JPH10190646A - Security information distribution method, receiving device and transmitting device in digital network - Google Patents

Abstract

PROBLEM TO BE SOLVED: To improve the transfer efficiency of the security information, etc., by diving the types of individual information into those to be transferred every receiver and those to be simultaneously transferred to plural receivers to prepare the decoder ID number for the information to be sent to every receiver to identify him and also to set the prescribed value via a network for the information to be simultaneously sent to plural receivers. SOLUTION: The application data such as the voice data to be inputted to a multiplexing part 1 are multiplexed with time division at the part 1. A scrambler 3 applies the scramble to the optional specific application data. Thus, a single data stream is sent to a receiving device 8 which descrambles the data stream via the restricted reception control. A control information generation part 2 generates the information to dissolve the scramble that is applied to the due receiver and inputs this information to the part 1. Then the part 2 sends the information to the scrambler 3 to perform the scramble.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a digital network, and more particularly, to a transmission side in which one or more application data input to a multiplexer are multiplexed in a time division manner, and one or more pieces of application data are divided by a time division frame. The present invention relates to a digital network such as a digital broadcasting network or a digital communication network for transmitting these application data to a receiving terminal via a transmission medium as one data stream.

[0002]

2. Description of the Related Art In a digital network as described above, application data broadcast or communicated from a transmission side is confidential so that only recipients (subscribers) who have a qualification or right defined by a contract or the like can use it. It is necessary to have For this purpose, scrambling is performed on a time-division frame of certain application data in the data stream, and in general, related information 1 having encrypted information for descrambling the time-division frame of the scrambled application data. Is transmitted in the data stream in the form of a time-division frame in the same manner as the application data, and further, the related information 2 corresponding to the receiving device or the receiver for decoding the related information 1 is transmitted in the same manner as the application data. Each of the receiving devices receives the related information 1 and the related information 1 and processes the encrypted related information 1 with the related information 2 to obtain the scrambled application. Descramble data And by, to achieve the secrecy is common.

When application data is scrambled, the receiving apparatus needs to descramble the application data. The control information for descrambling includes the related information 1 and the related information 2. Normally, the related information 1 has key information for descrambling the scrambled application data, and the related information 2 is used by a receiving apparatus for decoding information on a change in a contract condition of a receiver and the information of the related information 1. Have information. Next, specific examples of the related information 1 and the related information 2 will be described.

As a digital network requiring confidentiality as described above, for example, MPEG1 SYSTEM
S (ISO / IEC117172-1) or MPEG2 S
Broadcasting networks and communication networks using YSTEMS (ISO / IEC13818-1) that require confidentiality, especially personal computer communication systems, video distribution systems using personal computers, CATV systems, terrestrial broadcasting systems, satellite broadcasting systems, satellite communication systems Or these paid systems.

Conventionally, in various broadcast networks and communication networks requiring confidentiality, as described in, for example, Report No. 17 of the Consultation on the Telecommunications Technology Council, it is necessary to prevent unauthorized viewing of application data due to falsification or the like. The following method is adopted.

In other words, the transmitting apparatus scrambles the application data and sets a session key (K) for descrambling the application data.
s), which transmits common information having descrambling key information, and further includes individual information including contract information for each subscriber and decryption key information called a work key (Kw) for decrypting the common information. Is encrypted with a master key (Km) or a personal key (Kp) and transmitted for each individual subscriber. The receiving-side apparatus receiving these receives and processes the related information 2 sent for each subscriber, extracts the work key (Kw) using the master key (Km) and the private key (Kp), and extracts the work key (Kw). ) To decrypt the common information,
The session key (Ks) for descrambling is extracted, and the scramble of the target application data is descrambled. A similar technique is disclosed in
It is also shown in Japanese Patent No. 5736.

[0007] Further, another conventional technology can be cited as a part of the report of the Telecommunications Technology Council Advisory No. 74, AR
As described in the IB STD-B1 version 1.0, the common information is ECM (ISO / IEC13818-1 MP).
EG2 SYSTEMS, Entitlement C
control information, and the individual information is EMM (ISO / IEC13818-1 MPE).
G2 SYSTEMS, Entitlement Ma
EM)
M with a decoder identification number identifying each recipient,
As described above, the individual information is transmitted to each subscriber so that the receiver can extract (EMM filtering) the EMM sent to the receiver according to the receiver's own decoder identification number. The EMM extracted by the receiving device is decrypted by the master key (Km) or the private key (Kp) to extract a work key (Kw), and the ECM is decrypted by the extracted work key (Kw) in the same manner as described above. Then, the session key (Ks) is extracted, and the target application data is descrambled.

The above-mentioned common information and ECM are examples of the related information 1 according to the present invention.
Is an example of the related information 2 in the present invention.

However, according to the above-mentioned conventional technique, the receiving apparatus extracts the individual information (EMM) transmitted to each subscriber only with a different decoder identification number for each subscriber that can be known in the receiving apparatus. As the number of subscribers to the operating network increases, the amount of individual information to be transmitted to the subscriber handled by the transmission side increases. Therefore, the ratio of the control information including the individual information to the total amount of application data to be transmitted in the data stream increases, and the limited transmission medium cannot be effectively used. In addition, if the amount of individual information to be sent to the subscriber handled on the transmission side is transmitted at a constant transmission rate, as is common practice in traffic calculation, the time required for all receiving stations to receive the individual information increases.

Further, in terms of the security of the operating network, at least the master key (Km) and the work key (Km)
w) needs to be updated. Therefore, usually, the master key (Km) is about one year to several years, the work key (Kw) is about one month to one year, and the session key (Ks) is about one second to several tens of seconds. The update is performed at an appropriate update cycle to prevent unauthorized viewing of application data. As described above, when various keys are updated at a high frequency, the problem in the conventional technique is further increased.

That is, in the receiving apparatus, as described above,
In order to extract the individual information (EMM) sent to each subscriber only by the subscriber's own decoder identification number, for example, to update the work key (Kw), the update data must be transmitted to each existing subscriber. Need to send. For this reason, for example, if there are 10,000 existing subscribers, it is necessary to send individual information for 10,000 people, which is a great impediment to effective use of transmission medium resources.

On the other hand, for example, Japanese Patent Application Laid-Open No. 7-193
As shown in Japanese Unexamined Patent Publication No. 802, subscribers are divided into groups according to contract conditions or in a unit convenient for an operator to perform descrambling or billing. A group ID is provided for identification or designation, and the group ID to which the receiver belongs is transmitted to each receiver in the individual information with the decoder identification number, and then the work key is updated to the receiver. When sending the individual information, the individual information is transmitted by attaching the group ID to which the receiver belongs instead of the decoder identification number attached to the individual information, and the group transmitted previously is Extracting, by an ID, individual information in a group unit to which the receiver belongs from among the individual information transmitted in the data stream; Conceivable. In this way, at least in updating the master key (Km) and the work key (Kw), there is a possibility that the total amount of individual information to be sent to the subscriber and handled on the transmission side is reduced in group units. However,
If the receiving device is composed of a receiver and a removable security module such as an IC card, new problems arise as described below.

[0013]

That is, in the prior art disclosed in the above-mentioned Japanese Patent Application Laid-Open No. 7-193802, in the receiving devices of the subscribers belonging to a plurality of groups, all the group IDs stored in the security module are described. It is necessary to upload from the security module to the separation unit in the receiver, and the processing becomes complicated. In addition, the number of groups to which the recipient belongs increases or decreases due to changes in the recipient's contract, etc.
In consideration of the worst case, the separation unit in the receiver must be designed so that individual information in the data stream can be separated by all group ID values, so that uploading cannot be performed completely. There is a disadvantage that the module becomes large.

Also, with the increase in the number of subscribers to the network and the establishment of a new receiving channel, the group ID to be used is
It is necessary to reassign, reorganize, etc. new or used group IDs. In this case, collective work key (Kw) information and group unit The information to be sent in the individual information, such as contract information necessary as a receiving condition to be contracted by the receiver, is simultaneously distributed in a group unit, and the receiving device for the newly established or allocation-changed data is newly established from the data stream. It is necessary to be able to separate the individual information by the group ID for the
A method is employed in which a group ID for a newly established or assigned change to which the receiver belongs is transmitted to the respective receivers with the individual information to which the decoder identification number is attached. However, in this way, the group ID of the newly established or assigned change to which the receiver belongs is
If individual receivers are transmitted with individual information to which a decoder identification number is attached, the receiving device to be used is fixed for each subscriber, and the merit of a security module cannot be exhibited.

As described above, 1 is input to the multiplexer.
One or more application data is time-division multiplexed, and the application data is transmitted to the receiving device as one data stream divided by the time-division frame. At this time, the time-division frame of the specific application data in the data stream The scrambled, common information having encrypted information for descrambling the time-division frame of the scrambled application data, and individual information for decrypting the encrypted common information, Time-division frames are formed in the same manner as application data and transmitted in the same data stream. For example, MPEG2 SYSTEMS
In a digital broadcasting network or a digital communication network that requires confidentiality such as satellite pay broadcasting using (ISO / IEC13818-1), the device described in the above-described conventional technique is replaced by a receiver and a receiver such as an IC card. Consists of a removable security module,
A receiving apparatus which stores a group ID in a security module, separates common information and individual information in the data stream in a receiver, and performs a processing function of the common information and individual information in the security module. In this case, there is a disadvantage that the advantages of modularization cannot be utilized as described above.

