CN104202621B - A kind of method and system of digital TV subscriber management system operation - Google Patents

A kind of method and system of digital TV subscriber management system operation Download PDF

Info

Publication number
CN104202621B
CN104202621B CN201410461179.0A CN201410461179A CN104202621B CN 104202621 B CN104202621 B CN 104202621B CN 201410461179 A CN201410461179 A CN 201410461179A CN 104202621 B CN104202621 B CN 104202621B
Authority
CN
China
Prior art keywords
random number
user
differentiation
video terminal
cipher key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410461179.0A
Other languages
Chinese (zh)
Other versions
CN104202621A (en
Inventor
赵化军
王天星
王文军
李伟东
李红艳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Shibo Digital TV Technology Co Ltd
Original Assignee
Beijing Shibo Digital TV Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Shibo Digital TV Technology Co Ltd filed Critical Beijing Shibo Digital TV Technology Co Ltd
Priority to CN201410461179.0A priority Critical patent/CN104202621B/en
Publication of CN104202621A publication Critical patent/CN104202621A/en
Application granted granted Critical
Publication of CN104202621B publication Critical patent/CN104202621B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)

Abstract

The invention discloses a kind of method and system of digital TV subscriber management system operation, methods described includes:Application server receives the user account that video terminal is sent, and generates random number at random;Calculate the random number after generation develops;Random number after differentiation and random number are sent to gateway;Gateway receives the random number and random number after developing;The business cipher key after generation develops is calculated, and the business cipher key after differentiation and the random number after differentiation are sent to video terminal;Video terminal receives the business cipher key after developing and the random number after differentiation, calculates generation random number;Generation business cipher key is calculated according to the business cipher key after random number and differentiation.By method and system disclosed by the invention, video terminal sends user account by gateway to application server, does not send user cipher, prevents from leaking user cipher when network is under attack, ensure that digital TV subscriber management system safe operation.

