专利快速检索-快速检索全球专利，免费商用专利数据库-IPRDB

1. 发明申请

US20070174617A1 Method for updating the firmware of a security module 有权
标题翻译：更新安全模块固件的方法
公开(公告)号：US20070174617A1
公开(公告)日：2007-07-26
申请号：US11656468
申请日：2007-01-23
申请人： Xavier Carrel , Olivier Brique , Henri Kudelski , Nicolas Fisher
发明人： Xavier Carrel , Olivier Brique , Henri Kudelski , Nicolas Fisher
IPC分类号： H04L9/00
CPC分类号： G06F21/62 , G06F21/12 , H04N7/163 , H04N7/165 , H04N7/1675 , H04N21/235 , H04N21/26291 , H04N21/26606 , H04N21/4181 , H04N21/435 , H04N21/4383 , H04N21/4623 , H04N21/6543 , H04N21/8166
摘要： A method for updating the firmware of a security module allowing it to “jump” towards a dedicated separate patch message stream thanks to a trigger messages stream broadcasted in a main stream of management messages. The trigger messages comprise version information allowing establishing whether the security module is up-to-date, and an identifier indicating to the security module the suitable patch stream. If the current version of the firmware of the security module is inferior to the patch version, the security module is directed towards the stream of patch messages designated by the identifier included in the trigger messages. Once the update of the firmware is complete, the security module is again directed towards the main stream. This return can be carried out automatically, namely with a switch message comprising an identifier of the first stream.
摘要翻译：一种用于更新安全模块的固件的方法，其允许其由于在主要管理消息流中广播的触发消息流而“跳转”到专用的单独补丁消息流。触发消息包括允许确定安全模块是否是最新的版本信息，以及向安全模块指示适当的补丁流的标识符。如果安全模块的固件的当前版本低于补丁版本，则安全模块指向由包括在触发消息中的标识符指定的补丁消息流。一旦固件更新完成，安全模块将再次指向主流。该返回可以自动执行，即具有包括第一流的标识符的切换消息。

2. 发明授权

US08352734B2 Method for updating the firmware of a security module 有权
标题翻译：更新安全模块固件的方法
公开(公告)号：US08352734B2
公开(公告)日：2013-01-08
申请号：US11656468
申请日：2007-01-23
申请人： Xavier Carrel , Olivier Brique , Henri Kudelski , Nicolas Fisher
发明人： Xavier Carrel , Olivier Brique , Henri Kudelski , Nicolas Fisher
IPC分类号： H04L29/06
CPC分类号： G06F21/62 , G06F21/12 , H04N7/163 , H04N7/165 , H04N7/1675 , H04N21/235 , H04N21/26291 , H04N21/26606 , H04N21/4181 , H04N21/435 , H04N21/4383 , H04N21/4623 , H04N21/6543 , H04N21/8166
摘要： A method for updating the firmware of a security module allowing it to “jump” towards a dedicated separate patch message stream thanks to a trigger messages stream broadcasted in a main stream of management messages. The trigger messages comprise version information allowing establishing whether the security module is up-to-date, and an identifier indicating to the security module the suitable patch stream. If the current version of the firmware of the security module is inferior to the patch version, the security module is directed towards the stream of patch messages designated by the identifier included in the trigger messages. Once the update of the firmware is complete, the security module is again directed towards the main stream. This return can be carried out automatically, namely with a switch message comprising an identifier of the first stream.
摘要翻译：一种用于更新安全模块的固件的方法，其允许其跳转到专用的单独的补丁消息流，这归功于在主流管理消息中广播的触发消息流。触发消息包括允许确定安全模块是否是最新的版本信息，以及向安全模块指示适当的补丁流的标识符。如果安全模块的固件的当前版本低于补丁版本，则安全模块指向由包括在触发消息中的标识符指定的补丁消息流。一旦固件更新完成，安全模块将再次指向主流。该返回可以自动执行，即具有包括第一流的标识符的切换消息。

