JP7334772B2 - Information processing device and receiving method - Google Patents

Description

The present technology relates to a receiving device and a receiving method capable of presenting broadcast content and executing an application.

2. Description of the Related Art In recent years, there has been known a technology that enables an application distributed through a network such as the Internet to be executed simultaneously with reproduction of broadcast content. As such a technology, a technology called Hybrid Broadcast Broadband TV (hereinafter referred to as “HbbTV”) is known. As a standard for HbbTV, "ETSI TS 102 796" (see Non-Patent Document 1) has been formulated in Europe. Also, in Japan, corresponding standards "IPTVFJ STD-0010" (see Non-Patent Document 2) and "IPTVFJ STD-0011" (see Non-Patent Document 3) have been established.

For example, in a system such as HbbTV in which an application is executed at the same time as broadcast content is played back, the life cycle of the application from start to finish is determined by a data structure called an AIT section (Application Information Table) superimposed on the broadcast content. managed. The information terminal that has acquired the AIT section controls the application based on the application control code included in the AIT section.

Also, there is XML-AIT described in XML format as an optimal format for providing information on applications to a receiver using a communication network such as the Internet, which has information equivalent to that of the broadcast AIT section.

ETSI (European Telecommunications Standards Institute) "ETSI TS 102 796 V1.1.1 (2010-06)" Viewed on October 21) General Incorporated Association IPTV Forum “Broadcasting and Telecommunications Cooperation System Specification Version 1.0” https://www.iptvforum.jp/download/input.html (accessed December 4, 2013) General Incorporated Association IPTV Forum “IPTVFJ STD-0011 HTML5 Browser Specification Version 1.0” https://www.iptvforum.jp/download/input.html (accessed December 4, 2013)

In the future, it is expected that businesses other than broadcasting stations, such as application businesses such as terminal manufacturers and third parties, will provide applications that use broadcast programs in some form. Hereinafter, such an application will be called a "non-broadcasting managed application".

However, in actually operating services using such non-broadcasting managed applications, there are still various problems to be solved, and countermeasures are desired.

In view of the circumstances as described above, an object of the present technology is to provide an information processing device, a broadcasting device, and a receiving method that enable a service provider to precisely reflect the constraints on the behavior of non-broadcasting managed applications and improve the quality of services. is to provide

In order to solve the above problems, an information processing device according to the present technology includes:
a broadcast receiving unit capable of receiving broadcast;
obtaining, through communication, a first application information table storing at least first usage permission information indicating a usage permission range of the resource by an application that uses the broadcast resource, and controlling the operation of the application; during execution of the above, using the broadcast receiving unit, acquires a second application information table storing at least second license information indicating a license range of use of the resource by the application, and controls the operation of the application. and a controller configured to:

The controller may be configured to acquire the application based on the information in the first application information table and activate the acquired application.

When the controller compares the first license information and the second license information and detects a difference, the controller switches from the first license information to the second license information, It may be configured to control the extent of utilization of the resource by the application.

The application may be an application provided by a third party other than the broadcaster.

In the information processing device according to the present technology, the first application information table and the second application information table store area information defining an area on a display screen in which the application may be displayed,
The controller may be configured to set the area based on the area information and display the application in this area.

The broadcasting device according to the present technology is
A broadcasting unit for transmitting a broadcast signal including an application information table storing at least usage permission information indicating a usage permission range of the broadcast resource by an application capable of using the broadcast resource.

The broadcasting unit may be configured to store area information defining an area on a display screen where the application may be displayed in the application information table and transmit the area information.

The receiving method according to the present technology is
a controller obtains, through communication, a first application information table storing at least first usage permission information indicating a usage permission range of the resource by an application that uses the broadcast resource, and controls the operation of the application;
During execution of the application, a second application information table storing at least second license information indicating a license range of use of the resource by the application is obtained from the broadcast to control the operation of the application.

As described above, according to the present technology, the service provider can precisely reflect the constraints on the behavior of the non-broadcasting managed application and improve the quality of service.

It is a figure which shows the outline|summary of the information processing system of this embodiment. FIG. 4 is a diagram showing the data structure of XML-AIT; FIG. 10 is a diagram showing the syntax of a license information descriptor; It is a figure which shows the data structure of section AIT. FIG. 10 is a diagram showing the syntax of an external application control descriptor; FIG. 4 is a diagram showing definitions of application control codes; 1 is a block diagram showing the configuration of an information processing apparatus according to an embodiment; FIG. FIG. 3 is a sequence diagram showing the flow of exchanges among a broadcasting station, an application server, an XML-AIT server, and an information processing device; 4 is a flow chart showing a processing procedure by an application controller of the information processing device; FIG. 10 is a sequence diagram showing the flow of exchanges among the broadcasting station, application server, XML-AIT server, and information processing device when a direct channel selection operation occurs during execution of a non-broadcasting managed application; 10 is a flow chart showing the control flow of the application controller when a direct channel selection operation occurs during execution of a non-broadcasting managed application. FIG. 10 is a diagram showing an example of setting an overlay area based on overlay area information in the license information descriptor 21 of XML-AIT; FIG. 10 is a diagram showing a first update example of an overlay area; FIG. 12 is a diagram showing a second update example of the overlay area; FIG. 12 is a diagram showing a third update example of the overlay area; FIG. 2 is a block diagram for explaining a mechanism for generating and verifying an electronic signature; FIG. 1 is a conceptual diagram of a dedicated modular system; FIG. FIG. 4 is a diagram showing the configuration of a broadcasting station public key certificate descriptor; FIG. 10 is a flow chart for obtaining and updating a broadcasting station public key certificate using a dedicated module system; FIG. FIG. 4 is a diagram showing the structure of a root certificate descriptor according to the data broadcasting extension method (Part 1); FIG. 10 is a flow chart regarding acquisition and update of a broadcasting station public key certificate according to the data broadcasting extension method (part 1); FIG. FIG. 10 is a diagram showing the structure of a root certificate descriptor according to the data broadcasting extension method (part 2); FIG. 10 is a flow chart regarding acquisition and update of a broadcasting station public key certificate according to the data broadcasting extension method (part 2); FIG. FIG. 3 is a diagram for explaining the generation of electronic signatures and hash values and the mechanism of their verification;

Embodiments of the present technology will be described below with reference to the drawings.
<First Embodiment>
[Information processing system]
FIG. 1 is a diagram showing the configuration of an information processing system according to this embodiment.
The information processing system 10 of this embodiment includes a broadcasting station 100, a first network 200 such as the Internet, an application server 300, an XML-AIT server 400, an edge router 500, and a LAN (Local Area Network). It has a second network 600 and an information processing device 700 as a broadcast receiver.