Description

A kind of method and system of digital TV subscriber management system operation
Technical field
The present embodiments relate to digital TV technology, more particularly to a kind of digital TV subscriber management system to run Method and system.
Background technology
DTV refers to from producing, edit, launch, receive and broadcast TV signal and be all using digitizing technique System.Relative to traditional simulated television, DTV has the advantages that picture quality is high, program capacity is big and sound accompaniment effect is good.
Applied to digital TV subscriber management system (SMS, the Subscriber Management in DTV System it is) to use digital technology and network technology, the system for providing respective service to the user that have subscribed digital TV products. Digital subscriber management system mainly includes passing through the application server of network connection, gateway and at least one video terminal.
At present, in digital subscriber management system, user passes through video terminal registered user's account on the application server And user cipher, and buy TV programme authority.When user needs to watch TV programme, user inputs use on video terminal User account and user cipher are sent to application server by family account and user cipher, video terminal by gateway, using clothes Whether business device checking user, which has permission, is watched the TV programme, is regarded if so, then allowing gateway to be sent to the key of TV programme Frequency terminal, video terminal decrypt the key of the TV programme, and user can watch the TV programme on video terminal.
But the process that user account and user cipher are sent to application server by video terminal by gateway is to pass through Real-time performance, when network is under attack, the user account and user cipher that transmit in a network will leak, can not Ensure the safe operation of digital subscriber management system.
The content of the invention
In view of this, the embodiment of the present invention provides a kind of method and system of digital TV subscriber management system operation, with Solve the problems, such as because network delivery user account and user cipher can influence the safe operation of digital TV subscriber management system.
On the one hand, the embodiments of the invention provide a kind of method of digital TV subscriber management system operation, the numeral At least one video that TV user management system includes application server and is connected by gateway with the application server is whole End, methods described include:
The application server receives the user account that the video terminal sends by the gateway, and generate at random with Machine number;According to the random number and the user cipher corresponding with the user account, the random number after generation develops is calculated;Will Random number and the random number after the differentiation are sent to the gateway;
The gateway receives random number and the random number after the differentiation, is held according to the random number and the gateway Some business cipher keys, the business cipher key after generation develops is calculated, and by after the business cipher key after the differentiation and the differentiation Random number is sent to video terminal;
The video terminal, the business cipher key after the differentiation and the random number after the differentiation are received, it is close according to user Random number after code and the differentiation, calculate and generate the random number;It is close according to the business after the random number and the differentiation Key, which calculates, generates the business cipher key;
Processing is decrypted to the video data received according to the business cipher key in the video terminal.
Preferably, the application server by the gateway receive user account that the video terminal sends it Before, in addition to:
The application server receives the user profile of the video terminal registration, and the user profile comprises at least described User account and user cipher.
Preferably, also include before the random generation random number:
The application server receives the user account, and the user account received is noted in the video terminal Searched in the user account of volume;
If the user account consistent with the user account received can be found in the user account of the registration, at random Random number is generated, if the user account consistent with the user account received can not be found in the user account of the registration, Then stop performing.
Preferably, the gateway also includes after receiving random number and the random number after the differentiation:
The gateway calculates generation second user cryptographic check number according to business cipher key;
The second user cryptographic check number is sent to the video terminal by the gateway.
Preferably, after the calculating generates the business cipher key, in addition to:
The video terminal calculates according to the business cipher key and generates the first user cipher check number;
The video terminal receives the second user cryptographic check number that the gateway is sent;
Video terminal the first user cipher check number and the second user cryptographic check number, if one Cause, then random number after business cipher key, the differentiation and the second user cryptographic check number after the differentiation received Correctly;If inconsistent, random number after business cipher key, the differentiation and the second user after the differentiation received At least one mistake in cryptographic check number.
On the other hand, the embodiments of the invention provide a kind of system of digital TV subscriber management system operation, including should With server, gateway and at least one video terminal, the system includes:
User account receiving module, it is configured in the application server, is sent for receiving video terminal by gateway User account, and generate random number at random;
Random number generation module after differentiation, be configured in the application server, for according to the random number and with The corresponding user cipher of the user account, calculate the random number after generation develops;
Random number sending module after differentiation, is configured in the application server, for send after the differentiation with Machine number and the random number;
Random number receiving module after differentiation, is configured in the gateway, for receive the random number after the differentiation and The random number;
Business cipher key generation module after differentiation, be configured in the gateway, for according to the random number and holding Business cipher key, calculate the business cipher key after generation develops;
Business cipher key sending module after differentiation, is configured in the gateway, close for sending the business after the differentiation Random number after key and the differentiation;
