System and method for a variable key ladder
First Claim
1. A method of generating encryption and decryption keys for a multiple tier, variable key ladder (VKL) hierarchy, the method comprising:
- determining a device key based on network connection and configuration data contained in conditional access system firmware;
decrypting and extracting a session or category key from an input media stream or an entitlement management message (EMM) using the device key; and
configuring a key ladder in response to at least one Entitlement Control Message (ECM), wherein the key ladder comprises the device key and at least one of (i) a program key, (ii) the session or category key, and (iii) at least one control word.
2 Assignments
0 Petitions
Accused Products
Abstract
A method of generating encryption and decryption keys for a multiple tier, variable key ladder (VKL) hierarchy includes determining a device key based on network connection and configuration data contained in conditional access system firmware, decrypting and extracting a session or category key from an input media stream or an Entitlement Management Message using the device key, and configuring a key ladder in response to at least one Entitlement Control Message (ECM), wherein the key ladder comprises the device key and at least one of (i) a program key, (ii) the session or category key, and (iii) at least one control word.
109 Citations
21 Claims
-
1. A method of generating encryption and decryption keys for a multiple tier, variable key ladder (VKL) hierarchy, the method comprising:
-
determining a device key based on network connection and configuration data contained in conditional access system firmware;
decrypting and extracting a session or category key from an input media stream or an entitlement management message (EMM) using the device key; and
configuring a key ladder in response to at least one Entitlement Control Message (ECM), wherein the key ladder comprises the device key and at least one of (i) a program key, (ii) the session or category key, and (iii) at least one control word. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8)
-
-
9. A system for generating encryption and decryption keys for a multiple tier, variable key ladder (VKL) hierarchy, the system comprising:
-
a headend configured to generate encrypted digital input media streams;
a network coupled to the headend and configured to receive the encrypted digital input media streams; and
at least one receiver coupled to the network and configured to receive the encrypted digital input media streams and present a decrypted version of the encrypted digital media streams, wherein at least one of the headend and the at least one receiver comprises a security processor configured to;
determine a device key based on network connection and configuration data contained in conditional access system hardware or firmware;
decrypt and extract a session or category key from an Entitlement Management Message (EMM) using the device key;
decrypt and extract at least one of (i) a program key and (ii) at least one control word from an Entitlement Control Message (ECM) in the input media stream; and
<
configure a key ladder in response to the at least one control word, wherein the key ladder comprises the device key and at least one of (i) the program key, (ii) the session or category key, and (iii) the at least one control word. - View Dependent Claims (10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A processor for digital media security processing, the processor comprising:
-
a selector for determining a device key based on network connection and configuration data contained in conditional access system firmware;
a decryption operator for decrypting and extracting a program key from an input media stream using the device key; and
at least one multiplexer for configuring a key ladder in response to at least one control word, wherein the key ladder comprises the device key and at least one of (i) a program key, (ii) the session key, and (iii) the at least one control word. - View Dependent Claims (19, 20, 21)
-
Specification