JP2010130462A - Information processing device, information processing method, receiving device, receiving method, program, and receiving system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To suppress an unauthorized use of descrambling keys for descrambling scramble broadcast. <P>SOLUTION: A maker discrimination section 81 determines the maker of a receiving device 30. A GK acquisition section 82 reads GK<SB>seed</SB>and GK corresponding to the maker from a memory. A UK generation section 83 generates random numbers for UK. A UK encryption section 84 uses the GK to encrypt the UK. A descrambling key encryption section 85 uses the UK and GK to encrypt the descrambling keys. An encryption section 92 encrypts the GK<SB>seed</SB>from the GK acquisition section 82 to obtain the GK. A UK decoding section 93 uses the GK to decode the encrypted UK. A descrambling key decoding section 94 uses the GK and the UK to decode the encrypted descrambling keys. The present invention can be applied to the receiving device. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to an information processing device, an information processing method, a receiving device, a receiving method, a program, and a receiving system, and in particular, it is possible to suppress unauthorized use of a descrambling key for descrambling scrambled broadcasting. The present invention relates to an information processing apparatus, an information processing method, a receiving apparatus, a receiving method, a program, and a receiving system.

  For example, in pay television broadcasting represented by CS (Communications Satellite) digital broadcasting and BS (Broadcasting Satellite) digital broadcasting, a broadcasting system called scramble broadcasting is often used. In this scrambled broadcast, the broadcast station broadcasts a scrambled broadcast signal, so that even if a person who is not contracted with the broadcast station receives the broadcast, normal video, audio, data, etc. are used. It is something that can't be done.

  That is, a descrambling key for descrambling is given only to the receiving device of the person who has contracted with the broadcasting station, and the descrambled broadcast signal is descrambled in the receiving device by this descrambling key. It is made like that.

  With reference to FIG. 1, a description will be given of processing until a descrambling key is acquired and descrambling is canceled in a conventional receiving apparatus.

  FIG. 1 shows an example of the configuration of a conventional receiving apparatus. This receiving device 10 includes a decoder 11 for descrambling the descrambling applied to the broadcast signal, and an IC (Integrated) as a tamper-resistant security module that is detachably attached to the receiving device 10. Circuit) card 20.

  The decoder 11 includes a tuner 12, a demultiplexer 13, and a descrambler 14.

  The tuner 12 extracts scrambled program AV data, unscrambled individual information (EMM), program information (ECM), and the like corresponding to the user's channel selection from the broadcast signal and supplies them to the demultiplexer 13.

  The individual information includes a contract key number (for identifying the contract key) corresponding to the contract key, a contract key, a channel ID (service-id) corresponding to the contracted channel, and a contract type. Also, the individual information includes a card ID (Card ID) for identifying a security module (to receive the individual information) that should decrypt the individual information (from other security modules).

  The program information includes a contract type, a contract key number, an encrypted scramble key, a channel ID, a program ID for identifying a program, and the like.

  The program information is information related to a program (program corresponding to the program information) represented by the program ID included in the program information among programs broadcast on the channel represented by the channel ID included in the program information. The contract type included in the program information represents, for example, the content of a contract necessary for viewing a program corresponding to the program information.

  The contract key number included in the program information is the contract key number of the contract key used when decrypting the scramble key required for descrambling the scramble applied to the AV data of the program corresponding to the program information. It is. Further, the encrypted scramble key included in the program information is obtained by encrypting a scramble key necessary for descrambling the scramble applied to the program corresponding to the program information using the contract key.

  The demultiplexer 13 separates the scrambled program AV data, the unscrambled individual information and the program information supplied from the tuner 12, and supplies the scrambled program AV data to the descrambler 14. The demultiplexer 13 supplies the individual information and program information to the IC card 20 as a security module.

  The descrambler 14 descrambles the AV data of the scrambled program supplied from the demultiplexer 13 using the descrambling key supplied from the decryption unit 23 of the IC card 20 and the descrambled AV data. Is output.

  The IC card 20 includes a decryption unit 21 that decrypts a contract key and contract information from individual information, a memory 22 that is a nonvolatile storage medium such as an EEPROM, and a decryption unit 23 that decrypts a descrambling key from program information.

  When the card ID included in the individual information from the demultiplexer 13 matches the card ID of the IC card 20 stored in the memory 22, the decryption unit 21 receives the individual information by the IC card 20. Recognize it as individual information. Then, the decryption unit 21 extracts contract information (contract type and channel ID (service-id) etc.) included in the individual information, and supplies the extracted information to the memory 22 for storage. Here, the contract information stored in the memory 22 determines whether or not the program information supplied from the demultiplexer 13 to the decoding unit 23 is program information related to a program permitted to be viewed by the contract. Used for.

  Further, the decrypting unit 21 extracts the contract key number and the encrypted contract key included in the individual information, and decrypts the encrypted contract key using the individual key stored in the memory 22. Then, the decryption unit 21 associates the contract key obtained by the decryption with the contract key number of the contract key, supplies the memory to the memory 22, and stores it.

  The decoding unit 23 receives the program information supplied from the demultiplexer 13, for example, contract information (contract type and channel ID (service-id) etc.) included in the program information, and a contract stored in the memory 22. Compare with information. Then, when the contract information included in the program information from the demultiplexer 13 is included in the contract information stored in the memory 22, that is, the decoding unit 23 determines that the program corresponding to the program information from the demultiplexer 13 is contracted. If the program is a program that is permitted to be viewed, the contract key number and the encrypted scramble key included in the program information are extracted.

  Further, the decrypting unit 23 reads out the contract key stored in association with the contract key number that matches the contract key number extracted from the program information, and extracts it from the program information using the contract key. The encrypted scramble key is decrypted to obtain the original scramble key. The scramble key obtained in this way is supplied to the descrambler 14 of the decoder 11 as a descramble key.

  As described above, when the descrambling key is supplied from the IC card 20 as the security module to the decoder 11 in the conventional receiving device 10, it remains in plain text without taking countermeasures such as encryption. The communication was taking place. As a result, the descrambling key may be intercepted and used illegally in the path from the decryption unit 23 of the IC card 20 to the descrambler 14 of the decoder 11.

  Specifically, for example, the descramble key obtained illegally is a person who does not have a regular contract for receiving scrambled broadcasts via a network represented by the Internet (hereinafter referred to as an unauthorized person). In some cases, it is distributed to a receiving device and used.

  FIG. 2 shows an example of a receiving system when an unauthorized person uses a legitimate receiving device. That is, a descrambling key is output by a legitimate IC card mounted on the unauthorized server, and this descrambling key is supplied to the unauthorized card information writing device via the network. The unauthorized card information writing device supplies the descrambling key to the authorized receiving device via the unauthorized IC card type I / F.

  In the case of FIG. 2, since an unauthorized server uses a legitimate IC card with a viewing contract, if it is a program (channel) that can be viewed by contract, the descramble key can be entered by inputting the program information. Can be obtained. If this descramble key is distributed to the unauthorized person via the network, the receiving apparatus on the unauthorized person can release the scramble and view the program.

  However, as shown in FIG. 2, when an unauthorized IC card type I / F is attached to a legitimate receiver, it is generally difficult to spread because the fraud is obvious and the aesthetics are impaired. . However, it is also assumed that an unauthorized receiving device as shown in FIG. 3 incorporating the unauthorized card information writing device and IC card type I / F in FIG. 2 is developed and sold by an unauthorized vendor. . Therefore, it is desired to quickly establish a countermeasure against fraud as described above, which illegally obtains and distributes a descrambling key output from a legitimate IC card.

  As an effective measure for illegally acquiring a descrambling key output from a legitimate IC card, the invention described in Patent Document 1 already proposed by the present applicant can be cited.

  According to the invention described in Patent Document 1, the descrambling key obtained as a result of decryption is encrypted in accordance with an encryption algorithm consisting of a specific operation inside the IC card as a security module, and supplied to the decoder side. It is made like that. In the decoder, the encrypted descramble key is decrypted according to the encryption algorithm (corresponding to the decryption algorithm) consisting of the specific operation to obtain the descramble key.

  Therefore, even if the descrambling key is intercepted on the route from the IC card to the decoder, the descrambling key is encrypted, so unless the encryption algorithm or decryption algorithm leaks to the unauthorized party, Unauthorized use can be suppressed.

JP 2006-324875

  However, in the invention described in Patent Document 1, it is necessary to share the above specific calculation between the IC card provider side (for example, BS Conditional Access Systems Co., Ltd.) and the receiving device manufacturer. 1. When the specific operation is leaked, it was not possible to specify from which leaked.

  Further, the manufacturer of the receiving device cannot independently determine or change the descrambling key encryption algorithm.

  The present invention has been made in view of such a situation, and the descrambling key for descrambling the scrambled broadcast is illegally used while allowing the encryption algorithm unique to the manufacturer of the receiving apparatus to be adopted. It is possible to deter.

An information processing apparatus according to a first aspect of the present invention is detachably attached to a receiving apparatus that receives scrambled content, and descrambles the scrambled content to the receiving apparatus. the information processing apparatus supplies the descramble key, a holding means for holding a combination of GK (global key) wherein the GK _seed (claw bulky seed) GK _seed is encrypted in accordance with a predetermined encryption algorithm, the Decryption means for generating the descrambling key by decrypting information received by the reception apparatus and supplied from the reception apparatus; supply means for reading the GK _seed from the holding means and supplying the GK _seed to the reception apparatus; UK and generating means for generating a random number as (unique key), versus the GK _seed was fed to the receiving device Using the GK to encrypt the generated UK and supplying the received device to the receiving device; and using the generated UK to encrypt the generated descrambling key to the receiving device. And descramble key encryption means to be supplied.

The holding means includes a plurality of different combinations of the GK _seed that is individually supplied to each manufacturer of the receiving device and the GK in which the GK _seed is encrypted according to an encryption algorithm unique to each manufacturer. It is possible to hold only for the manufacturer.

The information processing apparatus according to the first aspect of the present invention may further include a determination unit that determines a manufacturer of the reception device, and the supply unit includes the GK _seed held in the holding unit, The GK _seed corresponding to the manufacturer of the receiving device can be read and supplied to the receiving device.

The decoding means further acquires the combination of the GK _seed and the GK by decoding the information received by the receiving apparatus and supplied from the receiving apparatus, and holds the acquired GK _seed and the GK The means can be held.

The descrambling key encryption means encrypts the generated descrambling key using the GK corresponding to the generated UK and the GK _seed supplied to the receiving device, and supplies the encrypted descrambling key to the receiving device. Can do.

  The generating means can generate a random number as the UK in accordance with control information received by the receiving device and included in information supplied from the receiving device.

An information processing method according to a first aspect of the present invention is detachably attached to a receiving device that receives scrambled content, and descrambles the scrambled content to the receiving device. In the information processing method of the information processing apparatus for supplying a descrambling key, a decrypting step of generating the descrambling key by decrypting information received by the receiving apparatus and supplied from the receiving apparatus by the information processing apparatus When the supply to the reception apparatus from the holding means for holding a combination of GK (global key) wherein the GK _seed (claw bulky seed) GK _seed is encrypted in accordance with a predetermined encryption algorithm reads the GK _seed A supply step, a generation step for generating a random number as a UK (unique key), Using the GK corresponding to the GK _seed supplied to the serial receiving apparatus, and UK encrypting step supplied to the receiving apparatus the UK generated by encrypting, the UK using generated, the generated the A descrambling key encryption step of encrypting a descrambling key and supplying the descrambling key to the receiving device.