Business cipher key receiving module after differentiation, is configured in the video terminal, for receiving the industry after the differentiation Random number after business key and the differentiation;
Random number generation module, be configured in the video terminal, for according to after user cipher and the differentiation with Machine number, calculate and generate the random number;
Business cipher key generation module, it is configured in the video terminal, according to the industry after the random number and the differentiation Cipher key calculation of being engaged in generates the business cipher key;
Deciphering module, be configured in the video terminal, for according to the business cipher key to the video data that receives Processing is decrypted.
Preferably, the system also includes:
Registering modules, it is configured in the application server, for receiving the video terminal hair by the gateway Before the user account sent, the user profile of the video terminal registration is received, the user profile comprises at least the user Account and user cipher.
Preferably, the system also includes:
User account comparison module, it is configured in the application server, for receiving the user account, will receives The user account searched in the user account that the video terminal is registered;If in the user account of the registration The user account consistent with the user account received can be found, then random number is generated at random, if in user's account of the registration The user account consistent with the user account received can not be found in number, then stops performing.Preferably, the system is also wrapped Include:
Second user cryptographic check number generation module, is configured in the gateway, for after the differentiation is received with After machine number and the random number, according to business cipher key, generation second user cryptographic check number is calculated;
The second user cryptographic check number sending module, is configured in the gateway, for sending the second user Cryptographic check number.
Preferably, the system also includes:
First user cipher check number generation module, is configured in the video terminal, for calculating the generation industry It is engaged in after key, according to the business cipher key, calculates and generate the first user cipher check number;
Second user cryptographic check number receiving module, is configured in the video terminal, is sent for receiving the gateway The second user cryptographic check number;
Cryptographic check number comparison module, is configured in the video terminal, is verified for first user cipher Number and the second user cryptographic check number, if unanimously, after the business cipher key, the differentiation after the differentiation received Random number and the second user cryptographic check number are correct;If inconsistent, business cipher key, institute after the differentiation received State at least one mistake in random number and the second user cryptographic check number after developing.
The method and system run by a kind of digital TV subscriber management system provided in an embodiment of the present invention, video are whole End sends user account by gateway to application server, does not send user cipher, prevents from leaking user when network is under attack Password, it ensure that digital TV subscriber management system safe operation.And video terminal is by receiving the business cipher key after developing With the random number after differentiation, according to the random number after user cipher and differentiation, generation random number is calculated;According to random number and differentiation Business cipher key afterwards calculates generation business cipher key, and the video data that video terminal receives according to business cipher key decryption, user is just The TV programme corresponding with business cipher key can be played on video terminal, ensure that user normally watches TV programme.
Brief description of the drawings
Fig. 1 is a kind of structural representation of digital TV subscriber management system provided in an embodiment of the present invention;
Fig. 2 is a kind of flow signal of the method for digital TV subscriber management system operation that the embodiment of the present invention one provides Figure;
Fig. 3 is a kind of interaction signal of the method for digital TV subscriber management system operation that the embodiment of the present invention one provides Figure;
Fig. 4 is a kind of flow signal of the method for digital TV subscriber management system operation that the embodiment of the present invention two provides Figure;
Fig. 5 is a kind of interaction signal of the method for digital TV subscriber management system operation that the embodiment of the present invention two provides Figure;
Fig. 6 is a kind of structural representation of the system for digital TV subscriber management system operation that the embodiment of the present invention three provides Figure;
Fig. 7 is a kind of structural representation of the system for digital TV subscriber management system operation that the embodiment of the present invention four provides Figure.
Embodiment
The present invention is described in further detail with reference to the accompanying drawings and examples.It is understood that this place is retouched The specific embodiment stated is used only for explaining the present invention, rather than limitation of the invention.It also should be noted that in order to just Part related to the present invention rather than entire infrastructure are illustrate only in description, accompanying drawing.
Fig. 1 is a kind of structural representation of digital TV subscriber management system provided in an embodiment of the present invention.
As shown in fig. 1, digital TV subscriber management system includes application server 1 and passes through gateway 2 and application service At least one video terminal 3 that device 1 connects.Wherein, application server 1 is managed using the pattern unification of centralized Control and distribution operation Video terminal 3 is managed, to control the normal operation of each video terminal 3.
Embodiment one
Fig. 2 is a kind of flow signal of the method for digital TV subscriber management system operation that the embodiment of the present invention one provides Figure.
Fig. 3 is a kind of interaction signal of the method for digital TV subscriber management system operation that the embodiment of the present invention one provides Figure.
In the case where providing the user digital television service, the digital TV subscriber management system of the offer of the present embodiment one The method of operation can be performed by digital TV subscriber management system, be specifically comprised the following steps:
Step S201, application server receives the user account of video terminal transmission by gateway, and generation is random at random Number;
Before step S201, registered user's information, user profile comprise at least use to video terminal on the application server Family account and user cipher (pwd, PassWord), the user account received can be by symbols such as Chinese character, numeral and/or letters Composition, such as:Mountain Everest, zmlmf and 12345;User account can also be the sequence number of video terminal.
