CA2055132C - Apparatus and method for upgrading terminals to maintain a secure communication network - Google Patents
Apparatus and method for upgrading terminals to maintain a secure communication network Download PDFInfo
- Publication number
- CA2055132C CA2055132C CA002055132A CA2055132A CA2055132C CA 2055132 C CA2055132 C CA 2055132C CA 002055132 A CA002055132 A CA 002055132A CA 2055132 A CA2055132 A CA 2055132A CA 2055132 C CA2055132 C CA 2055132C
- Authority
- CA
- Canada
- Prior art keywords
- algorithm
- security
- terminals
- signals
- accordance
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Expired - Lifetime
Links
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N21/00—Selective content distribution, e.g. interactive television or video on demand [VOD]
- H04N21/20—Servers specifically adapted for the distribution of content, e.g. VOD servers; Operations thereof
- H04N21/23—Processing of content or additional data; Elementary server operations; Server middleware
- H04N21/234—Processing of video elementary streams, e.g. splicing of video streams, manipulating MPEG-4 scene graphs
- H04N21/2347—Processing of video elementary streams, e.g. splicing of video streams, manipulating MPEG-4 scene graphs involving video stream encryption
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04N—PICTORIAL COMMUNICATION, e.g. TELEVISION
- H04N7/00—Television systems
- H04N7/16—Analogue secrecy systems; Analogue subscription systems
- H04N7/162—Authorising the user terminal, e.g. by paying; Registering the use of a subscription channel, e.g. billing
Abstract
A secure communication network serves a plurality of terminals (30, 34, 38) grouped into different security categories. each terminal includes a replaceable security element (32, 36, 40) containing a security algorithm specific to the security category to which the terminal is assigned.
Upon the breach of a particular security version, the security elements in the affected category are replaced with new elements containing a different algorithm. The security elements are relatively low cost, and can be replaced on an as needed or periodic basis to maintain system security,
Upon the breach of a particular security version, the security elements in the affected category are replaced with new elements containing a different algorithm. The security elements are relatively low cost, and can be replaced on an as needed or periodic basis to maintain system security,
Description
~".. ~,,~r ~~ .i~ G:3 C~ C.~ .1~. ~.. i-~?A
The present invention relates to a system for maintaining signal. security in a communication network, and more particularly to a method and apparatus for fielding multiple versions of security in a subscription television system while maintaining signal scrambling campa~tibility.
There are many schemes far preventing the theft of signals in communication networks. Such networks can comprise, for example, subscription television systems including those 'that broadcast television programming by satellite ar aver cable. To data, no "unbreakable" security scheme has bean developed.
In the past, it has been difficult and expensive for a communication system operator to recover once the security of a system has been campromisedv The wholesale replacement of existing subscriber terminals to implement a new security system each time an old system is l.~reached is simply not .
practical.
previous attempts to increase the difficulty of breaking a security system have, at best, only succeeded in extending the amount of time it takes to break the system. , F.
z It would be advantageous to provide a system wherein recovery from a security breach can be implemented with relative ease at a low cost. Such a system should preserve compatibility with an existing base of subscriber terminals. 'fhe system should also be easy to implement without inconvenience to subscribers.
'.~hs present invention provides a s~~stem having the aforementioned features and advantages.
i ~.wnn "J~~ . ~_ i~<7 : J
A, system is provided for. upgrading a set of terminals in a communication network to maintain signal security. Signals are 'transmitted from a headend, which stores a plurality of encryption algorithms. Each algorithm is associated wa.th a different subset of subscriber terminals awthori~ed to receive 'the signals. Means are provided For scrambling the signals. One or more cryptographic keys are sent to different subsets of terminals using the different algorithms associated with the subsets. Upon the occurrence of an event, such as the breach of a security version relying on a particular algorithm, the transmission of keys encrypted under 'the particular algorithm is terminated. The terminated algorithm is replaced at 'the headend with a new algorithm for use in encrypting keys for the subset of terminals previously associated with the terminated algorithm.
2o Security means provide a corresponding replacement algorithm for use by the terminals previously associated with 'the terminated algor:i_thzn.
The security means can comprise a replaceable security element associated with each terminal in the system. The replaceable security element for each terminal in a.subset contains a decryption algorithm corresponding to the encryption algorithm associated with the subset. The security elements process data signals that are received by the ..5 c,~ .;~, ~'d ,:a terminals to provide working keys for use by the terminals in recavering (e. g., descrambli.ng).
information signals such as television program signals.
In accordance with the present invention, the working keys provided by the replaceable security elements are all identical, In this manner, only one scrambled signal must be transmitted 'to the whole population of terminals. In a preferred embodiment, the decryption algorithm contained in the replaceable security element is implemented in hardware, to frustrate the efforts of those attempting to break the security and replicate security elements.
A default decryption algorithm can be provided in each subscriber terminal. The default algorithm is used to decrypt received signals when a corresponding default algorithm is used to encrypt the signals at the headend, for instance, in order to enable descrambling while compromised security elements are being returned to the system operator for an upgrade.
Each encryption algorithm has a cryptographic key associated therewith. Each time an algorithm is terminated, its associated cryptographic key cars be replaced with a new lcey associated with the replacement algorithm. However, 'the keys can remain the same for a1.1. e~f the algorithms in the most basic c-~ r~ r~~ ~
!b ~~5 ',.~ ~ !~ ~ 7 ,'~, embodiment. Means are provided for transmitting the keys in an encrypted form to the terminals.
A terminal is provided for use in the system of the present invention. The terminal includes means 5 for receiving -the signals transmitted by the headend, and a replaceable security element operatively associated with the receiving means for decrypting received signals. The replaceable security element contains a decryption algoruthm corresponding to one of the encryption algorithms at the headend. The terminal also includes means for receiving and staring one or more cryptographic keys ~to be decrypted by its decryption algorithm.
A method for upgrading terminals to recover from security compromises in a secure communication network is also disclosed. Encrypted signals are transmitted to different subsets of terminals using a different encryption algorithm for each subset.
The terminals in each subset are provided with a corresponding decryption algorithm. A replacement encryption algorithm is provided for a particular subset upon 'the occurrence of an event, such as the compromise of a security element or 'the decryption algorithm contained therein. A corresponding replacement security element and decryption algorithm is provided to each of the terminals in the compromised subset.
The decryption algorithms for each of the subsets are contained in replaceable security .,~ 2~ r.., ~,, "; .~~ ;.,s i"a (~.~ C~ ,.~. 1'.~ .l :,~1 elements provided to corresponding terzninals. The security elements process the encrypted signals to provide working keys for their respective terminals.
In order to preserve cazzipatibility with other security versions when a subset of terminals is upgraded to a new security version, the system is designed such thwt the working keys provided by all the various security elements are identical.
In another embodiment, 'the ciecryptian algorithm used by all of the subsets of terminals can be the same. However, each subset of terminals is associated with a different set of security elements ' that provide different versions of security far data necessary to decrypt received signals. Far example, each set of security elements can use a different technique to protect secret information, such as cryptographic seeds contained in the security elemewts, from discovery. Once a method used to protect secret information is defeated, that method is abandoned and security elements containing new secret information protected by a new technique are distr.~ibuted.
The figure is a block diagram illustrwting 'the signal transmission and receiving ends of a communication network in accordance with 'the present lllVent7.On .
Apparatus for scrambling and selectively descrambling television signals that are transmitted to subscription television subscribers is known in the art. One such system, which the present invention improves upon, is disclosed in U.S. Patent 4,613,901 to Gilhousen, et al, entitled "Signal Encryption and Distribution System for Controlling Scrambling and Selective Remote Descrambling of Television Signals" .
Systems such as that described in the aforementioned patent provide a single version of security for the transmitted signals. A single version security system results in substantial exposure for a subscription television operator once the security has been compromised. In particular, the compromised security version must be upgraded, usually by replacing an entire universe of subscriber terminals or at least a substantial portion of the circuitry in each terminal.
Single version security systems also provide attackers ("pirates") a significant market since all users of the system have the same security. Once an attacker breaks the security, he can offer all users of the system "black boxes" or other devices to receive signals without payment to the system operator.
The present invention mitigates the problem by providing several versions of a noncompromised ~~ ~~ 2'~ ~ e~
r, r ."~. :.~ nd security system at the same time. Thus, when a break occurs, only a fraction of 'the population has to be upgraded 'to maintain security throughout 'the system. New versions of security can be fielded as needed after a prior version is broken, or the new versions can be provided on a periodic basis even if the version to be replaced is still secure. In order to effectively implement such a systean, it is important that compatibility be preserved among the different systems, so that the iwtroduction of a new security system will not render previous versions still in the field inoperable.
A system in accordance with 'the presewt invention is illustrated in the figure. ~omponewts generally designated 10 are provided at the system headend (i.e., transmission end of the communication network) and components generally designated 12 are provided at 'the receiving end of the communication network. For satellite television networks, the signals are broadcast from the headend to subscribers via satellite. Tn a cable television implementation, signals are provided from the transmitter to the subscriber terminals via cable.
Those skilled in the art will appreciate ~tlaa~t the present inventioM will also have application in other communication networks, SLlCh as those that r.~is~tribute information for a fee to computer terminals.
Y..l' a. C,~ eJ
A k~eadend 14 in accordance with the present invention outpwts program signals (e. g., scrambled television video and audio) together with various control and addressing data to a transmitter 16.
5 Headend 14 also provides data signals for use in generating working keys on line 24, for encryption by a plurality of sncryptors 18, 20, ... 22. Each of the encryptors will encrypt the data on line 24 in accordance with a different encryption algorithm 10 to support different versions of security for different sets of subscriber terminals. Each of -the encryption algorithms is associated with a different subset of. subscriber terminals authorized to receive the signals, Headend 14 also provides a cryptographic key to each of the encryptors on lines 25, 26 and 27. Each encryptor encrypts 'the data from line 2.4 with its cryp~tographp.c key using its unique algorithm.
The encrypted data is output to a multiplexer 2g that combines the data into a signal for transmission by -transmitter 16 together with the various signals output from headend 14:
At the receiving end, subscriber terminals 30, 34, ... 3~ receive the transmitted signals. Each terminal has a respective security element 32, 36, ... 40 connected to it. The security elements are easily replaceable by the subscriber, and can comprise, for example, a "smart card" credit card size device or a plug-in cartridge.
~xs~~~v L~,~>.:~
The terminals provided to the universe of system subscribers are all the same, except for a unique identity assigned during manufacture or subsequently by a system operator. Through the security element they receive, they are grouped into various subsets. Each subset represewts a different security version that requires a specific decryption a:lgori.thm for. decrypting signals from one of the encryptors at the headend. Tf a security version is compromised, the encryptor serving the compromised subset of terminals is replaced with an encryptor having a new security algorithm. The security elements for each of the terminals in the compromised subset are also replaced. The replacement security elements contain decryption algorithms that correspond to the encryption algorithm used in the new encryptor. Thus, in order to recover from a security breach, only those security elements connected to terminals within the breached subset need to be replaced. By simultaneously fielding multiple security versions 'through the use of low cost security elements served by a plurality of encryptors, the cost of recovery from a particular security breach is reduced.
In order ta~enable terminals to be used during the traxysition from one security version 'to another (e.g., after the first has been compromised), the headend can send signals from both the old encryptor and the new encryptor during a transition period.
After all of the security elements for the compromised version have been replaced, transmission from the old encryptor is terminated. Alternately, the terminals can all contain a default decryption algorithm that is functional during the transition period by virtue of the headend transmitting compatible signals during the transition. The default algorithm can be the first security version fielded in the system, enabling the terminals to decrypt incoming signals without any security element installed.
The present invention can be advantageously used in a satellite television system that transmits scrambled television signals for receipt by authorized subscribers having the necessary satellite reception equipment. In a satellite television system marketed by the VideoCipher*
Division of General Instrument Corporation, details of which are disclosed in the aforementioned U.S.
Patent 4,613,901, a "working key" signal is generated by processing an initialization vector signal in accordance with the data encryption standard ("DES") algorithm upon the algorithm being keyed by a common category key signal. A unique scrambling key stream is generated by processing the initialization vector signal in accordance with the DES algorithm upon the algorithm being keyed by the Registered Trade-Mark G t' ~ , s ~.~ i'.l' t;~ "~,.. ,:.:~ i"I
working key signal. A television signal is scrambled in accordance with the scrambling key stream. A plurality of unique encrypted category key signals individually addressed to different selected subscriber descramblers are generated by encrypting the initial common category key signal in accordance with 'the DES algorithm upon the algorithm being keyed by a plurality of different "unit key"
signals unique 'to different selected descramblers.
The unit key for each subscriber descrambler is derived from "seeds'° uniquely associated with that descrambler. The scrambled television signal, the initialization vector signal, and the plurality of encrypted category key signals are broadcast 'to the descramblers. DES algorithms are employed at the descramblers to reproduce 'the encryption key stream and descramble 'the television signal in accordance therewith. As noted above, each descrambler has its unique unit key derived from its seeds, which unit )cey is stored in a secure memory for use in reproducing the common category key signal when the descrambler is addressed by its unique encrypted category key signal.
As indicated, each terminal in accordance with the present invention is supported by its own security element which is replaced upon the occLUrrence of an event. Typically, 'the event will be when the security version i.s compromised.
/"
:~ ..a. '.~J nd Alternately, the security elements can be replaced on a periodic schedule whether or not their security has been broken. Each differewt security element is isolated in its own category by a unique category key that is periodically changed for each category.
The category key for each security version is the same cryptographic key that is input to the associated encryptor by headend 14 v.ia lines 25~ 26 and 27. The data from headend line 24 that is encrypted by the encryptors can comprise, for example, a "program key" equivalent 'to the "channel key'° described in U.S. patent 4,513,901.
The category keys are distributed by 'the system operator to each subscriber terminal on an 1.5 individual basis. This is accomplished by addressing the keys to each terminal in a conventional manner. Since the system operator will knew in advance which security category each subscriber terminal resides in, the proper category keys for each subset of terminals can be easily communicated. Tf a particular security version is compromised, the distribution of encrypted category keys and encrypted program keys to all compromised security elemewts will be 'terminated after all such security elements have been upgraded with a new and secure version.
Since each subset of terminals has its own category key and encryption algorithm, no more 'than t one subset should be compromised at any one time.
An important aspect of the present invention is that even though all subsets are isolated, they will all produce the same initialization vector ("working 5 key") to a key stream generator, thereby preserving compatibility. Further, once a compromised subset is upgraded to a new encryption algorithm and category key, pirates will no longer be able to use the old security elements containing previous 10 versions of encryption algorithms.
