smart cards are electronic means of payment, GSM telephony or digital radio data services in DAB, DVB, Swift and video-on-demand in the future.
Die Zugriffssteuerung erfolgt in modernen Conditional Access-Systemen fast ausschließlich auf der Basis von Smart Cards in Chipkarten-Technologie. Diese Smart Cards enthalten einen gespeicherten Sicherheitsalgorithmus und kundenspezifische Berechtigungen zum Empfang kostenpflichtiger Datendienste. Die Problemstellung für Conditional Access-Systeme besteht darin, daß ein Anbieter von Diensten, ein Content Provider, sicher mehr als einen Kunden, wiederum aber auch nicht alle erreichen möchte. Zum Empfang eines Dienstes sollen nur dazu autorisierte Kunden in der Lage sein. Dies sind solche Kunden, die bestimmte definierte Bedingungen durch den Kauf von Berechtigungen erfüllen, zum Beispiel, dass sie die monatliche Abonnementsgebühr bezahlt haben. Zur Übermittlung derartiger Berechtigungen werden Rundfunksysteme benutzt. Somit stellt sich das Problem, dass der Zugriff auf bestimmte über Rundfunksysteme verbreitete Informationen kontrolliert werden soll, die aber im Prinzip von jedermann empfangen werden können.Access control in modern conditional access systems takes place almost exclusively on the basis of smart cards in chip card technology. These smart cards contain a stored security algorithm and customer-specific authorizations for receiving paid data services. The problem for conditional access systems is that a provider of services, a content provider, certainly wants to reach more than one customer, but again not all of them. Only authorized customers should be able to receive a service. These are those customers who meet certain defined conditions by purchasing entitlements, for example that they have paid the monthly subscription fee. Radio systems are used to transmit such authorizations. The problem thus arises that access to certain information distributed via broadcasting systems should be controlled, but which in principle can be received by anyone.
Die Zugriffssicherung derartiger Informationen, wie z.B. Pay-TV, mittels Conditional Access-Systemen geschieht durch Scrambling, das ist Verschlüsselung der Programminhalte, durch Speicherung vonSecuring access to such information, e.g. Pay-TV, by means of conditional access systems, is done by scrambling, which is encryption of the program content, by storing
Empfangsberechtigungen im Sicherheitsmodul des Endgerätes, und durch Hinzufügen von Empfangsbedingungen zum Programm. Endgeräte zum Empfang eines Pay-TV-Programmes sind meist die sogenannten Set-Top-Boxen oder Dekoder. Es sind aber auch andere Endgeräte möglich, z.B. mobile Empfangsgeräte, PC-Karten oder PCMCIA-Module, oder das Endgerät kann in den Fernseher integriert sein. In vielen Fällen ist jedoch die Freischaltung von Smart Cards in Rundfunksystemen, besonders beim Einsatz in Geräten zum Mobilempfang von Diensten ohne Punkt zu Punkt-Verbindung wie beim Telefon, wegen der fehlenden Empfangsgarantie problematisch. Erst die Freischaltung ermöglicht es, dass ein Kunde direkt nach dem Erwerb einer Karte einen von ihm gewünschten Dienst nutzen kann. Der Absender einer Freischaltung hat jedoch meist keine Information darüber, ob seine Freischaltung auch tatsächlich beim Kunden angekommen ist. Eine Freischaltung kommt dann nicht zustande, wenn ein Rundfunkempfang für das benutzte Gerät unmöglich ist, z.B. durch Gebäudeabschirmung in Tiefgaragen oder z.B. in Fällen, in denen ein zum Aussenden von Berechtigungen erforderliches Funknetz noch nicht so weit ausgebaut ist, daß ein Empfang von Berechtigungen durch eine sogenannte EMM-Nachricht (Entitlement Management Messages) nicht flächendeckend möglich ist. Dem gegenüber ist eine kontrollierte Erstfreischaltung mit Rückmeldung sehr sicher und ermöglicht zudem ein augenblickliches Inkasso für den freigeschalteten Dienst zum Zeitpunkt seines Erwerbs. Programminhalte werden gescrambelt, indem die Daten von einem Verschlüsselungsalgorithmus unter Kontrolle eines sogenannten Kontrollwortes CW verschlüsselt werden. Als Algorithmus kommt im digitalen, auf dem MPEG-2-Standard basierenden Fernsehen, in Europa hauptsächlich der DVB Common Scrambling Algorithmus zum Einsatz. Es sind aber auch andere Algorithmen möglich, wie zum Beispiel DES oder Triple DES u.a. (vgl. Bruce Schneier, Angewandte Kryptographie, Wiley, 1996).Receive authorizations in the security module of the end device, and by adding reception conditions to