CA2159779C - Secure access systems - Google Patents
Secure access systems Download PDFInfo
- Publication number
- CA2159779C CA2159779C CA002159779A CA2159779A CA2159779C CA 2159779 C CA2159779 C CA 2159779C CA 002159779 A CA002159779 A CA 002159779A CA 2159779 A CA2159779 A CA 2159779A CA 2159779 C CA2159779 C CA 2159779C
- Authority
- CA
- Canada
- Prior art keywords
- card
- catv
- writer
- information
- access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Fee Related
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07F—COIN-FREED OR LIKE APPARATUS
- G07F7/00—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus
- G07F7/08—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means
- G07F7/10—Mechanisms actuated by objects other than coins to free or to actuate vending, hiring, coin or paper currency dispensing or refunding apparatus by coded identity card or credit card or other personal identification means together with a coded signal, e.g. in the form of personal identification information, like personal identification number [PIN] or biometric data
- G07F7/1008—Active credit-cards provided with means to personalise their use, e.g. with PIN-introduction/comparison system
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K7/00—Methods or arrangements for sensing record carriers, e.g. for reading patterns
- G06K7/0004—Hybrid readers
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06K—GRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
- G06K7/00—Methods or arrangements for sensing record carriers, e.g. for reading patterns
- G06K7/0013—Methods or arrangements for sensing record carriers, e.g. for reading patterns by galvanic contacts, e.g. card connectors for ISO-7816 compliant smart cards or memory cards, e.g. SD card readers
- G06K7/0034—Methods or arrangements for sensing record carriers, e.g. for reading patterns by galvanic contacts, e.g. card connectors for ISO-7816 compliant smart cards or memory cards, e.g. SD card readers the connector being capable of simultaneously receiving a plurality of cards in the same insertion slot
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/22—Payment schemes or models
- G06Q20/229—Hierarchy of users of accounts
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/22—Payment schemes or models
- G06Q20/229—Hierarchy of users of accounts
- G06Q20/2295—Parent-child type, e.g. where parent has control on child rights
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/341—Active cards, i.e. cards including their own processing means, e.g. including an IC or chip
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q20/00—Payment architectures, schemes or protocols
- G06Q20/30—Payment architectures, schemes or protocols characterised by the use of specific devices or networks
- G06Q20/34—Payment architectures, schemes or protocols characterised by the use of specific devices or networks using cards, e.g. integrated circuit [IC] cards or magnetic cards
- G06Q20/346—Cards serving only as information carrier of service
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/20—Individual registration on entry or exit involving the use of a pass
- G07C9/29—Individual registration on entry or exit involving the use of a pass the pass containing active electronic elements, e.g. smartcards
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/41—Structure of client; Structure of client peripherals
- H04N21/418—External card to be used in combination with the client device, e.g. for conditional access
- H04N21/4181—External card to be used in combination with the client device, e.g. for conditional access for conditional access
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/43—Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
- H04N21/44—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
- H04N21/4405—Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream decryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/45—Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
- H04N21/462—Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
- H04N21/4623—Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N7/00—Television systems
- H04N7/16—Analogue secrecy systems; Analogue subscription systems
- H04N7/162—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
- H04N7/163—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing by receiver means only
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N5/00—Details of television systems
- H04N5/44—Receiver circuitry for the reception of television signals according to analogue transmission standards
- H04N5/445—Receiver circuitry for the reception of television signals according to analogue transmission standards for displaying additional information
Abstract
A CATV system including a CATV network and apparatus for transmitting over the CATV network information to a multiplicity of subscriber units, each including a CATV decoder and an IC card reader and writer coupled to the CATV decoder, the IC card reader and writer includes two separate IC card receptacles, such that IC cards inserted into the two separate IC
card receptacles are separately accessed by the IC card reader and writer.
card receptacles are separately accessed by the IC card reader and writer.
Description
- 17862nei.dbl HB-9409 2/10/94 FIELD OF THE INVENTION
The present invention relates to secure access systems generally and more particularly to secure access systems which employ integrated circuit cards.
BACKGROUND OF THE INVENTION
Access systems generally provide access to restricted means, such as communication systems and data, or to restricted areas such as buildings and departments. There are known in the art access systems which employ integrated circuit (IC) cards, or as more commonly referred to "smart cards", to provide secure access to restricted means or areas.
Smart cards are employed in systems such as pay TV
systems and telephone systems. Such systems generally employ one card per unit which is to be accessed, whereby access is enabled whenever a valid smart card is inserted in a card slot.
U.S. Patent 4,709,136 to Watanabe describes an IC card reader/writer apparatus which includes at least two contactors in which IC cards are inserted, respectively, card detecting means for detecting that at least two IC cards have been loaded, and collating means verifying that correct cipher codes of the two IC
cards coincide with those inputted externally, respectively, wherein access to the contents stored in the IC cards is allowed only when the collation results in coincidence.
U.S. Patent 4,594,663 to Nagata et al describes a credit transaction processing system which processes data related 2~~97~~
to a commodity entered into by using a card owned by a customer and a recording card owned by,a store.
U.S. Patent 5,010,571 to Katznelson describes a system for controlling and accounting for retrieval.of data from a CD-ROM memory containing encrypted data files from which retrieval must be authorized.
SUMMARY OF THE INVENTION
The present invention seeks to provide access systems having improved security and flexible applications.
The term "access systems" is used throughout the , specification and claims in a broad sense to include systems which allow controlled access to communication apparatus, software programs, restricted areas, such as buildings, terrain and departments in a plant, television and cable television transmissions, video programs, audio programs, computer data and electronic mail and voice information.
The term "CATV systems" is used throughout the specification and claims in a broad sense to include any form of pay TV systems which are either one-way systems or two-way systems utilizing cable communication networks, satellite communication networks, telephone communication networks or any combination thereof.
There is thus provided in accordance with a preferred embodiment of the present invention a CATV system including:.
a CATV network; and apparatus for transmitting over the CATV network information to a multiplicity of subscriber units, each including:
a CATV decoder; and an IC card reader and writer, coupled to the CATV
decoder, and including two separate IC card receptacles, wherein IC cards inserted into the two separate IC card receptacles are separately accessed by the IC card reader and writer.
The present invention relates to secure access systems generally and more particularly to secure access systems which employ integrated circuit cards.
BACKGROUND OF THE INVENTION
Access systems generally provide access to restricted means, such as communication systems and data, or to restricted areas such as buildings and departments. There are known in the art access systems which employ integrated circuit (IC) cards, or as more commonly referred to "smart cards", to provide secure access to restricted means or areas.
Smart cards are employed in systems such as pay TV
systems and telephone systems. Such systems generally employ one card per unit which is to be accessed, whereby access is enabled whenever a valid smart card is inserted in a card slot.
U.S. Patent 4,709,136 to Watanabe describes an IC card reader/writer apparatus which includes at least two contactors in which IC cards are inserted, respectively, card detecting means for detecting that at least two IC cards have been loaded, and collating means verifying that correct cipher codes of the two IC
cards coincide with those inputted externally, respectively, wherein access to the contents stored in the IC cards is allowed only when the collation results in coincidence.
U.S. Patent 4,594,663 to Nagata et al describes a credit transaction processing system which processes data related 2~~97~~
to a commodity entered into by using a card owned by a customer and a recording card owned by,a store.
U.S. Patent 5,010,571 to Katznelson describes a system for controlling and accounting for retrieval.of data from a CD-ROM memory containing encrypted data files from which retrieval must be authorized.
SUMMARY OF THE INVENTION
The present invention seeks to provide access systems having improved security and flexible applications.
The term "access systems" is used throughout the , specification and claims in a broad sense to include systems which allow controlled access to communication apparatus, software programs, restricted areas, such as buildings, terrain and departments in a plant, television and cable television transmissions, video programs, audio programs, computer data and electronic mail and voice information.
The term "CATV systems" is used throughout the specification and claims in a broad sense to include any form of pay TV systems which are either one-way systems or two-way systems utilizing cable communication networks, satellite communication networks, telephone communication networks or any combination thereof.
There is thus provided in accordance with a preferred embodiment of the present invention a CATV system including:.
a CATV network; and apparatus for transmitting over the CATV network information to a multiplicity of subscriber units, each including:
a CATV decoder; and an IC card reader and writer, coupled to the CATV
decoder, and including two separate IC card receptacles, wherein IC cards inserted into the two separate IC card receptacles are separately accessed by the IC card reader and writer.
There is also provided in accordance with a preferred embodiment of the present invention for use in a CATV system, wherein CATV programs are transmitted via a CATV network in.
encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of tMe CATV programs are rated for viewing under parental control, a CATV parental control system including:
a first IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are not rated for viewing under parental control;
a second IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are rated for viewing under parental control;
an IC card reader and writer coupled to the CATV
decoder;
first and second IC card receptacles coupled to the IC
card reader and writer, wherein the first and second IC cards communicate with the IC card reader and writer when inserted in the respective IC card receptacles; and a decrypter decrypting the programs which are not rated for viewing under parental control in response to receiving the at least one of decryption seeds, decryption keys and algorithms for decryption from the first IC card, and decrypting the programs which are rated for viewing under parental control ~in response to receiving the at least one of decryption seeds, decryption keys and algorithms for decryption from the first IC
card and the at least one of decryption seeds, decryption keys 2~~97'~~
._ and algorithms for decryption from the second IC card.
Additionally, there is also provided in accordance with a preferred embodiment of the present invention a parental control method for use in a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity~of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, the method of exercising parental control including:
providing an IC card reader and writer coupled to the CATV decoder;
inserting a first IC card in a first IC card receptacle coupled to the CATV reader and writer;
addressing the first IC card via the CATV reader and writer to provide at least one of authentication, verification, validation and program entitlements of the first IC card;
enabling decryption of programs which do not require parental control in response to providing the at least one of authentication, verification, validation and program entitlements of the first IC card;
inserting a second IC card in a second IC card receptacle coupled to the CATV reader and writer;
verifying that the first IC card is in the first IC
card receptacle;
addressing the second IC card via the CATV reader and writer to provide at least one of authentication, verification, validation and program entitlements of the second IC card; and enabling decryption of programs which require parental control in response to providing the at least one of authentication, verification, validation and program entitlements of the first IC card and of the second IC card.
In accordance with another preferred embodiment of the present invention there is also provided a CATV access method, wherein CATV programs are transmitted via a CATV network to a multiplicity of subscriber units, each including a CATV decoder, the CATV access method including:
providing an IC card reader and writer, coupled to the CATV decoder, and to two separate IC card receptacles; and separately addressing IC cards inserted into the two separate IC card receptacles to provide data enabling access to CATV transmissions.
Preferably, the method of exercising parental control also includes:
storing in the first IC card billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
Additionally, the method of exercising parental control also includes:
maintaining separate accounts for programs which require parental control and for programs which do not require parental control in the first IC card.
Preferably, the step of maintaining separate accounts comprises employing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
21~~~~~
Additionally, the first IC card also includes a memory for storing billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
Yet additionally, the CATV parental control system also includes storage means for maintaining separate accounts for programs which require parental control and for~programs which do not require parental control in the first IC card.
Further in accordance with a preferred embodiment of the present invention the CATV parental control system also includes a processor for providing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
In accordance with a preferred embodiment of the present invention there is provided an IC card initialization system in a CATV system wherein access to CATV transmissions is provided by two IC cards, at least one of which being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, the IC card initialization system including a communicator communicating between a first IC
card and a second IC card and providing data from a first IC card to a second IC card.
Preferably, the IC card reader and writer may access each of the two IC card receptacles interchangeably.
Additionally, the first IC card and the second IC card are interchangeable.
There is also provided in accordance with a preferred embodiment of the invention an area access system including:
21~9'~79 an identifier station including two separate card receptacles, wherein cards inserted into the two separate card receptacles are addressed by the identifier station;
an identification element including personal and official information; and ' an application element including at least one of access keys, access seeds, and algorithms for enabling access to the information in the identification element, wherein the identification element and the application element are addressed by the identifier station to enable access to a restricted area in accordance With the information and the at least one of access keys, access seeds, and algorithms for enabling access to the information.
Preferably, the information includes identification information of a bearer of the identification element.
Additionally, the identification information includes a digitized picture of a bearer of the identification element. Yet additionally, the information includes information restricting access of a bearer of the identification element to a portion of the restricted area.
Preferably, part of the information is encrypted.
Additionally, at least one of the identification element and the application element include security level data determining the level of security employed in encryption of the part of the information. Additionally, the area access system also includes a display for displaying the digitized picture of the bearer of the identification element.
215~'~7~
In accordance with a preferred embodiment of the present invention there is also provided a method for accessing a restricted area including:
providing an identifier station including two separate card receptacles;
inserting an identification element including personal and official information in a first receptacle of the two separate card receptacles;
inserting an application element including at least one of access keys, access seeds, and algorithms for enabling access to the information in the identification element in a second receptacle of the two separate card receptacles;
addressing the identification element; and addressing the application element, wherein the identification element and the application element are addressed via the identifier station to enable access to a restricted area in accordance with the information and the at least one of access keys, access seeds, and algorithms for enabling access to the information.
In accordance with another preferred embodiment of the ' present invention there is provided a data access system including:
a processor;
a memory card reader and writer, coupled to the processor, and including a memory card receptacle, wherein a memory card carrying information to be accessed is inserted into the memory card receptacle and addressed by the memory card reader and writer; and 2I~9'~7~
an IC card reader and writer, coupled to the processor, and including an IC card receptacle, wherein an IC card, inserted into the IC card receptacle and addressed by the IC card reader and writer, provides access codes to enable access to the information carried in the memory card. , Further in accordance with a preferred embodiment of the invention there is also provided a data access system including:
a CATV network; and apparatus for transmitting over the CATV network CATV
transmissions to a multiplicity of subscriber units, each including:
a CATV decoder;
a memory device reader and writer, coupled to the CATV
decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into the memory device receptacle is addressed by the memory device reader and writer; and an IC card reader and writer, coupled to the CATV
decoder and to the memory device reader and writer, and.including an IC card receptacle, wherein an IC card, inserted by the subscriber into the IC card receptacle and addressed by the IC
card reader and writer, provides access codes enabling access to the information carried in the memory device and to the CATV
transmissions.
Preferably, the access codes comprise at least one of seeds, keys and algorithms for decryption of encrypted data.
.._ s Additionally, at least part of the information is encrypted and at least one of the memory device, the IC card, the memory device reader and writer and the IC card reader and writer includes security level data determining the level of security employed in encryption of the at least part of the information.
Alternatively, at least part of~ the information is encrypted and the processor includes security level data determining the level of security employed in encryption of the at least part of the information. Yet alternatively, at least part of the information is encrypted and the CATV decoder includes security level data determining the level of security employed in encryption of the at least part of the information.
There is also provided in accordance with a preferred embodiment of the invention a method for accessing data stored in a memory device including:
providing a processor coupled to a memory device reader and writer and to an IC card reader and writer, wherein the memory device reader and writer includes a memory device receptacle and the IC card reader and writer includes an IC card receptacle;
inserting a memory device carrying data to be accessed into the memory device receptacle and addressing the memory device via the memory device reader and writer;
inserting an IC card into the IC card receptacle, and addressing the IC card via the IC card reader.and writer;
communicating data between the IC card and at least one of the IC card reader and writer, the memory device reader and writer, the processor and the memory device to determine at least one of authentication, validation and verification of at least one of the memory device and the IC card; and accessing the data carried in the memory device when the at least one of authentication, validation and verification of at least one of the memory device and the IC card is successfully terminated.
Further in accordance with a preferred embodiment of the present invention there is provided a method for accessing data including:
providing a CATV network and apparatus for transmitting over the CATV network CATV transmissions to a multiplicity of subscriber units each including a CATV decoder coupled to a memory device reader and writer and to an IC card reader and writer, wherein the memory device reader and writer includes a memory device receptacle and the IC card reader and writer includes an IC card receptacle;
inserting a memory device carrying data to be accessed into the memory device receptacle and addressing the memory device via the memory device reader and writer;
inserting an IC card into the IC card receptacle, and addressing the IC card via the IC card reader and writer;
communicating data between the IC card and at least one of the IC card reader and writer, the memory device reader and writer, the CATV decoder and the memory device to determine ~at least one of authentication, validation and verification of at least one of the memory device, the IC card and the CATV decoder;
and .._ _ accessing the data carried in the memory device and the CATV transmissions when the at least one of authentication, validation and verification of at least one of the memory device, the IC card and the CATV decoder is successfully terminated.
In accordance with another preferred embodiment of the present invention there is provided a method for accessing data in a CATV network, wherein CATV transmissions are transmitted to a multiplicity of subscriber units, each including a CATV decoder and a television, the method for accessing data including:
inserting an IC card into an IC card receptacle forming part of an IC card reader and writer coupled to the CATV decoder;
addressing the IC card to enable access to video data stored in a memory embodied in the IC card by communicating any of seeds, keys and access control algorithms with the CATV
decoder;
reading the data stored in the memory; and providing the data to the television.
There is also provided in accordance with a preferred embodiment of the present invention a CATV system including:
a CATV network; and apparatus for transmitting over the CATV network information to a multiplicity of subscriber units, each including:
a CATV decoder; and an IC card reader and writer, coupled to the CATv decoder, the IC card reader and writer including one IC card receptacle which accepts one IC card with two separate integrated circuits embodied within, wherein each of the separate integrated _2~5977~
circuits is separately accessed by the IC card reader aad writer.
_2~59~7 BRIEF DESCRIPTION OF THE DRAWINGS
The present invention will be understood and appreciated more fully from the following detailed description, taken in conjunction with the drawings in which: , Fig. 1 is a generalized block diagram illustration of a parental control system in a CATV system constructed and operative in accordance with a preferred embodiment of the present invention;
Fig. 2 is a flow chart illustration of the functionality of the parental control system of Fig. 1 in accordance with a preferred embodiment of the present invention;
Fig. 3 is an illustration of a card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention;
Fig. 4 is an illustration of a combined memory card and smart card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention;
' Fig. 5 is an illustration of an access system constructed and operative in accordanc a with a preferred embodiment of the invention;
Fig. 6 is an illustration of a data access system constructed and operative in accordance with a preferred embodiment of the invention;
Fig. 7 is an illustration of part of the system of Fig.
6 constructed and operative in accordance with a preferred embodiment of the invention; and Fig. 8 is a flow chart illustration of the 21~~~~~
functionality of the apparatus of Figs. 6 and 7 in accordance with a preferred embodiment of the invention.
2159~7~
DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS
Reference is now made to Fig. 1, which is a generalized illustration of a parental control system in a CATV system constructed and operative in accordance with a preferred embodiment of the present invention.
At a subscriber location a CATV decoder 10 is coupled to a television 12 via a coaxial cable 14. CATV decoder 10 is preferably fed from a CATV network (not shown) via a cable outlet 16 and a coaxial cable 18. CATV decoder 10 is preferably operated by a remote control (not shown) or a built-in keypad 20.
CATV decoder includes, at a front panel 22, two card receptacles 24 and 26. Preferably, card receptacles 24 and 26 may accept smart cards 28 and 30 respectively. Smart cards 28 and 30 are hereinafter referred to as the main card and the parent card respectively. CATV decoder 10 is operative to decrypt CATV
programs which are transmitted from a remote location under control of the main card and the parent card which are operative to participate in any of an authentication procedure, a validation procedure and a verification procedure and to provide program entitlements.
Reference is now made to Fig. 2 which is a flow chart diagram of the operation of the parental control system of Fig. 1 in accordance with a preferred embodiment of the present invention.
When the main card is inserted in the card receptacle 24 of Fig. 1 and the parent card is not present in card receptacle 26 of Fig. 1, only programs which are not restricted for viewing under parental control are decrypted so that they can be intelligibly viewed on television 12.
If both the main card and the parent card are inserted in card receptacles 24 and 26 respectively, both programs which are restricted for viewing under parental control and programs which are not restricted for viewing under parental control are intelligibly displayed on television 12. Thus the parent card enables decryption of restricted programs in the presence of the main card. If the main card is removed from card receptacle 24 none of the transmitted programs is decrypted. However, if the parent card is removed from card receptacle 26 only programs which are restricted for viewing under parental control are not decrypted.
In a preferred embodiment of the invention billing data is also kept in the main card. In that case the main card retains billing data of programs which are not restricted for viewing under parental control as well as billing data of programs which are restricted for viewing under parental control. Additionally, separate accounts may be held for restricted programs and for non-restricted programs. Preferably, the separate accounts may ' be accessed by separate accounting identification codes.
In another preferred embodiment of the invention the parent card may retain initialization data and algorithms for initialization of an authentication procedure~which is performed when the main card is changed. Most smart card based CATV systems require replacement of the smart cards, either periodically or upon suspect that the CATV system has been compromised. In that _21~9~7~
case, new smart cards are sent to the subscribers, generally by mail. However, since mailed smart cards are subject to possible theft, it is preferred that the mailed smart cards do not contain any entitlements or valuable data which may be stolen or compromised.
Preferably, the main card at a subscriber location may be frequently replaced while the parent card is seldom replaced.
In that case all entitlements and billing data remaining in the main card since last report to a billing facility may be transmitted to the parent card prior to replacement of the main card. When the subscriber receives a new main card and places it in card receptacle 24, the parent card automatically starts an initialization algorithm which employs two way communication between the parent card and the new main card to provide authentication, verification, validation or a combination authentication, verification and validation thereof of the main card. If the new main card is found to be valid the parent card transfers all entitlements for non-restricted programs and billing data, remaining in the old main card since last report to a billing facility, to the new main card. Thus, stealing of the new main card prior to performing the initialization algorithm provides no benefit to a thief.
It is to be appreciated that card receptacles 24 and 26 may be interchangeable so that each of the smart cards, i.e. the main card and the parent card, may be inserted in any of the card receptacles 24 and 26. In such a case a smart card reader/writer, incorporated within CATV decoder 10 of Fig. 1, determines which of the main card and the parent card are inserted in any of the _~159~~9 card receptacles 24 and 26. CATV decoder 10 is then operative to decrypt non-restricted programs when the main smart card is inserted in any of the card receptacles 24 and 26, and restricted programs when both the main card and the parent card are inserted in both card receptacles 24 and 26. ' Reference is now made to Fig. 3 which is an illustration of a card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention.
The card reader/writer unit of Fig. 3, generally denoted by reference numeral 50, may be embodied in various access systems, such as a CATV system. In that case, card reader/writer unit 50 may be part of a CATV decoder, such as CATV
decoder 10 (Fig. 1).
Card read/writer 50 includes two card sensors 52 and 54, a multiplexer/demultiplexer (MUX/DEMUX) 60, a CPU 62 and a memory 64. Card sensors 52 and 54 detect the. existence of smart cards 56 and 58 in the respective card receptacles. Card sensors 52 and 54 also read data stored in the smart cards 56 and 58 and provide it to MUX/DEMUX 60. MUX/DEMUX 60 provides multiplexed data received from both smart cards 56 and 58 to a CPU 62 and a memory 64.
In a write sequence, CPU 62 and memory 64 provide data to be written on at least one of the smart cards 56 and 58 'to MUX/DEMUX 60 which is operable to demultiplex the data and provide it to the respective card via the respective card sensors 52 and 54.
Reference is now made to Fig. 4 which is an illustration of a combined memory card and smart card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention.
Combined memory card and smart card reader/writer unit, generally denoted by reference numeral 70, includes a smart card reader/writer 72 which is capable of reading/writing a smart card 74 and a memory card reader/writer 76 which is capable of reading/writing a memory card 78. It is to be appreciated that memory card 78 may be an optical memory card, a magnetic memory card or a magnetic disk.
Combined memory card and smart card reader/writer unit 70 also includes a communication BUS 80, a CPU 82 and a memory 84. Smart card reader/writer 72 and memory card reader/writer 76 are operable to provide two-way communication with CPU 82 and memory 84 and with smart card 74 and memory card 78 via the communication BUS 80.
Reference is now made to Fig. 5 which is an illustration of an access system constructed and operative in accordance with a preferred embodiment of the invention.
The access system of Fig. 5, generally denoted by reference numeral 100, may be employed to provide access to restricted areas such as buildings, stadiums and departments. It is especially suitable for use with racetrack facilities where access to horses, stables and riders' rooms are restricted to' employees and key personnel only. Such applications require the features of personnel licensing and identification to be provided by the access system.
2159'~7~
In accordance with a preferred embodiment of the invention the access system 100 includes an identifier station 102 with two card receptacles 104 and 106 incorporated within.
Card receptacles 104 and 106 may accept a identification element 108 and an application element 110 respectively. License card 108 preferably includes personal and official information, as well as a digitized photograph to identify a card bearer, whereas application element 110 is the key to writing and reading all information stored in identification elements of the type of identification element 108. It is to be appreciated that when application element 110 is not present in card receptacle 10&
fresh data cannot be stored in identification element 108 and existing information is inaccessible.
Part of the information in identification element 108 is clear and part is encrypted. The,clear information may include the name and picture of the card bearer whereas the encrypted information may include the sites to which the.card bearer is entitled to enter, racetrack commission name, restrictions relevant to racing and history events. The clear information may be read by any suitable smart card reader and the output is intelligible. The encrypted information may also be read by any smart card reader but the output is not intelligibly reproduced, unless read by identifier station 102 with both application element 110 and identification element 108 present in the corresponding card receptacles.
In accordance with a preferred embodiment of the invention various security levels may be employed in the system.
_2159~7~
Preferably, a selected security level is part of the input entered in one of application element 110 and identification element 108 or in both application element 110 and identification element 108. The security level may be a number between 0 and 3, where 0 denotes no encryption and 3 denotes the highest level of encryption. Thus, identification element 108 may include security level 0 and application element 110 may include a security level between 1 to 3. Alternatively, both application element 110 and identification element 108 may be encrypted.
Preferably, access system 100 reads the information stored in application element 110 and identification element 108 and provides at least part of it to a computer 112 which displays the information on a display, which may be the computer display.
Alternatively, the information may be displayed on an internal display which is .incorporated within access system 100.
Preferably, the computer display and the internal display are suitable to display with high quality, the picture of the card bearer which is stored in the identification element 108.
Reference is now made to Fig. 6 which is an illustration of a data access system constructed and operative in accordance with a preferred embodiment of the invention.
The access system of Fig. 6, generally denoted by reference numeral 200, may be employed to provide access to restricted information such as computer generated information, video games, CD-ROM data and data stored on magnetic disks. In a preferred embodiment of the invention the access system is operable with a CATV system.
In accordance with a preferred embodiment of the invention a CATV decoder 210 at a subscriber location is coupled to a television 212 via a coaxial cable 214. CATV decoder 210 is preferably fed from a CATV network (not shown) via a cable outlet 216 and a coaxial cable 218. CATV decoder 210 is preferably operated by a remote control (not shown) or a built-in keypad 220.
CATV decoder 210 includes, at a front panel 222, a card receptacle 224 and a CD-ROM unit having a receptacle 226. CATV
decoder 210, incorporating the CD-ROM unit, is hereinafter described with reference to Fig. ?. Preferably, card receptacle 224 may accept a smart card 228. Alternatively, a magnetic card may be employed. In accordance with a preferred embodiment of the invention CATV decoder 210 is operative to decrypt CATV programs which are transmitted from a remote location, and games and data from a compact disk 230. The compact disk may preferably include games and data which are used in combination with data received from CATV transmissions.
It is to be appreciated that the CD-ROM unit may be replaced by an optical card unit, employing optical cards of the size of a credit-card, or a magnetic disk drive employing magnetic disks.
Reference is now made to Fig. 7 which is an illustration of a CATV decoder forming part of the system of Fig.
6, constructed and operative in accordance' with a preferred embodiment of the invention.
Video, audio and data signals are provided by a CATV
network (not shown) to a CATV receiver and tuner unit 252 in a 21~9~'~t~
--- .CATV decoder 250. Preferably, CATV receiver and tuner unit 252 includes all circuitry required to provide video and audio signals in a format suitable for display on a television set.
CATV receiver and tuner unit 252 may also include a compression/decompression unit 254 to decompress incoming compressed signals.
In a preferred embodiment of the invention a decrypter 256 is operable to decrypt encrypted transmissions prior to providing the video, audio and data signals to the television.
Decrypter 256 is operative to receive any of seeds, keys and decryption algorithms from a smart card 260 which is read by a smart card reader 258. Alternatively, decrypter 256 may receive seeds, keys and decryption algorithms via a CPU 262. CPU 262 is coupled to a CD-ROM controller 264 via a communication bus 266.
CD-ROM controller 264 is coupled to a CD-ROM unit 268 and is operative to control the operation of CD-ROM unit 268 in accordance with instructions received from CPU 262.
Preferably, smart card 260 also provides any of seeds, keys and decryption algorithms for enabling access to data in a compact disk (not shown) mounted in CD-ROM unit 268. In that case CPU 262 receives any of the seeds, keys and decryption algorithms from smart card 260 via smart card reader 258, and applies decryption algorithms to data received from CD-ROM unit 268 via CD-ROM controller 264. CPU 262 is also coupled to a memory to store and retrieve data in accordance with instructions received from a subscriber, via a subscriber input/output interface 272.
Subscriber input/output interface 272 is operable by the subscriber via keyboard 274 or a remote control (not shown}. In a 21~9~'~~
preferred embodiment of the invention CPU 262 may employ algorithms received from decrypter 256 and seeds or keys stored in memory 270 to decrypt the information received from the compact disk.
In the absence of smart card 260" or if~an invalid card is present, the information received from the CATV network and the information received from the compact disk are not decrypted.
Alternatively, separate entitlements may be provided to the subscriber, and CATV transmissions and compact disk data may be separately decrypted. It is to be appreciated that several levels of encryption may be employed so that the CATV transmissions have a higher level of security than the compact disk data, or vice versa.
In a preferred embodiment of the invention the data oa the compact disk is not encrypted, but access is denied unless a key is applied to access files on the compact disk.
Alternatively, access to the data on the compact disk may be denied or permitted by CPU 262 by controlling the operation of CD-ROM controller 264.
CPU 262 is also operative to provide information to be displayed on the television via an on-screen-display (OSD) 276.
OSD 276 prepares the data received from CPU 262 in a format suitable for display on a television set and provides the data to a television via CATV receiver and tuner unit-252.
It is to be appreciated that the systems of Figs. 6 and 7 may be operable in a stand-alone compact disk access system which is neither part of a CATV system nor coupled to a CATV
_21~~~~
system. Such a system may be a computer system in which access to a compact disk carrying data is required. In such a case the systems of Figs. 6 and 7 may be degraded to a system in which smart card 260 enables access to data on a compact disk only via CPU 262, which may be part of the above mentioned computer system. To achieve this, the CATV receiver and tuner unit 252 in Fig. 7 may be omitted, the television 212 may be replaced by a simple computer monitor, the compression/decompression unit 254 may be omitted, if compression/decompression of data is not required, and the connection to cable outlet 216 may be omitted.
If, however, compression/decompression of data is required the compression/decompression unit 254 may remain as an independent unit which is not part of CATV receiver and tuner unit 252. In that case compression/decompression unit 254 may be either part of the computer system or a separate unit thereof, and all data from encryptor 256, CPU 262 and OSD 276 may be received directly at compression/decompression unit 254.
Compression/decompression 254 will output data, including video data from a compact disk, to the computer monitor.
