“Our CryptoFirewall cores facilitate a high level of security across set-top boxes and connected TVs,” explained Cynthia Yu, a director at Rambus’ Cryptography Research division.
“Essentially, the core is designed to shield cryptographic keys and computations within a chip – even if surrounding components are compromised – ensuring comprehensive protection against the unauthorized access of content and services.”
According to Yu, the technology enables connected TVs to achieve a similar level of content protection as set-top boxes, while simultaneously reducing the service providers’ engineering and integration costs.
“The CryptoFirewall core allows consumers to securely view content, including video with the most stringent security requirements such as 4K/UHD,” she continued.
“Plus, our provider-agnostic security block supports instant delivery of content from multiple distributors including OTT content, which means that operators now have a security mechanism that allows for all content to flow to their customer’s TV.”
So, how does the Rambus CryptoFirewall platform operate? Well, the cores are designed around two main processes – differentiation and entitlement – which are used to derive the keys tasked with protecting content. Differentiation is the process by which an individual CryptoFirewall core is enrolled in a specific security domain, corresponding to a broadcast or OTT service. Differentiation can take place over the air, as it securely provisions service-specific keys and uniquely configures the CryptoFirewall hardware for each service.
Entitlement describes the process by which an individual CryptoFirewall core is granted permission to ‘watch’ certain content or services. This is also done over the air using secure messages. This layered approach allows CryptoFirewall to efficiently and securely generate keys for many different types of content and services, while maintaining strong cryptographic separation throughout the system.
“Operators and OTT distributors can benefit from CryptoFirewall’s hardware-based security that satisfies the most stringent requirements for premium content, all while continuing to use their existing CAS and DRM systems,” Yu concluded.
“On the consumer side, viewers can watch preferred content directly on a connected TV without the need for extra equipment such as a set-top box, PC-on-a-stick or dongle.”
Interested in learning more about how Rambus is securing set-top boxes and connected televisions? Be sure to check out our CryptoFirewall product page here.