WO2004082147A2 - Method and apparatus for protecting the transfer of data - Google Patents

Method and apparatus for protecting the transfer of data Download PDF

Info

Publication number
WO2004082147A2
WO2004082147A2 PCT/US2004/006767 US2004006767W WO2004082147A2 WO 2004082147 A2 WO2004082147 A2 WO 2004082147A2 US 2004006767 W US2004006767 W US 2004006767W WO 2004082147 A2 WO2004082147 A2 WO 2004082147A2
Authority
WO
WIPO (PCT)
Prior art keywords
key
mating key
mating
message
top box
Prior art date
Application number
PCT/US2004/006767
Other languages
French (fr)
Other versions
WO2004082147A3 (en
Inventor
Brant L. Candelore
Original Assignee
Sony Electronics Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Sony Electronics Inc. filed Critical Sony Electronics Inc.
Priority to EP04717990.8A priority Critical patent/EP1618666B1/en
Priority to JP2006509171A priority patent/JP4663628B2/en
Priority to KR1020117019418A priority patent/KR101081160B1/en
Publication of WO2004082147A2 publication Critical patent/WO2004082147A2/en
Publication of WO2004082147A3 publication Critical patent/WO2004082147A3/en

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/418External card to be used in combination with the client device, e.g. for conditional access
    • H04N21/4181External card to be used in combination with the client device, e.g. for conditional access for conditional access
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/36Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes
    • G06Q20/367Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes
    • G06Q20/3674Payment architectures, schemes or protocols characterised by the use of specific devices or networks using electronic wallets or electronic money safes involving electronic purses or money safes involving authentication
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/02Details
    • H04L12/22Arrangements for preventing the taking of data from a data transmission channel without authorisation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/30Public key, i.e. encryption algorithm being computationally infeasible to invert or user's encryption keys not requiring secrecy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/254Management at additional data server, e.g. shopping server, rights management server
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/258Client or end-user data management, e.g. managing client capabilities, user preferences or demographics, processing of multiple end-users preferences to derive collaborative data
    • H04N21/25808Management of client data
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • H04N21/26606Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing entitlement messages, e.g. Entitlement Control Message [ECM] or Entitlement Management Message [EMM]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/20Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
    • H04N21/25Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
    • H04N21/266Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
    • H04N21/26613Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing keys in general
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/4104Peripherals receiving signals from specially adapted client devices
    • H04N21/4135Peripherals receiving signals from specially adapted client devices external recorder
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/45Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
    • H04N21/462Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
    • H04N21/4623Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/47End-user applications
    • H04N21/472End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content
    • H04N21/47211End-user interface for requesting content, additional data or services; End-user interface for interacting with content, e.g. for content reservation or setting reminders, for requesting event notification, for manipulating displayed content for requesting pay-per-view content
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • H04N21/63345Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/162Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
    • H04N7/163Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing by receiver means only
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/167Systems rendering the television signal unintelligible and subsequently intelligible
    • H04N7/1675Providing digital key or authorisation information for generation or regeneration of the scrambling sequence
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N7/00Television systems
    • H04N7/16Analogue secrecy systems; Analogue subscription systems
    • H04N7/173Analogue secrecy systems; Analogue subscription systems with two-way working, e.g. subscriber sending a programme selection signal
    • H04N7/17309Transmission or handling of upstream communications
    • H04N7/17318Direct or substantially direct transmission and handling of requests