Step S202, application server calculate generation and drilled according to random number and the user cipher corresponding with user account Random number after change, the random number after differentiation and random number are sent to gateway.
In step S202, application server calculates life according to random number and the user cipher corresponding with user account Algorithm into the random number after differentiation is irreversible, i.e., it is random that generation can not be calculated in the case of the random number after only being developed Number and user cipher.Application server sends the random number after developing to gateway, without sending user cipher, has ensured in network User cipher will not be revealed when under attack, and even if reveals the random number after developing, because above-mentioned algorithm is irreversible, also not User cipher and random number only can be calculated according to the nonce count after developing, ensure that the safety of digital TV subscriber management system Operation.
Step S203, gateway receive the random number and random number after developing, and the business held according to random number and gateway is close Key, the business cipher key after generation develops is calculated, and the business cipher key after differentiation and the random number after differentiation are sent to video end End.
In step S203, gateway receive by application server send differentiation after random number and random number it Afterwards, gateway transfers the business password (key) that gateway itself is held, and according to random number and business cipher key, calculates after generating differentiation Business cipher key (key_E), and the business cipher key after differentiation and the random number after differentiation are sent to video terminal.So as to avoid Business transferring key in network, prevent when network is under attack, reveal business cipher key.
Step S204, video terminal receive the business cipher key after developing and the random number after differentiation, according to user cipher and Random number after differentiation, generation random number is calculated, generation business cipher key is calculated according to the business cipher key after random number and differentiation.
In step S204, video terminal can be mobile phone, PAD (tablet personal computer), TV, the PC for having display screen Devices such as (personal computer, personal computers).
Processing is decrypted to the video data received according to business cipher key in step S205, video terminal.
In step S205, video terminal according to the video data that receives of business cipher key decryption, user's can regarding The TV programme corresponding with business cipher key are played on frequency terminal, ensure that user normally watches TV programme.
The method that a kind of digital TV subscriber management system provided by the embodiment of the present invention one is run, video terminal lead to Cross gateway and send user account to application server, do not send user cipher, prevent from leaking user cipher when network is under attack, It ensure that digital TV subscriber management system safe operation.
In one preferred embodiment of the present embodiment, application server receives user's letter of the video terminal registration Breath, user profile comprise at least user account and user cipher.Before application server generates random number at random, application service Device receives user account, and the user account received is searched in the user account that video terminal is registered;If registering User account can find the user account consistent with receiving user account, then at random generation random number, if in registration User account can not find the user account consistent with receiving user account, then stop performing.Above-mentioned lookup user account Process, can not only verify whether the user account of reception has been registered on the application server, user account can also be verified Whether bought programme content authority and the authority whether before the deadline.If programme content authority has been bought, and the power It is limited in the term of validity, then generates random number at random;If the programme content authority of programme content authority or purchase mistake is not bought It is phase, then out of service.
Embodiment two
Fig. 4 is a kind of flow signal of the method for digital TV subscriber management system operation that the embodiment of the present invention two provides Figure.
Fig. 5 is a kind of interaction signal of the method for digital TV subscriber management system operation that the embodiment of the present invention two provides Figure.
In the method for the digital TV subscriber management system operation that the embodiment of the present invention one provides, after gateway will develop Random number and random number pass to video terminal during, it is possible to by network attack, the business after the differentiation being passed Random number after key and differentiation is likely to occur mistake, therefore, the embodiment of the present invention two discloses a kind of digital cable customers The method of management system operation, verifies to the business cipher key after the differentiation that receives and the random number after differentiation, judges to connect Whether the random number after business cipher key and differentiation after the differentiation received is correct, as shown in figure 4, specifically including following steps:
Step S401, application server receives the user account of video terminal transmission by gateway, and generation is random at random Number.
Step S402, application server calculate generation and drilled according to random number and the user cipher corresponding with user account Random number after change, the random number after differentiation and random number are sent to gateway.
Step S403, gateway receive the random number and random number after developing, and according to random number and business cipher key, calculate generation Business cipher key after differentiation.
Step S404, gateway calculate generation second user cryptographic check number according to business cipher key, and by the business after differentiation Random number and second user cryptographic check number after key, differentiation are sent to video terminal.
Step S405, video terminal receive the business cipher key after developing, the random number after differentiation and second user password school Number is tested, according to the random number after user cipher and differentiation, calculates generation random number.
Step S406, video terminal calculate generation business cipher key according to the business cipher key after random number and differentiation.
Step S407, video terminal calculate the first user cipher check number of generation according to business cipher key.
