Apparatus and methods for provisioning in a download-enabled system
First Claim
1. Computerized network apparatus of a network configured to provision a computerized security device of said network, said computerized network apparatus comprising:
- a computerized provisioning subsystem configured to maintain;
(i) first data indicative of an identification of said computerized security device and (ii) second data indicative of a local network topological context of said computerized security device within said network;
a computerized conditional access apparatus in communication with said computerized provisioning subsystem; and
a server apparatus in communication with said computerized conditional access apparatus,wherein at least said computerized conditional access apparatus is configured to transmit at least a cryptographic key to said computerized security device, said cryptographic key configured to provide at least protection of digitally rendered data at said computerized security device, andwherein said server apparatus is configured to select at least said cryptographic key based at least in part on a communication received from said computerized security device.
4 Assignments
0 Petitions
Accused Products
Abstract
Apparatus and methods for provisioning of customer premise equipment (CPE) equipped with a secure microprocessor to receive e.g., digital video content by entering unique identification of the CPE at one or more servers located at the headend or other location of a content-based network. In one embodiment, the CPE comprises a download-enabled (e.g., DCAS) host with embedded cable modem and embedded set-top box functionality, and the provisioning includes enabling DOCSIS functionality of the CPE, assigning an IP address to the CPE and providing the CPE with a client image for the conditional access system chosen by the network operator. In one variant, the network operator can deactivate a provisioned device while connected to the network, as well when disconnected from the network. The network operator can also add, delete or replace conditional access client image in a provisioned device.
428 Citations
16 Claims
-
1. Computerized network apparatus of a network configured to provision a computerized security device of said network, said computerized network apparatus comprising:
-
a computerized provisioning subsystem configured to maintain;
(i) first data indicative of an identification of said computerized security device and (ii) second data indicative of a local network topological context of said computerized security device within said network;a computerized conditional access apparatus in communication with said computerized provisioning subsystem; and a server apparatus in communication with said computerized conditional access apparatus, wherein at least said computerized conditional access apparatus is configured to transmit at least a cryptographic key to said computerized security device, said cryptographic key configured to provide at least protection of digitally rendered data at said computerized security device, and wherein said server apparatus is configured to select at least said cryptographic key based at least in part on a communication received from said computerized security device. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A computerized security device for use within a network, said computerized security device comprising:
-
a network interface configured to communicate data with said network; a processor apparatus in data communication with the network interface; and a storage apparatus in data communication with the processor apparatus and comprising a non-transitory computer-readable medium, the non-transitory computer-readable medium comprising at least one computer program stored thereon, the at least one computer program configured to, when executed on the processor apparatus, cause the computerized security device to; determine a local network topological context of said computerized security device within said network; establish a data connection with a computerized conditional access apparatus to register therewith; provide data indicative of said local network topological context of said computerized security device within said network to said computerized conditional access apparatus; receive at least a cryptographic key, said cryptographic key selected based at least in part on said data indicative of said local network topological context; and encrypt or decrypt one or more digitally rendered data elements at said computerized security device. - View Dependent Claims (10, 11, 12, 13, 14, 15)
-
-
16. A computerized security device for use within a network, said computerized security device comprising:
-
a network interface configured for data communication with said network; a processor apparatus in data communication with the network interface; and a storage apparatus in data communication with the processor apparatus and comprising a non-transitory computer-readable medium, the non-transitory computer-readable medium comprising at least one computer program stored thereon, the at least one computer program configured to, when executed on the processor apparatus, cause the computerized security device to; algorithmically evaluate a local network topological context of said computerized security device within said network and generate data relating thereto; establish a data connection with a computerized conditional access apparatus to register therewith; provide the data relating to said local network topological context to said computerized conditional access apparatus; receive at least a cryptographic key, said cryptographic key selected based at least in part on said data relating to said local network topological context; encrypt or decrypt one or more digitally rendered data elements at said computerized security device; and execute a Downloadable Conditional Access System (DCAS) host application that provides a device-specific image to one or more output devices of an output domain of said network; and wherein said device-specific image enables said one or more output devices to at least decode said one or more digitally rendered data.
-
Specification