the program. Terminal devices for receiving a pay TV program are usually the so-called set-top boxes or decoders. However, other end devices are also possible, for example mobile receiving devices, PC cards or PCMCIA modules, or the end device can be integrated into the television. In many cases, however, the activation of smart cards in broadcasting systems, particularly when used in devices for mobile reception of services without point-to-point connection, such as with the telephone, is problematic because of the lack of reception guarantee. Only the activation enables a customer to use the service they want immediately after purchasing a card. However, the sender of an activation usually has no information as to whether the activation has actually reached the customer. Activation does not take place if radio reception is impossible for the device used, e.g. due to building shielding in underground garages or e.g. in cases where a radio network required to send authorizations has not yet been expanded to such an extent that reception of authorizations by a So-called EMM message (Entitlement Management Messages) is not possible nationwide. In contrast, a controlled initial activation with feedback is very safe and also enables instant collection for the activated service at the time of its acquisition. Program contents are scrambled by the data being encrypted by an encryption algorithm under the control of a so-called control word CW. The algorithm used in digital television based on the MPEG-2 standard in Europe is mainly the DVB Common Scrambling Algorithm. However, other algorithms are also possible, such as, for example, DES or Triple DES (cf. Bruce Schneier, Angewandte Kryptographie, Wiley, 1996).
In sog. Entitlement Controll Messages (ECM) werden einem Dekoder oder sonstigem Empfangsmodul außer neuen Kontrollwörtern (CW) auch dieIn so-called Entitlement Controll Messages (ECM), a decoder or other receiving module contains not only new control words (CW) but also
Bedingungen mitgeteilt, unter denen ein Programm empfangen werden darf. Da sowohl das CW als auch die Empfangsbedingungen vom jeweiligen Service abhängen, werden ECM jedem Service zugeordnet. Nach dem Empfang einer ECM wird diese direkt an das Sicherheitsmodul weitergeleitet. Das Kontrollwort CW muß vertraulich übertragen werden. Zum Schutz der ECM werden kryptographische Methoden eingesetzt. Da die ECM an alle Kunden gesendet werden, müssen alle autorisierten Kunden den gleichen Schlüssel zum Entschlüsseln des Kontrollwort-Kryptogramms besitzen. Dieser wird Serviceschlüssel, SK, genannt. Das Kontrollwort CW sollte in relativ kurzen Abständen ausgetauscht werden, um das Erkennen von Scrambling-Mustern unmöglich zu machen.Conditions communicated under which a program can be received. Since both the CW and the reception conditions depend on the respective service, ECM are assigned to each service. After receiving an ECM, it is forwarded directly to the security module. The control word CW must be transmitted confidentially. Cryptographic methods are used to protect the ECM. Since the ECM is sent to all customers, all authorized customers must have the same key to decrypt the control word cryptogram. This is called the service key, SK. The control word CW should be replaced at relatively short intervals to make it impossible to recognize scrambling patterns.
Zum Setzen und zur Änderung von Empfangsberechtigungen, die im Dekoder bzw. im Sicherheitsmodul gespeichet sind, werden Entitlement Management Messages (EMM) eingesetzt. EMM-Nachrichten müssen an die individuelle Adresse des Kunden (bzw. des Dekoders oder des Sicherheitsmoduls) gesendet werden. Kundenadresse und EMM-Nachrichten müssen gegen Veränderung geschützt werden; es muß sichergestellt sein, dass nur der Programmanbieter EMM-Nachrichten erzeugen kann. Individuelle Adressen tauchen in den EMM-Nachrichten immer unverschlüsselt auf; einen Vervielfältigungsschutz kann man nur über eine ergänzende Information erreichen, die für den Kunden unauslesbar gespeichert ist. Dies ist der persönliche Schlüssel (PK), der mit der Kundenadresse verknüpft ist. EMM-Nachrichten werden über das gleiche Rundfunksystem wie die Nutzdaten versendet. EMM-Nachrichten sind nicht fest mit dem Programminhalt verknüpft, sondern mit der logischen Adresse des Endgerätes des Kunden bzw. mit der des Sicherheitsmoduls, so dass EMM an einzelne Kunden oder an Gruppen von Kunden adressiert werden können. Für die Nutzung