Abstract: A method of acquiring access rights to conditional access content. The method comprises receiving an access right on a first terminal through a first communication channel; storing said access right in said first terminal; sending a request for said conditional access content to a content provider, said request containing at least an identifier of an account to which said first terminal is associated, an identifier of the requested content and a piece of information concerning said access right; verifying, by said content provider, the authenticity of said access right using said piece of information concerning the access right; and when there has been a successful verification, marking said access right as used, and sending said conditional access content to at least one terminal linked to said account. The first terminal using near field communication technology (NFC) during at least one transfer of said access rights.

Abstract: A method for updating a table of correspondence between a logical address associated to a user unit in a communication network and a unique identification number associated to one of a group of user units managed by a management center, a method where messages are exchanged between said management center and a specific user unit of said group by using said communication network, these messages being forwarded to the logical address of the specific user in said network, the method including searching in said table for the logical address of the user unit in said communication network corresponding to the unique identification number of the specific user unit; sending of messages to the user unit having the concerned unique identification number, to the logical address corresponding to said communication network; and if the messages are received incorrectly, sending a request containing an identifier of said specific user unit.

Abstract: The present invention concerns the generation of a key necessary to decrypt audio/video contents by genuine decoding units. It concerns in particular a method to secure the reception of a broadcast content managed by a control center and encrypted by at least one content key, said content key or a data allowing to recover said content key being transmitted to the decoding units encrypted by a transmission key common to the decoding units, each decoding unit having at least one environment parameter known by the control center, said decoding unit receiving from the control center a first message common to all decoding units and comprising the encrypted transmission key and a second message, pertaining to said decoding unit and comprising correction data dedicated to said decoding unit, the decryption of the transmission key being made using the environment parameter and the correction data.

Abstract: The invention concerns a method for controlling access to encrypted data (CT) by control words (CW), said control words being received by a security module in control messages (ECM) and returned to a unit operating on the encrypted data. Said control messages (ECM) contain at least one first control word (CW1) and a second control word (CW2), said control words each allowing access to the encrypted data (CT) during a predetermined period called cryptoperiod (CP). Said method includes the following steps: sending said encrypted data to at least one operating unit; and sending control messages (ECM) to said control unit, such a control message (ECM) containing at least two specific control words (CW1, CW2) being sent to the operating unit after sending the data encrypted by said first control word (CW1) and before sending the data encrypted by said second control word (CW2).

Abstract: In a pay television system, the choice and the confirmation of an impulse purchase are performed by the user on presentation, by means of a screen, of a grid of programmes. The selection by this user of a particular programme of his choice from the grid is subsequently confirmed in the system by an entitlement management message, this message being specific to an impulse purchase. In order to authorize the immediate screening of the selected transmission, the entitlement management message specific to an impulse purchase is contained in the data tied to the presentation of the grid.

Abstract: A method is for securing and verifying an electronic certificate issued by an authority to an owner. The certificate is stored in the memory of a user unit operated by the owner. The user unit transmits all or part of the data of the certificate to the authority. Further, during an initialization phase, the method includes determining, by the authority, a network identifier pertaining to the user unit, and storing, by the authority, the identifier in connection with the data of the certificate. As such, the use of an electronic certificate by individuals other than the owner may be prevented. Further, damages to the owner, in the case of the theft or copying of a certificate, may be avoided.

Abstract: The invention refers to a method of updating a multi-operator reception system by administration (EMM) and updating messages between a subscriber management system and one or several decoders of pay television, being the functioning of the decoder dependent on the reception of administration (EMM) and updating messages of at least one preferential operator, this decoder having to pass into stand-by state under certain conditions. If the subscriber uses mostly an operator that does not require subscription rights, the decoder does not receive any more the necessary updating. To switch this decoder into the stand-by state, the method according to the invention carries out the following operations: switching of the reception to one or several preferential operators, receiving and processing of the messages of management of rights (EMM), determining of the end of a complete cycle of reception messages, switching to the stand-by state.

Abstract: The present invention concerns the generation of a key necessary to decrypt audio/video contents by genuine decoding units. It concerns in particular a method to secure the reception of a broadcast content managed by a control center and encrypted by at least one content key, said content key or a data allowing to recover said content key being transmitted to the decoding units encrypted by a transmission key common to the decoding units, each decoding unit having at least one environment parameter known by the control center, said decoding unit receiving from the control center a first message common to all decoding units and comprising the encrypted transmission key and a second message, pertaining to said decoding unit and comprising correction data dedicated to said decoding unit, the decryption of the transmission key being made using the environment parameter and the correction data.

Abstract: Example embodiments relate to a method for granting customers access to a product or a set of products. The method may include providing by the customer through a secured communication network, a code to a registration center, wherein the code being unique, transmitting the code from the registration center to an authorization center, retrieving the identifier of the product or the set products from the code, by requesting a data base or calculating the identifier, and transmitting, by the authorization center, an authorization code to the customer terminal, wherein the authorization code allows access to the product or the set of products.

Abstract: This invention relates to a security module comprising a microprocessor, a program memory containing at least one operating program and unique identification means of said module. This security module is characterized in that the identification means are constituted by a set of unique and artificial computer codes, compatible with their execution by said microprocessor of the module and stored in the program memory. The invention also concerns a personalization method of a security module by a unique identifier, this module comprising a microprocessor and a program memory containing at least one operating program. The method of the invention is characterized in that it includes the steps of generation of a unique set of computer codes, called artificial computer codes and the writing of this set of codes in the program memory in specific memory locations.

Abstract: This invention relates to a Method for updating a table of correspondence between a logical address associated to a user unit in a communication network and a unique identification number associated to a user unit of a group of user units managed by a management centre, a method in which messages are exchanged between said management centre and at least one specific user unit of said group by means of said communication network, these messages being forwarded to the specific user unit using the logical address of said user unit in said network, wherein it includes the steps of searching in said table of correspondence for the logical address of the user unit in said communication network corresponding to the unique identification number of the specific user unit; of sending of messages to the user unit having the concerned unique identification number, to the logical address corresponding to said communication network; in the case of incorrect reception of the messages, sending of a request containing an iden

Abstract: The invention concerns a method for controlling access to encrypted data (CT) by control words (CW), said control words being received by a security module in control messages (ECM) and returned to a unit operating on the encrypted data. Said control messages (ECM) contain at least one first control word (CW1) and a second control word (CW2), said control words each allowing access to the encrypted data (CT) during a predetermined period called cryptoperiod (CP). Said method includes the following steps: sending said encrypted data to at least one operating unit; and sending control messages (ECM) to said control unit, such a control message (ECM) containing at least two specific control words (CW1, CW2) being sent to the operating unit after sending the data encrypted by said first control word (CW1) and before sending the data encrypted by said second control word (CW2).

Abstract: This application concerns the display of a television event list and its access methods. This application concerns a method for processing an event list grid broadcasted by a provider, in particular of Pay-TV events, this grid intended to be displayed on at least one multimedia unit, comprising the following steps: creation and diffusion to the multimedia unit of a first list of the events diffused by said provider, this list comprising at least descriptive data for the events and an event identifier; this method being characterized in that it includes the following additional steps: creation and diffusion of a second list comprising at least one subscription method identifier for a given event identifier, creation and diffusion of a third list comprising descriptive data of the subscription method for each subscription method identifier.

Abstract: A method of production and distribution of asymetric public and private keys between a key generation centre and at least one user unit (DEC), the unit comprising a security module (SM), the method consisting in generating certificates comprising a public key and a private key in a first cryptographic unit (KPG), coding the private key by use of a service key in the first cryptographic unit (KPG) and storing the private key in a key memory (KPS), when sending the keys to a user unit, extracting the keys from the key memory (KPS), composing the certification with the public key, decoding the corresponding private key by use of the service key in a cryptographic security module and coding it with a transport key of the user.

Abstract: This invention concerns a system and a method of transmission and storage of audio/video data in encrypted form between a distribution centre and at least one exploitation module. Instead of transmitting the information allowing the decryption in parallel to said data, these information are regrouped in a decryption data file comprising equally the data that define the access conditions to said audio/video data. This file is stored independently from said data and can be used for either an immediate use or a deferred one.

Abstract: This invention relates to a security module comprising a microprocessor, a program memory containing at least one operating program and unique identification means of said module. This security module is characterized in that the identification means are constituted by a set of unique and artificial computer codes, compatible with their execution by said microprocessor of the module and stored in the program memory. The invention also concerns a personalization method of a security module by a unique identifier, this module comprising a microprocessor and a program memory containing at least one operating program. The method of the invention is characterized in that it includes the steps of generation of a unique set of computer codes, called artificial computer codes and the writing of this set of codes in the program memory in specific memory locations.

Abstract: This invention relates to a conditional access data decryption system, in particular used in the domain of digital pay television. This system includes a diffusion centre (10) arranged to diffuse data encrypted by control-words (cw), at least one management centre (11) arranged to diffuse personal messages (ECM, EMM) related to the management of access means to encrypted data, an operating device (12) intended to render usable said encrypted data, and a decoder (13) arranged to decrypt at least one part of the encrypted data. This decoder is placed between the diffusion centre (10) and the operating device (12). This decoder (13) comprises a module (14) for the reception and decryption of encrypted data and a module (15) for the management of access rights to this data. The reception module (14) is connected or integrated into the operating device (12) and the management module (15) is arranged to communicate with the reception module.

Abstract: A method is for securing and verifying an electronic certificate issued by an authority to an owner. The certificate is stored in the memory of a user unit operated by the owner. The user unit transmits all or part of the data of the certificate to the authority. Further, during an initialization phase, the method includes determining, by the authority, a network identifier pertaining to the user unit, and storing, by the authority, the identifier in connection with the data of the certificate. As such, the use of an electronic certificate by individuals other than the owner may be prevented. Further, damages to the owner, in the case of the theft or copying of a certificate, may be avoided.

Abstract: The invention refers to a method of updating a multi-operator reception system by administration (EMM) and updating messages between a subscriber management system and one or several decoders of pay television, being the functioning of the decoder dependent on the reception of administration (EMM) and updating messages of at least one preferential operator, this decoder having to pass into stand-by state under certain conditions.

Abstract: This invention concerns a method for granting customers access to a product or a set of products, comprising the steps of: