| 题名 | 数字电视有条件接收机顶盒系统软件及其安全升级方案的研究与实现 |
| 作者 | 黄菲 |
| 学位类别 | 博士 |
| 答辩日期 | 2005 |
| 授予单位 | 中国科学院声学研究所 |
| 授予地点 | 中国科学院声学研究所 |
| 关键词 | 机顶盒 条件接收系统 在线升级 数据广播 双重认证 安全升级 |
| 其他题名 | Studies and Implementation on Set-Top-Box System Software and its upgrade in the Conditional Access System in DVB-C |
| 中文摘要 | 随着数字电视网络中业务和服务内容的不断丰富,用户对终端设备-数字电视机顶盒使用性能的需求不断提高。有条件接收和在线升级技术成为现阶段数字电视机顶盒研究开发中必须解决的两个关键技术。有条件接收系统(ConditionalAeeessSystem)对用户实现观看控制,是开展付费电视、交互电视的前提手段。有条件接收系统是通过动态随机生成控制字(ControlWord,CW)的对复用后的传输流进行加扰,并对控制字的传输进行控制的系统。其表现为授权用户可以获得与非授权用户不同的服务,从而实现有偿服务。密钥的分发是保证有条件接收系统安全的关键。在线升级技术是终端设备实时地在线更新系统软件的技术。只需在广播码流中插入签名认证后的程序文件,就可批量地升级机顶盒中的系统软件,保证机顶盒对网络中未来服务功能的支持。机顶盒引导程序对数据的定位、拼接以及认证是实现此功能的关键。本文对DVB条件接收功能的实现原理进行深入的研究,详细分析集成CAK的一般实现过程,并以集成Irdet。公司的条件接收内核(ConditionalAccessKernel,CAK)为例,实现了机顶盒的条件接收功能。集成Irdeto公司CAK的机顶盒,已经通过该公司关于条件接收的预测试,可在同密有条件接收系统中稳定使用。通过对MPEG-2数据广播原理以及在线升级原理的深入分析,设计并实现了终端机顶盒的引导程序。采用数据广播中数据管道方式,实现机顶盒中软件在线升级的功能。性能达到了Irdeto公司预测试方案对在线升级的各项要求。在刘"条件接收系统以及在线升级功能的深入研究基础上,提出并实现了分模块更新系统软件的安全系统软件升级方案。该方案采用了标准的DvB数据轮播方式实现终端系统软件数据的传输下载,对机顶盒存储空间进行高效分配,对传输中的数据的管理信息进行定义,采用双重认证保证软件数据的安全升级,实现了分模块更新系统软件的功能。该方案提供机顶盒在线升级的灵活性,大幅减少了系统中的网络流量和升级等待时间,降低升级过程中系统断电造成的机顶盒不可使用的概率。该实现方案在实验环境下可以稳定运行,已申请发明专利。 |
| 英文摘要 | With the abundance of the service and content in the digital TV network, the high performance of Set-Top-Box(STB) is required . Conditional Access and system software update over air are the key technology in the STB. Conditional Access System (CAS), which can prevent unauthorized access to streaming media and ensure the benefit of the operator, is an essential part of Internet-Pay-TV system. In the CAS, the MUXed transport stream is scrambled with the pseudo random binary sequence that generated by the control word (CW), the distribution of the CW is also under the control of CAS. With provided the authorized user and the unauthorized user different service, pay-service is realized by CAS. The security of CAS is depended on the distribution of the key. In order to upgrade a batch of STB system software easily, the technique of system software update over air is applied. To provide this service, data contain software and signature is needed to insert in the network. This service removes software bugs within it and ensures that the STB can support the future service in the network .The data requisition, assemblation and authentication are the key points of the system software update over air. Based on the analysis of the principle of CAS, we illuminate the common integration of Conditional Access Kernel (CAK) with example of the integration of Irdeto CAK. The integration makes the STB work as the CAS terminal .The STB system software with the integrated Irdeto CAK has passed the design verification test for conditional access of Irdeto. After the principle of data broadcast and upgrade software over air and DVB data broadcast analyzed, datapiping is used to implement the system software upgrade over air. The performance has reached the requirement of Irdeto design verification test for loader. Based on the deep analysis of several CAS and system upgrade over air , We propose and implement a secure system software update design that supports module update. To realize the function, the design uses the software modularization, flash efficient allocation and jump program. The solution also makes use of the DVB data carousel mechanism to transmit data and double authentication to secure the software update. The solution can make the system software update more flexible, and the performance of the system software update has greatly improved. This design can run steadly in experimental condition, and we submit a patent application for this solution. |
| 语种 | 中文 |
| 公开日期 | 2011-05-07 |
| 页码 | 78 |
| 内容类型 | 学位论文 |
| 源URL | [http://159.226.59.140/handle/311008/1006]  |
| 专题 | 声学研究所_声学所博硕士学位论文_1981-2009博硕士学位论文 |
| 推荐引用方式 GB/T 7714 | 黄菲. 数字电视有条件接收机顶盒系统软件及其安全升级方案的研究与实现[D]. 中国科学院声学研究所. 中国科学院声学研究所. 2005. |
| 个性服务 |
| 查看访问统计 |
| 相关权益政策 |
| 暂无数据 |
| 收藏/分享 |
除非特别说明,本系统中所有内容都受版权保护,并保留所有权利。
修改评论