A method and system for tracking video copies of a digital set-top box
By automatically collecting and analyzing the EDID data of HDMI connected devices, and combining 3DES encryption and CRC verification mechanisms, a device fingerprint database is constructed, solving the problem of tracking illegal copying of digital TV programs and achieving efficient and accurate identification and blocking of illegal devices.
Patent Information
- Authority / Receiving Office
- CN · China
- Patent Type
- Applications(China)
- Current Assignee / Owner
- ZHUHAI GOTECH INTELLIGENT TECH CO LTD
- Filing Date
- 2026-03-18
- Publication Date
- 2026-06-19
AI Technical Summary
Existing technologies are insufficient to efficiently and accurately track and prevent the illegal copying and rebroadcasting of digital television programs through set-top boxes. Furthermore, these methods are vulnerable to hacking and are difficult and time-consuming to detect manually.
By automatically collecting and analyzing the EDID data of HDMI connected devices, using 3DES encryption and CRC verification mechanisms, combined with big data analysis technology, illegal copying behavior is identified and blocked, a device fingerprint database is built, and the DVB standard transmission shutdown command is followed.
It achieves automated tracking with a response time of minutes, improves the accuracy of identifying unauthorized devices, reduces maintenance costs, builds a comprehensive content security system, and blocks unauthorized connections in real time.
Smart Images

Figure CN122248220A_ABST
Abstract
Description
Technical Field
[0001] This invention relates to the field of digital television technology, specifically to a method and system for tracking video copying from digital set-top boxes. It is applicable to the front-end technology of DVB (Digital Video Broadcasting) operators and aims to effectively track and prevent the illegal copying and secondary broadcasting of digital television programs through set-top boxes. Background Technology
[0002] Currently, digital television programs, after video encoding and transcoding, are pushed as TS (Transport Stream) streams to the data upload center according to the DVB standard, and then transmitted to the user area via terrestrial, cable, or satellite signals. Users receive the signal using set-top boxes and search for programs to watch. However, some unregulated operators, seeking illegal profits, connect the set-top box's HDMI (High-Definition Multimedia Interface) cable to an encoder or capture card to re-encode and rebroadcast the live program source. Although HDCP (High-bandwidth Digital Content Protection) technology provides a certain degree of protection for video content, some encoding devices and capture cards also possess HDCP keys, making secondary broadcasting difficult to avoid.
[0003] Current techniques for detecting secondary broadcasts primarily rely on front-end watermarking and manual video detection to trace the original set-top box from which the copy was made, thereby shutting down that set-top box. However, this method has the following significant drawbacks: High difficulty in detection: It requires extensive market research or reliance on user reports to detect copying behavior. Due to the large number of operators in the market, it is difficult to distinguish between legitimate operators and those that copy videos.
[0004] Long cycle: The process of manually discovering and verifying copying behavior is tedious and time-consuming, resulting in a long tracking cycle.
[0005] Vulnerable to hacking: Watermarking technology can be manipulated by hackers, further increasing the difficulty of human detection. Summary of the Invention
[0006] To address the various shortcomings of existing technologies, this invention provides a method and system for tracking video copying from digital set-top boxes. By automatically collecting and analyzing EDID (Extended Display Identification Data) data from HDMI connected devices, it accurately identifies and prevents illegal copying, reduces the risk of video copying, improves tracking efficiency, and lowers maintenance costs.
[0007] The present invention achieves the above objectives through the following technical solutions: A system for tracking video copies from a digital set-top box, comprising: The server sends data acquisition instructions to the set-top box; The set-top box receives EDID data from connected devices. When it receives the command to upload EDID data from the server, it packages the collected EDID data, the set-top box's unique serial number, and the original MAC address, and sends the packaged data to the designated server via the UDP protocol. The server receives and parses the packaged data, decrypts the encrypted EDID data using the 3DES algorithm, and stores the decrypted and verified EDID data into the database in VESA EDID format. Based on the characteristics of the EDID data stored in the database, the server classifies different devices connected to the set-top box and determines whether there are any suspicious or illegal devices in the device categories. When the server determines that there is a non-compliant device, it generates a shutdown command and sends the shutdown command to the forwarding server; The forwarding server receives the shutdown command sent by the server, packages the shutdown command into a private TS stream according to the DVB standard, and then forwards the private TS stream to the program IP multiplexer. The set-top box obtains the TP signal through the DVB-S / T / C signal, filters out the private TS stream from the fixed PID, parses the shutdown command in the private TS stream, and performs a shutdown operation based on the parsing result to block the HDMI connection with the suspected non-compliant device.
