About this manual

This manual introduces the basic conception and structure of CAS, including

detailed description of installation, setup and operation method. Please read

this manual carefully to insure the correct operation of CAS.

Attention
Please use the cable with good quality and confirm the connector is in

good condition.

Please supply corresponding power to right device.

1
 CONTENT

CHAPTER1 INTRODUCTION ....................................................................3

1.1BRIEF ................................................................................................................ 3
1.2ARCHITECTURE .................................................................................................. 3
1.3 FUNCTION AND PRINCIPLE.................................................................................. 5
1.3.1 System Function ......................................................................................................... 5
1.3.2 System Principle ......................................................................................................... 5
1.4 SECURITY ......................................................................................................... 6
1.5 FEATURES ........................................................................................................ 7
1.5.1 Parameters ...................................................................................................................... 7
1.5.2 Reference ......................................................................................................................... 7
1.6 ABBREVIATIONS ................................................................................................ 8
CHAPTER2 OPERATION MANUAL.........................................................9
2.1 INTRODUCTION OF PROGRAM MODULES AND OPERATION FLOW ........................... 9
2.1.1 Program Modules....................................................................................................... 9
2.1.2 Operation Flow ........................................................................................................... 10
2.2 OPERATION ..................................................................................................... 11
2.2.1 Startup Encryption Control System Procedure ................................ 11
2.2.2 Startup CA Manager Procedure................................................................... 12
2.2.3 EMMG Operation...................................................................................................................... 12
2.2.4 ECMG Operation ...................................................................................................................... 20
2.2.5 System Monitoring.................................................................................................................... 25
2.2.6 CA_menu................................................................................................................................... 29
ADDENDUM A AC EDITOR ...................................................................................... 37

2
CHAPTER1 Introduction

1.1Brief

Conditional Access System (CAS) is used to control and manage subscriber

through entitlement information and program scrambling in digital television

system, including system scheduler management, network technology,

digital encoding (decoding), scrambling (unscrambling), encrypting

(decrypting), multiplex technology and so on, while it refers to subscriber

management, payment management etc. It supplies a comprehensive

system to insure that subscriber with entitlement information watch

scrambled TV program so that program provider can achieve pay-to-view's

purpose.

1.2Architecture

CAS consists of Head-end system, Smartcard-generate system and CAS

buffer monitor-management system etc.

CAS NETWORK MANAGEMENT --- Config, manage and monitor the core

module of CAS

ECMG --- Entitlement Control Message Generator, which produces the ECM

messages---private Conditional Access (CA) information which carries the

CW in a secure manner and private entitlement information.

EMMG --- Entitlement Management Message Generator, which produces the

EMM messages and repeatedly plays them out at the appropriate times.

EIS --- The functional unit in charge of holding all the schedule information,

all the configurations and CA specific information required for the complete

system. It is the overall database store for the whole head-end system.

AC EDITOR --- Edit AC information to generate txt and binary data.

ENCRYPT CONTROL SYSTEM --- Control the ECMG, EMMG, EIS of CAS

to insure the core module of CAS running safely.

SMS INTERFACE --- Receive the data from SMS. Transform it into the right

3
 format required by CAS and save it for EMMG using.

CAS EVENT INTERFACE --- Receive PMS data and transform it into CAS

event information for EIS using.

CAS DATABASE --- Contains a group of tables, views, procedures, triggers

etc to read-write, save, process CAS data.

CLOCK SYNCHRONIZER --- Contains clock server and client and bring the

clock of all devices into accord.

video、audio、data Multiplexer/
Scrambler TS QAM

EPG SIG

STB+
EIS ECMG
CAS CA_core
Event
Interface CAS
Encrypt system
Smartcard
Database
SMS
interface EMMG

SMS buffer monitor- Smartcard CAS Network Clock

management Generate Management synchronizer
fig1-1 CAS ARCHITECTURE

RECEIVER CAS-CORE SYSTEM --- Receive and process ECMs and EMMs

from CAS. Meanwhile, exchange data with smartcard for receiving CW to

achieve unscrambling work.

SMARTCARD SYSTEM --- Contains CPU、RAM、ROM、EEPROM etc

and exchanges data with other modules by ISO7816 interface.

CAS BUFFER MONITOR-MANAGEMENT SYSTEM---Collects CAS

information automatica-lly and generates XML file.

4
1.3 Function and Principle

1.3.1 System Function

Scrambling Control --- Program, event scrambling control, this contains

free, scramble and encrypt three types.

Product Control --- Classify program into different product by sort,

theme/level, scrambling event (PPC, PPV, IPPV) etc.

Entitlement Control --- Sends entitlement to IRD, IC and combination of IC

and IRD through unique address, group address, region address and all

address.

Encrypt Control --- Encrypt ECM, CW, EMM etc by optional encryption

arithmetic.

