公开(公告)号：US20060083371A1

公开(公告)日：2006-04-20

申请号：US11247224

申请日：2005-10-12

申请人： Gregory Duval ,  Jimmy Cochard ,  Henri Kudelski ,  Paul-Jean Cagnard ,  Patrick Hauert

发明人： Gregory Duval ,  Jimmy Cochard ,  Henri Kudelski ,  Paul-Jean Cagnard ,  Patrick Hauert

IPC分类号： H04L9/28

CPC分类号： H04N21/4181 ,  H04N7/163 ,  H04N21/26606

摘要： The present invention relates to a management messages transmission method by a management center intended to a plurality of multimedia units. Each unit has a security module (SC) comprising at least one global encryption key used in relation with an encryption module. This method is characterized in that it consists of dividing the totality of the security modules allowing access to encrypted data originating from a determined provider into at least two groups (GR1, GR2), a first group of security modules having a first configuration of the security elements and a second group of security modules having a second configuration of the security elements, the first configuration being different from the second configuration.

摘要翻译： 本发明涉及一种管理中心，用于多个多媒体单元的管理消息传输方法。 每个单元具有包括与加密模块相关联使用的至少一个全局加密密钥的安全模块（SC）。 该方法的特征在于，它包括将安全模块的总数除以允许从源自确定的提供者的加密数据访问至少两个组（GR 1，GR 2），第一组安全模块，其具有第一配置 所述安全元件和具有所述安全元件的第二配置的第二组安全模块，所述第一配置不同于所述第二配置。

公开(公告)号：US20120189121A1

公开(公告)日：2012-07-26

申请号：US13014654

申请日：2011-01-26

申请人： Gregory Duval ,  Henri Kudelski

发明人： Gregory Duval ,  Henri Kudelski

IPC分类号： H04L9/28

CPC分类号： H04L9/0869 ,  H04L9/065 ,  H04L9/088 ,  H04L9/0891 ,  H04L63/0435 ,  H04L63/062 ,  H04L63/068 ,  H04L2209/601 ,  H04L2463/062 ,  H04N21/2347 ,  H04N21/26613 ,  H04N21/4405 ,  H04N21/4623

摘要： Systems and methods for performing cascading dynamic crypto periods are disclosed. In embodiments, a control word and a set of functions is transmitted between a head-end and recipient devices at the beginning of a crypto period. The crypto period is divided into a discrete number of sub-crypto periods. The control word used to encrypt and decrypt the broadcast content is changed during each sub-crypto period. At the end of the first sub-crypto period, a derived control word is generated by passing the original control word to a function in the set of functions in order to generate a derived control word at the first transition between sub-crypto periods. The derived control word is used for encryption and decryption of the broadcasted content during the second sub-crypto period. Upon transitioning to the third sub-control-period, the derived control word is input into another function to produce a second derived control word.

摘要翻译： 公开了用于执行级联动态密码周期的系统和方法。 在实施例中，在密码周期开始时，在头端和接收方设备之间传输控制字和一组功能。 密码周期被分为离散数量的子密码周期。 用于加密和解密广播内容的控制字在每个子加密期间被改变。 在第一子密码周期结束时，通过将原始控制字传递给该组函数中的函数来产生导出的控制字，以便在子密码周期之间的第一次转换时生成导出的控制字。 导出的控制字用于在第二子加密期间的广播内容的加密和解密。 在转换到第三子控制周期时，导出的控制字被输入到另一个函数中以产生第二导出控制字。

公开(公告)号：US08687807B2

公开(公告)日：2014-04-01

申请号：US13014654

申请日：2011-01-26

申请人： Gregory Duval ,  Henri Kudelski

发明人： Gregory Duval ,  Henri Kudelski

IPC分类号： H04K1/00

CPC分类号： H04L9/0869 ,  H04L9/065 ,  H04L9/088 ,  H04L9/0891 ,  H04L63/0435 ,  H04L63/062 ,  H04L63/068 ,  H04L2209/601 ,  H04L2463/062 ,  H04N21/2347 ,  H04N21/26613 ,  H04N21/4405 ,  H04N21/4623