Step S408, video terminal compare the first user cipher check number and second user cryptographic check number, if unanimously, Business cipher key after the differentiation received, develop after random number and second user cryptographic check number it is correct, perform step S409; If inconsistent, business cipher key after the differentiation received, develop after random number and second user cryptographic check number at least One mistake, then perform termination.
Processing is decrypted to the video data received according to business cipher key in step S409, video terminal.
Received in a kind of method of digital TV subscriber management system operation, video terminal disclosed in the embodiment of the present invention two Business cipher key after differentiation, develop after random number and second user cryptographic check number, according to user cipher and after developing with Machine number, calculate generation random number;Generation business cipher key is calculated according to the business cipher key after random number and differentiation;It is close according to business Key, calculate the first user cipher check number of generation;Compare the first user cipher check number and second user cryptographic check number, judge Business cipher key after differentiation, develop after random number and second user cryptographic check number whether occur during transmission Mistake.
Embodiment three
Fig. 6 is a kind of structural representation of the system for digital TV subscriber management system operation that the embodiment of the present invention three provides Figure.
A kind of system for digital TV subscriber management system operation that the present embodiment three provides is applicable to run digital electricity Depending on Subscriber Management System, in the case of providing the user service, including application server, gateway and at least one video terminal, As shown in fig. 6, the system specifically includes:
User account receiving module 601, it is configured in application server 1, is sent for receiving video terminal by gateway User account, and generate random number at random.
In user account receiving module 601, the user account received can be accorded with by Chinese character, numeral and/or letter etc. Number composition, such as:Mountain Everest, zmlmf and 12365;User account can also be the sequence number of video terminal.
Random number generation module 602 after differentiation, is configured in application server 1, for according to random number and and user The corresponding user cipher of account, calculate the random number after generation develops;
Random number sending module 603 after differentiation, is configured in application server 1, for sending the random number after developing And random number.
In random number sending module 603 after differentiation, the random number after developing is sent, without sending user cipher, is protected User cipher will not be revealed when network is under attack by having hindered, and even if the random number after developing be revealed, due to above-mentioned algorithm It is irreversible, user cipher and random number can not be calculated according to the nonce count after differentiation, ensure that digital cable customers management The safe operation of system.
In actual applications, user account receiving module 601, develop after random number generation module 602 and develop after Random number sending module 603 can be integrated in application server 1.
Random number receiving module 604 after differentiation, is configured in gateway 2, for the random number after reception differentiation and at random Number.
Business cipher key generation module 605 after differentiation, is configured in gateway 2, for according to random number and the business held Key, calculate the business cipher key after generation develops;
Business cipher key sending module 606 after differentiation, is configured in gateway 2, for send develop after business cipher key and Random number after differentiation.So as to avoid business transferring key in a network, prevent when network is under attack, leakage business is close Key.
In actual applications, the random number receiving module 604 after differentiation, the and of business cipher key generation module 605 after differentiation Business cipher key sending module 606 after differentiation can be integrated in gateway 2.
Business cipher key receiving module 607 after differentiation, is configured in video terminal 3, close for receiving the business after developing Random number after key and differentiation;
Random number generation module 608, be configured in video terminal 3, for according to user cipher and develop after random number, Calculate generation random number;
Business cipher key generation module 609, it is configured in video terminal 3, according to the business cipher key meter after random number and differentiation Calculate generation business cipher key;
Deciphering module 610, it is configured in video terminal 3, for being carried out according to business cipher key to the video data received Decryption processing.
In actual applications, the business cipher key receiving module 607 after differentiation, random number generation module 608, business cipher key life Can be integrated in video terminal 3 into module 609 and deciphering module 610, the video terminal can be have display screen mobile phone, The devices such as PAD (tablet personal computer), TV, PC (personal computer, personal computer).
The system that a kind of digital TV subscriber management system provided by the embodiment of the present invention three is run, video terminal lead to Cross gateway and send user account to application server, do not send user cipher, prevent from leaking user cipher when network is under attack, It ensure that digital TV subscriber management system safe operation.
Example IV
Fig. 7 is a kind of structural representation of the system for digital TV subscriber management system operation that the embodiment of the present invention four provides Figure.
In the system for the digital TV subscriber management system operation that embodiment three provides, gateway is by the random number after differentiation With random number pass to video terminal during, it is possible to by network attack, business cipher key after the differentiation being passed and drill Random number after change is likely to occur mistake, therefore, the embodiment of the present invention four discloses a kind of digital TV subscriber management system The system of operation, judge to receive, which drills, is verified to the business cipher key after the differentiation that receives and the random number after differentiation Whether the random number after business cipher key and differentiation after change is correct, as shown in fig. 7, specifically including following system:
Registering modules 701, it is configured in application server 1, for receiving user's account of video terminal transmission by gateway Before number, the user profile of video terminal registration is received, user profile comprises at least user account and user cipher.