bestimmter Dienste wie z.B. mobil empfangene Services oder Pay-per-View kann darüber hinaus ein Rückkanal zur Verfügung stehen der entweder manuell (Anruf bei einem Service-Center) oder automatisch (z.B. Verbindung vom Dekoder zum Sendezentrum über TCP/IP) realisiert wird.Entitlement Management Messages (EMM) are used to set and change receive authorizations that are stored in the decoder or in the security module. EMM messages must be sent to the customer's individual address (or the decoder or the security module). Customer address and EMM messages must be protected against change; it must be ensured that only the program provider can generate EMM messages. Individual addresses always appear unencrypted in the EMM messages; Duplication protection can only be achieved by means of supplementary information that is stored so that it cannot be read by the customer. This is the personal key (PK) that is linked to the customer address. EMM messages are about the same Broadcasting system as the user data sent. EMM messages are not permanently linked to the program content, but to the logical address of the customer's end device or that of the security module, so that EMM can be addressed to individual customers or to groups of customers. For the use of certain services such as mobile services or pay-per-view, a return channel can also be available, either manually (call a service center) or automatically (e.g. connection from the decoder to the transmission center via TCP / IP) becomes.
Berechtigungen können sich ändern, wenn z.B. die Gebührenkonten von Kunden nicht ausgeglichen werden, was zum Beispiel die Sperrung einer Empfangsberechtigung zur Folge haben kann. EMMs können jedoch auch dazu dienen, Dienste auf Smart Cards erstmals oder neu zu aktivieren. In diesen Fällen müssen die Berechtigungen im Sicherheitsmodul, wie Smart Card, neu gesetzt werden. Heute werden als Sicherheitsmodule meist Chipkarten verwendet, die nicht fest mit dem Endgerät verbunden sind, sondern auch aus diesem entfernt und ausgetauscht werden können.Permissions can change if e.g. the cost accounts of customers are not settled, which can result in the blocking of a reception authorization, for example. However, EMMs can also be used to activate services on smart cards for the first time or to reactivate them. In these cases, the authorizations in the security module, such as a smart card, must be reset. Today, chip cards are mostly used as security modules, which are not permanently connected to the end device, but can also be removed from it and exchanged.
Zum Stand der Technik wird auf die Veröffentlichung in Bernd Seiler (Hrsg.): taschenbuch der telekom praxis 1996, Schiele & Schön Berlin 1996, Jörg Schwenk: "Conditional Access" oder "Wie kann man den Zugriff auf Rundfunksendungen kontrollieren?" verwiesen.The state of the art is referred to the publication in Bernd Seiler (ed.): Taschenbuch der telekom praxis 1996, Schiele & Schön Berlin 1996, Jörg Schwenk: "Conditional Access" or "How can you control access to radio broadcasts?" directed.
Darüber hinaus werden mit der Einführung neuer Übertragungsmedien wie DAB und DVB-T, Pay-Dienste mit zunehmendem Maße auch für mobile Kunden, die z.B. ein entsprechendes Endgerät in ihrem Kfz mitführen, interessant. Hier stellen sich jedoch folgende Probleme:In addition, with the introduction of new transmission media such as DAB and DVB-T, pay services are also increasingly being used for mobile customers, e.g. carry an appropriate device in your vehicle, interesting. However, the following problems arise here:
• Die Datenkapazität der Dienste ist beschränkt (z.B. DAB, Swift u.a.), • die Empfangssituation ist schwierig (z.B. durch noch nicht voll ausgebaute Rundfunknetze oder Kfz in Tiefgarage)) oder• The data capacity of the services is limited (e.g. DAB, Swift etc.), • The reception situation is difficult (e.g. due to not yet fully developed radio networks or vehicles in an underground car park)) or
• ein Rückkanal ist in der Regel nicht vorhanden. Technische Aufgabe:• There is usually no return channel. Technical task:
Der Erfindung liegt deshalb die Aufgabe zugrunde, ein Verfahren anzugeben, mit welchem eine Chipkarte eines autorisierten Kunden zur Änderung für Pay-Dienste individuell adressierbar gemacht werden kann, wobei die Pay-Dienste auch für mobile Kunden dienstbar gemacht werden sollen.The invention is therefore based on the object of specifying a method by means of which a chip card of an authorized customer can be made individually addressable for modification for pay services, the pay services also being intended to be used for mobile customers.
