Hybrid network encrypt/decrypt scheme
First Claim
1. A method for a service provider to transmit decryption information in a secure manner, comprising:
- receiving a request for a service from a requester over a bi-directional channel;
authenticating the requester;
transmitting first decryption information to the requestor over the bi-directional channel for use in decrypting the service;
transmitting the service, encrypted with encryption information corresponding to the first decryption information, over a unidirectional channel;
generating second decryption information for use in decrypting the service;
transmitting the second decryption information over the unidirectional channel; and
transmitting the service, encrypted with encryption information corresponding to the second decryption information, over the unidirectional channel.
1 Assignment
0 Petitions
Accused Products
Abstract
A hybrid method for a service provider to transmit decryption information (e.g., algorithms, parameters, keys) to clients in a secure manner and at low cost for use in decrypting broadcast services. The service provider uses a bidirectional channel (e.g., a GPRS channel) to receive service requests, authenticate clients and transmit currently valid decryption information (and, optionally, future decryption information) necessary to decrypt a broadcast service. The service provider transmits the encrypted service on a unidirectional channel (e.g., a DVB-T channel). The service provider preferably also changes the encryption of the service with time, and, as it does, transmits updated decryption information to its clients on the unidirectional channel. The updated decryption information is encrypted using the currently valid decryption information and may also include future decryption information and synchronization information.
-
Citations
39 Claims
-
1. A method for a service provider to transmit decryption information in a secure manner, comprising:
-
receiving a request for a service from a requester over a bi-directional channel;
authenticating the requester;
transmitting first decryption information to the requestor over the bi-directional channel for use in decrypting the service;
transmitting the service, encrypted with encryption information corresponding to the first decryption information, over a unidirectional channel;
generating second decryption information for use in decrypting the service;
transmitting the second decryption information over the unidirectional channel; and
transmitting the service, encrypted with encryption information corresponding to the second decryption information, over the unidirectional channel. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20)
-
-
21. A method for a service provider to transmit decryption information in a secure manner, comprising:
-
receiving a request for a service from a requestor over a bidirectional channel;
authenticating the requestor;
providing decryption information to the requestor over the bidirectional channel for use in decrypting the service;
transmitting the service, encrypted with encryption information corresponding to the decryption information, over a unidirectional channel;
changing the decryption information needed to decrypt the service throughout the transmission of the service; and
providing the requestor with changes to the decryption information over the unidirectional channel. - View Dependent Claims (22, 23, 24)
-
-
25. A method for a client to receive decryption information from a service provider in a secure manner, comprising:
-
requesting a service over a bi-directional channel;
transmitting authentication information over the bi-directional channel;
receiving first decryption information over the bi-directional channel;
receiving the service over a unidirectional channel;
decrypting the service using the first decryption information;
receiving second decryption information over the unidirectional channel; and
decrypting the service using the second decryption information. - View Dependent Claims (26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36)
-
-
37. A method for a service provider to transmit decryption information in a secure manner, comprising:
-
receiving a request for a service from a requester via postal mail;
authenticating the requestor;
transmitting first decryption information to the requestor via postal mail for use in decrypting the service;
transmitting the service, encrypted with encryption information corresponding to the first decryption information, over a unidirectional channel;
generating second decryption information for use in decrypting the service at a later time;
transmitting the second decryption information over the unidirectional channel; and
transmitting the service, encrypted with encryption information corresponding to the second decryption information, over the unidirectional channel. - View Dependent Claims (38)
-
-
39. A method for a service provider to transmit decryption information in a secure manner, comprising:
-
receiving a request for a service from a requestor;
authenticating the requestor;
installing first decryption information on a device of the requestor for use in decrypting the service;
transmitting the service, encrypted with encryption information corresponding to the first decryption information, over a unidirectional channel;
generating second decryption information for use in decrypting the service at a later time;
transmitting the second decryption information over the unidirectional channel for reception by the requester; and
transmitting the service, encrypted with encryption information corresponding to the second decryption information, over the unidirectional channel.
-
Specification