Definitions

  • Embodiments of the invention relate to digital devices. More specifically, one embodiment of the invention relates to an apparatus and method for descrambling digital content in digital devices.
  • Analog communication systems are rapidly giving way to their digital counterparts.
  • Digital television is currently scheduled to be available nationally.
  • High-definition television (HDTV) broadcasts have already begun in most major cities on a limited basis.
  • the explosive growth of the Internet and the World Wide Web have resulted in a correlative growth in the increase of downloadable audio-visual files, such as MP3 -formatted audio files, as well as other content.
  • DVD digital versatile disk
  • D-VHS VCR digital VHS video cassette recorders
  • CD-ROM recorders e.g., CD-R and CD- 080 3 98 .
  • RW Resource Description Framework
  • MP3 recording devices and hard disk-based recording units
  • hard disk-based recording units are but merely representative of the digital recording devices that are capable of producing high quality recordings and copies thereof, without the generational degradation (i.e., increased degradation between successive copies) known in the analog counterparts.
  • the combination of movement towards digital communication systems and digital recording devices poses a concern to content providers such as the motion picture and music industries, who desire to prevent the unauthorized and uncontrolled copying of copyrighted, or otherwise protected, material.
  • the DTDG Digital Transmission Copy Protection (DTCP) proposal is targeted for protecting copy-protected digital content, which is transferred between digital devices connected via a digital transmission medium such as an IEEE 1394 serial bus.
  • DTCP Digital Transmission Copy Protection
  • Device-based, the proposal uses symmetric key cryptographic techniques to encode components of a 080398.
  • compliant device This allows for the authentication of any digital device prior to the transmission of the digital content in order to determine whether the device is compliant.
  • the digital content is itself encoded prior to transmission so that unauthorized copying of the content will result in copy having an unintelligible format.
  • the DHSG has determined three primary cases of detection and control that such a technology should accomplish: playback, record and generational copy control.
  • CA conditional access
  • a cryptographic processor such as a smart card
  • a conditional access unit such as a set-top box, for example, is generally infused with information and functionality in order to automatically grant access to programs .
  • a smart card with a Pay-TV access control application typically receives entitlement management messages (EMMs) which grant certain service rights.
  • EMMs entitlement management messages
  • services or group keys are delivered at the same time, and if the set -top box is allowed to view IPPV 080398.
  • the smart card When tuning to a program, the smart card receives Entitlement Control Messages (ECMs) , which describe which entitlements the smart card needs in order to grant access to the show.
  • ECMs Entitlement Control Messages
  • hackers may attempt to manipulate both EMMs and ECMs to view programs without paying the requisite subscription fees. Not only are the EMMs and ECMs manipulated, but the hardware is attacked as well. This combination of software and hardware attacks are used to cause the smart card to decrypt scrambled programs without authorization from the provider of the programs.
  • Figure 1 is an exemplary embodiment of an entertainment system including a digital device
  • Figure 2 is a first exemplary embodiment of a secure content delivery system that comprises the conditional access unit adapted to operate with a smart card;
  • Figure 3 is an exemplary embodiment of a method for securely transferring control words from the smart card to the conditional access unit of Figure 2 ;
  • Figures 4 and 5 are exemplary embodiments of a method for encrypting and decrypting a control word
  • Figure 6 is an exemplary embodiment of the descrambler integrated circuit implemented within the conditional access unit of Figure 2;
  • Figure 7 is a second exemplary embodiment of a secure content delivery system that comprises a decoder adapted to a headend server via a network connection;
  • Figure 8 is a more detailed illustration of the decoder adapter to the headend server of Figure 7;
  • Figure 9 is an exemplary embodiment of services that may be delivered to the conditional access unit of Figure 2 or the decoder of Figures 7 or 8 ;
  • Figure 10 is an exemplary embodiment of a method for requesting and receiving control words or service keys; 080398. P252X - 7 - Patent Application
  • Figure 11A is a third exemplary embodiment of a secure content delivery system
  • Figure 11B is an exemplary embodiment of a data structure forming the mating key generator transmitted through a secure content delivery system
  • FIG. 11C is an exemplary embodiment of an entitlement management message (EMM) routed to a set-top box of the system of Figure 11A;
  • EMM entitlement management message
  • Figure 12 is a first exemplary embodiment of a descrambler IC implemented within the decoder of the set- top box of the system of Figure 11A;
  • Figure 13 is a fourth exemplary embodiment of a secure content delivery system
  • Figure 14A is a fifth exemplary embodiment of a secure content delivery system
  • Figure 14B is an exemplary embodiment of an entitlement management message (EMM) routed to a set-top box of the system of Figure 14A;
  • EMM entitlement management message
  • FIG 15 is an exemplary embodiment of meta-data associated with an electronic program guide (EPG) routed to the set-top box of the system of Figure 14A;
  • EPG electronic program guide
  • Figure 16 is a first exemplary embodiment of the descrambler IC implemented within the set-top box of Figure 14A;
  • Figure 17 is a portion of a sixth exemplary embodiment of a secure content delivery system
  • Figure 18 is an exemplary embodiment of a portion of a seventh exemplary embodiment of a secure content delivery 080398.
  • Figure 19 is an exemplary embodiment of the decoder implemented within the digital device of Figure 18.
  • Various embodiments of the invention relate to an apparatus, system and method for protecting the transfer of data.
  • such protection involves the descrambling or decrypting of digital content from one or more content providers in digital devices.
  • a “content provider” include, but are not limited to a terrestrial broadcaster, cable operator, direct broadcast satellite (DBS) company, a company providing content for download via the Internet, or any similar sources of content .
  • DBS direct broadcast satellite
  • the terms “component” , “block” or “logic” are representative of hardware and/or software configured to perform one or more functions.
  • examples of “hardware” include, but are not limited or restricted to an integrated circuit such as a processor (e.g., microprocessor, application specific integrated circuit, a digital signal processor, a micro-controller, etc.) .
  • the hardwcire may be alternatively implemented as a finite state machine or even combinatorial logic.
  • An example of "software” includes executable code in the form of an application, an applet, a routine or even a series of instructions.
  • the software may be stored in any type of machine readable medium such as a programmable electronic circuit, a semiconductor memory device such as volatile memory (e.g., random access memory, etc.) and/or non-volatile memory (e.g., any type of read-only memory "ROM”, flash memory), a floppy diskette, an optical disk 080398.
  • program data generally represents any type of information being transferred over a secure content delivery system. Examples of program data include system information, one or more entitlement control messages or entitlement management messages, digital content, and/or other data, each of which will be described briefly below.
  • a "message” is a collection of bits sent as a bit stream, a packet or successive packets.
  • the entertainment system 100 includes a digital device 110 for receiving information including program data from one or more content providers.
  • the program data may be propagated as a digital bit stream for example.
  • the digital device 110 may operate as any number of products such as a set-top box or one or more components integrated into a television, computer, audio-playback device (e.g., digital radio), audio- recording device (e.g., MP3 player), video-recording device (e.g., TIVO ® recorder by TiVo Inc. of Alviso, California), or the like.
  • the digital device 110 may be configured in accordance with an embedded architecture, a split security architecture, or an external security architecture.
  • digital device 110 is implemented as a set-top box that comprises fixed, internal circuitry supporting both entitlement management and descrambling operations. 080398. P252X - 11 - Patent Application
  • the digital device 110 may be adapted to receive a removable smart card that handles entitlement management, while descrambling of incoming program data is controlled by internal circuitry.
  • the digital device 110 may be a "point-of- deployment" product with a PCMCIA card handling both entitlement management and descrambling operations by sending and receiving messages over an Out-of-Band channel.
  • external security type may also be split so that the PCMCIA card may be configured to handle descrambling operations, but adapted to communicate with a smart card for handling entitlement management.
  • the digital device 110 comprises a receiver 111, which processes the incoming information, extracts the program data therefrom, and provides the program data in a perceivable format (e.g., viewable and/or audible) .
  • the program data may include at least one or more of the following: system information, entitlement control messages, entitlement management messages, digital content, and other data.
  • system information may include information on program names, time of broadcast, source, and a method of retrieval and decoding, and well as copy management commands that provide digital receivers and other devices with information that will control how and when program 080398 .
  • ECM entitlement control message
  • An "Entitlement Management Message” may be used to deliver entitlements (sometimes referred to as "privileges") to the digital receiver 111.
  • entitlements may include, but are not limited to access rights, access parameters, and/or descrambling keys.
  • a descrambling key is generally a code that is required by descrambler logic to recover data in the clear from a scrambled format based on the entitlements granted.
  • “content” in the program data stream may include images, audio, video or any combination thereof. The content may be in a scrambled or clear format .
  • the digital device 110 when implemented as a set-top box, may be coupled to other components in the entertainment system 100 via a transmission medium 120.
  • the transmission medium 120 operates to transmit control information and data including program data between the digital device 110 and other components in the entertainment system 100.
  • the transmission medium 120 may include, but is not limited to electrical wires, optical fiber, cable, a wireless link established by wireless signaling circuitry, or the like.
  • the entertainment system 100 may include an audio system 130 coupled to the transmission medium 120.
  • a digital VCR 140 such as a D-VHS VCR, may also be coupled to the digital device 110 and other 080398.
  • a hard disk recording unit 150 may also be coupled to digital device 110 and other components via transmission medium 120.
  • Display 160 may include a high definition television display, a monitor, or another device capable of processing digital video signals.
  • a control unit 170 may be coupled to the transmission medium 120. The control unit 170 may be used to coordinate and control the operation of some or each of the components on the entertainment system 100.
  • the content of a digital program may be transmitted in scrambled form.
  • access requirements may be transmitted along with the scrambled content to the digital device 110 that is implemented with the receiver 111 functioning as a conditional access unit, especially when the digital device 110 operates as a set-top box.
  • An "access requirement" is a restrictive parameter used to determine if the digital device 110 implemented with conditional access functionality, hereinafter referred to herein as the "conditional access unit 110," is authorized to descramble the scrambled content for viewing or listening purposes.
  • the access requirement may be a key needed to perceive (view and/or listen to) the content, a service tag associated with a given content provider, or even a particular descrambling software code.
  • conditional access unit 110 to display the scrambled content in clear form
  • the access requirements for the program are compared to the entitlements of the conditional access unit 110.
  • the entitlements may state that the conditional access unit 110 is entitled to view/playback content from a given content provider such as Home Box Office (HBO), for example.
  • the entitlements may also include one or more keys needed to descramble the content.
  • the entitlements also may define the time periods for which the conditional access unit 110 may descramble the content .
  • access requirements and entitlements form a part of the access control system to determine whether a conditional access unit or a decoder is authorized to view a particular program. It is contemplated that the description below focuses on mechanisms to recover audio/visual content such as television broadcasts, purchased movies and the like. However, it is contemplated that the invention is also applicable to the descrambling of audible content only (e.g., digitized music files) .
  • the access requirements and entitlements can provide consumers with a variety of choices for paying for the content and gaining access to the scrambled content . These choices may include pay per play (PPP) , pay per view (PPV) , impulse pay per view (IPPV), time based historical, pay per time (PPT), repurchase of copy never movies, personal scrambling, and regional pay per view. "Impulse pay per view” is a feature which allows purchase of pay per view movies through credit that has been previously downloaded into the set-top box. Purchase records may be stored and 080398. P252X - 15 - Patent Application
  • Time based historical allows access to content that was delivered during a past time period, such as March through December, 1997, for example.
  • the access requirements and entitlements can also provide consumers with different options for storing the scrambled content.
  • the access requirements may be delivered to the conditional access unit, located within digital device 110 or coupled thereto over transmission medium 120, using packet identifiers (PIDs) .
  • PIDs packet identifiers
  • Each PID may contain the access requirements associated with a given service or feature.
  • the content that is delivered to the conditional access unit may also include a large number of PIDs, thus enabling special revenue features, technical features, or other special features to be performed locally.
  • the customer Before receiving the content, the customer may be given a number of choices for gaining access to the content that is going to be stored to media. The customer may be required to purchase the right to access and view the content. Therefore, if the customer wants to record the content for lacer retrieval and viewing, the access requirements that the customer bought also need to be stored with the content .
  • Copy-protection applied to the descrambled content (e.g., transport stream) as shown in Figures 18 and 19.
  • Copy-protected content will be re- scrambled across an interface interconnecting a destination interface (e.g., NRSS-A, NRSS-B or POD module interfaces) and a source.
  • the source and destination interface need to agree on the key used to re-encrypt this content.
  • This copy protection key can be encrypted with the unique key 080398.
  • the unique key can be received through an EMM or other method, e.g. factory load procedure .
  • a first exemplary embodiment of a secure content delivery system that comprises a conditional access unit 401 adapted to operate with a smart card interface 420 is shown.
  • This embodiment is consistent with a split security architecture and an external security architecture.
  • the digital device 110 operates as the conditional access unit 401 (e.g., equivalent to conditional access unit 110 of Figure 1) , but is implemented as a set-top box or other type of digital device.
  • conditional access unit 401 is a NRSS-B conditional access unit .
  • the smart card interface 420 may be built into the digital receiver 111, it is expected that the digital receiver 111 will have an expansion slot, such as a PCMCIA slot or Universal Services Bus (USB) slot for example, to receive a card or device 410 complementary to the interface 420.
  • the digital receiver 111 comprises an optional processor 430 and a descrambler integrated circuit (IC) 440.
  • Smart card interface 420 receives a smart card 410 including one or more encrypted control words for descrambling scrambled program content. Smart card 410 may transmit the control word(s) in encrypted form to the smart card interface 420. In order to protect the one or more control words, referred to as "CW, " from being improperly extracted by an interloper monitoring communications 080398.
  • CW control word
  • the smart card 410 may use an encryption key unique to conditional access unit 401 to encrypt the CW. This allows the conditional access unit 401 to decrypt the CW in a secure manner and use the clear control words to descramble the program content .
  • an external cryptographic processor 415 of an ISO 7816 smart card receives the CW needed to descramble content.
  • a storage element 412 e.g., register or other volatile or non-volatile memory
  • Such loading may be performed during manufacture of the smart card 410, during manufacture of the storage element 412 or the cryptographic processor 415 when the storage element 412 is on-chip memory of the cryptographic processor 415, or perhaps via a communication pathway through conditional access unit 401 over smart card interface 420 (not shown) .
  • the encryption block 414 of the smart card 410 e.g., software or firmware executed by cryptographic processor 415, dedicated hardware, etc.
  • the smart card 410 delivers the encrypted CW to the processor 430 through interface 420, although the encrypted CW may be sent directly to decryption block 460 (e.g., state machine or dedicated circuitry) .
  • the processor 430 may be implemented to perform additional operations to counteract additional obfuscation techniques performed on the CW, other than encryption using keys identical to or derivatives from those keys stored in the descrambler IC 440. It is noted 080398. P252X - 18 - Patent Application
  • the communications between the processor 430 and the descrambler IC 440 are secure.
  • the descrambler IC 440 in the conditional access unit 401 will decrypt the CW using one or more unique keys stored in a storage element 450.
  • the storage element 450 comprises one or more key registers loaded at manufacturer or after implemented within the conditional access unit 401 through initial program data transmitted to the conditional access unit 401.
  • the decryption block 460 then writes the decrypted CW alternately into ODD and EVEN key storage elements (not shown) of descrambler logic 470 located in the descrambler IC 440.
  • the descrambler logic 470 then applies the ODD/EVEN CW to the incoming scrambled content 480 at the right time and outputs descrambled program content 490.
  • ODD and EVEN key storage elements may be utilized for descrambling of the incoming scrambled content 480.
  • the transfer of the CW from the smart card 410 to the conditional access unit 401 is secure, because the CW is transferred in encrypted form.
  • the CW remains secure in the conditional access unit 401 because the CW is not decrypted by the non-secure processor 430.
  • the CW is only decrypted in the descrambler IC 440 that actually uses the CW, therefore, the CW is never exposed in the clear, and cannot be obtained by hackers . 080398. P252X - 19 - Patent Application
  • the key used to decrypt the CW is stored in hardware (e.g., storage element 450) of the descrambler IC 440.
  • the storage element 450 cannot be hacked unless the silicon of the storage element 450 is probed.
  • An attempt may be made to exhaustively trial a key stored in storage element 450 in IC 440.
  • the key may only be valid for one particular conditional access unit 401, and may not be used by other units to decrypt the CW, because the CW is encrypted by the smart card 410 using a key or CW that is unique to an associated conditional access unit 401. Therefore, the transmission of the encrypted control word(s) from smart card 410 to conditional access unit 401 is secure and the control word(s) is (are) not vulnerable to theft by hackers.
  • the descrambler IC 440 handles the secure processing of the control words. This descrambler IC 440 has no CPU, no firmware, and no software. There is no complicated key hierarchy. A non-processor based descrambler IC 440 receives the encrypted CW, applies a unique key to it, and decrypts it. No instructions, no code, no hashing, and no software is loaded into the decryption block 460. The decryption is performed entirely by a hardware circuit or state machine of the descrambler IC 440 using only a single key function.
  • One or more unique keys may be programmed into the storage element 450 during manufacture.
  • the descrambler IC 440 has a non-volatile, unique key storage element 450 that can be written only 080398.
  • the storage element 450 is programmed. In this embodiment, there is no way to either improperly read or overwrite the Unique Key that was originally loaded into the storage element 450. An association between the serial number of the conditional access unit 401 and the Unique Key loaded into the descrambler IC 440 of the conditional access unit 401 may be recorded.
  • conditional access unit 401 When the conditional access unit 401 is manufactured and a smart card 410 is installed, the smart card 410 can receive the Unique Key associated with the conditional
  • the smart card is "paired" to that particular host (e.g., the conditional access unit 401) . Later, if the smart card 410 is ever replaced or moved to a new host, the smart card 410 may be adapted to receive the Unique Key associated with the new host via an Entitlement Management Message (EMM) .
  • EMM Entitlement Management Message
  • a new smart card with a newly programmed Unique Key may also be delivered to the user.
  • FIG. 3 An exemplary method for transferring the CW from the smart card 410 to the conditional access unit is shown in Figure 3.
  • a control word is encrypted in the smart card 410 using a key stored in non-volatile memory of the smart card (block 40) .
  • the key stored in the smart card is associated with the key stored in the storage element of the descrambler IC.
  • the encrypted control word is received from the smart card (block 41) .
  • This method includes receiving a digital bitstream including program data in a descrambler IC, where the program data includes system information and scrambled digital content (block 42) .
  • the encrypted control word is 080398.
  • the scrambled digital content is descrambled in the descrambler IC using the decrypted control word (block 45) , and the descrambled digital content is output (block 46) .
  • Embodiments of the encryption and decryption functions performed by encryption block 414 and decryption block 460 are shown in Figures 4, 5 and 6. These operations transform the CW based on the Unique Key stored in storage elements 412 and 450.
  • An encryption algorithm such as DES, M6, or DVB Common Scrambling Algorithm may be used.
  • Triple DES is used.
  • the descrambler IC 440 uses Triple DES to decrypt the CW in decryption block 460.
  • the decrypted CW is then used by descrambler logic 470 to descramble the scrambled program content 480 and output clear program content 490.
  • the encryption and decryption of the control word(s) is local to the set-top box, it is possible to phase in the deployment of increasingly more robust encryption.
  • single DES may be initially deployed, and later double or triple DES can be phased in with no consequence to already fielded paired units of set- top boxes and smart cards.
  • the key length of the Unique Key may be at least as large as the descrambled CW, to help reduce attacks on the Unique Key by hackers .
  • the smart card may be replaced by the headend 710 of a one-way or two-way network 720 as shown in Figure 7.
  • the headend 710 maintains the access rights for the digital device operating as a decoder 080398.
  • the headend 710 can deliver one or more service keys (generally referred to as "Service Key”) based on the Unique Key stored in the Descrambler IC 740.
  • the encrypted Service Key may be stored locally in the decoder 701 to facilitate transitions from one channel to another.
  • the Service Key are stored in encrypted form, and are loaded as needed into the Descrambler IC 740.
  • the Service Key is decrypted only in the Descrambler IC 740, by using one or more Unique Keys stored in memory 750 of the Descrambler IC 740.
  • the Service Key is used as a control word to descramble the content directly.
  • the Service Key is used to decrypt one or more control words, which are received in-band with the scrambled content and subsequently used for descrambling purposes .
  • the Service Key may be encrypted and decrypted using one of the algorithms used for the control words in the embodiments of Figures 2, 4, 5 and 6 described above.
  • the algorithm used to encrypt and decrypt the Service Key may be different than the algorithm used to scramble and descramble the program content. For example, M6 may be easier to do in software in either the smart card or the headend key server.
  • each Service Key may be encrypted using different public and proprietary encryption algorithm. These different proprietary algorithms may be considered as any-piracy measures to invalidate clone hardware .
  • the headend 710 can deliver one or more Service Keys on a channel or "tier of service” basis in EMMs.
  • Service Keys are encrypted, stored locally in decoder 701 and used by a processor 730 as needed when tuning to different channels. Because the set-top boxes are fielded in high volume as compared to the headend 710, eliminating the smart cards (and corresponding cryptographic processors) , from the set-top boxes can greatly reduce the cost of implementing a pay-TV system in a network.
  • While this embodiment works in one-way (non-IPPV) broadcast networks, it also performs in two-way, interactive networks, where the keys for a particular service are requested, such as IPPV or VOD purchases or any other non-subscription service.
  • a return channel 721 is used to request the Service Key(s) because the ability to grant access to a new service is performed by the headend 710 instead of a local controlling cryptographic processor.
  • a Free Preview period can be determined and IPPV programs can be marketed in advance of the actual viewing.
  • Service Keys for individual shows or movies may be requested by the decoder 701 and delivered ahead of time.
  • interactive networks such as a cable system having the return channel 721 such as a DOCSIS modem or Out-of-Band transmitter/receiver for example, can deliver a Request for Program Key (RPK) message from the decoder 701 to the headend 710.
  • RPK Request for Program Key
  • the decoder 701 may request the Service Keys in real-time for each program accessed.
  • a controller (not shown) on the network headend server 710 processes the RPK message.
  • the RPK message may contain an address of the decoder 701 as well as information needed 080398.
  • the request may be encrypted, if desired, for non-repudiation and prevention of denial of service attacks, such as IPPV or VOD requests for example.
  • MPEG Motion Picture Experts Group
  • the headend 710 Upon receipt of the message, the headend 710 accesses entries of an access control list (listing each entitlement of the decoder 701) and verifies the decoder is authorization to receive a particular Service Key. If authorized, the headend server 710 sends the Service Key (encrypted using a Unique Key of the decoder 701 located in the Descrambler IC) to the decoder 701.
  • an access control list listing each entitlement of the decoder 701
  • the headend server 710 sends the Service Key (encrypted using a Unique Key of the decoder 701 located in the Descrambler IC) to the decoder 701.
  • FIG 8 provides a more detailed illustration of the decoder 701 of Figure 7 adapter to the headend server 710 for request and receipt of one or more Service Keys.
  • program data 800 such as an Entitlement Control Message (ECM) or meta-data associated with an Electronic Program Guide (EPG) is provided to the decoder 701 by a content provider.
  • the program data 800 is adapted to convey at least an identifier of the desired Channel or Service (referred to as "Channel or Service ID") .
  • the program data 800 may further include a Program identifier (PID) . This is because no ECM processing other than identifying the appropriate encrypted key from memory, and using it to write it into the appropriate storage element (or register) of the Descrambler IC 740 needs to be performed.
  • PID Program identifier
  • An MPEG Demultiplexer 810 operates as a message processor to extract the Channel or Service ID upon 080398.
  • the Channel or Service ID are routed to the processor 730, which in combination with transmitter/receiver logic 820 generates a Request for Service Key (RSK) message over channel 721 for routing to the headend server 710 of Figure 7.
  • RSK Request for Service Key
  • the headend server 710 transmits the requested Service Key (SK) in an encrypted format to the transmitter/receiver logic 820, which provides the SK to the processor 730.
  • the processor 730 may store the SK in a memory 735 and/or provide the SK to the descrambler IC 740 for descrambling incoming scrambled content in real-time.
  • the memory 735 is an optional component for use if it is desirable to storage the SK locally. Where the SK is not stored locally but is accessed from the headend server 710 as needed, memory 735 may be removed from the decoder 701.
  • the descrambler IC 740 Upon receiving the scrambled content of the program data, the descrambler IC 740 descrambles such content, which is subsequently supplied to MPEG decoder 830 if the content is compressed with a MPEG format.
  • the MPEG decoder 830 decompresses the digital content and subsequently routes the decompressed digital content to either a digital-to-analog (D/A) converter for display on a television, a Digital Video Interface (DVI) link or a network interface (e.g., IEEE 1394 link).
  • D/A digital-to-analog
  • DVI Digital Video Interface
  • IEEE 1394 link e.g., IEEE 1394 link
  • processor 730 may be implemented on two or more integrated circuits interconnected through bus traces or another communication scheme (e.g., wires, optical fiber, 080398. P252X - 26 - Patent Application
  • these components may be implemented on a single integrated circuit .
  • the SK may be valid for a certain period of time.
  • the decoder 701 may store the SK in the memory 735, allowing the decoder 701 to re-access the service with if SK is still valid without having to request that Service Key again.
  • the SK is stored in encrypted form (as it comes over the network from the headend 710) in the memory 735.
  • the SK may be valid for the duration of a program or it may be valid for a selected period of time, e.g. 6 hours. Using a key for a longer period of time will reduce the overall number of transactions between the decoder 701 and the headend server because, once the key is stored in the memory 735 of the decoder 701, it is readily available.
  • the next Service Key (SK next ) may be delivered along with the SK.
  • the decoder 701 may request the SK ne ⁇ after detecting the end of the SK's valid Epoch (e.g., time duration of the SK) .
  • the Service Key is valid for the duration of a user's subscription period.
  • the Service Key should be identified properly so that it may be applied to a channel being tuned to.
  • the decoder 701 looks up the appropriate encrypted Service Key from the memory 735 and writes that into the Odd/Even MPEG key register of the descrambler IC 740.
  • the secret Unique Key information may be programmed into the descrambler IC 740 when decoder 701 is manufactured. 080398. P252X 27 - Patent Application
  • the Service Keys may comprise 56- bit, 112-bit, or 168-bit keys.
  • Table 1 shows the storage requirements for different sizes of keys.
  • Services can be sold a-la-carte or sold as a bouquet or package.
  • Service ID For example, there may be a basic tier of services, a medium tier offering more services, and advanced tiers offering different premium services, as shown in Figure 9.
  • each incremental tier of services may be given a separate key.
  • Figure 10 shows an exemplary embodiment of a method for requesting and receiving Service Keys.
  • Program information is continuously sent from the headend to the decoder (blocks 1010 and 1015) .
  • a viewer selects a channel to watch (block 1020) .
  • the decoder requests a Service Key from the headend (block 1025) .
  • the headend checks the subscription status of the decoder (block 1030) . If the decoder is subscribed, the headend provides the Service Key to the decoder (block 1055) . If the decoder is not subscribed, the viewer is asked by the decoder to subscribe (block 1035) . The viewer decides to subscribe (block 1040) .
  • the decoder sends a request for purchase to the headend (block 1045) .
  • the headend sends an encrypted Service Key to the decoder (block 1050) .
  • the decoder 701 of Figure 7 comprises a Descrambler IC 440 with a Unique Key. Service Keys are delivered to the decoder 701 encrypted by the Unique Key and stored in encrypted form in the decoder 701. Alternatively, the decoder 701 could request a Service Key each time that the decoder 701 tunes to a channel without storing the Service Keys locally.
  • the entitlements normally held by the secure cryptographic processor of Figure 2 are held by the controlling authority such as a key server in the headend 710 of Figure 7 for example.
  • the processor 730 in decoder 701 may receive a message (e.g., an ECM or an EMM), which tells it what it is authorized to descramble so that it may properly display viewing options to a viewer.
  • a message e.g., an ECM or an EMM
  • processor 730 can then request Service Keys for selected channels .
  • the Service Key is unit key encrypted. It may be a public asymmetric key or secret symmetric key.
  • Additional advantages include Pay-TV applications without using a cryptographic processor by providing the decoder 701 having the Descrambler IC 740 with Unique Keys hardwired into the IC 740.
  • the decoder 701 can request a Service Key or Control Word from a network provider. Local access control can be performed by the processor 730 because the critical "secure" function is isolated in the Descrambler IC 740.
  • the secure content delivery system 1100 comprises a subscriber management system 1110, a Conditional Access (CA) control system 1120, a plurality of mating key servers associated with different set-top box manufacturers 1130 X - 1130 N (N>2) and a set-top box 1140 adapted to receive a smart card 1150.
  • the smart card 1150 communicates with a descrambler IC 1160, which includes local memory 1170 configured to store a unique key ("Unique Key") 1180 of the set-top box 1140. 080398.
  • the set-top box 1140 determines whether entitlements associated with the requested program data are already stored therein. If the entitlements are not stored, the user may be notified by a screen display and prompted to provide a request 1111 to the subscriber management system 1110.
  • the request 1111 may be provided by the user via (i) an out-of-band communication pathway (e.g., electronic mail over the Internet, telephone call by the user, etc.) or (ii) an in-band communication pathway to the CA control system 1120 in communication with set-top box 1140 as shown.
  • the request 1111 may be sent automatically or may be routed to CA control system 1120 which performs a lookup of information to authorize the user substantially in real time.
  • the request 1111 is a message that comprises an identifier (e.g., an alphanumeric , or numeric code) of the requested content, a serial number of the set- top box (referred to as “STB Serial Num” ) and/or an identifier of the smart card 1150 (referred to as "Smart Card ID”) .
  • STB Serial Num serial number of the set- top box
  • Smart Card ID an identifier of the smart card 1150
  • CA control system 1120 could be configured to perform a lookup of databases containing serial numbers of set-top boxes or smart card IDs, thereby eliminating access to subscriber management system 1110. 080398 .
  • the CA control system 1120 Upon receiving an authorization (AUTH) message 1112 from the subscriber management system 1110, which may include the STB Serial Num and perhaps global keys (e.g., keys used to decrypt ECMs sent in-band with the content) , the CA control system 1120 routes the STB Serial Num 1141 and a mating key generator 1121 to at least one of the mating key servers 1130 ⁇ ..., or 1130 N (generally referred to as "mating key server 1130i," where i l) •
  • the CA control system 1120 operates as an intermediary to coordinate delivery of a mating key 1122 that is used to extract the requested program data from downloaded, scrambled information.
  • the CA control system 1120 may be implemented as a headend server, a broadcast station, a satellite uplink or the like.
  • CA control system 1120 routing the mating key generator 1121 and STB Serial Num 1141 to a mating key servers 1130 ⁇ -1130 N , it is contemplated that such information may be sent to a trusted third party 1135, which maintains and controls access to databases featuring mating keys.
  • the values associated with the mating key generator 1121 and/or STB Serial Num 1141 are used to retrieve the mating key 1122.
  • the "trusted third party" 1135 may include, but is not limited or restricted to a governmental entity, a company independently managed from any set-top box manufacturer, or the like.
  • the CA control system 1120 may perform an authentication scheme with a selected mating key server, such as server 1130 ⁇ , in order to establish a session key between the CA control system 1120 and the mating key server 1130 X .
  • a selected mating key server such as server 1130 ⁇
  • the session key can be used to encrypt information exchanged between the parties in order to provide a secure link there between.
  • Examples of various types of authentication schemes include an exchange of digital certificates, digital signatures, hash values or the like.
  • the mating key generator 1121 is a message that comprises one or more of the following: a Set-Top-Box Manufacturer identifier (STB Manufacturer ID) 1123, a Service Provider ID 1124, a conditional access (CA) Provider ID 1125 and a Mating Key Sequence Number 1126.
  • STB Manufacturer ID is a predetermined value that identifies a manufacturer of the set-top box 1140.
  • CA conditional access
  • STB manufacturer ID 1123 is optional, depending on the particular arrangement of the STB Serial Num 1141.
  • the "Service Provider ID” 1124 is a value (e.g., one or more bits such as 16-bits) that identifies the communications system provider as well as the selected distribution mechanism. For example, the Service Provider ID 1124 may identify which cable, satellite, terrestrial or Internet company is supplying the requested program data and/or the particular head-end server of that company.
  • the "CA Provider ID” 1125 indicates the provider of the CA control system 1120.
  • the "Mating Key Sequence Number” 1126 is used for reordering packets of information if the mating key 1122 is more than one packet in length, and in certain systems, may also be used to indicate expiration of the mating key generator 1121. 080398. P252X - 33 - Patent Application
  • the STB Serial Num 1141 may have a unique portion for each STB Manufacturer ID 1123 in order to identify the mating key server 1130 ! ,..., or 1130 N (or database of trusted third party 1135) to which access is sought.
  • the STB Serial Num 1141 may be expanded to include a serial number of the set-top box 1140 as well as a code field to identify the manufacturer of that set-top box 1140.
  • the number of bits is a design choice.
  • the appropriate mating key server e.g., server 1130 ⁇ , where i_>l
  • the mating key 1122 is used to encrypt a control word needed to descramble scrambled content being sent to the set-top box 1140.
  • the mating key server 1130 accesses a key being an identical copy of Unique Key 1180 pre-stored in server 1130 ⁇ and encrypts the mating key generator 1121 using the accessed key. This produces a key equivalent to the mating key 1122.
  • the mating key generator 1121 may undergo a one-way hash operation in which the result is encrypted or a portion of message 1121 encrypted in lieu of the entire message 1121 being encrypted.
  • EMM entitlement management message
  • EMM 1148 comprises at least two of the following: Smart Card ID 1143, length field 080398. P252X - 34 - Patent Application
  • mating key generator 1121 "M" (M>1) key identifiers 1145 ⁇ -1145 M and global keys 1146 ⁇ -1146 M associated with the key identifiers 1145 ⁇ -1145 M , respectively.
  • other entitlements 1147 may be included in the EMM 1148.
  • the mating key generator 1121 may be excluded from the EMM 1148 and sent separately and generally concurrent with the EMM 1148.
  • the Smart Card ID 1143 is a bit value that is used to indicate a particular set-top box and perhaps the manufacturer of the set-top box.
  • the "EMM length field” 1144 is a bit value that is used to indicate the length of the EMM 1148.
  • the mating key generator 1121 is a bit value that includes the parameters forth above in Figure 11B.
  • Each "key identifier" 1145 1 -1145 M is a 16-bit entitlement tag value that is signed for use in checking whether the global keys 1146 ⁇ -1146 M have been illicitly altered.
  • the global keys 1146 ⁇ -1146 M are used to decrypt ECMs 1142 used to deliver access criteria requirements and at least one control word in an encrypted format. The size (in bits) of these values/fields can be varied.
  • the smart card 1150 receives the EMM 1148 and forwards the mating key generator 1121 and an encrypted control word 1151 recovered from ECM 1142 to the descrambler IC 1160 of the set-top-box 1140 as described in Figure 12.
  • Figure 12 is a first exemplary embodiment of the descrambler IC 1160 implemented within the set-top box 1140 of Figure 11A.
  • the descrambler IC 1160 On receipt of the mating key generator 1121 and the encrypted control word 1151 from the smart card 1150, the descrambler IC 1160 comprises a first process block 1161 that performs an encryption operation on the mating key generator 1121 using a unique key 1162 080398.
  • the encryption operation may be in accordance with symmetric key cryptographic functions such as DES, AES, IDEA, 3DES and the like.
  • DES symmetric key cryptographic functions
  • AES AES
  • IDEA IDEA
  • 3DES 3DES
  • the "DES" operations are shown for illustrative purposes.
  • the encryption operation on the mating key generator 1121 produces a key 1163 identical to the mating key 1122, which is loaded into a second process block 1164 that is used to decrypt the encrypted control word 1151 to produce a control word 1165.
  • the control word 1165 is used for descrambling the scrambled content 1166 loaded into the set-top box 1140 and in particular the descrambler IC 1160. Descrambling may include performance of 3DES operations on the scrambled content 1166.
  • the result is content in a clear format, which may be transmitted from the descrambler IC 1160 and subsequently loaded into a MPEG decoder as shown in Figure 8 or optionally into a D/A converter, DVI Interface or IEEE 1394 interface.
  • process blocks 1161 and 1164 may be altered to support decryption and encryption respectively, depending on how the mating key 1122 is formulated.
  • the secure content delivery system 1200 comprises the subscriber management system 1110, the CA control system 1120, a mating key gateway 1210, the mating key servers 113O 0 .-113ON and the set-top box 1140.
  • the mating key generator 1121 and STB Serial Num 1141 from CA control system 1120 to one of a selected mating key servers 1130i as shown in Figure 11A, such 080398.
  • the mating key gateway 1210 accesses the STB Manufacturer ID from the mating key generator 1121 and appropriately routes the mating key generator 1121 and STB Serial Num 1141 to a selected mating key server 1130 ⁇ . This reduces the amount of processing time by CA control system 1120 or servers 1130 ⁇ -1130 N to recover the mating key 1122.
  • mating key gateway 1210 routing the mating key generator 1121 and STB Serial Num 1141 to a selected mating key server 1130i, it is contemplated that such information may be routed to the trusted third party 1135, which accesses a database for retrieval of a mating key.
  • the mating key is based on values associated with the mating key generator 1121 and/or STB Serial Num 1141.
  • Each database may be allocated a range of values where values associated within the mating key generator 1121 and/or the STB Serial Num 1141 can be used to identify a targeted database from which the mating key 1122 is accessed.
  • FIG 14A is a fifth exemplary embodiment of a secure content delivery system 1300.
  • the secure content delivery system 1300 comprises a subscriber management system 1310 and a CA control system 1320, a plurality of mating key servers 1330 ⁇ -1330 N associated with different set-top box manufacturers, a set-top box 1340, a mating key gateway 1350 (similar to gateway 1213) , and a network interface 1355 (e.g., DOCSIS CMTS) .
  • the set-top box 1340 comprises a descrambler IC 1360 including local memory 1370 configured to store a unique key 1380 of the set-top box 1340.
  • the set-top box 1340 received electronic program guide (EPG) meta-data with the EPG in an unscrambled format and 080398.
  • EPG electronic program guide
  • the EPG meta-data 1400 is provided out-of-band by CA control system 1320.
  • one embodiment of the EPG meta-data 1400 includes multiple tag entries 1410 ⁇ -1410 s (S>1) for different types of content provided by a content provider.
  • Each tag entry 1410 j comprises at least a channel name 1420, a name of the content 1430, and a key identifier 1440 indicating the tier of service associated with the channel.
  • Each tag entry 1410j further comprises a program identifier (PID) 1450 and a mating key generator (MKG) 1460.
  • PID program identifier
  • MKG mating key generator
  • the set-top box 1340 determines whether entitlements associated with the requested content are already stored therein. If the entitlements are not stored, the user may be either (1) notified directly through a screen display or audio playback and prompted to provide a request 1311 to the subscriber management system 1310 (or CA control system 1320) or (2) the request 1311 may be sent automatically.
  • the request 1311 may be provided out-of-band (e.g., telephone call or ' e-mail over Internet) or in-band (depression of order button on remote for transmission to subscriber management system 1310 via CA control system 1320) .
  • the request 1311 may be a message that comprises a serial number of the set -top box (referred to as "STB Serial Num") and an identifier (e.g., an alphanumeric or numeric code) of the requested content.
  • STB Serial Num a serial number of the set -top box
  • identifier e.g., an alphanumeric or numeric code
  • CA control system 1320 Upon receiving an authorization (AUTH) message 1312 from the subscriber management system 1310, including the STB Serial Num 1341 and entitlements (or looking up STB Serial Num 1341 at Ca control system 1320) , the CA control system 1320 routes the STB Serial Num 1341 and a mating key generator 1321 to the mating key gateway 1350.
  • the mating key gateway 1350 operates as an intermediary to coordinate delivery of a mating key 1322 that is used to extract the requested content from downloaded, scrambled information.
  • CA control system 1320 may be implemented as a headend server, a broadcast station, a satellite uplink or the like.
  • the CA control system 1320 may perform an authentication scheme with the mating key gateway 1350 in order to establish a session key to enable secure communications between them.
  • the CA control system 1320 Upon receipt of the mating key 1322, the CA control system 1320 generates one or more entitlement management message (EMMs) 1342.
  • EMMs entitlement management message
  • FIG 14B One embodiment of an EMM 1342 is illustrated in Figure 14B.
  • EMM 1342 comprises at least two of the following: STB Serial Num 1341, EMM length field 1343, mating key generator 1321, "M" (M 1) key identifiers 1344 ⁇ -1344 M and encrypted service keys 1345 ⁇ - 1345 M associated with the key identifiers 1344 ⁇ -1344 M , respectively.
  • M key identifiers 1344 ⁇ -1344 M
  • encrypted service keys 1345 ⁇ - 1345 M associated with the key identifiers 1344 ⁇ -1344 M , respectively.
  • the size (in bits) of these 080398 P252X - 39 - Patent Application
  • values can be varied and other types of entitlements 1346 besides identifiers or service keys may be included in the EMM 1342. Also, it is contemplated that the mating key generator 1321 may be excluded from the EMM 1342 and sent separately and generally concurrent with the EMM 1342. Of course, the size (in bits) of these values/fields can be varied.
  • the STB Serial Num 1341 is a value that is used to indicate a particular set-top box and perhaps the manufacturer of the set-top box.
  • the "EMM length field” 1343 is a bit value that is used to indicate the length of the EMM 1342.
  • the mating key generator 1321 is a bit value that includes the parameters forth above in Figure 11B.
  • Each "key identifier" 1344 X -1344 M is a 16-bit value that indicates a tier of service associated with a corresponding encrypted service key 1345 ⁇ -1345 M , respectively.
  • the encrypted service keys 1345 ⁇ -1345 M are decr pted by a key produced within the descrambler IC 1360 that is identical to the mating key 1322 as shown in Figure 16.
  • FIG 16 is a first exemplary embodiment of the descrambler IC 1360 implemented within the set-top box 1340 of Figure 14A.
  • the descrambler IC 1360 On receipt of the mating key generator 1321 and the encrypted service keys 1345 j (l ⁇ j ⁇ M) included in the EMM 1342, the descrambler IC 1360 comprises a first process block 1361 that performs an encryption operation on the mating key generator 1321 using a unique key 1362 previously stored in the descrambler IC 1360.
  • the encryption operation may be in accordance with symmetric key cryptographic functions such as DES, AES, IDEA, 3DES and the like. Of course, it is contemplated that block 080398.
  • 1361 may be altered to perform a hashing function in lieu of an encryption function.
  • the encryption operation on the mating key generator 1321 produces a key 1363 identical to the mating key 1322, which is loaded into a second process block 1364 that is used to decrypt the encrypted service key 1345j to recover the service key used to descramble the scrambled content 1365 loaded into the set-top box 1340 and in particular the descrambler IC 1360.
  • Descrambling may include performance of 3DES operations on the scrambled content .
  • the result may be content in a clear format, which is transmitted from the descrambler IC 1360 and subsequently loaded into a MPEG decoder as shown in Figure 8 or optionally into a D/A converter, DVI Interface or IEEE 1394 interface.
  • mating key gateway 1350 may be adapted for communications with a plurality of subscriber management systems (SMS) 1510 ⁇ -1510 ⁇ (K>1) each associated with a different content provider.
  • SMS subscriber management systems
  • Each of these subscriber management systems 1510 ⁇ -1510 ⁇ supply mating key generators and STB Serial Nums 152Ox-1520 K to mating key gateway 1350 and, in return, receive corresponding mating keys 1530 ⁇ -1530 ⁇ .
  • These mating keys 1530 ⁇ -1530 ⁇ are used to encrypt service keys provided to one or more targeted set-top boxes (not shown) .
  • the trusted third party 1135 may be utilized as shown in Figures 11A, 13 and 14.
  • subscriber management systems 1510 ⁇ and 1510 2 are 080398 .
  • subscriber management systems 1510 3 and 1510 4 are cable operators
  • subscriber management system 1510 5 is a direct broadcast satellite (DBS) company
  • subscriber management systems 1510 ⁇ -1 and 1510 ⁇ are Internet content sources.
  • a set-top box 1610 of the system 1600 receives scrambled or encrypted content 1620 from a first source and an entitlement management message (EMM) 1640 from a second source .
  • the second source may be a smart card or a CA control system.
  • the EMM 1640 comprises a user key generator 1642 and an encrypted user key 1641.
  • the encrypted user key 1641 is a value that is calculated to generate a particular value in the descrambler IC 1630 when it is decrypted by a unique key 1631 or a derivative thereof. It is a particular value in order for it to be shared.
  • the content can be re-scrambled using a copy protection key 1635, which is based on a user key 1633.
  • the copy protection key 1635 is shared with other devices, such as another set-top box 1670, a portable computer (e.g., PDA) 1671, or even a portable jukebox 1672, for decryption purposes.
  • an embodiment of the descrambler IC 1630 receives the encrypted user key (E ⁇ ey) 1641, the user key generator (UKG) 1642 and an encrypted 080398.
  • E ⁇ ey the encrypted user key
  • USG user key generator
  • the descrambler IC 1630 comprises a first process block 1632 that decrypts E ke y 1641 with the Unique Key 1631 in accordance with symmetric key cryptographic functions such as DES, AES, IDEA, 3DES and the like.
  • the decryption operation on E key 1641 recovers the user key 1633, which is loaded into a second process block 1634 that is used to encrypt UKG 1642 to produce the copy protection key 1635.
  • the encrypted control word 1643 is decrypted using the unique key 1631 (or derivative thereof) to recover the control word is a clear format for descrambling and/or decrypting the encrypted content 1620 loaded into the set-top box 1610 and in particular the descrambler IC 1630. Descrambling and/or decrypting may include performance of 3DES operations.
  • the content is temporarily placed in a clear format, but is routed to low-level encryption logic 1660, which encrypts the descrambled content with the copy protection key 1635 associated with any or all of the destination digital devices.
  • the content is secure during subsequent transmissions.