Security Control --- Update key.

Network Management --- Manage ECMG, EMMG etc by SNMP.

View Function---Prearrange by time, PPV, IPPV (/P, /T), free entitlement,

pre-entitlement, program preview.

Copyright Protection --- Record control.

Region Control --- Conditional forbidding / allowing broadcast.

IC STB Match --- One STB has its own unique IC.

Multiple Providers --- Multiple program provider subareas, every provider

can control its own program scrambled.

Multiple Broadcasters --- Every broadcaster use its own key and

entitlement, which supports multiple level entitlement.

Mature Control --- Classify programs into different level to control viewing of

specified people.

Broadcast Information --- B-mail, OSD.

1.3.2 System Principle

Head system process principle

Before digital video/audio stream sent into MUX / SCR by ASI standard

interface, considering the normal process of CAS, every config should be

5
 done in MUX / SCR so that the communication connection between CAS

and MUX / SCR could be done including creating correlative PMT, CAT table

etc. When MUX / SCR start scrambling TS, it will pre-generate control word

(CW) and transport CW to ECMG before scrambling, which can return ECM

information that contains CW, AC and system time encrypted etc. When

MUX / SCR receives ECM information packet, it will be inserted into TS with

specified sequence through SCS synchronization. Meanwhile, MUX / SCR

insert EMM, SI into TS. In the end, the TS with ECM, EMM, SI, Video, Audio

etc is transported into QAM.

End system process principle

After STB receives the scrambled TS through cable, ECM and EMM will be

filtrated transported to smartcard by the parameters supplied by smartcard.

When smartcard gets this information, the entitlement from EMM will be

written into the subscriber entitlement part of smartcard, and CW will be

decrypted according to entitlement and specified key. When STB get CW, if

CW is correct, viewing is capable.

1.4 Security

One CAS refers to two encryption subsystems. One is encryption of

programs which commonly be named with scrambling. The other is

multilayer encryption system which insures the safety of CW strongly.

Generally scrambling adopts DVB Common Scrambling arithmetic, which

bases on cryptographic key. To protect scrambling, the control cryptographic

key (CW) is usually changed every 5 ---10 seconds one time randomly. It is

strongly effective to defend against the attack from Hacker. Because of DVB

Common Scrambling arithmetic, it is possible to supply a common standard

to different receivers. As long as some or other receiver adopts the same

arithmetic and integrates CA system, it can view scrambling programs by

specified entitlement.

It is recognized that multilayer encryption is mature and its security is

positive in cipher science. CTI-CAS adopts multilayer encryption system and

6
 symmetry cryptographic key arithmetic. Therein to, programs are scrambled

by CW which is encrypted by SK and transported to receiver through ECM,

and SK, PDK and IK are encrypted by PDK, IK and PPK correspondingly

and transported through EMM. At receiver, smartcard decrypts IK, PDK, SK,

CW according to opposite sequence. If users have entitlement, CW can be

decrypted and transported to receiver. So the final scrambling work can be

achieved.

Adopting multilayer encryption system can insure the safety of the

cryptographic key; minish the bandwidth resulted by transporting overfull

cryptographic key. Generally, PPK can be saved in the safe area of

smartcard one time. Meanwhile SK, PDK and IK also be saved in the same

area and configured its alteration and transporting time according to demand

of customer. CW is not saved in data area but be decrypted and transported

to receiver immediately when ECM is transported to receiver.

1.5 Features

1.5.1 Parameters

Max users Above 2 million

Max channels 8*256=2048

Max sorts 256

Max theme/level numbers 256

EMM sending speed 100-1500 package per second, bandwidth 0.15-2.2Mbps

EMM by share address 256 user per package

Max provider 8

ECM sending speed 2-5 package per second

1.5.2 Reference

EN 300 468 V1.3.1 (1998-02)

Title: Specification for Service Information (SI) in DVB systems

EN 301 192 V1.1.1 (1997-12)

7
 Title: DVB specification for data broadcasting

ETR 211 (August 1997) Second Edition

Title: Guidelines on implementation and usage of Service Information(SI)

ETR 211 (April 1996)

Title: Digital broadcasting systems for television;

Implementation guidelines for the use of MPEG-2 systems;