[0008] According to a method for tracking video copying from a digital set-top box provided by the present invention, the server sends a data acquisition command to the set-top box, including: The server generates data acquisition instructions and control parameters, and sends them to the instruction server via network protocol. After receiving the server's instructions, the instruction server encapsulates them into data packets conforming to the IP protocol and transmits them to the IP multiplexer. The IP multiplexer multiplexes the instruction data with the original TS stream to generate a new TS stream containing control instructions; The new TS stream is modulated using the DVB-S / T / C standard by a modulator to generate an RF signal that conforms to the digital television transmission standard. Radio frequency signals are transmitted to set-top boxes in user areas via terrestrial broadcasting, wired networks, or satellite communications; The set-top box receives radio frequency signals and demodulates them into a TS stream, extracting control commands from fixed PID values. The set-top box reads the EDID data of the connected device through the HDMI interface according to the data acquisition parameters in the control command, and uploads it to the server in a preset format.
[0009] According to the present invention, a method for tracking video copies from a digital set-top box includes a packaged data format comprising: HEADER: Fixed identifier field, occupying 4 bytes, used to identify the data packet type and version information; LEN: Data length field, occupying 2 bytes, used to record the total length of subsequent valid data; SN: The unique serial number field for the set-top box, occupying 6 bytes, is used to uniquely identify the set-top box device; MAC: MAC address field, occupying 6 bytes, used to record the network interface hardware address of the set-top box; EncryptData: Encrypted data field, occupying Len-12-6 bytes, uses the 3DES symmetric encryption algorithm to encrypt EDID data and other sensitive information; CRC: Check field, occupying 4 bytes, used to store the CRC32 check value, used to verify that the data has not been tampered with.
[0010] According to the present invention, a method for tracking video copying from a digital set-top box includes the following structure for the EncryptData field: EDID: Device Extended Display Identifier data field, occupying 256 bytes, is used to store the original EDID information of the device under test collected through the HDMI interface. This information is transmitted after being encrypted by the 3DES algorithm. MAC address copy: Verify the MAC address field, occupying 6 bytes, used to store a copy of the set-top box's MAC address. The MAC address field and the original MAC address transmitted in the packet header form a dual verification mechanism. After the server decrypts, it needs to compare whether the two MAC addresses are consistent to verify data integrity.
[0011] According to the present invention, a method for tracking video copying from a digital set-top box is provided. During data packaging, the set-top box reads its own unique serial number and the original MAC address of the network interface through its internal interface; it establishes communication with the connected device through the HDMI interface and collects the device's EDID data. The collected raw EDID data is concatenated with the raw MAC address of the set-top box to generate a data block to be verified. The CRC32 algorithm is used to calculate the check value of the data block to be checked, and a 4-byte CRC check code is generated. Based on the XOR operation between the last 4 bytes of the set-top box's unique serial number and the first 2 bytes of the original MAC address, an 8-byte dynamic key Key[8] is generated; The 3DES encryption algorithm is used to triple-encrypt the concatenated EDID data and the original MAC address with the dynamic key Key[8] to generate the ciphertext EncryptData, which has a length of Len-12-6 bytes.
[0012] According to the present invention, a method for tracking video copying from a digital set-top box includes the following steps: The server decrypts encrypted EDID data using the 3DES algorithm. The server extracts the set-top box's unique serial number and original MAC address from the received data packets; An 8-byte decryption key Key[8] is generated according to the preset rules, which is: Key[8] = {MAC [4], SN[0], MAC [5], SN[1], SN[2], SN[3], SN[4], SN[5]} Among them, MAC[4] and MAC[5] are the 5th and 6th bytes of the original MAC address, and SN[0]~SN[5] are the 1st to 6th bytes of the plaintext data block containing the original EDID data and the MAC verification copy, obtained by the SN server using the generated Key[8] as the symmetric key and decrypting the encrypted field EncryptData in the data packet through the 3DES algorithm.
[0013] According to the present invention, a method for tracking video copying from a digital set-top box performs a dual verification phase after obtaining the plaintext data block: MAC address comparison: The server extracts a copy of the MAC checksum from the plaintext data block and compares it byte by byte with the original MAC address transmitted in the header of the data packet. If they do not match, the data is determined to have been tampered with and the processing is terminated. CRC checksum verification: The server recalculates the CRC32 checksum of the decrypted EDID raw data and compares it with the CRC field in the data packet. If they do not match, a transmission error is determined and the process is terminated. For the original EDID data that has passed dual verification, the server parses its field structure according to the VESA EDID standard and extracts key device data; the parsed structured data is stored in the database and associated with the set-top box SN, MAC address and collection timestamp to form a traceable device fingerprint database.