Abstract

According to one embodiment, a method for scrambling and descrambling program data comprises the receipt of a mating key generator message including a manufacturer identifier. The mating key generator message is transmitted to a first remote source identified by the manufacturer identifier. In response, a mating key is received from the first remote source. Then, the mating key is supplied to a second remote source, the mating key being subsequently used to encrypt a service key used for scrambling program data.

Description

METHOD AND APPARATUS FOR PROTECTING THE TRANSFER OF DATA
CROSS-REFERENCE TO RELATED APPLICATIONS
This application is a continuation-in-part application of United States Patent Application No. 09/497,393 filed February 3, 2000, which is based on a United States Provisional Application No. 60/126,805, filed on March 30, 1999.
BACKGROUND
1. Field
Embodiments of the invention relate to digital devices. More specifically, one embodiment of the invention relates to an apparatus and method for descrambling digital content in digital devices.
2. General Background
Analog communication systems are rapidly giving way to their digital counterparts. Digital television is currently scheduled to be available nationally. High-definition television (HDTV) broadcasts have already begun in most major cities on a limited basis. Similarly, the explosive growth of the Internet and the World Wide Web have resulted in a correlative growth in the increase of downloadable audio-visual files, such as MP3 -formatted audio files, as well as other content.
Simultaneously with, and in part due to this rapid move to digital communications system, there have been significant advances in digital recording devices. Digital versatile disk (DVD) recorders, digital VHS video cassette recorders (D-VHS VCR), CD-ROM recorders (e.g., CD-R and CD- 080398 . P252X - 2 - Patent Application
RW) , MP3 recording devices, and hard disk-based recording units are but merely representative of the digital recording devices that are capable of producing high quality recordings and copies thereof, without the generational degradation (i.e., increased degradation between successive copies) known in the analog counterparts. The combination of movement towards digital communication systems and digital recording devices poses a concern to content providers such as the motion picture and music industries, who desire to prevent the unauthorized and uncontrolled copying of copyrighted, or otherwise protected, material.
In response, there is a movement to require content providers, such as terrestrial broadcast, cable and direct broadcast satellite (DBS) companies, and companies having Internet sites which provide downloadable content, to introduce protection schemes. Two such copy protection systems have been proposed by the 5C group of the Data Hiding Sub Group (DHSG) (5C comprising representatives of Sony, Hitachi, Toshiba, Matsushita, and Intel) and the Data Transmission Discussion Group (DTDG) , which are industry committee sub-groups of the Copy Protection Technical Working Group (CPTWG) . The CPTWG represents the content providers, computer and consumer electronic product manufacturers .
The DTDG Digital Transmission Copy Protection (DTCP) proposal is targeted for protecting copy-protected digital content, which is transferred between digital devices connected via a digital transmission medium such as an IEEE 1394 serial bus. Device-based, the proposal uses symmetric key cryptographic techniques to encode components of a 080398. P252X - 3 - Patent Application
compliant device. This allows for the authentication of any digital device prior to the transmission of the digital content in order to determine whether the device is compliant. The digital content is itself encoded prior to transmission so that unauthorized copying of the content will result in copy having an unintelligible format.
One method of encoding the content has been proposed by the DHSG, and is based on watermarking techniques. Although the main focus of the DHSG proposal has been for copy protection of digital movie and video content, particularly as applied to DVD systems, it is expected to be applicable to the copy protection of any digital content distributed electronically via digital broadcasts and networks. The watermarking techniques, which are invisible to the user, allow the incoming content to be marked in a manner that makes it extremely difficult to discern precisely how the content was encoded, and thus extremely difficult to remove or alter the watermark without damaging the content . The DHSG has determined three primary cases of detection and control that such a technology should accomplish: playback, record and generational copy control. It is anticipated that the watermarking technology will allow the content provider to specify at least whether the content is "copy never," "copy once," and "copy free" content. "Copy never" is used to mark digital content to indicate that the content is not allowed to be copied, while "copy free" indicates that the content may be copied freely and which can be marked with additional information. This is different than material that is never marked. Finally, "copy once" is used to indicate that the digital content is allowed to be copied only once. As a copy is 080398. P252X - 4 - Patent Application
being made, the original "copy once" content and the newly copied content are re-marked with "no more copy." Of course, other types of copy management commands may limit the playing or reproduction of such digital content; for example, to a specific period of time, duration, or number of plays or viewings.
Thus, the functionality of digital devices such as set-top boxes, digital televisions, digital audio players, and similar such digital devices extends beyond their historical role of conditional access (CA) , i.e., merely descrambling content to a CA-clear format for real-time viewing and/or listening, and now include constraints and conditions on the recording and playback of such digital content. For example, currently, copying of scrambled content for subsequent descrambling and viewing or listening may be permitted with the appropriate service/content provider authorization or key provided to the digital device.
Traditional conditional access systems for Pay-TV originated from one-way broadcast systems where a back channel was not available. A cryptographic processor, such as a smart card, in a conditional access unit, such as a set-top box, for example, is generally infused with information and functionality in order to automatically grant access to programs .
For example, a smart card with a Pay-TV access control application typically receives entitlement management messages (EMMs) which grant certain service rights. Typically, services or group keys are delivered at the same time, and if the set -top box is allowed to view IPPV 080398. P252X - 5 - Patent Application
programs, then credit and cost limit information may be transmitted as well .
When tuning to a program, the smart card receives Entitlement Control Messages (ECMs) , which describe which entitlements the smart card needs in order to grant access to the show. Hackers may attempt to manipulate both EMMs and ECMs to view programs without paying the requisite subscription fees. Not only are the EMMs and ECMs manipulated, but the hardware is attacked as well. This combination of software and hardware attacks are used to cause the smart card to decrypt scrambled programs without authorization from the provider of the programs.
Once fielded, it is hard to change the functionality of the smart cards . Mechanisms for downloading new code to smart cards are prone to attack by hackers who may try to use the same mechanisms to load pirate code into the smart card in order to steal programs. One "safe" way to upgrade the access control system is to remove existing smart cards from the field and provide new ones. However, this can be costly and logistically difficult.
080398. P252X - 6 - Patent Application
BRIEF DESCRIPTION OF THE DRAWINGS
Embodiments of the invention are illustrated by way of example and not by way of limitation in the figures of the accompanying drawings, in which like references indicate similar elements and in which:
Figure 1 is an exemplary embodiment of an entertainment system including a digital device;
Figure 2 is a first exemplary embodiment of a secure content delivery system that comprises the conditional access unit adapted to operate with a smart card;
Figure 3 is an exemplary embodiment of a method for securely transferring control words from the smart card to the conditional access unit of Figure 2 ;
Figures 4 and 5 are exemplary embodiments of a method for encrypting and decrypting a control word;
Figure 6 is an exemplary embodiment of the descrambler integrated circuit implemented within the conditional access unit of Figure 2;
Figure 7 is a second exemplary embodiment of a secure content delivery system that comprises a decoder adapted to a headend server via a network connection;
Figure 8 is a more detailed illustration of the decoder adapter to the headend server of Figure 7;
Figure 9 is an exemplary embodiment of services that may be delivered to the conditional access unit of Figure 2 or the decoder of Figures 7 or 8 ;
Figure 10 is an exemplary embodiment of a method for requesting and receiving control words or service keys; 080398. P252X - 7 - Patent Application
Figure 11A is a third exemplary embodiment of a secure content delivery system;
Figure 11B is an exemplary embodiment of a data structure forming the mating key generator transmitted through a secure content delivery system;
Figure 11C is an exemplary embodiment of an entitlement management message (EMM) routed to a set-top box of the system of Figure 11A;
Figure 12 is a first exemplary embodiment of a descrambler IC implemented within the decoder of the set- top box of the system of Figure 11A;
Figure 13 is a fourth exemplary embodiment of a secure content delivery system;
Figure 14A is a fifth exemplary embodiment of a secure content delivery system;
Figure 14B is an exemplary embodiment of an entitlement management message (EMM) routed to a set-top box of the system of Figure 14A;
Figure 15 is an exemplary embodiment of meta-data associated with an electronic program guide (EPG) routed to the set-top box of the system of Figure 14A;
Figure 16 is a first exemplary embodiment of the descrambler IC implemented within the set-top box of Figure 14A;
Figure 17 is a portion of a sixth exemplary embodiment of a secure content delivery system;
Figure 18 is an exemplary embodiment of a portion of a seventh exemplary embodiment of a secure content delivery 080398. P252X - 8 - patent Application
system in which the digital device is adapted with copy protection functionality; and
Figure 19 is an exemplary embodiment of the decoder implemented within the digital device of Figure 18.
080398 . P252X - 9 - Patent Application
DETAILED DESCRIPTION
Various embodiments of the invention relate to an apparatus, system and method for protecting the transfer of data. In one embodiment, such protection involves the descrambling or decrypting of digital content from one or more content providers in digital devices. Examples of a "content provider" include, but are not limited to a terrestrial broadcaster, cable operator, direct broadcast satellite (DBS) company, a company providing content for download via the Internet, or any similar sources of content .
In the following description, certain terminology is used to describe features of the invention. For example, the terms "component" , "block" or "logic" are representative of hardware and/or software configured to perform one or more functions. For instance, examples of "hardware" include, but are not limited or restricted to an integrated circuit such as a processor (e.g., microprocessor, application specific integrated circuit, a digital signal processor, a micro-controller, etc.) . Of course, the hardwcire may be alternatively implemented as a finite state machine or even combinatorial logic.
An example of "software" includes executable code in the form of an application, an applet, a routine or even a series of instructions. The software may be stored in any type of machine readable medium such as a programmable electronic circuit, a semiconductor memory device such as volatile memory (e.g., random access memory, etc.) and/or non-volatile memory (e.g., any type of read-only memory "ROM", flash memory), a floppy diskette, an optical disk 080398. P252X - 10 - Patent Application
(e.g., compact disk or digital video disc "DVD"), a hard drive disk, tape, or the like.
The term "program data" generally represents any type of information being transferred over a secure content delivery system. Examples of program data include system information, one or more entitlement control messages or entitlement management messages, digital content, and/or other data, each of which will be described briefly below. A "message" is a collection of bits sent as a bit stream, a packet or successive packets.
Referring to Figure 1, an exemplary embodiment of an entertainment system 100 is shown. The entertainment system 100 includes a digital device 110 for receiving information including program data from one or more content providers. The program data may be propagated as a digital bit stream for example. The digital device 110 may operate as any number of products such as a set-top box or one or more components integrated into a television, computer, audio-playback device (e.g., digital radio), audio- recording device (e.g., MP3 player), video-recording device (e.g., TIVO® recorder by TiVo Inc. of Alviso, California), or the like.
For instance, the digital device 110 may be configured in accordance with an embedded architecture, a split security architecture, or an external security architecture. As an embedded architecture, in one embodiment, digital device 110 is implemented as a set-top box that comprises fixed, internal circuitry supporting both entitlement management and descrambling operations. 080398. P252X - 11 - Patent Application
Alternatively, in accordance with a split security architecture embodiment, the digital device 110 may be adapted to receive a removable smart card that handles entitlement management, while descrambling of incoming program data is controlled by internal circuitry.
Yet, in accordance -with an external security embodiment, the digital device 110 may be a "point-of- deployment" product with a PCMCIA card handling both entitlement management and descrambling operations by sending and receiving messages over an Out-of-Band channel.
Of course, as yet another alternative embodiment, external security type may also be split so that the PCMCIA card may be configured to handle descrambling operations, but adapted to communicate with a smart card for handling entitlement management. These and other embodiments of the digital device 110 may be implemented while still falling within the spirit and scope of the invention.
The digital device 110 comprises a receiver 111, which processes the incoming information, extracts the program data therefrom, and provides the program data in a perceivable format (e.g., viewable and/or audible) . As mentioned previously, the program data may include at least one or more of the following: system information, entitlement control messages, entitlement management messages, digital content, and other data.
Herein, "system information" may include information on program names, time of broadcast, source, and a method of retrieval and decoding, and well as copy management commands that provide digital receivers and other devices with information that will control how and when program 080398 . P252X - 12 - Patent Application
data may be replayed, retransmitted and/or recorded. These copy management commands may also be transmitted along with an entitlement control message (ECM) , which is generally used to regulate access to a particular channel or service. An "Entitlement Management Message" (EMM) may be used to deliver entitlements (sometimes referred to as "privileges") to the digital receiver 111. Examples of certain entitlements may include, but are not limited to access rights, access parameters, and/or descrambling keys. A descrambling key is generally a code that is required by descrambler logic to recover data in the clear from a scrambled format based on the entitlements granted. Finally, "content" in the program data stream may include images, audio, video or any combination thereof. The content may be in a scrambled or clear format .
As shown, when implemented as a set-top box, the digital device 110 may be coupled to other components in the entertainment system 100 via a transmission medium 120. The transmission medium 120 operates to transmit control information and data including program data between the digital device 110 and other components in the entertainment system 100. The transmission medium 120 may include, but is not limited to electrical wires, optical fiber, cable, a wireless link established by wireless signaling circuitry, or the like.
Depending on the type of product corresponding to the digital device 110, the entertainment system 100 may include an audio system 130 coupled to the transmission medium 120. A digital VCR 140, such as a D-VHS VCR, may also be coupled to the digital device 110 and other 080398. P252X - 13 - Patent Application
components of the entertainment system 100 through the transmission medium 120.
A hard disk recording unit 150 may also be coupled to digital device 110 and other components via transmission medium 120. Display 160 may include a high definition television display, a monitor, or another device capable of processing digital video signals. Finally, a control unit 170 may be coupled to the transmission medium 120. The control unit 170 may be used to coordinate and control the operation of some or each of the components on the entertainment system 100.
The content of a digital program may be transmitted in scrambled form. In one embodiment, as part of the program data, access requirements may be transmitted along with the scrambled content to the digital device 110 that is implemented with the receiver 111 functioning as a conditional access unit, especially when the digital device 110 operates as a set-top box. An "access requirement" is a restrictive parameter used to determine if the digital device 110 implemented with conditional access functionality, hereinafter referred to herein as the "conditional access unit 110," is authorized to descramble the scrambled content for viewing or listening purposes. For example, the access requirement may be a key needed to perceive (view and/or listen to) the content, a service tag associated with a given content provider, or even a particular descrambling software code.
When a scrambled program is received by the conditional access unit 110, the access requirements for the program are compared to the entitlements that the conditional access unit 110 actually has. In order for the 080398 . P252X - 14 - Patent Application
conditional access unit 110 to display the scrambled content in clear form, in one embodiment, the access requirements for the program are compared to the entitlements of the conditional access unit 110. The entitlements may state that the conditional access unit 110 is entitled to view/playback content from a given content provider such as Home Box Office (HBO), for example. The entitlements may also include one or more keys needed to descramble the content. The entitlements also may define the time periods for which the conditional access unit 110 may descramble the content .
Thus, in one embodiment, access requirements and entitlements form a part of the access control system to determine whether a conditional access unit or a decoder is authorized to view a particular program. It is contemplated that the description below focuses on mechanisms to recover audio/visual content such as television broadcasts, purchased movies and the like. However, it is contemplated that the invention is also applicable to the descrambling of audible content only (e.g., digitized music files) .
The access requirements and entitlements can provide consumers with a variety of choices for paying for the content and gaining access to the scrambled content . These choices may include pay per play (PPP) , pay per view (PPV) , impulse pay per view (IPPV), time based historical, pay per time (PPT), repurchase of copy never movies, personal scrambling, and regional pay per view. "Impulse pay per view" is a feature which allows purchase of pay per view movies through credit that has been previously downloaded into the set-top box. Purchase records may be stored and 080398. P252X - 15 - Patent Application
forwarded by phone to a billing center. "Time based historical" allows access to content that was delivered during a past time period, such as March through December, 1997, for example. The access requirements and entitlements can also provide consumers with different options for storing the scrambled content.
The access requirements may be delivered to the conditional access unit, located within digital device 110 or coupled thereto over transmission medium 120, using packet identifiers (PIDs) . Each PID may contain the access requirements associated with a given service or feature. The content that is delivered to the conditional access unit may also include a large number of PIDs, thus enabling special revenue features, technical features, or other special features to be performed locally.
Before receiving the content, the customer may be given a number of choices for gaining access to the content that is going to be stored to media. The customer may be required to purchase the right to access and view the content. Therefore, if the customer wants to record the content for lacer retrieval and viewing, the access requirements that the customer bought also need to be stored with the content .
In addition, there may be copy-protection applied to the descrambled content (e.g., transport stream) as shown in Figures 18 and 19. Copy-protected content will be re- scrambled across an interface interconnecting a destination interface (e.g., NRSS-A, NRSS-B or POD module interfaces) and a source. The source and destination interface need to agree on the key used to re-encrypt this content. This copy protection key can be encrypted with the unique key 080398. P252X - 16 - Patent Application
associated with the digital device. The unique key can be received through an EMM or other method, e.g. factory load procedure .
As seen in Figure 2, a first exemplary embodiment of a secure content delivery system that comprises a conditional access unit 401 adapted to operate with a smart card interface 420 is shown. This embodiment is consistent with a split security architecture and an external security architecture. In a split security architecture implementation, the digital device 110 operates as the conditional access unit 401 (e.g., equivalent to conditional access unit 110 of Figure 1) , but is implemented as a set-top box or other type of digital device. In an external security architecture implementation, conditional access unit 401 is a NRSS-B conditional access unit .
Although the smart card interface 420 may be built into the digital receiver 111, it is expected that the digital receiver 111 will have an expansion slot, such as a PCMCIA slot or Universal Services Bus (USB) slot for example, to receive a card or device 410 complementary to the interface 420. For this embodiment, the digital receiver 111 comprises an optional processor 430 and a descrambler integrated circuit (IC) 440.
Smart card interface 420 receives a smart card 410 including one or more encrypted control words for descrambling scrambled program content. Smart card 410 may transmit the control word(s) in encrypted form to the smart card interface 420. In order to protect the one or more control words, referred to as "CW, " from being improperly extracted by an interloper monitoring communications 080398. P252X - 17 - Patent Application
between the smart card 410 and the smart card interface 420, the smart card 410 may use an encryption key unique to conditional access unit 401 to encrypt the CW. This allows the conditional access unit 401 to decrypt the CW in a secure manner and use the clear control words to descramble the program content .
More specifically, according to one embodiment, an external cryptographic processor 415 of an ISO 7816 smart card for example, receives the CW needed to descramble content. A storage element 412 (e.g., register or other volatile or non-volatile memory) is previously loaded with one or more keys for encrypting the CW. Such loading may be performed during manufacture of the smart card 410, during manufacture of the storage element 412 or the cryptographic processor 415 when the storage element 412 is on-chip memory of the cryptographic processor 415, or perhaps via a communication pathway through conditional access unit 401 over smart card interface 420 (not shown) . The encryption block 414 of the smart card 410 (e.g., software or firmware executed by cryptographic processor 415, dedicated hardware, etc.) encrypts the CW with the one or more keys that are unique to descrambler IC 440.
For this embodiment, the smart card 410 delivers the encrypted CW to the processor 430 through interface 420, although the encrypted CW may be sent directly to decryption block 460 (e.g., state machine or dedicated circuitry) . The processor 430 may be implemented to perform additional operations to counteract additional obfuscation techniques performed on the CW, other than encryption using keys identical to or derivatives from those keys stored in the descrambler IC 440. It is noted 080398. P252X - 18 - Patent Application
that the CW is maintained in an encrypted format until processed by the descrambler IC 440. Therefore, the communications between the processor 430 and the descrambler IC 440 are secure.
The descrambler IC 440 in the conditional access unit 401 will decrypt the CW using one or more unique keys stored in a storage element 450. In one embodiment, the storage element 450 comprises one or more key registers loaded at manufacturer or after implemented within the conditional access unit 401 through initial program data transmitted to the conditional access unit 401.
Then, according to one embodiment, the decryption block 460 then writes the decrypted CW alternately into ODD and EVEN key storage elements (not shown) of descrambler logic 470 located in the descrambler IC 440. The descrambler logic 470 then applies the ODD/EVEN CW to the incoming scrambled content 480 at the right time and outputs descrambled program content 490. Of course, alternatives to the loading of ODD and EVEN key storage elements may be utilized for descrambling of the incoming scrambled content 480.
Thus, the transfer of the CW from the smart card 410 to the conditional access unit 401 is secure, because the CW is transferred in encrypted form. The CW remains secure in the conditional access unit 401 because the CW is not decrypted by the non-secure processor 430. The CW is only decrypted in the descrambler IC 440 that actually uses the CW, therefore, the CW is never exposed in the clear, and cannot be obtained by hackers . 080398. P252X - 19 - Patent Application
Furthermore, the key used to decrypt the CW is stored in hardware (e.g., storage element 450) of the descrambler IC 440. The storage element 450 cannot be hacked unless the silicon of the storage element 450 is probed. An attempt may be made to exhaustively trial a key stored in storage element 450 in IC 440. However, if the key is sufficiently large, the means of attack will be deemed hopeless. Furthermore, the key may only be valid for one particular conditional access unit 401, and may not be used by other units to decrypt the CW, because the CW is encrypted by the smart card 410 using a key or CW that is unique to an associated conditional access unit 401. Therefore, the transmission of the encrypted control word(s) from smart card 410 to conditional access unit 401 is secure and the control word(s) is (are) not vulnerable to theft by hackers.
The descrambler IC 440 handles the secure processing of the control words. This descrambler IC 440 has no CPU, no firmware, and no software. There is no complicated key hierarchy. A non-processor based descrambler IC 440 receives the encrypted CW, applies a unique key to it, and decrypts it. No instructions, no code, no hashing, and no software is loaded into the decryption block 460. The decryption is performed entirely by a hardware circuit or state machine of the descrambler IC 440 using only a single key function.
One or more unique keys, generally referred to as "Unique Key" .herein, may be programmed into the storage element 450 during manufacture. For example, in one embodiment, the descrambler IC 440 has a non-volatile, unique key storage element 450 that can be written only 080398. P252X - 20 - Patent Application
once. When the set-top box, television, or NRSS-B module is manufactured, the storage element 450 is programmed. In this embodiment, there is no way to either improperly read or overwrite the Unique Key that was originally loaded into the storage element 450. An association between the serial number of the conditional access unit 401 and the Unique Key loaded into the descrambler IC 440 of the conditional access unit 401 may be recorded.
When the conditional access unit 401 is manufactured and a smart card 410 is installed, the smart card 410 can receive the Unique Key associated with the conditional
I access unit 401 at the time of pairing.1 From then on, the smart card is "paired" to that particular host (e.g., the conditional access unit 401) . Later, if the smart card 410 is ever replaced or moved to a new host, the smart card 410 may be adapted to receive the Unique Key associated with the new host via an Entitlement Management Message (EMM) . Of course, as an alternative, a new smart card with a newly programmed Unique Key may also be delivered to the user.
An exemplary method for transferring the CW from the smart card 410 to the conditional access unit is shown in Figure 3. A control word is encrypted in the smart card 410 using a key stored in non-volatile memory of the smart card (block 40) . The key stored in the smart card is associated with the key stored in the storage element of the descrambler IC. The encrypted control word is received from the smart card (block 41) .
This method includes receiving a digital bitstream including program data in a descrambler IC, where the program data includes system information and scrambled digital content (block 42) . The encrypted control word is 080398. P252X - 21 - Patent Application
decrypted using a key stored in a storage element of the descrambler IC (block 44) . The scrambled digital content is descrambled in the descrambler IC using the decrypted control word (block 45) , and the descrambled digital content is output (block 46) .
Embodiments of the encryption and decryption functions performed by encryption block 414 and decryption block 460 are shown in Figures 4, 5 and 6. These operations transform the CW based on the Unique Key stored in storage elements 412 and 450. An encryption algorithm such as DES, M6, or DVB Common Scrambling Algorithm may be used. In the embodiments shown in Figures 4, 5 and 6, Triple DES is used. As shown in Figure 6, the descrambler IC 440 uses Triple DES to decrypt the CW in decryption block 460. The decrypted CW is then used by descrambler logic 470 to descramble the scrambled program content 480 and output clear program content 490.
However, because the encryption and decryption of the control word(s) is local to the set-top box, it is possible to phase in the deployment of increasingly more robust encryption. For example, single DES may be initially deployed, and later double or triple DES can be phased in with no consequence to already fielded paired units of set- top boxes and smart cards. The key length of the Unique Key may be at least as large as the descrambled CW, to help reduce attacks on the Unique Key by hackers .
In an alternative embodiment of the conditional access unit implementation of Figure 2, the smart card may be replaced by the headend 710 of a one-way or two-way network 720 as shown in Figure 7. The headend 710 maintains the access rights for the digital device operating as a decoder 080398. P252X - 22 - Patent Application
(referred to as "decoder 701"), instead of maintaining such access rights in a local cryptographic processor 415 of Figure 2. The headend 710 can deliver one or more service keys (generally referred to as "Service Key") based on the Unique Key stored in the Descrambler IC 740. The encrypted Service Key may be stored locally in the decoder 701 to facilitate transitions from one channel to another. The Service Key are stored in encrypted form, and are loaded as needed into the Descrambler IC 740. The Service Key is decrypted only in the Descrambler IC 740, by using one or more Unique Keys stored in memory 750 of the Descrambler IC 740. In one embodiment, the Service Key is used as a control word to descramble the content directly. In another embodiment, the Service Key is used to decrypt one or more control words, which are received in-band with the scrambled content and subsequently used for descrambling purposes .
The Service Key may be encrypted and decrypted using one of the algorithms used for the control words in the embodiments of Figures 2, 4, 5 and 6 described above. The algorithm used to encrypt and decrypt the Service Key may be different than the algorithm used to scramble and descramble the program content. For example, M6 may be easier to do in software in either the smart card or the headend key server. Also, each Service Key may be encrypted using different public and proprietary encryption algorithm. These different proprietary algorithms may be considered as any-piracy measures to invalidate clone hardware .
The headend 710 can deliver one or more Service Keys on a channel or "tier of service" basis in EMMs. The 080398. P252X - 23 - Patent Application
Service Keys are encrypted, stored locally in decoder 701 and used by a processor 730 as needed when tuning to different channels. Because the set-top boxes are fielded in high volume as compared to the headend 710, eliminating the smart cards (and corresponding cryptographic processors) , from the set-top boxes can greatly reduce the cost of implementing a pay-TV system in a network.
While this embodiment works in one-way (non-IPPV) broadcast networks, it also performs in two-way, interactive networks, where the keys for a particular service are requested, such as IPPV or VOD purchases or any other non-subscription service. A return channel 721 is used to request the Service Key(s) because the ability to grant access to a new service is performed by the headend 710 instead of a local controlling cryptographic processor.
In order to avoid overload problems at the headend 710 caused by a large number of simultaneous impulse buys of IPPV programs, a Free Preview period can be determined and IPPV programs can be marketed in advance of the actual viewing. In this embodiment, Service Keys for individual shows or movies may be requested by the decoder 701 and delivered ahead of time. For example, interactive networks, such as a cable system having the return channel 721 such as a DOCSIS modem or Out-of-Band transmitter/receiver for example, can deliver a Request for Program Key (RPK) message from the decoder 701 to the headend 710. Alternatively, the decoder 701 may request the Service Keys in real-time for each program accessed.
A controller (not shown) on the network headend server 710 processes the RPK message. The RPK message may contain an address of the decoder 701 as well as information needed 080398. P252X - 24 - Patent Application
to identify the channel to be viewed (all of which may be obtained from Motion Picture Experts Group (MPEG) system and program information already processed by the insecure processor) . The request may be encrypted, if desired, for non-repudiation and prevention of denial of service attacks, such as IPPV or VOD requests for example.
Upon receipt of the message, the headend 710 accesses entries of an access control list (listing each entitlement of the decoder 701) and verifies the decoder is authorization to receive a particular Service Key. If authorized, the headend server 710 sends the Service Key (encrypted using a Unique Key of the decoder 701 located in the Descrambler IC) to the decoder 701.
Figure 8 provides a more detailed illustration of the decoder 701 of Figure 7 adapter to the headend server 710 for request and receipt of one or more Service Keys. According to one embodiment, program data 800 such as an Entitlement Control Message (ECM) or meta-data associated with an Electronic Program Guide (EPG) is provided to the decoder 701 by a content provider. The program data 800 is adapted to convey at least an identifier of the desired Channel or Service (referred to as "Channel or Service ID") . In the event that the program data 800 is an IPPV or VOD program, the program data 800 may further include a Program identifier (PID) . This is because no ECM processing other than identifying the appropriate encrypted key from memory, and using it to write it into the appropriate storage element (or register) of the Descrambler IC 740 needs to be performed.
An MPEG Demultiplexer 810 operates as a message processor to extract the Channel or Service ID upon 080398. P252X - 25 - Patent Application
detection in program data. The Channel or Service ID are routed to the processor 730, which in combination with transmitter/receiver logic 820 generates a Request for Service Key (RSK) message over channel 721 for routing to the headend server 710 of Figure 7.
In response, upon authorization of the decoder 701, the headend server 710 transmits the requested Service Key (SK) in an encrypted format to the transmitter/receiver logic 820, which provides the SK to the processor 730. The processor 730 may store the SK in a memory 735 and/or provide the SK to the descrambler IC 740 for descrambling incoming scrambled content in real-time. For instance, the memory 735 is an optional component for use if it is desirable to storage the SK locally. Where the SK is not stored locally but is accessed from the headend server 710 as needed, memory 735 may be removed from the decoder 701.
Upon receiving the scrambled content of the program data, the descrambler IC 740 descrambles such content, which is subsequently supplied to MPEG decoder 830 if the content is compressed with a MPEG format. The MPEG decoder 830 decompresses the digital content and subsequently routes the decompressed digital content to either a digital-to-analog (D/A) converter for display on a television, a Digital Video Interface (DVI) link or a network interface (e.g., IEEE 1394 link).
As shown, the processor 730, memory 735, descrambler IC 740, MPEG Demultiplexer 810, transmitter/receiver logic 820 and MPEG decoder 830 may be implemented on two or more integrated circuits interconnected through bus traces or another communication scheme (e.g., wires, optical fiber, 080398. P252X - 26 - Patent Application
etc.). Alternatively, these components may be implemented on a single integrated circuit .
In this embodiment, the SK may be valid for a certain period of time. The decoder 701 may store the SK in the memory 735, allowing the decoder 701 to re-access the service with if SK is still valid without having to request that Service Key again. In this embodiment, the SK is stored in encrypted form (as it comes over the network from the headend 710) in the memory 735.
The SK may be valid for the duration of a program or it may be valid for a selected period of time, e.g. 6 hours. Using a key for a longer period of time will reduce the overall number of transactions between the decoder 701 and the headend server because, once the key is stored in the memory 735 of the decoder 701, it is readily available. Depending on the duration of the current Service Key (e.g., SK) , the next Service Key (SKnext) may be delivered along with the SK. Alternatively, the decoder 701 may request the SKneχ after detecting the end of the SK's valid Epoch (e.g., time duration of the SK) . In one embodiment, the Service Key is valid for the duration of a user's subscription period.
The Service Key should be identified properly so that it may be applied to a channel being tuned to. When the decoder 701 tunes to a channel, it looks up the appropriate encrypted Service Key from the memory 735 and writes that into the Odd/Even MPEG key register of the descrambler IC 740. As in the embodiment of Figure 2, the secret Unique Key information may be programmed into the descrambler IC 740 when decoder 701 is manufactured. 080398. P252X 27 - Patent Application
In one embodiment, the Service Keys may comprise 56- bit, 112-bit, or 168-bit keys. Table 1 shows the storage requirements for different sizes of keys.
Table 1 : Number of Bytes to Store Independent Service Keys
Figure imgf000029_0001
Services can be sold a-la-carte or sold as a bouquet or package. There may be several tiers of services, each identified by a Service ID. For example, there may be a basic tier of services, a medium tier offering more services, and advanced tiers offering different premium services, as shown in Figure 9. In this embodiment, each incremental tier of services may be given a separate key.
From Table 1 above, if a customer where to subscribe to 20 different types of Service tiers, that would require 60 bytes of ID storage, 320 bytes of storage of the 080398. P252X - 28 - Patent Application
currently valid Service Keys, 320 bytes of storage for the Service Keys valid for the next epoch (or billing period) for a total of 700 bytes.
Figure 10 shows an exemplary embodiment of a method for requesting and receiving Service Keys. Program information is continuously sent from the headend to the decoder (blocks 1010 and 1015) . A viewer then selects a channel to watch (block 1020) . The decoder requests a Service Key from the headend (block 1025) . The headend checks the subscription status of the decoder (block 1030) . If the decoder is subscribed, the headend provides the Service Key to the decoder (block 1055) . If the decoder is not subscribed, the viewer is asked by the decoder to subscribe (block 1035) . The viewer decides to subscribe (block 1040) . The decoder sends a request for purchase to the headend (block 1045) . The headend sends an encrypted Service Key to the decoder (block 1050) .
Thus, the decoder 701 of Figure 7 comprises a Descrambler IC 440 with a Unique Key. Service Keys are delivered to the decoder 701 encrypted by the Unique Key and stored in encrypted form in the decoder 701. Alternatively, the decoder 701 could request a Service Key each time that the decoder 701 tunes to a channel without storing the Service Keys locally.
The entitlements normally held by the secure cryptographic processor of Figure 2 are held by the controlling authority such as a key server in the headend 710 of Figure 7 for example. The processor 730 in decoder 701 may receive a message (e.g., an ECM or an EMM), which tells it what it is authorized to descramble so that it may properly display viewing options to a viewer. The 080398 . P252X - 29 - Patent Application
processor 730 can then request Service Keys for selected channels .
In this embodiment, there is no embedded "secure" firmware or software . Using the hardware decryption circuit mentioned above, an embedded processor core or firmware that performs a cryptographic function is not needed. This enables a number of conditional access applications, which may be downloaded to the insecure processor. The Service Key is unit key encrypted. It may be a public asymmetric key or secret symmetric key.
Additional advantages include Pay-TV applications without using a cryptographic processor by providing the decoder 701 having the Descrambler IC 740 with Unique Keys hardwired into the IC 740. The decoder 701 can request a Service Key or Control Word from a network provider. Local access control can be performed by the processor 730 because the critical "secure" function is isolated in the Descrambler IC 740.
Referring now to Figure 11A, a third exemplary embodiment of a secure content delivery system 1100 is shown. The secure content delivery system 1100 comprises a subscriber management system 1110, a Conditional Access (CA) control system 1120, a plurality of mating key servers associated with different set-top box manufacturers 1130X- 1130N (N>2) and a set-top box 1140 adapted to receive a smart card 1150. The smart card 1150 communicates with a descrambler IC 1160, which includes local memory 1170 configured to store a unique key ("Unique Key") 1180 of the set-top box 1140. 080398. P252X - 30 - Patent Application
Once a user of the set-top box 1140 desires to receive particular program data, the set-top box 1140 determines whether entitlements associated with the requested program data are already stored therein. If the entitlements are not stored, the user may be notified by a screen display and prompted to provide a request 1111 to the subscriber management system 1110. The request 1111 may be provided by the user via (i) an out-of-band communication pathway (e.g., electronic mail over the Internet, telephone call by the user, etc.) or (ii) an in-band communication pathway to the CA control system 1120 in communication with set-top box 1140 as shown. Alternatively, the request 1111 may be sent automatically or may be routed to CA control system 1120 which performs a lookup of information to authorize the user substantially in real time.
For one embodiment, the request 1111 is a message that comprises an identifier (e.g., an alphanumeric , or numeric code) of the requested content, a serial number of the set- top box (referred to as "STB Serial Num" ) and/or an identifier of the smart card 1150 (referred to as "Smart Card ID") . Implemented as any information processing system (e.g., server, relay station or other equipment controlled by a service provider or content provider) , the subscriber management system 1110 processes the request 1111 and determines what entitlements are to be provided to the set-top box 1140. Although not shown, it is contemplatedthat the CA control system 1120 could be configured to perform a lookup of databases containing serial numbers of set-top boxes or smart card IDs, thereby eliminating access to subscriber management system 1110. 080398 . P252X - 31 - Patent Application
Upon receiving an authorization (AUTH) message 1112 from the subscriber management system 1110, which may include the STB Serial Num and perhaps global keys (e.g., keys used to decrypt ECMs sent in-band with the content) , the CA control system 1120 routes the STB Serial Num 1141 and a mating key generator 1121 to at least one of the mating key servers 1130ι..., or 1130N (generally referred to as "mating key server 1130i," where i l) • The CA control system 1120 operates as an intermediary to coordinate delivery of a mating key 1122 that is used to extract the requested program data from downloaded, scrambled information. The CA control system 1120 may be implemented as a headend server, a broadcast station, a satellite uplink or the like.
Alternatively, instead of CA control system 1120 routing the mating key generator 1121 and STB Serial Num 1141 to a mating key servers 1130ι-1130N, it is contemplated that such information may be sent to a trusted third party 1135, which maintains and controls access to databases featuring mating keys. The values associated with the mating key generator 1121 and/or STB Serial Num 1141 are used to retrieve the mating key 1122. The "trusted third party" 1135 may include, but is not limited or restricted to a governmental entity, a company independently managed from any set-top box manufacturer, or the like.
Prior to transmission of the STB Serial Num 1141 and the mating key generator 1121, the CA control system 1120 may perform an authentication scheme with a selected mating key server, such as server 1130ι, in order to establish a session key between the CA control system 1120 and the mating key server 1130X. Of course, the authentication 080398 . P252X - 32 - Patent Application
scheme would be performed with the trusted third party if implemented in lieu of the mating key server 1130ι. The session key can be used to encrypt information exchanged between the parties in order to provide a secure link there between. Examples of various types of authentication schemes include an exchange of digital certificates, digital signatures, hash values or the like.
As shown in Figure 11B, the mating key generator 1121 is a message that comprises one or more of the following: a Set-Top-Box Manufacturer identifier (STB Manufacturer ID) 1123, a Service Provider ID 1124, a conditional access (CA) Provider ID 1125 and a Mating Key Sequence Number 1126. For this embodiment, "STB manufacturer ID" 1123 is a predetermined value that identifies a manufacturer of the set-top box 1140. Of course, it is contemplated that the STB manufacturer ID 1123 is optional, depending on the particular arrangement of the STB Serial Num 1141. The "Service Provider ID" 1124 is a value (e.g., one or more bits such as 16-bits) that identifies the communications system provider as well as the selected distribution mechanism. For example, the Service Provider ID 1124 may identify which cable, satellite, terrestrial or Internet company is supplying the requested program data and/or the particular head-end server of that company. The "CA Provider ID" 1125 indicates the provider of the CA control system 1120. The "Mating Key Sequence Number" 1126 is used for reordering packets of information if the mating key 1122 is more than one packet in length, and in certain systems, may also be used to indicate expiration of the mating key generator 1121. 080398. P252X - 33 - Patent Application
Referring back to Figure 11A, the STB Serial Num 1141 may have a unique portion for each STB Manufacturer ID 1123 in order to identify the mating key server 1130!,..., or 1130N (or database of trusted third party 1135) to which access is sought. Alternatively, the STB Serial Num 1141 may be expanded to include a serial number of the set-top box 1140 as well as a code field to identify the manufacturer of that set-top box 1140. Of course, the number of bits is a design choice.
Upon receipt of the mating key generator 1121 and STB Serial Num 1141, the appropriate mating key server (e.g., server 1130ι, where i_>l) returns the mating key 1122. In this embodiment, the mating key 1122 is used to encrypt a control word needed to descramble scrambled content being sent to the set-top box 1140. More specifically, the mating key server 1130 accesses a key being an identical copy of Unique Key 1180 pre-stored in server 1130ι and encrypts the mating key generator 1121 using the accessed key. This produces a key equivalent to the mating key 1122. Alternatively, it is contemplated that the mating key generator 1121 may undergo a one-way hash operation in which the result is encrypted or a portion of message 1121 encrypted in lieu of the entire message 1121 being encrypted.
Upon receipt of the mating key 1122, the CA control system 1120 generates an entitlement management message (EMM) 1148 along with one or more ECMs 1142 sent to the smart card 1140. One embodiment of EMM 1148 is illustrated in Figure 11C.
As shown in Figure 11C, EMM 1148 comprises at least two of the following: Smart Card ID 1143, length field 080398. P252X - 34 - Patent Application
1144, mating key generator 1121, "M" (M>1) key identifiers 1145ι-1145M and global keys 1146ι-1146M associated with the key identifiers 1145ι-1145M, respectively. Of course, other entitlements 1147 may be included in the EMM 1148. Also, it is contemplated that the mating key generator 1121 may be excluded from the EMM 1148 and sent separately and generally concurrent with the EMM 1148.
The Smart Card ID 1143 is a bit value that is used to indicate a particular set-top box and perhaps the manufacturer of the set-top box. The "EMM length field" 1144 is a bit value that is used to indicate the length of the EMM 1148. The mating key generator 1121, as shown, is a bit value that includes the parameters forth above in Figure 11B. Each "key identifier" 11451-1145M is a 16-bit entitlement tag value that is signed for use in checking whether the global keys 1146ι-1146M have been illicitly altered. The global keys 1146ι-1146M are used to decrypt ECMs 1142 used to deliver access criteria requirements and at least one control word in an encrypted format. The size (in bits) of these values/fields can be varied.
The smart card 1150 receives the EMM 1148 and forwards the mating key generator 1121 and an encrypted control word 1151 recovered from ECM 1142 to the descrambler IC 1160 of the set-top-box 1140 as described in Figure 12.
Figure 12 is a first exemplary embodiment of the descrambler IC 1160 implemented within the set-top box 1140 of Figure 11A. On receipt of the mating key generator 1121 and the encrypted control word 1151 from the smart card 1150, the descrambler IC 1160 comprises a first process block 1161 that performs an encryption operation on the mating key generator 1121 using a unique key 1162 080398. P252X - 35 - Patent Application
previously stored in the descrambler IC 1160. The encryption operation may be in accordance with symmetric key cryptographic functions such as DES, AES, IDEA, 3DES and the like. The "DES" operations are shown for illustrative purposes.
The encryption operation on the mating key generator 1121 produces a key 1163 identical to the mating key 1122, which is loaded into a second process block 1164 that is used to decrypt the encrypted control word 1151 to produce a control word 1165. The control word 1165 is used for descrambling the scrambled content 1166 loaded into the set-top box 1140 and in particular the descrambler IC 1160. Descrambling may include performance of 3DES operations on the scrambled content 1166. The result is content in a clear format, which may be transmitted from the descrambler IC 1160 and subsequently loaded into a MPEG decoder as shown in Figure 8 or optionally into a D/A converter, DVI Interface or IEEE 1394 interface.
It is contemplated that process blocks 1161 and 1164 may be altered to support decryption and encryption respectively, depending on how the mating key 1122 is formulated.
Referring now to Figure 13 , a fourth exemplary embodiment of a secure content delivery system 1200 is shown. The secure content delivery system 1200 comprises the subscriber management system 1110, the CA control system 1120, a mating key gateway 1210, the mating key servers 113O0.-113ON and the set-top box 1140. In lieu of transmitting the mating key generator 1121 and STB Serial Num 1141 from CA control system 1120 to one of a selected mating key servers 1130i as shown in Figure 11A, such 080398. P252X - 36 - Patent Application
information may be routed to the mating key gateway 1210. The mating key gateway 1210 accesses the STB Manufacturer ID from the mating key generator 1121 and appropriately routes the mating key generator 1121 and STB Serial Num 1141 to a selected mating key server 1130ι. This reduces the amount of processing time by CA control system 1120 or servers 1130ι-1130N to recover the mating key 1122.
Alternatively, instead of mating key gateway 1210 routing the mating key generator 1121 and STB Serial Num 1141 to a selected mating key server 1130i, it is contemplated that such information may be routed to the trusted third party 1135, which accesses a database for retrieval of a mating key. The mating key is based on values associated with the mating key generator 1121 and/or STB Serial Num 1141. Each database may be allocated a range of values where values associated within the mating key generator 1121 and/or the STB Serial Num 1141 can be used to identify a targeted database from which the mating key 1122 is accessed.
Figure 14A is a fifth exemplary embodiment of a secure content delivery system 1300. The secure content delivery system 1300 comprises a subscriber management system 1310 and a CA control system 1320, a plurality of mating key servers 1330χ-1330N associated with different set-top box manufacturers, a set-top box 1340, a mating key gateway 1350 (similar to gateway 1213) , and a network interface 1355 (e.g., DOCSIS CMTS) . The set-top box 1340 comprises a descrambler IC 1360 including local memory 1370 configured to store a unique key 1380 of the set-top box 1340.
The set-top box 1340 received electronic program guide (EPG) meta-data with the EPG in an unscrambled format and 080398. P252X - 37 - Patent Application
digital content 1348 in a scrambled format. In one embodiment, the EPG meta-data 1400 is provided out-of-band by CA control system 1320. As shown in Figure 15, one embodiment of the EPG meta-data 1400 includes multiple tag entries 1410ι-1410s (S>1) for different types of content provided by a content provider. Each tag entry 1410j comprises at least a channel name 1420, a name of the content 1430, and a key identifier 1440 indicating the tier of service associated with the channel. In addition, Each tag entry 1410j further comprises a program identifier (PID) 1450 and a mating key generator (MKG) 1460.
Referring back to Figure 14A, once a user of the set- top box 1340 desires to receive particular type of content (e.g., PPV movie, broadcast channel, etc.), the set-top box 1340 determines whether entitlements associated with the requested content are already stored therein. If the entitlements are not stored, the user may be either (1) notified directly through a screen display or audio playback and prompted to provide a request 1311 to the subscriber management system 1310 (or CA control system 1320) or (2) the request 1311 may be sent automatically. The request 1311 may be provided out-of-band (e.g., telephone call or' e-mail over Internet) or in-band (depression of order button on remote for transmission to subscriber management system 1310 via CA control system 1320) .
Herein, the request 1311 may be a message that comprises a serial number of the set -top box (referred to as "STB Serial Num") and an identifier (e.g., an alphanumeric or numeric code) of the requested content. The subscriber management system 1310 processes the request 080398 . P252X - 38 - Patent Application
1311 and determines what entitlements are to be provided to the set-top box 1340.
Upon receiving an authorization (AUTH) message 1312 from the subscriber management system 1310, including the STB Serial Num 1341 and entitlements (or looking up STB Serial Num 1341 at Ca control system 1320) , the CA control system 1320 routes the STB Serial Num 1341 and a mating key generator 1321 to the mating key gateway 1350. The mating key gateway 1350 operates as an intermediary to coordinate delivery of a mating key 1322 that is used to extract the requested content from downloaded, scrambled information. As described previously, CA control system 1320 may be implemented as a headend server, a broadcast station, a satellite uplink or the like.
Prior to transmission of the STB Serial Num 1341 and the mating key generator 1321, elements of these messages described in Figures 11A-11C above, the CA control system 1320 may perform an authentication scheme with the mating key gateway 1350 in order to establish a session key to enable secure communications between them.
Upon receipt of the mating key 1322, the CA control system 1320 generates one or more entitlement management message (EMMs) 1342. One embodiment of an EMM 1342 is illustrated in Figure 14B.
As shown in Figure 14B, EMM 1342 comprises at least two of the following: STB Serial Num 1341, EMM length field 1343, mating key generator 1321, "M" (M 1) key identifiers 1344ι-1344M and encrypted service keys 1345ι- 1345M associated with the key identifiers 1344ι-1344M, respectively. Of course, the size (in bits) of these 080398. P252X - 39 - Patent Application
values can be varied and other types of entitlements 1346 besides identifiers or service keys may be included in the EMM 1342. Also, it is contemplated that the mating key generator 1321 may be excluded from the EMM 1342 and sent separately and generally concurrent with the EMM 1342. Of course, the size (in bits) of these values/fields can be varied.
The STB Serial Num 1341 is a value that is used to indicate a particular set-top box and perhaps the manufacturer of the set-top box. The "EMM length field" 1343 is a bit value that is used to indicate the length of the EMM 1342. The mating key generator 1321, as shown, is a bit value that includes the parameters forth above in Figure 11B. Each "key identifier" 1344X-1344M is a 16-bit value that indicates a tier of service associated with a corresponding encrypted service key 1345ι-1345M, respectively. The encrypted service keys 1345ι-1345M are decr pted by a key produced within the descrambler IC 1360 that is identical to the mating key 1322 as shown in Figure 16.
Figure 16 is a first exemplary embodiment of the descrambler IC 1360 implemented within the set-top box 1340 of Figure 14A. On receipt of the mating key generator 1321 and the encrypted service keys 1345j (l<j<M) included in the EMM 1342, the descrambler IC 1360 comprises a first process block 1361 that performs an encryption operation on the mating key generator 1321 using a unique key 1362 previously stored in the descrambler IC 1360. The encryption operation may be in accordance with symmetric key cryptographic functions such as DES, AES, IDEA, 3DES and the like. Of course, it is contemplated that block 080398. P252X - 40 - Patent Application
1361 may be altered to perform a hashing function in lieu of an encryption function.
The encryption operation on the mating key generator 1321 produces a key 1363 identical to the mating key 1322, which is loaded into a second process block 1364 that is used to decrypt the encrypted service key 1345j to recover the service key used to descramble the scrambled content 1365 loaded into the set-top box 1340 and in particular the descrambler IC 1360. Descrambling may include performance of 3DES operations on the scrambled content . The result may be content in a clear format, which is transmitted from the descrambler IC 1360 and subsequently loaded into a MPEG decoder as shown in Figure 8 or optionally into a D/A converter, DVI Interface or IEEE 1394 interface.
Referring now to Figure 17, a portion of a sixth exemplary embodiment of a secure content delivery system 1500 is shown. In lieu of the subscriber management system 1310 and the CA control system 1320 of Figure 14A, mating key gateway 1350 may be adapted for communications with a plurality of subscriber management systems (SMS) 1510ι-1510κ (K>1) each associated with a different content provider. Each of these subscriber management systems 1510ι-1510κ supply mating key generators and STB Serial Nums 152Ox-1520K to mating key gateway 1350 and, in return, receive corresponding mating keys 1530ι-1530κ. These mating keys 1530ι-1530κ are used to encrypt service keys provided to one or more targeted set-top boxes (not shown) . Alternatively, the trusted third party 1135 may be utilized as shown in Figures 11A, 13 and 14.
For example, for this illustrated embodiment, subscriber management systems 1510χ and 15102 are 080398 . P252X - 41 - Patent Application
terrestrial broadcasters, each providing mating key generators and STB Serial Nums 152Ox, 15202 to mating key gateway 1350 and receiving corresponding mating keys 1530]., 15302. Similar in operation, subscriber management systems 15103 and 15104 are cable operators, subscriber management system 15105 is a direct broadcast satellite (DBS) company, and subscriber management systems 1510κ-1 and 1510κ are Internet content sources.
Referring to Figure 18, a portion of a seventh exemplary embodiment of a secure content delivery system 1600 is shown. A set-top box 1610 of the system 1600 receives scrambled or encrypted content 1620 from a first source and an entitlement management message (EMM) 1640 from a second source . The second source may be a smart card or a CA control system.
In accordance with one embodiment of the invention, the EMM 1640 comprises a user key generator 1642 and an encrypted user key 1641. As shown in Figures 18 and 19, the encrypted user key 1641 is a value that is calculated to generate a particular value in the descrambler IC 1630 when it is decrypted by a unique key 1631 or a derivative thereof. It is a particular value in order for it to be shared. After payment and CA descrambling, the content can be re-scrambled using a copy protection key 1635, which is based on a user key 1633. The copy protection key 1635 is shared with other devices, such as another set-top box 1670, a portable computer (e.g., PDA) 1671, or even a portable jukebox 1672, for decryption purposes.
As further shown in Figure 19, an embodiment of the descrambler IC 1630 receives the encrypted user key (E^ey) 1641, the user key generator (UKG) 1642 and an encrypted 080398. P252X - 42 - Patent Application
control word 1643 from the second source. The descrambler IC 1630 comprises a first process block 1632 that decrypts Ekey 1641 with the Unique Key 1631 in accordance with symmetric key cryptographic functions such as DES, AES, IDEA, 3DES and the like.
The decryption operation on Ekey 1641 recovers the user key 1633, which is loaded into a second process block 1634 that is used to encrypt UKG 1642 to produce the copy protection key 1635. The encrypted control word 1643 is decrypted using the unique key 1631 (or derivative thereof) to recover the control word is a clear format for descrambling and/or decrypting the encrypted content 1620 loaded into the set-top box 1610 and in particular the descrambler IC 1630. Descrambling and/or decrypting may include performance of 3DES operations.
As a result, the content is temporarily placed in a clear format, but is routed to low-level encryption logic 1660, which encrypts the descrambled content with the copy protection key 1635 associated with any or all of the destination digital devices. As a result, the content is secure during subsequent transmissions.
In the foregoing description, the invention is described with reference to specific exemplary embodiments thereof. It will, however, be evident that various modifications and changes may be made thereto without departing from the broader spirit and scope of the present invention as set forth in the appended claims . The specification and drawings are accordingly to be regarded in an illustrative rather than in a restrictive sense.

Claims

CLAIMSWhat is claimed is:
1. A secure content delivery system, comprising: a set-top box to initiate a request for program data; and a conditional access (CA) control system in communication with the set-top box, the CA control system to transmit information to a remote source, and in response, to receive a mating key being based on the transmitted information from the remote source, the mating key being used to encrypt a control word used for scrambling the program data prior to transmission to the set-top box.
2. The secure content delivery system of claim 1, wherein the remote source is a plurality of servers each associated with a manufacturer of set-top boxes.
3. The secure content delivery system of claim 2, wherein the transmitted information including a manufacturer identifier that identifies one of the plurality of servers associated with the manufacturer of the set-top box in order to retrieve the mating key therefrom.
4. The secure content delivery system of claim 1, wherein transmitted information comprises a mating key sequence number being used for reordering packets forming the mating key where the mating key is more than one packet in length.
080398. P252X - 44 - Patent Application
5. The secure content delivery system of claim 1, wherein transmitted information comprises an identifier that identifies a supplier of the program data, the supplier being one of a cable provider, a satellite-based provider, a terrestrial-based provider, and an Internet service provider.
6. The secure content delivery system of claim 1, wherein transmitted information comprises an identifier that indicates a provider of the CA control system.
7. The secure content delivery system of claim 1, wherein the remote source is a trusted third party including a plurality of databases accessible by the CA control system.
8. The secure content delivery system of claim 1, wherein the CA control system generates and provides an entitlement control message (ECM) and an entitlement management message (EMM) to the set-top box after receipt of the mating key, the ECM comprises at least one global key to decrypt the ECM and a corresponding key identifier being a value that is digitally signed for use in checking whether the global key has been illicitly altered.
9. The secure content delivery system of claim 1, wherein CA control system generates and provides an entitlement control message (ECM) and an entitlement management message (EMM) to the set-top box after receipt of the mating key, the ECM comprises the control word in an encrypted format and the EMM comprises a mating key generator.
080398. P252X - 45 - Patent Application
10. The secure content delivery system of claim 9, wherein the set-top box comprises a smart card and a descrambler component.
11. The secure content delivery system of claim 10, wherein the smart card of the set-top box receives the EMM and forwards the mating key generator from the EMM and the encrypted control word recovered from the ECM to the descrambler component of the set-top-box.
12. The secure content delivery system of claim 11, wherein the descrambler component comprises a first process block that performs an encryption operation on the mating key generator message using a unique key previously stored in the descrambler component to produce a key identical to the mating key, the key being loaded into a second process block that is used to decrypt the encrypted control word to produce the control word used for descrambling the scrambled program data.
13. A method comprising: receiving a mating key generator message including a manufacturer identifier; transmitting the mating key generator message to a first remote source identified by the manufacturer identifier; receiving a mating key from the first remote source; and supplying the mating key to a second remote source, the mating key being subsequently used to encrypt a service key used for scrambling program data.
080398 . P252X - 46 - Patent Application
14. The method of claim 13 , wherein the mating key generator message further comprises a mating key sequence number being used for reordering packets forming the mating key where the mating key is more than one packet in length.
15. The method of claim 13, wherein the mating key generator message further comprises an identifier that identifies a supplier of the program data, the supplier being one of a cable provider, a satellite-based provider, a terrestrial-based provider, and an Internet service provider.
16. The method of claim 13, wherein the supplying of the mating key to the second remote source includes providing the mating key to a conditional access (CA) control system being in communication with a set-top box.
17. The method of claim 16 further comprising: supplying the encrypted service key and the mating key generator message to a descrambler component of the set-top box.
18. The method of claim 16 further comprising: producing an entitlement management message (EMM) that comprises the mating key generator message, the encrypted service key and a key identifier being a value that indicates a tier of service associated with the encrypted service key; and providing the EMM to the set-top box.
19. The method of claim 16 further comprising:
080398. P252X - 47 - Patent Application
providing meta-data with an electronic program guide in an unscrambled format from the CA control system to the set-top box, the meta-data comprises a plurality of tag entries each comprising a channel name, a name of the program data, and a key identifier indicating a tier of service associated with the channel ; and providing the mating key generator message from the CA control system to the set-top box..
20. The method of claim 19, wherein the meta-data comprises further comprises the mating key generator message .
21. A mating key gateway adapted for communication with a plurality of subscriber management systems each associated with a different content provider, comprising: means for retrieving a mating key based on at least one of a serial number associated with a set-top box targeted to receive program data and a mating key generator; and means for transmitting the mating key to the one of the plurality of subscriber management systems, the mating key being used to encrypt at least one service key provided to the set-top box.
22. The mating key gateway of claim 21 supporting operations from at least two subscriber management systems concurrently.
23. The mating key gateway of claim 22, wherein the at least two subscriber management systems include at least
080398 . P252X - 48 - Patent Application
two of a group consisting of cable provider, a satellite- based provider and an Internet service provider.
24. An apparatus adapted to receive scrambled content and descramble the scrambled content, comprising: a removable smart card adapted to receive (i) an encrypted control word, and (ii) a mating key generator message; and a descrambler component to receive the encrypted control word and the mating key generator, the descambler component performs a cryptographic operation on the mating key generator to produce a key that is capable of decrypting the encrypted control word to recover a control word used for descrambling scrambled content loaded into the set-top box.
25. The apparatus of claim 24, wherein the smart card further receiving an enhancement control message including the encrypted control word, the enhancement control message includes access criteria for to a particular channel over which the scrambled content is transmitted.
26. The apparatus of claim 25, wherein the descrambler component is an integrated circuit.
27. The apparatus of claim 26, wherein the mating key generator received by the descrambler component comprises at least one key to decrypt the enhancement control message to recover the encrypted control word entirely within the descrambler component .
080398 . P252X - 49 - Patent Application
28. An apparatus adapted to receive scrambled content, comprising: a network interface; and a descrambler component to receive a mating key generator message, at least one encrypted service key and a corresponding key identifier to indicates a tier of service associated with the encrypted service key over the network interface, the descrambler component performing a cryptographic operation on the mating key generator to produce a key for decrypting the encrypted service key to recover a service key used to descramble the scrambled content .
29. The apparatus of claim 28, wherein the mating key generator message, the encrypted service key and the corresponding key identifier are contained in a single enhancement management message (EMM) .
30. The apparatus of claim 28, wherein the mating key generator message is supplied by meta-data associated with an electronic program guide while the encrypted service key and the corresponding key identifier are contained in an enhancement management message (EMM) .
31. The apparatus of claim 28, wherein both the mating key generator message and the corresponding key identifier are supplied by meta-data associated with an electronic program guide while the encrypted service key is contained in an enhancement management message (EMM) .
PCT/US2004/006767 2003-03-11 2004-03-05 Method and apparatus for protecting the transfer of data WO2004082147A2 (en)

Priority Applications (3)

Application Number Priority Date Filing Date Title
EP04717990.8A EP1618666B1 (en) 2003-03-11 2004-03-05 Method and apparatus for protecting the transfer of data
JP2006509171A JP4663628B2 (en) 2003-03-11 2004-03-05 Data transfer protection method and apparatus
KR1020117019418A KR101081160B1 (en) 2003-03-11 2004-03-05 Method and apparatus for protecting the transfer of data

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
US10/387,163 US7730300B2 (en) 1999-03-30 2003-03-11 Method and apparatus for protecting the transfer of data
US10/387,163 2003-03-11

Publications (2)

Publication Number Publication Date
WO2004082147A2 true WO2004082147A2 (en) 2004-09-23
WO2004082147A3 WO2004082147A3 (en) 2006-12-21

Family

ID=32987327

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/US2004/006767 WO2004082147A2 (en) 2003-03-11 2004-03-05 Method and apparatus for protecting the transfer of data

Country Status (5)

Country Link
US (1) US7730300B2 (en)
EP (1) EP1618666B1 (en)
JP (4) JP4663628B2 (en)
KR (2) KR101081160B1 (en)
WO (1) WO2004082147A2 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP2107808A1 (en) * 2008-04-03 2009-10-07 Nagravision S.A. Security module (SM) for an audio/video data processing unit
US8533459B2 (en) 1999-03-30 2013-09-10 Sony Corporation Method and apparatus for protecting the transfer of data
US20230185800A1 (en) * 2021-12-14 2023-06-15 International Business Machines Corporation Secure database-as-a-service system

Families Citing this family (117)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7730300B2 (en) 1999-03-30 2010-06-01 Sony Corporation Method and apparatus for protecting the transfer of data
US7565546B2 (en) * 1999-03-30 2009-07-21 Sony Corporation System, method and apparatus for secure digital content transmission
US7039614B1 (en) 1999-11-09 2006-05-02 Sony Corporation Method for simulcrypting scrambled data to a plurality of conditional access devices
US6701528B1 (en) 2000-01-26 2004-03-02 Hughes Electronics Corporation Virtual video on demand using multiple encrypted video segments
JP4529056B2 (en) * 2000-03-21 2010-08-25 ソニー株式会社 Information processing apparatus and method, recording medium, and information processing system
US8082572B1 (en) 2000-06-08 2011-12-20 The Directv Group, Inc. Method and apparatus for transmitting, receiving, and utilizing audio/visual signals and other information
US8140859B1 (en) 2000-07-21 2012-03-20 The Directv Group, Inc. Secure storage and replay of media programs using a hard-paired receiver and storage device
US7457414B1 (en) 2000-07-21 2008-11-25 The Directv Group, Inc. Super encrypted storage and retrieval of media programs with smartcard generated keys
US7203311B1 (en) * 2000-07-21 2007-04-10 The Directv Group, Inc. Super encrypted storage and retrieval of media programs in a hard-paired receiver and storage device
US7018795B2 (en) * 2001-03-23 2006-03-28 Fuji Photo Film Co., Ltd. Hybridization probe and target nucleic acid detecting kit, target nucleic acid detecting apparatus and target nucleic acid detecting method using the same
FR2823039B1 (en) * 2001-03-30 2003-08-01 Canal Plus Technologies SYSTEM AND METHOD FOR TRANSMITTING ENCRYPTED INFORMATION WITH ENCRYPTED KEY
US7747853B2 (en) 2001-06-06 2010-06-29 Sony Corporation IP delivery of secure digital content
US7895616B2 (en) 2001-06-06 2011-02-22 Sony Corporation Reconstitution of program streams split across multiple packet identifiers
US7151831B2 (en) * 2001-06-06 2006-12-19 Sony Corporation Partial encryption and PID mapping
US7797552B2 (en) 2001-09-21 2010-09-14 The Directv Group, Inc. Method and apparatus for controlling paired operation of a conditional access module and an integrated receiver and decoder
US7409562B2 (en) * 2001-09-21 2008-08-05 The Directv Group, Inc. Method and apparatus for encrypting media programs for later purchase and viewing
US7155012B2 (en) 2002-01-02 2006-12-26 Sony Corporation Slice mask and moat pattern partial encryption
US7215770B2 (en) 2002-01-02 2007-05-08 Sony Corporation System and method for partially encrypted multimedia stream
US7302059B2 (en) 2002-01-02 2007-11-27 Sony Corporation Star pattern partial encryption
US7823174B2 (en) 2002-01-02 2010-10-26 Sony Corporation Macro-block based content replacement by PID mapping
US7765567B2 (en) 2002-01-02 2010-07-27 Sony Corporation Content replacement by PID mapping
US7292690B2 (en) 2002-01-02 2007-11-06 Sony Corporation Video scene change detection
US7552343B2 (en) * 2002-03-19 2009-06-23 Nxp B.V. Conditional access control
JP2003333030A (en) * 2002-05-16 2003-11-21 Nec Corp Method for outputting time shift and device for outputting time shift
US8818896B2 (en) 2002-09-09 2014-08-26 Sony Corporation Selective encryption with coverage encryption
US8572408B2 (en) 2002-11-05 2013-10-29 Sony Corporation Digital rights management of a digital device
US7724907B2 (en) 2002-11-05 2010-05-25 Sony Corporation Mechanism for protecting the transfer of digital content
US7225458B2 (en) * 2002-11-21 2007-05-29 The Directv Group, Inc. Method and apparatus for ensuring reception of conditional access information in multi-tuner receivers
US8645988B2 (en) 2002-12-13 2014-02-04 Sony Corporation Content personalization for digital content
US8667525B2 (en) 2002-12-13 2014-03-04 Sony Corporation Targeted advertisement selection from a digital stream
US8732086B2 (en) * 2003-01-02 2014-05-20 Catch Media, Inc. Method and system for managing rights for digital music
US8644969B2 (en) 2003-01-02 2014-02-04 Catch Media, Inc. Content provisioning and revenue disbursement
US8666524B2 (en) * 2003-01-02 2014-03-04 Catch Media, Inc. Portable music player and transmitter
US8918195B2 (en) * 2003-01-02 2014-12-23 Catch Media, Inc. Media management and tracking
US20060107330A1 (en) * 2003-01-02 2006-05-18 Yaacov Ben-Yaacov Method and system for tracking and managing rights for digital music
SG129240A1 (en) * 2003-01-23 2007-02-26 Agency Science Tech & Res Biodegradable copolymer and nucleic acid delivery system
TW200511860A (en) * 2003-05-14 2005-03-16 Nagracard Sa Duration computing method in a security module
US20040260786A1 (en) * 2003-06-20 2004-12-23 Barile Steven E. Method and apparatus for caching multimedia content from the Internet on occasionally-connected devices
JP2005018362A (en) * 2003-06-25 2005-01-20 Renesas Technology Corp Semiconductor memory
TW200509637A (en) * 2003-07-14 2005-03-01 Nagravision Sa Method to create and manage a local network
US20060008256A1 (en) * 2003-10-01 2006-01-12 Khedouri Robert K Audio visual player apparatus and system and method of content distribution using the same
US20130097302A9 (en) * 2003-10-01 2013-04-18 Robert Khedouri Audio visual player apparatus and system and method of content distribution using the same
US8332910B2 (en) * 2003-10-13 2012-12-11 General Electric Company Method and apparatus for selective data control
US7577659B2 (en) * 2003-10-24 2009-08-18 Microsoft Corporation Interoperable credential gathering and access modularity
US7853980B2 (en) 2003-10-31 2010-12-14 Sony Corporation Bi-directional indices for trick mode video-on-demand
BRPI0418234B1 (en) * 2004-01-06 2018-04-24 Thomson Licensing Device, access card, digital information destination device, and methods for transferring information
CN1910563B (en) * 2004-01-07 2011-11-02 松下电器产业株式会社 Device registration system, server, and terminal device
US7711951B2 (en) * 2004-01-08 2010-05-04 International Business Machines Corporation Method and system for establishing a trust framework based on smart key devices
US7849326B2 (en) * 2004-01-08 2010-12-07 International Business Machines Corporation Method and system for protecting master secrets using smart key devices
KR100574974B1 (en) * 2004-02-26 2006-05-02 삼성전자주식회사 Apparatus and method having conditional access and copy protection scheme for encoded broadcast data
US7801303B2 (en) 2004-03-01 2010-09-21 The Directv Group, Inc. Video on demand in a broadcast network
KR100630680B1 (en) * 2004-03-19 2006-10-02 삼성전자주식회사 Non-volatile Memory Device with Asymmetrical Gate Dielectric Layer and Manufacturing Method thereof
US8842175B2 (en) 2004-03-26 2014-09-23 Broadcom Corporation Anticipatory video signal reception and processing
FR2869185B1 (en) * 2004-04-14 2006-07-21 Neotion Soc Par Actions Simpli ACCESS CONTROL SYSTEM FOR DIGITAL AUDIOVISUAL NETWORK
FR2871017B1 (en) * 2004-05-28 2008-02-29 Viaccess Sa METHOD FOR DIFFUSION OF DIGITAL DATA TO A PARK OF TARGET RECEIVING TERMINALS
JP2006020253A (en) * 2004-07-05 2006-01-19 Ricoh Co Ltd Information management system, information management method, recording medium and program
US7543317B2 (en) 2004-08-17 2009-06-02 The Directv Group, Inc. Service activation of set-top box functionality using broadcast conditional access system
JP4734872B2 (en) * 2004-09-07 2011-07-27 パナソニック株式会社 Content distribution management apparatus and content distribution management method
JP4516399B2 (en) * 2004-10-08 2010-08-04 フェリカネットワークス株式会社 Information processing apparatus and method, and program
EP1648170A1 (en) * 2004-10-15 2006-04-19 Nagracard S.A. Method for the transmission of management messages from a management centre to a plurality of multimedia units
US8041190B2 (en) 2004-12-15 2011-10-18 Sony Corporation System and method for the creation, synchronization and delivery of alternate content
US7895617B2 (en) 2004-12-15 2011-02-22 Sony Corporation Content substitution editor
US7475247B2 (en) * 2004-12-16 2009-01-06 International Business Machines Corporation Method for using a portable computing device as a smart key device
US9325944B2 (en) 2005-08-11 2016-04-26 The Directv Group, Inc. Secure delivery of program content via a removable storage medium
US7571368B1 (en) 2006-01-26 2009-08-04 Promethean Storage Llc Digital content protection systems and methods
US7996899B1 (en) 2006-02-24 2011-08-09 Hitachi Global Storage Technologies Netherlands B.V. Communication systems and methods for digital content modification and protection
US8243922B1 (en) 2006-02-24 2012-08-14 Hitachi Global Storage Technologies Netherlands B.V. Digital content modification for content protection
US8185921B2 (en) * 2006-02-28 2012-05-22 Sony Corporation Parental control of displayed content using closed captioning
JP5200204B2 (en) 2006-03-14 2013-06-05 ディブエックス リミテッド ライアビリティー カンパニー A federated digital rights management mechanism including a trusted system
US20070239608A1 (en) * 2006-03-23 2007-10-11 Veriplay Llc Digital media distribution system
US8095466B2 (en) 2006-05-15 2012-01-10 The Directv Group, Inc. Methods and apparatus to conditionally authorize content delivery at content servers in pay delivery systems
US7992175B2 (en) 2006-05-15 2011-08-02 The Directv Group, Inc. Methods and apparatus to provide content on demand in content broadcast systems
US8996421B2 (en) 2006-05-15 2015-03-31 The Directv Group, Inc. Methods and apparatus to conditionally authorize content delivery at broadcast headends in pay delivery systems
US8775319B2 (en) 2006-05-15 2014-07-08 The Directv Group, Inc. Secure content transfer systems and methods to operate the same
US8001565B2 (en) 2006-05-15 2011-08-16 The Directv Group, Inc. Methods and apparatus to conditionally authorize content delivery at receivers in pay delivery systems
US20070294170A1 (en) * 2006-06-02 2007-12-20 Luc Vantalon Systems and methods for conditional access and digital rights management
US9277295B2 (en) * 2006-06-16 2016-03-01 Cisco Technology, Inc. Securing media content using interchangeable encryption key
US9137480B2 (en) 2006-06-30 2015-09-15 Cisco Technology, Inc. Secure escrow and recovery of media device content keys
US9225761B2 (en) 2006-08-04 2015-12-29 The Directv Group, Inc. Distributed media-aggregation systems and methods to operate the same
US9178693B2 (en) 2006-08-04 2015-11-03 The Directv Group, Inc. Distributed media-protection systems and methods to operate the same
US8984279B2 (en) 2006-12-07 2015-03-17 Core Wireless Licensing S.A.R.L. System for user-friendly access control setup using a protected setup
US8522043B2 (en) * 2007-06-21 2013-08-27 Microsoft Corporation Hardware-based computer theft deterrence
KR20090056651A (en) * 2007-11-30 2009-06-03 한국전자통신연구원 Apparatus and method for terminal with multiple conditional access applications in broadcast sysetem
KR100945650B1 (en) * 2007-12-05 2010-03-04 한국전자통신연구원 Digital cable system and method for protection of secure micro program
US8341675B2 (en) * 2007-12-19 2012-12-25 The Directv Group, Inc. Method and system for providing program guide data from a content provider to a user device through a partner service provider based upon user attributes
US8997161B2 (en) 2008-01-02 2015-03-31 Sonic Ip, Inc. Application enhancement tracks
JP2010045535A (en) * 2008-08-11 2010-02-25 Buffalo Inc Cryptographic-key management system, external device, and cryptographic-key management program
WO2010080911A1 (en) 2009-01-07 2010-07-15 Divx, Inc. Singular, collective and automated creation of a media guide for online content
EP2219374A1 (en) * 2009-02-13 2010-08-18 Irdeto Access B.V. Securely providing a control word from a smartcard to a conditional access module
US8914903B1 (en) * 2009-06-03 2014-12-16 Amdocs Software System Limited System, method, and computer program for validating receipt of digital content by a client device
JP5723888B2 (en) 2009-12-04 2015-05-27 ソニック アイピー, インコーポレイテッド Basic bitstream cryptographic material transmission system and method
US9137302B1 (en) * 2009-12-29 2015-09-15 The Directv Group, Inc. Content distribution network selector
CN101917393A (en) * 2010-05-26 2010-12-15 中兴通讯股份有限公司 Information transmission method and system as well as data card
US20120060034A1 (en) * 2010-09-02 2012-03-08 General Instrument Corporation Digital information stream communication system and method
KR101605822B1 (en) * 2010-12-10 2016-04-01 한국전자통신연구원 Integrated processor device of remote entitlement processing module
IL210169A0 (en) 2010-12-22 2011-03-31 Yehuda Binder System and method for routing-based internet security
US9247312B2 (en) 2011-01-05 2016-01-26 Sonic Ip, Inc. Systems and methods for encoding source media in matroska container files for adaptive bitrate streaming using hypertext transfer protocol
FR2978848B1 (en) * 2011-08-02 2013-08-30 Viaccess Sa METHOD FOR SMOOTHING THE WORKING LOAD OF A SERVER
US9467708B2 (en) 2011-08-30 2016-10-11 Sonic Ip, Inc. Selection of resolutions for seamless resolution switching of multimedia content
US8964977B2 (en) 2011-09-01 2015-02-24 Sonic Ip, Inc. Systems and methods for saving encoded media streamed using adaptive bitrate streaming
US8909922B2 (en) 2011-09-01 2014-12-09 Sonic Ip, Inc. Systems and methods for playing back alternative streams of protected content protected using common cryptographic information
US9251900B2 (en) 2011-11-15 2016-02-02 Sandisk Technologies Inc. Data scrambling based on transition characteristic of the data
US20130139198A1 (en) * 2011-11-29 2013-05-30 General Instrument Corporation Digital transport adapter regionalization
US9191457B2 (en) 2012-12-31 2015-11-17 Sonic Ip, Inc. Systems, methods, and media for controlling delivery of content
US9313510B2 (en) 2012-12-31 2016-04-12 Sonic Ip, Inc. Use of objective quality measures of streamed content to reduce streaming bandwidth
US10397292B2 (en) 2013-03-15 2019-08-27 Divx, Llc Systems, methods, and media for delivery of content
US9906785B2 (en) 2013-03-15 2018-02-27 Sonic Ip, Inc. Systems, methods, and media for transcoding video data according to encoding parameters indicated by received metadata
US9247317B2 (en) 2013-05-30 2016-01-26 Sonic Ip, Inc. Content streaming with client device trick play index
US9094737B2 (en) 2013-05-30 2015-07-28 Sonic Ip, Inc. Network video streaming with trick play based on separate trick play files
US9967305B2 (en) 2013-06-28 2018-05-08 Divx, Llc Systems, methods, and media for streaming media content
US9866878B2 (en) 2014-04-05 2018-01-09 Sonic Ip, Inc. Systems and methods for encoding and playing back video at different frame rates using enhancement layers
US11159837B2 (en) * 2014-08-07 2021-10-26 DISH Technologies L.L.C. Value point-based conditional authorization for a media content receiver device
US10498795B2 (en) 2017-02-17 2019-12-03 Divx, Llc Systems and methods for adaptive switching between multiple content delivery networks during adaptive bitrate streaming
US10505931B2 (en) * 2017-06-02 2019-12-10 Nxp B.V. Method for authenticating an integrated circuit device
US10819515B1 (en) * 2018-03-09 2020-10-27 Wells Fargo Bank, N.A. Derived unique recovery keys per session
US11153070B2 (en) 2018-09-11 2021-10-19 International Business Machines Corporation Access to data broadcast in encrypted form based on blockchain
US20240056651A1 (en) * 2022-08-09 2024-02-15 Dish Network, L.L.C. Digital rights management using a gateway/set top box without a smart card

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6157719A (en) 1995-04-03 2000-12-05 Scientific-Atlanta, Inc. Conditional access system