An object of the present invention is to reduce the time required for delivering related information 2 to a specific subscriber and improve the efficiency of use of transmission medium resources in such a network, and to place a burden on a receiving apparatus without burdening a receiving apparatus. In order to improve the delivery efficiency of information to be transmitted in the related information 2, for example, encrypted or unencrypted master key or work key information, security information required by a receiving device in operation of a network, etc. It is still another object of the present invention to provide a secret information distribution method, a transmitting device, and a receiving device suitable for modularizing a confidentiality function part.

[0017]

In order to achieve the above-mentioned object, a basic feature of the present invention is that the type of individual information to be sent is divided into the type of individual information to be sent to each recipient and the And the information to be sent to the individual recipients, a decoder identification number that identifies the individual recipient is prepared for the individual information to be sent to each recipient, and a fixed network fixed That is, the specified value has been set.

Thus, the processing for extracting the individual information in the data stream can be the same processing and fixed processing in all the receiving apparatuses.

The network specified value may be a plurality of values. On the transmitting side, the prepared individual information is divided into time-division frames in the same manner as the time division of application data, so that it is possible to specify any application data. The same data stream is transmitted with a divided frame identification number.

The time-division frame identification number is set for all application data, and the individual information is prepared for each individual information regardless of the distribution destination. And MPEG2
In SYSTEMS (ISO / IEC13818-1), TSP (Transport Stream Pac
kets) PID (Packet Identify)
er), and the time division frame identification number of the individual information is EMM (EntitlementManagement)
element Messages).

The specific features of the present invention based on the above data stream are as follows.

One of the specific features of the present invention is that, on the receiving side, the time-division frame of the individual information in the data stream is once separated by the time-division frame identification number of the individual information, and the separated individual information is separated. However, if the destination attached to the individual information on the transmitting side is a decoder identification number for itself identifying the individual recipient or the specified network specified value, the individual information is decoded and decoded. Data required as a receiving device in the processed individual information (such as security information required by the receiving device for network operation, such as data of a reception prohibition instruction and initial setting data for an encryption algorithm, and a contracted reception Information necessary as conditions, and information necessary for decrypting the encrypted common information such as a master key (Km) and a work key (Kw). Of the different information, data required by the receiving device is stored and managed, and the encrypted common information is decrypted using the stored and managed information to extract a scramble key (Ks) from the common information. , Descrambling the scrambled application data.

As described above, according to the present invention, information common to a plurality of subscribers is transmitted as individual information based on a network defined value, and information different for each subscriber is transmitted as individual information based on a decoder identification number. Thus, the ratio of the individual information to the total amount of application data to be sent in the data stream is reduced, which can contribute to effective use of limited transmission media.

Here, the common information corresponds to the related information 1 as described above, and the MPEG2 SYSTEM
S (ISO / IEC13818-1) corresponds to the ECM, and the individual information corresponds to the related information 2 as described above, and corresponds to MPEG2 SYSTEMS (ISO / IEC13).
818-1) corresponds to EMM. The decoder identification number corresponds to the receiver ID.

According to another specific feature of the present invention, the time division frame of the individual information in the data stream is separated by the time division frame identification number of the individual information, and the common information in the data stream is separated. Separation means for separating the time-division frame of the above by the time-division frame identification number of the common information, a first memory means for managing a decoder identification number for specifying each receiver, and the decoder identification number from the first memory means. Received, the separated individual information, when the destination attached to the individual information on the transmitting side corresponds to the decoder identification number that specifies itself, or when it corresponds to the network specified value fixedly specified in the network Only an information destination separating means for separating the individual information, and a receiving device included in the individual information separated by the information destination separating means. (Such as data of a reception prohibition instruction, initial setting data for an encryption algorithm, and the like, security information necessary for a receiving apparatus in network operation, information necessary as contract receiving conditions, or a master key (Km ) And information necessary for decrypting the encrypted common information such as a work key (Kw))
And a second memory means for storing and managing data extracted by the individual information processing means (this second memory means may be the same as the first memory means) Further, common information processing means for receiving data to be stored and managed by the second memory means, decoding the common information separated by the separation means, and extracting a scramble key (Ks) from the common information, There is provided a receiving apparatus comprising: descrambling means for descrambling scramble related to any specific application data in the data stream by using the scramble key extracted by the common information processing means.

According to still another specific feature of the present invention, the receiving device comprises a receiver and a detachable security module such as an IC card, and the receiver is provided with the separating means. The information destination separating means and the descrambling means, further transferring the individual information separated by the information destination separating means and the common information separated by the separating means to a security module, and transmitting response data from the security module. Security module interface processing means for processing the individual information processing means, the first memory means, and the second memory means (the first memory means and the second memory means). And the common information processing means. Information Destination separation means, via the security module interface processing means to receive said first memory means or decoder identification number of the recipient from the second memory means of the security module,
When the individual information separated by the separating means corresponds to the decoder identification number or the network prescribed value, the individual information is transferred to the security module interface processing means, and the security module interface processing unit outputs the individual information of the security module. The security module extracts the scramble key (Ks) and sends it to the security module interface processing means of the receiver.
s), the receiver sets a received scramble key (Ks) by descrambling means, and provides a receiver for descrambling scramble related to application data.

According to still another specific feature of the present invention, the receiver of the above-mentioned receiving apparatus comprises a separating unit, an information destination separating unit, a descrambling unit, and a security module interface processing unit. Receiving the decoder identification number of the receiver by a security module interface processing means from a removable security module such as an IC card which processes common information and outputs a scramble key (Ks);
A receiving apparatus is provided which includes a scramble key (Ks) received by a security module interface processing unit, sets the received key in a descramble unit, and descrambles descramble scrambles related to application data. This receiving device is preferably configured as a built-in receiving device used by being incorporated in another device such as a personal computer, such as a PC board.

According to yet another specific feature of the invention, there is provided an embedded device, such as the PC board,
The individual information in the data stream and the time-division frame of the common information are separated by the separating means, and the separated individual information is separated by the information destination separating means so that the destination of the individual information assigned on the transmission side is assigned to its own decoder identification number. In the case where it is applicable, or in the case where it corresponds to a network prescribed value fixedly defined in the network, the individual information is transferred to the security module interface processing means, and the security module interface processing means can remove the information by, for example, an IC card. The security module interface processing means receives the common information separated by the separation means and transmits it to the external device. From the external device, a receiver decoder is transmitted to the external device. Secure identification number There is provided a receiving device for receiving the scramble key (Ks) by the module interface processing means, receiving the scramble key (Ks) by the security module interface processing means, setting the key in the descrambling means, and descrambling the scramble relating to the application data. You. .

In the receiving apparatus or receiver of the present invention described above, individual information sent as a fixed network value including information common to subscribers and a decoder identification number containing information of individual subscribers are sent. It is possible to separate and extract the coming individual information from the data stream in a fixed manner, as described above, that is, the value of the group ID itself required by the separation unit changes and the number of group IDs in the separation unit It is possible to provide an inexpensive simple fixed-processing receiving apparatus or receiver without any increase or decrease in the number.

According to still another specific feature of the present invention, the individual information processing means of the security module of the receiving apparatus, the first memory means, the second memory means, the common information processing means, Which is installed in a device such as the receiver, receives the individual information and the common information from the device, and outputs a scramble key (Ks) in the common information. The transmitter processes the individual information to which a fixed value is assigned, the individual information to which the decoder identification number is assigned to itself, and the common information.

According to another specific feature of the present invention, a scrambling means for scrambling arbitrary specific application data, and the common information for transmitting scrambled key (session key Ks) information to a receiver. And key information for decrypting the encrypted key (session key Ks) information to the receiver. The type of information consists of one to be sent to each recipient and one to be sent to multiple recipients at once. The individual information to be sent to each recipient is a decoder identification number that can identify each recipient. To the individual information for a plurality of recipients, a specified value fixed on the network (this network may have a plurality of specified values), Is created, the individual information created by the individual information creating means and common information including information for descrambling the application data in the data stream are divided into time-division frames in the same manner as the time division of application data, A control information time-division frame creating means for assigning the time-division frame identification number capable of specifying any application data, and multiplexing the individual information and the common information in the time-division frame with the time-division frame of the application data A transmitting device comprising multiplexing means is provided. The transmitting device separates the individual information and the common information in the data stream once by the time-division frame identification number. If the separated individual information is the decoder identification number addressed to itself, or the network specified value In this case, the individual information can be distributed so that the same processing and the fixed processing are performed in all the receiving apparatuses, such as the processing of separating the individual information.

According to still another specific feature of the present invention, first, the entire receiver is divided into groups including a plurality of receivers based on contracted reception conditions, and each group is divided into groups. Arbitrarily set a different group key and group information for identifying the group, and then put the group information and the group key to which the receiver belongs in individual information with a decoder identification number. May be encrypted, and this individual information is transmitted to the recipient.

In response, the receiving side once separates the individual information in the data stream by the time-division frame identification number of the individual information, and the separated individual information indicates that the destination assigned by the transmitting side is the individual of the receiver. In the case where the identifier corresponds to the own decoder identification number to be specified, or in the case where the identifier corresponds to the specified network specification value, it is separated (as a result, separated by the decoder identification number), and the separated individual information is separated. The group key and the group information in the above are extracted, and if they are encrypted, they are decrypted and stored and managed.

In this state, when information required as a contracted reception / viewing condition for decrypting the common information, such as a work key (Kw), is sent to the receiver, the group information is transmitted to the corresponding group key. The necessary information as the contracted reception / viewing condition is encrypted, and the encrypted information is put into the individual information with the network specified value, and the information required as the contracted reception / viewing condition is determined by the group key corresponding to the added group information. Is encrypted, is given to the individual information, is converted into a time-division frame, and is transmitted in the data stream.