The security elements used in connection with the present system can be relatively simple. Upon receipt of the encrypted category key, they can decrypt the key for use in decrypting a received 15 program key. Then, the program key is used to generate a working key. The working key is communicated in an encrypted form to the associated subscriber terminal for use in descrambling a received television program signal. An example of a security element that can be used in connection with the present invention is disclosed in commonly assigned, Canadian patent application serial No.
The present invention relates to a system for maintaining signal. security in a communication network, and more particularly to a method and apparatus for fielding multiple versions of security in a subscription television system while maintaining signal scrambling campa~tibility.
There are many schemes far preventing the theft of signals in communication networks. Such networks can comprise, for example, subscription television systems including those 'that broadcast television programming by satellite ar aver cable. To data, no "unbreakable" security scheme has bean developed.
In the past, it has been difficult and expensive for a communication system operator to recover once the security of a system has been campromisedv The wholesale replacement of existing subscriber terminals to implement a new security system each time an old system is l.~reached is simply not .
practical.
previous attempts to increase the difficulty of breaking a security system have, at best, only succeeded in extending the amount of time it takes to break the system. , F.
z It would be advantageous to provide a system wherein recovery from a security breach can be implemented with relative ease at a low cost. Such a system should preserve compatibility with an existing base of subscriber terminals. 'fhe system should also be easy to implement without inconvenience to subscribers.
'.~hs present invention provides a s~~stem having the aforementioned features and advantages.
i ~.wnn "J~~ . ~_ i~<7 : J
A, system is provided for. upgrading a set of terminals in a communication network to maintain signal security. Signals are 'transmitted from a headend, which stores a plurality of encryption algorithms. Each algorithm is associated wa.th a different subset of subscriber terminals awthori~ed to receive 'the signals. Means are provided For scrambling the signals. One or more cryptographic keys are sent to different subsets of terminals using the different algorithms associated with the subsets. Upon the occurrence of an event, such as the breach of a security version relying on a particular algorithm, the transmission of keys encrypted under 'the particular algorithm is terminated. The terminated algorithm is replaced at 'the headend with a new algorithm for use in encrypting keys for the subset of terminals previously associated with the terminated algorithm.
2o Security means provide a corresponding replacement algorithm for use by the terminals previously associated with 'the terminated algor:i_thzn.
The security means can comprise a replaceable security element associated with each terminal in the system. The replaceable security element for each terminal in a.subset contains a decryption algorithm corresponding to the encryption algorithm associated with the subset. The security elements process data signals that are received by the ..5 c,~ .;~, ~'d ,:a terminals to provide working keys for use by the terminals in recavering (e. g., descrambli.ng).
information signals such as television program signals.
In accordance with the present invention, the working keys provided by the replaceable security elements are all identical, In this manner, only one scrambled signal must be transmitted 'to the whole population of terminals. In a preferred embodiment, the decryption algorithm contained in the replaceable security element is implemented in hardware, to frustrate the efforts of those attempting to break the security and replicate security elements.
A default decryption algorithm can be provided in each subscriber terminal. The default algorithm is used to decrypt received signals when a corresponding default algorithm is used to encrypt the signals at the headend, for instance, in order to enable descrambling while compromised security elements are being returned to the system operator for an upgrade.
Each encryption algorithm has a cryptographic key associated therewith. Each time an algorithm is terminated, its associated cryptographic key cars be replaced with a new lcey associated with the replacement algorithm. However, 'the keys can remain the same for a1.1. e~f the algorithms in the most basic c-~ r~ r~~ ~
!b ~~5 ',.~ ~ !~ ~ 7 ,'~, embodiment. Means are provided for transmitting the keys in an encrypted form to the terminals.
A terminal is provided for use in the system of the present invention. The terminal includes means 5 for receiving -the signals transmitted by the headend, and a replaceable security element operatively associated with the receiving means for decrypting received signals. The replaceable security element contains a decryption algoruthm corresponding to one of the encryption algorithms at the headend. The terminal also includes means for receiving and staring one or more cryptographic keys ~to be decrypted by its decryption algorithm.
A method for upgrading terminals to recover from security compromises in a secure communication network is also disclosed. Encrypted signals are transmitted to different subsets of terminals using a different encryption algorithm for each subset.
The terminals in each subset are provided with a corresponding decryption algorithm. A replacement encryption algorithm is provided for a particular subset upon 'the occurrence of an event, such as the compromise of a security element or 'the decryption algorithm contained therein. A corresponding replacement security element and decryption algorithm is provided to each of the terminals in the compromised subset.
The decryption algorithms for each of the subsets are contained in replaceable security .,~ 2~ r.., ~,, "; .~~ ;.,s i"a (~.~ C~ ,.~. 1'.~ .l :,~1 elements provided to corresponding terzninals. The security elements process the encrypted signals to provide working keys for their respective terminals.
In order to preserve cazzipatibility with other security versions when a subset of terminals is upgraded to a new security version, the system is designed such thwt the working keys provided by all the various security elements are identical.
In another embodiment, 'the ciecryptian algorithm used by all of the subsets of terminals can be the same. However, each subset of terminals is associated with a different set of security elements ' that provide different versions of security far data necessary to decrypt received signals. Far example, each set of security elements can use a different technique to protect secret information, such as cryptographic seeds contained in the security elemewts, from discovery. Once a method used to protect secret information is defeated, that method is abandoned and security elements containing new secret information protected by a new technique are distr.~ibuted.
The figure is a block diagram illustrwting 'the signal transmission and receiving ends of a communication network in accordance with 'the present lllVent7.On .
Apparatus for scrambling and selectively descrambling television signals that are transmitted to subscription television subscribers is known in the art. One such system, which the present invention improves upon, is disclosed in U.S. Patent 4,613,901 to Gilhousen, et al, entitled "Signal Encryption and Distribution System for Controlling Scrambling and Selective Remote Descrambling of Television Signals" .
Systems such as that described in the aforementioned patent provide a single version of security for the transmitted signals. A single version security system results in substantial exposure for a subscription television operator once the security has been compromised. In particular, the compromised security version must be upgraded, usually by replacing an entire universe of subscriber terminals or at least a substantial portion of the circuitry in each terminal.
Single version security systems also provide attackers ("pirates") a significant market since all users of the system have the same security. Once an attacker breaks the security, he can offer all users of the system "black boxes" or other devices to receive signals without payment to the system operator.
The present invention mitigates the problem by providing several versions of a noncompromised ~~ ~~ 2'~ ~ e~
r, r ."~. :.~ nd security system at the same time. Thus, when a break occurs, only a fraction of 'the population has to be upgraded 'to maintain security throughout 'the system. New versions of security can be fielded as needed after a prior version is broken, or the new versions can be provided on a periodic basis even if the version to be replaced is still secure. In order to effectively implement such a systean, it is important that compatibility be preserved among the different systems, so that the iwtroduction of a new security system will not render previous versions still in the field inoperable.
A system in accordance with 'the presewt invention is illustrated in the figure. ~omponewts generally designated 10 are provided at the system headend (i.e., transmission end of the communication network) and components generally designated 12 are provided at 'the receiving end of the communication network. For satellite television networks, the signals are broadcast from the headend to subscribers via satellite. Tn a cable television implementation, signals are provided from the transmitter to the subscriber terminals via cable.
Those skilled in the art will appreciate ~tlaa~t the present inventioM will also have application in other communication networks, SLlCh as those that r.~is~tribute information for a fee to computer terminals.
Y..l' a. C,~ eJ
A k~eadend 14 in accordance with the present invention outpwts program signals (e. g., scrambled television video and audio) together with various control and addressing data to a transmitter 16.
5 Headend 14 also provides data signals for use in generating working keys on line 24, for encryption by a plurality of sncryptors 18, 20, ... 22. Each of the encryptors will encrypt the data on line 24 in accordance with a different encryption algorithm 10 to support different versions of security for different sets of subscriber terminals. Each of -the encryption algorithms is associated with a different subset of. subscriber terminals authorized to receive the signals, Headend 14 also provides a cryptographic key to each of the encryptors on lines 25, 26 and 27. Each encryptor encrypts 'the data from line 2.4 with its cryp~tographp.c key using its unique algorithm.
The encrypted data is output to a multiplexer 2g that combines the data into a signal for transmission by -transmitter 16 together with the various signals output from headend 14:
At the receiving end, subscriber terminals 30, 34, ... 3~ receive the transmitted signals. Each terminal has a respective security element 32, 36, ... 40 connected to it. The security elements are easily replaceable by the subscriber, and can comprise, for example, a "smart card" credit card size device or a plug-in cartridge.
~xs~~~v L~,~>.:~
The terminals provided to the universe of system subscribers are all the same, except for a unique identity assigned during manufacture or subsequently by a system operator. Through the security element they receive, they are grouped into various subsets. Each subset represewts a different security version that requires a specific decryption a:lgori.thm for. decrypting signals from one of the encryptors at the headend. Tf a security version is compromised, the encryptor serving the compromised subset of terminals is replaced with an encryptor having a new security algorithm. The security elements for each of the terminals in the compromised subset are also replaced. The replacement security elements contain decryption algorithms that correspond to the encryption algorithm used in the new encryptor. Thus, in order to recover from a security breach, only those security elements connected to terminals within the breached subset need to be replaced. By simultaneously fielding multiple security versions 'through the use of low cost security elements served by a plurality of encryptors, the cost of recovery from a particular security breach is reduced.
In order ta~enable terminals to be used during the traxysition from one security version 'to another (e.g., after the first has been compromised), the headend can send signals from both the old encryptor and the new encryptor during a transition period.
After all of the security elements for the compromised version have been replaced, transmission from the old encryptor is terminated. Alternately, the terminals can all contain a default decryption algorithm that is functional during the transition period by virtue of the headend transmitting compatible signals during the transition. The default algorithm can be the first security version fielded in the system, enabling the terminals to decrypt incoming signals without any security element installed.
The present invention can be advantageously used in a satellite television system that transmits scrambled television signals for receipt by authorized subscribers having the necessary satellite reception equipment. In a satellite television system marketed by the VideoCipher*
Division of General Instrument Corporation, details of which are disclosed in the aforementioned U.S.
Patent 4,613,901, a "working key" signal is generated by processing an initialization vector signal in accordance with the data encryption standard ("DES") algorithm upon the algorithm being keyed by a common category key signal. A unique scrambling key stream is generated by processing the initialization vector signal in accordance with the DES algorithm upon the algorithm being keyed by the Registered Trade-Mark G t' ~ , s ~.~ i'.l' t;~ "~,.. ,:.:~ i"I
working key signal. A television signal is scrambled in accordance with the scrambling key stream. A plurality of unique encrypted category key signals individually addressed to different selected subscriber descramblers are generated by encrypting the initial common category key signal in accordance with 'the DES algorithm upon the algorithm being keyed by a plurality of different "unit key"
signals unique 'to different selected descramblers.
The unit key for each subscriber descrambler is derived from "seeds'° uniquely associated with that descrambler. The scrambled television signal, the initialization vector signal, and the plurality of encrypted category key signals are broadcast 'to the descramblers. DES algorithms are employed at the descramblers to reproduce 'the encryption key stream and descramble 'the television signal in accordance therewith. As noted above, each descrambler has its unique unit key derived from its seeds, which unit )cey is stored in a secure memory for use in reproducing the common category key signal when the descrambler is addressed by its unique encrypted category key signal.
As indicated, each terminal in accordance with the present invention is supported by its own security element which is replaced upon the occLUrrence of an event. Typically, 'the event will be when the security version i.s compromised.
/"
:~ ..a. '.~J nd Alternately, the security elements can be replaced on a periodic schedule whether or not their security has been broken. Each differewt security element is isolated in its own category by a unique category key that is periodically changed for each category.
The category key for each security version is the same cryptographic key that is input to the associated encryptor by headend 14 v.ia lines 25~ 26 and 27. The data from headend line 24 that is encrypted by the encryptors can comprise, for example, a "program key" equivalent 'to the "channel key'° described in U.S. patent 4,513,901.
The category keys are distributed by 'the system operator to each subscriber terminal on an 1.5 individual basis. This is accomplished by addressing the keys to each terminal in a conventional manner. Since the system operator will knew in advance which security category each subscriber terminal resides in, the proper category keys for each subset of terminals can be easily communicated. Tf a particular security version is compromised, the distribution of encrypted category keys and encrypted program keys to all compromised security elemewts will be 'terminated after all such security elements have been upgraded with a new and secure version.
Since each subset of terminals has its own category key and encryption algorithm, no more 'than t one subset should be compromised at any one time.
An important aspect of the present invention is that even though all subsets are isolated, they will all produce the same initialization vector ("working 5 key") to a key stream generator, thereby preserving compatibility. Further, once a compromised subset is upgraded to a new encryption algorithm and category key, pirates will no longer be able to use the old security elements containing previous 10 versions of encryption algorithms.
The security elements used in connection with the present system can be relatively simple. Upon receipt of the encrypted category key, they can decrypt the key for use in decrypting a received 15 program key. Then, the program key is used to generate a working key. The working key is communicated in an encrypted form to the associated subscriber terminal for use in descrambling a received television program signal. An example of a security element that can be used in connection with the present invention is disclosed in commonly assigned, Canadian patent application serial No.
2,044,083, filed on August 13, 1991 and entitled "Information Processing Apparatus with Replaceable Security Element".
In an alternate embodiment, the decryption algorithm can be the same or different for each security element version. However, each version of security element uses a different technique to protect secret information, such as cryptographic seeds contained in the security element, from discovery. One such technique is disclosed in commonly assigned, Canadian application serial No. 2,052,302 of Robert Gilberg, ChiiZh Hoang,,and James E. Smith filed on ' September 26, 1991 and entitled "Prevention of Inspection of Secret Data Stored in Encapsulated Integrated Circuit Chip" which concerns a method for causing the destruction of data on an integrated circuit chip upon exposure to light. Once a given protection technique is defeated, that method is abandoned and new security elements with new secret information required for signal decryption are distributed. The new security elements will have the secret information protected by an as yet undefeated technique.
It should now be appreciated that the present invention provides a method and apparatus for upgrading terminals to recover from security compromises in a secure communication network.
Different categories of terminals employ different algorithms for decrypting cryptographic data necessary to decipher a received information signal.
When the security of a category is breached, a security element in the affected terminals is replaced to provide a new security version.
s. ; ;.d ~,, t'-, ., r~ .
~lthouc~h the invention has been described in connection with a preferred embadiment, those s3cilled in the art will recognize that various adaptations and modifications may be made thereto without departing from the spirit and scope of the invention, as set forth in the following clainns.
In an alternate embodiment, the decryption algorithm can be the same or different for each security element version. However, each version of security element uses a different technique to protect secret information, such as cryptographic seeds contained in the security element, from discovery. One such technique is disclosed in commonly assigned, Canadian application serial No. 2,052,302 of Robert Gilberg, ChiiZh Hoang,,and James E. Smith filed on ' September 26, 1991 and entitled "Prevention of Inspection of Secret Data Stored in Encapsulated Integrated Circuit Chip" which concerns a method for causing the destruction of data on an integrated circuit chip upon exposure to light. Once a given protection technique is defeated, that method is abandoned and new security elements with new secret information required for signal decryption are distributed. The new security elements will have the secret information protected by an as yet undefeated technique.
It should now be appreciated that the present invention provides a method and apparatus for upgrading terminals to recover from security compromises in a secure communication network.
Different categories of terminals employ different algorithms for decrypting cryptographic data necessary to decipher a received information signal.
When the security of a category is breached, a security element in the affected terminals is replaced to provide a new security version.
s. ; ;.d ~,, t'-, ., r~ .
~lthouc~h the invention has been described in connection with a preferred embadiment, those s3cilled in the art will recognize that various adaptations and modifications may be made thereto without departing from the spirit and scope of the invention, as set forth in the following clainns.
Claims (21)
1. A system for revising a set of terminals in a communication network to maintain signal security comprising:
a headend for transmitting signals;
encryption means operatively associated with said headend for encrypting said signals according to a plurality of encryption algorithms for concurrent transmission, each algorithm associated with a different subset of terminals authorized to receive said signals;
means for selectively terminating the transmission of said signals under a particular algorithm;
means for providing a replacement algorithm in said encryption means for use instead of the terminated algorithm; and security means for providing a corresponding replacement algorithm to the subset of terminals associated with the terminated algorithm.
a headend for transmitting signals;
encryption means operatively associated with said headend for encrypting said signals according to a plurality of encryption algorithms for concurrent transmission, each algorithm associated with a different subset of terminals authorized to receive said signals;
means for selectively terminating the transmission of said signals under a particular algorithm;
means for providing a replacement algorithm in said encryption means for use instead of the terminated algorithm; and security means for providing a corresponding replacement algorithm to the subset of terminals associated with the terminated algorithm.
2. A system in accordance with claim 1 further comprising:
a cryptographic key associated with each algorithm; and means for transmitting each key in an encrypted form to the terminals associated with the algorithm to which the key is associated.
a cryptographic key associated with each algorithm; and means for transmitting each key in an encrypted form to the terminals associated with the algorithm to which the key is associated.
3. A system in accordance with claim 2 wherein a different cryptographic key is associated with each one of said algorithms; and means are provided for replacing the cryptographic key associated with said terminated algorithm with a new cryptographic key associated with the replacement algorithm.
4. A system in accordance with claim 2 wherein:
said security means comprises a replaceable security element associated with each terminal in the system; and the replaceable security element for each terminal in a subset contains a decryption algorithm corresponding to the encryption algorithm associated with the subset.
said security means comprises a replaceable security element associated with each terminal in the system; and the replaceable security element for each terminal in a subset contains a decryption algorithm corresponding to the encryption algorithm associated with the subset.
5. A system in accordance with claim 4 wherein:
said replaceable security elements process said signals to provide working keys for their respective terminals.
said replaceable security elements process said signals to provide working keys for their respective terminals.
6. A system in accordance with claim 5 wherein:
the working keys are all identical.
the working keys are all identical.
7. A system in accordance with claim 4 wherein said decryption algorithm is implemented in hardware.
8. A system in accordance with claim 1 wherein each terminal comprises a default decryption algorithm for use in decrypting received signals encrypted by a corresponding default encryption algorithm at the headend.
9. A terminal for use in the system of claim 1 comprising:
means for receiving said signals; and a replaceable security element operatively associated with said receiving means for decrypting received signals;
wherein said replaceable security element comprises a decryption algorithm corresponding to one of said encryption algorithms.
means for receiving said signals; and a replaceable security element operatively associated with said receiving means for decrypting received signals;
wherein said replaceable security element comprises a decryption algorithm corresponding to one of said encryption algorithms.
10. A terminal in accordance with claim 9 further comprising:
a default decryption algorithm for use in decrypting received signals encrypted by a corresponding default encryption algorithm at the headend.
a default decryption algorithm for use in decrypting received signals encrypted by a corresponding default encryption algorithm at the headend.
11. A terminal in accordance with claim 9 further comprising:
means for receiving and storing a cryptographic key associated with said decryption algorithm; and means for receiving and storing a replacement cryptographic key upon replacement of said security element with a new security element;
wherein said replacement key is associated with a new decryption algorithm in the new security element.
means for receiving and storing a cryptographic key associated with said decryption algorithm; and means for receiving and storing a replacement cryptographic key upon replacement of said security element with a new security element;
wherein said replacement key is associated with a new decryption algorithm in the new security element.
12. A method for revising a set of terminals to recover from security compromises in a secure communication network comprising the steps of:
transmitting encrypted signals at the same time to different subsets of terminals using a different encryption algorithm for each subset;
providing the terminals in each subset with a corresponding decryption algorithm;
providing a replacement encryption algorithm for a particular subset in response to a compromise of the security for said particular subset;
and providing a corresponding replacement decryption algorithm to each of the terminals in said particular subset.
transmitting encrypted signals at the same time to different subsets of terminals using a different encryption algorithm for each subset;
providing the terminals in each subset with a corresponding decryption algorithm;
providing a replacement encryption algorithm for a particular subset in response to a compromise of the security for said particular subset;
and providing a corresponding replacement decryption algorithm to each of the terminals in said particular subset.
13. A method in accordance with claim 12 comprising the further step of:
providing said replacement decryption algorithm in replaceable security elements for distribution of each of the terminals in said particular subset.
providing said replacement decryption algorithm in replaceable security elements for distribution of each of the terminals in said particular subset.
14. A method in accordance with claim 13 wherein:
the security elements process the encrypted signals to provide working keys for their respective terminals.
the security elements process the encrypted signals to provide working keys for their respective terminals.
15. A method in accordance with claim 14 wherein:
the working keys are all identical.
the working keys are all identical.
16. A method in accordance with claim 12 wherein said transmitted signals comprise a different cryptographic key for each different encryption algorithm, said method comprising the further step of:
providing a new cryptographic key for use with said replacement encryption algorithm.
providing a new cryptographic key for use with said replacement encryption algorithm.
17. A method in accordance with claim 12 comprising the further step of:
providing each terminal with a default decryption algorithm for use in decrypting received signals encrypted by a corresponding default encryption algorithm.
providing each terminal with a default decryption algorithm for use in decrypting received signals encrypted by a corresponding default encryption algorithm.
18. A system for revising a set of terminals in a communication network to maintain signals security comprising:
means for encrypting signals for transmission;
a headend operatively associated with said encryption means for transmitting said signals at the same time to different subsets of said terminals;
and a different set of replacement security elements associated with each subset of terminals, each set of security elements providing a different security algorithm for decrypting said signals at the terminals.
means for encrypting signals for transmission;
a headend operatively associated with said encryption means for transmitting said signals at the same time to different subsets of said terminals;
and a different set of replacement security elements associated with each subset of terminals, each set of security elements providing a different security algorithm for decrypting said signals at the terminals.
19. A system in accordance with claim 18 wherein each set of security elements uses a different decryption algorithm corresponding to one of a plurality of encryption algorithms used by said encrypting means.
20. A system in accordance with claim 18 wherein each set of security elements uses a different technique to protect secret information contained in the security elements from discovery.
21. A system in accordance with claim 20 wherein said techniques destroy a security element upon an attempt to discover secret information therefrom.
Applications Claiming Priority (2)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| US07/614,940 | 1990-11-16 | ||
| US07/614,940 US5144664A (en) | 1990-11-16 | 1990-11-16 | Apparatus and method for upgrading terminals to maintain a secure communication network |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CA2055132A1 CA2055132A1 (en) | 1992-05-17 |
| CA2055132C true CA2055132C (en) | 2000-05-02 |
Family
ID=24463349
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CA002055132A Expired - Lifetime CA2055132C (en) | 1990-11-16 | 1991-11-07 | Apparatus and method for upgrading terminals to maintain a secure communication network |
Country Status (12)
| Country | Link |
|---|---|
| US (1) | US5144664A (en) |
| EP (1) | EP0485887B1 (en) |
| JP (2) | JP3015175B2 (en) |
| KR (1) | KR100188426B1 (en) |
| AT (1) | ATE156645T1 (en) |
| AU (1) | AU635887B2 (en) |
| CA (1) | CA2055132C (en) |
| DE (1) | DE69127171T2 (en) |
| DK (1) | DK0485887T3 (en) |
| ES (1) | ES2104645T3 (en) |
| IE (1) | IE80615B1 (en) |
| NO (1) | NO300080B1 (en) |
Families Citing this family (94)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US4965825A (en) | 1981-11-03 | 1990-10-23 | The Personalized Mass Media Corporation | Signal processing apparatus and methods |
| USRE47642E1 (en) | 1981-11-03 | 2019-10-08 | Personalized Media Communications LLC | Signal processing apparatus and methods |
| US7831204B1 (en) | 1981-11-03 | 2010-11-09 | Personalized Media Communications, Llc | Signal processing apparatus and methods |
| FR2717028B1 (en) * | 1994-03-02 | 1996-04-12 | Teleciel | Installation of encryption and decryption of television information. |
| DE69117498D1 (en) * | 1991-05-31 | 1996-04-04 | Ibm | Communication control device with line adapters that can be loaded with the user program |
| JPH0522281A (en) * | 1991-07-15 | 1993-01-29 | Mitsubishi Electric Corp | Privacy telephone set |
| US5581614A (en) * | 1991-08-19 | 1996-12-03 | Index Systems, Inc. | Method for encrypting and embedding information in a video program |
| JP3524108B2 (en) * | 1992-09-28 | 2004-05-10 | キヤノン株式会社 | Image processing device |
| US5381477A (en) * | 1993-02-16 | 1995-01-10 | Scientific-Atlanta, Inc. | Method of selecting cable television converter groups |
| US5365591A (en) * | 1993-10-29 | 1994-11-15 | Motorola, Inc. | Secure cryptographic logic arrangement |
| US5504816A (en) * | 1994-02-02 | 1996-04-02 | Gi Corporation | Method and apparatus for controlling access to digital signals |
| US5787172A (en) * | 1994-02-24 | 1998-07-28 | The Merdan Group, Inc. | Apparatus and method for establishing a cryptographic link between elements of a system |
| EP0907270B1 (en) | 1994-02-24 | 2009-04-15 | Comcast Cable Holdings, LLC | Apparatus and method for establishing a cryptographic link between elements of a system |
| GB9407038D0 (en) * | 1994-04-08 | 1994-06-01 | Amstrad Plc | Method and apparatus for transmitting and receiving encrypted signals |
| DK0765501T3 (en) * | 1994-06-15 | 1999-09-27 | Thomson Consumer Electronics | Chip card message transfer without the intervention of a microprocessor |
| MY125706A (en) * | 1994-08-19 | 2006-08-30 | Thomson Consumer Electronics | High speed signal processing smart card |
| US5796829A (en) * | 1994-09-09 | 1998-08-18 | The Titan Corporation | Conditional access system |
| US5500898A (en) * | 1995-03-31 | 1996-03-19 | Nec Corporation | Scramble communication system multiplexing/demultiplexing scramble generation polynomial |
| US5627892A (en) * | 1995-04-19 | 1997-05-06 | General Instrument Corporation Of Delaware | Data security scheme for point-to-point communication sessions |
| US6035037A (en) * | 1995-08-04 | 2000-03-07 | Thomson Electronic Consumers, Inc. | System for processing a video signal via series-connected high speed signal processing smart cards |
| US5852290A (en) * | 1995-08-04 | 1998-12-22 | Thomson Consumer Electronics, Inc. | Smart-card based access control system with improved security |
| US5680461A (en) * | 1995-10-26 | 1997-10-21 | Sun Microsystems, Inc. | Secure network protocol system and method |
| DE19540930C1 (en) * | 1995-11-03 | 1997-04-24 | Strohschneider Sabine | Method for creating an information distribution system for any number of closed user groups using a physical unit |
| TW369753B (en) * | 1996-02-14 | 1999-09-11 | Mitsubishi Electric Corp | Data security method and system |
| US5761306A (en) * | 1996-02-22 | 1998-06-02 | Visa International Service Association | Key replacement in a public key cryptosystem |
| US5745576A (en) * | 1996-05-17 | 1998-04-28 | Visa International Service Association | Method and apparatus for initialization of cryptographic terminal |
| EP0858184A3 (en) | 1997-02-07 | 1999-09-01 | Nds Limited | Digital recording protection system |
| US6023763A (en) * | 1997-04-23 | 2000-02-08 | Fisher Controls International, Inc. | Method of and apparatus for protecting and upgrading software using a removable hardlock |
| US6230194B1 (en) * | 1997-07-14 | 2001-05-08 | Freegate Corporation | Upgrading a secure network interface |
| US6073172A (en) * | 1997-07-14 | 2000-06-06 | Freegate Corporation | Initializing and reconfiguring a secure network interface |
| AU750042B2 (en) * | 1998-01-19 | 2002-07-11 | Terence Edward Sumner | Method and apparatus for conveying a private message to selected members |
| JP2000059323A (en) * | 1998-02-13 | 2000-02-25 | Matsushita Electric Ind Co Ltd | Digital av data transmission unit, digital av data reception unit, digital av data transmission/reception system and medium |
| US6738905B1 (en) * | 1998-04-15 | 2004-05-18 | Digital Video Express, L.P. | Conditional access via secure logging with simplified key management |
| US7565546B2 (en) * | 1999-03-30 | 2009-07-21 | Sony Corporation | System, method and apparatus for secure digital content transmission |
| US6697489B1 (en) | 1999-03-30 | 2004-02-24 | Sony Corporation | Method and apparatus for securing control words |
| US7730300B2 (en) | 1999-03-30 | 2010-06-01 | Sony Corporation | Method and apparatus for protecting the transfer of data |
| JP4083925B2 (en) * | 1999-06-24 | 2008-04-30 | 株式会社日立製作所 | Information processing apparatus, card member, and information processing system |
| US7039614B1 (en) | 1999-11-09 | 2006-05-02 | Sony Corporation | Method for simulcrypting scrambled data to a plurality of conditional access devices |
| US7225164B1 (en) | 2000-02-15 | 2007-05-29 | Sony Corporation | Method and apparatus for implementing revocation in broadcast networks |
| US6686838B1 (en) | 2000-09-06 | 2004-02-03 | Xanboo Inc. | Systems and methods for the automatic registration of devices |
| US6868407B1 (en) | 2000-11-02 | 2005-03-15 | Pitney Bowes Inc. | Postage security device having cryptographic keys with a variable key length |
| US20020116624A1 (en) * | 2001-02-16 | 2002-08-22 | International Business Machines Corporation | Embedded cryptographic system |
| ITMO20010038A1 (en) * | 2001-03-06 | 2002-09-06 | Elopak Systems | APPARATUS AND METHOD FOR THE PROCESSING OF PLASTIC MATERIAL AND CONTAINER OF FLUID PRODUCT |
| US7895616B2 (en) | 2001-06-06 | 2011-02-22 | Sony Corporation | Reconstitution of program streams split across multiple packet identifiers |
| US7747853B2 (en) | 2001-06-06 | 2010-06-29 | Sony Corporation | IP delivery of secure digital content |
| US7124303B2 (en) | 2001-06-06 | 2006-10-17 | Sony Corporation | Elementary stream partial encryption |
| US7350082B2 (en) | 2001-06-06 | 2008-03-25 | Sony Corporation | Upgrading of encryption |
| US7203319B2 (en) * | 2001-07-09 | 2007-04-10 | Qualcomm, Inc. | Apparatus and method for installing a decryption key |
| GB0127400D0 (en) * | 2001-11-13 | 2002-01-09 | Pace Micro Tech Plc | Improvements to digital apparatus networks |
| US7085386B2 (en) * | 2001-12-07 | 2006-08-01 | Activcard | System and method for secure replacement of high level cryptographic keys in a personal security device |
| JP2003179595A (en) * | 2001-12-13 | 2003-06-27 | Celestar Lexico-Sciences Inc | Cryptographic communication method, cryptographic communication system, computer for performing cryptographic communication, storage medium and program |
| GB0129928D0 (en) * | 2001-12-14 | 2002-02-06 | Ibm | Method and apparatus for encryption of data |
| US7155012B2 (en) | 2002-01-02 | 2006-12-26 | Sony Corporation | Slice mask and moat pattern partial encryption |
| US7215770B2 (en) | 2002-01-02 | 2007-05-08 | Sony Corporation | System and method for partially encrypted multimedia stream |
| US7302059B2 (en) | 2002-01-02 | 2007-11-27 | Sony Corporation | Star pattern partial encryption |
| US7292690B2 (en) * | 2002-01-02 | 2007-11-06 | Sony Corporation | Video scene change detection |
| WO2003065724A1 (en) * | 2002-01-02 | 2003-08-07 | Sony Electronics, Inc. | Decoding and decryption of partially encrypted information |
| KR100952800B1 (en) * | 2002-01-02 | 2010-04-14 | 소니 일렉트로닉스 인코포레이티드 | Partial encryption and pid mapping |
| US7765567B2 (en) | 2002-01-02 | 2010-07-27 | Sony Corporation | Content replacement by PID mapping |
| EP2343891B1 (en) * | 2002-01-02 | 2013-09-18 | Sony Electronics, Inc. | Partial Encryption and PID mapping |
| US7823174B2 (en) | 2002-01-02 | 2010-10-26 | Sony Corporation | Macro-block based content replacement by PID mapping |
| US7233669B2 (en) | 2002-01-02 | 2007-06-19 | Sony Corporation | Selective encryption to enable multiple decryption keys |
| US7376233B2 (en) | 2002-01-02 | 2008-05-20 | Sony Corporation | Video slice and active region based multiple partial encryption |
| US7242773B2 (en) | 2002-09-09 | 2007-07-10 | Sony Corporation | Multiple partial encryption using retuning |
| US7218738B2 (en) | 2002-01-02 | 2007-05-15 | Sony Corporation | Encryption and content control in a digital broadcast system |
| US7292691B2 (en) * | 2002-01-02 | 2007-11-06 | Sony Corporation | Progressive video refresh slice detection |
| US20030131349A1 (en) * | 2002-01-04 | 2003-07-10 | General Instrument Corporation | Methods and systems for managing and collecting impulse pay-per-view data in smart card enabled television terminals |
| JP3965126B2 (en) * | 2002-03-20 | 2007-08-29 | 松下電器産業株式会社 | Playback device for playing content |
| US7058807B2 (en) * | 2002-04-15 | 2006-06-06 | Intel Corporation | Validation of inclusion of a platform within a data center |
| US7140040B2 (en) * | 2002-04-25 | 2006-11-21 | International Business Machines Corporation | Protecting wireless local area networks from intrusion by eavesdropping on the eavesdroppers and dynamically reconfiguring encryption upon detection of intrusion |
| US7530084B2 (en) | 2002-05-28 | 2009-05-05 | Sony Corporation | Method and apparatus for synchronizing dynamic graphics |
| US8818896B2 (en) | 2002-09-09 | 2014-08-26 | Sony Corporation | Selective encryption with coverage encryption |
| US7277548B2 (en) * | 2002-10-23 | 2007-10-02 | Ndosa Technologies, Inc. | Cryptographic method and computer program product for use in wireless local area networks |
| US20040083177A1 (en) * | 2002-10-29 | 2004-04-29 | General Instrument Corporation | Method and apparatus for pre-encrypting VOD material with a changing cryptographic key |
| US8572408B2 (en) | 2002-11-05 | 2013-10-29 | Sony Corporation | Digital rights management of a digital device |
| US7724907B2 (en) | 2002-11-05 | 2010-05-25 | Sony Corporation | Mechanism for protecting the transfer of digital content |
| US8645988B2 (en) | 2002-12-13 | 2014-02-04 | Sony Corporation | Content personalization for digital content |
| US8667525B2 (en) | 2002-12-13 | 2014-03-04 | Sony Corporation | Targeted advertisement selection from a digital stream |
| TW200507647A (en) * | 2003-02-06 | 2005-02-16 | Nagravision Sa | Storage and transmission method of information generated by a security module |
| US7409702B2 (en) | 2003-03-20 | 2008-08-05 | Sony Corporation | Auxiliary program association table |
| US7292692B2 (en) | 2003-03-25 | 2007-11-06 | Sony Corporation | Content scrambling with minimal impact on legacy devices |
| US7286667B1 (en) | 2003-09-15 | 2007-10-23 | Sony Corporation | Decryption system |
| US7620180B2 (en) | 2003-11-03 | 2009-11-17 | Sony Corporation | Preparation of content for multiple conditional access methods in video on demand |
| US7263187B2 (en) | 2003-10-31 | 2007-08-28 | Sony Corporation | Batch mode session-based encryption of video on demand content |
| US7346163B2 (en) | 2003-10-31 | 2008-03-18 | Sony Corporation | Dynamic composition of pre-encrypted video on demand content |
| US7343013B2 (en) | 2003-12-16 | 2008-03-11 | Sony Corporation | Composite session-based encryption of video on demand content |
| US7853980B2 (en) | 2003-10-31 | 2010-12-14 | Sony Corporation | Bi-directional indices for trick mode video-on-demand |
| US7895617B2 (en) | 2004-12-15 | 2011-02-22 | Sony Corporation | Content substitution editor |
| US8041190B2 (en) | 2004-12-15 | 2011-10-18 | Sony Corporation | System and method for the creation, synchronization and delivery of alternate content |
| US7894606B2 (en) * | 2005-11-28 | 2011-02-22 | Panasonic Electric Works Co., Ltd. | Systems and methods for facilitating secure key distribution to an embedded device |
