| CPC H04N 21/835 (2013.01) [H04L 9/0819 (2013.01); H04L 9/0822 (2013.01); H04L 9/0825 (2013.01); H04L 9/083 (2013.01); H04L 9/088 (2013.01); H04L 9/14 (2013.01); H04L 9/16 (2013.01); H04N 7/1675 (2013.01); H04N 21/4405 (2013.01); H04N 21/63345 (2013.01)] | 14 Claims |
|
9. A method of descrambling a scrambled service, the method comprising:
receiving, by an operator server, a first challenge from a client device, the challenge including at least an identifier of the client device and an identifier of the operator server;
determining entitlement of the client device to descramble the scrambled service;
when the client device is entitled to descramble the scrambled service, determining, by the operator server, a device-derived key by applying a predetermined algorithm to a unique device key corresponding to the client device and a global operator seed corresponding to the operator server;
forming, by the operator server, a unique cryptogram by encrypting the device-derived key with the global operator seed;
transmitting, from the operator server to the client device, a certificate corresponding to the client device, the certificate including the unique cryptogram;
receiving, by the operator server, a second challenge from the client device, the second challenge including at least a certificate corresponding to the client device; and
providing, from the operator server to the client device in response to the second challenge, a license from the operator server, the license including at least a service key encrypted with the device-derived key, wherein the client device uses the service key in the license to descramble the scrambled service,
a plurality of global operator seeds corresponding to a plurality of cryptographic generations are stored; and
the method further comprises changing a cryptographic generation (1) if a current global operator seed is compromised, or (2) periodically.
|