[0014] The present invention provides a method for tracking video copying from digital set-top boxes. Based on the differences in EDID attributes of different devices, it summarizes and analyzes a large amount of EDID data, classifies devices according to EDID characteristics, and determines whether there are any suspicious or illegal devices in the device categories. The method includes the following steps: Collect EDID data of various devices and display them in categories through a web page. The displayed content includes the basic information of the devices and their corresponding EDID attributes. Based on the manufacturer ID in the EDID data, display the corresponding brand information on the web page and sort it according to the manufacturer ID to ensure that the same ID is displayed only once; Key attributes are extracted from EDID data to serve as the basis for device classification; Based on the extracted EDID attribute features, the devices are divided into different categories using preset classification rules and algorithms, with each category having similar EDID attribute features; For each device category, determine whether there are any suspicious or non-compliant devices in that category based on the specified combination of attributes in the EDID attribute characteristics; If a suspicious device is identified as violating regulations, its unique set-top box serial number is located. The device is then identified as a copying device, and control commands are sent to process it. Simultaneously, relevant data is sent to a repeater for further processing.
[0015] According to the present invention, a method for tracking video copying in a digital set-top box is provided, wherein the data processing module inside the set-top box filters out a private TS stream containing a shutdown command from the received TP signal based on a preset fixed PID. The set-top box parses the filtered private TS stream and extracts the shutdown command contained therein; The set-top box executes the corresponding shutdown operation based on the specific content of the shutdown command obtained from the parsing, specifically blocking the HDMI connection with the suspected unauthorized device; The plaintext format of the shutdown command includes command type, command length, switch status, device identifier, and multiple fields for specifying shutdown conditions, including at least CEC, HDR, RGB, resolution, serial number, audio support, and device name.
[0016] A system for tracking video copies from a digital set-top box, comprising: The set-top box is used to receive EDID data from connected devices and upload EDID data and execute shutdown commands according to server instructions. The server is used to send data collection commands, receive and parse EDID data uploaded by set-top boxes, perform big data analysis to determine whether there are any unauthorized devices, and send shutdown commands. The forwarding server is used to receive the server's shutdown command and package it into a private TS stream according to the DVB standard and forward it to the program IP multiplexer. The database is used to store the parsed EDID data; The data analysis module, running on the server, is used to classify devices and determine violations based on the characteristics of EDID data. Therefore, compared with the prior art, the tracking method and system for video copying from digital set-top boxes proposed in this invention have the following advantages: 1. This invention automatically collects EDID data from HDMI-connected devices via a set-top box and uses big data analytics for real-time comparison and classification. Compared to traditional manual detection methods, this system achieves full automation, reducing the tracking cycle from days or even weeks to minutes, significantly improving response speed.
[0017] 2. This invention constructs a device fingerprint database by parsing key parameters such as manufacturer ID, resolution support, color format, and HDMI CEC protocol in the EDID, which can improve the accuracy of identifying illegal devices such as encoders and capture cards.
[0018] 3. This invention employs dynamic encrypted transmission (3DES algorithm) and CRC verification mechanism to effectively prevent hackers from tampering with EDID data. Even if an attacker forges the EDID, the system can still perform secondary verification by analyzing encoder characteristics such as fixed resolution values and default serial numbers.
[0019] 4. Traditional solutions require a large number of on-site verification personnel, while this invention only requires data analysis to complete large-scale monitoring. The system is compatible with existing DVB-S / T / C standard set-top boxes, eliminating the need to replace terminal equipment. This invention's innovative technology of transmitting shutdown commands via non-network port signals can improve the coverage of older models, significantly reducing equipment upgrade costs.
[0020] 5. This invention constructs a comprehensive content security system with the function of blocking illegal connections in real time. Through HDMI output control technology, it cuts off illegal copying paths at the physical layer.
[0021] The present invention will now be described in further detail with reference to the accompanying drawings and specific embodiments. Attached Figure Description
[0022] Figure 1 This is a flowchart of an embodiment of a method for tracking video copying from a digital set-top box according to the present invention.
[0023] Figure 2 This is a schematic diagram illustrating the data flow principle of an embodiment of a method for tracking video copying from a digital set-top box according to the present invention.
[0024] Figure 3This is an operation flowchart of an embodiment of a method for tracking video copying from a digital set-top box according to the present invention.
[0025] Figure 4 This is a flowchart illustrating the server's data processing operations in an embodiment of a method for tracking video copying from a digital set-top box according to the present invention.
[0026] Figure 5 This is a flowchart illustrating the classification and determination of non-compliant devices in an embodiment of a method for tracking video copying from a digital set-top box according to the present invention.
[0027] Figure 6 This is a flowchart of a forwarding server in an embodiment of a method for tracking video copying from a digital set-top box according to the present invention. Detailed Implementation
[0028] To make the objectives, technical solutions, and advantages of this invention clearer, the technical solutions of this invention will be clearly and completely described below with reference to the accompanying drawings. Obviously, the described embodiments are only some, not all, of the embodiments of this invention. All other embodiments obtained by those skilled in the art based on the embodiments of this invention without creative effort are within the scope of protection of this invention.
[0029] In this document, the term "embodiment" means that a particular feature, structure, or characteristic described in connection with an embodiment may be included in at least one embodiment of this application. The appearance of this phrase in various places throughout the specification does not necessarily refer to the same embodiment, nor is it a separate or alternative embodiment mutually exclusive with other embodiments. It will be explicitly and implicitly understood by those skilled in the art that the embodiments described herein can be combined with other embodiments.
[0030] An embodiment of a method for tracking video copies from a digital set-top box. See Figures 1 to 3 This embodiment provides a method for tracking video copying from a digital set-top box, including the following steps: Step S1: The server sends a data acquisition command to the set-top box; Step S2: The set-top box receives the EDID data of the connected device. When it receives the instruction to upload EDID data sent by the server, it packages the collected EDID data, the set-top box's unique serial number (SN), and the original MAC address, and sends the packaged data to the designated server via the UDP protocol. Step S3: The server receives and parses the packaged data, decrypts the encrypted EDID data using the 3DES algorithm, and stores the decrypted and verified EDID data into the database in VESA EDID format. Step S4: The server classifies different devices connected to the set-top box based on the characteristics of the EDID data stored in the database, and determines whether there are any suspicious or illegal devices in the device categories. Step S5: When the server determines that there is a non-compliant device, it generates a shutdown command and sends the shutdown command to the forwarding server; Step S6: The forwarding server receives the shutdown command sent by the server, packages the shutdown command into a private TS stream according to the DVB standard, and then forwards the private TS stream to the program IP multiplexer. Step S7: The set-top box obtains the TP signal through the DVB-S / T / C signal, filters out the private TS stream from the fixed PID, parses the shutdown command in the private TS stream, and performs the shutdown operation according to the parsing result to block the HDMI connection with the suspected non-compliant device.
[0031] In step S1 above, the server sends a data acquisition command to the set-top box, including: The server generates data acquisition instructions and control parameters, and sends them to the instruction server via network protocol. After receiving the server's instructions, the instruction server encapsulates them into data packets conforming to the IP protocol and transmits them to the IP multiplexer. The IP multiplexer multiplexes the instruction data with the original TS stream to generate a new TS stream containing control instructions; The new TS stream is modulated using the DVB-S / T / C standard by a modulator to generate an RF signal that conforms to the digital television transmission standard. Radio frequency signals are transmitted to set-top boxes in user areas via terrestrial broadcasting, wired networks, or satellite communications; The set-top box receives radio frequency signals and demodulates them into a TS stream, extracting control commands from fixed PID values. The set-top box reads the EDID data of the connected device through the HDMI interface according to the data acquisition parameters in the control command, and uploads it to the server in a preset format.
[0032] In step S2 above, as shown in Table 1, the packaged data format includes: HEADER: Fixed identifier field, occupying 4 bytes, used to identify the data packet type and version information; LEN: Data length field, occupying 2 bytes, used to record the total length of subsequent valid data; SN: The unique serial number field for the set-top box, occupying 6 bytes, is used to uniquely identify the set-top box device; MAC: Raw MAC address field, occupying 6 bytes, used to record the network interface hardware address of the set-top box; EncryptData: Encrypted data field, occupying Len-12-6 bytes, uses the 3DES symmetric encryption algorithm to encrypt EDID data and other sensitive information; CRC: Check field, occupying 4 bytes, used to store the CRC32 check value, used to verify that the data has not been tampered with.
[0033] Table 1: Packed Data Format
[0034] As shown in Table 2, the structure of the EncryptData field includes: EDID: Device Extended Display Identifier data field, occupying 256 bytes, is used to store the original EDID information of the device under test collected through the HDMI interface. This information is transmitted after being encrypted by the 3DES algorithm. MAC address copy: Verify the MAC address field, occupying 6 bytes, used to store a copy of the set-top box's MAC address. The MAC address field and the original MAC address transmitted in the packet header form a dual verification mechanism. After the server decrypts, it needs to compare whether the two MAC addresses are consistent to verify data integrity.
[0035] As can be seen, this field structure achieves end-to-end encryption through the 3DES algorithm generated by dynamic key generation, ensuring the confidentiality and tamper resistance of EDID data during transmission.
[0036] Table 2: Structure of EncryptData
[0037] During data packaging, the set-top box reads its own unique serial number (SN) and the original MAC address of the network interface through its internal interface; it establishes communication with the connected device through the HDMI interface and collects the device's EDID data. The collected raw EDID data is concatenated with the raw MAC address of the set-top box to generate a data block to be verified. The CRC32 algorithm is used to calculate the check value of the data block to be checked, and a 4-byte CRC check code is generated. Based on the XOR operation between the last 4 bytes of the set-top box's unique serial number and the first 2 bytes of the original MAC address, an 8-byte dynamic key Key[8] is generated; The 3DES encryption algorithm is used to triple-encrypt the concatenated EDID data and the original MAC address with the dynamic key Key[8] to generate the ciphertext EncryptData, which has a length of Len-12-6 bytes.
