WO2006045014A2 - Application d'un schema de signatures numeriques asymetrique a un systeme de diffusion - Google Patents
Application d'un schema de signatures numeriques asymetrique a un systeme de diffusion Download PDFInfo
- Publication number
- WO2006045014A2 WO2006045014A2 PCT/US2005/037732 US2005037732W WO2006045014A2 WO 2006045014 A2 WO2006045014 A2 WO 2006045014A2 US 2005037732 W US2005037732 W US 2005037732W WO 2006045014 A2 WO2006045014 A2 WO 2006045014A2
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- digital signature
- receiver terminal
- data message
- authorization
- asymmetric digital
- Prior art date
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/45—Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
- H04N21/462—Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
- H04N21/4623—Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N7/00—Television systems
- H04N7/16—Analogue secrecy systems; Analogue subscription systems
- H04N7/162—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
- H04N7/163—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing by receiver means only
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N7/00—Television systems
- H04N7/16—Analogue secrecy systems; Analogue subscription systems
- H04N7/167—Systems rendering the television signal unintelligible and subsequently intelligible
- H04N7/1675—Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
Definitions
- Broadcast subscriber control systems used for controlling access in the broadcasting of information to users which are known to the broadcaster, where the broadcaster wishes to make unauthorized, unknown access to the broadcast difficult, have been deployed for many decades.
- these systems began to use cryptographic methods to help to control access with limited success. Piracy has plagued all of the systems that have been used until today including systems deployed for satellite, cable and terrestrial (UHF, VHF) broadcasts.
- UHF, VHF satellite, cable and terrestrial
- cryptographic Asymmetric Digital Signature Scheme
- all receiver terminal authorization data messages are digitally signed with a private key unique to each receiver terminal utilizing an authorization digital signature scheme of the broadcast subscriber control system. This signature is tested for authenticity in the receiver terminal with a corresponding authorization public key unique to each receiver terminal of the digital broadcast communication system.
- Figure 1 is a logical block diagram of a digital broadcast communication system
- Figure 2 is a logical block diagram of the authorization asymmetric digital signature scheme of the first preferred embodiment
- Figure 3 is a logical block diagram of the authorization asymmetric digital signature scheme of the second preferred embodiment
- Figure 4 is a logical block diagram of the access asymmetric digital signature scheme
- Figure 1 is a logical block diagram of a digital broadcast communication system 100.
- the system 100 comprises a broadcast subscriber control system 110.
- the broadcast subscriber control system of Figure 1 is comprised of two parts: subscriber authorization system 111 and service access system 112.
- the subscriber authorization system 111 of Figure 1 is comprised of two parts: subscriber database 113 and authorization signature scheme 114.
- the subscriber authorization system 111 stores the subscriber database 113 of authorizations for each receiver terminal 115 that are the authorizations of each corresponding subscriber to the broadcast service content 116.
- Broadcast service content 116 can be television, radio, movie, as only examples of any possible broadcast service content 116.
- the subscriber authorization system 11 1 creates receiver terminal authorization data message 117 that is transmitted to the broadcast network controller and interface 118 order for it to be broadcast into the broadcast network 119.
- the invention first embodiment the authorization signature scheme 114 of Figure 1 generates an asymmetric digital signature of the receiver terminal authorization data message 117 that is appended by the authorization signature scheme 114 to said same receiver terminal authorization data message 117.
- the private key 126 of the authorization signature scheme in Figure 2 is unique to the subscriber authorization system 111, but it is the same private key 126 used for all receiver terminal authorization data message 117 that are digitally signed by the authorization signature scheme 114.
- the authorization asymmetric digital signature scheme (ASI) 127 comprises the method of generation of the authorization asymmetric digital signature (Sl) 128 using the private key 126 of the authorization signature scheme 114, appending of the authorization asymmetric digital signature (Sl) 128 to the receiver terminal authorization data message 117, broadcast 129 of the receiver terminal authorization data message 117, reception of the receiver terminal authorization data message 117 by the receiver terminal 115, test of the authenticity of the authorization asymmetric digital signature (ASTl) 130 utilizing the unique public key 131 of the subscriber authorization system 111 where such test is performed inside a secure device; system on chip secure device 120, embedded secure device 121, removable secure device 122, of the receiver terminal 115, utilization 132 of the receiver authorization data message 117 within said secure device; system on chip secure device 120, embedded secure device 121, removable secure device 122, of the receiver terminal 115 only if the authorization asymmetric digital signature 128 is tested as valid.
- the invention second embodiment the authorization signature scheme 114 of Figure 1 generates an asymmetric digital signature of the receiver terminal authorization data message 117 that is appended by the authorization signature scheme 114 to said same receiver terminal authorization data message 117.
- the private key 133 of the authorization signature scheme 114 is unique to corresponding receiver terminal 115.
- the authorization asymmetric digital signature scheme 134 comprises the method of generation of the authorization asymmetric digital signature 135, appending of the authorization asymmetric digital signature to the receiver terminal authorization data message 117, broadcast 136 of the receiver terminal authorization data message 117, reception of the receiver terminal authorization data message 117 by the receiver terminal 115, test of the authenticity of the authorization asymmetric digital signature (AST2) 137 utilizing the unique public key 138 of the unique private-public key pair of the authorization asymmetric digital signature scheme 134 for the unique receiver terminal 115 where such test is performed inside a secure device; system on chip secure device 120, embedded secure device 121, removable secure device 122, of the receiver terminal 115, utilization 139 of the receiver terminal authorization data message 117 within said secure device; system on chip secure device 120, embedded secure device 121, removable secure device 122, of the receiver terminal 115 only if the authorization asymmetric digital signature is tested as valid.
- the receiver terminal authorization data message 117 is received by the receiver terminal that has the corresponding address in the address data field of the receiver terminal authorization data message 117 where said address can be of three or more types: a unique receiver terminal address, a unique receiver terminal group address, which is comprised of a group number and a group mask bit value, or a global receiver terminal address.
- the authorization asymmetric digital signature scheme 134 can be the same scheme for all receiver address types, or can be a unique authorization asymmetric digital signature scheme 134 unique for each type of address of the receiver terminal.
- the invention second embodiment in Figure 3 the receiver terminal authorization data message 117 contains several data fields but not limited to: the address field (unique, group, global); access authorization rights; authorization time code; authorization asymmetric digital signature 135.
- the invention first and second embodiment the access signature scheme 123 of Figure 1 generates an asymmetric digital signature of the broadcast service content access data message 124 that is appended by the access signature scheme 123 to said same broadcast service content access data message 124.
- the private key 140 of the access signature scheme 123 is unique to the service access system 112, it is the same private key used for all broadcast service content access data message 124 that are digitally signed by access signature scheme 123.
- the access asymmetric digital signature scheme (ADS) 141 comprises the method of generation of access asymmetric digital signature 142, appending of the access asymmetric digital signature 142 to the broadcast service content access data message 124, broadcast 143 of the broadcast service content access data message 124, reception of the broadcast service content access data message 124 by the receiver terminal 115, test of the authenticity ADST 144 of the access asymmetric digital signature 142 utilizing the unique public key 145 of the service access system 112 where such test is performed inside a secure device; system on chip secure device 120, embedded secure device 121, removable secure device 122, of the receiver terminal 115, utilization 146 of the broadcast service content access data message within said secure device; system on chip secure device 120, embedded secure device 121, removable secure device 122, of the receiver terminal 115 only if the access asymmetric digital signature 142 is tested as valid.
Landscapes
- Engineering & Computer Science (AREA)
- Multimedia (AREA)
- Signal Processing (AREA)
- Databases & Information Systems (AREA)
- Computer Security & Cryptography (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
Applications Claiming Priority (4)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
US62049504P | 2004-10-20 | 2004-10-20 | |
US60/620,495 | 2004-10-20 | ||
US25334605A | 2005-10-19 | 2005-10-19 | |
US11/253,346 | 2005-10-19 |
Publications (2)
Publication Number | Publication Date |
---|---|
WO2006045014A2 true WO2006045014A2 (fr) | 2006-04-27 |
WO2006045014A3 WO2006045014A3 (fr) | 2007-05-18 |
Family
ID=36203698
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/US2005/037732 WO2006045014A2 (fr) | 2004-10-20 | 2005-10-20 | Application d'un schema de signatures numeriques asymetrique a un systeme de diffusion |
Country Status (1)
Country | Link |
---|---|
WO (1) | WO2006045014A2 (fr) |
Cited By (1)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2461539A1 (fr) * | 2010-12-01 | 2012-06-06 | Irdeto Corporate B.V. | Protection de mot de contrôle |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6088798A (en) * | 1996-09-27 | 2000-07-11 | Kabushiki Kaisha Toshiba | Digital signature method using an elliptic curve, a digital signature system, and a program storage medium having the digital signature method stored therein |
US20020170053A1 (en) * | 2000-10-26 | 2002-11-14 | General Instrument, Inc. | ECM and EMM distribution for multimedia multicast content |
US6516412B2 (en) * | 1995-04-03 | 2003-02-04 | Scientific-Atlanta, Inc. | Authorization of services in a conditional access system |
-
2005
- 2005-10-20 WO PCT/US2005/037732 patent/WO2006045014A2/fr active Application Filing
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US6516412B2 (en) * | 1995-04-03 | 2003-02-04 | Scientific-Atlanta, Inc. | Authorization of services in a conditional access system |
US6088798A (en) * | 1996-09-27 | 2000-07-11 | Kabushiki Kaisha Toshiba | Digital signature method using an elliptic curve, a digital signature system, and a program storage medium having the digital signature method stored therein |
US20020170053A1 (en) * | 2000-10-26 | 2002-11-14 | General Instrument, Inc. | ECM and EMM distribution for multimedia multicast content |
Cited By (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
EP2461539A1 (fr) * | 2010-12-01 | 2012-06-06 | Irdeto Corporate B.V. | Protection de mot de contrôle |
WO2012072707A1 (fr) * | 2010-12-01 | 2012-06-07 | Irdeto Corporate B.V. | Protection de mot de commande |
CN103354998A (zh) * | 2010-12-01 | 2013-10-16 | 耶德托公司 | 控制字保护 |
US9270465B2 (en) | 2010-12-01 | 2016-02-23 | Irdeto B.V. | Control word protection |
Also Published As
Publication number | Publication date |
---|---|
WO2006045014A3 (fr) | 2007-05-18 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
US8327136B2 (en) | Inter-entity coupling method, apparatus and system for content protection | |
KR100966970B1 (ko) | 컨텐츠 방송용 보안 시스템에서 규정 비준수 키, 어플라이언스 또는 모듈의 폐기 리스트 갱신 방법 | |
US20080065548A1 (en) | Method of Providing Conditional Access | |
US20100153709A1 (en) | Trust Establishment From Forward Link Only To Non-Forward Link Only Devices | |
US9762958B2 (en) | Localization of customer premises equipment in a digital communication network | |
JP2004527188A (ja) | メッセージの保護および識別のためのセキュリティ装置およびセキュリティ方法 | |
US20070189535A1 (en) | Method and apparatus for protecting contents supporting broadcast service between service provider and a plurality of mobile stations | |
CN1265807A (zh) | 用于广播服务的全球条件接通系统 | |
US7433473B2 (en) | Data transmission method between a broadcasting center and a multimedia unit | |
US8417933B2 (en) | Inter-entity coupling method, apparatus and system for service protection | |
JP2003530773A (ja) | データの安全な伝送のための方法および装置 | |
CN1946018A (zh) | 一种媒体流的加密及解密方法 | |
US6473742B1 (en) | Reception apparatus for authenticated access to coded broadcast signals | |
US20110280399A1 (en) | Transmission, reception and identification methods, security processor and information recording medium for said methods | |
WO2006045014A2 (fr) | Application d'un schema de signatures numeriques asymetrique a un systeme de diffusion | |
CN111918292B (zh) | 一种接入方法及装置 | |
CN101567738B (zh) | 多媒体广播装置及多媒体广播的接收装置 | |
CN113552600B (zh) | 卫星导航信号的服务分级方法、装置及系统 | |
WO2009122165A1 (fr) | Authentification de transmissions | |
Song et al. | Analysis of privacy and non-repudiation on pay-TV systems | |
CN101193308A (zh) | 用于提供可在通信网络中播放的音/视频信号的方法及装置 | |
KR20110101784A (ko) | Iptv 서비스 환경에서 컨텐츠 보안 장치 및 방법 | |
EP1624690A1 (fr) | Procédé de transmission et réception de signaux vidéo | |
EP1813050A1 (fr) | Procede et appareil de reception d'un contenu radiodiffuse | |
Harding | A practical key management and distribution system for IPTV conditional access |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
AK | Designated states |
Kind code of ref document: A2 Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KM KP KR KZ LC LK LR LS LT LU LV LY MA MD MG MK MN MW MX MZ NA NG NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SM SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW |
|
AL | Designated countries for regional patents |
Kind code of ref document: A2 Designated state(s): BW GH GM KE LS MW MZ NA SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IS IT LT LU LV MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
NENP | Non-entry into the national phase in: |
Ref country code: DE |
|
122 | Ep: pct application non-entry in european phase |
Ref document number: 05814855 Country of ref document: EP Kind code of ref document: A2 |