Offenbarung der Erfindung und deren Vorteile:Disclosure of the invention and its advantages:
Die Lösung der Aufgabe besteht darin, dass auf Anforderung eines Service-Providers, also eine zur Ausgabe bzw. zum Verkauf von Sicherheitsmodulen berechtigte Institution, wie z.B. ein T-Punkt, an ein für die Berechtigungskontrolle zuständiges Service-Center, z.B. Daten-Service-Center im DAB, das Service-Center bei indirekter Freischaltung entweder mittels Telefon oder Datenfernübertragungssystem ein diesem Sicherheitsmodul spezifisch zugeteiltes EMM-Freischaltsignal zum Service-Provider sendet und dort dieses EMM-Freischaltsignal für den betreffenden Service in ein Kontrollgerät des Service-Providers einspeist und auf den Sicherheitsmodul aufgegeben und über das Kontrollgerät der Sicherheitsmodul mit diesem EMM-Freischaltsignal aktiviert wird oder bei direkter Freischaltung das Service-Center unter Zuhilfenahme eines Datenübermittlungsdienstes in einem digitalen Rundfunkdienst wie das DAB-Gleichwellennetz das spezifisch zugeteilte EMM-Freischaltsignal an den Sicherheitsmodul des nachfragenden Kunden sendet und diesen freischaltet. Der Erfindung liegt der Vorteil zugrunde, dass die Freischaltung eines Dienstes auf einem Sicherheitsmodul wie einer Smart Card mittels des jeweiligenThe solution to the problem is that at the request of a service provider, i.e. an institution authorized to issue or sell security modules, such as a T-point to a service center responsible for authorization control, e.g. Data service center in the DAB, the service center for indirect activation either by telephone or data transmission system sends an EMM activation signal specifically assigned to this security module to the service provider and there this EMM activation signal for the relevant service in a control device of the service provider feeds in and is given to the security module and the security module is activated with this EMM activation signal via the control device or, in the case of direct activation, the service center with the aid of a data transmission service in a digital radio service such as the DAB single-frequency network transmits the specifically assigned EMM activation signal to the security module of the sends inquiring customers and unlocks them. The invention is based on the advantage that the activation of a service on a security module such as a smart card by means of the respective
Sendesystems, wie zum Beispiel durch Nutzung handelsüblicher DAB- oder DVB-Empfänger selbst, bei direkter Freischaltung, oder unter Zuhilfenahme eines anderen als des sendenden Dienstes möglich ist bei indirekter Freischaltung. Das Service-Center vergibt die Berechtigung nach Zahlung der entsprechenden Datendienstgebühr mittels o.g. direkter oder indirekter Freischaltung über die Smart-Card-spezifische EMM. Ein beim Service Provider aufgestelltes Kontrollgerät bestätigt die Aktivierung des Sicherheitsmoduls, etwa einer Smart Card, für den betreffenden Dienst. Bei direkter und indirekter Freischaltung kann vorteilhaft eine Zuweisung eines elektronisch gespeicherten, dienstespezifischen Guthabens, Token, in Geldeinheiten auf den Sicherheitsmodul aufgegeben werden.Transmission systems, such as by using commercially available DAB or DVB receivers themselves, with direct activation, or with the aid of a service other than the sending service is possible with indirect activation. The service center grants the authorization after payment of the corresponding data service fee by means of the above-mentioned direct or indirect activation via the smart card-specific EMM. A control device installed at the service provider confirms the activation of the security module, such as a smart card, for the service in question. In the case of direct and indirect activation, an allocation of an electronically stored, service-specific credit, token, in monetary units can advantageously be given to the security module.
Bei indirekter Freischaltung des Sicherheitsmoduls der nachfragenden Kunden kann vorteilhaft der Datenübermittlungsdienst z.B. über ein festnetzgebundenes Modem, über ein GSM-Modem oder über GSM-SMS-Dienste erfolgen.With indirect activation of the security module of the requesting customer, the data transmission service can advantageously via a landline-bound modem, via a GSM modem or via GSM SMS services.