The case of stand-alone compact disk access system may be also captured as a special configuration of the systems of Figs. 6 and 7 in which CATV transmissions are not present.
Reference is now made to Fig. 8 which is a flow chart illustration of the functionality of the apparatus of Figs. 6 and 7 in accordance with a pref erred embodiment of the invention.
The CATV decoder of Fig. 7 may receive smart cards and any of CD-ROM, optical card and magnetic disk. A subscriber may enter selections via a remote control. If the subscriber does not insert his smart card into the card receptacle, programs and data transmitted via a CATV network remain scrambled. If the smart card is inserted in the card receptacle, the system checks if the subscriber is entitled to the selected service.
If the subscriber is not entitled to the selected service, transmissions and data regarding the selected service remain scrambled. If the subscriber is entitled to the selected service the system checks if the compact disk or the other data source is in the respective receptacle. If the data source is not in inserted in the receptacle, the system delivers a message "data source not in the slot". If the compact disk or data source is inserted in the card receptacle, the data is retrieved and decrypted and transmissions are descrambled so that the subscriber may make use of it.
It is to be appreciated that the systems of Figs. 6 and 7 and the method described in Fig. 8 may be realized with one card only. In that case the data source may be part of a smart card, so that the smart card includes a memory which is large enough to store application data which may be used either with CATV transmissions or as stand-alone.
Such application data may include the storage of video data, such as video clips or significant events in sports or politics. Alternatively, pictures, voice data, important computer data and music clips may be stored in the smart card. Iw a preferred embodiment of the invention application data may be stored in a read-only memory (ROM) in the smart card.
Alternatively, application data may be stored in a random-access 21~977~
memory (RAM) in the smart card. In that case the application data may be updated, periodically or upon request, via the CATV
network.
In accordance with another preferred embodiment of the invention, a smart card may comprise two integrated circuits. In such a case all the above mentioned access control functions performed with two cards, i.e. parental control, billing and access to areas, are now performed with one card only which incorporates two integrated circuits. For the cases is which access to data is required one integrated circuit is employed for access control and security and the second integrated circuit is mainly employed for data storage. Data from the second integrated circuit is pulled upon authorization from the first integrated circuit. The advantage of such a configuration is that all communications between the two integrated circuits are performed inside the smart card so that hacking becomes more difficult.
It will be appreciated by persons skilled in the art that the present invention is not limited by what has been particularly shown and described hereinabove. Rather the scope of the present invention is defined only by the claims which follow:
encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of tMe CATV programs are rated for viewing under parental control, a CATV parental control system including:
a first IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are not rated for viewing under parental control;
a second IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are rated for viewing under parental control;
an IC card reader and writer coupled to the CATV
decoder;
first and second IC card receptacles coupled to the IC
card reader and writer, wherein the first and second IC cards communicate with the IC card reader and writer when inserted in the respective IC card receptacles; and a decrypter decrypting the programs which are not rated for viewing under parental control in response to receiving the at least one of decryption seeds, decryption keys and algorithms for decryption from the first IC card, and decrypting the programs which are rated for viewing under parental control ~in response to receiving the at least one of decryption seeds, decryption keys and algorithms for decryption from the first IC
card and the at least one of decryption seeds, decryption keys 2~~97'~~
._ and algorithms for decryption from the second IC card.
Additionally, there is also provided in accordance with a preferred embodiment of the present invention a parental control method for use in a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity~of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, the method of exercising parental control including:
providing an IC card reader and writer coupled to the CATV decoder;
inserting a first IC card in a first IC card receptacle coupled to the CATV reader and writer;
addressing the first IC card via the CATV reader and writer to provide at least one of authentication, verification, validation and program entitlements of the first IC card;
enabling decryption of programs which do not require parental control in response to providing the at least one of authentication, verification, validation and program entitlements of the first IC card;
inserting a second IC card in a second IC card receptacle coupled to the CATV reader and writer;
verifying that the first IC card is in the first IC
card receptacle;
addressing the second IC card via the CATV reader and writer to provide at least one of authentication, verification, validation and program entitlements of the second IC card; and enabling decryption of programs which require parental control in response to providing the at least one of authentication, verification, validation and program entitlements of the first IC card and of the second IC card.
In accordance with another preferred embodiment of the present invention there is also provided a CATV access method, wherein CATV programs are transmitted via a CATV network to a multiplicity of subscriber units, each including a CATV decoder, the CATV access method including:
providing an IC card reader and writer, coupled to the CATV decoder, and to two separate IC card receptacles; and separately addressing IC cards inserted into the two separate IC card receptacles to provide data enabling access to CATV transmissions.
Preferably, the method of exercising parental control also includes:
storing in the first IC card billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
Additionally, the method of exercising parental control also includes:
maintaining separate accounts for programs which require parental control and for programs which do not require parental control in the first IC card.
Preferably, the step of maintaining separate accounts comprises employing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
21~~~~~
Additionally, the first IC card also includes a memory for storing billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
Yet additionally, the CATV parental control system also includes storage means for maintaining separate accounts for programs which require parental control and for~programs which do not require parental control in the first IC card.
Further in accordance with a preferred embodiment of the present invention the CATV parental control system also includes a processor for providing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
In accordance with a preferred embodiment of the present invention there is provided an IC card initialization system in a CATV system wherein access to CATV transmissions is provided by two IC cards, at least one of which being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, the IC card initialization system including a communicator communicating between a first IC
card and a second IC card and providing data from a first IC card to a second IC card.
Preferably, the IC card reader and writer may access each of the two IC card receptacles interchangeably.
Additionally, the first IC card and the second IC card are interchangeable.
There is also provided in accordance with a preferred embodiment of the invention an area access system including:
21~9'~79 an identifier station including two separate card receptacles, wherein cards inserted into the two separate card receptacles are addressed by the identifier station;
an identification element including personal and official information; and ' an application element including at least one of access keys, access seeds, and algorithms for enabling access to the information in the identification element, wherein the identification element and the application element are addressed by the identifier station to enable access to a restricted area in accordance With the information and the at least one of access keys, access seeds, and algorithms for enabling access to the information.
Preferably, the information includes identification information of a bearer of the identification element.
Additionally, the identification information includes a digitized picture of a bearer of the identification element. Yet additionally, the information includes information restricting access of a bearer of the identification element to a portion of the restricted area.
Preferably, part of the information is encrypted.
Additionally, at least one of the identification element and the application element include security level data determining the level of security employed in encryption of the part of the information. Additionally, the area access system also includes a display for displaying the digitized picture of the bearer of the identification element.
215~'~7~
In accordance with a preferred embodiment of the present invention there is also provided a method for accessing a restricted area including:
providing an identifier station including two separate card receptacles;
inserting an identification element including personal and official information in a first receptacle of the two separate card receptacles;
inserting an application element including at least one of access keys, access seeds, and algorithms for enabling access to the information in the identification element in a second receptacle of the two separate card receptacles;
addressing the identification element; and addressing the application element, wherein the identification element and the application element are addressed via the identifier station to enable access to a restricted area in accordance with the information and the at least one of access keys, access seeds, and algorithms for enabling access to the information.
In accordance with another preferred embodiment of the ' present invention there is provided a data access system including:
a processor;
a memory card reader and writer, coupled to the processor, and including a memory card receptacle, wherein a memory card carrying information to be accessed is inserted into the memory card receptacle and addressed by the memory card reader and writer; and 2I~9'~7~
an IC card reader and writer, coupled to the processor, and including an IC card receptacle, wherein an IC card, inserted into the IC card receptacle and addressed by the IC card reader and writer, provides access codes to enable access to the information carried in the memory card. , Further in accordance with a preferred embodiment of the invention there is also provided a data access system including:
a CATV network; and apparatus for transmitting over the CATV network CATV
transmissions to a multiplicity of subscriber units, each including:
a CATV decoder;
a memory device reader and writer, coupled to the CATV
decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into the memory device receptacle is addressed by the memory device reader and writer; and an IC card reader and writer, coupled to the CATV
decoder and to the memory device reader and writer, and.including an IC card receptacle, wherein an IC card, inserted by the subscriber into the IC card receptacle and addressed by the IC
card reader and writer, provides access codes enabling access to the information carried in the memory device and to the CATV
transmissions.
Preferably, the access codes comprise at least one of seeds, keys and algorithms for decryption of encrypted data.
.._ s Additionally, at least part of the information is encrypted and at least one of the memory device, the IC card, the memory device reader and writer and the IC card reader and writer includes security level data determining the level of security employed in encryption of the at least part of the information.
Alternatively, at least part of~ the information is encrypted and the processor includes security level data determining the level of security employed in encryption of the at least part of the information. Yet alternatively, at least part of the information is encrypted and the CATV decoder includes security level data determining the level of security employed in encryption of the at least part of the information.
There is also provided in accordance with a preferred embodiment of the invention a method for accessing data stored in a memory device including:
providing a processor coupled to a memory device reader and writer and to an IC card reader and writer, wherein the memory device reader and writer includes a memory device receptacle and the IC card reader and writer includes an IC card receptacle;
inserting a memory device carrying data to be accessed into the memory device receptacle and addressing the memory device via the memory device reader and writer;
inserting an IC card into the IC card receptacle, and addressing the IC card via the IC card reader.and writer;
communicating data between the IC card and at least one of the IC card reader and writer, the memory device reader and writer, the processor and the memory device to determine at least one of authentication, validation and verification of at least one of the memory device and the IC card; and accessing the data carried in the memory device when the at least one of authentication, validation and verification of at least one of the memory device and the IC card is successfully terminated.
Further in accordance with a preferred embodiment of the present invention there is provided a method for accessing data including:
providing a CATV network and apparatus for transmitting over the CATV network CATV transmissions to a multiplicity of subscriber units each including a CATV decoder coupled to a memory device reader and writer and to an IC card reader and writer, wherein the memory device reader and writer includes a memory device receptacle and the IC card reader and writer includes an IC card receptacle;
inserting a memory device carrying data to be accessed into the memory device receptacle and addressing the memory device via the memory device reader and writer;
inserting an IC card into the IC card receptacle, and addressing the IC card via the IC card reader and writer;
communicating data between the IC card and at least one of the IC card reader and writer, the memory device reader and writer, the CATV decoder and the memory device to determine ~at least one of authentication, validation and verification of at least one of the memory device, the IC card and the CATV decoder;
and .._ _ accessing the data carried in the memory device and the CATV transmissions when the at least one of authentication, validation and verification of at least one of the memory device, the IC card and the CATV decoder is successfully terminated.
In accordance with another preferred embodiment of the present invention there is provided a method for accessing data in a CATV network, wherein CATV transmissions are transmitted to a multiplicity of subscriber units, each including a CATV decoder and a television, the method for accessing data including:
inserting an IC card into an IC card receptacle forming part of an IC card reader and writer coupled to the CATV decoder;
addressing the IC card to enable access to video data stored in a memory embodied in the IC card by communicating any of seeds, keys and access control algorithms with the CATV
decoder;
reading the data stored in the memory; and providing the data to the television.
There is also provided in accordance with a preferred embodiment of the present invention a CATV system including:
a CATV network; and apparatus for transmitting over the CATV network information to a multiplicity of subscriber units, each including:
a CATV decoder; and an IC card reader and writer, coupled to the CATv decoder, the IC card reader and writer including one IC card receptacle which accepts one IC card with two separate integrated circuits embodied within, wherein each of the separate integrated _2~5977~
circuits is separately accessed by the IC card reader aad writer.
_2~59~7 BRIEF DESCRIPTION OF THE DRAWINGS
The present invention will be understood and appreciated more fully from the following detailed description, taken in conjunction with the drawings in which: , Fig. 1 is a generalized block diagram illustration of a parental control system in a CATV system constructed and operative in accordance with a preferred embodiment of the present invention;
Fig. 2 is a flow chart illustration of the functionality of the parental control system of Fig. 1 in accordance with a preferred embodiment of the present invention;
Fig. 3 is an illustration of a card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention;
Fig. 4 is an illustration of a combined memory card and smart card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention;
' Fig. 5 is an illustration of an access system constructed and operative in accordanc a with a preferred embodiment of the invention;
Fig. 6 is an illustration of a data access system constructed and operative in accordance with a preferred embodiment of the invention;
Fig. 7 is an illustration of part of the system of Fig.
6 constructed and operative in accordance with a preferred embodiment of the invention; and Fig. 8 is a flow chart illustration of the 21~~~~~
functionality of the apparatus of Figs. 6 and 7 in accordance with a preferred embodiment of the invention.
2159~7~
DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS
Reference is now made to Fig. 1, which is a generalized illustration of a parental control system in a CATV system constructed and operative in accordance with a preferred embodiment of the present invention.
At a subscriber location a CATV decoder 10 is coupled to a television 12 via a coaxial cable 14. CATV decoder 10 is preferably fed from a CATV network (not shown) via a cable outlet 16 and a coaxial cable 18. CATV decoder 10 is preferably operated by a remote control (not shown) or a built-in keypad 20.
CATV decoder includes, at a front panel 22, two card receptacles 24 and 26. Preferably, card receptacles 24 and 26 may accept smart cards 28 and 30 respectively. Smart cards 28 and 30 are hereinafter referred to as the main card and the parent card respectively. CATV decoder 10 is operative to decrypt CATV
programs which are transmitted from a remote location under control of the main card and the parent card which are operative to participate in any of an authentication procedure, a validation procedure and a verification procedure and to provide program entitlements.
Reference is now made to Fig. 2 which is a flow chart diagram of the operation of the parental control system of Fig. 1 in accordance with a preferred embodiment of the present invention.
When the main card is inserted in the card receptacle 24 of Fig. 1 and the parent card is not present in card receptacle 26 of Fig. 1, only programs which are not restricted for viewing under parental control are decrypted so that they can be intelligibly viewed on television 12.
If both the main card and the parent card are inserted in card receptacles 24 and 26 respectively, both programs which are restricted for viewing under parental control and programs which are not restricted for viewing under parental control are intelligibly displayed on television 12. Thus the parent card enables decryption of restricted programs in the presence of the main card. If the main card is removed from card receptacle 24 none of the transmitted programs is decrypted. However, if the parent card is removed from card receptacle 26 only programs which are restricted for viewing under parental control are not decrypted.
In a preferred embodiment of the invention billing data is also kept in the main card. In that case the main card retains billing data of programs which are not restricted for viewing under parental control as well as billing data of programs which are restricted for viewing under parental control. Additionally, separate accounts may be held for restricted programs and for non-restricted programs. Preferably, the separate accounts may ' be accessed by separate accounting identification codes.
In another preferred embodiment of the invention the parent card may retain initialization data and algorithms for initialization of an authentication procedure~which is performed when the main card is changed. Most smart card based CATV systems require replacement of the smart cards, either periodically or upon suspect that the CATV system has been compromised. In that _21~9~7~
case, new smart cards are sent to the subscribers, generally by mail. However, since mailed smart cards are subject to possible theft, it is preferred that the mailed smart cards do not contain any entitlements or valuable data which may be stolen or compromised.
Preferably, the main card at a subscriber location may be frequently replaced while the parent card is seldom replaced.
In that case all entitlements and billing data remaining in the main card since last report to a billing facility may be transmitted to the parent card prior to replacement of the main card. When the subscriber receives a new main card and places it in card receptacle 24, the parent card automatically starts an initialization algorithm which employs two way communication between the parent card and the new main card to provide authentication, verification, validation or a combination authentication, verification and validation thereof of the main card. If the new main card is found to be valid the parent card transfers all entitlements for non-restricted programs and billing data, remaining in the old main card since last report to a billing facility, to the new main card. Thus, stealing of the new main card prior to performing the initialization algorithm provides no benefit to a thief.