Family Cites Families (399)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6292568B1 (en) 1966-12-16 2001-09-18 Scientific-Atlanta, Inc. Representing entitlements to service in a conditional access system
US5870474A (en) 1995-12-04 1999-02-09 Scientific-Atlanta, Inc. Method and apparatus for providing conditional access in connection-oriented, interactive networks with a multiplicity of service providers
US6895128B2 (en) 2001-05-29 2005-05-17 Mevis Breastcare Gmbh & Co. Kg Method and computer system for prefetching of images
US3852519A (en) 1972-10-20 1974-12-03 Optical Systems Corp Video and audio encoding/decoding system employing suppressed carrier modulation
GB2073534B (en) 1980-04-02 1984-04-04 Sony Corp Error concealment in digital television signals
GB2084432A (en) 1980-09-18 1982-04-07 Sony Corp Error concealment in digital television signals
US4521853A (en) 1982-06-30 1985-06-04 Texas Instruments Incorporated Secure microprocessor/microcomputer with secured memory
US4785361A (en) 1982-11-08 1988-11-15 Vault Corporation Method and apparatus for frustrating the unauthorized copying of recorded data
US4802215A (en) 1983-07-22 1989-01-31 Independent Broadcasting Authority Security system for television signal encryption
US4634808A (en) 1984-03-15 1987-01-06 M/A-Com Government Systems, Inc. Descrambler subscriber key production system utilizing key seeds stored in descrambler
US4712238A (en) 1984-06-08 1987-12-08 M/A-Com Government Systems, Inc. Selective-subscription descrambling
JPS6120442A (en) 1984-07-09 1986-01-29 Toshiba Corp Chargeable broadcasting system
JPH0746864B2 (en) 1984-08-22 1995-05-17 ソニー株式会社 High efficiency encoder
US4887296A (en) 1984-10-26 1989-12-12 Ricoh Co., Ltd. Cryptographic system for direct broadcast satellite system
EP0185533B1 (en) 1984-12-19 1991-03-27 Sony Corporation High efficiency technique for coding a digital video signal
JPH0793724B2 (en) 1984-12-21 1995-10-09 ソニー株式会社 High efficiency coding apparatus and coding method for television signal
US4803725A (en) 1985-03-11 1989-02-07 General Instrument Corp. Cryptographic system using interchangeable key blocks and selectable key fragments
DE3688855T2 (en) 1985-05-01 1994-03-17 Gen Instrument Corp Satellite transmission system with direct transmission.
JP2670259B2 (en) 1985-11-29 1997-10-29 ソニー株式会社 High efficiency coding device
JPH0746862B2 (en) 1985-11-30 1995-05-17 ソニー株式会社 Frame dropping compression encoding and decoding method
JP2612557B2 (en) 1985-12-18 1997-05-21 ソニー株式会社 Data transmission receiving system and data decoding device
JPS62231569A (en) 1986-03-31 1987-10-12 Fuji Photo Film Co Ltd Quantizing method for estimated error
US4944006A (en) 1987-03-12 1990-07-24 Zenith Electronics Corporation Secure data packet transmission system and method
JP2508439B2 (en) 1987-05-29 1996-06-19 ソニー株式会社 High efficiency encoder
EP0293644B1 (en) 1987-06-02 1992-03-25 Siemens Aktiengesellschaft Method for determining movement vector fields from digital image sequences
US4881263A (en) 1987-09-25 1989-11-14 Digital Equipment Corporation Apparatus and method for secure transmission of data over an unsecure transmission channel
US5122873A (en) 1987-10-05 1992-06-16 Intel Corporation Method and apparatus for selectively encoding and decoding a digital motion video signal at multiple resolution levels
JP2629238B2 (en) 1988-02-05 1997-07-09 ソニー株式会社 Decoding device and decoding method
US4995080A (en) 1988-08-04 1991-02-19 Zenith Electronics Corporation Television signal scrambling system and method
US5247575A (en) 1988-08-16 1993-09-21 Sprague Peter J Information distribution system
US4953023A (en) 1988-09-29 1990-08-28 Sony Corporation Coding apparatus for encoding and compressing video data
US4964126A (en) 1988-09-30 1990-10-16 Massachusetts Institute Of Technology Fault tolerant signal processing machine and method
JP2900385B2 (en) 1988-12-16 1999-06-02 ソニー株式会社 Framing circuit and method
US5144662A (en) 1989-02-08 1992-09-01 U.S. Philips Corporation Public communication system comprising distributed stations, and station and sub-station for use in such a communication system
JP3018366B2 (en) 1989-02-08 2000-03-13 ソニー株式会社 Video signal processing circuit
US4989245A (en) 1989-03-06 1991-01-29 General Instrument Corporation Controlled authorization of descrambling of scrambled programs broadcast between different jurisdictions
US5151782A (en) 1989-05-17 1992-09-29 Reiss Media Enterprises Control system for satellite delivered pay-per-view television system
JP2606419B2 (en) 1989-08-07 1997-05-07 松下電器産業株式会社 Cryptographic communication system and cryptographic communication method
US5208816A (en) 1989-08-18 1993-05-04 At&T Bell Laboratories Generalized viterbi decoding algorithms
US6519693B1 (en) 1989-08-23 2003-02-11 Delta Beta, Pty, Ltd. Method and system of program transmission optimization using a redundant transmission sequence
JPH03141752A (en) 1989-10-27 1991-06-17 Hitachi Ltd Picture signal transmitting method
US5237610A (en) 1990-02-01 1993-08-17 Scientific-Atlanta, Inc. Independent external security module for a digitally upgradeable television signal decoder
US5682425A (en) 1990-04-23 1997-10-28 Canon Kabushiki Kaisha Information signal transmission system
JPH0474063A (en) 1990-07-13 1992-03-09 Matsushita Electric Ind Co Ltd Coding method for picture
JP2650472B2 (en) 1990-07-30 1997-09-03 松下電器産業株式会社 Digital signal recording apparatus and digital signal recording method
US5018197A (en) 1990-07-30 1991-05-21 Zenith Electronics Corporation Secure video decoder system
US5111504A (en) * 1990-08-17 1992-05-05 General Instrument Corporation Information processing apparatus with replaceable security element
JP2969867B2 (en) 1990-08-31 1999-11-02 ソニー株式会社 High-efficiency encoder for digital image signals.
GB9019538D0 (en) 1990-09-07 1990-10-24 Philips Electronic Associated Tracking a moving object
US5594507A (en) 1990-09-28 1997-01-14 Ictv, Inc. Compressed digital overlay controller and method for MPEG type video signal
US5416651A (en) 1990-10-31 1995-05-16 Sony Corporation Apparatus for magnetically recording digital data
US5144664A (en) 1990-11-16 1992-09-01 General Instrument Corporation Apparatus and method for upgrading terminals to maintain a secure communication network
JP2906671B2 (en) 1990-12-28 1999-06-21 ソニー株式会社 Highly efficient digital video signal encoding apparatus and method
EP0495501B1 (en) 1991-01-17 1998-07-08 Sharp Kabushiki Kaisha Image coding and decoding system using an orthogonal transform and bit allocation method suitable therefore
US5091936A (en) 1991-01-30 1992-02-25 General Instrument Corporation System for communicating television signals or a plurality of digital audio signals in a standard television line allocation
US5138659A (en) 1991-05-02 1992-08-11 General Instrument Corporation Conversion of television signal formats with retention of common control data stream
JPH04358486A (en) 1991-06-04 1992-12-11 Toshiba Corp High efficiency code signal processing unit
JP2766919B2 (en) 1991-06-07 1998-06-18 三菱電機株式会社 Digital signal recording / reproducing device, digital signal recording device, digital signal reproducing device
US5263026A (en) 1991-06-27 1993-11-16 Hughes Aircraft Company Maximum likelihood sequence estimation based equalization within a mobile digital cellular receiver
JP3141896B2 (en) 1991-08-09 2001-03-07 ソニー株式会社 Digital video signal recording device
FR2680589A1 (en) * 1991-08-19 1993-02-26 France Telecom METHOD OF TRANSMITTING AND RECEIVING CUSTOM PROGRAMS.
MY108367A (en) 1991-09-30 1996-09-30 Thomson Consumer Electronics S A Method and apparatus for secure transmisson of video signals.
DE69217150T2 (en) 1991-09-30 1997-07-17 Philips Electronics Nv Motion vector estimation, motion picture coding and storage
JPH05103309A (en) 1991-10-04 1993-04-23 Canon Inc Method and device for transmitting information
US5398078A (en) 1991-10-31 1995-03-14 Kabushiki Kaisha Toshiba Method of detecting a motion vector in an image coding apparatus
US5724091A (en) 1991-11-25 1998-03-03 Actv, Inc. Compressed digital data interactive program system
JP3278881B2 (en) 1991-12-13 2002-04-30 ソニー株式会社 Image signal generator
US6400996B1 (en) 1999-02-01 2002-06-04 Steven M. Hoffberg Adaptive pattern recognition based control system and method
EP0622003B1 (en) 1992-01-08 2001-10-17 Broadband Innovations, Inc. Multichannel television signal scrambling and descrambling system and method
US6208805B1 (en) 1992-02-07 2001-03-27 Max Abecassis Inhibiting a control function from interfering with a playing of a video
JPH05236427A (en) 1992-02-25 1993-09-10 Sony Corp Device and method for encoding image signal
JPH05284499A (en) * 1992-04-02 1993-10-29 Nec Corp System for reproducing pay television/audio program broadcasting
JP3259323B2 (en) 1992-04-13 2002-02-25 ソニー株式会社 De-interleave circuit
US5359694A (en) 1992-07-27 1994-10-25 Teknekron Communications Systems, Inc. Method and apparatus for converting image data
US5438369A (en) 1992-08-17 1995-08-01 Zenith Electronics Corporation Digital data interleaving system with improved error correctability for vertically correlated interference
US5481554A (en) 1992-09-02 1996-01-02 Sony Corporation Data transmission apparatus for transmitting code data
US5400401A (en) 1992-10-30 1995-03-21 Scientific Atlanta, Inc. System and method for transmitting a plurality of digital services
US5414852A (en) * 1992-10-30 1995-05-09 International Business Machines Corporation Method for protecting data in a computer system
US5319707A (en) 1992-11-02 1994-06-07 Scientific Atlanta System and method for multiplexing a plurality of digital program services for transmission to remote locations
DE69324650T2 (en) 1992-11-06 1999-09-09 Gold Star Co Mixing method for a digital video tape recorder
US5341425A (en) 1992-12-02 1994-08-23 Scientific Atlanta, Inc. Methods and apparatus for uniquely encrypting data at a plurality of data transmission sites for transmission to a reception site
US5477276A (en) 1992-12-17 1995-12-19 Sony Corporation Digital signal processing apparatus for achieving fade-in and fade-out effects on digital video signals
US5805762A (en) 1993-01-13 1998-09-08 Hitachi America, Ltd. Video recording device compatible transmitter
US5325432A (en) 1993-02-04 1994-06-28 Motorola, Inc. Method for updating encryption key information in communication units
US5416847A (en) 1993-02-12 1995-05-16 The Walt Disney Company Multi-band, digital audio noise filter
US5444491A (en) 1993-02-26 1995-08-22 Massachusetts Institute Of Technology Television system with multiple transmission formats
US5444763A (en) 1993-06-17 1995-08-22 Research In Motion Limited Translation and connection device for radio frequency point of sale transaction systems
KR960015357B1 (en) 1993-07-16 1996-11-09 대우전자 주식회사 Communication system of scrambling and descrambling for radio program signal
JP2707950B2 (en) 1993-07-30 1998-02-04 ソニー株式会社 Digital image information processing device
US5381481A (en) 1993-08-04 1995-01-10 Scientific-Atlanta, Inc. Method and apparatus for uniquely encrypting a plurality of services at a transmission site
KR960012931B1 (en) 1993-08-31 1996-09-25 대우전자 주식회사 Channel error concealing method for classified vector quantized video
JP3590996B2 (en) 1993-09-30 2004-11-17 ソニー株式会社 Hierarchical encoding and decoding apparatus for digital image signal
US5663764A (en) 1993-09-30 1997-09-02 Sony Corporation Hierarchical encoding and decoding apparatus for a digital image signal
US5617333A (en) 1993-11-29 1997-04-01 Kokusai Electric Co., Ltd. Method and apparatus for transmission of image data
US5455862A (en) 1993-12-02 1995-10-03 Crest Industries, Inc. Apparatus and method for encrypting communications without exchanging an encryption key
JP3271108B2 (en) 1993-12-03 2002-04-02 ソニー株式会社 Apparatus and method for processing digital image signal
MA23381A1 (en) 1993-12-03 1995-07-01 Scientific Atlanta MULTI-SERVICE DATA RECEIVER ARCHITECTURE
FR2715256B1 (en) 1994-01-19 1996-02-16 France Telecom Procedures for transmitting and receiving conditional access programs managed by the same operator.
JPH07231424A (en) 1994-02-18 1995-08-29 Hitachi Ltd Recording/reproducing system and device therefor
EP0669761A3 (en) * 1994-02-23 1999-03-03 Hitachi, Ltd. Television signal receiving apparatus incorporating an information retrieving and reproducing apparatus
US5491748A (en) 1994-03-01 1996-02-13 Zenith Electronics Corporation Enhanced security for a cable system
US7039214B2 (en) * 1999-11-05 2006-05-02 Digimarc Corporation Embedding watermark components during separate printing stages
NL9400428A (en) 1994-03-18 1995-11-01 Nederland Ptt Device for cryptographically processing data packets, as well as a method of generating cryptographic processing data.
FI97928C (en) 1994-03-21 1997-03-10 Nokia Technology Gmbh Method of encrypting a television transmission transmitted in digital form
FI95756C (en) 1994-03-21 1996-03-11 Nokia Technology Gmbh A method for encrypting and decrypting a bitstream containing digital information
US5420866A (en) 1994-03-29 1995-05-30 Scientific-Atlanta, Inc. Methods for providing conditional access information to decoders in a packet-based multiplexed communications system
FR2718594B1 (en) 1994-04-06 1996-04-26 France Telecom Method for broadcasting programs with progressive conditional access and separating the flow of information.
US5459789A (en) 1994-04-22 1995-10-17 Thomson Consumer Electronics Packet TV program component detector
JP3161217B2 (en) 1994-04-28 2001-04-25 松下電器産業株式会社 Image encoding recording device and recording / reproducing device
US5768539A (en) 1994-05-27 1998-06-16 Bell Atlantic Network Services, Inc. Downloading applications software through a broadcast channel
US5666293A (en) 1994-05-27 1997-09-09 Bell Atlantic Network Services, Inc. Downloading operating system software through a broadcast channel
US6185546B1 (en) 1995-10-04 2001-02-06 Intel Corporation Apparatus and method for providing secured communications
US5473692A (en) 1994-09-07 1995-12-05 Intel Corporation Roving software license for a hardware agent
US5539828A (en) 1994-05-31 1996-07-23 Intel Corporation Apparatus and method for providing secured communications
JPH088853A (en) 1994-06-24 1996-01-12 Sony Corp Scrambling device and descrambling device
US5787171A (en) 1994-06-28 1998-07-28 Sony Corporation Data transmitter and receiver
US5606359A (en) 1994-06-30 1997-02-25 Hewlett-Packard Company Video on demand system with multiple data sources configured to provide vcr-like services
US5535276A (en) 1994-11-09 1996-07-09 Bell Atlantic Network Services, Inc. Yaksha, an improved system and method for securing communications using split private key asymmetric cryptography
US5574787A (en) 1994-07-25 1996-11-12 Ryan; John O. Apparatus and method for comprehensive copy protection for video platforms and unprotected source material
US5539823A (en) 1994-07-27 1996-07-23 General Instrument Corporation Of Delaware Subscription television picture scrambling and descrambling system providing compatibility with different such systems
US5629981A (en) 1994-07-29 1997-05-13 Texas Instruments Incorporated Information management and security system
WO1996008912A2 (en) 1994-09-09 1996-03-21 Titan Information Systems Corporation Conditional access system
US5652795A (en) 1994-11-14 1997-07-29 Hughes Electronics Method and apparatus for an adapter card providing conditional access in a communication system
KR0152788B1 (en) 1994-11-26 1998-10-15 이헌조 Copy protecting method and apparatus of digital image system
KR100332743B1 (en) 1994-11-26 2002-11-07 엘지전자주식회사 Device and method for preventing illegal copy or unauthorized watching of digital image
US6005561A (en) 1994-12-14 1999-12-21 The 3Do Company Interactive information delivery system
US5485577A (en) 1994-12-16 1996-01-16 General Instrument Corporation Of Delaware Method and apparatus for incremental delivery of access rights
MY127916A (en) 1994-12-22 2006-12-29 Sony Corp Recording medium for protecting copyrighted data
KR100205701B1 (en) 1994-12-27 1999-07-01 사또오 후미오 Transmitter receiver communication processing system integrating ther and digital television broadcasting system
EP0720374A1 (en) 1994-12-30 1996-07-03 Daewoo Electronics Co., Ltd Apparatus for parallel decoding of digital video signals
US5590202A (en) 1995-01-18 1996-12-31 Zenith Electronics Corporation Countdown system for conditional access module
US5583863A (en) 1995-01-31 1996-12-10 Bell Atlantic Network Services, Inc. Full service network using asynchronous transfer mode multiplexing
CA2683230C (en) 1995-02-13 2013-08-27 Intertrust Technologies Corporation Systems and methods for secure transaction management and electronic rights protection
US5696906A (en) * 1995-03-09 1997-12-09 Continental Cablevision, Inc. Telecommunicaion user account management system and method
US6424717B1 (en) 1995-04-03 2002-07-23 Scientific-Atlanta, Inc. Encryption devices for use in a conditional access system
US20040136532A1 (en) 1995-04-03 2004-07-15 Pinder Howard G. Partial dual-encrypted stream utilizing program map tables
US6246767B1 (en) 1995-04-03 2001-06-12 Scientific-Atlanta, Inc. Source authentication of download information in a conditional access system
US7224798B2 (en) 1995-04-03 2007-05-29 Scientific-Atlanta, Inc. Methods and apparatus for providing a partial dual-encrypted stream in a conditional access overlay system
US6937729B2 (en) 1995-04-03 2005-08-30 Scientific-Atlanta, Inc. Representing entitlements to service in a conditional access system
US5608448A (en) 1995-04-10 1997-03-04 Lockheed Martin Corporation Hybrid architecture for video on demand server
JPH08305662A (en) * 1995-05-02 1996-11-22 Fujitsu Ltd Method and system for client authentication
US5940738A (en) 1995-05-26 1999-08-17 Hyundai Electronics America, Inc. Video pedestal network
US5852470A (en) 1995-05-31 1998-12-22 Sony Corporation Signal converting apparatus and signal converting method
US5652615A (en) 1995-06-30 1997-07-29 Digital Equipment Corporation Precision broadcast of composite programs including secondary program content such as advertisements
NO302388B1 (en) 1995-07-13 1998-02-23 Sigurd Sigbjoernsen Procedure and apparatus for protecting software against unauthorized use
US5852290A (en) 1995-08-04 1998-12-22 Thomson Consumer Electronics, Inc. Smart-card based access control system with improved security
US5583576A (en) 1995-09-11 1996-12-10 Oktv, Inc. Rating-dependent parental lock-out for television reception
US5582470A (en) 1995-09-12 1996-12-10 Silitek Corporation Scanner housing
US6134551A (en) 1995-09-15 2000-10-17 Intel Corporation Method of caching digital certificate revocation lists
KR0155900B1 (en) 1995-10-18 1998-11-16 김광호 Phase error detecting method and phase tracking loop circuit
US5742680A (en) 1995-11-13 1998-04-21 E Star, Inc. Set top box for receiving and decryption and descrambling a plurality of satellite television signals
US5999622A (en) 1995-11-22 1999-12-07 Microsoft Corporation Method and apparatus for protecting widely distributed digital information
US5732217A (en) 1995-12-01 1998-03-24 Matsushita Electric Industrial Co., Ltd. Video-on-demand system capable of performing a high-speed playback at a correct speed
US5949881A (en) 1995-12-04 1999-09-07 Intel Corporation Apparatus and method for cryptographic companion imprinting
US5719937A (en) 1995-12-06 1998-02-17 Solana Technology Develpment Corporation Multi-media copy management system
JP3416007B2 (en) 1995-12-06 2003-06-16 インターナショナル・ビジネス・マシーンズ・コーポレーション Apparatus and method for screening audiovisual material
JPH09162859A (en) 1995-12-07 1997-06-20 Fujitsu Ltd Scrambling method and device, descrambling method and device and data transmission method and system
US5751280A (en) 1995-12-11 1998-05-12 Silicon Graphics, Inc. System and method for media stream synchronization with a base atom index file and an auxiliary atom index file
JP2000502857A (en) * 1995-12-29 2000-03-07 サイエンティフィック―アトランタ・インコーポレーテッド Method and apparatus for providing conditional access in a connection-oriented two-way network with multiple service providers
FI100563B (en) * 1996-01-30 1997-12-31 Nokia Oy Ab Encryption of digital presentation objects during transmission and recording
AU734654B2 (en) * 1996-02-09 2001-06-21 Integrated Technologies Of America, Inc. Access control/crypto system
US6055314A (en) 1996-03-22 2000-04-25 Microsoft Corporation System and method for secure purchase and delivery of video content programs
US5802176A (en) 1996-03-22 1998-09-01 Activcard System for controlling access to a function, using a plurality of dynamic encryption variables
US6088450A (en) 1996-04-17 2000-07-11 Intel Corporation Authentication system based on periodic challenge/response protocol
US6445738B1 (en) 1996-04-25 2002-09-03 Opentv, Inc. System and method for creating trick play video streams from a compressed normal play video bitstream
US5751813A (en) 1996-04-29 1998-05-12 Motorola, Inc. Use of an encryption server for encrypting messages
US5903651A (en) 1996-05-14 1999-05-11 Valicert, Inc. Apparatus and method for demonstrating and confirming the status of a digital certificates and other data
US6389179B1 (en) 1996-05-28 2002-05-14 Canon Kabushiki Kaisha Image combining apparatus using a combining algorithm selected based on an image sensing condition corresponding to each stored image
US5894320A (en) 1996-05-29 1999-04-13 General Instrument Corporation Multi-channel television system with viewer-selectable video and audio
US5933500A (en) 1996-05-31 1999-08-03 Thomson Consumer Electronics, Inc. Adaptive decoding system for processing encrypted and non-encrypted broadcast, cable or satellite video data
US6065050A (en) 1996-06-05 2000-05-16 Sun Microsystems, Inc. System and method for indexing between trick play and normal play video streams in a video delivery system
KR100214605B1 (en) 1996-06-21 1999-08-02 구자홍 Plural image angle reproducing apparatus and method thereof in dvd reproducer
US5894516A (en) 1996-07-10 1999-04-13 Ncr Corporation Broadcast software distribution
US6272538B1 (en) 1996-07-30 2001-08-07 Micron Technology, Inc. Method and system for establishing a security perimeter in computer networks
US6058192A (en) 1996-08-06 2000-05-02 Greg Jarque Universal signal processor and method of processing
FR2752655B1 (en) 1996-08-20 1998-09-18 France Telecom METHOD AND EQUIPMENT FOR ALLOCATING A COMPLEMENTARY CONDITIONAL ACCESS TO A TELEVISION PROGRAM ALREADY WITH CONDITIONAL ACCESS
US6061451A (en) 1996-09-03 2000-05-09 Digital Vision Laboratories Corporation Apparatus and method for receiving and decrypting encrypted data and protecting decrypted data from illegal use
JP3671543B2 (en) 1996-09-10 2005-07-13 ソニー株式会社 Data transmission method, data transmission device, data reception device parameter setting method, data reception device, and data transmission system
KR100238098B1 (en) 1996-09-16 2000-01-15 윤종용 Apparatus for synchronously reproducing multi-angle data
US5973722A (en) 1996-09-16 1999-10-26 Sony Corporation Combined digital audio/video on demand and broadcast distribution system
JPH1093914A (en) 1996-09-18 1998-04-10 Sony Corp Data transmitting method, data transmitter, parameter setting method of data receiver, data receiver, data transmitting system, reproducing method and reproducing device
US6134269A (en) 1996-09-25 2000-10-17 At&T Corp Fixed or adaptive deinterleaved transform coding for image coding and intra coding of video
FR2753861B1 (en) 1996-09-25 1999-03-26 METHOD AND SYSTEM FOR SECURE COMPUTER GAME SERVERS
US5999698A (en) 1996-09-30 1999-12-07 Kabushiki Kaisha Toshiba Multiangle block reproduction system
US6023509A (en) 1996-09-30 2000-02-08 Intel Corporation Digital signature purpose encoding
US5825879A (en) 1996-09-30 1998-10-20 Intel Corporation System and method for copy-protecting distributed video content
US6012144A (en) 1996-10-08 2000-01-04 Pickett; Thomas E. Transaction security method and apparatus
US5790842A (en) 1996-10-11 1998-08-04 Divicom, Inc. Processing system with simultaneous utilization of multiple clock signals
US5805700A (en) 1996-10-15 1998-09-08 Intel Corporation Policy based selective encryption of compressed video data
US5917830A (en) 1996-10-18 1999-06-29 General Instrument Corporation Splicing compressed packetized digital video streams
US5828753A (en) 1996-10-25 1998-10-27 Intel Corporation Circuit and method for ensuring interconnect security within a multi-chip integrated circuit package
US5915018A (en) 1996-11-05 1999-06-22 Intel Corporation Key management system for DVD copyright management
JPH10145773A (en) 1996-11-14 1998-05-29 Toshiba Corp Method for ciphering animation data, computer system applying the method and dynamic image data encoding/ decoding device
US6192131B1 (en) 1996-11-15 2001-02-20 Securities Industry Automation Corporation Enabling business transactions in computer networks
EP0939944B1 (en) 1996-11-19 2000-12-13 BRITISH TELECOMMUNICATIONS public limited company Communications system
US6016348A (en) 1996-11-27 2000-01-18 Thomson Consumer Electronics, Inc. Decoding system and data format for processing and storing encrypted broadcast, cable or satellite video data
US6543053B1 (en) 1996-11-27 2003-04-01 University Of Hong Kong Interactive video-on-demand system
KR100238668B1 (en) 1996-11-28 2000-01-15 윤종용 Digital video player
US5818934A (en) 1996-12-18 1998-10-06 Phillips Electronics North America Corporation Method and apparatus for providing a cryptographically secure interface between the decryption engine and the system decoder of a digital television receiver
