Nagravision
From Wikipedia, the free encyclopedia
Nagravision is a company of the Kudelski Group that develops conditional access systems for cable and satellite television. The name is also used for their main products, the Nagravision encryption systems.
[edit] Digital systems
Three versions of Nagravision are in common use for digital satellite television, known as Nagravision, Nagravision A, and Nagravision Aladin. Nagravision A and Aladin are often confused with each other. Nagravision Aladin is however, a complicated combination of Nagravision A and Mediaguard SECA 2 encryption.
The decryption unit is either integrated into a receiver, available as a conditional access module (CAM), or as one of many encryption schemes supported on a CAM emulator.
Nagravision has been adopted all over the world as a conditional access system, with providers like Virgin Media UK and Dream Satellite TV Philippines (on Nagravision 1), Polsat of Poland, Digital+ Spain, TV Cabo Portugal, Premiere Germany, Digi TV Romania, BellExpressVu Canada and Dish Network USA (On Nagravision A).
Digital+ remains the only provider using Nagravision Aladin (And also Nagravision A) after its adoption in March 2005. Despite several security flaws, algorithm changes and revisions have kept the Nagravision A system generally secure, although the common encryption game of "cat and mouse" between the conditional access providers and signal pirates has developed.
The original Nagravision 1 is now almost obsolete after it was originally compromised in 1999, although Dream Satellite maintain relative security by changing keys several times throughout the day, causing great inconvenience to unauthorized viewers.
The Nagravision A providers have been confronting the issue of satellite signal piracy and smart card piracy, since the system was publicly compromised in summer 2005. At first, security of the system was regained, with software revisions, manipulation of the Nagravision encryption algorithm, along the phasing out of older cards, like the ROM101 (and ROM102 in Europe) in favour of the newer ROM130.
Card hackers have, however, continued to compromise the encryption system, with continued software and key releases being made available to the public. Software emulation of the Nagravision system has been implemented in many Free-To-Air Satellite receivers, allowing unauthorised viewing to those who do not even own an official card.
[edit] Analog system
An older Nagravision system for scrambling analog satellite television programs was used in the 1990s, for example by the German pay-TV broadcaster Premiere. In this line-shuffling system, 32 lines of the PAL TV signal are temporarily stored in both the encoder and decoder, and read out in permuted order under the control of a pseudorandom number generator. A smartcard security microcontroller (in a key-shaped package) decrypts data that is transmitted during the blanking intervals of the TV signal and extracts the random seed value needed for controlling the random number generation. The system also permitted the audio signal to be scrambled by inverting its spectrum at 12.5 kHz using a frequency mixer.
Like with most smartcard-based conditional access systems, the smartcards used with the analog Nagravision system were repeatedly reverse engineered by hackers, which allowed the production of clone cards and "patched" receivers. However, the analog Nagravision system was the first widely used cryptographically controlled conditional access system that was broken in a way that bypassed the tamper resistance of its smartcard entirely and from which no recovery was possibly by replacing all smartcards. The weakness exploited by this attack is the random seed value that is used to control the descrambling process. It is only 15 bits long and by the late 1990s, even low-cost home computers with frame grabbers were computationally powerful enough to try all 215 = 32768 possible permutations of video lines for each frame in real time. Software decoders were written that selected of this small number of possible permutations the one that maximized the similarity of neighboring image lines in the resulting image and displayed the result. The scrambling of the audio signal was not a cryptographically controlled process and can easily be undone using the same frequency mixer circuit used for scrambling.
[edit] External links
- Nagravision
- Markus Kuhn: Analysis of the Nagravision video scrambling method, 1998 – explains an attack against the old Nagravision system for analog television