公开(公告)号：US20080086641A1

公开(公告)日：2008-04-10

申请号：US11743533

申请日：2007-05-02

Applicant: Stephane Rodgers ,  Andrew Dellow

Inventor： Stephane Rodgers ,  Andrew Dellow

IPC: H04L9/32

CPC classification number: H04L9/3247 ,  G06F21/10 ,  G06F2221/0711 ,  G06F2221/0771 ,  H04L9/0891 ,  H04L63/0435 ,  H04L63/123 ,  H04L63/1458 ,  H04L2209/60 ,  H04L2209/605 ,  H04L2463/062

Abstract: Methods and systems for preventing revocation denial of service attacks are disclosed and may include receiving and decrypting a command for revoking a secure key utilizing a hidden key, and revoking the secure key upon successful verification of a signature. The command may comprise a key ID that is unique to a specific set-top box. A key corresponding to the command for revoking the secure key may be stored in a one-time programmable memory, compared to a reference, and the security key may be revoked based on the comparison. The command for revoking the secure key may be parsed from a transport stream utilizing a hardware parser. The method and system may also comprise generating a command for revoking a secure key. The command may be encrypted and signed utilizing a hidden key and may comprise a key ID that is unique to a specific set-top box.

Abstract translation: 公开了用于防止撤销拒绝服务攻击的方法和系统，并且可以包括使用隐藏密钥接收和解密用于撤销安全密钥的命令，以及在成功验证签名时撤销安全密钥。 该命令可以包括特定机顶盒唯一的密钥ID。 与参考相比，与撤销安全密钥的命令相对应的密钥可以存储在一次性可编程存储器中，并且可以基于比较来撤销安全密钥。 用于撤销安全密钥的命令可以使用硬件解析器从传输流中解析出来。 该方法和系统还可以包括生成用于撤销安全密钥的命令。 命令可以使用隐藏密钥进行加密和签名，并且可以包括特定机顶盒唯一的密钥ID。

公开(公告)号：US20070248318A1

公开(公告)日：2007-10-25

申请号：US11394877

申请日：2006-03-31

Applicant: Stephane Rodgers ,  Daniel Simon

Inventor： Stephane Rodgers ,  Daniel Simon

IPC: H04N5/95

CPC classification number: H04N5/781 ,  H04N5/85 ,  H04N9/8042 ,  H04N21/2389 ,  H04N21/4147 ,  H04N21/4341 ,  H04N21/4385

Abstract: A method and system are provided for flexible mapping of AV vs. Record channels in a programmable transport demultiplexer/PVR engine. The method may involve processing a portion of an incoming packet, which may result in a partially processed packet. The preprocessing may comprise extracting information from the packet to configure parameters associated with the packet and storing the configured parameters in memory. The configured parameters may be based on the type of the packet, AV v. Record, and used to configure the channels used to transport the packets to decoders and Record engines, respectively. The number of channels used for AV data and the number of channels used for Record data may vary depending on the needs of the system.

Abstract translation: 提供了一种方法和系统，用于在可编程传输解复用器/ PVR引擎中对AV与记录信道的灵活映射。 该方法可以涉及处理输入分组的一部分，其可能导致部分处理的分组。 预处理可以包括从分组提取信息以配置与分组相关联的参数并将配置的参数存储在存储器中。 配置的参数可以基于分组的类型AV v。Record，并分别用于配置用于将数据包传输到解码器和Record引擎的通道。 用于AV数据的通道数量和用于记录数据的通道数量可能会因系统的需要而有所不同。

公开(公告)号：US20060268942A1

公开(公告)日：2006-11-30

申请号：US11394421

申请日：2006-03-31

Applicant: Stephane Rodgers ,  Ut Nguyen

Inventor： Stephane Rodgers ,  Ut Nguyen

IPC: H04J3/04

CPC classification number: H04N21/4345 ,  H04N21/434 ,  H04N21/4622

Abstract: Presented herein are method(s) and apparatus for demultiplexing, merging, and duplicating packetized elementary stream/program stream/elementary stream data. In one embodiment, there is presented a method for processing data. The method comprises receiving a bitstream wherein said bitstream comprises a plurality of streams; mapping the plurality of streams to a plurality of identifiers; packetizing the plurality of streams, thereby resulting in a plurality of packets, and wherein each packet further comprises: a portion of only one of the plurality of streams; and a particular one of the identifiers, wherein the particular one of the identifiers is mapped to the only one of the plurality of streams.

Abstract translation: 这里提出了用于解复用，合并和复制分组化的基本流/节目流/基本流数据的方法和装置。 在一个实施例中，提供了一种用于处理数据的方法。 该方法包括接收比特流，其中所述比特流包括多个流; 将所述多个流映射到多个标识符; 打包多个流，由此导致多个分组，并且其中每个分组还包括：多个流中仅一个的一部分; 以及特定的一个标识符，其中该特定一个标识符被映射到该多个流中的唯一一个。

公开(公告)号：US20060268927A1

公开(公告)日：2006-11-30

申请号：US11348563

申请日：2006-02-07

Applicant: Stephane Rodgers

Inventor： Stephane Rodgers

IPC: H04J15/00

CPC classification number: H04L69/08 ,  H04N21/42615 ,  H04N21/434 ,  H04N21/44004

Abstract: A method and system are provided for architecture of a very fast programmable transport demultiplexer using a double-buffered approach. The method may involve utilizing a hardware assist block to process incoming packets, retrieve information about the packets, and write the retrieved information to a memory block. A firmware block may then utilize the information in memory to perform further processing on the packet data. The firmware and hardware assist blocks may work simultaneously so as to speed up the processing of the packet, which can comprise record data and/or audio/video data. The system may comprise the hardware assist block, the firmware assist block, and a memory block.

公开(公告)号：US20130290637A1

公开(公告)日：2013-10-31

申请号：US13460689

申请日：2012-04-30

Applicant: Flaviu Dorin Turean ,  Stephane Rodgers ,  George Harms ,  Joshua Stults

Inventor： Flaviu Dorin Turean ,  Stephane Rodgers ,  George Harms ,  Joshua Stults

IPC: G06F12/08

CPC classification number: G06F12/084 ,  G06F12/0811 ,  G06F12/1441 ,  G06F12/1458

Abstract: A technique to provide hardware protection for bus accesses for a processor in a multiple processor environment where at least two zones are established to separate or segregate processor functionality. In one implementation, control registers within a cache memory that supports the multiple processors are loaded with addresses associated with access rights for a particular processor. Then, when an access request is generated, the registers are checked to authorize the access.

Abstract translation: 在多处理器环境中为处理器提供总线访问的硬件保护的技术，其中至少两个区域被建立以分离或分离处理器功能。 在一个实现中，支持多个处理器的高速缓冲存储器内的控制寄存器被加载有与特定处理器的访问权限相关联的地址。 然后，当生成访问请求时，检查寄存器以授权访问。

公开(公告)号：US20110197069A9

公开(公告)日：2011-08-11

申请号：US11743533

申请日：2007-05-02

Applicant: Stephane Rodgers ,  Andrew Dellow

Inventor： Stephane Rodgers ,  Andrew Dellow

IPC: H04L9/32

CPC classification number: H04L9/3247 ,  G06F21/10 ,  G06F2221/0711 ,  G06F2221/0771 ,  H04L9/0891 ,  H04L63/0435 ,  H04L63/123 ,  H04L63/1458 ,  H04L2209/60 ,  H04L2209/605 ,  H04L2463/062

Abstract: Methods and systems for preventing revocation denial of service attacks are disclosed and may include receiving and decrypting a command for revoking a secure key utilizing a hidden key, and revoking the secure key upon successful verification of a signature. The command may comprise a key ID that is unique to a specific set-top box. A key corresponding to the command for revoking the secure key may be stored in a one-time programmable memory, compared to a reference, and the security key may be revoked based on the comparison. The command for revoking the secure key may be parsed from a transport stream utilizing a hardware parser. The method and system may also comprise generating a command for revoking a secure key. The command may be encrypted and signed utilizing a hidden key and may comprise a key ID that is unique to a specific set-top box.

Abstract translation: 公开了用于防止撤销拒绝服务攻击的方法和系统，并且可以包括使用隐藏密钥接收和解密用于撤销安全密钥的命令，以及在成功验证签名时撤销安全密钥。 该命令可以包括特定机顶盒唯一的密钥ID。 与参考相比，与撤销安全密钥的命令相对应的密钥可以存储在一次性可编程存储器中，并且可以基于比较来撤销安全密钥。 用于撤销安全密钥的命令可以使用硬件解析器从传输流中解析出来。 该方法和系统还可以包括生成用于撤销安全密钥的命令。 命令可以使用隐藏密钥进行加密和签名，并且可以包括特定机顶盒唯一的密钥ID。

公开(公告)号：US20060268354A1

公开(公告)日：2006-11-30

申请号：US11385468

申请日：2006-03-21

Applicant: Stephane Rodgers ,  Daniel Simon

Inventor： Stephane Rodgers ,  Daniel Simon

IPC: H04N1/00

CPC classification number: H04N21/434 ,  H04N9/7921 ,  H04N21/2389 ,  H04N21/4147 ,  H04N21/426 ,  H04N21/4341 ,  H04N21/4347 ,  H04N21/4385

Abstract: A method and system are provided for sharing AV/record resources in a programmable transport/demultiplexer and personal video recorder (PVR) engine. The method may involve utilizing hardware assist architecture to partially process incoming packets, retrieve information about the packets, and write the retrieved information to a memory. A processor programmed with firmware may then utilize the information in memory to perform further processing on the packet data. The processor programmed with firmware may then set up configuration parameters that may be used by the hardware assist architecture to further process the packet. The parameters may be configured such that they may be independent of the format of the packet, where the hardware assist architecture functions may be utilized for processing packets regardless of their format. The system may comprise the hardware assist architecture, the processor programmed with firmware, and a memory.

Abstract translation: 提供了一种用于在可编程传输/解复用器和个人录像机（PVR）引擎中共享AV /记录资源的方法和系统。 该方法可以涉及利用硬件辅助架构来部分地处理传入分组，检索关于分组的信息，以及将检索到的信息写入存储器。 用固件编程的处理器然后可以利用存储器中的信息来对分组数据执行进一步的处理。 用固件编程的处理器然后可以设置可由硬件辅助架构使用以进一步处理分组的配置参数。 参数可以被配置为使得它们可以独立于分组的格式，其中硬件辅助架构功能可以被用于处理分组，而不管其格式如何。 该系统可以包括硬件辅助架构，用固件编程的处理器和存储器。

公开(公告)号：US09338009B2

公开(公告)日：2016-05-10

申请号：US11743533

申请日：2007-05-02

Applicant: Stephane Rodgers ,  Andrew Dellow

Inventor： Stephane Rodgers ,  Andrew Dellow

IPC: H04L9/32 ,  H04L29/06 ,  G06F21/64 ,  G06F21/10 ,  H04L9/08 ,  G06F21/62 ,  H04L9/28

Abstract: Methods and systems for preventing revocation denial of service attacks are disclosed and may include receiving and decrypting a command for revoking a secure key utilizing a hidden key, and revoking the secure key upon successful verification of a signature. The command may comprise a key ID that is unique to a specific set-top box. A key corresponding to the command for revoking the secure key may be stored in a one-time programmable memory, compared to a reference, and the security key may be revoked based on the comparison. The command for revoking the secure key may be parsed from a transport stream utilizing a hardware parser. The method and system may also comprise generating a command for revoking a secure key. The command may be encrypted and signed utilizing a hidden key and may comprise a key ID that is unique to a specific set-top box.

公开(公告)号：US20090187704A1

公开(公告)日：2009-07-23

申请号：US12015648

申请日：2008-01-17

Applicant: Stephane Rodgers

Inventor： Stephane Rodgers

IPC: G06F12/14 ,  G06F12/00 ,  G06F13/00

CPC classification number: G06F21/6209 ,  G06F21/52 ,  G06F21/6281 ,  G06F2221/2105

Abstract: A PC-slave device may securely load and decrypt an execution code and/or data, which may be stored, encrypted, in a PC hard-drive. The PC-slave device may utilize a dedicated memory, which may be partitioned into an accessible region and a restricted region that may only be accessible by the PC-slave device. The encrypted execution code and/or may be loaded into the accessible region of the dedicated memory; the PC-slave device may decrypt the execution code and/or data, internally, and store the decrypted execution code and/or data into the restricted region of the dedicated memory. The decrypted execution code and/or data may be validated, and may be utilized from the restricted region. The partitioning of the dedicated memory, into accessible and restricted regions, may be performed dynamically during secure code loading. The PC-slave device may comprise a dedicated secure processor that may perform and/or manage secure code loading.

Abstract translation: PC从设备可以安全地加载和解密可以存储，加密的PC硬盘驱动器中的执行代码和/或数据。 PC从设备可以利用专用存储器，其可以被划分为只能由PC从设备访问的可访问区域和受限区域。 加密的执行代码和/或可以被加载到专用存储器的可访问区域中; PC从设备可以在内部解密执行代码和/或数据，并将解密的执行代码和/或数据存储到专用存储器的受限区域中。 解密的执行代码和/或数据可以被验证，并且可以从受限区域使用。 可以在安全代码加载期间动态地执行专用存储器到可访问和限制区域的划分。 PC从设备可以包括可以执行和/或管理安全代码加载的专用安全处理器。

公开(公告)号：US08412903B2

公开(公告)日：2013-04-02

申请号：US13112801

申请日：2011-05-20

Applicant: Stephane Rodgers

Inventor： Stephane Rodgers

IPC: G06F12/00

CPC classification number: G06F21/6209 ,  G06F21/52 ,  G06F21/6281 ,  G06F2221/2105

Abstract: A secure processor in a PC-slave device manages secure loading of execution code and/or data, which is stored, in encrypted form, in a PC hard-drive. The secure processor causes decryption of the execution code and/or data by the PC-slave device, and storage of the decrypted execution code and/or data in a restricted portion of a memory that is dedicated for use by the PC-slave device, with the restricted portion of the dedicated memory being only accessible by the PC-slave device. The secure processor validates decrypted execution code and/or data. The secure processor blocks operations of a main processor in the PC-slave device during secure loading of execution code and/or data, and discontinues that blocking after validating the decrypted execution code and/or data. The secure processor stores encryption keys that are utilized during decryption of the encrypted execution code and/or data.

Abstract translation: PC-slave设备中的安全处理器管理以加密形式存储在PC硬盘驱动器中的执行代码和/或数据的安全加载。 安全处理器通过PC从设备对执行代码和/或数据进行解密，以及解密的执行代码和/或数据在专用于PC从设备的存储器的限制部分中的存储， 专用存储器的限制部分只能由PC从设备访问。 安全处理器验证解密的执行代码和/或数据。 安全处理器在执行代码和/或数据的安全加载期间阻止PC从设备中的主处理器的操作，并且在验证解密的执行代码和/或数据之后中止该阻塞。 安全处理器存储在解密加密的执行代码和/或数据期间使用的加密密钥。