JP4765574B2 - Content distribution system, content receiving apparatus and program thereof - Google Patents

Description

  The present invention relates to a content distribution service. Specifically, the content distribution device and the content reception device connected via the Internet or the content reception devices encrypt the content with the content key, and decrypt the content with the content key to obtain the content key. The present invention relates to a content distribution system capable of freely purchasing and lending and borrowing contents on the premise of accompanying.

  Conventionally, content received from a content distribution apparatus connected via the Internet is protected by DRM (Digital Rights Management) from the viewpoint of copyright protection. The DRM encrypts and decrypts the received content based on hardware specific information of the content receiving device that has received the content. As a result, even if the received content is copied to another different content receiving device, the different other content receiving device does not have the unique information obtained by encrypting the content. Distribution by copying could be prevented.

According to this DRM mechanism, a content distribution system for renting content can also be constructed. As a content distribution system using such a DRM mechanism, a content rental management server is provided, and a user can use this content management server. If the user wants to view the encrypted content in advance and the user wants to view the encrypted content, the content rental management server is requested to send the decryption key each time, and the content rental condition is satisfied. As far as the content distribution system is concerned, a content distribution system in which the content rental management server transmits a decryption key to the user has been proposed (for example, see Patent Document 1).
JP 2003-76805 A

  However, in the above-described conventional content distribution system, since the case of renting the content being rented to another user (and the case of renting) is not considered, the degree of freedom of content rental by content distribution is low.

  In view of the above problems, it is an object of the present invention to provide a content distribution system, a content distribution method, a content reception device, an authentication information transmission device, and a program thereof that have an increased degree of freedom for renting content.

  Specifically, the present invention provides the following.

(1) a content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproduction of the content distributed from the content distribution device to the content reception device, An authentication information transmission device that transmits to a content distribution device in response to a request from the content reception device is a content distribution system connected via a communication line, and the content distribution device receives the content from the content reception device. Content authentication means for distributing content in response to a request, wherein the authentication information transmitting device reproduces content received by the content receiving device in response to a request from the content receiving device. Authentication information creating means for creating authentication information necessary for Authentication information transmitting means for transmitting the authentication information created by the authentication information creating means to the content receiving apparatus, and in response to a request from the content receiving apparatus, reproduction of the content received by the content receiving apparatus. The lending authentication information creating means for creating lending authentication information necessary for performing in another content receiving apparatus different from the content receiving apparatus, and the lending authentication information created by the lending authentication information creating means, A lending authentication information transmitting means for transmitting to a content receiving apparatus or the other content receiving apparatus, and the content receiving apparatus requesting the authentication information transmitting apparatus to create the authentication information; Lending authentication information creation requester that requests the authentication information transmitting apparatus to create the lending authentication information The authentication information received from the authentication information transmission means, or the authentication information storage means for storing the lending authentication information received from the lending authentication information transmission means, and according to the selection of content in the content receiving device, A distribution request transmitting unit that transmits a content distribution request to a content distribution device, a content reception unit that receives content distributed from the content distribution device, and a content received by the content reception unit Content storage means, content playback means for playing back the content stored by the content storage means based on the authentication information or the lending authentication information stored in the authentication information storage means, the authentication information creation means, The authentication information transmitting means and the lending authentication information creation Selecting a means, a lending authentication information transmitting means, a distribution request receiving means for receiving a content distribution request from the other content receiving apparatus, and a device for creating the lending authentication information of the content corresponding to the distribution request Authentication information creation apparatus selection means , wherein the authentication information creation request means requests the other content reception apparatus to create the authentication information, and the lending authentication information creation request means includes the other content reception apparatus. The authentication information storage means stores the authentication information received from the other content receiving device or the rental authentication information, and the authentication information transmitting device generates the authentication information. Includes information for specifying a device that creates lending authentication information related to content corresponding to the authentication information, When the distribution request receiving unit receives the lending authentication information creation request, the device selecting unit receives the distribution request from the device that creates the lending authentication information based on the authentication information of the content corresponding to the distribution request. A content distribution system comprising: selecting from the content receiving device, another content receiving device, and the authentication information transmitting device .

According to the invention of (1), in response to a request from the content receiving device, the authentication information transmitting device performs content reproduction received by the content receiving device with another content receiving device different from the content receiving device. Provided with a lending authentication information generating means for generating lending authentication information necessary for the purpose, and the content receiving apparatus of the borrower acquires and stores the same content as the content held by the lender from the content distribution apparatus. Since the content reproduction means of the borrower's content receiving apparatus reproduces the content stored by the content storage means based on the rental authentication information, the content can be lent freely while avoiding the copyright problem. it can. In addition, when content is rented (in the case of a contract form that requires payment to the system operator when renting between users), the authentication information transmitting device creates the rent authentication information, so the billing process Since it can be performed in a concentrated manner, there is also an effect that billing management of usage charges can be facilitated. Also, regardless of the authentication information transmitting device, the content receiving device that wants to lend alone transmits the lending authentication information directly to the lending destination content receiving device (borrower content receiving device). Can be performed more freely, and the distribution of content between content receiving apparatuses can be promoted. In addition, the content requested from the other content receiving device that is the borrower can be distributed to the other content receiving device that is the borrower, without considering whether the content has already been purchased or is currently rented. It is possible to freely promote the distribution of content between content receiving apparatuses. In addition, since there are a plurality of apparatuses for creating the lending authentication information, the load for creating the lending authentication information is distributed.

  (2) In the content distribution system according to (1), the authentication information includes identification information for identifying the content receiving device, and the lending authentication information includes identification information for identifying the content receiving device, the other A content distribution system comprising: identification information for identifying a content receiving device; and at least one identification information for identifying the content.

  According to the invention of (2), the authentication information includes identification information for identifying the content receiving device, and the lending authentication information is identification information for identifying the content receiving device of the lender, identification information for identifying the content receiving device of the borrower. , And at least one piece of identification information for identifying the content, it is possible to uniquely identify the authentication information and the loan authentication information by using these, and in particular, the loan authentication information is highly unique and confidential. It can be easily created while ensuring the property.

  (3) In the content distribution system according to (1) or (2), the content distribution unit includes an encryption unit that encrypts the content based on the authentication information, and the reproduction unit receives the content reception A content distribution system comprising: decrypting means for decrypting the content received by the means based on the authentication information stored in the authentication information storage means or the lending authentication information.

  According to the invention of (3), the content distribution unit includes the encryption unit that encrypts the content based on the authentication information, and the reproduction unit stores the content received by the content reception unit in the authentication information storage unit. And decryption means for decrypting based on the authentication information or the lending authentication information, so that it can be encrypted and decrypted based on the authentication information or the lending authentication information having high uniqueness and confidentiality, It can be strongly protected to prevent unauthorized copying.

  (4) In the content distribution system according to any one of (1) to (3), the content receiving device includes a viewing restriction determination unit that determines whether content viewing restriction information is satisfied, and the authentication An information creation requesting unit requests the creation of the lending authentication information to the authentication information transmitting device when the viewing restriction determining unit determines that the viewing restriction information is satisfied. system.

  According to the invention of (4), the content receiving device includes a viewing restriction determining unit that determines whether or not content viewing restriction information is satisfied, and the authentication information creation requesting unit uses the viewing restriction determining unit to restrict viewing. When it is determined that the information is satisfied, the authentication information transmitting device is requested to create rental authentication information. Therefore, when renting content, a user who can receive content based on this viewing restriction information In the case of a user who can be sorted out and cannot receive a loan, the authentication information transmitting apparatus is not required to create a rental authentication information, and thus the copyright of the content is strongly protected without performing unnecessary processing. Can do.

  (5) The content distribution system according to any one of (1) to (4), wherein the lending authentication information includes reproduction restriction information related to reproduction of content in the other content receiving device. system.

  According to the invention of (5), the lending authentication information includes the reproduction restriction information related to the reproduction of the content in the other content receiving device which is the borrower content receiving device. Therefore, when the content is lent, based on the reproduction restriction information, It is possible to select users from whom content is lent, and to protect the copyright of the content strongly and prevent unauthorized copying.

  (6) In the content distribution system according to (5), the content reception device includes a reproduction condition satisfaction determination unit that determines whether a reproduction condition based on the reproduction restriction information is satisfied, and the authentication information creation request When the content storage means has already stored the content when the playback condition satisfaction determination means determines that the playback condition based on the playback restriction information is satisfied, the playback means When the content is played back and the content storage means has not yet stored the content, the delivery request sending means sends the content delivery request to the content delivery device, and the playback means sends the delivery request A content distribution system for reproducing the content received from a transmission means.

  According to the invention of (6), when the reproduction condition satisfaction determining unit determines that the reproduction condition based on the reproduction restriction information is satisfied, the content storage unit has already stored the content. When the reproduction means reproduces the content, and the content storage means does not yet store the content, the distribution request transmission means transmits the content distribution request to the content distribution apparatus, and the reproduction means requests the distribution. Since the content received from the transmission means is reproduced, the user who can rent the content can be selected based on the reproduction conditions when the content is reproduced. The content is transmitted from the distribution request transmission unit according to whether the content storage unit stores the content. And Shin, can be reproduced without performing the content reception processing waste, also the rental management of contents can be precisely performed.

  (7) In the content distribution system according to (6), the content receiving device includes update means for updating a playback condition based on the playback restriction information after the playback of the content by the playback means, and the playback condition Satisfaction determining means determines whether or not a playback condition based on the playback restriction information updated by the update means is satisfied.

  According to the invention of (7), after the content is reproduced by the reproduction means, the update means for updating the reproduction condition based on the reproduction restriction information is provided, and the reproduction condition satisfaction determination means is based on the restriction information updated by the update means. Since it is determined whether or not the playback conditions are satisfied, it is possible to set playback conditions related to the playback of each content, such as the playback limit count and playback limit time, and strictly manage the lending of content according to these playback conditions. Can be done.