In response to this, on the receiving side, the individual information in the data stream is once separated by the time-division frame identification number of the individual information, and the separated individual information indicates that the destination assigned by the transmitting side is the individual of the receiver. If it corresponds to the own decoder identification number to be specified, or if it corresponds to the specified network specified value, it is separated (as a result, separated by the specified network value), and the separated individual information is separated. Based on the group information therein, a corresponding group key is extracted, information necessary as the contract reception viewing condition in the individual information is decrypted with the group key, and information on the decryption result is stored and managed.

In this state, on the receiving side, the common information in the data stream is separated by the time-division frame identification number of the common information, and the scrambling for descrambling the time-division frame of the application data in the common information is performed. The information (scramble key Ks, etc.) is decrypted by using the information of the decryption processing result stored and managed, and information for descrambling is extracted, and the scramble related to the application data is descrambled by this information.

As a result, the ratio of control information such as individual information to the total amount of application data to be sent in the data stream is reduced, which leads to effective use of limited transmission media.

[0038] Further, the receiving device is connected to the receiver by, for example, an IC.
Even if it is configured with a removable security module such as a card, it has each means of the security module, and further processes the group information in the individual information to which the above-mentioned network prescribed value is attached and decrypts it with the group key In the receiver, the group information processing means for performing the processing is provided in the security module, so that the receiver itself can change the value of the group ID itself required by the separation means, and There is no increase or decrease in the number of IDs. For example, a work key (K
w) In the case of simultaneous distribution, individual information sent as a fixed network value including information common to subscribers and individual information sent with a decoder identification number including personal information of a subscriber are transmitted in a data stream. , And can be fixedly separated and extracted, and a receiver as inexpensive simple fixed processing can be provided.

According to still another specific feature of the present invention, secret information distribution by the following method is also effective. First, similarly to the above, the receiver is divided into an arbitrary group, group information and a group key are set, and each receiver is distributed with individual information with a decoder identification number. On the receiving side,
Similarly to the above, the distributed group information and group key are stored and managed.

In this state, when transmitting security information required by the receiving apparatus in the operation of the network, such as an instruction to control the receiving station and initial setting data of the encryption algorithm, the group information is transmitted to the network as described above. The security information is encrypted by using a group key corresponding to the added group information in the individual information with the value, and the encrypted information is stored in the individual information to form a time-division frame and transmitted in the data stream.

In response, on the receiving side, as described above,
When the individual information in the data stream is once separated by the time-division frame identification number of the individual information, and the separated individual information corresponds to its own decoder identification number that specifies the individual receiver as the destination assigned on the transmitting side. Or, if it falls under the specified network specified value, separates it (resulting in separation by the network specified value) and stores the data according to the attached group information in the separated individual information. A group key corresponding to the group information obtained is taken out, the security information in the individual information is decrypted with the group key, and the security information is stored.

As a result, as described above, the ratio of control information such as individual information to the total amount of application data to be transmitted in the data stream is reduced, which leads to effective use of limited transmission media. further,
Even if the receiving device is composed of a receiver and a removable security module such as an IC card, for example, the receiving device has each unit of the security module as described above, and further has individual information to which the above-mentioned network prescribed value is attached. By providing the security module with group information processing means for performing group information processing and decryption processing using the group key in the security module, the receiver is inexpensive and simple fixed without the problems and disadvantages as described above. A receiver as a process can be provided.

[0043]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS Next, embodiments of the present invention will be specifically described with reference to the drawings.

FIG. 1 is an overall schematic diagram of a service network using a satellite, embodying the present invention. Recently, MP
EG2 (ISO / IEC13818) and MPEG1 (I
Broadcasting networks and communication networks that require confidentiality using compression technologies such as SO / IEC11172) have begun to be widely used not only in Japan but also in Europe and the United States. Among them, many use satellites. FIG. 1 shows a case where the present invention is applied to a service network using satellites. The transmitter unit 6, the antenna unit (transmission side) 6, the radio wave 6, the satellite 6, and the antenna unit (reception side) 6 are all necessary when the transmission medium is a satellite, and are unique to the present invention. Not something. A feature of the present invention is that one or more, for example, video
o, audio Audio, and data Data are time-division multiplexed by the multiplexing device 1, and any specific application data includes a scrambler 3
, And transmits the data stream as one data stream to the receiving apparatus 8, and descrambles the data stream in the corresponding receiving apparatus.

This conditional access control is, as described in the report of the Telecommunications Technology Council's Advisory Council No. 74, by scrambling the application data so that only recipients having valid rights can receive the application data. This is control for descrambling by giving information for descrambling this scramble only to the recipient who has transmitted and has a legitimate right. The control information required for the conditional access control is created by the control information creation unit 2 in FIG.
It is. The necessary control information includes related information 1 and related information 2. As described above, the related information 1 is M
PEG2 SYSTEMS (ISO / IEC13818
-1), equivalent to ECM, Telecommunications Technology Council Advisory No. 7
Report 4 corresponds to common information. The related information 2 is defined as MPEG2 SYSTEMS (ISO / IEC13).
818-1) corresponds to the EMM, and corresponds to the individual information in the report of the Telecommunications Technology Council Advisory No. 74.

The control information creation section 2 creates information for descrambling given to a receiver having a valid right and inputs the information to the multiplexer 1. In addition, the control information creation unit 2 transfers to the scrambler 3 information for scrambling corresponding to the information for descrambling. Thus, the application data is scrambled, and information for descrambling the application data is distributed to the receiving side.

Reference numerals 7 and 9 denote service groups set for the sake of convenience in describing the present embodiment. Originally, this group is such that the network operator divides all subscribers into groups that are convenient for descrambling and billing according to the contract conditions. Groups 7, 9
The receiving device of Mr. P belonging to the following will be described as an example. Group 7 is group A and group 9 is group C.

Each receiver 8 has a receiver ID for identifying each receiver, a unique key different for each receiver, and a network standard value fixedly set in the network. . Here, a plurality of network specified values may be set, and here, one is set for convenience.

Next, the processing flow of the above conditional access control will be described. FIG. 2 shows a processing flow on the transmitting side in FIG. 1, and FIG. 3 shows a processing flow on the receiving side similarly.

First, in the present invention, as the type of the related information 2 to be sent, a type to be sent to each recipient and a type to be sent to a plurality of recipients at once are used. In the information 2, a recipient ID for identifying each recipient is prepared as a destination, and in the individual information for a plurality of recipients, a network standard value fixedly set in the network is prepared. At this time, it is preferable to provide group information for identifying or designating each of the set groups, and to set different group keys for each of the groups.

Here, the transmission of the two pieces of control information of the related information 1 and the related information 2 is caused by a control information distribution event, and as shown in steps S201 to S204 of FIG. Is caused by the occurrence S203 of a data registration event to be distributed from the external input device, for example.

When a distribution event occurs in step S204, what the distribution event is is detected in steps S205 to S209. In FIG. 2, (1) distribution of subscriber contract information (step S205), (2) simultaneous change of contract information for an arbitrary specific group (step S206), and (3) registration of an arbitrary specific group Of received program reception conditions (step S207), (4)
Four cases of program start (step S208) are taken, and a case different from any case is set as other processing (step S209).

If the distribution event is (1) distribution of the subscriber's contract information (step S205), first of all, the subscriber's unique key (P's unique key Kp) among the unique keys of all the subscribers. Is retrieved (step S2051). The retrieved key is used for encrypting contract information to be sent to Mr. P (step S2052). Next, related information 2 (referred to as related information 2 in FIG. 2; the same applies hereinafter) is created by attaching the receiver ID of the destination Mr. P to the encrypted contract information (step S).
2053). Related information 2 with the created recipient ID
Makes a time-division frame in the same way as the time-division of the application data (step S2054). At this time, a time division frame identification number indicating the relevant information 2 is attached to the time division frame so that the time division frame of the related information 1 and the time division frame of the application data can be identified.

When the distribution event is (2) simultaneous change of contract information for an arbitrary specific group (step S206), first, the group key (KmA) of the corresponding group A among all the set group keys is set. ) Is searched (step S2061). The retrieved key is used for encrypting the contract information to be sent to the group to be changed all at once (step S2062). Here, the information to be sent to the target group of the simultaneous change is, for example, security information required by the receiving device for operation of the network, such as data of a reception prohibition instruction and initial setting data for an encryption algorithm. Next, the group information A to be added is added to the encrypted contract information of the group object (step S2063), and the network definition value is added as the destination to create the related information 2 (step S2064). The created related information 2 to which the network definition value is added is converted into a time-division frame in the same manner as the time division of the application data (step S2065). At this time, a time division frame identification number indicating the relevant information 2 is attached to the time division frame so that the time division frame of the related information 1 and the time division frame of the application data can be identified.

If the distribution event is (3) distribution of program reception conditions registered for an arbitrary specific group (step S 207), first, the group key of the corresponding group among all the set group keys (step S 207). KmA) (step S2071). The searched key is used for encrypting the reception condition of the registered program (step S20).
72). Here, the reception condition of the program is, for example, work key (Kw) information of the program, and the work key (Kwa) information is also created at this time (step S2073). Next, the group information of interest is added to the reception condition of the encrypted program (step S2074), and the network definition value is added as the destination to create the related information 2 (step S2075). The created related information 2 to which the network prescribed value is attached is formed into a time-division frame in the same manner as the time division of the application data (step S207).
6). At this time, a time division frame identification number indicating the relevant information 2 is attached to the time division frame so that the time division frame of the related information 1 and the time division frame of the application data can be identified. Furthermore, the created work key (K
wa) is stored and managed (step S2077).