[0038] Assemble the data packet according to the preset data format and fill in the following information in sequence: Fixed HEADER field (4 bytes, value 0x2a8b6389) The LEN field (2 bytes, recording the total length of the subsequent ciphertext and checksum) SN field (6 bytes) MAC field (6 bytes) EncryptData field (encrypted data) CRC field (4 bytes, storing the checksum generated in step 2) Send the complete data packet to the specified server IP address and port via the UDP protocol.
[0039] As can be seen, this method ensures the confidentiality, integrity, and device uniqueness verification of EDID data during transmission through dynamic key generation and dual verification mechanisms.
[0040] In step S3 above, such as Figure 4 As shown, the server decrypts the encrypted EDID data using the 3DES algorithm, including the following steps: The server extracts the set-top box's unique serial number and original MAC address from the received data packets; An 8-byte decryption key Key[8] is generated according to the preset rules, which is: Key[8] = {MAC [4], SN[0], MAC [5], SN[1], SN[2], SN[3], SN[4], SN[5]} Among them, MAC[4] and MAC[5] are the 5th and 6th bytes of the original MAC address, and SN[0]~SN[5] are the 1st to 6th bytes of the plaintext data block containing the original EDID data and the MAC verification copy, obtained by the SN server using the generated Key[8] as the symmetric key and decrypting the encrypted field EncryptData in the data packet through the 3DES algorithm.
[0041] After obtaining the plaintext data block, perform the two-factor authentication phase: MAC address comparison: The server extracts a copy of the MAC checksum from the plaintext data block and compares it byte by byte with the original MAC address transmitted in the header of the data packet. If they do not match, the data is determined to have been tampered with and the processing is terminated. CRC checksum verification: The server recalculates the CRC32 checksum of the decrypted EDID raw data and compares it with the CRC field in the data packet. If they do not match, a transmission error is determined and the process is terminated. For the original EDID data that has passed dual verification, the server parses its field structure according to the VESA EDID standard, as shown in Table 3, and extracts key data such as device manufacturer information, product identification, and display parameters; the parsed structured data is stored in the database and associated with the set-top box SN, MAC address and collection timestamp to form a traceable device fingerprint database.
[0042] As can be seen, this embodiment ensures the trusted processing and compliant storage of EDID data on the server side through dynamic key generation, MAC-CRC dual verification, and standardized parsing process.
[0043] Table 3: VESA EDID Standard Fields
[0044] In step S4 above, as Figure 5 As shown, based on the differences in EDID attributes of different devices, a large amount of EDID data is aggregated and analyzed to classify devices according to EDID characteristics and determine whether there are any suspicious or non-compliant devices in the device categories. This includes the following steps: Collect EDID data of various devices and display them in categories through a web page. The displayed content includes the basic information of the devices and their corresponding EDID attributes. Based on the manufacturer ID in the EDID data, the corresponding brand information is displayed on the web page and sorted by manufacturer ID to ensure that the same ID is displayed only once, so as to clearly view the equipment of each brand. Key attributes were extracted from the EDID data, as shown in Table 4, including but not limited to supported resolutions, color support, CEC and EARC support, and these attributes were used as the basis for device classification.
[0045] Table 4: Equipment Classification Attributes
[0046] Based on the extracted EDID attributes, the devices are divided into different categories using preset classification rules and algorithms, with each category having similar EDID attribute characteristics. For each device category, the serial number (SN) of the device is determined based on the specified attribute combination in the EDID, such as encoder and capture card information (in cases where there is no CEC feature or the device is different from the manufacturer ID). Combined with the manufacturer ID and name, the device is queried from the network big data to determine whether it belongs to a TV brand or other preset rules, and whether there are any suspicious or non-compliant devices in the category. If a suspicious device is identified as violating regulations, its unique set-top box serial number is located. The device is identified as a copying device, and control commands are sent to disconnect it. At the same time, relevant data is sent to the repeater for further processing.
[0047] As can be seen, this embodiment effectively improves the efficiency of equipment compliance detection and management by comprehensively summarizing and analyzing EDID data and accurately classifying and judging violations based on its attributes.
[0048] In step S7 above, the data processing module inside the set-top box filters out the private TS stream containing the shutdown command from the received TP signal according to the preset fixed PID (PacketIdentifier). The set-top box parses the filtered private TS stream and extracts the shutdown command contained therein; The set-top box executes the corresponding shutdown operation based on the specific content of the shutdown command obtained from the parsing, specifically blocking the HDMI connection with the suspected unauthorized device; The plaintext format of the shutdown command includes command type (Cmd type), command length (Cmd len), on / off status (On / Off), device identifier (ID), and multiple fields for specifying shutdown conditions, including CEC, HDR, RGB, resolution, serial number, audio support (Audio), and device name (name).
