[go: up one dir, main page]

HK1233405B - Condition access method, related device and system - Google Patents

Condition access method, related device and system Download PDF

Info

Publication number
HK1233405B
HK1233405B HK17106876.7A HK17106876A HK1233405B HK 1233405 B HK1233405 B HK 1233405B HK 17106876 A HK17106876 A HK 17106876A HK 1233405 B HK1233405 B HK 1233405B
Authority
HK
Hong Kong
Prior art keywords
root key
key
terminal device
new
key generation
Prior art date
Application number
HK17106876.7A
Other languages
Chinese (zh)
Other versions
HK1233405A1 (en
HK1233405A (en
Inventor
党茂昌
Original Assignee
优酷文化科技(北京)有限公司
Filing date
Publication date
Application filed by 优酷文化科技(北京)有限公司 filed Critical 优酷文化科技(北京)有限公司
Publication of HK1233405A1 publication Critical patent/HK1233405A1/en
Publication of HK1233405A publication Critical patent/HK1233405A/en
Publication of HK1233405B publication Critical patent/HK1233405B/en

Links

Description

一种条件接收方法及相关设备与系统Conditional access method and related equipment and system

技术领域Technical Field

本申请涉及数字电视广播技术领域,尤其涉及一种CA(Conational Access,条件接收)方法及相关设备与系统。The present application relates to the field of digital television broadcasting technology, and in particular to a CA (Conventional Access) method and related equipment and systems.

背景技术Background Art

CA系统是指用来控制用户(Subscriber)对广播服务或者节目进行接收的系统,即用户只能收看经过授权的广播服务或者节目。CA系统是实现个性化服务的关键,其基本目的是在电视台电视系统中对用户进行授权控制及授权管理,从而实现数据广播系统的有偿服务。A CA system is a system used to control subscribers' access to broadcast services or programs, ensuring that only authorized broadcast services or programs are available. The CA system is key to delivering personalized services. Its primary purpose is to control and manage user authorization within a television station's system, thereby enabling paid data broadcasting services.

具体地,如图1所示,其为现有CA系统的基本原理架构示意图。由图1可知,CA系统采用三层加密方法:在电视节目发送方采用Ks(解扰密钥)对节目加扰,而传递Ks时通过Kw(工作密钥)加密传递,而Kw的传递又通过Kd(根密钥)加密;在电视节目接收方,用户通过Kd解密出Kw,然后采用Kw解密出Ks,最后通过Ks把电视节目解扰为清流。Specifically, Figure 1 illustrates the basic architecture of existing CA systems. As shown in Figure 1, a CA system employs a three-layer encryption approach: The TV program sender uses Ks (descrambling key) to scramble the program, which is then encrypted with Kw (working key), which is then encrypted with Kd (root key). At the TV program receiver, the user decrypts Kw using Kd, then uses Kw to decrypt Ks, and finally uses Ks to descramble the TV program back to a clean stream.

其中,Ks、Kw可通过ECM(Entitlement Control Message,授权控制信息)、EMM(Entitlement Management Message,授权管理信息)和电视节目流一起发送给用户(具体地,Ks可通过ECM发送给用户,Kw可通过EMM发送给用户),而Kd不在空中传递。具体地,Kd仅能通过保密方式授权分发、通过秘密方式更新。如,在终端设备处,Kd一般由终端设备制造方通过设定的专用设备写入相应的IC卡内,不能动态更换。Ks and Kw can be sent to users via ECM (Entitlement Control Message) and EMM (Entitlement Management Message) along with the TV program stream (specifically, Ks can be sent via ECM, and Kw can be sent via EMM). However, Kd is not transmitted over the air. Specifically, Kd can only be distributed and updated in a confidential manner. For example, at the terminal device, Kd is typically written to the corresponding IC card by the terminal device manufacturer using dedicated equipment and cannot be dynamically changed.

也就是说,目前的CA系统采用的是固定设备密钥的方式,设备密钥(如,Kd)保存在IC卡中、无法动态更换,当设备密钥(如,Kd)被窃取或被破解时,只能通过更换IC卡或更换终端设备的方式来完成设备密钥(如,Kd)的更新,从而导致用户在利用相应的CA系统进行节目接收时,需要花费较长的时间来进行设备密钥的更新以实现节目的解扰,降低了CA系统的接收效率,使得用户体验较差。That is to say, the current CA system adopts a fixed device key method. The device key (such as Kd) is stored in the IC card and cannot be dynamically changed. When the device key (such as Kd) is stolen or cracked, the device key (such as Kd) can only be updated by replacing the IC card or replacing the terminal device. As a result, when the user uses the corresponding CA system to receive programs, it takes a long time to update the device key to achieve program descrambling, which reduces the reception efficiency of the CA system and makes the user experience poor.

发明内容Summary of the Invention

本申请实施例提供了一种条件接收方法及相关设备与系统,用以解决现有CA系统所存在的接收效率较低等的问题。The embodiments of the present application provide a conditional access method and related devices and systems to solve the problems of low reception efficiency in existing CA systems.

具体地,本申请实施例提供了一种条件接收方法,包括:Specifically, an embodiment of the present application provides a conditional access method, including:

终端设备接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;The terminal device receives the key update information including the set root key generation parameters sent by the television transmission center;

根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;Generate a new root key according to the root key generation parameter and the set key generation algorithm stored locally on the terminal device;

根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流。A descrambling key is obtained according to the new root key, and the program stream sent by the television transmission center is descrambled according to the obtained descrambling key to obtain a clear program stream.

相应地,本申请实施例还提供了一种终端设备,包括:Accordingly, an embodiment of the present application further provides a terminal device, including:

接收模块,用于接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;A receiving module, configured to receive key update information including set root key generation parameters issued by a television transmission center;

更新模块,用于根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;An update module, configured to generate a new root key based on the root key generation parameters and a set key generation algorithm stored locally on the terminal device;

解扰模块,用于根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流。The descrambling module is used to obtain a descrambling key according to the new root key, and descramble the program stream sent by the television transmission center according to the obtained descrambling key to obtain a clear program stream.

进一步地,本申请实施例还提供了一种条件接收系统,包括电视发射中心以及终端设备,其中:Furthermore, an embodiment of the present application also provides a conditional access system, including a television transmission center and a terminal device, wherein:

所述终端设备,用于接收所述电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;并根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;以及,根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流。The terminal device is used to receive key update information containing set root key generation parameters issued by the television transmission center; generate a new root key based on the root key generation parameters and a set key generation algorithm locally stored in the terminal device; and obtain a descrambling key based on the new root key, and descramble the program stream issued by the television transmission center based on the obtained descrambling key to obtain a clear program stream.

本申请有益效果如下:The beneficial effects of this application are as follows:

本申请实施例提供了一种条件接收方法及相关设备与系统,终端设备可根据电视发射中心下发的密钥更新信息中的根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥,并根据所述新的根密钥获取解扰密钥,以及,根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流,从而解决了用户在利用现有CA系统进行节目接收时,需要花费较长的时间来进行设备密钥的更新以实现节目的解扰的问题,提高了CA系统的接收效率,提高了用户的应用体验。An embodiment of the present application provides a conditional reception method and related devices and systems, wherein a terminal device can generate a new root key based on the root key generation parameters in the key update information issued by the television transmission center and the set key generation algorithm locally stored in the terminal device, and obtain a descrambling key based on the new root key, and descramble the program stream issued by the television transmission center based on the obtained descrambling key to obtain a clear program stream, thereby solving the problem that when users use the existing CA system to receive programs, it takes a long time to update the device key to achieve program descrambling, thereby improving the reception efficiency of the CA system and enhancing the user's application experience.

附图说明BRIEF DESCRIPTION OF THE DRAWINGS

为了更清楚地说明本申请实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简要介绍,显而易见地,下面描述中的附图仅仅是本申请的一些实施例,对于本领域的普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present application, the following briefly introduces the drawings required for use in the description of the embodiments. Obviously, the drawings described below are only some embodiments of the present application. For ordinary technicians in this field, other drawings can be obtained based on these drawings without any creative work.

图1所示为现有CA系统的基本原理架构示意图;FIG1 shows a schematic diagram of the basic principle architecture of an existing CA system;

图2所示为本申请实施例一中所述的条件接收方法的流程示意图;FIG2 is a flow chart showing the conditional access method described in Example 1 of the present application;

图3所示为本申请实施例二中所述的终端设备的一种可能的结构示意图;FIG3 is a schematic diagram showing a possible structure of the terminal device described in the second embodiment of the present application;

图4所示为本申请实施例三中所述的条件接收系统的一种可能的结构示意图。FIG4 is a schematic diagram showing a possible structure of the conditional access system described in the third embodiment of the present application.

具体实施方式DETAILED DESCRIPTION

为了使本申请的目的、技术方案和优点更加清楚,下面将结合附图对本申请作进一步地详细描述,显然,所描述的实施例仅仅是本申请一部分实施例,而不是全部的实施例。基于本申请中的实施例,本领域普通技术人员在没有做出创造性劳动前提下所获得的所有其它实施例,都属于本申请保护的范围。To make the objectives, technical solutions, and advantages of this application more clear, this application will be further described in detail below with reference to the accompanying drawings. Obviously, the embodiments described are only some of the embodiments of this application, not all of them. Based on the embodiments in this application, all other embodiments obtained by ordinary technicians in this field without making any creative efforts are within the scope of protection of this application.

实施例一:Example 1:

本申请实施例一提供了一种条件接收方法,如图2所示,其为本申请实施例一中所述条件接收方法的流程示意图,所述条件接收方法可包括以下步骤:The first embodiment of the present application provides a conditional access method. As shown in FIG2 , which is a flow chart of the conditional access method in the first embodiment of the present application, the conditional access method may include the following steps:

步骤201:终端设备接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息。Step 201: The terminal device receives key update information including set root key generation parameters sent by the television transmission center.

可选地,所述终端设备可通过以下方式接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息:Optionally, the terminal device may receive the key update information including the set root key generation parameters issued by the television transmission center in the following manner:

接收所述电视发射中心下发的EMM信息;Receiving EMM information sent by the television transmission center;

利用所述终端设备的原始设备标识从所述EMM信息中查找到与所述终端设备自身相关的信息,并基于所述终端设备的原始根密钥对查找到的与所述终端设备自身相关的信息进行解密,得到包含有设定的根密钥生成参数的密钥更新信息。The original device identification of the terminal device is used to find information related to the terminal device itself from the EMM information, and the information related to the terminal device itself is decrypted based on the original root key of the terminal device to obtain key update information containing the set root key generation parameters.

也就是说,所述密钥更新信息通常是所述电视发射中心通过EMM下发给所述终端设备的,本申请实施例对此不作赘述。That is to say, the key update information is usually sent by the television transmission center to the terminal device through EMM, and this embodiment of the application will not be described in detail.

进一步地,所述根密钥生成参数(即Kd生成参数,可标识为Kr)通常是安全服务器在确定需对设备密钥进行更新时(如确定授权发放给终端设备的Kd等设备密钥被窃取或被破解时),经由密钥管理中心下发给电视发射中心、进而由电视发射中心下发至所述终端设备的。Furthermore, the root key generation parameter (i.e., Kd generation parameter, which can be identified as Kr) is usually sent by the security server to the television transmission center via the key management center when it determines that the device key needs to be updated (such as when it is determined that the device key such as Kd authorized to be issued to the terminal device has been stolen or cracked), and then sent by the television transmission center to the terminal device.

可选地,所述根密钥生成参数在安全服务器、密钥管理中心、电视发射中心以及终端设备之间的传递过程可如下所述:Optionally, the process of transmitting the root key generation parameter between the security server, the key management center, the television transmission center and the terminal device can be as follows:

安全服务器在确定需对设备密钥进行更新时,基于设定的密钥生成算法以及设定的根密钥生成参数生成新的根密钥,并将包含所述根密钥生成参数以及所述新的根密钥的第一密钥更新信息通过设定的安全传递工具发送给密钥管理中心;When the security server determines that the device key needs to be updated, it generates a new root key based on the set key generation algorithm and the set root key generation parameters, and sends the first key update information including the root key generation parameters and the new root key to the key management center through the set secure transmission tool;

密钥管理中心在接收到所述第一密钥更新信息后,根据所述第一密钥更新信息更新密钥数据库,并将包含所述根密钥生成参数、但不包含所述新的根密钥的第二密钥更新信息发送至电视发射中心;After receiving the first key update information, the key management center updates the key database according to the first key update information, and sends the second key update information including the root key generation parameter but not including the new root key to the television transmission center;

电视发射中心在接收到所述第二密钥更新信息后,将包含所述根密钥生成参数、但不包含所述新的根密钥的第三密钥更新信息下发至对应的终端设备,以将所述根密钥生成参数下发给对应的终端设备。After receiving the second key update information, the television transmission center sends the third key update information including the root key generation parameters but not the new root key to the corresponding terminal device, so as to send the root key generation parameters to the corresponding terminal device.

也就是说,在根密钥生成参数的传递过程中,安全服务器可采用设定的安全传递工具点对点向密钥管理中心传递相应的新的根密钥及根密钥生成参数,即,密钥传递受限在安全服务器和密钥管理中心之间,以防密钥和密钥生成参数的泄露,提高设备密钥的安全性;其中,所述设定的安全传递工具通常可以是密钥管理中心提供的,本申请实施例对此不作赘述。That is to say, during the transmission process of the root key generation parameters, the security server can use the set security transmission tool to point-to-point transmit the corresponding new root key and root key generation parameters to the key management center, that is, the key transmission is limited to between the security server and the key management center to prevent the leakage of the key and key generation parameters, thereby improving the security of the device key; wherein, the set security transmission tool can generally be provided by the key management center, and this embodiment of the present application will not elaborate on this.

进一步地,需要说明的是,安全服务器在进行新的根密钥的生成时,所依据的所述设定的密钥生成算法具体可以是由相应的设备制造方预先设置在所述安全服务器内的私有保密算法(即该密钥生成算法运行在有安全防范的安全计算机上),通过该密钥生成算法,可根据特定的根密钥生成参数(即Kd生成参数,可标识为Kr)生成一个新的Kd。这样,Kd生成参数可以在空中传递,即使被第三方截获,由于没有相应的密钥生成算法,也无法生成对应的Kd,保证了设备密钥的安全性。Furthermore, it should be noted that when the security server generates a new root key, the key generation algorithm it uses can specifically be a proprietary algorithm pre-installed within the security server by the device manufacturer (i.e., this key generation algorithm runs on a secure computer with security measures). This key generation algorithm can generate a new Kd based on specific root key generation parameters (i.e., Kd generation parameters, denoted as Kr). This Kd generation parameter can be transmitted over the air, and even if intercepted by a third party, the corresponding Kd cannot be generated due to the lack of the corresponding key generation algorithm, thus ensuring the security of the device key.

另外,需要说明的是,安全服务器在进行新的根密钥的生成时,所依据的所述设定的根密钥生成参数(即Kd生成参数)通常为一M位(bit)的随机数(所述M为任意正整数),且,该Kd生成参数通常需满足以下条件:根据该Kd生成参数能够唯一确定的生成对应Kd,包括基于历史世代的Kd生成参数唯一生成对应世代的Kd。In addition, it should be noted that when the security server generates a new root key, the set root key generation parameter (i.e., Kd generation parameter) is usually an M-bit random number (M is any positive integer), and the Kd generation parameter usually needs to meet the following conditions: the corresponding Kd can be uniquely generated based on the Kd generation parameter, including the unique generation of the Kd of the corresponding generation based on the Kd generation parameter of the historical generation.

可选地,在本申请所述实施例中,以Kd生成参数为一32位的随机数为例,安全服务器具体可通过以下方式来基于设定的密钥生成算法以及设定的根密钥生成参数生成新的根密钥:Optionally, in the embodiment described in the present application, taking the Kd generation parameter as a 32-bit random number as an example, the security server may generate a new root key based on the set key generation algorithm and the set root key generation parameters in the following manner:

按照设定的移位算法,对该32位的随机数进行移位处理,得到Y个新的32位的随机数;例如,可将该32位的随机数循环左移8位,得到3个新的32位的随机数;The 32-bit random number is shifted according to a set shift algorithm to obtain Y new 32-bit random numbers; for example, the 32-bit random number can be cyclically shifted left by 8 bits to obtain three new 32-bit random numbers;

将得到的Y个新的32位的随机数与初始的32位的随机数进行组合,得到(Y+1)*32位的随机数;例如,合并上述步骤所得到的4个32位的随机数,得到128位(16Byte)的随机数;Combine the obtained Y new 32-bit random numbers with the initial 32-bit random number to obtain a (Y+1)*32-bit random number; for example, combine the four 32-bit random numbers obtained in the above steps to obtain a 128-bit (16-byte) random number;

基于设定的矩阵算法,对所述(Y+1)*32位的随机数进行变换处理,得到一新的(Y+1)*32位的随机数,并将得到的所述新的(Y+1)*32位的随机数作为生成的新的根密钥;Based on a set matrix algorithm, the (Y+1)*32-bit random number is transformed to obtain a new (Y+1)*32-bit random number, and the obtained new (Y+1)*32-bit random number is used as a new root key;

其中,所述Y为正整数,且,与设定的密钥生成算法相类似,所述设定的矩阵算法具体可以是由相应的设备制造方预先设置在所述安全服务器内的私有保密算法,本申请实施例对此不作赘述。Wherein, Y is a positive integer, and, similar to the set key generation algorithm, the set matrix algorithm can specifically be a private confidentiality algorithm pre-set by the corresponding device manufacturer in the security server, which is not elaborated in the embodiment of the present application.

步骤202:终端设备根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥。Step 202: The terminal device generates a new root key according to the root key generation parameters and a set key generation algorithm stored locally on the terminal device.

其中,所述终端设备在根据获取到的根密钥生成参数进行新的根密钥的生成时,所依据的所述设定的密钥生成算法与安全服务器进行新的根密钥的生成时所使用的密钥生成算法为同一算法,且通常可以是由与所述终端设备相关的设备制造方预先设置在所述终端设备的安全存储区域(Trust zone)内的私有保密算法,即,密钥生成算法并不在空中传递,而是内嵌在终端设备内,以保证设备密钥的安全性。Among them, when the terminal device generates a new root key according to the acquired root key generation parameters, the set key generation algorithm is based on the same algorithm as the key generation algorithm used by the security server to generate a new root key, and can usually be a private confidentiality algorithm pre-set by the device manufacturer related to the terminal device in the secure storage area (Trust zone) of the terminal device, that is, the key generation algorithm is not transmitted in the air, but is embedded in the terminal device to ensure the security of the device key.

可选地,在本申请所述实施例中,与安全服务器生成新的根密钥的过程类似,以Kd生成参数为一32位的随机数为例,终端设备具体可通过以下方式来生成新的根密钥:Optionally, in the embodiment described in the present application, similar to the process of generating a new root key by the security server, taking the Kd generation parameter as a 32-bit random number as an example, the terminal device can specifically generate a new root key in the following manner:

按照设定的移位算法,对该32位的随机数进行移位处理,得到Y个新的32位的随机数;例如,可将该32位的随机数循环左移8位,得到3个新的32位的随机数;The 32-bit random number is shifted according to a set shift algorithm to obtain Y new 32-bit random numbers; for example, the 32-bit random number can be cyclically shifted left by 8 bits to obtain three new 32-bit random numbers;

将得到的Y个新的32位的随机数与初始的32位的随机数进行组合,得到(Y+1)*32位的随机数;例如,合并上述步骤所得到的4个32位的随机数,得到128位(16Byte)的随机数;Combine the obtained Y new 32-bit random numbers with the initial 32-bit random number to obtain a (Y+1)*32-bit random number; for example, combine the four 32-bit random numbers obtained in the above steps to obtain a 128-bit (16-byte) random number;

基于设定的矩阵算法,对所述(Y+1)*32位的随机数进行变换处理,得到一新的(Y+1)*32位的随机数,并将得到的所述新的(Y+1)*32位的随机数作为生成的新的根密钥;Based on a set matrix algorithm, the (Y+1)*32-bit random number is transformed to obtain a new (Y+1)*32-bit random number, and the obtained new (Y+1)*32-bit random number is used as a new root key;

其中,所述Y为正整数;且,与设定的密钥生成算法相类似,所述设定的矩阵算法具体可以是由相应的设备制造方预先设置在所述终端设备内的私有保密算法,本申请实施例对此不作赘述。Wherein, Y is a positive integer; and, similar to the set key generation algorithm, the set matrix algorithm can specifically be a private confidentiality algorithm pre-set in the terminal device by the corresponding device manufacturer, which is not elaborated in the embodiment of the present application.

步骤203:终端设备根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流。Step 203: The terminal device obtains a descrambling key according to the new root key, and descrambles the program stream sent by the television transmission center according to the obtained descrambling key to obtain a clear program stream.

需要说明的是,由于Kd更新后,与其存在相应对应关系的Kw(工作密钥)也需要进行更新,即,密钥管理中心在接收到安全服务器发送的更新后的Kd后,还需要使用该更新后的Kd生成相应的新的Kw(即更新后的Kw),并将该新的Kw经由电视发射中心发送给终端设备(具体地,电视发射中心可将利用该更新后的Kd进行加密所得到的加密后的新的Kw携带在密钥更新信息中发送给终端设备),因而,相应地,根据所述新的根密钥获取解扰密钥,可包括:It should be noted that, since Kd is updated, the Kw (working key) corresponding thereto also needs to be updated. That is, after receiving the updated Kd sent by the security server, the key management center needs to use the updated Kd to generate a corresponding new Kw (i.e., the updated Kw), and send the new Kw to the terminal device via the television transmission center (specifically, the television transmission center may carry the encrypted new Kw obtained by encrypting the updated Kd in the key update information and send it to the terminal device). Therefore, correspondingly, obtaining the descrambling key based on the new root key may include:

根据所述新的根密钥对已加密的更新后的工作密钥进行解密,得到更新后的工作密钥;Decrypting the encrypted updated working key according to the new root key to obtain the updated working key;

根据所述更新后的工作密钥对所述电视发射中心下发的ECM中携带的已加密的解扰密钥进行解密,得到解扰密钥。The encrypted descrambling key carried in the ECM sent by the television transmission center is decrypted according to the updated working key to obtain the descrambling key.

也就是说,在本申请所述实施例中,终端设备可根据电视发射中心下发的密钥更新信息中的根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥,并根据所述新的根密钥获取解扰密钥,以及,根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流,从而解决了用户在利用现有CA系统进行节目接收时,需要花费较长的时间来进行设备密钥的更新以实现节目的解扰的问题,提高了CA系统的接收效率,提高了用户的应用体验。That is to say, in the embodiment described in the present application, the terminal device can generate a new root key based on the root key generation parameters in the key update information issued by the television transmission center and the set key generation algorithm locally stored in the terminal device, and obtain the descrambling key based on the new root key, and descramble the program stream issued by the television transmission center based on the obtained descrambling key to obtain a clear program stream, thereby solving the problem that when users use the existing CA system to receive programs, it takes a long time to update the device key to achieve program descrambling, thereby improving the receiving efficiency of the CA system and improving the user's application experience.

进一步地,需要说明的是,由于安全服务器在基于设定的密钥生成算法以及设定的根密钥生成参数生成新的根密钥之后,还可根据所述新的根密钥的历史顺序生成新的根密钥世代号(即更新后的世代号),并将相应终端设备的原始设备标识(原始设备ID)的低N位替换为所述新的根密钥世代号,形成新的设备标识(即更新后的设备标识,其中,所述N为正整数且其取值通常不小于根密钥世代号所占位数),以及,将所述新的根密钥世代号经由密钥管理中心下发给电视发射中心,由电视发射中心将所述新的根密钥世代号携带在密钥更新信息中下发至对应的终端设备;因而,在本申请所述实施例中,终端设备在接收到电视发射中心下发的密钥更新信息之后,所述方法还可包括以下步骤:Furthermore, it should be noted that, after the security server generates a new root key based on the set key generation algorithm and the set root key generation parameters, it can also generate a new root key generation number (i.e., an updated generation number) according to the historical sequence of the new root key, and replace the lower N bits of the original device identification (original device ID) of the corresponding terminal device with the new root key generation number to form a new device identification (i.e., an updated device identification, where N is a positive integer and its value is generally not less than the number of bits occupied by the root key generation number), and send the new root key generation number to the television transmission center via the key management center, and the television transmission center carries the new root key generation number in the key update information and sends it to the corresponding terminal device; therefore, in the embodiment of the present application, after the terminal device receives the key update information sent by the television transmission center, the method can also include the following steps:

根据所述密钥更新信息中携带的新的根密钥世代号将所述终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识;其中,所述N为正整数且其取值不小于根密钥世代号所占位数。According to the new root key generation number carried in the key update information, the lower N bits of the original device identification of the terminal device are replaced with the new root key generation number to form a new device identification; wherein, N is a positive integer and its value is not less than the number of bits occupied by the root key generation number.

其中,需要说明的是,由于根密钥世代号的取值范围通常可为0~255,即通常可占8个位数(bit),因而,将终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识,可具体实施为:将终端设备的原始设备标识的低8位替换为所述新的根密钥世代号,形成新的设备标识。另外,需要说明的是,所述终端设备的设备标识(包括原始设备标识以及更新后的设备标识)通常可占64个位数(bit),本申请实施例对此不作赘述。Among them, it should be noted that, since the value range of the root key generation number can usually be 0 to 255, that is, it can usually occupy 8 digits (bits), therefore, replacing the lower N bits of the original device identification of the terminal device with the new root key generation number to form a new device identification can be specifically implemented as follows: replacing the lower 8 bits of the original device identification of the terminal device with the new root key generation number to form a new device identification. In addition, it should be noted that the device identification of the terminal device (including the original device identification and the updated device identification) can usually occupy 64 digits (bits), which will not be elaborated in the embodiments of this application.

相应地,由上述内容可知,所述根密钥生成参数在安全服务器、密钥管理中心、电视发射中心以及终端设备之间的传递过程具体还可如下所述:Accordingly, from the above content, it can be seen that the process of transmitting the root key generation parameters between the security server, the key management center, the television transmission center and the terminal device can also be specifically described as follows:

安全服务器在确定需对设备密钥进行更新时,基于设定的密钥生成算法以及设定的根密钥生成参数生成新的根密钥,并根据所述新的根密钥的历史顺序生成新的根密钥世代号,并将相应终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识,以及,将包含所述根密钥生成参数、所述新的根密钥、所述新的根密钥世代号的第一密钥更新信息通过设定的安全传递工具发送给密钥管理中心;When the security server determines that the device key needs to be updated, it generates a new root key based on the set key generation algorithm and the set root key generation parameters, generates a new root key generation number according to the historical sequence of the new root key, replaces the lower N bits of the original device identifier of the corresponding terminal device with the new root key generation number to form a new device identifier, and sends a first key update message including the root key generation parameters, the new root key, and the new root key generation number to the key management center via a set secure transmission tool;

密钥管理中心在接收到所述第一密钥更新信息后,根据所述第一密钥更新信息更新密钥数据库,并将包含所述根密钥生成参数以及所述新的根密钥世代号、但不包含所述新的根密钥的第二密钥更新信息发送至电视发射中心;After receiving the first key update information, the key management center updates the key database according to the first key update information, and sends the second key update information including the root key generation parameter and the new root key generation number but not including the new root key to the television transmission center;

电视发射中心在接收到所述第二密钥更新信息后,将包含所述根密钥生成参数以及所述新的根密钥世代号、但不包含所述新的根密钥的第三密钥更新信息下发至对应的终端设备。After receiving the second key update information, the television transmission center sends the third key update information including the root key generation parameter and the new root key generation number but not including the new root key to the corresponding terminal device.

例如,以一具体实例为例,根密钥生成参数在安全服务器、密钥管理中心、电视发射中心以及终端设备之间的传递过程具体可如下所述:For example, taking a specific example, the process of transmitting the root key generation parameters between the security server, the key management center, the television transmission center, and the terminal device can be described as follows:

由于Kd一旦授权发放给用户,用户需要保证其不被泄漏,若Kd不慎泄漏或被黑客盗取(该情况通常无法避免),则相应的设备制造方可通过相应的安全服务器生成新的Kd更新信息,包括:{更新后的世代号、Kr(根密钥生成参数)、更新后的根密钥Kd、更新后的设备ID},并将上述Kd更新信息通过安全传递工具传送到密钥管理中心(即RMP中心);RMP中心将上述Kd更新信息录入统一管理的数据库,并把去除Kd后的所有信息,包括{更新后的世代号、Kr、更新后的设备ID}发给各电视发射中心,由电视发射中心将接收到的相应信息录入统一管理的数据库,并经过设定时长(如两天)后,通过EMM信息将{更新后的世代号、Kr}下发给用户的终端设备;终端设备在接收到相应信息后,可通过原始设备ID和原始Kd解析并解密EMM信息,得到相应的Kd更新信息{更新后的世代号、Kr},并根据得到的Kd更新信息{更新后的世代号、Kr},启动终端侧的Kd更新流程,实现设备密钥的更新。Once Kd is authorized and issued to the user, the user needs to ensure that it is not leaked. If Kd is accidentally leaked or stolen by hackers (this situation is usually unavoidable), the corresponding device manufacturer can generate new Kd update information through the corresponding security server, including: {updated generation number, Kr (root key generation parameter), updated root key Kd, updated device ID}, and transmit the above Kd update information to the key management center (i.e. RMP center) through a secure transmission tool; the RMP center enters the above Kd update information into a unified management database, and removes all information after Kd, including {updated generation number, Kr (root key generation parameter), updated root key Kd, updated device ID}. The television transmission center enters the corresponding information received into a unified management database, and after a set period of time (such as two days), sends the {updated generation number, Kr} to the user's terminal device through EMM information; after receiving the corresponding information, the terminal device can parse and decrypt the EMM information through the original device ID and the original Kd to obtain the corresponding Kd update information {updated generation number, Kr}, and start the Kd update process on the terminal side according to the obtained Kd update information {updated generation number, Kr} to realize the update of the device key.

需要说明的是,由于Kd更新后,与其存在相应对应关系的Kw也需要进行更新,因而,密钥管理中心在接收到安全服务器发送的更新后的Kd后,还需要使用该Kd生成相应的新的Kw(即更新后的Kw),并把该新的Kw和更新后的世代号、Kr、更新后的设备ID等一起发送给电视发射中心,由电视发射中心将该新的Kw和Kr一起发送给终端设备,使得终端设备在根据相应的Kr生成更新后的Kd后,使用该更新后的Kd获取该新的Kw,并进而根据该新的Kw获取解扰密钥Ks,并根据获取到的Ks实现节目的解扰。It should be noted that after Kd is updated, Kw, which has a corresponding relationship with it, also needs to be updated. Therefore, after receiving the updated Kd sent by the security server, the key management center needs to use the Kd to generate a corresponding new Kw (i.e., the updated Kw), and send the new Kw together with the updated generation number, Kr, updated device ID, etc. to the TV transmission center, which sends the new Kw and Kr together to the terminal device, so that after the terminal device generates the updated Kd according to the corresponding Kr, it uses the updated Kd to obtain the new Kw, and then obtains the descrambling key Ks based on the new Kw, and realizes the descrambling of the program based on the obtained Ks.

进一步地,在本申请所述实施例中,终端设备在生成相应的新的根密钥以及新的设备标识后,所述方法还可包括:Furthermore, in the embodiment of the present application, after the terminal device generates the corresponding new root key and new device identifier, the method may further include:

将生成的新的根密钥以及新的设备标识保存在所述终端设备的安全存储区域内。即,可采用安全存储区域加密存储设备密钥,保证设备密钥的安全性。The generated new root key and the new device identification are stored in the secure storage area of the terminal device. That is, the device key can be encrypted and stored in the secure storage area to ensure the security of the device key.

可选地,将生成的新的根密钥以及新的设备标识保存在所述终端设备的安全存储区域内,可包括:Optionally, storing the generated new root key and the new device identifier in a secure storage area of the terminal device may include:

以所述新的根密钥世代号作为索引,在所述终端设备的安全存储区域内生成一新的用于保存所述新的根密钥以及所述新的设备标识的文件;以及,将所述新的根密钥以及所述新的设备标识保存在该新的文件之内,并在将所述新的根密钥以及所述新的设备标识保存在所述新的文件之内后,将所述新的文件的属性设置为仅读(read only)(即所有更新均为追加更新,不能替换)。Using the new root key generation number as an index, a new file for storing the new root key and the new device identification is generated in the secure storage area of the terminal device; and the new root key and the new device identification are stored in the new file. After the new root key and the new device identification are stored in the new file, the attribute of the new file is set to read only (i.e., all updates are additional updates and cannot be replaced).

也就是说,在本申请所述实施例中,可通过创建以世代号为索引的SFS(安全文件系统)文件,完成对Kd的追加更新,即,可采用更新世代号管理所有的设备密钥更新。相应地,还可通过查找以世代号为索引的SFS文件,完成对Kd的检索,本申请实施例对此均不作赘述。That is, in the embodiment described in this application, additional updates to Kd can be accomplished by creating an SFS (Secure File System) file indexed by a generation number. That is, all device key updates can be managed using an updated generation number. Correspondingly, Kd can also be retrieved by searching an SFS file indexed by a generation number. This embodiment of the application will not be described in detail.

进一步地,需要说明的是,由于根密钥世代号与根密钥存在相应的一一对应关系,因而,所述终端设备在接收到电视发射中心下发的密钥更新信息后,可首先判断该密钥更新信息中的根密钥世代号是否存储在终端设备侧,若判断结果为是,则可直接根据该根密钥世代号,从终端设备侧获取与该根密钥世代号相对应的根密钥,而无需再次执行根据所述密钥更新信息中的根密钥生成参数以及本地保存的设定的密钥生成算法生成新的根密钥的操作,以降低系统的处理时延以及处理压力,本申请实施例对此也不作赘述。Furthermore, it should be noted that since there is a one-to-one correspondence between the root key generation number and the root key, after the terminal device receives the key update information issued by the television transmission center, it can first determine whether the root key generation number in the key update information is stored on the terminal device side. If the judgment result is yes, the root key corresponding to the root key generation number can be directly obtained from the terminal device side based on the root key generation number, without the need to re-execute the operation of generating a new root key based on the root key generation parameters in the key update information and the locally saved set key generation algorithm, so as to reduce the system's processing delay and processing pressure, and the embodiments of the present application will not elaborate on this.

本申请实施例一提供了一种条件接收方法,终端设备可根据电视发射中心下发的密钥更新信息中的根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥,并根据所述新的根密钥获取解扰密钥,以及,根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流,从而解决了用户在利用现有CA系统进行节目接收时,需要花费较长的时间来进行设备密钥的更新以实现节目的解扰的问题,提高了CA系统的接收效率,提高了用户的应用体验。Embodiment 1 of the present application provides a conditional reception method, in which a terminal device can generate a new root key based on the root key generation parameters in the key update information issued by the television transmission center and the set key generation algorithm locally stored in the terminal device, and obtain a descrambling key based on the new root key, and descramble the program stream issued by the television transmission center based on the obtained descrambling key to obtain a clear program stream, thereby solving the problem that when users use the existing CA system to receive programs, it takes a long time to update the device key to achieve program descrambling, thereby improving the reception efficiency of the CA system and improving the user's application experience.

实施例二:Example 2:

基于同一发明构思,本申请实施例二提供了一种终端设备,该终端设备的具体实施可参见上述方法实施例一中的相关描述,重复之处不再赘述,如图3所示,该终端设备主要可包括:Based on the same inventive concept, the second embodiment of the present application provides a terminal device. The specific implementation of the terminal device can refer to the relevant description in the first embodiment of the method above, and the repeated parts are not repeated here. As shown in FIG3 , the terminal device mainly includes:

接收模块31,可用于接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;The receiving module 31 is configured to receive key update information including set root key generation parameters sent by the television transmission center;

更新模块32,可用于根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;其中,所述设定的密钥生成算法是由与所述终端设备相关的设备制造方预先设置在所述终端设备的安全存储区域内的私有保密算法;所述根密钥生成参数为一M位的随机数,所述M为任意正整数,且,根据所述根密钥生成参数能够唯一确定的生成对应根密钥;An update module 32 is configured to generate a new root key based on the root key generation parameter and a set key generation algorithm stored locally on the terminal device; wherein the set key generation algorithm is a private confidentiality algorithm pre-set by a device manufacturer associated with the terminal device in a secure storage area of the terminal device; the root key generation parameter is an M-bit random number, where M is any positive integer, and the corresponding root key can be uniquely generated based on the root key generation parameter;

解扰模块33,可用于根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流。The descrambling module 33 may be configured to obtain a descrambling key according to the new root key, and descramble the program stream sent by the television transmission center according to the obtained descrambling key to obtain a clear program stream.

进一步地,所述密钥更新信息中还可携带有已加密的更新后的工作密钥;Furthermore, the key update information may also carry an encrypted updated working key;

所述解扰模块33,具体可用于根据所述新的根密钥对所述已加密的更新后的工作密钥进行解密,得到更新后的工作密钥,并根据所述更新后的工作密钥对所述电视发射中心下发的ECM中携带的已加密的解扰密钥进行解密,得到解扰密钥。The descrambling module 33 can be specifically configured to decrypt the encrypted updated working key according to the new root key to obtain the updated working key, and decrypt the encrypted descrambling key carried in the ECM issued by the television transmission center according to the updated working key to obtain the descrambling key.

进一步地,所述密钥更新信息中还可携带有新的根密钥世代号;Furthermore, the key update information may also carry a new root key generation number;

所述更新模块32,还可用于根据所述新的根密钥世代号将所述终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识;其中,所述N为正整数且其取值不小于根密钥世代号所占位数。The update module 32 can also be used to replace the lower N bits of the original device identification of the terminal device with the new root key generation number according to the new root key generation number to form a new device identification; wherein, N is a positive integer and its value is not less than the number of bits occupied by the root key generation number.

进一步地,所述终端设备还可包括存储模块34:Furthermore, the terminal device may further include a storage module 34:

所述存储模块34,可用于将生成的新的根密钥以及新的设备标识保存在所述终端设备的安全存储区域内。The storage module 34 may be configured to store the generated new root key and the new device identification in a secure storage area of the terminal device.

可选地,所述存储模块34具体可用于以所述新的根密钥世代号作为索引,在所述终端设备的安全存储区域内生成一新的用于保存所述新的根密钥以及所述新的设备标识的文件;以及,将所述新的根密钥以及所述新的设备标识保存在所述文件之内,并在将所述新的根密钥以及所述新的设备标识保存在所述文件之内后,将所述文件的属性设置为仅读。Optionally, the storage module 34 can be specifically used to generate a new file for storing the new root key and the new device identification in the secure storage area of the terminal device using the new root key generation number as an index; and, save the new root key and the new device identification in the file, and after saving the new root key and the new device identification in the file, set the file attribute to read-only.

另外,需要说明的是,所述存储模块34还可用于存储所述终端设备的原始设备标识以及原始根密钥等参数;且,具体地,可以所述终端设备的原始世代号为索引,存储所述终端设备的原始设备标识以及原始根密钥等参数,本申请实施例对此不作赘述。In addition, it should be noted that the storage module 34 can also be used to store parameters such as the original device identification and original root key of the terminal device; and, specifically, the original generation number of the terminal device can be used as an index to store the original device identification and original root key of the terminal device and other parameters, which will not be elaborated in the embodiments of the present application.

进一步地,需要说明的是,由于包含有设定的根密钥生成参数的密钥更新信息通常是电视发射中心通过EMM信息发送给所述终端设备的,因而,所述接收模块31具体可用于接收所述电视发射中心下发的携带有所述密钥更新信息的EMM信息,并利用所述终端设备的原始设备标识从所述EMM信息中查找到与自身相关的信息,以及,基于所述终端设备的原始根密钥对查找到的与自身相关的信息进行解密,得到包含有设定的根密钥生成参数的密钥更新信息。Furthermore, it should be noted that since the key update information containing the set root key generation parameters is usually sent to the terminal device by the television transmission center through EMM information, the receiving module 31 can be specifically used to receive the EMM information carrying the key update information issued by the television transmission center, and use the original device identification of the terminal device to find information related to itself from the EMM information, and decrypt the information related to itself found based on the original root key of the terminal device to obtain the key update information containing the set root key generation parameters.

另外,需要说明的是,所述接收模块31还可用于接收电视发射中心下发的ECM,以及接收电视发射中心下发的节目流等,本申请实施例对此不作赘述。In addition, it should be noted that the receiving module 31 can also be used to receive ECMs and program streams sent by the television transmission center, which will not be described in detail in this embodiment of the present application.

基于同一发明构思,本申请实施例二还提供了一种条件接收系统,该条件接收系统的具体实施可参见上述方法实施例一中的相关描述,重复之处不再赘述,如图4所示,该条件接收系统主要可包括电视发射中心41以及终端设备42,其中:Based on the same inventive concept, the second embodiment of the present application further provides a conditional access system. The specific implementation of the conditional access system can refer to the relevant description in the first embodiment of the method above, and the repeated parts will not be repeated. As shown in FIG4 , the conditional access system mainly includes a television transmission center 41 and a terminal device 42, wherein:

所述电视发射中心41,可用于下发包含有设定的根密钥生成参数的密钥更新信息给所述终端设备42;The television transmission center 41 may be configured to send key update information including set root key generation parameters to the terminal device 42;

所述终端设备42,可用于接收所述电视发射中心41下发的包含有设定的根密钥生成参数的密钥更新信息;并根据所述根密钥生成参数以及所述终端设备42本地保存的设定的密钥生成算法生成新的根密钥;以及,根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心41下发的节目流进行解扰,得到节目清流。The terminal device 42 can be used to receive key update information containing set root key generation parameters issued by the television transmission center 41; and generate a new root key based on the root key generation parameters and the set key generation algorithm locally stored in the terminal device 42; and obtain a descrambling key based on the new root key, and descramble the program stream issued by the television transmission center 41 based on the obtained descrambling key to obtain a clear program stream.

进一步地,需要说明的是,所述条件接收系统中除了包括电视发射中心41以及终端设备42之外,还可包括安全服务器43、密钥管理中心44等设备,其中:所述安全服务器43可用于在确定需对设备密钥进行更新时,基于设定的密钥生成算法以及设定的根密钥生成参数生成新的根密钥,并将所述根密钥生成参数下发给所述密钥管理中心44;所述密钥管理中心44可用于将所述安全服务器43下发的根密钥生成参数下发给电视发射中心41,本申请实施例对此不作赘述。Furthermore, it should be noted that, in addition to the television transmission center 41 and the terminal device 42, the conditional access system may also include a security server 43, a key management center 44 and other devices, wherein: the security server 43 can be used to generate a new root key based on the set key generation algorithm and the set root key generation parameters when it is determined that the device key needs to be updated, and send the root key generation parameters to the key management center 44; the key management center 44 can be used to send the root key generation parameters sent by the security server 43 to the television transmission center 41, which is not elaborated in the embodiments of the present application.

本领域技术人员应明白,本申请的实施例可提供为方法、装置(设备)、或计算机程序产品。因此,本申请可采用完全硬件实施例、完全软件实施例、或结合软件和硬件方面的实施例的形式。而且,本申请可采用在一个或多个其中包含有计算机可用程序代码的计算机可用存储介质(包括但不限于磁盘存储器、CD-ROM、光学存储器等)上实施的计算机程序产品的形式。Those skilled in the art will appreciate that the embodiments of the present application may be provided as methods, devices (equipment), or computer program products. Therefore, the present application may adopt the form of a complete hardware embodiment, a complete software embodiment, or an embodiment combining software and hardware. Furthermore, the present application may adopt the form of a computer program product implemented on one or more computer-usable storage media (including but not limited to magnetic disk storage, CD-ROM, optical storage, etc.) containing computer-usable program code.

本申请是参照根据本申请实施例的方法、装置(设备)和计算机程序产品的流程图和/或方框图来描述的。应理解可由计算机程序指令实现流程图和/或方框图中的每一流程和/或方框、以及流程图和/或方框图中的流程和/或方框的结合。可提供这些计算机程序指令到通用计算机、专用计算机、嵌入式处理机或其他可编程数据处理设备的处理器以产生一个机器,使得通过计算机或其他可编程数据处理设备的处理器执行的指令产生用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的装置。The present application is described with reference to the flowcharts and/or block diagrams of the methods, devices (equipment) and computer program products according to the embodiments of the present application. It should be understood that each process and/or box in the flowchart and/or block diagram, as well as the combination of the processes and/or boxes in the flowchart and/or block diagram, can be implemented by computer program instructions. These computer program instructions can be provided to a processor of a general-purpose computer, a special-purpose computer, an embedded processor or other programmable data processing device to produce a machine, so that the instructions executed by the processor of the computer or other programmable data processing device produce a device for implementing the function specified in one process or multiple processes in the flowchart and/or one box or multiple boxes in the block diagram.

这些计算机程序指令也可存储在能引导计算机或其他可编程数据处理设备以特定方式工作的计算机可读存储器中,使得存储在该计算机可读存储器中的指令产生包括指令装置的制造品,该指令装置实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能。These computer program instructions may also be stored in a computer-readable memory that can direct a computer or other programmable data processing device to operate in a specific manner, so that the instructions stored in the computer-readable memory produce a product including an instruction device that implements the functions specified in one or more processes in the flowchart and/or one or more boxes in the block diagram.

这些计算机程序指令也可装载到计算机或其他可编程数据处理设备上,使得在计算机或其他可编程设备上执行一系列操作步骤以产生计算机实现的处理,从而在计算机或其他可编程设备上执行的指令提供用于实现在流程图一个流程或多个流程和/或方框图一个方框或多个方框中指定的功能的步骤。These computer program instructions can also be loaded onto a computer or other programmable data processing device so that a series of operating steps are executed on the computer or other programmable device to produce a computer-implemented process, so that the instructions executed on the computer or other programmable device provide steps for implementing the functions specified in one or more processes in the flowchart and/or one or more boxes in the block diagram.

尽管已描述了本申请的优选实施例,但本领域内的技术人员一旦得知了基本创造性概念,则可对这些实施例作出另外的变更和修改。所以,所附权利要求意欲解释为包括优选实施例以及落入本申请范围的所有变更和修改。Although the preferred embodiments of the present application have been described, those skilled in the art may make additional changes and modifications to these embodiments once they have learned the basic creative concept. Therefore, the appended claims are intended to be interpreted as including the preferred embodiments and all changes and modifications that fall within the scope of the present application.

显然,本领域的技术人员可以对本申请进行各种改动和变型而不脱离本申请的精神和范围。这样,倘若本申请的这些修改和变型属于本申请权利要求及其等同技术的范围之内,则本申请也意图包含这些改动和变型在内。Obviously, those skilled in the art may make various changes and modifications to this application without departing from the spirit and scope of this application. Thus, if these modifications and variations of this application fall within the scope of the claims of this application and their equivalents, this application is intended to include these modifications and variations.

Claims (11)

1.一种条件接收方法,其特征在于,包括:1. A conditional access method, comprising: 终端设备接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;The terminal device receives the key update information including the set root key generation parameters sent by the television transmission center; 根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;Generate a new root key according to the root key generation parameter and the set key generation algorithm stored locally on the terminal device; 根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流;Obtaining a descrambling key according to the new root key, and descrambling the program stream sent by the television transmission center according to the obtained descrambling key to obtain a clear program stream; 所述密钥更新信息是所述电视发射中心通过授权管理信息EMM下发给所述终端设备的;The key update information is sent by the television transmission center to the terminal device through the authorization management message EMM; 利用所述终端设备的原始设备标识从所述授权管理信息EMM中查找到与所述终端设备自身相关的信息;Using the original device identifier of the terminal device, searching for information related to the terminal device itself from the authorization management information EMM; 通过所述终端设备的原始根密钥对查找到的与所述终端设备自身相关的信息进行解密,得到包含有设定的根密钥生成参数的密钥更新信息;Decrypting the found information related to the terminal device itself using the original root key of the terminal device to obtain key update information containing the set root key generation parameters; 所述根密钥生成参数为一M位的随机数,所述M为任意正整数;且,根据所述根密钥生成参数能够唯一确定的生成对应根密钥;The root key generation parameter is an M-bit random number, where M is any positive integer; and the corresponding root key can be uniquely generated according to the root key generation parameter; 所述密钥更新信息中还携带有新的根密钥世代号;根据所述新的根密钥世代号将所述终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识;其中,所述N为正整数且其取值不小于根密钥世代号所占位数。The key update information also carries a new root key generation number; according to the new root key generation number, the lower N bits of the original device identification of the terminal device are replaced with the new root key generation number to form a new device identification; wherein, N is a positive integer and its value is not less than the number of bits occupied by the root key generation number. 2.如权利要求1所述的方法,其特征在于,所述密钥更新信息中还携带有已加密的更新后的工作密钥;则根据所述新的根密钥获取解扰密钥,包括:2. The method according to claim 1, wherein the key update information further carries an encrypted updated working key; obtaining a descrambling key based on the new root key comprises: 根据所述新的根密钥对所述已加密的更新后的工作密钥进行解密,得到更新后的工作密钥;Decrypting the encrypted updated working key according to the new root key to obtain an updated working key; 根据所述更新后的工作密钥对所述电视发射中心下发的授权控制信息ECM中携带的已加密的解扰密钥进行解密,得到解扰密钥。The encrypted descrambling key carried in the entitlement control message ECM sent by the television transmission center is decrypted according to the updated working key to obtain the descrambling key. 3.如权利要求1所述的方法,其特征在于,所述方法还包括:3. The method according to claim 1, further comprising: 将生成的新的根密钥以及新的设备标识保存在所述终端设备的安全存储区域内。The generated new root key and new device identification are stored in the secure storage area of the terminal device. 4.如权利要求3所述的方法,其特征在于,将生成的新的根密钥以及新的设备标识保存在所述终端设备的安全存储区域内,包括:4. The method according to claim 3, wherein storing the generated new root key and new device identification in a secure storage area of the terminal device comprises: 以所述新的根密钥世代号作为索引,在所述终端设备的安全存储区域内生成一新的用于保存所述新的根密钥以及所述新的设备标识的文件;以及,将所述新的根密钥以及所述新的设备标识保存在所述文件之内,并在将所述新的根密钥以及所述新的设备标识保存在所述文件之内后,将所述文件的属性设置为仅读。Using the new root key generation number as an index, a new file for storing the new root key and the new device identification is generated in the secure storage area of the terminal device; and the new root key and the new device identification are stored in the file. After the new root key and the new device identification are stored in the file, the attribute of the file is set to read-only. 5.如权利要求1所述的方法,其特征在于,所述设定的密钥生成算法是由与所述终端设备相关的设备制造方预先设置在所述终端设备的安全存储区域内的私有保密算法。5. The method according to claim 1, wherein the set key generation algorithm is a private confidentiality algorithm pre-set by a device manufacturer related to the terminal device in a secure storage area of the terminal device. 6.一种终端设备,其特征在于,包括:6. A terminal device, comprising: 接收模块,用于接收电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;利用所述终端设备的原始设备标识从电视发射中心下发的授权管理信息EMM中查找到与所述终端设备自身相关的信息;根据所述终端设备的原始根密钥对查找到的与所述终端设备自身相关的信息进行解密,得到包含有设定的根密钥生成参数的密钥更新信息;所述根密钥生成参数为一M位的随机数,所述M为任意正整数;且,根据所述根密钥生成参数能够唯一确定的生成对应根密钥;A receiving module, configured to receive key update information including set root key generation parameters issued by a television transmission center; use the original device identifier of the terminal device to retrieve information related to the terminal device from the authorization management information (EMM) issued by the television transmission center; decrypt the retrieved information related to the terminal device using the original root key of the terminal device to obtain key update information including the set root key generation parameters; the root key generation parameters are an M-bit random number, where M is an arbitrary positive integer; and a corresponding root key can be uniquely generated based on the root key generation parameters; 更新模块,用于根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;所述密钥更新信息中还携带有新的根密钥世代号;所述更新模块,还用于根据所述新的根密钥世代号将所述终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识;其中,所述N为正整数且其取值不小于根密钥世代号所占位数;an update module, configured to generate a new root key based on the root key generation parameters and a set key generation algorithm locally stored on the terminal device; the key update information also carries a new root key generation number; the update module is further configured to replace the lower N bits of the original device identifier of the terminal device with the new root key generation number based on the new root key generation number to form a new device identifier; wherein N is a positive integer and its value is not less than the number of bits occupied by the root key generation number; 解扰模块,用于根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流。The descrambling module is used to obtain a descrambling key according to the new root key, and descramble the program stream sent by the television transmission center according to the obtained descrambling key to obtain a clear program stream. 7.如权利要求6所述的终端设备,其特征在于,所述密钥更新信息中还携带有已加密的更新后的工作密钥;7. The terminal device according to claim 6, wherein the key update information also carries an encrypted updated working key; 所述解扰模块,具体用于根据所述新的根密钥对所述已加密的更新后的工作密钥进行解密,得到更新后的工作密钥,并根据所述更新后的工作密钥对所述电视发射中心下发的授权控制信息ECM中携带的已加密的解扰密钥进行解密,得到解扰密钥。The descrambling module is specifically configured to decrypt the encrypted updated working key according to the new root key to obtain the updated working key, and decrypt the encrypted descrambling key carried in the authorization control information ECM issued by the television transmission center according to the updated working key to obtain the descrambling key. 8.如权利要求6所述的终端设备,其特征在于,所述终端设备还包括存储模块:8. The terminal device according to claim 6, further comprising a storage module: 所述存储模块,用于将生成的新的根密钥以及新的设备标识保存在所述终端设备的安全存储区域内。The storage module is used to store the generated new root key and new device identification in the secure storage area of the terminal device. 9.如权利要求8所述的终端设备,其特征在于,9. The terminal device according to claim 8, wherein: 所述存储模块,具体用于以所述新的根密钥世代号作为索引,在所述终端设备的安全存储区域内生成一新的用于保存所述新的根密钥以及所述新的设备标识的文件;以及,将所述新的根密钥以及所述新的设备标识保存在所述文件之内,并在将所述新的根密钥以及所述新的设备标识保存在所述文件之内后,将所述文件的属性设置为仅读。The storage module is specifically used to generate a new file for storing the new root key and the new device identification in the secure storage area of the terminal device using the new root key generation number as an index; and to store the new root key and the new device identification in the file, and after saving the new root key and the new device identification in the file, set the attribute of the file to read-only. 10.如权利要求6所述的终端设备,其特征在于,所述设定的密钥生成算法是由与所述终端设备相关的设备制造方预先设置在所述终端设备的安全存储区域内的私有保密算法。10. The terminal device according to claim 6, wherein the set key generation algorithm is a private confidentiality algorithm pre-set by a device manufacturer related to the terminal device in a secure storage area of the terminal device. 11.一种条件接收系统,其特征在于,包括电视发射中心以及终端设备,其中:11. A conditional access system, comprising a television transmission center and terminal equipment, wherein: 所述终端设备,用于接收所述电视发射中心下发的包含有设定的根密钥生成参数的密钥更新信息;利用所述终端设备的原始设备标识从电视发射中心下发的授权管理信息EMM中查找到与所述终端设备自身相关的信息;根据所述终端设备的原始根密钥对查找到的与所述终端设备自身相关的信息进行解密,得到包含有设定的根密钥生成参数的密钥更新信息;并根据所述根密钥生成参数以及所述终端设备本地保存的设定的密钥生成算法生成新的根密钥;以及,根据所述新的根密钥获取解扰密钥,并根据获取到的解扰密钥对所述电视发射中心下发的节目流进行解扰,得到节目清流;所述根密钥生成参数为一M位的随机数,所述M为任意正整数;且,根据所述根密钥生成参数能够唯一确定的生成对应根密钥;所述密钥更新信息中还携带有新的根密钥世代号;根据所述新的根密钥世代号将所述终端设备的原始设备标识的低N位替换为所述新的根密钥世代号,形成新的设备标识;其中,所述N为正整数且其取值不小于根密钥世代号所占位数。The terminal device is used to receive key update information containing set root key generation parameters issued by the television transmission center; use the original device identifier of the terminal device to find information related to the terminal device itself from the authorization management information EMM issued by the television transmission center; decrypt the found information related to the terminal device itself according to the original root key of the terminal device to obtain key update information containing set root key generation parameters; and generate a new root key according to the root key generation parameters and the set key generation algorithm locally stored in the terminal device; and according to the new The root key is used to obtain a descrambling key, and the program stream sent by the television transmission center is descrambled according to the obtained descrambling key to obtain a clear program stream; the root key generation parameter is an M-bit random number, and M is an arbitrary positive integer; and the corresponding root key can be uniquely determined to be generated according to the root key generation parameter; the key update information also carries a new root key generation number; according to the new root key generation number, the lower N bits of the original device identification of the terminal device are replaced with the new root key generation number to form a new device identification; wherein, N is a positive integer and its value is not less than the number of bits occupied by the root key generation number.
HK17106876.7A 2017-07-10 Condition access method, related device and system HK1233405B (en)

Publications (3)

Publication Number Publication Date
HK1233405A1 HK1233405A1 (en) 2018-01-26
HK1233405A HK1233405A (en) 2018-01-26
HK1233405B true HK1233405B (en) 2021-01-22

Family

ID=

Similar Documents

Publication Publication Date Title
US9094699B2 (en) System and method for security key transmission with strong pairing to destination client
EP2327211B1 (en) Simulcrypt key sharing with hashed keys
CN1146185C (en) Protecting information in system
CN103354998B (en) Control word protection
US7401232B2 (en) Content playback apparatus method and program and key management apparatus and system
EP2227015B1 (en) Conditional entitlement processing for obtaining a control word
US7092527B2 (en) Method, system and program product for managing a size of a key management block during content distribution
US7149308B1 (en) Cryptographic communications using in situ generated cryptographic keys for conditional access
CN110650010A (en) Method, device and equipment for generating and using private key in asymmetric key
US11308242B2 (en) Method for protecting encrypted control word, hardware security module, main chip and terminal
CN106454435B (en) Conditional access method and related equipment and system
HK1233405B (en) Condition access method, related device and system
HK1233405A1 (en) Condition access method, related device and system
HK1233405A (en) Condition access method, related device and system
CN102324994B (en) Systems and methods for broadcast encryption optimization and scalability
JP2007036625A (en) Content distribution method, content receiver, content transmitter and restricted receiving module
JP2005079864A (en) Broadcast device, receiving device, broadcast method and receiving method
CN1930881A (en) Method for securing encrypted content broadcast by a broadcaster