Access control of media services over an open network
First Claim
1. A method of providing media services over a network, the method comprising:
- receiving a request from one of a plurality of boxes (hereinafter “
ordering box”
), the request including an order of a title;
communicating with the ordering box directly to determine whether the ordering box has been hacked;
If the ordering box has not been hacked,ensuring that the ordering box has a master key; and
identifying one or more of the boxes other than the ordering box to provide distributed segments pertaining to the title to the ordering box, wherein the ordering box proceeds with downloading the distributed segments, and a playback of the title based on the distributed segments together with residing segments, if any, is started or continued, wherein the master key is used to decrypt the distributed segments and the residing segments;
If the ordering box has been hacked,logging an identifier of the ordering box into a database; and
revoking any services to the ordering box till the ordering box is updated.
2 Assignments
0 Petitions
Accused Products
Abstract
To ensure that media services are only provided to those authorized users or receiving devices, various conditional access mechanisms are provided to secure that media services are only received in those authorized. Different from a prior art conditional access system, an entitlement control message containing a master key can be sent directly to an ordering box. Depending on implementation, a secure session may be established between a server and an ordering box, such that all secured information including a master key may be transported. Further an ordering box does not need to possess a key or keys needed to decrypt an entitlement control message, such key(s) may be transported from time to time in a secure session established between the server and the ordering box.
145 Citations
27 Claims
-
1. A method of providing media services over a network, the method comprising:
-
receiving a request from one of a plurality of boxes (hereinafter “
ordering box”
), the request including an order of a title;communicating with the ordering box directly to determine whether the ordering box has been hacked; If the ordering box has not been hacked, ensuring that the ordering box has a master key; and identifying one or more of the boxes other than the ordering box to provide distributed segments pertaining to the title to the ordering box, wherein the ordering box proceeds with downloading the distributed segments, and a playback of the title based on the distributed segments together with residing segments, if any, is started or continued, wherein the master key is used to decrypt the distributed segments and the residing segments; If the ordering box has been hacked, logging an identifier of the ordering box into a database; and revoking any services to the ordering box till the ordering box is updated. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. A system of providing media services over a network, the system comprising:
-
a server coupled to a network and configured to manage the medial services; a plurality of boxes coupled to the network, wherein one of the boxes (hereinafter “
ordering box”
) initiating a request including an order of a title communicates directly with the server configured to proceed with determining whether the ordering box has been hacked;If the ordering box has not been hacked, the server ensuring that the ordering box has a master key; and
identifying one or more of the boxes other than the ordering box to provide distributed segments pertaining to the title to the ordering box, wherein the ordering box proceeds with downloading the distributed segments, and a playback of the title based on the distributed segments together with residing segments, if any, is started or continued, wherein the master key is used to decrypt the distributed segments and the residing segments;If the ordering box has been hacked, the server logging an identifier of the ordering box into a database; and
revoking any services to the ordering box till the ordering box is updated. - View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26, 27)
-
Specification