This wiki has been migrated to https://gitlab.com/wireshark/wireshark/-/wikis/home and is now deprecated. Please use that site instead.
Differences between revisions 2 and 16 (spanning 14 versions)
Revision 2 as of 2008-10-22 11:29:33
Size: 2150
Comment:
Revision 16 as of 2009-03-25 15:34:08
Size: 2509
Comment:
Deletions are marked like this. Additions are marked like this.
Line 2: Line 2:
= Simulcrypt (Simulcrypt) = = Simulcrypt (SimulCrypt) =
Line 5: Line 5:
The standardised SCS (Simulcrypt Synchroniser) to ECMG (Entitlement Control Message Generator) interface is used to allow multiple key management systems to operate in parallel, each generating its own (typically proprietary) ECMs (Entitlement Control Messages).
Line 12: Line 13:
 * [[TCP]]: For the SCS (SimulCrypt Synchroniser) to ECMG (Entitlement Control Message Generator), SIMULCRYPT uses [[TCP]] as its transport protocol. There is no well known TCP port for SIMULCRYPT traffic as multiple TCP connections are possible (typically each TCP connection is associated to a given key management system for a particular TV channel).  * [[TCP]]: For the SCS to ECMG, SIMULCRYPT uses [[TCP]] as its transport protocol. There is no well known TCP port for SIMULCRYPT traffic as multiple TCP connections are possible (typically each TCP connection is associated to a given key management system for a particular TV channel).
Line 20: Line 21:
The PROTO dissector is (fully functional, partially functional, not existing, ... whatever the current state is). Also add info of additional Wireshark features where appropriate, like special statistics of this protocol. The SIMULCRYPT dissector is fully functional for the SCS - ECMG interface. It decodes the Simulcrypt syntax to analyse different Simulcrypt messages and associated TLV parameters.
Line 24: Line 25:
(XXX add links to preference settings affecting how PROTO is dissected). There are some [[SIMULCRYPT_Preferences]].
Line 28: Line 29:
XXX - Add a simple example capture file to the SampleCaptures page and link from here (see below). Keep this file short, it's also a good idea to gzip it to make it even smaller, as Wireshark can open gzipped files automatically.
Line 30: Line 30:
 * [[attachment:SampleCaptures/PROTO.pcap]]  * [[attachment:SampleCaptures/SIMULCRYPT.pcap]] - Simulcrypt traffic over [[TCP]] on ports 8600, 8601 and 8602.
Line 35: Line 35:
 Show only the PROTO based traffic: {{{
 proto }}}
 Show only the SIMULCRYPT based traffic: {{{
 simulcrypt }}}
Line 40: Line 40:
You cannot directly filter PROTO protocols while capturing. However, if you know the [[TCP]] port used (see above), you can filter on that one. You can directly filter SIMULCRYPT protocols while capturing if you know the [[TCP]] port used (see above).
Line 42: Line 42:
 Capture only the PROTO traffic over the default port (80): {{{
 tcp port 80 }}}
 Capture only the SIMULCRYPT traffic over the chosen port (<port>): {{{
 tcp port <port> }}}
Line 47: Line 47:
 * add link to PROTO specification and where to find additional info on the web about it, e.g.:
 * [[http://www.ietf.org/rfc/rfc123.txt|RFC 123]] ''The RFC title'' - explanation of the RFC content.
 * [[http://pda.etsi.org/pda/queryform.asp]] '' ETSI TS 103 197 V1.5.1 (2008-10)'' - Digital Video Broadcasting (DVB);Head-end implementation of DVB SimulCrypt, latest version.
 * [[http://pda.etsi.org/pda/queryform.asp]] '' ETSI TS 101 197-1 V1.1.1 (1997-06)'' - Digital Video Broadcasting (DVB);DVB SimulCrypt;Part 1: Head-end architecture and synchronization
 * [[http://www.dvb.org/technology/standards/index.xml#conditional]] '' List of DVB standards relating to Conditional Access'' - various standards
 * [[http://fr.wikipedia.org/wiki/Simulcrypt]] '' Wikipedia entry'' - currently only in French

Simulcrypt (SimulCrypt)

A DVB protocol published by ETSI used in IPTV / broadcast TV head-ends to enable use of multiple key management systems. The standardised SCS (Simulcrypt Synchroniser) to ECMG (Entitlement Control Message Generator) interface is used to allow multiple key management systems to operate in parallel, each generating its own (typically proprietary) ECMs (Entitlement Control Messages).

History

XXX - add a brief description of PROTO history

Protocol dependencies

  • TCP: For the SCS to ECMG, SIMULCRYPT uses TCP as its transport protocol. There is no well known TCP port for SIMULCRYPT traffic as multiple TCP connections are possible (typically each TCP connection is associated to a given key management system for a particular TV channel).

Example traffic

XXX - Add example decoded traffic for this protocol here (as plain text or Wireshark screenshot).

Wireshark

The SIMULCRYPT dissector is fully functional for the SCS - ECMG interface. It decodes the Simulcrypt syntax to analyse different Simulcrypt messages and associated TLV parameters.

Preference Settings

There are some SIMULCRYPT_Preferences.

Example capture file

Display Filter

A complete list of PROTO display filter fields can be found in the display filter reference

  • Show only the SIMULCRYPT based traffic:

     simulcrypt 

Capture Filter

You can directly filter SIMULCRYPT protocols while capturing if you know the TCP port used (see above).

  • Capture only the SIMULCRYPT traffic over the chosen port (<port>):

     tcp port <port> 

Discussion

SIMULCRYPT (last edited 2010-10-05 19:07:27 by GuyHarris)