FR2824940A1 - Method for managing multimedia data with a high capacity smart card in which both multimedia data and encrypted copyright data stored on the same card to prevent fraudulent misuse of the data - Google Patents

Abstract

High capacity smart card contains first multimedia data in a first storage space and second copyright data for the first data in a second storage space. The second data is needed to use the first data and is encrypted in some manner. An Independent claim is made for a method for distributing digital multimedia data so that copyright is protected. The invention also relates to a corresponding electronic device, etc. with an individual reader for accessing the data on an inventive smart card.

Description

said antenna support.

  DEVICE AND METHOD FOR MANAGING DATA OF

NULTIMEDIA TYPE

  The invention relates to the management of large digital files attached to copyright, for example containing multimedia type data, video and / or audio type, or software. For the sake of simplification, we will use the term "multimedia o type data" to refer to these electronic files. By file management, we mean distribution,

  the storage and use of this data.

  A first constraint linked to the trade of this type of multimedia type data comes from the fact that it is not enough to carry out a classical wind with a payment from the buyer to the seller, it is also necessary to ensure that the rights copyright, that is to say generally the rights of a third person, are respected. A buyer must acquire not only the data itself but also an associated right, which corresponds to copyright. There are a multitude of methods to obtain this right: it can be purchased, either included in the price of the transaction, the seller taking care of the redistribution towards the author, or not understood and acquired by a second transaction from the buyer towards a third organization, or it can be acquitted by the simple membership of the buyer in a certain community o offering him this right, or by other particular situations. Routine fraud stems from the circulation of copies of this data without

copyright clearance.

  A second constraint comes from the size of these multimedia type data files; As an indication, we are interested in the present invention in files whose size is at least equivalent to a video of half an hour. This characteristic represents a significant constraint with respect to

  storage media and distribution methods.

  The distribution of multimedia type data can be done, within the limits imposed by the constraints set out above, remotely by telecommunication means, the Internet or using a mobile phone for example, and / or by using data carriers such as DVDs, CDs, diskettes ... A first common characteristic of these prior art data carriers is their capacity to store large volumes. A second characteristic is the difficulty

  include anti-fraud systems.

  By exploitation of the data is meant their zo use, that is to say the viewing of a video and / or listening to music for example. This exploitation can be done by any reader of the previous data carriers mentioned above or directly by a device receiving them remotely and

  suitable for their operation, such as a PC.

  Taking into account these characteristics, several distinct solutions, not compatible and applied to specific fields in a restrictive manner, have been

o proposed in the past.

  As an example, we cite below two approaches

opposites of the prior art.

  A first achievement concerns the field of pay television. In such a system, a television channel transmits scrambled images and transmits to its subscribers a digital key to allow descrambling of the images in a decoder. This key is transmitted encrypted, stored in a smart card within the decoder for security reasons. It is then transmitted to the decoder which uses it in its image descrambling algorithm. The images obtained are sent in analog form to a

  television for viewing.

  Such a system has the advantage of effective copyright control thanks to the decoding system based on a smart card. Only subscribers hold and have access to this right. In addition, the copies of the images are of degraded quality because they come from the data in analog form and therefore compete only to a small degree with the versions.

o original.

  On the other hand, this system is suitable for pay television but does not allow wider distribution, via other means of telecommunication or on data carriers. The

  TV channel is the mandatory intermediary.

  A big disadvantage of such a system is therefore its

lack of flexibility.

  A potential customer, not wishing to take out a subscription because interested in a small percentage of the so programs can resort to the purchase of data

video on DVD.

  This support has the same drawback of lack of flexibility. In fact, to avoid copying DVDs, the audio data comes out in analog form. Consequently, it is not possible to use them on another device like a V-reader or to make copies of them for other purchases inL4resss. These last ones will have to get their VD and the associated equipment. In addition, we do not find in the form of DVs the videos of the channel of Ll4vision, eL conversely, the channel of television does not diffuse LouLes the images proposed the sale in the form of OV. In order to have a wide choice, it is therefore necessary to combine these two systems, to invest in a decoder, a subscription to paVic vision, a DVO reader instead, other systems in the background are much more flexible and consisLenL in it use of digital data obtained from InLerneL. a principle of these systems is the unloading on a PC of data, video or audio for example, to speak from an internal if adiA after having acquired the associated rights by a LansacLion lecLonigue by LouL known means. These systems offer the advantage of a great flexibility of distribution thanks to an easy access and a large choice of data, and a great flexibility of exploitation because it is possible to store the digital data required on different supports, for operate on several devices_ A major drawback of these systems stems from the abuses linked to the disrespect of other rights: data that has become o accessible on the air on a PC is taclementally duplicated and distributed in a fraudulent manner. We added waLermarRing solutions> which consist in leaving a Lrace in these data to be able to

  trace their origin in the event of idetifid fraud.