  (8) In the content distribution system according to any one of (1) to (7), the content reception device includes the content distribution unit, and the distribution request transmission unit is configured to select content in the content reception device. In response, a request to distribute the content based on the lending authentication information is transmitted to the other content receiving device, and the content receiving unit receives the content distributed from the other content receiving device. A featured content distribution system.

  According to the invention of (8), since the content receiving means receives the content distributed from another content receiving device, the lent content is received from the rented source regardless of the transmission from the content distributing device. The target content can be received directly from the device, and the content distribution between the content receiving devices can be promoted while avoiding the copyright problem.

( 9 ) A content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproducing the content distributed from the content distribution device to the content reception device, In the content receiving apparatus in the content distribution system, which is connected to the authentication information transmitting apparatus that transmits to the content distributing apparatus in response to a request from the content receiving apparatus via a communication line, the content is sent to the authentication information transmitting apparatus. Necessary for reproduction of the content in another content receiving apparatus different from the content receiving apparatus to the authentication information transmitting apparatus that requests creation of authentication information necessary for reproducing the content in the receiving apparatus and the authentication information transmitting apparatus That requires creation of secure authentication information Authentication information creation request means, authentication information storage means for storing the authentication information received from the authentication information transmitting apparatus or the lending authentication information, and the content distribution apparatus in response to selection of content in the content receiving apparatus Distribution request transmitting means for transmitting the content distribution request; content receiving means for receiving the content distributed from the content distribution apparatus; content storage means for storing the content received by the content receiving means; Authentication information storage means for storing the authentication information or the lending authentication information received from the authentication information transmission means, and the content stored by the content storage means, the authentication information stored in the authentication information storage means or Content playback based on the rental authentication information And authentication for generating authentication information necessary for reproducing the content received at the other content receiving device at the other content receiving device in response to a request from the other content receiving device. In response to a request from the other content receiving apparatus, the other information receiving means, the authentication information transmitting means for transmitting the authentication information created by the authentication information creating means, and the other content receiving apparatus. Lending authentication information creating means for creating lending authentication information necessary for performing reproduction of content received in the content receiving device in a second other content receiving device different from the other content receiving device; The lending authentication information created by the lending authentication information creating means is used as the other content receiving device or the second other content receiving information. Lending authentication information transmitting means for transmitting to a device, distribution request receiving means for receiving a content distribution request from the other content receiving device, and a device for creating lending authentication information for content corresponding to the distribution request are selected. Authentication information creation device selection means , wherein the authentication information creation request means requests the other content reception device to create the authentication information, and the lending authentication information creation request is sent to the other content reception device. Requesting creation of the lending authentication information, the authentication information storage means stores the authentication information received from the other content receiving device or the lending authentication information, and the authentication information created by the authentication information transmitting device is , Including information for identifying a device that creates lending authentication information related to content corresponding to the authentication information, and generating the authentication information When the distribution request receiving unit receives the lending authentication information creation request, the device selecting unit receives the distribution request from the device that creates the lending authentication information based on the authentication information of the content corresponding to the distribution request. The content receiving device is selected from the content receiving device, another content receiving device, and the authentication information transmitting device.

( 10 ) In the content receiving device according to ( 9 ), the reproducing means may be configured to use the content received by the content receiving means based on the authentication information stored in the authentication information storage means or the lending authentication information. A content receiving apparatus comprising a decrypting means for decrypting.

( 11 ) In the content receiving device described in ( 9 ) or ( 10 ), the content receiving apparatus includes a viewing restriction determination unit that determines whether content viewing restriction information is satisfied, and the authentication information creation request unit includes the viewing restriction. A content receiving apparatus that requests the authentication information transmitting apparatus to create the lending authentication information when the determining means determines that the viewing restriction information is satisfied.

( 12 ) The content reception device according to any one of ( 9 ) to ( 11 ), wherein the lending authentication information includes reproduction restriction information regarding reproduction of content in the other content reception device. apparatus.

( 13 ) In the content receiving device according to ( 11 ) or ( 12 ), the content receiving device includes a reproduction condition satisfaction determination unit that determines whether or not a reproduction condition based on the reproduction restriction information is satisfied, and the authentication information creation request unit includes: When the content storage means already stores the content when the playback condition satisfaction determination means determines that the playback condition based on the restriction information is satisfied, the playback means stores the content. When the content storage unit has not yet stored the content, the distribution request transmission unit transmits the content distribution request to the content distribution device, and the reproduction unit transmits the content request from the distribution request transmission unit. A content receiving apparatus for reproducing the received content.

( 14 ) The content receiving device according to ( 13 ), further comprising an update unit that updates a reproduction condition based on the reproduction restriction information after the reproduction unit reproduces the content, and the reproduction condition satisfaction determination unit includes A content receiving apparatus that determines whether or not a reproduction condition based on the reproduction restriction information updated by an updating unit is satisfied.

( 15 ) In the content reception device according to any one of ( 9 ) to ( 14 ), the content reception device includes a content distribution unit that distributes content in response to a request from the other content reception device, and the distribution request transmission unit includes: In response to the selection of the content in the content receiving device, the distribution request for the content based on the lending authentication information is transmitted to the other content receiving device, and the content receiving unit receives the content from the other content receiving device. A content receiving apparatus for receiving distributed content.

( 16 ) A program for causing a computer to function as each unit of the content receiving device according to ( 9 ) to ( 15 ).

  Since the content can be reproduced based on the rental authentication information, the content can be freely lent while avoiding the copyright problem. As a result, it is possible to promote the distribution of content while protecting the copyright of the content received by the user.

  Hereinafter, a first embodiment of the present invention will be described with reference to FIGS.

  First, the system configuration of the content distribution system of the present invention will be described with reference to FIG.

  The content distribution system S according to the present invention includes a plurality of content reception devices 100 connected to a network N, at least one authentication information transmission device 200, and at least one content distribution device 300.

  The content receiving device 100 includes a player 100c, an input device 100d (remote controller), a video / audio output device 100e (CRT (Cathode Ray Tube Display), speaker), etc., receives a content distribution service, reproduces content, It is a device that can output.

  In this embodiment, the CRT and the speaker of the video / audio output device 100e are built in the content reception device 100. However, a home-use television receiver is used as the video / audio output device 100e, and the remaining part is the STB. You may provide in the form of (Set top box).

  In this case, however, the reproduced content is converted into an analog signal such as an NTSC signal and sent to the television receiver. Therefore, in order to prevent unauthorized copying on this transmission path, an analog signal transmission method is used. It is necessary to take measures such as using Macrovision. The built-in video / audio output device 100e is preferable in terms of security.

  Note that the content receiving apparatus 100 has an electronic certificate authenticated by an authentication server (not shown) of a service provider that provides a content distribution service. If the electronic certificate is presented between the content receiving apparatuses, it can be recognized that the other party is a reliable apparatus. These content receiving devices 100 each store the content received from the content distribution device 300. The content receiving devices 100 authenticated in this way can lend and borrow the content stored in each. The users of these content receiving apparatuses 100 are members of service providers who provide content distribution services, and pay monthly service fees, for example.

  The authentication information transmitting apparatus 200 is a server. The authentication information transmitting device 200 receives the authentication information requested to be transmitted from the content receiving device 100 when purchasing or renting the content, and when the content is lent from one content receiving device 100 to the other content receiving device 100. Lending authentication information requested to be transmitted from one content receiving apparatus 100 is transmitted to a request source corresponding to these transmission requests.

  Here, the authentication information includes a key (content key) for decrypting the encrypted content. There are the following three types of mechanisms (unauthorized terminal exclusion mechanism) that allow decryption of content only to terminals having authentication information.

  Method A. In the authentication information, a device identification number (user ID) is written, and when it is read by the content receiving device, if it does not match the device identification number of the read content receiving device, the reproduction is not performed. Is incorporated in the content receiving apparatus.

  Method B. The content is encrypted using the device identification number = user ID (or a hashed value thereof) as an encryption key. The content receiving device attempts to decrypt using the device identification number as a key. The content cannot be decrypted correctly unless the content receiving device matches the encryption key and the device identification number.

  Method C. The content key is encrypted with the public key of the device that requested the authentication information, and then embedded in the authentication information. That is, when making a request, the public key is sent to the server, and a license (authorization certificate in which whether or not the reproduction of the content is permitted) is obtained in response. Only the requesting device having the secret key can decrypt and read the encrypted content key. These systems A to C will be described in detail later.

  The content distribution device 300 is a server. Then, in response to the content distribution request from the content receiving device 100, the content distribution device 300 transmits data obtained by encrypting the content to the request source corresponding to the distribution request. There are two types of encryption keys for releasing the encryption: a case where it is determined each time based on information of the content receiving apparatus 100 as a request source, and a case where a unique key is set for each content. In the latter case, the content distribution apparatus determines a random key before distribution and encrypts it in advance. When the unauthorized terminal exclusion mechanism is method C, this method can be applied. When lending and borrowing content directly between content receiving devices, if the former method is used, it is necessary to re-encrypt the content itself within the content receiving device, which is a heavy process, so the latter method Is preferred. In the latter system, the same content can be obtained from any content delivery device, from a content receiving device that is a lender, or from a content receiving device that is not a lender, regardless of where the content body is taken. Is preferred. In this case, before the content distribution apparatus 300 releases the content to the content distribution system S, it is only necessary to encrypt the content once.

  The network N is the Internet, a line communication network, or a private network.

  Next, the electrical configuration of the content receiving device 100 will be described with reference to FIG.

  The content receiving apparatus 100 includes a control unit 110, an external storage device 130 such as a hard disk device connected to the control unit 110 via a bus 120, a decryptor 140 that decrypts (decrypts) received content, and a network N. The communication interface 170 for communicating with the authentication information transmitting apparatus 200 and the content distribution apparatus 300 via the DRM (Digital Rights Management) module 150 connected to the decryptor 140 and the DRM module 150 are connected so as to perform protected communication. A tamper-resistant memory 160, a player 100c as content reproduction means, user interface display means, and a remote control signal receiving circuit 100g. The player 100c receives content data via the DRM module 150. Since the content data is usually digitally compressed by the MPEG system or Windows Media (registered trademark) system, it is decompressed (decoded) and converted into a signal that can directly drive the CRT or speaker. The signal converted by the player is sent to a content output device such as a speaker or CRT so that the user can view it. The user interface display means is for displaying operation buttons for performing instructions such as content selection and playback instructions on a graphic screen, and further displays the screen of content video played by the player, It has a function of performing overlay composition and outputting to the content output device.

  Here, the DRM is a mechanism for encrypting digital contents such as music, moving images, and images downloaded via the network N to prevent unauthorized copying and unauthorized leakage, and to promote regular distribution, and to be used for this mechanism. Technology.

  The DRM module 150 is a module that controls and executes processing for realizing DRM. The DRM module 150 receives encrypted content and authentication information (information for authenticating that the content borrower is a valid user). Based on the above, it is determined whether or not the reproduction is permitted, and if it is permitted, the content is decrypted and passed to the player.

  Here, the above-described unauthorized terminal exclusion mechanism has the scheme A.1. In this case, the DRM module 150 compares the device identification number of the content receiving device 100 with the ID written in the license, and does not pass the content to the player 100c if they do not match.

  In addition, the unauthorized terminal exclusion mechanism has a method B.1. In this case, the DRM module 150 attempts to decrypt using the ID of the terminal itself as an encryption key. If the decryption is successful, the content is transferred to the player 100c and played back.

  In addition, the illegal terminal exclusion mechanism has a scheme C.I. In this case, the DRM module 150 decrypts the encrypted content key in the authentication information with the secret key stored in the tamper resistant memory 160 and decrypts the content with the key.

  The control means 110 is a microcomputer. The control unit 110 includes a CPU 101 that performs main control, a ROM 102 that stores various programs executed by the CPU 101, and a RAM 103 that is used as a temporary storage unit when the CPU 101 executes various programs.

  The external storage device 130 is a content storage unit that stores content received from the content distribution device 300. In addition, various programs executed by the CPU 101 may be stored in the external storage device 130. The content data stored in the external storage device 130 is encrypted when transmitted from the content distribution device 300, and is stored in the external storage device 130 in the state of the encrypted content data.

  The decryptor 140 is reproducible when the encrypted content data stored in the external storage device 130 is read from the external storage device 130 and transmitted to the player 100c via the DRM module 150 for playback. It is the decoding means which decodes like.

  The DRM module 150 is a module that can communicate with the tamper resistant memory 160, the decryptor 140, and the player 100c by a predetermined communication method that is protected from eavesdropping. The tamper resistant memory 160 stores the authentication information or the rental authentication information received from the authentication information transmitting device 200. These authentication information and lending authentication information include a key necessary for decrypting content data. The authentication information and the lending authentication information are stored in the tamper resistant memory 160 and can be read only through the DRM module 150, thereby preventing the authentication information and the lending authentication information from being illegally copied. Based on the authentication information or the lending authentication information, it is possible to restrict content playback and viewing.

  In addition, the communication path, communication method, and communication program are difficult to read so that the exchange between the DRM 150, the decryptor 140, and the player 100c cannot be read illegally by a malicious analyst. It is tamper resistant.

  Here, tamper resistance refers to the difficulty in analyzing the internal structure and stored data of software and hardware. Hardware and software that processes and stores confidential information must take various protective measures so that it cannot be easily analyzed from the outside. The ability to prevent unauthorized reading of confidential data is called tamper resistance. In order to improve tamper resistance, there are two methods: a method of increasing confidentiality so that it is difficult to read from the outside, and a method of providing a mechanism that destroys programs and data when reading from the outside. As an example of the former, there is software that encrypts a program or data itself and decrypts and executes only a necessary part at the time of reading. Examples of the latter include a memory chip whose stored contents disappear when the surface is exposed to air, and a circuit that cannot be operated when a probe for reading signals is attached. It is preferable that the tamper resistant memory 160 stores authentication information and rental authentication information by combining both the former and the latter methods.

  When the user of the content receiving device 100 in the content distribution system S determines the content to be purchased, authentication information or lending authentication information for decrypting the DRM encryption of the content data is acquired from the authentication information transmitting device 200. The authentication information and the lending authentication information are licenses for decrypting the DRM encryption of the content data, and the authentication information transmitting apparatus 200 is a license server. Among the authentication information and the lending authentication information, in addition to a key for decrypting the content data by DRM, user identification information for identifying the viewing user, content name, license expiration date, number of times the content can be viewed, etc. Is included. The authentication information and the lending authentication information are transmitted from the authentication information transmitting apparatus 200 and received by the content receiving apparatus 100 using public key cryptography. The authentication information and the lending authentication information received by the content receiving device 100 are stored in the tamper resistant memory 160.

  In the first embodiment, user identification information (user ID) is used as information for identifying the content receiving device 100. However, the present invention is not limited to this, and information such as a serial number of the device is unique as information for identifying the content receiving device 100. Any information can be used as long as it can identify the content receiving apparatus 100. Examples of such information include a digest (hash value) of feature data of scanned fingerprint data. The management center that manages the user information, which is the provider of the content distribution service, manages the information that can identify the content receiving device 100 and the user's personal information (charge billing destination, billing method, etc.) as a set. If the information that can identify the content receiving device 100 is not dependent on the individual user, for example, if it is the serial number of the device, if the owner or user of this device is changed, the management registration in the management center Must be done again.

  Next, the electrical configuration of the authentication information transmitting apparatus 200 will be described with reference to FIG.

  The authentication information transmitting apparatus 200 communicates with the control means 210, an external storage device 230 such as a hard disk device connected to the control means 210 via the bus 220, and the content receiving apparatus 100 via the network N. And an interface 270.

  The control means 210 is a microcomputer. The control unit 210 includes a CPU 201 that performs main control, a ROM 202 that stores various programs executed by the CPU 201, and a RAM 203 that is used as a temporary storage unit when the CPU 201 executes various programs.

  The external storage device 230 includes information necessary for creating authentication information and lending authentication information, for example, attribute information relating to a user of the content distribution service, device specifying information for specifying the device of the content receiving device 100, and a content receiving device by the content distribution device 300. Various pieces of information (content name, content ID, etc.) specifying content to be transmitted to 100 are stored. The external storage device 230 may store various programs executed by the CPU 201.

  Next, the electrical configuration of the content distribution device 300 will be described with reference to FIG.

  The content distribution device 300 is a communication interface for communicating with the control unit 310, an external storage device 330 such as a hard disk device connected to the control unit 310 via the bus 320, and the content reception device 100 via the network N. 370 and an encryptor 340 that encrypts content data to be transmitted to the content receiving apparatus 100.

  The control means 310 is a microcomputer. The control unit 310 includes a CPU 301 that performs main control, a ROM 302 that stores various programs executed by the CPU 301, and a RAM 303 that is used as a temporary storage unit when the CPU 301 executes various programs.

  The external storage device 330 is content storage means for storing content data to be transmitted to the content receiving device 100. The external storage device 330 may store various programs executed by the CPU 301.

  The encryptor 340 encrypts the content each time the content transmitted in response to the content distribution request of the user of the content receiving apparatus 100, and functions as an encryption unit. However, when the illegal terminal exclusion mechanism is method C, the encrypted content that is encrypted once and stored in the external storage device 330 may be transmitted.

  Next, information included in the purchased license (authentication information) will be described with reference to FIG. The purchase license is received from the authentication information transmitting device 200 when the user of the content receiving device 100 receives content from the content distributing device 300, and the content receiving device 100 reproduces the content. This is authentication information necessary for this purpose.

  Further, the purchase license is authenticated after receiving the process of step 3 (FIG. 7) described later (FIG. 7), specifically, the process of S11 of the content purchase process (FIG. 8) in the content receiving apparatus 100. It is created by the process of S202 (FIG. 19) in the information transmitting apparatus 200, specifically, the process of S211 of the purchase license issuance process (FIG. 20).

  This purchase license is stored in the tamper-resistant memory 160, and is read by the DRM module 150 when the user instructs the reproduction of the content. The DRM module 150 determines whether or not the content can be decrypted or is reproduced. Whether or not the content data is finally passed to the player 100c is determined.

  The information included in the purchased license is broadly divided into license information and lending restriction information.

  The license information includes a viewing user ID that uniquely identifies the viewing user of the content and the terminal device (content receiving device 100) of the user, a content name, a content ID that uniquely identifies the content, viewing restriction information, and reproduction restriction information. A certain expiration date, the number of reproducible times that is also reproduction restriction information, and a unique encryption key used for decrypting the encrypted content are included. However, when the illegal terminal exclusion mechanism is method C, the encryption key is encrypted with the public key of the terminal. Since the public key is usually included in the electronic certificate of the terminal, it is used.

  The viewing user ID is a code having a predetermined number of digits including at least one of alphabets and numbers for uniquely identifying the viewing user of the content. The content ID is a code having a predetermined number of digits including at least one of alphabets and numbers for uniquely identifying the content. The viewing restriction information is information that defines the restriction of content viewing users. The viewing restriction information is, for example, age restriction (viewing prohibition under 18 years old). The expiration date is date information including a date that indicates a time limit during which the content can be reproduced. The reproducible number of times is numerical information indicating the limit of the number of times that the content can be reproduced. The encryption key is information necessary for decrypting the content, and is, for example, a bit string having a predetermined number of digits.

  The lending restriction information includes information indicating whether or not the content can be lent to a user of another content receiving apparatus 100 as a borrower, and when the content can be lent to a user of the other content receiving apparatus 100. , Information indicating on which apparatus the license for lending is created and information on whether or not the license can be viewed during lending are included.

  The information indicating whether or not the content can be lent to the user of the other content receiving apparatus 100 is, for example, flag information that can take a binary value indicating whether it is possible or impossible.

  When the content can be lent to the user of the other content receiving device 100, information indicating in which device the rented license is created is the server (authentication information transmitting device 200) or the lender. This is 2-bit information indicating any one of the right entrusting terminals entrusted with the right to create a license for lending from the terminal (content receiving apparatus 100) or the authentication information transmitting apparatus 200.

  Here, the right entrusting terminal is a specific content receiving apparatus 100 selected at random from the authentication information transmitting apparatus 200, and is a terminal to which a license creation right is entrusted and transferred from the authentication information transmitting apparatus 200. is there.

  Even when the right consignment terminal is not directly related to content lending / borrowing, when receiving a license issuance request from the content receiving apparatus 100 serving as the content lender, the right entrusting terminal transmits to the content receiving apparatus 100 that has transmitted the issuance request. Create and send a license to it.

  In addition, each content receiving apparatus 100 is notified in advance of information of a terminal having a license issuance right, or by acquiring a terminal information list having a license issuance right by using the DHT, It is determined whether the content receiving apparatus 100 is a right consignment terminal.

  By providing such a right entrusting terminal, it is possible to avoid the issuance of licenses to the authentication information transmitting apparatus 200, and the burden of the license issuance processing in the authentication information transmitting apparatus 200 can be reduced.

  Further, the authentication information transmitting apparatus 200 periodically updates the right consignment terminal once determined at a predetermined timing.

This allows the license issuance request to a specific content receiving apparatus 100 to prevent the concentration child, can transfer the license smoothly.

  When the content can be lent out to users of other content receiving apparatuses 100, the information indicating whether or not the content can be viewed during renting is, for example, flag information that can take a binary value indicating whether or not the content can be viewed. Whether or not the content can be viewed while renting is determined by agreement between the seller and the buyer based on the sales contract at the time of purchasing the content, and the corresponding value is recorded in the license issued at the time of purchase. Yes.

  For example, when the content lender is contracted so that the content cannot be viewed while the content is lent, the lender needs to wait until the license of the lent content is returned from the borrower. Wait until the content lending authentication information becomes invalid or send a message prompting the lender to return.

  It should be noted that the lending authentication information issued when the purchased user lends the content is the lending limit information of the purchased license, the number that can be lent at a time, the number of replays, the lending period, and whether or not lending is possible. Each item in the viewable range is added.

  The number that can be lent at one time is the number of content receiving apparatuses 100 that can be lent simultaneously. The number of reproducible times is the number of times that the borrower can replay the content during the lending. The number of reproducible times is a numerical value less than or equal to the number of times that the license information can be replayed. By setting the number of reproducible times for this lending restriction information, the number of recyclable license information is subtracted from the number of recyclable times for lending restriction information It is updated with the new value. The lending period is the number of times that the borrower can reproduce the content during the lending. The lending period is a numerical value until the expiration date of the license information. The viewable range represents the range of content that can be viewed by the borrower when reproducing the rented content. For example, the borrower indicates a range in which the content can be viewed, such as all content can be viewed and the first minute of the content can be viewed.

  The reproducible number of times and the lending period are reproduction restriction information.

  Next, the lending list and the borrowing list will be described with reference to FIG.

  The lending list is a list that is updated in the processing of S93 in a lending license creation process (FIG. 16) described later, and is stored in the external storage device 130 of the content receiving device 100. The rental list is a table having, for example, content names, content IDs, singers, and rental information in columns. Here, the lending information is information indicating which viewing user is lent, and includes a viewing user ID or a viewing user name that uniquely identifies a viewing user to be lent. Each time a new content is lent, a record is added to this table.

  The borrowing list is a list updated in the process of S114 of the content borrowing process (FIG. 18) described later, and is stored in the external storage device 130 of the content receiving apparatus 100. The borrowing list is, for example, a table having columns of content name, content ID, singer, borrowing information, reproduction restriction information (number of times), and reproduction restriction information (time). Here, the borrowing information is information indicating which viewing user is borrowing, and includes a viewing user ID or a viewing user name that uniquely identifies the viewing user who is the borrowing source. Each time a new content is borrowed, a record is added to this table.

  Each record in the borrowing list includes at least one of reproduction restriction information (number of times) and reproduction restriction information (time). The reproduction restriction information (number of times) is information updated in the process of S59 of the reproduction process of borrowed content (FIG. 12), which will be described later, and is numerical information indicating the remaining number of times that the content can be reproduced. The reproduction restriction information (time) is also information updated in the process of S59 of the reproduction process of borrowed content (FIG. 12), which will be described later, and information indicating the remaining time during which the content can be reproduced in the form of hour, minute and second. It is.

  Next, processing executed by the control unit 110 of the content receiving apparatus 100 will be described with reference to FIGS.

  First, a main flow of processing executed by the control unit 110 of the content receiving device 100 will be described with reference to FIG. Here, the start of the main flow is when the power of the content receiving apparatus is turned on.

  First, the control means 110 determines whether or not the end button has been pressed (S1). For example, it is determined whether or not an end button displayed on a GUI (Graphical User Interface) on the display screen of the user interface display unit 100f included in the content receiving device 100 is pressed. When this determination is YES, this process ends. When it is NO, the process proceeds to S2. It is assumed that four types of purchase screens, playback screens, borrowing screens, and lending screens are displayed on the display screen.

  In S2, the control means 110 determines whether or not a purchase button for a certain content has been pressed. For example, a purchase screen is selected as the display screen of the user interface display unit 100f provided in the content receiving device 100, and specific content is selected by the user of the content receiving device 100 from a list-format GUI displayed on the display screen. It is determined whether or not a purchase instruction has been input. If this determination is YES, the process proceeds to S3, and if this determination is NO, the process proceeds to S4.

  In S2, the content displayed in a list in the GUI format is displayed including the content name, singer, and content ID that can be provided by the content distribution device 300 received by the content reception device 100 from the content distribution device 300. It is.

  In S3, the control means 110 executes a content purchase process, and then returns the process to S1. Details of this processing will be described later with reference to FIG.

  In S4, the control means 110 determines whether or not a play button for a certain content has been pressed. For example, a playback screen is selected as the display screen of the user interface display unit 100f included in the content receiving device 100, and specific content is selected by the user of the content receiving device 100 from a list-format GUI displayed on the display screen. It is determined whether or not a designated reproduction instruction has been input. When this determination is YES, the process proceeds to S5, and when it is NO, the process proceeds to S6.

  In S4, the content displayed in a list in the GUI format includes content that has already been purchased and received from the content distribution device 300 by the content receiving device 100, content that is being lent or content that is being borrowed, singer, and content ID. Is displayed.

  In S5, the control means 110 executes a content reproduction process, and then returns the process to S1. Details of this processing will be described later with reference to FIG.

  In S6, the control means 110 determines whether or not a borrow button for a certain content has been pressed. For example, a borrowing screen is selected as the display screen of the user interface display means 100f provided in the content receiving device 100, and specific content is selected by the user of the content receiving device 100 from the list-format GUI displayed on the display screen. It is determined whether or not a borrowing instruction has been entered. If this determination is YES, the process proceeds to S7, and if this determination is NO, the process proceeds to S8.

  Note that the content displayed in the GUI format in S6 is the content name, singer, and content ID that the content receiving device 100 has received from the other content receiving device 100 and can be borrowed from the other content receiving device 100. It is displayed including. Here, it is possible to display the borrowable content of the other content receiving apparatus 100 by inputting the user ID of the owner of the content receiving apparatus 100. The user ID can be notified by means such as email or chat, or can be known by going to the server to search for the user ID.

  In S7, the control unit 110 executes a content borrowing request process, and then returns the process to S1. Details of this processing will be described later with reference to FIG.

  In S8, the control unit 110 determines whether or not a certain content lending button has been pressed. For example, a rental screen is selected as the display screen of the user interface display unit 100f provided in the content receiving device 100, and a specific content is selected by the user of the content receiving device 100 from a list-type GUI displayed on the display screen. It is determined whether or not a designated rental instruction has been input. When this determination is YES, the process proceeds to S9, and when this determination is NO, the process proceeds to S10.

  In S8, the content displayed as a list in the GUI format is displayed including the content name, singer, and content ID of the content that can be lent out of the content that the content receiving device 100 has already purchased and received from the content distribution device 300. It is what is done.

  In S9, the control means 110 executes a content lending process, and then returns the process to S1. Details of this processing will be described later with reference to FIG.

  In S10, the control unit 110 performs other processing. Details of this processing will be described later with reference to FIG. When this process ends, the process moves to S1.

  Next, details of the content purchase process will be described with reference to FIG.

  First, the control unit 110 transmits the content ID of the content selected by the user of the content receiving device 100 to the authentication information transmitting device 200 (S11).

  Next, the control means 110 receives the authentication information (purchase license) from the authentication information transmitting apparatus 200, and stores this authentication information in the tamper resistant memory 160 (S12).

  Next, the control means 110 adds a new record including the content name, content ID, and singer information of the content purchased this time to a purchase list (not shown) stored in the external storage device 130. The purchase list is updated (S13). When this process ends, the content purchase process ends, and the process moves to S1 in the main flow of FIG.

  Next, details of the content reproduction processing will be described with reference to FIG.

  First, the control unit 110 determines whether the content selected by the user of the content receiving device 100 is a purchased content (S21). Here, even if it has been purchased, if the content is on loan, this determination is NO. When this determination is YES, the process moves to S22, and when it is NO, the process moves to S23.

  In S <b> 22, the control unit 110 executes a purchased content reproduction process. Details of this processing will be described later with reference to FIG. When this process ends, the content reproduction process ends, and the process moves to S1 in the main flow of FIG.

  In S23, the control unit 110 determines whether the content selected by the user of the content receiving device 100 is a rented content. If this determination is YES, the process proceeds to S24, and if this determination is NO, the process proceeds to S25.

