A play method for a streaming media file, and a display apparatus are provided. The method comprises: in response to a command for playing a streaming media file on a display of the display apparatus, obtaining the streaming media file and determining a state of the streaming media file; in response to the state of the streaming media file being encrypted state, flowing video data in the streaming media file into a trusted execution environment of the display apparatus, and determining a state of the video data in the trusted execution environment; and in response to the state of the video data being encrypted state, decrypting the video data, decoding the decrypted video data, and then playing the decoded video data.

Systems, methods, devices, and non-transitory media of the various embodiments facilitate real time playback of a digital broadcast by enabling reduction of the amount of time a receiver device's low power mode interface with a separate computing device operates in an operational/high power mode. The receiver device may associate a stream of media packets of a digital broadcast with system time clock timestamps indicating when the media packets were received, and store the media packets in a temporary packet buffer. Periodically, a media packet burst stored in the temporary packet buffer may be sent to the separate computing device via a low power mode interface operating in an operational/high-power mode different than a low power mode. The low power mode interface may be returned to the low-power mode until the next burst of packets is sent to the separate computing device.

A method for executing a user application is disclosed. The method is implemented within a communications terminal of the type having a trusted environment. The trusted environment has a secured storage space and a secured applications execution module. The method has: a step of reception, within the trusted environment, of an instruction for launching a user application; a step of transmission, to a server, of a request for executing said user application; a step of reception, from the server, by a video-rendering application that is executed within the trusted environment, of a video stream resulting from the execution, on the server, of said user application; and a step for displaying said video stream on a screen of said communications terminal accessible from said trusted environment.

A video stream protection device is for protecting a video stream to be decoded. The video stream contains one or more data units each having a header section and a body section, and the header section contains header information indicative of a data type of the corresponding body section. The video stream protection device comprises: an identification module for identifying the one or more data units based on respective start positions of the one or more data units; a data type detection module for obtaining the header information of the identified data units, and determining the data type of the body section of each identified data unit based on the header information of the identified data unit; and a control module for determining whether to prohibit decoding of data of each data unit based on the data type of the body section of the data unit.

Provided is a method for protecting an encrypted control word. The method includes: receiving a hardware security module entitlement management message and an encrypted control word transmitted from a main chip, where the hardware security module entitlement management message includes a key for decrypting the encrypted control word; decrypting, based on the hardware security module entitlement management message and a hardware security module root key stored in the hardware security module, the encrypted control word to obtain a control word; reencrypting the control word based on a re-encryption key stored in the hardware security module to obtain a reencrypted control word; and transmitting the reencrypted control word to the main chip, so that the main chip decrypts, based on a main chip entitlement management message transmitted from the front end, the reencrypted control word to obtain the control word.

An image processing device includes a main SoC, an performance-enhancing SoC, and an external circuit set outside any of the two SoCs. The main SoC includes: a data splitter dividing input image data into a first input part and a second input part; a first image processing circuit processing the first input part to generate a first output part; and a transmitter outputting the second input part to the performance-enhancing SoC via the external circuit. The performance-enhancing SoC includes: a receiver receiving the second input part via the external circuit; and a second image processing circuit processing the second input part to generate a second output part. The combination of the two output parts jointly determines a data amount per unit of time which exceeds the processing capability of any of the two image processing circuits. Each of the two SoCs includes a CPU, and the two CPUs cooperate, too.

On-demand systems and methods are provided to manage locally-stored on-demand content. A user's equipment controls the deletion of and/or access to on-demand content from a local storage device based on constraining criteria that may include rental conditions, dynamic factors, and keys.

A video player for playing a video stream that receives a master playlist identifying at least one variant playlist identifying a video file encoded as a series of video frames that when decoded provide the video stream. The video player based upon a configuration tag in the master playlist selectively determining whether the video file is to be processed in a trusted execution environment. The trusted execution environment of the video player selectively includes at least one of (i) hack one, only hack one; (ii) output and link protection; (iii) hardware root of trust; and (iv) forensic watermarking, and decrypts and/or decodes the video stream in such an environment.

A method is provided for managing key rotation (use of series of keys) and secure key distribution in over-the-top content delivery. The method provided supports supplying a first content encryption key to a content packaging engine for encryption of a first portion of a video stream. Once the first content encryption key has expired, a second content encryption key is provided to the content packaging engine for encryption of a second portion of a video stream. The method further provides for notification of client devices of imminent key changes, as well as support for secure retrieval of new keys by client devices. A system is also specified for implementing a client and server infrastructure in accordance with the provisions of the method.

A set-top box for changing channels and method for use of the same are disclosed. In one embodiment, the set-top box includes a network interface controller that is configured to receive a source internet protocol television signal, which includes two channels, from an external source and at least partially prepare the source internet protocol signal in order to forward the tuned signal to a television. The set-top box saves in a buffer the at least partially prepared second channel beginning at a recent periodic, sequential signal access point. In response to receiving a channel change instruction when the set-top box is forwarding the at least partially prepared first channel signal, the set-top box causes the television tuner to forward the at least partially prepared signal based on the second channel stored in the buffer beginning at the recent periodic, sequential signal access point.