If the distribution event is (4) the start of a program (step S208), the work key (Kwa) information of the program to be started (program a of group A) is searched (step S2081). . The retrieved key information is used for encrypting the information of the scramble key applied to the application data of the registered program (step S2).
082). Here, the information of the scramble key is, for example, a session key (Ks), that is, a scramble key, and the session key (Ks) is also created at this time (step S2083). Next, related information 1 (referred to as related information 1 in FIG. 2; the same applies hereinafter) is created by attaching program identification information that can identify the program to be started to the encrypted scramble key information (step S2084). Note that the program identification information given here may be encrypted with another different key. The created related information 1 is converted into a time division frame in the same manner as the time division of the application data (step S2085). At this time, a time division frame identification number indicating the relevant information 2 is attached to the time division frame so that the time division frame of the related information 2 and the time division frame of the application data can be identified. Further, the generated session key (Ks) and the time-division frame identification number of the application data corresponding to the scramble are set in the scrambler 3 of FIG. 1 to control the scrambler 3 (step S2086).

As described above, the related information 1 and the related information 2 in the form of time-division frames created according to the type of the distribution event are transmitted to the multiplexer 1 in FIG. Into a data stream together with the time-division frame (step S210), perform transmission processing appropriate for the transmission medium, and transmit (step S21).
1).

As shown in FIG. 3, upon receiving the above data stream (step S301), the receiving side
First, as a preparation, a receiver ID (recipient ID of Mr. P) set for each receiver provided in advance in each receiver is read (step S302). Next, the time division frame identification number of the related information 2 is set to the separation unit in the receiving device so as to separate the time division frame of the related information 2 in the data stream (step S303).

If a tuning operation is performed in this state (step S304), the time-division frame identification number of the related information 1 of the application data of the selected program is set to the related information 2
Similarly to the above, the setting is performed for the separation unit (step S304)
1). At this time, the separation unit is set so that the time division frame of the related information 1 of the target application data in the data stream can be separated.

When the time-division frame of the related information 2 is received (step S305), first, it is identified to which destination the received time-division frame of the related information 2 is sent (step S3051). That is, it identifies whether it is the receiver ID value of the receiver itself (the receiver ID value of Mr. P) or whether it is the network specified value specified in the network. If neither condition is satisfied, the received time-division frame of the related information 2 is discarded (ignored) (step S).
3051 NO). On the other hand, if the receiver ID value matches the own receiver ID value or the network specified value (step S305).
(1) (YES), the time-division frame of the related information 2 is separated, and the next step is entered (step S3052).

If the destination of the separated related information 2 is the receiver ID of the receiver itself (the receiver ID of Mr. P), the unique key (Kp) of the receiver (Mr. P) previously provided in the receiver is obtained. The related information 2 is read out and decrypted using the key (step S3056). The information of the decryption result is stored and managed (step S3057). The information of the decryption result is, for example, referring to the processing flow on the transmission side in FIG.
It may be contract information to be sent to the subscriber, or group information (group information A) to which the subscriber (P) belongs and group key information (group key KmA) as shown in FIG.

If the destination of the separated related information 2 is the network specified value specified in the network, the target group information included in the related information 2 added in the processing flow on the transmitting side in FIG. Identify which group was sent to. That is, all the group information sent in the related information 2 and the group information (group information A and group information C) sent previously and already stored and managed by the receiving device are collated (step S3053). . If the collation does not match all the group information stored and managed, the separated related information 2 is discarded (ignored) (NO in step S3053).

On the other hand, if it corresponds to any of the group information stored and managed (YES in step S3053),
For example, if it corresponds to the distributed group information A, the group key (Km) already distributed together with the stored and managed group information (group information A).
A) is read out, and the decryption processing of the related information 2 is performed using this key (step S3054). The information of the decryption result is stored and managed (step S3055). The information of the decryption result is, for example, referring to the processing flow at the transmitting side in FIG. Distribution of received program reception conditions. That is,
Security information required by the receiving device for network operation, such as data of a reception prohibition instruction and initial setting data for an encryption algorithm, and a work key of a program (Kw
a) Information. Here, for convenience, it is assumed that the separated related information 2 is work key (Kwa) information of a program.

On the other hand, when the time-division frame of the related information 1 is received by tuning (step S306), the program identification information included in the related information 1 added in the processing flow on the transmitting side in FIG. Work key (Kwa) of the program sent as information 2 and already stored and managed by the receiving device
All information is collated (step S3061). When the collation does not match with all the work key information stored and managed (NG in step S3061), the separated related information 1 is discarded (ignored), and the reception prohibition process is performed (step S3062). On the other hand, if it corresponds to any of the work key information stored and managed (O in step S3061).
K), for example, the work key information K of the distributed program
Assuming that the key corresponds to “wa”, the decryption processing of the related information 1 is performed using the key (Kwa) (step S3063).
As a result of the decryption processing, the session key information (Ks) contained in the related information 1 added in the processing flow on the transmitting side in FIG. 2 is output, and this key (Ks) is set in the descrambler (step). S3064). The descrambler descrambles the scramble related to the time-division frame of the target application data using the key (Ks).

FIG. 5 is a block diagram of a transmission-side facility for realizing the above-described processing flow on the transmission side in FIG. 2, and FIG. 4 is a block diagram of a receiving apparatus for realizing the processing flow on the reception side in FIG. FIG. 5 is a block diagram of a transmitting apparatus according to an embodiment of the present invention, and FIG. 4 is a block diagram of a receiving apparatus according to the first embodiment of the receiving apparatus of the present invention.

First, as shown in FIG.
All application data such as o, audio Audio, and data Data are time-divided by the time-division frame creation unit 32, and all time-division frames are given a time-division frame identification number so that they can be identified.
At this time, video data Video and audio data Audio
May be compressed. In this case, the video data is compressed by the video encoder 46 and the audio encoder 31, respectively. For example, if the video encoder 46 is an MPEG2 VID
EO (ISO / IEC13818-2) encoder,
If the audio encoder 31 is an MPEG2 AUDIO (IS
O / IEC13818-3).

FIG. 7 shows an example of a format configuration of a time-division frame of application data such as video, audio, and data. As shown in FIG. 7, the synchronization data 52
Is attached. This is the same for the related information 1 or the related information 2. In addition, all time-division frames are given a time-division frame identification number 53. This also applies to the related information 1 or the related information 2. MPEG
2 SYSTEMS (ISO / IEC13818-1)
In this case, the time-division frame identification number is
It corresponds to IDentifier (PID).

The time-division frames of all of these application data are multiplexed by the multiplexer MUX to form one data stream 3 composed of a plurality of time-division frames.
3 is transmitted. At this time, the scrambler 34 scrambles the time-division frame of any specific application data with an arbitrary scramble key (session key Ks) specified by the control line 47. The generation of the scramble key is performed in accordance with the transmission device processing flow described above with reference to FIG. 2, but is described below with reference to FIG.

First, when a registration event of control data to be distributed occurs in the input device 35, a control data distribution event occurs. If the distribution event occurred in the input device 35 is the distribution of contract information to be sent to the subscriber (Mr. P), the receiving device (Pr. M) is transmitted from the input device 35 to the individual information generator 37 via the control line 40. ) And contract information (group information A and C to which Mr. P belongs and its group key information KmA,
KmC). In response to this, the individual information creation unit 37 first searches for a unique key (Pr's unique key Kp) of the corresponding receiver among the unique keys of all the subscribers. The retrieved key is used for encrypting the contract information to be sent to Mr. P.
The associated information 2 (for example, the information area 62 in FIG. 9) is created by adding D.

When a distribution event of simultaneous change of contract information for an arbitrary specific group occurs in the input device 35, the receiving destination (group) is transmitted from the input device 35 to the individual information creating unit 37 via the control line 40. An instruction to distribute information A) and contract information is issued. In response to this, the individual information creating unit 3
7, first, group key information (group information A) of the corresponding group information among all the group key information held
Is searched for group key information KmA). The retrieved key is used to encrypt the contract information to be sent to the target group of the simultaneous change, and the encrypted contract information is attached with the target group information A and the destination specified with the network specified value. Information 2 (for example, information area 69 in FIG. 11) is created.

Further, when a distribution event of a viewing condition of a program registered for an arbitrary specific group occurs in the input device 35, the input device 35 transmits the received information to the individual information creating unit 37 via the control line 40. An instruction to distribute the group information A), the program identification information of the program to be registered, and the viewing conditions of the program is issued. In response to this, the individual information creation unit 37
First, the group key information of the corresponding group information (the group key information KmA of the group information A) is searched from all the group key information held. The retrieved key is used for encrypting the viewing condition of the registered program. At this time, the work key information (Kw
Create a). The related information 2 (for example, the information area 67 in FIG. 10) is created by attaching the target group information A to the encrypted viewing condition of the registered program and the network specified value as the destination. When the individual information creator 37 creates the related information 2, the individual information creator 37 supplies the common information creator 36 via the control line 42 with the program identification information of the program to be registered and the work key information of the created registered program. (K
wa). The common information creation unit 36 stores and manages the received information.

In any case, the related information 2 created by the individual information creating section 37 is transferred to the time division frame creating means 38, and the time division frame creating means 38 converts the related information 2 into a time division frame. At this time, the time-division frame is assigned a time-division frame identification number indicating that it is related information 2. The related information 2 converted into a time-division frame by the time-division frame generation means 38 is transmitted to the multiplexer 39 via the signal line 44 by the time-division frame generation means 38. Thus, the multiplexing device 39 multiplexes the received time-division frame of the related information 2 into the data stream 33 and transmits the multiplexed data as one data stream. FIGS. 9, 10, and 11 show configuration examples of the time-division frame of the related information 2 framed by the time-division frame creation means 38.

FIG. 9 is an example of a format configuration of a time-division frame of the related information 2 when contract information is distributed to a specific subscriber. FIG. 10 is a format configuration example of a time-division frame of the related information 2 that distributes viewing conditions of a program registered for an arbitrary specific group. FIG.
Is a format configuration example of a time-division frame of the related information 2 that distributes contract information to an arbitrary specific group. The same time-division frame identification number 58 indicating that the frame is the relevant information 2 is attached to any of the time-division frames of the relevant information 2.

In the time division frame of the related information 2 in FIG.
An information area 62 to which a receiver ID (recipient ID of Mr. P) 62 is attached for addressing a specific subscriber is stored. Further, in the information area 62, the group information 60 (group information A) to which the subscriber belongs and the group key information 61 (group key information Km) as the contract information addressed to the specific subscriber.
A). In addition, the group information 60 may be encrypted. In this case, for example, the transmitting device may use a fixed key, a master key, or a work key that is distributed in advance using these unique keys or master keys. What is necessary is just to encrypt by.

In the time-division frame of the related information 2 of FIG. 10, an information area 67 to which the fixed network definition value 63 is assigned as a destination is stored in order to target an arbitrary specific group. In the information area 67, as program viewing conditions, program identification information 65 for identifying a registered program and work key information 66 (Kw
a) are stored. Further, target group information 64 indicating to which group the viewing conditions of these programs are distributed is attached. The target group information 6
4. The program identification information 65 may be encrypted. In this case, for example, the transmitting device may use a fixed key, a master key, or a work key that is previously distributed with a unique key or a master key that is separately defined in a network. What is necessary is just to encrypt by.

In the time-division frame of the related information 2 in FIG. 11, an information area 69 to which the fixed network definition value 63 is assigned as a destination is stored in order to target an arbitrary specific group. In the information area 69, security information 68 required by the receiving device for network operation, such as reception prohibition instruction data and initial setting data for an encryption algorithm, is stored as contract information addressed to an arbitrary specific group. ing. Further, target group information 64 indicating to which group the security information is distributed is attached. Note that the target group information 64 may be encrypted. In this case, for example, the transmitting device may use a fixed key, a master key, or a work key that is distributed in advance with these unique keys or master keys. It is sufficient to encrypt with.

As described above, the time-division frame creating means 38 shown in FIG.
(For example, information area 62, information area 67, information area 69)
Into a time-division frame.

On the other hand, when a distribution event at the start of a program occurs in the input device 35, the input device 35 The program identification information of the target program and the time-division frame identification number of the target application data to be scrambled are transferred. In response to this, the common information creation unit 36 firstly receives the work key information (K
wa). The retrieved key is used for encrypting the scramble key information to be applied to the time division frame of the application data. At this time, the scramble key information is created. Attached to the encrypted scramble key information is program identification information so that the target program can be identified,
Further, the related information 1 (for example, the information area 57 in FIG. 8) is created with the network specified value as the destination. When the related information 1 is created, the common information creating unit 36
, The time-division frame identification number of the target application data to be scrambled and the scramble key information. The scrambler 34 scrambles the time-division frame of the target application data in accordance with the received information and outputs the data stream 33.

Further, the common information creation unit 36 transfers the created related information 1 to the time division frame creation means 32, and the time division frame creation means 32 converts the related information 1 into a time division frame. At this time, the time-division frame is assigned a time-division frame identification number indicating that it is related information 1. The related information 1 converted into a time-division frame by the time-division frame generating means 32 is transmitted to the multiplexer 39 through the signal line 43 by the time-division frame generating means 32. Thus, the multiplexing device 39 multiplexes the received time-division frame of the related information 1 into the data stream 33 in the same manner as the time-division frame of the related information 2 and transmits the data stream as one data stream. FIG. 8 shows a format configuration example of the time division frame of the related information 1 framed by the time division frame creation means 32.

In the time-division frame of the related information 1 in FIG.
First, a time-division frame identification number 54 indicating the related information 1 is attached, and an information area 57 is stored.
This information area 57 stores program identification information 55 so that a target program can be identified, and scramble key information 56 for descrambling.

As described above, in the time-division frame creating means 32 connected to the signal line 43 in FIG.
The related information 1 (for example, the information area 57) created in (1) is divided into time-division frames.

The multiplexing device 39 is connected to the signal line 4 as described above.
3 and the time-division frame of the related information 2 created by the time-division frame creation means 38 sent by the signal line 44 and by the time-division frame creation means 32 sent by the time-division frame creation means 32. Are multiplexed with the data stream 33 output from the scrambler 34 and transmitted as one data stream 45 to the receiving side. FIG. 6 shows a format configuration example of the data stream 45.

In FIG. 6, the time-division frame of the reference numeral 48 indicates the time-division frame of the related information 1, and corresponds to the time-division frame of FIG. A time-division frame 51 indicates a time-division frame of application data.
Corresponding to the time-division frame. Further, the time-division frames 49 and 50 indicate the time-division frames of the related information 2.
In particular, the time-division frame denoted by reference numeral 50 indicates a time-division frame of the related information 2 in which an arbitrary recipient ID is assigned to a specific recipient, and corresponds to the time-division frame of FIG. The time-division frame denoted by reference numeral 49 also refers to the time-division frame of the related information 2 with the network specified value specified by the network, and
Alternatively, it corresponds to the time-division frame of FIG.

The data stream 45 shown in FIG.
Indicates application data and related information 1 and related information 2
Are all multiplexed. This data stream 45 is transmitted in a form suitable for the transmission medium to be transmitted to the receiving device. In FIG. 1, since the transmission medium is a satellite, the signal is transmitted to the receiving device 8 in a form suitable for a transmission path (radio wave) 6 via the satellite. Therefore, the receiving device also receives the data stream 45 in a form suitable for this transmission medium. In FIG. 4, which is the first embodiment of the receiving apparatus, the demodulator 29 corresponds to this and is not unique to the present invention.

The receiving apparatus of the present invention receives the data stream 17 corresponding to the data stream 45 in FIG.
First, as a preparation, a different receiver ID (receiver ID of Mr. P) for each receiver provided in each receiver is read out from the memory management unit 16 via the signal line 20 and the information destination separation unit 3 is read.
Set to 0. Further, the information destination separating unit 30 has a network defined value defined as a fixed value in the network. This network default value is the recipient ID
Similarly to the above, storage management may be performed by the memory management unit 16,
In FIG. 4, the information destination separating unit 30 is provided for the fixed value.

Also, the time division frame identification number of the related information 2 is set in the separation unit 11, and the separation unit 11 is set to separate the time division frame of the related information 2 from the data stream 17.

Further, when there is a channel selection operation, the time division frame identification number of the related information 1 of the application data of the selected program is set in the separation unit 11 in the same manner as the related information 2, and the data stream 17 Is set so as to separate the time-division frame of the related information 1 of.

The time division frame of the related information 2 is
Is separated, it is transferred to the information destination separation unit 30 via the signal line 18. All the related information 2 separated by the separation unit 11 is transferred to the information destination separation unit 30. Therefore, the information destination separation unit 30 receives not only the related information 2 sent to the network specified value and the receiver ID of the receiver itself but also the related information 2 sent to the other receiver IDs. hand over.

Upon receiving these pieces of information, the information destination separating section 30 sets the receiver ID value (the receiver I of Mr. P)
D) Or the related information 2 is collated by a fixed network prescribed value, and only when the matched information is matched, the related information 2 is transferred to the target extraction unit 12 via the signal line 19.
That is, the destination of the received related information 2 is identified, and when the destination of the related information 2 corresponds to the receiver ID value of the receiver itself (the receiver ID of Mr. P), or when the network is fixed. The relevant information 2 is passed to the target extraction unit 12 only when the specified value is satisfied. If neither condition is satisfied, the information destination separation unit 50 sets the separation unit 1
The related information 2 received from 1 is discarded (ignored).

FIG. 13 shows a data storage image diagram for the separation trigger set by the information destination separation unit 30. In FIG. 13, the signal line 20 corresponds to the signal line 20 in FIG.
The read recipient ID (P's recipient ID) is written. The network specified value A denoted by reference numeral 86 is a fixed value specified by the network, and can be provided in the information destination separating unit 30.

FIG. 12A shows an example of the data structure of the related information 2 separated by the information destination separation unit 30 which the information destination separation unit 30 transfers to the target destination extraction unit 12 via the signal line 19.
(B) and (c). In FIG. 12, data (a) is
In FIG. 9, it corresponds to a part of the data area after the receiver ID 59 in the information area 62. Therefore, the receiver ID 59, the group information 60, and the group key information 61 in FIG.
12 are all data (a) shown in FIG.

Similarly, the data (b) in FIG.
Of the information area 67 corresponds to a part of the data area after the network prescribed value 63. Therefore, the network specified value 63, the target group information 64,
All necessary information such as the program identification information 65 and the work key information 66 becomes the data (b) in FIG.

The data (c) in FIG. 12 corresponds to a part of the data area after the network specified value 63 in the information area 69 in FIG. Therefore, all necessary information such as the network definition value 63, the target group information 64, and the security information 68 in FIG. 11 becomes the data (c) in FIG. 12, and the information destination separating unit 30 transfers the data to the target destination extracting unit 12.

Upon receiving the relevant information 2, if the destination of the relevant information 2 is a network specified value, the target data extracting unit 12 extracts the target data in the relevant information 2. That is, in FIG. 12, data (b) and (c)
The target area extraction unit 12 extracts the data area of the target group information 64 in the table. If the destination of the related information 2 is not the network specified value, the destination data in the related information 2, that is, the receiver ID is extracted as the target data. In FIG. 12, in this case, the target area extraction unit 12 extracts the data area of the receiver ID 59 in the data (a).

Target destination extraction unit 12 that has extracted target destination data
Transfers the extracted target data and the information area 87 or the information area 88 in FIG. 12 to the target search unit 13 via the path 24. That is, if the destination of the related information 2 is the network specified value, the data area of the target group information 64 and the information area 88 are transferred. If the destination of the related information 2 is not the network specified value, the data area of the receiver ID 59 and the information area 87 are transferred.

The target search unit 13 first stores the target data received from the target extractor 12 in the memory manager 16.
Search for storage management in The target data indicates the recipient ID value or the group information value as described above. Therefore, the search to be performed here is to search whether the target search unit 13 stores and manages this information in the memory management unit 16 via the path 23.

As a result, if storage management is performed, the key information stored and managed in the management unit 16 together with the corresponding data in the management unit 16 is transmitted to the target destination search unit 13 through the route 2.
Read via 3 Conversely, if not stored, the target area search unit 13 discards (ignores) the information area 87 or the information area 88 received from the target area extraction unit 12.

The key information stored and managed in the memory management unit 16 read out by the target search unit 13 by the search indicates unique key or group key information corresponding to group information which differs for each recipient. That is, if the target data is the recipient ID value, the unique key is read, and if the data is the group information, the group key information corresponding to the group information is read.

As a result of the search, when the target search unit 13 reads the key information in the memory management unit 16, the search unit 13
The read key information and the information area 87 or 88 received by the target extraction unit 12 are transferred to the decryption processing unit 14 via the path 25.

The decryption processing unit 14 has a decryption algorithm, and uses the key information received from the target search unit 13 as follows:
The information area 87 or 88 received from the search unit 13 is decrypted. The result of the decryption processing is stored in the memory management unit 16 via the path 26. The memory management unit 16 manages this.

Thus, the processing of the related information 2 is completed. When the group information 64 in FIGS. 10 and 11 is encrypted, and when the program identification information 65 in FIG. 10 is encrypted, the target search unit 13 receives the target information received from the target extractor 12. Since the data is encrypted, the target search unit 13 reads the fixed key, master key, or work key separately prepared in advance from the memory from the memory management unit 16 as described above in the transmission device, and reads the read key. The encrypted data is first passed to the decryption processing unit 14. In response, the decryption processing unit 14 performs decryption processing,
The result is transferred to the target search unit 13. Thereafter, the processing of the related information 2 is completed by performing the above-described processing of searching the key by the target search unit 13, reading the key, decrypting the key by the decryption processing unit 14, and storing it in the memory management unit 16.

On the other hand, when there is a channel selection and the separation unit 11 separates the time-division frame of the related information 1, it passes it to the related information 1 processing unit 15 via the signal line 21. FIG. 12D illustrates a data configuration example of the related information 1 to be transferred to the related information 1 processing unit 15 via the signal line 21. In FIG. 12, data (d) is obtained by extracting a part of the data area in the information area 57 of FIG. 8, as in the related information 2 of FIGS. 9, 10, and 11. All necessary information such as the program identification information 55 and the scramble key information 56 of FIG.
(D), and the related information 1 processing unit 15 in FIG.

Upon receiving these related information 1, the related information 1
The processing unit 15 first extracts the data area of the program identification information 55 in the data (d) of FIG. Next, whether or not the extracted target program data is stored and managed in the memory management unit 16 is searched. Here, the target program data indicates the program identification information 55 in the related information 1. Therefore, the search performed here is to search whether the related information 1 processing unit 15 stores and manages this information in the memory management unit 16 via the path 28.

As a result, if the storage management is performed, the key information stored and managed in the management unit 16 together with the corresponding data in the management unit 16 is transmitted to the related information 1 processing unit 15 via the path 28. read out. Conversely, if not stored, the related information 1 processing unit 15 receives the data (d) of FIG.
Is discarded (ignored) by the related information 1 processing unit 15.

The key information stored and managed in the memory management unit 16 read out by the related information 1 processing unit 15 by the search indicates work key information corresponding to the program identification information.

As a result of the search, when the related information 1 processing unit 15 reads out the work key information in the memory management unit 16, the processing unit 15 compares the read work key information with the received data (d) of FIG. Through the path 27 to the decryption processing unit 1
Hand over to 4. This is similar to the target search unit 13.

The decryption processing unit 14 has a decryption algorithm, and decrypts the data (d) of FIG. The result of the decryption processing is passed by the decryption processing unit 14 to the descrambler 10 via the signal line 22. Here, the result of the decryption processing is the scramble key information 56 in the data (d) of FIG. .

When the program identification information 55 in FIG. 8 is encrypted, the program identification information 55 in the data (d) in FIG. 12 received by the related information 1 processing unit 15 is encrypted. In the transmitting device, the related information 1 processing unit 15 transmits the fixed key, the master key, or the work key separately prepared in advance on the network as described above to the memory management unit 1.
6 and the read key and its encrypted data are first passed to the decryption processing unit 14. In response to this, the decryption processing unit 14 performs decryption processing, and passes the result to the related information 1 processing unit 15. Thereafter, the scramble key information 56 is set in the descrambler 10 by performing the above-described processing such that the related information 1 processing unit 15 retrieves and reads the key and decrypts the key with the decryption processing unit 14.

The descrambler 10 descrambles the time-division frame of the scrambled application data of the selected program according to the set scramble key information 56.

FIG. 14 shows a storage image diagram of data managed by the memory management unit 16. Memory management unit 16
In this example, a receiver ID 79 (Mr. P's receiver ID) for identifying each receiver and a unique key 80 (Mr. P's unique key) different for each receiver are managed in advance.

The group information 81 and the corresponding group key information 82 are data distributed by the distribution method of the present invention, and differ according to the receiving conditions contracted by the receiver. The group information 81 specifies a group to which the recipient belongs. FIG. 14 shows that Mr. P belongs to groups A and C according to FIG. The group information A indicates the group A, that is, the group 7 in FIG. 1, and the group key KmA indicates the key information corresponding to the group 7. The group information C indicates the group C, that is, the group 9 in FIG.
C indicates the key information corresponding to the group 92. Note that the group information 81 and the group key 82 are distributed by the transmitting apparatus according to the related information 2 in FIG. 9 and stored in the memory management unit 16 of the receiving apparatus.

The group identification information 83 and the corresponding work key information 84 are data distributed by the distribution method of the present invention, and are necessary for decrypting the related information 1. Thus, the scramble key information in the related information 1 is extracted. In FIG. 14, in accordance with FIG.
The work key information Kwa of the program of group A is set as the program viewing condition of group C, and the group C is set as the program viewing condition of group C.
This indicates that the work key information Kwc of the program No. has been distributed. The program identification information 83 and its work key information 8
4 is distributed by the transmitting device according to the related information 2 in FIG.
This is stored in the memory management unit 16.

The security information 85 is data distributed by the distribution method according to the present invention, and is used for measures against pirate such as falsification, for example, data of a reception prohibition instruction, initial setting data of an encryption algorithm, and the like, which are necessary for the operation of the network. Information.

In general, if a network is operated, other key information and security information are also required, but in FIG. 14, these are required key information and other security information. However, such information can also be distributed according to the method of the present invention.

Next, a second embodiment of the present invention will be described.
In the second embodiment, a receiving device is connected to a receiver, for example, an IC.
The receiver comprises a removable security module such as a card, and the receiver receives the data stream sent from the transmitting side, and receives the related information 1, the related information 2 with the receiver ID, and the network specified value. The related information 2 is separated, and the security module processes the related information 1 and the related information 2 to extract scramble key information, and the receiver descrambles the application data using the key.

FIG. 15 shows a configuration diagram of a receiving apparatus according to the second embodiment. The difference from the first embodiment shown in FIG. 4 is that the receiver is constituted by a receiver and a removable security module such as an IC card, and the receiver separates necessary related information. The security module processes the related information, extracts a scramble key, and descrambles the scramble key at the receiver.
This makes it possible to generalize the receiver.

Referring to FIG. 15, a receiving device 77 includes a receiver 75 and a security module 76. Here, the security module 76 is detachable such as an IC card, and communicates with the receiver 75 through the communication interface 74. If the security module 76 is an IC card (ISO / IEC7816), the communication interface 74 performs T = 0 and T = 1 communication.

The security module interface processing section 78 controls communication with the security module 76 in the receiver 75. Of course, the security module interface processing unit 78 is compatible with the communication interface 74.

The receiving apparatus 77 shown in FIG. 15 is basically the same as the receiving apparatus shown in FIG.

In FIG. 15, the receiver 75 receives the data stream 17 corresponding to the data stream 45 of FIG. 5 sent from the transmitting side similarly to the first embodiment of FIG. Recipient IDs (P
The receiver ID of the user is transmitted to the communication interface 74 via the security module interface processing unit 78.
It is set from the memory management unit 16 in the security module 76 to the read information destination separation unit 30. That is, this is the path 71. The information destination separating unit 30 has a network defined value defined as a fixed value in the network, as in the embodiment of FIG.

In the receiver 75, similarly to the first embodiment of FIG. 4, the time division frame identification number of the related information 2 is set in the separation unit 11 and the data stream 17 is separated from the data stream 17.
Is set so that the time-division frame of the related information 2 is separated.

Further, when a channel selection operation is performed, the first operation shown in FIG.
In the same manner as in the embodiment, the receiver 75 sets the time-division frame identification number of the related information 1 of the application data of the selected program in the separation unit 11 in the same manner as the related information 2 and sets the target related information from the data stream 17. The time division frame of the information 1 is set to be separated.

In the receiver 75, when the separation unit 11 separates the time-division frame of the related information 2, the separation unit 11 transfers it to the information destination separation unit 30 via the signal line 18. The related information 2 separated by the separation unit 11 is all transferred to the information destination separation unit 30 as in the first embodiment of FIG.

As in the first embodiment shown in FIG. 4, the received information destination separating unit 30 receives the recipient ID (P's recipient I
D) Or, the received related information 2 is collated according to the network specified value, and if the received related information 2 matches, the related information 2 is received to the security module 76 by the communication interface 74 via the security module interface processing unit 78 via the signal line 70 and the communication module 74. hand over. That is, the destination of the received related information 2 is identified, and only when the destination of the related information 2 corresponds to the receiver ID value of Mr. P or the network corresponds to the specified value, the related information is determined. 2 is delivered to the security module 76, and the target extraction unit 12 in the module unit 76 receives this.

In the security module 76, FIG.
Related information 2 by the same processing means and operation as in the first embodiment.
And the result is stored in the memory management unit 16. That is, the target destination extraction unit 12 extracts the target destination data based on the destination data, and transfers it to the target destination search unit 13 together with the data of the related information 2. The target search unit 13 searches whether the received target data is present in the memory management unit 16 and stores the key information corresponding to the target data in the memory management unit 16.
Read from inside. The read data of the key information and the related information 2 are transferred to the decryption processing unit 14, where the data is decrypted and the result is stored in the memory management unit 16.

On the other hand, when there is a channel selection and the separation unit 11 separates the time-division frame of the related information 1 in the receiver 75, the security module 76 is connected to the communication interface 74 via the security module interface processing unit 78 via the signal line 72. Hand over to In the security module 76, the related information 1 processing unit 15 receives this.

In the security module 76, FIG.
Related information 1 by the same processing means and operation as in the first embodiment.
Is processed, and as a result, the scramble key information in the related information 1 is decrypted and passed to the receiver 75 via the communication interface 74. In the receiver 75, this is set in the descrambler 10 via the security module interface processing unit 78. That is, the scramble key information decrypted in the security module 76 is transmitted to the path 7
At 3, it is set in the descrambler 10 in the receiver 75.

The storage image of data managed in the memory management unit 16 of the security module 76 in the second embodiment is the same as that in FIG. 14 of the first embodiment.

As described above, in the second embodiment, information and security information different for each receiver are stored and managed in, for example, the removable security module 76, and the related information 1 and the related information 2 with the receiver ID are stored. Since the data processing in the related information 2 with the network specified value is performed in the security module 76, the receiver 75
Is the same processing and fixed processing for each receiver, and the receiver 7
5 leads to generalization.

As described above, in the second embodiment, the receiver 75 shown in FIG. 15 is a receiver incorporated in another apparatus such as a PC board used by being incorporated in another apparatus such as a personal computer. There may be. Conversely, a device such as a personal computer that includes and uses the receiver 75 itself may be used.

[0131]

As described above, according to the present invention, information common to subscribers is transmitted as related information 2 based on network specified values, and information different for each subscriber is transmitted as related information 2 based on decoder identification numbers. Thus, the ratio of control information such as related information to the total amount of application data to be sent in the data stream is reduced, and effective use of limited transmission media is realized.

Further, in the receiving apparatus, from the data stream, the related information 2 sent as a network fixed value including information common to the subscriber and the receiver ID including information of the individual subscriber are sent. It is possible to fixedly separate and extract the related information 2 using the receiver ID and the network fixed value, and to provide a receiving apparatus as inexpensive simple fixed processing.

Further, the receiver is constituted by a receiver and a removable security module such as an IC card, and the receiver separates the related information 2 using the receiver ID and the fixed network value, and The security module stores and manages different information and security information in the security module, and performs necessary data processing in related information 1, related information 2 with a receiver ID, and related information 2 with a fixed network value in the security module. By doing so, the receiver performs the same processing and fixed processing irrespective of the sales time, the number of subscribers, the introduction time, the individual receiver, etc., leading to generalization of the receiver.

In other words, a secret information distribution method that shortens the time required to deliver related information 2 to a specific subscriber and also improves the delivery efficiency of information to be sent in related information 2 without placing a burden on a receiving device. And a transmitting device and a receiving device.

[Brief description of the drawings]

FIG. 1 is an overall schematic diagram of a service network using satellites according to an embodiment of the present invention.

FIG. 2 is a processing flowchart on the transmitting side of conditional access control according to an embodiment of the present invention.

FIG. 3 is a processing flowchart on the receiving side of conditional access control according to an embodiment of the present invention.

FIG. 4 is a diagram illustrating a first example of a receiving apparatus that realizes a processing flow on a receiving side.
FIG.

FIG. 5 is a block diagram of a transmission-side device that realizes a processing flow on the transmission side.

FIG. 6 is a format diagram showing a configuration example of a data stream.

FIG. 7 is a format diagram showing a configuration example of a time-division frame of application data.

FIG. 8 is a format diagram showing a configuration example of a time-division frame of related information 1.

FIG. 9 is a format diagram showing an example of a time-division frame configuration of related information 2 for distribution to a specific subscriber.

FIG. 10 is a format diagram showing a time-division frame configuration example of related information 2 when distributing viewing conditions of a program registered for a specific group.

FIG. 11 is a format diagram showing an example of a time-division frame configuration of related information 2 when distributing contract information to a specific group.

FIG. 12 is a format diagram showing a configuration example of an information area of related information 1 and related information 2;

FIG. 13 is a data storage diagram for a separation trigger set by an information destination separation unit.

FIG. 14 is a storage diagram of data managed by a memory management unit.

FIG. 15 is a block diagram of a receiving device according to a second embodiment.

[Explanation of symbols]

1 multiplex unit, 2 control information creation unit, 3 scrambler,
4 ... scramble key information control line, 5 ... related information 1 and related information 2 signal line, 6 ... transmission means required when the transmission medium is a satellite, 7 ... group A to which Mr. P belongs, 8 ...
Receiving device, 9 ... Group C to which Mr. P belongs, 10 ... descrambler, 11 ... separation unit, 12 ... target destination extraction unit, 13 ...
Target destination search unit, 14: decryption processing unit, 15: related information 1 processing unit, 16: memory management unit, 17: data stream,
18, 19 ... signal line, 20, 21, 22 ... signal line, 2
3, 24, 25, 26, 27, 28: path, 29: demodulator, 30: information destination separation unit, 31: voice encoder, 3
2 time-division frame creation unit, 33 ... related information 1 data stream not including time-division frame of common information and decoding individual information, 34 ... scrambler, 35 ... input device, 36 ... related information 1 creation unit, 37 ... related information 2 creating unit, 38 ... time-division frame creating unit for related information 2, 39 ...
Multiplexer, 40 ... Control line for creating related information 2, 41 ... Control line for creating related information 1, 42 ... Control line, 43 ... Signal line of time division frame of related information 1, 44 ... Time division of related information 2 Frame signal line, 45 ... data stream, 46 ...
Video encoder, 47 ... Scrambler control line, 48 ...
Time-division frame of related information 1, 49... Time-division frame of related information 2 distributed by network specified value, 50... Time-division frame of related information 2 distributed by receiver ID value, 51
... time-division frame of application data, 52 ... synchronization data, 53 ... time-division frame identification number of application data, 54 ... time-division frame identification number of related information 1, 55 ... program identification information, 56 ... scramble key information, 57 ... Information area in the time-division frame of related information 1, 58... Time-division frame identification number of related information 2, 59
... Recipient ID, 60 ... Group information, 61 ... Group key information, 62 ... Information area in the time-division frame of related information 2 distributed by recipient ID value, 63 ... Network specified value, 64 ... Target destination data Certain group information (during the time division frame of related information 2), 65: program identification information (during the time division frame of related information 2), 66 ... work key information (during the time division frame of related information 2), 67: network regulation Information area in the time-division frame of related information 2 distributed by value, 68... Security information (in the time-division frame of related information 2), 69. Information area, 70: a route in the receiving device in the second embodiment, 71: a route in the receiving device in the second embodiment, 72: a route in the receiving device in the second embodiment, 3. Path within the receiving device in the second embodiment 74 communication interface between receiver and security module in the second embodiment 75 receiver in the second embodiment 76 76 the second embodiment , Security module 77, receiving device in the second embodiment, 78 security module interface processing section in the second embodiment, 79, recipient ID
(In the memory of the receiving device), 80: recipient's unique key (in the memory of the receiving device), 81: group information (in the memory of the receiving device), 82: group key information (in the memory of the receiving device), 83: program Identification information (in the memory of the receiving device), 8
4 Work key information (in the memory of the receiving device), 85 Security information (in the memory of the receiving device), 86 Network specified value held in the receiving device, 87 Information of related information 2 distributed by recipient ID value Area, 88... Information area of related information 2 to be distributed with the network specified value.