[0049] In step S5 above, as shown in Tables 5 and 6, the data transmission format for the shutdown command includes: Header: Fixed data, 4 bytes; SN: 6 bytes of data used for conditional filtering TS in set-top boxes; ServerIP: The server's valid IP address, 6 bytes; len: Valid data length, 2 bytes; EncryptData: Encrypted data, using the 3DES algorithm. The encryption key KEY consists of an 8-byte KEY composed of ServerIP and Header. crc: Verifies data integrity, 4 bytes.
[0050] Table 5: Data Transmission Format
[0051] Table 6: Plaintext Format of EncryptData
[0052] As can be seen, the method in this embodiment effectively ensures the timely handling of suspicious and unauthorized devices by following the DVB standard to transmit the shutdown command and the set-top box to accurately receive, filter, parse, and execute the command, thereby improving the reliability and effectiveness of the video copy tracking system.
[0053] like Figure 6 As shown, the forwarding server receives the sent instructions, parses the sent instructions, and obtains the relevant parameters for data packaging and forwarding. The relevant parameters include, but are not limited to, the address information of the target program IP multiplexer, the fixed PID value required for multiplexing, and the data packaging format requirements specified by the DVB standard.
[0054] The forwarding server receives data to be processed according to the preset data receiving protocol and interface specifications. The sources of the data to be processed include, but are not limited to, local storage devices, data streams or data packets transmitted from other network nodes.
[0055] According to the DVB standard, the received data to be processed is processed to generate a basic stream (ES stream) that conforms to the DVB encoding specification. The basic stream contains a continuous bitstream of video, audio or data.
[0056] The generated ES stream is divided into data packets of varying lengths according to the DVB standard requirements, and a header is added to each data packet to form a Packed Basic Stream (PES stream). Timing information (PTS / DTS) is added to the header for synchronization control during subsequent decoding.
[0057] The PES stream content is distributed into a series of fixed-length 188-byte transport packets. Program Reference Clock (PCR) information is added to each transport packet. The PCR information is embedded in the adaptation field of the transport packet and includes a 33-bit timestamp and a 9-bit extension field. This ensures that the decoder can reconstruct the original program clock in the correct timing, guaranteeing audio and video synchronization and preventing buffer overflow or exhaustion. At the same time, Program Specific Information (PSI) is added to the transport packets. PSI information includes the Program Association Table (PAT) and Program Map Table (PMT), which describe the composition structure of the TS stream and associate the audio and video of each program. The PAT table is used to establish the association between the program number and the PID in the PMT table. The PMT table describes the basic streams contained in the program and their corresponding PID values. Based on the fixed PID values obtained from the parsing instructions, the PIDs of the relevant basic streams in the PSI information are set to ensure that they can be identified and processed according to the fixed PIDs during multiplexing.
[0058] Based on business needs, add private information to the payload of the TS stream. This private information can be a custom business identifier, user authentication information, encryption key, etc., used to implement specific business functions or security controls.
[0059] The packaged private TS stream data is sent to the program IP multiplexer via network protocols (such as UDP, RTP, etc.) according to the address information of the target program IP multiplexer obtained from the parsing instructions. During the transmission process, appropriate transmission strategies, such as dynamic bandwidth allocation and error control mechanisms, are adopted according to network conditions and data transmission requirements to ensure that the data arrives at the program IP multiplexer accurately and in a timely manner. Among them, dynamic bandwidth allocation flexibly allocates the specified total channel bandwidth according to the real-time needs of video, audio and data information through PID. The error control mechanism uses cyclic redundancy check (CRC) to detect errors in the transmitted packets. For random errors, after the error is detected by CRC check, retransmission request or forward error correction (FEC) technology is used for processing. For burst errors, interleaving technology is used to distribute continuous data into multiple TS packets for transmission to reduce the impact of burst errors.
[0060] An embodiment of a tracking system for video copies from a digital set-top box This embodiment provides a tracking system for video copying from a digital set-top box, including: The set-top box is used to receive EDID data from connected devices and upload EDID data and execute shutdown commands according to server instructions. The server is used to send data collection commands, receive and parse EDID data uploaded by set-top boxes, perform big data analysis to determine whether there are any unauthorized devices, and send shutdown commands. The forwarding server is used to receive the server's shutdown command and package it into a private TS stream according to the DVB standard and forward it to the program IP multiplexer. The database is used to store the parsed EDID data; The data analysis module, running on the server, is used to classify devices and determine violations based on the characteristics of EDID data.
[0061] The system of this invention mainly includes components such as a server, a command server, an IP multiplexer, a modulator, a set-top box, and a forwarding server. The server is responsible for data reception, parsing, analysis, and command issuance; the command server is responsible for command forwarding; the IP multiplexer is responsible for multiplexing command data and TS streams; the modulator is responsible for sending the multiplexed TS stream to the set-top box via the DVB-S / T / C standard; the set-top box is responsible for collecting EDID data from HDMI connected devices and uploading it to the server; and the forwarding server is responsible for packaging shutdown commands into a private TS stream and forwarding it to the program IP multiplexer.
[0062] Therefore, the method and system for tracking video copying in digital set-top boxes of the present invention can significantly improve the efficiency and accuracy of tracking illegal copying activities, reduce maintenance costs, and effectively protect the security of digital television program content. At the same time, the system has broad applicability and scalability, and can meet the needs of different regions and different types of set-top boxes.
[0063] The technical features of the above embodiments can be combined in any way. For the sake of brevity, not all possible combinations of the technical features in the above embodiments are described. However, as long as there is no contradiction in the combination of these technical features, they should be considered to be within the scope of this specification.
[0064] The above embodiments are merely preferred embodiments of the present invention and should not be construed as limiting the scope of protection of the present invention. Any non-substantial changes and substitutions made by those skilled in the art based on the present invention shall fall within the scope of protection claimed by the present invention.
Claims
1. A method for tracking video copying on a digital set-top box, characterized by, Includes the following steps: The server sends data acquisition instructions to the set-top box; The set-top box receives EDID data from connected devices. When it receives the command to upload EDID data from the server, it packages the collected EDID data, the set-top box's unique serial number, and the original MAC address, and sends the packaged data to the designated server via the UDP protocol. The server receives and parses the packaged data, decrypts the encrypted EDID data using the 3DES algorithm, and stores the decrypted and verified EDID data into the database in VESA EDID format. Based on the characteristics of the EDID data stored in the database, the server classifies different devices connected to the set-top box and determines whether there are any suspicious or illegal devices in the device categories. When the server determines that there is a non-compliant device, it generates a shutdown command and sends the shutdown command to the forwarding server; The forwarding server receives the shutdown command sent by the server, packages the shutdown command into a private TS stream according to the DVB standard, and then forwards the private TS stream to the program IP multiplexer. The set-top box obtains the TP signal through the DVB-S / T / C signal, filters out the private TS stream from the fixed PID, parses the shutdown command in the private TS stream, and performs a shutdown operation based on the parsing result to block the HDMI connection with the suspected non-compliant device.
2. The method according to claim 1, characterized in that, The server sends data acquisition instructions to the set-top box, including: The server generates data acquisition instructions and control parameters, and sends them to the instruction server via network protocol. After receiving the server's instructions, the instruction server encapsulates them into data packets conforming to the IP protocol and transmits them to the IP multiplexer. The IP multiplexer multiplexes the instruction data with the original TS stream to generate a new TS stream containing control instructions; The new TS stream is modulated using the DVB-S / T / C standard by a modulator to generate an RF signal that conforms to the digital television transmission standard. Radio frequency signals are transmitted to set-top boxes in user areas via terrestrial broadcasting, wired networks, or satellite communications; The set-top box receives radio frequency signals and demodulates them into a TS stream, extracting control commands from fixed PID values. The set-top box reads the EDID data of the connected device through the HDMI interface according to the data acquisition parameters in the control command, and uploads it to the server in a preset format.
3. The method according to claim 1, characterized in that, The packaged data formats include: HEADER: Fixed identifier field, occupying 4 bytes, used to identify the data packet type and version information; LEN: Data length field, occupying 2 bytes, used to record the total length of subsequent valid data; SN: The unique serial number field for the set-top box, occupying 6 bytes, is used to uniquely identify the set-top box device; MAC: MAC address field, occupying 6 bytes, used to record the network interface hardware address of the set-top box; EncryptData: Encrypted data field, occupying Len-12-6 bytes, uses the 3DES symmetric encryption algorithm to encrypt EDID data and other sensitive information; CRC: Check field, occupying 4 bytes, used to store the CRC32 check value, used to verify that the data has not been tampered with.
4. The method according to claim 3, characterized in that, The structure of the EncryptData field includes: EDID: Device Extended Display Identifier data field, occupying 256 bytes, is used to store the original EDID information of the device under test collected through the HDMI interface. This information is transmitted after being encrypted by the 3DES algorithm. MAC address copy: Verify the MAC address field, occupying 6 bytes, used to store a copy of the set-top box's MAC address. The MAC address field and the original MAC address transmitted in the packet header form a dual verification mechanism. After the server decrypts, it needs to compare whether the two MAC addresses are consistent to verify data integrity.
5. The method according to claim 1, characterized in that: During data packaging, the set-top box reads its own unique serial number and the original MAC address of the network interface through its internal interface; it establishes communication with the connected device through the HDMI interface and collects the device's EDID data. The collected raw EDID data is concatenated with the raw MAC address of the set-top box to generate a data block to be verified. The CRC32 algorithm is used to calculate the check value of the data block to be checked, and a 4-byte CRC check code is generated. Based on the XOR operation between the last 4 bytes of the set-top box's unique serial number and the first 2 bytes of the original MAC address, an 8-byte dynamic key Key[8] is generated; The 3DES encryption algorithm is used to triple-encrypt the concatenated EDID data and the original MAC address with the dynamic key Key[8] to generate the ciphertext EncryptData, which has a length of Len-12-6 bytes.
6. The tracking method according to claim 5, characterized in that, The server decrypts the encrypted EDID data using the 3DES algorithm, including the following steps: The server extracts the set-top box's unique serial number and original MAC address from the received data packets; An 8-byte decryption key Key[8] is generated according to the preset rules, which is: Key[8] = {MAC [4], SN[0], MAC [5], SN[1], SN[2], SN[3], SN[4], SN[5]} Among them, MAC[4] and MAC[5] are the 5th and 6th bytes of the original MAC address, and SN[0]~SN[5] are the 1st to 6th bytes of the plaintext data block containing the original EDID data and the MAC verification copy, obtained by the SN server using the generated Key[8] as the symmetric key and decrypting the encrypted field EncryptData in the data packet through the 3DES algorithm.
7. The tracking method according to claim 6, characterized in that, After obtaining the plaintext data block, perform the two-factor authentication phase: MAC address comparison: The server extracts a copy of the MAC checksum from the plaintext data block and compares it byte by byte with the original MAC address transmitted in the header of the data packet. If they do not match, the data is determined to have been tampered with and the processing is terminated. CRC checksum verification: The server recalculates the CRC32 checksum of the decrypted EDID raw data and compares it with the CRC field in the data packet. If they do not match, a transmission error is determined and the process is terminated. For the original EDID data that has passed dual verification, the server parses its field structure according to the VESA EDID standard and extracts key device data. The parsed structured data is stored in a database and associated with the set-top box SN, MAC address, and collection timestamp to form a traceable device fingerprint database.
8. The tracking method according to any one of claims 1 to 7, characterized in that, Based on the differences in EDID attributes of different devices, a large amount of EDID data is aggregated and analyzed to classify devices according to EDID characteristics and determine whether there are any suspicious or non-compliant devices in the device categories. This includes the following steps: Collect EDID data of various devices and display them in categories through a web page. The displayed content includes the basic information of the devices and their corresponding EDID attributes. Based on the manufacturer ID in the EDID data, display the corresponding brand information on the web page and sort it according to the manufacturer ID to ensure that the same ID is displayed only once; Key attributes are extracted from EDID data to serve as the basis for device classification; Based on the extracted EDID attribute features, the devices are divided into different categories using preset classification rules and algorithms, with each category having similar EDID attribute features; For each device category, determine whether there are any suspicious or non-compliant devices in that category based on the specified combination of attributes in the EDID attribute characteristics; If a suspicious device is identified as violating regulations, its unique set-top box serial number is located. The device is then identified as a copying device, and control commands are sent to process it. Simultaneously, relevant data is sent to a repeater for further processing.
9. The tracking method according to any one of claims 1 to 7, characterized in that: The data processing module inside the set-top box filters out a private TS stream containing a shutdown command from the received TP signal based on a preset fixed PID. The set-top box parses the filtered private TS stream and extracts the shutdown command contained therein; The set-top box executes the corresponding shutdown operation based on the specific content of the shutdown command obtained from the parsing, specifically blocking the HDMI connection with the suspected unauthorized device; The plaintext format of the shutdown command includes command type, command length, switch status, device identifier, and multiple fields for specifying shutdown conditions, including at least CEC, HDR, RGB, resolution, serial number, audio support, and device name.
10. A tracking system for video copies from a digital set-top box, characterized in that, The system is applied to a method for tracking video copies from a digital set-top box as described in any one of claims 1 to 9, the system comprising: The set-top box is used to receive EDID data from connected devices and upload EDID data and execute shutdown commands according to server instructions. The server is used to send data collection commands, receive and parse EDID data uploaded by set-top boxes, perform big data analysis to determine whether there are any unauthorized devices, and send shutdown commands. The forwarding server is used to receive the server's shutdown command and package it into a private TS stream according to the DVB standard and forward it to the program IP multiplexer. The database is used to store the parsed EDID data; The data analysis module, running on the server, is used to classify devices and determine violations based on the characteristics of EDID data.