  However, this is not {viL4e.

  We therefore see that the previous ARL offers very different solutions, which are not compatible with each other and which have many disadvantages. The trend in prior art is to improve each of these solutions, independently of each other, which is supposed to make them more and more specific and incompatible. In addition, it appears in the later argue that there is a technical conflict between the fact that the author wishes to distribute and exploit the maimale of his work and at the same time the guarantee of respect for his rights of copyright. The increase in one of these

  two characteristics occur at the expense of the water.

  An objective of the present invention is to combine the advantages of the previous solutions by swallowing their

o disadvantages.

  Another objective of the present invention is to provide a universal solution, allowing

  COMPATIBILITY IN THE EXISLANAL SYSTEMS.

  For this, our ivenLion aims to guarantee respect for the rights of others. In addition, it aims to allow

  flexible distribution of data from Lype mulLimedia.

  It is also looking for compatibility of the different

o rsaaux and associated devices.

  The invention is based on a portable electronic device with integrated circuits of high quality, characterized in that it contains all of the first multimedia-type data in a first memory space and second data representing the copyrights associated with the donations. 6ea of multimedia type in a second memory space, said seconds given the necessary operation of the

first data.

  In one embodiment, the second memory space where is secured and / or the given data is stored encrypted and the given seconds contain at least

  a key to decrypting the first data.

  Advantageously, the portable electronic device 1S is a chip card. It can possibly be a

multimedia card.

  The first data can represent a video

  lasting at least half an hour.

  o As a variant, the portable electronic device is capable of executing an algorithm for decrypting the first data, the algorithm being tock in a third memory space. It may furthermore include a means for converting the first multimedia type data into analog form after their decryption. The present invention also consists of a process for the distribution of digital works comprising the following steps: loading of first multimedia data in a first memory space of a portable electronic device with integrated circuits in a form which is not directly exploitable; Loading second data into a second memory space of the same portable electronic device with integrated circuits representing copyright

associated with the first data.

  The two loading steps are simultaneous or

dissociated over time.

  Finally, the present invention consists of a method of operating an electronic device such as that described above, characterized in that it includes a step of executing an algorithm for transforming the first data into a form usable using the seconds given. The operating device for implementing this method comprises a reader capable of receiving such a portable electronic device and a security module capable of zo transforming first multimedia data not directly exploitable into data.

  usable using said second data.

  Other features and advantages of this

  invention will appear on reading the description

  following of specific embodiments, given by way of illustration and not limitation, and of the appended drawings in which: - Figure 1 schematically represents a portable electronic device o according to the present invention; - Figures 2A to 2H show different successive stages in the production of a smart card used as a portable electronic device according to the invention; - Figure 2I shows the section of a smart card corresponding to Figures 2A to 2H comprising an integrated circuit, this section showing the neutral fiber; - Figure 3 shows a first method and associated device for multimedia type data management according to the present invention; o - FIG. 4 represents a second method and associated device for managing type data

  multimedia according to the present invention.

  The invention is based in particular on a portable electronic device with high capacity integrated circuits, such as a multimedia card or a memory card.

  chip, ISO 7816 format, SIM or others.

  Such a device is shown diagrammatically in FIG. 1. It contains a fast communication interface 2, a microprocessor 3 capable of managing first multimedia type data (DMc) in a first high capacity memory space 4 and second data ( K) in a second memory space 5 representing the copyright associated with the first data. Multimedia data is stored encrypted (DMc) or scrambled or in any other state - not directly exploitable, and the data (K) related to copyright contain the means to decipher or descramble, or more generally to make exploitable, multimedia data. These second data read in copyright can only be read by an authorized reader, after the execution of an authentication protocol between the card and the reader. In addition, they are stored securely in memory space 5 and transmitted

  encrypted to the authenticated reader.

  The present invention does not relate to the secure storage of the data itself, nor to the encryption / decryption algorithms as such. We use techniques known to those skilled in the art. Thus, this encryption / decryption will be done by any known algorithm (ALGO). To simplify the

  description we will consider in the examples

  following that the copyrighted data consists of a single key (K) for decrypting

multimedia data.