US5930361A (en) 1996-12-31 1999-07-27 Time Warner Cable, A Division Of Time Warner Entertainment Company, L.P. Video inversion detection apparatus and method
US6021201A (en) 1997-01-07 2000-02-01 Intel Corporation Method and apparatus for integrated ciphering and hashing
US5949877A (en) 1997-01-30 1999-09-07 Intel Corporation Content protection for transmission systems
EP0858184A3 (en) 1997-02-07 1999-09-01 Nds Limited Digital recording protection system
US5850218A (en) 1997-02-19 1998-12-15 Time Warner Entertainment Company L.P. Inter-active program guide with default selection control
GB9704638D0 (en) 1997-03-06 1997-04-23 Lsi Logic Corp Digital video broadcasting
US6049613A (en) 1997-03-07 2000-04-11 Jakobsson; Markus Method and apparatus for encrypting, decrypting, and providing privacy for data values
JP4110588B2 (en) 1997-03-19 2008-07-02 ソニー株式会社 Data receiving apparatus and receiving method
DE69719084T2 (en) 1997-03-21 2003-12-11 Canal & Technologies Paris CHIP CARD AND RECEIVER FOR RECEIVING ENCRYPTED BROADCASTING SIGNALS
EP1653463A1 (en) * 1997-05-13 2006-05-03 Kabushiki Kaisha Toshiba License information copying method and apparatus, license information moving method
US6590979B1 (en) 1997-05-29 2003-07-08 Macrovision Corporation Method and apparatus for compression compatible video scrambling
US6526144B2 (en) * 1997-06-02 2003-02-25 Texas Instruments Incorporated Data protection system
JP3595145B2 (en) 1997-06-02 2004-12-02 三菱電機株式会社 Cryptographic communication system
US7039802B1 (en) * 1997-06-06 2006-05-02 Thomson Licensing Conditional access system for set-top boxes
US6236727B1 (en) 1997-06-24 2001-05-22 International Business Machines Corporation Apparatus, method and computer program product for protecting copyright data within a computer system
US6057872A (en) 1997-07-09 2000-05-02 General Instrument Corporation Digital coupons for pay televisions
US6230194B1 (en) 1997-07-14 2001-05-08 Freegate Corporation Upgrading a secure network interface
WO1999007145A1 (en) 1997-08-01 1999-02-11 Scientific-Atlanta, Inc. Verification of the source of program of information in a conditional access system
US6073122A (en) 1997-08-15 2000-06-06 Lucent Technologies Inc. Cryptographic method and apparatus for restricting access to transmitted programming content using extended headers
US6011849A (en) 1997-08-28 2000-01-04 Syndata Technologies, Inc. Encryption-based selection system for steganography
US6138237A (en) 1997-09-04 2000-10-24 Bistream Inc. Apparatuses, methods, and media for authoring, distributing, and using software resources with purposely restricted use
EP0901261B1 (en) 1997-09-05 2013-01-09 Hitachi, Ltd. Transport protocol conversion method and protocol conversion equipment
JPH1196102A (en) 1997-09-25 1999-04-09 Hitachi Ltd Server decentralized managing method
US6134237A (en) * 1997-09-30 2000-10-17 Motorola, Inc. Method and apparatus for tracking data packets in a packet data communication system
US6125349A (en) 1997-10-01 2000-09-26 At&T Corp. Method and apparatus using digital credentials and other electronic certificates for electronic transactions
GB9721947D0 (en) * 1997-10-16 1997-12-17 Thomson Consumer Electronics Intelligent IP packet scheduler algorithm
US6378130B1 (en) 1997-10-20 2002-04-23 Time Warner Entertainment Company Media server interconnect architecture
US6057832A (en) 1997-12-02 2000-05-02 V Soft Ltd. Method and apparatus for video-on-demand with fast play capability
US6330672B1 (en) 1997-12-03 2001-12-11 At&T Corp. Method and apparatus for watermarking digital bitstreams
JP2001526506A (en) 1997-12-09 2001-12-18 アイシーティーブイ・インク Virtual LAN printing on interactive cable television system
US6505032B1 (en) 2000-05-26 2003-01-07 Xtremespectrum, Inc. Carrierless ultra wideband wireless signals for conveying application data
US6170075B1 (en) 1997-12-18 2001-01-02 3Com Corporation Data and real-time media communication over a lossy network
US6247127B1 (en) 1997-12-19 2001-06-12 Entrust Technologies Ltd. Method and apparatus for providing off-line secure communications
JP3561154B2 (en) 1997-12-26 2004-09-02 株式会社東芝 Broadcast receiving device and contract management device
US6064748A (en) 1998-01-16 2000-05-16 Hewlett-Packard Company Method and apparatus for embedding and retrieving additional data in an encoded data stream
US6072872A (en) 1998-01-27 2000-06-06 General Instrument Corporation Determination of scrambling mode of a television signal
US6069647A (en) 1998-01-29 2000-05-30 Intel Corporation Conditional access and content security method
EP0936774A1 (en) 1998-02-13 1999-08-18 CANAL+ Société Anonyme Recording of scrambled digital data
EP0936812A1 (en) * 1998-02-13 1999-08-18 CANAL+ Société Anonyme Method and apparatus for recording of encrypted digital data
US6233577B1 (en) 1998-02-17 2001-05-15 Phone.Com, Inc. Centralized certificate management system for two-way interactive communication devices in data networks
JP3428420B2 (en) 1998-02-25 2003-07-22 松下電器産業株式会社 Digital broadcast receiving and reproducing device
IL123554A (en) 1998-03-04 2003-01-12 Nds Ltd Key delivery in a secure broadcasting system
US6459427B1 (en) 1998-04-01 2002-10-01 Liberate Technologies Apparatus and method for web-casting over digital broadcast TV network
US6788882B1 (en) * 1998-04-17 2004-09-07 Timesurf, L.L.C. Systems and methods for storing a plurality of video streams on re-writable random-access media and time-and channel- based retrieval thereof
US6118873A (en) 1998-04-24 2000-09-12 International Business Machines Corporation System for encrypting broadcast programs in the presence of compromised receiver devices
US6510554B1 (en) 1998-04-27 2003-01-21 Diva Systems Corporation Method for generating information sub-streams for FF/REW applications
US6189096B1 (en) 1998-05-06 2001-02-13 Kyberpass Corporation User authentification using a virtual private key
US6154206A (en) 1998-05-06 2000-11-28 Sony Corporation Of Japan Method and apparatus for distributed conditional access control on a serial communication network
US6223290B1 (en) * 1998-05-07 2001-04-24 Intel Corporation Method and apparatus for preventing the fraudulent use of a cellular telephone
CA2333095C (en) 1998-06-03 2005-05-10 Cryptography Research, Inc. Improved des and other cryptographic processes with leak minimization for smartcards and other cryptosystems
US6529526B1 (en) 1998-07-13 2003-03-04 Thomson Licensing S.A. System for processing programs and program content rating information derived from multiple broadcast sources
US6519248B1 (en) 1998-07-24 2003-02-11 Telefonaktiebolaget Lm Ericsson (Publ) Packet data network having distributed database
US6415101B1 (en) 1998-07-27 2002-07-02 Oak Technology, Inc. Method and system for scanning and displaying multiple view angles formatted in DVD content
US6609039B1 (en) 1998-07-27 2003-08-19 Neil Charles Schoen Simultaneous multi-user audio re-transmission digital radio module
US6226618B1 (en) 1998-08-13 2001-05-01 International Business Machines Corporation Electronic content delivery system
US6389403B1 (en) * 1998-08-13 2002-05-14 International Business Machines Corporation Method and apparatus for uniquely identifying a customer purchase in an electronic distribution system
US7457415B2 (en) 1998-08-20 2008-11-25 Akikaze Technologies, Llc Secure information distribution system utilizing information segment scrambling
JP3609263B2 (en) 1998-08-25 2005-01-12 富士写真フイルム株式会社 Image encryption method and apparatus, image decryption method and apparatus, and recording medium
US20020097322A1 (en) 2000-11-29 2002-07-25 Monroe David A. Multiple video display configurations and remote control of multiple video signals transmitted to a monitoring station over a network
US6351538B1 (en) 1998-10-06 2002-02-26 Lsi Logic Corporation Conditional access and copy protection scheme for MPEG encoded video data
SE513356C2 (en) 1998-11-20 2000-08-28 Ericsson Telefon Ab L M Method and apparatus for encrypting images
US20020083439A1 (en) 2000-08-31 2002-06-27 Eldering Charles A. System for rescheduling and inserting advertisements
US6452923B1 (en) * 1998-12-31 2002-09-17 At&T Corp Cable connected wan interconnectivity services for corporate telecommuters
US7162642B2 (en) 1999-01-06 2007-01-09 Digital Video Express, L.P. Digital content distribution system and method
US6230266B1 (en) 1999-02-03 2001-05-08 Sun Microsystems, Inc. Authentication system and process
US6389533B1 (en) 1999-02-05 2002-05-14 Intel Corporation Anonymity server
US6550008B1 (en) * 1999-02-26 2003-04-15 Intel Corporation Protection of information transmitted over communications channels
US6229895B1 (en) 1999-03-12 2001-05-08 Diva Systems Corp. Secure distribution of video on-demand
US6415031B1 (en) 1999-03-12 2002-07-02 Diva Systems Corporation Selective and renewable encryption for secure distribution of video on-demand
US7730300B2 (en) 1999-03-30 2010-06-01 Sony Corporation Method and apparatus for protecting the transfer of data
US6697489B1 (en) 1999-03-30 2004-02-24 Sony Corporation Method and apparatus for securing control words
US7565546B2 (en) 1999-03-30 2009-07-21 Sony Corporation System, method and apparatus for secure digital content transmission
US6240553B1 (en) 1999-03-31 2001-05-29 Diva Systems Corporation Method for providing scalable in-band and out-of-band access within a video-on-demand environment
US6449718B1 (en) 1999-04-09 2002-09-10 Xerox Corporation Methods and apparatus for partial encryption of tokenized documents
US6389537B1 (en) 1999-04-23 2002-05-14 Intel Corporation Platform and method for assuring integrity of trusted agent communications
EP1058254B1 (en) 1999-04-28 2004-07-07 Matsushita Electric Industrial Co., Ltd. Optical disk, optical disk recording and reproducing apparatus, and method for recording and reproducing
IT1308484B1 (en) 1999-05-13 2001-12-17 Cselt Centro Studi Lab Telecom EQUIPMENT FOR THE RE-MULTIPLATION OF AUDIO-VISUAL NUMBERED FLOWS
US6324288B1 (en) 1999-05-17 2001-11-27 Intel Corporation Cipher core in a content protection system
US6549229B1 (en) 1999-07-26 2003-04-15 C-Cubed Corporation Small, portable, self-contained, video teleconferencing system
DE60024941T8 (en) 1999-08-31 2006-08-10 Matsushita Electric Industrial Co., Ltd., Kadoma Encryption method and apparatus, decryption method and apparatus
US6289455B1 (en) 1999-09-02 2001-09-11 Crypotography Research, Inc. Method and apparatus for preventing piracy of digital content
KR100682290B1 (en) 1999-09-07 2007-02-15 소니 가부시끼 가이샤 Contents management system, device, method, and program storage medium
US20010036271A1 (en) 1999-09-13 2001-11-01 Javed Shoeb M. System and method for securely distributing digital content for short term use
EP1085765A3 (en) 1999-09-20 2006-03-01 Matsushita Electric Industrial Co., Ltd. System stream creating apparatus which adjusts system clock reference based on total number of pictures to be stored and decoded during certain time period
US6697944B1 (en) 1999-10-01 2004-02-24 Microsoft Corporation Digital content distribution, transmission and protection system and method, and portable device for use therewith
US6246720B1 (en) 1999-10-21 2001-06-12 Sony Corporation Of Japan Flexible software-based decoding system with decoupled decoding timing and output timing
JP3619427B2 (en) 1999-11-05 2005-02-09 株式会社ビューポイントコミュニケーションズ Information display device
US6654389B1 (en) 1999-11-23 2003-11-25 International Business Machines Corporation System and method for searching patterns in real-time over a shared media
US6643298B1 (en) 1999-11-23 2003-11-04 International Business Machines Corporation Method and apparatus for MPEG-2 program ID re-mapping for multiplexing several programs into a single transport stream
US6834110B1 (en) 1999-12-09 2004-12-21 International Business Machines Corporation Multi-tier digital TV programming for content distribution
KR100697059B1 (en) 1999-12-22 2007-06-27 이르데토 아인드호벤 비.브이. Conditional access system for controlling the access to a data content
CN1182479C (en) 2000-01-07 2004-12-29 国际商业机器公司 System and method for effectively collecting aranging and access to withdrew table of certificate
US6889385B1 (en) 2000-01-14 2005-05-03 Terayon Communication Systems, Inc Home network for receiving video-on-demand and other requested programs and services
US6772340B1 (en) 2000-01-14 2004-08-03 Microsoft Corporation Digital rights management system operating on computing device and having black box tied to computing device
US6621866B1 (en) 2000-01-28 2003-09-16 Thomson Licensing S.A. Method for inserting a visual element into an MPEG bit stream
CA2399502A1 (en) 2000-02-02 2001-08-09 Worldgate Service, Inc. System and method for transmitting and displaying targeted information
AU2001241972A1 (en) 2000-03-02 2001-09-12 Tivo, Inc. Conditional access system and method for prevention of replay attacks
EP1134977A1 (en) 2000-03-06 2001-09-19 Irdeto Access B.V. Method and system for providing copies of scrambled content with unique watermarks, and system for descrambling scrambled content
US7146007B1 (en) 2000-03-29 2006-12-05 Sony Corporation Secure conditional access port interface
US7023858B2 (en) 2000-04-14 2006-04-04 Sony Corporation Data delivery in set-top box
JP2001308812A (en) 2000-04-24 2001-11-02 Nec Microsystems Ltd Method for separation processing of transport stream for digital television and its recording medium
US7333489B1 (en) 2000-05-08 2008-02-19 Crossroads Systems, Inc. System and method for storing frame header data
EP1282899B1 (en) 2000-05-10 2004-07-14 Koninklijke Philips Electronics N.V. Copy protection system
CN1300677C (en) 2000-06-22 2007-02-14 微软公司 Distributed computing services platform
DE60135347D1 (en) 2000-07-14 2008-09-25 Irdeto Access Bv ARCHITECTURE FOR SECURE PACKAGE-BASED DATA DISTRIBUTION
US7203311B1 (en) 2000-07-21 2007-04-10 The Directv Group, Inc. Super encrypted storage and retrieval of media programs in a hard-paired receiver and storage device
US6453115B1 (en) 2000-08-31 2002-09-17 Keen Personal Media, Inc. Digital video recording system which generates an index data structure for displaying a video stream in trickplay mode
US7242772B1 (en) 2000-09-07 2007-07-10 Eastman Kodak Company Encryption apparatus and method for synchronizing multiple encryption keys with a data stream
WO2002029509A2 (en) 2000-10-03 2002-04-11 Vidius Inc. Secure distribution of digital content
US7058806B2 (en) 2000-10-17 2006-06-06 Telefonaktiebolaget Lm Ericsson (Publ) Method and apparatus for secure leveled access control
US20020046406A1 (en) 2000-10-18 2002-04-18 Majid Chelehmal On-demand data system
US20020083438A1 (en) 2000-10-26 2002-06-27 So Nicol Chung Pang System for securely delivering encrypted content on demand with access contrl
US20020174366A1 (en) 2000-10-26 2002-11-21 General Instrument, Inc. Enforcement of content rights and conditions for multimedia content
US7143289B2 (en) 2000-10-30 2006-11-28 Geocodex Llc System and method for delivering encrypted information in a communication network using location identity and key tables
JP2002141895A (en) * 2000-11-01 2002-05-17 Sony Corp System and method for distributing contents
US7508454B1 (en) 2000-11-16 2009-03-24 Smardtv Sa Digital television conditional access methods and apparatus for simultaneously handling multiple television programs
US20020066101A1 (en) 2000-11-27 2002-05-30 Gordon Donald F. Method and apparatus for delivering and displaying information for a multi-layer user interface
US6996101B2 (en) 2000-11-29 2006-02-07 International Business Machines Corporation Re-mapping and interleaving transport packets of multiple transport streams for processing by a single transport demultiplexor
FR2818067B1 (en) 2000-12-13 2004-05-07 Sagem METHOD FOR ROUTING ELECTRONIC MESSAGES
ATE488094T1 (en) 2000-12-22 2010-11-15 Irdeto Eindhoven B V CONDITIONAL ACCESS SYSTEM
CN101369299B (en) 2001-01-17 2010-06-09 康坦夹德控股股份有限公司 Method and apparatus for managing digital content usage rights
US6976166B2 (en) 2001-02-06 2005-12-13 Hewlett-Packard Development Company, L.P. Method and apparatus for partial encryption of content
US20020116705A1 (en) 2001-02-20 2002-08-22 Perlman Stephen G. System and method for processing conditional access data
US6934389B2 (en) 2001-03-02 2005-08-23 Ati International Srl Method and apparatus for providing bus-encrypted copy protection key to an unsecured bus
US20020129243A1 (en) 2001-03-08 2002-09-12 Viswanath Nanjundiah System for selective encryption of data packets
JP2002281477A (en) * 2001-03-16 2002-09-27 Nippon Hoso Kyokai <Nhk> Limited reception system, transmitter and retransmitter
EP1410140B1 (en) 2001-03-28 2017-02-15 NDS Limited Digital rights management system and method
US20020150239A1 (en) 2001-04-17 2002-10-17 Vidius Inc. Method for personalized encryption in an un-trusted environment
US7386129B2 (en) 2001-05-30 2008-06-10 Digeo, Inc. System and method for multimedia content simulcast
US7895616B2 (en) 2001-06-06 2011-02-22 Sony Corporation Reconstitution of program streams split across multiple packet identifiers
US7151831B2 (en) 2001-06-06 2006-12-19 Sony Corporation Partial encryption and PID mapping
US7350082B2 (en) 2001-06-06 2008-03-25 Sony Corporation Upgrading of encryption
US7747853B2 (en) 2001-06-06 2010-06-29 Sony Corporation IP delivery of secure digital content
US7065213B2 (en) 2001-06-29 2006-06-20 Scientific-Atlanta, Inc. In a subscriber network receiving digital packets and transmitting digital packets below a predetermined maximum bit rate
US7421411B2 (en) 2001-07-06 2008-09-02 Nokia Corporation Digital rights management in a mobile communications environment
US6633692B2 (en) 2001-07-31 2003-10-14 The National University Of Singapore High carrier injection optical waveguide switch
JP3783587B2 (en) * 2001-08-06 2006-06-07 日本電気株式会社 Information sales system, information sales method and program used therefor
JP2003051816A (en) * 2001-08-07 2003-02-21 Sony Corp Contents distribution system, contents distribution method, data processor, data processing method, and computer program
US7463737B2 (en) 2001-08-15 2008-12-09 Digeo, Inc. System and method for conditional access key encryption
US7224797B2 (en) 2001-08-17 2007-05-29 Koninklijke Philips Electronics N.V. System and method for hybrid conditional access for receivers of encrypted transmissions
EP1304871A3 (en) 2001-08-21 2003-06-18 Canal+ Technologies Société Anonyme Method and apparatus for a receiver/decoder
US6925180B2 (en) 2001-09-27 2005-08-02 Sony Corporation PC card recorder
CN100452699C (en) 2001-09-27 2009-01-14 松下电器产业株式会社 Encryption device, a decrypting device, a secret key generation device, a copyright protection system and a cipher communication device
US7369520B2 (en) 2001-10-02 2008-05-06 Nokia Corporation Internet protocol address to packet identifier mapping
US7206501B2 (en) 2001-10-12 2007-04-17 The Directv Group, Inc. Method and apparatus for identifying MPEG picture coding types
AU2002353818B2 (en) 2001-10-18 2006-04-27 Rovi Solutions Corporation Systems and methods for providing digital rights management compatibility
US20030159152A1 (en) 2001-10-23 2003-08-21 Shu Lin Fast motion trick mode using dummy bidirectional predictive pictures
US20030084284A1 (en) 2001-10-24 2003-05-01 Satoshi Ando Data distribution system, sending device, receiving device, data distribution method, sending method, receiving method, recording medium on which data preparation program is recorded and recording medium on which data assembling program is recorded
US7436850B2 (en) 2001-10-30 2008-10-14 Texas Instruments Incorporated Ultra-wideband (UWB) transparent bridge
JP2003152698A (en) 2001-11-15 2003-05-23 Nippon Hoso Kyokai <Nhk> Contents utilization control transmitting method, contents utilization control receiving method, contents utilization control transmitting device, contents utilization control receiving device, contents utilization control transmitting program and contents utilization control receiving program
US7242766B1 (en) 2001-11-21 2007-07-10 Silicon Image, Inc. Method and system for encrypting and decrypting data using an external agent
US8312265B2 (en) 2001-12-11 2012-11-13 Pinder Howard G Encrypting received content
US20040037421A1 (en) 2001-12-17 2004-02-26 Truman Michael Mead Parital encryption of assembled bitstreams
US7274857B2 (en) 2001-12-31 2007-09-25 Scientific-Atlanta, Inc. Trick modes for compressed video streams
US7218738B2 (en) 2002-01-02 2007-05-15 Sony Corporation Encryption and content control in a digital broadcast system
US7376233B2 (en) 2002-01-02 2008-05-20 Sony Corporation Video slice and active region based multiple partial encryption
US7823174B2 (en) 2002-01-02 2010-10-26 Sony Corporation Macro-block based content replacement by PID mapping
US7765567B2 (en) 2002-01-02 2010-07-27 Sony Corporation Content replacement by PID mapping
US7155012B2 (en) 2002-01-02 2006-12-26 Sony Corporation Slice mask and moat pattern partial encryption
US7302059B2 (en) 2002-01-02 2007-11-27 Sony Corporation Star pattern partial encryption
US7292691B2 (en) 2002-01-02 2007-11-06 Sony Corporation Progressive video refresh slice detection
US7233669B2 (en) 2002-01-02 2007-06-19 Sony Corporation Selective encryption to enable multiple decryption keys
US7242773B2 (en) 2002-09-09 2007-07-10 Sony Corporation Multiple partial encryption using retuning
US7215770B2 (en) 2002-01-02 2007-05-08 Sony Corporation System and method for partially encrypted multimedia stream
US7039938B2 (en) 2002-01-02 2006-05-02 Sony Corporation Selective encryption for video on demand
US7292690B2 (en) 2002-01-02 2007-11-06 Sony Corporation Video scene change detection
US20040021764A1 (en) 2002-01-28 2004-02-05 Be Here Corporation Visual teleconferencing apparatus
US7328345B2 (en) 2002-01-29 2008-02-05 Widevine Technologies, Inc. Method and system for end to end securing of content for video on demand
US20030188188A1 (en) 2002-03-15 2003-10-02 Microsoft Corporation Time-window-constrained multicast for future delivery multicast
US7305555B2 (en) 2002-03-27 2007-12-04 General Instrument Corporation Smart card mating protocol
US20030198223A1 (en) 2002-04-23 2003-10-23 General Instrument Corporation Method and apparatus for identifying data streams as networks
US7376235B2 (en) 2002-04-30 2008-05-20 Microsoft Corporation Methods and systems for frustrating statistical attacks by injecting pseudo data into a data system
US7530084B2 (en) 2002-05-28 2009-05-05 Sony Corporation Method and apparatus for synchronizing dynamic graphics
US20030226149A1 (en) 2002-05-31 2003-12-04 Kyong-Joon Chun Integrated home network system for providing multimedia services and integrated terminal device for the integrated home network system
US6788690B2 (en) 2002-06-27 2004-09-07 Nokia Corporation Packet identifier search filtering
US8818896B2 (en) 2002-09-09 2014-08-26 Sony Corporation Selective encryption with coverage encryption
US20040088541A1 (en) 2002-11-01 2004-05-06 Thomas Messerges Digital-rights management system
US7724907B2 (en) 2002-11-05 2010-05-25 Sony Corporation Mechanism for protecting the transfer of digital content
US8572408B2 (en) 2002-11-05 2013-10-29 Sony Corporation Digital rights management of a digital device
US7787622B2 (en) 2002-11-13 2010-08-31 General Instrument Corporation Efficient distribution of encrypted content for multiple content access systems
US7721192B2 (en) 2002-11-27 2010-05-18 Microsoft Corporation User interface for a resource search tool
US8667525B2 (en) 2002-12-13 2014-03-04 Sony Corporation Targeted advertisement selection from a digital stream
US8645988B2 (en) 2002-12-13 2014-02-04 Sony Corporation Content personalization for digital content
US6824291B2 (en) 2003-01-17 2004-11-30 Michelle Vautrin Pocketbook light
US20040165586A1 (en) 2003-02-24 2004-08-26 Read Christopher Jensen PID filters based network routing
US7409702B2 (en) 2003-03-20 2008-08-05 Sony Corporation Auxiliary program association table
US20050036067A1 (en) 2003-08-05 2005-02-17 Ryal Kim Annon Variable perspective view of video images
US20050066357A1 (en) 2003-09-22 2005-03-24 Ryal Kim Annon Modifying content rating
US7853980B2 (en) 2003-10-31 2010-12-14 Sony Corporation Bi-directional indices for trick mode video-on-demand
US7346163B2 (en) 2003-10-31 2008-03-18 Sony Corporation Dynamic composition of pre-encrypted video on demand content
US7343013B2 (en) 2003-12-16 2008-03-11 Sony Corporation Composite session-based encryption of video on demand content
US7263187B2 (en) 2003-10-31 2007-08-28 Sony Corporation Batch mode session-based encryption of video on demand content
US7620180B2 (en) 2003-11-03 2009-11-17 Sony Corporation Preparation of content for multiple conditional access methods in video on demand
US20050097596A1 (en) 2003-10-31 2005-05-05 Pedlow Leo M.Jr. Re-encrypted delivery of video-on-demand content
US20050097597A1 (en) 2003-10-31 2005-05-05 Pedlow Leo M.Jr. Hybrid storage of video on demand content
US20050102702A1 (en) 2003-11-12 2005-05-12 Candelore Brant L. Cablecard with content manipulation
US20050169473A1 (en) 2004-02-03 2005-08-04 Candelore Brant L. Multiple selective encryption with DRM
FR2867868A1 (en) * 2004-03-19 2005-09-23 Tan Truyen Tran Software and data protection method, involves dynamically dearchiving secret encryption key from sub-keys at each usage of programs/data, and dynamically decrypting protected programs or data by decryption algorithm and secret key
US8041190B2 (en) 2004-12-15 2011-10-18 Sony Corporation System and method for the creation, synchronization and delivery of alternate content
US20060130119A1 (en) 2004-12-15 2006-06-15 Candelore Brant L Advanced parental control for digital content

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6157719A (en) 1995-04-03 2000-12-05 Scientific-Atlanta, Inc. Conditional access system

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP1618666A4

Cited By (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US8533459B2 (en) 1999-03-30 2013-09-10 Sony Corporation Method and apparatus for protecting the transfer of data
EP2107808A1 (en) * 2008-04-03 2009-10-07 Nagravision S.A. Security module (SM) for an audio/video data processing unit
WO2009121933A1 (en) * 2008-04-03 2009-10-08 Nagravision S.A. Security module for audio/video data processing unit
US8646097B2 (en) 2008-04-03 2014-02-04 Nagravision, S.A. Security module for audio/video data processing unit
US20230185800A1 (en) * 2021-12-14 2023-06-15 International Business Machines Corporation Secure database-as-a-service system
US11860868B2 (en) * 2021-12-14 2024-01-02 International Business Machines Corporation Secure database-as-a-service system

Also Published As

Publication number Publication date
JP2011041327A (en) 2011-02-24
JP2013169000A (en) 2013-08-29
JP4663628B2 (en) 2011-04-06
KR20110099067A (en) 2011-09-05
JP2007525052A (en) 2007-08-30
JP2013078154A (en) 2013-04-25
EP1618666A2 (en) 2006-01-25
JP5629348B2 (en) 2014-11-19
WO2004082147A3 (en) 2006-12-21
US20030174844A1 (en) 2003-09-18
JP5577416B2 (en) 2014-08-20
EP1618666B1 (en) 2018-11-14
US7730300B2 (en) 2010-06-01
KR20050118176A (en) 2005-12-15
KR101081160B1 (en) 2011-11-07
EP1618666A4 (en) 2011-01-12

Similar Documents

Publication Publication Date Title
US9467658B2 (en) Method and apparatus for protecting the transfer of data
US7730300B2 (en) Method and apparatus for protecting the transfer of data
US8379853B2 (en) Descrambler
US7565546B2 (en) System, method and apparatus for secure digital content transmission
EP1563637B1 (en) Mechanism for protecting the transfer of digital content

Legal Events

Date Code Title Description
AK Designated states

Kind code of ref document: A2

Designated state(s): AE AG AL AM AT AU AZ BA BB BG BR BW BY BZ CA CH CN CO CR CU CZ DE DK DM DZ EC EE EG ES FI GB GD GE GH GM HR HU ID IL IN IS JP KE KG KP KR KZ LC LK LR LS LT LU LV MA MD MG MK MN MW MX MZ NA NI NO NZ OM PG PH PL PT RO RU SC SD SE SG SK SL SY TJ TM TN TR TT TZ UA UG US UZ VC VN YU ZA ZM ZW

AL Designated countries for regional patents

Kind code of ref document: A2

Designated state(s): BW GH GM KE LS MW MZ SD SL SZ TZ UG ZM ZW AM AZ BY KG KZ MD RU TJ TM AT BE BG CH CY CZ DE DK EE ES FI FR GB GR HU IE IT LU MC NL PL PT RO SE SI SK TR BF BJ CF CG CI CM GA GN GQ GW ML MR NE SN TD TG

121 Ep: the epo has been informed by wipo that ep was designated in this application
WWE Wipo information: entry into national phase

Ref document number: 2004717990

Country of ref document: EP

WWE Wipo information: entry into national phase

Ref document number: 1020057016825

Country of ref document: KR

WWE Wipo information: entry into national phase

Ref document number: 2006509171

Country of ref document: JP

WWP Wipo information: published in national office

Ref document number: 1020057016825

Country of ref document: KR

WWP Wipo information: published in national office

Ref document number: 2004717990

Country of ref document: EP