The broadcasting station 100 (broadcasting device) has broadcasting facilities (broadcasting unit) that transmit digital broadcasting signals via communication media such as terrestrial waves, satellite waves, and IP (Internet Protocol) networks. The broadcasting station 100 sends out an AV stream in which transport streams such as video, audio, subtitles, etc. are multiplexed, and a so-called broadcast stream in which data accompanying the AV stream is superimposed. The data accompanying the AV stream controls the operation of broadcast managed applications, broadcast managed applications, and non-broadcast managed applications written in markup languages such as HTML and BML and script languages such as Java (registered trademark) scripts. AIT (Application Information Table) in a section format for Hereinafter, this AIT will be called a "section AIT". This section AIT corresponds to a "second application information table" in claims.

In the present embodiment, an AV stream in which transport streams such as video, audio, subtitles, etc. are multiplexed and transmitted is called "broadcast content", and this term includes the meaning of application and section AIT. It is assumed that

The application server 300 is connectable to the first network 200 and provides the information processing apparatus 700 with applications to be processed together with the broadcast content through the first network 200 . Here, the application supplied from the application server 300 is referred to as a "non-broadcasting managed application" and is distinguished from the "broadcasting managed application" supplied from the broadcasting station 100. FIG.

Note that the section AIT is originally information for controlling the broadcast managed application to operate in conjunction with the broadcast content. In this embodiment, the syntax of section AIT is defined so that it can be used for controlling non-broadcasting managed applications. The details of the syntax of this section AIT will be explained later.

The XML-AIT server 400 is connectable to the first network 200, and provides the information processing device 700 via the first network 200 with the XML-AIT corresponding to the non-broadcast managed application provided from the application server 300. It is distributed according to a request from the processing device 700 . This XML-AIT contains information for controlling at least activation of the non-broadcast managed application. Section AIT, on the other hand, contains information for controlling the operation after launch of the non-broadcasting managed application launched according to XML-AIT. This XML-AIT corresponds to the "first application information table" in the claims.

Note that the application server 300 and the XML-AIT server 400 may be one server. The application server 300 and the XML-AIT server 400 each have a CPU, a main memory, a data storage device, a user interface, etc., and have a configuration as a typical computer. The main memory or data storage device stores a program for causing the computer to function as a table transmission unit.

Edge router 500 is a router for connecting first network 200 and second network 600 . The second network 600 may be wired or wireless.

The information processing device 700 is, for example, a personal computer, a mobile phone, a smart phone, a television device, a game machine, a tablet terminal, an audio/video playback device, etc., but the specific form of the product does not matter.

The information processing device 700 receives a digital broadcast signal from the broadcasting station 100 and demodulates it to obtain a transport stream. The information processing device 700 separates the broadcast stream from the transport stream, decodes it, and outputs a display unit (not shown) and a speaker unit (not shown) connected to the information processing device 700, and a recording device (not shown). It is possible to output to

The display unit, the speaker unit, and the recording device may each be integrated with the information processing device 700, or may be connected to the information processing device 700 directly or via the second network 600 as independent devices. good too. Alternatively, a device (not shown) having a display unit and a speaker unit may be connected directly or via the second network 600 to the information processing apparatus 700 .

The information processing device 700 acquires the XML-AIT from the XML-AIT server 400 and accesses the application server 300 based on the location information described in this XML-AIT. The information processing device 700 acquires from the application server 300 a non-broadcasting managed application that is to be controlled by XML-AIT.

The information processing device 700 extracts the application identifier of the non-broadcasting managed application to be controlled from the acquired XML-AIT, and extracts the application identifier from one or more section AITs multiplexed in the received transport stream. Extract the section AIT that has The information processing device 700 controls the operation of the non-broadcasting managed application that has already been started according to this section AIT.

[application]
Next, applications such as broadcast managed applications and non-broadcast managed applications are described. Applications are provided to information processing apparatus 700 from broadcast station 100 and application server 300 . The applications include, for example, HTML (Hyper Text Markup Language) documents, BML documents (Broadcast Markup Language), MHEG documents (Multimedia and Hypermedia information coding), Java (registered trademark) scripts, still image files, moving image files, and the like.

Applications can be visible and invisible. A visible state is a state in which the user can see the operation of the application through the screen. An invisible state is a state in which the operation of the application cannot be seen by the user through the screen.

Further, the application may be a bidirectional application that can change the information and functions to be presented according to the user's operation of the information processing apparatus 700, or an application that presents information to the user in one direction.

[XML-AIT data structure]
Next, the data structure of XML-AIT will be described.
FIG. 2 is a diagram showing the data structure of the XML-AIT of this embodiment.

XML-AIT includes application name (appName), application identifier (applicationId), application descriptor (applicationDescriptor), transport protocol descriptor (applicationTransport), application location descriptor (applicationLocation), application boundary descriptor for each application. (applicationBoundary), application specific descriptor (applicationSpecificDescriptor), application usage descriptor (applicationUsageDescriptor), usage permission information descriptor 21 (broadcastResourcePermissionDescriptor), etc. are stored.

The application descriptor contains an application type (type), an application control code (controlCode) 22, a flag (visibility) that specifies whether the application is visible or invisible, a flag (serviceBound) that indicates whether the application is bound to a service, an application , application version, icon information (icon), information for the information processing apparatus 700 to record or cache the application (storageCapability), and the like are stored.

[Syntax of License Information Descriptor]
The use permission information descriptor 21 is a descriptor added when the non-broadcast managed application is permitted to use the broadcast resource.

FIG. 3 is a diagram showing the syntax of the license information descriptor 21. As shown in FIG.
The usage permission information descriptor 21 can describe one or more service usage permission information (Service_permission) and one or more overlay area information (Overlay_area).

The service license information includes a permission specification unit (scope) that indicates the applicable scope of the license. Permission specification units include the following.
all: All broadcasters
affiliate: affiliated station
broadcaster: Broadcaster
service: channel
event: program
series: series

When the permission designation unit is "affiliate", which affiliate is designated by an affiliate ID (affiliation_id).

When the permission designation unit is "broadcaster", which broadcaster is designated by the broadcaster ID (broadcaster_id).

When the permission designation unit is "service", which channel is designated by network ID (network_Id), transport stream ID (transport_stream_id) and service ID (service_id).

When the permission designation unit is "event", which program is designated by network ID, transport stream ID, service ID and event ID (event_id).

When the permission designation unit is "series", which series is designated by network ID, transport stream ID, service ID and series ID (series_id).

The service license information further includes a permission bitmap (permission). The permission bitmap is binary data of service license information.

The permission bitmap is kept in the memory of the application controller 708 . The application controller 708 refers to the permission bitmap held in this memory to control the range of use of broadcast resources by non-broadcast managed applications.

