KR20170099473A - The Content Protection Management System and Method for UHD Terrestrial Broadcasting - Google Patents

The Content Protection Management System and Method for UHD Terrestrial Broadcasting Download PDF

Info

Publication number
KR20170099473A
KR20170099473A KR1020160021570A KR20160021570A KR20170099473A KR 20170099473 A KR20170099473 A KR 20170099473A KR 1020160021570 A KR1020160021570 A KR 1020160021570A KR 20160021570 A KR20160021570 A KR 20160021570A KR 20170099473 A KR20170099473 A KR 20170099473A
Authority
KR
South Korea
Prior art keywords
module
uhdtv
information
contents
uhdcp
Prior art date
Application number
KR1020160021570A
Other languages
Korean (ko)
Other versions
KR101806010B1 (en
Inventor
오성흔
고병수
조인희
Original Assignee
주식회사 디지캡
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 주식회사 디지캡 filed Critical 주식회사 디지캡
Priority to KR1020160021570A priority Critical patent/KR101806010B1/en
Publication of KR20170099473A publication Critical patent/KR20170099473A/en
Application granted granted Critical
Publication of KR101806010B1 publication Critical patent/KR101806010B1/en

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/442Monitoring of processes or resources, e.g. detecting the failure of a recording device, monitoring the downstream bandwidth, the number of times a movie has been viewed, the storage space available from the internal hard disk
    • H04N21/44236Monitoring of piracy processes or activities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4627Rights management associated to the content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/835Generation of protective data, e.g. certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/80Generation or processing of content or additional data by content creator independently of the distribution process; Content per se
    • H04N21/83Generation or processing of protective or descriptive data associated with content; Content structuring
    • H04N21/84Generation or processing of descriptive data, e.g. content descriptors

Landscapes

  • Engineering & Computer Science (AREA)
  • Multimedia (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Databases & Information Systems (AREA)
  • Health & Medical Sciences (AREA)
  • General Engineering & Computer Science (AREA)
  • General Health & Medical Sciences (AREA)
  • Virology (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The present invention relates to a content protection management system and method for terrestrial UHD broadcasting, and more particularly, to a terrestrial broadcast UHDTV content protection management system comprising a terrestrial UHDTV content protection management transmission unit and a terrestrial UHDTV content protection management reception unit. UHD broadcasting contents protection management system to provide a system that can intercept illegal copy of terrestrial UHD contents, copyright protection, exchange and replacement of security module in UHD broadcasting environment, and support multiple UHD content protection management (UHDCP) clients A content protection management system and method for terrestrial UHD broadcasting for providing a download platform (DP) server and a UHD content protection authentication server that can operate the DP platform to provide a method of transmitting and receiving a DP message of the download platform (DP) server .

Description

[0001] The present invention relates to a content protection management system and method for terrestrial UHD broadcasting,

The present invention relates to a content protection management system and method for terrestrial UHD broadcasting, and more particularly, to a system for preventing illegal copying of terrestrial UHD contents, copyright protection, and exchange and replacement of security modules in UHD broadcasting environment (UHDCP) client which can operate a plurality of UHD content protection management (UHDCP) clients to provide a UHD content protection authentication server for authenticating the security of the UHDCP client and the receiver Protection management system and method thereof.

UHD broadcasts have increased by 4 times (3,840 ㅧ 2,160 / 8 million pixels) ~ 16 times (7,680 ㅧ 4,320 / 3,2 million pixels) compared to HD (1,920 ㅧ 1,080 / 2 million pixels) Is a next-generation broadcasting service technology that provides a more realistic experience for viewers with clearer picture quality and a larger viewing area.

The content protection of the UHD next generation broadcasting service refers to a function of making the broadcasting contents provided by the broadcasting company become a normal service only to a receiving terminal having reasonable viewing requirements. The terrestrial UHDTV contents for preventing illegal recording and distribution of contents for terrestrial UHD broadcasting Protection system standards are being demanded.

The requirements for content protection management for terrestrial UHD broadcasting include a system for blocking illegal copying of terrestrial UHD contents, copyright protection of UHD contents, and exchange and replacement of security modules such as CAS and DRM in UHD broadcasting environment.