Guidelines on implementation and usage of service information

ETS 300 468 (January 1997) Second Edition

Title: Specification for Service Information (SI) in DVB systems

ISO/IEC 13818-1 Draft of: 1540 Sun 13 Nov 1994

Title: INFORMATION TECHNOLOGY -GENERIC CODING OF

MOVING PICTURES AND ASSOCIATED AUDIO: SYSTEMS

Recommendation H.222.0

1.6 Abbreviations

MPEG2 Moving Pictures Expert Group

SI Service Information

PSI Program Specific Information

PID Packet Identifier

EPG Electronic Program Guide

DVB Digital Video Broadcasting

ASI Asynchronous serial interface

SPTS Single program transport stream

MPTS Multiple program transport stream

8
CHAPTER2 Operation Manual

2.1 Introduction of Program Modules and Operation

Flow

2.1.1 Program Modules

No. Name Brief Introduction Use
1 EncryptControl CAS Encrypt Control 1. Control CAS Main Modules
(ECMG, EMMG and EIS) to
startup and running.
2. Provide control information for
CAS.
2 CaManager CAS Network Manager 1. Configure ECMG and EMMG
parameter.
2. Start ECMG and EMMG.
3. Scout CAS working status.
3 ECMG ECM Generator 1. Startup under CaManager
control.
2. Establish a connecting
channel with CAS and
scramble equipments.
3. Communicate with scrambler
according to DVB
ECM SCS standard
protocol.
4. Generate ECM data
automatically under AC
condition and CW
information, and encrypt
ECM data.
5. Send ECM data packets to
scramblers.
4 EMMG EMM Generator 1. Startup under CaManager
control.
2. Establish a connecting
channel with CAS and
scramble equipments.
3. Communicate with scrambler
according to DVB
EMM SCS standard
protocol.
4. Draw out user information,
authorize information and
mail information from the
database, and generate
EMM, and encrypt EMM
data.
5. Send EMM data packets to
scrambler.
5 EIS Event Information 1. Establish private channel with
Scheduler ECMG.

9
 2. Draw out CA event
information from the CAS
database, and classify the
events, and generate
changed AC condition
automatically.
3. Send AC information packets
to ECMG.
6 DBDataConvert CAS database interface Receive user information and
convert entitlement information from
SMS，and store them in the
CAS database after converted
process.
7 CA_menu CAS database Configure main parameters for
configuration CAS, and ensure the system
running accurately.
8 AC_edit AC information editor Edit AC conditions for
scrambler.

2.1.2 Operation Flow

1） Startup the database server, ensure database worked accurately.

2） Startup the CAS Encrypt Control (EncryptControl.exe).

3） Startup SNMP service in operation system, and the ECMG and EMMG

which configured startup automatically beforehand.

4） Startup CAS network manager (CaManager.exe), and start, close,

configure and scout ECMG and EMMG system with the network manager.

5） Startup EIS on condition that the PPV and IPPV must be supported..

6） Startup CAS database interface convert system (DBDataConvert.exe),

and send SMS data to CAS database automatically.

7） Startup the CAS database parameters configuration system

(CA_menu.exe) if you need to configure or change basic parameters and

the simple entitlement could finish at the same time.

8） Startup the AC information editor (AC_edit.exe) if you need to configure

some static AC conditions and you can insert it to scramble equipment

memory in document method or data copy method.

10
2.2 Operation

2.2.1 Startup Encryption Control System Procedure

Double click the procedure icon named EncrpytControl.exe (displayed like
fig2-1). Input the username and password (displayed like fig2-2), press
OK key.

There will be displayed like fig2-3 if the username and password you
input was right. If you don’t want to change the username or password,
choose Cancel key, otherwise press OK to change the username or
password.

fig2-1

fig2-2

fig2-3

The wiretap window of the Encryption Control System will display EMM
License (displayed like fig2-4), ECM License, EPG License, EIS License
and SCS License information, if the procedure startup successfully.

fig2-4

11
2.2.2 Startup CA Manager Procedure
CA Network Manager is installed on a PC station, connecting with the CA
server with SNMP protocol, and managed and watched the CA system for
long-distance. The CA Manager procedure could install on WINDOWS
XP, WINDOWS 2000 or WINDOWS 2003, and you can startup it through
running CaManager.exe.

Double click the icon named CaManager.exe to run CA network

procedure, the window displayed like fig2-5.

fig2-5

2.2.3 EMMG Operation

EMMG (Entitlement Manager Message Generator) generates the EMM

data, encrypted EMM data was sent to scrambler. EMM data was used to
take various SMS messages to STB and IC card, such as user register,
user entitlement, and broadcast mail etc.

EMMG has to establish a channel with encrypt control system, and

establish channels with scramblers too.

2.2.3.1 Add EMMG

There are EMMG and ECMG key at the down of CA manager procedure
window, displayed like fig2-6.

Choose EMMG and click the blank with the right key of your mouse,
choose Add New EMMG.

12
 fig2-7

fig2-8

fig2-6
fig2-9
Fill the host IP address in the blank displayed like fig2-7 (‘host’ is the PC
which the EMMG software was installed. If you establish channel
successful, it will be displayed like fig2-8, and if you establish failed, the
status should be showed as fig2-9.

The reasons for failure to establish:

①Wrong host IP address.
②SNMP service on the EMMG host does not startup.
③EMMG do not register on the EMMG host.