User account receiving module 702, it is configured in application server 1, is sent for receiving video terminal by gateway User account;
User account searching modul 703, it is configured in application server 1, for receiving user account, the use that will receive Family account is searched in the user account that video terminal is registered;If it can find and receive use in the user account of registration The consistent user account of family account, then random number is generated at random, if the user account in registration can not find and receive use The consistent user account of family account, then stop performing..
In user account searching modul 703, the user account received can be accorded with by Chinese character, numeral and/or letter etc. Number composition, such as:Mountain Everest, zmlmf and 12347;User account can also be the sequence number of video terminal.
Random number generation module 704 after differentiation, is configured in application server 1, for according to random number and and user The corresponding user cipher of account, calculate the random number after generation develops;
Random number sending module 705 after differentiation, is configured in application server 1, for sending the random number after developing And random number.
In random number sending module 705 after differentiation, the random number after developing is sent, without sending user cipher, is protected User cipher will not be revealed when network is under attack by having hindered, and even if the random number after developing be revealed, due to above-mentioned algorithm It is irreversible, user cipher and random number can not be calculated according to the nonce count after differentiation, ensure that digital cable customers management The safe operation of system.
In actual applications, above-mentioned Registering modules 701, user account receiving module 702, user account searching modul 703, The random number sending module 705 after random number generation module 704 and differentiation after differentiation can be integrated in application server 1.
Random number receiving module 706 after differentiation, is configured in gateway 2, for the random number after reception differentiation and at random Number.
Business cipher key generation module 707 after differentiation, is configured in gateway 2, for according to random number and the business held Key, calculate the business cipher key after generation develops.
Business cipher key sending module 708 after differentiation, is configured in gateway 2, for send develop after business cipher key and Random number after differentiation.So as to avoid business transferring key in a network, prevent when network is under attack, leakage business is close Key.
Second user cryptographic check number generation module 709, is configured in gateway 2, for receiving the random number after developing After random number, according to business cipher key, generation second user cryptographic check number is calculated;
Second user cryptographic check number sending module 710, is configured in gateway 2, for sending second user cryptographic check Number.
In actual applications, the random number receiving module 706 after above-mentioned differentiation, the business cipher key generation module after differentiation 707th, business cipher key sending module 708, second user cryptographic check number generation module 709 and second user password school after developing Testing several sending modules 710 can be integrated in gateway 2.
Business cipher key receiving module 711 after differentiation, is configured in video terminal 3, close for receiving the business after developing Random number after key and differentiation;
Random number generation module 712, be configured in video terminal 3, for according to user cipher and develop after random number, Calculate generation random number;
Business cipher key generation module 713, it is configured in video terminal 3, according to the business cipher key meter after random number and differentiation Calculate generation business cipher key;
First user cipher check number generation module 714, is configured in video terminal 3, for according to business cipher key, calculating Generate the first user cipher check number;
Second user cryptographic check number receiving module 715, is configured in video terminal 3, for receiving second user password Check number;
Cryptographic check number comparison module 716, is configured in video terminal 3, for compare the first user cipher check number and Second user cryptographic check number, if unanimously, the random number and second user after business cipher key, differentiation after the differentiation received Cryptographic check number is correct;If inconsistent, business cipher key after the differentiation received, develop after random number and second user it is close At least one mistake in code check number.
Deciphering module 717, it is configured in video terminal 3, for being carried out according to business cipher key to the video data received Decryption processing.
In actual applications, the business cipher key receiving module 711 after above-mentioned differentiation, random number generation module 712, business are close Key generation module 713, the first user cipher check number generation module 714, second user cryptographic check number receiving module 715, it is close Code check number comparison module 716 and deciphering module 717 can be integrated in video terminal.
Received in a kind of system of digital TV subscriber management system operation, video terminal disclosed in the embodiment of the present invention four Business cipher key after differentiation, develop after random number and second user cryptographic check number, according to user cipher and after developing with Machine number, calculate generation random number;Generation business cipher key is calculated according to the business cipher key after random number and differentiation;It is close according to business Key, calculate the first user cipher check number of generation;Compare the first user cipher check number and second user cryptographic check number, judge Business cipher key after differentiation, develop after random number and second user cryptographic check number whether occur during transmission Mistake.
Pay attention to, above are only presently preferred embodiments of the present invention and institute's application technology principle.It will be appreciated by those skilled in the art that The invention is not restricted to specific embodiment here, can carry out various significantly change, again for a person skilled in the art Adjustment and replacement are without departing from protection scope of the present invention.Therefore, although the present invention has been carried out by above example compared with For detailed description, but the present invention is not limited only to above example, without departing from the inventive concept, can be with Including other more equivalent embodiments, and the scope of the present invention is determined by scope of the appended claims.

