公开(公告)号：US20100014671A1

公开(公告)日：2010-01-21

申请号：US12142180

申请日：2008-06-19

申请人： Paul Moroney

发明人： Paul Moroney

IPC分类号： H04L9/00

CPC分类号： H04N7/165 ,  H04N7/1675 ,  H04N21/4408 ,  H04N21/8355

摘要： Multimedia content or related data is securely transferred between a source device and a sink device in a secure multimedia content delivery device, such as a set-top box, using keys modified by logically combining them with copy control-related bits associated with the data.

摘要翻译： 多媒体内容或相关数据在安全的多媒体内容传送设备（诸如机顶盒）中的源设备和宿设备之间使用通过逻辑地将其与与数据相关联的复制控制相关位进行逻辑组合而修改的密钥被安全地传送。

公开(公告)号：US20090285401A1

公开(公告)日：2009-11-19

申请号：US12468839

申请日：2009-05-19

申请人： Paul Moroney ,  Petr Peterka ,  Jiang Zhang

发明人： Paul Moroney ,  Petr Peterka ,  Jiang Zhang

IPC分类号： H04L9/06 ,  G06Q30/00 ,  G06F21/00 ,  H04L9/00

CPC分类号： H04N7/1675 ,  G06Q30/06 ,  H04N21/26606 ,  H04N21/4405 ,  H04N21/4623

摘要： Providing access to content for devices is performed by providing multiple entitlement management messages (EMMs), each which including a service key, to the plurality of devices. Also, a same entitlement control message (ECM) is provided to the devices. The ECM includes an encrypted traffic key for decrypting content. Each of the devices derives an access key from the service key according to a business model level of access to the content for a user of the devices and uses the access key to decrypt the traffic key to access the content according to the business model level of access to the content for the each of the plurality of devices.

摘要翻译： 通过向多个设备提供包括服务密钥的多个授权管理消息（EMM）来提供对设备的内容的访问。 此外，向设备提供相同的授权控制消息（ECM）。 ECM包括用于解密内容的加密业务密钥。 每个设备根据对设备的用户的内容的访问的业务模型级别从服务密钥导出访问密钥，并且使用访问密钥来解​​密业务密钥以根据业务模型级别 访问多个设备中的每一个的内容。

公开(公告)号：US20050027985A1

公开(公告)日：2005-02-03

申请号：US10893047

申请日：2004-07-15

申请人： Eric Sprunk ,  Paul Moroney ,  Alexander Medvinsky ,  Steven Anderson ,  Jonathan Fellows

发明人： Eric Sprunk ,  Paul Moroney ,  Alexander Medvinsky ,  Steven Anderson ,  Jonathan Fellows

IPC分类号： G06F1/00 ,  G06F12/14 ,  G06F21/00 ,  H04L9/32 ,  H04L29/06 ,  H04L12/16

CPC分类号： H04L29/06027 ,  G06F12/1408 ,  G06F21/606 ,  G06F2207/7219 ,  G06F2211/008 ,  G06F2221/2129 ,  H04L9/083 ,  H04L9/0841 ,  H04L9/3213 ,  H04L9/3263 ,  H04L63/0435 ,  H04L63/0442 ,  H04L63/061 ,  H04L63/062 ,  H04L63/0807 ,  H04L63/12 ,  H04L65/1043

摘要： A secure Internet Protocol (IP) telephony system, apparatus, and methods are disclosed. Communications over an IP telephony system can be secured by securing communications to and from a Cable Telephony Adapter (CTA). The system can include one or more CTAs, network servers, servers configured as signaling controllers, key distribution centers (KDC), and can include gateways that couple the IP telephony system to a Public Switched Telephone Network (PSTN). Each CTA can be configured as secure hardware and can be configured with multiple encryption keys that are used to communicate signaling or bearer channel communications. The KDC can be configured to periodically distribute symmetric encryption keys to secure communications between devices that have been provisioned to operate in the system and signaling controllers. The secure devices, such as the CTA, can communicate with other secure devices by establishing signaling and bearer channels that are encrypted with session specific symmetric keys derived from a symmetric key distributed by a signaling controller.

摘要翻译： 公开了一种安全的因特网协议（IP）电话系统，装置和方法。 通过IP电话系统的通信可以通过保护与有线电话适配器（CTA）的通信来保护。 该系统可以包括一个或多个CTA，网络服务器，配置为信令控制器的服务器，密钥分配中心（KDC），并且可以包括将IP电话系统耦合到公共交换电话网络（PSTN）的网关。 每个CTA都可以配置为安全硬件，并且可以配置多个用于通信信令或承载信道通信的加密密钥。 KDC可以被配置为周期性地分配对称加密密钥以保护已经被提供以在系统和信令控制器中操作的设备之间的通信。 诸如CTA之类的安全设备可以通过建立用由信令控制器分配的对称密钥导出的会话专用对称密钥加密的信令和承载信道来与其他安全设备进行通信。

公开(公告)号：USRE37620E1

公开(公告)日：2002-04-02

申请号：US09464249

申请日：1999-12-16

申请人： Ray Nuber ,  Paul Moroney ,  Chris Hoogenboom

发明人： Ray Nuber ,  Paul Moroney ,  Chris Hoogenboom

IPC分类号： H04N7025

CPC分类号： H04N19/00 ,  H04N5/4401 ,  H04N7/088 ,  H04N7/0885 ,  H04N19/61 ,  H04N19/70 ,  H04N21/435 ,  H04N21/4621 ,  H04N21/4884

摘要： A method and apparatus are provided for communicating VBI user information for digital television. A syntax is provided which allows the transport of closed captions, non-realtime video, sampled video and AMOL. Non-realtime video can be used to transport various types of data, such as a vertical interval test signal (VITS) through the system at full resolution. The provision in the syntax of a count for each type of VBI user information enables the adjustment of a digital television data stream to accommodate variable amounts and types of such information without space being reserved in advance. The provision of a priority number in the syntax enables decoders to discard VBI user information priorities which are not supported by the particular decoder.

摘要翻译： 提供了一种用于传送数字电视的VBI用户信息的方法和装置。 提供了一种语法，允许传输隐藏式字幕，非实时视频，采样视频和AMOL。 非实时视频可用于通过系统以全分辨率传输各种类型的数据，如垂直间隔测试信号（VITS）。 用于每种类型的VBI用户信息的计数语法的提供使得能够调整数字电视数据流以适应可变数量和类型的这种信息，而没有预先保留的空间。 在语法中提供优先权号码使解码器能够丢弃特定解码器不支持的VBI用户信息优先级。

公开(公告)号：US5699124A

公开(公告)日：1997-12-16

申请号：US495369

申请日：1995-06-28

申请人： Ray Nuber ,  Paul Moroney ,  Chris Hoogenboom

发明人： Ray Nuber ,  Paul Moroney ,  Chris Hoogenboom

IPC分类号： H04N7/26 ,  H04N5/44 ,  H04N7/08 ,  H04N7/081 ,  H04N7/088 ,  H04N7/50 ,  H04N21/236 ,  H04N21/434 ,  H04N7/025 ,  H04N7/087

CPC分类号： H04N19/00 ,  H04N19/61 ,  H04N21/435 ,  H04N21/4621 ,  H04N5/4401 ,  H04N7/088 ,  H04N7/0885 ,  H04N19/70 ,  H04N21/4884

摘要： A method and apparatus are provided for communicating VBI user information for digital television. A syntax is provided which allows the transport of closed captions, non-realtime video, sampled video and AMOL. Non-realtime video can be used to transport various types of data, such as a vertical interval test signal (VITS) through the system at full resolution. The provision in the syntax of a count for each type of VBI user information enables the adjustment of a digital television data stream to accommodate variable amounts and types of such information without space being reserved in advance. The provision of a priority number in the syntax enables decoders to discard VBI user information priorities which are not supported by the particular decoder.

摘要翻译： 提供了一种用于传送数字电视的VBI用户信息的方法和装置。 提供了一种语法，允许传输隐藏式字幕，非实时视频，采样视频和AMOL。 非实时视频可用于通过系统以全分辨率传输各种类型的数据，如垂直间隔测试信号（VITS）。 用于每种类型的VBI用户信息的计数语法的提供使得能够调整数字电视数据流以适应可变数量和类型的这种信息，而没有预先保留的空间。 在语法中提供优先权号码使解码器能够丢弃特定解码器不支持的VBI用户信息优先级。

公开(公告)号：US5606616A

公开(公告)日：1997-02-25

申请号：US497880

申请日：1995-07-03

申请人： Eric Sprunk ,  Paul Moroney ,  Candace Anderson

发明人： Eric Sprunk ,  Paul Moroney ,  Candace Anderson

IPC分类号： G09C1/00 ,  H04L9/06 ,  H04L9/18 ,  H04L9/00

CPC分类号： H04L9/0643 ,  H04L2209/125

摘要： Apparatus is provided for authenticating information using a double feedforward hash function to provide complementarity in the implementation of an encryption algorithm. A cryptographic processor has a first input for receiving plaintext, a second input for receiving a key and an output for outputting ciphertext generated by cryptographically processing the plaintext and key. A first circuit element is responsive to the ciphertext and plaintext for outputting a first ciphertext derivative. A second circuit element is responsive to at least a portion of the first ciphertext derivative and the key for outputting a second ciphertext derivative. The first and second circuit elements can be XOR gates. Alternatively, these elements can be provided using lookup tables. Subsequent cryptographic processor stages can be provided having a first input for receiving second plaintext, a second input for receiving the second ciphertext derivative as a key, and an output for outputting second ciphertext generated by cryptographically processing the second plaintext and the second ciphertext derivative. In an illustrated embodiment, the cryptographic processor is a DES processor.

摘要翻译： 提供了用于使用双前馈散列函数来认证信息的装置，以在实现加密算法中提供互补性。 密码处理器具有用于接收明文的第一输入，用于接收密钥的第二输入和用于输出通过密码处理明文和密钥产生的密文的输出。 第一电路元件响应密文和明文输出第一密文导数。 第二电路元件响应于第一密文导数的至少一部分和用于输出第二密文导数的密钥。 第一和第二电路元件可以是异或门。 或者，可以使用查找表来提供这些元素。 可以提供后续的加密处理器级，其具有用于接收第二明文的第一输入，用于接收第二密文导数作为键的第二输入，以及用于输出通过密码处理第二明文和第二密文导数而生成的第二密文的输出。 在所示实施例中，密码处理器是DES处理器。

公开(公告)号：US5517250A

公开(公告)日：1996-05-14

申请号：US392421

申请日：1995-02-28

申请人： Chris Hoogenboom ,  Paul Moroney

发明人： Chris Hoogenboom ,  Paul Moroney

IPC分类号： H04N7/08 ,  H04N7/081 ,  H04N7/173 ,  H04N7/60 ,  H04N19/89 ,  H04N21/236 ,  H04N21/434 ,  H04N7/12

CPC分类号： H04N21/434 ,  H04N19/00 ,  H04N19/61 ,  H04N19/89 ,  H04N21/236 ,  H04N19/70

摘要： A video decompression processor acquires video data for a desired service from a packetized data stream. The data stream includes transport packets carrying different components of the desired service. Each component is identified by a unique packet identifier (PID). One of the components includes a program clock reference (PCR) providing timing information for the desired service. The PIDs of the transport packets are monitored to recover video packets. Header information from the recovered packets is processed to recover packetized elementary stream (PES) packets having a PES header and picture information. Time stamp information obtained from the PES header is appended to the picture information for storage in a video memory. Picture information can subsequently be read from the memory and decoded using the appended time stamp information without having to reaccess the PES header. Various schemes for detecting, masking and recovering from transmission errors are disclosed.

摘要翻译： 视频解压缩处理器从打包数据流中获取期望服务的视频数据。 数据流包括携带所需服务的不同组件的传输分组。 每个组件由唯一的分组标识符（PID）标识。 其中一个组件包括提供所需服务的定时信息的程序时钟参考（PCR）。 监控传输数据包的PID以恢复视频数据包。 来自恢复的分组的报头信息被处理以恢复具有PES报头和图像信息的分组化基本流（PES）分组。 从PES头获得的时标信息附加到图像信息中，以存储在视频存储器中。 随后可以从存储器中读取图像信息，并使用附加的时间戳信息进行解码，而不必重新访问PES头。 公开了用于检测，掩蔽和从传输错误中恢复的各种方案。

公开(公告)号：US5485577A

公开(公告)日：1996-01-16

申请号：US358340

申请日：1994-12-16

申请人： Mark K. Eyer ,  Paul Moroney

发明人： Mark K. Eyer ,  Paul Moroney

IPC分类号： G09C1/00 ,  H04L9/08 ,  H04N7/167 ,  H04L9/00

CPC分类号： H04L9/0891 ,  H04L9/0822 ,  H04L9/0894 ,  H04L9/3228 ,  H04N21/2541 ,  H04N21/26606 ,  H04N21/4405 ,  H04N21/4623 ,  H04N7/1675 ,  H04L2209/603

摘要： Incremental delivery of authenticated access rights to an access control processor is provided. Subgroups of the access rights are communicated to the processor in a plurality of messages. The subgroups are stored in different data banks within the processor, and validity designations associated with the data banks indicate whether the data currently stored therein has been authenticated under a cryptographic key currently in use. Access under a particular key is limited to that provided by access rights contained in storage banks having a validity designation in a valid state for that key.

摘要翻译： 提供了对访问控制处理器的认证访问权限的递增递送。 访问权限的子组以多个消息传送到处理器。 子组存储在处理器内的不同数据库中，与数据库相关联的有效性标识指示当前存储在其中的数据是否已经在当前使用的加密密钥下被认证。 在特定密钥下的访问被限制为具有在该密钥的有效状态中的有效性指定的存储库中包含的访问权限所提供的访问。

公开(公告)号：US5054067A

公开(公告)日：1991-10-01

申请号：US482644

申请日：1990-02-21

申请人： Paul Moroney ,  Christopher J. Bennett

发明人： Paul Moroney ,  Christopher J. Bennett

IPC分类号： G09C1/00 ,  H04L9/00 ,  H04L9/06 ,  H04L9/08 ,  H04L9/26

CPC分类号： H04L9/0668 ,  H04L9/0625 ,  H04L2209/12

摘要： A block-cipher cryptographic device that processes plaintext/encrypted input data with a key signal to provide encrypted/decrypoted output data. Such device includes a shift register for receiving input data; and data processing means for executing the following data processing routine a selected number of cycles to provide output data: processing the contents of said shift register with a key signal to provide initially processed data; initializing a pseudorandom nonlinear sequence generator with the initially processed data; running the pseudorandom nonlinear sequence generator to generate a keystream; segregating portions of the keystream; processing said segregated portions of said keystream with a portion of the data in the shift register to provide a block of processed data; and shifting said block of processed data into the shift register. To further increase the randomness of the pseudorandom keystream generator, and hence the encryption security, the processing means segretates the keystream in accordance with a routine wherein the beginning of said segregated portion is provided at a time related to the beginning of the keystream in response to a duration indication; segregates every nth bit of the keystream from said beginning of said segregated portion for a selected number of segregated bits in response to a frequency indication; and provides said initially processed data by first processing said shift register contents and said key signal and then rotating data produced by said first processing in response to a rotation indication. The duration indication, the frequency indication and the rotation indication are each separately provided for each of the cycles and may be different for each of the cycles.