It is to be appreciated that card receptacles 24 and 26 may be interchangeable so that each of the smart cards, i.e. the main card and the parent card, may be inserted in any of the card receptacles 24 and 26. In such a case a smart card reader/writer, incorporated within CATV decoder 10 of Fig. 1, determines which of the main card and the parent card are inserted in any of the _~159~~9 card receptacles 24 and 26. CATV decoder 10 is then operative to decrypt non-restricted programs when the main smart card is inserted in any of the card receptacles 24 and 26, and restricted programs when both the main card and the parent card are inserted in both card receptacles 24 and 26. ' Reference is now made to Fig. 3 which is an illustration of a card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention.
The card reader/writer unit of Fig. 3, generally denoted by reference numeral 50, may be embodied in various access systems, such as a CATV system. In that case, card reader/writer unit 50 may be part of a CATV decoder, such as CATV
decoder 10 (Fig. 1).
Card read/writer 50 includes two card sensors 52 and 54, a multiplexer/demultiplexer (MUX/DEMUX) 60, a CPU 62 and a memory 64. Card sensors 52 and 54 detect the. existence of smart cards 56 and 58 in the respective card receptacles. Card sensors 52 and 54 also read data stored in the smart cards 56 and 58 and provide it to MUX/DEMUX 60. MUX/DEMUX 60 provides multiplexed data received from both smart cards 56 and 58 to a CPU 62 and a memory 64.
In a write sequence, CPU 62 and memory 64 provide data to be written on at least one of the smart cards 56 and 58 'to MUX/DEMUX 60 which is operable to demultiplex the data and provide it to the respective card via the respective card sensors 52 and 54.
Reference is now made to Fig. 4 which is an illustration of a combined memory card and smart card reader/writer unit constructed and operative in accordance with a preferred embodiment of the present invention.
Combined memory card and smart card reader/writer unit, generally denoted by reference numeral 70, includes a smart card reader/writer 72 which is capable of reading/writing a smart card 74 and a memory card reader/writer 76 which is capable of reading/writing a memory card 78. It is to be appreciated that memory card 78 may be an optical memory card, a magnetic memory card or a magnetic disk.
Combined memory card and smart card reader/writer unit 70 also includes a communication BUS 80, a CPU 82 and a memory 84. Smart card reader/writer 72 and memory card reader/writer 76 are operable to provide two-way communication with CPU 82 and memory 84 and with smart card 74 and memory card 78 via the communication BUS 80.
Reference is now made to Fig. 5 which is an illustration of an access system constructed and operative in accordance with a preferred embodiment of the invention.
The access system of Fig. 5, generally denoted by reference numeral 100, may be employed to provide access to restricted areas such as buildings, stadiums and departments. It is especially suitable for use with racetrack facilities where access to horses, stables and riders' rooms are restricted to' employees and key personnel only. Such applications require the features of personnel licensing and identification to be provided by the access system.
2159'~7~
In accordance with a preferred embodiment of the invention the access system 100 includes an identifier station 102 with two card receptacles 104 and 106 incorporated within.
Card receptacles 104 and 106 may accept a identification element 108 and an application element 110 respectively. License card 108 preferably includes personal and official information, as well as a digitized photograph to identify a card bearer, whereas application element 110 is the key to writing and reading all information stored in identification elements of the type of identification element 108. It is to be appreciated that when application element 110 is not present in card receptacle 10&
fresh data cannot be stored in identification element 108 and existing information is inaccessible.
Part of the information in identification element 108 is clear and part is encrypted. The,clear information may include the name and picture of the card bearer whereas the encrypted information may include the sites to which the.card bearer is entitled to enter, racetrack commission name, restrictions relevant to racing and history events. The clear information may be read by any suitable smart card reader and the output is intelligible. The encrypted information may also be read by any smart card reader but the output is not intelligibly reproduced, unless read by identifier station 102 with both application element 110 and identification element 108 present in the corresponding card receptacles.
In accordance with a preferred embodiment of the invention various security levels may be employed in the system.
_2159~7~
Preferably, a selected security level is part of the input entered in one of application element 110 and identification element 108 or in both application element 110 and identification element 108. The security level may be a number between 0 and 3, where 0 denotes no encryption and 3 denotes the highest level of encryption. Thus, identification element 108 may include security level 0 and application element 110 may include a security level between 1 to 3. Alternatively, both application element 110 and identification element 108 may be encrypted.
Preferably, access system 100 reads the information stored in application element 110 and identification element 108 and provides at least part of it to a computer 112 which displays the information on a display, which may be the computer display.
Alternatively, the information may be displayed on an internal display which is .incorporated within access system 100.
Preferably, the computer display and the internal display are suitable to display with high quality, the picture of the card bearer which is stored in the identification element 108.
Reference is now made to Fig. 6 which is an illustration of a data access system constructed and operative in accordance with a preferred embodiment of the invention.
The access system of Fig. 6, generally denoted by reference numeral 200, may be employed to provide access to restricted information such as computer generated information, video games, CD-ROM data and data stored on magnetic disks. In a preferred embodiment of the invention the access system is operable with a CATV system.
In accordance with a preferred embodiment of the invention a CATV decoder 210 at a subscriber location is coupled to a television 212 via a coaxial cable 214. CATV decoder 210 is preferably fed from a CATV network (not shown) via a cable outlet 216 and a coaxial cable 218. CATV decoder 210 is preferably operated by a remote control (not shown) or a built-in keypad 220.
CATV decoder 210 includes, at a front panel 222, a card receptacle 224 and a CD-ROM unit having a receptacle 226. CATV
decoder 210, incorporating the CD-ROM unit, is hereinafter described with reference to Fig. ?. Preferably, card receptacle 224 may accept a smart card 228. Alternatively, a magnetic card may be employed. In accordance with a preferred embodiment of the invention CATV decoder 210 is operative to decrypt CATV programs which are transmitted from a remote location, and games and data from a compact disk 230. The compact disk may preferably include games and data which are used in combination with data received from CATV transmissions.
It is to be appreciated that the CD-ROM unit may be replaced by an optical card unit, employing optical cards of the size of a credit-card, or a magnetic disk drive employing magnetic disks.
Reference is now made to Fig. 7 which is an illustration of a CATV decoder forming part of the system of Fig.
6, constructed and operative in accordance' with a preferred embodiment of the invention.
Video, audio and data signals are provided by a CATV
network (not shown) to a CATV receiver and tuner unit 252 in a 21~9~'~t~
--- .CATV decoder 250. Preferably, CATV receiver and tuner unit 252 includes all circuitry required to provide video and audio signals in a format suitable for display on a television set.
CATV receiver and tuner unit 252 may also include a compression/decompression unit 254 to decompress incoming compressed signals.
In a preferred embodiment of the invention a decrypter 256 is operable to decrypt encrypted transmissions prior to providing the video, audio and data signals to the television.
Decrypter 256 is operative to receive any of seeds, keys and decryption algorithms from a smart card 260 which is read by a smart card reader 258. Alternatively, decrypter 256 may receive seeds, keys and decryption algorithms via a CPU 262. CPU 262 is coupled to a CD-ROM controller 264 via a communication bus 266.
CD-ROM controller 264 is coupled to a CD-ROM unit 268 and is operative to control the operation of CD-ROM unit 268 in accordance with instructions received from CPU 262.
Preferably, smart card 260 also provides any of seeds, keys and decryption algorithms for enabling access to data in a compact disk (not shown) mounted in CD-ROM unit 268. In that case CPU 262 receives any of the seeds, keys and decryption algorithms from smart card 260 via smart card reader 258, and applies decryption algorithms to data received from CD-ROM unit 268 via CD-ROM controller 264. CPU 262 is also coupled to a memory to store and retrieve data in accordance with instructions received from a subscriber, via a subscriber input/output interface 272.
Subscriber input/output interface 272 is operable by the subscriber via keyboard 274 or a remote control (not shown}. In a 21~9~'~~
preferred embodiment of the invention CPU 262 may employ algorithms received from decrypter 256 and seeds or keys stored in memory 270 to decrypt the information received from the compact disk.
In the absence of smart card 260" or if~an invalid card is present, the information received from the CATV network and the information received from the compact disk are not decrypted.
Alternatively, separate entitlements may be provided to the subscriber, and CATV transmissions and compact disk data may be separately decrypted. It is to be appreciated that several levels of encryption may be employed so that the CATV transmissions have a higher level of security than the compact disk data, or vice versa.
In a preferred embodiment of the invention the data oa the compact disk is not encrypted, but access is denied unless a key is applied to access files on the compact disk.
Alternatively, access to the data on the compact disk may be denied or permitted by CPU 262 by controlling the operation of CD-ROM controller 264.
CPU 262 is also operative to provide information to be displayed on the television via an on-screen-display (OSD) 276.
OSD 276 prepares the data received from CPU 262 in a format suitable for display on a television set and provides the data to a television via CATV receiver and tuner unit-252.
It is to be appreciated that the systems of Figs. 6 and 7 may be operable in a stand-alone compact disk access system which is neither part of a CATV system nor coupled to a CATV
_21~~~~
system. Such a system may be a computer system in which access to a compact disk carrying data is required. In such a case the systems of Figs. 6 and 7 may be degraded to a system in which smart card 260 enables access to data on a compact disk only via CPU 262, which may be part of the above mentioned computer system. To achieve this, the CATV receiver and tuner unit 252 in Fig. 7 may be omitted, the television 212 may be replaced by a simple computer monitor, the compression/decompression unit 254 may be omitted, if compression/decompression of data is not required, and the connection to cable outlet 216 may be omitted.
If, however, compression/decompression of data is required the compression/decompression unit 254 may remain as an independent unit which is not part of CATV receiver and tuner unit 252. In that case compression/decompression unit 254 may be either part of the computer system or a separate unit thereof, and all data from encryptor 256, CPU 262 and OSD 276 may be received directly at compression/decompression unit 254.
Compression/decompression 254 will output data, including video data from a compact disk, to the computer monitor.
The case of stand-alone compact disk access system may be also captured as a special configuration of the systems of Figs. 6 and 7 in which CATV transmissions are not present.
Reference is now made to Fig. 8 which is a flow chart illustration of the functionality of the apparatus of Figs. 6 and 7 in accordance with a pref erred embodiment of the invention.
The CATV decoder of Fig. 7 may receive smart cards and any of CD-ROM, optical card and magnetic disk. A subscriber may enter selections via a remote control. If the subscriber does not insert his smart card into the card receptacle, programs and data transmitted via a CATV network remain scrambled. If the smart card is inserted in the card receptacle, the system checks if the subscriber is entitled to the selected service.
If the subscriber is not entitled to the selected service, transmissions and data regarding the selected service remain scrambled. If the subscriber is entitled to the selected service the system checks if the compact disk or the other data source is in the respective receptacle. If the data source is not in inserted in the receptacle, the system delivers a message "data source not in the slot". If the compact disk or data source is inserted in the card receptacle, the data is retrieved and decrypted and transmissions are descrambled so that the subscriber may make use of it.
It is to be appreciated that the systems of Figs. 6 and 7 and the method described in Fig. 8 may be realized with one card only. In that case the data source may be part of a smart card, so that the smart card includes a memory which is large enough to store application data which may be used either with CATV transmissions or as stand-alone.
Such application data may include the storage of video data, such as video clips or significant events in sports or politics. Alternatively, pictures, voice data, important computer data and music clips may be stored in the smart card. Iw a preferred embodiment of the invention application data may be stored in a read-only memory (ROM) in the smart card.
Alternatively, application data may be stored in a random-access 21~977~
memory (RAM) in the smart card. In that case the application data may be updated, periodically or upon request, via the CATV
network.
In accordance with another preferred embodiment of the invention, a smart card may comprise two integrated circuits. In such a case all the above mentioned access control functions performed with two cards, i.e. parental control, billing and access to areas, are now performed with one card only which incorporates two integrated circuits. For the cases is which access to data is required one integrated circuit is employed for access control and security and the second integrated circuit is mainly employed for data storage. Data from the second integrated circuit is pulled upon authorization from the first integrated circuit. The advantage of such a configuration is that all communications between the two integrated circuits are performed inside the smart card so that hacking becomes more difficult.
It will be appreciated by persons skilled in the art that the present invention is not limited by what has been particularly shown and described hereinabove. Rather the scope of the present invention is defined only by the claims which follow:
Claims (61)
1. In a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, a CATV parental control system comprising:
a first IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are not rated for viewing under parental control;
a second IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are rated for viewing under parental control;
an IC card reader and writer coupled to said CATV decoder;
first and second IC card receptacles coupled to said IC card reader and writer, wherein said first and second IC cards communicate with said IC card reader and writer when inserted in the respective IC card receptacles; and a decrypter for decrypting said programs which are not rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC
card, and for decrypting said programs which are rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC card and said at least one of decryption seeds, decryption keys and algorithms for decryption from said second IC card.
a first IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are not rated for viewing under parental control;
a second IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are rated for viewing under parental control;
an IC card reader and writer coupled to said CATV decoder;
first and second IC card receptacles coupled to said IC card reader and writer, wherein said first and second IC cards communicate with said IC card reader and writer when inserted in the respective IC card receptacles; and a decrypter for decrypting said programs which are not rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC
card, and for decrypting said programs which are rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC card and said at least one of decryption seeds, decryption keys and algorithms for decryption from said second IC card.
2. A CATV parental control system according to claim 1 and wherein said first IC card also includes a memory for storing billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
3. A CATV parental control system according to claim 2 and also comprising storage means for maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
4. A CATV parental control system according to claim 3 and also comprising a processor for providing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
5. A CATV parental control system according to claim 1 and also comprising storage means for maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
6. A CATV parental control system according to claim 5 and also comprising a processor for providing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
7. A CATV system according to claim 1 and wherein said first IC card and said second IC card are interchangeable.
8. For use with a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, a method of exercising parental control comprising:
providing an IC card reader and writer coupled to said CATV
decoder;
inserting a first IC card in a first IC card receptacle coupled to said IC
card reader and writer;
addressing said first IC card via said IC card reader and writer to provide at least one of authentication, verification, validation and program entitlements of said first IC card;
enabling decryption of programs which do not require parental control in response to providing said at least one of authentication, verification, validation and program entitlements of said first IC card;
inserting a second IC card in a second IC card receptacle coupled to said IC card reader and writer;
verifying that said first IC card is in said first IC card receptacle;
addressing said second IC card via said IC card reader and writer to provide at least one of authentication, verification, validation and program entitlements of said second IC card; and enabling decryption of programs which require parental control in response to providing said at least one of authentication, verification, validation and program entitlements of said first IC card and of said second IC card.
providing an IC card reader and writer coupled to said CATV
decoder;
inserting a first IC card in a first IC card receptacle coupled to said IC
card reader and writer;
addressing said first IC card via said IC card reader and writer to provide at least one of authentication, verification, validation and program entitlements of said first IC card;
enabling decryption of programs which do not require parental control in response to providing said at least one of authentication, verification, validation and program entitlements of said first IC card;
inserting a second IC card in a second IC card receptacle coupled to said IC card reader and writer;
verifying that said first IC card is in said first IC card receptacle;
addressing said second IC card via said IC card reader and writer to provide at least one of authentication, verification, validation and program entitlements of said second IC card; and enabling decryption of programs which require parental control in response to providing said at least one of authentication, verification, validation and program entitlements of said first IC card and of said second IC card.
9. A method of exercising parental control according to claim 8 and also comprising:
storing in said first IC card billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
storing in said first IC card billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
10. A method of exercising parental control according to claim 9 and also comprising:
maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
11. A method of exercising parental control according to claim 10 and wherein said maintaining separate accounts comprises employing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
12. A method of exercising parental control according to claim 8 and also comprising:
maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
13. A method of exercising parental control according to claim 12 and wherein said maintaining separate accounts comprises employing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
14. A method of exercising parental control according to claim 8 and wherein said first IC card and said second IC card are interchangeable.