  The preferred embodiment of the invention consists in choosing a high capacity ISO 7816 format smart card such as that described in French patent application FRO1 / 04975 as a portable electronic device 1. This smart card comprises a communication interface, the chip card comprising a laminated card body in which the chip is housed, this card comprising at least one data storage memory cooperating with the chip, the memory being physically distinct from the chip and housed in the card body at a location located away from the main bending lines of the card and in the neutral fiber of the card, the chip ensuring the communication of data stored in the storage memories between the interface and the memories

storage.

  This data carrier, thus used, has many advantages: At I1 has a large volume of storage making it possible to memorize the equivalent of at least one hour of

video data.

  À I1 has a small size, easy to store and transport. o The digital data used allow high-quality processing (in terms of images or

sounds for example).

  To I1 brings the well recognized high security of smart cards to the systems according to the invention: one avoids copying and fraught exploitation, and one

  thus guarantees respect for copyright.

  À I1 facilitates the distribution and maximum exploitation of multimedia type data because there are already a multitude of zo telecommunication devices with a card reader.

  microchip (mobile phone, PC reader ...).

  At I1 is suitable for rapid communication by

  MMC (Multi Media Card), USB, SPI ... protocols

  Such a smart card can be manufactured according to the

  eight steps shown in Figures 2A to 2H.

  The first manufacturing step, represented in FIG. 2A, consists in printing a communication bus 20 on an insulating sheet 21 having the dimensions of a smart card in ISO format. The sheet 21 is for example made of PVC or PET and has a thickness of 300 m. It is provided with a window 22 cut out from its body, intended for

  receive the card's electrical contacts.

  The electrically conductive ink used for printing is for example an ink of the Dupont brand (protected brand) referenced E520. Bus 20 here consists of 23 conductive tracks forming

a U around window 22.

  o Figure 2B shows the second step of

  manufacture of a smart card according to the invention.

  An adhesive tape 23 is fixed on the opposite face of the insulating sheet 21, at the location of the window 22. The function of the adhesive tape is to keep the electrical contacts of the

  card, as will be seen later.

  FIG. 2C shows the third step in manufacturing the card according to the invention. This step consists in mounting the communication interface, here consisting of contacts

flush with the surface of the card.

  The face of the insulating sheet 21 carrying the communication bus 20 is again visible. An insulating substrate 24 carrying electrical contacts 25 (here 8 contacts) is fixed against the adhesive 23 (FIG. 2B). The substrate is for example made of epoxy glass or capton. A bead of electrically insulating glue 26 forming a seal is then dispensed between the substrate 24 and the edge of the window so that this substrate is held in place during the final lamination step (FIG. 2). This bead of glue 26 is for example Oelo

  Pboto Pod (brand dApose) refArenc 4442.

  Figure 2D shows the fourth step of

  manufacturing the card according to the invention.

  s This step consists of positioning metal spacers 27 in the four corners of the insulating sheet 21. The spacers 27 have a thickness of 300 m and are placed in the neutral fiber of the card. They are preferably made of soft iron. Their function is to give the card, once it has been assembled, a certain rigidity putting the elements it contains sheltered from destruction by folding the card, while retaining sufficient flexibility for the spacers 27 do not break the outer sheets of the card in case of bending

of it.

  The spacers 27 are held in place by bonding so that they do not move

  o during the final lamination operation.

  Figure 2E shows the fifth step in manufacturing the tile according to the invention. a 2B chip and seven 29 snt data storage memories

  positions and adhesives on the communication bus 20.

  s The chip 28 and the memories 29 have a thickness of 100 m and are placed in the card body of the slots G located at a distance from the main bending lines of the card and in the neutral fiber of

this card.

  Figure 2I shows a section showing the neutral fiber. Neutral fiber is defined as the plane included in the middle of the planes forming the outer surfaces of the card. In FIG. 2I, an integrated circuit 40 is included in the neutral fiber of a card 41, that is to say that it is exactly placed in the center of the card 41. Returning to FIG. 2E, the chip 28 is for example constituted by a programmable logic circuit (FPGA in English - Field-Programmable Gate Array), that is to say by logic gates whose functions o and interconnections can be defined by

  programming. The memories 29 are identical between-

  they each have a capacity of 300 Mbytes.

