CN106803980B - 加密控制字的保护方法、硬件安全模块、主芯片和终端 - Google Patents
加密控制字的保护方法、硬件安全模块、主芯片和终端 Download PDFInfo
- Publication number
- CN106803980B CN106803980B CN201710116619.2A CN201710116619A CN106803980B CN 106803980 B CN106803980 B CN 106803980B CN 201710116619 A CN201710116619 A CN 201710116619A CN 106803980 B CN106803980 B CN 106803980B
- Authority
- CN
- China
- Prior art keywords
- security module
- hardware security
- control word
- master chip
- key
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 42
- 230000004913 activation Effects 0.000 claims description 33
- 230000005540 biological transmission Effects 0.000 claims description 25
- 238000013475 authorization Methods 0.000 claims description 14
- 238000009795 derivation Methods 0.000 claims description 6
- 238000007726 management method Methods 0.000 description 80
- 238000010586 diagram Methods 0.000 description 6
- 238000000151 deposition Methods 0.000 description 3
- 238000013500 data storage Methods 0.000 description 2
- 230000002708 enhancing effect Effects 0.000 description 2
- OTZZZISTDGMMMX-UHFFFAOYSA-N 2-(3,5-dimethylpyrazol-1-yl)-n,n-bis[2-(3,5-dimethylpyrazol-1-yl)ethyl]ethanamine Chemical compound N1=C(C)C=C(C)N1CCN(CCN1C(=CC(C)=N1)C)CCN1C(C)=CC(C)=N1 OTZZZISTDGMMMX-UHFFFAOYSA-N 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 230000002146 bilateral effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013523 data management Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000000926 separation method Methods 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/41—Structure of client; Structure of client peripherals
- H04N21/418—External card to be used in combination with the client device, e.g. for conditional access
- H04N21/4182—External card to be used in combination with the client device, e.g. for conditional access for identification purposes, e.g. storing user identification data, preferences, personal settings or data
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/72—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0891—Revocation or update of secret information, e.g. encryption key update or rekeying
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
- H04L9/0897—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3234—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving additional secure or trusted devices, e.g. TPM, smartcard, USB or software token
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/266—Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
- H04N21/26606—Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing entitlement messages, e.g. Entitlement Control Message [ECM] or Entitlement Management Message [EMM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/25—Management operations performed by the server for facilitating the content distribution or administrating data related to end-users or client devices, e.g. end-user or client device authentication, learning user preferences for recommending movies
- H04N21/266—Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel
- H04N21/26613—Channel or content management, e.g. generation and management of keys and entitlement messages in a conditional access system, merging a VOD unicast channel into a multicast channel for generating or managing keys in general
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/41—Structure of client; Structure of client peripherals
- H04N21/426—Internal components of the client ; Characteristics thereof
- H04N21/42607—Internal components of the client ; Characteristics thereof for processing the incoming bitstream
- H04N21/42623—Internal components of the client ; Characteristics thereof for processing the incoming bitstream involving specific decryption arrangements
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/40—Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
- H04N21/45—Management operations performed by the client for facilitating the reception of or the interaction with the content or administrating data related to the end-user or to the client device itself, e.g. learning user preferences for recommending movies, resolving scheduling conflicts
- H04N21/462—Content or additional data management, e.g. creating a master electronic program guide from data received from the Internet and a Head-end, controlling the complexity of a video stream by scaling the resolution or bit-rate based on the client capabilities
- H04N21/4623—Processing of entitlement messages, e.g. ECM [Entitlement Control Message] or EMM [Entitlement Management Message]
Landscapes
- Engineering & Computer Science (AREA)
- Signal Processing (AREA)
- Multimedia (AREA)
- Databases & Information Systems (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Technology Law (AREA)
- Mathematical Physics (AREA)
- Computing Systems (AREA)
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
- Storage Device Security (AREA)
Abstract
Description
Claims (13)
Priority Applications (3)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710116619.2A CN106803980B (zh) | 2017-02-28 | 2017-02-28 | 加密控制字的保护方法、硬件安全模块、主芯片和终端 |
PCT/CN2018/075999 WO2018157724A1 (zh) | 2017-02-28 | 2018-02-09 | 加密控制字的保护方法、硬件安全模块、主芯片和终端 |
US16/489,592 US11308242B2 (en) | 2017-02-28 | 2018-02-09 | Method for protecting encrypted control word, hardware security module, main chip and terminal |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201710116619.2A CN106803980B (zh) | 2017-02-28 | 2017-02-28 | 加密控制字的保护方法、硬件安全模块、主芯片和终端 |
Publications (2)
Publication Number | Publication Date |
---|---|
CN106803980A CN106803980A (zh) | 2017-06-06 |
CN106803980B true CN106803980B (zh) | 2019-01-11 |
Family
ID=58988867
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201710116619.2A Active CN106803980B (zh) | 2017-02-28 | 2017-02-28 | 加密控制字的保护方法、硬件安全模块、主芯片和终端 |
Country Status (3)
Country | Link |
---|---|
US (1) | US11308242B2 (zh) |
CN (1) | CN106803980B (zh) |
WO (1) | WO2018157724A1 (zh) |
Families Citing this family (4)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN106803980B (zh) * | 2017-02-28 | 2019-01-11 | 国家新闻出版广电总局广播科学研究院 | 加密控制字的保护方法、硬件安全模块、主芯片和终端 |
CN108184151B (zh) * | 2018-01-25 | 2020-04-07 | 国家新闻出版广电总局广播科学研究院 | 一种融合条件接收前端***和方法 |
US11621927B2 (en) * | 2020-11-23 | 2023-04-04 | Mellanox Technologies, Ltd. | Authentication and data lane control |
CN115955310B (zh) * | 2023-03-07 | 2023-06-27 | 杭州海康威视数字技术股份有限公司 | 信源加密多媒体数据导出安全保护方法、装置及设备 |
Family Cites Families (10)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
RU2000111530A (ru) * | 1997-10-02 | 2002-05-27 | Каналь+Сосьетэ Аноним | Способ и устройство для шифрованной трансляции потока данных |
US8837723B2 (en) * | 2007-06-18 | 2014-09-16 | General Instrument Corporation | Method and apparatus for use in a downloadable conditional access system |
CN101437145B (zh) * | 2008-12-19 | 2011-01-05 | 北京永新视博数字电视技术有限公司 | 一种层次化密钥安全管理方法、装置和加解密装置 |
CN101924907B (zh) * | 2009-06-12 | 2013-08-28 | 北京视博数字电视科技有限公司 | 实现条件接收的方法、终端设备 |
US8837726B2 (en) * | 2009-10-16 | 2014-09-16 | Cisco Technology, Inc. | Content protection key encryptor for security providers |
EP2317767A1 (en) * | 2009-10-27 | 2011-05-04 | Nagravision S.A. | Method for accessing services by a user unit |
CN102082971B (zh) * | 2011-02-10 | 2013-05-01 | 武汉天喻信息产业股份有限公司 | 数字电视机顶盒芯片及其授权接收方法 |
CN102164320B (zh) | 2011-04-11 | 2016-06-22 | 北京数字太和科技有限责任公司 | 一种改进的基于条件接收技术的终端 |
US9722974B1 (en) * | 2014-12-18 | 2017-08-01 | AbeBooks Inc. | Automated data re-encryption process in multi-tiered encryption system |
CN106803980B (zh) * | 2017-02-28 | 2019-01-11 | 国家新闻出版广电总局广播科学研究院 | 加密控制字的保护方法、硬件安全模块、主芯片和终端 |
-
2017
- 2017-02-28 CN CN201710116619.2A patent/CN106803980B/zh active Active
-
2018
- 2018-02-09 WO PCT/CN2018/075999 patent/WO2018157724A1/zh active Application Filing
- 2018-02-09 US US16/489,592 patent/US11308242B2/en active Active
Also Published As
Publication number | Publication date |
---|---|
CN106803980A (zh) | 2017-06-06 |
US20210232708A1 (en) | 2021-07-29 |
WO2018157724A1 (zh) | 2018-09-07 |
US11308242B2 (en) | 2022-04-19 |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP2461539B1 (en) | Control word protection | |
CN102160325B (zh) | 利用散列密钥的simulcrypt密钥共享 | |
US8205243B2 (en) | Control of enhanced application features via a conditional access system | |
KR101406350B1 (ko) | 클라이언트 도메인 내에서의 디지털 콘텐츠의 이용을관리하기 위한 방법 및 이 방법을 실행하는 디바이스 | |
CN101094062B (zh) | 利用存储卡实现数字内容安全分发和使用的方法 | |
CN106803980B (zh) | 加密控制字的保护方法、硬件安全模块、主芯片和终端 | |
US8176331B2 (en) | Method to secure data exchange between a multimedia processing unit and a security module | |
GB2489672A (en) | Authentication certificate distribution to set top boxes | |
CN104221023A (zh) | 数字权利管理 | |
CN103748890A (zh) | 接收机软件保护 | |
CN101207794B (zh) | Iptv***的数字版权管理加密和解密方法 | |
CN101621379A (zh) | 数字版权管理***的实现方法和数字版权管理*** | |
CN101202883B (zh) | 一种iptv***的数字版权管理*** | |
US10521564B2 (en) | Operating a device for forwarding protected content to a client unit | |
CN101521668A (zh) | 一种多媒体广播内容授权方法 | |
CN103546767A (zh) | 多媒体业务的内容保护方法和*** | |
CN101552793B (zh) | 一种数字多媒体文件下载或节目点播授权方法 | |
CN100588244C (zh) | 一种实现广播网络条件接收的方法和*** | |
US10075419B2 (en) | Method and device to protect a decrypted media content before transmission to a consumption device | |
US20240056651A1 (en) | Digital rights management using a gateway/set top box without a smart card | |
KR102286784B1 (ko) | Uhd 방송 콘텐츠 보안 시스템 | |
CN102238422B (zh) | 一种数字电视广播条件接收*** | |
US9740834B2 (en) | Usage rights information for protected content having two parts |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
PB01 | Publication | ||
PB01 | Publication | ||
SE01 | Entry into force of request for substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
GR01 | Patent grant | ||
GR01 | Patent grant | ||
CP01 | Change in the name or title of a patent holder |
Address after: 100866, 2, Fuxing Avenue, Xicheng District, Beijing Patentee after: Research Institute of Radio and Television Science, State Administration of Radio and Television Patentee after: BEIJING NOVEL-SUPERTV DIGITAL TV TECHNOLOGY Co.,Ltd. Patentee after: BEIJING SUMAVISION TECHNOLOGIES Co.,Ltd. Patentee after: HISILICON TECHNOLOGIES Co.,Ltd. Address before: 100866, 2, Fuxing Avenue, Xicheng District, Beijing Patentee before: ACADEMY OF BROADCASTING SCIENCE, STATE ADMINISTRATION OF PRESS, PUBLICATION, RADIO, FILM & TELEVISION Patentee before: BEIJING NOVEL-SUPERTV DIGITAL TV TECHNOLOGY Co.,Ltd. Patentee before: BEIJING SUMAVISION TECHNOLOGIES Co.,Ltd. Patentee before: HISILICON TECHNOLOGIES Co.,Ltd. |
|
CP01 | Change in the name or title of a patent holder |