Patent Grant
7409562
This application is related to the following applications:
Application Ser. No. 09/590,417, entitled “METHOD AND APPARATUS FOR TRANSMITTING RECEIVING, AND UTILIZING AUDIO/VISUAL SIGNALS AND OTHER INFORMATION”, filed Jun. 8, 2000, by Arthur Tilford;
Application Ser. No. 09/620,772, entitled “SUPER ENCRYPTED STORAGE AND RETRIEVAL OF MEDIA PROGRAMS WITH SMARTCARD GENERATED KEYS”, filed Jul. 21, 2000, by Raynold M. Kahn et al., which application is hereby incorporated by reference herein;
Application Ser. No. 09/620,773, entitled “SUPER ENCRYPTED STORAGE AND RETRIEVAL OF MEDIA PROGRAMS WITH MODIFIED CONDITIONAL ACCESS FUNCTIONALITY”, filed Jul. 21, 2000, by Raynold M. Kahn et al., now issued Apr. 10, 2007 as U.S. Pat. No. 7,203,314, which application is hereby incorporated by reference herein;
Application Ser. No. 09/620,832, entitled “VIDEO ON DEMAND PAY PER VIEW SERVICES WITH UNMODIFIED CONDITIONAL ACCESS FUNCTIONALITY”, filed Jul. 21, 2000, by Raynold M. Kahn et al., now issued Feb. 8, 2005 as U.S. Pat. No. 6,853,728, which application is hereby incorporated by reference herein;
Application Ser. No. 10/490,261 entitled “METHOD AND APPARATUS FOR CONTROLLING PAIRED OPERATION OF A CONDITIONAL ACCESS MODULE AND AN INTEGRATED RECEIVER AND DECODER”, filed Aug. 5, 2004, by Raynold M. Kahn et al., which is a national stage entry of PCT/US02/29881 filed Sep. 20, 2002;
Application Ser. No. 10/758,811 entitled “DISTRIBUTION OF VIDEO CONTENT USING A TRUSTED NETWORK KEY FOR SHARING CONTENT”, filed Jan. 16, 2004, by Raynold M. Kahn et al;
Application Ser. No. 10/758,818 entitled “DISTRIBUTION OF BROADCAST CONTENT FOR REMOTE DECRYPTION AND VIEWING”, filed Jan. 16, 2004, by Raynold M. Kahn et al;
Application Ser. No. 10/758,865 entitled “DISTRIBUTION OF VIDEO CONTENT USING CLIENT TO HOST PAIRING OF INTEGRATED RECEIVERS/DECODERS”, filed Jan. 16, 2004, by Raynold M. Kahn et al;
Application Ser. No. 10/759,679 entitled “VIRTUAL VIDEO ON DEMAND USING MULTIPLE ENCRYPTED VIDEO SEGMENTS”, filed Jan. 19, 2004, by Robert G. Arsenault et al., which is continuation of application Ser. No. 09/491,959, entitled “VIRTUAL VIDEO ON DEMAND USING MULTIPLE ENCRYPTED VIDEO SEGMENTS”, filed Jan. 26, 2000, by Robert G. Arsenault et al., now issued Mar. 2, 2004 as U.S. Pat. No. 6,701,528, which application is hereby incorporated by reference herein;
Application Ser. No. 10/790,466 entitled “VIDEO ON DEMAND IN A BROADCAST NETWORK”, filed Mar. 1, 2004, by Stephen P. Dulac;
Application Ser. No. 11/433,926 entitled “METHODS AND APPARATUS TO PROTECT CONTENT IN HOME NETWORKS”, filed May 15, 2006, by Raynold M. Kahn;
Application Ser. No. 11/433,969 entitled “METHODS AND APPARTUS TO PROVIDE CONTENT ON DEMAND IN CONTENT BROADCAST SYSTEMS”, filed May 15, 2006, by Peter M. Klauss et al.;
Application Ser. No. 11/434,082 entitled “CONTENT DELIVERY SYSTEMS AND METHODS TO OPERATE THE SAME”, filed May 15, 2006, by Raynold M. Kahn et al.;
Application Ser. No. 11/434,404 entitled “SECURE CONTENT TRANSFER SYSTEMS AND METHODS TO OPERATE THE SAME”, filed May 15, 2006, by Raynold M. Kahn et al;
Application Ser. No. 11/434,437 entitled “METHODS AND APPARATUS TO CONDITIONALLY AUTHORIZE CONTENT DELIVERY AT RECEIVERS IN PAY DELIVERY SYSTEMS”, filed May 15, 2006, by Raynold M. Kahn et al.;
Application Ser. No. 11/434,528 entitled “METHODS AND APPARATUS TO CONDITIONALLY AUTHORIZE CONTENT DELIVERY AT BROADCAST HEADENDS IN PAY DELIVERY SYSTEMS”, filed May 15, 2006, by Raynold M. Kahn et al.;
Application Ser. No. 11/434,538 entitled “METHODS AND APPARATUS TO CONDITIONALLY AUTHORIZE CONTENT DELIVERY AT CONTENT SERVERS IN PAY DELIVERY SYSTEMS”, filed May 15, 2006, by Raynold M. Kahn et al.;
Application Ser. No. 11/499,635 entitled “DISTRIBUTED MEDIA-PROTECTION SYSTEMS AND METHODS TO OPERATE THE SAME”, filed Aug. 4, 2006, by Michael Ficco;
Application Ser. No. 11/499,636 entitled “DISTRIBUTED MEDIA-AGGREGATION SYSTEMS AND METHODS TO OPERATE THE SAME”, filed Aug. 4, 2006, by Michael Ficco;
Application Ser. No. 11/501,985 entitled “SECURE DELIVERY OF PROGRAM CONTENT VIA A REMOVAL STORAGE MEDIUM”, filed Aug. 10, 2006, by Raynold M. Kahn et al.;
Application Ser. No. 11/654,752 entitled “SECURE STORAGE AND REPLAY OF MEDIA PROGRAMS USING A HARD-PAIRED RECEIVER AND STORAGE DEVICE”, filed Jan. 18, 2007, by Raynold M. Kahn et al., which is a continuation of application Ser. No. 09/620,833, entitled “SECURE STORAGE AND REPLAY OF MEDIA PROGRAMS USING A HARD-PAIRED RECEIVER AND STORAGE DEVICE”, filed Jul. 21, 2000, by Raynold M. Kahn et al., which application is hereby incorporated by reference; and
Application Ser. No. 11/701,800 entitled “SUPER ENCRYPTED STORAGE AND RETRIEVAL OF MEDIA PROGRAMS IN A HARD-PAIRED RECEIVER AND STORAGE DEVICE”, filed Feb. 2, 2007, by Raynold M. Kahn et al., which is a continuation of application Ser. No. 09/621,476, entitled “SUPER ENCRYPTED STORAGE AND RETRIEVAL OF MEDIA PROGRAMS IN A HARD-PAIRED RECEIVER AND STORAGE DEVICE”, filed Jul. 21, 2000, by Raynold M. Kahn et al., now issued Apr. 10, 2007 as U.S. Pat. No. 7,203,311.
1. Field of the Invention
The present invention relates to systems and methods for providing video program material to subscribers, and in particular to a method and system for securely storing and replaying media programs.
2. Description of the Related Art
In recent years, there has been increasing interest in allowing cable and satellite television subscribers to record broadcast media programs for later viewing. This capability, hereinafter referred to as personal video recording (PVR), can be used to provide video-on-demand (VOD) services, or simply to allow the subscriber to save media programs for repeated viewing and/or archival purposes.
In the past, video cassette tape recorders (VCRs) have been used for such personal video recording. Recently, however, hard disks, similar to those used in personal computers, have been used to store media programs for later viewing. Unlike VCRs, such devices typically do not include a tuner, and are instead coupled to the satellite receiver or cable box. Also unlike VCRs, these devices are typically used to record digitized content, not analog video. This difference is both advantageous and disadvantageous.
An advantage of such devices is that they permit long term storage and multiple replays without substantial degradation. Another advantage is that they permit more rapid trick-play functions such as fast forwarding and rewinding. A disadvantage of such devices is that they are capable of making multiple-generation copies of the program material as well, and without serious degradation. This raises the very real possibility that the multiple generation copies of the media programs will be produced and distributed without permission. This possibility has caused some media providers to be reluctant to allow their media programs to be recorded by such devices.
To ameliorate this problem, it is critical to protect the stored media programs with strong security and copy control. Current devices do not scramble media programs before storage, nor do they store copy protection information. Instead, such devices record decrypted program content into the storage disk using a paired hardware scheme in which the hard disk controller and hard disk are paired to each other specifically through a specific interface. Because the hard disk controller and the disk itself are essentially paired together, storage or playback will not function if the disk were to be removed and transferred to another player. The weakness of this security scheme is that it relies only on the paired hardware to ensure security . . . the media programs stored on the disk drive itself are not encrypted.
While it would presumably be possible to simply store the datastream as it is received from the broadcaster for later replay, this technique has distinct disadvantages. One such disadvantage is that it would provide pirates a permanently recorded version of the encrypted datastream, thus providing the pirate with information that can be used to perform detailed analyses of the datastream itself to determine the encryption techniques and codes.
What is needed is a system and method for securely recording broadcast media programs (including impulse purchase pay-per-view programs) for limited use playback at a later time. Such a system could be used to support video-on-demand (VOD), thus allowing the subscriber to purchase media programs and games from the set top box instantly without worrying about the start time of the program.
In summary, the present invention describes a system and method for storing and retrieving program material for subsequent replay. The method comprises the steps of accepting a receiver ID associated with a receiver key stored in a memory of the receiver, determining a pairing key for encrypting communications between the conditional access module and the receiver, encrypting the pairing key with the receiver key, and transmitting a message comprising the encrypted pairing key to the receiver.
The apparatus comprises a receiver for receiving a data stream transmitting a media program encrypted according to a media encryption key and an encrypted media encryption key and a conditional access module, communicatively coupleable with the receiver. The receiver comprises a first decryptor, for decrypting a message from the conditional access module according to a pairing key, the message comprising the media encryption key, and the conditional access module comprises a second decryptor for decrypting the encrypted media encryption key and a first encryptor for encrypting messages with the receiver according to the pairing key.
One object of the present invention is to provide for the reception and decryption of broadcast media programs, including impulse pay-per-view (IPPV) programs, that can be played and recorded onto storage media and allows playback at a later time with limited use. The data itself may be placed in short term storage, but the replay of the media programs can be accomplished with trick play functions such as forward, reverse, fast forward, fast reverse, frame advance, and pause functions.
Another object of the present invention is to provide PVR functions which provide recording, delayed playback, and trick play of IPPV media programs from the storage media without requiring a pre-purchase of the IPPV media program. This would allow the IPPV media program to be purchased and viewed at the users leisure without requiring the IPPV media program to be purchased prior to storage. Ideally, such a system would allow the user to select the IPPV media program from the storage device, subject to limited play rights.
Still another object of the present invention is to provide a pairing between the storage media and elements of the subscriber's IRD to assure that playback of the media programs from the storage device are permitted only with the proper IRD.
Still another object of the present invention is to provide a secure means for storing broadcast data streams (including IPPV and games) on a data storage device, while providing for adequate copy protection.
Still another object of the present invention is to provide a system and method for handling the archiving and retrieving of media programs and other data, even if the data storage device fails.
Still another object of the present invention is to provide a system and method that allows media program purchases to be recorded in a way that is analogous to that which is employed for real-time off-the-air programs.
Still another object of the present invention is to provide a system that provides a growth path to a system permitting IPPV media programs to be previewed without charge for an initial period of time with the option to purchase the media program or cancel the purchase, regardless of whether the program is retrieved from the storage device or obtained from a real time broadcast.
Still another object of the present invention is to achieve all of the foregoing without requiring substantial changes to conditional access module hardware and/or software.
The present invention eliminates concerns regarding the proliferation of unauthorized digital copies of the media programs by use of a strong encryption method. Further, the present invention ensures that the stored material cannot be distributed since such decryption of the material can only be successfully performed by the encrypting IRD.
Referring now to the drawings in which like reference numbers represent corresponding parts throughout:
In the following description, reference is made to the accompanying drawings which form a part hereof, and which show, by way of illustration, several embodiments of the present invention. It is understood that other embodiments may be utilized and structural changes may be made without departing from the scope of the present invention.
The uplink center 104 receives program material and program control information from the control center 102, and using an uplink antenna 106, transmits the program material and program control information to the satellite 108. The satellite 108 receives and processes this information, and transmits the video programs and control information to the IRD 132 at the receiver station 130 via downlink 118. The IRD 132 receives this information using the subscriber antenna 112, to which it is communicatively coupled.
The video distribution system 100 can comprise a plurality of satellites 108 in order to provide wider terrestrial coverage, to provide additional channels, or to provide additional bandwidth per channel. In one embodiment of the invention, each satellite comprises 16 transponders to receive and transmit program material and other control data from the uplink center 104 and provide it to the subscribers 110. However, using data compression and multiplexing techniques the channel capabilities are far greater. For example, two-satellites 108 working together can receive and broadcast over 150 conventional (non-HDTV) audio and video channels via 32 transponders.
While the invention disclosed herein will be described with reference to a satellite based video distribution system 100, the present invention may also be practiced with terrestrial-based transmission of program information, whether by traditional broadcasting means, cable, or other means. Further, the different functions collectively allocated among the control center 102 and the uplink center 104 as described above can be reallocated as desired without departing from the intended scope of the present invention.
Although the foregoing has been described with respect to an embodiment in which the program material delivered to the subscriber is video (and audio) program material such as a movie, the foregoing method can be used to deliver program material comprising purely audio information, or any other kind of data as well.
The video channels are provided by a program source of video material 200A-200C (collectively referred to hereinafter as video source(s) 200). The data from each video program source 200 is provided to an encoder 202A-202C (collectively referred to hereinafter as encoder(s) 202). Each of the encoders accepts a presentation time stamp (PTS) from the controller 216. The PTS is a wrap-around binary time stamp that is used to assure that the video information is properly synchronized with the audio information after encoding and decoding. A PTS time stamp is sent with each I-frame of the MPEG encoded data.
In one embodiment of the present invention, each encoder 202 is a second generation Motion Picture Experts Group (MPEG-2) encoder, but other decoders implementing other coding techniques can be used as well. The data channel can be subjected to a similar compression scheme by an encoder (not shown), but such compression is usually either unnecessary, or performed by computer programs in the computer data source (for example, photographic data is typically compressed into *.TIF files or *.JPG files before transmission). After encoding by the encoders 202, the signals are converted into data packets by a packetizer 204A-204F (collectively referred to hereinafter as packetizer(s) 204) associated with each source 200, 206-210.
The data packets are assembled using a reference from the system clock 214 (SCR), a control word (CW) generated by the conditional access manager 208, and a system channel identifier (SCID) generator 210 that associates each of the data packets that are broadcast to the subscriber with a program channel. This information is transmitted to the packetizers 204 for use in generating the data packets. These data packets are then multiplexed into serial data, encoded, modulated, and transmitted. A special packet known as a control word packet (CWP) which comprises control data including the control word (CW) and other control data used in support of providing conditional access to the program material is also encrypted and transmitted.
Subscribers 110 receive media programs via a subscriber receiver or IRD 132. Using the SCID, the IRD 132 reassembles the packets to regenerate the program material for each of the channels. As shown in
Media programs are encrypted by the encryption module 218 before transmission to assure that they are received and viewed only by authorized subscribers. Each media program is encrypted according to an alphanumeric encryption key referred to hereinafter as a control word (CW). This can be accomplished by a variety of data encryption techniques, including symmetric algorithms such as the data encryption standard (DES) and asymmetric algorithms such as the Rivest-Shamir-Adleman (RSA) algorithm.
To decrypt the media programs, the subscriber's 110 IRD 132 must also have access to the CW. To maintain security, CWs are not transmitted to the IRD 132 plaintext. Instead, CWs are encrypted before transmission to the subscriber's IRD 132. The encrypted CW is transmitted to the subscriber's IRD 132 in a control word (data) packet.
In one embodiment, the data in the CWP, including the CW, is encrypted and decrypted via what is referred to hereinafter as an input/output (I/O) indecipherable algorithm.
An I/O indecipherable algorithm is an algorithm that is applied to an input data stream to produce an output data stream. Although the input data stream uniquely determines the output data stream, the algorithm selected is such that it's characteristics cannot be deciphered from a comparison of even a large number of input and output data streams. The security of this algorithm can be further increased by adding additional functional elements which are non-stationary (that is, they change as a function of time). When such an algorithm is provided with identical input streams, the output stream provided at a given point in time may be different than the output stream provided at another time.
So long as the encryption module 218 and the IRD 132 share the same I/O indecipherable algorithm, the IRD 132 can decode the information in the encrypted CWP to retrieve the CW. Then, using the CW, the IRD 132 can decrypt the media program so that it can be presented to the subscriber 110.
To further discourage piracy, the control data needed to decrypt and assemble data packets into viewable media programs may be time-varying (the validity of the control data in a CWP to decode a particular media program changes with time). This can be implemented in a variety of ways.
For example, since each CWP is associated with a SCID for each media program, the SCID related to each CWP could change over time.
Another way to implement time-varying control data is to associate time stamps with the received data stream and the CWP control data. In this case, successful decoding of the CWP to produce the CW would require the proper relationship between the time stamps for the data stream and the control data in the CWP. This relationship can be defined, for example, by changing the decryption scheme used to generate the CW from the CWP according to the received time stamp for the data stream. In this case, if the time stamp of the received data stream does not match the expected value, the wrong decryption scheme will be selected and the proper CW (to decrypt the program material) will not be produced. If, however, the time stamp of the received data stream matches the expected value, the proper decryption scheme will be selected, and the CWP decryption scheme will yield the proper CW.
The data required to receive and view pay-per-view (PPV) media programs are stored in the CWP and in another data packet known as the purchase information parcel (PIP). Both the CWP and the PIP are broadcast to the subscriber via the video distribution system 100 in real time. As described below, the CWP is used by the IRD 132 to retrieve PPV media programs.
Generally, PPV services can include operator-assisted pay-per-view (OPPV) and impulse pay-per-view (IPPV) services. When requesting OPPV services, the subscriber 110 must decide in advance that they desire access to a particular media program. The subscriber 110 then calls an entity such as the control center 102, and requests access to the media program. When requesting impulse pay-per-view services (IPPV), the subscriber 110, while viewing the program guide, moves the cursor over the viewer channel associated with the desired media program, and selects “enter.” After the decision and rights to purchase a PPV program are confirmed (for example, by checking channel lockouts, rating limits, and purchase limits), a purchase information parcel (PIP) is received and stored in the subscriber's conditional access module 406 (which is described in more detail below) for further use. The conditional access module 406 associates the information in the CWP and the PIP, and uses the PIP in conjunction with the CWP to verify that the subscriber 110 should be provided access to the media program and to decrypt the media program.
The IRD 132 is communicatively coupleable to a conditional access module (CAM) 406. The CAM 406 is typically implemented in a smart card or similar device, which is provided to the subscriber 110 to be inserted into the IRD 132. The CAM 406 interfaces with a conditional access verifier (CAV) 408 which performs at least some of the functions necessary to verify that the subscriber 110 is entitled to access the media programs.
The IRD 132 comprises a tuner 410, a transport and demultiplexing module (TDM) 412, which operates under control of a microcontroller and associated memory 414, a source decoder 416 and communicatively coupled random access memory (RAM) 418, and a user I/O device for accepting subscriber 110 commands and for providing output information to the subscriber.
The tuner 410 receives the data packets from the video distribution system and provides the packets to the TDM 412. Using the SCIDs associated with each media program, the TDM 412 reassembles the data packets according to the channel selected by the subscriber 110, and unencrypts the media programs using the CW key. The TDM 412 can be implemented by a single secure chip, and is communicatively coupled to a microcontroller and memory 414.
Once the media programs are unencrypted, they are provided to the source decoder 416 which decodes the media program data according to MPEG or JPEG standards as appropriate. The decoded media program is then provided to a D/A converter (if necessary) and provided to external interfaces 404 which can include a media program presentation device such as a television, an audio system, a computer, or a media storage device such as a hard drive. The source decoder 416 makes use of communicatively coupled RAM 418 to perform these functions.
The CW key is obtained from the CWP using the CAV 408 and the CAM 406. The TDM 412 provides the CWP to the CAM 406 via the CAV 408. The CAM 406 uses the I/O indecipherable algorithm to generate the CW, which is provided back to the TDM 412. The TDM 412 uses the CW to decrypt the media programs. In most IRDs 132, the CAV 408 and the CAM 406 are capable of decrypting one video/audio/data media program at a time.
As described above, to discourage potential pirates, the control data in the CWP used to decode a particular media program may change with time so that it only produces the proper CW when applied to a media program having the proper time stamp. In this case, the CAM 406 can select and/or control the decryption scheme (e.g. the I/O indecipherable algorithm) according to the time stamp associated with the data stream carrying the media program. If the media program is sufficiently disassociated in time, the improper decryption scheme will be used, and the proper CW to decode the media program will not be produced.
Further details regarding the encryption and decryption of media programs can be found in co-pending and commonly assigned U.S. patent application Ser. No. 09/491,959.
To discourage piracy, the present invention operatively pairs the conditional access module (CAM) 406 and the IRD 132 so that each IRD 132 will only operate with the designated CAM 406 and each CAM 406 will only operate with the designated IRD 132. This is accomplished by encrypting communications between the CAM 406 and the IRD 132 according to a pairing key that is generated from a secret receiver key in the IRD 132.
The IRD 132 includes the transport module 412 and a security module 508. The transport module 412 and the security module 508 can be implemented on an integrated circuit (IC) separate from other circuits in the IRD 132, and sealed to prevent tampering. The transport module 412 and the security module 508 can be implemented in separate ICs or in the same IC.
The security module 508 includes a decryptor 510, which decrypts communications transmitted from the conditional access module 406, and provides the results of these decrypted communications to the transport module 412. The decryptor 510 can also encrypt or otherwise combine content information and copy control information with the family key 518 to produce a copy protection key (CP) as described below. The decryptor 510 can be implemented in separate modules for encrypting and decrypting, if desired.
The security module 508 includes a memory 512 for storing keys and other information. In one embodiment, the memory 512 is tamper-proof in that the contents of the memory 512 cannot be read and presented externally to the security module 508 (e.g. the contents are user-unreadable). This feature prevents compromise of the keys stored in the memory 512. The memory 12 may also be volatile memory.
In one embodiment, the security module 508 places the control words (CW) into a CW cache of the transport module 412 via direct memory access (DMA). It is therefore impossible to output or input the CWs via a system bus. Since the encrypted control word EPK (CW) from that CAM 406 can only be decrypted by the receiver 132 that contains the appropriate receiver key 514, this cryptographically binds (“pairs”) the CW output of the CAM 406 to the security module 508.
Keys that may be stored in the memory 512 include, for example, a pairing key 516, a family key 518, and a receiver key 514. In one embodiment of the invention, the receiver key 514 is provided pre-installed in the security module 508 (and hence, with the IRD 132) when the IRD 132 is provided to the subscribing user. Preferably, the receiver key 514 is user-unreadable, is unique to the IRD 132, and is uniquely associated with the serial number 532.
The decryptor 510 transmits decrypted control words and copy protection (CP) session keys to the transport module 412 where the keys may be temporarily stored for later use. The decrypted control words (CW) are provided to a first transport chip decryptor 524 to allow the media program stream to be decrypted. The resulting decrypted media program stream can be provided to a presentation device (such as a television, monitor, computer, or audio system), a storage device (such as a read/writable CDROM or DVD or a hard drive), or a network for viewing or storage elsewhere.
In one embodiment, the IRD 132 is communicatively coupled to a second IRD 532 (hereinafter alternatively referred to as a “daughter IRD”). The daughter IRD can be used to request media programs that are received or reproduced by the IRD 132, thus allowing media programs to be reproduced at other locations in the home. Preferably, the daughter IRDs 532 do not include long-term storage capacity (e.g. no hard disk), so the daughter IRDs request the storage and retrieval of media programs from the IRD 132. Daughter IRDs 532 can be communicatively coupled to the primary or master IRD 132 via any communication link, including a direct coaxial connection, or via a local area network (LAN) or other digital communication medium.
Returning to the transport module 412 of
One feature of the present invention is that it allows for paring of the conditional access module 406 and the IRD 132, thus preventing any conditional access module 406 to be used with any IRD 132.
The control center 102 can elect to change the pairing key (PK) as desired. This can be scheduled to occur randomly as a security precaution or to revoke a user's rights to use the IRD 132.
Using the decryptor 502 (e.g. by application of the I/O indecipherable algorithm) in the conditional access module 406, the message is decrypted, as shown in block 616. The pairing key 516 is stored in a memory location 534 in the conditional access module memory 504, as shown in block 618. The encrypted pairing key ER(PK) is also provided from the conditional access module 406 to the security module 508, as shown in block 620. Since the message is encrypted according to the receiver key 514, it is not exposed.
The encrypted paring key (ER(PK)) is decrypted in the security module 508 decryptor 510, using the receiver key 514. This is shown in block 622. The recovered pairing key is then stored in the IRD 132 in a secure memory 512. This paring key 516, now stored in both the IRD 132 and the conditional access module 406, is used to encrypt communications between the conditional access module 406 and the receiver 132. All or a subset of such communications can be encrypted, as desired. In one embodiment, all communications that are required to enable the user to view media programs are encrypted.
In the foregoing discussion, the message with the pairing key (PK) and the encrypted paring key ER(PK) was encrypted before transmission to the IRD 132. However, if the additional security is not required, the message need not be encrypted to practice the present invention. Furthermore, the present invention can be beneficially implemented even if the receiver key is not completely unique. For example, the receiver key could be one of 10,000 possible receiver keys. In this case, the possibility of the receiver key matching a particular pairing key (as described below) would be 1:10,000, which may be sufficient to prevent unauthorized use. In this context, substantial uniqueness, instead of absolute uniqueness may be all that is required for sufficient security.
The present invention also provides for operational pairing between a storage device 530 and the IRD 132 and one or more daughter IRDs 532. It also assures that media programs are virtually never stored in the storage device plaintext. The pairing of the storage device 530 and the IRD 132 is accomplished by the use of a family key (FK).
The CP key is then stored in the memory 520 of the transport chip, where it is used to encrypt the media program material that was decrypted by the decryptor 524.
The content identification information (CID) is unique to each media program. In one embodiment, the CID is a simple serial number. This embodiment minimizes the memory requirements to store and retain the CID. In another embodiment, the CID includes information such as the title and one or more of the artists of the media program. The CID may also include the running time of the media program, copyright information, actors, director, or rating information. This information can be entered by the user, or can be obtained from a program guide. Since it is very unlikely that any media program will have the same title as well as the other information, the CID be formed of such information while retaining it's uniqueness.
In one embodiment, the CID does not include sensitive information, and hence, can be stored anywhere in the system. In one embodiment, the CID is stored on the storage device along with the media program. For example, if the storage device is a hard disk drive, the CID could be included in the same file as the media program, stored in the same folder as the media program, or merely associated with the media program via a lookup table. When the a particular stored media program is played back, the CID is read from the hard disk and used to recreate the CP key.
In another embodiment, the CID information includes copy control information (CCI), which can be used to control the circumstances in which the associated media program can be copied or played back. For example, the CCI may indicate that the media program is to be played back only once, rather than played pack an indefinite number of times. The CCI may also indicate when the media program can be played back. This feature is useful in that it allows a media program to be recorded and not played back until such playback rights have been approved by the copyright holder or licensee.
In embodiments wherein the CID information includes CCI as well, it may be beneficial to encrypt the CID information with a convenient key before storing the information in the storage device, or otherwise exposing it to compromise. The CID information can be encrypted, for example, with the family key 518 before being stored on the hard drive.
After encryption by the CP key, the media program material is no longer unprotected (it is encrypted by the family key 518), and it is stored in a storage device 530, or provided across the network to a daughter IRD. Since the daughter IRD has access to the family key, the daughter IRD can decrypt the media program and present it to the user, if desired.
After at least a portion of the encrypted media program is stored to the storage device 530, it can be read from the storage device 530 and presented to the user for viewing. This can be initiated, for example, by providing a user command requesting the playback of the media program. This user command may include an identifier indicating which media program stored on the storage device 530 is of interest. Using this information, the CID/CCI information is obtained from storage (for example, the storage device 530 storing the media program), decrypted (if it was encrypted before being stored), and provided to the decryptor 510 for processing using the family key 518. The result is a CP key analogous to that which was used to encrypt the media program before storing it on the storage device 530. The CP key is then provided from the security module 510 to the transport module 412, where it is stored and used by the decryptor 526 to decrypt the media program being read from the storage device 530. The decrypted media program is then provided to a presentation device 530.
Essentially, this output is identical to that of a real-time off the air broadcast. While the media encryption key (CW) is time invariant (varies with time, and therefore each media encryption key is usable only with certain data packets of the media program), the media encryption keys and media program are both “stale” by the same amount, and therefore, the media encryption key (CW) can be used to decrypt the encrypted media program just as would have been the case if the media program was decrypted and played back in real time off the air. For this reason, PPV billing can be implemented in the CAM 406 without substantial changes. Before decrypting the encrypted media keys EI(CW), the CAM 406 records information required to bill the user for viewing the recorded program, and transmits that billing information to the control center 102 as required.
The encrypted media encryption key EI(CW) is then provided to the CAM 406, where it is decrypted with the I/O indecipherable algorithm and re-encrypted with the pairing key (PK) 516 to produce an re-encrypted media encryption key EPK(CW). The re-encrypted media encryption key is provided to the security module 508, which decrypts the re-encrypted media encryption key EPK(CW) to produce the media encryption key (CW). The media encryption key (CW) is provided to the transport module 412, where it is cached and used to decrypt the encrypted media program. The media program is now plaintext, and can be provided to the media presentation device 530.
Special provision is made for so-called “trick play” features, in which the user wishes to fast forward, rewind, scan forward, scan in reverse, or pause the presentation of the media program. To assure that the media program is not compromised, the present invention does not store any significant portions of the media program plaintext, even when such trick play features are invoked. Instead, the media program is re-encrypted according to the copy protection (CP) key and retrieved and decrypted according to the copy protection key (CP) as well, as shown in
The present invention can also be used to store and retrieve a wide variety of digital media, including music, computer programs, computer data, photographs, as well as video. For example, the present invention can be used to purchase an entire album, or just one song from a particular album.
The data service subscription control words CW(DSS) are then used to decrypt the data stream to produce digital media control word packets (CWP(DM)) and the data object encrypted by the digital media control words (CW(DM)) (essentially, removing the encryption layer related to the digital service subscription control words (DSS(CW))). After this decryption, the remaining data stream is still encrypted according to the digital media control word (CW(DM)).
The data stream is further encrypted according a copy protection (CP) key generated from the family key 518 and the CID. This further encrypted data stream is then stored in the data storage device or provided to the network 530.
The operations shown in
The present invention provides for the purchase and download of data items of lower value without overwhelming the memory of the CAM 406. This is accomplished by storing billing information on the storage device 530.
When the user wishes to view or otherwise use the media program or data object, the copy protection (CP) key is generated from the CID and the family key, and used to decrypt the encrypted media program. When the CID is accessed, information related to the purchase of the media program is stored so the user can be billed for the use or viewing of the media object.
Unlike the embodiment described in
The foregoing description of the preferred embodiment of the invention has been presented for the purposes of illustration and description. It is not intended to be exhaustive or to limit the invention to the precise form disclosed. Many modifications and variations are possible in light of the above teaching. It is intended that the scope of the invention be limited not by this detailed description, but rather by the claims appended hereto. The above specification, examples and data provide a complete description of the manufacture and use of the composition of the invention. Since many embodiments of the invention can be made without departing from the spirit and scope of the invention, the invention resides in the claims hereinafter appended.
| Number | Name | Date | Kind |
|---|---|---|---|
| 3794922 | Osborn et al. | Feb 1974 | A |
| 3885089 | Callais et al. | May 1975 | A |
| 4613901 | Gilhousen et al. | Sep 1986 | A |
| 4633309 | Li et al. | Dec 1986 | A |
| 4675732 | Oleson | Jun 1987 | A |
| 4694490 | Harvey et al. | Sep 1987 | A |
| 4866769 | Karp | Sep 1989 | A |
| 4866787 | Olesen | Sep 1989 | A |
| 5029207 | Gammie | Jul 1991 | A |
| 5033084 | Beecher | Jul 1991 | A |
| 5036461 | Elliott et al. | Jul 1991 | A |
| 5068894 | Hoppe | Nov 1991 | A |
| 5105268 | Yamanouchi et al. | Apr 1992 | A |
| 5132992 | Yurt et al. | Jul 1992 | A |
| 5168353 | Walker et al. | Dec 1992 | A |
| 5172413 | Bradley et al. | Dec 1992 | A |
| 5191410 | McCalley et al. | Mar 1993 | A |
| 5199066 | Logan | Mar 1993 | A |
| 5301245 | Endoh | Apr 1994 | A |
| 5301352 | Nakagawa et al. | Apr 1994 | A |
| 5335277 | Harvey et al. | Aug 1994 | A |
| 5357276 | Banker et al. | Oct 1994 | A |
| 5371551 | Logan et al. | Dec 1994 | A |
| 5386587 | Yuzawa | Jan 1995 | A |
| 5396293 | Shellard | Mar 1995 | A |
| 5421031 | De Bey | May 1995 | A |
| 5438423 | Lynch et al. | Aug 1995 | A |
| 5440336 | Buhro et al. | Aug 1995 | A |
| 5442389 | Blahut et al. | Aug 1995 | A |
| 5485221 | Banker et al. | Jan 1996 | A |
| 5495531 | Smiedt | Feb 1996 | A |
| 5506902 | Kubota | Apr 1996 | A |
| 5557541 | Schulhof et al. | Sep 1996 | A |
| 5559549 | Hendricks et al. | Sep 1996 | A |
| 5565805 | Nakagawa et al. | Oct 1996 | A |
| 5566353 | Cho et al. | Oct 1996 | A |
| 5583937 | Ullrich et al. | Dec 1996 | A |
| 5586264 | Belknap et al. | Dec 1996 | A |
| 5590200 | Nachman et al. | Dec 1996 | A |
| 5592212 | Handelman | Jan 1997 | A |
| 5592551 | Lett et al. | Jan 1997 | A |
| 5592651 | Rackman | Jan 1997 | A |
| 5594491 | Hodge et al. | Jan 1997 | A |
| 5619247 | Russo | Apr 1997 | A |
| 5640453 | Schuchman et al. | Jun 1997 | A |
| 5642418 | Farris et al. | Jun 1997 | A |
| 5663896 | Aucsmith | Sep 1997 | A |
| 5664046 | Abecassis | Sep 1997 | A |
| 5675390 | Schindler et al. | Oct 1997 | A |
| 5677895 | Mankovitz | Oct 1997 | A |
| RE35651 | Bradley et al. | Nov 1997 | E |
| 5684742 | Bublitz et al. | Nov 1997 | A |
| 5701383 | Russo et al. | Dec 1997 | A |
| 5701582 | De Bey | Dec 1997 | A |
| 5710970 | Walters et al. | Jan 1998 | A |
| 5715315 | Handelman | Feb 1998 | A |
| 5715403 | Stefik | Feb 1998 | A |
| 5721829 | Dunn et al. | Feb 1998 | A |
| 5724646 | Ganek et al. | Mar 1998 | A |
| 5729280 | Inoue et al. | Mar 1998 | A |
| 5734853 | Hendricks et al. | Mar 1998 | A |
| 5748732 | Le Berre et al. | May 1998 | A |
| 5761302 | Park | Jun 1998 | A |
| 5764762 | Kazmierczak et al. | Jun 1998 | A |
| 5784095 | Robbins et al. | Jul 1998 | A |
| 5790663 | Lee et al. | Aug 1998 | A |
| 5790783 | Lee et al. | Aug 1998 | A |
| 5793971 | Fujita et al. | Aug 1998 | A |
| 5805699 | Akiyama et al. | Sep 1998 | A |
| 5826165 | Echeita et al. | Oct 1998 | A |
| 5831664 | Wharton et al. | Nov 1998 | A |
| 5845240 | Fielder | Dec 1998 | A |
| 5850218 | LaJoie et al. | Dec 1998 | A |
| 5864747 | Clark et al. | Jan 1999 | A |
| 5867207 | Chaney et al. | Feb 1999 | A |
| 5889941 | Tushie et al. | Mar 1999 | A |
| 5892535 | Allen et al. | Apr 1999 | A |
| 5899582 | DuLac | May 1999 | A |
| 5912969 | Sasamoto et al. | Jun 1999 | A |
| 5914941 | Janky | Jun 1999 | A |
| 5926205 | Krause et al. | Jul 1999 | A |
| 5930215 | Fite et al. | Jul 1999 | A |
| 5933500 | Blatter et al. | Aug 1999 | A |
| 5936660 | Gurantz | Aug 1999 | A |
| 5937067 | Thatcher et al. | Aug 1999 | A |
| 5953418 | Bock et al. | Sep 1999 | A |
| 5966186 | Shigihara et al. | Oct 1999 | A |
| 5973756 | Erlin | Oct 1999 | A |
| 5978649 | Kahn | Nov 1999 | A |
| 5999628 | Chan | Dec 1999 | A |
| 5999629 | Heer et al. | Dec 1999 | A |
| 6005937 | Lee | Dec 1999 | A |
| 6011511 | Chuong et al. | Jan 2000 | A |
| 6025868 | Russo | Feb 2000 | A |
| 6041056 | Bigham et al. | Mar 2000 | A |
| 6055314 | Spies et al. | Apr 2000 | A |
| 6055566 | Kikinis | Apr 2000 | A |
| 6061451 | Muratani et al. | May 2000 | A |
| 6061452 | Suzuki | May 2000 | A |
| 6069647 | Sullivan et al. | May 2000 | A |
| 6072873 | Bewick | Jun 2000 | A |
| 6072982 | Haddad | Jun 2000 | A |
| 6075330 | Terk | Jun 2000 | A |
| 6091883 | Artigalas et al. | Jul 2000 | A |
| 6097441 | Allport | Aug 2000 | A |
| 6105134 | Pinder et al. | Aug 2000 | A |
| 6144400 | Ebisawa | Nov 2000 | A |
| 6148081 | Szymanski et al. | Nov 2000 | A |
| 6154206 | Ludtke | Nov 2000 | A |
| 6157719 | Wasilewski et al. | Dec 2000 | A |
| 6157949 | Cheng et al. | Dec 2000 | A |
| 6160988 | Shroyer | Dec 2000 | A |
| 6169879 | Perlman | Jan 2001 | B1 |
| 6202211 | Williams, Jr. | Mar 2001 | B1 |
| 6229895 | Son et al. | May 2001 | B1 |
| 6240401 | Oren et al. | May 2001 | B1 |
| 6263504 | Ebisawa | Jul 2001 | B1 |
| 6266481 | Lee et al. | Jul 2001 | B1 |
| 6286142 | Ehreth | Sep 2001 | B1 |
| 6288716 | Humpleman et al. | Sep 2001 | B1 |
| 6289455 | Kocher et al. | Sep 2001 | B1 |
| 6298441 | Handelman et al. | Oct 2001 | B1 |
| 6317883 | Marics | Nov 2001 | B2 |
| 6317884 | Eames et al. | Nov 2001 | B1 |
| 6370688 | Hejna, Jr. | Apr 2002 | B1 |
| 6381747 | Wonfor et al. | Apr 2002 | B1 |
| 6398245 | Gruse et al. | Jun 2002 | B1 |
| 6415031 | Colligan et al. | Jul 2002 | B1 |
| 6418424 | Hoffberg et al. | Jul 2002 | B1 |
| 6424947 | Tsuria et al. | Jul 2002 | B1 |
| 6437836 | Huang et al. | Aug 2002 | B1 |
| 6442525 | Silverbrook et al. | Aug 2002 | B1 |
| 6456985 | Ohtsuka | Sep 2002 | B1 |
| 6466671 | Maillard et al. | Oct 2002 | B1 |
| 6466921 | Cordery et al. | Oct 2002 | B1 |
| 6473858 | Shimomura et al. | Oct 2002 | B1 |
| 6476825 | Croy et al. | Nov 2002 | B1 |
| 6480667 | O'Connor | Nov 2002 | B1 |
| 6487663 | Jaisimha et al. | Nov 2002 | B1 |
| 6487722 | Okura et al. | Nov 2002 | B1 |
| 6496980 | Tillman et al. | Dec 2002 | B1 |
| 6502139 | Birk et al. | Dec 2002 | B1 |
| 6510519 | Wasilewski et al. | Jan 2003 | B2 |
| 6516465 | Paskins | Feb 2003 | B1 |
| 6519693 | De Bey | Feb 2003 | B1 |
| 6519772 | Bopardikar | Feb 2003 | B1 |
| 6530085 | Perlman | Mar 2003 | B1 |
| 6539548 | Hendricks et al. | Mar 2003 | B1 |
| 6542870 | Matsumoto | Apr 2003 | B1 |
| 6550011 | Sims, III | Apr 2003 | B1 |
| 6560340 | Akins et al. | May 2003 | B1 |
| 6574609 | Downs et al. | Jun 2003 | B1 |
| 6588673 | Chan et al. | Jul 2003 | B1 |
| 6611812 | Hurtado et al. | Aug 2003 | B2 |
| 6654547 | Maeda et al. | Nov 2003 | B1 |
| 6655580 | Ergo et al. | Dec 2003 | B1 |
| 6668377 | Dunn | Dec 2003 | B1 |
| 6681326 | Son et al. | Jan 2004 | B2 |
| 6697489 | Candelore | Feb 2004 | B1 |
| 6714650 | Maillard et al. | Mar 2004 | B1 |
| 6748080 | Russ et al. | Jun 2004 | B2 |
| 6804357 | Ikonen et al. | Oct 2004 | B1 |
| 6853728 | Kahn et al. | Feb 2005 | B1 |
| 6889208 | Okabe et al. | May 2005 | B1 |
| 6904522 | Benardeau et al. | Jun 2005 | B1 |
| 6912513 | Candelore | Jun 2005 | B1 |
| 6934963 | Reynolds et al. | Aug 2005 | B1 |
| 6961858 | Fransdonk | Nov 2005 | B2 |
| 6985591 | Graunke | Jan 2006 | B2 |
| 6993499 | Gagnon et al. | Jan 2006 | B2 |
| 7035827 | Ezaki | Apr 2006 | B2 |
| 7072865 | Akiyama | Jul 2006 | B2 |
| 7191335 | Maillard | Mar 2007 | B1 |
| 20010001876 | Morgan et al. | May 2001 | A1 |
| 20010046299 | Wasilewski et al. | Nov 2001 | A1 |
| 20020001386 | Akiyama | Jan 2002 | A1 |
| 20020013948 | Aguayo, Jr. et al. | Jan 2002 | A1 |
| 20020023219 | Treffers et al. | Feb 2002 | A1 |
| 20020040475 | Yap et al. | Apr 2002 | A1 |
| 20020048367 | Maillard | Apr 2002 | A1 |
| 20020056112 | Dureau et al. | May 2002 | A1 |
| 20020112243 | Hunter et al. | Aug 2002 | A1 |
| 20020166121 | Rovira | Nov 2002 | A1 |
| 20020170054 | Kudelski et al. | Nov 2002 | A1 |
| 20030005285 | Graunke | Jan 2003 | A1 |
| 20030005429 | Colsey | Jan 2003 | A1 |
| 20030018968 | Avnet | Jan 2003 | A1 |
| 20030040962 | Lewis | Feb 2003 | A1 |
| 20030061477 | Kahn et al. | Mar 2003 | A1 |
| 20030088876 | Mao et al. | May 2003 | A1 |
| 20030105718 | Hurtado et al. | Jun 2003 | A1 |
| 20030110132 | Sako | Jun 2003 | A1 |
| 20030122966 | Markman et al. | Jul 2003 | A1 |
| 20030131349 | Kuczynski-Brown | Jul 2003 | A1 |
| 20030145183 | Muehring | Jul 2003 | A1 |
| 20030156649 | Abrams, Jr. | Aug 2003 | A1 |
| 20030174844 | Candelore | Sep 2003 | A1 |
| 20030177365 | Buhan et al. | Sep 2003 | A1 |
| 20030188164 | Okimoto | Oct 2003 | A1 |
| 20030196204 | Thiagarajan et al. | Oct 2003 | A1 |
| 20030228911 | Dernis et al. | Dec 2003 | A1 |
| 20030229898 | Babu et al. | Dec 2003 | A1 |
| 20030229900 | Reisman | Dec 2003 | A1 |
| 20040003079 | Aiu et al. | Jan 2004 | A1 |
| 20040032950 | Graunke | Feb 2004 | A1 |
| 20040073954 | Bjordammen et al. | Apr 2004 | A1 |
| 20040088558 | Candelore | May 2004 | A1 |
| 20040148634 | Arsenault et al. | Jul 2004 | A1 |
| 20040168071 | Silverbrook | Aug 2004 | A1 |
| 20040190721 | Barrett et al. | Sep 2004 | A1 |
| 20040260798 | Addington et al. | Dec 2004 | A1 |
| 20040261126 | Addington et al. | Dec 2004 | A1 |
| 20050005286 | Koskela et al. | Jan 2005 | A1 |
| 20050039025 | Main et al. | Feb 2005 | A1 |
| 20050050333 | Yeap et al. | Mar 2005 | A1 |
| 20050061884 | Stewart | Mar 2005 | A1 |
| 20050071280 | Irwin et al. | Mar 2005 | A1 |
| 20050084102 | Hollar | Apr 2005 | A1 |
| 20050091681 | Borden et al. | Apr 2005 | A1 |
| 20050107157 | Wachtfogel et al. | May 2005 | A1 |
| 20050108519 | Barton et al. | May 2005 | A1 |
| 20050144468 | Northcutt et al. | Jun 2005 | A1 |
| 20050169468 | Fahrny et al. | Aug 2005 | A1 |
| 20050182931 | Robert et al. | Aug 2005 | A1 |
| 20050183112 | Duval | Aug 2005 | A1 |
| 20050195975 | Kawakita | Sep 2005 | A1 |
| 20050204391 | Hunleth et al. | Sep 2005 | A1 |
| 20050216942 | Barton | Sep 2005 | A1 |
| 20050235361 | Alkove et al. | Oct 2005 | A1 |
| 20050249350 | Kahn et al. | Nov 2005 | A1 |
| 20060168663 | Viljoen et al. | Jul 2006 | A1 |
| 20060179489 | Mas Ribes | Aug 2006 | A1 |
| Number | Date | Country |
|---|---|---|
| 0002703 | Aug 2002 | EA |
| 710017 | May 1996 | EP |
| 0817485 | Jan 1998 | EP |
| 0912052 | Apr 1999 | EP |
| 0 936 812 | Aug 1999 | EP |
| 0 975 165 | Jan 2000 | EP |
| 0 989 557 | Mar 2000 | EP |
| 1122910 | Aug 2001 | EP |
| 1156676 | Nov 2001 | EP |
| 1158790 | Nov 2001 | EP |
| 1304871 | Apr 2003 | EP |
| 1353511 | Oct 2003 | EP |
| 1369152 | Dec 2003 | EP |
| 1418701 | May 2004 | EP |
| 2354392 | Mar 2001 | GB |
| 04175025 | Jun 1992 | JP |
| 05284499 | Oct 1993 | JP |
| 06351023 | Dec 1994 | JP |
| 11136708 | May 1999 | JP |
| 2003-448274 | Feb 2005 | JP |
| 2005-505989 | Feb 2005 | JP |
| WO 9111884 | Aug 1991 | WO |
| WO9211713 | Jul 1992 | WO |
| WO 9856180 | Dec 1998 | WO |
| WO 9918729 | Apr 1999 | WO |
| WO 9943120 | Aug 1999 | WO |
| WO 0013412 | Mar 2000 | WO |
| WO 0014967 | Mar 2000 | WO |
| WO 0019294 | Apr 2000 | WO |
| WO 0117159 | Mar 2001 | WO |
| WO 0122724 | Mar 2001 | WO |
| WO 0137546 | May 2001 | WO |
| WO 0143444 | Jun 2001 | WO |
| WO 0165762 | Sep 2001 | WO |
| WO 0199422 | Dec 2001 | WO |
| WO 0215184 | Feb 2002 | WO |
| WO 02063879 | Aug 2002 | WO |
| WO 02065750 | Aug 2002 | WO |
| WO 03101105 | Dec 2003 | WO |
| WO 2004017637 | Feb 2004 | WO |
| WO 2004049715 | Jun 2004 | WO |
| WO 2004057871 | Jul 2004 | WO |
| WO 2004082286 | Sep 2004 | WO |
| Number | Date | Country | |
|---|---|---|---|
| 20030061477 A1 | Mar 2003 | US |