3. 发明申请

US20130103941A1 METHOD FOR UPDATING DATA IN A SECURITY MODULE 审中-公开
标题翻译：在安全模块中更新数据的方法
公开(公告)号：US20130103941A1
公开(公告)日：2013-04-25
申请号：US13711014
申请日：2012-12-11
申请人： Xavier Carrel , Olivier Brique , Henri Kudelski , Nicolas Fischer
发明人： Xavier Carrel , Olivier Brique , Henri Kudelski , Nicolas Fischer
IPC分类号： G06F21/62
CPC分类号： G06F21/62 , G06F21/12 , H04N7/163 , H04N7/165 , H04N7/1675 , H04N21/235 , H04N21/26291 , H04N21/26606 , H04N21/4181 , H04N21/435 , H04N21/4383 , H04N21/4623 , H04N21/6543 , H04N21/8166
摘要： A method for updating operating data in a security module associated to a user unit for processing digital data broadcast in a transport stream, said unit being connected to a conditional access system transmitting, in said transport stream, to the security module a first stream comprising management messages includes: broadcasting a second stream of operating data patch messages, adding to the first stream of management messages, a trigger message to direct the security module to a conditional access system transmitting a second stream transporting suitable operating data patch messages if a current version of the operating data in the security module requires an update, updating the operating data of the concerned security module with the operating data patch messages from the second stream, directing the security module towards the conditional access system transmitting another stream based on an identifier of the conditional access system in the security module.
摘要翻译：一种用于更新与用户单元相关联的用于处理在传输流中广播的数字数据的安全模块中的操作数据的方法，所述单元连接到条件访问系统，所述条件访问系统在所述传输流中向安全模块传输包括管理消息包括：广播第二流操作数据补丁消息，将管理消息的第一流添加到触发消息，以将安全模块引导到条件访问系统，该条件访问系统发送传输合适的操作数据补丁消息的第二流，如果当前版本的安全模块中的操作数据需要更新，使用来自第二流的操作数据补丁消息来更新相关安全模块的操作数据，将安全模块指向基于条件的标识符的条件访问系统发送另一个流访问系统在安全模块中。

4. 发明申请

US20060005262A1 Method for deactivating and reactivating security modules 有权
标题翻译：禁用和重新启动安全模块的方法
公开(公告)号：US20060005262A1
公开(公告)日：2006-01-05
申请号：US11212904
申请日：2005-08-29
申请人： Henri Kudelski , Olivier Brique , Christian Wirz , Patrick Hauert
发明人： Henri Kudelski , Olivier Brique , Christian Wirz , Patrick Hauert
IPC分类号： G06F17/30
CPC分类号： G07F7/1008 , G06Q20/341 , G06Q20/35765 , H04N7/163 , H04N21/26606 , H04N21/4181 , H04N21/4623
摘要： This invention concerns a security module deactivation and reactivation method particularly intended for access control of conditional access data. These security modules include a plurality of registers (R1, R2, R3, Rn) containing values. The method includes the step of sending at least one management message (RUN-EMM) containing an executable code, this executable code being loaded into a memory of the security module and then executed. The execution of this code in particular can carry out the combination and/or the enciphering of the values of the registers, or render these values illegible. This method also allows the reactivation of the security modules that have been deactivated previously. In this case, the method includes the step of sending another message containing an executable code (RUN-EMM−1) for the reactivation of the modules, this executable code having an inverted function to that of the executable code used for the deactivation of the security modules.
摘要翻译：本发明涉及特别用于条件访问数据的访问控制的安全模块去激活和重新激活方法。这些安全模块包括包含值的多个寄存器（R 1，R 2，R 3，R n）。该方法包括发送包含可执行代码的至少一个管理消息（RUN-EMM）的步骤，该可执行代码被加载到安全模块的存储器中然后被执行。特别地，该代码的执行可以执行寄存器的值的组合和/或加密，或者使这些值难以辨认。该方法还允许重新启用先前已被停用的安全模块。在这种情况下，该方法包括发送包含用于重新激活模块的可执行代码（RUN-EMM ^{-1 ）的另一消息的步骤，该可执行代码具有与可执行文件相反的功能用于停用安全模块的代码。}

