1. Field of the Invention
This invention relates to Direct Broadcast Satellite (DBS) television transmission systems, and, more particularly, to a system and method providing for the satellite transmission of encrypted data to be received and displayed by receivers while preventing the unauthorized reception of such data by other receivers.
2. Background Information
To prevent the unauthorized reception of information transmitted from the satellites 16, the video data is additionally encrypted in the uplink site 12, using a standard method such as the Digital Encryption Standard (DES) algorithm. Inside each of the DBS receivers 20, an access card 24 stores codes determining which portions of the video data are to be decrypted, as determined, for example, by the programming that has previously been purchased by the user of the DBS receiver 20.
The signals transmitted to and from the satellites 16 are composed of digital data packets, including video and audio data packet containing the video and audio portions of the television programming, respectively, and additionally including conditional access (CA) packets having information addressed to individual DBS receivers 20. For example, the CA packets contain information stored in the access card 24 within a DBS receiver 20 for use in decrypting scrambled program data.
Each of the DBS receivers 20 includes a tuner/demodulator 26, which isolates a particular modulated signal received by the receiving dish antenna 18, and which demodulates this signal to produce a digital data stream. This digital data stream is provided as an input to a forward error correction (FEC) block 28, which applies an error correction algorithm to the data to correct errors introduced during satellite transmission. The resulting corrected digital data stream is then provided as an input to the transport integrated circuit (IC) 30.
The transport IC 30 has a bidirectional interface to the access card 24, through which the access card 24 receives encrypted keys that are transmitted to the receiving dish antenna 18 within the CA data packets. Within the access card 24, these encrypted keys are decrypted, with the decrypted keys being returned through this interface for storage in a register within the transport IC 30. Within the transport IC 30, these decrypted keys are used to decrypt encrypted (scrambled) program content.
The transport IC 30 provides a digital video signal as an input to a video decoder 32 and a digital audio signal as an input to an audio decoder 34. Within the video decoder 32, the digital video signal is decompressed according to a Motion Picture Experts Group (MPEG) standard, using an MPEG2 video decompression algorithm. Within the audio decoder 34, the digital audio signal is decompressed using an MPEG audio decompression algorithm. The transport IC 30, the video decoder 32 and the audio decoder 34 have access to random access memories 36, 37, and 38, respectively, for storing intermediate results and for buffering. The decompressed digital video signal is provided as an input to an NTSC encoder/DAC 39, which generates an analog video signal encoded according to the NTSC standard. The decompressed digital audio signal is provided as an input to an audio DAC 40, which generates an analog audio signal. These analog signals are provided as inputs to a radio frequency (RF) modulator 42, which combines these signals into a modulated signal generated at a frequency that can be received by a standard television receivers, such as the television set 22 connected to the DBS receiver 20.
Operations within the DBS receiver 20 are also controlled through a microprocessor 44, which receives user inputs from a remote control 46 through an infrared (IR) receiver 48 operating in response to the remote control 46. The microprocessor 44 executes program instructions stored in a read-only memory (ROM) 50.
The DBS receiver 20 additionally includes a modem 52 connected to the microprocessor 44 through a system bus 53 and to the program provided 10 through the public switched telephone network 54. The modem 52 places calls to the program provider 10 to transmit information regarding pay-per-view programs purchased by the user.
The access card 24 is removable and replaceable within the DBS receiver 20. The DBS receiver 20 does not operated within an installed access card 24 installed. Occasionally, the encryption procedures used within the DSS system may be changed, with new versions of the access cards 24 being supplied to all subscribers to the system. The first time an access card 24 is activated within a DBS receiver 20, data describing the serial number of the DBS receiver 20 is recorded with the access card 24, so that the access card 24 cannot be subsequently removed and used within another DBS receiver 20.
Unfortunately, a number of customers of broadcast services, including DBS services, see nothing wrong with subverting security mechanisms of the service provider by physically tampering with a portion of the system within their receiver, such as the access card 24, or by subjecting the receiver to various cryptographic attacks to expose keys or to deceive the receiver concerning the source of messages it receives. Therefore, a problem with the conventional process described above arises from the fact that a number of individuals have learned how to produce counterfeit access cards 24, either by building cards or by modifying existing cards. Such cards can then be used to view channels and programming for which fees have not been paid. What is needed is a method preventing the successful use of counterfeit or unauthorized circuits to decode scrambled video data.
One method to prevent the use of such unauthorized circuits is to change the method in which a broadcast signal is scrambled often enough that it is difficult or impossible for a fixed, invariable decoder to be developed by any unauthorized person to successfully descramble a scrambled broadcast signal over an extended period of time. This method is achieved, for example, as described in U.S. Pat. No. 4,908,834, within a system including television receivers each having a decoder with periodically changed memory modules. The decoder only functions to properly descramble a scrambled broadcast signal when a changeable system-wide code is available in the decoder. The code can either be carried to the memory module, or an internal code unique to the decoder and resident in the decoder can be combined with an external code in the memory module, and also unique to the decoder, to generate the common system-wide system code. Program viewership is written on the removable memory module, which is returned to a central facility for later subscriber billing. Another method for providing a decoder with a security module that can be replaced following a breach of system security is described in U.S. Pat. No. 5,237,610. What is needed is a secure method providing for payment for programming without requiring the expense and inconvenience of changing a module within each receiver.
Another method for preventing the use of counterfeit or unauthorized circuits to decrypt data is to make reverse engineering of a cryptographic unit within a device impractical or extremely difficult. An application of this method is described in U.S. Pat. No. 6,289,455 in the form of a unit for regulating access to digital content including an interface control processor and a specialized cryptographic unit that protects access to a memory. The cryptographic unit adds rights keys allowing access to the content by transforming data received from the control processor, with the results being stored in the protected memory. The cryptographic unit then produces content decryption keys by using stored rights keys to transform other data received from the control processor. Because the control processor does not have the ability to directly access the protected memory, the security can remain effective even if the control processor is compromised. To prevent reverse engineering of the cryptographic transformations, an algorithm generator uses random sources to produce algorithm definitions in machine-readable form. Because the generator itself does not contain any secrets, it can be submitted for open revue.
Another method to prevent the surreptitious use of counterfeit or unauthorized circuits to receive programming is to change a number used in generating cryptographic keys every few seconds, as described in U.S. Pat. No. 6,252,964, which describes the application of a cryptographic system to a broadcast system, which may be wired, such as cable TV, or wireless, including a DBS system. The cryptographic system uses symmetrical key cryptographic techniques, such as the DES algorithm, to encrypt and decrypt program information and public key cryptographic techniques, such as the well-known RSA algorithm, to transmit a copy of a key used in symmetrical key cryptographic techniques from the service provider to the receiver. The key used to encrypt program information, called a Control Word, is generated by a random number generator or by a sequential generator with a randomization algorithm, being frequently regenerated and replaced, as often as every few seconds. The Control Word is encrypted using a DES algorithm for inclusion within an entitlement management message (EMM) to be sent to an individual receiver after encryption using the public key of the individual receiver.
Yet another method to prevent the surreptitious use of counterfeit or unauthorized circuits to receive programming is to use a secure processor and associated secure non-volatile storage to perform encryption and decryption of commands and data, with a private key, control algorithm, and the like being stored in the associated secure storage. Such an arrangement is described in U.S. Pat. No. 5,742,677, with secure data being loaded into the secure, non-volatile storage by multiple service providers and by the user of the receiver. A characteristic of such an arrangement is that a surreptitious attempt to break into the secure processor to obtain the data stored in secure storage causes the data to be lost and the processor to be rendered functionally inactive.
U.S. Pat. No. 6,307,937 describes the use of an adapter card in a computer to provide conditional access by the computer to incoming data streams that the computer is authorized to receive, with the security of the information being maintained by keeping a list of addresses corresponding to data streams that the computer is authorized to receive. After receiving a frame and determining its address, the adapter card determines whether the frame address matches an address maintained in an address table. The adapter card then processes and transmits only those frames of data streams that the computer is authorized to receive.
U.S. Pat. No. 6,411,712 describes a digital broadcast receiver having a first unit for receiving broadcast signals transmitted from a transmitter, a second unit capable of removably coupling to the first unit for applying an operation specific to the second unit to the received signal, an encryptor equipped in the first unit for encrypting the received signal and for providing the encrypted signal to the second unit, and a decryptor equipped in the first unit for decrypting the signal encrypted by the encryptor transferred through the second unit.
A decoder for descrambling encoded satellite transmissions comprises an internal security module and a replaceable security module. The program signal is scrambled with a key and then the key itself is twice encrypted and multiplexed with the scrambled program signal. The key is first encrypted with a first secret serial number (SSNt) which is assigned to a given replaceable security module. The key is then encrypted with a second secret serial number (SSNZ) which is assigned to a given decoder. The decoder performs a first key decryption using the second secret serial number (SSNZ) stored within the decoder. The partially decrypted key is then further decrypted by the replaceable security module using the first secret serial number (SSNt) stored within the replaceable security module. The decoder then descrambles the program using the twicedecrypted key. The replaceable security module can be replaced, allowing the security system to be upgraded or changed following a system breach. Either security module may become the active security module to finally decrypt the seed, selectable by a signal transmitted from the encoder.
Also disclosed is a method for transmitting the encrypted keys and secret serial numbers to a plurality of broadcasters who may in turn multiplex this signal with their own program signals so that any given channel received by a subscriber contains the key and secret serial numbers. Additionally, the decoder may be upgradeable to accept both analog and digital video signals without significant redundant circuitry.
U.S. Pat. No. 4,829,569 describes a subscription television system in which individual decoders are enabled to receive individually addressed messages is disclosed. The composite signal, including video and teletext, also comprises addressed packets, which are detected by decoders and which indicate that a message addressed to a particular subscriber is forthcoming, and system control data. The decoder detects an addressed packet addressed to itself, whereby it is enabled to select the appropriate teletext message and to display the same. In a preferred embodiment, both address packets and teletext are encrypted. The addressed packet is decrypted using a decoderspecific code and a system key transmitted as part of the system control data, while the teletext packet is decrypted using the system key, but cannot be received until the addressed packet has been decrypted.
In accordance with an aspect of the invention, a receiver is provided for receiving program content and for displaying the program content under predetermined conditions, wherein the receiver includes a component identified by a computer readable serial number, data storage, a signal processor, and a first microprocessor. The data storage stores access data determining programming to be decrypted by the receiver, a public cryptographic key, a private cryptographic key for decrypting information encrypted with the public cryptographic key, and a code representing the component identifier. The signal processor decrypts the encrypted program content in accordance with the access data stored within the data storage. The receiver periodically performs a first method comprising reading the computer readable serial number, generating a hash value representing the computer readable serial number, and storing the hash value in the data storage. The receiver additionally performs a second method comprising reading the hash value from the data storage, and transmitting data indicating programming to be decrypted together with the hash value to a program provider. The receiver further performs a third method comprising receiving a secret code from the program provider, decrypting the secret code with the private cryptographic key stored in the data storage, and storing a decrypted form of the secret code as the access data in the data storage.
In accordance with another aspect of the invention, a computer system is provided for controlling access to encrypted programming transmitted to a plurality of receivers from a program provider, The computer system includes input means for receiving data signals from each receiver in the plurality of receivers, output means for transmitting a secret code indicating a portion of the encrypted programming to be displayed by each receiver in the plurality of receivers, data storage, a processor; and a database. The database stores a data record for each receiver in the plurality of receivers, wherein each the data record includes a first data field identifying an address for sending data to the receiver, a second data field for storing a hash value for the receiver, and a third data field for storing a public cryptographic key of the receiver.
The processor of the computer system is programmed to perform a first method including:
In the improved DBS receiver 60, the access cards 24, used in the conventional DBS receiver 20 to store codes determining which portions of the video data are to be decrypted, are eliminated, being replaced by data storage 62 in which such codes are stored. For example, the transport IC 30 operates as a signal processor decrypting program data in response to codes stored within data storage 62, which 62 forms a computer readable medium in which both data and program instructions may be recorded. A portion or all of data storage 62 may be non-volatile. A system microprocessor 64 accesses data and program instructions stored within the data storage 62 and provides signals through a system bus 66 controlling the transport IC 30 so that programs received by the DBS receiver 60 are appropriately decrypted. Preferably, the receiver 60 additionally includes another computer readable medium in the form of a read-only memory 65 storing at least instructions to be executed by the system microprocessor 64 during initialization, with these instructions thus being protected from being overwritten. The microprocessor 64 retains the function of driving the RF modulator 42 to tune the output of the DBS receiver 60 to a channel selected by the remote control 46 through the IR receiver 48. Instructions for programs to be executed within the system microprocessor 64 may also be provided in the form of a computer data signal embodied in a carrier wave transmitted to the modem 52 or transmitted through the satellite 16.
The improved DBS receiver 60 additionally includes a trusted platform module TPM 68, including data storage 69, having a number of program control registers PCRs 70, storing data used to determine that no one has replaced various components within the receiver 60, and a read-only memory (ROM) 70a, such as an EEPROM. The TPM 68 additionally includes a separate microprocessor 71. The PCRs 70 are configured so that data can be written to them only by the microprocessor 71 within the TPM 68, but so that data can be read from them by the system microprocessor 64, as well as by the TPM microprocessor 71. Various components within the receiver 60, such as the TPM 68, the data storage 62, and the microprocessor 64, which are considered to be critical components, have unique serial numbers that can be read by a program executing within the TPM microprocessor 71. The TPM 68 is initialized during the process of manufacturing with a unique public and private key pair that is stored in a key register 72. Additionally, the manufacturing process of the improved DBS receiver 60 processes a certificate against the public key stored in the key register 72 for subsequent use to verify the authenticity of a message from the receiver 60, with the certificate being stored within the data storage 69 of the TPM 68.
The program provider system 10 is connected to a computer system 74 with access to a customer database 76 having a data record 78 for each DBS receiver 60 to which satellite broadcast data is to be sent. These data records 78 each include data within a first data field 80 storing an address by which CA data packets transmitted by the satellite 16 are sent only to the particular DBS receiver 60, a second data field 81 storing hash codes that are used to verify the authenticity of the receiver 60 transmitting data to the computer system 74, a third data field 82 storing the public key the DBS receiver 60 associated with the data record 78, and a fourth data field 84 storing a program key associated with the data record 78. The computer system 74 is also connected to the public switched telephone network 54 to receive data from the receivers 60 for storage within the database 76.
The computer system 74 is of a conventional type including a processor 85, a computer readable medium 86, such as a hard disk drive, on which computer usable instructions are stored for use in the execution of programs, and additionally having a drive 87 for reading data and instructions stored on a removable computer readable medium 88, such as a floppy magnetic disk or an optical disk. Instructions for programs to execute within the computer system 74 may also be provided in the form of a computer data signal embodied in a carrier wave, transmitted, for example, over the public switched telephone network 54.
Inputs to the computer system from a number of receivers 60 are provided through the telephone network 54 and through a conventional interface to the telephone network. In accordance with a preferred version of the invention, codes generated by the computer system 74 are transmitted to individual receivers 60 through an interface to the program provider 10, to be inserted in CA data packets addressed to the receivers and transmitted along with program content by means of the satellite 16. Alternately, codes generated within the computer system 74 may be transmitted to receivers 60 through the telephone network 54.
Each of these receivers 60 has a unique public key that has a conventional cryptographic relationship with its private key, which is stored in the key register 72 of its TPM 68. This relationship provides that a message encrypted with the public key of the receiver 60 can be decrypted using the private key of the receiver 60. The public key may be stored in the key register 72, or in data storage 62.
Preferably, the computer system 74 of the program provider additionally receives data from the system manufacturer 89 on a periodic basis, with this data being used to determine the integrity of components within receivers 60 trying to communicate with the computer system 74. Such periodic communications may occur over the public switched telephone network 54. For example, the system manufacturer 89 may provide possible values for expected hash codes to be generated using the serial numbers of critical components within receivers 60, with such values being stored in a data structure 90 accessible by the computer system 74 for comparison with hash codes supplied by receivers 60 attempting to register with the computer system 74.
Preferably, the hash values stored by the system manufacturer 89 in step 93a during the manufacture of a number of receivers 60 are periodically transmitted to the computer system 74 of the program provider 10 for storage within the data structure 90. This process provides the program provider 10 with a knowledge of the hash codes to expect from a new receiver 60 attempting to register with the program provider's computer system 74. While a single system manufacturer 89 and a single program provider 10 are shown in
After the registration process is started in step 100, the DBS receiver 60 establishes a connection with the program provider 10 over the public switched telephone network 54, using the modem 52. It is understood that another bidirectional communication channel can alternately be used in place of the telephone network 54. Then, in step 104, transaction data is exchanged between the receiver 60 and the program provider 10. For example, this exchange of transaction data may include payment for program services using a credit card, in a manner well known to those skilled in the art of electronic commerce, with security being established through the use of a Secure Sockets Layer.
Next, in step 106, the receiver transmits its digital certificate, which has been stored within the TPM during the process of manufacturing the receiver 60, as explained above in reference to
Then, in step 107, the program provider 10 compares the hash values transmitted by the receiver 60 in step 106 with the expected hash values previously received from the system manufacturer 89 and stored within the data structure 90. If a match is found, as determined in step 108, it is known that the receiver 60 has a valid configuration, in which none of the critical components has been changed following the manufacturing process, so the program provider continues the registration process, proceeding to step 109 to generate a secret key for transmission to the receiver 60. This secret key, generated in response to the transmission data exchanged in step 104, provides an indication of the programming that can be decrypted following program purchases.
Next, in step 110, the program provider 10 writes the address of the receiver 60 to the data record 78 of the customer database 76, corresponding to the receiver 60 in the first data field 80, additionally writes the hash codes supplied by the receiver to the second data field 81, additionally writes the public key of the receiver 60 to the third data field 82, and additionally writes the encrypted secret key generated in step 110 to the fourth data field 84. Next, in step 112, the program provider 10 encrypts the secret key with the public key of the receiver 60, which has been received as part of the digital certificated transmitted in step 106. The address stored in data field 80 is used as a receiver identifier to locate the data record corresponding to a particular receiver 60. Next, in step 114, the program provider transmits the encrypted secret key to the receiver 60. Finally, in step 116, the connection of over the telephone network 54 is ended.
If it is determined in step 108 that the hash values transmitted by the receiver do not match any of the expected values stored in data structure 90, it is known that the receiver 10 has been modified since its manufacture by changing one or more of the critical components or that some sort of an error has occurred. Therefore, the program provider 10 does not continue with the registration process, but instead sends an error message in step 117. In step 118, this error message is displayed by the receiver 60. If the receiver 60 is operationally connected to a television receiver 22 at this time, a textual message is displayed; otherwise an indication may be provided, for example, by lighting a red light. After transmitting the error message, the program provider 10 ends the telephone call in step 116.
A version of the subscription process of
Preferably, the certificate is transmitted from the receiver 60 and evaluated by the program provider 10 with each transmission originated by the receiver. The certificate includes the public key of the receiver 60. If this is not done, the publlic key may be transmitted only when the receiver is initially registered, with the public key stored in the data structure 82 being subsequently used to encrypt the secret key.
The process of
For each individual receiver 60, the verification process is started within the computer system 74 in step 120. Then, in step 122, the address of the receiver 70 and the encrypted secret key associated with the receiver 60 are read from the first field 80 and the third field 84, respectively, of the data record 78 within the database 76 corresponding to the receiver 70. Then, in step 124, the encrypted secret code is transmitted in a CA packet by means of the satellite 16, addressed to the particular receiver 60. Then, this portion of the verification process ends in step 126.
After starting in step 132, the verification subroutine 130 proceeds to step 134 to wait to receive a CA data packet transmitted from the satellite 16 and addressed particularly to the receiver 60. When such a data packet is received, the subroutine proceeds to step 136 to decrypt the data packet with the private key of the receiver 60, which is read from the key register 72 of the TPM 68. This decryption, which should be successful because the secret key has been encrypted using the public key of the receiver 60, results in the generation of the secret key to include a first portion for decrypting programming and a second portion including the hash codes stored in the PCRs 70 of the TPM 68.
While the transmission of signals over a single satellite 16 has been shown and described, this description is considered to represent the normal condition of communications over a number of orbiting satellites used sequentially.
While the invention has been described in its preferred versions or embodiments with some degree of particularity, it is understood that this description has only been given by way of example, and that numerous changes may be made without departing from the spirit and scope of the invention.