A program according to a first aspect of the present invention is detachably attached to a receiving device that receives scrambled content, and descrambles the descrambled content to the receiving device. A program for controlling an information processing apparatus that supplies a key, the decrypting step for generating the descramble key by decrypting information received by the receiving apparatus and supplied from the receiving apparatus, and a GK _seed ( a supply step of supplying to the receiving apparatus from the holding means claw bulky seed) and the GK _seed holds a combination of GK that has been encrypted according to a predetermined encryption algorithm (global key) reads the GK _seed, A generation step for generating a random number as a UK (unique key) and supplying it to the receiving device Using the GK corresponding to the GK _seed, and the generated UK encrypted supplying the UK the receiving apparatus encrypts, using the UK generated, the generated said descramble key encrypting And causing the computer of the information processing apparatus to execute processing including a descrambling key encryption step supplied to the receiving apparatus.

In the first aspect of the present invention, a descrambling key is generated by decrypting information received by a receiving device and supplied from the receiving device. Also, the GK _seed is supplied to the receiving device, a random number is generated as UK, and the generated UK is encrypted and supplied to the receiving device using the GK corresponding to the GK _seed supplied to the receiving device. Further, using the generated UK, the generated descrambling key is encrypted and supplied to the receiving apparatus.

A receiving device according to a second aspect of the present invention is a receiving device that receives scrambled content, and uses a GK _seed (global key seed) supplied from an information processing device that is detachably attached to a predetermined cipher. Generating means for generating a GK (global key) by encrypting according to an encryption algorithm, and decrypting the encrypted UK (unique key) supplied from the information processing apparatus using the generated GK UK decrypting means, using the decrypted UK, descrambling key decrypting means for decrypting an encrypted descrambling key supplied from the information processing apparatus, and using the decrypted descrambling key Descrambling means for descrambling the scrambled content.

The generation unit can generate the GK by encrypting a GK _seed supplied from an information processing device that is detachably attached according to an encryption algorithm unique to the manufacturer of the receiving device.

  The descrambling key decryption means can decrypt the descramble key encrypted supplied from the information processing apparatus using the decrypted UK and the generated GK.

A receiving method according to a second aspect of the present invention is a receiving method of a receiving device that receives scrambled content, and includes a GK _seed (supplied from an information processing device detachably attached by the receiving device. A generation step of generating a GK (global key) by encrypting a global key seed) according to a predetermined encryption algorithm, and an encryption supplied from the information processing apparatus using the generated GK A UK decrypting step for decrypting UK (unique key), a descrambling key decrypting step for decrypting an encrypted descrambling key supplied from the information processing device using the decrypted UK, A descrambling step for descrambling the scrambled content using the descrambling key. Including the door.

A program according to a second aspect of the present invention is a program for controlling a receiving device that receives scrambled content, and includes a GK _seed (global key) supplied from an information processing device that is detachably attached. Generating a GK (global key) by encrypting the seed according to a predetermined encryption algorithm, and using the generated GK, the encrypted UK ( A unique decryption key (UK) decryption step, a decryption key decryption step of decrypting an encrypted descramble key supplied from the information processing apparatus using the decrypted UK, and a decryption of the decrypted key A descrambling step for descrambling the scrambled content using a descrambling key. To perform the process to the computer of the receiving apparatus.

In the second aspect of the present invention, a GK is generated by encrypting a GK _seed supplied from an information processing device that is detachably attached according to a predetermined encryption algorithm, and the generated GK is used. The encrypted UK supplied from the information processing device is decrypted, and the encrypted descramble key supplied from the information processing device is decrypted and decrypted using the decrypted UK. Using the key, the scrambled content is descrambled.

A receiving system according to a third aspect of the present invention is a receiving device that receives scrambled content, and is detachably attached to the receiving device, and the scrambled content is descrambled with respect to the receiving device. In a receiving system configured with an information processing device that supplies a descrambling key for scrambling, the information processing device is a combination of a GK _seed and a GK in which the GK _seed is encrypted according to a predetermined encryption algorithm Holding means for holding, decrypting means for generating the descramble key by decrypting information received by the receiving apparatus and supplied from the receiving apparatus, and reading the GK _seed from the holding means Supply means for supplying to the device, generating means for generating a random number as UK, and the GK _see supplied to the receiving device Using the GK corresponding to _d , encrypts the generated UK and supplies it to the receiving device, and encrypts the generated descrambling key using the generated UK and Descrambling key encryption means for supplying to the receiving device, wherein the receiving device encrypts the GK _seed supplied from the information processing device detachably attached according to the predetermined encryption algorithm Using the generating means for generating the GK, the UK decrypting means for decrypting the encrypted UK supplied from the information processing apparatus using the generated GK, and the decrypted UK Scrambled using the descrambling key decrypting means for decrypting the encrypted descrambling key supplied from the information processing apparatus, and the decrypted descrambling key. And a descrambling means for descrambling the content.

In the third aspect of the present invention, the information processing apparatus generates a descrambling key by decrypting information received by the receiving apparatus and supplied from the receiving apparatus. Also, the GK _seed is supplied to the receiving device, a random number is generated as UK, and the generated UK is encrypted and supplied to the receiving device using the GK corresponding to the GK _seed supplied to the receiving device. Further, using the generated UK, the generated descrambling key is encrypted and supplied to the receiving apparatus. Further, a GK is generated by encrypting the GK _seed supplied from the information processing device that is detachably mounted by the receiving device according to a predetermined encryption algorithm, and the information processing device is generated using the generated GK. The encrypted UK supplied from is decrypted, the decrypted UK is used to decrypt the encrypted descramble key supplied from the information processing apparatus, and the decrypted descramble key is used. The scrambled content is descrambled.

  According to the present invention, unauthorized use of a descrambling key for descrambling scrambled broadcasting can be suppressed.

  Further, according to the present invention, each manufacturer of the receiving apparatus can employ a unique encryption algorithm.

Hereinafter, the best mode for carrying out the invention (hereinafter referred to as an embodiment) will be described in detail with reference to the drawings. The description will be given in the following order.
1. Embodiment

<1. Embodiment>
[Configuration example of receiver]
FIG. 4 shows a configuration example of the receiving device 30 according to an embodiment of the present invention.

  The receiver 30 includes a decoder 31 for releasing (descrambling) scramble applied to the broadcast signal, and an IC card 50 as a tamper-resistant security module that is detachably attached to the receiver 30. Composed.

  The decoder 31 includes a tuner 32, a demultiplexer 33, a descrambling key receiving unit 34, and a descrambler 35.

  The tuner 32 extracts scrambled program AV data (scrambled content), unscrambled individual information (EMM), program information (ECM), and the like corresponding to the user's channel selection from the broadcast signal. Supply to the multiplexer 33.

  The individual information includes a contract key number (for identifying the contract key) corresponding to the contract key, a contract key, a channel ID (service-id) corresponding to the contracted channel, and a contract type. Also, the individual information includes a card ID (Card ID) for identifying a security module (to receive the individual information) that should decrypt the individual information (from other security modules).

  Further, the individual information includes a UK generation instruction that instructs the IC card 50 to generate a unique key (hereinafter referred to as UK).

  FIG. 5 shows an example of individual information including a UK generation instruction and its serial number.

Furthermore, the individual information can include a global key seed (hereinafter referred to as GK _seed ) and a global key (hereinafter referred to as GK) respectively corresponding to each manufacturer of the receiving apparatus.

FIG. 6 shows an example of individual information including GK _seed and GK. If it contains GK _seed and GK to the individual information, the IC card 50, by using the GK _seed and GK, GK _seed and GK is updated and stored in the memory 52.

  The program information includes a contract type, a contract key number, an encrypted scramble key, a channel ID, a program ID for identifying a program, and the like.

  The program information is information related to a program (program corresponding to the program information) represented by the program ID included in the program information among programs broadcast on the channel represented by the channel ID included in the program information. The contract type included in the program information represents, for example, the content of a contract necessary for viewing a program corresponding to the program information.

  The contract key number included in the program information is the contract key number of the contract key used when decrypting the scramble key required for descrambling the scramble applied to the AV data of the program corresponding to the program information. It is. Further, the encrypted scramble key included in the program information is obtained by encrypting a scramble key necessary for descrambling the scramble applied to the program corresponding to the program information using the contract key.

Furthermore, GK _seed and GK corresponding to each manufacturer of the receiving device can be included in the program information. If the program information is included GK _seed and GK, the IC card 50, by using the GK _seed and GK, GK _seed and GK is updated and stored in the memory 52.

  The demultiplexer 33 separates the scrambled program AV data, the unscrambled individual information and the program information supplied from the tuner 32, and supplies the scrambled program AV data to the descrambler 35. The demultiplexer 33 supplies the individual information and the program information to the IC card 50 as a security module.

  The descrambling key receiving unit 34 decrypts the descrambling key supplied in an encrypted state from the IC card 50 and supplies it to the descrambler 35. Details of the descrambling key receiving unit 34 will be described later with reference to FIG.

  The descrambler 35 uses the descrambling key supplied from the descrambling key receiving unit 34 to release the scramble of the AV data of the program supplied from the demultiplexer 33 and outputs the subsequent stage.

  The IC card 50 includes a decryption unit 51, a memory 52, a decryption unit 53, and a descrambling key transmission unit 545.

  When the card ID included in the individual information from the demultiplexer 33 matches the card ID of the IC card 50 stored in the memory 52, the decrypting unit 51 receives the individual information by the IC card 50. Recognize it as individual information. Then, the decrypting unit 51 extracts contract information (contract type and channel ID (service-id), etc.) included in the individual information, and supplies it to the memory 52 for storage. Here, the contract information stored in the memory 52 determines whether or not the program information supplied from the demultiplexer 33 to the decoding unit 53 is program information related to a program permitted to be viewed by the contract. Used for.

  Further, the decrypting unit 51 extracts the contract key number and the encrypted contract key included in the individual information, and decrypts the encrypted contract key using the individual key stored in the memory 52. Then, the decrypting unit 51 associates the contract key obtained by the decryption with the contract key number of the contract key, and supplies the stored key to the memory 52 for storage.

  Furthermore, the decryption unit 51 notifies the descrambling key transmission unit 54 of the UK generation instruction included in the individual information.

An individual key and a card ID are stored in advance in a memory 52 formed of a nonvolatile storage medium such as an EEPROM. As described above, the memory 52 stores the contract information extracted from the individual information and the contract key. Further, the memory 52 stores in advance GK _seeds and GKs corresponding not only to the manufacturer of the receiving device 30 but also to all manufacturers that manufacture regular receiving devices.

Here, the GK _seed and GK corresponding to each manufacturer will be described in detail with reference to FIG. FIG. 7 shows the relationship between the CA control system 60 provided on the IC card provider side and the encryption device 71 provided in each manufacturer that manufactures a regular receiving device.