Claims (10)

1. a kind of method of digital TV subscriber management system operation, the digital TV subscriber management system include application service Device and at least one video terminal being connected by gateway with the application server, it is characterised in that including:
The application server receives the user account of the video terminal transmission by the gateway, and generation is random at random Number;According to the random number and the user cipher corresponding with the user account, the random number after generation develops is calculated;By institute State the random number after developing and the random number is sent to the gateway;
The gateway receives random number and the random number after the differentiation, holds according to the random number and the gateway Business cipher key, the business cipher key after generation develops is calculated, and will be random after the business cipher key after the differentiation and the differentiation Number is sent to video terminal;
The video terminal, receives the business cipher key after the differentiation and the random number after the differentiation, according to user cipher and Random number after the differentiation, calculate and generate the random number;According to the business cipher key meter after the random number and the differentiation Calculate and generate the business cipher key;
Processing is decrypted to the video data received according to the business cipher key in the video terminal.
2. according to the method described in claim requirement 1, it is characterised in that received in the application server by the gateway Before the user account that the video terminal is sent, in addition to:
The application server receives the user profile of the video terminal registration, and the user profile comprises at least the user Account and user cipher.
3. according to the method described in claim requirement 2, it is characterised in that also include before the random generation random number:
The application server receives the user account, and the user account received is registered in the video terminal Searched in user account;
If the user account consistent with the user account received can be found in the user account of the registration, random generation Random number, if the user account consistent with the user account received can not be found in the user account of the registration, stop Only perform.
4. according to the method described in claim requirement 1, it is characterised in that the gateway receive the random number after the differentiation and Also include after the random number:
The business cipher key that the gateway is held according to the gateway, calculate generation second user cryptographic check number;
The second user cryptographic check number is sent to the video terminal by the gateway.
5. according to the method described in claim requirement 4, it is characterised in that after the calculating generates the business cipher key, Also include:
The video terminal calculates the first user cipher check number of generation according to the business cipher key for calculating generation;
The video terminal receives the second user cryptographic check number that the gateway is sent;
Video terminal the first user cipher check number and the second user cryptographic check number, if unanimously, Random number after business cipher key, the differentiation and the second user cryptographic check number after the differentiation received is correct; If inconsistent, random number after business cipher key, the differentiation and the second user password after the differentiation received At least one mistake in check number.
6. a kind of system of digital TV subscriber management system operation, including application server, gateway and at least one video are whole End, it is characterised in that including:
User account receiving module, it is configured in the application server, for receiving the use of video terminal transmission by gateway Family account, and random number is generated at random;
Random number generation module after differentiation, be configured in the application server, for according to the random number and with it is described The corresponding user cipher of user account, calculate the random number after generation develops;
Random number sending module after differentiation, is configured in the application server, for sending the random number after the differentiation With the random number;
Random number receiving module after differentiation, is configured in the gateway, for receiving the random number after the differentiation and described Random number;
Business cipher key generation module after differentiation, is configured in the gateway, for according to the random number and the business held Key, calculate the business cipher key after generation develops;
Business cipher key sending module after differentiation, is configured in the gateway, for send the business cipher key after the differentiation and Random number after the differentiation;
Business cipher key receiving module after differentiation, is configured in the video terminal, close for receiving the business after the differentiation Random number after key and the differentiation;
Random number generation module, it is configured in the video terminal, for according to the random number after user cipher and the differentiation, Calculate and generate the random number;
Business cipher key generation module, it is configured in the video terminal, it is close according to the business after the random number and the differentiation Key, which calculates, generates the business cipher key;
Deciphering module, it is configured in the video terminal, for being carried out according to the business cipher key to the video data received Decryption processing.
7. according to the system described in claim requirement 6, it is characterised in that also include:
Registering modules, it is configured in the server, for receiving the user of the video terminal transmission by the gateway Before account, the user profile of the video terminal registration is received, the user profile comprises at least the user account and use Family password.
8. according to the system described in claim requirement 7, it is characterised in that also include:
User account comparison module, it is configured in the application server, for receiving the user account, the institute that will receive User account is stated to be searched in the user account that the video terminal is registered;If it can be looked into the user account of the registration The user account consistent with the user account received is found, then random number is generated at random, if in the user account of the registration The user account consistent with the user account received can not be found, then stops performing.
9. according to the system described in claim requirement 6, it is characterised in that also include:
Second user cryptographic check number generation module, is configured in the gateway, for the random number after the differentiation is received After the random number, the business cipher key held according to the gateway, generation second user cryptographic check number is calculated;
The second user cryptographic check number sending module, is configured in the gateway, for sending the second user password Check number.
10. according to the system described in claim requirement 9, it is characterised in that also include:
First user cipher check number generation module, is configured in the video terminal, close for generating the business in calculating After key, according to the business cipher key for calculating generation, the first user cipher check number of generation is calculated;
Second user cryptographic check number receiving module, is configured in the video terminal, the institute sent for receiving the gateway State second user cryptographic check number;
Cryptographic check number comparison module, is configured in the video terminal, for the first user cipher check number and The second user cryptographic check number, if unanimously, it is random after the business cipher key, the differentiation after the differentiation received Number and the second user cryptographic check number are correct;If inconsistent, business cipher key after the differentiation received, described drill At least one mistake in random number and the second user cryptographic check number after change.
CN201410461179.0A 2014-09-11 2014-09-11 A kind of method and system of digital TV subscriber management system operation Active CN104202621B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410461179.0A CN104202621B (en) 2014-09-11 2014-09-11 A kind of method and system of digital TV subscriber management system operation