According to another aspect of the present invention, the content protection management system for terrestrial UHD broadcasting requires each terrestrial broadcaster to simultaneously operate one or more content protection management systems. In addition, an identifier for a content protection management system And it is required to provide a download platform that can safely change the content protection management system to another system while the UHD broadcasting service is operating.

In addition, even if the download platform of each terrestrial broadcaster changes the system of contents download management and the content download management system, There is a requirement.

Therefore, in the case of content protection management for terrestrial UHD broadcasting, there is only one receiving terminal for receiving broadcasting contents. However, in order to receive contents from a large number of broadcasters, a conditional access system (CAS) The problem of ensuring interoperability between them while minimizing user inconvenience is becoming a big issue. Therefore, it is urgently required to develop a technology that can guarantee interoperability while protecting contents.

As a conventional technique for providing the above-mentioned requirements, Korean Patent Application No. 10-2006-0109266 discloses a system for broadcasting content protection management in a broadcast content protection / management system and a DRM Techniques have been proposed to ensure interoperability of tools.

However, the above-described conventional technology provides a method for controlling downloading of a security module for a broadcast service in a user terminal connected to a network with a service server and a security server, and it is a method for preventing illegal recording and distribution of contents for terrestrial UHD broadcasting There is a limit to meeting the overall requirements of the terrestrial UHDTV content protection system.

It is an object of the present invention to provide a content protection management system and a method thereof for unidirectional terrestrial UHD broadcasting as well as conventional bidirectional contents protection technology for pay broadcasting contents .

In addition, the present invention provides a download platform (DP) server capable of operating a plurality of UHD content protection management (UHDCP) clients in a technology for satisfying requirements for terrestrial UHDTV broadcast content protection management, A UHD content protection authentication server for content protection management for terrestrial UHD broadcasting by providing a UHD content protection authentication server for security of a UHDCP client and authentication of a receiver, There is another purpose to provide a method of authentication processing with a download platform manager module.

The above object of the present invention can be achieved by a content protection management system for a terrestrial UHDTV broadcasting comprising a terrestrial UHDTV content protection management transmission unit and a terrestrial UHDTV content protection management reception unit, wherein the terrestrial UHDTV content protection management transmission unit comprises signaling information for terrestrial UHDTV broadcasting content protection A UHDTV content management module for generating and delivering content redistribution information for content copy control in digital external output of terrestrial UHDTV broadcasting contents, and blocking access to terrestrial UHDTV broadcasting contents for illegal distribution purposes UHDTV contents common encryption module that encrypts terrestrial UHDTV broadcasting contents using an independent common encryption method in cooperation with the UHDTV contents protection module described above, UHDTV contents encryption module for performing various security key management for encrypting UHDTV broadcasting contents A download platform server (DP server) that periodically transmits the DP message, the CA Token, the CA Token Revocation List, the UHDCP client image, and the DP Manager image to the receiving unit via the unidirectional broadcasting network or the bidirectional network; And a UHD content protection authentication server that encrypts the UHDCP client image and then performs a download procedure through digital signature using the server certificate. Lt; / RTI >

The UHDTV contents protection management receiving unit includes a signaling processing module for processing the signaling transmission module, a UHDTV contents external digital output module for controlling external digital output in the receiving unit according to the contents redistribution information of the UHDTV contents management module, A UHDTV contents common decryption module for decrypting the encrypted terrestrial UHDTV broadcast contents in the UHDTV contents common encryption module, and a client function corresponding to various security keys managed in the UHDTV contents protection module (UHDCP module) A download platform manager for receiving the DP message from the UHDTV content protection client module (UHDCP client module) and the download platform server (DP server), downloading and installing and operating the UHDCP client image and the DP Manager image, Dyulro is achieved by that configuration.

According to another aspect of the present invention, there is provided a method for transmitting and receiving a DP message between a download platform server (DP server) and a download platform manager module for content protection management for terrestrial UHD broadcasting, the DPM Loader of the download platform manager module A DP message requesting step of requesting the DP module for a DP message at boot time, the download platform server transmitting a DP message periodically through a channel of a unidirectional network ROUTE protocol, A DP message receiving step in which the Loader receives the DP message from the download platform server; a UHDCP client module or a DP Manager installed in the receiving unit is updated by analyzing the DP message received by the DPM Loader of the download platform manager module Check DP Message An image updating step of downloading and updating a UHDCP client image or a DP manager image when the UHDCP client module or the DP manager needs to be updated through the DP message analyzing step; And a DP message information storing step of storing or updating the history information and the related information when the information is changed after the version checking of the UHDCP client, the DP Manager, the CA Token, and the CA Token Revocation List.

According to another aspect of the present invention, there is provided an authentication processing method for a UHD content protection authentication server and a download platform manager module for content protection management for terrestrial UHD broadcasting, wherein the DP Manager of the download platform manager module includes: A first step of verifying the bi-directional networking type and extracting the pairing information and the individual certificate information by parsing the certificate, extracting the pairing information and the individual certificate information, and the DP Manager extracting the pairing information and the individual certificate information from the individual certificate of the receiver through the DPM Loader as the UHD contents protection authentication server A third step of the UHD contents protection authentication server performing validation of the pairing information and individual certificate information and a pairing check for checking whether the receiving unit is replicated and storing log information in case of failure; , The UHD contents protection authentication server transmits the DP Mana a fourth step of transmitting an authentication result of whether or not the receiver is usable to the DP manager, and a fifth step of performing a UHDCP client image download procedure when the DP manager succeeds in authentication of the authentication result.

Accordingly, the present invention provides a content protection management system and method for terrestrial UHD broadcasting, which can prevent illegal copying of terrestrial UHD contents, copyright protection of UHD contents, exchange and replacement of security modules such as CAS and DRM in UHD broadcasting environment .

In addition, the present invention has the effect of enabling each broadcasting company to simultaneously operate one or more contents protection management systems, and to be able to identify the contents protection management system including an identifier for the contents protection management system used in the corresponding channel in broadcast signaling have.

In addition, the present invention provides a download platform server that can securely change a content protection management system to another system during UHD broadcasting service operation, a UHDCP client security function, and a UHD content protection authentication server for authenticating a receiver.

In addition, the present invention provides a secure downloading, installation and operation function of a content protection management system client for each TV receiver model and specific receiver by a download platform, and an effect of ensuring backward compatibility with existing receivers even if the content protection management system is changed It is effective.

1 is a configuration diagram of a content protection management system for terrestrial UHD broadcasting according to the present invention,
FIG. 2 is a flowchart of transmission and reception processing of a DP message in a content protection management system for terrestrial UHD broadcasting according to the present invention,
3 is a processing flowchart of an authentication processing method for the receiver in a case where a two-way network is supported in a content protection management system for terrestrial UHD broadcasting according to the present invention.

The terms and words used in the present specification and claims should not be construed as limited to ordinary or dictionary terms and the inventor may appropriately define the concept of the term in order to best describe its invention It should be construed as meaning and concept consistent with the technical idea of the present invention.

Therefore, the embodiments described in the present specification and the configurations shown in the drawings are merely the most preferred embodiments of the present invention and are not intended to represent all of the technical ideas of the present invention. Therefore, various equivalents It should be understood that water and variations may be present.

First, the abbreviation of the present invention refers to UHD (Ultra High Definition), UHDTV (Ultra-HD Television), DP (Download Platform), UHDCP (UHD Content Protection), CENC (Common Encryption) , ROUTE (Real-time Object delivery over Unidirectional Transport), OCSP (Online Certificate Status Protocol), and XML (eXtensible Markup Language).

Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings.

1 is a block diagram of a content protection management system for terrestrial UHD broadcasting according to the present invention.

As shown in the figure, the content protection management system of terrestrial UHD broadcasting for preventing illegal recording and distribution of the terrestrial UHDTV contents of the present invention comprises a terrestrial UHDTV contents protection management transmission unit 100 and a terrestrial UHDTV contents protection management reception unit 200.

The terrestrial UHDTV contents protection management transmission unit 100 includes a signaling transmission module 110, a UHDTV contents management module 120, a UHDTV contents common encryption module 130, a UHDTV contents protection module (UHDCP module) 140, (DP server) 150, as shown in FIG.

At this time, the signaling transmission module 110 transmits protection signaling information for protecting the contents of the terrestrial UHDTV broadcasting to the receiver 200.

In this case, the signaling information of the signaling transmission module 110 includes a UHDCP content protection module (UHDCP module) 140 and a download platform server 150 for protecting content encryption signaling information and terrestrial UHDTV broadcast contents, Identifier, and data transfer position information of each module.

The UHDTV content management module 120 is a module for generating and transmitting re-distribution information (Content Management Information) for controlling content copy when a terrestrial UHDTV broadcast content is output to a digital outside in the receiver.

For example, the redistribution information may be forensic watermarking information that can grasp the path of content leakage during external digital output of the content.

The UHDTV contents common encryption module 130 interlocks with the UHDTV contents protection module 140 to block access to terrestrial UHDTV broadcast contents for illegal circulation and encrypts the terrestrial UHDTV broadcast contents in an independent common encryption scheme .

Therefore, the terrestrial UHDTV contents protected by the UHDTV contents common encryption module 130 include content encryption signaling such as an encryption content, an encryption algorithm identifier, an encryption key identifier as well as an encrypted content portion.

The UHDTV content protection module (UHDCP module) 140 is a module for performing management such as issue, update, and abolition of various security keys for encrypting UHDTV broadcast contents.

The UHDTV contents protection module 140 can operate one or more UHDTV contents protection client modules 240 and uses a standard interface for interworking with the CENC scrambler and interlocks with the UHDTV contents common encryption module 130.

The download platform server 150 transmits the DP message, the CA Token, the CA Token Revocation List, the UHDCP client image, and the DP Manager image to the unidirectional broadcast network or the UHDCP client image for downloading, installing, and operating the UHDCP client image and the DP Manager image, And periodically transmits the information to the receiving unit 200 through the bidirectional network.

In addition, a UHD content protection authentication server 160 for performing a download procedure through validation of a receiver identification certificate stored in the receiver 200 when the UHDCP client image is downloaded in cooperation with the receiver 200 supporting the bidirectional network .

Therefore, the UHD contents protection authentication server 160 performs validation of the pairing information of the receiver 200 and the individual certificate information capable of identifying the receiver, in cooperation with the download platform manager module 250 of the receiver 200 And transmits the authentication result.

The terrestrial UHDTV contents protection management receiving unit 200 includes a signaling processing module 210, a UHDTV contents external digital output module 220, an HDTV contents common decryption module 230, a UHDTV contents protection client module 240, And a download platform manager module 250. The UHDTV content receiver is a UHDTV content receiver. The term receiver and receiver are used interchangeably in the present invention.

The signaling processing module 210 is a module for processing the signaling information transmitted from the signaling transmission module 110.

The UHDTV contents external digital output module 220 is a module for controlling external digital output in a receiver according to Content Management information of the UHDTV contents management module 120.

The UHDTV contents common decryption module 230 is a module for decrypting the terrestrial UHDTV broadcast contents in reverse according to the encrypted content encryption signaling.

The UHDTV content protection client module (UHDCP client module) 240 is a module for performing client functions corresponding to various security keys managed by the UHDTV contents protection module 140. Therefore, the UHDTV contents protection client module 240 interfaces with the UHDTV contents common decryption module 230.

The download platform manager module 250 receives the DP message from the download platform server 150 and downloads and installs and manages the UHDCP client image and the DP Manager image.

At this time, the download platform manager module 250 includes a DP Manager 252 for processing a DP Message, a CA Token, a CA Token Revocation List, and a UHDCP client image, and a DPM Loader 251 for managing the update of the DP Manager 252 And the like.

The DP Manager 252 performs a function of determining whether a UHDCP client to receive and operate the DP Message is currently installed and operating in the receiver and whether a UHDCP client image update or a new UHDCP client download and installation is necessary.

Also, the DP Manager 252 performs a CA Token download or a CA Token update, and when the CA Token in the receiver is included in the CA Token Revocation List, the DP Manager 252 performs a disposition for the corresponding CA Token.

The DP message transmitted from the download platform server (DP server) 150 to the download platform manager module 250 includes UHDCP module identifier and version information currently being operated by the download platform server 150, Bidirectional delivery position information, CA Token version and unidirectional / bidirectional delivery position information, CA Token Revocation List version information, and unidirectional / bidirectional delivery position information of the DP Manager image.

At this time, the DP message can be generated and delivered for each download platform server 150 and is in the form of an XML structure. If necessary, a separate XML Namespace can be defined and extended for each download platform server 150.

Here, the CA Token is an authentication parameter used for confirming the contents viewing right of the receiver and used as a proof value for downloading the UHDCP client image in the future.

The CA Token Revocation List is an identifier list for the CA Token to be revoked.

In the present invention, the DP message is delivered through a ROUTE channel when delivered to a unidirectional broadcasting network, and transmitted in a request / response of HTTP (S) when delivered to a bidirectional network.

At this time, the location information of the ROUTE channel to which the DP message is transmitted and the URL information of the bi-directional network HTTP (S) are provided through a CPT (Content Protection Table) of the signaling information of the signaling transmission module 110.

(E.g., DP message, UHDCP client image file, CA Token, CA Token Revocation List, etc.) or UHDCP data (e.g., EMM, license file, etc.) It may be inefficient to re-receive and reprocess unnecessarily in terms of performance.

Therefore, the download platform manager module 250 and the UHDTV contents protection client module 240 need a data filtering technique that requests to receive only necessary data from the system side.

The DP Manager 252 and the UHDCP client set a filtering rule for TOI filtering bit masking or a file name (Content-Location) of a ROUTE object to be filtered to a ROUTE receiver in a receiver Host, Only the ROUTE object that passes the filtering rule can be received and then delivered to the DP Manager 252 or the UHDCP client module 240. The ROUTE receiver can receive only the corresponding ROUTE object according to the set filtering rules. If the filtering rule is not set, all the ROUTE objects can be transmitted to the DP Manager 252 or the UHDCP client module 240. TOI Filtering In the case of applying the filtering rule based on the bit masking, the ROUTE receiver does not need to process / store a packet having an unnecessary TOI value, so that it can be operated more efficiently.

FIG. 2 is a flowchart of a transmission / reception process of a DP message in a content protection management system for terrestrial UHD broadcasting according to the present invention.

As shown in the figure, a method of transmitting and receiving a DP message between a download platform server 150 and a download platform manager module 250 for content protection management for terrestrial UHD broadcasting according to the present invention includes a DP message request step S10, A DP message receiving step S30, a DP message analyzing step S40, an image updating step S50, and a DP message information storing step S60.

In the DP message request step S10, the DPM Loader 251 of the download platform manager module 250 requests a DP message from the DP module at boot-up.

In the DP message sending step S20, the download platform server 150 periodically transmits the DP message through a unidirectional network ROUTE protocol channel.

The DP message receiving step S30 is a step in which the DPM Loader 251 of the download platform manager module 250 receives the DP message from the download platform server 150. [

The DP message analyzing step S40 analyzes the DP message received by the DPM Loader 251 of the download platform manager module 250 and transmits the UHDCP client module 240 or DP Manager 252 installed in the receiver It is a step to confirm whether it should be updated.

The image updating step S50 is a step of performing a UHDCP client image download or a DP Manager image downloading and updating procedure when the UHDCP client module 240 or the DP Manager 252 needs to be updated through the DP message analyzing step .

The DP message information storage step S60 is a step in which when the DP Manager 252 of the download platform manager module 250 has changed the information of the UHDCP client, the DP Manager, the CA Token, and the CA Token Revocation List, And related information.

In addition, the present invention provides an authentication processing method for the receiver when the terrestrial UHDTV contents protection management receiver supports a two-way network.

3 is a processing flowchart of an authentication processing method for the receiver in a case where a two-way network is supported in a content protection management system for terrestrial UHD broadcasting according to the present invention.

As shown in the figure, the authentication processing method of the present invention includes a first step (S100) of extracting pairing information (receiver ID information, DP ID information and the like) and individual certificate information, a second step of transmitting the pairing information and individual certificate information A third step S300 of performing validation and pairing checking of the pairing information and individual certificate information, a fourth step S400 of transmitting an authentication result to the DP Manager 252, a DP Manager 252 A fifth step S500 of performing a UHDCP client image downloading procedure.

In the first step S100, the DP Manager 252 of the download platform manager module 250 parses the certificate held by the receiver to confirm the bidirectional networking type, and extracts the pairing information and the individual certificate information.

At this time, when the receiving unit can not perform two-way networking, the authentication service stop and UHDCP client image downloading are blocked.

In the second step S200, the DP Manager 252 transmits identification information (receiver ID, etc.) to the UHD contents protection authentication server 160 through the DPM Loader 251 in the pairing information and the individual certificate of the receiver Extracting and transmitting.

In the third step 300, the UHD contents protection authentication server 160 performs a validation check of the pairing information and individual certificate information and a pairing check to check whether the receiver is a duplicated receiver, and stores log information in case of failure .

The UHD contents protection authentication server 160 can newly transmit the individual certificate for the receiver to the DP Manager 252 if the third step S300 is performed during the initial initialization process.

In the fourth step S400, the UHD contents protection authentication server 160 transmits an authentication result about whether the receiver is usable to the DP Manager 252. [

The fifth step S500 is a step in which the DP Manager 252 performs a UHDCP client image downloading process upon successful authentication of the authentication result. At this time, when the authentication result fails, the authentication failure processing notification is displayed.

At this time, the pairing information is information including the receiving card ID of the receiving unit, the issuing date, the MAC address, and the manufacturer ID.

The individual certificate information may include at least one of a non-personalized initial certificate stored at the production stage of the UHD receiver, a terminal certificate capable of identifying the receiver, a DP certificate for authenticating the DP module, a root certificate, (SSL / TLS, etc.), and server certificate information for use in digital signatures and the like.

The validation and pairing verification of the pairing information and the individual certificate information can be verified by using an OCSP (Online Certificate Status Protocol) or a separate protocol for verifying validity of a separate receiver or a Secure Token processing method.

The method using the OCSP is a protocol for verifying the availability of a certificate in real time, and the Secure Token processing method refers to a method of performing access control using a client and a server certificate.

While the present invention has been particularly shown and described with reference to exemplary embodiments thereof, it is clearly understood that the same is by way of illustration and example only and is not to be taken by way of limitation, Various changes and modifications will be possible.

100: terrestrial UHDTV contents protection management transmission unit
200: Terrestrial UHDTV content protection management receiver (receiver)
110: signaling transmission module
120: UHDTV content management module
130: UHDTV contents common encryption module
140: UHDTV content protection module
150: Download platform server
160: UHD content protection authentication server
210: a signaling processing module
220: UHDTV contents external digital output module
230: HDTV contents common decryption module
240: UHDTV Content Protection Client Module
250: Download Platform Manager Module
251: DPM Loader
252: DP Manager

Claims (12)

1. A content protection management system for terrestrial UHD broadcasting comprising a terrestrial UHDTV content protection management transmission unit and a terrestrial UHDTV content protection management reception unit,
The terrestrial UHDTV contents protection management transmitting unit
A signaling transmission module for transmitting signaling information for protecting terrestrial UHDTV broadcasting contents,
UHDTV contents management module which is responsible for the generation and delivery of contents redistribution information for contents copy control when outputting terrestrial UHDTV broadcasting contents in digital outside,
A UHDTV contents common encryption module for encrypting terrestrial UHDTV broadcasting contents by an independent common encryption method in cooperation with the UHDTV contents protection module in order to block access to terrestrial UHDTV broadcasting contents for illegal distribution,
UHDTV Content protection module (UHDCP module) that performs various security key management for encrypting broadcasting contents,
A download platform server (DP server) for periodically delivering the DP message, the UHDCP client image, and the DP Manager image to the receiver through a unidirectional broadcast network or a bidirectional network;
A UHD content protection authentication server that performs validation of a certificate when downloading a UHDCP client image in cooperation with the receiver supporting the bidirectional network and encrypts the UHDCP client image and performs a download procedure using a digital signature using a server certificate; Lt; / RTI >
The terrestrial UHDTV contents protection management receiving unit
A signaling processing module for performing a signaling process of the signaling transmission module,
A UHDTV contents external digital output module for controlling external digital output according to the content redistribution information of the UHDTV contents management module,
A UHDTV content common decryption module for decrypting the encrypted terrestrial UHDTV broadcast content in the UHDTV content common encryption module,
A UHDTV content protection client module (UHDCP client module) that performs a client function corresponding to various security keys managed by the UHDTV content protection module (UHDCP module) and
Receives the DP message of the download platform server (DP server), downloads, installs and operates the UHDCP client image and the DP Manager image, and extracts the pairing information and the individual certificate information in cooperation with the UHD contents protection authentication server And a download platform manager module for transmitting the content.
The method according to claim 1,
The signaling information of the signaling transmission module includes an identifier for each module for a UHDCP content protection module (UHDCP module) and a download platform server (DP server) operated for content encryption signaling information and terrestrial UHDTV broadcast content protection, And transmitting location information to the content protection management system for terrestrial UHD broadcasting.
The method according to claim 1,
Wherein the download platform manager module of the receiving unit comprises a DP message processing unit for processing a DP message, a UHDCP client image, and a DPM loader for managing update of the DP manager.
The method of claim 3,
Wherein the DP Manager determines whether a UHDCP client to receive and operate the DP Message is currently installed and operating in the receiver and determines whether updating the UHDCP client image or downloading and installing a new UHDCP client is necessary. Protection management system.
5. The method of claim 4,
The DP message can be generated and delivered for each download platform server (DP server), and is in the form of an XML structure. If necessary, a separate XML Namespace can be defined for each download platform server (DP server) A Content Protection Management System for Terrestrial UHD Broadcasting.
5. The method of claim 4,
The DP message is delivered through a ROUTE channel when delivered to a unidirectional broadcasting network, and transmitted in a request / response of an HTTP (S) when delivered to a bidirectional network,
Wherein the location information of the ROUTE channel to which the DP message is transmitted and the URL information of the bi-directional network HTTP (S) are provided through a CPT (Content Protection Table).
The method according to claim 1,
Wherein the UHD content protection authentication server verifies the validity of the pairing information and the individual certificate information of the receiver in cooperation with the download platform manager module of the receiver and transmits the authentication result to the UHD content protection authentication server. system.
A method for transmitting and receiving a DP message between a download platform server (DP server) and a download platform manager module for content protection management for terrestrial UHD broadcasting,
The DPM Loader of the download platform manager module requests a DP message at the time of booting,
The download platform server may include a DP message transmitting step of periodically transmitting the DP message through a channel of a unidirectional broadcast network ROUTE protocol,
A DP message receiving step of the DPM Loader of the download platform manager module receiving the DP message from the download platform server,
A DP message analyzing step of analyzing the DP message received by the DPM Loader of the download platform manager module and checking whether to update the UHDCP client module or the DP manager installed in the receiver,
An image updating step of performing a UHDCP client image or a DP manager image download and update procedure when the UHDCP client module or the DP manager needs to be updated through the DP message analyzing step;
And a DP message information storing step of storing or updating the history information and the related information when the DP Manager of the download platform manager module changes the information after verifying the version of the UHDCP client and the DP Manager. How to manage content protection for.
A method for authentication processing between a UHD content protection authentication server and a download platform manager module for content protection management for terrestrial UHD broadcasting,
The DP Manager of the download platform manager module parses the certificate held by the receiver and verifies the bi-directional networking type and extracts the pairing information and the individual certificate information.
A second step of the DP Manager transmitting the pairing information and the information extracted from the individual certificate of the receiver through the DPM Loader to the UHD contents protection authentication server,
A third step of the UHD contents protection authentication server performing validation of the pairing information and the individual certificate information and a pairing check to check whether the receiving unit is replicated and storing log information in case of failure,
A fourth step of the UHD contents protection authentication server transmitting an authentication result on availability of the receiver to the DP manager;
And a fifth step of performing a UHDCP client image downloading procedure when the DP Manager succeeds in authentication of the authentication result.
10. The method of claim 9,
Wherein the pairing information includes a reception card ID, an issuing date, a MAC address, and a manufacturer ID of the receiving unit.
10. The method of claim 9,
Wherein the individual certificate information comprises at least one of initial certificate, terminal certificate, DP certificate, root certificate, and server certificate information.
10. The method of claim 9,
Wherein validation and pairing verification of the pairing information and the individual certificate information are performed using at least one of a method using an Online Certificate Status Protocol (OCSP) or a Secure Token processing method, and a content protection management for terrestrial UHD broadcasting Way.
KR1020160021570A 2016-02-24 2016-02-24 The Content Protection Management System and Method for UHD Terrestrial Broadcasting KR101806010B1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
KR1020160021570A KR101806010B1 (en) 2016-02-24 2016-02-24 The Content Protection Management System and Method for UHD Terrestrial Broadcasting