| US8185921B2 (en) | 2006-02-28 | 2012-05-22 | Sony Corporation | Parental control of displayed content using closed captioning |
| US7555464B2 (en) | 2006-03-01 | 2009-06-30 | Sony Corporation | Multiple DRM management |
| ES2727014T3 (en) * | 2008-05-29 | 2019-10-11 | Nagravision Sa | Method of updating security data in a security module and security module for the execution of this method |
| JP5178500B2 (en) * | 2008-12-26 | 2013-04-10 | 三菱電機株式会社 | Data processing apparatus and data processing method |
Family Cites Families (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| DE3003998A1 (en) * | 1980-02-04 | 1981-09-24 | Licentia Patent-Verwaltungs-Gmbh, 6000 Frankfurt | DATA ENCRYPTION AND DECRYLING SYSTEM |
| US4613901A (en) * | 1983-05-27 | 1986-09-23 | M/A-Com Linkabit, Inc. | Signal encryption and distribution system for controlling scrambling and selective remote descrambling of television signals |
| US4905280A (en) * | 1984-10-12 | 1990-02-27 | Wiedemer John D | High security videotext and videogame system |
| JPS61264371A (en) * | 1985-05-20 | 1986-11-22 | 森 亮一 | Data protection system |
| CA1270339A (en) * | 1985-06-24 | 1990-06-12 | Katsuya Nakagawa | System for determining a truth of software in an information processing apparatus |
| US4716588A (en) * | 1985-10-29 | 1987-12-29 | Payview Limited | Addressable subscription television system having multiple scrambling modes |
| JPS62180625A (en) * | 1986-02-04 | 1987-08-07 | Oki Electric Ind Co Ltd | Broadcast reception system |
| US4860351A (en) * | 1986-11-05 | 1989-08-22 | Ibm Corporation | Tamper-resistant packaging for protection of information stored in electronic circuitry |
| GB8704850D0 (en) * | 1987-03-02 | 1987-04-08 | Mars Inc | Access systems |
| JPS63220630A (en) * | 1987-03-10 | 1988-09-13 | Matsushita Electric Ind Co Ltd | Terminal control system |
| FR2613565B1 (en) * | 1987-04-03 | 1989-06-23 | Bull Cps | METHOD FOR ROUTING SECRET KEYS TO SECURITY MODULES AND USER CARDS, IN AN INFORMATION PROCESSING NETWORK |
| JPS63278438A (en) * | 1987-05-11 | 1988-11-16 | Hitachi Ltd | Cryptographic system by secret cryptograph procedure |
| JPS63292288A (en) * | 1987-05-25 | 1988-11-29 | Nec Corp | Integrated circuit card |
| JPH01246979A (en) * | 1988-03-29 | 1989-10-02 | Kondeishiyonaru Akusesu Technol Kenkyusho:Kk | Chargeable program distributing system and cryptographic key distributing structure |
| JPH0220188A (en) * | 1988-07-07 | 1990-01-23 | Nec Corp | Pay television receiver |
| JP2731912B2 (en) * | 1988-08-05 | 1998-03-25 | 亮一 森 | Attack counter vessel |
| JPH0271345A (en) * | 1988-09-07 | 1990-03-09 | Sharp Corp | Ic card |
| US4989245A (en) * | 1989-03-06 | 1991-01-29 | General Instrument Corporation | Controlled authorization of descrambling of scrambled programs broadcast between different jurisdictions |
| US5029207A (en) * | 1990-02-01 | 1991-07-02 | Scientific-Atlanta, Inc. | External security module for a television signal decoder |
| US4991208A (en) * | 1990-03-29 | 1991-02-05 | Gte Laboratories Incorporated | Video control system having session encryption key |
| JP3023160B2 (en) * | 1990-10-11 | 2000-03-21 | 日本放送協会 | Broadcast reception control method |
-
1990
- 1990-11-16 US US07/614,940 patent/US5144664A/en not_active Expired - Lifetime
-
1991
- 1991-11-05 IE IE386091A patent/IE80615B1/en not_active IP Right Cessation
- 1991-11-07 CA CA002055132A patent/CA2055132C/en not_active Expired - Lifetime
- 1991-11-07 DE DE69127171T patent/DE69127171T2/en not_active Expired - Lifetime
- 1991-11-07 EP EP91118977A patent/EP0485887B1/en not_active Expired - Lifetime
- 1991-11-07 AT AT91118977T patent/ATE156645T1/en not_active IP Right Cessation
- 1991-11-07 DK DK91118977.7T patent/DK0485887T3/en active
- 1991-11-07 ES ES91118977T patent/ES2104645T3/en not_active Expired - Lifetime
- 1991-11-14 AU AU87887/91A patent/AU635887B2/en not_active Ceased
- 1991-11-14 JP JP3325064A patent/JP3015175B2/en not_active Expired - Fee Related
- 1991-11-15 KR KR1019910020314A patent/KR100188426B1/en not_active IP Right Cessation
- 1991-11-15 NO NO914477A patent/NO300080B1/en unknown
-
1999
- 1999-11-04 JP JP11313305A patent/JP2000134196A/en active Pending
Also Published As
| Publication number | Publication date |
|---|---|
| DK0485887T3 (en) | 1998-03-02 |
| KR920011274A (en) | 1992-06-27 |
| EP0485887B1 (en) | 1997-08-06 |
| EP0485887A2 (en) | 1992-05-20 |
| US5144664A (en) | 1992-09-01 |
| ES2104645T3 (en) | 1997-10-16 |
| NO300080B1 (en) | 1997-04-01 |
| IE80615B1 (en) | 1998-10-21 |
| KR100188426B1 (en) | 1999-06-01 |
| IE913860A1 (en) | 1992-05-20 |
| JP3015175B2 (en) | 2000-03-06 |
| JP2000134196A (en) | 2000-05-12 |
| AU635887B2 (en) | 1993-04-01 |
| NO914477L (en) | 1992-05-18 |
| DE69127171T2 (en) | 1998-01-29 |
| AU8788791A (en) | 1992-05-21 |
| CA2055132A1 (en) | 1992-05-17 |
| ATE156645T1 (en) | 1997-08-15 |
| NO914477D0 (en) | 1991-11-15 |
| EP0485887A3 (en) | 1992-12-09 |
| DE69127171D1 (en) | 1997-09-11 |
| JPH04286434A (en) | 1992-10-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CA2055132C (en) | Apparatus and method for upgrading terminals to maintain a secure communication network | |
| US5111504A (en) | Information processing apparatus with replaceable security element | |
| EP0787391B1 (en) | Conditional access system | |
| JP4818559B2 (en) | How to operate a conditional access system to the broadcasting sector | |
| EP0809402B1 (en) | External security module for a television signal decoder | |
| EP0658054B1 (en) | Apparatus and method for securing communication systems | |
| US4887296A (en) | Cryptographic system for direct broadcast satellite system | |
| US4736422A (en) | Encrypted broadcast television system | |
| AU751436B2 (en) | Mechanism for matching a receiver with a security module | |
| CA2173176C (en) | Data security scheme for point-to-point communication sessions | |
| US20020170054A1 (en) | Mechanism of matching between a receiver and a security module | |
| KR101208438B1 (en) | Method and system for receiving a multimedia signal, cryptographic entity for said reception method and system, and method and black box for producing said cryptographic entity | |
| KR20010030925A (en) | Method and apparatus for encrypted data stream transmission | |
| EP0179612B1 (en) | Cryptographic system for direct broadcast satellite network | |
| KR20060120011A (en) | Portable security module pairing | |
| TWI510045B (en) | Protection method, decrypting method, recording medium and terminal for this protection method |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| EEER | Examination request | ||
| MKEX | Expiry | ||
| MKEX | Expiry |
Effective date: 20111107 |