5. 发明申请

US20060059507A1 Method for storing and transmitting data generated by security module 有权
标题翻译：用于存储和传输由安全模块生成的数据的方法
公开(公告)号：US20060059507A1
公开(公告)日：2006-03-16
申请号：US10542924
申请日：2004-02-05
申请人： Christian Wirz , Olivier Brique , Xavier Carrel , Gregory Duval , Patrick Hauert
发明人： Christian Wirz , Olivier Brique , Xavier Carrel , Gregory Duval , Patrick Hauert
IPC分类号： H04N7/16 , H04N7/167
CPC分类号： H04L65/1043 , G06F1/1626 , G06F1/1639 , G06F21/305 , G06F21/6209 , G06F21/74 , G06F21/88 , G06F2221/2105 , G06F2221/2115 , G11B20/10009 , G11B20/10425 , G11B20/22 , H03L7/091 , H04B7/2628 , H04B10/25754 , H04J13/0077 , H04J13/16 , H04L1/0066 , H04L1/0068 , H04L9/085 , H04L9/304 , H04L12/4641 , H04L25/03038 , H04L25/4902 , H04L25/4904 , H04L25/497 , H04L27/156 , H04L29/06027 , H04L29/12471 , H04L41/06 , H04L43/0829 , H04L47/15 , H04L47/70 , H04L47/72 , H04L47/745 , H04L47/765 , H04L47/822 , H04L47/824 , H04L51/04 , H04L51/28 , H04L51/38 , H04L61/2553 , H04L63/123 , H04L65/1006 , H04L65/1016 , H04M1/72533 , H04M3/42221 , H04M7/1295 , H04N1/00957 , H04N1/32106 , H04N1/40 , H04N5/2251 , H04N5/2257 , H04N5/38 , H04N5/4401 , H04N5/4448 , H04N5/445 , H04N5/45 , H04N5/46 , H04N5/64 , H04N5/66 , H04N5/76 , H04N5/775 , H04N5/85 , H04N5/907 , H04N7/0112 , H04N7/0122 , H04N7/163 , H04N7/17327 , H04N9/3129 , H04N9/642 , H04N9/7925 , H04N9/8042 , H04N19/109 , H04N19/139 , H04N19/625 , H04N19/91 , H04N21/2543 , H04N21/4181 , H04N21/433 , H04N21/4623 , H04N21/47211 , H04N21/6175 , H04N21/6187 , H04N21/6582 , H04N2201/0094 , H04N2201/3212 , H04N2201/3222 , H04N2201/3274 , H04W4/12 , H04W4/14 , H04W8/245 , H04W8/26 , H04W28/00 , H04W28/18 , H04W28/26 , H04W40/00 , H04W52/30 , H04W72/042 , H04W76/12 , H04W88/085 , H04W88/16 , Y10S370/906 , Y10S370/907 , Y10S707/99943
摘要： The aim of this invention is to be able to recover specific information of a security module when it has been replaced by a new module in a user unit connected to a broadcasting network. This aim is reached by a method of storage and transmission of information generated by a first security module connected to a user unit, this first security module comprising a unique identifier and information representative of its functioning, this first module being able to be replaced by a second security module, this method comprising the following steps: determination of the specific information contained in the first security module intended for transmission, transfer of this information in the user unit, storage of this information in the user unit, replacement of the first security module by the second security module, connection of the user unit on a transmission network, initialization of a communication between the second security module and a management center, insertion by the user unit, of a data block in the blocks transmitted by the second module, this block comprising the identifier of the first module and the data specific to said first module.
摘要翻译：本发明的目的是能够在连接到广播网络的用户单元中被新模块替换时恢复安全模块的特定信息。该目的通过存储和传输由连接到用户单元的第一安全模块生成的信息的方法来实现，该第一安全模块包括唯一标识符和表示其功能的信息，该第一模块能够由第二安全模块，该方法包括以下步骤：确定用于发送的第一安全模块中包含的特定信息，在用户单元中传送该信息，将该信息存储在用户单元中，更换第一安全模块通过第二安全模块，用户单元在传输网络上的连接，第二安全模块与管理中心之间的通信的初始化，用户单元的插入，由第二模块发送的块中的数据块，该块，其包括第一模块的标识符和特定于所述第一模块的数据。

6. 发明授权

US07890770B2 Method for deactivating and reactivating security modules 有权
标题翻译：禁用和重新启动安全模块的方法
公开(公告)号：US07890770B2
公开(公告)日：2011-02-15
申请号：US11212904
申请日：2005-08-29
申请人： Henri Kudelski , Olivier Brique , Christian Wirz , Patrick Hauert
发明人： Henri Kudelski , Olivier Brique , Christian Wirz , Patrick Hauert
IPC分类号： G06F21/00 , H04N7/167
CPC分类号： G07F7/1008 , G06Q20/341 , G06Q20/35765 , H04N7/163 , H04N21/26606 , H04N21/4181 , H04N21/4623
摘要： This invention concerns a security module deactivation and reactivation method particularly intended for access control of conditional access data. These security modules include a plurality of registers (R1, R2, R3, Rn) containing values. The method includes the step of sending at least one management message (RUN-EMM) containing an executable code, this executable code being loaded into a memory of the security module and then executed. The execution of this code in particular can carry out the combination and/or the enciphering of the values of the registers, or render these values illegible.This method also allows the reactivation of the security modules that have been deactivated previously. In this case, the method includes the step of sending another message containing an executable code (RUN-EMM−1) for the reactivation of the modules, this executable code having an inverted function to that of the executable code used for the deactivation of the security modules.
摘要翻译：本发明涉及特别用于条件访问数据的访问控制的安全模块去激活和重新激活方法。这些安全模块包括多个包含值的寄存器（R1，R2，R3，Rn）。该方法包括发送包含可执行代码的至少一个管理消息（RUN-EMM）的步骤，该可执行代码被加载到安全模块的存储器中然后被执行。特别地，该代码的执行可以执行寄存器的值的组合和/或加密，或者使这些值难以辨认。该方法还允许重新启用先前已被停用的安全模块。在这种情况下，该方法包括发送包含用于重新激活模块的可执行代码（RUN-EMM-1）的另一消息的步骤，该可执行代码具有与用于停用该模块的可执行代码相反的功能安全模块

7. 发明授权

US07720222B2 Method for storing and transmitting data generated by security module 有权
标题翻译：用于存储和传输由安全模块生成的数据的方法
公开(公告)号：US07720222B2
公开(公告)日：2010-05-18
申请号：US10542924
申请日：2004-02-05
申请人： Christian Wirz , Olivier Brique , Xavier Carrel , Grégory Duval , Patrick Hauert
发明人： Christian Wirz , Olivier Brique , Xavier Carrel , Grégory Duval , Patrick Hauert
IPC分类号： H04N7/167 , H04L29/06
CPC分类号： H04L65/1043 , G06F1/1626 , G06F1/1639 , G06F21/305 , G06F21/6209 , G06F21/74 , G06F21/88 , G06F2221/2105 , G06F2221/2115 , G11B20/10009 , G11B20/10425 , G11B20/22 , H03L7/091 , H04B7/2628 , H04B10/25754 , H04J13/0077 , H04J13/16 , H04L1/0066 , H04L1/0068 , H04L9/085 , H04L9/304 , H04L12/4641 , H04L25/03038 , H04L25/4902 , H04L25/4904 , H04L25/497 , H04L27/156 , H04L29/06027 , H04L29/12471 , H04L41/06 , H04L43/0829 , H04L47/15 , H04L47/70 , H04L47/72 , H04L47/745 , H04L47/765 , H04L47/822 , H04L47/824 , H04L51/04 , H04L51/28 , H04L51/38 , H04L61/2553 , H04L63/123 , H04L65/1006 , H04L65/1016 , H04M1/72533 , H04M3/42221 , H04M7/1295 , H04N1/00957 , H04N1/32106 , H04N1/40 , H04N5/2251 , H04N5/2257 , H04N5/38 , H04N5/4401 , H04N5/4448 , H04N5/445 , H04N5/45 , H04N5/46 , H04N5/64 , H04N5/66 , H04N5/76 , H04N5/775 , H04N5/85 , H04N5/907 , H04N7/0112 , H04N7/0122 , H04N7/163 , H04N7/17327 , H04N9/3129 , H04N9/642 , H04N9/7925 , H04N9/8042 , H04N19/109 , H04N19/139 , H04N19/625 , H04N19/91 , H04N21/2543 , H04N21/4181 , H04N21/433 , H04N21/4623 , H04N21/47211 , H04N21/6175 , H04N21/6187 , H04N21/6582 , H04N2201/0094 , H04N2201/3212 , H04N2201/3222 , H04N2201/3274 , H04W4/12 , H04W4/14 , H04W8/245 , H04W8/26 , H04W28/00 , H04W28/18 , H04W28/26 , H04W40/00 , H04W52/30 , H04W72/042 , H04W76/12 , H04W88/085 , H04W88/16 , Y10S370/906 , Y10S370/907 , Y10S707/99943
摘要： The aim of this invention is to be able to recover specific information of a security module when it has been replaced by a new module in a user unit connected to a broadcasting network.This aim is reached by a method of storage and transmission of information generated by a first security module connected to a user unit, this first security module comprising a unique identifier and information representative of its functioning, this first module being able to be replaced by a second security module, this method comprising the following steps: determination of the specific information contained in the first security module intended for transmission, transfer of this information in the user unit, storage of this information in the user unit, replacement of the first security module by the second security module, connection of the user unit on a transmission network, initialization of a communication between the second security module and a management center, insertion by the user unit, of a data block in the blocks transmitted by the second module, this block comprising the identifier of the first module and the data specific to said first module.
摘要翻译：本发明的目的是能够在连接到广播网络的用户单元中被新模块替换时恢复安全模块的特定信息。该目的通过存储和传输由连接到用户单元的第一安全模块生成的信息的方法来实现，该第一安全模块包括唯一标识符和表示其功能的信息，该第一模块能够由第二安全模块，该方法包括以下步骤：确定用于发送的第一安全模块中包含的特定信息，在用户单元中传送该信息，将该信息存储在用户单元中，更换第一安全模块通过第二安全模块，用户单元在传输网络上的连接，第二安全模块与管理中心之间的通信的初始化，用户单元的插入，由第二模块发送的块中的数据块，该块，其包括第一模块的标识符和特定于所述第一模块的数据。

8. 发明申请

US20120257749A1 METHOD AND PROCESSING UNIT FOR SECURE PROCESSING OF ACCESS CONTROLLED AUDIO/VIDEO DATA 有权
标题翻译：用于安全访问控制音频/视频数据的方法和处理单元
公开(公告)号：US20120257749A1
公开(公告)日：2012-10-11
申请号：US13524756
申请日：2012-06-15
申请人： Fabien GREMAUD , Olivier Brique
发明人： Fabien GREMAUD , Olivier Brique
IPC分类号： H04N7/167
CPC分类号： H04N21/4181 , H04N7/1675 , H04N21/4405 , H04N21/4623
摘要： A method for verifying access conditions performed by two conditional access devices consecutively on a control message before releasing a control word to a descrambler. The control message includes a first part including first access conditions and a second part structured as a control message including at least second access conditions and a control word. A first conditional access device is configured for decrypting the control message with a common key specific to units having a first conditional access device and verifying the authenticity of said message. When the verification succeeds, the second part and a second right is transmitted to a second conditional access device, which decrypts the second part with a common key specific to units having a second conditional access device and verifies the authenticity of said second part and the second access conditions in relation to the second right encrypted by a personal key embedded therein.
摘要翻译：一种用于在将控制字释放到解扰器之前对控制消息连续地验证由两个条件访问设备执行的访问条件的方法。控制消息包括包括第一访问条件的第一部分和被构造为包括至少第二访问条件和控制字的控制消息的第二部分。第一条件访问设备被配置为用具有第一条件访问设备的单元特有的公共密钥来解密控制消息并且验证所述消息的真实性。当验证成功时，第二部分和第二权利被传送到第二条件访问设备，第二条件访问设备用具有第二条件访问设备的单元特有的公共密钥对第二部分进行解密，并且验证所述第二部分的真实性，通过嵌入其中的个人密钥加密的与第二权限相关的访问条件。

9. 发明授权

US08099778B2 Method for access control to conditional access data 有权
标题翻译：访问控制条件访问数据的方法
公开(公告)号：US08099778B2
公开(公告)日：2012-01-17
申请号：US11288223
申请日：2005-11-29
申请人： Nicolas Courtin , Olivier Brique , Jimmy Cochard , Christophe Gogniat
发明人： Nicolas Courtin , Olivier Brique , Jimmy Cochard , Christophe Gogniat
IPC分类号： G06F7/04 , G06F12/00
CPC分类号： H04N7/1675 , H04N21/4181 , H04N21/44236 , H04N21/4623 , H04N21/47211
摘要： A method is disclosed for access control to conditional access data in a multimedia unit comprising at least one security module. This process includes:reception by the multimedia unit of a control message ECM containing at least one control word cw; transmission of this message ECM to said security module, this control message being associated to a message decryption right; determination of a validity date of the ECM control message decryption rights associated to said security module; determination of the present date; comparison of the present date with the expiration date of the decryption rights and determination of whether the present date is prior to the expiration date. In the affirmative case, decryption of the control message ECM and sending of the control word cw to the multimedia unit occurs In the negative case, reading of a value contained in a counter of the security module and comparison of this value occurs, to determine whether this value is comprised within a range authorizing decryption. Further, in the affirmative case, modification of the value of the counter according to a pre-established rule, and decryption of the control message ECM and sending of the control word cw to the multimedia unit also occurs. Finally, in the negative case, access to the conditional access data is blocked.
摘要翻译：公开了一种用于对包括至少一个安全模块的多媒体单元中的条件访问数据的访问控制的方法。该过程包括：由多媒体单元接收包含至少一个控制字cw的控制消息ECM; 将该消息ECM发送到所述安全模块，该控制消息与消息解密权相关联; 确定与所述安全模块相关联的ECM控制消息解密权限的有效期; 确定现在日期; 将当前日期与解密权限的到期日期进行比较，并确定现在日期是否在到期日之前。在肯定的情况下，控制消息ECM的解密和控制字cw发送到多媒体单元发生在否定情况下，发生安全模块的计数器中包含的值的读取和该值的比较，以确定是否该值包含在授权解密的范围内。此外，在肯定的情况下，根据预先确定的规则修改计数器的值，并且还发生控制消息ECM的解密和控制字cw发送到多媒体单元。最后，在否定的情况下，对条件访问数据的访问被阻止。

10. 发明授权

US08819434B2 Method and processing unit for secure processing of access controlled audio/video data 有权
标题翻译：用于访问受控音频/视频数据的安全处理的方法和处理单元
公开(公告)号：US08819434B2
公开(公告)日：2014-08-26
申请号：US12971876
申请日：2010-12-17
申请人： Fabien Gremaud , Olivier Brique
发明人： Fabien Gremaud , Olivier Brique
IPC分类号： H04L9/32
CPC分类号： H04N7/1675 , H04N21/4181 , H04N21/42623 , H04N21/4367 , H04N21/4405 , H04N21/4623
摘要： A method based on access conditions verification performed by two conditional access devices consecutively on a control message before releasing a control word to a descrambler. The control message encapsulates a second part including another control message. The processing unit for carrying out the method comprises a first conditional access device connected to a second conditional access device provided with a descrambler and a secured processor or secured hardware logic. The control message and the second part are each encrypted and accompanied by respectively first and second authentication data. The first conditional access device decrypts and verifies integrity of the control message, verifies the first access conditions and transmits the second part to the second access control device. The second conditional access device decrypts and verifies integrity of the second part and further verifies the second access conditions, and releases and loads the control word into the descrambler.
摘要翻译：一种基于访问条件验证的方法，该方法在将控制字释放到解扰器之前连续地在控制消息上由两个条件访问设备执行。控制消息封装包括另一个控制消息的第二部分。用于执行该方法的处理单元包括连接到具有解扰器和安全处理器或安全硬件逻辑的第二条件访问设备的第一条件访问设备。控制消息和第二部分分别被加密并且分别伴随着第一和第二认证数据。第一条件访问设备解密并验证控制消息的完整性，验证第一访问条件并将第二部分发送到第二访问控制设备。第二条件访问设备解密和验证第二部分的完整性，并进一步验证第二访问条件，并释放并将控制字加载到解扰器中。

你已经成功收藏专利！

检索式保存成功!

IPRDB

热门服务

关于我们

友情链接

联系方式