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
KR1020160021570A KR101806010B1 (en) 2016-02-24 2016-02-24 The Content Protection Management System and Method for UHD Terrestrial Broadcasting

Publications (2)

Publication Number Publication Date
KR20170099473A true KR20170099473A (en) 2017-09-01
KR101806010B1 KR101806010B1 (en) 2017-12-07

Family

ID=59923792

Family Applications (1)

Application Number Title Priority Date Filing Date
KR1020160021570A KR101806010B1 (en) 2016-02-24 2016-02-24 The Content Protection Management System and Method for UHD Terrestrial Broadcasting

Country Status (1)

Country Link
KR (1) KR101806010B1 (en)

Also Published As

Publication number Publication date
KR101806010B1 (en) 2017-12-07

Similar Documents

Publication Publication Date Title
US12113910B2 (en) System and method using distributed blockchain database
US8924731B2 (en) Secure signing method, secure authentication method and IPTV system
CA2591336C (en) System and method for secure conditional access download and reconfiguration
EP2197172B1 (en) Content delivery network having downloadable conditional access system with personalization servers for personalizing client devices
KR100945650B1 (en) Digital cable system and method for protection of secure micro program
US8533458B2 (en) Headend system for downloadable conditional access service and method of operating the same
US8176331B2 (en) Method to secure data exchange between a multimedia processing unit and a security module
JP2015524178A (en) Method and apparatus for sending and receiving messages for downloadable CAS or DRM in MMT
US20100262961A1 (en) Method and system for downloading software
KR100963420B1 (en) Device and method for detecting dcas host with duplicated secure micro
KR101806010B1 (en) The Content Protection Management System and Method for UHD Terrestrial Broadcasting
WO2016156380A1 (en) Accessing content at a device
JP5175722B2 (en) System and method for providing conditional access to data in an MHP or OCAP broadcast system
US20110051933A1 (en) Paring method between sm and tp in downloadable conditional access system, set-top box and authentication device using this
JP6180784B2 (en) Application distribution management system and receiver program
JP5941356B2 (en) Broadcast communication cooperative receiver, application authentication program, and broadcast communication cooperative system
KR20120072030A (en) The apparatus and method for remote authentication
KR100947326B1 (en) Downloadable conditional access system host apparatus and method for reinforcing secure of the same
KR101238195B1 (en) System and method for intercepting illegality reproduction in eXchangeable Conditional Access System
KR20110051775A (en) System and method for checking set-top box in downloadable conditional access system
You et al. Design and implementation of DCAS user terminal
KR101248827B1 (en) System and method for providing client related secure micro in eXchangeable Coditional Access System
KR101743928B1 (en) Operating system of broadcast contents protection technologies and its operating method in broadcast receiver environment
KR100947313B1 (en) Method and apparatus for authenticating based on downloadable conditional access system
KR100947315B1 (en) Method and system for supporting roaming based on downloadable conditional access system

Legal Events

Date Code Title Description
E701 Decision to grant or registration of patent right