摘要： Systems and methods for performing cascading dynamic crypto periods are disclosed. In embodiments, a control word and a set of functions is transmitted between a head-end and recipient devices at the beginning of a crypto period. The crypto period is divided into a discrete number of sub-crypto periods. The control word used to encrypt and decrypt the broadcast content is changed during each sub-crypto period. At the end of the first sub-crypto period, a derived control word is generated by passing the original control word to a function in the set of functions in order to generate a derived control word at the first transition between sub-crypto periods. The derived control word is used for encryption and decryption of the broadcasted content during the second sub-crypto period. Upon transitioning to the third sub-control-period, the derived control word is input into another function to produce a second derived control word.

摘要翻译： 公开了用于执行级联动态密码周期的系统和方法。 在实施例中，在密码周期开始时，在头端和接收方设备之间传输控制字和一组功能。 密码周期被分为离散数量的子密码周期。 用于加密和解密广播内容的控制字在每个子加密期间被改变。 在第一子密码周期结束时，通过将原始控制字传递给该组函数中的函数来产生导出的控制字，以便在子密码周期之间的第一次转换时生成导出的控制字。 导出的控制字用于在第二子加密期间的广播内容的加密和解密。 在转换到第三子控制周期时，导出的控制字被输入到另一个函数中以产生第二导出控制字。

公开(公告)号：US20060059507A1

公开(公告)日：2006-03-16

申请号：US10542924

申请日：2004-02-05

申请人： Christian Wirz ,  Olivier Brique ,  Xavier Carrel ,  Gregory Duval ,  Patrick Hauert

发明人： Christian Wirz ,  Olivier Brique ,  Xavier Carrel ,  Gregory Duval ,  Patrick Hauert

IPC分类号： H04N7/16 ,  H04N7/167

CPC分类号： H04L65/1043 ,  G06F1/1626 ,  G06F1/1639 ,  G06F21/305 ,  G06F21/6209 ,  G06F21/74 ,  G06F21/88 ,  G06F2221/2105 ,  G06F2221/2115 ,  G11B20/10009 ,  G11B20/10425 ,  G11B20/22 ,  H03L7/091 ,  H04B7/2628 ,  H04B10/25754 ,  H04J13/0077 ,  H04J13/16 ,  H04L1/0066 ,  H04L1/0068 ,  H04L9/085 ,  H04L9/304 ,  H04L12/4641 ,  H04L25/03038 ,  H04L25/4902 ,  H04L25/4904 ,  H04L25/497 ,  H04L27/156 ,  H04L29/06027 ,  H04L29/12471 ,  H04L41/06 ,  H04L43/0829 ,  H04L47/15 ,  H04L47/70 ,  H04L47/72 ,  H04L47/745 ,  H04L47/765 ,  H04L47/822 ,  H04L47/824 ,  H04L51/04 ,  H04L51/28 ,  H04L51/38 ,  H04L61/2553 ,  H04L63/123 ,  H04L65/1006 ,  H04L65/1016 ,  H04M1/72533 ,  H04M3/42221 ,  H04M7/1295 ,  H04N1/00957 ,  H04N1/32106 ,  H04N1/40 ,  H04N5/2251 ,  H04N5/2257 ,  H04N5/38 ,  H04N5/4401 ,  H04N5/4448 ,  H04N5/445 ,  H04N5/45 ,  H04N5/46 ,  H04N5/64 ,  H04N5/66 ,  H04N5/76 ,  H04N5/775 ,  H04N5/85 ,  H04N5/907 ,  H04N7/0112 ,  H04N7/0122 ,  H04N7/163 ,  H04N7/17327 ,  H04N9/3129 ,  H04N9/642 ,  H04N9/7925 ,  H04N9/8042 ,  H04N19/109 ,  H04N19/139 ,  H04N19/625 ,  H04N19/91 ,  H04N21/2543 ,  H04N21/4181 ,  H04N21/433 ,  H04N21/4623 ,  H04N21/47211 ,  H04N21/6175 ,  H04N21/6187 ,  H04N21/6582 ,  H04N2201/0094 ,  H04N2201/3212 ,  H04N2201/3222 ,  H04N2201/3274 ,  H04W4/12 ,  H04W4/14 ,  H04W8/245 ,  H04W8/26 ,  H04W28/00 ,  H04W28/18 ,  H04W28/26 ,  H04W40/00 ,  H04W52/30 ,  H04W72/042 ,  H04W76/12 ,  H04W88/085 ,  H04W88/16 ,  Y10S370/906 ,  Y10S370/907 ,  Y10S707/99943

摘要： The aim of this invention is to be able to recover specific information of a security module when it has been replaced by a new module in a user unit connected to a broadcasting network. This aim is reached by a method of storage and transmission of information generated by a first security module connected to a user unit, this first security module comprising a unique identifier and information representative of its functioning, this first module being able to be replaced by a second security module, this method comprising the following steps: determination of the specific information contained in the first security module intended for transmission, transfer of this information in the user unit, storage of this information in the user unit, replacement of the first security module by the second security module, connection of the user unit on a transmission network, initialization of a communication between the second security module and a management center, insertion by the user unit, of a data block in the blocks transmitted by the second module, this block comprising the identifier of the first module and the data specific to said first module.

摘要翻译： 本发明的目的是能够在连接到广播网络的用户单元中被新模块替换时恢复安全模块的特定信息。 该目的通过存储和传输由连接到用户单元的第一安全模块生成的信息的方法来实现，该第一安全模块包括唯一标识符和表示其功能的信息，该第一模块能够由 第二安全模块，该方法包括以下步骤：确定用于发送的第一安全模块中包含的特定信息，在用户单元中传送该信息，将该信息存储在用户单元中，更换第一安全模块 通过第二安全模块，用户单元在传输网络上的连接，第二安全模块与管理中心之间的通信的初始化，用户单元的插入，由第二模块发送的块中的数据块，该 块，其包括第一模块的标识符和特定于所述第一模块的数据。

公开(公告)号：US09503785B2

公开(公告)日：2016-11-22

申请号：US13166508

申请日：2011-06-22

申请人： Gregory Duval ,  Michael Busch

发明人： Gregory Duval ,  Michael Busch

IPC分类号： H04N7/167 ,  H04N21/442 ,  H04N21/418 ,  H04N21/2389 ,  H04N21/266 ,  H04N21/4385 ,  H04N21/4623 ,  H04N21/835

CPC分类号： H04N21/44236 ,  H04N21/23895 ,  H04N21/26606 ,  H04N21/4181 ,  H04N21/43853 ,  H04N21/4623 ,  H04N21/835

摘要： Systems and methods are disclosed for performing anti-piracy countermeasures in order to prevent unauthorized access of protected content. A conditional access system may be modified to include a counter. The counter is incremented every time the conditional access system receives a request that is a potential indication of pirate activity. The counter may also be decremented every time the conditional access system receives a request indicative of legitimate activity. If the conditional access system receives a management message containing a key required to access content keys, the conditional access system cheeks the counter. If the counter is below a threshold value, the conditional access system obtains the key. However, if the counter is above the threshold value, the conditional access system disregards the key contained in the management message, thereby losing access to protected content.

摘要翻译： 公开了用于执行反盗版对策的系统和方法，以防止受保护内容的未经授权的访问。 可以修改条件访问系统以包括计数器。 每当条件访问系统接收到潜在的盗版活动的请求的请求时，计数器递增。 每当条件访问系统接收到指示合法活动的请求时，计数器也可以递减。 如果条件访问系统接收到包含访问内容密钥所需的密钥的管理消息，那么条件访问系统就会将计数器。开。 如果计数器低于阈值，则条件访问系统获得密钥。 然而，如果计数器高于阈值，则条件访问系统忽略管理消息中包含的密钥，从而失去对受保护内容的访问。

公开(公告)号：US20050183112A1

公开(公告)日：2005-08-18

申请号：US11052913

申请日：2005-02-09

申请人： Gregory Duval

发明人： Gregory Duval

IPC分类号： H04N5/00 ,  H04N7/16 ,  H04N7/167 ,  H04M1/66 ,  H04M1/68 ,  H04M3/16

CPC分类号： H04N21/4181 ,  H04N7/163 ,  H04N7/1675 ,  H04N21/25808 ,  H04N21/25866 ,  H04N21/26606

摘要： The present invention proposes a method for managing rights of subscribers to a pay-television system comprising an access control system to which are connected subscriber management systems each managed by an operator and a plurality of subscriber decoders, said decoders each being equipped with a security module containing the rights for each subscriber allowing him the decryption of encrypted digital data of a stream broadcasted by at least one operator, during a modification of the rights carried out by an operator in the security module of a subscriber, the control access system receives data identifying a subscriber with modification commands of rights of said subscriber coming from a subscriber management system of an operator, generates a management message containing the modified rights and transmits said message to the security module of the subscriber via the stream containing the encrypted data, said method comprising the step of verification of the modifications according the properties and the available resources of the security module and the step of generation of the management message containing the modified rights when the result of the comparison is positive.

摘要翻译： 本发明提出了一种用于管理付费电视系统的用户的权利的方法，该收费电视系统包括接入控制系统，每个由操作员管理的连接的用户管理系统和多个用户解码器，所述解码器各自配备有安全模块 包含每个订户的权限，允许他解密由至少一个运营商广播的流的加密数字数据，在修改用户在安全模块中的操作者执行的权限时，控制访问系统接收标识的数据 具有来自用户管理系统的所述用户的修改权限的订户的订户生成包含修改权限的管理消息，并且经由包含加密数据的流将所述消息发送给订户的安全模块，所述方法包括： 验证修改的步骤 当比较结果为正时，安全模块的属性和可用资源以及生成包含修改权限的管理消息的步骤。

公开(公告)号：US20120328099A1

公开(公告)日：2012-12-27

申请号：US13166508

申请日：2011-06-22

申请人： Gregory Duval ,  Michael Busch

发明人： Gregory Duval ,  Michael Busch

IPC分类号： H04N7/167

CPC分类号： H04N21/44236 ,  H04N21/23895 ,  H04N21/26606 ,  H04N21/4181 ,  H04N21/43853 ,  H04N21/4623 ,  H04N21/835

摘要： Systems and methods are disclosed for performing anti-piracy countermeasures in order to prevent unauthorized access of protected content. A conditional access system may be modified to include a counter. The counter is incremented every time the conditional access system receives a request that is a potential indication of pirate activity. The counter may also be decremented every time the conditional access system receives a request indicative of legitimate activity. If the conditional access system receives a management message containing a key required to access content keys, the conditional access system cheeks the counter. If the counter is below a threshold value, the conditional access system obtains the key. However, if the counter is above the threshold value, the conditional access system disregards the key contained in the management message, thereby losing access to protected content.

摘要翻译： 公开了用于执行反盗版对策的系统和方法，以防止受保护内容的未经授权的访问。 可以修改条件访问系统以包括计数器。 每当条件访问系统接收到潜在的盗版活动的请求的请求时，计数器递增。 每当条件访问系统接收到指示合法活动的请求时，计数器也可以递减。 如果条件访问系统接收到包含访问内容密钥所需的密钥的管理消息，那么条件访问系统就会将计数器。平。 如果计数器低于阈值，则条件访问系统获得密钥。 然而，如果计数器高于阈值，则条件访问系统忽略管理消息中包含的密钥，从而失去对受保护内容的访问。

公开(公告)号：US20050129234A1

公开(公告)日：2005-06-16

申请号：US11012230

申请日：2004-12-16

申请人： Gregory Duval

发明人： Gregory Duval

IPC分类号： H04N7/16 ,  H04N7/167

CPC分类号： H04N21/4182 ,  H04N7/163 ,  H04N7/1675 ,  H04N21/25808 ,  H04N21/25866 ,  H04N21/26606 ,  H04N21/4181 ,  H04N21/4623

摘要： A method is proposed to update access rights to conditional access data. In this method, the group number in which the access rights must be updated is first determined, and then all the security modules connected to this group are determined. Subsequently, according to the embodiment chosen, either an encrypting key for each of the modules with the access rights that must be updated is determined, or a subscriber key (KAB) common to all the security modules of a determined group with rights to be updated is determined. The rights are then encrypted with the corresponding key. The authorization messages (EMM) containing said encrypted access rights and an identifier of the security modules for which they are destined are sent. These rights are then received and decrypted in the security modules corresponding to said identifiers.

摘要翻译： 提出了一种更新条件访问数据访问权限的方法。 在此方法中，首先确定必须更新访问权限的组号，然后确定连接到该组的所有安全模块。 随后，根据所选择的实施例，确定具有必须更新的访问权限的每个模块的加密密钥，或者确定所有安全模块的共享的订户密钥（K ABIB） 确定具有更新权限的确定组。 然后使用相应的密钥对权限进行加密。 发送包含所述加密访问权限的授权消息（EMM）以及它们发往的安全模块的标识符。 然后在对应于所述标识符的安全模块中接收和解密这些权限。

公开(公告)号：US20060064443A1

公开(公告)日：2006-03-23

申请号：US11218605

申请日：2005-09-06

申请人： Gregory Duval

发明人： Gregory Duval

IPC分类号： G06F17/30

CPC分类号： H04N7/163 ,  H04N7/1675 ,  H04N21/25816 ,  H04N21/4181 ,  H04N21/42684 ,  H04N21/4586 ,  H04N21/4623 ,  H04N21/6143 ,  H04N21/6193 ,  H04N21/6334 ,  H04N21/6377 ,  H04N21/6543 ,  H04N21/658 ,  H04N21/6583 ,  H04N21/8355

摘要： This invention relates to an access means management method of to conditional access data, this data being broadcasted to at least one multimedia unit. The access means being controlled by a management centre, and these access means being associated to a time information. The multimedia unit comprises at least one security module in which the access means to data are stored. It also includes remote communication means with the management centre and local communication means with said security module. This process is characterized in that it includes the steps of: determination by the security module, of the next renewal date of the access means; if the next renewal date of the access means is closer than a preset duration, sending by the security module of a request to the multimedia unit, requesting the renewal of the access means, this request using said local communication means; sending by the multimedia unit of said request for renewal of the access means to the management centre, this request using said remote communication means; verification by the management centre, if said multimedia unit is authorized to renew the access means; in the case of a positive response, sending to said multimedia unit of an access means renewal message.

摘要翻译： 本发明涉及一种用于条件访问数据的访问装置管理方法，该数据被广播到至少一个多媒体单元。 访问装置由管理中心控制，并且这些访问装置与时间信息相关联。 多媒体单元包括至少一个安全模块，其中存储有对数据的访问装置。 它还包括与管理中心的远程通信装置和与所述安全模块的本地通信装置。 该过程的特征在于它包括以下步骤：由安全模块确定接入装置的下一个更新日期; 如果接入装置的下一个更新日期比预设的时间长，则由安全模块向多媒体单元发送请求更新访问装置的请求，使用所述本地通信装置发送该请求; 所述多媒体单元将所述访问装置的所述更新请求发送到所述管理中心，所述请求使用所述远程通信装置; 如果所述多媒体单元被授权更新接入装置，则由管理中心进行验证; 在正响应的情况下，向所述多媒体单元发送访问装置更新消息。