CN101998163A - Entitlement management method, terminal equipment and front end - Google Patents
Entitlement management method, terminal equipment and front end Download PDFInfo
- Publication number
- CN101998163A CN101998163A CN200910091146.0A CN200910091146A CN101998163A CN 101998163 A CN101998163 A CN 101998163A CN 200910091146 A CN200910091146 A CN 200910091146A CN 101998163 A CN101998163 A CN 101998163A
- Authority
- CN
- China
- Prior art keywords
- information
- authorization
- identifier
- authorization management
- management information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000007726 management method Methods 0.000 title abstract description 123
- 238000000034 method Methods 0.000 claims abstract description 19
- 238000013475 authorization Methods 0.000 claims description 243
- 230000008014 freezing Effects 0.000 claims description 10
- 238000007710 freezing Methods 0.000 claims description 10
- 230000008901 benefit Effects 0.000 description 4
- 238000010586 diagram Methods 0.000 description 2
- 230000005540 biological transmission Effects 0.000 description 1
- 230000007547 defect Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000004806 packaging method and process Methods 0.000 description 1
- 238000003672 processing method Methods 0.000 description 1
Images
Landscapes
- Two-Way Televisions, Distribution Of Moving Picture Or The Like (AREA)
Abstract
The invention provides an entitlement management method, terminal equipment and a front end. The method comprises user entitlement management through entitlement control message which is transmitted by the receiving front end and comprises entitlement management message. Through the embodiment of the invention, the method can effectively prevent a user from refusing to receive an EMM (entitlement management message) packet to separate from entitlement management of an operator, so that the terminal equipment realizes program management of the operator at the same time of receiving an entitlement control message (ECM) data packet, realizes user entitlement management of the operator at the same time and effectively protects the vital interests of the operator.
Description
Technical Field
The present invention relates to digital television technologies, and in particular, to an authorization management method, a terminal device, and a front end.
Background
In a digital television System, a Conditional Access System (CAS) is a System for controlling a user to receive a broadcast service, and usually realizes paid services of the broadcast System through authorization management and authorization control to ensure that an authorized user can receive a corresponding authorized television program and service, and an unauthorized user cannot obtain the television program and service.
The front end of the conditional access system packages a plurality of channels into a product, if a user orders the product after packaging, the conditional access system is required to authorize, and the authorization information is generally sent to the set-top box through authorization Management information (EMM).
At the front end, scrambling broadcast data, encrypting a scrambling Control Word (CW), and transmitting the encrypted CW' to a terminal together with the broadcast data through an Entitlement Control Message (ECM); at the terminal, the encrypted scrambled control word (CW') is decrypted by a security device, such as a smart card, to obtain the Control Word (CW), which is then transmitted to a terminal device, such as a set-top box, where the broadcast data is descrambled and recovered.
In the process of implementing the invention, the inventor finds that the prior art has the following defects: the operator realizes the authorization management through EMM, and realizes the program management through ECM, that is, EMM and ECM are separated, therefore, if the user refuses to receive EMM data packet after owning the program authorization, the authorization management of the operator can be separated, that is, the illegal user can illegally own the right of watching the original authorized program through the way of not receiving the anti-authorization packet, and the vital interests of the operator are infringed.
Disclosure of Invention
The invention provides an authorization management method, terminal equipment and a front end, which can realize user authorization management through authorization control information ECM, effectively prevent the user from refusing to receive EMM data packets and separating from the authorization management of the front end, and effectively maintain the vital interests of operators.
The embodiment of the invention provides an authorization management method, wherein the method comprises the following steps: and carrying out user authorization management by receiving authorization control information which is sent by the front end and comprises authorization management information.
An embodiment of the present invention provides a terminal device, where the terminal device includes:
the information receiving unit is used for receiving authorization control information which is issued by a front end and comprises authorization management information, wherein the authorization management information comprises an information identifier of the authorization management information and a corresponding terminal equipment identifier; or the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal equipment identifier and a product identifier;
the type determining unit is connected with the information receiving unit and used for determining the information type of the authorization management information according to the information identifier of the authorization management information;
the equipment determining unit is connected with the type determining unit and used for determining that the authorization management information is related to the current terminal equipment according to the terminal equipment identifier corresponding to the information identifier;
and the operation unit is connected with the equipment determination unit and is used for carrying out corresponding operation according to the determined information type when the equipment determination unit determines that the authorization management information is related to the current terminal equipment.
The embodiment of the invention provides an authorization management method, which comprises the following steps:
the front end of the conditional access system configures the authorization management information to generate program configuration information;
reading the program configuration information;
generating authorization control information according to the program configuration information, wherein the authorization control information comprises authorization management information;
and sending the generated authorization control information to the terminal equipment.
An embodiment of the present invention provides a conditional access system front end, where the front end includes:
the information configuration unit is used for configuring the authorization management information to generate program configuration information;
the information reading unit is used for reading the program configuration information configured by the information configuration unit;
the authorization control information generating unit is used for generating authorization control information according to the read program configuration information, and the authorization control information comprises authorization management information;
and the information sending unit is used for sending the authorization control information generated by the authorization control information generating unit to the terminal equipment.
The embodiment of the invention has the advantages that the authorization management of the user can be realized through the authorization control information ECM, the condition that the user refuses to receive the EMM data packet and breaks away from the authorization management of the front end is effectively prevented, and the vital interests of an operator are effectively maintained.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the principles of the invention. In the drawings:
FIG. 1 is a flowchart of an authorization management method according to embodiment 2 of the present invention;
FIG. 2 is a schematic front end structure diagram of embodiment 3 of the present invention;
fig. 3 is a schematic structural diagram of a terminal device according to embodiment 4 of the present invention.
Detailed Description
In order to make the objects, technical solutions and advantages of the present invention more apparent, the present invention will be described in further detail with reference to the following embodiments and accompanying drawings. The exemplary embodiments and descriptions of the present invention are provided to explain the present invention, but not to limit the present invention.
Example 1
The embodiment of the invention provides an authorization management method, which comprises the following steps: and carrying out user authorization management by receiving authorization control information which is sent by the front end and comprises authorization management information.
In the prior art, an operator realizes authorization management through EMM, if a user refuses to receive an EMM data packet after owning the program authorization, the authorization management of the operator can be separated, namely, an illegal user can illegally own the right of always watching the original authorized program through a way of not receiving an anti-authorization packet, and the vital interests of the operator are infringed.
Therefore, in the embodiment of the invention, in order to prevent the user from refusing to receive the EMM packet and departing from the authorization management of the operator, the user authorization management is particularly proposed to be carried out through the authorization control information ECM. If the ECM packet received by the terminal device contains the authorization management information, the terminal device also implements authorization management of the operator to the user while receiving the ECM packet, thereby effectively protecting the vital interests of the operator.
In this embodiment, the entitlement control message may be an ECM packet, and the ECM packet includes a control word encrypted by the product key in addition to the entitlement management message.
In this embodiment, the authorization management information may include an information identifier of the authorization management information and a corresponding terminal device identifier; or the authorization management information comprises the information identifier of the authorization management information, the corresponding terminal equipment identifier and the product identifier. The information identifier represents the information type of the authorization management information, so that the terminal equipment can perform corresponding operation according to the type of the authorization management information.
In this embodiment, the authorization management information may be authorization information, anti-authorization information, freezing information, and the like. When the authorization management information is the freeze information, the freeze information may include an information identifier of the freeze information and a device identifier of the terminal device to be frozen. When the authorization management information is the anti-authorization information, the anti-authorization information comprises the information identification of the anti-authorization information, the equipment identification of the corresponding user terminal equipment and the anti-authorized product Identification (ID). When the authorization management information is authorization information, the authorization information includes information identification of the authorization information, device identification of the corresponding user terminal device and authorized product Identification (ID).
In this embodiment, considering that all the authorization management information is issued through the ECM packet, it may take a long time for some terminal devices to receive the authorization information related to the terminal device, which may also affect the benefit of the operator, and therefore, in this embodiment, the EMM packet may also be used to send the user authorization management information, and in some cases, the ECM may be used to send the user authorization management information. For example, the authorization information of the user is sent by using an EMM data packet, and the frozen information or the anti-authorization information is sent by using an ECM data packet, so that the user is ensured not to be separated from the authorization management of the operator by refusing to receive the EMM data packet, and the vital interests of the operator are ensured.
In this embodiment, when the ECM packet includes the freeze information, the terminal device receives the ECM packet containing the freeze information related to the terminal device, freezes the terminal device, refuses to decrypt the ECM packet, and cannot obtain the descrambling control word, so that the user cannot continue to watch all pay programs. Example (c): the CAS front end can add freezing information related to A in the ECM data packet, the user A wants to watch the program and must receive the ECM data packet, as long as the ECM data packet is received, the terminal equipment with the terminal equipment identification of A is frozen and refuses to decrypt, so that the terminal equipment user can not watch the program.
In this embodiment, when the ECM packet includes the anti-authorization information, after the terminal device receives the ECM packet including the anti-authorization information related to itself, the product corresponding to the product ID is anti-authorized, so that the terminal device user cannot view the anti-authorized program. For example, if the operator wants to prohibit the terminal device user with the terminal device identifier A, B from watching pay programs with the product identifiers 3 and 4, the CAS front end may add corresponding anti-authorization information to the ECM packet, and when the terminal device user A, B wants to watch programs corresponding to the product identifiers 3 and 4, the terminal device user must receive the ECM packet, and as long as the ECM packet is received, the product corresponding to the product identifiers 3 and 4 of the terminal device with the device identifier A, B is anti-authorized, and cannot watch programs corresponding to the product identifiers 3 and 4.
In this embodiment, when the ECM packet includes the authorization information, the processing method is similar to that of performing authorization management by using the EMM packet, and details are not described here.
It can be known from the above embodiments that, by performing user authorization management through the authorization control information ECM, a user can be prevented from deviating from authorization management of an operator when refusing to receive an EMM data packet, so that the terminal device not only realizes program management of the operator but also realizes authorization management of the operator to the user when receiving the ECM data packet, thereby effectively protecting the vital interests of the operator.
Example 2
The embodiment of the invention provides an authorization management method, which is described in detail below by taking the example that the front-end configuration comprises the freezing information and the anti-authorization information in combination with the attached drawings.
At the front end:
step 101, the front end configures the authorization management information to generate program configuration information.
In this embodiment, the authorization management information may be configured as freeze information or anti-authorization information. The freezing information can comprise an information identifier of the freezing information and a device identifier of the terminal device to be frozen; the anti-authorization information may include an information identification of the anti-authorization information, a device identification of the corresponding user terminal device, and an anti-authorized product Identification (ID).
And 102, reading the program configuration information, and generating an ECM (information control module) data packet according to the program configuration information, wherein the ECM data packet comprises freezing information or anti-authorization information.
Table 1 shows the format of an ECM packet including freeze information. Table 2 shows the format of an ECM packet including the anti-authorization information.
TABLE 1
| Grammar for grammar | Note |
| ECMFreeze_Desc(){ | |
| DescriptorTag | Information identification |
| Group | Group number |
| Mask | Group mask (1000 bit) |
| } |
As shown in table 1, "DescriptorTag" represents an information identifier, which is an information identifier representing frozen information; the "Group" and the "Mask" form a terminal number, that is, a terminal device identifier, where the "Group" indicates a Group in which the terminal identifier is located, for example, in this embodiment, 1000 terminal devices are in one Group. Mask is a Mask in the group, and each bit represents a terminal device in the group. For example, if the value of a bit in the "Mask" is 1, it indicates that the corresponding terminal device is frozen, and if the value of a bit is 0, it indicates that the terminal device is not frozen.
TABLE 2
| Grammar for grammar | Note |
| ECMDetitle_Desc(){ | |
| DescriptorTag | Information identification |
| Product | Indicating product base ID |
| Product IDMask | Product ID mask (16 bit) |
| Group | Group number |
| Mask | Group mask (1000 bit) |
| } |
As shown in table 2, "DescriptorTag" is an information identifier, which represents an information identifier of the anti-authorization information; the "Group" and the "Mask" form a terminal device identifier, where the "Group" indicates a Group in which the terminal is located, for example, 1000 terminals are in one Group. The "Mask" is an intra-group Mask, and each bit represents a terminal, for example, if a value of a bit in the "Mask" is 1, it indicates that the corresponding terminal device is de-authorized, and if a value of a bit in the "Mask" is 0, it indicates that the corresponding terminal device is not de-authorized.
The Product ID is composed of "Product" and "Product ID mask", the "Product" indicates a Product base ID, and the "Product ID mask" may be 16 bits, each bit represents a Product, for example, if the numeric value on a bit is 1, it indicates that the corresponding Product ID is unauthorized, and if the numeric value on a bit is 0, it indicates that the corresponding Product ID is not authorized.
For those skilled in the art, the representation manner of the terminal device identifier and the product identifier is not limited to the above embodiment, and may be represented in other manners.
In addition, the ECM packet may include a descrambling control word encrypted by a product key in addition to the above-described entitlement management information.
Step 103, sending the generated ECM packet to the terminal device.
At a terminal device:
and 104, the terminal equipment receives the ECM data packet which is sent by the front end and comprises the authorization management information.
Step 105, determining the information type of the authorization management information according to the information identifier of the authorization management information, executing step 106 if the authorization management information is determined to be the frozen information, and executing step 108 if the authorization management information is determined to be the anti-authorization information;
in this embodiment, the type of the entitlement management information may be determined according to "DescriptorTag" in the ECM packet. If the information identifier is an identifier corresponding to the frozen information, determining that the authorization management information contained in the ECM data packet is the frozen information; similarly, the entitlement management message contained in the ECM packet may be determined to be a de-entitlement message.
Step 106, when it is determined in step 105 that the authorization management information is the frozen information, further determining whether the authorization management information is related to the terminal device. If the determination result is related, step 107 is executed, and if the determination result is not related, step 110 is executed.
In this embodiment, whether the authorization management information is related to the current terminal device may be determined according to the terminal device identifier corresponding to the information identifier in the authorization management information; and determining to be related when the terminal equipment identifier in the authorization management information is consistent with the current terminal equipment identifier, and otherwise determining to be unrelated.
Step 107, if it is determined in step 106 that the freeze information is related to the terminal device, the terminal device performs a corresponding operation according to the authorization management information, that is, the terminal device is frozen, so that the terminal device does not process the received ECM packet, and the terminal device user cannot watch the pay program.
Step 108, when it is determined in step 105 that the authorization management information is the anti-authorization information, further determining whether the anti-authorization information is related to the terminal device, the determining manner is the same as that in step 106, and details are not repeated here. If the determination result is related, step 109 is executed, and if the determination result is not related, step 110 is executed.
Step 109, in step 108, if it is determined that the terminal device is related to the terminal device, the terminal device performs corresponding operation according to the authorization management information, that is, performs anti-authorization on the product corresponding to the product identifier according to the product identifier included in the anti-authorization information, so that the corresponding program prompt is not authorized, and the terminal device user cannot watch the program.
Step 110, in steps 106 and 108, if the determined result is that the authorization management information is not related to the terminal device, the terminal device may decrypt the ECM packet, the processing procedure is similar to the prior art, that is, the ECM packet is decrypted by using the pre-stored product key to obtain the descrambling control word, and then the scrambled program is descrambled and played by using the descrambling control word, so that the user can normally watch the program.
The above embodiment only describes that the authorization management information is the freeze information or the anti-authorization information, but the authorization management information is only an embodiment of the present invention, and the authorization management information may include other information instead of only the freeze information or the anti-authorization information.
In the present embodiment, the entitlement management message may be issued by one ECM packet or more than one ECM packet. Because the limit of the length of the ECM data packet is considered, the authorization management information can not be issued through one ECM data packet, therefore, the authorization management information can also be issued through more than one ECM data packet, the front end continuously and repeatedly sends all ECM data packets, and the terminal can continuously receive all ECM data packets when the terminal wants to watch programs, thereby realizing the purpose of authorization management through the ECM and effectively protecting the vital interests of operators.
It can be known from the above embodiments that, by performing user authorization management through the authorization control information ECM, a user can be prevented from deviating from authorization management of an operator when refusing to receive an EMM data packet, so that the terminal device not only realizes program management of the operator but also realizes authorization management of the operator to the user when receiving the ECM data packet, thereby effectively protecting the vital interests of the operator.
Example 3
An embodiment of the present invention provides a conditional access system front end, as shown in fig. 2, where the front end includes: an information configuration unit 201, an information reading unit 202, an authorization control information generation unit 203, and an information transmission unit 204; wherein,
the information configuration unit 201 is configured to configure authorization management information to generate program configuration information; an information reading unit 202, configured to read the program configuration information configured by the information configuration unit 201; an entitlement control information generating unit (ECM generating unit) 203 for generating entitlement control information including entitlement management information based on the read program configuration information; the information transmitting unit 204 is configured to transmit the entitlement control information ECM generated by the ECM generating unit 203 to the terminal device.
In this embodiment, the ECM packet may be an ECM packet. Wherein the authorization management information included in the ECM packet may be freeze information, anti-authorization information, or authorization information. The format of the ECM packet generated by the ECM generation unit 203 is shown in tables 1 and 2, and will not be described herein.
As shown in fig. 2, the front end may further include a storage unit 205 for storing the generated program configuration information. In this way, the information reading unit 202 can also read the program configuration information stored by the storage unit 205.
It can be seen from the foregoing embodiment that the conditional access system front end can configure the authorization management information to generate program configuration information, generate an ECM packet including the authorization management information according to the program configuration information, and issue the ECM packet to the terminal device, so that the terminal device performs user authorization management according to the ECM packet, thereby preventing the user from refusing to receive the EMM packet and departing from authorization management of an operator, and enabling the terminal device to not only implement program management of the operator while receiving the ECM packet, but also implement authorization management of the operator for the user, thereby effectively protecting the vital interests of the operator.
Example 4
An embodiment of the present invention provides a terminal device, as shown in fig. 3, where the terminal device includes: an information receiving unit 301, a type determining unit 302, a device determining unit 303, and an operation unit 304; wherein,
an information receiving unit 301, configured to receive authorization control information including authorization management information sent by a front end, where the authorization management information includes an information identifier of the authorization management information and a corresponding terminal device identifier; or the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal equipment identifier and a product identifier;
a type determining unit 302, connected to the information receiving unit 301, for determining the information type of the authorization management information according to the information identifier of the authorization management information;
a device determining unit 303, connected to the type determining unit 302, configured to determine, according to the terminal device identifier corresponding to the information identifier, that the authorization management information is related to the current terminal device;
and an operation unit 304, connected to the device determining unit 303, configured to perform a corresponding operation according to the determined information type when the device determining unit 303 determines that the authorization management information is related to the current terminal device.
In this embodiment, the authorization management information may be freeze information, anti-authorization information, or the like.
In this embodiment, the type of the authorization management information may be determined according to the information identifier included in the authorization management information, and the determination method is similar to step 105 of embodiment 2, and is not described herein again.
In this embodiment, the device determining unit 303 determines that the authorization management information is related to the current terminal device according to the terminal device identifier corresponding to the information identifier, and the determination method is similar to steps 106 and 108 in embodiment 2, and is not described herein again.
In this embodiment, when the type determination unit 302 determines that the information type of the entitlement management information is the freeze information, the operation unit 304 may freeze the current terminal device according to the freeze information.
In this embodiment, when the type determining unit 302 determines that the information type of the authorization management information is anti-authorization information or authorization information, the operation unit 304 may perform anti-authorization or authorization on a product corresponding to the product identifier according to the anti-authorization information or authorization information.
As shown in fig. 3, the terminal device further includes a decryption unit 305 for decrypting the entitlement control message with the pre-stored product key to obtain a descrambling control word when the device determination unit 303 determines that the entitlement management message is not associated with the current terminal device.
Therefore, the terminal device may further include a descrambling unit 306 and a playing unit 307, wherein the descrambling unit 306 descrambles the scrambled program by using the descrambling control word obtained by the decryption unit 305, and the playing unit 307 is configured to play the descrambled program so that the terminal device user can watch the program.
As shown in fig. 3, the terminal device may further include a storage unit 308 for storing the product key.
It can be known from the above embodiments that, by receiving the authorization control information containing the authorization management information issued by the front end, the terminal device can prevent the user from refusing to receive the EMM data packet and separating from the authorization management of the operator, so that the terminal device not only realizes the management of the program by the operator, but also realizes the authorization management of the user by the operator while receiving the ECM data packet, and effectively protects the vital interests of the operator.
The above embodiments are provided to further explain the objects, technical solutions and advantages of the present invention in detail, it should be understood that the above embodiments are merely exemplary embodiments of the present invention and are not intended to limit the scope of the present invention, and any modifications, equivalents, improvements and the like made within the spirit and principle of the present invention should be included in the scope of the present invention.
Claims (15)
1. A method of authorization management, the method comprising: and carrying out user authorization management by receiving authorization control information which is sent by the front end and comprises authorization management information.
2. The method of claim 1, wherein the authorization management information comprises an information identifier of the authorization management information and a corresponding terminal device identifier; or the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal equipment identifier and a product identifier.
3. The method of claim 2, wherein the performing user authorization management by receiving authorization control information including authorization management information sent by a front end comprises:
receiving authorization control information which is sent by a front end and comprises authorization management information;
determining the information type of the authorization management information according to the information identifier of the authorization management information;
and if the authorization management information is determined to be related to the current terminal equipment according to the terminal equipment identifier corresponding to the information identifier, performing corresponding operation according to the determined information type.
4. The method of claim 3, wherein when the information type of the authorization management information is determined to be the frozen information, the authorization management information comprises an information identifier of the authorization management information and a corresponding terminal device identifier;
and performing corresponding operations according to the determined information type, including: and freezing the current terminal equipment according to the freezing information.
5. The method according to claim 3, wherein when the information type of the authorization management information is determined to be anti-authorization information or authorization information, the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal device identifier and a product identifier;
and performing corresponding operations according to the determined information type, including:
and performing anti-authorization or authorization on the product corresponding to the product identifier according to the anti-authorization information or the authorization information.
6. The method according to claim 4 or 5, wherein if it is determined that the authorization management information is not related to the current terminal device according to the terminal device identifier corresponding to the information identifier, the method further comprises: and decrypting the authorization control information by using a prestored product key to obtain a descrambling control word.
7. A terminal device, characterized in that the terminal device comprises:
the system comprises an information receiving unit, a processing unit and a processing unit, wherein the information receiving unit is used for receiving authorization control information which is sent by a front end and comprises authorization management information, and the authorization management information comprises an information identifier of the authorization management information and a corresponding terminal equipment identifier; or the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal equipment identifier and a product identifier;
the type determining unit is connected with the information receiving unit and used for determining the information type of the authorization management information according to the information identifier of the authorization management information;
the equipment determining unit is connected with the type determining unit and used for determining that the authorization management information is related to the current terminal equipment according to the terminal equipment identifier corresponding to the information identifier;
and the operation unit is connected with the equipment determination unit and is used for carrying out corresponding operation according to the determined information type when the equipment determination unit determines that the authorization management information is related to the current terminal equipment.
8. The terminal device according to claim 7, wherein when the type determining unit determines that the information type of the authorization management information is the freeze information, the authorization management information includes an information identifier of the authorization management information and a corresponding terminal device identifier;
and the operation unit specifically includes: and freezing the current terminal equipment according to the freezing information.
9. The terminal device according to claim 7, wherein when the type determination unit determines that the information type of the authorization management information is anti-authorization information or authorization information, the authorization management information includes an information identifier of the authorization management information, a corresponding terminal device identifier, and a product identifier;
and the operation unit specifically includes: and performing anti-authorization or authorization on the product corresponding to the product identifier according to the anti-authorization information or the authorization information.
10. The terminal device according to claim 8 or 9, wherein the terminal device further comprises:
and the decryption unit is used for decrypting the authorization control information by using a prestored product key to obtain a descrambling control word when the equipment determination unit determines that the authorization management information is irrelevant to the current terminal equipment.
11. A method of authorization management, the method comprising:
the front end of the conditional access system configures the authorization management information to generate program configuration information;
reading the program configuration information;
generating authorization control information according to the program configuration information, wherein the authorization control information comprises authorization management information;
and sending the generated authorization control information to the terminal equipment.
12. The method of claim 11, wherein the authorization management information comprises an information identifier of the authorization management information and a corresponding terminal device identifier; or the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal equipment identifier and a product identifier.
13. A conditional access system front-end, the front-end comprising:
the information configuration unit is used for configuring the authorization management information to generate program configuration information;
the information reading unit is used for reading the program configuration information configured by the information configuration unit;
the authorization control information generating unit is used for generating authorization control information according to the read program configuration information, and the authorization control information comprises authorization management information;
and the information sending unit is used for sending the authorization control information generated by the authorization control information generating unit to the terminal equipment.
14. The front-end of claim 13, further comprising a storage unit configured to store the generated program configuration information.
15. The front-end of claim 13, wherein the authorization management information comprises an information identifier of the authorization management information and a corresponding terminal device identifier; or the authorization management information comprises an information identifier of the authorization management information, a corresponding terminal equipment identifier and a product identifier.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910091146.0A CN101998163A (en) | 2009-08-10 | 2009-08-10 | Entitlement management method, terminal equipment and front end |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN200910091146.0A CN101998163A (en) | 2009-08-10 | 2009-08-10 | Entitlement management method, terminal equipment and front end |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101998163A true CN101998163A (en) | 2011-03-30 |
Family
ID=43787626
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN200910091146.0A Pending CN101998163A (en) | 2009-08-10 | 2009-08-10 | Entitlement management method, terminal equipment and front end |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101998163A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103957429A (en) * | 2012-05-09 | 2014-07-30 | 山东泰信电子有限公司 | Statistical method of system for counting user number of digital televisions |
| CN107343210A (en) * | 2017-07-06 | 2017-11-10 | 成都睿胜科技有限公司 | Unidirectional CA EMM bag data sending methods |
-
2009
- 2009-08-10 CN CN200910091146.0A patent/CN101998163A/en active Pending
Cited By (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103957429A (en) * | 2012-05-09 | 2014-07-30 | 山东泰信电子有限公司 | Statistical method of system for counting user number of digital televisions |
| CN103957429B (en) * | 2012-05-09 | 2017-02-01 | 山东泰信电子有限公司 | Statistical method of system for counting user number of digital televisions |
| CN107343210A (en) * | 2017-07-06 | 2017-11-10 | 成都睿胜科技有限公司 | Unidirectional CA EMM bag data sending methods |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US9479825B2 (en) | Terminal based on conditional access technology | |
| KR101081160B1 (en) | Method and apparatus for protecting the transfer of data | |
| JP4716866B2 (en) | Mechanisms for protecting the transfer of digital content | |
| US7401232B2 (en) | Content playback apparatus method and program and key management apparatus and system | |
| EP1800480B1 (en) | Digital rights management of a digital device | |
| US7590242B2 (en) | Selective multimedia data encryption | |
| US8488794B2 (en) | Method for access control to a scrambled content | |
| US20130262869A1 (en) | Control word protection | |
| US9455829B2 (en) | Method and system for decrypting a transport stream | |
| US8666072B2 (en) | Method and a system for receiving a multimedia signal, a cryptograophic entity for said reception method and system, and a method and a black box for producing said cryptographic entity | |
| CN102160325A (en) | Simulcrypt key sharing with hashed keys | |
| CN102075812B (en) | Data receiving method and system of digital television | |
| US9191621B2 (en) | System and method to record encrypted content with access conditions | |
| CN102256170A (en) | Encryption method and decryption method based on no-card CA (Certificate Authority) | |
| CN101626484A (en) | Method for protecting control word in condition access system, front end and terminal | |
| KR100801286B1 (en) | Broadcast transmitting system and broadcast receiving apparatus | |
| CN101998163A (en) | Entitlement management method, terminal equipment and front end | |
| TWI510045B (en) | Protection method, decrypting method, recording medium and terminal for this protection method | |
| US10075419B2 (en) | Method and device to protect a decrypted media content before transmission to a consumption device | |
| CN101790073A (en) | Method for establishing safety communication channel and communication device thereof | |
| JP2008017502A (en) | Processing apparatus in conditional access system | |
| KR20110097683A (en) | Disabling a cleartext control word loading mechanism in a conditional access system | |
| KR20140099240A (en) | Method, cryptographic system and security module for descrambling content packets of a digital transport stream | |
| KR20090045769A (en) | Security device and method for conditional access system and set-top-box | |
| JP5200892B2 (en) | Information processing apparatus, information processing method, receiving apparatus, receiving method, program, and receiving system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20110330 |