EP1300017A1 - Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment - Google Patents

Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment

Info

Publication number
EP1300017A1
EP1300017A1 EP01954094A EP01954094A EP1300017A1 EP 1300017 A1 EP1300017 A1 EP 1300017A1 EP 01954094 A EP01954094 A EP 01954094A EP 01954094 A EP01954094 A EP 01954094A EP 1300017 A1 EP1300017 A1 EP 1300017A1
Authority
EP
European Patent Office
Prior art keywords
services
information
sequence
service
timestamp
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
EP01954094A
Other languages
German (de)
French (fr)
Inventor
Eric c/o Thomson multimedia DIEHL
Philippe c/o Thomson multimedia LETELLIER
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
THOMSON LICENSING
Original Assignee
Thomson Licensing SAS
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Thomson Licensing SAS filed Critical Thomson Licensing SAS
Publication of EP1300017A1 publication Critical patent/EP1300017A1/en
Withdrawn legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/637Control signals issued by the client directed to the server or network components
    • H04N21/6377Control signals issued by the client directed to the server or network components directed to server
    • H04N21/63775Control signals issued by the client directed to the server or network components directed to server for uploading keys, e.g. for a client to communicate its public key to the server
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04HBROADCAST COMMUNICATION
    • H04H60/00Arrangements for broadcast applications with a direct linking to broadcast information or broadcast space-time; Broadcast-related systems
    • H04H60/29Arrangements for monitoring broadcast services or broadcast-related services
    • H04H60/33Arrangements for monitoring the users' behaviour or opinions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/23Processing of content or additional data; Elementary server operations; Server middleware
    • H04N21/236Assembling of a multiplex stream, e.g. transport stream, by combining a video stream with other content or additional data, e.g. inserting a URL [Uniform Resource Locator] into a video stream, multiplexing software data into a video stream; Remultiplexing of multiplex streams; Insertion of stuffing bits into the multiplex stream, e.g. to obtain a constant bit-rate; Assembling of a packetised elementary stream
    • H04N21/2365Multiplexing of several video streams
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/4302Content synchronisation processes, e.g. decoder synchronisation
    • H04N21/4305Synchronising client clock from received content stream, e.g. locking decoder clock with encoder clock, extraction of the PCR packets
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/434Disassembling of a multiplex stream, e.g. demultiplexing audio and video streams, extraction of additional data from a video stream; Remultiplexing of multiplex streams; Extraction or processing of SI; Disassembling of packetised elementary stream
    • H04N21/4347Demultiplexing of several video streams
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/475End-user interface for inputting end-user data, e.g. personal identification number [PIN], preference data
    • H04N21/4758End-user interface for inputting end-user data, e.g. personal identification number [PIN], preference data for providing answers, e.g. voting
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/85Assembly of content; Generation of multimedia applications
    • H04N21/854Content authoring
    • H04N21/8547Content authoring involving timestamps for synchronizing content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/173Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal
    • H04N7/17309Transmission or handling of upstream communications
    • H04N7/17318Direct or substantially direct transmission and handling of requests
    • AHUMAN NECESSITIES
    • A63SPORTS; GAMES; AMUSEMENTS
    • A63FCARD, BOARD, OR ROULETTE GAMES; INDOOR GAMES USING SMALL MOVING PLAYING BODIES; VIDEO GAMES; GAMES NOT OTHERWISE PROVIDED FOR
    • A63F2300/00Features of games using an electronically generated display having two or more dimensions, e.g. on a television screen, showing representations related to the game
    • A63F2300/40Features of games using an electronically generated display having two or more dimensions, e.g. on a television screen, showing representations related to the game characterised by details of platform network
    • A63F2300/409Data transfer via television network