In vorteilhafter Weise kann des Weiteren bei direkter Freischaltung des Sicherheitsmoduls des nachfragenden Kunden dieser mit Hilfe des von ihm benutzten Mobilfunknetzes, beispielsweise dem GSM-Netz, ungefähr lokalisiert werden und das spezifische EMM-Freischaltsignal zur Freischaltung des Kunden nur in das DAB-Gleichwellennetz geroutet werden, in der sich der Kunde zur Zeit des Anrufs und orderns des EMM-Freischaltsignals aufhält.Advantageously, when the customer's security module is directly activated, it can be approximately localized with the help of the mobile radio network used by him, for example the GSM network, and the specific EMM activation signal can only be routed into the DAB single-frequency network to activate the customer in which the customer is at the time of the call and ordering the EMM activation signal.
Dadurch werden die oben genannten Probleme durch die Realisierung eines Rückkanals mittels GSM gelöst. Der Ablauf hierzu sei am Beispiel DAB beschrieben:This solves the problems mentioned above by realizing a return channel using GSM. The procedure for this is described using the example of DAB:
1. Der Kunde meldet sich z.B. per GSM aus seinem Kfz beim Daten-Service- Center im DAB, um eine Freischaltung, zum Beispiel für einen einzelnen Datendienst oder für ein Abonnement oder bei Nichtempfang einer Freischaltung oder eine Zuweisung von elektronischem, dienste-spezifischem Guthaben, Token, auf der Smart Card zu verlangen.1. The customer reports e.g. by GSM from his vehicle at the data service center in the DAB, for an activation, for example for a single data service or for a subscription or if an activation is not received or an allocation of electronic, service-specific credit, tokens, on the smart card to demand.
2. Im Daten-Service-Center im DAB wird in Zusammenarbeit z.B. mit einem GSM-Betreiber (z.B. T-Mobil) die GSM-Zelle (bzw. über diesen Weg das flächenmäßig größere DAB-Gleichwellennetz) ermittelt, in der sich der Anrufer gerade aufhält.2. In the data service center at DAB, e.g. with a GSM operator (e.g. T-Mobil) determines the GSM cell (or, in this way, the larger DAB single-frequency network in terms of area) in which the caller is currently staying.
3. Die entsprechende EMM mit der Freischaltung wird zu dem DAB-Gleichwellennetz geroutet, in dem sich der Teilnehmer aufhält. Die Vorteile des erfindungsgemäßen Verfahrens sind somit insbesondere darin zu sehen: EMMs müssen nicht mehr bundesweit ausgestrahlt werden, sondern nur noch lokal in den DAB-Versorgungsgebieten, in denen sich der Teilnehmer auch aufhält. Dadurch wird die für EMMs benötigte Datenrate erheblich geringer. Bei einem Anruf ist sichergestellt, daß der Anrufer die EMM auch empfangen kann, da man aus der Tatsache des Aufbaus einer GSM-Verbindung auf die Möglichkeit des DAB-Empfangs schließen kann. Ein weiterer wichtiger Vorteil besteht darin, dass ein Rückkanal für neue Dienste vorhanden ist.3. The corresponding EMM with the activation is routed to the DAB single-frequency network in which the subscriber is located. The advantages of the method according to the invention can thus be seen in particular in that EMMs no longer have to be broadcast nationwide, but only locally in the DAB coverage areas in which the subscriber is also located. This significantly reduces the data rate required for EMMs. When a call is made, it is ensured that the caller can also receive the EMM, since the fact that a GSM connection has been established can be used to infer the possibility of DAB reception. Another important advantage is that there is a return channel for new services.
Dabei werden die EMMs z.B. nicht über einen GSM-Kanal gesendet, da dies eine Datenverbindung zwischen dem Handy und dem DAB-Empfänger voraussetzen würde, was allerdings theoretisch denkbar ist.The EMMs are e.g. not sent over a GSM channel, as this would require a data connection between the cell phone and the DAB receiver, which is, however, theoretically conceivable.
Gewerbliche Anwendbarkeit:Industrial applicability:
Das erfindungsgemäße Verfahren ist insbesondere zur Freigabe von kundenrelevanten Zugangsberechtigungen in Conditional Access Systemen zum Empfang von gebührenpflichtigen Media-Diensten gewerblich anwendbar. The method according to the invention can be used commercially in particular for the release of customer-relevant access authorizations in conditional access systems for the reception of fee-based media services.

