Classifications

• • H—ELECTRICITY
  • H04—ELECTRIC COMMUNICATION TECHNIQUE
  • H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
  • H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
  • H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
  • H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
  • H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
  • H04N21/43607—Interfacing a plurality of external cards, e.g. through a DVB Common Interface [DVB-CI]
• • H—ELECTRICITY
  • H04—ELECTRIC COMMUNICATION TECHNIQUE
  • H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
  • H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
  • H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
  • H04N21/41—Structure of client; Structure of client peripherals
  • H04N21/418—External card to be used in combination with the client device, e.g. for conditional access
  • H04N21/4181—External card to be used in combination with the client device, e.g. for conditional access for conditional access
• • H—ELECTRICITY
  • H04—ELECTRIC COMMUNICATION TECHNIQUE
  • H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
  • H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
  • H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
  • H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
  • H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
  • H04N21/43615—Interfacing a Home Network, e.g. for connecting the client to a plurality of peripherals
• • H—ELECTRICITY
  • H04—ELECTRIC COMMUNICATION TECHNIQUE
  • H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
  • H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
  • H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
  • H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
  • H04N21/436—Interfacing a local distribution network, e.g. communicating with another STB or one or more peripheral devices inside the home
  • H04N21/4363—Adapting the video stream to a specific local network, e.g. a Bluetooth® network
• • H—ELECTRICITY
  • H04—ELECTRIC COMMUNICATION TECHNIQUE
  • H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
  • H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
  • H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
  • H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
  • H04N21/44—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs
  • H04N21/4405—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream or rendering scenes according to encoded video stream scene graphs involving video stream decryption

