Secure access systems and methods utilizing two access cards

US 5,666,412 A
Filed: 01/20/1995
Issued: 09/09/1997
Est. Priority Date: 10/03/1994
Status: Expired due to Term

First Claim

Patent Images

1. In a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, a CATV parental control system comprising:

a first IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are not rated for viewing under parental control;

a second IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are rated for viewing under parental control;

an IC card reader and writer coupled to said CATV decoder;

first and second IC card receptacles coupled to said IC card reader and writer, wherein said first and second IC cards communicate with said IC card reader and writer when inserted in the respected IC card receptacles; and

a decrypter for decrypting said programs which are not rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC card, and for decrypting said programs which are rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC card and said at least one of decryption seeds, decryption keys and algorithms for decryption from said second IC card.

View all claims

8 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A CATV system including a CATV network and apparatus for transmitting over the CATV network information to a multiplicity of subscriber units, each including a CATV decoder and an IC card reader and writer coupled to the CATV decoder, the IC card reader and writer includes two separate IC card receptacles, such that IC cards inserted into the two separate IC card receptacles are separately accessed by the IC card reader and writer.

207 Citations

34 Claims

1. In a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, a CATV parental control system comprising:
- a first IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are not rated for viewing under parental control;
  
  a second IC card including at least one of decryption seeds, decryption keys and algorithms for decryption of programs which are rated for viewing under parental control;
  
  an IC card reader and writer coupled to said CATV decoder;
  
  first and second IC card receptacles coupled to said IC card reader and writer, wherein said first and second IC cards communicate with said IC card reader and writer when inserted in the respected IC card receptacles; and
  
  a decrypter for decrypting said programs which are not rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC card, and for decrypting said programs which are rated for viewing under parental control in response to receiving said at least one of decryption seeds, decryption keys and algorithms for decryption from said first IC card and said at least one of decryption seeds, decryption keys and algorithms for decryption from said second IC card.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. A CATV parental control system according to claim 1 and wherein said first IC card also includes a memory for storing billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
  - 3. A CATV parental control system according to claim 2 and also comprising storage means for maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
  - 4. A CATV parental control system according to claim 3 and also comprising a processor for providing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
  - 5. A CATV parental control system according to claim 1 and also comprising storage means for maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
  - 6. A CATV parental control system according to claim 5 and also comprising a processor for providing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
  - 7. A CATV system according to claim 1 and wherein said first IC card and said second IC card are interchangeable.

8. For use with a CATV system, wherein CATV programs are transmitted via a CATV network in encrypted form to a multiplicity of subscriber units each including a CATV decoder, and at least part of the CATV programs are rated for viewing under parental control, a method of exercising parental control comprising:
- providing an IC card reader and writer coupled to said CATV decoder;
  
  inserting a first IC card in a first IC card receptacle coupled to said CATV reader and writer;
  
  addressing said first IC card via said CATV reader and writer to provide at least one of authentication, verification, validation and program entitlements of said first IC card;
  
  enabling decryption of programs which do not require parental control in response to providing said at least one of authentication, verification, validation and program entitlements of said first IC card;
  
  inserting a second IC card in a second IC card receptacle coupled to said CATV reader and writer;
  
  verifying that said first IC card is in said first IC card receptacle;
  
  addressing said second IC card via said CATV reader and writer to provide at least one of authentication, verification, validation and program entitlements of said second IC card; and
  
  enabling decryption of programs which require parental control in response to providing said at least one of authentication, verification, validation and program entitlements of said first IC card and of said second IC card.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. A method of exercising parental control according to claim 8 and also comprising:
    - storing in said first IC card billing data corresponding to viewing of programs which do not require parental control and of programs which require parental control.
  - 10. A method of exercising parental control according to claim 9 and also comprising:
    - maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
  - 11. A method of exercising parental control according to claim 10 and wherein said maintaining separate accounts comprises employing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
  - 12. A method of exercising parental control according to claim 8 and also comprising:
    - maintaining separate accounts for programs which require parental control and for programs which do not require parental control in said first IC card.
  - 13. A method of exercising parental control according to claim 12 and wherein said maintaining separate accounts comprises employing separate identification codes to distinguish between programs which require parental control and programs which do not require parental control.
  - 14. A method of exercising parental control according to claim 8 and wherein said first IC card and said second IC card are interchangeable.

15. In a CATV system wherein access to CATV transmissions is provided by a first IC card and by a second IC card which are insertable in two separate IC card receptacles in a CATV decoder, said first IC card being replaced at selected time periods, and wherein replaced cards are provided without valuable data stored therein, a card initialization system comprising:
- a communicator for providing two way communication between said first IC card and said second IC card to enable at least one of authentication, verification and validation of said first IC card, whereinsaid first IC card and said second IC are simultaneously inserted in said two separate IC card receptacles.

16. A method for initializing a card in a CATV system wherein access to CATV transmissions is provided by a first IC card and by a second IC card which are insertable in two separate IC card receptacles in a CATV decoder, said first IC card being replaced at selected, time periods, and wherein replaced cards are provided without valuable data stored therein, the method comprising:
- simultaneously inserting said first IC card and said second IC card in said two separate IC card receptacles; and
  
  providing two way communication between said first IC card and said second IC card to enable at least one of authentication, verification and validation of said first IC card.

17. An area access system comprising:
- an identifier station including two separate card receptacles, wherein cards inserted into said two separate card receptacles are addressed by said identifier station;
  
  an identification element including personal and official information, wherein at least part of the information is encrypted; and
  
  an application element including at least one of access keys, access seeds, and algorithms for enabling access to said information in said identification element, wherein said identification element and said application element are addressed by said identifier station to enable access to a restricted area in accordance with said information and said at least one of access keys, access seeds, and algorithms for enabling access to said information, and wherein at least one of said identification element and said application element includes security level data determining the level of encryption of said part of the information which is encrypted.
- View Dependent Claims (18, 19, 20, 21)
- - 18. An area access system according to claim 17 wherein said information includes identification information of a bearer of said identification element.
  - 19. An area access system according to claim 17 wherein said identification information includes a digitized picture of a bearer of said identification element.
  - 20. An area access system according to claim 19 and also comprising a display for displaying said digitized picture of said bearer of said identification element.
  - 21. An area access system according to claim 17 wherein said information includes information restricting access of a bearer of said identification element to a portion of said restricted area.

22. A method for accessing a restricted area comprising:
- providing an identifier station including two separate card receptacles;
  
  inserting an identification element including personal and official information in a first receptacle of said two separate card receptacles, wherein at least part of said information is encrypted;
  
  inserting an application element including at least one of access keys, access seeds, and algorithms for enabling access to said information in said identification element in a second receptacle of said two separate card receptacles;
  
  addressing said identification element; and
  
  addressing said application element, wherein said identification element and said application element are addressed via said identifier station to enable access to a restricted area in accordance with said information and said at least one of access keys, access seeds, and algorithms for enabling access to said information, and wherein at least one of said identification element and said application element includes security level data determining the level of encryption of said part of said information which is encrypted.

23. A data access system comprising:
- a processor;
  
  a memory card reader and writer, coupled to said processor, and including a memory card receptacle, wherein a memory card carrying encrypted information to be accessed is inserted into said memory card receptacle and addressed by said memory card reader and writer; and
  
  an IC card reader and writer, coupled to said processor, and including an IC card receptacle, wherein an IC card, inserted into said IC card receptacle and addressed by said IC card reader and writer, provides access codes to enable access to said information carried in said memory card,and wherein at least one of said memory card, said IC card, said memory card reader and writer and said IC card reader and writer includes security level data determining the level of encryption of said encrypted information.
- View Dependent Claims (24)
- - 24. A data access system according to claim 23 and wherein said access codes comprise at least one of seeds, keys and algorithms for decryption of said information.

25. A data access system comprising;
- a CATV network; and
  
  apparatus for transmitting over said CATV network CATV transmissions to a multiplicity of subscriber units, each including;
  
  a CATV decoder;
  
  a memory device reader and writer, coupled to said CATV decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into said memory device receptacle is addressed by said memory device reader and writer; and
  
  an IC card reader and writer, coupled to said CATV decoder and to said memory device reader and writer, and including an IC card receptacle, wherein an IC card, inserted by said subscriber into said IC card receptacle and addressed by said IC card reader and writer, provides access codes having separate security levels which comprise separate decryption levels for enabling access to said information carried in said memory device and to said CATV transmissions.
- View Dependent Claims (26, 27, 28, 29, 30)
- - 26. A data access system according to claim 25 and wherein said access codes comprise at least one of seeds, keys and algorithms for decryption of said information.
  - 27. A data access system according to claim 26 and wherein at least part of said information is encrypted and said CATV decoder includes security level data determining the level of security employed in encryption of said at least part of said information.
  - 28. A data access system according to claim 25 and wherein at least part of said information is encrypted and at least one of said memory device, said IC card, said memory device reader and writer and said IC card reader and writer includes security level data determining the level of security employed in encryption of said at least part of said information.
  - 29. A data access system according to claim 25 and wherein at least part of said information is encrypted and said data access system further includes a processor having security level data determining the level of security employed in encryption of said at least part of said information.
  - 30. A data access system according to claim 25 and wherein at least part of said information is encrypted and said CATV decoder includes security level data determining the level of security employed in encryption of said at least part of said information.

31. A method for accessing data comprising:
- providing a CATV network and apparatus for transmitting over said CATV network CATV transmissions to a multiplicity of subscriber units each including a CATV decoder coupled to a memory device reader and writer and to an IC card reader and writer, wherein said memory device reader and writer includes a memory device receptacle and said IC card reader and writer includes an IC card receptacle;
  
  inserting a memory device carrying data to be accessed into said memory device receptacle and addressing said memory device via said memory device reader and writer;
  
  inserting an IC card into said IC card receptacle, and addressing said IC card via said IC card reader and writer;
  
  communicating access codes between said IC card and at least one of said IC card reader and writer, said memory device reader and writer, said CATV decoder and said memory device; and
  
  employing separate security levels having separate decryption levels for enabling access to said data carried in said memory device and to said CATV transmissions.

32. A data access system comprising:
- a CATV network; and
  
  apparatus for transmitting over said CATV network CATV transmissions to a multiplicity of subscriber units, each including;
  
  a CATV decoder;
  
  a memory device reader and writer, coupled to said CATV decoder, and including a memory device receptacle, wherein a memory device carrying information to be accessed which is inserted by a subscriber into said memory device receptacle is addressed by said memory device reader and writer;
  
  an IC card reader and writer, coupled to said CATV decoder and to said memory device reader and writer, and including an IC card receptacle, wherein an IC card, inserted by said subscriber into said IC card receptacle is addressed by said IC card reader and writer; and
  
  a processor coupled to said CATV decoder, to said memory device reader and writer and to said IC card reader and writer, wherein said processor includes access codes having separate security levels comprising separate decryption levels for enabling access to said information carried in said memory device and to said CATV transmissions.

33. A method for accessing data stored in a memory device comprising:
- providing a processor coupled to a memory device reader and writer and to an IC card reader and writer, wherein said memory device reader and writer includes a memory device receptacle and said IC card reader and writer includes an IC card receptacle;
  
  inserting a memory device carrying encrypted data to be accessed into said memory device receptacle and addressing said memory device via said memory device reader and writer;
  
  inserting an IC card into said IC card receptacle, and addressing said IC card via said IC card reader and writer;
  
  communicating at least one access code between said IC card and at least one of said IC card reader and writer, said memory device reader and writer, said processor and said memory device; and
  
  accessing said data carried in said memory device in accordance with security level data determining the level of encryption of said encrypted data and included in at least one of said memory device, said IC card, said memory device reader and writer and said IC card reader and writer.

34. A data access system comprising:
- a processor;
  
  a memory card reader and writer, coupled to said processor, and including a memory card receptacle, wherein a memory card carrying encrypted information to be accessed is inserted into said memory card receptacle and addressed by said memory card reader and writer; and
  
  an IC card reader and writer, coupled to said processor, and including an IC card receptacle, wherein an IC card, inserted into said IC card receptacle and addressed by said IC card reader and writer, provides at least one access code to enable access to said information carried in said memory card,and wherein said processor includes security level data determining the level of encryption of said information.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
NDS Limited (Cisco Systems, Inc.)
Original Assignee
News Datacom Ltd (Cisco Systems, Inc.)
Inventors
Smith, Perry, Handelman, Doron, Zucker, Arnold, Kranc, Moshe, Fink, David, Bar-On, Gerson
Primary Examiner(s)
Tarcza, Thomas H.
Assistant Examiner(s)
Laufer, Pinchus M.

Application Number

US08/375,995
Time in Patent Office

963 Days
Field of Search

380/16, 380/20, 380/21, 380/25, 380/4, 348/1, 348/3, 348/5.5, 340/825.31, 395/186, 395/187.01, 395/188.01, 395/490, 395/491, 235/382, 235/382.5
US Class Current

380/229
CPC Class Codes

G06K 7/0004   Hybrid readers

G06K 7/0034   the connector being capable...

G06Q 20/229   Hierarchy of users of accounts

G06Q 20/2295   Parent-child type, e.g. whe...

G06Q 20/341   Active cards, i.e. cards in...

G06Q 20/346   Cards serving only as infor...

G07C 9/29   the pass containing active ...

G07F 7/1008   Active credit-cards provide...

H04N 21/4181   for conditional access

H04N 21/4405   involving video stream decr...

H04N 21/4623   Processing of entitlement m...

H04N 5/445   for displaying additional i...

H04N 7/163   by receiver means only

Secure access systems and methods utilizing two access cards

First Claim

8 Assignments

0 Petitions

Accused Products

Abstract

207 Citations

34 Claims

Specification

Solutions

Use Cases

Quick Links

Secure access systems and methods utilizing two access cards

First Claim

8 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

207 Citations

34 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links