2.2.3.2 Configure EMMG Basic Parameter

Choose Basic Configuration showed as fig2-10, and input EMMG basic

parameters in the windows on your right.

13
 fig2-10

[Control Card Server Setting]

Control Card parameter is the connecting parameter between EMMG and
scramble system, click Save to save the parameter setting until
configuration was finished, displayed like fig2-11.

fig2-11

Control Card Server Running encrypt system control card and encrypt
Name (or IP) control procedure (Encrypt Control) server’s IP
address.
Port Encrypt control procedure’s wiretap port usually is
5008.

[EMM Thread Switch]

EMM Thread Switch is used to start or close one process of an EMMG
assignment, it was the only way to achieve the relevant effect that the
process started. After the parameters were configured, press Save key,
showed as fig2-12.

fig2-12

Programe Start to send out the entitlement that customer

Entitlement reserve, including channel, classification, topic/
class, PPV, IPPV etc.
Programe Cancel the customer entitlement.

14
 Entitlement
Cancel
B_mail Send out the E-mail.
Quick Programe Various entitlement that withdrew to just reserve
Entitlement in the database, quickly send it out.
Delete Programe Delete the program provider.
Provider
User Register Transmit customer register data to the customer
card.
User Stop Temporarily cancel the current entitlement of the
customer, mainly including: The channel
entitlement.
User Resume Resume the current entitlement of customer,
mainly include The channel entitlement.
User Delete Delete all data of the customer intelligence card.
Debit Send out the counterfeit money into the customer
purse.
Share Send out the customer entitlement according to
an address.
Subtitle Send out the Subtitle.
Free Send out the entitlement of free watch of the
program.

Update Key must be changed under the manufacturer on

hand. Please keep the default configuration, displayed like
Watc fig2-13.
h out Cipher Select must be changed under the manufacturer on
hand. Please keep the default configuration, displayed like
fig2-14

fig2-13

fig2-14

2.2.3.3 EMMG Channel Setting

EMMG Channel Manager used to establish channels between EMMG

and each scrambler.

Choose Channel Manager, displayed like fig2-15.

Click the right key of the mouse, and click ‘Create New Channel’ of the
pop menu, displayed like fig2-16.

15
 fig2-15

fig2-16

Fill relevant parameters in the blank of Basic Configuration on the right

window, displayed like fig2-17. Press Save key.

fig2-17

16
Repeat the process as above introduction to finish the channels between
EMMG and other scramblers. All the parameters are just the same except
the IP address.

The channels will arrange on order, such as channel 1, channel 2 ...

displayed like fig2-18.

One EMMG can connect with 20 scramblers, if you want to connect much
more scramblers, you need another EMMG server.

fig2-18

[EMM Channel Parameter Setting]

MUX/ The IP address of the MUX or Scrambler that had to
Scrambler connect with EMMG.
(Master)
MUX/ The IP address of the backup MUX or Scrambler that had
Scrambler to connect with EMMG.
(Backup)
Client_Id A hex value, 4 bytes length, the front 2 bytes is
（Hex） CA_System_ID, and the next 2 bytes is Sub_System_ID.
The EMMG/PDG in a CA system must be ensured used of
the value. The default value was 4ab00000.
Stream_Id The EMM/PD must be ensured used of the value. The
default value is 1. And the Stream_ID filled in the
scrambler must be same value.
Data_Id The combination of Client_ID and Data_ID is ensured an
EMM/PD stream in the CA system. The default value is 1.
And the Data_ID filled in the scrambler must be same
value.
BandWidth EMM message bandwidth is 0.15~2.2Mbps, the width is
(kbps) decided the EMM send rate. The count method of the
theory value is:
EMM refresh period = (number of users / number of EMM
packet send per second) + send
space
= number of users / (EMM bandwidth /
size of EMM packet) + send space
If you have 100 programs and 500 thousand users:
Input number of users =500000, bandwidth =2 Mbps, size
of EMM packet =1504 bit in the function, and assume the
send space = 50 s, so the result is:
EMM refresh period = 500000 / (2 × 1024 × 1024 / 1504) +
50 = 409 s.
Consequently, the max refresh period of 500 thousand
users’ entitlement message is 409 second.

17
TCP Port The socket port number, combined with scrambler it
constitutes the server of scrambler wiretap carry, and is
waiting for EMMG to connect with it via TCP. The value
confine is 1025~65535. Watch out the port number does
not conflict with other used port number.
Accept to use the same or different port number for
different EMMG channel. For example, you established
the channel 1, channel 2… you can use the same port
4640, and also can use 4640, 4641… but the port
numbers must be accord with the scramblers’.
UDP Port The socket port number which is the scrambler port to
receive the EMMG broadcast messages. The value
confine is 1025~65535. Watch out the port number does
not conflict with other used port number.
Accept to use the same or different port number for
different EMMG channel. For example, you established
the channel 1, channel 2… you can use the same port
4660, and also can use 4660, 4661… but the port
numbers must be accord with the scramblers’.
Channel_Id EMMG/PDG has to establish a channel with scrambler,
the combination of Client_ID and Channel_ID is ensured
an EMM/PD channel in the CA system. The default value
is 1. And the Data_ID filled in the scrambler must be same
value.

