Cisco Headend System Release 2.7 Release Notes
Chapter 1 Introducing System Release 2.7/3.7/4.2 SP 0.2
2
4019303 Rev C
Support for Separable Security Set-Tops
Introduction
The Federal Communication Commission requires that, after July 2007, no set-top
boxes are to be deployed using embedded security. In response to this mandate,
Cisco has begun producing and distributing set-tops that require PowerKey®
CableCARD™ modules for all conditional access security. Cisco has also modified
the DNCS to support a method of binding a CableCARD module to the associated
host set-top without user interaction or two-way staging. This binding process is
known as combo-binding.
boxes are to be deployed using embedded security. In response to this mandate,
Cisco has begun producing and distributing set-tops that require PowerKey®
CableCARD™ modules for all conditional access security. Cisco has also modified
the DNCS to support a method of binding a CableCARD module to the associated
host set-top without user interaction or two-way staging. This binding process is
known as combo-binding.
Combo-Binding
Combo-binding is a process that the SSC DHCT and CableCARD module pair go
through after the CableCARD module downloads its EMMs. The process is as
follows.
1 The SSC DHCT and its paired CableCARD module exchange keys to
through after the CableCARD module downloads its EMMs. The process is as
follows.
1 The SSC DHCT and its paired CableCARD module exchange keys to
authenticate each other.
2 The DNCS sends the pairing information (as a file named pod_data) to the BFS.
The POD_Data file contains two lists: an authorized list and an unauthorized list.
Each list contains information on the SSC DHCT and its paired CableCARD
module.
Note: The DNCS populates its database with the SSC pairing information from
the inventory file during the batch load process.
Each list contains information on the SSC DHCT and its paired CableCARD
module.
Note: The DNCS populates its database with the SSC pairing information from
the inventory file during the batch load process.
3 The CableCARD module reads the pairing information from the file. If the
CableCARD module finds its SSC pairing in the authorized list, it authorizes the
binding between it and the SSC host. If it finds its SSC pairing in the
unauthorized list, or if it does not find its SSC pairing in either list, it does not
authorize the binding.
binding between it and the SSC host. If it finds its SSC pairing in the
unauthorized list, or if it does not find its SSC pairing in either list, it does not
authorize the binding.
You do not need to turn combo-binding "on." It is an automatic process available for
SSC DHCTs as long as you load the correct DHCT types, have the correct EMMs,
and have one of the following System Releases:
SSC DHCTs as long as you load the correct DHCT types, have the correct EMMs,
and have one of the following System Releases:
SR 2.5/3.5/4.0 Service Pack 3 (and later)
SR 2.7/3.7/4.2 Service Pack 0.2 (and later)
SR 2.8/3.8/4.3