Definitions

• the present invention pertains to the domain of conditional access to digital media content and is of particular use in a home network environment.
• CAM Conditional Access Modules
• a host device which includes a decoder for decoding encoded video.
• the encoded video may be received in encrypted fashion and the CAM comprises keys for decrypting the encrypted content. Thanks to these keys, the CAM may either decrypt the content itself and pass the decrypted content to the host device or it may pass the keys to the (authorised) host device for the decryption to be performed by the host device.
• Systems such as this have been widely covered in the state of the art in documents such as WO2008/055928, or US 6,443,361 , which make particular reference to a generally accepted standard for communication between the host and the CAM known as a Common Interface Standard.
• a CICAM In the state of the art, a CICAM is always associated with a single host.
• CICAM It is meant a cond itional access module which is adapted to function according to a Common Interface Standard compliant with a Common Interface Specification controlled by the Common Interface (CI) Consortium.
• a host device may be a digital TV set for example.
• the host device may receive a first content from the first operator, the first content being encrypted according to a first conditional access system, and further may receive a second content from a second operator, the second content being encrypted according to a second conditional access system, different from the first access control system.
• a particular location e.g. household
• a host device such as the type mentioned here is described in International Patent Application Publication number 97/18656, entitled “SYSTEM FOR DECRYPTING TELEVISION FROM SEVERAL SATELLITES", the host device receiving a plurality of smart cards, one corresponding to each of one from a plurality of different suppliers each operating different Conditional Access Systems.
• Figure 1 illustrates a configuration in which a plurality of host devices of the type mentioned above may be incorporated .
• the drawing shows a home environment having two television sets, each of which may receive broadcast programmes or recorded programmes from two different operators each using two different conditional access systems.
• Such a configuration therefore requires the use of four CICAMs: the first TV set having two CICAMs (a first one for decrypting content encrypted by the first operator and a second one for decrypting content encrypted by the second operator); and the second TV set having another two CICAMs (a third one for decrypting content encrypted by the first operator and a fourth one for decrypting content encrypted by the second operator).
• This is not optimal since only two of the four CICAMs will be required at any one time to decrypt content.
• a goal of the present invention is to solve some of the problems existing in the state of the art by allowing for at least one conditional access modules to be shared between a plurality of host devices via a local area network.
• a system for providing controlled access to at least a first encrypted digital content, said encryption according to a first controlled access scheme comprising: a first host device for receiving the first encrypted digital content and for rendering a corresponding first decrypted digital content; and;
• a first conditional access module configured to operate according to the first controlled access scheme
• the system characterised in that it further comprises a local area network router, the local area network router configured to provide at least a first interface between at least:
• said first interface configured to allow for the first host device to transmit the received first encrypted content to the first conditional access module for decryption and to further allow for the first conditional access module to return the corresponding first decrypted digital content for rendering by the first host device.
• controlled access means allowing an authorised user to access a decrypted version of the encrypted content, such access being denied to a non- authorised user.
• Controlled access is therefore acknowledged as being provided by any of the known conditional access systems used in the domain of Pay-TV for example, usually in a broadcast environment, and using broadcast entitlement control messages (ECM) and broadcast or otherwise delivered entitlement management messages (EMM). It is also acknowledged that the known Digital Rights Management (DRM) systems, generally deployed in controlled access systems used in the domain of content distribution, for example video on demand, also fit the present definition of controlled access.
• ECM broadcast entitlement control messages
• EMF broadcast or otherwise delivered entitlement management messages
• DRM Digital Rights Management
• a host device comprising:
• a communication interface for connecting to a local area network router
• the host device characterised in that it is configured to allow the conditional access module to connect directly to the local area network router.
• a common interface conditional access module comprising a common interface and characterised in that it comprises an adaptor to convert the common interface to a format allowing direct connection to a local area network router.
• a local area network router comprising a plurality of communication ports each for providing an interface with at least one signal from an external device, the plurality of communication ports configured to operate according to a communication network standard, the local area network router being configured to provide connectivity between any one from the plurality of communication ports to any other from the plurality of communication ports, the local area network router characterised in that it further comprises:
• a first adaptor module connected to a first from the plurality of communication ports, the first adaptor module configured to convert the signal from a first external device from a moving picture Standard to the communication network standard; and a second adaptor module connected to a second from the pl ural ity of communication ports, the second adaptor module configured to convert an internal signal from the communication network standard to the moving picture standard in order to interface with a second external device.
• a first conditional access module configured to operate according to a first conditional access scheme for providing a first decrypted digital content derived from a first encrypted digital content
• a second conditional access module configured to operate according to a second conditional access scheme for providing a second decrypted digital content derived from a second encrypted digital content
• a first host device for:
• a second host device for:
• a local area network router configured to provide connectivity between at least either of the host devices and either of the conditional access modules
• a goal of the present invention is to provide a more efficient and convenient solution to the use of multiple CICAMs in an environment where multiple CICAMs are required to decrypt content for viewing on multiple host devices.
• the CICAMs are detached from a particular host device and attached rather to a given piece of equipment within a home network where the multiple host devices are connected such that they may share resources.
• the present invention allows for conditional access module sharing to be achieved in order to render encrypted content accessible to any suitable rendering device within a home network.
• Figure 1 which shows a typical state of the art configuration for allowing decryption of content encrypted according to two different encryption schemes using two different rendering apparatus
• Figure 2 representing a system in which a first embodiment of the present invention may be deployed
• FIG. 3 representing a system in which a second embodiment of the present invention may be deployed.
• a home network may comprise a plurality of host devices (TV1 , TV2) for rendering digital media content.
• host devices are known and may comprise a reception module for receiving the media content and a rendering module to display or otherwise render the content. In other configurations the reception module and the rendering module could form separate devices instead of being housed within the host device.
• the host devices (TV1 , TV2) are connected via a local area network (LAN) to form a home network.
• LAN local area network
• the host devices are capable of rendering content received from any from a plural ity of operators as long as the host device has access to a conditional access module which allows it to decrypt the content.
• the content may be encrypted according to any from a plurality of encryption schemes employed by the plurality of operators and so an appropriate conditional access module should be available if the host is to be able to decrypt a particular content corresponding to a particular encryption scheme.
• a first content is encrypted according to a first scheme (CAS1 ).
• CAS1 first scheme
• a second content is encrypted according to a second scheme (CAS2).
• CAS2 second scheme
• a host requires to have access to decryption capabilities provided by a second CICAM (CAM2) operating according to the second scheme.
• both CICAMs are also connected to the home network, preferably via an interface complying with one of the Common Interface Standards.
• conditional access system conditional access policy
• conditional access scheme conditional access procedure
• conditional access procedure may be used interchangeably to describe a conditional access algorithm and key policy adopted by a supplier of conditional access content to render such content accessible only to authorised users.
• conditional access pol icies used are of a type used in broadcast pay TV, where rights are managed and verified using entitlement management messages (EMM) and entitlement control messages (ECM), usually broadcast to the viewer along with the content.
• EMM entitlement management messages
• ECM entitlement control messages
• a home network generally comprises a central element or device, called a router, into which computer devices, entertainment devices and other appliances within the home may be plugged .
• This provides a convenient way to allow for communication to be established between any given device in the network and any other device in the network.
• Routers generally operate according to an Ethernet Standard and so provide Ethernet sockets to which the various devices in the network may be plugged.
• Other routers known as WiFi routers provide connectivity to devices via wireless interfaces (WiFi).
• WiFi wireless interfaces
• Another type of router may be used to make a Power Line Communication Network (PLC).
• PLC Power Line Communication Network
• This type of router is known and provides connectivity to the devices of the network via a conductor wh ich is simultaneously used to provide AC electrical power to the devices in the network.
• a host device with its conditional access module instead of a host device with its conditional access module being connected to become part of the home network, one or more host devices are connected to become part of the home network and one or more conditional access modules are also connected to become part of the home network.
• a CICAM is essentially morphed into the home network.
• UUPnP Universal Plug and Play
• the particular mechanism is generally known as “Discovery”.
• the CICAM is therefore "discovered” and it presents a list of which conditional access systems or digital rights management systems it supports. The list may be displayed on a display associated with a host device on the network to allow a user to select an item from the list according to his needs. The selection can be made using a remote control device for example, which is generally known in the domain.
• morphing the CICAM into the home network it is meant either plugging the
• the CICAM into a host device having a Common Interface port for the CICAM and further having an Ethernet or a WiFi connection for connecting the host to the home network, for example a TV host device.
• the CICAM is considered by the home network to be a separately addressable device within the network, which can be used by any device in the network, just as any other resource on the network can.
• a specially designed CICAM can be made, including an adaptor module to convert its CI interface to Ethernet, WiFi or PLC format so that it can be plugged directly into the network.
• it could be the router which is mod ified to have Common Interface compatible ports especially for receiving CICAMs, with the conversion from Common Interface to Ethernet or other being done by the router.
• a host device on the network can then use the CICAM to decrypt content received from an operator, such content being encrypted according to one of the encryption systems serviced by the CICAM .
• I n order to do th is, a transport connection is set up between the host device and the CICAM via the local area network (home network), through which (transport connection) the two devices exchange content.
• the local area network home network
• Any of the known container types for content may be used, for example MPEG2-TS, ISOBMFF or any other of the known moving picture Standards.
• the encrypted content received from the operator is sent to the CICAM for decryption according to the selected encryption scheme (i.e. that which was used by the operator to encrypt the content).
• the selected encryption scheme i.e. that which was used by the operator to encrypt the content.
• a content received from a first operator is encrypted according to a first encryption scheme. This fact can be deduced from a piece of information in header within the transport stream, saying that the content is encrypted under the first conditional access scheme.
• the host then knows that it needs the first conditional access module to decrypt the content since the first conditional access module made this information known during the discovery procedure.
• a secure, authenticated channel is established between the host device and the CICAM so that the content is securely protected on its way back from the CICAM to the rendering device.
• FIG. 2 shows how two CICAMs can be connected to the network to allow two hosts to render decrypted content, each of which is encrypted according to a different encryption scheme.
• each of the CICAMs decrypts the content received via their respective transport connections according to different encryption schemes.
• the first host (TV1 ) uses the services of the first CICAM (CAM1 ), making available the first conditional access system (CAS1 ) to decrypt content received from a first operator, while the second host device (TV2) makes use of the second CICAM (CAS2) running the second conditional access system (CAS2) to decrypt content received from a second operator.
• the resulting effect is similar to a case where the first host has its own CAM working according to a first conditional access scheme and the second host has its own CAM working according to a second conditional access stream. But the advantage is that this system is more flexible. If the first host were subsequently to receive content from the second operator, encrypted according to the second scheme and the first host were to receive content from the first operator, encrypted accord ing to the first cond itional access scheme, then the system allows for the first host to use the second conditional access module and the second host to use the first conditional access module.
• a single CICAM may be configured to be able to process more than one such transport connection session with different hosts.
• the CICAM can simultaneously decrypt content for the d ifferent hosts.
• Th is can be seen in Figure 3, for example, showing another system in which an embodiment of the present invention may be deployed .
• two hosts with in the network are required to show content which has been encrypted according to a same encryption scheme.
• the content is shown to have been received by the two hosts from different operators, however the content is encrypted according to the same encryption scheme - the second scheme (CAS2). (It is also possible for the two hosts to have received the content from the same operator).
• the system can include a proximity control mechanism, whereby a proximity detector can be included in order to detect whether or not a particular host wh ich requests content to be decrypted is physically located with in a range wh ich is deemed to be with in the home.
• a proximity constraint could be placed on the CICAM. This way it is ensured that neighbours for example, or passers by, are not taking advantage of the network without authorisation.

Landscapes

• Engineering & Computer Science (AREA)
• Multimedia (AREA)
• Signal Processing (AREA)
• Computer Networks & Wireless Communication (AREA)
• Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Applications Claiming Priority (2)

Publications (1)

Family

ID=47901981

Family Applications (1)

Country Status (2)

Families Citing this family (5)

Family Cites Families (3)

• 2013
  • 2013-03-15 WO PCT/EP2013/055366 patent/WO2013139696A1/en active Application Filing
  • 2013-03-15 EP EP13710834.6A patent/EP2829077A1/de not_active Withdrawn

Non-Patent Citations (1)

Also Published As

Similar Documents

Legal Events