[Connect Type]
TCP The EMMG first to establish the TCP connection to MUX
then sends out the EMM data packet through a TCP port.
The EMM data packet is compatible with the standard
Simulcrypt MUX EMMG interface.
TCP+UDP The EMMG first to establish the TCP connection to MUX,
then send out the EMM data packet through a UDP port.
The EMM data packet is compatible with the standard
Simulcrypt MUX EMMG interface.
UDP The EMMG does not establish the conjunction to MUX, it
just sends out the TS packet consists of EMM data to
MUX. The EMM data packet is compatible with the
standard Simulcrypt MUX EMMG interface.

[Section_TSpkt_flag]
Section EMMG send EMM packets by Section type.
TS EMMG send EMM packets by TS packet type.

[Close Channel]
Choose the Channel displayed like fig2-19, and click the right button of
mouse. It will display the menu open, click ‘Close Channel’ menu item to
close the channel immediately, showed as fig2-20. You also can close a
unused channel by this way.

18
 fig2-19

fig2-20

2.2.3.4 Start (or Close) EMMG

Choose the EMMG server IP address showed as fig2-21, click right key of
the mouse. Choose Flash on the pop menu displayed like fig2-22. If
EMMG do not start, the Start EMMG is deep style, and you can press
Start EMMG to start EMMG. If the Start EMMG is undertone style, the
EMMG have been startup, and you can press Close EMMG to close it.

fig2-21

fig2-22

19
2.2.4 ECMG Operation

ECMG (Entitlement Control Message Generator) generates ECM data. It

receives the control word (CW) and access condition (AC) from
scramblers, and uses CW and AC to generate ECM message, and sends
it to scrambler by encryption.

ECMG have to establish a channel with encrypt control system, and

establish channels with scramblers too.

2.2.4.1 Add ECMG

There are EMMG and ECMG key at the down of CA manager procedure
window, displayed like fig2-23.

Choose ECMG and click the blank with the right key of your mouse,
choose Add New ECMG.

fig2-24

fig2-25

fig2-26
fig2-23

Fill the host IP address in the blank displayed like fig2-24 (‘host’ is the PC
which the ECMG software was installed. If you establish channel
successful, it will be displayed like fig2-25, and if you establish failed, the
status should be showed as fig2-26.

The reasons of failure to establish:

20
 ①Wrong host IP address.
②SNMP service on the ECMG host does not startup.
③ECMG do not register on the ECMG host.

2.2.4.2 Configure ECMG Basic Parameter

Choose Basic Configuration showed as fig2-27, and input ECMG basic

parameters in the windows on your right.

fig2-27

[ECMG Basic Setting]

ECMG Name (or IP Define an ECMG name or the address of IP of the
Address) ECMG in order to distinguish the current ECMG.
ECMG Port The port number of the TCP communication, the
default is (6001).It ranges from 0 to 65535, if linked
to many multiplexers, then all the multiplexers
must use the same port number.
Super_CAS_ID A 4 bytes symbol, the front 2 bytes is
CA_System_ID, and the next 2 bytes is
Sub_System_ID. One SCS is ensured one ECMG.
The default value is 19120 (0x4ab0).

[Control Card Server Setting]

Control Card Server Running encrypt system control card and
Name (or IP) encrypt control procedure (Encrypt Control)
server’s IP address.
Port Encrypt control procedure’s wiretap port
usually is 5008.

[EIS Setting]
Select EIS If this button is checked, it means that the EIS
interface is used, and to make AC condition's
exchange with selected EIS. When this options is
selected, the screen will display related options
such as the name of EIS. If this option is not
selected, it means that the connection was not

21
 established with EIS.
EIS Name Input the name or IP address of the server which
the EIS was running.
EIS Port Input the port number of EIS service (default port
number is 7001).
EIS Amount For advance the amount of channels. This version
only supports one channel.
MUX Number Input MUX (as PTC_NO) number, and you can
input many different values. You can use ‘,’ to
space out each value. The values are used of
filtration EIS data packets.

[Database Setting]
DB If the option is checked, the connection between CA Network
Source Manager and CA system database is established.
Service The CA system database service name, it is usually ca.
User The user name in the database, it usually is ca.
Pwd The password of the user ‘ca’ , it usually is ca.

2.2.4.3 ECMG Channel Setting

ECMG Channel Manager used to establish channels between ECMG and

each scrambler.

Choose Channel Manager, displayed like fig2-28.

Click the right key of the mouse, and click ‘Create New Channel’ of the pop
menu, displayed like fig2-29.

fig2-28

fig2-29

Fill relevant parameters in the blank of Basic Configuration on the right

window, displayed like fig2-30. Press Save key.

22
 fig2-30

Repeat the process as above introduction to finish the channels between

ECMG and other scramblers. All the parameters are just the same except
the IP address.

The channels will arrange on order, such as channel 1, channel 2 ...

displayed like fig2-31

One ECMG can connect with 20 scramblers, if you want to connect much
more scramblers, you need another ECMG server.

fig2-31
[Channel Setting]
Muxplexer The IP address of the MUX or Scrambler that had to connect
Name (or IP with ECMG.
Address)
Port The port number of the TCP communication, the default is
(6001).It ranges from 0 to 65535, if linked to many
multiplexers, then all the multiplexers must use the same
port number.

[Scramble Setting]

23
AC_Delay_Start The delay time of ECM compared to the beginning
of the scrambling period in the first scrambling
period after AC change. If the value is positive ‘n’, it
means that ECM is sent out ‘n’ millisecond later
than beginning time of the scrambler period. If the
value is negative ‘n’, it means that ECM is sent out
‘n’ millisecond earlier than the beginning time of the
scrambler period. The default number is 0 ms. It is
used to replace the Delay_start of the first period.
AC_Delay_Stop The delay time of ECM compared to the ending of
the scrambling period in the first scrambling period
after AC change. If the value is positive ‘n’, it means
that ECM is sent out ‘n’ millisecond later than
ending time of the scrambler period. If the value is
negative ‘n’, it means that ECM is sent out ‘n’
millisecond earlier than the ending time of the
scrambler period. The default number is 0 ms. It is
used to replace the Delay_stop of the first period.
Transition_Delay_St The delay time of ECM compared to the beginning
art of the scrambling period in the first scrambling
period after changing from the scrambler into the
clear statement. If the value is positive ‘n’, it means
that ECM is sent out ‘n’ millisecond later than
beginning time of the scrambler period. If the value
is negative ‘n’, it means that ECM is sent out ‘n’
millisecond earlier than the beginning time of the
scrambler period. The default number is 0 ms. It is
used to replace the Delay_start of the first period.
Transition__Delay_ The delay time of ECM compared to the ending of
Stop the scrambling period in the first scrambling period
after changing from the scrambler into the clear
statement. If the value is positive ‘n’, it means that
ECM is sent out ‘n’ millisecond later than ending
time of the scrambler period. If the value is negative
‘n’, it means that ECM is sent out ‘n’ millisecond
earlier than the ending time of the scrambler period.
The default number is 0 ms. It is used to replace the
Delay_stop of the first period.
ECM_rep_period Input the number of ECM_rep_period, means the
data of ECM in the multiplexer that send again
period take the millisecond as the unit, default value
is 200 ms.
Delay_Start The delay time of ECM compared to the beginning
of the scrambling period. If the value is positive ‘n’,
it means that ECM is sent out ‘n’ millisecond later
than beginning time of the scrambler period. If the
value is negative ‘n’, it means that ECM is sent out
‘n’ millisecond earlier than the beginning time of the
scrambler period. The default number is -3000 ms.
Delay_Stop The delay time of ECM compared to the ending of
the scrambling period. If the value is positive ‘n’, it
means that ECM is sent out ‘n’ millisecond later
than ending time of the scrambler period. If the
value is negative ‘n’, it means that ECM is sent out
‘n’ millisecond earlier than the ending time of the
scrambler period. The default number is -3000 ms.

24
 Min_CP_duration It takes 100 ms as the unit, that is the least period
of the scrambler; it is used when establishing the
channel. Min_CP_duration number must be bigger
than max_comp_time; the default value is 6500 ms.
Max_comp_time Input the number of max_comp_time, means the
ECM for born hour biggest time need, that number
at the passage establish use, usually represent the
ECM to respond to time for super hour, default
value is 6000 ms.
Section_TSpkt_flag Input the parameter of Section_TSpkt_flag, When
the number is a 0x00, the ECM uses the format
MPEG-2.When the number is a 0x01, the ECM
uses the format TS (188 bytes length).
CW Select If choosing ‘ the Const CW’ options, then the control
word of the ECM keeps constant (compare with the
control word received from MUX/scrambler); if
choosing ‘the CW Transform’ option, then do
transformation processing for the CW[3] and CW[7]
of CW, and wrap them into the data of ECM. The
control word is chosen by the request of
MUX/scrambler.
Lead When the Lead CW = 0, CW_per_msg = 1, the
CW\CW_per_msg ECMG ask MUX/scrambler to deliver one control
word to ECMG, and the data of ECM will include
one control word only. When the Lead CW = 1,
CW_per_msg = 2, the ECMG ask MUX /scrambler
to deliver two control word to ECMG, and the data
of ECM will include two control word. When the
Lead CW = 1, CW_per_msg = 1, the ECMG ask
MUX/scrambler to deliver one control word to
ECMG, and the data of ECM will include two control
words: one is from the cache, another is from
current control word. In other cases the ECMG only
delivers one control word. The default setting is
Lead CW = 1, CW_per_msg = 2. For the old edition
of MUX / scrambler, please set the Lead CW = 1,
CW_per_msg = 2.

