| Irdeto Access B.V. Patent applications |
| Patent application number | Title | Published |
|---|
| 20110083020 | SECURING A SMART CARD - The invention provides a method for securing a smart card ( | 04-07-2011 |
| 20110069222 | RELIABLE AND NON-MANIPULATABLE PROCESSING OF DATA STREAMS IN A RECEIVER - The invention provides a solution for secure and non-manipulatable processing of a data stream in a receiver, possibly in conjunction with a smartcard. A packet identity and a content type identifier associated with the packet identifier are received in encrypted form and securely processed within the receiver to allow an encrypted payload of the data stream to be processed without the possibility to manipulate the content type identifier in an attempt to intercept the payload after decryption. | 03-24-2011 |
| 20110010562 | PROCESSING RECORDABLE CONTENT IN A STREAM - Methods and a systems are described for processing recordable content in a broadcast stream sent to a receiver, wherein said broadcast stream is protected in accordance with a conditional access system and wherein said receiver is configured for storing and consuming content in said broadcast stream in accordance with a digital rights management system. In this methods and systems recording information is sent in one or more entitlement control messages over a broadcast network to a receiver. Using the recording information in the entitlement control messages the receiver is able to store recordable events in a broadcast stream on a storage medium and to consume said recorded events in accordance with a digital rights management system. | 01-13-2011 |
| 20110010545 | PROCESSING RECORDABLE CONTENT IN A STREAM - Methods and a systems are described for processing recordable content in a broadcast stream sent to a receiver, wherein said broadcast stream is protected in accordance with a conditional access system and wherein said receiver is configured for storing and consuming content in said broadcast stream in accordance with a digital rights management system. In this methods and systems recording information is sent in one or more entitlement control messages over a broadcast network to a receiver. Using the recording information in the entitlement control messages the receiver is able to store recordable events in a broadcast stream on a storage medium and to consume said recorded events in accordance with a digital rights management system. | 01-13-2011 |
| 20100306527 | CONTROLLING THE VALIDITY PERIOD OF A DECRYPTION KEY - The invention provides a method and a system for allowing access to a digital broadcast stream on a client device in a conditional access system, wherein the start time and end time of events in the broadcast stream are predefined. If entitled, a server system transmits for an even the start time and end time to the client device. As long as the current time, which is also transmitted from the server system to the client device, is within the range from the start time to the end time, the client device is allowed to decrypt the broadcast stream. To allow events to extend in time without requiring the generation of a new end time, the start time and end time on the one hand and the current time on the other hand are defined on different timescales. | 12-02-2010 |
| 20100303282 | FINGERPRINTING A DATA OBJECT - Embodiments of the invention provide a method and a system for fingerprinting a data object at a server system and a method and a system for extracting the fingerprint from the data object at a client system. Sections of a data object are watermarked with known watermark data to create a first and a second variant of the data object, whereby the section boundaries are optionally saved as metadata. Using the metadata, the first and second variant are combined by taking sections from the variants to create a fingerprinted data object. From the fingerprinted data object, the watermark data can be extracted again. | 12-02-2010 |
| 20100251285 | CONDITIONAL ENTITLEMENT PROCESSING FOR OBTAINING A CONTROL WORD - Embodiments of the invention provide an improved method and an improved receiver for obtaining a control word. Two or more subkeys are obtained in a receiver. Each subkey was encrypted under control of a key received in an entitlement message or transformed under control of a seed received in an entitlement message. After decryption or transformation, the subkeys are combined to obtain the control word. Typically at least one of the entitlement messages is a positive entitlement message and at least one of the entitlement messages is a negative entitlement message. Embodiments of the invention can be used in a conditional access system such as a Pay-TV system. | 09-30-2010 |
| 20100246822 | SECURELY PROVIDING SECRET DATA FROM A SENDER TO A RECEIVER - The invention provides a system and a method for securely providing a secret data from a sender to one or more receivers. The receiver uses a sequence of functions originating from a hierarchy of functions to migrate the secret data from an input transform space to an output transform space using a mathematical transformation under control of one or more seeds. The seeds are provided to the receiver by the sender. The sender conditionally allows the receiver to obtain the secret data by controlling the seeds. | 09-30-2010 |
| 20100218206 | VIEWER PRESENCE DETECTION - One embodiment of the present invention sets forth a method for determining a chance that a user is present at a current time while a client device is tuned to a channel by monitoring a user input to the client device and determining a time when the user provides the user input. At the time when the user provides the user input, the chance is assigned an initial value. After that, the chance varies over time according to a first function. The chance that the user is present at the current time is then determined using the initial value and the first function. As a result, a chance of a user being present while a client device plays out media segments may be determined without incurring the costs of providing additional hardware and without requiring the user to register and unregister. | 08-26-2010 |
| 20100211797 | SECURELY PROVIDING A CONTROL WORD FROM A SMARTCARD TO A CONDITIONAL ACCESS MODULE - Various embodiments of the invention provide a method, a smartcard, a conditional access module (CAM) of a receiver and a receiver, such as e.g. a set-top box, for securely providing a control word from the smartcard to the CAM. In various embodiments, diversification data from the smartcard and the CAM is used to make the encryption key and decryption key to encrypt and decrypt the control word in the smartcard and CAM, respectively, dependent on a user interaction with the receiver, such as e.g. selecting a service in the set-top box. | 08-19-2010 |
| 20100034382 | SIGNCRYPTION SCHEME BASED ON ELLIPTIC CURVE CRYPTOGRAPHY - Embodiments include a method and a system for signcrypting data based on elliptic curve cryptography. In a head-end system data is encrypted using a random point R and digitally signed using the random point R. Only the x-coordinate R | 02-11-2010 |
| 20100020969 | MONITORING USAGE OF ENCRYPTED BROADCAST SERVICES - Embodiments include a method and system for monitoring usage of an encrypted broadcast service, such as an encrypted television program, in a secure client module such as a SIM card. An encrypted entitlement control message is received from a head-end system via the intermediary of a client device. A service identifier indicative of the encrypted broadcast service is obtained from the decrypted entitlement control message and, in dependence of the decrypted entitlement control message, status data being indicative of a status of the broadcast service is generated. The service identifier and the status data are stored in a memory of said secure client module and can be transmitted to an external server. | 01-28-2010 |
| 20090271814 | METHOD AND SYSTEM FOR ACTIVATING A DECODER DEVICE - Various embodiments of the invention provide a method for activating one or more secondary decoder devices in a home network. A head-end system activates a primary decoder device and initializes the secondary decoder devices. The primary decoder device activates the initialized secondary decoder device. The secondary decoder device is deactivated upon expiration of a timer value until reactivated by the primary decoder device. | 10-29-2009 |
| 20090254937 | Conditional access system and smartcard for use in conditional access system - Embodiments of the invention include a conditional access system comprising a terminal and a smartcard, wherein the terminal comprises a user interface for interaction with an end-user, comprising an output for displaying first user interaction data and an input for generating second user interaction data in response to the first user interaction data; and a descrambler configured for descrambling scrambled content, and wherein the smartcard is configured for generating the first user interaction data and allowing, in dependence of the second user interaction data received from the user interface, the descrambler to descramble the scrambled content. | 10-08-2009 |
| 20090199003 | SMART CARD AND METHOD FOR USING A SMART CARD - The invention provides as smart card, a secured client with a smart card and a method for use in a smart card. The smart card is configured for counting ECMs associated to a particular portion of the content stream and storing loyalty points on the smart card. This enables e.g. counting of ECMs related to advertisements. Watching advertisements results in earning loyalty points that can be used to watch television programs for free. | 08-06-2009 |
| 20090193252 | METHOD AND SYSTEM FOR SECURE PEER-TO-PEER COMMUNICATION - The invention provides a server system, client, method and program element for distributing content in a peer-to-peer network. The server system spits a file into segments and makes copies of the segments for clients to download. Each segment is encrypted with a unique encryption key and marked. Identifiers of encrypted segments are transmitted to clients such that each client receives a unique set of identifiers enabling the client to download a unique set of encrypted segments from other clients and/or from the server system. | 07-30-2009 |
| 20090183004 | CONDITIONAL ACCESS SYSTEM - The invention provides an improved conditional access system with efficient bandwidth usage on the interface between a receiver and a conditional access module. The conditional access system has a receiver, a selection module, a conditional access module and possibly a terminal. The conditional access module has a first memory for storing service identifiers of services and transmits one or more service identifiers to the selection module. The selection module receives an input signal from the receiver and selects from the input signal those sub-signals as identified by the service identifiers and transmits the sub-signals to the conditional access module. | 07-16-2009 |
| 20090100446 | METHOD AND SYSTEM OF EXTERNAL DATA STORAGE - A method of external data storage in a system including a primary processing device, having a processor and a primary data storage unit, adapted to run application programs for processing active records in the processor and configured to store data belonging to active records in the primary data storage unit; and a secondary data storage system, accessible to the primary processing device, includes loading data belonging to an active record into the primary data storage unit and externalising the record by transferring at least a piece of data belonging to the record to the secondary data storage system for storage. The step of externalising a record includes the making of a call by an application program using data belonging to the record to an interface, arranged to transfer the piece of data to the secondary data storage system. | 04-16-2009 |
| 20090067621 | Method of providing an encrypted data stream - A method of providing an encrypted data stream, includes obtaining a first data stream, partitioned into sections corresponding to key periods, each of a plurality of the key periods being associated with a respective value of a key, wherein each section corresponding to a key period associated with a value of the key includes at least one encrypted data unit decryptable using that associated key value, obtaining a sequence of key messages, at least some of which carry key information for obtaining at least one of the key values, obtaining a replacement data stream section, forming an encrypted output data stream, corresponding at least partially to the first data stream, by inserting the replacement data stream section so as to replace a corresponding part of the first data stream with a tail end of the replacement data stream section preceding at least part of a section of the first stream corresponding to a certain key period, and providing as output the encrypted output data stream in synchrony with an associated stream of key messages. A key message carrying key information for obtaining the key value associated with the certain key period is included in the stream of key messages so as to coincide with a point of the encrypted output data stream preceding the tail end of the replacement data stream section. | 03-12-2009 |