  In S24, the control unit 110 executes a reproduction process of the rented content. Details of this processing will be described later with reference to FIG. When this process ends, the content reproduction process ends, and the process moves to S1 in the main flow of FIG.

  In S25, the control unit 110 determines whether the content selected by the user of the content receiving device 100 is a borrowed content. When this determination is YES, the process proceeds to S26, and when this determination is NO, the process proceeds to S27.

  In S <b> 26, the control unit 110 executes a reproduction process for the borrowed content. Details of this processing will be described later with reference to FIG. When this process ends, the content reproduction process ends, and the process moves to S1 in the main flow of FIG.

  In S27, the control unit 110 executes other content playback processing. When this process ends, the content reproduction process ends, and the process moves to S1 in the main flow of FIG.

  Next, with reference to FIG. 10, the details of the reproduction processing of the purchased content will be described.

  First, the control means 110 determines whether or not the data of the selected content already exists in the content receiving device 100 (S31). If this determination is YES, the process proceeds to S34, and if this determination is NO, the process proceeds to S32.

  In S32, the control unit 110 downloads the content. That is, the distribution request of the selected content is transmitted to the content distribution device 300, and the encrypted data of the content is received from the content distribution device 300 that has received the request.

  At this time, the control means 110 stores the received encrypted data in the external storage device 130. Here, the content is downloaded from the content distribution device 300, but the content may be downloaded from another content receiving device 100 that has the same content (stored in the external storage device 130). Good.

  Next, the control means 110 determines whether the data is ready, that is, whether all the data of the selected content has been downloaded in S32 (S33). If this determination is YES, the process proceeds to S34, and if this determination is NO, the process proceeds to S32.

  In S34, the control means 110 decodes the data. That is, the encrypted content data downloaded in S32 is decrypted by the decryptor 140.

  Next, the control unit 110 executes content reproduction processing based on the content data decrypted in S34 (S35). When this processing ends, the purchased content playback processing ends, and the content playback processing of FIG. 9 also ends. In the present embodiment, after all the data is downloaded, the data is decrypted and the content is reproduced. However, the downloaded data may be sequentially decoded and sequentially reproduced (streamed reproduction). Good.

  Thus, when performing streaming reproduction, the process of S33 can be abbreviate | omitted, and after performing the process of S32, a process is moved to S34. After performing the process of S35, the process returns to S32 and is repeated until the reproduction is completed.

  Next, with reference to FIG. 11, the details of the reproduction processing of the rented content will be described.

  First, the control means 110 determines whether or not the rented content can be viewed (S41). The value of the item that can be viewed during lending of the lending restriction information of the purchased license stored in the tamper resistant memory 160 is referred to, and it is determined whether or not this is information indicating that viewing is possible. When this determination is YES, the process moves to S43, and when it is NO, the process moves to S42.

  In S42, the control unit 110 displays a message box indicating that it is being lent out on the display screen of the user interface display unit 100f included in the content receiving device 100. When this process ends, the reproduction process of the rented content ends, and the content reproduction process of FIG. 9 also ends.

  In S43, the control unit 110 determines whether the data of the selected content already exists in the content receiving device 100. When this determination is YES, the process proceeds to S46, and when this determination is NO, the process proceeds to S44.

  In S44, the control unit 110 executes content download. That is, the distribution request of the selected content is transmitted to the content distribution device 300, and the encrypted data of the content is received from the content distribution device 300 that has received the request.

  Next, the control unit 110 determines whether the data is ready, that is, whether all the data of the selected content has been downloaded in S44 (S45). When this determination is YES, the process proceeds to S46, and when this determination is NO, the process proceeds to S44.

  At this time, the control means 110 stores the received encrypted data in the external storage device 130. Here, the content is downloaded from the content distribution device 300, but the content may be downloaded from another content receiving device 100 that has the same content (stored in the external storage device 130). Good.

  In S46, the control means 110 decodes the data. That is, the encrypted content data downloaded in S44 is decrypted by the decryptor 140.

  Next, the control means 110 executes content reproduction processing based on the content data decrypted in S46 (S47). When this process ends, the reproduction process of the rented content ends, and the content reproduction process of FIG. 9 also ends. In the present embodiment, after all the data is downloaded, the data is decrypted and the content is reproduced. However, the downloaded data may be sequentially decoded and sequentially reproduced (streamed reproduction). Good. Thus, when performing streaming reproduction, the process of S45 can be omitted, and after the process of S44 is performed, the process proceeds to S46. After performing the process of S47, the process returns to S44 and is repeated until the reproduction is completed.

  Next, with reference to FIG. 12 and FIG. 13, the details of the reproduction processing of the borrowed content will be described.

  First, the control unit 110 refers to at least one of reproduction restriction information (number of times) and reproduction restriction information (time) in the borrowing list (FIG. 6) stored in the external storage device 130 (S51). As another example of restriction, a reproducible date and time can be specified. In this case, the reproduction may be performed any number of times up to a predetermined date and time, but viewing is not possible after that date and time.

  Next, the control unit 110 confirms that the reproduction restriction information referred to in S51 is satisfied, that is, the reproduction restriction information (number of times) is not zero, or the reproduction restriction information (time) is not zero, and reproduction is permitted. It is determined whether it is in a state (S52). If this determination is YES, the process proceeds to S54, and if the determination is NO, the process proceeds to S53.

  In S53, the control unit 110 displays that it can no longer be viewed in the message box on the display screen of the user interface display unit 100f included in the content receiving device 100. When this process ends, the process moves to S61 in FIG.

  In S <b> 54, the control unit 110 determines whether the data of the selected content already exists in the content receiving device 100. When this determination is YES, the process moves to S57, and when it is NO, the process moves to S55.

  In S55, the control unit 110 executes content download. That is, the distribution request of the selected content is transmitted to the content distribution device 300, and the encrypted data of the content is received from the content distribution device 300 that has received the request. Here, the content is downloaded from the content distribution device 300, but the content may be downloaded from another content receiving device having the same content.

  Next, the control means 110 determines whether the data is ready, that is, whether all the data of the selected content has been downloaded in S55 (S56). When this determination is YES, the process moves to S57, and when it is NO, the process moves to S55.

  At this time, the control means 110 stores the received encrypted data in the external storage device 130. Here, the content is downloaded from the content distribution device 300, but the content may be downloaded from another content receiving device 100 that has the same content (stored in the external storage device 130). Good.

  In S57, the control unit 110 performs data decoding. That is, the encrypted content data downloaded in S55 is decrypted by the decryptor 140.

  Next, the control unit 110 executes content reproduction processing based on the content data decrypted in S57 (S58). In the present embodiment, after all the data is downloaded, the data is decrypted and the content is reproduced. However, the downloaded data may be sequentially decoded and sequentially reproduced (streamed reproduction). Good.

  As described above, when streaming playback is performed, the process of S56 can be omitted, and after the process of S55 is performed, the process proceeds to S57. After performing the process of S58, the process returns to S55 and repeats until the reproduction is completed.

  Next, the control unit 110 updates the regeneration restriction information by subtracting a predetermined numerical value from either the regeneration restriction information (number of times) or the regeneration restriction information (time) in the borrowing list (S59). That is, one time is subtracted from the reproduction restriction information (number of times), or the time required to reproduce the content is subtracted from the reproduction restriction information (time). When this process ends, the process moves to S60 in FIG.

  Next, the control means 110 refers to at least one of the reproduction restriction information (number of times) or the reproduction restriction information (time) of the borrowing list, and confirms that this reproduction restriction information is satisfied, that is, reproduction restriction information (number of times). Is not 0, or the playback restriction information (time) is not 0, and it is determined whether playback is permitted (S60). When this determination is YES, the reproduction processing of the borrowed content is completed, and the content reproduction processing of FIG. 9 is also completed.

  In S61, the control unit 110 determines whether or not it is necessary to return the license of the rental authentication information. When this determination is YES, the process moves to S62, and when it is NO, the process moves to S62 '.

  In S62, the control unit 110 executes a process for returning the license of the rental authentication information. When this process ends, the reproduction process of the borrowed content ends, and the content reproduction process of FIG. 9 also ends.

  In S <b> 62 ′, the control unit 110 deletes the lending authentication information and notifies the lender that it has been deleted. Then, the reproduction process of the borrowed content ends and the content reproduction process of FIG. 9 also ends.

  Next, details of content borrowing request processing will be described with reference to FIG.

  The control unit 110 transmits the content ID of the content selected by the user (borrower) of the content receiving device 100 and the user ID of the borrower to the other content receiving device 100 (that is, other users, lenders) (S71). When the above process is completed, the content borrowing request process ends, and the process proceeds to S1 of the main flow in FIG.

  Next, details of the content lending process will be described with reference to FIG.

  First, the control means 110 determines whether or not a content ID has been received from the borrower (S80). That is, the control unit 110 determines whether or not information including a content ID related to the content selected by the borrower has been received from another content receiving apparatus 100 serving as the borrower, and determines that the content ID has been received. In this case, the process proceeds to S81, and if it is determined that the content ID has not been received, the content lending process is terminated, and the process proceeds to step S1 of the main flow in FIG.

  In S81, the control unit 110 refers to the purchase list stored in the external storage device 130, and determines whether the selected content is a purchased content. When this determination is YES, the process moves to S83, and when it is NO, the process moves to S82.

  In S82, the control means 110 refers to the value of the item of whether or not the loan can be lent included in the loan restriction information of the loan authentication information stored in the tamper resistant memory 160, and indicates that this value may be lent. Determine if it is information. When this determination is YES, the process moves to S85, and when it is NO, the process moves to S87.

  In S83, the control unit 110 refers to the lending list stored in the external storage device 130, and determines whether the selected content is a rented content. When this determination is YES, the process proceeds to S84, and when this determination is NO, the process proceeds to S85.