Definitions

  • the present invention relates to the field of time stamping (in English "time stamping") in a digital television environment, data time stamping being the action of marking this data using information taking into account a specific time and / or date, called a time stamp. More specifically, the invention relates to the time stamping of data requiring high security against fraud, from data broadcast in particular in digital television services.
  • a digital data stream such as for example a digital television service or a physical or logical digital data transmission channel will hereinafter be called "service”.
  • time stamping techniques are known in the state of the art.
  • a time stamping system is known which is used in a digital television environment.
  • This system is described in patent application WO 95.15653 from the inventors Lappington, Marshall, Yamamoto, Wilson, Berkobin and Simons, whose applicant is the company Zing Systems and which was published in June 1995.
  • This document describes a system where two Datasets with a time stamp are sent separately to remote units including a data decoder, a remote control, and an operations center. Within each remote unit, the timestamps are compared to a remote clock and a difference in timestamp is noted for each of the two sets of data. The two differences are compared to determine if one of the sets has been delayed compared to the other. Only non-delayed sets can be validated.
  • a disadvantage of this technique of the prior art is the lack of security that it provides. Indeed, we can detect several flaws linked to a lack of resistance to certain attacks in particular: the play of a prerecorded video stream, the theft of a set of data belonging to another person, using the same timestamp applied to separate data.
  • an object of the invention is to provide a system, method and device for time stamping and / or checking the validity of a time stamp which provides high reliability and security in the time stamping of digital data to from data broadcast by digital television and / or radio services in particular.
  • Security has two essential aspects: integrity and non-revocation. Integrity means that you cannot change the time stamp. Non-revocation implies that the issuer of time-stamped data cannot claim that the data was time-stamped at a time different from the time-stamp. For example, for a bet on a race, it is important to be sure that the bet was made before the start of the race.
  • Timestamping is easy when the event to be timestamped takes place directly with a trusted authority. It is much more complex when it takes place in a remote manner; if it is necessary to use for example a telephone center to make a bet, the moment of reception of a call is not desirable to time stamp an event since there may exist a waiting time if necessary a girl; this reception time may be different from the actual bet time.
  • An objective of the invention is to allow precise time stamping (for example to the nearest second).
  • Another object of the invention is to allow a trusted authority to authenticate and validate this timestamp to, for example, allow the user to obtain bet wins or the trusted authority to determine the effective order of responses to a question.
  • the invention proposes a method of time stamping digital data remarkable in that it comprises:
  • an operation for defining a sequence of services comprising at least one service, each service being chosen from a list of services according to a method of choice giving a variable result for each occurrence of definition of a sequence of services; and an operation for collecting a sequence of timestamp information elements, according to which at least one information element is extracted from each service of the service sequence to form the elements of the sequence of elements of information, each piece of information comprising information representative of a current time stamp.
  • the invention makes it possible to define a sequence of services which is not known in advance to a possible fraudster, a sequence which contains information representative of a time stamp which can subsequently be used for a time stamping of data, this sequence being difficult to reproduce, to predict or to falsify.
  • a fraudster wants to thwart the system, he must record several flows and have the possibility of replaying them in a perfectly synchronized manner. If the number of flows is large enough, the cost of such fraud becomes prohibitive.
  • the list of services can have any size including the size equal to one. In the latter case, the implementation of the invention is simplified (the choice being a trivial operation). However, to optimize the effectiveness of the invention, it is desirable to have at least two services. The number of services can be varied according to needs (desired level of security).
  • the time stamping method is remarkable in that the method of choice giving a variable result is a method of random or pseudo-random drawing.
  • the same approach can be applied for the number of services taken into account.
  • a potential fraudster has no means of predicting the defined sequence of services.
  • the time stamping method is remarkable in that it comprises a step of sending and / or receiving a message comprising the number of services in the sequence of services and the list of services.
  • the time stamping method is remarkable in that it comprises an operation for constructing a time stamped data group comprising:
  • - a group of information including: - digital data;
  • the time stamping method is remarkable in that it further comprises an operation of collecting a sequence of information signatures, each of the signatures being associated in a one-to-one manner with each of the time stamp information and signing information comprising timestamp information and an identifier of the service from which it originates and the timestamping method also being remarkable in that the timestamped data group further comprises the sequence of information signatures.
  • the invention advantageously offers an additional degree of security thanks to the signatures which prevent any alteration of the signed elements.
  • the time stamping method is remarkable in that:
  • each timestamp information also includes the definition of a recovery challenge to be extracted from the list of services
  • the timestamping method further comprises an operation for extracting a response corresponding to the definition of each recovery challenge.
  • the degree of security of the time stamping process is further increased, the means necessary to defraud being very heavy and of a prohibitive cost while the time stamping process itself remains relatively simple to implement.
  • the time stamping method is remarkable in that the time stamped data group comprises in addition to the answer corresponding to the definition of each collection challenge.
  • each timestamp information additionally comprises a fingerprint of the response.
  • An information fingerprint is an extract or digest of information obtained by a hash technique.
  • the invention advantageously lends itself to a verification of the timestamp not requiring a priori knowledge of the response to the collection challenge, but requiring the sole taking into account of one or more public keys which preferably will be used to verify the signature of the time stamp information and / or of the response fingerprint.
  • the timestamping process notably makes it possible to send a summary of the responses to the collection challenge expected from a broadcaster at a collection center.
  • This digest goes through a user terminal but the expected responses are not accessible by the user.
  • the time stamping method remains simple to implement thanks in particular to the presence of fingerprints which make it possible to limit the memory size or the bandwidth necessary for the transmission of the expected responses.
  • the time stamping method is remarkable in that it comprises an operation for transmitting the time stamped data group.
  • the invention advantageously allows remote operation or verification of the data timestamp.
  • the invention also proposes a method for verifying the validity of a timestamp of digital data, obtained according to a timestamping method as described above. According to a particular characteristic, this method is remarkable in that it performs a verification of at least one group of data capable of being time-stamped by a time-stamping method as previously described.
  • the method for verifying the validity of a timestamp is remarkable in that it comprises at least one verification operation forming part of the group comprising:
  • the method for verifying the validity of a timestamp is remarkable in that it comprises an operation for transmitting validated digital data.
  • the verification method advantageously makes it possible to verify each of the points which guarantee the authenticity of a timestamp in a manner which can possibly be adapted to a desired degree of security.
  • the verification process notably takes into account a summary of the responses to the expected recovery challenge which remains inaccessible to the user of the time stamping process.
  • the verification process remains simple to implement thanks in particular to the presence of fingerprints which make it possible to limit the size of memory required (a trace of the information to be verified is not kept in memory).
  • the invention also relates to a system comprising means for implementing:
  • each of the services containing pieces of information representative of a time stamp
  • the invention also proposes, for the same purposes as above, a device for time stamping digital data which is remarkable in that it comprises means suitable for setting up implementation of a time stamping process and / or verification of the validity of a time stamp according to one of the processes mentioned above.
  • the invention proposes a device for time-stamping digital data which is remarkable in that it comprises: a means of defining a sequence of services comprising at least one service, each of the services being chosen within a list of services according to a method of choice giving a variable circulation for two uses of the means of defining a sequence of services; and - means for collecting a sequence of timestamp information elements extracting at least one information element from each of the services of the service sequence to form the elements of the sequence of information elements, each piece of information comprising information representative of a current time stamp.
  • the invention proposes a device for verifying the validity of a timestamp of digital data remarkable in that it comprises at least one verification means forming part of the group comprising: - a signature verification means of a data group;
  • FIG. 1 shows an infrastructure for broadcasting multimedia digital data with the use of a time stamp according to the invention according to a particular embodiment
  • FIG. 2 illustrates a multimedia digital decoder present in the infrastructure of Figure 1 according to the invention according to a particular embodiment
  • FIG. 3 describes a secure processor allowing a time stamp according to the invention according to a particular embodiment
  • FIG. 4 describes a device for collecting responses and verifying timestamps having a modem for retrieving the responses according to the invention according to a particular embodiment
  • FIG. 5 describes a device for collecting responses and verifying timestamps which, according to another preferred embodiment, has a secure processor reader, in accordance with the invention according to a particular embodiment;
  • FIG. 6 describes an exchange protocol between a broadcaster, a central processor, a secure processor and a response collection device as described with reference to Figure 4 according to the invention according to a particular embodiment
  • FIG. 7 describes an exchange protocol between a broadcaster, a central processor, a secure processor and a response collection device as described with reference to Figure 5 according to the invention according to a particular embodiment
  • FIG. 8 describes a flowchart of operation of a central processor with time stamping method according to the invention according to a particular embodiment
  • FIG. 9 describes an operating flow diagram of a secure processor with time stamping method according to the invention according to a particular embodiment.
  • the general principle of the invention is mainly based on the use of a number N of digital streams to define a time stamp required by an application.
  • N is typically of the order of a hundred and these streams are specific services (S1, S2, ... SN) of television and / or digital radio broadcast by a broadcaster.
  • S1, S2, ... SN specific services
  • Each of these services is called “time stamping service”.
  • TSS Transmission Service
  • the application defined by an interactive service provider can itself be transmitted from an application server to a broadcaster and then broadcast when it is used by an interactive television and received by a digital multimedia decoder (in English "set top box ”) at a user's home.
  • the regular TSS services carry additional data, called “time stamping information” or TSI.
  • Each of this TSI information includes the following information: - the current time stamp t;
  • a means of preventing the alteration of the TSI information for example a signature of TSI based on a private key specific to the TSS service.
  • the broadcaster provides a time stamping challenge (in English "Time Stamping Challenge") or TSC preferably coming from the application server which includes:
  • N of TSS services - the number N of TSS services; - the list of all TSS services, that is to say an ordered list of N services which provide time information.
  • the TSC timestamp challenge and the TSI information are received by a digital terminal which can be a multimedia digital decoder and which includes:
  • the terminal uses a secure processor which randomly (or pseudo-randomly) defines a sequence (ie an ordered sequence) of service identifiers including SCH services taken from the N services in the list mentioned in the TSC challenge.
  • the secure processor must then collect the successive timestamps present in the TSI information of each of the service SCHs defined by the ordered sequence.
  • the set of services to be scanned being defined randomly by the secure processor, a fraudster who would like to reconstruct a time stamp should register all the TSS services and replay in deferred time all the TSS services broadcast, which is extremely cumbersome to implement and prohibitive cost.
  • SCH preferably having a value between 1 and 10, the probability that a fraudster chooses the right service values is low and all the more low as SCH is large. If the need for security must be increased, a SCH value greater than 10 or even N may be taken.
  • the SCH value is preferably defined by the application server requiring a time stamp as a function of the desired degree of security. The application server can change the SCH value often in order to increase security.
  • recovery challenge in English “retrieval challenge”
  • it is a challenge asking to extract, according to a preferred embodiment, a variable number of bytes in one or more of the components of at least one service considered and, according to another embodiment, in the set services.
  • Typical challenges consist, for example, of finding the bytes numbered 12 to 35 in a video stream at the precise moment when the title of the event is broadcast.
  • the secure processor must also collect the response corresponding to the definition of successive recovery challenges present in the TSI information of each of the SCH services defined by the ordered sequence.
  • the secure processor gathers in a TSM timestamp message:
  • the secure processor signs the set consisting of the data or data to be timestamped and the TSM message with its private key. Everything is sent to a response collection center (in English “Answer
  • Collecting Center or ACC (or more generally a digital data collection center) via, for example, a telephone line coupled to a modem or a removable secure processor reader (a smart card for example).
  • the response collection center is itself linked to an application server requiring a time stamp via, for example, a telephone line.
  • the ACC center having in its possession the value (s) of SCH, the list of the public keys used for the verification of signatures and fingerprints used during a period of validity of the time-stamped data, performs a verification of the TSM message at several levels comprising:
  • the ACC center does not need to know the correct answers to the challenges apart from the data provided by the TSM message.
  • the ACC center After checking the time-stamped data, the ACC center can transmit the validated data and the corresponding time stamp to the application server.
  • FIG. 1 an infrastructure for broadcasting digital multimedia data with the use of a time stamp is presented.
  • This infrastructure includes:
  • the application server 109 sends requests 110 for services requiring a response (or digital data) with time stamp to a broadcaster 100 and receives responses 111 with time stamp validated from the ACC center 108.
  • Requests 110 for services also include challenges timestamp or TSC containing a SCH value which depends on the desired degree of security as well as a list of N services which can be used for timestamps.
  • the application server 109 is for example a game or betting server.
  • the broadcaster 100 is for example a broadcaster of digital television and / or radio services through a medium such as a cable or a satellite.
  • a medium such as a cable or a satellite.
  • it broadcasts timestamping challenges or TSC 101, which are preferably communicated to it by the application server 109, to the digital multimedia decoders 102, 103 and 104 after reception of a request 110 for services requiring a response with timestamp from the application server 109.
  • the TSC challenges are produced by the diffuser 100.
  • the user 112 (respectively 113 and 114) can send a response A 115 to his own multimedia digital decoder 102 (respectively 103, 104) (via for example a keyboard, a remote control, a voice recognition or recording unit or a touch screen) to a question from the application that he is viewing, for example on a television screen connected to his decoder 102 (respectively 103, 104).
  • his own multimedia digital decoder 102 (respectively 103, 104) (via for example a keyboard, a remote control, a voice recognition or recording unit or a touch screen) to a question from the application that he is viewing, for example on a television screen connected to his decoder 102 (respectively 103, 104).
  • Each of the S digital multimedia decoders 102, 103 and 104 receives timestamping challenges or TSC 101. Then when its user has provided an answer to a question from the application, a secure processor present in the decoder concerned 102, 103 or 104 respectively constructs a message comprising the response A (digital data) and a time stamping message, or time stamp, TSM which it transmits on a channel 105, 106 or 107 respectively of the telephone link type or a direct link by secure processor reader to an ACC 108 center. The ACC 108 center receives A response messages with their time stamps.
  • the ACC center is also responsible for transmitting responses A with validated timestamps 111 to the application server 109.
  • FIG. 2 schematically illustrates a multimedia digital decoder 200 such as one of the decoders 102, 103 or 104 present in the infrastructure of FIG. 1.
  • the decoder 200 comprises interconnected by an address and data bus 203:
  • tuner or tuner 201
  • register designates in each of the memories mentioned, both a low-capacity memory area (some binary data) and a high-capacity memory area (allowing a program to be stored whole or an entire sequence of data).
  • tuner 101 is suitable for extracting and formatting multimedia data corresponding to one or more television and / or radio services as well as data of the time stamping challenge or TSC 101 type originating from a channel 216.
  • the video decoder 218 transforms the digital data received from the tuner 201 into analog data for television. This analog data is supplied on an output 219.
  • the random access memory 205 stores data, variables and intermediate processing results, in memory registers bearing in the description, the same names as the data whose values they store.
  • the RAM 205 includes in particular: - a TSC register 210 in which a received time stamp challenge is kept;
  • the non-volatile memory 204 stores in registers which, for convenience, have the same names as the data they store, in particular the operating program of the processor 202 in a “Prog” register 209.
  • the TSI extractor 206 is adapted to extract the timestamp information from a data stream supplied by the tuner 201.
  • the extractor transmits the data extracted on the bus 203 to the processor 202.
  • the modem 208 is suitable for transmitting responses with a time stamp to an ACC center via a telephone line. Other types of return path can of course be used.
  • the man / machine interface 217 is adapted to take into account the responses given by the user through, for example, a keyboard, a remote control, a voice recognition or recording unit or a touch screen.
  • FIG. 3 schematically illustrates a secure processor 207 as illustrated with reference to FIG. 2.
  • the secure processor 207 comprises interconnected by an address and data bus 303:
  • non-volatile memory 304 of flash EEPROM type
  • Non-volatile memory 304 stores in registers which, for convenience, have the same names as the data they store, in particular: - the operating program of processor 302 in a “Prog” register 305;
  • the RAM 311 stores data, variables and intermediate processing results, in memory registers bearing in the description, the same names as the data whose values they store.
  • the RAM 311 includes in particular:
  • a time stamp message in a “TSM” register 310 a time stamp message in a “TSM” register 310.
  • the response A and the time stamp message TSM are not placed in the volatile memory 311 but in the rewritable non-volatile memory 304 when in particular the secure processor 207 is removable and when, in particular, the response A and the time stamp message TSM are intended to be transmitted directly from the secure processor to a collection center via the secure processor 207.
  • FIG. 4 describes a device 400 for collecting ACC responses and verifying timestamps having a modem for retrieving the responses.
  • the device 400 is like the ACC collection center 108 illustrated with reference to FIG. 1.
  • the device 400 for collecting responses ACC comprises linked together by an address and data bus 403:
  • processor 402 - a non-volatile memory 404;
  • the modem 401 is able to receive and format messages with time stamps coming from a digital multimedia decoder in order to deliver them to the processor 402.
  • the random access memory 405 stores data, variables and intermediate processing results, in memory registers bearing in the description, the same names as the data whose values they store.
  • the random access memory 405 comprises in particular: - a TSM register 409 in which a message received with time stamp is kept;
  • the public key of the secure processor KPubU could have been transmitted with the TSM message received or recorded beforehand by any means known to those skilled in the art.
  • the public keys of the KPubTSSi time stamping services or the public key of the KPubD broadcaster are known to the ACC center by any means.
  • a device for collecting responses and checking time stamps has a secure processor reader.
  • the device of Figure 5 includes elements similar to those of Figure 4 previously described which have the same reference numbers and will not be described further. It is observed that a reader 501 of a removable secure processor replaces the modem 401. This reader 501 is capable of receiving and formatting messages with time stamp originating from a removable secure processor in order to deliver them to the processor 402.
  • FIG. 6 which describes an exchange protocol between a diffuser 100, a central processor 202 of a digital decoder, a secure processor 207 and a device for collecting responses as illustrated with reference to FIGS. 1 to 4, further to a service request requiring a response with time stamp
  • the broadcaster 100 carries out a broadcast 601 of TSC timestamp challenge to the central processor 202.
  • the central processor 202 extracts from TSC the number of SCH challenges and the number of services N to be taken into account for a time stamp and performs a transmission 602 of SCH, N and 603 of a response A, given by the user through l interface 217, to secure processor 207.
  • the secure processor determines a random sequence of time stamping CS, by performing a random or pseudo-random drawing of a sequence of SCH service identifiers CS [i], each value that can take a CS identifier ⁇ / between 1 and N, representing a service from the N services of the list mentioned in the TSC challenge, the indices / being between 1 and SCH included, and two service identifiers in the sequence CS can to be equal.
  • a first time information request and response to a recovery challenge operation is carried out during which the secure processor sends a time stamp information request 604 corresponding to a first service "Ask (CS [1 ]) ”To the central processor 202.
  • the latter after setting the tuner 201 to the CS channel [1], extracts the time stamp information from this first TSI service (CS [1]) as well as the response to a first RetC [1] recovery challenge defined by TSI (CS [1]) before transmitting, in step 606, the TSI information (CS [1]) and the RetC response [1] to the secure processor 207.
  • this operation of time information request and response to a recovery challenge for each of the services CS [i] is repeated, with an integer / ranging from 2 to SCH.
  • the secure processor signs the TSM message and response A with its private key KPriU 306 during a operation 610 and sends a signed TSM timestamp message 611 to the processor 202 which retransmits this message with the response A in a message 612 to the center> ACC 108.
  • the ACC center validates the response during a step 613 and, where appropriate, transmits the validated response and timestamp to the application server.
  • FIG. 7 which describes an exchange protocol between a broadcaster 100, a central processor 202 of digital decoder, a secure processor 207 removable and a response collection device as illustrated with reference to FIGS. 1, 2, 3 and 5, following a request for services requiring a response with time stamp, the broadcaster 100 performs a challenge challenge broadcast 601 TSC timestamp to central processor 202.
  • the device of FIG. 7 comprises protocol elements similar to those of FIG. 6 previously described which bear the same reference numbers and will not be described further.
  • the secure processor 207 retains in its non-volatile memory 304 the response A and the corresponding TSM message. The user can then remove the secure processor 207 from the multimedia digital decoder 200 to insert it into the reader 501 of an ACC center 500.
  • the ACC 500 center then performs a reading 711 of the response A and the signed time stamp message TSM.
  • the ACC center then validates the response A and if necessary sends the validated response with a time stamp to the application server.
  • FIG. 8 which shows the operation of a central processor 202 with a time stamping method included in the electronic device illustrated in FIG. 2, it is observed that after an initialization operation 800 during which the registers of the RAM 205 are initialized, during a wait operation 801, the processor 202 waits to receive then receives a response A to time stamp.
  • the processor 202 loads a TSC challenge from a broadcaster.
  • the TSC challenge includes:
  • the size of the SCH challenge ie the number of services to be taken into account in the challenge
  • transport_streamJD transport_streamJD
  • the broadcasting system preferably conforms to the DVB-SI standard of ETSI (European Telecommunications Standard Institute), "Specification for Service Information in Digital Video Broadcasting Systems" published under the reference ETS300468.
  • ETSI European Telecommunications Standard Institute
  • the networkJD triplet, transport_stream_ID, service D uniquely identifies a broadcast service.
  • the processor 202 extracts from the challenge TSC, the size SCH of the challenge and the number N of services then sends SCH, N and the response A to the secure processor 207.
  • the processor 202 initializes a counter “Compt” at 0. Then, during an operation 805, the counter “Compt” is incremented by one.
  • the processor 202 waits for a challenge request CS [Compt] coming from the secure processor 207.
  • the processor 202 extracts from the data received via the broadcasting channel the information TSI corresponding to the challenge CS [Account] denoted TSI (CS [Account]) and the response corresponding to the recovery challenge Ret C [Account] found in TSI (CS [ compt]) and then transmits them to the secure processor 207.
  • the invention is compatible with the aforementioned DVB-SI standard which defines mandatory packets and private packets. Private packets can be configured as required and can therefore be used for time stamping services.
  • Each TSS service has in its event information table, denoted EIT in the DVB-SI standard, a private data packet called time information packet, denoted TIP.
  • the standard structure of this TIP packet includes only one identifier and a number of bytes, all other fields being defined by the user.
  • the TIP packet is perfectly suited to the implementation of the invention and, according to the preferred embodiment, the TSI information (CS [count]) is transmitted in the form of a TIP packet which includes:
  • TIP_header_tag an identifier specific to the type of TIP, TIP_header_tag
  • a recovery challenge is completely defined by a CDef definition comprising the fields challengejtype, starting_byte and numbejbytes.
  • the SIGN signature has two roles: it uniquely identifies the TSSi service with its private key and guarantees the integrity of the time information.
  • the diffuser 100 can change the parameters of the challengejype, starting_byte and number_bytes challenge at any time.
  • the public key KPubTSSi of the TSSi service is present in the ACC 108 center. Independent service providers can use the same timestamp information which is provided by the broadcaster 100.
  • the processor 202 tests whether the value of the counter “Compt” is equal to the number SCH.
  • increment operation 805 is repeated. If so, during an operation 809, the processor 202 waits for a time stamp message TSM coming from the processor 207. Then, when the TSM message is received, during an operation 810, the processor 202 transmits the response A with the TSM message to the center> ACC.
  • operation 801 is repeated. It is noted that when the transmission of the response is done using a removable secure processor 207, operations 809 and 810 are not carried out and that one passes directly from test 808 with positive response to the reiteration of the 'operation 801.
  • the processor 202 can place several responses A with time stamp in a queue for transmission before transmitting them in deferred time to a center 108 ACC.
  • FIG. 9 which shows the operation of a secure processor 207 with a time stamping method included in the electronic device illustrated in FIG. 2 and illustrated in detail with reference to FIG. 3, it is observed that after an initialization operation 900 during which the registers of the RAM 305 are initialized, during a waiting operation 901 the processor 302 waits to receive then receives a response A to time stamp, the size SCH of the challenge and the number N of services to consider. Then, during an operation 902, the processor 302 randomly or pseudo-randomly selects a sequence of
  • SCH numbers between 1 and N (each of these numbers being a pointer to a service in the ordered list of TSS services) representing a CS sequence of SCH challenges.
  • the processor 302 initializes a counter “Compt” to zero.
  • the secure processor 207 transmits to the central processor 202 the challenge of rank Compt, CSfCompt].
  • the processor 302 waits for the information TSI (CS [Comp and for the definition of the corresponding recovery challenge during an operation 906. It then performs an operation of extraction of the response to the recovery challenge Then, during a test 907, the processor 302 checks whether the value of the counter “Compt” is equal to the number of SCH challenges. If not, the increment operation 904 is repeated. If so, during an operation 908, the processor 302 constructs a signed TSM message which includes the following data:
  • - For each value from / ranging from 1 to SCH: - a service number which defines the TSS service used for the challenge / ' ; its value is the position of the TSS in the list provided by the TSC challenge; the first service in the list has the number 1;
  • the totajsignature signature generation operation uses the private key
  • FIG. 10 which shows the operation of a response collection device 108 ACC illustrated in FIG. 4 or in FIG. 5, it is observed that after an initialization operation 1000 during which the registers of the random access memory 405 are initialized, during a wait operation 1001 the processor 402 waits to receive then receives a response A and a corresponding TSM message. Then, during a test 1002, the processor 402 checks whether the signature totajsignature of the response A and of the message TSM is good using the public key KPubU of the secure processor, the public key KPubU having been sent by the secure processor to the ACC center during a previous operation not shown
  • the processor 402 checks whether there are indeed SCH challenges present in the TSM message, SCH having been previously communicated by the broadcaster or the application server during an operation not shown.
  • the processor 402 initializes a counter, / ' to zero. Then during an operation 1005, the processor 402 increments the counter / by one
  • the processor 402 checks the validity of the rank challenge / ' by checking:
  • the processor 402 checks whether the counter has reached the value of SCH. When the result of test 1007 is negative, the increment operation
  • the processor 402 checks the consistency of the time stamp information itself.
  • tProcess the maximum time to process a complete challenge including the computing time of the secure processor, the processing time of the central processor and the switching time.
  • a simple verification consists in testing the value of TI [SCH] corresponding to the timestamp information of rank SCH which must be less than or equal to a value equal to the sum of the timestamp information of rank 1 and of the product of tProcess by the number of challenges minus 1:
  • a finer check consists in testing for each value of an integer between 2 and the value SCH, the value of Tl [j] corresponding to the timestamp information of rank j which must be less than or equal to a value equal to the sum of the timestamp information of rank y-1 and tProcess:
  • the time stamp information Tl [j] for a number j between 1 and SCH relates to a service of rank j: it depends not only on an effective time stamp but also on the service of rank j, each sort of service with its own timescale. It is thus possible to increase security by having a particular coding of the time stamp (which makes it possible to return to a “absolute time” scale).
  • the test 1008 then takes this coding into account, implements an operation which makes it possible to pass from a time stamp relating to a service to an absolute time stamp independent of the service and considers for the test itself only absolute time stamps. If so, during an operation 1009, the TSM message is declared to be valid and the response A is transmitted to the application server with an absolute time stamp corresponding to T1 [1] to be used.
  • the person skilled in the art can make any variant in defining the challenges.
  • the invention is not limited to a television and / or radio broadcasting infrastructure comprising a broadcaster, decoders and an ACC center, but extends to any infrastructure for broadcasting digital streams with at least one server. application, this application being linked to the use of time stamping or events, such as for example an Internet server.
  • the invention is not limited to the timestamp of responses to a broadcast question, but applies to the timestamp of any type of data transmitted or not by a broadcaster requiring a timestamp such as for example spontaneous messages , multimedia documents, purchase requests, time stamping being based on the use of broadcast digital streams.
  • the invention is not limited to the terminals responsible for carrying out the time stamping which are of the digital multimedia decoder type but extends to any type of terminal suitable for receiving digital data streams.
  • the invention is not limited to transmissions of responses to an ACC center via a modem or a direct link with a secure processor, but extends to transmissions using any means of transmission such as for example a bus or a network. .
  • the invention is not limited to a purely material implantation but that it can also be implemented in the form of a sequence of instructions of a computer program or any form mixing a material part and a software part.
  • the corresponding sequence of instructions may be stored in a removable storage means (such as for example a floppy disk, a CD-ROM or a DVD-ROM) or no, this storage means being partially or totally readable by a computer or a microprocessor.

Landscapes

  • Engineering & Computer Science (AREA)
  • Signal Processing (AREA)
  • Multimedia (AREA)
  • Computer Security & Cryptography (AREA)
  • Social Psychology (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Human Computer Interaction (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
  • Television Systems (AREA)
  • Computer And Data Communications (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
  • Circuits Of Receivers In General (AREA)

Abstract

The invention concerns a time stamping method for digital data comprising: an operation which consists in defining (902) a sequence of services (CS) comprising at least a service (TSS), each service being selected from a list of services (TSS) in accordance with a selection process which gives a variable result at each of the service sequence defining operations (902); and an operation for collecting (807) a sequence of time stamping information elements, which consists in extracting at least an information element (TSI(CS[i])) of each service (CS[i]) of the sequence of services (CS) to form the elements of the sequence of information elements, each information element including an information representing a current time stamp.