The permission bitmap held in the memory is compared with the permission bitmap stored in the external application control descriptor of section AIT, which the information processing apparatus 700 acquires after starting the non-broadcast managed application. If there is a difference between both permission bitmaps, the permission bitmap in memory is overwritten with the permission bitmap stored in the external application control descriptor in section AIT. Thereafter, the application controller 708 refers to this overwritten permission bitmap and controls the range of use of broadcast resources by the non-broadcasting managed application.

As a result, for example, the broadcasting station can use the section AIT to dynamically change the scope of license information set in the XML-AIT created by a third party such as a provider of a managed application outside of broadcasting. Realized.

The service usage permission information further includes information (Overlay_Permission_error_behaviour) regarding behavior in the event of a permission error. Examples of information related to behavior in the event of a permission error include the following.
app_off: Hide the application.
video_off: Hide the video of the broadcast resource.
app_suspend: Hide the application and suspend the operation of the application.
In this way, when a permission error occurs, at least the video of the broadcast resource is put into a non-display state, so that the use of the broadcast resource is substantially disabled.

Next, overlay area information (Overlay_area) will be described.
Overlay area information is information for defining an overlay area. An overlay area is an area on a display screen that may display off-air managed applications. In other words, the overlay area is an area that is superimposed on the area where broadcast video is mainly displayed.

Information for defining an overlay area includes an area ID (areaId), an element ID (elementId) in an HTML application, an area upper left horizontal coordinate (upper_left_horizontal), an area upper left vertical coordinate (upper_left_vertical), and an area horizontal size (horizontal_size). and area vertical size (vertical_size).

Area ID is an identifier for identifying an overlay area.
The ID of the element in the HTML application is an identifier that identifies the non-broadcasting managed application linked with the overlay area or the element in the non-broadcasting managed application.

The area upper left horizontal coordinate and the area upper left vertical coordinate are information specifying the coordinates of the upper left corner of the overlay area.
The area vertical size and area horizontal size are information specifying the vertical and horizontal sizes of the overlay area.

[XML-AIT electronic signature]
An electronic signature is attached to this XML-AIT to detect falsification. An XML signature, for example, is used as the electronic signature. The format of the XML signature may be a detached signature independent of the XML-AIT, an enveloped signature with a format including XML-AIT, or an enveloped signature with a format included in XML-AIT. It should be noted that a detached signature should be adopted to reduce the influence on the XML-AIT format.

The application controller 708 of the information processing device 700 verifies the XML signature according to a core validation procedure including reference validation and signature validation.
Reference verification is a method of verifying a digest value (DigestValue) of a reference (Reference) by applying a normalization transformation process (Transform) and a digest calculation algorithm (DigestMethod) to a resource (XML-AIT). The result obtained by reference verification and the registered digest value (DigestValue) are compared, and verification fails if they do not match.
Signature verification involves serializing the signature information (SignatureInfo) element by the canonicalization method specified by the XML canonicalization algorithm (CanonicalizationMethod), obtaining the key data using the key information (KeyInfo), etc., and applying the signature algorithm (SignatureMethod). This is a method to verify the signature using the method specified in .

[Structure of Section AIT]
FIG. 4 shows the data structure of section AIT.
Section AIT includes table ID (table_id), section syntax indication (section_syntax_indicator), section length (section_length), application type (application_type), version number (version_number), current next indication (current_next_indicator), section number (section_number), last Section number (last_section_number), common descriptor area 41 (descriptor), application information loop length (application_loop_length), application identifier (application_identifier), application control code 42 (application_control_code), application descriptor (application_descriptor) and the like are stored.

The common descriptor area 41 stores an external application control descriptor (External_application_control_descriptor) for controlling the operation of the non-broadcasting managed application.

[External application control descriptor syntax]
FIG. 5 is a diagram showing the syntax of an external application control descriptor (External_application_control_descriptor).
The external application control descriptor describes a descriptor tag (descriptor_tag), a descriptor length (descriptor_length), a permission bitmap count (permission_bitmap_count), a permission bitmap 51 (permission_bitmap), and the like.

The permission bitmap 51 described in the section AIT is binary data indicating the scope of the broadcast resource usage license by the non-broadcasting managed application that has already been started in the information processing device 700, that is, binary data of the service usage license information. . This permission bitmap is compared with the permission bitmap already held in the memory of the application controller 708 of the information processing device 700 .

The permission bitmap of the XML-AIT and the permission bitmap of the section AIT may contain binary data of information on behavior in the event of a permission error. However, in this embodiment, only the XML-AIT is configured to include binary data of information on behavior in the event of a permission error in the permission bitmap.

The external application control descriptor describes overlay admission polarity (overlay_admission_polarity) and overlay controlled area count (overlay_controlled_area_count) as information about the overlay area.

The overlay permission polarity is information that specifies whether the overlay area defined in section AIT is a usable area or an unusable area.

The number of overlay control areas is information specifying the number of overlay areas.

The external application control descriptor further contains, as information about the overlay area, an overlay area tag (overlay_controlled_area_tag), an area upper left horizontal coordinate (upper_left_horizontal), an area upper left vertical coordinate (upper_left_vertical), an area horizontal size (horizontal_size) and an area vertical size ( vertical_size) is described.

An overlay area tag is tag information that identifies an overlay area.

The information specified by each of the area upper left horizontal coordinate, area upper left vertical coordinate, area horizontal size, and area vertical size is the same as the descriptor with the same name in the license information descriptor of XML-AIT.

The external application control descriptor further describes a number of black/white application lists (bw_application_list_count), an application ID (application_identifier), a black/white polarity (black_white_polarity), and the like.

The number of black/white application lists is information specifying the number of applications that are permitted or prohibited from using broadcast resources.

The application ID is an application ID of an application whose use of broadcast resources is permitted or prohibited.

The black/white polarity is information that designates whether to permit or prohibit the use of broadcast resources. For example, even if the polarity that allows the use of the overlay area is specified as the overlay permission polarity, if "prohibited" is specified by the black/white polarity for a specific non-broadcasting managed application, Usage of broadcast resources by that particular non-broadcast managed application is prohibited. In addition, even if a polarity in which the overlay area cannot be used is specified as the overlay permission polarity, if "permission" is specified by black/white polarity for a specific non-broadcasting managed application, Usage of broadcast resources by that particular non-broadcast managed application is licensed.

[Application control code definition]
The life cycle of the application is dynamically controlled by the information processing device 700 based on the XML-AIT and the application control codes 22, 42 stored in the section AIT.

FIG. 6 is a diagram showing definitions of the application control codes 22 and 42. As shown in FIG.
As shown in the figure, as application control codes 22 and 42, "AUTOSTART", "PRESENT", "DESTROY", "KILL", "PREFETCH", "REMOTE", "DISABLED", and "PLAYBACK_AUTOSTART" are standard specifications. exist above. The definitions of these application control codes are as follows.

"AUTOSTART" is a code that instructs the application to automatically start when the service is selected. This is not the case if the application is already running.
"PRESENT" is a code that instructs the application to be in an executable state while the service is selected. However, the target application is not automatically activated upon selection of the service, but is activated upon receipt of an activation instruction from the user.
"DESTROY" is a code that instructs permission to terminate the application.
"KILL" is a code to forcibly terminate the application.
"PREFETCH" is a code that directs caching of the application.
"REMOTE" is a code indicating that the application cannot be obtained with the current transport stream. The application is made available by retrieving it from another transport stream or cache.
"DISABLED" is a code indicating prohibition of starting the application.
"PLAYBACK_AUTOSTART" is a code for activating an application along with playback of broadcast content recorded in a storage (recording device).

[Configuration of information processing device 700]
FIG. 7 is a block diagram showing the configuration of an information processing apparatus 700 of this embodiment.
The information processing device 700 has a broadcast interface 701, a demultiplexer 702, an output processing unit 703, a video decoder 704, an audio decoder 705, a caption decoder 706, a communication interface 707, and an application controller 708 (controller).

A broadcast interface 701 (broadcast receiver) has an antenna and a tuner, and uses these to receive a digital broadcast signal selected by a user. Broadcast interface 701 outputs to demultiplexer 702 a transport stream obtained by demodulating the received digital broadcast signal.

The demultiplexer 702 separates broadcast content stream packets, application packets, and AIT section packets from the transport stream. A demultiplexer 702 separates a video ES (Elementary Stream), an audio ES, and a caption ES from stream packets of broadcast content. Demultiplexer 702 sends video ES to video decoder 704, audio ES to audio decoder 705, subtitle ES to subtitle decoder 706, and PSI/SI (Program Specific Information/Service Information) including application packets and AIT sections. , are distributed to the application controller 708 respectively.

The video decoder 704 decodes the video ES to generate a video signal, and outputs the generated video signal to the output processing unit 703 . The audio decoder 705 decodes the audio ES to generate an audio signal, and outputs the generated audio signal to the output processing unit 703 .
The subtitle decoder 706 decodes the subtitle ES to generate a subtitle signal, and outputs the generated subtitle signal to the output processing unit 703 .

A broadcast interface 701, a demultiplexer 702, an output processing unit 703, a video decoder 704, an audio decoder 705, and a caption decoder 706 are broadcast content processing units that receive and present broadcast content.

A communication interface 707 is an interface for communicating with an external device through the second network 600 such as a LAN. The communication interface 707 may be wireless communication or wired communication.

The application controller 708 (controller) is a controller that performs processing related to application control.

The output processing unit 703 synthesizes the video signal from the video decoder 704 , the audio signal from the audio decoder 705 , the caption signal from the caption decoder 706 , the video signal and the audio signal from the application controller 708 , etc., and outputs them to the information processing device 700 . Output to the connected recording device (not shown), display unit and speaker unit (not shown).

A part or all of the configuration including at least the application controller 708 of the information processing device 700 is provided by a computer having a CPU (Central Processing Unit) and memory, and a program that causes this computer to function as the application controller 708 or the like. .

[Operation of information processing system 10]
Next, the operation of the information processing system 10 of this embodiment will be described.

(1. Control of Broadcast Resource Usage Scope (Part 1))
FIG. 8 is a sequence diagram showing the flow of exchange among the broadcasting station 100 (broadcasting device), the application server 300, the XML-AIT server 400, and the information processing device 700. FIG. FIG. 9 is a flow chart showing a processing procedure by the application controller 708 of the information processing apparatus 700. As shown in FIG.

The information processing apparatus 700 displays the application launcher selected by the user using, for example, a remote controller (step S101). The application launcher is implemented by, for example, a so-called resident application installed in the information processing apparatus 700, HTML5 (Hyper Text Markup Language 5), BML (Broadcast Markup Language) presented by an HTML browser, and the like. The application launcher displays a menu of off-air managed applications to choose from.

The user can select the off-broadcast managed application that he/she wants to use, for example, using a remote control. The non-broadcasting managed application menu displayed on the application launcher incorporates a script or the like for causing the information processing apparatus 700 to acquire the XML-AIT for the non-broadcasting managed application.

When an arbitrary non-broadcasting managed application is selected by a user's operation using a remote control on the menu of non-broadcasting managed applications displayed on the application launcher (step S102), the application controller 708 launches the non-broadcasting managed application. acquires the XML-AIT for the arbitrary non-broadcasting managed application from the XML-AIT server 400 by executing the script corresponding to (step S103).

The application controller 708 of the information processing device 700 acquires the non-broadcast managed application from the application server 300 based on the location information of the application described in the acquired XML-AIT (step S104).

The application controller 708 starts the acquired non-broadcast managed application according to the application control code "AUTOSTART" described in the XML-AIT (step S105).

After starting the non-broadcast managed application, the application controller 708 monitors broadcast resource access requests from the non-broadcast managed application (step S106). When the application controller 708 detects a broadcast resource access request from the non-broadcast managed application (Y in step S107), the broadcast station public key certificate corresponding to this broadcast resource is stored in the memory within the information processing device 700. It is checked whether or not there is (step S107).

If the broadcasting station public key certificate is not stored in the memory within the information processing device 700, the application controller 708 of the information processing device 700 receives the target broadcasting station public key certificate through the data carousel. wait for When the application controller 708 receives the target broadcasting station public key certificate, it stores it in memory (step S108).

The application controller 708 verifies the electronic signature attached to the non-broadcast managed application being executed using the broadcasting station public key certificate stored in the memory (step S110). If the verification of the electronic signature fails (N of step S111), the application controller 708 assumes that the non-broadcasting managed application has not been authenticated by the broadcasting station and prohibits access to all broadcasting resources of that broadcasting station. (step S112). In a state in which access to broadcast resources is prohibited, even if a non-broadcast managed application is activated, access to broadcast resources is prohibited.

If the electronic signature verification is successful (Y in step S111), the application controller 708 uses the non-broadcasting managed application based on the service license information in the license information descriptor 21 described in the XML-AIT. It is determined whether or not access to the requested broadcast resource is permitted (step S113).

The service license information in the license information descriptor 21 written in the XML-AIT is held in the memory of the application controller 708 as a permission bitmap (binary data). The application controller 708 refers to this permission bitmap to determine whether access to the broadcast resource requested by the non-broadcast managed application is permitted.

Here, for example, it is assumed that the permission designation unit in the service use permission information is "service". In this case, information for identifying a channel is designated by a network ID, a transport stream ID and a service ID according to the service license information in the license information descriptor 21 . Let's call that channel "channel x". In this example, if the channel to which the off-air managed application requests access is "channel x," application controller 708 grants the access request to grant access to "channel x."

If any other channel is requested to be accessed by an off-air managed application, application controller 708 determines that a permission error has occurred. In this case, the application controller 708 controls the operation of the non-broadcasting managed application according to the information on the behavior at the time of permission error, which is stored in the service license information in the license information descriptor 21 .

In this way, when the electronic signature verification is successful, the application controller 708 allows the non-broadcast managed application to access the broadcast resource within the scope permitted based on the XML-AIT service license information. Control is performed (step S114).

On the other hand, the broadcast station 100 periodically sends out a section AIT for controlling the operation of the non-broadcast managed application being activated in the information processing device 700 . The transmission period of the section AIT is, for example, approximately 100 ms. The generation of section AIT is managed by a version number. The application controller 708 holds the version number of the last acquired section AIT, and receives a section AIT having a version number different from the version number held (step S115).

The application controller 708 checks whether an external application control descriptor is added to the received section AIT (step S116). If no external application control descriptor is added (N of step S116), control of broadcasting resource usage permission based on usage permission information descriptor 21 (permission bitmap held in memory) stored in XML-AIT is continued.

If an external application control descriptor is added to the acquired section AIT (Y in step S116), the application controller 708 combines the permission bitmap of this external application control descriptor and the permission bitmap held in the memory. Compare (step S117). If there is a difference between both permission bitmaps (Y in step S117), the application controller 708 updates the permission bitmap in the memory with the permission bitmap of the external application control descriptor (step S118). As a result, the permitted range of use of broadcasting resources intended by the broadcasting station is set in the information processing device 700 .

If there is no difference between the permission bitmap of the external application control descriptor and the permission bitmap held in the memory (N in step S117), the permission bitmap held in the memory is left as it is and this Control of broadcast resource licensing based on the permission bitmap continues.

After that, for example, when an instruction to end the application or a transition to another application occurs by operating the remote controller by the user (YES in step S120), the application controller 708 of the information processing device 700 ends the non-broadcast managed application ( step S122).

Further, if the section AIT acquired during the execution of the non-broadcast managed application describes an application control code other than "AUTOSTART", "DESTROY", and "KILL", the application controller 708 of the information processing device 700 After performing processing such as transitioning the state of the non-broadcasting managed application according to the application control code (step S121), the next section AIT is awaited.

Thereafter, similar processing is performed for the received section AIT.

After that, even when a program change (program A→program B) occurs within the same channel (channel x), the same processing is repeated for the section AIT acquired after the change of program B.

Also, when the channel is switched, the same processing is repeated for the section AIT acquired after the channel switching.

(2. Control of Broadcast Resource License Range (Part 2))
While the non-broadcast managed application is being executed, for example, an operation (direct channel selection operation) of switching the broadcast channel may be performed by the user's manual operation.

FIG. 10 shows exchanges among the broadcasting station 100 (broadcast transmission device), the application server 300, the XML-AIT server 400, and the information processing device 700 when a direct channel selection operation occurs during execution of a non-broadcasting managed application. is a sequence diagram showing the flow of. FIG. 11 is a flow chart showing the control flow of the application controller 708 when a direct channel selection operation occurs during execution of a non-broadcasting managed application.

When a direct channel selection operation occurs during execution of a non-broadcasting managed application (step S201), the application controller 708 of the information processing device 700 receives the broadcast station public key certificate corresponding to the directly selected broadcast channel as information. It is checked whether or not it is saved in the memory within the processing device 700 (step S202).

If the broadcasting station public key certificate is not stored in the memory within the information processing device 700, the application controller 708 of the information processing device 700 displays the data carousel of the broadcast channel to which the target broadcasting station public key certificate has been switched. After receiving the target broadcast station public key certificate transmitted by the data carousel or the like, it stores it in the memory (step S203).
Although an example in which a broadcasting station public key certificate is transmitted by a data carousel is shown here, it is possible to obtain a public key certificate using communication, such as obtaining a public key certificate from a pre-specified server. You may make it

The application controller 708 verifies the electronic signature attached to the non-broadcasting managed application being executed using the broadcasting station public key certificate stored in the memory (step S205). If the electronic signature fails (N in step S206), the application controller 708 terminates the non-broadcast managed application (step S209).

If the electronic signature has been successfully signed (Y in step S206), the application controller 708 continues the operation of the non-broadcasting managed application, and the non-broadcasting managed application uses the broadcast resource within the scope permitted based on the permission bitmap. is accessed (step S207).

The subsequent operations are the same as those after step S120 in FIG.

Further, as shown in FIG. 11, during the operation of the non-broadcasting managed application, for example, execution of a script incorporated in the non-broadcasting managed application or manual operation by the user may cause transition to another non-broadcasting managed application. instructions may occur. In this case, the application controller 708 performs control in the same manner as when the non-broadcast managed application is selected by the user from the application launcher described above.

(3. Control of overlay area)
As already explained, XML-AIT and section AIT can describe overlay area information (Overlay_area) for defining an area on the display screen D in which the non-broadcasting managed application may be displayed as an overlay area. .

FIG. 12 is a diagram showing an example of overlay area setting based on the overlay area information in the license information descriptor 21 of the XML-AIT.

In this setting example, there are two overlay areas, areaId=1 and areaId=2. Each overlay area defines a region on the display screen D by an area upper left horizontal coordinate (upper_left_horizontal), an area upper left vertical coordinate (upper_left_vertical), an area horizontal size (horizontal_size) and an area vertical size (vertical_size).

The application controller 708 creates each overlay area based on the overlay area information (Overlay_area) in the license information descriptor 21 of XML-AIT.

The application controller 708 recreates the overlay area based on the information about the overlay area included in the external application control descriptor (External_application_control_descriptor) of the common descriptor area 41 (descriptor) of the section AIT acquired after starting the non-broadcasting managed application. can be created. That is, the overlay area intended by the broadcasting station 100 can be updated.

FIG. 13 is a diagram showing a first update example of the overlay area.
In this example, the overlay area 1 is created based on the overlay area information (Overlay_area) in the license information descriptor 21 of the XML-AIT. Furthermore, it is assumed that a display area 2 for a non-broadcast managed application is provided in the overlay area 1 .

For example, after channel switching, the application controller 708 creates a new overlay area 3 in place of the existing overlay area 1 based on the overlay area information included in the external application control descriptor of the received section AIT. .

When the overlay area 1 is changed to the overlay area 3, the application controller 708 moves the display area 2 of the non-broadcast managed application to the newly created overlay area 3 according to the program preinstalled therein. to control.

The position of the display area 2 of the non-broadcast managed application is controlled by the application controller 708 . For example, control is performed so that the display area 2 of the non-broadcast managed application is arranged at a predetermined position. When display areas 2 of multiple non-broadcast managed applications are displayed at the same time, the application controller 708 exclusively controls the positions of each other.

FIG. 14 is a diagram showing a second update example of the overlay area.
In this example, the application controller 708, based on the information about the overlay area contained in the external application control descriptor of the section AIT, when the existing overlay area 1 is changed to the overlay area 3, the application controller 708 is pre-installed in itself. The following controls are performed according to the program.

First, the application controller 708 reduces the broadcast image display area 4 from a state in which the entire display screen D, for example, is used as the broadcast image display area 4, and sets the resulting empty area as the application display area 5. . The application controller 708 controls the display area 2 of the non-broadcast managed application to be displayed on the application display unit 5 without depending on the information regarding the overlay area of the external application control descriptor.

As a result, it is possible to prevent the non-broadcast managed application from being superimposed on the video of the broadcast video display unit 4 .

FIG. 15 is a diagram showing a third update example of the overlay area.
This example assumes that an overlay area 1 that uses the entire screen of the display screen D is set based on the XML-AIT overlay area information. A display area 2 for a non-broadcasting managed application is allocated to the entire overlay area 1, and a broadcast video display section 4 is set to a part thereof.

The application controller 708 creates a new overlay area 3 in place of the existing overlay area 1 based on the overlay area information included in the external application control descriptor of the section AIT received after channel switching, for example. .

At this time, the application controller 708 sets the broadcast video display unit 4 to the full screen of the display screen D according to a program preinstalled therein, and puts the display area 2 of the non-broadcast managed application into a non-display state. As a result, it is possible to prevent the video on the broadcast video display unit 4 from being partially hidden by the non-broadcast managed application. Also, in this third update example, if a child element (specified by elementId) that constitutes the non-broadcast managed application is specified in the position of the overlay area 3, the child element may be displayed.

(4. Generation and verification of electronic signature)
Next, generation and verification of electronic signatures will be described.
FIG. 16 is a block diagram for explaining the mechanism of electronic signature generation and verification.

The XML-AIT server 400 and the application server 300 may be one server owned by the application creator, or may be separate servers. Here, the XML-AIT server 400 and application server 300 are collectively referred to as "servers". A server is a device having a typical computer configuration. Therefore, it is composed of a CPU, a main memory, a storage device such as an HDD, an input device such as a mouse and a keyboard, a display unit such as a liquid crystal display, and the like. The main memory and storage devices include an OS (Operating System), software such as application programs for servers, non-broadcast managed applications provided to the information processing device 700, XML-AIT files for each application, signature generation keys, and the like. Stored.

The server has a signed application generator 350 . The signed application generator 350 is specifically implemented by a program loaded into the main memory and a CPU that executes this program.

The application creator requests the broadcasting station 100 to authenticate the non-broadcasting managed application 351 and the XML-AIT 355 .

Broadcasting station 100 scrutinizes the contents of non-broadcast managed application 351 and XML-AIT 355, which are the targets of authentication requested by the application creator, and if there is no problem, the secret key issued by root CA 800 (Fig. 1) and A private key of the pair of broadcast station public key certificates is set in signature generator 356 as signature generation key 357 . A signature generator 356 generates a digest of the non-broadcast managed application 351 using a signature hash function, encrypts this digest with a signature generation key (private key) 357 , and generates an XML signature 358 . The broadcast station 100 responds with the generated XML signature 358 to the server. The signed application generating unit 350 adds the XML signature 358 returned from the broadcasting station 100 to the non-broadcasting managed application 351 to generate the electronically signed application 360 and distributes it to the information processing device 700 .

The application controller 708 of the information processing device 700 extracts the XML signature from the electronically signed application 360 acquired from the server by the signature generator 753, and uses the signature verification key extracted from the broadcasting station public key certificate to generate the XML signature. A signature verification result 755 is obtained by verification using a certain public key 754 .

Next, a method for transmitting the broadcasting station public key certificate from the broadcasting station 100 to the information processing device 700 will be described.
Methods for transmitting the broadcasting station public key certificate from the broadcasting station 100 to the information processing device 700 include a dedicated module system, a data broadcasting extended system (first), and a data broadcasting extended system (second).

(dedicated module method)
FIG. 17 is a conceptual diagram of the dedicated module system.
In the dedicated module method, a dedicated module (for example, module_id =0xFFFE, etc.) 44 is newly placed.
In addition, DII (Download Info Indication) is arranged as a broadcasting station public key certificate descriptor in order to notify the information processing apparatus 700 of updating of the broadcasting station public key certificate distributed by the dedicated module.

FIG. 18 is a diagram showing the configuration of a broadcasting station public key certificate descriptor.
A broadcast station public key certificate descriptor (broadcast certificate_descriptor) includes an ID (broadcaster_certificate_id) that identifies a broadcast station public key certificate and a broadcast station public key certificate version (broadcaster_certificate_version).

FIG. 19 is a flow chart for obtaining and updating a broadcasting station public key certificate by the dedicated module system.

First, the application controller 708 of the information processing device 700 monitors DII module information transmitted by the data carousel (step S401). When the application controller 708 of the information processing device 700 detects that the broadcasting station public key certificate descriptor is included in the DII module information (Y in step S402), it analyzes this broadcasting station public key certificate descriptor. Then, the ID and version are extracted from this broadcasting station public key certificate descriptor (step S403).

The application controller 708 compares the ID of the broadcasting station public key certificate already stored in memory with the ID acquired this time, and checks whether a broadcasting station public key certificate with a matching ID is stored in memory. (Step S404). If the corresponding broadcasting station public key certificate is not stored (N in step S405), the application controller 708 acquires the broadcasting station public key certificate transmitted by the data carousel and stores it in memory (step S406). . After that, it returns to the monitoring state of the module information of the DII.

If the corresponding broadcasting station public key certificate is stored (Y in step S405), the application controller 708 checks the version of the broadcasting station public key certificate stored in the memory (step S407). The application controller 708 compares the version of the confirmed broadcast station public key certificate with the version of the broadcast station public key certificate acquired this time, and determines whether or not the version of the broadcast station public key certificate has been upgraded (step S408).

If it is determined that the broadcasting station public key certificate has not been upgraded (N in step S408), the application controller 708 returns to the DII module information monitoring state.

If it is determined that the broadcasting station public key certificate has been upgraded (N in step S408), the application controller 708 acquires the broadcasting station public key certificate transmitted by the data carousel and stores it in memory (step S409). After that, it returns to the monitoring state of the module information of the DII.

As described above, the information processing apparatus 700 can acquire one or more types of latest version broadcasting station public key certificates with different IDs and store them in the memory.

(Data broadcasting expansion method (Part 1))
FIG. 20 is a diagram showing the configuration of a root certificate descriptor according to the data broadcasting extension method (Part 1).
In the data broadcasting extension method (Part 1), the root_certificate_type of the root certificate descriptor is extended to transmit the public key certificate of the new service, and an ID (broadcaster_certificate_id) that identifies the broadcasting station public key certificate and It describes the version of the broadcasting station public key certificate (broadcaster_certificate_version).

FIG. 21 is a flowchart relating to obtaining and updating a broadcast station public key certificate according to the data broadcasting extension method (part 1).

First, the application controller 708 of the information processing device 700 monitors the root certificate descriptor of the DII transmitted by the data carousel (step S501). When the application controller 708 of the information processing device 700 detects the root certificate descriptor of the DII (Y in step S502), it analyzes this root certificate descriptor and assigns a value indicating a new service to this root certificate descriptor ( root_certificate_type=2) is described (step S503). If the value indicating the new service (root_certificate_type=2) is not described, the data broadcasting process is performed (step S504), and then the status of monitoring the root certificate descriptor of DII is returned.

If the root certificate descriptor describes a value indicating a new service (root_certificate_type=2), the application controller 708 extracts the ID and version of the broadcasting station public key certificate from the root certificate descriptor. (Step S505). The subsequent operations from step S506 to step S511 are the same as those from step S404 to step S409 of the dedicated module method, so description thereof will be omitted.

The application controller 708 compares the ID of the broadcasting station public key certificate already stored in memory with the ID acquired this time, and checks whether a broadcasting station public key certificate with a matching ID is stored in memory. (Step S404). If the corresponding broadcasting station public key certificate is not stored (N in step S405), the application controller 708 acquires the broadcasting station public key certificate transmitted by the data carousel and stores it in memory (step S406). . After this, it returns to the monitoring state of the root certificate descriptor of the DII.

If the corresponding broadcasting station public key certificate is stored (Y in step S405), the application controller 708 checks the version of the broadcasting station public key certificate stored in the memory (step S407). The application controller 708 compares the version of the confirmed broadcast station public key certificate with the version of the broadcast station public key certificate acquired this time, and determines whether or not the version of the broadcast station public key certificate has been upgraded (step S408).

If it is determined that the broadcasting station public key certificate has not been upgraded (N in step S408), the application controller 708 returns to the DII module information monitoring state.

If it is determined that the broadcasting station public key certificate has been upgraded (N in step S408), the application controller 708 acquires the broadcasting station public key certificate transmitted by the data carousel and stores it in memory (step S409). After that, it returns to the monitoring state of the module information of the DII.

As described above, the information processing apparatus 700 can acquire one or more types of latest version broadcasting station public key certificates with different IDs and store them in the memory.

(Data broadcasting expansion method (Part 2))
In the data broadcasting extension method (part 2), one fixed storage area is allocated for a new service among the storage areas in which the public key certificate for data broadcasting can be transmitted in the root certificate descriptor, and broadcasting is performed there. An ID (broadcaster_certificate_id) for identifying the station public key certificate and a version (broadcaster_certificate_version) of the broadcasting station public key certificate are described. Also, as shown in FIG. 22, a new flag (broadcaster_certificate_flag) is placed in the root certificate descriptor. For example, when the flag value is "1", it indicates that the broadcasting station public key certificate is transmitted, and when the flag value is "0", it indicates that the broadcasting station public key certificate is not transmitted. show.

FIG. 23 is a flowchart relating to obtaining and updating a broadcasting station public key certificate according to the data broadcasting extension method (Part 2).
First, the application controller 708 of the information processing device 700 monitors the DII root certificate descriptor transmitted in the data carousel (step S601). When the application controller 708 of the information processing device 700 detects the DII root certificate descriptor (Y in step S502), it analyzes the root certificate descriptor and checks the value of the flag (broadcaster_certificate_flag). If the value of the flag is "0", the application controller 708 performs data broadcasting processing (step S504), and then returns to the DII root certificate descriptor monitoring state.

When the value of the flag is "0", the application controller 708 selects a broadcasting station from a predetermined storage area among a plurality of storage areas capable of transmitting a public key certificate for data broadcasting in the root certificate descriptor. The ID and version of the public key certificate are extracted (step S605). Since the operation from step S606 to step S611 is the same as that from step S404 to step S409 of the dedicated module method, the explanation is omitted.

As described above, the information processing apparatus 700 can acquire one or more types of latest version broadcasting station public key certificates with different IDs and store them in the memory.

[Effects of the first embodiment, etc.]
The following effects are obtained in this embodiment.
1. The application controller 708 controls the range of use of broadcast resources by non-broadcast managed applications based on the external application control descriptor of section AIT. As a result, a mechanism is realized in which the broadcasting station side can dynamically change the scope of license information set in the XML-AIT created by a third party such as a provider of a non-broadcasting managed application using the section AIT. be.

As a result, for example, in a broadcast program with a flexible time schedule such as a live sports broadcast, it is possible to change the control of the operation of the non-broadcast managed application in accordance with changes such as changes in program progress and organization.

In addition, it is possible to specify, for each broadcasting station, control of the operation of a non-broadcasting managed application that is supposed to use broadcasting resources of a plurality of channels (broadcasting stations).

2. The application controller 708 holds in memory a permission bitmap, which is binary data of the XML-AIT service license information. The application controller 708 can obtain the difference by comparing the permission bitmap held in the memory and the permission bitmap in the section AIT obtained after starting the non-broadcasting managed application by binary operation. As a result, the load on the application controller 708 of the information processing apparatus 700 can be reduced, and the speed can be increased.

3. The application controller 708 controls the display position of the non-broadcast managed application on the display screen based on the external application control descriptor of section AIT. As a result, a mechanism is realized in which the broadcasting station side can dynamically change the scope of license information set in the XML-AIT created by a third party such as a provider of a non-broadcasting managed application using the section AIT. be.

<Modification 1>
Although the electronic signature is attached to the application in the first embodiment, the electronic signature may be attached to the XML-AIT. According to this method, when multiple broadcasting stations permit the use of broadcasting resources for one application, the XML-AIT is accompanied by electronic signatures of all broadcasting stations that permit the use of broadcasting resources. be.

<Modification 2>
The method of modification 1 cannot directly detect falsification of an application. Therefore, the hash value of the application is embedded in the XML-AIT, and in the information processing device 700, the hash value calculated from the actual application is compared with the hash value embedded in the XML-AIT and notified, thereby preventing falsification of the application. can be detected indirectly. This method will be described below.

Next, generation and verification of electronic signatures and hash values will be described.

FIG. 24 is a diagram for explaining the mechanism of generating and verifying electronic signatures and hash values.
The server has a signed AIT generator 350A. Signed AIT generation unit 350A is specifically realized by a program loaded into the main memory for generating an electronic signature and a hash value, and a CPU executing this program.

Signed AIT generator 350A calculates hash value 353A from the substance (binary code) of non-broadcast managed application 351A using predetermined hash calculator 352A. Hash algorithms include, for example, SHA-1 and SHA-2 standardized by FIPS PUB 180-1 and 180-2.

Signed AIT generation unit 350A synthesizes hash value 353A with XML-AIT 362A of non-broadcasting managed application 351A to generate XML-AIT 355A with hash value.

The application creator requests the broadcasting station 100A to authenticate the non-broadcasting managed application 351A and the XML-AIT 355A.

Broadcasting station 100 scrutinizes the contents of non-broadcast managed application 351A and XML-AIT 355A, which are the objects of authentication requested by the application creator, and if there is no problem, the private key issued by root CA 800 (see FIG. 1). and the broadcasting station public key certificate pair, the secret key is set in the signature generator 356A as the signature generation key 357A. Signature generator 356A generates a digest of XML-AIT 355A using a signature hash function, encrypts this digest with signature generation key (private key) 357A, and generates XML signature 358A. The broadcasting station 100A responds to the server with the generated XML signature 358A.

The signed AIT generation unit 350A of the server adds the XML signature 358A responded from the broadcasting station 100A to the XML-AIT 355A with the hash value to generate the XML-AIT 360A with the digital signature, and distributes it to the information processing device 700A. .

Application controller 708A of information processing apparatus 700 calculates hash value 752A from the entity (binary code) of non-broadcasting managed application 351A obtained from the server using predetermined hash calculator 751A (hash function). The hash function used here must be the same as that of hash calculator 352A of signed AIT generator 350A of the server. Therefore, the application controller 708A confirms the hash algorithm described in the XML-AIT 360A with the electronic signature obtained from the server, and determines whether or not it matches the hash algorithm of the hash calculator 751A (hash function). . If the hash algorithms are determined to be inconsistent, application controller 708A switches hash calculator 751A (hash function) to match that of hash calculator 352A of signed AIT generator 350A of the server.

Application controller 708A uses hash comparator 756A to compare hash value 353A and hash value 752A extracted from XML-AIT 360A with a digital signature obtained from the server, and obtains match/mismatch result 757A.

Application controller 708A uses signature generator 753A to extract an XML signature from XML-AIT 360A with a digital signature obtained from the server, and verifies this XML signature using signature verification key (public key) 754A to verify the signature. We get the result 755A.

According to this modification, the hash value is added to the application and provided to the information processing device 700, so the information processing device 700 transmits the calculated hash value to the application acquired from the application server 300 and XML-AIT. The validity of the application can be determined by comparing with the hash value obtained.

Although the embodiments based on the HbbTV standard have been described above, the present technology is not necessarily limited to the HbbTV standard.

[Another configuration of this technology]
The present technology can also adopt the following configuration.
(1) a broadcast receiving unit capable of receiving broadcast;
obtaining, through communication, a first application information table storing at least first usage permission information indicating a usage permission range of the resource by an application that uses the broadcast resource, and controlling the operation of the application; during execution of the above, using the broadcast receiving unit, acquires a second application information table storing at least second license information indicating a license range of use of the resource by the application, and controls the operation of the application. An information processing device comprising: a controller configured to:

(2) The information processing device according to (1) above,
The information processing apparatus, wherein the controller is configured to acquire the application based on the information in the first application information table and activate the acquired application.

(3) The information processing device according to (1) or (2) above,
When the controller compares the first license information and the second license information and detects a difference, the controller switches from the first license information to the second license information, An information processing device configured to control a usage range of the resource by the application.

(4) The information processing device according to any one of (1) to (3) above,
The information processing device, wherein the application is provided by a third party other than the broadcasting station.

(5) The information processing device according to any one of (1) to (4) above,
the first application information table and the second application information table store area information defining an area on a display screen in which the application may be displayed;
The information processing apparatus, wherein the controller is configured to set the area based on the area information and display the application in the area.

(6) A broadcasting unit that transmits a broadcast signal that includes an application information table that stores at least usage permission information indicating a usage permission range of the broadcast resource by an application that can use the broadcast resource.

(7) The broadcasting device according to (6) above,
A broadcasting device, wherein the broadcasting unit is configured to store area information defining an area on a display screen where the application may be displayed in the application information table and transmit the area information.

In addition, the present technology is not limited to the above-described embodiments, and various modifications can be made without departing from the gist of the present invention.

DESCRIPTION OF SYMBOLS 10... Information processing system 21... License information descriptor 41... Common descriptor area 51... Permission bitmap 100... Broadcasting station 200... First network 300... Application server 400... AIT server 500... Edge router 600... Second network Network 700 Information processing device 701 Broadcast interface 702 Demultiplexer 703 Output processing unit 704 Video decoder 705 Audio decoder 706 Subtitle decoder 707 Communication interface 708 Application controller

Claims (6)

a broadcast receiving unit capable of receiving broadcast;
Acquiring, through communication, a first application information table storing at least first usage permission information indicating a usage permission range of the resource by an application that uses the resource of the broadcast , and controlling operations including activation of the application. and, during execution of the application, using the broadcast receiving unit, a second application information table storing at least second license information indicating a license range of the resource by the application is acquired , and an information processing apparatus comprising: a controller configured to control a range of use of the resource by an application. The information processing device according to claim 1,
The information processing apparatus, wherein the controller is configured to acquire the application based on the information in the first application information table and activate the acquired application. The information processing device according to claim 1 or 2,
When the controller compares the first license information and the second license information and detects a difference, the controller switches from the first license information to the second license information, An information processing device configured to control a usage range of the resource by the application. The information processing device according to any one of claims 1 to 3,
The information processing device, wherein the application is provided by a third party other than the broadcasting station. The information processing device according to any one of claims 1 to 4 ,
the first application information table and the second application information table store area information defining an area on a display screen in which the application may be displayed;
The information processing apparatus, wherein the controller is configured to set the area based on the area information and display the application in the area. A controller obtains, through communication, a first application information table storing at least first usage permission information indicating a usage permission range of the resource by an application that uses the resource of the broadcast , and an operation including starting the application. to control the
During execution of the application, a second application information table storing at least second license information indicating a permitted range of use of the resource by the application is acquired from the broadcast , and the range of use of the resource by the application is obtained. control the receiving method.

Images