Presentation is loading. Please wait.

Presentation is loading. Please wait.

Company confidential: Internal usage only. Protecting Content for MobileTV BES Conference February 2007.

Similar presentations


Presentation on theme: "Company confidential: Internal usage only. Protecting Content for MobileTV BES Conference February 2007."— Presentation transcript:

1 Company confidential: Internal usage only. Protecting Content for MobileTV BES Conference February 2007

2 2 Company confidential: Internal usage only. Agenda Mobile TV Service & Content Protection Irdeto Solutions Agenda

3 3 Company confidential: Internal usage only. Agenda Mobile TV Service & Content Protection Irdeto Solutions Agenda

4 4 Company confidential: Internal usage only. Digital Convergence Mobile Communications Television Mobile TV Mobile Communications Over 2 billion GSM subscribers) 3 billion subscribers expected by end of 2010 (Ovum). Television Over 4 billion users Attractive new services Easy to understand Successful launch (over cellular network) … but issue with network capacities

5 5 Company confidential: Internal usage only. The Return Channel Mobile Broadcasting networks and cellular networks (GSM, GPRS or UMTS) are complementary to Mobile TV services. The cellular networks provide a return channel for: Service request Service charging/payment Video-on-Demand (VOD) Other interactive services (voting, betting, information) Mobile Netowrk Operator (GSM, GPRS, UMTS) Mobile Broadcaster (DVB-H)

6 6 Company confidential: Internal usage only. Challenges facing Mobile TV A true consumers value proposition (not simply a technology) Content (Live TV / TV-on demand / Push TV, not simply a rebroadcast of terrestrial content) Relevant Services (Interactivity, ESG and additional information) Positive user experience (Easy to use & easy to pay service) Value for money & Straightforward pricing Consumers Demand and acceptance Business factors Business models Co-operation along the value chain (win- win) Regulatory factors Frequency allocation and Licensing Technology factors Standardization, Availability of terminals Interoperability Network (reception in mobile situation) Similar to Cellular networks Delivery costs low enough for a profitable value chain International roaming ? Service & Content Protection To set up a trustworthy environment To secure revenue streams

7 7 Company confidential: Internal usage only. Agenda Mobile TV Service & Content Protection Irdeto Solutions Agenda

8 8 Company confidential: Internal usage only. Why Service & Content Protection? Service and Content protection is critical for the success of mobile business models. Want to protect the rights of their assets, and to control their consumption Want to secure revenues Want Trust in the delivery mechanism Want to protect their return on investment Want to build a trustworthy network Want to optimize revenues through multiple subscription models Prepared to pay for premium content. Want choice and flexibility in the way they consume content. Content Owners Service Providers Consumers

9 9 Company confidential: Internal usage only. Service & Content Protection Ensures that only paying customers have access to content Solution: Conditional Access (CA) Controls the use of content once it has reached the device Solution: Digital Rights Management (DRM) The two technologies can work together to protect recorded content ! Service ProtectionContent Protection Live Broadcast Re-Distribution

10 Company confidential: Internal usage only. Digital Rights Management (DRM)

11 11 Company confidential: Internal usage only. Downloading Services to Mobiles Pictures Ringtones Games Video clips Music MP3 Mobile phones have evolved into multimedia devices Technologies enable efficient delivery of rich multimedia content (from ring tones to live TV) to mobiles Peer-to-peer connection

12 12 Company confidential: Internal usage only. Mobile DRM Rich multimedia content is delivered to mobile devices Rich multimedia content is delivered to mobile devices Opportunity to define new ways of selling, distributing and consuming content Opportunity to define new ways of selling, distributing and consuming content Protects the interests of the content rights owner, by providing a way to control access to the use and consumption of digital content Protects the interests of the content rights owner, by providing a way to control access to the use and consumption of digital content

13 13 Company confidential: Internal usage only. Standards Many proprietary standards (e.g. Microsoft, iTunes) Open standard specified by OMA The Open Mobile Alliance (OMA) is a mobile industry organization dedicated to promoting the worldwide adoption of mobile data services by emphasizing interoperability across devices and networks. OMA was formed in June The 350 member companies represent the worlds leading mobile operators, device and network suppliers, information technology companies, application developers and content providers. OMA DRM specifications released: - OMA DRM 1.0 (2004) - OMA DRM 2.0 (2006) The IPR licensing terms & conditions are defined by the CMLA (Content Management License Administrator) which is a licensing and compliance entity formed to provide a full solution implementation of OMA DRM 2.0.

14 14 Company confidential: Internal usage only. OMA DRM 1.0 DRM v.1.0 Features: Combined delivery DRM message ContentRights Combined delivery Adds rights definition to control content usage Forward lock Content DRM message Forward lock Device prohibited from forwarding content to other devices Separate delivery Rights Content Enable super distribution Separate delivery

15 15 Company confidential: Internal usage only. OMA DRM 2.0 Enhanced Security Higher security to ensure authenticity and integrity of both content and right object Rights object and content encryption key encrypted using devices public key to bind to target device Mutual authentication between device and rights issuer Rights issuer can accurately identify device to determine revocation status (Device revocation) DRM v.2.0 Features: More Security More business models Support for a variety of distribution and payment use cases while enhancing user experience User can preview content User can register several devices for playback (Domain) DRM content can be shared between devices Non-connected devices acquire content rights via connected device Use of removable media/storage

16 16 Company confidential: Internal usage only. OMA DRM Architecture Purchase rights and establish trust Deliver protected rights object Super-distribute content to a friend Share content within a user-domain Establish Trust, purchase and deliver rights object Browse to website and download protected content Content Issuer Content Encryption keys Rights Issuer User

17 17 Company confidential: Internal usage only. DRM not suitable for Mobile TV Device-based DRM does not work for Mobile TV Japanese mobile giant NTT DoCoMo is scrambling to release a new version of its popular mobile TV handset after unscrupulous users found a loophole allowing them to watch free mobile TV. (loss of 250 per handset) A breach in Microsoft DRM A program called Fairuse4wm has been posted on the net and is said to be capable of bypassing Microsofts Digital Rights Management (DRM) system. BSkyB has suspended its Sky by Broadband movie service until Microsoft patches a security loophole in its Windows DRM technology Fixing DRM does not work ! "DRM is fundamentally an impossible problem. Making it work at all involves tricks, and breaking DRM is akin to "fixing" the software so the tricks don't work. Anyone looking for a demonstration that technical DRM is doomed should watch this story unfold. (Bruce Schneier on Microsoft DRM, 15 October 2006)

18 Company confidential: Internal usage only. Conditional Access (CA)

19 19 Company confidential: Internal usage only. Mobile Broadcast Services TV channels Radio Channels Data Live broadcast multimedia content is accessible by mobile phones Delivers content to a large audience more cost-effectively than a cellular network S-DMB DVB-H T-DMB

20 20 Company confidential: Internal usage only. Mobile CA TV and Radio services delivered to enabled mobile devices only TV and Radio services delivered to enabled mobile devices only Restricts service access to paying subscribers only Restricts service access to paying subscribers only

21 21 Company confidential: Internal usage only. Mobile Broadcasting Technologies MBMS (3GPP) Multimedia Broadcast Multicast Service is a broadcasting service that requires a UMTS network upgrade. ISDB-T (NHK) Terrestrial TV standard in Japan and Brazil. Also usable for mobile TV. MediaFLO (Qualcomm) Proprietary technology. DMB (Digital Multimedia Broadcasting) Digital radio transmission system for sending multimedia to mobile devices. Based on Eureka-147 DAB standard Accepted as a standard by ETSI. DVB-H (Digital Video Broadcasting-Handheld) Standard based on DVB-T and adapted to Handhelds Accepted as a standard by ETSI

22 22 Company confidential: Internal usage only. Mobile Broadcasting Technologies DVB-HT-DMBS-DMBMBMSFLO NetworkTerrestrial Satellite + Terrestrial Terrestrial OriginDVB-TDAB ITU-R Digital System E UMTSCDMA Channel size 5,6,7,8 MHz1.5 MHz25 MHz5 MHz6 MHz Bit rate7 to 11 Mbps1.5 Mbps7.68 Mbps0.384 MbpsUp to 11 Mbps BandUHF, VHF, L S(UMTS)UHF, VHF, L Number of TV channels Up to 30Up to kbps) Up to 30Up to 3Up to 30 Adoption/ Tests WorldwideKorea, China, Europe Korea-US/UK Industry support StrongMediumLow

23 23 Company confidential: Internal usage only. Competing CA Standards SIM approachBCast smart card profile Security related functions in (U)SIM and fully standardised KMS Open Security Framework (OSF) Proprietary KMS Device software approach DRM profile Extension of OMA DRM 2.0 to support broadcast. 18Crypt Fully standardised KMS Spec. not expected to be completed before end-2007 Spec. released.

24 24 Company confidential: Internal usage only. OSF vs. 18Crypt Issue with 18Crypt when a breach occurs: Does the MNO have a dedicated and specialized team to investigate hacked phones? Who is liable? Handset manufacturers will deny responsibility as they comply with standard requirements. Moreover there might be a conflict of interest as a hacked phone might generate more handset sales Stack provider, software vendor, OS provider, …?? If the handset manufacturer does not solve the breach the content owner will stop providing content and start legal action The keys of the phone can be revoked. But if one phone is pirated all phones in that model are very likely to be pirated. And this might lead to high operational costs to manage phone replacement or customer complaints 18Crypt model OSF model

25 25 Company confidential: Internal usage only. Overall Mobile Architecture IPEModulator Irdeto CA Control System Control Word (CW) ECMs EMMs (U)SIM or SMD Irdeto PIsys offers: State-of-art security Numerous business models Simplicity of use Ease of integration Advanced bandwidth management. Encoder Encoder + Scrambler Subscriber Management System SMS-C OTA server

26 26 Company confidential: Internal usage only. Mature & proven CA technologies available for Mobile service protection Irdeto has developed two innovative technologies: Dual Key Hierarchy – limits bandwidth required for key exchange Rapid Refresh – increases security through rapid cycling of rights Mobile subscribers may be roaming or powered down for significant periods, but demand immediate gratification. The delivery of EMMs Over The Air (OTA) helps in reducing costs and ensures their rapid delivery to the device. Adapting CA solution to Mobile

27 27 Company confidential: Internal usage only. Irdeto CA Key Hierarchy Typical Key UsageTypical Key Lifespan Key ManagementMonths Group size: 4,096 ~ 16,380 Devices Key & Entitlement Management Days/Weeks Group size: 256 ~ 1,792 Devices CW ProvisioningHours/Minutes Per Service/Event ScramblingSeconds Per 10s Content (crypto-period)

28 28 Company confidential: Internal usage only. Agenda Mobile TV Service & Content Protection Irdeto Solutions Agenda

29 Company confidential: Internal usage only. CA Business Models

30 30 Company confidential: Internal usage only. Supported CA Business Models Irdeto PIsys for Mobile supports different CA models: SubscriptionSubscription for a fixed duration, can either be a single channel or a bouquet Pre-Paid with voucherVouchers are entitling particular package and duration. Enabling via phone (IVR or SMS) or Internet. Pre-enablementFree entitlement with flexible channel-choice Ordered Pay per ViewSubscribers order an event via SMS, phone or internet every time they wish to watch an event Local Pay per ViewSubscriber has credit stored on SIM card. Credits are debited when the subscriber wishes to watch an event. Impulse Pay per ViewCredit stored on SIM but purchases are reported via return path to operator for (pre/post) billing and logging purposes Video on demandContent to be delivered over the broadcast channel (Push VOD or nVOD) or over the cellular network (VOD over 3G). PVRPush-VOD, DRM models; CA and DRM integration required

31 Company confidential: Internal usage only. Head-end & Client Architectures

32 32 Company confidential: Internal usage only. Head-end architecture Scrambler Encoder IP EncapsulatorMultiplexer Scheduling System Subscriber Management System Content ECMGEISKMSEMMG Conditional Access System Database OTA ServerSMS-C GSM/ UMTS DVB-H Simulcrypt ECMs/CWs IB EMMs OOB EMMs Applet Mgmt Components supplied by Irdeto

33 33 Company confidential: Internal usage only. Client Side Architecture ESG SDP Content Mobile Device DVB-H Receiver GSM Receiver IP Stack ESG Client KMS Device Agent (Softcell) Decoder Applications SMS BIP GSM/ UMTS DVB-H CDP EMM ECM EMM ECM/CW EMM/Msgs Descrambler CW CA Applet (U)SIM Components supplied by Irdeto

34 34 Company confidential: Internal usage only. Hardware Component Irdeto supports 2 secure hardware components: SMD (Surface Mounted Device) SIM (Subscriber Identity Module) SMD can be supplied by Irdeto to manufacturer to be placed directly on the chipboard of their device. This is adapted for: Non-connected devices (PDAs, Portable Multimedia Players (PMPs), in-car devices) Phones without SIMs (CDMA phones) SIM is a smart card that securely stores the key identifying a mobile phone service subscriber, as well as subscription information, preferences and text messages. The equivalent of a SIM in UMTS is a Universal Subscriber Identity Module ( USIM ). Irdeto will place its secure Java applet on the existing MNOs SIM card.

35 35 Company confidential: Internal usage only. Benefits of the (U)SIM The (U)SIM is owned by the MNOs. It is their only asset in the mobile device. MNOs have full control over it. With DVB-H and an Irdeto CA solution, MNOs will keep ownership of their subscriber base. The (U)SIM is a tamper resistant device and as such, it offers high levels of security. With the Irdeto CA solution, the (U)SIM handles all security related processing (ECMs and EMMs). The (U)SIM offers easy-to-manage customer relationship. Customer management and service provisioning can be handled via the OTA server. In addition, security updates can be managed without swapping terminals or impacting the customer experience. Irdetos basic requirements for the (U)SIM are: JavaCard V2.1.2 & Global Platform V2.1.1 Irdeto applet size on (U)SIM: ~30K Other security related requirements (available upon request).

36 Company confidential: Internal usage only. Interoperability

37 37 Company confidential: Internal usage only. Technology Partners Head-End PlatformsDevicesSIM Cards Irdeto partners with H/E equipment vendors to offer an integrated solution for broadcasting and mobile services, including service & content protection. Irdeto provides the necessary support to device manufacturers to ensure highly reliable and efficient integrations. The process is based on field experience with device manufacturers for TU Media. Irdetos solution is based on (U)SIM cards as well as OTA platforms, together with the technical expertise of leading smart card manufacturers.

38 38 Company confidential: Internal usage only. Some DVB-H devices

39 Company confidential: Internal usage only. USPs & Case Studies

40 40 Company confidential: Internal usage only. Irdeto USPs Proven & Secure technologies: Conditional Access Solution optimized for Mobile environment Bandwidth saving techniques - Dual hierarchy keys - Delivery of rights out-of-band - On-going bandwidth consumption enhancements… Based on the OSF specification Single accountable owner for security Solution based on the (U)SIM - Flexibility - High level of security - Requirement from the MNOs as they have full control on it Flexibility - In case of a breach, only the Irdeto applet needs to be updated. This can be done over-the-air. - Support of multiple subscription models that can be customized to the operators needs - SimulCrypt Ease of integration for client (based on experience with over 20 different device manufacturers) Convergence of CA and DRM based on our knowledge and expertise in both areas

41 41 Company confidential: Internal usage only. Worlds First Mobile Multimedia Broadcasting Service March 2004: Satellite launch May 2005: Commercial launch of TU Media service May 2006: 540,000 subscribers August 2006: 680,000 subscribers 7,877 gap fillers in Coverage over 58 cities. Ku-Band 13,824-13,883 GHz S-Band 2,630-2,655 GHz Ku-Band 12,214-12,239 GHz S-DMB Broadcasting center

42 42 Company confidential: Internal usage only. ServicesDevices 15 video channels Entertainment, Sport, News, Music, Movie, Drama, Adult, Games, Education & MLB 19 audio channels Over 40 different devices including mobile Phones, PDAs, in-car devices, PMPs. Irdeto supplied over 2 millions SMDs/SIMs to the Korean S-DMB device manufacturers. Pricing Initial Subscription fee: Approx. US$16 Monthly Subscription fee: Approx. US$ Premium Channel: US$ 3-4 per month

43 43 Company confidential: Internal usage only. Service launched before the 2006 world cup of Football in Germany on May 31 st, (Berlin, Stuttgart, Köln, Frankfurt, München, Nürnberg, Hamburg, Leipzig, Hannover, Dortmund, Gelsenkirchen, Saarbrücken) Services 4 video channels 2 DAB audio channels Pricing 24 months subscription contract Monthly subscription fee: 9.95 Samsung handset: 169 LG handset: 99


Download ppt "Company confidential: Internal usage only. Protecting Content for MobileTV BES Conference February 2007."

Similar presentations


Ads by Google