Description

Système, procédé et dispositif d'horodatage et de vérification de la validité d'horodate dans un environnement de diffusion numérique- System, method and device for time stamping and checking the validity of a time stamp in a digital broadcasting environment
Domaine de l'invention La présente invention se rapporte au domaine de l'horodatage (en anglais « time stamping ») dans un environnement de télévision numérique, l'horodatage de données étant l'action de marquer ces données à l'aide d'une information tenant compte d'une heure et/ou d'une date précise, appelée horodate. Plus précisément, l'invention concerne l'horodatage de données nécessitant une grande sécurité contre la fraude, à partir de données diffusées dans notamment dans des services de télévision numérique.Field of the Invention The present invention relates to the field of time stamping (in English "time stamping") in a digital television environment, data time stamping being the action of marking this data using information taking into account a specific time and / or date, called a time stamp. More specifically, the invention relates to the time stamping of data requiring high security against fraud, from data broadcast in particular in digital television services.
D'une manière générale, on appellera « service » dans la suite un flux de données numériques tel que par exemple un service de télévision numérique ou un canal physique ou logique de transmission de données numériques.In general, a digital data stream such as for example a digital television service or a physical or logical digital data transmission channel will hereinafter be called "service".
Etat de la techniqueState of the art
On connaît dans l'état de la technique différentes techniques d'horodatage. Notamment, on connaît un système d'horodatage utilisé dans un environnement de télévision numérique. Ce système est décrit dans la demande de brevet WO 95.15653 des inventeurs Lappington, Marshall, Yamamoto, Wilson, Berkobin et Simons, dont le demandeur est l'entreprise Zing Systems et qui a été publié en juin 1995. Ce document décrit un système où deux ensembles de données avec une horodate sont envoyés séparément à des unités distantes comprenant un décodeur de données, une télécommande et un centre d'opérations. Au sein de chaque unité distante, les horodates sont comparées à une horloge distante et une différence d'horodate est notée pour chacun des deux ensembles de données. Les deux différences sont comparées pour déterminer si l'un des ensembles a été retardé par rapport à l'autre. Seuls les ensembles non retardés pourront être validés.Various time stamping techniques are known in the state of the art. In particular, a time stamping system is known which is used in a digital television environment. This system is described in patent application WO 95.15653 from the inventors Lappington, Marshall, Yamamoto, Wilson, Berkobin and Simons, whose applicant is the company Zing Systems and which was published in June 1995. This document describes a system where two Datasets with a time stamp are sent separately to remote units including a data decoder, a remote control, and an operations center. Within each remote unit, the timestamps are compared to a remote clock and a difference in timestamp is noted for each of the two sets of data. The two differences are compared to determine if one of the sets has been delayed compared to the other. Only non-delayed sets can be validated.
Un inconvénient de cette technique de l'art antérieur est le manque de sécurité qu'elle procure. En effet, on peut déceler plusieurs failles liées à un manque de résistance à certaines attaques notamment : le jeu d'un flux vidéo préenregistré, le vol d'un ensemble de données appartenant à une autre personne, l'utilisation d'une même horodate appliquée à des données distinctes.A disadvantage of this technique of the prior art is the lack of security that it provides. Indeed, we can detect several flaws linked to a lack of resistance to certain attacks in particular: the play of a prerecorded video stream, the theft of a set of data belonging to another person, using the same timestamp applied to separate data.
L'invention selon ses différents aspects a notamment pour objectif de pallier ces inconvénients de l'art antérieur. Plus précisément, un objectif de l'invention est de fournir un système, un procédé et un dispositif d'horodatage et/ou de vérification de la validité d'horodate qui procure une grande fiabilité et une sécurité dans l'horodatage de données numériques à partir de données diffusées par des services notamment de télévision et/ou radio numériques. La sécurité comprend deux aspects essentiels : l'intégrité et la non révocation. L'intégrité signifie qu'on ne peut pas modifier l'horodate. La non révocation implique que l'émetteur de données horodatées ne peut prétendre que les données ont été horodatées à un moment différent de l'horodate. Par exemple, pour un pari sur une course, il est important d'être sûr que le pari a eu lieu avant le début de la course.The invention according to its different aspects aims in particular to overcome these drawbacks of the prior art. More specifically, an object of the invention is to provide a system, method and device for time stamping and / or checking the validity of a time stamp which provides high reliability and security in the time stamping of digital data to from data broadcast by digital television and / or radio services in particular. Security has two essential aspects: integrity and non-revocation. Integrity means that you cannot change the time stamp. Non-revocation implies that the issuer of time-stamped data cannot claim that the data was time-stamped at a time different from the time-stamp. For example, for a bet on a race, it is important to be sure that the bet was made before the start of the race.
L'horodatage est facile quand l'événement à horodater a lieu en prise directe avec une autorité de confiance. Il est beaucoup plus complexe lorsqu'il a lieu d'une manière déportée; s'il est nécessaire d'utiliser par exemple un centre téléphonique pour effectuer un pari, le moment de la réception d'un appel n'est pas souhaitable pour horodater un événement puisqu'il peut exister le cas échéant un temps d'attente dans une file; ce moment de réception peut être différent de l'instant effectif de pari. Un objectif de l'invention est de permettre un horodatage précis (par exemple à la seconde près). Un autre objectif de l'invention est de permettre à une autorité de confiance d'authentifier et de valider cet horodatage pour, par exemple, permettre à l'utilisateur d'obtenir des gains de pari ou à l'autorité de confiance de déterminer l'ordre effectif des réponses à une question.Timestamping is easy when the event to be timestamped takes place directly with a trusted authority. It is much more complex when it takes place in a remote manner; if it is necessary to use for example a telephone center to make a bet, the moment of reception of a call is not desirable to time stamp an event since there may exist a waiting time if necessary a girl; this reception time may be different from the actual bet time. An objective of the invention is to allow precise time stamping (for example to the nearest second). Another object of the invention is to allow a trusted authority to authenticate and validate this timestamp to, for example, allow the user to obtain bet wins or the trusted authority to determine the effective order of responses to a question.
Exposé de l'invention Dans ce but, l'invention propose un procédé d'horodatage de données numériques remarquable en ce qu'il comprend :Disclosure of the invention For this purpose, the invention proposes a method of time stamping digital data remarkable in that it comprises:
- une opération de définition d'une séquence de services comprenant au moins un service, chaque service étant choisi au sein d'une liste de services selon une méthode de choix donnant un résultat variable pour chaque occurrence de définition d'une séquence de services ; et - une opération de collecte d'une séquence d'éléments d'information d'horodate, selon laquelle on extrait au moins un élément d'information de chaque service de la séquence de services pour former les éléments de la séquence d'éléments d'information, chaque élément d'information comprenant une information représentative d'une horodate courante.an operation for defining a sequence of services comprising at least one service, each service being chosen from a list of services according to a method of choice giving a variable result for each occurrence of definition of a sequence of services; and an operation for collecting a sequence of timestamp information elements, according to which at least one information element is extracted from each service of the service sequence to form the elements of the sequence of elements of information, each piece of information comprising information representative of a current time stamp.
Ainsi, l'invention permet de définir une séquence de services qui n'est pas connue à l'avance d'un éventuel fraudeur, séquence qui contient des informations représentatives d'horodate qui pourra par la suite être utilisée pour un horodatage de données, cette séquence étant difficile à reproduire, à prédire ou à falsifier. Si un fraudeur veut déjouer le système, il doit enregistrer plusieurs flux et avoir la possibilité de les rejouer de façon parfaitement synchronisée. Si le nombre de flux est suffisamment grand, le coût d'une telle fraude devient prohibitif. On notera que la liste de services peut avoir une taille quelconque y compris la taille égale à un. Dans ce dernier cas, la mise en oeuvre de l'invention est simplifiée (le choix étant une opération triviale). Toutefois, pour optimiser l'efficacité de l'invention, il est souhaitable d'avoir au moins deux services. Le nombre de services peut être variable en fonction des besoins (niveau de sécurité souhaité).Thus, the invention makes it possible to define a sequence of services which is not known in advance to a possible fraudster, a sequence which contains information representative of a time stamp which can subsequently be used for a time stamping of data, this sequence being difficult to reproduce, to predict or to falsify. If a fraudster wants to thwart the system, he must record several flows and have the possibility of replaying them in a perfectly synchronized manner. If the number of flows is large enough, the cost of such fraud becomes prohibitive. Note that the list of services can have any size including the size equal to one. In the latter case, the implementation of the invention is simplified (the choice being a trivial operation). However, to optimize the effectiveness of the invention, it is desirable to have at least two services. The number of services can be varied according to needs (desired level of security).
Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce que la méthode de choix donnant un résultat variable est une méthode de tirage aléatoire ou pseudo aléatoire. La même approche peut être appliquée pour le nombre de services pris en compte. Ainsi, dans ce mode très avantageux de l'invention, un éventuel fraudeur n'a aucun moyen de prédire la séquence de services définie.According to a particular characteristic, the time stamping method is remarkable in that the method of choice giving a variable result is a method of random or pseudo-random drawing. The same approach can be applied for the number of services taken into account. Thus, in this very advantageous mode of the invention, a potential fraudster has no means of predicting the defined sequence of services.
Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce qu'il comprend une étape d'émission et/ou de réception d'un message comprenant le nombre de services de la séquence de services et la liste de services.According to a particular characteristic, the time stamping method is remarkable in that it comprises a step of sending and / or receiving a message comprising the number of services in the sequence of services and the list of services.
De cette manière, l'invention permet avantageusement à un diffuseur de service ou à un serveur d'application de déterminer un degré de sûreté implicite en jouant sur le nombre de services de la liste de services et le nombre de services de la séquence de service. Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce qu'il comporte une opération de construction d'un groupe de données horodaté comprenant:In this way, the invention advantageously allows a service broadcaster or an application server to determine an implicit degree of security by playing on the number of services in the service list and the number of services in the service sequence. . According to a particular characteristic, the time stamping method is remarkable in that it comprises an operation for constructing a time stamped data group comprising:
- un groupe d'informations comprenant : - les données numériques ;- a group of information including: - digital data;
- un identifiant de chacun des services de la séquence de services ;- an identifier of each of the services in the sequence of services;
- la séquence d'informations d'horodate ;- the timestamp information sequence;
- et une signature d'au moins un élément du groupe d'informations.- and a signature of at least one element of the information group.
Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce qu'il comprend en outre une opération de collecte d'une séquence de signatures d'informations, chacune des signatures étant associée de manière biunivoque à chacune des informations d'horodate et signant une information comprenant l'information d'horodate et un identifiant du service dont elle est issue et le procédé d'horodatage étant remarquable également en ce que le groupe de données horodaté comprend en outre la séquence de signatures d'informations.According to a particular characteristic, the time stamping method is remarkable in that it further comprises an operation of collecting a sequence of information signatures, each of the signatures being associated in a one-to-one manner with each of the time stamp information and signing information comprising timestamp information and an identifier of the service from which it originates and the timestamping method also being remarkable in that the timestamped data group further comprises the sequence of information signatures.
Ainsi, l'invention offre avantageusement un degré de sûreté supplémentaire grâce aux signatures qui empêchent toute altération des éléments signés.Thus, the invention advantageously offers an additional degree of security thanks to the signatures which prevent any alteration of the signed elements.
Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce que :According to a particular characteristic, the time stamping method is remarkable in that:
- chaque information d'horodate comprend en outre la définition d'un challenge de recouvrement à extraire de la liste de services ; et- each timestamp information also includes the definition of a recovery challenge to be extracted from the list of services; and
- en ce que le procédé d'horodatage comprend en outre une opération d'extraction d'une réponse correspondant à la définition de chaque challenge de recouvrement. Ainsi, dans ce mode avantageux de l'invention, on augmente encore le degré de sûreté du procédé d'horodatage, les moyens nécessaires pour frauder étant très lourds et d'un coût prohibitif alors que le procédé d'horodatage lui-même reste relativement simple à mettre en œuvre. Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce que le groupe de données horodaté comprend en outre la réponse correspondant à la définition de chaque challenge de recouvrement.- in that the timestamping method further comprises an operation for extracting a response corresponding to the definition of each recovery challenge. Thus, in this advantageous embodiment of the invention, the degree of security of the time stamping process is further increased, the means necessary to defraud being very heavy and of a prohibitive cost while the time stamping process itself remains relatively simple to implement. According to a particular characteristic, the time stamping method is remarkable in that the time stamped data group comprises in addition to the answer corresponding to the definition of each collection challenge.
Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce que chaque information d'horodate comprend en outre une empreinte de la réponse.According to a particular characteristic, the timestamping method is remarkable in that each timestamp information additionally comprises a fingerprint of the response.
Une empreinte d'informations est un extrait ou un condensé d'informations obtenu par une technique de hachage (ou « hash » en anglais).An information fingerprint is an extract or digest of information obtained by a hash technique.
Ainsi, l'invention se prête avantageusement à une vérification de l'horodate ne nécessitant pas la connaissance a priori de la réponse au challenge de recouvrement, mais requérant la seule prise en compte d'une ou plusieurs clés publiques qui préférentiellement serviront à vérifier la signature de l'information d'horodate et/ou de l'empreinte de réponse.Thus, the invention advantageously lends itself to a verification of the timestamp not requiring a priori knowledge of the response to the collection challenge, but requiring the sole taking into account of one or more public keys which preferably will be used to verify the signature of the time stamp information and / or of the response fingerprint.
Le procédé d'horodatage permet notamment de faire passer un condensé des réponses au challenge de recouvrement attendues d'un diffuseur à un centre de collecte. Ce condensé transite par un terminal de l'utilisateur mais les réponses attendues ne sont pas accessibles par l'utilisateur. Par ailleurs, le procédé d'horodatage reste simple à mettre en œuvre grâce notamment à la présence des empreintes qui permettent de limiter la taille de mémoire ou la bande passante nécessaire à la transmission des réponses attendues.The timestamping process notably makes it possible to send a summary of the responses to the collection challenge expected from a broadcaster at a collection center. This digest goes through a user terminal but the expected responses are not accessible by the user. Furthermore, the time stamping method remains simple to implement thanks in particular to the presence of fingerprints which make it possible to limit the memory size or the bandwidth necessary for the transmission of the expected responses.
Selon une caractéristique particulière, le procédé d'horodatage est remarquable en ce qu'il comprend une opération d'émission du groupe de données horodaté. Ainsi, l'invention permet avantageusement une exploitation déportée ou une vérification de l'horodate de données.According to a particular characteristic, the time stamping method is remarkable in that it comprises an operation for transmitting the time stamped data group. Thus, the invention advantageously allows remote operation or verification of the data timestamp.
Dans les buts précités, l'invention propose aussi un procédé de vérification de la validité d'horodate de données numériques, obtenue selon un procédé d'horodatage tel que décrit précédemment. Selon une caractéristique particulière, ce procédé est remarquable en ce qu'il effectue une vérification d'au moins un groupe de données susceptible d'être horodaté par un procédé d'horodatage tel que précédemment décrit.For the aforementioned purposes, the invention also proposes a method for verifying the validity of a timestamp of digital data, obtained according to a timestamping method as described above. According to a particular characteristic, this method is remarkable in that it performs a verification of at least one group of data capable of being time-stamped by a time-stamping method as previously described.
Ainsi, on exploite avantageusement l'horodate associée à des données et qui a été produite selon un procédé fiable s'opposant à toute fraude. Selon une caractéristique particulière, le procédé de vérification de la validité d'horodate est remarquable en ce qu'il comprend au moins une opération de vérification faisant partie du groupe comprenant :Thus, advantageously exploits the timestamp associated with data and which has been produced according to a reliable process opposing any fraud. According to a particular characteristic, the method for verifying the validity of a timestamp is remarkable in that it comprises at least one verification operation forming part of the group comprising:
- une opération de vérification de signature d'un groupe de données;- a signature group verification operation;
- une opération de vérification d'un nombre de services requis ;- an operation to verify the number of services required;
- une opération de vérification attestant que chaque information d'horodate correspond bien à un service requis ;- a verification operation attesting that each timestamp information corresponds to a required service;
- une opération de vérification de la validité d'une réponse à un éventuel challenge de recouvrement requis pour chaque information d'horodate ; et- an operation to verify the validity of a response to a possible recovery challenge required for each time stamp information; and
- une opération de vérification de la cohérence d'horodatage extrait d'un groupe de données horodatées.- a timestamp consistency check operation extracted from a group of timestamped data.
Selon une caractéristique particulière, le procédé de vérification de la validité d'horodate est remarquable en ce qu'il comprend une opération de transmission des données numériques validées.According to a particular characteristic, the method for verifying the validity of a timestamp is remarkable in that it comprises an operation for transmitting validated digital data.
Ainsi, le procédé de vérification permet avantageusement de vérifier chacun des points qui garantissent l'authenticité d'une horodate d'une manière qui peut éventuellement être adaptée à un degré de sûreté recherché. Le procédé de vérification prend notamment en compte un condensé des réponses au challenge de recouvrement attendues qui reste inaccessible à l'utilisateur du procédé d'horodatage. Par ailleurs, le procédé de vérification reste simple à mettre en œuvre grâce notamment à la présence des empreintes qui permettent de limiter la taille de mémoire nécessaire (une trace de l'information à vérifier n'étant pas conservée en mémoire).Thus, the verification method advantageously makes it possible to verify each of the points which guarantee the authenticity of a timestamp in a manner which can possibly be adapted to a desired degree of security. The verification process notably takes into account a summary of the responses to the expected recovery challenge which remains inaccessible to the user of the time stamping process. Furthermore, the verification process remains simple to implement thanks in particular to the presence of fingerprints which make it possible to limit the size of memory required (a trace of the information to be verified is not kept in memory).
L'invention concerne également un système comprenant des moyens de mise en œuvre de:The invention also relates to a system comprising means for implementing:
- un procédé de diffusion de services, chacun des services contenant des éléments d'informations représentatives d'horodate ;a method of broadcasting services, each of the services containing pieces of information representative of a time stamp;
- un procédé d'horodatage et un procédé de vérification de la validité d'horodate tels que décrits précédemment.- a timestamping method and a method for verifying the validity of timestamps as described above.
L'invention propose également dans les mêmes buts que précédemment un dispositif d'horodatage de données numériques remarquable en ce qu'il comprend des moyens adaptés à la mise en œuvre d'un procédé d'horodatage et/ou de vérification de la validité d'horodate selon l'un des procédés mentionnés ci-dessus.The invention also proposes, for the same purposes as above, a device for time stamping digital data which is remarkable in that it comprises means suitable for setting up implementation of a time stamping process and / or verification of the validity of a time stamp according to one of the processes mentioned above.
De même, l'invention propose un dispositif d'horodatage de données numériques remarquable en ce qu'il comprend : - un moyen de définition d'une séquence de services comprenant au moins un service, chacun des services étant choisi au sein d'une liste de services selon une méthode de choix donnant un tirage variable pour deux utilisations du moyen de définition d'une séquence de services ; et - un moyen de collecte d'une séquence d'éléments d'information d'horodate extrayant au moins un élément d'information de chacun des services de la séquence de services pour former les éléments de la séquence d'éléments d'information, chaque élément d'information comprenant une information représentative d'une horodate courante.Likewise, the invention proposes a device for time-stamping digital data which is remarkable in that it comprises: a means of defining a sequence of services comprising at least one service, each of the services being chosen within a list of services according to a method of choice giving a variable circulation for two uses of the means of defining a sequence of services; and - means for collecting a sequence of timestamp information elements extracting at least one information element from each of the services of the service sequence to form the elements of the sequence of information elements, each piece of information comprising information representative of a current time stamp.
De même, l'invention propose un dispositif .de vérification de la validité d'horodate de données numériques remarquable en ce qu'il comprend au moins un moyen de vérification faisant partie du groupe comprenant : - un moyen de vérification de signature d'un groupe de données;Likewise, the invention proposes a device for verifying the validity of a timestamp of digital data remarkable in that it comprises at least one verification means forming part of the group comprising: - a signature verification means of a data group;
- un moyen de vérification d'un nombre de services requis ;- a means of verifying a number of required services;
- un moyen de vérification attestant que chaque information d'horodate correspond bien à un service requis ;- a means of verification attesting that each timestamp information corresponds to a required service;
- un moyen de vérification de la validité d'une réponse à un éventuel challenge de recouvrement requis pour chaque information d'horodate ; et- a means of verifying the validity of a response to a possible recovery challenge required for each time stamp information; and
- un moyen de vérification de la cohérence d'horodatage extrait d'un groupe de données horodatées.- a means of checking the timestamp consistency extracted from a group of timestamped data.
Les caractéristiques particulières et les avantages des dispositifs et du système d'horodatage et de vérification de la validité d'horodate étant les mêmes que ceux des procédés d'horodatage et de vérification de la validité d'horodate, ils ne sont pas rappelés ici.The particular characteristics and advantages of the devices and of the time stamping and time stamp validity verification system being the same as those of the time stamping and time stamp validity checking methods, they are not repeated here.
Brève description des dessinsBrief description of the drawings
D'autres caractéristiques et avantages de l'invention apparaîtront plus clairement à la lecture de la description suivante de modes de réalisation préférentiels, donnés à titre de simples exemples illustratifs et non limitatifs, et des dessins annexés, parmi lesquels :Other characteristics and advantages of the invention will appear more clearly on reading the following description of modes of preferential embodiments, given by way of simple illustrative and nonlimiting examples, and of the appended drawings, among which:
- la figure 1 présente une infrastructure de diffusion de données numériques multimédia avec utilisation d'un horodatage conforme à l'invention selon un mode particulier de réalisation ;- Figure 1 shows an infrastructure for broadcasting multimedia digital data with the use of a time stamp according to the invention according to a particular embodiment;
- la figure 2 illustre un décodeur numérique multimédia présent dans l'infrastructure de la figure 1 conforme à l'invention selon un mode particulier de réalisation ;- Figure 2 illustrates a multimedia digital decoder present in the infrastructure of Figure 1 according to the invention according to a particular embodiment;
- la figure 3 décrit un processeur sécurisé permettant un horodatage conforme à l'invention selon un mode particulier de réalisation;- Figure 3 describes a secure processor allowing a time stamp according to the invention according to a particular embodiment;
- la figure 4 décrit un dispositif de collecte de réponses et de vérification d'horodate possédant un modem pour récupérer les réponses conforme à l'invention selon un mode particulier de réalisation ;FIG. 4 describes a device for collecting responses and verifying timestamps having a modem for retrieving the responses according to the invention according to a particular embodiment;
- la figure 5 décrit un dispositif de collecte de réponses et de vérification d'horodate qui selon un autre mode de réalisation préféré, possède un lecteur de processeur sécurisé, conforme à l'invention selon un mode particulier de réalisation ;FIG. 5 describes a device for collecting responses and verifying timestamps which, according to another preferred embodiment, has a secure processor reader, in accordance with the invention according to a particular embodiment;
- la figure 6 décrit un protocole d'échange entre un diffuseur, un processeur central, un processeur sécurisé et un dispositif de collecte de réponses tel que décrit en regard de la figure 4 conforme à l'invention selon un mode particulier de réalisation ;- Figure 6 describes an exchange protocol between a broadcaster, a central processor, a secure processor and a response collection device as described with reference to Figure 4 according to the invention according to a particular embodiment;
- la figure 7 décrit un protocole d'échange entre un diffuseur, un processeur central, un processeur sécurisé et un dispositif de collecte de réponses tel que décrit en regard de la figure 5 conforme à l'invention selon un mode particulier de réalisation ;- Figure 7 describes an exchange protocol between a broadcaster, a central processor, a secure processor and a response collection device as described with reference to Figure 5 according to the invention according to a particular embodiment;
- la figure 8 décrit un organigramme de fonctionnement d'un processeur central avec procédé d'horodatage conforme à l'invention selon un mode particulier de réalisation ;- Figure 8 describes a flowchart of operation of a central processor with time stamping method according to the invention according to a particular embodiment;
- la figure 9 décrit un organigramme de fonctionnement d'un processeur sécurisé avec procédé d'horodatage conforme à l'invention selon un mode particulier de réalisation ; et- Figure 9 describes an operating flow diagram of a secure processor with time stamping method according to the invention according to a particular embodiment; and
- la figure 10 décrit un organigramme de fonctionnement d'un dispositif de collecte de réponse avec procédé de vérification de la validité d'horodate conforme à l'invention selon un mode particulier de réalisation. Description détaillée de modes de réalisation de l'invention- Figure 10 describes a flowchart of operation of a response collection device with method for verifying the validity of time stamp according to the invention according to a particular embodiment. Detailed description of embodiments of the invention
Le principe général de l'invention repose principalement sur l'utilisation d'un nombre N de flux numériques pour définir une horodate requise par une application. Dans le cas par exemple d'un système de diffusion de télévision et/ou radio numériques, N est typiquement de l'ordre de cent et ces flux sont des services spécifiques {S1, S2, ... SN) de télévision et/ou radio numérique émis par un diffuseur. Chacun de ces services est appelé « service d'horodatage » (en anglais « Time StampingThe general principle of the invention is mainly based on the use of a number N of digital streams to define a time stamp required by an application. In the case for example of a digital television and / or radio broadcasting system, N is typically of the order of a hundred and these streams are specific services (S1, S2, ... SN) of television and / or digital radio broadcast by a broadcaster. Each of these services is called “time stamping service”.
Service ») ou TSS. L'application définie par un fournisseur de service interactif peut elle-même être transmise d'un serveur d'application vers un diffuseur puis diffusée lorsqu'elle est utilisée par une télévision interactive et reçue par un décodeur numérique multimédia (en anglais « set top box ») chez un utilisateur. Les services réguliers TSS transportent des données additionnelles, appelées « information d'horodatage » (en anglais « Time Stamping Information ») ou TSI.Service ”) or TSS. The application defined by an interactive service provider can itself be transmitted from an application server to a broadcaster and then broadcast when it is used by an interactive television and received by a digital multimedia decoder (in English "set top box ”) at a user's home. The regular TSS services carry additional data, called “time stamping information” or TSI.
Chacune de ces informations TSI, comprend les informations suivantes : - l'horodate courante t ;Each of this TSI information includes the following information: - the current time stamp t;
- un identifiant du service TSS ;- a TSS service identifier;
- une définition d'un challenge de recouvrement ;- a definition of a recovery challenge;
- une empreinte de la réponse au challenge de recouvrement mentionné, cette empreinte étant produite à partir d'une clé privée propre au diffuseur ;- an imprint of the response to the mentioned collection challenge, this imprint being produced using a private key specific to the broadcaster;
- un moyen d'empêcher l'altération de l'information TSI, par exemple une signature de TSI basée sur une clé privée propre au service TSS.a means of preventing the alteration of the TSI information, for example a signature of TSI based on a private key specific to the TSS service.
En plus de l'information délivrée traditionnellement par le service auquel s'applique l'horodatage, le diffuseur fournit un challenge d'horodatage (en anglais « Time Stamping Challenge ») ou TSC en provenance préférentiellement du serveur d'application qui comprend :In addition to the information traditionally delivered by the service to which the time stamping applies, the broadcaster provides a time stamping challenge (in English "Time Stamping Challenge") or TSC preferably coming from the application server which includes:
- la taille d'un challenge appelé SCH comprise entre 1 et N ;- the size of a challenge called SCH between 1 and N;
- le nombre N de services TSS ; - la liste de tous les services TSS, c'est-à-dire une liste ordonnée de N services qui fournissent une information de temps.- the number N of TSS services; - the list of all TSS services, that is to say an ordered list of N services which provide time information.
Le challenge d'horodatage TSC et les informations TSI sont reçues par un terminal numérique qui peut être un décodeur numérique multimédia et qui comprend :The TSC timestamp challenge and the TSI information are received by a digital terminal which can be a multimedia digital decoder and which includes:
- un moyen d'extraire les informations données par un TSC ;- a means of extracting the information given by a TSC;
- un moyen d'extraire une horodate de chacun des services TSS; et- a means of extracting a time stamp from each of the TSS services; and
- un processeur sécurisé amovible ou non possédant sa propre clé privée de cryptage.- a secure processor, removable or not, having its own private encryption key.
Pour construire une horodate, le terminal utilise un processeur sécurisé qui définit aléatoirement (ou pseudo-aléatoirement) une séquence (c'est à dire une suite ordonnée) d'identificateurs des services comprenant SCH services pris parmi les N services de la liste mentionnée dans le challenge TSC.To build a timestamp, the terminal uses a secure processor which randomly (or pseudo-randomly) defines a sequence (ie an ordered sequence) of service identifiers including SCH services taken from the N services in the list mentioned in the TSC challenge.
Le processeur sécurisé doit alors collecter les horodates successives présentes dans les informations TSI de chacun des SCH services définis par la séquence ordonnée. Le jeu de services à scruter étant défini aléatoirement par le processeur sécurisé, un fraudeur qui voudrait reconstruire une horodate devrait enregistrer tous les services TSS et rejouer en temps différé tous les services TSS diffusés, ce qui est extrêmement lourd à mettre en œuvre et d'un coût prohibitif. En effet, SCH valant préférentiellement une valeur comprise entre 1 et 10, la probabilité qu'un fraudeur choisisse les bonnes valeurs de service est faible et d'autant plus faible que SCH est grand. Si le besoin de sécurité doit être augmenté, on pourra prendre une valeur de SCH supérieure à 10 voire à N. La valeur de SCH est préférentiellement définie par le serveur d'application nécessitant un horodatage en fonction du degré de sécurité désiré. Le serveur d'application peut changer la valeur de SCH souvent afin d'augmenter la sécurité.The secure processor must then collect the successive timestamps present in the TSI information of each of the service SCHs defined by the ordered sequence. The set of services to be scanned being defined randomly by the secure processor, a fraudster who would like to reconstruct a time stamp should register all the TSS services and replay in deferred time all the TSS services broadcast, which is extremely cumbersome to implement and prohibitive cost. In fact, SCH preferably having a value between 1 and 10, the probability that a fraudster chooses the right service values is low and all the more low as SCH is large. If the need for security must be increased, a SCH value greater than 10 or even N may be taken. The SCH value is preferably defined by the application server requiring a time stamp as a function of the desired degree of security. The application server can change the SCH value often in order to increase security.
En outre, pour augmenter la difficulté du fraudeur, un niveau supplémentaire de challenge appelé challenge de recouvrement (en anglais « retrieval challenge ») a été défini: il s'agit d'un challenge demandant à extraire, selon un mode de réalisation préféré, un nombre variable d'octets dans l'une ou plusieurs des composantes d'au moins un service considéré et, selon un autre mode de réalisation, dans l'ensemble des services. Des challenges typiques consistent par exemple à retrouver les octets numérotés 12 à 35 dans un flux vidéo à l'instant précis où le titre de l'événement est diffusé. Ainsi, le processeur sécurisé doit aussi collecter la réponse correspondant à la définition de challenges de recouvrement successifs présents dans les informations TSI de chacun des SCH services définis par la séquence ordonnée.In addition, to increase the difficulty of the fraudster, an additional level of challenge called recovery challenge (in English "retrieval challenge") has been defined: it is a challenge asking to extract, according to a preferred embodiment, a variable number of bytes in one or more of the components of at least one service considered and, according to another embodiment, in the set services. Typical challenges consist, for example, of finding the bytes numbered 12 to 35 in a video stream at the precise moment when the title of the event is broadcast. Thus, the secure processor must also collect the response corresponding to the definition of successive recovery challenges present in the TSI information of each of the SCH services defined by the ordered sequence.
Après collecte des informations nécessaires, le processeur sécurisé regroupe dans un message d'horodate TSM :After collecting the necessary information, the secure processor gathers in a TSM timestamp message:
- les SCH horodates ; - les SCH réponses aux challenges de recouvrement ;- SCH time stamps; - CHS responses to collection challenges;
- une empreinte de chacune des réponses attendues aux challenges de recouvrement fournie par le diffuseur dans l'information TSI ;- an imprint of each of the expected responses to the recovery challenges provided by the broadcaster in the TSI information;
- les SCH signatures de TSI, (on pourra se référer à l'ouvrage « Applied Cryptography » écrit par de B. Schneier chez l'éditeur- SCH signatures of TSI, (we can refer to the book “Applied Cryptography” written by de B. Schneier at the publisher
Wesley&Sons en 1996 pour la mise en oeuvre des méthodes de signature).Wesley & Sons in 1996 for the implementation of signature methods).
Puis, le processeur sécurisé signe l'ensemble constitué de la ou des données à horodater et du message TSM avec sa clé privée. Le tout est transmis à un centre de collecte de réponses (en anglais « AnswerThen, the secure processor signs the set consisting of the data or data to be timestamped and the TSM message with its private key. Everything is sent to a response collection center (in English “Answer
Collecting Center ») ou ACC (ou plus généralement un centre de collecte de données numériques) via, par exemple, une ligne téléphonique couplée à un modem ou un lecteur de processeur sécurisé amovible (une carte à puce par exemple). Le centre de collecte de réponses est lui-même lié à un serveur d'application requérant un horodatage via par exemple une ligne téléphonique.Collecting Center ”) or ACC (or more generally a digital data collection center) via, for example, a telephone line coupled to a modem or a removable secure processor reader (a smart card for example). The response collection center is itself linked to an application server requiring a time stamp via, for example, a telephone line.
Le centre ACC ayant en sa possession la ou les valeurs de SCH, la liste les clés publiques servant à la vérification des signatures et des empreintes utilisées pendant une période de validité des données horodatées, effectue une vérification du message TSM à plusieurs niveaux comprenant:The ACC center having in its possession the value (s) of SCH, the list of the public keys used for the verification of signatures and fingerprints used during a period of validity of the time-stamped data, performs a verification of the TSM message at several levels comprising:
- une vérification que le nombre de services scrutés est bien égal à la valeur de SCH valide au moment de l'horodatage ; - une vérification de la signature de l'ensemble de la ou des données horodatées et du message TSM ; - une vérification que l'empreinte de la réponse à chaque challenge de recouvrement correspond bien à l'empreinte de chaque réponse attendue fournie par le diffuseur dans l'information TSI ; - une vérification de chaque signature de TSI correspondant à un service de la séquence ordonnée ;- a check that the number of services scanned is indeed equal to the value of SCH valid at the time stamp; - a verification of the signature of all of the time-stamped data or data and of the TSM message; - verification that the footprint of the response to each recovery challenge corresponds to the footprint of each expected response provided by the broadcaster in the TSI information; - a verification of each TSI signature corresponding to a service of the ordered sequence;
- une vérification de la validité des horodates fournies.- a check of the validity of the time stamps supplied.
On note que le centre ACC n'a pas besoin de connaître les bonnes réponses aux challenges en dehors des données fournies par le message TSM.Note that the ACC center does not need to know the correct answers to the challenges apart from the data provided by the TSM message.
Après vérification des données horodatées, le centre ACC peut transmettre les données validées et l'horodate correspondante vers le serveur d'application.After checking the time-stamped data, the ACC center can transmit the validated data and the corresponding time stamp to the application server.
On présente, en relation avec la figure 1, une infrastructure de diffusion de données numériques multimédia avec utilisation d'un horodatage.Referring to FIG. 1, an infrastructure for broadcasting digital multimedia data with the use of a time stamp is presented.
Cette infrastructure comprend notamment :This infrastructure includes:
- un serveur d'application 109 ;- an application server 109;
- un diffuseur 100 de télévision ou radio numérique ; - un centre de collecte de réponses ou ACC 108 ;- a digital television or radio broadcaster 100; - a response collection center or ACC 108;
- un ensemble de S décodeurs numériques multimédia 102, 103, 104 ;- a set of S multimedia digital decoders 102, 103, 104;
- un ensemble de S usagers 112, 113, 114.- a set of S users 112, 113, 114.
Le serveur d'application 109 émet des requêtes 110 de services nécessitant une réponse (ou données numériques) avec horodate vers un diffuseur 100 et reçoit des réponses 111 avec horodate validée en provenance du centre ACC 108. Les requêtes 110 de services comprennent aussi des challenges d'horodatage ou TSC contenant une valeur de SCH qui dépend du degré de sécurité désiré ainsi qu'une liste de N services pouvant être utilisés pour des horodatages.The application server 109 sends requests 110 for services requiring a response (or digital data) with time stamp to a broadcaster 100 and receives responses 111 with time stamp validated from the ACC center 108. Requests 110 for services also include challenges timestamp or TSC containing a SCH value which depends on the desired degree of security as well as a list of N services which can be used for timestamps.
Le serveur d'application 109 est par exemple un serveur de jeu ou de pari.The application server 109 is for example a game or betting server.
Le diffuseur 100 est par exemple un diffuseur de services de télévision et/ou radio numérique à travers un médium tel qu'un câble ou un satellite. Outre les services de télévision et/ou de radio traditionnels, il diffuse des challenges d'horodatage ou TSC 101 , qui lui sont préférentiellement communiqués par le serveur d'application 109, vers les décodeurs numériques multimédia 102, 103 et 104 après réception d'une requête 110 de services nécessitant une réponse avec horodate en provenance du serveur d'application 109.The broadcaster 100 is for example a broadcaster of digital television and / or radio services through a medium such as a cable or a satellite. In addition to traditional television and / or radio services, it broadcasts timestamping challenges or TSC 101, which are preferably communicated to it by the application server 109, to the digital multimedia decoders 102, 103 and 104 after reception of a request 110 for services requiring a response with timestamp from the application server 109.
Selon une variante non représentée, les challenges TSC sont produits par le diffuseur 100.According to a variant not shown, the TSC challenges are produced by the diffuser 100.
L'usager 112 (respectivement 113 et 114) peut émettre une réponse A 115 vers son propre décodeur numérique multimédia 102 (respectivement 103, 104) (via par exemple un clavier, une télécommande, un boîtier de reconnaissance ou d'enregistrement vocal ou un écran tactile) à une question de l'application qu'il visualise par exemple sur un écran de télévision connecté à son décodeur 102 (respectivement 103, 104).The user 112 (respectively 113 and 114) can send a response A 115 to his own multimedia digital decoder 102 (respectively 103, 104) (via for example a keyboard, a remote control, a voice recognition or recording unit or a touch screen) to a question from the application that he is viewing, for example on a television screen connected to his decoder 102 (respectively 103, 104).
Chacun des S décodeurs numériques multimédia 102, 103 et 104 reçoit des challenges d'horodatage ou TSC 101. Puis lorsque son usager a fourni une réponse à une question de l'application, un processeur sécurisé présent dans le décodeur concerné 102, 103 ou 104 respectivement construit un message comprenant la réponse A (données numériques) et un message d'horodatage, ou horodate, TSM qu'il émet sur un canal respectivement 105, 106 ou 107 de type liaison téléphonique ou une liaison directe par lecteur de processeur sécurisé vers un centre ACC 108. Le centre ACC 108 reçoit les messages de réponses A avec leurs horodates. Son rôle est d'abord de valider ces messages, générés par les processeurs sécurisés des décodeurs numériques 102, 103, 104 et transmis sur un canal correspondant 105, 106 ou 107, à l'aide des clés publiques des processeurs sécurisés. Ces clés publiques sont fournies par le diffuseur sur un canal quelconque 112. Le centre ACC est aussi chargé d'émettre vers le serveur d'application 109 les réponses A avec horodates validées 111.Each of the S digital multimedia decoders 102, 103 and 104 receives timestamping challenges or TSC 101. Then when its user has provided an answer to a question from the application, a secure processor present in the decoder concerned 102, 103 or 104 respectively constructs a message comprising the response A (digital data) and a time stamping message, or time stamp, TSM which it transmits on a channel 105, 106 or 107 respectively of the telephone link type or a direct link by secure processor reader to an ACC 108 center. The ACC 108 center receives A response messages with their time stamps. Its role is first of all to validate these messages, generated by the secure processors of the digital decoders 102, 103, 104 and transmitted on a corresponding channel 105, 106 or 107, using the public keys of the secure processors. These public keys are supplied by the broadcaster on any channel 112. The ACC center is also responsible for transmitting responses A with validated timestamps 111 to the application server 109.
La figure 2 illustre schématiquement un décodeur numérique multimédia 200 tel que l'un des décodeurs 102, 103 ou 104 présent dans l'infrastructure de la figure 1. Le décodeur 200 comprend reliés entre eux par un bus d'adresses et de données 203:FIG. 2 schematically illustrates a multimedia digital decoder 200 such as one of the decoders 102, 103 or 104 present in the infrastructure of FIG. 1. The decoder 200 comprises interconnected by an address and data bus 203:
- un tuner ou syntoniseur 201 ;- a tuner or tuner 201;
- un processeur 202 ; - une mémoire vive 205 ;- a processor 202; - a random access memory 205;
- une mémoire non volatile 204 ;- a non-volatile memory 204;
- un extracteur d'information d'horodatage ou TSI, 206 ;- a timestamp information extractor or TSI, 206;
- un processeur sécurisé 207 ;- a secure processor 207;
- un modem 208 ; - une interface homme/ machine notée RHM 217 ;- a modem 208; - a man / machine interface marked RHM 217;
- un décodeur vidéo 218.- a video decoder 218.
Chacun des éléments illustrés en figure 2 est bien connu de l'homme du métier. Ces éléments communs ne sont pas décrits ici.Each of the elements illustrated in Figure 2 is well known to those skilled in the art. These common elements are not described here.
On observe en outre que le mot « registre » utilisé dans toute la description désigne dans chacune des mémoires mentionnées, aussi bien une zone de mémoire de faible capacité (quelques données binaires) qu'une zone mémoire de grande capacité (permettant de stocker un programme entier ou l'intégralité d'une séquence de données).It is further observed that the word “register” used throughout the description designates in each of the memories mentioned, both a low-capacity memory area (some binary data) and a high-capacity memory area (allowing a program to be stored whole or an entire sequence of data).
On note cependant que le tuner 101 est adapté à extraire et mettre en forme des données multimédia correspondant à un ou plusieurs services de télévision et/ou de radio ainsi que des données de type challenge d'horodatage ou TSC 101 en provenance d'un canal 216.Note however that the tuner 101 is suitable for extracting and formatting multimedia data corresponding to one or more television and / or radio services as well as data of the time stamping challenge or TSC 101 type originating from a channel 216.
Le décodeur vidéo 218 transforme les données numériques reçues du tuner 201 en données analogiques pour la télévision. Ces données analogiques sont fournies sur une sortie 219.The video decoder 218 transforms the digital data received from the tuner 201 into analog data for television. This analog data is supplied on an output 219.
La mémoire vive 205 conserve des données, des variables et des résultats intermédiaires de traitement, dans des registres de mémoire portant dans la description, les mêmes noms que les données dont ils conservent les valeurs. La mémoire vive 205 comprend notamment : - un registre TSC 210 dans lequel est conservé un challenge d'horodatage reçu ;The random access memory 205 stores data, variables and intermediate processing results, in memory registers bearing in the description, the same names as the data whose values they store. The RAM 205 includes in particular: - a TSC register 210 in which a received time stamp challenge is kept;
- un registre SCH 211 dans lequel est conservée une taille de challenge;- a SCH 211 register in which a challenge size is kept;
- un registre 212 contenant une réponse A fournie par un utilisateur - un registre 213 conservant une information d'horodatage TSI et de réponse « ret Challenge » à un challenge de recouvrement ;- a register 212 containing a response A supplied by a user - a register 213 retaining TSI timestamp information and “ret Challenge” response to a recovery challenge;
- un registre TSM 214 dans lequel est conservé un message d'horodatage. La mémoire non volatile 204 conserve dans des registres qui par commodité possèdent les mêmes noms que les données qu'ils conservent, notamment le programme de fonctionnement du processeur 202 dans un registre « Prog » 209.- a TSM 214 register in which a time stamp message is kept. The non-volatile memory 204 stores in registers which, for convenience, have the same names as the data they store, in particular the operating program of the processor 202 in a “Prog” register 209.
L'extracteur TSI 206 est adapté à extraire les informations d'horodatage d'un flux de données fournies par le tuner 201. L'extracteur émet les données extraites sur le bus 203 à destination du processeur 202.The TSI extractor 206 is adapted to extract the timestamp information from a data stream supplied by the tuner 201. The extractor transmits the data extracted on the bus 203 to the processor 202.
Le modem 208 est adapté à émettre des réponses avec horodate vers un centre ACC via une ligne téléphonique. D'autres types de voie de retour peuvent bien sûr être utilisées.The modem 208 is suitable for transmitting responses with a time stamp to an ACC center via a telephone line. Other types of return path can of course be used.
L'interface homme/machine 217 est adaptée à prendre en compte les réponses données par l'utilisateur à travers par exemple un clavier, une télécommande, un boîtier de reconnaissance ou d'enregistrement vocal ou un écran tactile. La figure 3 illustre schématiquement un processeur sécurisé 207 tel qu'illustré en regard de la figure 2.The man / machine interface 217 is adapted to take into account the responses given by the user through, for example, a keyboard, a remote control, a voice recognition or recording unit or a touch screen. FIG. 3 schematically illustrates a secure processor 207 as illustrated with reference to FIG. 2.
Le processeur sécurisé 207 comprend reliés entre eux par un bus d'adresses et de données 303 :The secure processor 207 comprises interconnected by an address and data bus 303:
- une interface d'entrées/sorties 301 ; - un processeur 302 ;- an input / output interface 301; - a processor 302;
- une mémoire non volatile 304 de type flash EEPROM; et- a non-volatile memory 304 of flash EEPROM type; and
- une mémoire vive 311 ;- a random access memory 311;
Chacun des éléments illustrés en figure 3 est bien connu de l'homme du métier. Ces éléments communs ne sont pas décrits ici. On observe cependant que l'interface d'entrées/sorties 301 est apte à interfacer un bus 303 avec un bus 203 de décodeur numérique multimédia ou lorsque le processeur sécurisé est amovible avec un lecteur de processeur amovible 501 qui sera décrit en regard de la figure 5.Each of the elements illustrated in Figure 3 is well known to those skilled in the art. These common elements are not described here. However, it is observed that the input / output interface 301 is able to interface a bus 303 with a bus 203 of a digital multimedia decoder or when the secure processor is removable with a removable processor reader 501 which will be described with reference to the figure. 5.
La mémoire non volatile 304 conserve dans des registres qui par commodité possèdent les mêmes noms que les données qu'ils conservent, notamment : - le programme de fonctionnement du processeur 302 dans un registre « Prog » 305 ;Non-volatile memory 304 stores in registers which, for convenience, have the same names as the data they store, in particular: - the operating program of processor 302 in a “Prog” register 305;
- une clé privée d'utilisateur dans un registre « KPriil » 306 ;- a private user key in a “KPriil” register 306;
La mémoire vive 311 conserve des données, des variables et des résultats intermédiaires de traitement, dans des registres de mémoire portant dans la description, les mêmes noms que les données dont ils conservent les valeurs. La mémoire vive 311 comprend notamment :The RAM 311 stores data, variables and intermediate processing results, in memory registers bearing in the description, the same names as the data whose values they store. The RAM 311 includes in particular:
- un nombre de challenges et un nombre de services dans un registre « SCH,N» 307 ; - une réponse dans un registre « A » 308 ;- a number of challenges and a number of services in a “SCH, N” register 307; - a response in an “A” register 308;
- une information d'horodatage TSI et de challenge de recouvrement ainsi que la réponse au challenge de recouvrement dans un registre « TSI, ret Challenge » 309 ;- TSI timestamp and recovery challenge information as well as the response to the recovery challenge in a “TSI, ret Challenge” register 309;
- un message d'horodatage dans un registre « TSM » 310. En variante, la réponse A et le message d'horodatage TSM ne sont pas placés dans la mémoire volatile 311 mais dans la mémoire non volatile réinscriptible 304 lorsque notamment le processeur sécurisé 207 est amovible et lorsqu'en particulier la réponse A et le message d'horodatage TSM sont destinés à être transmis directement du processeur sécurisé à un centre de collecte via le processeur sécurisé 207.a time stamp message in a “TSM” register 310. As a variant, the response A and the time stamp message TSM are not placed in the volatile memory 311 but in the rewritable non-volatile memory 304 when in particular the secure processor 207 is removable and when, in particular, the response A and the time stamp message TSM are intended to be transmitted directly from the secure processor to a collection center via the secure processor 207.
La figure 4 décrit un dispositif 400 de collecte de réponses ACC et de vérification d'horodate possédant un modem pour récupérer les réponses. Le dispositif 400 est tel le centre 108 de collecte ACC illustré en regard de la figure 1.FIG. 4 describes a device 400 for collecting ACC responses and verifying timestamps having a modem for retrieving the responses. The device 400 is like the ACC collection center 108 illustrated with reference to FIG. 1.
Le dispositif 400 de collecte de réponses ACC comprend reliés entre eux par un bus d'adresses et de données 403 :The device 400 for collecting responses ACC comprises linked together by an address and data bus 403:
- un modem 401 ;- a 401 modem;
- un processeur 402 ; - une mémoire non volatile 404;- a processor 402; - a non-volatile memory 404;
- une mémoire vive 405.- a random access memory 405.
Chacun des éléments illustrés en figure 4 est bien connu de l'homme du métier. Ces éléments communs ne sont pas décrits ici.Each of the elements illustrated in Figure 4 is well known to those skilled in the art. These common elements are not described here.
On observe cependant que le modem 401 est apte à recevoir et mettre en forme des messages avec horodate en provenance d'un décodeur numérique multimédia pour les remettre au processeur 402. La mémoire vive 405 conserve des données, des variables et des résultats intermédiaires de traitement, dans des registres de mémoire portant dans la description, les mêmes noms que les données dont ils conservent les valeurs. La mémoire vive 405 comprend notamment : - un registre TSM 409 dans lequel est conservé un message reçu avec horodate;However, it is observed that the modem 401 is able to receive and format messages with time stamps coming from a digital multimedia decoder in order to deliver them to the processor 402. The random access memory 405 stores data, variables and intermediate processing results, in memory registers bearing in the description, the same names as the data whose values they store. The random access memory 405 comprises in particular: - a TSM register 409 in which a message received with time stamp is kept;
- un registre « KPubU » 407 contenant une clé publique du processeur sécurisé à l'origine du message reçu;- a “KPubU” register 407 containing a public key of the secure processor at the origin of the message received;
- un registre « KPubTSSi, KPubD » 410 contenant les clés publiques des services d'horodatage TSSi et la clé publique- a register “KPubTSSi, KPubD” 410 containing the public keys of the TSSi timestamping services and the public key
KPubD du diffuseur;KPubD of the diffuser;
- un registre « A » 408 contenant une réponse.- a register "A" 408 containing a response.
La clé publique du processeur sécurisé KPubU aura pu être transmise avec le message TSM reçu ou enregistrée au préalable selon un moyen quelconque connu de l'homme du métier.The public key of the secure processor KPubU could have been transmitted with the TSM message received or recorded beforehand by any means known to those skilled in the art.
Les clés publiques des services d'horodatage KPubTSSi ou la clé publique du diffuseur KPubD sont connues du centre ACC par un moyen quelconque.The public keys of the KPubTSSi time stamping services or the public key of the KPubD broadcaster are known to the ACC center by any means.
Selon une variante de réalisation de l'invention décrite à la figure 5, un dispositif de collecte de réponses et de vérification d'horodate possède un lecteur de processeur sécurisé.According to an alternative embodiment of the invention described in FIG. 5, a device for collecting responses and checking time stamps has a secure processor reader.
Le dispositif de la figure 5 comprend des éléments similaires à ceux de la figure 4 précédemment décrite qui portent les mêmes numéros de référence et ne seront pas décrits davantage. On observe qu'un lecteur 501 de processeur sécurisé amovible remplace le modem 401. Ce lecteur 501 est apte à recevoir et mettre en forme des messages avec horodate en provenance d'un processeur sécurisé amovible pour les remettre au processeur 402.The device of Figure 5 includes elements similar to those of Figure 4 previously described which have the same reference numbers and will not be described further. It is observed that a reader 501 of a removable secure processor replaces the modem 401. This reader 501 is capable of receiving and formatting messages with time stamp originating from a removable secure processor in order to deliver them to the processor 402.
Selon la figure 6 qui décrit un protocole d'échange entre un diffuseur 100, un processeur central 202 de décodeur numérique, un processeur sécurisé 207 et un dispositif de collecte de réponses tels que qu'illustrés en regard des figures 1 à 4, suite à une requête de services nécessitant une réponse avec horodate, le diffuseur 100 effectue une diffusion 601 de challenge d'horodatage TSC vers le processeur central 202. Le processeur central 202 extrait de TSC le nombre de challenges SCH et le nombre de services N à prendre en compte pour un horodatage et effectue une émission 602 de SCH, N et 603 d'une réponse A, donnée par l'utilisateur à travers l'interface 217, vers le processeur sécurisé 207. Ensuite, le processeur sécurisé détermine une séquence aléatoire d'horodatage CS, en effectuant un tirage aléatoire ou pseudo-aléatoire d'une séquence de SCH identificateurs de services CS[i], chaque valeur que peut prendre un identificateur CS ï/ compris entre 1 et N, représentant un service parmi les N services de la liste mentionnée dans le challenge TSC, les indices / étant compris entre 1 et SCH inclus, et deux identificateurs de services dans la séquence CS pouvant être égaux.According to FIG. 6 which describes an exchange protocol between a diffuser 100, a central processor 202 of a digital decoder, a secure processor 207 and a device for collecting responses as illustrated with reference to FIGS. 1 to 4, further to a service request requiring a response with time stamp, the broadcaster 100 carries out a broadcast 601 of TSC timestamp challenge to the central processor 202. The central processor 202 extracts from TSC the number of SCH challenges and the number of services N to be taken into account for a time stamp and performs a transmission 602 of SCH, N and 603 of a response A, given by the user through l interface 217, to secure processor 207. Next, the secure processor determines a random sequence of time stamping CS, by performing a random or pseudo-random drawing of a sequence of SCH service identifiers CS [i], each value that can take a CS identifier ï / between 1 and N, representing a service from the N services of the list mentioned in the TSC challenge, the indices / being between 1 and SCH included, and two service identifiers in the sequence CS can to be equal.
Ensuite, on effectue une première opération de requête d'information de temps et de réponse à un challenge de recouvrement au cours de laquelle le processeur sécurisé émet une requête 604 d'information d'horodatage correspondant à un premier service « Ask(CS[1]) » vers le processeur central 202. Celui-ci, après calage du tuner 201 sur le canal CS[1], extrait au fil de l'eau l'information d'horodatage de ce premier service TSI(CS[1]) ainsi que la réponse à un premier challenge de recouvrement RetC[1] défini par TSI(CS[1]) avant de transmettre, à l'étape 606, l'information TSI(CS[1]) et la réponse RetC[1] vers le processeur sécurisé 207. Ensuite, on réitère cette opération de requête d'information de temps et de réponse à un challenge de recouvrement pour chacun des services CS[i], avec un entier / allant de 2 à SCH. Après réception de la dernière horodate TSI(CS[SCH]) et de la réponse au dernier challenge de recouvrement Ret C[SCH], le processeur sécurisé signe le message TSM et la réponse A avec sa clé privée KPriU 306 au cours d'une opération 610 et émet un message d'horodatage TSM signé 611 vers le processeur 202 qui retransmet ce message avec la réponse A dans un message 612 vers le centre >ACC 108.Next, a first time information request and response to a recovery challenge operation is carried out during which the secure processor sends a time stamp information request 604 corresponding to a first service "Ask (CS [1 ]) ”To the central processor 202. The latter, after setting the tuner 201 to the CS channel [1], extracts the time stamp information from this first TSI service (CS [1]) as well as the response to a first RetC [1] recovery challenge defined by TSI (CS [1]) before transmitting, in step 606, the TSI information (CS [1]) and the RetC response [1] to the secure processor 207. Next, this operation of time information request and response to a recovery challenge for each of the services CS [i] is repeated, with an integer / ranging from 2 to SCH. After receiving the last TSI timestamp (CS [SCH]) and the response to the last ret C retrieval challenge C [SCH], the secure processor signs the TSM message and response A with its private key KPriU 306 during a operation 610 and sends a signed TSM timestamp message 611 to the processor 202 which retransmits this message with the response A in a message 612 to the center> ACC 108.
Le centre ACC valide alors la réponse au cours d'une étape 613 et le cas échéant répercute la réponse et l'horodate validées vers le serveur d'application. Selon la figure 7 qui décrit un protocole d'échange entre un diffuseur 100, un processeur central 202 de décodeur numérique, un processeur sécurisé 207 amovible et un dispositif de collecte de réponses tels que qu'illustrés en regard des figures 1 , 2, 3 et 5, suite à une requête de services nécessitant une réponse avec horodatage, le diffuseur 100 effectue une diffusion 601 de challenge d'horodatage TSC vers le processeur central 202.The ACC center then validates the response during a step 613 and, where appropriate, transmits the validated response and timestamp to the application server. According to FIG. 7 which describes an exchange protocol between a broadcaster 100, a central processor 202 of digital decoder, a secure processor 207 removable and a response collection device as illustrated with reference to FIGS. 1, 2, 3 and 5, following a request for services requiring a response with time stamp, the broadcaster 100 performs a challenge challenge broadcast 601 TSC timestamp to central processor 202.
Le dispositif de la figure 7 comprend des éléments de protocole similaires à ceux de la figure 6 précédemment décrits qui portent les mêmes numéros de référence et ne seront pas décrits davantage.The device of FIG. 7 comprises protocol elements similar to those of FIG. 6 previously described which bear the same reference numbers and will not be described further.
On observe cependant qu'après signature d'un message horodaté, le processeur sécurisé 207 conserve dans sa mémoire non volatile 304 la réponse A et le message TSM correspondant. L'utilisateur peut alors ôter le processeur sécurisé 207 du décodeur numérique multimédia 200 pour l'insérer dans le lecteur 501 d'un centre ACC 500.However, it is observed that after signing a time-stamped message, the secure processor 207 retains in its non-volatile memory 304 the response A and the corresponding TSM message. The user can then remove the secure processor 207 from the multimedia digital decoder 200 to insert it into the reader 501 of an ACC center 500.
Le centre ACC 500 effectue alors une lecture 711 de la réponse A et du message d'horodatage signé TSM.The ACC 500 center then performs a reading 711 of the response A and the signed time stamp message TSM.
Le centre ACC valide alors la réponse A et le cas échéant répercute la réponse validée avec une horodate vers le serveur d'application.The ACC center then validates the response A and if necessary sends the validated response with a time stamp to the application server.
En figure 8, qui présente le fonctionnement d'un processeur central 202 avec procédé d'horodatage inclus dans le dispositif électronique illustré en figure 2, on observe qu'après une opération d'initialisation 800 au cours de laquelle les registres de la mémoire vive 205 sont initialisés, au cours d'une opération d'attente 801 , le processeur 202 attend de recevoir puis reçoit une réponse A à horodater.In FIG. 8, which shows the operation of a central processor 202 with a time stamping method included in the electronic device illustrated in FIG. 2, it is observed that after an initialization operation 800 during which the registers of the RAM 205 are initialized, during a wait operation 801, the processor 202 waits to receive then receives a response A to time stamp.
Puis, immédiatement, au cours d'une opération 802, le processeur 202 charge un challenge TSC en provenance d'un diffuseur.Then, immediately, during an operation 802, the processor 202 loads a TSC challenge from a broadcaster.
Le challenge TSC comprend :The TSC challenge includes:
- la taille de challenge SCH, c'est à dire le nombre de services à prendre en compte dans le challenge ;- the size of the SCH challenge, ie the number of services to be taken into account in the challenge;
- le nombre N de services TSS pouvant participer au challenge ; - et pour chaque service TSSi, leur ordre étant à considérer:- the number N of TSS services that can participate in the challenge; - and for each TSSi service, their order being to be considered:
- un identificateur de réseau, network D, pour ce service ;- a network identifier, network D, for this service;
- un identificateur de flux de transport, transport_streamJD, pour ce service ;- a transport flow identifier, transport_streamJD, for this service;
- un identificateur de service, serviceJD. On note que le système de diffusion est préférentiellement conforme à la norme DVB-SI de l'ETSI (European Télécommunication Standard Institute), « Spécification for Service Information in Digital Video Broadcasting Systems » publié sous la référence ETS300468. Dans la norme DVB-SI, le triplet networkJD, transport_stream_ID, service D identifie de manière unique un service diffusé. Ensuite, au cours d'une opération 803, le processeur 202 extrait du challenge TSC, la taille SCH du challenge et le nombre N de services puis émet SCH, N et la réponse A vers le processeur sécurisé 207.- a service identifier, serviceJD. It should be noted that the broadcasting system preferably conforms to the DVB-SI standard of ETSI (European Telecommunications Standard Institute), "Specification for Service Information in Digital Video Broadcasting Systems" published under the reference ETS300468. In the DVB-SI standard, the networkJD triplet, transport_stream_ID, service D uniquely identifies a broadcast service. Then, during an operation 803, the processor 202 extracts from the challenge TSC, the size SCH of the challenge and the number N of services then sends SCH, N and the response A to the secure processor 207.
Puis, au cours d'une opération 804, le processeur 202 initialise un compteur « Compt » à 0. Ensuite, lors d'une opération 805, le compteur « Compt » est incrémenté d'une unité.Then, during an operation 804, the processor 202 initializes a counter “Compt” at 0. Then, during an operation 805, the counter “Compt” is incremented by one.
Puis, au cours d'une opération 806, le processeur 202 se met en attente d'une requête de challenge CS[Compt] en provenance du processeur sécurisé 207. Lorsqu'il reçoit une telle requête, lors d'une opération 807, le processeur 202 extrait des données reçues via le canal de diffusion l'information TSI correspondant au challenge CS[Compt] notée TSI(CS[Compt]) et la réponse correspondant au challenge de recouvrement Ret C[Compt] se trouvant dans TSI(CS[compt]) et les émet alors vers le processeur sécurisé 207.Then, during an operation 806, the processor 202 waits for a challenge request CS [Compt] coming from the secure processor 207. When it receives such a request, during an operation 807, the processor 202 extracts from the data received via the broadcasting channel the information TSI corresponding to the challenge CS [Account] denoted TSI (CS [Account]) and the response corresponding to the recovery challenge Ret C [Account] found in TSI (CS [ compt]) and then transmits them to the secure processor 207.
Dans le mode préféré de réalisation, l'invention est compatible avec la norme DVB-SI précitée et qui définit des paquets obligatoires et des paquets privés. Les paquets privés sont paramétrables selon les besoins et peuvent ainsi être utilisés pour des services d'horodatage. Chaque service TSS a dans sa table d'information d'événements, notée EIT dans la norme DVB-SI, un paquet de données privé appelé paquet d'information de temps, noté TIP.In the preferred embodiment, the invention is compatible with the aforementioned DVB-SI standard which defines mandatory packets and private packets. Private packets can be configured as required and can therefore be used for time stamping services. Each TSS service has in its event information table, denoted EIT in the DVB-SI standard, a private data packet called time information packet, denoted TIP.
La structure normalisée de ce paquet TIP n'inclut qu'un identifiant et un nombre d'octets, tous les autres champs étant définis par l'utilisateur. Ainsi, le paquet TIP est tout à fait adapté à la mise en œuvre de l'invention et selon le mode préférentiel de réalisation, l'information TSI(CS[compt]) est transmise sous la forme d'un paquet TIP qui comprend :The standard structure of this TIP packet includes only one identifier and a number of bytes, all other fields being defined by the user. Thus, the TIP packet is perfectly suited to the implementation of the invention and, according to the preferred embodiment, the TSI information (CS [count]) is transmitted in the form of a TIP packet which includes:
- un identifiant propre au type de TIP , TIP_header_tag ;- an identifier specific to the type of TIP, TIP_header_tag;
- un nombre d'octets qui suit, length_field ; - un type de challenge, challenge_type, qui contient l'identificateur de paquet d'où l'on doit extraire les octets du challenge de recouvrement ;- a number of bytes which follows, length_field; - a challenge type, challenge_type, which contains the packet identifier from which the bytes of the recovery challenge must be extracted;
- une position du premier octet du challenge de recouvrement, starting_byte, une valeur nulle correspondant au premier octet ;- a position of the first byte of the recovery challenge, starting_byte, a null value corresponding to the first byte;
- un nombre d'octets successifs à extraire pour le challenge de recouvrement, numberjoytes ;- a number of successive bytes to extract for the recovery challenge, numberjoytes;
- une horodate courante, current time, qui contient l'heure et la date courante en temps universel coordonné ; - une empreinte de la réponse correcte au challenge de recouvrement, hashed_correct_answer, l'empreinte étant définie avec une clé privée du diffuseur KPriD (un exemple de fonction de hachage utilisée pour calculer l'empreinte étant décrit dans le document « Fédéral Information Processing Standards, secure hash standards » publié par FIPS sous la référence 180-1);- a current time stamp, current time, which contains the current time and date in coordinated universal time; - a fingerprint of the correct response to the recovery challenge, hashed_correct_answer, the footprint being defined with a private key from the KPriD broadcaster (an example of hash function used to calculate the footprint being described in the document "Federal Information Processing Standards, secure hash standards ”published by FIPS under the reference 180-1);
- une signature SIGN(current_time\\hashed_correct_answer, TSSi) qui représente la signature RSA de currentjtime et hashed_correct_answer définie à l'aide d'une clé privée KPriTSSi du service TSSi ; Un challenge de recouvrement est complètement défini par une définition CDef comprenant les champs challengejtype, starting_byte et numbejbytes.- a SIGN signature (current_time \\ hashed_correct_answer, TSSi) which represents the RSA signature of currentjtime and hashed_correct_answer defined using a private key KPriTSSi of the TSSi service; A recovery challenge is completely defined by a CDef definition comprising the fields challengejtype, starting_byte and numbejbytes.
La signature SIGN a deux rôles : elle identifie de manière unique le service TSSi avec sa clé privée et garantit l'intégrité de l'information de temps.The SIGN signature has two roles: it uniquely identifies the TSSi service with its private key and guarantees the integrity of the time information.
Le diffuseur 100 peut changer à tout moment les paramètres du challenge challengejype, starting_byte et number_bytes.The diffuser 100 can change the parameters of the challengejype, starting_byte and number_bytes challenge at any time.
La clé publique KPubTSSi du service TSSi est présente dans le centre ACC 108. Des fournisseurs de services indépendants peuvent utiliser la même information d'horodate qui est fournie par le diffuseur 100.The public key KPubTSSi of the TSSi service is present in the ACC 108 center. Independent service providers can use the same timestamp information which is provided by the broadcaster 100.
Puis, au cours d'un test 808, le processeur 202 teste si la valeur du compteur « Compt » est égale au nombre SCH.Then, during a test 808, the processor 202 tests whether the value of the counter “Compt” is equal to the number SCH.
Dans la négative, l'opération d'incrément 805 est réitérée. Dans l'affirmative, au cours d'une opération 809, le processeur 202 se met en attente d'un message d'horodatage TSM en provenance du processeur 207. Puis, lorsque le message TSM est reçu, lors d'une opération 810, le processeur 202 transmet vers le centre >ACC la réponse A avec le message TSM.If not, increment operation 805 is repeated. If so, during an operation 809, the processor 202 waits for a time stamp message TSM coming from the processor 207. Then, when the TSM message is received, during an operation 810, the processor 202 transmits the response A with the TSM message to the center> ACC.
Ensuite, l'opération 801 est réitérée. On note que lorsque la transmission de la réponse se fait à l'aide d'un processeur sécurisé 207 amovible, les opérations 809 et 810 ne sont pas effectuées et que l'on passe directement du test 808 avec réponse positive à la réitération de l'opération 801.Then operation 801 is repeated. It is noted that when the transmission of the response is done using a removable secure processor 207, operations 809 and 810 are not carried out and that one passes directly from test 808 with positive response to the reiteration of the 'operation 801.
On note aussi qu'en variante, le processeur 202 peut placer plusieurs réponses A avec horodatage dans une file d'attente pour émission avant de les émettre en temps différé vers un centre 108 ACC.It is also noted that, as a variant, the processor 202 can place several responses A with time stamp in a queue for transmission before transmitting them in deferred time to a center 108 ACC.
En figure 9, qui présente le fonctionnement d'un processeur sécurisé 207 avec procédé d'horodatage inclus dans le dispositif électronique illustré en figure 2 et illustré en détail en regard de la figure 3, on observe qu'après une opération d'initialisation 900 au cours de laquelle les registres de la mémoire vive 305 sont initialisés, au cours d'une opération d'attente 901 le processeur 302 attend de recevoir puis reçoit une réponse A à horodater, la taille SCH du challenge et le nombre N de services à considérer. Ensuite, au cours d'une opération 902, le processeur 302 sélectionne aléatoirement ou pseudo-aléatoirement une séquence deIn FIG. 9, which shows the operation of a secure processor 207 with a time stamping method included in the electronic device illustrated in FIG. 2 and illustrated in detail with reference to FIG. 3, it is observed that after an initialization operation 900 during which the registers of the RAM 305 are initialized, during a waiting operation 901 the processor 302 waits to receive then receives a response A to time stamp, the size SCH of the challenge and the number N of services to consider. Then, during an operation 902, the processor 302 randomly or pseudo-randomly selects a sequence of
SCH nombres compris entre 1 et N (chacun de ces nombres étant un pointeur sur un service dans la liste ordonnée de services TSS) représentant une séquence CS de SCH challenges. Puis, au cours d'une opération 903, le processeur 302 initialise un compteur « Compt » à zéro.SCH numbers between 1 and N (each of these numbers being a pointer to a service in the ordered list of TSS services) representing a CS sequence of SCH challenges. Then, during an operation 903, the processor 302 initializes a counter “Compt” to zero.
Ensuite, au cours d'une opération 904, le compteur « Compt » est incrémenté d'une unité.Then, during an operation 904, the counter “Compt” is incremented by one.
Ensuite, lors d'une opération 905, le processeur sécurisé 207 émet vers le processeur central 202 le challenge de rang Compt, CSfCompt].Then, during an operation 905, the secure processor 207 transmits to the central processor 202 the challenge of rank Compt, CSfCompt].
Puis, le processeur 302 se met en attente de l'information TSI(CS[Comp et de la définition du challenge de recouvrement correspondants au cours d'une opération 906. Il effectue alors une opération d'extraction de la réponse au challenge de recouvrement. Ensuite, au cours d'un test 907, le processeur 302 vérifie si la valeur du compteur « Compt » est égale au nombre de challenges SCH. Dans la négative, l'opération d'incrément 904 est réitérée. Dans l'affirmative, au cours d'une opération 908, le processeur 302 construit un message TSM signé qui comprend les données suivantes :Then, the processor 302 waits for the information TSI (CS [Comp and for the definition of the corresponding recovery challenge during an operation 906. It then performs an operation of extraction of the response to the recovery challenge Then, during a test 907, the processor 302 checks whether the value of the counter “Compt” is equal to the number of SCH challenges. If not, the increment operation 904 is repeated. If so, during an operation 908, the processor 302 constructs a signed TSM message which includes the following data:
- Pour chaque valeur de / allant de 1 à SCH : - un numéro de service qui définit le service TSS utilisé pour le challenge /' ; sa valeur est la position du TSS dans la liste fournie par le challenge TSC ; le premier service de la liste a le numéro 1 ;- For each value from / ranging from 1 to SCH: - a service number which defines the TSS service used for the challenge / ' ; its value is the position of the TSS in the list provided by the TSC challenge; the first service in the list has the number 1;
- Pour chaque valeur de allant de 1 à SCH : - l'horodate courante, current ime ;- For each value ranging from 1 to SCH: - the current timestamp, current ime;
- l'empreinte hashed_correct_answer ;- the hashed_correct_answer fingerprint;
- la signature SIGN(current_time\\hashed_correct_answer, TSSi) ;- the SIGN signature (current_time \\ hashed_correct_answer, TSSi);
- les number_bytes octets de challenge challenge_byte extraits du flux de données en fonction du challenge de recouvrement ;- the challenge_byte challenge_byte number_bytes extracted from the data stream according to the recovery challenge;
- la signature totajsignature obtenue par signature RSA de la concaténation de la réponse A et de toutes les données du message TSM à l'exclusion de sa propre signature ; l'opération de génération de la signature totajsignature utilise la clé privée- the signature totajsignature obtained by RSA signature of the concatenation of the response A and all the data of the TSM message excluding its own signature; the totajsignature signature generation operation uses the private key
KPriil 306 du processeur sécurisé 207 ; Ensuite lors d'une opération 909, le message TSM signé est:KPriil 306 from secure processor 207; Then during an operation 909, the signed TSM message is:
- émis vers le processeur 202 ; ou- sent to processor 202; or
- conservé en mémoire avant d'être émis directement en temps différé vers un centre ACC 108 si le processeur sécurisé est amovible et qu'il n'y a pas de liaison directe entre le processeur 202 et un centre ACC ; Ensuite, l'opération 901 est réitérée.- kept in memory before being sent directly in deferred time to an ACC center 108 if the secure processor is removable and there is no direct link between the processor 202 and an ACC center; Then, operation 901 is repeated.
En figure 10, qui présente le fonctionnement d'un dispositif de collecte de réponse 108 ACC illustré en figure 4 ou en figure 5, on observe qu'après une opération d'initialisation 1000 au cours de laquelle les registres de la mémoire vive 405 sont initialisés, au cours d'une opération d'attente 1001 le processeur 402 attend de recevoir puis reçoit une réponse A et un message TSM correspondant. Ensuite, lors d'un test 1002, le processeur 402 vérifie si la signature totajsignature de la réponse A et du message TSM est bonne à l'aide de la clé publique KPubU du processeur sécurisé, la clé publique KPubU ayant été envoyée par le processeur sécurisée au centre ACC au cours d'une opération précédente non représentéeIn FIG. 10, which shows the operation of a response collection device 108 ACC illustrated in FIG. 4 or in FIG. 5, it is observed that after an initialization operation 1000 during which the registers of the random access memory 405 are initialized, during a wait operation 1001 the processor 402 waits to receive then receives a response A and a corresponding TSM message. Then, during a test 1002, the processor 402 checks whether the signature totajsignature of the response A and of the message TSM is good using the public key KPubU of the secure processor, the public key KPubU having been sent by the secure processor to the ACC center during a previous operation not shown
Dans l'affirmative, lors d'un test 1003, le processeur 402 vérifie s'il y a effectivement SCH challenges présents dans le message TSM, SCH ayant été précédemment communiqué par le diffuseur ou le serveur d'application au cours d'une opération non représentée .If so, during a test 1003, the processor 402 checks whether there are indeed SCH challenges present in the TSM message, SCH having been previously communicated by the broadcaster or the application server during an operation not shown.
Dans l'affirmative, au cours d'une opération 1004, le processeur 402 initialise un compteur, /' à zéro. Puis au cours d'une opération 1005, le processeur 402 incrémente d'une unité le compteur /If so, during an operation 1004, the processor 402 initializes a counter, / ' to zero. Then during an operation 1005, the processor 402 increments the counter / by one
Ensuite, au cours d'un test 1006, le processeur 402 vérifie la validité du challenge de rang /' en vérifiant :Then, during a test 1006, the processor 402 checks the validity of the rank challenge / ' by checking:
- la signature SIGN(currentJime\\hashed_correct_value,CS[i]) en utilisant la clé publique KPubCS[i] du service CS[i] ;- the SIGN signature (currentJime \\ hashed_correct_value, CS [i]) using the public key KPubCS [i] of the service CS [i];
- l'empreinte du challenge de recouvrement qui doit être égale à la valeur correspondante hashed_correct_value ;- the imprint of the recovery challenge which must be equal to the corresponding value hashed_correct_value;
Dans l'affirmative, au cours d'un test 1007, le processeur 402, vérifie si le compteur a atteint la valeur de SCH. Lorsque le résultat du test 1007 est négatif, l'opération d'incrémentIf so, during a test 1007, the processor 402 checks whether the counter has reached the value of SCH. When the result of test 1007 is negative, the increment operation
1005 est réitérée.1005 is repeated.
Lorsque le résultat du test 1007 est positif, au cours d'un test 1008, le processeur 402, vérifie la cohérence de l'information d'horodate elle- même. On note tProcess le temps maximum pour traiter un challenge complet comprenant le temps de calcul du processeur sécurisé, le temps de traitement du processeur central et le temps de commutation.When the result of the test 1007 is positive, during a test 1008, the processor 402, checks the consistency of the time stamp information itself. We note tProcess the maximum time to process a complete challenge including the computing time of the secure processor, the processing time of the central processor and the switching time.
Une simple vérification consiste à tester la valeur de TI[SCH] correspondant à l'information d'horodate de rang SCH qui doit être inférieure ou égale à une valeur égale à la somme de l'information d'horodate de rang 1 et du produit de tProcess par le nombre de challenges moins 1 :A simple verification consists in testing the value of TI [SCH] corresponding to the timestamp information of rank SCH which must be less than or equal to a value equal to the sum of the timestamp information of rank 1 and of the product of tProcess by the number of challenges minus 1:
TI[SCH] ≤ Tl[1]+(SCH-1).tProcess. Une vérification plus fine consiste à tester pour chaque valeur d'un entier compris entre 2 et la valeur SCH, la valeur de Tl[j] correspondant à l'information d'horodate de rang j qui doit être inférieure ou égale à une valeur égale à la somme de l'information d'horodate de rang y-1 et de tProcess:TI [SCH] ≤ Tl [1] + (SCH-1) .tProcess. A finer check consists in testing for each value of an integer between 2 and the value SCH, the value of Tl [j] corresponding to the timestamp information of rank j which must be less than or equal to a value equal to the sum of the timestamp information of rank y-1 and tProcess:
TI[i]≤TI[}-1]+tProcess pour toute valeur de j telle queTI [i] ≤TI [} - 1] + tProcess for any value of j such that
2≤j≤SCH. Selon une variante, l'information d'horodate Tl[j] pour un nombre j compris entre 1 et SCH est relative à un service de rang j : elle dépend non seulement d'une horodate effective mais aussi du service de rang j, chaque service ayant en quelque sorte sa propre échelle de temps. On peut ainsi augmenter la sécurité en ayant un codage particulier de l'horodate (qui permet de revenir à une échelle de « temps absolu »). Le test 1008 prend alors en compte ce codage, met en œuvre une opération qui permet de passer d'une horodate relative à un service à une horodate absolue indépendante du service et considère pour le test lui-même uniquement des horodates absolues. Dans l'affirmative, au cours d'une opération 1009, le message TSM est déclaré comme étant valide et la réponse A est transmise au serveur d'application avec une horodate absolue correspondant à Tl[1] pour être exploitée.2≤j≤SCH. According to a variant, the time stamp information Tl [j] for a number j between 1 and SCH relates to a service of rank j: it depends not only on an effective time stamp but also on the service of rank j, each sort of service with its own timescale. It is thus possible to increase security by having a particular coding of the time stamp (which makes it possible to return to a “absolute time” scale). The test 1008 then takes this coding into account, implements an operation which makes it possible to pass from a time stamp relating to a service to an absolute time stamp independent of the service and considers for the test itself only absolute time stamps. If so, during an operation 1009, the TSM message is declared to be valid and the response A is transmitted to the application server with an absolute time stamp corresponding to T1 [1] to be used.
Lorsqu'un des tests 1002, 1003, 1006 ou 1008 est négatif, le message TSM n'est pas valide et la réponse A avec l'information d'horodatage correspondante est rejetée.When one of the tests 1002, 1003, 1006 or 1008 is negative, the TSM message is not valid and the response A with the corresponding time stamp information is rejected.
Puis, à la suite de l'une des opérations 1009 ou 1010, l'opération d'attente 1001 est réitérée.Then, following one of the operations 1009 or 1010, the waiting operation 1001 is repeated.
Le mode de réalisation décrit n'a pas pour objectif de réduire la portée de l'invention. En conséquence, il pourra y être apporté de nombreuses modifications sans sortir du cadre de celle-ci ; notamment, il pourra être envisagé des procédés, systèmes ou dispositifs avec une mise en œuvre dégradée ne comportant qu'un sous ensemble des opérations ou moyens d'horodatage ou de vérification de validité d'horodate précédemment décrits. Inversement, des opérations complémentaires peuvent être ajoutées.The embodiment described is not intended to reduce the scope of the invention. Consequently, numerous modifications may be made to it without departing from its scope; in particular, it will be possible to envisage methods, systems or devices with a degraded implementation comprising only a subset of the operations or means of time stamping or of checking of time stamp validity described above. Conversely, additional operations can be added.
Bien entendu, l'invention n'est pas non plus limitée aux exemples de réalisation mentionnés ci-dessus.Of course, the invention is also not limited to the exemplary embodiments mentioned above.
En particulier, l'homme du métier pourra apporter toute variante dans la définition des challenges. On note par ailleurs que l'invention ne se limite pas à une infrastructure de diffusion de télévision et/ou radio comprenant un diffuseur, des décodeurs et un centre ACC mais s'étend à toute infrastructure de diffusion de flux numériques avec au moins un serveur d'application, cette application étant liée à l'utilisation d'horodatage ou d'événements, tel que par exemple un serveur Internet.In particular, the person skilled in the art can make any variant in defining the challenges. It should also be noted that the invention is not limited to a television and / or radio broadcasting infrastructure comprising a broadcaster, decoders and an ACC center, but extends to any infrastructure for broadcasting digital streams with at least one server. application, this application being linked to the use of time stamping or events, such as for example an Internet server.
De même, l'invention ne se limite pas à l'horodatage de réponses à une question diffusée, mais s'applique à l'horodatage de tout type de données transmises ou non par un diffuseur nécessitant un horodatage tel que par exemple des messages spontanés, des documents multimédia, des demandes d'achat, l'horodatage étant basé sur l'utilisation de flux numériques diffusés.Similarly, the invention is not limited to the timestamp of responses to a broadcast question, but applies to the timestamp of any type of data transmitted or not by a broadcaster requiring a timestamp such as for example spontaneous messages , multimedia documents, purchase requests, time stamping being based on the use of broadcast digital streams.
De plus, l'invention ne se limite pas aux terminaux chargés d'effectuer l'horodatage qui sont de type décodeurs numériques multimédia mais s'étend à tout type de terminal adapté à recevoir des flux de données numériques.In addition, the invention is not limited to the terminals responsible for carrying out the time stamping which are of the digital multimedia decoder type but extends to any type of terminal suitable for receiving digital data streams.
En outre, l'invention ne se limite pas aux transmissions des réponses vers un centre ACC via un modem ou une liaison directe avec un processeur sécurisé, mais s'étend aux transmissions utilisant tout moyen de transmission tel que par exemple un bus ou un réseau.In addition, the invention is not limited to transmissions of responses to an ACC center via a modem or a direct link with a secure processor, but extends to transmissions using any means of transmission such as for example a bus or a network. .
On notera aussi que l'invention ne se limite pas à une implantation purement matérielle mais qu'elle peut aussi être mise en œuvre sous la forme d'une séquence d'instructions d'un programme informatique ou toute forme mixant une partie matérielle et une partie logicielle. Dans le cas où l'invention est implantée partiellement ou totalement sous forme logicielle, la séquence d'instructions correspondante pourra être stockée dans un moyen de stockage amovible (tel que par exemple une disquette, un CD-ROM ou un DVD-ROM) ou non, ce moyen de stockage étant lisible partiellement ou totalement par un ordinateur ou un microprocesseur. It will also be noted that the invention is not limited to a purely material implantation but that it can also be implemented in the form of a sequence of instructions of a computer program or any form mixing a material part and a software part. In the case where the invention is implemented partially or completely in software form, the corresponding sequence of instructions may be stored in a removable storage means (such as for example a floppy disk, a CD-ROM or a DVD-ROM) or no, this storage means being partially or totally readable by a computer or a microprocessor.

Claims

REVENDICATIONS
1. Procédé d'horodatage de données numériques caractérisé en ce qu'il comprend - une opération de définition (902) d'une séquence {CS) de services comprenant au moins un service, chaque dit service étant choisi au sein d'une liste de services {TSS) selon une méthode de choix donnant un résultat variable pour chaque occurrence desdites opérations de définition (902) d'une séquence de services ; et - une opération de collecte (807) d'une séquence d'éléments d'information d'horodate, selon laquelle on extrait au moins un élément d'information {TSI(CS[i])) de chaque service {CS[i]) de ladite séquence de services {CS) pour former les éléments de ladite séquence d'éléments d'information, chaque élément d'information comprenant une information représentative d'une horodate courante.1. Method for time stamping digital data characterized in that it comprises - an operation for defining (902) a sequence {CS) of services comprising at least one service, each said service being chosen from a list services (TSS) according to a choice method giving a variable result for each occurrence of said operations for defining (902) a sequence of services; and - a collection operation (807) of a sequence of timestamp information elements, according to which at least one information element {TSI (CS [i])) is extracted from each service {CS [i ]) of said sequence of services (CS) to form the elements of said sequence of information elements, each element of information comprising information representative of a current time stamp.
2. Procédé d'horodatage selon la revendication 1 caractérisé en ce que ladite liste de services {TSS) comprend au moins un service.2. Timestamping method according to claim 1 characterized in that said list of services (TSS) comprises at least one service.
3. Procédé d'horodatage selon l'une des revendications 1 ou 2 caractérisé en ce que ladite méthode de choix donnant un résultat variable est une méthode de tirage aléatoire ou pseudo aléatoire.3. Timestamping method according to one of claims 1 or 2 characterized in that said method of choice giving a variable result is a random or pseudo-random method.
4. Procédé d'horodatage selon l'une quelconque des revendications 1 à 3 caractérisé en ce qu'il comprend une étape d'émission et/ou de réception (802) d'un message {TSC) comprenant le nombre de services {SCH) de ladite séquence de services {CS) et ladite liste de services. 4. Timestamping method according to any one of claims 1 to 3 characterized in that it comprises a step of sending and / or receiving (802) a message {TSC) comprising the number of services {SCH ) of said sequence of services (CS) and said list of services.
5. Procédé d'horodatage selon l'une quelconque des revendications 1 à 4, caractérisé en ce qu'il comporte une opération de construction (908) d'un groupe de données horodaté comprenant:5. Timestamping method according to any one of claims 1 to 4, characterized in that it comprises an operation of construction (908) of a group of timestamped data comprising:
- un groupe d'informations comprenant :- a group of information including:
- lesdites données numériques {A) ; - un identifiant {service_numbeή de chacun des services de ladite séquence de services ;- said digital data (A); - an identifier {service_numbeή of each of the services in said sequence of services;
- ladite séquence d'informations d'horodate ;- said sequence of time stamp information;
- et une signature {totajsignature) d'au moins un élément dudit groupe d'informations. - And a signature (totajsignature) of at least one element of said group of information.
6. Procédé d'horodatage selon la revendication 5 caractérisé en ce qu'il comprend en outre une opération de collecte (807) d'une séquence de signatures d'informations {SIGN), chacune des signatures étant associée de manière biunivoque à chacune desdites informations d'horodate et signant une information comprenant ladite information d'horodate {currentjime) et un identifiant dudit service {Service[i]) dont elle est issue, et en ce que ledit groupe de données horodaté comprend en outre ladite séquence de signatures {SIGN) d'informations.6. Timestamping method according to claim 5 characterized in that it further comprises a collection operation (807) of a sequence of information signatures (SIGN), each of the signatures being associated in a one-to-one manner with each of said timestamp information and signing information comprising said timestamp information {currentjime) and an identifier of said service {Service [i]) from which it originates, and in that said timestamped data group further comprises said signature sequence { SIGN) of information.
7. Procédé d'horodatage selon l'une quelconque des revendications 1 à 6 caractérisé en ce que :7. Timestamping method according to any one of claims 1 to 6 characterized in that:
- chaque information d'horodate comprend en outre la définition {CDeή d'un challenge de recouvrement à extraire de ladite liste de services ; eteach timestamp information also includes the definition {CDeή of a recovery challenge to be extracted from said list of services; and
- le procédé d'horodatage comprend en outre une opération d'extraction (807) d'une réponse {Ret_C) correspondant à ladite définition {CDeή de chaque dit challenge de recouvrement.- The time stamping method further comprises an extraction operation (807) of a response {Ret_C) corresponding to said definition {CDeή of each said recovery challenge.
8. Procédé d'horodatage selon la revendication 7 dépendant de l'une des revendications 5 ou 6 caractérisé en ce que ledit groupe de données horodaté comprend en outre ladite réponse {Ret_C). 8. Timestamping method according to claim 7 depending on one of claims 5 or 6 characterized in that said time stamped data group further comprises said response (Ret_C).
9. Procédé d'horodatage selon la revendication 8 caractérisé en ce que chaque information d'horodate comprend en outre une empreinte {hashed_correct_answeή de ladite réponse.9. Timestamping method according to claim 8 characterized in that each timestamp information further comprises a fingerprint {hashed_correct_answeή of said response.
10. Procédé d'horodatage selon l'une quelconque des revendications 5, 6, 8 ou 9, caractérisé en ce qu'il comprend une opération d'émission (909) dudit groupe de données horodaté.10. Timestamping method according to any one of claims 5, 6, 8 or 9, characterized in that it comprises a transmission operation (909) of said time-stamped data group.
11. Procédé de vérification de la validité d'horodate de données numériques caractérisé en que ladite horodate a été générée par un procédé d'horodatage des dites données numériques selon l'une quelconque des revendications 1 à 10. 11. Method for verifying the validity of a digital data timestamp, characterized in that said timestamp was generated by a method of timestamping said digital data according to any one of claims 1 to 10.
12. Procédé de vérification de la validité d'horodate de données numériques selon la revendication 11 caractérisé en qu'il effectue une vérification d'au moins un groupe de données susceptible d'être horodaté par un procédé d'horodatage selon l'une quelconque des revendications 5, 6, 8 ou 9. 12. Method for verifying the validity of a digital data timestamp according to claim 11 characterized in that it performs a verification of at least one group of data capable of being timestamped by a timestamping method according to any one of claims 5, 6, 8 or 9.
13. Procédé de vérification de la validité d'horodate selon la revendication 12 caractérisé en ce que ledit procédé de vérification comprend au moins une opération de vérification faisant partie du groupe comprenant :13. Method for verifying the validity of a time stamp according to claim 12 characterized in that said verification method comprises at least one verification operation forming part of the group comprising:
- une opération de vérification (1002) de signature {total_signature) d'un groupe de données ;- a verification operation (1002) of signature (total_signature) of a group of data;
- une opération de vérification (1003) d'un nombre de services {SCH) requis ;- a verification operation (1003) of a number of services (SCH) required;
- une opération de vérification (1006) attestant que chaque information d'horodate correspond bien à un service requis ; - une opération de vérification (1006) de la validité d'une réponse à un éventuel challenge de recouvrement requis pour chaque information d'horodate ; et- a verification operation (1006) attesting that each timestamp information corresponds to a required service; - a verification operation (1006) of the validity of a response to a possible recovery challenge required for each time stamp information; and
- une opération de vérification (1008) de la cohérence d'horodatage extrait d'un groupe de données horodatées. - a verification operation (1008) of the timestamp consistency extracted from a group of timestamped data.
14. Procédé de vérification de la validité d'horodate selon l'une des revendications 12 ou 13 caractérisé en ce qu'il comprend une opération de transmission (1009) desdites données numériques validées.14. Method for checking the validity of a time stamp according to one of claims 12 or 13 characterized in that it comprises an operation for transmitting (1009) said validated digital data.
15. Système caractérisé en ce qu'il comprend des moyens de mise en œuvre de: - un procédé de diffusion de services, chacun desdits services contenant des éléments d'informations représentatives d'horodate ;15. System characterized in that it comprises means for implementing: - a method for broadcasting services, each of said services containing information elements representative of time stamp;
- un procédé d'horodatage selon l'une quelconque des revendications 1 à 10 ; et- a time stamping method according to any one of claims 1 to 10; and
- un procédé de vérification de la validité d'horodate selon l'une quelconque des revendications 11 à 14.- a method for verifying the validity of a time stamp according to any one of claims 11 to 14.
16. Dispositif d'horodatage de données numériques caractérisé en ce qu'il comprend des moyens (200, 207, 400, ou 500) adaptés à la mise en œuvre d'un procédé d'horodatage et/ou de vérification de la validité d'horodate selon l'une quelconque des revendications 1 à 14. 16. Time-stamping device for digital data, characterized in that it comprises means (200, 207, 400, or 500) suitable for implementing a time-stamping process and / or for verifying the validity of time stamp according to any one of claims 1 to 14.
17. Dispositif d'horodatage de données numériques caractérisé en ce qu'il comprend :17. Time-stamping device for digital data, characterized in that it comprises:
- un moyen de définition d'une séquence {CS) de services, chacun des services étant choisi au sein d'une liste (TSS) de services comprenant au moins un service selon une méthode de choix donnant un résultat variable pour chaque utilisation dudit moyen de définition d'une séquence de services ; eta means of defining a sequence (CS) of services, each of the services being chosen from a list (TSS) of services comprising at least one service according to a method of choice giving a result variable for each use of said means for defining a sequence of services; and
- un moyen de collecte d'une séquence d'éléments d'information d'horodate, extrayant un élément d'information {TSI(CS[i])) de chacun des services (CS//T) de ladite séquence {CS) de services pour former les éléments de ladite séquence d'éléments d'information, chaque élément d'information comprenant une information représentative d'une horodate courante.a means of collecting a sequence of timestamp information elements, extracting an information element {TSI (CS [i])) from each of the services (CS // T) of said sequence {CS) of services to form the elements of said sequence of information elements, each information element comprising information representative of a current time stamp.
18. Dispositif de vérification de la validité d'horodate de données numériques caractérisé en ce qu'il comprend au moins un moyen de vérification faisant partie du groupe comprenant :18. Device for verifying the validity of a digital data timestamp, characterized in that it comprises at least one verification means forming part of the group comprising:
- un moyen de vérification de signature d'un groupe de données;- a means of verifying the signature of a group of data;
- un moyen de vérification d'un nombre de services requis ;- a means of verifying a number of required services;
- un moyen de vérification attestant que chaque information d'horodate correspond bien à un service requis ;- a means of verification attesting that each timestamp information corresponds to a required service;
- un moyen de vérification de la validité d'une réponse à un éventuel challenge de recouvrement requis pour chaque information d'horodate ; et- a means of verifying the validity of a response to a possible recovery challenge required for each time stamp information; and
- un moyen de vérification de la cohérence d'horodatage extrait d'un groupe de données horodatées. - a means of checking the timestamp consistency extracted from a group of timestamped data.
EP01954094A 2000-07-13 2001-07-12 Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment Withdrawn EP1300017A1 (en)

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
FR0009255 2000-07-13
FR0009255A FR2811848A1 (en) 2000-07-13 2000-07-13 SYSTEM, METHOD AND DEVICE FOR TIMING AND VERIFYING HORODATE VALIDITY IN A DIGITAL BROADCASTING ENVIRONMENT
PCT/FR2001/002286 WO2002007441A1 (en) 2000-07-13 2001-07-12 Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment

Publications (1)

Publication Number Publication Date
EP1300017A1 true EP1300017A1 (en) 2003-04-09

Family

ID=8852514

Family Applications (1)

Application Number Title Priority Date Filing Date
EP01954094A Withdrawn EP1300017A1 (en) 2000-07-13 2001-07-12 Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment

Country Status (9)

Country Link
US (1) US20040049681A1 (en)
EP (1) EP1300017A1 (en)
JP (1) JP4825394B2 (en)
KR (1) KR100919907B1 (en)
CN (1) CN1265642C (en)
AU (1) AU2001276445A1 (en)
FR (1) FR2811848A1 (en)
MX (1) MXPA03000011A (en)
WO (1) WO2002007441A1 (en)

Families Citing this family (35)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7253919B2 (en) * 2000-11-30 2007-08-07 Ricoh Co., Ltd. Printer with embedded retrieval and publishing interface
US7861169B2 (en) 2001-11-19 2010-12-28 Ricoh Co. Ltd. Multimedia print driver dialog interfaces
US8539344B2 (en) * 2001-11-19 2013-09-17 Ricoh Company, Ltd. Paper-based interface for multimedia information stored by multiple multimedia documents
US7747655B2 (en) 2001-11-19 2010-06-29 Ricoh Co. Ltd. Printable representations for time-based media
US7788080B2 (en) 2001-11-19 2010-08-31 Ricoh Company, Ltd. Paper interface for simulation environments
US20040181815A1 (en) * 2001-11-19 2004-09-16 Hull Jonathan J. Printer with radio or television program extraction and formating
US7743347B2 (en) 2001-11-19 2010-06-22 Ricoh Company, Ltd. Paper-based interface for specifying ranges
US7149957B2 (en) 2001-11-19 2006-12-12 Ricoh Company, Ltd. Techniques for retrieving multimedia information using a paper-based interface
US7424129B2 (en) * 2001-11-19 2008-09-09 Ricoh Company, Ltd Printing system with embedded audio/video content recognition and processing
US7703044B2 (en) 2001-11-19 2010-04-20 Ricoh Company, Ltd. Techniques for generating a static representation for time-based media information
WO2004100450A1 (en) * 2003-05-09 2004-11-18 Koninklijke Philips Electronics N.V. System and method for measurement report time stamping to ensure reference time correctness
CN1784865B (en) * 2003-05-09 2013-07-17 皇家飞利浦电子股份有限公司 Method for measurement report time stamping to ensure reference time correctness
US8452153B2 (en) 2003-07-11 2013-05-28 Ricoh Company, Ltd. Associating pre-generated barcodes with temporal events
US7685428B2 (en) * 2003-08-14 2010-03-23 Ricoh Company, Ltd. Transmission of event markers to data stream recorder
US7570380B2 (en) * 2003-09-25 2009-08-04 Ricoh Company, Ltd. Printer user interface
US20050071763A1 (en) * 2003-09-25 2005-03-31 Hart Peter E. Stand alone multimedia printer capable of sharing media processing tasks
JP2005108230A (en) * 2003-09-25 2005-04-21 Ricoh Co Ltd Printing system with embedded audio/video content recognition and processing function
US8077341B2 (en) 2003-09-25 2011-12-13 Ricoh Co., Ltd. Printer with audio or video receiver, recorder, and real-time content-based processing logic
US7864352B2 (en) * 2003-09-25 2011-01-04 Ricoh Co. Ltd. Printer with multimedia server
US7573593B2 (en) * 2003-09-25 2009-08-11 Ricoh Company, Ltd. Printer with hardware and software interfaces for media devices
US7528977B2 (en) * 2003-09-25 2009-05-05 Ricoh Co., Ltd. Printer with hardware and software interfaces for peripheral devices
US7505163B2 (en) * 2003-09-25 2009-03-17 Ricoh Co., Ltd. User interface for networked printer
US20050071746A1 (en) * 2003-09-25 2005-03-31 Hart Peter E. Networked printer with hardware and software interfaces for peripheral devices
US7440126B2 (en) * 2003-09-25 2008-10-21 Ricoh Co., Ltd Printer with document-triggered processing
US7528976B2 (en) * 2003-09-25 2009-05-05 Ricoh Co., Ltd. Stand alone printer with hardware/software interfaces for sharing multimedia processing
US20050068573A1 (en) * 2003-09-25 2005-03-31 Hart Peter E. Networked printing system having embedded functionality for printing time-based media
US8274666B2 (en) 2004-03-30 2012-09-25 Ricoh Co., Ltd. Projector/printer for displaying or printing of documents
CN100512556C (en) 2007-03-01 2009-07-08 华为技术有限公司 Method and communication terminal for processing short message
CN101540897B (en) * 2008-03-21 2013-04-24 中国科学院声学研究所 Interactive television program stream time stamp issuing method for cable TV network
CN101753245B (en) * 2008-11-28 2013-08-07 华为技术有限公司 Method and device for identifying service
US20100287402A1 (en) * 2009-05-11 2010-11-11 Electronics And Telecommunications Research Institute Timestamping apparatus and method
WO2013065133A1 (en) * 2011-11-01 2013-05-10 株式会社野村総合研究所 Time verification system and time verification program
CN104506503B (en) * 2014-12-08 2019-11-05 北京北邮国安技术股份有限公司 A kind of security certification system based on broadcasting and TV one-way transport network
CN107515724B (en) * 2016-06-16 2021-04-02 伊姆西Ip控股有限责任公司 Method and apparatus for reproducing input and output of storage system
CN111170110B (en) * 2020-02-28 2021-04-30 深圳市通用互联科技有限责任公司 Elevator data processing method, device, computer equipment and storage medium

Family Cites Families (20)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5136646A (en) * 1991-03-08 1992-08-04 Bell Communications Research, Inc. Digital document time-stamping with catenate certificate
JPH04363941A (en) * 1991-02-18 1992-12-16 Nippon Telegr & Teleph Corp <Ntt> Intercept prevention method in asynchronous transfer mode communication
US5519433A (en) * 1991-11-20 1996-05-21 Zing Systems, L.P. Interactive television security through transaction time stamping
FR2708768B1 (en) * 1993-08-05 1995-09-01 Gemplus Card Int Secure system of participation in interactive games remotely with verification of the chronology of events.
US5533021A (en) * 1995-02-03 1996-07-02 International Business Machines Corporation Apparatus and method for segmentation and time synchronization of the transmission of multimedia data
WO1998034403A1 (en) * 1995-09-29 1998-08-06 Intel Corporation Apparatus and method for securing captured data transmitted between two sources
US5822676A (en) * 1995-12-14 1998-10-13 Time Warner Entertainment Co. L.P. Digital serialization of program events
US5822432A (en) * 1996-01-17 1998-10-13 The Dice Company Method for human-assisted random key generation and application for digital watermark system
US5886995A (en) * 1996-09-05 1999-03-23 Hughes Electronics Corporation Dynamic mapping of broadcast resources
US5907619A (en) * 1996-12-20 1999-05-25 Intel Corporation Secure compressed imaging
US6105012A (en) * 1997-04-22 2000-08-15 Sun Microsystems, Inc. Security system and method for financial institution server and client web browser
US6209090B1 (en) * 1997-05-29 2001-03-27 Sol Aisenberg Method and apparatus for providing secure time stamps for documents and computer files
JPH1117674A (en) * 1997-06-26 1999-01-22 Mitsubishi Electric Corp Time stamp device and transmission method for time information or communication information by the time stamp device
US7367042B1 (en) * 2000-02-29 2008-04-29 Goldpocket Interactive, Inc. Method and apparatus for hyperlinking in a television broadcast
EP1148503A1 (en) * 2000-04-08 2001-10-24 Deutsche Thomson-Brandt Gmbh Method and apparatus for recording on a storage medium or replaying from a storage medium data packets of a transport stream
US6993246B1 (en) * 2000-09-15 2006-01-31 Hewlett-Packard Development Company, L.P. Method and system for correlating data streams
US6925649B2 (en) * 2001-03-30 2005-08-02 Sharp Laboratories Of America, Inc. Methods and systems for mass customization of digital television broadcasts in DASE environments
US6993695B2 (en) * 2001-06-06 2006-01-31 Agilent Technologies, Inc. Method and apparatus for testing digital devices using transition timestamps
US6874089B2 (en) * 2002-02-25 2005-03-29 Network Resonance, Inc. System, method and computer program product for guaranteeing electronic transactions
JP2003259316A (en) * 2002-02-28 2003-09-12 Toshiba Corp Stream processing system and stream processing program

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See references of WO0207441A1 *

Also Published As

Publication number Publication date
KR20030013481A (en) 2003-02-14
CN1442020A (en) 2003-09-10
CN1265642C (en) 2006-07-19
KR100919907B1 (en) 2009-10-06
WO2002007441A1 (en) 2002-01-24
MXPA03000011A (en) 2003-08-19
JP2004504778A (en) 2004-02-12
FR2811848A1 (en) 2002-01-18
JP4825394B2 (en) 2011-11-30
US20040049681A1 (en) 2004-03-11
AU2001276445A1 (en) 2002-01-30

Similar Documents

Publication Publication Date Title
WO2002007441A1 (en) Time stamping and time stamp validity verification system, method and device in a digital broadcasting environment
EP0014653B1 (en) System for conveying information between a transmitting centre and receiving stations, the system being provided with control means for gaining access to the conveyed information
EP2817775B1 (en) Audience-measuring method
EP2052539B1 (en) Method of revocation of security modules used to secure broadcast messages
US20100211608A1 (en) Apparatus and method for generating a database that maps metadata to p2p content
FR2814085A1 (en) Entertainment system based on competitive game with multiple choice questions, makes use of terminals connected to server enabling participation of players in remote locations
EP3552129B1 (en) Method for recording a multimedia content, method for detecting a mark within a multimedia content, corresponding devices and computer programs
Kalker et al. Issues with digital watermarking and perceptual hashing
EP3803670A1 (en) A software application and a computer server for authenticating the identity of a digital content creator and the integrity of the creator&#39;s published content
EP1279280A1 (en) Method and device for controlling multimedia data watermark
EP3732849B1 (en) Method and system for identifying a user terminal in order to receive streaming protected multimedia content
US20220391474A1 (en) Streaming fraud detection using blockchain
EP1436792B1 (en) Authentication protocol with memory integrity verification
EP1964404A1 (en) Method for transmitting conditional access content
FR2999851A1 (en) METHOD FOR ACCESSING A SERVICE PROPOSED BY A REMOTE SERVER.
WO2023099418A1 (en) Method for processing a transaction involving the use of a public identifier, device, system and computer programs corresponding thereto
EP3360034A1 (en) Dynamically distributed backup method and system
FR3123480A1 (en) Method for managing a local register of a node belonging to a set of nodes contributing to a distributed register
Lemmé Extension of an existing P2P-Client for Evidence Collection/submitted by Alexander Lemmé, BSc
CN116962759A (en) Method and device for linking playing equipment, equipment and storage medium
FR2863805A1 (en) Digital image enrichment method, involves receiving contextual data transmitted by data broadcasting transmitters and associating contextual data with image data relative to images captured by camera in utilization environment
EP4441954A1 (en) Method for processing a digital proof, system and corresponding program
FR3116370A1 (en) Process and digital display system.
EP2677708B1 (en) Communication method of an audiovisual message, and communication system
FR2913166A1 (en) METHOD FOR DIGITIGH TATTOO OF PHOTO OR VIDEO CONTENT PERMITTING TRACEABILITY OF THIS CONTENT

Legal Events

Date Code Title Description
PUAI Public reference made under article 153(3) epc to a published international application that has entered the european phase

Free format text: ORIGINAL CODE: 0009012

17P Request for examination filed

Effective date: 20030114

AK Designated contracting states

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE TR

Kind code of ref document: A1

Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LI LU MC NL PT SE TR

AX Request for extension of the european patent

Extension state: AL LT LV MK RO SI

RBV Designated contracting states (corrected)

Designated state(s): AT BE CH CY DE ES FR GB IT LI

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: THOMSON LICENSING

17Q First examination report despatched

Effective date: 20091112

RAP1 Party data changed (applicant data changed or rights of an application transferred)

Owner name: THOMSON LICENSING

STAA Information on the status of an ep patent application or granted ep patent

Free format text: STATUS: THE APPLICATION IS DEEMED TO BE WITHDRAWN

18D Application deemed to be withdrawn

Effective date: 20170201