|Title of Invention||
"METHOD OF ENCRYPTION OF A COMPRESSED VIDEO FLUX"
|Abstract||A method of encryption of a compressed video flux, comprising independent data blocks (I) and differential data blocks (P/B) characterised in that it consists in encrypting according to a first level of encryption the independent data blocks (I) and to a second level of encryption the differential data blocks (P/B), each block being processed independently.|
|Full Text||The present invention relates to a method of encryption of a compressed video flux
The present invention concerns a method for encrypting a compressed video flux, particularly allowing to reinforce the level of security and at the same time not penalising the resources during the decryption.
Video compression algorithms are based on the fact that generally the differences between an image and the following one are small, and that the expression of the differences represents a quantity of information much more reduced than the whole image. It has been observed that from one image to the other a great amount of information does not change and even is found in a slightly different plane.
This principle is applied in the formats of the MPEG-2, MPEG-3, or Quick Time
According to these algorithms, a first image, called of reference, is transmitted completely and an analysis of the following images is carried out in order to determine and transmit the differences. According to the MPEG norm we distinguish the frames transmitted integrally (l-Frame) and the differential data of the MV type (movement vector) and of the DFD type (difference between the MV model and the real image).
According to the known solutions, these data are then encrypted according to an algorithm adapted to the desired level of security.
In order to maintain a compatibility during the transmission and the processing, each group is encrypted by itself, that is, that the attribution of the frames remains visible, only the content is encrypted.
With the evolution of storage means it is common to transmit encrypted data, representing for example a film, towards the unit of a user.
Once the file is stored in the unit, a third can have all the necessary time to try to decrypt the data.
In order to avoid this risk, a first approach consists in increasing the level of security on the file, that is, to use powerful algorithms with long keys.
Although this technique is satisfying on the level of security, it presents the inconvenient of imposing important resources on the decryption unit.
The diversification of viewing means progresses towards the use of data by units having small cryptographic capacities. This is the case, for example, of the new mobile telephones that have a view screen. For this type of unit, the use in real time of sophisticated algorithms is not possible without degrading the performance of the unit.
Thus, the use of blocks of data encrypted by powerful algorithms is incompatible with the use at destination of all types of user units.
The objective of the present application is then to enable the use of powerful algorithms with terminals that have small cryptographic capacities.
This objective is achieved by an encryption method of a compressed video flux, comprising independent data blocks and differential data blocks, consisting in encrypting according to a different level of encryption the independent data blocks and the differential data blocks.
By independent data block we understand information allowing to obtain the decompressed signal without reference to the previous information. It can be for example complete frames (l-Frame).
By differential data blocks we understand information allowing to obtain the decompressed signal by modification of the previous signal applying this differential information.
In fact, this solution allows to concentrate the maximum security on the information indispensable for the decompression of the images. According to this method, a first algorithm is applied on the complete frames (l-Frame) of the compressed video signal, and a second algorithm is applied to the differential information of the MV type or of the DFD type.
This difference can also be done by the use of keys of a different length according to the type of data. Thus, the complete frames will be encrypted by a key of 2048 bits, while the differential information will be encrypted by a key of 128 bits.
According to an embodiment of the invention, the differential information is not encrypted.
It should be noted that other sources of information that work on the differential principle can also use this method. This is the case for example of the compressed music according to the MP3 format.
The present invention will be better understood with the aid of the annexed figures, taken as non-limiting, in which:
- Figure 1 illustrates the compressed flux before the encryption operation,
- Figure 2 represents the compressed flux in encrypted form,
- Figure 3 represents a compressed flux during its transmission.
In Figure 1, the compressed flux is represented by a series of frames of the complete type (I) and of differential information (P/B). According to this example, a first complete frame 11, is followed by frames P/B 1-2 allowing to rebuild the successive frames between the complete frame 11 and the frame 12.
In the same way, the complete frame I 2 is followed by successive differential frames P/B 2-3 allowing to reach the complete frame I 3.
This flux is then selectively encrypted according to the type of frame such as illustrated in Figure 2. In this Figure, we have used a first key k1 of a length of 2048 bits to encrypt the complete frames 11,12, and I 3. A second key k2, for example of 128 bits, has been used for the encryption of the differential frames P/B 1-2 and P/B 2-3.
The length of the keys k1 and k2 is given here as an indication and could be of any other length.
According to the invention, the difference of quality of the encryption can be done at the level of the keys or at the level of the used algorithm. Thus, the encryption according to k1 represents for example an algorithm of the IDEA type, and the encryption according to k2 represents an algorithm of the DES type.
During the diffusion of this flux, the complete frames are sent' at first as illustrated by Figure 3.
This particularity allows the receiving unit to begin immediately the decryption of the frames that need a long processing. Once these frames have been decrypted, the processing of the differential frames can be done in real time due to the quick execution of the type of algorithm chosen for these frames.
According to an embodiment of the invention, the level of encryption for the complete frames is different depending on if it is a first frame, such as the frame 11, or the following frames (12 and 13). In fact, to benefit from the decrypted and decompressed signal, we have to immediately process the first frame and then the frames of differences. This is why the first frame of a series is encrypted with an algorithm of faster decryption than the following complete frames.
This algorithm can be the same than the one for the differential frames or another algorithm.
1. A method of encryption of a compressed video flux, comprising independent data blocks (I) and differential data blocks (P/B) characterised in that it consists in encrypting according to a first level of encryption the independent data blocks (I) and to a second level of encryption the differential data blocks (P/B), each block being processed independently.
2. A method of encryption of a compressed video flux as claimed in claim 1, wherein the independent data blocks (I) are encrypted by a high level algorithm, while the differential data blocks (P/B) are encrypted by a rapid decryption algorithm.
'3. A method as claimed in claim 1, wherein the independent data blocks (I) are encrypted by one or several long keys, while the differential data blocks (P/B) are encrypted by one or several short keys.
4. A method as claimed in one of the claims 1 to 3, wherein during the transmission of the compressed signal the independent data blocks (I) are grouped by series, the method consisting in encrypting the first block of this series according to a different level of encryption than that of the following independent blocks.
|Indian Patent Application Number||1237/DELNP/2003|
|PG Journal Number||39/2011|
|Date of Filing||05-Aug-2003|
|Name of Patentee||NAGRAVISION SA|
|Applicant Address||ROUTE DE GENEVE 22, CH-1033 CHESEAUX-SUR-LAUSANNE, SWITZERLAND|
|PCT International Classification Number||H04N 7/167|
|PCT International Application Number||PCT/IB02/00557|
|PCT International Filing date||2002-02-25|