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410461179.0A CN104202621B (en) 2014-09-11 2014-09-11 A kind of method and system of digital TV subscriber management system operation

Publications (2)

Publication Number Publication Date
CN104202621A CN104202621A (en) 2014-12-10
CN104202621B true CN104202621B (en) 2017-12-26

Family

ID=52087836

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410461179.0A Active CN104202621B (en) 2014-09-11 2014-09-11 A kind of method and system of digital TV subscriber management system operation

Country Status (1)

Country Link
CN (1) CN104202621B (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106789476B (en) * 2016-12-29 2020-08-18 Tcl科技集团股份有限公司 Gateway communication method and system

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101741843A (en) * 2009-12-10 2010-06-16 北京握奇数据***有限公司 Method, device and system for realizing user authentication by utilizing public key infrastructure
CN101924907A (en) * 2009-06-12 2010-12-22 北京视博数字电视科技有限公司 Method for realizing condition receiving, terminal equipment and front end thereof
CN102307193A (en) * 2011-08-22 2012-01-04 北京宏基恒信科技有限责任公司 Key updating and synchronizing method, system and device for dynamic token

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR100704675B1 (en) * 2005-03-09 2007-04-06 한국전자통신연구원 authentication method and key generating method in wireless portable internet system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101924907A (en) * 2009-06-12 2010-12-22 北京视博数字电视科技有限公司 Method for realizing condition receiving, terminal equipment and front end thereof
CN101741843A (en) * 2009-12-10 2010-06-16 北京握奇数据***有限公司 Method, device and system for realizing user authentication by utilizing public key infrastructure
CN102307193A (en) * 2011-08-22 2012-01-04 北京宏基恒信科技有限责任公司 Key updating and synchronizing method, system and device for dynamic token

Also Published As

Publication number Publication date
CN104202621A (en) 2014-12-10

Similar Documents

Publication Publication Date Title
US11601409B2 (en) Establishing a secure communication session with an external security processor
CN106464485B (en) System and method for protecting content keys delivered in manifest files
CN1933393B (en) Inter-entity coupling method, apparatus and system for content protection
US8488786B2 (en) Security method and device for managing access to multimedia contents
CN110401677B (en) Method and device for acquiring digital copyright key, storage medium and electronic equipment
CN103873233B (en) A kind of digital movie cryptographic key distribution method based on managing web, device and system
CN110099064A (en) A kind of document handling method based on Internet of Things, device, equipment and storage medium
US11550882B2 (en) Secure DRM-agnostic key rotation
CN105430431B (en) multimedia data playing method and device
US20060031676A1 (en) Methods and apparatuses for configuring products
CN106850517A (en) A kind of method, apparatus and system for solving intranet and extranet repeat logon
CN104202621B (en) A kind of method and system of digital TV subscriber management system operation
CN104901967A (en) Registration method for trusted device
CN101202893A (en) Method, system for preventing non-authorization user from obtaining service and video server
CN105704526A (en) DRM implementation method and system for digital television, television gateway and terminal
CN115348023A (en) Data security processing method and device
CN113032753A (en) Identity verification method and device
KR101803975B1 (en) A method for secure transfer of message
CN106992865A (en) Data signature method and system, data sign test method and device
CN106161187B (en) Method, equipment and system for providing public information service based on instant message
KR20130090725A (en) Key input security system and method using the same
CN104717235A (en) Virtual machine resource detection method
CN114826616B (en) Data processing method, device, electronic equipment and medium
WO2016192078A1 (en) Software security protection method and device
CN104683977A (en) Management method and management device of service data

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant