公开(公告)号：US08621218B2

公开(公告)日：2013-12-31

申请号：US12330729

申请日：2008-12-09

申请人： Eun Jung Kwon ,  Han Seung Koo ,  Soon Choul Kim ,  Young Ho Jeong ,  Heejeong Kim ,  O Hyung Kwon ,  Soo In Lee

发明人： Eun Jung Kwon ,  Han Seung Koo ,  Soon Choul Kim ,  Young Ho Jeong ,  Heejeong Kim ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L9/32 ,  G06F7/04

CPC分类号： H04L9/085 ,  H04L9/0869 ,  H04L9/321 ,  H04L9/3273 ,  H04L2209/56 ,  H04N7/1675 ,  H04N21/26613

摘要： Disclosed is a mutual authentication method and apparatus in a CAS including a headend system and DCAS host. In particular, example embodiments relate to a mutual authentication method and apparatus in DCAS, wherein the mutual authentication is performed between an authentication server of the headend system and an SM of a DCAS host, and then CAS software is downloaded to the SM. According to the example embodiments, there is provided a mutual authentication protocol between the authentication server of the headend and the SM of the DCAS host in a cable network, and also provided a mutual authentication method and apparatus in the DCAS where a substantial authentication based on a hardware, such as a smart card or a cable card, is not needed.

摘要翻译： 公开了一种包括前端系统和DCAS主机的CAS中的相互认证方法和装置。 特别地，示例性实施例涉及DCAS中的相互认证方法和装置，其中在头端系统的认证服务器和DCAS主机的SM之间执行相互认证，然后将CAS软件下载到SM。 根据示例性实施例，在有线网络中提供前端的认证服务器和DCAS主机的SM之间的相互认证协议，并且还提供了在DCAS中的相互认证方法和装置，其中基于 不需要诸如智能卡或有线卡的硬件。

公开(公告)号：US20100131761A1

公开(公告)日：2010-05-27

申请号：US12553942

申请日：2009-09-03

申请人： Soon Choul Kim ,  Young Ho Jeong ,  Heejeong Kim ,  Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

发明人： Soon Choul Kim ,  Young Ho Jeong ,  Heejeong Kim ,  Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L9/32

CPC分类号： H04L9/083 ,  H04L9/321 ,  H04L9/3273 ,  H04L63/0869 ,  H04L67/14 ,  H04L67/146 ,  H04N21/26613 ,  H04N21/63775

摘要： Disclosed is a downloadable conditional access system (DCAS) including a key request unit to transmit a key request message to an authentication server, an authentication request unit to request authentication from the authentication server based on a key response message received from the authentication server in response to the key request message, and a session establishment unit to establish a session with the authentication server, based on an authentication response message received in response to the authentication request.

摘要翻译： 公开了一种可下载条件访问系统（DCAS），其包括向认证服务器发送密钥请求消息的密钥请求单元，认证请求单元，用于根据从认证服务器接收到的密钥响应消息来从认证服务器请求认证 以及会话建立单元，用于根据认证请求接收到的认证响应消息来建立与认证服务器的会话。

公开(公告)号：US08166298B2

公开(公告)日：2012-04-24

申请号：US12553942

申请日：2009-09-03

申请人： Soon Choul Kim ,  Young Ho Jeong ,  Heejeong Kim ,  Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

发明人： Soon Choul Kim ,  Young Ho Jeong ,  Heejeong Kim ,  Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L29/06

CPC分类号： H04L9/083 ,  H04L9/321 ,  H04L9/3273 ,  H04L63/0869 ,  H04L67/14 ,  H04L67/146 ,  H04N21/26613 ,  H04N21/63775

摘要： Disclosed is a downloadable conditional access system (DCAS) including a key request unit to transmit a key request message to an authentication server, an authentication request unit to request authentication from the authentication server based on a key response message received from the authentication server in response to the key request message, and a session establishment unit to establish a session with the authentication server, based on an authentication response message received in response to the authentication request.

摘要翻译： 公开了一种可下载条件访问系统（DCAS），其包括向认证服务器发送密钥请求消息的密钥请求单元，认证请求单元，用于根据从认证服务器接收到的密钥响应消息来从认证服务器请求认证 以及会话建立单元，用于根据认证请求接收到的认证响应消息来建立与认证服务器的会话。

公开(公告)号：US08949595B2

公开(公告)日：2015-02-03

申请号：US12643054

申请日：2009-12-21

申请人： Eun Jung Kwon ,  Han Seung Koo ,  Soon Choul Kim ,  Heejeong Kim ,  Young Ho Jeong ,  O Hyung Kwon ,  Soo In Lee

发明人： Eun Jung Kwon ,  Han Seung Koo ,  Soon Choul Kim ,  Heejeong Kim ,  Young Ho Jeong ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L29/06 ,  H04L9/32 ,  H04L9/08

CPC分类号： H04L9/3273 ,  H04L9/083 ,  H04L9/0877 ,  H04L9/321 ,  H04L63/0442 ,  H04L63/0869 ,  H04L63/123 ,  H04L63/166 ,  H04L2209/56 ,  H04L2209/603

摘要： A mutual authentication method in a Downloadable Conditional Access System (DCAS) is provided. The mutual authentication method may receive authentication-related information about authentication between an authentication unit and a security module (SM) from a Trusted Authority (TA), generate an authentication session key using the authentication-related information, transmit the authentication session key by the authentication unit to the SM through a Cable Modem Termination System (CMTS), and control a Conditional Access System (CAS) software to be downloaded to the SM from the authentication unit, when the authentication is completed by the authentication session key.