15. In a CATV system wherein access to CATV transmissions is provided by a first IC card and by a second IC card which are insertable in two separate IC
card receptacles in a CATV decoder, said first IC card being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, a card initialization system comprising:
a communicator for providing two way communication between said first IC card and said second IC card to enable at least one of authentication, verification and validation of said first IC card, wherein said first IC card and said second IC are simultaneously inserted in said two separate IC card receptacles.
card receptacles in a CATV decoder, said first IC card being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, a card initialization system comprising:
a communicator for providing two way communication between said first IC card and said second IC card to enable at least one of authentication, verification and validation of said first IC card, wherein said first IC card and said second IC are simultaneously inserted in said two separate IC card receptacles.
16. A method for initializing a card in a CATV system wherein access to CATV transmissions is provided by a first IC card and by a second IC card which are insertable in two separate IC card receptacles in a CATV decoder, said first IC
card being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, the method comprising:
simultaneously inserting said first IC card and said second IC card in said two separate IC card receptacles; and providing two way communication between said first IC card and said second IC card to enable at least one of authentication, verification and validation of said first IC card.
card being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, the method comprising:
simultaneously inserting said first IC card and said second IC card in said two separate IC card receptacles; and providing two way communication between said first IC card and said second IC card to enable at least one of authentication, verification and validation of said first IC card.
17. An area access system comprising:
an identifier station including two separate card receptacles, wherein cards inserted into said two separate card receptacles are addressed by said identifier station;
an identification element including personal and official information, wherein at least part of the information is encrypted; and an application element including at least one of access keys, access seeds, and algorithms for enabling access to said information in said identification element, wherein said identification element and said application element are addressed by said identifier station to enable access to a restricted area in accordance with said information and said at least one of access keys, access seeds, and algorithms for enabling access to said information, and wherein at least one of said identification element and said application element includes security level data determining the level of encryption of said part of the information which is encrypted.
an identifier station including two separate card receptacles, wherein cards inserted into said two separate card receptacles are addressed by said identifier station;
an identification element including personal and official information, wherein at least part of the information is encrypted; and an application element including at least one of access keys, access seeds, and algorithms for enabling access to said information in said identification element, wherein said identification element and said application element are addressed by said identifier station to enable access to a restricted area in accordance with said information and said at least one of access keys, access seeds, and algorithms for enabling access to said information, and wherein at least one of said identification element and said application element includes security level data determining the level of encryption of said part of the information which is encrypted.
18. An area access system according to claim 17 wherein said information includes identification information of a bearer of said identification element.
19. An area access system according to claim 17 wherein said identification information includes a digitized picture of a bearer of said identification element.
20. An area access system according to claim 19 and also comprising a display for displaying said digitized picture of said bearer of said identification element.
21. An area access system according to claim 17 wherein said information includes information restricting access of a bearer of said identification element to a portion of said restricted area.
22. A method for accessing a restricted area comprising:
providing an identifier station including two separate card receptacles;
inserting an identification element including personal and official information in a first receptacle of said two separate card receptacles, wherein at least part of said information is encrypted;
inserting an application element including at least one of access keys, access seeds, and algorithms for enabling access to said information in said identification element in a second receptacle of said two separate card receptacles;
addressing said identification element; and addressing said application element, wherein said identification element and said application element are addressed via said identifier station to enable access to a restricted area in accordance with said information and said at least one of access keys, access seeds, and algorithms for enabling access to said information, and wherein at least one of said identification element and said application element includes security level data determining the level of encryption of said part of said information which is encrypted.
providing an identifier station including two separate card receptacles;
inserting an identification element including personal and official information in a first receptacle of said two separate card receptacles, wherein at least part of said information is encrypted;
inserting an application element including at least one of access keys, access seeds, and algorithms for enabling access to said information in said identification element in a second receptacle of said two separate card receptacles;
addressing said identification element; and addressing said application element, wherein said identification element and said application element are addressed via said identifier station to enable access to a restricted area in accordance with said information and said at least one of access keys, access seeds, and algorithms for enabling access to said information, and wherein at least one of said identification element and said application element includes security level data determining the level of encryption of said part of said information which is encrypted.
23. A data access system comprising:
a processor;
a memory card reader and writer, coupled to said processor, and including a memory card receptacle, wherein a memory card carrying encrypted information to be accessed is inserted into said memory card receptacle and addressed by said memory card reader and writer; and an IC card reader and writer, coupled to said processor, and including an IC card receptacle, wherein an IC card, inserted into said IC card receptacle and addressed by said IC card reader and writer, provides access codes to enable access to said information carried in said memory card, and wherein at least one of said memory card, said IC card, said memory card reader and writer and said IC card reader and writer includes security level data determining the level of encryption of said encrypted information.
a processor;
a memory card reader and writer, coupled to said processor, and including a memory card receptacle, wherein a memory card carrying encrypted information to be accessed is inserted into said memory card receptacle and addressed by said memory card reader and writer; and an IC card reader and writer, coupled to said processor, and including an IC card receptacle, wherein an IC card, inserted into said IC card receptacle and addressed by said IC card reader and writer, provides access codes to enable access to said information carried in said memory card, and wherein at least one of said memory card, said IC card, said memory card reader and writer and said IC card reader and writer includes security level data determining the level of encryption of said encrypted information.
24. A data access system according to claim 23 and wherein said access codes comprise at least one of seeds, keys and algorithms for decryption of said information.
25. A data access system comprising;
a CATV network; and apparatus for transmitting over said CATV network CATV
transmissions to a multiplicity of subscriber units, each including:
a CATV decoder;
a memory device reader and writer, coupled to said CATV decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into said memory device receptacle is addressed by said memory device reader and writer; and an IC card reader and writer, coupled to said CATV decoder and to said memory device reader and writer, and including an IC card receptacle, wherein an IC card, inserted by said subscriber into said IC card receptacle and addressed by said IC card reader and writer, provides access codes having separate security levels which comprise separate decryption levels for enabling access to said information carried in said memory device and to said CATV transmissions.
a CATV network; and apparatus for transmitting over said CATV network CATV
transmissions to a multiplicity of subscriber units, each including:
a CATV decoder;
a memory device reader and writer, coupled to said CATV decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into said memory device receptacle is addressed by said memory device reader and writer; and an IC card reader and writer, coupled to said CATV decoder and to said memory device reader and writer, and including an IC card receptacle, wherein an IC card, inserted by said subscriber into said IC card receptacle and addressed by said IC card reader and writer, provides access codes having separate security levels which comprise separate decryption levels for enabling access to said information carried in said memory device and to said CATV transmissions.
26. A data access system according to claim 25 and wherein said access codes comprise at least one of seeds, keys and algorithms for decryption of said information.
27. A data access system according to claim 26 and wherein at least part of said information is encrypted and said CATV decoder includes security level data determining the level of security employed in encryption of said at least part of said information.
28. A data access system according to claim 25 and wherein at least part of said information is encrypted and at least one of said memory device, said IC
card, said memory device reader and writer and said IC card reader and writer includes security level data determining the level of security employed in encryption of said at least part of said information.
card, said memory device reader and writer and said IC card reader and writer includes security level data determining the level of security employed in encryption of said at least part of said information.
29. A data access system according to claim 25 and wherein at least part of said information is encrypted and said data access system further includes a processor having security level data determining the level of security employed in encryption of said at least part of said information.
30. A data access system according to claim 25 and wherein at least part of said information is encrypted and said CATV decoder includes security level data determining the level of security employed in encryption of said at least part of said information.
31. A method for accessing data comprising:
providing a CATV network and apparatus for transmitting over said CATV network CATV transmissions to a multiplicity of subscriber units each including a CATV decoder coupled to a memory device reader and writer and to an IC card reader and writer, wherein said memory device reader and writer includes a memory device receptacle and said IC card reader and writer includes an IC
card receptacle;
inserting a memory device carrying data to be accessed into said memory device receptacle and addressing said memory device via said memory device reader and writer;
inserting an IC card into said IC card receptacle, and addressing said IC card via said IC card reader and writer;
communicating access codes between said IC card and at least one of said IC card reader and writer, said memory device reader and writer, said CATV
decoder and said memory device; and employing separate security levels having separate decryption levels for enabling access to said data carried in said memory device and to said CATV
transmissions.
providing a CATV network and apparatus for transmitting over said CATV network CATV transmissions to a multiplicity of subscriber units each including a CATV decoder coupled to a memory device reader and writer and to an IC card reader and writer, wherein said memory device reader and writer includes a memory device receptacle and said IC card reader and writer includes an IC
card receptacle;
inserting a memory device carrying data to be accessed into said memory device receptacle and addressing said memory device via said memory device reader and writer;
inserting an IC card into said IC card receptacle, and addressing said IC card via said IC card reader and writer;
communicating access codes between said IC card and at least one of said IC card reader and writer, said memory device reader and writer, said CATV
decoder and said memory device; and employing separate security levels having separate decryption levels for enabling access to said data carried in said memory device and to said CATV
transmissions.
32. A data access system comprising:
a CATV network; and apparatus for transmitting over said CATV network CATV
transmissions to a multiplicity of subscriber units, each including:
a CATV decoder;
a memory device reader and writer, coupled to said CATV decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into said memory device receptacle is addressed by said memory device reader and writer;
an IC card reader and writer, coupled to said CATV decoder and to said memory device reader and writer, and including an IC card receptacle, wherein an IC card, inserted by said subscriber into said IC card receptacle, is addressed by said IC card reader and writer; and a processor coupled to said CATV decoder, to said memory device reader and writer and to said IC card reader and writer, wherein said processor includes access codes having separate security levels comprising separate decryption levels for enabling access to said information carried in said memory device and to said CATV transmissions.
a CATV network; and apparatus for transmitting over said CATV network CATV
transmissions to a multiplicity of subscriber units, each including:
a CATV decoder;
a memory device reader and writer, coupled to said CATV decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into said memory device receptacle is addressed by said memory device reader and writer;
an IC card reader and writer, coupled to said CATV decoder and to said memory device reader and writer, and including an IC card receptacle, wherein an IC card, inserted by said subscriber into said IC card receptacle, is addressed by said IC card reader and writer; and a processor coupled to said CATV decoder, to said memory device reader and writer and to said IC card reader and writer, wherein said processor includes access codes having separate security levels comprising separate decryption levels for enabling access to said information carried in said memory device and to said CATV transmissions.
33. A method for accessing data stored in a memory device comprising:
providing a processor coupled to a memory device reader and writer and to an IC card reader and writer, wherein said memory device reader and writer includes a memory device receptacle and said IC card reader and writer includes an IC card receptacle;
inserting a memory device carrying encrypted data to be accessed into said memory device receptacle and addressing said memory device via said memory device reader and writer;
inserting an IC card into said IC card receptacle, and addressing said IC card via said IC card reader and writer;
communicating at least one access code between said IC card and at least one of said IC card reader and writer, said memory device reader and writer, said processor and said memory device; and accessing said data carried in said memory device in accordance with security level data determining the level of encryption of said encrypted data and included in at least one of said memory device, said IC card, said memory device reader and writer and said IC card reader and writer.
providing a processor coupled to a memory device reader and writer and to an IC card reader and writer, wherein said memory device reader and writer includes a memory device receptacle and said IC card reader and writer includes an IC card receptacle;
inserting a memory device carrying encrypted data to be accessed into said memory device receptacle and addressing said memory device via said memory device reader and writer;
inserting an IC card into said IC card receptacle, and addressing said IC card via said IC card reader and writer;
communicating at least one access code between said IC card and at least one of said IC card reader and writer, said memory device reader and writer, said processor and said memory device; and accessing said data carried in said memory device in accordance with security level data determining the level of encryption of said encrypted data and included in at least one of said memory device, said IC card, said memory device reader and writer and said IC card reader and writer.
34. A data access system comprising:
a processor;
a memory card reader and writer, coupled to said processor, and including a memory card receptacle, wherein a memory card carrying encrypted information to be accessed is inserted into said memory card receptacle and addressed by said memory card reader and writer; and an IC card reader and writer, coupled to said processor, and including an IC card receptacle, wherein an IC card, inserted into said IC card receptacle and addressed by said IC card reader and writer, provides at least one access code to enable access to said information carried in said memory card, and wherein said processor includes security level data determining the level of encryption of said information.
a processor;
a memory card reader and writer, coupled to said processor, and including a memory card receptacle, wherein a memory card carrying encrypted information to be accessed is inserted into said memory card receptacle and addressed by said memory card reader and writer; and an IC card reader and writer, coupled to said processor, and including an IC card receptacle, wherein an IC card, inserted into said IC card receptacle and addressed by said IC card reader and writer, provides at least one access code to enable access to said information carried in said memory card, and wherein said processor includes security level data determining the level of encryption of said information.
35. A CATV system comprising:
a CATV network; and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each including:
a CATV decoder; and an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including one IC card receptacle which accepts one IC
card with two separate integrated circuits embodied within, wherein each of said separate integrated circuits is separately accessed by said IC card reader and writer.
a CATV network; and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each including:
a CATV decoder; and an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including one IC card receptacle which accepts one IC
card with two separate integrated circuits embodied within, wherein each of said separate integrated circuits is separately accessed by said IC card reader and writer.
36. A system according to claim 35 and wherein at least one of said IC
card reader and writer and said IC card includes information defining, a plurality of distinct decryption levels for enabling access to information carried in at least one of said two separate integrated circuits embodied within the IC card.
card reader and writer and said IC card includes information defining, a plurality of distinct decryption levels for enabling access to information carried in at least one of said two separate integrated circuits embodied within the IC card.
37. A system according to claim 35 and wherein said IC card reader and writer includes a communicator for providing two way communication between said first integrated circuit and said second integrated circuit to enable at least one of authentication, verification and validation of said IC card.
38. In a CATV network, wherein CATV transmissions are transmitted to a multiplicity of subscriber units, each including a CATV decoder, a method for accessing data comprising:
inserting an IC card, having a first integrated circuit and a second integrated circuit embodied within, into an IC card receptacle forming part of an IC
card reader and writer coupled to said CATV decoder; and separately addressing said first integrated circuit and said second integrated circuit.
inserting an IC card, having a first integrated circuit and a second integrated circuit embodied within, into an IC card receptacle forming part of an IC
card reader and writer coupled to said CATV decoder; and separately addressing said first integrated circuit and said second integrated circuit.
39. A method according to claim 38 and comprising the step of providing two way communication between said first integrated circuit and said second integrated circuit to enable at least one of authentication, verification and validation of said IC card.
40. A method according to claim 38 and wherein said addressing step includes employing a plurality of distinct decryption levels for accessing data stored in said IC card.
41. A subscriber unit for use with a CATV system comprising a CATV
network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, the subscriber unit comprising:
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including one IC card receptacle which accepts one IC
card with two separate integrated circuits embodied within, wherein each of said separate integrated circuits is separately accessed by said IC card reader and writer.
network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, the subscriber unit comprising:
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including one IC card receptacle which accepts one IC
card with two separate integrated circuits embodied within, wherein each of said separate integrated circuits is separately accessed by said IC card reader and writer.
42. In a CATV network, wherein CATV transmissions are transmitted to a multiplicity of subscriber units, each including a CATV decoder and a television, a method for accessing data comprising:
inserting an IC card into an IC card receptacle forming part of an IC
card reader and writer coupled to said CATV decoder;
addressing said IC card to enable access to video data stored in a memory embodied in said IC card by communicating any of seeds, keys and access control algorithms from said IC card to said CATV decoder;
reading said data stored in said memory; and providing said data to said television, wherein said addressing step includes employing a plurality of distinct decryption levels for decrypting said video data.
inserting an IC card into an IC card receptacle forming part of an IC
card reader and writer coupled to said CATV decoder;
addressing said IC card to enable access to video data stored in a memory embodied in said IC card by communicating any of seeds, keys and access control algorithms from said IC card to said CATV decoder;
reading said data stored in said memory; and providing said data to said television, wherein said addressing step includes employing a plurality of distinct decryption levels for decrypting said video data.
