Enabling Protected and Premium Broadcast Content in Windows

Jay Kapur & Jan HofmeyrWindows TV GroupMicrosoft Corporation

Session OutlineSession Outline

Premium content support overviewSupport in Windows today

Challenges for the PC

Protected Broadcast Driver Architecture (PBDA)PBDA overview

PBDA hardware requirements

PBDA supported modelsDifferent implementations

Receiver Topology

Single Tuner/Dual format (hybrid tuner) support

Call to action and resources

Premium TV Content for PCs: TodayPremium TV Content for PCs: Today

Content flow to Windows PCsBasic analog capture

Terrestrial, Cable and Satellite (limited)

ChallengeShort/Medium term solution due to push for digital

Premium analogAnalog output of Set Top Box (STB)

Challenges:Prone to errors due to “open loop” control of STB using IR

No support for PPV and VOD

TV quality (no support for HD or multi-channel audio)

End-user confusion connecting STB DVR to MCE (with DVR)

This is not good enough!We need a solution that offers digital

capture support in Windows!

End-to-end content protection and rights management is becoming a requirement:

US ATSC Broadcast Flag

Japan ARIB ISDB-T digital broadcast

CA delivered premium content

Multiple formats supported by a single tunerTuner can receive and demodulate analog or digital formats, but device can only stream one source at a time

No common API and crypto solution to simplify hardware development and software integration

New Challenges for TV on the PCNew Challenges for TV on the PC

Windows Media DRM OverviewWindows Media DRM Overview

WMDRM-PD

WMDRM-ND

Streaming Devices

Portable Devices

WMDRM-TD

TV Receivers

WMDRM-DST

Physical Media

WMDRM

Internet DeliveredTVTV

TD: Tuner DevicesPD: Portable DevicesND: Network Devices

What is PBDA? What is PBDA?

Protected Broadcast Driver ArchitectureA modification to the existing BDA stack to support transmission of protected capture streams from the TV tuner HW to the OS

Standardizes the crypto APIs between tuner hardware devices and Windows

Three profiles:Unscreened content

Suitable for content received without CA, but requiring local protection

Screened content (simple encryption)Suitable for content received without CA and for devices capable of hardware screening for protection flags

Screened content (advance encryption)Suitable for content received with CA

End-to-End Content ProtectionEnd-to-End Content Protection

Digital Receiver

Windows PC

WMDRM License

WMDRM

CNMCE

NoneCF

COWMDRM License

DVR

CNMCE

NoneCF

CO

DVR

TS(WMDRM)

CA-1

CCI States

NoneCopy FreelyCopy OnceCopy Never

COPP/OPM- CGMS-A- MV- HDCP

RenderRenderWMDRM-1

Broadcast Content Protection SolutionsBroadcast Content Protection Solutions

Analog Content

Broadcast Flag

Content

CA Protected Content

Encryption SW HW HWContent License Generation SW SW HW

Encryption Profile Simple Simple Simple or Advance

BDA

BDA: Broadcast Driver ArchitecturePBDA: Protected Broadcast Driver ArchitectureCA: Conditional Access

PBDAUnscreened

PBDAScreened

PBDA Hardware RequirementsPBDA Hardware Requirements

Common technologies used for all profiles:RSA 1024 bits

SHA1 160 bits

AES 128 bit

OMAC1

Random number generator

XML certificate parsing

Hybrid digital/analog tuners must support the following analog video processing:

Hardware MPEG-2 audio and video compression

VBI slicing and mux of CC & XDS into MPEG-2 TSNTSC: Line 20, 21

PAL: Teletext, Line 23

Hybrid Digital/Analog Tuner SupportHybrid Digital/Analog Tuner Support

PBDA adds hybrid tuning capabilities to Windows Broadcast Driver Architecture

ATSC + NTSC

DVB-T + PAL

Single capture graph used for hybrid tuner deviceMPEG-2 Transport Stream is sourced from hardware for both analog and digital

Seamless switching between analog and digital sources

Does not require reconfiguration of software stack on channel changes

Hardware must support MPEG-2 compression and VBI slicing to enable hybrid tuning

Appropriate VBI data is muxed into transport stream

Enables PBDA to apply protection to analog content (CGMS-A)

PBDA – Unscreened ContentPBDA – Unscreened Content

Goal: Enable lowest possible hardware cost

Target devices:ATSC receivers (Broadcast Flag)

Hybrid ATSC / NTSC tuners

WMDRM implementation:Receiver HW:

Encryption of all TS payloads

PC Capture process:Screening for CGMS-A and Broadcast Flag

WMDRM License are generated based on screening

Selectively decrypt TS packet to enable demux and DVR functionality

PBDA (Unscreened) Receiver OverviewPBDA (Unscreened) Receiver Overview

Tuner

NTSCDecoder Encoder

Demod:8VSB

TSFilter

Broadcast Flag

Macrovision

XDS Parser

Encryptor

Audio

Video

RF

Audio

Video

VBI

MPTS

SPTS

AES TAG

WMDRM

CGMS-A

APS

B’Flag

SPTSPBDA Filter Demux

TIF

Receiver

PBDA: Screened ContentPBDA: Screened Content

Goal: Increased robustness

Target devices:Premium TV receivers that receive protected (CA) content

WMDRM implementation:Receiver HW:

Screening for Copy Control Information (CCI)

WMDRM License are generated based on CCI screening

Encryption of all TS payloads

PC Capture process:Selectively decrypt TS packet to enable demux and DVR functionality for protected content

PBDA: Screened Content (Advance Mode)PBDA: Screened Content (Advance Mode)

WMDRM implementationTS processing capabilities

Only encrypt selective TS packets

TSHeader

TAG packet

TSHeader

PES Header

TSHeader

PES Header (cont.)

TSHeader

PES Payload

PES Payload

scr = no

scr = no

scr = no

scr = yes

PBDA (Screened) Receiver OverviewPBDA (Screened) Receiver Overview

Tuner

NTSCDecoder Encoder

Demod:8VSB

TSFilter

Broadcast Flag

Macrovision

XDS Parser

WMDRM

Encryptor

CA

Audio

Video

RF

Audio

Video

VBI

MPTS

SPTS

CA-1

AES TAG

DRI

Transport

Command&

Control

Eventing

CGMS-A

APS

B’Flag

CCI

Demod:QPSK

TunerSat.MPTS TS

Filter

SPTS

SPTS

Call To ActionCall To Action

Ensure HW supports:Algorithms for PBDA

VBI slicing

VBI muxing into MPEG-2 TS (analog capture)

AVStream Class BDA driver

64-bit support

Recommended:MPEG-2 filtering for hardware screening

TS Processing to enable advance encryption

Review PBDA Whitepaper on WinHEC CD

Community ResourcesCommunity Resources

Windows Hardware & Driver Central (WHDC)www.microsoft.com/whdc/default.mspx

Technical Communitieswww.microsoft.com/communities/products/default.mspx

Non-Microsoft Community Siteswww.microsoft.com/communities/related/default.mspx

Microsoft Public Newsgroupswww.microsoft.com/communities/newsgroups

Technical Chats and Webcastswww.microsoft.com/communities/chats/default.mspx

www.microsoft.com/webcasts

Microsoft Blogswww.microsoft.com/communities/blogs

Additional ResourcesAdditional Resources

Web Resources:Whitepapers: Secure Broadcast Driver Architecture whitepaper available on WinHEC CDhttp://www.microsoft.com/whdc/system/platform/mediacenter

Related SessionsLonghorn Output Protection

© 2005 Microsoft Corporation. All rights reserved.This presentation is for informational purposes only. Microsoft makes no warranties, express or implied, in this summary.