  The bonding of the chip 28 and of the memories 29 is preferably carried out with a non-conductive adhesive W. Such an adhesive is activated when W radiation is applied to it and its complete polymerization is obtained after a few hours. In a preferred embodiment, the adhesive W used is a Delo Photo Bond 4442 adhesive (registered trademark). All slices of the chip and memories are isolated so that the next step

does not cause short circuits.

  FIG. 2F shows the sixth step in manufacturing the card according to the invention. This z5 step consists in dispensing a conductive adhesive between on the one hand the contacts of the chip and memories and on the other hand the tracks of the bus.

communication 20.

  The conductive adhesive used for this operation is, for example, a Johuson Mattey A1340 adhesive. Such an adhesive is commonly called "Silver glue" in English terminology. Cords of conductive glue 30 are deposited between the contacts of the memories 29 and the conductive tracks, so as to connect them electrically. The chip 28 undergoes the same operation and is connected, also by dispensing conductive adhesive, to the contacts 25. The polymerization of the adhesive is obtained by steaming the assembly for 24 hours at a temperature of 100 C. All

  the electrical connections are therefore made.

  FIG. 2G shows the seventh step in the manufacturing of the card according to the invention. This step consists in protecting the chip 28 and the

  memories 29 by a protective resin.

  A rigid protective resin 31 (about 10 m thick) is deposited by exemption on the various components constituting the electronics of the card. This resin is for example of the E505 Epotecny type. Its hardening is obtained by steaming for

  24 hours at a temperature of 60 C.

  Figure 2H shows the last step in manufacturing the card according to the invention. This step consists in dispensing a filling material on the device of FIG. 2G, this filling material being for example polyurethane 32, and in laminating a covering sheet 33 on the whole. This lamination is therefore a cold lamination. Finally, the adhesive 23, present on the non-visible side of the card of the

Figure 2H, is removed.

  n / a We will illustrate below several multimedia data management devices based on the

  smart card support described above.

  A first embodiment of a multimedia data management method according to the present invention and its

  associated device is shown in Figure 3.

  In a first step E1, an individual wishing to acquire a certain film purchases a right from a service operator 01 offering video services using his GSM 51. He inserts a blank card 1, such as the one described above, in a card reader of his GSM. After an electronic transaction according to a solution of the prior art, a secret key K1 representing his right is downloaded into the memory space 5 of his smart card 1. Advantageously, this

key is transmitted encrypted.

  In a second step E2, it downloads the encrypted data DMc corresponding to the film of its choice into the memory space 4 of the same smart card 1 via a multimedia terminal 52 having a smart card reader and allowing it high-speed Internet access. DMc data is only transmitted in encrypted form to the computer

  terminal 52, which provides great security.

  Alternatively, the two preceding steps can be simultaneous, the data representing the rights then being downloaded with the type data.

  multimedia on an Internet terminal for example.

  In a third step E3, it displays the film by means of an apparatus 60 composed of a reader

  card in which 11 inserts his smart card 1.

  The apparatus 60 includes a screen 61, a security module 62 for decrypting the data DMc by applying to them the decryption algorithm based on the key K1. The security module 62 is in the physical form of a closed and inviolable block, according to known techniques. It stores securely

  the algorithm and the associated key (s).

  Advantageously, the images are produced therefrom

  o analog just before their display on the screen 61.

  Thus, it is not possible to recover the deciphered multimedia type data, or at best in analog form. The apparatus 60 can be in the form of a television, a portable telephone, a PC. An advantage of the present invention according to this first embodiment is therefore its flexibility with regard to distribution and its security against fraud linked

copyright.

  FIG. 4 represents another device of the invention applied to the field of a chain of the

pay television.

  A service operator 02, of the pay-TV channel type, transmits scrambled images DM2c. A subscriber receives the images and stores them on a smart card 1 in a decoder 50 modified compared to the prior art. At the same time, 02 transmits an encrypted key K2c necessary for the descrambling algorithm. - 17 multimedia type data are scrambled within an operator's device according to a formula of the type: DM2c = ALGO (DM2, K2, Y2) where Y2 represents at least one mother key of the system and ALGO an algorithm of

s interference.

  A subscriber has a modified television set 60 according to the present invention, having a security module 62 comprising in memory a descrambling algorithm as described in the previous example. The modified decoder 50 is capable of transmitting to it in real time the data DM2c and the key K2c by a wired link lf. Alternatively, the processing of this data can be done S later by inserting the card 1 in the

device card reader 60.

  In the latter case, the reader and the card will

  first authenticate according to known methods.

  o This authentication allows the card to ensure that it is facing a reader authorized to use its confidential data and the reader to recognize the card as being an acceptable data medium. In a second step, the card and the reader establish a common session key to allow them secure exchanges. Finally, the card transmits the key K2 then the data DM2c. The module 62 will descramble DM2c according to the following calculation: DM2 = ALGO-1 (DM2c, K2, Y2) I1 appears that in such a difference, the smart card 1 can play the role of data support as such. in the same way as DVDs or videocassettes of prior art and the decoder 50 can have in addition to its decoding function a recorder function, thus replacing a video recorder. The smart card brings the advantages of storing non-degradable images, usable on several devices: we can indeed foresee vi sual i sat ion on televisions but also on phones usable by

example.

  According to a political choice of the operator 02, this LransposiLion of the operation is limited to the 1S personal needs or is more widely accessible

  All the subscribers of the L6lAvision chain.

  technically, this last case equates to the distribution of a common key to subscribers. In the first case, the registrations of a first subscriber or cannot be used by a second subscriber. It will then be possible to provide for a supervisor with rights superior to the rights of basic subscribers; these, in passing through this intermediary, can then exchange their data, after having acquitted

s rights.

  Equivalently, the devices according to the corresponding purpose various operators can

become compatible.

  In fact, in the two examples described above, the corresponding devices are separate and a priori incompatible, as in the prior art. The passage through a support 1 as described in the present invention offers the technical possibility of making these systems compatible by allowing the exchange of data from each of these systems through a supervisor organization having

superior rights.

  Thus, take the example of a non-subscriber to the scrambled television channel o of the second operator 02 wishing to make a copy of a smart card 1 of a subscribed person who recorded a video by this second system. It is first authorized to copy multimedia type data to a blank card, since they are not directly usable. To obtain the exploitation right, he calls the operator 02 or a supervisory organization by any telecommunication device having a card reader, his GSM 51 for example, and requests o the acquisition of new rights allowing him to exploit multimedia type data. The upper decryption data are then downloaded into the memory space 5 of its card.

  Authors and operators have the advantage of greater profit linked to a wider distribution of multimedia-type data. The general public obtains the advantage of having a wider choice, not limited to a

particular system.

  An advantage of the present invention is therefore to allow technical compatibility between existing systems and thus to propose a universal solution. As an alternative embodiment of the invention, the decryption or descrambling algorithm of the invention of the reader 60 is moved to a third memory space of the smart card 1. The data from the card will therefore be decrypted and the readers 60 clearly simplies. One can also provide for c transforming into analog form within the card the multimedia type data decrypted to limit the possibilities of copying. You can also use a smart card with a screen to view

directly a video on the card.

Claims (13)

R E V E N D I C A T I O N S   1. Portable electronic device with high capacity integrated circuits characterized in that it contains both first multimedia type data in a first memory space and second data representing the copyright associated with multimedia type data in a second memory space, said second data being necessary for   the exploitation of the first data.   o 2. Device according to claim 1, characterized in   that the second memory space is saved.   3. Device according to claim 1 or 2, characterized in that the first data are stored encrypted and in that the second data contain a key to the decryption of first data.   4. Portable electronic device according to one of the   o Claims 1 to 3, characterized in that the device is a smart card.   5. Portable electronic device according to one of the   claims 1 to 3, characterized in that the   device is a multimedia card.   6. Portable electronic device according to one of   claims 1 to 5, characterized in that the   first data represents a video of a tough guy at least half an hour.   7. Device according to one of claims 1 to 6,   characterized in that it contains the algorithm for decrypting the first data in a third memory space and is suitable for the execution of said algorithm. 8. Device according to claim 7, characterized in that it comprises a means for converting into analog form the first multimedia type data o after their decryption.   9. Method for the distribution of digital works composed of multimedia type data comprising the following steps: Loading multimedia type data into a first memory space of a portable electronic device with integrated circuits in a form which is not directly usable; Loading data into a second memory space of the same portable electronic device with integrated circuits representing the associated copyright to the first data.   10. Method according to claim 9, characterized in that   that the two loading steps are simultaneous.   11. Method according to claim 9, characterized in that the two loading steps are dissociated in time.   12. Process for operating an electronic device   according to one of claims 1 to 6, characterized in that   that it includes a step of executing an algorithm for transforming the first data into a form   usable using the second data.   13. Device for operating a device   portable electronics according to one of claims 1   6 characterized in that it comprises a reader capable of receiving such a portable electronic device and a security module capable of transforming said first multimedia data not directly usable into usable data using