43. A CATV system comprising:
a CATV network; and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each subscriber unit including:
a display;
a CATV decoder, an IC card reader and writer coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card having a memory which includes video data, wherein said video data is retrieved from said memory and provided to said display upon execution of one of an authentication algorithm, a verification algorithm and a validation algorithm in which said IC card communicates any of seeds, keys and access control algorithms to said CATV decoder, wherein at least one of said IC card reader and writer and said IC card includes information defining a plurality of distinct decryption levels for enabling access to said video data.
a CATV network; and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each subscriber unit including:
a display;
a CATV decoder, an IC card reader and writer coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card having a memory which includes video data, wherein said video data is retrieved from said memory and provided to said display upon execution of one of an authentication algorithm, a verification algorithm and a validation algorithm in which said IC card communicates any of seeds, keys and access control algorithms to said CATV decoder, wherein at least one of said IC card reader and writer and said IC card includes information defining a plurality of distinct decryption levels for enabling access to said video data.
44. A CATV system comprising:
a CATV network; and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each subscriber unit including a display;
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card including information defining a plurality of distinct decryption levels and a memory which includes video data, wherein said information is employed to enable access to said video data in said memory.
a CATV network; and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each subscriber unit including a display;
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card including information defining a plurality of distinct decryption levels and a memory which includes video data, wherein said information is employed to enable access to said video data in said memory.
45. A CATV system according to claim 44 and wherein said CATV
decoder includes security level data determining the level of encryption of said video data.
decoder includes security level data determining the level of encryption of said video data.
46. A data access system comprising:
a processor;
an IC card reader and writer, coupled to said processor, and including an IC card receptacle; and an IC card, which is insertable into said IC card receptacle, and having a memory which includes video data to be accessed by said processor, wherein said processor includes security level data determining the level of encryption of said video data.
a processor;
an IC card reader and writer, coupled to said processor, and including an IC card receptacle; and an IC card, which is insertable into said IC card receptacle, and having a memory which includes video data to be accessed by said processor, wherein said processor includes security level data determining the level of encryption of said video data.
47. A data access system according to claim 46 and wherein said security level data comprise at least one of seeds, keys and algorithms for decryption of said video data.
48. A data access system according to claim 46 and wherein at least one of said IC card, and said IC card reader and writer includes security level data determining the level of encryption of said video data.
49. An IC card for providing access to video data via a device external to the IC card, the IC card comprising:
a memory operative to stare video data, wherein said IC card includes information defining a plurality of distinct decryption levels for enabling access to said video data, and said video data is retrieved from said memory and provided to said device based at least in part, on said information.
a memory operative to stare video data, wherein said IC card includes information defining a plurality of distinct decryption levels for enabling access to said video data, and said video data is retrieved from said memory and provided to said device based at least in part, on said information.
50. A subscriber unit for use with a CATV system comprising a CATV network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, the subscriber unit comprising a display.
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card having a memory which includes video data, wherein said video data is retrieved from said memory and provided to said display upon execution of one of an authentication algorithm, a verification algorithm and a validation algorithm in which said IC card communicates any of seeds, keys and access control algorithms to said CATV decoder.
wherein at least one of said IC card reader and writer and said IC card includes information defining a plurality of distinct decryption levels for enabling access to said video data.
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card having a memory which includes video data, wherein said video data is retrieved from said memory and provided to said display upon execution of one of an authentication algorithm, a verification algorithm and a validation algorithm in which said IC card communicates any of seeds, keys and access control algorithms to said CATV decoder.
wherein at least one of said IC card reader and writer and said IC card includes information defining a plurality of distinct decryption levels for enabling access to said video data.
51. A subscriber unit for use with a CATV system comprising a CATV
network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, the subscriber unit comprising:
a display;
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card including information defining a plurality of distinct decryption levels and a memory which includes video data, wherein said information is employed to enable access to said video data in said memory.
network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, the subscriber unit comprising:
a display;
a CATV decoder;
an IC card reader and writer, coupled to said CATV decoder, said IC
card reader and writer including an IC card receptacle; and an IC card including information defining a plurality of distinct decryption levels and a memory which includes video data, wherein said information is employed to enable access to said video data in said memory.
52. A data access method far use in a CATV system comprising a CATV
network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each including a display, a CATV decoder, and an IC
card reader and writer, coupled to said CATV decoder, said IC card reader and writer including an IC card receptacle, the method comprising inserting an IC card including information defining a plurality of distinct decryption levels and a memory which includes video data into said IC
card receptacle, and employing said information to enable access to said video data in said memory.
network and apparatus for transmitting over said CATV network information to a multiplicity of subscriber units, each including a display, a CATV decoder, and an IC
card reader and writer, coupled to said CATV decoder, said IC card reader and writer including an IC card receptacle, the method comprising inserting an IC card including information defining a plurality of distinct decryption levels and a memory which includes video data into said IC
card receptacle, and employing said information to enable access to said video data in said memory.
53. A data access method comprising:
providing a processor including security level data;
providing an IC card reader and writer, coupled to said processor, and including an IC card receptacle;
inserting an IC card into said IC card receptacle, the IC card having a memory which includes video data to be accessed by said processor; and determining the level of encryption of said video data using said security level data.
providing a processor including security level data;
providing an IC card reader and writer, coupled to said processor, and including an IC card receptacle;
inserting an IC card into said IC card receptacle, the IC card having a memory which includes video data to be accessed by said processor; and determining the level of encryption of said video data using said security level data.
54. A method for controlling access to a plurality of items, the method comprising:
receiving a first IC card comprising first control information;
receiving a second IC card comprising second control information;
and allowing access to a first one of said plurality of items based, at least in part, on both said first control information and said second control information, wherein said step of allowing access comprises allowing access to a second one of said plurality of items based, at least in part on said first control information, without regard to said second control information.
receiving a first IC card comprising first control information;
receiving a second IC card comprising second control information;
and allowing access to a first one of said plurality of items based, at least in part, on both said first control information and said second control information, wherein said step of allowing access comprises allowing access to a second one of said plurality of items based, at least in part on said first control information, without regard to said second control information.
55. A method according to claim 54 and wherein said second control information comprises parental control information.
56. A method according to claim 54 and wherein said plurality of items comprises a plurality of television programs.
57. A method according to claim 54 and wherein said plurality of items comprises a plurality of digital messages.
58. A method according to claim 57 and wherein at least one of said plurality of digital messages comprises a computer program.
59. A method according to claim 57 and wherein at least one of said plurality of digital messages comprises data.
60. A method according to claim 59 and wherein said at least one of said plurality of digital messages comprises multimedia data.
61. A method according to claim 54 and wherein said second control information comprises payment information.
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| IL111,151 | 1994-10-03 | ||
| IL11115194A IL111151A (en) | 1994-10-03 | 1994-10-03 | Secure access systems |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CA2159779A1 CA2159779A1 (en) | 1996-04-04 |
| CA2159779C true CA2159779C (en) | 2004-05-11 |
Family
ID=11066598
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CA002159779A Expired - Fee Related CA2159779C (en) | 1994-10-03 | 1995-10-03 | Secure access systems |
Country Status (9)
| Country | Link |
|---|---|
| US (3) | US5666412A (en) |
| EP (1) | EP0706291B1 (en) |
| JP (1) | JP3650448B2 (en) |
| AT (1) | ATE198523T1 (en) |
| AU (1) | AU696725B2 (en) |
| CA (1) | CA2159779C (en) |
| DE (1) | DE69519782T2 (en) |
| ES (1) | ES2153005T3 (en) |
| IL (1) | IL111151A (en) |
Families Citing this family (187)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US5604343A (en) * | 1994-05-24 | 1997-02-18 | Dallas Semiconductor Corporation | Secure storage of monetary equivalent data systems and processes |
| US5979773A (en) * | 1994-12-02 | 1999-11-09 | American Card Technology, Inc. | Dual smart card access control electronic data storage and retrieval system and methods |
| US5742845A (en) | 1995-06-22 | 1998-04-21 | Datascape, Inc. | System for extending present open network communication protocols to communicate with non-standard I/O devices directly coupled to an open network |
| JP3153738B2 (en) * | 1995-07-07 | 2001-04-09 | 株式会社東芝 | Descrambler device |
| US6112985A (en) * | 1996-03-07 | 2000-09-05 | Siemens Aktiengesellschaft | License-card-controlled chip card system |
| ATE196398T1 (en) | 1996-03-18 | 2000-09-15 | News Datacom Ltd | CHIP CARD COUPLING FOR PAY-TV SYSTEMS |
| US6055314A (en) * | 1996-03-22 | 2000-04-25 | Microsoft Corporation | System and method for secure purchase and delivery of video content programs |
| FR2749118A1 (en) * | 1996-05-22 | 1997-11-28 | Philips Electronics Nv | METHOD FOR READING A SERVICE CARD |
| JPH103568A (en) * | 1996-06-14 | 1998-01-06 | Hitachi Ltd | Electronic purse application system and transaction device using ic card |
| US5763862A (en) * | 1996-06-24 | 1998-06-09 | Motorola, Inc. | Dual card smart card reader |
| MY119618A (en) * | 1996-12-06 | 2005-06-30 | Nippon Telegraph & Telephone | Internet accessing system using card readers and dual cards with information pertaining to log on |
| JPH10222618A (en) * | 1997-01-31 | 1998-08-21 | Toshiba Corp | Ic card and ic card processing system |
| JPH10302030A (en) * | 1997-02-28 | 1998-11-13 | Toshiba Corp | Connection device and information processor |
| US6131090A (en) * | 1997-03-04 | 2000-10-10 | Pitney Bowes Inc. | Method and system for providing controlled access to information stored on a portable recording medium |
| JP2001517409A (en) * | 1997-03-21 | 2001-10-02 | カナル プラス ソシエテ アノニム | Broadcast receiving system and receiver / decoder and remote controller used therein |
| US6108785A (en) * | 1997-03-31 | 2000-08-22 | Intel Corporation | Method and apparatus for preventing unauthorized usage of a computer system |
| FR2765985B1 (en) * | 1997-07-10 | 1999-09-17 | Gemplus Card Int | METHOD FOR MANAGING A SECURE TERMINAL |
| DE19739448A1 (en) * | 1997-09-09 | 1999-03-11 | Giesecke & Devrient Gmbh | Method for checking the authenticity of a data carrier |
| IL121862A (en) | 1997-09-29 | 2005-07-25 | Nds Ltd West Drayton | Distributed ird system for pay television systems |
| JPH11110091A (en) * | 1997-09-30 | 1999-04-23 | Toshiba Corp | Multi-information storage medium processing system and device, multi-ic card processing system and device and multi-ic card access method |
| US5991519A (en) * | 1997-10-03 | 1999-11-23 | Atmel Corporation | Secure memory having multiple security levels |
| FR2769779B1 (en) * | 1997-10-14 | 1999-11-12 | Thomson Multimedia Sa | METHOD FOR CONTROLLING ACCESS TO A HOME NETWORK AND DEVICE IMPLEMENTING THE METHOD |
| CA2318936C (en) | 1997-12-10 | 2004-04-06 | Thomson Licensing S.A. | Method for protecting the audio/visual data across the nrss interface |
| JPH11203205A (en) * | 1998-01-08 | 1999-07-30 | Fujitsu Ltd | Information storage system |
| US6144472A (en) * | 1998-01-20 | 2000-11-07 | Lucent Technologies Inc. | Upgrading a power-splitting passive optical network using optical filtering |
| US6151144A (en) * | 1998-01-20 | 2000-11-21 | Lucent Technologies, Inc. | Wavelength division multiplexing for unbundling downstream fiber-to-the-home |
| IL123288A (en) | 1998-02-13 | 2001-05-20 | Nds Ltd | Electronic game guide system |
| KR200184316Y1 (en) * | 1998-04-08 | 2000-06-01 | 김용만 | Smart card reader |
| KR100559688B1 (en) | 1998-07-22 | 2006-03-10 | 마츠시타 덴끼 산교 가부시키가이샤 | Digital data recording device and method for protecting copyright and easily reproducing encrypted digital data and computer readable recording medium recording program |
| IL126552A (en) * | 1998-10-13 | 2007-06-03 | Nds Ltd | Remote administration of smart cards for secure access systems |
| US6901457B1 (en) | 1998-11-04 | 2005-05-31 | Sandisk Corporation | Multiple mode communications system |
| US6279114B1 (en) * | 1998-11-04 | 2001-08-21 | Sandisk Corporation | Voltage negotiation in a single host multiple cards system |
