1、 ETSI TR 102 825-12 V1.1.1 (2011-03)Technical Report Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM);Part 12: CPCM Implementation Guidelines ETSI ETSI TR 102 825-12 V1.1.1 (2011-03)2Reference DTR/JTC-DVB-222-12 Keywords broadcast, DVB ETSI 650 Route des Lucioles F
2、-06921 Sophia Antipolis Cedex - FRANCE Tel.: +33 4 92 94 42 00 Fax: +33 4 93 65 47 16 Siret N 348 623 562 00017 - NAF 742 C Association but non lucratif enregistre la Sous-Prfecture de Grasse (06) N 7803/88 Important notice Individual copies of the present document can be downloaded from: http:/www.
3、etsi.org The present document may be made available in more than one electronic version or in print. In any case of existing or perceived difference in contents between such versions, the reference version is the Portable Document Format (PDF). In case of dispute, the reference shall be the printing
4、 on ETSI printers of the PDF version kept on a specific network drive within ETSI Secretariat. Users of the present document should be aware that the document may be subject to revision or change of status. Information on the current status of this and other ETSI documents is available at http:/port
5、al.etsi.org/tb/status/status.asp If you find errors in the present document, please send your comment to one of the following services: http:/portal.etsi.org/chaircor/ETSI_support.asp Copyright Notification No part may be reproduced except as authorized by written permission. The copyright and the f
6、oregoing restriction extend to reproduction in all media. European Telecommunications Standards Institute 2011. European Broadcasting Union 2011. All rights reserved. DECTTM, PLUGTESTSTM, UMTSTM, TIPHONTM, the TIPHON logo and the ETSI logo are Trade Marks of ETSI registered for the benefit of its Me
7、mbers. 3GPPTM is a Trade Mark of ETSI registered for the benefit of its Members and of the 3GPP Organizational Partners. LTE is a Trade Mark of ETSI currently being registered for the benefit of its Members and of the 3GPP Organizational Partners. GSM and the GSM logo are Trade Marks registered and
8、owned by the GSM Association. ETSI ETSI TR 102 825-12 V1.1.1 (2011-03)3Content Intellectual Property Rights 11g3Foreword . 11g3Introduction 11g31 Scope 12g32 References 12g32.1 Normative references . 12g32.2 Informative references 12g33 Definitions and abbreviations . 14g33.1 Definitions 14g33.2 Abb
9、reviations . 14g34 Reference Model implementation 14g34.1 CPCM Device and CPCM Instances 14g34.1.1 Implementing different CPCM Instances in the same CPCM Device 14g34.1.2 CPCM Instances and CPCM Functions 15g34.1.2.1 CPCM Device Example 15g34.1.2.2 CPCM Device with a smart card plug-in 16g34.2 Selec
10、tion of suitable CPCM Functions for a device . 17g34.2.1 Portable Media Player . 17g34.2.2 Pay-TV Personal Video Recorder . 18g34.2.3 Pay-TV Set-Top-Box 18g34.2.4 Home Gateway . 19g34.2.5 Home media entertainment Server 19g34.2.6 Receiver for unscrambled Audio 20g34.2.7 Receiver for scrambled Audio
11、21g34.2.8 CPCM Display Adaptor 22g34.2.9 Integrated Digital TV Set without network connectivity 23g34.2.10 Integrated Digital TV Set with network connectivity . 23g34.2.11 Common Interface Module with Integrated Digital TV including a PVR 24g34.2.12 Personal Computer 25g34.2.13 Mobile Phone 28g34.2.
12、14 Mobile TV 29g34.2.15 Common Interface Adaptor for non-CPCM TV . 30g34.3 CPCM Content . 30g34.4 CPCM Content Management . 31g34.4.1 Acquisition 32g34.4.2 Storage 32g34.4.3 Consumption . 33g34.4.4 Processing . 33g34.4.5 Export . 33g34.5 CPCM Content Licence Management 33g34.6 CPCM and private Exten
13、sions 34g34.6.1 Extension Definition . 34g34.6.2 Extension trust 35g34.7 CPCM Technical Compliance Essential, or potentially Essential, IPRs notified to ETSI in respect of ETSI standards“, which is available from the ETSI Secretariat. Latest updates are available on the ETSI Web server (http:/webapp
14、.etsi.org/IPR/home.asp). Pursuant to the ETSI IPR Policy, no investigation, including IPR searches, has been carried out by ETSI. No guarantee can be given as to the existence of other IPRs not referenced in ETSI SR 000 314 (or the updates on the ETSI Web server) which are, or may be, or may become,
15、 essential to the present document. Foreword This Technical Report (TR) has been produced by Joint Technical Committee (JTC) Broadcast of the European Broadcasting Union (EBU), Comit Europen de Normalisation ELECtrotechnique (CENELEC) and the European Telecommunications Standards Institute (ETSI). N
16、OTE: The EBU/ETSI JTC Broadcast was established in 1990 to co-ordinate the drafting of standards in the specific field of broadcasting and related fields. Since 1995 the JTC Broadcast became a tripartite body by including in the Memorandum of Understanding also CENELEC, which is responsible for the
17、standardization of radio and television receivers. The EBU is a professional association of broadcasting organizations whose work includes the co-ordination of its members activities in the technical, legal, programme-making and programme-exchange domains. The EBU has active members in about 60 coun
18、tries in the European broadcasting area; its headquarters is in Geneva. European Broadcasting Union CH-1218 GRAND SACONNEX (Geneva) Switzerland Tel: +41 22 717 21 11 Fax: +41 22 717 24 81 The Digital Video Broadcasting Project (DVB) is an industry-led consortium of broadcasters, manufacturers, netwo
19、rk operators, software developers, regulatory bodies, content owners and others committed to designing global standards for the delivery of digital television and data services. DVB fosters market driven solutions that meet the needs and economic circumstances of broadcast industry stakeholders and
20、consumers. DVB standards cover all aspects of digital television from transmission through interfacing, conditional access and interactivity for digital video, audio and data. The consortium came together in 1993 to provide global standardisation, interoperability and future proof specifications. Th
21、e present document is part 12 of a multi-part deliverable. Full details of the entire series can be found in part 1 i.3. Introduction CPCM is a system for Content Protection Specification for the use of Video and Audio Coding in Broadcasting Applications based on the MPEG-2 Transport Stream“. i.2 ET
22、SI TS 102 005: “Digital Video Broadcasting (DVB); Specification for the use of Video and Audio Coding in DVB services delivered directly over IP protocols“. i.3 ETSI TS 102 825-1: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 1: CPCM Abbreviations, Defini
23、tions and Terms“. i.4 ETSI TS 102 825-2: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 2: CPCM Reference Model“. i.5 ETSI TR 102 825-13: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 13: CPCM Compliance Framewo
24、rk“. i.6 ETSI TS 102 825-14: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 14: CPCM Extensions“. i.7 ETSI TS 102 825-3: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 3: CPCM Usage State Information“. i.8 ETSI T
25、R 102 825-11: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 11: CPCM Content management scenarios“. i.9 ETSI TS 102 825-4: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 4: CPCM System Specification“. ETSI ETSI
26、TR 102 825-12 V1.1.1 (2011-03)13i.10 ETSI EN 300 468 “Digital Video Broadcasting (DVB); Specification for Service Information (SI) in DVB systems“. i.11 ETSI TS 102 825-9: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 9: CPCM System Adaptation Layers“. i.
27、12 ETSI TS 102 825-7: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 7: CPCM Authorized Domain Management“. i.13 ETSI TS 101 162: “Digital Video Broadcasting (DVB); Allocation of identifiers and codes for Digital Video Broadcasting (DVB) systems“. i.14 ETS
28、I TS 102 825-5: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 5: CPCM Security Toolbox“. i.15 ETSI TS 102 833: “Digital Video Broadcasting (DVB); File Format Specification for the Storage and Playback of DVB Services“. i.16 Wolfgang Killmann, Werner Schin
29、dler: “A Proposal for functionality classes and evaluation methodology for true (physical) random number generators.“ . i.17 NIST SP800-22: “A Statistical Test Suite for Random and Pseudorandom Number Generators for Cryptographic Applications“. i.18 FIPS140-1: “Security Requirements for cryptographi
30、c modules.“. i.19 FIPS140-2: “Security Requirements for cryptographic modules“. i.20 G. Marsaglia: “DIEHARD Statistical Tests“. NOTE: Available at http:/www.stat.fsu.edu/pub/diehard/. i.21 ETSI TS 101 211: “Digital Video Broadcasting (DVB); Guidelines on implementation and usage of Service Informati
31、on (SI)“. i.22 ISO/IEC 14496-12:2008: “Information Technology - Coding of audio-visual objects - Part 12: ISO base media file format“, third edition.“. i.23 ETSI TS 102 905: “Digital Video Broadcasting (DVB); Technical Specification for DVB Services in the Home Network Phase 1“. i.24 IETF RFC 791: “
32、Internet Protocol (IP)“. i.25 CENELEC EN 50221 “Common Interface Specification for Conditional Access and other Digital Video Broadcasting Decoder Applications.“. i.26 ETSI TS 101 699 (V1.1.1): “Digital Video Broadcasting (DVB); Extensions to the Common Interface Specification“. i.27 ETSI TS 102 034
33、: “Digital Video Broadcasting (DVB); Transport of MPEG-2 TS Based DVB Services over IP Based Networks“. i.28 ETSI TS 102 825-10: “Digital Video Broadcasting (DVB); Content Protection and Copy Management (DVB-CPCM); Part 10: CPCM Acquisition, Consumption and Export Mappings“. i.29 ISO/IEC 7816: “ Ide
34、ntification cards - Integrated circuit(s) cards with contacts“. ETSI ETSI TR 102 825-12 V1.1.1 (2011-03)143 Definitions and abbreviations 3.1 Definitions For the purposes of the present document, the terms and definitions given in TS 102 825-1 i.30 apply. NOTE: In some cases, for ease of reading, de
35、finitions are repeated in the present document. In case of conflict, the terms in TS 102 825-1 i.31 will take precedence. 3.2 Abbreviations For the purposes of the present document, the abbreviations given in TS 102 825-1 i.32 and the following apply. NOTE: In some cases, for ease of reading, abbrev
36、iations are repeated in the present document. In case of conflict, the abbreviation in TS 102 825-1 i.33 will take precedence. CI Common Interface PRNG Pseudo Random Number Generator TRNG True Random Number Generator 4 Reference Model implementation 4.1 CPCM Device and CPCM Instances 4.1.1 Implement
37、ing different CPCM Instances in the same CPCM Device A CPCM Device may implement one or more CPCM Instances. The decision to have one or more CPCM Instances in one CPCM device is guided by the following considerations: A CPCM Instance may implement several CPCM Functions. Each CPCM Instance has its
38、own certificate and as such may be individually identified or revoked. It is therefore possible to revoke a given CPCM Instance in a CPCM Device without affecting the behaviour of other CPCM Instances present in the same CPCM Device. As each CPCM Instance may be revoked separately, implementations n
39、eed to be such that the compromising of one CPCM Instance does not affect other CPCM Instances in the same CPCM Device. Consequently, a CPCM Instance will not be able to access Secure Data of other CPCM Instances in the same CPCM Device. Similarly, implementations of two CPCM Instances in the same C
40、PCM device will be distinct so that the compromising of one implementation does not affect the behaviour of other implementations. Thus, the implementation cost is likely to grow with the amount of different CPCM Instances. Unless otherwise authorised by the applicable C in this case, the smart card
41、 will work only with devices implementing that proprietary extension, most likely with devices from the same manufacturer. Using a standardised CPCM extension: in this case the interface will probably be secured using CPCM SAC. However, additional messages may need to be defined for the extension (e
42、.g. to transmit the Content Descrambling Key). The smart card is likely to work with any device from any manufacturer, as long as it implements the CPCM extension. 4.2 Selection of suitable CPCM Functions for a device This clause gives examples for CPCM implementers in order to help them determine w
43、hich CPCM Functions need to be implemented in their products to achieve their design requirements. 4.2.1 Portable Media Player This example of a Portable Media Player, PMP, is a device that is able to receive CPCM content from a CPCM sourcing device to record it locally and to play back the content
44、for consumption. This playback can occur on the integrated screen or on a remote display using a digital link, protected with a dedicated CPS. Figure 3: Portable Media Player Example For this example, the following CPCM Functions are to be implemented: Storage Entity, for the PMP local storage Consu
45、mption Point, for the integrated screen Export Point to the CPS used on the digital link There is also a possibility that the PMP device can provision content for a target device be it CPCM or not; the PMP device supports a resident or downloadable application that can process the content, e.g. down
46、-resolution or transcode. In such case, a Processing Entity Function is needed. ETSI ETSI TR 102 825-12 V1.1.1 (2011-03)184.2.2 Pay-TV Personal Video Recorder This example of a PVR is a device that is able to receive content from a Pay-TV operator, to record it locally and to play back the content u
47、sing an analogue output. The analogue output has an analogue protection system. Figure 4: Pay-TV Personal Video Recorder Example For this example, the following CPCM Functions are to be implemented: Acquisition Point, to import content into CPCM from the Pay-TV CAS Storage Entity, for the local stor
48、age Consumption Point, for the analogue output function Export Point Function is not needed since the analogue output is protected. 4.2.3 Pay-TV Set-Top-Box In this example, a Set Top Box is a device that is able to receive content from a Pay-TV operator and to play it back using a digital output th
49、at includes a protection system. Figure 5: Set-Top-Box Example ETSI ETSI TR 102 825-12 V1.1.1 (2011-03)19For this example, the following CPCM Functions are to be implemented: Acquisition Point, to import content into CPCM from the Pay-TV CAS Consumption Point, for the digital output function Export Point Function is not needed since the digital output is protected. 4.2.4 Home Gateway In this example, the Home Gateway is capable of receiving non-CPCM content, storing it internally