摘要翻译： 提供了可下载条件访问系统（DCAS）中的相互认证方法。 相互认证方法可以从可信授权（TA）接收认证单元和安全模块（SM）之间的认证的认证相关信息，使用认证相关信息生成认证会话密钥，通过认证相关信息发送认证会话密钥 通过有线调制解调器终端系统（CMTS）向SM发送认证单元，并且当通过认证会话密钥完成认证时，控制从认证单元下载到SM的条件访问系统（CAS）软件。

公开(公告)号：US08533458B2

公开(公告)日：2013-09-10

申请号：US12246663

申请日：2008-10-07

申请人： Young Ho Jeong ,  Soon Choul Kim ,  Heejeong Kim ,  Eun Jung Kwon ,  Han Seung Koo ,  O Hyung Kwon ,  Soo In Lee

发明人： Young Ho Jeong ,  Soon Choul Kim ,  Heejeong Kim ,  Eun Jung Kwon ,  Han Seung Koo ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L29/06

CPC分类号： H04L9/321 ,  G06F21/33 ,  H04L9/083 ,  H04L9/3273 ,  H04L2209/76 ,  H04N7/1675 ,  H04N21/2541 ,  H04N21/42623 ,  H04N21/63345 ,  H04N21/8193 ,  H04N21/835

摘要： A method of operating a headend system for a downloadable conditional access service, the method including: receiving, by an Authentication Proxy (AP) server, basic authentication information from a Downloadable Conditional Access System (DCAS) host, the basic authentication information being required to authenticate the DCAS host; transmitting, by the AP server, the basic authentication information to an external trusted authority device which authenticates the DCAS host; generating, by the AP server, a session key for encrypting/decrypting a secure micro client using a session key sharing factor; obtaining, by the AP server, download-related information of the secure micro client from a DCAS Provisioning Server (DPS); and commanding, by the AP server, an Integrated Personalization System (IPS) server to download the secure micro client to the DCAS host based on the download-related information, the secure micro client being encrypted by the session key.

摘要翻译： 一种操作用于可下载条件访问服务的头端系统的方法，所述方法包括：由认证代理（AP）服务器从可下载条件访问系统（DCAS）主机接收基本认证信息，所述基本认证信息需要 验证DCAS主机; 由AP服务器将基本认证信息发送给认证DCAS主机的外部可信管理设备; 由AP服务器生成用于使用会话密钥共享因子加密/解密安全微客户端的会话密钥; 由AP服务器从DCAS配给服务器（DPS）获取安全微客户端的下载相关信息; 并且由AP服务器命令集成个性化系统（IPS）服务器，以便基于下载相关信息将安全微客户端下载到DCAS主机，安全微客户端被会话密钥加密。

公开(公告)号：US08539236B2

公开(公告)日：2013-09-17

申请号：US12692266

申请日：2010-01-22

申请人： Young Ho Jeong ,  Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

发明人： Young Ho Jeong ,  Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L29/06

CPC分类号： H04N21/26613 ,  H04L9/3247 ,  H04L9/3263 ,  H04L9/3273 ,  H04L63/061 ,  H04L63/0823 ,  H04L63/126 ,  H04L2209/56 ,  H04L2209/76 ,  H04N21/4181 ,  H04N21/4623 ,  H04N21/6334 ,  H04N21/8166

摘要： Provided is a re-authentication apparatus in a Downloadable Conditional Access System (DCAS), the re-authentication apparatus includes: a receiving unit to receive a key request message from a Secure Micro (SM); a determination unit to determine whether to perform re-authentication depending on downloading of SM client image; an identification unit to identify an SM identifier using the key request message, when the re-authentication is performed as a result of the determination; an extraction unit to retrieve previous session information corresponding to the SM identifier and to extract keying information about the previous session information; and an encryption unit to control an encryption key about the SM client image to be reused, the SM client image being encrypted in a previous session based on the previous session information using the keying information.

摘要翻译： 提供了一种可下载条件接入系统（DCAS）中的重认证装置，重认证装置包括：接收单元，用于从安全微（SM）接收密钥请求消息; 确定单元，用于根据SM客户端图像的下载来确定是否执行重新认证; 当作为所述确定的结果执行所述重新认证时，使用所述密钥请求消息来识别SM标识符的识别单元; 提取单元，用于检索与所述SM标识符相对应的先前会话信息，并提取关于所述先前会话信息的密钥信息; 以及加密单元，用于基于使用所述密钥信息的先前会话信息来控制关于要再次使用的SM客户端图像的加密密钥，所述SM客户端图像在先前会话中被加密。

公开(公告)号：US20090154538A1

公开(公告)日：2009-06-18

申请号：US12249380

申请日：2008-10-10

申请人： Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

发明人： Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L5/16

CPC分类号： H04L5/1446 ,  H04L5/0044 ,  H04L5/0064 ,  H04L5/0092

摘要： A cable modem termination system receives a bandwidth request message, and collects information on the basis of the bandwidth request message. Then, time bandwidth size information is generated on the basis of the bandwidth request message and the collected information, and a bandwidth allocation message is generated on the basis of the collected information and the time bandwidth size information. Accordingly, a cable modem termination system can effectively receive data transmitted from a cable modem.

摘要翻译： 电缆调制解调器终端系统接收带宽请求消息，并根据带宽请求消息收集信息。 然后，基于带宽请求消息和收集的信息生成时间带宽大小信息，并且基于所收集的信息和时间带宽尺寸信息生成带宽分配消息。 因此，电缆调制解调器终端系统可以有效地接收从电缆调制解调器发送的数据。

公开(公告)号：US08291053B2

公开(公告)日：2012-10-16

申请号：US12330896

申请日：2008-12-09

申请人： Heejeong Kim ,  Eun Jung Kwon ,  Soon Choul Kim ,  O Hyung Kwon ,  Soo In Lee

发明人： Heejeong Kim ,  Eun Jung Kwon ,  Soon Choul Kim ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： G06F15/177

CPC分类号： H04N7/1675 ,  H04N21/25816 ,  H04N21/26606 ,  H04N21/63345

摘要： A method and apparatus for management and transmission of a classified conditional access application to provide Downloadable Conditional Access System (DCAS) service according to disclosed embodiments is an effective managing method according to a type of a conditional access module in a software version in the DCAS. In particular, it relates to a method and apparatus which can continuously provide Pay per View (PPV) service during movement in a DCAS service operator (SO) network, such as maintaining independence of CAS SO in DCAS, provide adaptability to adapt to a variety of policies of the SO, and install an optimum application in a terminal.

摘要翻译： 根据所公开的实施例，用于管理和传输分类条件访问应用以提供可下载条件访问系统（DCAS）服务的方法和装置是根据DCAS中的软件版本中的条件访问模块的类型的有效管理方法。 特别地，本发明涉及一种在DCAS服务运营商（SO）网络中移动期间可以连续提供付费视图（PPV）服务的方法和装置，例如维持DCAS中CAS SO的独立性，提供适应性 的SO策略，并在终端上安装最佳应用。

公开(公告)号：US07869460B2

公开(公告)日：2011-01-11

申请号：US12249380

申请日：2008-10-10

申请人： Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

发明人： Eun Jung Kwon ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04J3/16

CPC分类号： H04L5/1446 ,  H04L5/0044 ,  H04L5/0064 ,  H04L5/0092

摘要： A cable modem termination system receives a bandwidth request message, and collects information on the basis of the bandwidth request message. Then, time bandwidth size information is generated on the basis of the bandwidth request message and the collected information, and a bandwidth allocation message is generated on the basis of the collected information and the time bandwidth size information. Accordingly, a cable modem termination system can effectively receive data transmitted from a cable modem.

摘要翻译： 电缆调制解调器终端系统接收带宽请求消息，并根据带宽请求消息收集信息。 然后，基于带宽请求消息和收集的信息生成时间带宽大小信息，并且基于所收集的信息和时间带宽尺寸信息生成带宽分配消息。 因此，电缆调制解调器终端系统可以有效地接收从电缆调制解调器发送的数据。

公开(公告)号：US08694773B2

公开(公告)日：2014-04-08

申请号：US12546859

申请日：2009-08-25

申请人： Young Ho Jeong ,  O Hyung Kwon ,  Soo In Lee

发明人： Young Ho Jeong ,  O Hyung Kwon ,  Soo In Lee

IPC分类号： H04L9/32 ,  H04L29/06 ,  H04N21/45

CPC分类号： H04L63/0876 ,  H04L9/3073 ,  H04L9/321 ,  H04L9/3247 ,  H04L63/0884 ,  H04N21/45

摘要： A method of verifying a validity of a Secure Micro (SM) is provided. The method of verifying a validity of an SM, the method including: storing and maintaining a validity verification message used to verify the validity of the SM, the validity verification message being generated by a Trusted Authority (TA) based on unique information of the SM, and the SM and the TA sharing the unique information of the SM; and verifying the validity of the SM using the validity verification message and the unique information shared by the SM, when an SM client is executed.

摘要翻译： 提供了一种验证安全Micro（SM）的有效性的方法。 验证SM的有效性的方法，该方法包括：存储和维护用于验证SM的有效性的有效性验证消息，该有效性验证消息是由可信管理机构（TA）根据SM的唯一信息生成的 ，SM和TA共享SM的独特信息; 并且当执行SM客户端时，使用有效性验证消息和SM共享的唯一信息来验证SM的有效性。