| IL128506A (en) | 1999-02-11 | 2009-11-18 | Nds Ltd | Time-dependent authorization |
| GB9905056D0 (en) | 1999-03-05 | 1999-04-28 | Hewlett Packard Co | Computing apparatus & methods of operating computer apparatus |
| DE60044333D1 (en) * | 1999-03-24 | 2010-06-17 | Microsoft Corp | IMPROVED MEMORY CARD USE TO ALLOCATE MEDIA CONTENT TO HOUSEHOLD |
| US7124938B1 (en) * | 1999-03-24 | 2006-10-24 | Microsoft Corporation | Enhancing smart card usage for associating media content with households |
| US6708272B1 (en) | 1999-05-20 | 2004-03-16 | Storage Technology Corporation | Information encryption system and method |
| JP2000341362A (en) * | 1999-05-26 | 2000-12-08 | Nec Corp | System and method for access limit to cable modem |
| FR2794595B1 (en) * | 1999-06-03 | 2002-03-15 | Gemplus Card Int | PRE-CHECKING A PROGRAM IN AN ADDITIONAL CHIP CARD OF A TERMINAL |
| US7660986B1 (en) * | 1999-06-08 | 2010-02-09 | General Instrument Corporation | Secure control of security mode |
| US7607022B1 (en) * | 1999-06-11 | 2009-10-20 | General Instrument Corporation | Configurable encryption/decryption for multiple services support |
| US6970068B1 (en) | 1999-07-15 | 2005-11-29 | Thomson Licensing S.A. | Apparatus and associated method for limiting access of information transferred between an electronic security device and a host device |
| EP1198953B1 (en) * | 1999-07-15 | 2003-04-16 | Thomson Licensing S.A. | Cover for EMI shielding and preventing hot-wiring of a port defined in host device |
| US7351919B1 (en) | 1999-07-15 | 2008-04-01 | Thomson Licensing | Port cover for limiting transfer of electromagnetic radiation from a port defined in a host device |
| EP1116192B1 (en) * | 1999-07-22 | 2009-03-18 | Nxp B.V. | Data carrier for the storage of data and circuit arrangement for such a data carrier |
| US6289455B1 (en) | 1999-09-02 | 2001-09-11 | Crypotography Research, Inc. | Method and apparatus for preventing piracy of digital content |
| FR2799075B1 (en) * | 1999-09-23 | 2001-11-23 | Thomson Multimedia Sa | MULTIMEDIA DIGITAL TERMINAL AND DETACHABLE MODULE COOPERATING WITH SAID TERMINAL PROVIDED WITH A COPY PROTECTED INTERFACE |
| JP2001118042A (en) * | 1999-10-19 | 2001-04-27 | Hitachi Ltd | Card monitoring method |
| US6449719B1 (en) * | 1999-11-09 | 2002-09-10 | Widevine Technologies, Inc. | Process and streaming server for encrypting a data stream |
| US8055894B2 (en) | 1999-11-09 | 2011-11-08 | Google Inc. | Process and streaming server for encrypting a data stream with bandwidth based variation |
| AU1943801A (en) * | 1999-12-03 | 2001-06-12 | Mario Kovac | System and method for secure electronic digital rights management, secure transaction management and content distribution |
| DE19963403A1 (en) * | 1999-12-28 | 2001-07-12 | Nokia Mobile Phones Ltd | Card reading arrangement |
| US20010032312A1 (en) * | 2000-03-06 | 2001-10-18 | Davor Runje | System and method for secure electronic digital rights management, secure transaction management and content distribution |
| US7080039B1 (en) | 2000-03-23 | 2006-07-18 | David J Marsh | Associating content with households using smart cards |
| US6802007B1 (en) | 2000-04-24 | 2004-10-05 | International Business Machines Corporation | Privacy and security for smartcards in a method, system and program |
| FR2808100B1 (en) * | 2000-04-25 | 2002-08-02 | Gemplus Card Int | CONNECTION INTERFACE BETWEEN SMART CARD READERS AND CONNECTION SYSTEM BETWEEN READERS COMPRISING SUCH AN INTERFACE |
| EP1297685A2 (en) * | 2000-06-19 | 2003-04-02 | Koninklijke Philips Electronics N.V. | Application-specific modules for digital cable devices |
| IL137296A (en) * | 2000-07-13 | 2009-09-01 | Nds Ltd | Configurable hardware system |
| JP2004506985A (en) | 2000-08-18 | 2004-03-04 | シーメンス アクチエンゲゼルシヤフト | Encapsulated organic electronic component, method of manufacture and use thereof |
| US7165175B1 (en) | 2000-09-06 | 2007-01-16 | Widevine Technologies, Inc. | Apparatus, system and method for selectively encrypting different portions of data sent over a network |
| FR2813738B1 (en) * | 2000-09-07 | 2003-06-06 | Sagem | DIGITAL TELEVISION DECODER WITH REMOVABLE HARD DISK AND METHOD FOR COMMISSIONING A REMOVABLE HARD DISK |
| US7242772B1 (en) * | 2000-09-07 | 2007-07-10 | Eastman Kodak Company | Encryption apparatus and method for synchronizing multiple encryption keys with a data stream |
| DE10044386A1 (en) * | 2000-09-08 | 2002-04-04 | Scm Microsystems Gmbh | Adapter device for DVB |
| US7043473B1 (en) | 2000-11-22 | 2006-05-09 | Widevine Technologies, Inc. | Media tracking system and method |
| US7890741B2 (en) * | 2000-12-01 | 2011-02-15 | O2Micro International Limited | Low power digital audio decoding/playing system for computing devices |
| DE10061297C2 (en) | 2000-12-08 | 2003-05-28 | Siemens Ag | Procedure for structuring an OFET |
| US7150045B2 (en) * | 2000-12-14 | 2006-12-12 | Widevine Technologies, Inc. | Method and apparatus for protection of electronic media |
| US7472280B2 (en) * | 2000-12-27 | 2008-12-30 | Proxense, Llc | Digital rights management |
| US7305560B2 (en) * | 2000-12-27 | 2007-12-04 | Proxense, Llc | Digital content security system |
| US9613483B2 (en) * | 2000-12-27 | 2017-04-04 | Proxense, Llc | Personal digital key and receiver/decoder circuit system and method |
| US20020080969A1 (en) * | 2000-12-27 | 2002-06-27 | Giobbi John J. | Digital rights management system and method |
| US6973576B2 (en) * | 2000-12-27 | 2005-12-06 | Margent Development, Llc | Digital content security system |
| JP4054535B2 (en) * | 2001-01-19 | 2008-02-27 | 株式会社日立製作所 | IC card service providing method, card terminal, and IC card |
| US6931382B2 (en) | 2001-01-24 | 2005-08-16 | Cdck Corporation | Payment instrument authorization technique |
| IL152086A0 (en) * | 2001-03-05 | 2003-05-29 | Nds Ltd | Secure document access system |
| US20020128067A1 (en) * | 2001-03-09 | 2002-09-12 | Victor Keith Blanco | Method and apparatus for creating and playing soundtracks in a gaming system |
| US6716102B2 (en) | 2001-03-09 | 2004-04-06 | Microsoft Corporation | Method and apparatus for displaying information regarding stored data in a gaming system |
| US7218739B2 (en) | 2001-03-09 | 2007-05-15 | Microsoft Corporation | Multiple user authentication for online console-based gaming |
| EP1239400A1 (en) * | 2001-03-09 | 2002-09-11 | Semiconductor Components Industries, LLC | Dual smartcard controller |
| US20020137565A1 (en) * | 2001-03-09 | 2002-09-26 | Blanco Victor K. | Uniform media portal for a gaming system |
| US20020128068A1 (en) * | 2001-03-09 | 2002-09-12 | Randall Whitten Jon Marcus | Method and apparatus for managing data in a gaming system |
| US7899742B2 (en) * | 2001-05-29 | 2011-03-01 | American Express Travel Related Services Company, Inc. | System and method for facilitating a subsidiary card account |
| US7401049B2 (en) * | 2001-05-29 | 2008-07-15 | American Express Travel Related Services Company, Inc. | System and method for a prepaid card issued by a foreign financial institution |
| US6796497B2 (en) | 2002-04-23 | 2004-09-28 | American Express Travel Related Services Company, Inc. | System and method for facilitating a subsidiary card account |
| US7249092B2 (en) * | 2001-05-29 | 2007-07-24 | American Express Travel Related Services Company, Inc. | System and method for facilitating a subsidiary card account with controlled spending capability |
| DE10143309A1 (en) * | 2001-09-04 | 2002-05-16 | Grundig Ag | Card reader for different size cards, especially SIM and SD (MP3 format card for storing music), for use in a motor vehicle radio system, which is adapted for mobile phone use, has two same size openings to avoid confusion |
| US7779267B2 (en) * | 2001-09-04 | 2010-08-17 | Hewlett-Packard Development Company, L.P. | Method and apparatus for using a secret in a distributed computing system |
| DE10151036A1 (en) | 2001-10-16 | 2003-05-08 | Siemens Ag | Isolator for an organic electronic component |
| US7203835B2 (en) | 2001-11-13 | 2007-04-10 | Microsoft Corporation | Architecture for manufacturing authenticatable gaming systems |
| US7428638B1 (en) | 2001-11-13 | 2008-09-23 | Microsoft Corporation | Architecture for manufacturing authenticatable gaming systems |
| WO2003045724A2 (en) | 2001-11-26 | 2003-06-05 | Seymour Auerbach | Electric-powered vehicle |
| JP2003168093A (en) * | 2001-11-30 | 2003-06-13 | Hitachi Ltd | Card system, method for loading application on card and method for confirming application performance |
| JP2003174523A (en) * | 2001-12-04 | 2003-06-20 | Allied Tereshisu Kk | Aged person support system using ic card, emergency notification box and receiver |
| US6944771B2 (en) * | 2001-12-20 | 2005-09-13 | Koninklijke Philips Electronics N.V. | Method and apparatus for overcoming a watermark security system |
| US7328345B2 (en) * | 2002-01-29 | 2008-02-05 | Widevine Technologies, Inc. | Method and system for end to end securing of content for video on demand |
| DE10212640B4 (en) | 2002-03-21 | 2004-02-05 | Siemens Ag | Logical components made of organic field effect transistors |
| US7299292B2 (en) * | 2002-03-29 | 2007-11-20 | Widevine Technologies, Inc. | Process and streaming server for encrypting a data stream to a virtual smart card client system |
| WO2004017439A2 (en) | 2002-07-29 | 2004-02-26 | Siemens Aktiengesellschaft | Electronic component comprising predominantly organic functional materials and method for the production thereof |
| US7083090B2 (en) * | 2002-08-09 | 2006-08-01 | Patrick Zuili | Remote portable and universal smartcard authentication and authorization device |
| US7121456B2 (en) | 2002-09-13 | 2006-10-17 | Visa U.S.A. Inc. | Method and system for managing token image replacement |
| US7594271B2 (en) * | 2002-09-20 | 2009-09-22 | Widevine Technologies, Inc. | Method and system for real-time tamper evidence gathering for software |
| DE10253154A1 (en) | 2002-11-14 | 2004-05-27 | Siemens Ag | Biosensor, used to identify analyte in liquid sample, has test field with detector, where detector registers field changes as electrical signals for evaluation |
| US7442954B2 (en) | 2002-11-19 | 2008-10-28 | Polyic Gmbh & Co. Kg | Organic electronic component comprising a patterned, semi-conducting functional layer and a method for producing said component |
| DE10258769C5 (en) * | 2002-12-16 | 2017-08-17 | Giesecke & Devrient Gmbh | Communication between an operator panel, a vendor module and a customer module |
| FR2849739B1 (en) * | 2003-01-06 | 2005-04-15 | Gal Claude Le | ADDRESSABLE MEASUREMENT HOUSING |
| DE10302149A1 (en) | 2003-01-21 | 2005-08-25 | Siemens Ag | Use of conductive carbon black / graphite blends for the production of low-cost electronics |
| TW200507647A (en) * | 2003-02-06 | 2005-02-16 | Nagravision Sa | Storage and transmission method of information generated by a security module |
| US7703128B2 (en) | 2003-02-13 | 2010-04-20 | Microsoft Corporation | Digital identity management |
| US7660982B1 (en) | 2003-02-27 | 2010-02-09 | Weinblatt Lee S | Subscription broadcast security system |
| US7007170B2 (en) * | 2003-03-18 | 2006-02-28 | Widevine Technologies, Inc. | System, method, and apparatus for securely providing content viewable on a secure device |
| US7356143B2 (en) * | 2003-03-18 | 2008-04-08 | Widevine Technologies, Inc | System, method, and apparatus for securely providing content viewable on a secure device |
| US20040193759A1 (en) * | 2003-03-31 | 2004-09-30 | Scott Roger M. | Method and system for providing a smart card scripting tool |
| US20040199771A1 (en) * | 2003-04-04 | 2004-10-07 | Widevine Technologies, Inc. | Method for tracing a security breach in highly distributed content |
| US6973554B2 (en) * | 2003-04-23 | 2005-12-06 | Microsoft Corporation | Systems and methods for multiprocessor scalable write barrier |
| TW200511860A (en) * | 2003-05-14 | 2005-03-16 | Nagracard Sa | Duration computing method in a security module |
| EP1492347A1 (en) * | 2003-06-23 | 2004-12-29 | Nagravision S.A. | System and decoder for pay tv data processing and process for management of at least two decoders |
| DE10340643B4 (en) | 2003-09-03 | 2009-04-16 | Polyic Gmbh & Co. Kg | Printing method for producing a double layer for polymer electronics circuits, and thereby produced electronic component with double layer |
| US7051923B2 (en) | 2003-09-12 | 2006-05-30 | Visa U.S.A., Inc. | Method and system for providing interactive cardholder rewards image replacement |
| US8484671B1 (en) * | 2003-10-07 | 2013-07-09 | The Directv Group, Inc. | Receiver interface with multiple access cards |
| US7406174B2 (en) * | 2003-10-21 | 2008-07-29 | Widevine Technologies, Inc. | System and method for n-dimensional encryption |
| US7497371B1 (en) | 2003-10-30 | 2009-03-03 | Sparks John T | Secure commercial transactions system |
| EP1545130A1 (en) * | 2003-12-16 | 2005-06-22 | Nagravision S.A. | Process for updating access rights to conditional access data |
| FR2866772B1 (en) * | 2004-02-20 | 2006-04-28 | Viaccess Sa | METHOD FOR MATCHING A RECEIVER TERMINAL WITH A PLURALITY OF ACCESS CONTROL CARDS |
| JP4430069B2 (en) * | 2004-03-03 | 2010-03-10 | パイオニア株式会社 | Electronic device and its control method, security program, etc. |
| US9020854B2 (en) | 2004-03-08 | 2015-04-28 | Proxense, Llc | Linked account system using personal digital key (PDK-LAS) |
| US7984488B2 (en) | 2004-04-09 | 2011-07-19 | Microsoft Corporation | Credential roaming in electronic computing systems |
| US8131955B2 (en) | 2004-04-15 | 2012-03-06 | Microsoft Corporation | Ephemeral garbage collection using a tracking mechanism on a card table to determine marked bundles |
| EP1603088A1 (en) | 2004-06-03 | 2005-12-07 | Nagracard S.A. | Component for a security module |
| US7461259B2 (en) * | 2004-06-30 | 2008-12-02 | Nokia Corporation | Method and apparatus to provide secure mobile file system |
| WO2006018874A1 (en) * | 2004-08-19 | 2006-02-23 | Mitsubishi Denki Kabushiki Kaisha | Management service device, backup service device, communication terminal device, and storage medium |
| DE102004040831A1 (en) | 2004-08-23 | 2006-03-09 | Polyic Gmbh & Co. Kg | Radio-tag compatible outer packaging |
| EP1635302A1 (en) * | 2004-09-09 | 2006-03-15 | Dietmar Sauer | Memory card and method for retrieving information from a memory card |
| US9609279B2 (en) | 2004-09-24 | 2017-03-28 | Google Inc. | Method and system for providing secure CODECS |
| US8152059B2 (en) * | 2004-10-26 | 2012-04-10 | Sparks John T | Secure commercial transactions system |
| US20060090083A1 (en) * | 2004-10-27 | 2006-04-27 | Kwok-Yan Leung | Data protection system |
| DE102004059465A1 (en) | 2004-12-10 | 2006-06-14 | Polyic Gmbh & Co. Kg | recognition system |
| DE102004059464A1 (en) | 2004-12-10 | 2006-06-29 | Polyic Gmbh & Co. Kg | Electronic component with modulator |
| CA2591751A1 (en) | 2004-12-20 | 2006-06-29 | Proxense, Llc | Biometric personal data key (pdk) authentication |
| DE102004063435A1 (en) | 2004-12-23 | 2006-07-27 | Polyic Gmbh & Co. Kg | Organic rectifier |
| US7556205B2 (en) * | 2005-01-05 | 2009-07-07 | Chun Chee Tsang | Adaptable media card storage device |
| KR100736032B1 (en) * | 2005-02-02 | 2007-07-06 | 삼성전자주식회사 | Mobile storage, video equipment and channel limiting method for video equipment using mobile storage |
| US20080015999A1 (en) * | 2005-02-04 | 2008-01-17 | Widevine Technologies, Inc. | Securely ingesting encrypted content into content servers |
| DE102005009819A1 (en) | 2005-03-01 | 2006-09-07 | Polyic Gmbh & Co. Kg | electronics assembly |
| DE202005003523U1 (en) * | 2005-03-04 | 2005-08-11 | Scm Microsystems Gmbh | Conditional Access System for multiple rooms |
| DE102005017655B4 (en) | 2005-04-15 | 2008-12-11 | Polyic Gmbh & Co. Kg | Multilayer composite body with electronic function |
| DE102005031448A1 (en) | 2005-07-04 | 2007-01-11 | Polyic Gmbh & Co. Kg | Activatable optical layer |
| DE102005035589A1 (en) | 2005-07-29 | 2007-02-01 | Polyic Gmbh & Co. Kg | Manufacturing electronic component on surface of substrate where component has two overlapping function layers |
| DE102005044306A1 (en) | 2005-09-16 | 2007-03-22 | Polyic Gmbh & Co. Kg | Electronic circuit and method for producing such |
| US20070067643A1 (en) * | 2005-09-21 | 2007-03-22 | Widevine Technologies, Inc. | System and method for software tamper detection |
| US8065733B2 (en) * | 2005-09-23 | 2011-11-22 | Google, Inc. | Method for evolving detectors to detect malign behavior in an artificial immune system |
| WO2007038245A2 (en) | 2005-09-23 | 2007-04-05 | Widevine Technologies, Inc. | Method for evolving detectors to detect malign behavior in an artificial immune system |
| US7817608B2 (en) * | 2005-09-23 | 2010-10-19 | Widevine Technologies, Inc. | Transitioning to secure IP communications for encoding, encapsulating, and encrypting data |
| US7747861B2 (en) * | 2005-11-09 | 2010-06-29 | Cisco Technology, Inc. | Method and system for redundant secure storage of sensitive data by using multiple keys |
| US8689016B2 (en) * | 2005-12-02 | 2014-04-01 | Google Inc. | Tamper prevention and detection for video provided over a network to a client |
| PL3487155T3 (en) * | 2005-12-15 | 2022-01-03 | Nokia Technologies Oy | Method, device and computer program product for network-based remote control over contactless secure storages |
| US8219129B2 (en) | 2006-01-06 | 2012-07-10 | Proxense, Llc | Dynamic real-time tiered client access |
| US11206664B2 (en) | 2006-01-06 | 2021-12-21 | Proxense, Llc | Wireless network synchronization of cells and client devices on a network |
| US8526612B2 (en) * | 2006-01-06 | 2013-09-03 | Google Inc. | Selective and persistent application level encryption for video provided to a client |
| US20070180231A1 (en) * | 2006-01-31 | 2007-08-02 | Widevine Technologies, Inc. | Preventing entitlement management message (EMM) filter attacks |
| US7904718B2 (en) | 2006-05-05 | 2011-03-08 | Proxense, Llc | Personal digital key differentiation for secure transactions |
| US20070273684A1 (en) * | 2006-05-24 | 2007-11-29 | International Business Machines Corporation | Storage media |
| US9269221B2 (en) * | 2006-11-13 | 2016-02-23 | John J. Gobbi | Configuration of interfaces for a location detection system and application |
| US7883003B2 (en) | 2006-11-13 | 2011-02-08 | Proxense, Llc | Tracking system using personal digital key groups |
| US8621093B2 (en) * | 2007-05-21 | 2013-12-31 | Google Inc. | Non-blocking of head end initiated revocation and delivery of entitlements non-addressable digital media network |
| US8243924B2 (en) * | 2007-06-29 | 2012-08-14 | Google Inc. | Progressive download or streaming of digital media securely through a localized container and communication protocol proxy |
| US8659427B2 (en) | 2007-11-09 | 2014-02-25 | Proxense, Llc | Proximity-sensor supporting multiple application services |
| US8171528B1 (en) | 2007-12-06 | 2012-05-01 | Proxense, Llc | Hybrid device having a personal digital key and receiver-decoder circuit and methods of use |
| US9251332B2 (en) | 2007-12-19 | 2016-02-02 | Proxense, Llc | Security system and method for controlling access to computing resources |
| US8868464B2 (en) | 2008-02-07 | 2014-10-21 | Google Inc. | Preventing unauthorized modification or skipping of viewing of advertisements within content |
| US8508336B2 (en) | 2008-02-14 | 2013-08-13 | Proxense, Llc | Proximity-based healthcare management system with automatic access to private information |
| JP4334595B2 (en) * | 2008-02-26 | 2009-09-30 | 正聡 岩元 | Electronic device with use time limit function, and computer program and recording medium used therefor |
| US11120449B2 (en) | 2008-04-08 | 2021-09-14 | Proxense, Llc | Automated service-based order processing |
| US9642089B2 (en) | 2008-07-09 | 2017-05-02 | Secureall Corporation | Method and system for planar, multi-function, multi-power sourced, long battery life radio communication appliance |
| US10447334B2 (en) | 2008-07-09 | 2019-10-15 | Secureall Corporation | Methods and systems for comprehensive security-lockdown |
| US11469789B2 (en) | 2008-07-09 | 2022-10-11 | Secureall Corporation | Methods and systems for comprehensive security-lockdown |
| US10128893B2 (en) | 2008-07-09 | 2018-11-13 | Secureall Corporation | Method and system for planar, multi-function, multi-power sourced, long battery life radio communication appliance |
| US9418205B2 (en) | 2010-03-15 | 2016-08-16 | Proxense, Llc | Proximity-based system for automatic application or data access and item tracking |
| GB2481596B (en) | 2010-06-29 | 2014-04-16 | Nds Ltd | System and method for identifying a user through an object held in a hand |
| US9322974B1 (en) | 2010-07-15 | 2016-04-26 | Proxense, Llc. | Proximity-based system for object tracking |
| US8857716B1 (en) | 2011-02-21 | 2014-10-14 | Proxense, Llc | Implementation of a proximity-based system for object tracking and automatic application initialization |
| US8751800B1 (en) | 2011-12-12 | 2014-06-10 | Google Inc. | DRM provider interoperability |
| US9405898B2 (en) | 2013-05-10 | 2016-08-02 | Proxense, Llc | Secure element as a digital pocket |
| KR102133251B1 (en) * | 2013-10-23 | 2020-07-21 | 삼성전자주식회사 | Method and apparatus for protecting application program |
| US10706653B2 (en) * | 2015-07-24 | 2020-07-07 | Info Wise Limited | Wireless access tag duplication system and method |
| US10402273B2 (en) | 2016-12-14 | 2019-09-03 | Microsoft Technology Licensing, Llc | IoT device update failure recovery |
| US10715526B2 (en) | 2016-12-14 | 2020-07-14 | Microsoft Technology Licensing, Llc | Multiple cores with hierarchy of trust |
| US10416991B2 (en) | 2016-12-14 | 2019-09-17 | Microsoft Technology Licensing, Llc | Secure IoT device update |
Family Cites Families (43)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE2318263A1 (en) * | 1973-01-24 | 1974-07-25 | Dasy Int Sa | FALSE-PROOF CONTROL PROCEDURE FOR LEGITIMATION |
| US3996450A (en) * | 1975-03-31 | 1976-12-07 | Ncr Corporation | Secret number change routine |
| US4325078A (en) * | 1978-12-14 | 1982-04-13 | The Telemine Company, Inc. | Pay per view television control device |
| FR2492135B1 (en) * | 1980-09-16 | 1988-01-22 | Cii Honeywell Bull | APPARATUS FOR DISTRIBUTING OBJECTS AND ACQUIRING SERVICES |
| JPH0642244B2 (en) * | 1982-07-09 | 1994-06-01 | オムロン株式会社 | Margin transaction processing device |
| US4613901A (en) * | 1983-05-27 | 1986-09-23 | M/A-Com Linkabit, Inc. | Signal encryption and distribution system for controlling scrambling and selective remote descrambling of television signals |
| US4751732A (en) * | 1984-07-06 | 1988-06-14 | Kabushiki Kaisha Toshiba | Broadcasting system |
| US4908834A (en) * | 1984-10-12 | 1990-03-13 | Wiedemer John D | High security pay television system |
| JPS61278989A (en) * | 1985-06-04 | 1986-12-09 | Toppan Moore Co Ltd | Reader/writer of ic card |
| JPS629470A (en) * | 1985-07-05 | 1987-01-17 | Casio Comput Co Ltd | Identity collation system for individual identification card |
| US4718107A (en) * | 1986-02-14 | 1988-01-05 | Rca Corporation | Parental control for CATV converters |
| US4780791A (en) * | 1986-04-08 | 1988-10-25 | Fujisoku Electric Co., Ltd. | Card-shaped memory having an IC module |
| US4768229A (en) * | 1986-07-21 | 1988-08-30 | Zenith Electronics Corporation | Restrictive access control system |
| US5010571A (en) * | 1986-09-10 | 1991-04-23 | Titan Linkabit Corporation | Metering retrieval of encrypted data stored in customer data retrieval terminal |
| US4870261A (en) * | 1986-11-20 | 1989-09-26 | Duto S.P.A. | Method and a device for opening doors or the like, the device comprising an electronic control with combination of consent and optical compared reading |
| US4993066C1 (en) * | 1987-02-26 | 2001-04-24 | Techsearch L L C | Method for television scrambling |
| US4882473A (en) * | 1987-09-18 | 1989-11-21 | Gtech Corporation | On-line wagering system with programmable game entry cards and operator security cards |
| WO1989008899A1 (en) * | 1988-03-10 | 1989-09-21 | Datacard Corporation | Credit card transaction apparatus and method |
| JPH01259483A (en) * | 1988-04-08 | 1989-10-17 | Minolta Camera Co Ltd | Ic card |
| US4961142A (en) * | 1988-06-29 | 1990-10-02 | Mastercard International, Inc. | Multi-issuer transaction device with individual identification verification plug-in application modules for each issuer |
| US5065429A (en) * | 1989-04-03 | 1991-11-12 | Lang Gerald S | Method and apparatus for protecting material on storage media |
| FR2653601B1 (en) * | 1989-10-20 | 1993-10-22 | Sgs Thomson Microelectronics Sa | PORTABLE ELECTRONICS CONNECTABLE TO CHIPS. |
| US5282249A (en) * | 1989-11-14 | 1994-01-25 | Michael Cohen | System for controlling access to broadcast transmissions |
| IL92310A (en) * | 1989-11-14 | 1994-05-30 | News Datacom Ltd | System for controlling access to broadcast transmissions |
| FR2661762B1 (en) * | 1990-05-03 | 1992-07-31 | Storck Jean | METHOD AND DEVICE FOR TRANSACTING BETWEEN A FIRST AND AT LEAST A SECOND DATA MEDIUM AND MEDIUM FOR THIS PURPOSE. |
| US5060079A (en) * | 1990-03-30 | 1991-10-22 | Rufus Isaacs Alexander | Apparatus for controlling television monitoring |
| US5111504A (en) * | 1990-08-17 | 1992-05-05 | General Instrument Corporation | Information processing apparatus with replaceable security element |
| FR2676294B1 (en) * | 1991-05-06 | 1993-07-16 | Gemplus Card Int | LOCKING METHOD FOR MEMORY CARD. |
| JP3371141B2 (en) * | 1991-08-30 | 2003-01-27 | ソニー株式会社 | Scramble device |
| WO1993010509A1 (en) * | 1991-11-12 | 1993-05-27 | Security Domain Pty. Ltd. | Method and system for secure, decentralised personalisation of smart cards |
| WO2004077300A1 (en) * | 1992-01-22 | 2004-09-10 | Yoshimasa Kadooka | Ic memory card and protection therefor |
| DE69310255T2 (en) * | 1992-03-04 | 1997-08-14 | Thomson Multimedia Sa | Method and device for checking several chip cards |
| US5553155A (en) * | 1992-03-11 | 1996-09-03 | Kuhns; Roger J. | Low cost method employing time slots for thwarting fraud in the periodic issuance of food stamps, unemployment benefits or other governmental human services |
| US5214699A (en) * | 1992-06-09 | 1993-05-25 | Audio Digital Imaging Inc. | System for decoding and displaying personalized indentification stored on memory storage device |
| US5319705A (en) * | 1992-10-21 | 1994-06-07 | International Business Machines Corporation | Method and system for multimedia access control enablement |
| US5337358A (en) * | 1992-11-20 | 1994-08-09 | Pitney Bowes Inc. | Apparatus for recording a transaction including authenticating an identification card |
| FR2698510B1 (en) * | 1992-11-26 | 1994-12-23 | Schlumberger Ind Sa | Communication network. |
| JPH0744672A (en) * | 1993-07-28 | 1995-02-14 | Oki Electric Ind Co Ltd | Ic card and ic card system |
| US5526428A (en) * | 1993-12-29 | 1996-06-11 | International Business Machines Corporation | Access control apparatus and method |
| US5559885A (en) * | 1994-01-14 | 1996-09-24 | Drexler Technology Corporation | Two stage read-write method for transaction cards |
| US5461217A (en) * | 1994-02-08 | 1995-10-24 | At&T Ipm Corp. | Secure money transfer techniques using smart cards |
| EP0683613A3 (en) * | 1994-05-20 | 1997-01-29 | At & T Corp | Data message storage and transmission using a videophone and a smart card. |
| US5629508A (en) * | 1994-12-02 | 1997-05-13 | American Card Technology, Inc. | Dual smart card access control electronic data storage and retrieval system and methods |
-
1994
- 1994-10-03 IL IL11115194A patent/IL111151A/en not_active IP Right Cessation
-
1995
- 1995-01-20 US US08/375,995 patent/US5666412A/en not_active Expired - Lifetime
- 1995-10-02 ES ES95115554T patent/ES2153005T3/en not_active Expired - Lifetime
- 1995-10-02 AT AT95115554T patent/ATE198523T1/en not_active IP Right Cessation
- 1995-10-02 DE DE69519782T patent/DE69519782T2/en not_active Expired - Fee Related
- 1995-10-02 EP EP95115554A patent/EP0706291B1/en not_active Expired - Lifetime
- 1995-10-03 JP JP29160695A patent/JP3650448B2/en not_active Expired - Fee Related
- 1995-10-03 CA CA002159779A patent/CA2159779C/en not_active Expired - Fee Related
- 1995-10-03 AU AU33036/95A patent/AU696725B2/en not_active Ceased
-
1997
- 1997-01-08 US US08/780,501 patent/US5774546A/en not_active Expired - Lifetime
- 1997-09-08 US US08/925,547 patent/US5878134A/en not_active Expired - Lifetime
Also Published As
| Publication number | Publication date |
|---|---|
| IL111151A (en) | 1998-09-24 |
| US5666412A (en) | 1997-09-09 |
| EP0706291B1 (en) | 2001-01-03 |
| JP3650448B2 (en) | 2005-05-18 |
| AU3303695A (en) | 1996-04-18 |
| CA2159779A1 (en) | 1996-04-04 |
| EP0706291A3 (en) | 1997-03-19 |
| DE69519782D1 (en) | 2001-02-08 |
| ATE198523T1 (en) | 2001-01-15 |
| EP0706291A2 (en) | 1996-04-10 |
| ES2153005T3 (en) | 2001-02-16 |
| DE69519782T2 (en) | 2001-08-02 |
| JPH08214278A (en) | 1996-08-20 |
| IL111151A0 (en) | 1994-12-29 |
| AU696725B2 (en) | 1998-09-17 |
| US5878134A (en) | 1999-03-02 |
| US5774546A (en) | 1998-06-30 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA2159779C (en) | Secure access systems | |
| US6298441B1 (en) | Secure document access system | |
| US5509073A (en) | Communications network | |
| US8566457B2 (en) | Content delivery service providing apparatus and content delivery service terminal unit | |
| EP0817485B1 (en) | Conditional access system and smartcard allowing such access | |
| US7653946B2 (en) | Method and system for secure distribution of digital documents | |
| US5162638A (en) | Process for protection against fraudulent use of smart cards, and device for use of the process | |
| US6334216B1 (en) | Access control facility for a service-on-demand system | |
| JPH103568A (en) | Electronic purse application system and transaction device using ic card | |
| PL191775B1 (en) | Interactive gaming system making use of an audiovisual transmision | |
| CN1305674A (en) | Recording of encrypted digital data | |
| CN100470573C (en) | Unauthorized deice detection device, unauthorized device detection system, unauthorized device detection method, program, recording medium, and device information update method | |
| JP2003510706A (en) | E-book security and copyright protection system | |
| Peyret et al. | Smart cards provide very high security and flexibility in subscribers management | |
| CA2296255A1 (en) | Transcoder for decoding encoded tv programs | |
| US20020101990A1 (en) | Data receiving apparatus and data reproducing apparatus | |
| US20040049777A1 (en) | Transaction system | |
| US20150172732A1 (en) | Distribution of digital video products | |
| JPH088850A (en) | Radio electronic book system | |
| US7131133B1 (en) | Access control method and information utilization apparatus | |
| JPH0723364A (en) | Viewing device for pay ciphered broadcasting | |
| JP2001358683A (en) | User identification method, broadcasting receiver, and program recording medium for user identification | |
| US20090327692A1 (en) | Method and device for distributing secure digital audiovisual contents by interoperable solutions | |
| JP2000082099A (en) | Betting device and betting system | |
| KR100610638B1 (en) | A system and a method for providing multimedia contents on demand |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| EEER | Examination request | ||
| MKLA | Lapsed | ||
| MKLA | Lapsed |
Effective date: 20101004 |