Claims

Patentansprüche claims
1. Verfahren zur Freischaltung von kundenrelevanten Zugangsberechtigungen in Conditional Access-Systemen zum Empfang gebührenpflichtiger Dienste, wie Pay-TV, digitale über Rundfunk ausgesendete Daten im DAB, DVB, Swift sowie Video-on-Demand, unter Benutzung von Sicherheitsmodulen, wie Smart Cards, auf welchen Sicherheitsalgorithmen und/oder kundenspezifischen Berechtigungen in Form von Softwareprogrammen und Daten gespeichert sind, dadurch gekennzeichnet, dass auf Anforderung eines Service-Providers, also einer zum Verkauf von Sicherheitsmodulen berechtigten Institution, an ein für die Berechtigungskontrolle zuständiges Service-Center, das Service-Center bei indirekter Freischaltung entweder mittels Telefon oder Datenfernübertragungssystem ein diesem Sicherheitsmodul spezifisch zugeteiltes EMM-Freischaltsignal zum Service- Provider sendet und dort dieses EMM-Freischaltsignal für den betreffenden Media-Dienst in ein Kontrollgerät des Service-Providers einspeist und auf den Sicherheitsmodul aufgegeben und über das Kontrollgerät der Sicherheitsmodul mit diesem EMM-Freischaltsignal aktiviert wird oder bei direkter Freischaltung das Service-Center unter Zuhilfenahme eines weiteren Datenübermittlungsdienstes in einem digitalen Rundfunkdienst das spezifisch zugeteilte EMM-Freischaltsignal an den Sicherheitsmodul des nachfragenden Kunden sendet und diesen freischaltet.1. Procedure for the activation of customer-relevant access authorizations in conditional access systems for the reception of chargeable services, such as pay-TV, digital data broadcast via radio in DAB, DVB, Swift and video-on-demand, using security modules such as smart cards, on which security algorithms and / or customer-specific authorizations are stored in the form of software programs and data, characterized in that, at the request of a service provider, i.e. an institution authorized to sell security modules, to a service center responsible for authorization control, the service Center with indirect activation either by telephone or data transmission system sends an EMM activation signal specifically assigned to this security module to the service provider and there feeds this EMM activation signal for the media service concerned into a control device of the service provider and to the security The module is abandoned and the security module is activated with this EMM activation signal via the control device, or if the activation is carried out directly, the service center sends the specifically assigned EMM activation signal to the security module of the requesting customer with the help of another data transmission service in a digital broadcasting service and then enables the customer.
2. Verfahren nach Anspruch 1 , dadurch gekennzeichnet, dass bei direkter und indirekter Freischaltung eine Zuweisung eines elektronisch gespeicherten, dienstespezifischen Guthabens (Token) in Geldeinheiten auf den Sicherheitsmodul aufgegeben wird.2. The method according to claim 1, characterized in that in direct and indirect activation, an assignment of an electronically stored, service-specific credit (token) is given in monetary units to the security module.
3. Verfahren nach Anspruch 1 , dadurch gekennzeichnet, dass bei indirekter Freischaltung des Sicherheitsmoduls des nachfragenden Kunden der3. The method according to claim 1, characterized in that with indirect activation of the security module of the requesting customer
Datenübermittlungsdienst wahlweise über ein festnetzgebundenes Modem, ein GSM-Modem, oder über GSM-SMS-Dienste erfolgt. Data transmission service is carried out either via a landline modem, a GSM modem, or via GSM SMS services.
4. Verfahren nach Anspruch 1 oder 2, dadurch gekennzeichnet, dass bei direkter Freischaltung des Sicherheitsmoduls des nachfragenden Kunden dieser mit Hilfe eines digitalen Mobilfunknetzes ungefähr lokalisiert wird und das spezifische EMM-Freischaltsignal zur Freischaltung des Kunden nur in das digitale Rundfunknetz geroutet wird, in der sich der Kunde zur Zeit des Anrufs und Order des EMM-Freischaltsignals aufhält. 4. The method according to claim 1 or 2, characterized in that with direct activation of the security module of the requesting customer, this is approximately localized with the aid of a digital mobile radio network and the specific EMM activation signal for activation of the customer is only routed into the digital radio network in which the customer is at the time of the call and order of the EMM activation signal.
EP00960512A 1999-09-01 2000-08-24 Method for releasing customer-specific authorisations using security modules in conditional-access systems for chargeable services Ceased EP1234449A1 (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
DE19941550 1999-09-01
DE1999141550 DE19941550A1 (en) 1999-09-01 1999-09-01 Procedure for the activation of customer-relevant authorizations on security modules in conditional access for pay services
PCT/EP2000/008263 WO2001017249A1 (en) 1999-09-01 2000-08-24 Method for releasing customer-specific authorisations using security modules in conditional-access systems for chargeable services

Publications (1)

Publication Number Publication Date
EP1234449A1 true EP1234449A1 (en) 2002-08-28

Family

ID=7920362

Family Applications (1)

Application Number Title Priority Date Filing Date
EP00960512A Ceased EP1234449A1 (en) 1999-09-01 2000-08-24 Method for releasing customer-specific authorisations using security modules in conditional-access systems for chargeable services

Country Status (4)

Country Link
EP (1) EP1234449A1 (en)
AU (1) AU765278B2 (en)
DE (1) DE19941550A1 (en)
WO (1) WO2001017249A1 (en)

Families Citing this family (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1248221A3 (en) * 2001-04-04 2003-04-02 RITTER, Rudolf System and method for portfolio management by means of DAB
DE10246987A1 (en) * 2002-10-02 2004-04-15 Deutsche Telekom Ag Method and system for receiving and paying for content
DE10248544A1 (en) * 2002-10-14 2004-04-22 Deutsche Telekom Ag Method for preparing a restricted access service e.g. for pay-TV via mobilephone terminal, involves decoding message for testing reception validity in terminal device
EP1427208A1 (en) * 2002-12-02 2004-06-09 Canal + Technologies Messaging over mobile phone network for digital multimedia network
EP1450503A3 (en) * 2003-02-19 2009-12-23 Vodafone Holding GmbH System and method for electronic transmission and billing of information data
TW200500887A (en) * 2003-03-03 2005-01-01 Nagracard Sa Security modules deactivation and reactivation method

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1985003830A1 (en) * 1984-02-23 1985-08-29 American Telephone & Telegraph Company Method and apparatus for subscription broadcast
WO1995017796A1 (en) * 1993-12-20 1995-06-29 Urmet Sud S.P.A. Costruzioni Elettro-Telefoniche System for enabling the decoding of television programs
US5504933A (en) * 1992-10-27 1996-04-02 Mitsubishi Corporation Pay broadcasting system
US5675647A (en) * 1994-02-07 1997-10-07 Le Groupe Videotron Ltee Cable TV system using passwords
WO1998043430A1 (en) * 1997-03-21 1998-10-01 Canal+ Societe Anonyme Signal generation and broadcasting
EP0936774A1 (en) * 1998-02-13 1999-08-18 CANAL+ Société Anonyme Recording of scrambled digital data

Family Cites Families (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
FI114179B (en) * 1994-02-16 2004-08-31 Teliasonera Finland Oyj A method for customer identification
MY125706A (en) * 1994-08-19 2006-08-30 Thomson Consumer Electronics High speed signal processing smart card
SE509582C2 (en) * 1997-06-05 1999-02-08 Telia Ab Systems at telecommunication networks
JP3924847B2 (en) * 1997-06-19 2007-06-06 ソニー株式会社 Information receiving apparatus and method, and recording medium
DE19738707C2 (en) * 1997-08-29 2001-11-29 Mannesmann Ag Method for assigning a temporary access authorization authorizing limited time units for telecommunications in a telecommunications network
US6360257B1 (en) * 1998-01-30 2002-03-19 Telefonaktiebolaget L M Ericsson (Publ) Managing group IP addresses in mobile end stations
DE19839266A1 (en) * 1998-08-28 2000-03-02 Alcatel Sa Accessing software modules using enable module and personal computer connected to service provider and network

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO1985003830A1 (en) * 1984-02-23 1985-08-29 American Telephone & Telegraph Company Method and apparatus for subscription broadcast
US5504933A (en) * 1992-10-27 1996-04-02 Mitsubishi Corporation Pay broadcasting system
WO1995017796A1 (en) * 1993-12-20 1995-06-29 Urmet Sud S.P.A. Costruzioni Elettro-Telefoniche System for enabling the decoding of television programs
US5675647A (en) * 1994-02-07 1997-10-07 Le Groupe Videotron Ltee Cable TV system using passwords
WO1998043430A1 (en) * 1997-03-21 1998-10-01 Canal+ Societe Anonyme Signal generation and broadcasting
EP0936774A1 (en) * 1998-02-13 1999-08-18 CANAL+ Société Anonyme Recording of scrambled digital data

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of WO0117249A1 *

Also Published As

Publication number Publication date
WO2001017249A1 (en) 2001-03-08
AU2808401A (en) 2001-03-26
DE19941550A1 (en) 2001-03-08
AU765278B2 (en) 2003-09-11

Similar Documents

Publication Publication Date Title
DE69825443T2 (en) DEVICE IN TELECOMMUNICATIONS NETWORKS
DE60222012T2 (en) SYSTEM AND METHOD FOR HYBRID CONDITIONAL ACCESS TO RECEIVERS OF ENCRYPTED TRANSMISSIONS
DE3524472C2 (en)
DE69702310T3 (en) METHOD FOR THE SECURED TRANSMISSION BETWEEN TWO DEVICES AND THEIR APPLICATION
DE60004480T2 (en) METHOD AND DEVICE FOR ENCRYPTED TRANSMISSION
DE19503585A1 (en) Method and system for distributing signals to authorized participants
DE3590072T1 (en) Method and device for the distribution of signals to subscribers
EP1264480A1 (en) Method, communication system and receiver device for the billing of access controlled programmes and/or data from broadcast transmitters
DE4424380A1 (en) Transmissions of programme related signals for video selection
DE60020245T2 (en) SYSTEM AND METHOD FOR SECURING ON-REQUEST DELIVERY OF PRE-CLOSED CONTENTS WITH ECM SUPPRESSION
EP1677537A1 (en) Method and device for receiving content data with conditional access and Remote Server
EP0744867A1 (en) Communication control method for interactive services
EP1642458B1 (en) Method and device for transmitting decryption codes of freely transmitted, encrypted program contents to clearly identifiable receivers
WO2001017249A1 (en) Method for releasing customer-specific authorisations using security modules in conditional-access systems for chargeable services
DE60113306T2 (en) PROCESS AND DEVICE IS APPROVED IN THE UNAUTHORIZED TIME OF TIME IN AN ADDRESSABLE PAYMENT SYSTEM
DE60225721T2 (en) PROCEDURE FOR ACCESS CONTROL OF SPECIFIC SERVICES BY A DISTRIBUTOR
DE602004003346T2 (en) PAY TELEVISION, METHOD FOR REMOVING RIGHTS IN SUCH A SYSTEM, ASSOCIATED DECODER AND CHIP CARD, AND MESSAGE TRANSMITTED TO SUCH A DECODER
EP0822719B1 (en) Methods and arrangements for preventing unauthorised use of distribution networks
DE60005021T2 (en) Access authorization system for spontaneous purchase on pay TV
DE10248544A1 (en) Method for preparing a restricted access service e.g. for pay-TV via mobilephone terminal, involves decoding message for testing reception validity in terminal device
EP0914742A1 (en) Decentralized subscriber access system
EP1023806B1 (en) Method and device for relaying specific data, especially receiving rights, to a pay television terminal
DE10108872B4 (en) Method for enabling the decryption of transmitted information
DE10108917B4 (en) Parameter data coding method for conditional-access-system encodes parameter value using multi-digit number for parameter range to provide bit word
DE10244079A1 (en) Method for preparing an encoded IP-based group service e.g. multi-cast service, involves sending safety data file at given times via IP-group address to subscribers

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20010910

AK Designated contracting states

Kind code of ref document: A1

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE

AX Request for extension of the european patent

Free format text: AL;LT;LV;MK;RO;SI

RIN1 Information on inventor provided before grant (corrected)

Inventor name: SCHWENK, JOERG

Inventor name: LAKOMY, ROLF

17Q First examination report despatched

Effective date: 20080403

REG Reference to a national code

Ref country code: DE

Ref legal event code: R003

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION HAS BEEN REFUSED

18R Application refused

Effective date: 20111030