Method and system for securing communication on a home gateway in an IP content streaming system

US 9,438,415 B2
Filed: 06/28/2011
Issued: 09/06/2016
Est. Priority Date: 02/23/2011
Status: Active Grant

First Claim

Patent Images

1. A method for networking, in a home gateway that enables communication with a plurality of devices, said method comprising:

recovering, by a security processor of said home gateway, a root-content key from a secure memory in said home gateway based on a key index received from a key server of a service provider, wherein said secure memory is inaccessible to a host processor of said home gateway;

generating, by said security processor of said home gateway, a content key, corresponding to content requested by one of said plurality of devices, utilizing said recovered root-content key;

scrambling, by said home gateway, said content utilizing said generated content key; and

communicating, by said home gateway, said scrambled content to said one of said plurality of devices.

View all claims

6 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A home gateway, which enables communication with a plurality of devices, recovers a root-content key from a key server of a service provider for secure delivery of content requested by a client device. The recovered root-content key is utilized to generate a content key for corresponding content scrambling. The home gateway communicates the scrambled content to the client device. The home gateway utilizes the RSA protocol to request the root-content key from the key server. The root-content key is recovered from the received key index. The content key is encrypted utilizing a public key and delivered to the client device. The key server distributes the public key to the gateway through authentication messages. The client device utilizes its own private key to recover the content key by decrypting the encrypted content key. The scrambled content from the home gateway is descrambled using the recovered content key for content consumption.

17 Citations

14 Claims

1. A method for networking, in a home gateway that enables communication with a plurality of devices, said method comprising:
- recovering, by a security processor of said home gateway, a root-content key from a secure memory in said home gateway based on a key index received from a key server of a service provider, wherein said secure memory is inaccessible to a host processor of said home gateway;
  
  generating, by said security processor of said home gateway, a content key, corresponding to content requested by one of said plurality of devices, utilizing said recovered root-content key;
  
  scrambling, by said home gateway, said content utilizing said generated content key; and
  
  communicating, by said home gateway, said scrambled content to said one of said plurality of devices.
- View Dependent Claims (2, 3, 4, 5, 6)
- - 2. The method of claim 1, further comprising:
    - receiving, by said security processor of said home gateway, said key index from said key server utilizing signed messages exchanged in both directions between said security processor and said key server.
  - 3. The method according to claim 1, further comprising:
    - receiving, by said home gateway, a public key corresponding to said one of said plurality of devices from said key server;
      
      encrypting, by said home gateway, said generated content key utilizing said public key; and
      
      communicating, by said home gateway, said encrypted content key to said one of said plurality of devices.
  - 4. The method according to claim 3, further comprising:
    - receiving, by said home gateway, an authentication message from said key server, wherein said received authentication message comprises said public key.
  - 5. The method according to claim 3, further comprising:
    - recovering, by said one of said plurality of devices, said generated content key by decrypting said encrypted content key utilizing a private key corresponding to said one of said plurality of devices.
  - 6. The method according to claim 5, further comprising:
    - descrambling, by said one of said plurality of devices, said scrambled content from said home gateway utilizing said recovered content key.

7. A home gateway for communicating with a plurality of devices, said home gateway comprising:
- a secure memory inaccessible to a host processor of said home gateway;
  
  a security processor coupled to said secure memory, said security processor being configured to;
  
  recover a root-content key from said secure memory based on a key index received from a key server of a service provider for content requested by one of said plurality of devices, andgenerate a content key corresponding to said requested content utilizing said recovered root-content key;
  
  a scrambler configured to scramble said content utilizing said generated content key; and
  
  an interface configured to communicate said scrambled content to said one of said plurality of devices.
- View Dependent Claims (8, 9)
- - 8. The home gateway of claim 7, wherein said security processor is further configured to receive said key index from said key server utilizing signed messages exchanged in both directions between said security processor and said key server.
  - 9. The home gateway of claim 7, wherein said security processor is further configured to encrypt said generated content key utilizing a public key corresponding to said one of said plurality of devices;
    - andwherein said interface is further configured to communicate said encrypted content key to said one of said plurality of devices.

10. A home gateway for communicating with a plurality of devices, said home gateway comprising:
- an interface configured to;
  
  receive scrambled multimedia content from a multimedia source, andreceive a public key of a client device and a root-content key index from a key server of a service provider,a secure memory inaccessible to a host processor of said home gateway, anda security processor coupled to said secure memory, said security processor being configured to;
  
  generate a content key from said secure memory based on said root-content key index,descramble said received scrambled multimedia content using said generated content key, andre-scramble said descrambled multimedia content using said public key of said client device.
- View Dependent Claims (11, 12, 13, 14)
- - 11. The home gateway of claim 10, wherein said secure memory stores said descrambled multimedia content.
  - 12. The home gateway of claim 10, further comprising:
    - an embedded key table configured to store a root-content key corresponding to said root-content key index, andwherein said secure memory stores said embedded key table.
  - 13. The home gateway of claim 10, wherein said interface is further configured to communicate said re-scrambled multimedia content to said client device.
  - 14. The home gateway of claim 10, wherein said interface is configured to receive said scrambled multimedia content as part of a secure Internet Protocol (IP) content streaming system.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Avago Technologies International Sales Pte Limited (Broadcom, Inc.)
Original Assignee
Broadcom Corporation (Broadcom, Inc.)
Inventors
Chen, Xuemin, Rodgers, Stephane
Primary Examiner(s)
Nguyen, Tu

Application Number

US13/171,148
Publication Number

US 20120216034A1
Time in Patent Office

1,897 Days
Field of Search

713/153
US Class Current

1/1
CPC Class Codes

H04L 2209/603   Digital right managament [DRM]

H04L 63/0209   Architectural arrangements,...

H04L 63/0823   using certificates cryptogr...

H04L 9/0825   using asymmetric-key encryp...

Method and system for securing communication on a home gateway in an IP content streaming system

First Claim

6 Assignments

0 Petitions

Accused Products

Abstract

17 Citations

14 Claims

Specification

Use Cases

Quick Links

Others

Method and system for securing communication on a home gateway in an IP content streaming system

First Claim

6 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

17 Citations

14 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others