As shown in the figure, the CA control system 60 supplies different GK _seeds for each manufacturer to the encryption device 71 of each manufacturer that manufactures a regular receiving device. Encrypting device 71 for each manufacturer uses a proprietary encryption algorithm and encryption key, encrypts the GK _seed supplied from the CA control system 60, the resulting, GK _seed encrypted state Is returned to the CA control system 60 as GK.

  For example, DES (Data Encryption Standard), AES (Advanced Encryption Standard), etc. can be applied to the encryption algorithm unique to each manufacturer. Of course, any encryption algorithm other than DES and AES can be applied. The applied encryption algorithm and encryption key only need to be managed independently by each manufacturer, and need not be disclosed to the IC card provider side. If the encryption algorithm or encryption key of company A leaks, only company A needs to change its encryption algorithm and encryption key.

  From the viewpoint of the IC card provider side, even if the encryption algorithm or encryption key of company A is leaked, it is not necessary to be held responsible.

The CA control system 60 to which GK is returned from the encryption device 71 of each manufacturer stores the GK _seed and GK respectively corresponding to all manufacturers in the memory 52 of the IC card 50. In this way, the IC card 50 in which the GK _seed and GK respectively corresponding to all manufacturers are stored in the memory 52 is provided to the user of the receiving device 30.

Each manufacturer's GK _seed and GK can be updated as necessary. Specifically, the updated GK _seed and GK of each manufacturer are included in individual information or program information and transmitted, and the receiving device 30 that receives the information uses the received GK _seed and GK of each manufacturer. Thus, the GK _seed and GK held in the memory 52 are updated.

By appropriately updating the GK _seed and GK of each manufacturer using individual information or program information, an attempt to decipher GK from the GK _seed by an unauthorized person can be initialized. In general, since it takes a long time to decrypt an encryption algorithm and encryption key, it is possible to invalidate the efforts of unauthorized persons by updating the GK _seed and GK in a timely manner. Therefore, the willingness to decipher the unauthorized person can be eliminated.

In the above description, the GK _seed and GK are common within the manufacturer, but may be changed for each model of the receiving device in the manufacturer. However, in that case, the number of GK _seeds and GK pairs to be held in the memory 52 of the IC card 50 is greatly increased.

  Returning to FIG. The decoding unit 53 receives the program information supplied from the demultiplexer 33, for example, contract information (contract type and channel ID (service-id) etc.) included in the program information, and a contract stored in the memory 52. Compare with information. Then, when the contract information included in the program information from the demultiplexer 33 is included in the contract information stored in the memory 52, that is, the decoding unit 53 determines that the program corresponding to the program information from the demultiplexer 33 is a contract. If the program is a program that is permitted to be viewed, the contract key number and the encrypted scramble key included in the program information are extracted.

  Further, the decryption unit 53 reads out the contract key stored in association with the contract key number that matches the contract key number extracted from the program information, and extracts it from the program information using the contract key. The encrypted scramble key is decrypted to obtain the original scramble key. The scramble key obtained in this way is output to the descrambling key transmission unit 54 as a descrambling key.

  The descrambling key transmission unit 54 encrypts the descrambling key input from the decryption unit 53 and transmits it to the descrambling key reception unit 34 of the decoder 31.

  Next, FIG. 8 shows a detailed configuration example of the descrambling key reception unit 34 of the decoder 31 and the descrambling key transmission unit 54 of the IC card 50.

  The descrambling key transmission unit 54 of the IC card 50 includes a manufacturer determination unit 81, a GK acquisition unit 82, a UK generation unit 83, a UK encryption unit 84, and a descrambling key encryption unit 85.

  The maker discriminating unit 81 requests maker identification information from the maker identification information holding unit 91 of the descramble key receiving unit 34, and determines the maker of the receiving device 30 based on the maker identification information supplied in response to the request. Make a determination, and notify the determination result to the GK acquisition unit 82.

The GK acquisition unit 82 reads the GK _seed and GK according to the manufacturer notified from the manufacturer determination unit 81 from the memory 52, supplies the GK _seed to the encryption unit 92 of the descrambling key reception unit 34, and supplies GK to the UK. The data is supplied to the encryption unit 84 and the descrambling key encryption unit 85.

  The UK generation unit 83 generates a random number in response to the UK generation instruction included in the individual information notified from the decryption unit 51, and uses the generated random number as the UK as a UK encryption unit 84 and a descramble key encryption unit 85. The generation of random numbers in the UK generator 83 is executed only once in response to a UK generation instruction included in the same individual information. In other words, even if the same individual information including the UK generation instruction is received a plurality of times, it is not necessary to generate a random number each time.

  The UK encryption unit 84 encrypts the UK supplied from the UK generation unit 83 using the GK supplied from the GK acquisition unit 82, and the encrypted UK is stored in the UK of the descrambling key reception unit 34. It supplies to the decoding part 93.

  The descrambling key encryption unit 85 encrypts the descrambling key supplied from the decryption unit 53 by using the UK supplied from the UK generation unit 83 and the GK supplied from the GK acquisition unit 82. The descrambling key in the current state is supplied to the descrambling key decryption unit 94. Here, to encrypt using UK and GK, for example, after performing encryption by performing a predetermined operation using UK for GK, the encrypted GK is encrypted as an encryption key, or conversely, This means that after encrypting the UK by performing a predetermined operation using GK, the encrypted UK is encrypted as an encryption key. Or it means encrypting a combination of UK and GK as an encryption key.

  The descrambling key encryption unit 85 encrypts the descrambling key supplied from the decryption unit 53 using only the UK supplied from the UK generation unit 83, and obtains the descrambling key in an encrypted state. You may make it supply to the descramble key decoding part 94. FIG.

  The descrambling key receiving unit 34 of the decoder 31 includes a manufacturer identification information holding unit 91, an encrypting unit 92, a UK decrypting unit 93, and a descrambling key decrypting unit 94.

In response to a request from manufacturer determination unit 81, manufacturer identification information holding unit 91 notifies manufacturer determination unit 81 of the held manufacturer identification information (of receiving device 30). If the GK _seed and GK are not common within the maker and are different for each model, it is sufficient to know that the model identification information is notified here.

The encryption unit 92 has a common encryption algorithm and encryption key with the encryption device 71 corresponding to the manufacturer of the receiving device 30. For example, when the receiving device 30 is manufactured by A company, the receiving device 30 has an encryption algorithm and an encryption key common to the encryption device 71A corresponding to the A company. The encryption unit 92 encrypts the GK _seed supplied from the GK acquisition unit 82 using the encryption algorithm and encryption key unique to the manufacturer, and the resulting GK is converted into the UK decryption unit 93 and the descrambling key. It supplies to the decoding part 94.

  The UK decryption unit 93 decrypts the UK that has been encrypted using the GK supplied from the UK encryption unit 84, using the GK supplied from the encryption unit 92, and obtains the resulting UK. This is supplied to the descramble key decryption unit 94.

  The descrambling key decryption unit 94 supplies the descrambling key supplied from the descrambling key encryption unit 85 and encrypted with the UK and GK, to the GK and UK decryption unit supplied from the encryption unit 92. Decryption is performed using the UK supplied from 93, and the descramble key obtained as a result is supplied to the descrambler 35.

As described above, the descrambling key reception unit 34 supplies the descrambling key transmission unit 54 with the GK _seed , the encrypted UK, and the encrypted descrambling key.

[Description of operation]
Next, the operation of the receiving device 30 will be described. Before that, the CA control system 60 provided on the IC card provider side and the encryption device 71 provided in each manufacturer that normally manufactures the receiving device. The operation (hereinafter referred to as provider-side processing) will be described.

  FIG. 9 is a flowchart for explaining the processing on the provider side.

  The processing on the provider side is executed at a stage before the IC card 50 is provided to each manufacturer, the user of the receiving device 30, and the like.

In step S1, the CA control system 60 supplies different GK _seeds for each manufacturer to the encryption device 71 of each manufacturer that manufactures a regular receiving device.

In step S2, the encryption device 71 of each manufacturer encrypts the GK _seed supplied from the CA control system 60 by using the encryption algorithm and encryption key unique to the manufacturer, and the encrypted device obtained as a result is encrypted. The GK _seed in the state is returned to the CA control system 60 as GK.

In step S <b> 3, the CA control system 60 stores GK _seed and GK respectively corresponding to all manufacturers in the memory 52 of the IC card 50. In this way, the IC card 50 in which the GK _seed and GK respectively corresponding to all manufacturers are stored in the memory 52 is provided to each manufacturer and user of the receiving device 30.

  Next, the operation of the receiving device 30 will be described. FIG. 10 is a flowchart for explaining processing of the decoder 31 and the IC card 50 of the receiving device 30.

  In step S <b> 11, the manufacturer determination unit 81 of the descrambling key transmission unit 54 of the IC card 50 requests manufacturer identification information from the manufacturer identification information holding unit 91 of the descrambling key reception unit 34.

  In response to a request from the maker discriminating unit 81, in step S21, the maker identification information holding unit 91 of the descrambling key receiving unit 34 of the decoder 31 stores the maker identification information (of the receiving device 30) held therein. Notify

In step S <b> 12, the manufacturer determination unit 81 determines the manufacturer of the receiving device 30 based on the manufacturer identification information notified from the manufacturer identification information holding unit 91, and notifies the determination result to the GK acquisition unit 82. The GK acquisition unit 82 reads the GK _seed and GK according to the manufacturer notified from the manufacturer determination unit 81 from the memory 52, supplies the GK _seed to the encryption unit 92 of the descrambling key reception unit 34, and supplies GK to the UK. The data is supplied to the encryption unit 84 and the descrambling key encryption unit 85.

The encryption unit 92 of the descramble key receiving portion 34 GK _seed is supplied, in step S22, the GK _seed supplied from GK acquisition unit 82, using a proprietary encryption algorithm and encryption key itself has The encrypted GK is supplied to the UK decrypting unit 93 and the descrambling key decrypting unit 94.

  In step S23, the demultiplexer 33 of the decoder 31 separates the scrambled program AV data, the unscrambled individual information and the program information supplied from the tuner 32, and scrambles the program AV data. The descrambler 35 is supplied. The demultiplexer 33 supplies the individual information and the program information to the IC card 50 as a security module.

  In the IC card 50 supplied with the individual information and the program information, in step S13, the decryption unit 53 obtains a scramble key from the program information and outputs it as a descrambling key to the descrambling key transmission unit 54.

  In step S14, the UK generation unit 83 generates a random number according to the UK generation instruction included in the individual information notified from the decryption unit 51, and uses the generated random number as the UK as the UK encryption unit 84 and the descrambler. This is supplied to the key encryption unit 85.

  In step S15, the UK encryption unit 84 encrypts the UK supplied from the UK generation unit 83 using the GK supplied from the GK acquisition unit 82, and receives the descramble key for the encrypted UK. To the UK decoding unit 93 of the unit 34.

  In step S16, the descrambling key encryption unit 85 encrypts the descrambling key supplied from the decryption unit 53 using the UK supplied from the UK generation unit 83 and the GK supplied from the GK acquisition unit 82. The descramble key in an encrypted state is supplied to the descramble key decryption unit 94. Thus, the processing of the IC card 50 is finished.

  On the other hand, in the decoder 31, the UK decrypting unit 93 of the descrambling key receiving unit 34 to which the UK in the encrypted state is supplied in step S 24 is the encrypted state supplied from the UK encrypting unit 84. The UK is decrypted using the GK supplied from the encryption unit 92, and the resulting UK is supplied to the descrambling key decryption unit 94.

  In step S25, the descrambling key decryption unit 94 receives the descramble key in an encrypted state supplied from the descrambling key encryption unit 85 from the GK and UK decryption unit 93 supplied from the encryption unit 92. Decryption is performed using the supplied UK, and the resulting descramble key is supplied to the descrambler 35.

  In step S <b> 26, the descrambler 35 uses the descrambling key supplied from the descrambling key receiving unit 34 to release the scramble of the AV data of the program supplied from the demultiplexer 33 and outputs the subsequent stage. Thus, the processing of the decoder 31 is also finished.

  As described above, according to the receiving device 30, a unique UK is shared secretly between the decoder 31 and the IC card 50 for each receiving device 30 (combination of the decoder 31 and the IC card 50) using GK. it can. Since this UK is used as an encryption key for encrypting the descrambling key, even if the encrypted descrambling key is intercepted and distributed over the network, the receiving device other than the receiving device 30 can receive the same UK. The descrambling key cannot be decrypted. That is, unauthorized use can be suppressed.

  Secretly sharing the UK between the decoder 31 and the IC card 50 limits the combination of the decoder 31 and the IC card 50. Even if the IC card 50 is inserted into another receiving device, the descrambling key can be normally used. Since decryption cannot be performed, an effect of suppressing the unauthorized use of one IC card by a plurality of receiving devices can be obtained.

  Note that an instruction to set a new UK for the receiving device 30 can be realized by transmitting the individual information shown in FIG. 5 to the target IC card 50. In the case of IC card exchange, it can follow. Further, since the UK is shared only once according to the individual information, one IC card 50 cannot share the UK with a plurality of decoders 31.

  Further, since the CA control system 60 on the IC card provider side controls the transmission of the individual information instructing the new setting of the UK, the sharing of the UK between the decoder 31 and the IC card 50 in the receiving device 30 is determined by the IC provider. Can be grasped and controlled by the side.

  By the way, the above-described series of processing can be executed by hardware or can be executed by software. When a series of processing is executed by software, a program constituting the software may execute various functions by installing a computer incorporated in dedicated hardware or various programs. For example, it is installed from a program recording medium in a general-purpose personal computer or the like.

  The program executed by the computer may be a program that is processed in time series in the order described in this specification, or in parallel or at a necessary timing such as when a call is made. It may be a program for processing.

  The program may be processed by a single computer, or may be distributedly processed by a plurality of computers. Furthermore, the program may be transferred to a remote computer and executed.

  Further, in this specification, the system represents the entire apparatus constituted by a plurality of apparatuses.

  The embodiment of the present invention is not limited to the above-described embodiment, and various modifications can be made without departing from the gist of the present invention.

It is a block diagram which shows an example of a structure of the conventional receiver. It is a block diagram which shows an example of a structure of an unauthorized receiving system. It is a block diagram which shows the other example of a structure of an unauthorized receiving system. It is a block diagram which shows the structural example of the receiver which applied this invention. It is a figure which shows an example of the separate information containing UK generation | occurrence | production instruction | indication. It is a figure which shows an example of the separate information containing GK _seed and GK. It is a figure which shows the relationship between a CA control system and the encryption apparatus of each manufacturer. FIG. 5 is a block diagram illustrating a detailed configuration example of a descrambling key transmission unit and a descrambling key reception unit of FIG. 4. It is a flowchart explaining the process by the side of a provider. It is a flowchart explaining operation | movement of a receiver.

Explanation of symbols

  30 receivers, 31 decoders, 32 tuners, 33 demultiplexers, 34 descrambling key receivers, 35 descramblers, 50 IC cards, 51 decrypting units, 52 memories, 53 decrypting units, 54 descrambling key transmitting units, 60 CA control System, 71 encryption device, 81 manufacturer determination unit, 82 GK acquisition unit, 83 UK generation unit, 84 UK encryption unit, 85 descrambling key encryption unit, 91 manufacturer identification information holding unit, 92 encryption unit, 93 UK Decryption unit, 94 Descramble key decryption unit

Claims (14)

In an information processing device that is detachably attached to a receiving device that receives scrambled content, and supplies a descrambling key for descrambling the scrambled content to the receiving device,
Holding means for GK _seed (claw bulky seed) and the GK _seed holds a combination of GK (global key) which is encrypted according to a predetermined encryption algorithm,
Decryption means for generating the descrambling key by decrypting information received by the receiving device and supplied from the receiving device;
Supply means for reading the GK _seed from the holding means and supplying the GK _seed to the receiving device;
A means of generating random numbers as UK (unique key),
Using the GK corresponding to the GK _seed supplied to the receiving device, UK encryption means for encrypting the generated UK and supplying it to the receiving device;
An information processing apparatus comprising: a descrambling key encryption unit that encrypts the generated descrambling key using the generated UK and supplies the encrypted descrambling key to the receiving apparatus. The holding means includes a plurality of different combinations of the GK _seed that is individually supplied to each manufacturer of the receiving device and the GK in which the GK _seed is encrypted according to an encryption algorithm unique to each manufacturer. The information processing apparatus according to claim 1, wherein only the maker is held. A determination unit for determining a manufacturer of the receiving device;
The information processing apparatus according to claim 2, wherein the supply unit reads the GK _seed corresponding to the manufacturer of the receiving device from the GK _seed held by the holding unit and supplies the read GK _seed to the receiving device. The decoding means further acquires the combination of the GK _seed and the GK by decoding the information received by the receiving apparatus and supplied from the receiving apparatus, and holds the acquired GK _seed and the GK The information processing apparatus according to claim 1, wherein the information processing apparatus is held by a means. The descrambling key encryption unit encrypts the generated descrambling key using the generated UK and the GK corresponding to the GK _seed supplied to the receiving device, and supplies the encrypted descrambling key to the receiving device. Item 4. The information processing apparatus according to Item 1. The information processing apparatus according to claim 1, wherein the generation unit generates a random number as the UK according to control information received by the reception apparatus and included in information supplied from the reception apparatus. In an information processing method of an information processing device that is detachably attached to a receiving device that receives scrambled content and supplies a descrambling key for descrambling the scrambled content to the receiving device. ,
According to the information processing apparatus,
A decrypting step of generating the descrambling key by decrypting information received by the receiving device and supplied from the receiving device;
Supply supplied to the receiving apparatus from the holding means GK _seed (claw bulky seed) and the GK _seed holds a combination of GK (global key) which is encrypted according to a predetermined encryption algorithm reads the GK _seed Steps,
Generation steps to generate random numbers as UK (unique key),
Using the GK corresponding to the GK _seed supplied to the receiving device, encrypting the generated UK and supplying the received UK device to the receiving device;
A descrambling key encryption step of encrypting the generated descrambling key using the generated UK and supplying the descrambling key to the receiving device. A program for controlling an information processing device that is detachably attached to a receiving device that receives scrambled content and supplies a descrambling key for descrambling the scrambled content to the receiving device. Because
A decrypting step of generating the descrambling key by decrypting information received by the receiving device and supplied from the receiving device;
Supply supplied to the receiving apparatus from the holding means GK _seed (claw bulky seed) and the GK _seed holds a combination of GK (global key) which is encrypted according to a predetermined encryption algorithm reads the GK _seed Steps,
Generation steps to generate random numbers as UK (unique key),
Using the GK corresponding to the GK _seed supplied to the receiving device, encrypting the generated UK and supplying the received UK device to the receiving device;
A program for causing a computer of an information processing device to execute processing including: a descrambling key encryption step of encrypting the generated descrambling key using the generated UK and supplying the descrambling key to the receiving device. In a receiving device that receives scrambled content,
Generating means for generating a GK (global key) by encrypting a GK _seed (global key seed) supplied from an information processing device that is detachably attached according to a predetermined encryption algorithm;
UK decrypting means for decrypting an encrypted UK (unique key) supplied from the information processing device using the generated GK;
A descrambling key decrypting means for decrypting an encrypted descrambling key supplied from the information processing apparatus using the decrypted UK;
And a descrambling means for descrambling the scrambled content using the decrypted descrambling key. The generation unit generates the GK by encrypting a GK _seed supplied from an information processing device that is detachably mounted in accordance with an encryption algorithm unique to the manufacturer of the reception device. Receiver device. The reception according to claim 9, wherein the descrambling key decrypting unit decrypts the encrypted descrambling key supplied from the information processing apparatus using the decrypted UK and the generated GK. apparatus. In a receiving method of a receiving device that receives scrambled content,
By the receiving device,
A generation step of generating a GK (global key) by encrypting a GK _seed (global key seed) supplied from an information processing device that is detachably attached according to a predetermined encryption algorithm;
A UK decryption step of decrypting an encrypted UK (unique key) supplied from the information processing apparatus using the generated GK;
A descrambling key decrypting step of decrypting an encrypted descrambling key supplied from the information processing apparatus using the decrypted UK;
And a descrambling step of descrambling the scrambled content using the decrypted descrambling key. A program for controlling a receiving device that receives scrambled content,
A generation step of generating a GK (global key) by encrypting a GK _seed (global key seed) supplied from an information processing device that is detachably attached according to a predetermined encryption algorithm;
A UK decryption step of decrypting an encrypted UK (unique key) supplied from the information processing apparatus using the generated GK;
A descrambling key decrypting step of decrypting an encrypted descrambling key supplied from the information processing apparatus using the decrypted UK;
A program that causes a computer of a receiving apparatus to execute a process including: a descrambling step of descrambling the scrambled content using the decrypted descrambling key. A receiving device that receives scrambled content, and an information processing device that is detachably attached to the receiving device and supplies a descrambling key for descrambling the scrambled content to the receiving device In a receiving system composed of
The information processing apparatus includes:
Holding means for GK _seed (claw bulky seed) and the GK _seed holds a combination of GK (global key) which is encrypted according to a predetermined encryption algorithm,
Decryption means for generating the descrambling key by decrypting information received by the receiving device and supplied from the receiving device;
Supply means for reading the GK _seed from the holding means and supplying the GK _seed to the receiving device;
A means of generating random numbers as UK (unique key),
Using the GK corresponding to the GK _seed supplied to the receiving device, UK encryption means for encrypting the generated UK and supplying it to the receiving device;
A descrambling key encryption unit that encrypts the generated descrambling key and supplies the generated descrambling key to the receiving device using the generated UK.
The receiving device is:
Generating means for generating the GK by encrypting the GK _seed supplied from the information processing apparatus that is detachably attached according to the predetermined encryption algorithm;
Using the generated GK, UK decryption means for decrypting the encrypted UK supplied from the information processing device;
Descrambling key decryption means for decrypting the encrypted descrambling key supplied from the information processing apparatus using the decrypted UK;
And a descrambling means for descrambling the scrambled content using the decrypted descrambling key.

Images