Claims (9)

[Claims] 1. A digital signal for multiplexing one or more application data input to a multiplexing device in a time-division manner and transmitting the application data to a plurality of receiving devices as one data stream divided by a time-division frame. On the network, scramble the time-division frame of the specific application data in the data stream, and related information 1 having encrypted information for descrambling the time-division frame of the scrambled application data, The related information 2 for forming the time-division frame in the same manner as the time-division and transmitting the same data stream and decrypting the encrypted related information 1 is converted to the same data in the time-division frame in the same manner as the time division. Stream, and each receiver receives both information. In a digital network requiring confidentiality to process the encrypted related information 1 with the related information 2 and descramble the scrambled application data, the type of the related information 2 should be sent to each recipient. And information to be sent to a plurality of recipients at the same time, and the related information 2 to be sent to each recipient includes a receiver I for identifying each recipient.
D and the related information 2 for a plurality of recipients is provided with a fixed value fixed in the network.
Is converted into a time-division frame in the same manner as the time-division, and transmitted in the same data stream. On the receiving side, the time-division frame of the relevant information 2 in the data stream is separated, and the separated relevant information 2 If it is the recipient ID value or if it is the network defined value fixedly defined in the network, the related information 2 is decrypted and the encrypted related information 1 is encrypted using the information.
Decrypting the scrambled application data and descrambling the scrambled application data. 2. A digital network for multiplexing one or more application data input to a multiplexing device in a time-division manner and transmitting the application data to a receiving device as one data stream divided by a time-division frame. The scrambled time-division frame of a specific application data in the data stream, and related information 1 having encrypted information for descrambling the time-division frame of the scrambled application data. The related information 2 for forming the time-division frame in the same manner as the division and transmitting the same data stream and decoding the encrypted related information 1 is converted into the time-division frame in the same manner as the time division in the same data stream. Transmit, the receiving side receives both related information, In a digital network requiring confidentiality, which processes the encrypted related information 1 by the related information 2 and descrambles the scrambled application data, a time-division frame of the related information 2 in the data stream is separated; When the separated related information 2 is the corresponding own recipient ID value,
Alternatively, if the network specification value is fixedly specified in the network, the network specification value may be plural, but if these conditions are met, the relevant information 2 is decrypted and contracted. If the information is necessary as a reception condition, the information is stored and managed. Using this information, the encrypted related information 1 is decrypted, a scramble key is extracted, and the extracted scramble key is provided to a descramble section. Receiving means for descrambling the scrambled application data therein. 3. A receiving apparatus according to claim 2, wherein said receiving apparatus comprises a receiver and a removable security module, wherein said receiver converts a time-division frame of the related information 2 in the data stream. Separated and separated related information 2
Is the corresponding recipient ID value, or if the value is a network defined value fixedly defined in the network, the relevant information 2 is passed to the security module, or Similar to the time-division frame of the related information 2, there is provided a means for separating the time-division frame of the encrypted related information 1 in the data stream, and passing the separated related information 1 to a security module. When the related information 2 received from the receiver as the reception / viewing condition of the contract is necessary as the reception / viewing condition of the contract, the related information 2 is stored and managed in the security module. The received encrypted related information 1 is decrypted and a scramble key is extracted and extracted. Means for returning a scramble key to the receiver, the receiver further providing the received scramble key to a descramble section provided in the receiver, and descrambling the scrambled application data in a data stream. A receiving device in a digital network, comprising: 4. The receiver according to claim 3, wherein a time-division frame of the related information 2 in the data stream is separated, and the separated related information 2 is a corresponding own receiver ID value. Or if the value is a network defined value fixedly defined in the network, the related information 2
Is transferred to the security module, the time-division frame of the encrypted related information 1 in the data stream is separated in the same manner as the related information 2, the separated related information 1 is transferred to the security module, and the scramble key is transmitted to the security module. A receiver for a receiving device in a digital network, wherein the scrambled key descrambles the scrambled application data in response to a response from the module. 5. The security module according to claim 3, wherein the entire receiver is arbitrarily divided into a plurality of groups including a plurality of receivers based on contracted reception conditions. A different group key is set arbitrarily, and a group key corresponding to the receiving conditions contracted by the receiver and a unique key different for each receiver are provided in the security module in advance. When the time-division frame of the related information 2 is separated by the receiver, the related information 1 is input to the security module, and the related information 2 is the corresponding receiver ID value or a network fixedly defined in the network. When only the specified value is input to the security module and the related information 2 is the receiver ID value, the network is generated using the unique key. In the case of the default value, the related information 2 is processed using the group key, and if the information is necessary as the contracted reception / viewing condition, this information is stored and managed. Using this information, the encrypted related information is used. A security module for a receiving device in a digital network, comprising: means for decrypting information 1 to extract a scramble key and returning the extracted scramble key to a receiver. 6. A digital network for multiplexing one or more application data input to a multiplexing device in a time-division manner and transmitting the application data to a receiving device as one data stream divided by a time-division frame. The scrambled time-division frame of a specific application data in the data stream, and related information 1 having encrypted information for descrambling the time-division frame of the scrambled application data. The related information 2 for forming the time-division frame in the same manner as the division and transmitting the same data stream and decoding the encrypted related information 1 is converted into the time-division frame in the same manner as the time division in the same data stream. Transmit, the receiving side receives both information, In a digital network that requires confidentiality to process the encrypted related information 1 by information 2 and descramble the scrambled application data, the type of the related information 2 is synchronized with that to be sent to each recipient. , And the related information 2 to be sent to each recipient is attached with a recipient ID for identifying each recipient,
In addition, a fixed value is assigned to the related information 2 for a plurality of recipients in the network, and if a plurality of network prescribed values for another plurality of recipients are required, a plurality of values are prepared. A transmission apparatus in a digital network, wherein a time-division frame is formed in the same manner as the time-division and transmitted by the same data stream. 7. A digital network for multiplexing one or more application data input to a multiplexing device in a time-division manner and transmitting the application data to a receiving device as one data stream divided by a time-division frame. The scrambled time-division frame of a specific application data in the data stream, and related information 1 having encrypted information for descrambling the time-division frame of the scrambled application data. The related information 2 for forming the time-division frame in the same manner as the division and transmitting the same data stream and decoding the encrypted related information 1 is converted into the time-division frame in the same manner as the time division in the same data stream. Transmit, the receiving side receives both information, In a digital network that requires confidentiality to process the encrypted related information 1 by information 2 and descramble the scrambled application data, the type of the related information 2 is synchronized with that to be sent to each recipient. , And the related information 2 to be sent to each recipient is attached with a recipient ID for identifying each recipient,
The related information 2 for a plurality of recipients is given a fixed value fixed in the network. Further, the related information 2 includes information necessary as a contracted reception / viewing condition and the encrypted related information 1. With the necessary key information for decrypting the same, the time-division frame is transmitted in the same data stream in the same manner as the time-division, while the entire receiver is
Arbitrarily divided into a plurality of groups including a plurality of recipients based on the receiving conditions contracted, arbitrarily set a different group key for each group and group information identifying the group in each group, and A group key corresponding to the receiving conditions contracted by the receiver, the group information thereof, and a unique key different for each receiver are provided in advance, and the group information indicating the target group is included in the related information 2 transmitted with the network specified value. In addition, the receiving side separates the time-division frame of the related information 2 in the data stream, and when the separated related information 2 is the corresponding own receiver ID value, or on the network. If the network specified value is fixedly specified, the related information 2
Is decrypted using the unique key in the case of the recipient ID value, and using the group key corresponding to the group information in the case of the network specified value, and the contracted reception / viewing condition in the related information 2 is obtained. Storing and managing necessary information, extracting the scramble key by decrypting the encrypted related information 1 using this information, and descrambling the scrambled application data with the extracted scramble key. Characteristic method of distributing secret information in digital networks. 8. A digital network for multiplexing one or more application data input to a multiplexing device in a time-division manner and transmitting the application data to a receiving device as one data stream delimited by a time-division frame. The scrambled time-division frame of a specific application data in the data stream, and related information 1 having encrypted information for descrambling the time-division frame of the scrambled application data. The related information 2 for forming the time-division frame in the same manner as the division and transmitting the same data stream and decoding the encrypted related information 1 is converted into the time-division frame in the same manner as the time division in the same data stream. Transmit, the receiving side receives both related information, In digital networks requiring confidentiality to descramble the application data said scrambled by processing the relevant information 1 that the encrypted by related information 2, the type of the related information 2,
It is composed of one to be sent to each recipient and one to be sent to a plurality of recipients at the same time, and related information 2 to be sent to each recipient is attached with a recipient ID for identifying each recipient, The related information 2 for a plurality of recipients is provided with a fixed value fixed in the network, and the related information 2 is provided with security information necessary for the receiving device in the operation of the network. The time-division frame is transmitted in the same data stream in the same manner as the time-division, while the entire receiver is arbitrarily divided into a plurality of groups including a plurality of receivers based on contracted reception conditions. Arbitrarily sets a different group key for each group and group information for identifying the group, and stores in the receiver a group key for the reception conditions contracted by the receiver, the group information and the receiver. In addition, a different unique key is provided in advance, and group information indicating a target group is added to the related information 2 transmitted by the network specified value, and the receiving side performs time division of the related information 2 in the data stream. When the frame is separated and the separated related information 2 is the corresponding receiver ID value, or is the network specified value fixedly specified in the network, the related information 2 is In the case of a receiver ID value, the unique key is used, and in the case of a network specified value, a decryption process is performed using a group key corresponding to the added group information. A secret information distribution method in a digital network, wherein necessary security information is extracted and stored and managed. 9. A time-division frame of related information 2 in a data stream is separated, and when the separated related information 2 is a corresponding own receiver ID value, or fixedly defined in a network. If the value is the network specified value, the related information 2 is decrypted, a scramble key obtained from the information and the related information 1 is given to the descrambler, and the scrambled application data in the data stream is descrambled. 5. A receiving device in a digital network according to claim 2, wherein said receiving device comprises means and is configured to be used by being incorporated in another device. A receiving device, characterized in that: