System for securely delivering encrypted content on demand with access contrl
First Claim
1. A system for delivering content to a subscriber terminal on-demand through a communication network, the system comprising:
- a content preparation module for preencrypting the content offline to form pre-encrypted content;
an on-demand module receiving the pre-encrypted content from the content preparation module, for storing, and transmitting the pre-encrypted content to the subscriber terminal when authorized;
an encryption renewal system interfacing with the on-demand module to generate entitlement control messages allowing the pre-encrypted content to be decryptable for a designated duration; and
a conditional access system for providing a periodical key to the encryption renewal system, to permit generation of the entitlement control messages that convey information required to decrypt the pre-encrypted content including the periodical key to the subscriber terminal.
4 Assignments
0 Petitions
Accused Products
Abstract
A method of delivering content from a head end to subscriber terminals within one or more cable systems. Such content may be video, audio or the like. The method includes the step of encrypting the content offline to form pre-encrypted content, generating an encryption record containing parameters employed for encrypting the content. Based on the encryption record, a control message for permitting access to the pre-encrypted content is generated using a periodical key provided by the first cable system. The pre-encrypted content and associated control message is thereafter forwarded to the first subscriber terminal for decryption of the content. For a second subscriber terminal within a second cable system, the pre-encrypted content is retrofitted with a second control message permitting the pre-encrypted content to be decrypted by the second subscriber terminal. Further, multiple versions of a control message for multiple service tiers within a cable system may be generated, each version for permitting access to a particular service tier within the system.
192 Citations
40 Claims
-
1. A system for delivering content to a subscriber terminal on-demand through a communication network, the system comprising:
-
a content preparation module for preencrypting the content offline to form pre-encrypted content;
an on-demand module receiving the pre-encrypted content from the content preparation module, for storing, and transmitting the pre-encrypted content to the subscriber terminal when authorized;
an encryption renewal system interfacing with the on-demand module to generate entitlement control messages allowing the pre-encrypted content to be decryptable for a designated duration; and
a conditional access system for providing a periodical key to the encryption renewal system, to permit generation of the entitlement control messages that convey information required to decrypt the pre-encrypted content including the periodical key to the subscriber terminal. - View Dependent Claims (2)
-
-
3. A method of delivering content from one or more cable systems to subscriber terminals within the cable systems, the cable systems being communicatively coupled to an offline encryption device, the method comprising:
-
receiving by a first cable system, a request for the content from a first subscriber terminal of the first cable system;
preencrypting, by the offline encryption device, the content to form pre-encrypted content prior to the step of receiving a request;
generating an encryption record containing parameters employed for encrypting the content;
based on the encryption record and a first key information, generating one or more control messages for permitting access to the pre-encrypted content; and
transmitting the pre-encrypted content associated with the one or more control messages to the first subscriber terminal for decryption of the pre-encrypted content. - View Dependent Claims (4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 18, 19, 33, 34, 37, 39)
-
-
17. A system for delivering first and second content to a subscriber terminal on-demand through a communication network, the system comprising:
-
means for pre-encrypting the first and second content offline to form first and second pre-encrypted content, and for generating a first encryption record associated with the first pre-encrypted content, and a second encryption record for the second pre-encrypted content;
means for generating a first and second entitlement messages that allow decryption of the first and second pre-encrypted contents, respectively;
a conditional access system for providing information included in the first and second entitlement messages by the means for generating; and
means for receiving the pre-encrypted content from the means for pre-encrypting, forwarding the first and second encryption records to the means for generating which generates the first and second entitlement messages for forwarding to the subscriber terminal.
-
-
20. A method using an encryption renewal system, the method permitting first and second communication systems to control subscriber access to pre-encrypted content that was previously encrypted offline, the method comprising:
-
receiving, by the encryption renewal system, a first cryptographic information from the first communication system;
receiving an encryption record containing parameters employed during encryption to form the pre-encrypted content; and
generating for the first communication system, a first control message for providing access to the pre-encrypted content based on the first cryptographic information and the first encryption record. - View Dependent Claims (21, 22, 23, 25, 26, 27, 28, 29, 30, 31, 32, 35, 36, 40)
-
-
24. A system for delivering content to a subscriber terminal on-demand through a point-to-point communication network, the system comprising:
-
an offline encryption system having software containing one or more instructions for pre-encrypting the content to form pre-encrypted content before a content request is received from the subscriber terminal;
a video on-demand system including software having one or more instructions for receiving the pre-encrypted content from the offline encryption system, and forwarding the pre-encrypted content to the subscriber terminal; and
an encryption renewal system interfacing with the offline encryption system to provide encryption parameters for encrypting the content, and interfacing with the video on-demand system to generate entitlement control messages allowing the pre-encrypted content to be decryptable for a designated duration, wherein the entitlement control messages are generated by using a periodical key.
-
-
38. A method of delivering pre-encrypted content to subscribers from a first and a second communication system the method comprising:
-
preencrypting the content once at a centralized facility, and prior to distribution to the first and second communication systems;
if the first communication is authorized to receive the content, transmitting the content to the first communication system;
storing the content by the first communication system;
if the second communication system is authorized to receive the content, transmitting the conent to the second communication system; and
storing the content by the second communication system, wherein the content is distributable by the first communication system to a first subscriber within the first communication system upon request from the first subscriber, and the content is distributable by the second communication system to a second subscriber within the second communication system upon request.
-
Specification