2.2.5 System Monitoring

2.2.5.1 ECMG Procedure Window

After the ECMG startup by the network manager, there will open an ECMG
procedure window on the ECMG server, displayed like fig2-32.

Choose ‘Channel Window’ on the ‘Window’ menu, you can watch the
connection status and the data exchange status between ECMG and a
scrambler.

25
 fig2-32

Choose ‘Main Window’ on the ‘Window’ menu, you can watch the ECMG
connection status with each scrambler.

fig2-33

2.2.5.2 EMMG Procedure Window

After the EMMG startup by the network manager, there will open an EMMG
procedure window on the EMMG server, displayed like fig2-34.

Choose ‘Scrambler’ on the ‘Window’ menu, you can watch the connection
status between EMMG and a scrambler, and the send status of the EMM
data packets.

26
 fig2-34

Choose ‘EMM Control View’ on the ‘Window’ menu, you can watch the
generation status of EMM information by EMMG server.

fig2-35

2.2.5.3 CA Network Manager Monitoring

Click ‘System Monitoring’ showed as fig2-36, you can monitor the

connection status between ECMG or EMMG and the scramblers. There
are two square frames in diagram representative the ECMG and ECMG,
and the green represents all EMMG (or ECMG) are started. The red
represents at least one EMMG (or ECMG) is close or the status is
unknown. The line represents the status of all the channels, their number
means the total amount of channels of that line. The green represents all
the channels are normal. The red represents at least one EMMG (or
ECMG) is abnormal.

27
Choose EMMG (fig2-36) or ECMG (fig2-37) under ‘Detail Information of
Status’ window, you can watch the detail connection status between
EMMG or ECMG and each scrambler.

图 2-38

图 2-39

Click ‘System Monitoring’, and choose the ‘Channel Status’ on the left
menu, you can watch the connection status between ECMG or EMMG
and each scrambler by switching the EMMG and ECMG key . The green
signal beacon in diagram means the status of the channel is normal; the
red means the status of the channel is abnormal or the scrambler does
not working.

Fig2-38 shows the EMMG channel status, and fig2-39 shows the ECMG
channel status.

28
 fig2-38

fig2-39

2.2.6 CA_menu

CA_menu is control-management of CTI-CAS, which is used to manage

information, control special application, query database data.

29
 fig2-40

2.2.6.1 Information

‘Information’ is used to define the system environment of CAS, such as

provider, channels, package etc.

2.2.6.1.1 Provider

CTI-smartcard can supply 8 provider subareas. Every subarea includes

one 256bit storage area which is used to save entitlement. It can support
2048 accessing entitlement by 8 providers.

30
 provider Range 1~8, it should be according to CTI-smartcard.
number Program number is an important practical parameter. When
a user purchases a package from one of a provider, this
provider’s number will be written into entitlement. Compared
with the information of smartcard, it will be saved into a
corresponding subarea.
Provider Supporting 30 bit (smartcard just read the anterior 16 bit). It
name has no practical significance and commonly supplies a
reason for provider.
remark Supporting description with 50 bits.
Choose insert to create a new provider, input correlative information and
save it.
Choose query to display all the providers and it can be modified or
deleted. If something has been changed, it needs to save again.
It would not change the information on STB.

fig2-41

2.2.6.1.2 Acess_ID

Acess_ID defines program content, which is combined to entitlement to

control viewing of scrambling program.

fig2-42
Provider Choose one.
number
Provider Auto choose one.
name
Acess_ID Acess_ID should be the same as the one that is used in
scrambler. Range1~256 。 Acess_ID is an important
program parameter. When user purchase a series
Acess_ID which is from mapping of package. And it can
be transported by EMM.
Acess_ID Supporting 30 bits.
description

31
 Sample: when a program use an Acess_ID description, supposing it is
‘n’, if user have the entitlement including ‘n’, they can view this
program.
That Multi-program using the same Acess_ID description can be
disposal with the same solution.

2.2.6.1.3 Package Information

The ‘package information’ defines package including channel content.

Package is a type of vendition. That is, all of programs should be
combined into several packages for vending. It supports max 9950
packages and every package can include 256 programs.

fig2-43
Choose insert to create new packages including follows.
Package Defines package number. Range 1~9950. SMS should have
number the same number.
Package Describes package name. Supporting 30 bit.
name
content Defines the content of package.
Right key click ***** part，choose channels which you want
to display in this package. 1~256 of fig2-44 are Acess_ID.
remark Supporting 50 bit description.
BAT Special control of viewing.

fig2-44
Choose yes to commit the result, return to fig 2-45 and save.
Fig2-45 displays 64 bit hex number. Every bit stand for 4 bit binary
number. It means a provider own 1~256 Acess_ID.

32
 fig2-45

Hex and binary system

H B
0 0000
1 0001
2 0010
3 0011
4 0100
5 0101
6 0110
7 0111
8 1000
9 1001
A 1010
B 1011
C 1100
D 1101
E 1110
F 1111

2.2.6.1.4 CA Person

Used to manage CA-Menu operator.

Number (4bit), name (10bit), password (256bit). Save to commit.

fig2-46

2.2.6.1.5 Function Privilege

Used to manage operator’s popedom, Showed as fig2-47.

33
 fig2-47

2.2.6.1.6 Update Password

Update current operator’s password.

fig2-48

2.2.6.2 Query

2.2.6.2.1 History Entitlement Query

Used to query one or all user’s history entitlement log.

fig2-49

Supporting access query.

34
 fig2-50

2.2.6.2.2 Present Entitlement Query

Used to query one or all user’s present entitlement log. Showed as fig2-51

fig2-51

2.2.6.2.3 Emergent Entitlement Query

Used to query one or all user’s emergent entitlement log. Sowed as fig2-
53

fig2-53

2.2.6.2.4 Status Query

Used to query one or all user’s status.

fig2-54

2.2.6.2.5 Charge Information Query

Used to query one or all user’s charge information of IC.

fig2-55

35
2.2.6.2.6 Message Query

Used to query broadcast information, including B-mail and OSD.

fig2-56

2.2.6.2.7 Card Operation Query

fig2-57

2.2.6.2.8 Free Viewing Query

fig2-58

2.2.6.2.9 Sharing Entitlement Query

fig2-59

36
Addendum A AC editor

B.1 BRIEF

AC is abbreviation of Access Criteria. That is, AC is the explanation about

CW, including system_ID, version number, sector number, maturity rate,

acess_ID, PPV/IPPV.

AC includes static AC and changeable AC. Static AC is usually used to

support service scrambling. Changeable AC is generated according to event

information by ACG.

ECMG of CAS will get AC and CW from scramble devices, generate ECM

including AC, CW and system time, and send them to scramble devices.

B.2 EDIT

AC editor is used to edit AC. Generally, there will be several services in

every transport stream. If every service uses different AC, CWG will

generate different CW. Every CW and corresponding AC is transported to

ECMG of CAS together. Meanwhile, the return ECM will be transported to

network with their corresponding service. STB will get an ECM to

unscramble its corresponding service. If several services use the same AC,

CWG will generate just a CW for them. STB will unscramble them as above.

1> Startup

Start cti_ca_edit.exe. System will display as fig A.1:

fig A.1

37
2> Click ‘operate’ to open fig A.2

fig A.2

Record number

Input a positive integer as record number.

Scramble flag

If checked, it means the program needs to be scrambled, if not it means the

program is free.

Multiplexer number

Input an integer as the multiplexer serial number, it is used to distinguish

different multiplexers.

Import port number

It is used to number the different ASI import ports of multiplexer, it starts from

1 and increases, ranging 1-30; if multiplexer is an again multiplexer or

scrambler, the serial number can be expressed as the program number for

TS.

Program beginning time

The beginning time of scrambling of the program.

Program ending time

The ending time of scrambling of the program.

CA system ID

The ID of COMPUNICATE TECHNOLOGY Inc CA system is 0x3000(12288)

38
Program

Vendor number

Can support max to 8 program providers, serial number from 1 to 8.

Card batch number

Current batch number of the card is 0.

Maturity rate word

A numeral ranging 0-255.

Channel number

The number scope 1-256.

Categorization number

A number ranging 1-256.

Topic serial number range

1-256

Class serial number range

1-256

Program number ranging

0-4294967295(0xffffffff)

Program price (charging by order)

The unit is 0.01 dollar per order ranging 0-9999(0-99.99 dollars).

Program price (charging by minute)

The unit is 0.01 dollar per minute, ranging 0-9999(0-99.99 dollars).

Insert the record

It creates a new record, and passes the record from the dialog box to the list

of the record.

Refreshing record

It is used to refresh the record according to the record number if the

recorded has been edited in the dialog box.

Delete the record: Delete the selected record from the list of records.

To Clipboard

Copy the data to the clipboard, and then it can be ‘paste’ to any text editors.

Open file

39
Open the file and read the data into the list of records from the file.

Save file

Write the data of the list of records to the file.

Quit

To display ‘do you want to save current data?’ hint and return to the main

menu after selected operations.

Cancel

Don't save the data and return to the main menu.

40