Conax Client Devices
Low security on client devices can easily be exploited in the form of card sharing, STB hijacking or illegal redistribution of both live and stored content. In Conax we place extra emphasis on security that goes all the way through to the device itself.
Conax Client Devices’ main objective is to make sure all Conax enabled client devices are developed according to Conax’ requirements regarding functionality and security. Conax Client Devices are the single point of contact for:
- Integration Guidance and Support
- Integration Kits
- Security Evaluation (SE)
- Conformity Test (CT)
- Pre-Test (PT)
- Training and workshops
Integration Guidance and Support
The overall objective of Conax Client Devices’ department is to make sure all Conax enabled client devices are developed according to Conax’ requirements regarding functionality and security.
Most of the SW development of client devices is performed by the client device manufacturer themselves based on integration kits provided by Conax. Conax Client Devices guide the manufacturers through the process of implementation and provide guidance and support whenever necessary during the implementation phase.
Normally the development phase starts with an SES process, which results in a high level design as a good basis for developing a secure client.
After implementation, the device will be sent to 3rd party test labs for verification.
Client device manufacturers who want to develop, produce and/or sell a Conax enabled client device need to have a valid license with Conax. To apply for a license an application form must be filled in and returned to Conax Client Devices. We will also normally require a confirmation by one or several operators stating the request for the manufacturer’s product.
We have a license evaluation on a quarterly basis, and will shortly thereafter inform each of the applicants about the result of their respective application. Approved licensees will then receive a license agreement and after the license agreement has been signed by both parties, Conax will issue the necessary integration kits to the licensee.
When a manufacturer has developed a new product, it needs to be sent for certification. Two different types of certification tests are performed; Conformity Test (CT) and Security Evaluation (SE).
CT is a test that confirms conformance to Conax’ functionality requirements. The conformity requirements are described in the integration kits. The result of the CT is either “conform” or “not conform”.
SE is a test performed by specialized 3rd party security labs, whose only purpose is to measure the time, skill level, and equipment needed to break security elements of the client device. The result of the SE is a security level between 0 and 10. The security level is an indication of how secure the client is. This information is further used by the operators to be able to find the appropriate security level for devices in their operation taking into account the value of their content, content provider requirements, actual piracy threat to their operation, and other characteristics of the operation. Conax will help the operators to find the appropriate security level for each operation.