  In S84, the control means 110 refers to the value of the item indicating whether or not viewing is possible during lending included in the lending restriction information of the lending authentication information stored in the tamper resistant memory 160, and indicates that this value can be viewed. It is determined whether or not. When this determination is YES, the process moves to S85, and when it is NO, the process moves to S87.

  In S85, the control unit 110 refers to viewing restriction information (for example, age restriction such as viewing prohibition under 18 years old) included in the license information of the lending authentication information stored in the tamper-resistant memory 160, and the borrower uses this viewing restriction. It is determined whether the condition indicated by the restriction information is satisfied. When this determination is YES, the process moves to S86, and when it is NO, the process moves to S87.

  The borrower information at this time may be acquired by being taught by the borrower, or the lender may acquire the borrower information from the server. In this way, the borrower information is acquired and it is determined whether the borrower satisfies the viewing restriction information.

  In addition, although the confirmation process of the satisfaction of viewing restriction information in S85 is performed by the control unit 110 of the content receiving apparatus 100, it is not limited to this, and may be performed by the authentication information transmitting apparatus 200 or the content distribution apparatus 300. Is possible. In other words, when the authentication information transmitting apparatus 200 performs the process for confirming whether the viewing restriction information is satisfied, the rental authentication information is not issued to a user who does not satisfy the viewing restriction information. In addition, when the content distribution apparatus 300 performs the process for confirming whether the viewing restriction information is satisfied, the content data is not distributed to the user who does not satisfy the viewing restriction information.

  In S86, the control unit 110 performs a rental license creation process. Details of this processing will be described with reference to FIG. When this process ends, the content lending process ends, and the process proceeds to S1 of the main flow in FIG.

  In S87, the control unit 110 displays on the display screen of the user interface display unit 100f included in the content receiving device 100 that a message box cannot be rented to another person.

  In S88, the control unit 110 transmits information that the content cannot be lent to the borrower. When this process ends, the content lending process ends, and the process proceeds to S1 of the main flow in FIG.

  Next, details of the lending license creation process will be described with reference to FIG.

  First, the control unit 110 refers to the license issuance column included in the lending restriction information in the purchased license (see FIG. 5) stored in the tamper-resistant memory 160, and issues the license issuance to the server (authentication information transmission). The apparatus 200) determines whether or not to perform the process (S91). If it is determined to be performed by the server, the process proceeds to S92. If it is determined not to be performed by the server, the process proceeds to S96.

  In S92, the control unit 110 transmits the borrower's user ID to the server (authentication information transmitting apparatus 200).

  Thereafter, in S93, the control unit 110 performs a process of receiving a borrower license from the server, and then moves the process to S94.

  On the other hand, in S96, the control unit 110 determines whether or not to issue a license at the terminal (the content receiving apparatus 100 serving as the lender). If it is determined that the license is issued at the terminal, the process proceeds to S97. If it is determined that the terminal does not issue a license, the process proceeds to S98.

  In S97, the control unit 110 performs a process of creating a rental license with the borrower's user ID, and then moves the process to S94.

  In S98, the control unit 110 determines whether or not the license issuance is performed by another terminal (other content receiving apparatus 100) having the license issuance right, and the license is issued by the other terminal having the license issuance ticket. If it is determined that the license is issued, the process proceeds to S99. If it is determined that the license issuance is not performed on another terminal having the license issuance ticket, the lending license creation process is terminated, and the process is illustrated in FIG. Return to S1 shown.

  In S99, the control unit 110 performs a process of transmitting the borrower's user ID to a terminal (another content receiving apparatus 100) having a license issuance right, and then moves the process to S100.

  In S100, the control unit 110 performs a process of receiving a borrower's lending license from another terminal having a license issuing right, and then moves the process to S94.

  In S94, the control unit 110 performs a process of updating the lending list based on the borrower lending license received in S93 and S100 or the lender lending license created by itself in S97, and then the process proceeds to S95. Transfer.

  In S95, the control means 110 performs a process of transmitting the lending authentication information including the lending license to the borrower, thereafter ends this lending license creation process, and returns the process to S1 shown in FIG.

  Note that the lending authentication information transmitted to the license borrower in this lending license creation process is a license used by the borrower thereafter. Here, the borrower-side content receiving apparatus 100 that has received the loan authentication information including the loan license needs to distinguish between reception of the loan authentication information and return of the loan authentication information.

  At this time, when the lending license is issued only by the authentication information transmitting apparatus, it is understood that the lending license received from the authentication information transmitting apparatus 200 is a license that is lent to the borrower. It can be seen that the rental license received from the terminal device is the return of the license.

  When judging by looking at the rental license, the rental license received in S93 and S100 is still unused and satisfies the reproduction restriction information. When the return of the rental information is received, the rental license is already used, so the reproduction restriction information is not satisfied. Thus, the control unit 110 can determine whether the received license satisfies the reproduction restriction information, whether it is a lent license or a return license.

  Next, details of other processing will be described with reference to FIG.

  First, the control means 110 determines whether or not rental authentication information has been received (S101). When this determination is YES, the process moves to S102, and when it is NO, the process moves to S103.

  The license included in the lending authentication information received here is a license that can be used by the received content receiving apparatus 100. The content receiving apparatus 100 that has received this license, by looking at the user ID that can use the license, It can be recognized that the license is a rental license addressed to the user.

  In S102, the control unit 110 executes a content borrowing process. Details of this processing will be described later with reference to FIG. When this process ends, the other processes end, and the process moves to S1 in FIG.

  In S103, the control unit 110 determines whether or not a return of the rental authentication information has been received. When this determination is YES, the process proceeds to S104, and when it is NO, the process proceeds to S105.

  In step S104, the control unit 110 updates the lending list, ends the other processes, and moves the process to step S1 in FIG.

  In S105, the control unit 110 determines whether or not information indicating deletion of the loan authentication information has been received, and when determining that the information indicating deletion of the loan authentication information has been received, the control unit 110 moves the process to S104 and receives the information. If it is determined that it is not, the process proceeds to S106.

  The information indicating deletion of the lending authentication information received here is information received when content that does not require return of lending authentication information does not satisfy the reproduction restriction information.

  In S106, the control unit determines whether or not a license issuance request has been received. If it is determined that a license issuance request has been received, the control unit proceeds to S107, and if it is determined that a license issuance request has not been received. The process proceeds to S108.

  In S107, the control unit 110 performs the same process as the lending authentication information issuance process performed by the authentication information transmitting apparatus shown in FIG. 21, ends other processes, and moves the process to S1 in FIG.

  In S108, the control means 110 executes an initialization process. Here, in addition to executing initialization processing of the RAM 103 and initialization processing of the execution program, various error processing and the like are mainly performed. When this initialization process ends, the other processes end, and the process moves to S1 in FIG.

  Next, the details of the content borrowing process will be described with reference to FIG.

  First, the control means 110 is different from the content receiving apparatus 100 in which the processing is executed, and borrows content information (for example, content name, singer, content ID, etc.) from another content receiving apparatus 100 that is a content borrowing source. (S111).

  Next, the control unit 110 refers to the content log stored in the external storage device 130 and searches, for example, using the content ID as a key, and determines whether content having the same content ID exists in the content log. (S112). When this determination is YES, the process moves to S113, and when it is NO, the process moves to S114.

  In S113, the control unit 110 refers to the content log stored in the external storage device 130 to determine whether or not the borrowed content can be borrowed again, that is, the number of loans recorded in the content log. It is determined whether the information is equal to or less than the limit value of the number of borrowings. When this determination is YES, the process proceeds to S114, and when this determination is NO, the process proceeds to S116.

  In S <b> 114, the control unit 110 updates the borrowing list stored in the external storage device 130 by adding a record including information such as the content name, singer, and content ID of the content to be borrowed this time.

  In S115, the control unit 110 records the data of the content borrowed this time together with information such as the content name, singer, content ID, and the total number of borrowings in the content log stored in the external storage device 130. When this process ends, the content borrowing process ends, and the other processes in FIG. 17 also end.

  Note that the borrowed content data may be viewable by either the download method or the streaming method. Borrowed content data may be acquired from the content distribution device 300 or may be acquired from another content receiving device 100 authenticated by the authentication information transmitting device 200. When acquiring content data from another content receiving apparatus 100, the content is searched from the content ID using a DHT (Distributed Hash Table).

  The DHT used here uses a hash function to cause all content receiving apparatuses 100 to acquire unique node IDs, and uses the hash function for all content in the same manner to identify the same content. Each content receiving device 100 distributes a hash table in which only a specific node ID group and a content ID group in the network to which the content is distributed is recorded in each content receiving device 100. I have.

  When the user of the content receiving apparatus 100 serving as the borrower selects the content that the user wants to acquire, based on the content ID corresponding to the content, the other content receiving apparatus 100 (the terminal serving as the lender) that owns the content. This is a system that can retrieve a node ID.

  Also, purchased content can be acquired using DHT. In this case, first, the content is searched using DHT, and if the content cannot be found, it is acquired from the content distribution device 300. By doing in this way, the load of the content distribution apparatus 300 can be reduced.

  In S <b> 116, the control unit 110 discards the received content information, that is, does not store it in the external storage device 130.

  Next, the control unit 110 displays on the display screen of the user interface display unit 100f included in the content receiving apparatus 100 that a content that has been once borrowed cannot be borrowed again in a message box (S117). When this process ends, the content borrowing process ends, and the other processes in FIG. 17 also end.

  Next, processing executed by the control unit 210 of the authentication information transmitting apparatus 200 will be described with reference to FIGS.

  First, the main flow of processing in the authentication information transmitting apparatus 200 will be described with reference to FIG.

  First, the control means 210 determines whether or not a purchase license issuance request has been received from the content receiving apparatus 100 (S201). When this determination is YES, the process moves to S202, and when it is NO, the process moves to S203.

  In step S202, the control unit 210 executes purchase license issuance processing. Details of this processing will be described later with reference to FIG. When this process ends, the process moves to S201.

  In step S203, the control unit 210 determines whether the content receiving apparatus 100 has received a rental authentication information issue request. When this determination is YES, the process moves to S204, and when it is NO, the process moves to S205.

  In step S204, the control unit 210 executes a process for issuing rental authentication information. Details of this processing will be described later with reference to FIG. When this process ends, the process moves to S201.

  In S205, the control unit 210 executes other processing. Here, error processing, RAM 203 initialization processing, and execution program initialization processing are mainly executed. When this process ends, the process moves to S201.

  Next, with reference to FIG. 20, a purchase license issuance process will be described.

  First, the control unit 210 creates a purchase license (authentication information) based on the viewing user ID of the content purchaser (S211).

  Next, the control unit 210 transmits the license of the content purchaser created in S211 to the content receiving apparatus 100 (S212). When this process ends, the purchase license issuance process ends, and the process proceeds to S201 in FIG.

  Next, with reference to FIG. 21, a process for issuing rental authentication information will be described.

  First, the control unit 210 creates rental authentication information based on the viewing user ID of the content lender, the user ID of the content borrower, and the ID of the content to be lent and borrowed (S221).

  Next, the control means 210 transmits the loan authentication information created in S221 to the content receiver 100 of the content lender or borrower (S212). When this process ends, the lending authentication information issuance process ends, and the process proceeds to S201 in FIG.

  Next, content distribution processing executed by the control unit 310 of the content distribution device 300 will be described with reference to FIG.

  First, the control unit 310 determines whether or not a download request from the content receiving apparatus 100 has been received (S301). When this determination is YES, the process proceeds to S302, and when it is NO, the content distribution process ends.

  In S <b> 302, the control unit 310 uses the encryptor 340 to encrypt the content data requested for distribution.

  At this time, the control unit 310 encrypts the content data using a predetermined encryption key, and the encryption key used at this time is the control unit 310 for one content distributed by the content distribution device 300. Is determined at random. In addition to determining an encryption key for each content, the control unit 310 can also determine an encryption key individually for each content receiving apparatus 100 that is a content distribution destination.

  Next, the control unit 310 transmits the content data encrypted in S302 to the content receiving apparatus 100 (S303).

  Next, the control unit 310 determines whether or not the last data of the content data has been transmitted to the content receiving device 100 (S304). When this determination is YES, the content distribution process ends, and when the determination is NO, the process proceeds to S303.

  Next, with reference to FIG. 23, an outline of a process of issuing authentication information (purchase license) performed when a user of content receiving apparatus 100 purchases content will be described based on the first embodiment. To do.

  First, a content purchaser operates a remote controller 100d included in the content receiving device 100 to select content to be purchased, and the ID and viewing user ID of the selected content are transmitted from the content receiving device 100 to the authentication information transmitting device. 200 is transmitted as an authentication information issuance request (S11 (FIG. 8)).

  Next, when the content ID and the viewing user ID transmitted as the authentication information issuance request are received by the authentication information transmitting device 200, the authentication information transmitting device 200 creates the authentication information based on the content ID and the viewing user ID. Then, the created authentication information is transmitted to the content receiving device 100 (S212 (FIG. 20)). Then, the content purchaser receives the authentication information transmitted from the authentication information transmitting apparatus 200.

  Next, with reference to FIG. 24, based on the first embodiment, an outline of a process of issuing rental authentication information (a rental license certificate) performed when a content user lends content. explain.

  The issuance of the lending authentication information includes a case where the lender side decides contents to be lent and a borrower, and a case where the borrower side selects contents borrowed and a lender to which the contents are lent.

  When the lender determines the content and the borrower to be lent, the content lender operates the remote controller 100d included in the content receiving device 100 to display a list of content on the CRT screen of the video / audio output device 100e, Select the contents to be lent from the list, and then the lender operates the remote controller 100d to display the list of users on the CRT screen, and selects the borrower of the other party to be lent from the list. The borrower's user ID is transmitted from the borrower's content receiving device 100 to the content lender's content receiving device 100 as an authentication information issue request.

  In addition, when selecting a content to be rented by the borrower and a borrower to lend the content, the borrower of the content operates the remote controller 100d provided in the content receiving device 100 to display on the CRT screen of the video / audio output device 100e. It is possible to display a list of contents, select desired contents from the list, and then the borrower can operate the remote controller 100d to become a lender holding the selected contents on the CRT screen. When a list of users is displayed and a user who becomes a lender is selected from the list, the user ID of the borrower and the content ID of the content selected by the borrower are issued to the content receiver 100 of the selected lender. It is transmitted as a request (S71 (FIG. 14)).

  Next, the content ID and the borrower viewing user ID are transmitted from the lender content receiving apparatus 100 to the authentication information transmitting apparatus 200 as an authentication information issuance request (S92 (FIG. 16)).

  Next, when the content ID and the borrower viewing user ID transmitted as the authentication information issuance request are received by the authentication information transmitting device 200, the authentication information transmitting device 200 performs the lending authentication based on the content ID and the viewing user ID. Information is created (S211 (FIG. 20)), and the created rental authentication information is transmitted to the content receiving apparatus 100 (S212 (FIG. 20)). Then, the content borrower receives the lending authentication information.

  The lending authentication information may be transmitted to the borrower's content receiving device 100 via the content receiving device 100 of the lender (content purchaser), or directly from the authentication information transmitting device 200 to the borrower's content receiving device 100. May be sent to.

  Hereinafter, a second embodiment of the present invention will be described with reference to FIGS. 25 to 27.

  In the content distribution system S of the second embodiment, the rental authentication information is created by the content receiving device 100 and is not created by the authentication information transmitting device 200 when the content is lent.

  Therefore, the information shown in FIG. 25 is included in the purchase license instead of the information included in the purchase license shown in FIG. Further, instead of the lending license creation process shown in FIG. 16, a lending license creation process shown in FIG. 26 is executed.

  The information included in the purchase license in the second embodiment has more information on the lending restriction information than that in the first embodiment. Specifically, the number of items that can be rented at one time, the number of times of reproduction, the renting time, and information on whether or not renting is possible are added. This is because, in the second embodiment, when the rental authentication information is created based on the purchase license, the authentication information transmitting apparatus 200 is not inquired. Therefore, when the content is initially purchased, the authentication information (purchase license) This is because information necessary for creating the lending authentication information (lending license) must be included in. As described above, information added to the purchase license is taken over by the lending authentication information.

  The number that can be rented at once is information on how many of the same content possessed by the user can be lent simultaneously.

  The number of reproducible times indicates limit information on the number of times of actual reproduction.

  The lending time indicates the time that the license is valid after the borrower receives the lending license (lending authentication information).

  Further, whether or not it can be lent indicates information on whether or not the borrowed content can be lent to another content receiving apparatus 100. Also, in the case where it is possible to lend, it is possible to determine how many people can lend, and whether the content lender can view the content during the lending period, by the provider of the content distribution service.

  The viewable range is information indicating a range in which the borrowed content can be viewed. For example, it can be limited to the first minute of the content.

  In the second embodiment, the information included in the purchase license and indicating the license issuing device is always the terminal (content receiving device 100).

  Further, in the content distribution system S of the second embodiment, since the rental authentication information is created by the content receiving device 100, the authentication information transmitting device 200 is not an essential component and can be omitted.

  Except for these differences, the content distribution system S of the second embodiment is the same as the content distribution system S of the first embodiment.

  Next, with reference to FIG. 26, the rental license creation processing of the second embodiment will be described.

  First, the control unit 110 acquires content lending restriction information from the content purchase license (authentication information) (S91a).

  Next, the control means 110 creates lending authentication information with the viewing user ID of the borrower (S92a). At this time, the control means 110 needs to check whether or not the borrower's user ID is invalid. Therefore, after referring to the electronic certificate related to the borrower's user ID, the lending authentication information is created. .

  Next, the control unit 110 adds and updates a record including information on the newly rented content to the rent list stored in the external storage device 130 (S93a).

  Next, the control unit 110 transmits the lending authentication information created in S92a to the content receiver 100 of the content borrower (S94a). When this processing ends, the rental license creation processing ends, and the content rental processing in FIG. 15 also ends.

  Next, referring to FIG. 27, based on the second embodiment, an outline of a process for issuing rental authentication information (a rental license certificate) performed when a user of the content receiving apparatus 100 rents out content. explain.

  First, the content borrower operates the remote controller 100d provided in the content receiving device 100 to select the borrower of the other party to borrow, and the content ID and the viewing user ID of the borrower are selected for the selected content receiving device 100 of the lender. Is sent as an authentication information issuance request.

  Next, when the content ID and the borrower viewing user ID transmitted as the authentication information issuance request are received by the lender content receiving device 100, the lender content receiving device 100 sets the content ID and the borrower viewing user ID to the borrower viewing user ID. Based on this, authentication information is created (S92a (FIG. 26)). Then, the created authentication information is transmitted to the borrower's content receiving apparatus 100 (S94a (FIG. 26)). Then, the content borrower receives the lending authentication information.

  Hereinafter, a modified embodiment of the content distribution system S of the present invention will be described with reference to FIGS.

  In the first embodiment and the second embodiment, it is assumed that the content receiving apparatus 100 is an STB, but the present invention is not limited to this.

  FIG. 28 shows an example in which the content receiving apparatus 100 is a portable information terminal.

  Referring to FIG. 28, a plurality of portable information terminals (PDA, cellular phone, etc.) 500 are connected to an authentication server 200 ′ (authentication information transmitting apparatus) of a dedicated portable information terminal via a base station so as to be communicable. Yes. Although the base station and the portable information terminal authentication server 200 'are connected by wire, the base station and the portable information terminal 500 can communicate with each other wirelessly.

  In FIG. 28, the portable information terminal 500 corresponds to the content receiving device 100 of the first embodiment and the second embodiment, and the portable information terminals 500 can communicate with each other using BlueTooth or IrDA. is there.

  As described above, by applying the portable information terminal 500 as the content receiving device 100, the portable information terminal 500 can be connected between the portable information terminals 500 even when the portable information terminal 500 is outside the base station area as well as within the base station area. Communication is possible, and distribution of contents can be promoted.

  Since portable information terminals 500 can directly exchange contents, portable authentication terminal 500 issues rental authentication information.

  FIG. 29 is an example in which the content receiving device 100 and the portable information terminal are paired.

  In FIG. 29, the portable information terminal 500 can be additionally connected to the content receiving device 100 of the first embodiment and the second embodiment. Connection between the portable information terminal 500 and the content receiving apparatus 100 is performed using USB (Universal Serial Bus) or proximity communication.

  Further, the issue of the lending authentication information can be exchanged between the content receiving apparatuses 100 or between the portable information terminals 500. Therefore, the content receiving apparatus 100 or the portable information terminal 500 performs the content exchange apparatus 100 and the portable information terminal 500. Synchronize information related to issuance of lending authentication information with 500.

  Note that viewing of content on the content receiving apparatus 100 is possible without the portable information terminal 500. Alternatively, the portable information terminal 500 may have the function of the remote controller 100d, and the portable information terminal 500 may be used as a remote control device.

  By configuring the content distribution system S in this way, only the license information is lent and borrowed between the portable information terminals 500 outdoors, and after returning to the house (where the content receiving apparatus 100 is installed), the content is received at the STB. Can be watched.

  At this time, BlueTooth or IrDA can be used for communication between the portable information terminals 500, and the original wireless communication of the mobile phone can also be used.

  In this way, only license lending and borrowing (exchange) is performed by wireless communication, and content exchange is performed by the content receiving apparatus 100 connected by broadband, so even a relatively large content can be easily lent and borrowed. Content distribution can be further promoted.

  FIG. 30 is an example in which the portable information terminal also has the function of the content receiving device 100.

  Referring to FIG. 30, a plurality of portable information terminals 500 are communicably connected to an authentication server 200 ′ of a dedicated portable information terminal via a base station. Although the base station and the portable information terminal authentication server 200 'are connected by wire, the base station and the portable information terminal 500 can communicate with each other wirelessly.

  When the content distribution system S is configured as described above, the connection between the portable information terminal 500 and the content receiving device 100 is performed using the USB.

  This configuration is particularly effective when the communication speed of the portable information terminal 500 becomes comparable to the communication speed of optical fiber communication in the future.

Further, according to this configuration, content can be stored in both the portable information terminal 500 and the STB, but since the STB can have a larger storage device than the portable information terminal 500, the STB can be stored as a library. It is more effective when used for (database-like), and the distribution of contents can be further promoted.

  In addition, the content receiving device 100 is connected to the portable information terminal 500. The portable information terminal 500 is indispensable for viewing the content in the player 100c. The lending authentication information is issued by the portable information terminal 500 as a matter of course.

  Next, an embodiment of the input device of the content receiving device 100 will be described with reference to FIG.

  Conventionally, content stored in the content receiving device 100 can be marked by a user of the content receiving device 100 according to his / her preference (favorite degree). Examples of the user's favorite degree include numbers and colors. The marking according to the user's favorite degree is determined by operating an arrow button and a determination button provided in the content receiving apparatus 100. For example, content 1 has a favorite degree of 3 and is marked with a blue mark, and content 2 has a favorite degree of 4 and is marked with a red mark.

  However, in order to input the favorite degree of content, the user needs a plurality of button operations that the user must select the content and then determine the favorite degree next.

  In view of this problem, in this embodiment, when the user selects content by operating the determination button of the content receiving device 100, information on the favorite degree is added in accordance with the pressing pressure of the determination button. It can be used as a reference when purchasing content. For example, content with strong pressing pressure on the enter button has a high degree of favorite, changes from black to a red mark, and content with normal pressing pressure on the enter button has medium favorite. The content that has been changed from black to have a green mark and the pressing pressure of the enter button has been weak has a small favorite degree, and has changed from black to have a blue mark. In this case, since the pressing pressure of the decision button differs depending on the user, the favorite degree can be set according to the pressing pressure of the user.

  With reference to FIG. 30, a case where the content receiving device 100 is a portable information terminal 500 ′ will be described.

  In the portable information terminal 500 ′, a determination button 501 ′ is provided at a substantially lower center of the main body, a cross button 502 ′ as a direction setting button is provided so as to surround the determination button 501 ′, and a display screen 503 ′ is provided at the upper portion of the main body. Is provided. The determination button 501 ′ includes a pressure sensor inside and can detect the pressing pressure. At the bottom of the display screen 503 ′, a level gauge 504 ′ with 1, 2, and 3 scales is displayed. The scale 1 indicates that the favorite degree is small, the scale 2 indicates that the favorite degree is medium, and the scale 3 indicates that the favorite degree is large. Correspondence is made such that the degree of favorite increases as the pressure of the determination button 501 ′ increases. As shown in the figure, the degree of favorite according to the pressing pressure of the determination button 501 ′ is represented by the reverse display 505 ′ of the level gauge 504 ′.

  When the user selects and determines the content displayed on the display screen 503 ′, the user presses the determination button 501 ′ with a predetermined pressing pressure, thereby determining the degree of favorite corresponding to the pressing pressure. By doing so, it becomes possible to add information on the degree of favorites at the same time by a single operation of selecting content, and it is possible to easily set the degree of favorites, thereby relieving the hassle of setting the degree of favorites. .

  Note that the information according to the pressing pressure of the user can be added by any of the above methods as long as it is information that allows the user to classify the content without being limited to the degree of favorites.

  The above method is not limited to the portable information terminal 500 ′ but can be applied to a computer system provided with content selection means for selecting content for reproduction and viewing.

  According to the above embodiment, the following content distribution system can be realized.

  (1) a content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproduction of the content distributed from the content distribution device to the content reception device, An authentication information transmission device that transmits to a content distribution device in response to a request from the content reception device is a content distribution system connected via a communication line, and the content distribution device receives the content from the content reception device. Content distribution means for distributing content in response to a request (for example, control means 310 for executing S303) is provided, and the authentication information transmitting device receives the content in the content receiving device in response to a request from the content receiving device. Content to be played back by the content receiver Authentication information creation means for creating authentication information necessary for the authentication (for example, control means 210 for executing S211), and authentication information for sending the authentication information created by the authentication information creation means to the content receiving device In response to a request from the transmission unit (for example, the control unit 210 that executes S212) and the content reception device, reproduction of the content received by the content reception device is different from the content reception device. Lending authentication information creating means for creating lending authentication information necessary for performing in the receiving device (for example, control means 210 for executing S221) and the lending authentication information created by the lending authentication information creating means, Lending authentication information transmitting means for transmitting to the content receiving device or the other content receiving device (For example, a control unit 210 that executes S222), and the content receiving apparatus requests an authentication information creation request unit that requests the authentication information transmitting apparatus to create the authentication information (for example, a control that executes S11). Means 110), a lending authentication information creation request means (for example, control means 110 for executing S92) for requesting the authentication information transmitting apparatus to create the lending authentication information, and the authentication information transmitting means received from the authentication information transmitting means. Authentication information or an authentication information storage means (for example, a tamper resistant memory 160) that stores the loan authentication information received from the loan authentication information transmission means, and the content according to selection of the content in the content receiving device Distribution request transmission means for transmitting a distribution request for the content to the distribution device (for example, S32, 44, control means 110 for executing S55), content reception means for receiving content distributed from the content distribution device (for example, control means 110 for executing S32, S44, S55), and the content reception means. Content storage means (for example, the external storage device 130) that stores the content received by the content information stored in the authentication information storage means, or the authentication information stored in the authentication information storage means Content reproducing means for reproducing based on (for example, control means 110 for executing S35, S47, and S58).

  (2) In the content distribution system according to (1), the authentication information includes device identification information that identifies the content receiving device, and the lending authentication information includes device identification information that identifies the content receiving device, A content distribution system comprising device identification information for identifying another content receiving device and content identification information for identifying the content.

  (3) In the content distribution system according to (1) or (2), the content distribution unit includes an encryption unit that encrypts the content based on the authentication information (for example, a control unit 310 that executes S302) And the reproducing means decrypts the content received by the content receiving means based on the authentication information or the lending authentication information stored in the authentication information storage means (for example, S34, S46). , A control unit 110 for executing S57, etc.).

  (4) In the content distribution system according to any one of (1) to (3), the content receiving apparatus determines a viewing restriction determination unit (for example, S85) that determines whether or not content viewing restriction information is satisfied. And the authentication information creation requesting means when the viewing restriction determining means determines that the viewing restriction information is satisfied, the lending authentication information to the authentication information transmitting device. A content distribution system that requests creation of a content.

  (5) The content distribution system according to any one of (1) to (4), wherein the lending authentication information includes reproduction restriction information related to reproduction of content in the other content receiving device. system.

  (6) In the content distribution system according to (5), the content reception device executes reproduction condition satisfaction determination means (for example, executes S52 and S60) for determining whether or not a reproduction condition based on the reproduction restriction information is satisfied. Control means 110, etc.), and when the reproduction condition satisfaction determining means determines that the reproduction condition based on the reproduction restriction information is satisfied, the content storage means When the content has already been stored, the playback means plays the content, and when the content storage means has not yet stored the content, the delivery request transmission means sends the content to the content delivery device. The distribution unit reproduces the content received from the distribution request transmission unit. Content delivery system, characterized in that.

  (7) In the content distribution system according to (6), the content receiving apparatus executes update means (for example, S59) that updates the reproduction condition based on the reproduction restriction information after the reproduction means reproduces the content. And the reproduction condition satisfaction determining unit determines whether or not a reproduction condition based on the reproduction restriction information updated by the updating unit is satisfied.

  (8) In the content distribution system according to any one of (1) to (7), the content reception device includes the content distribution unit, and the distribution request transmission unit is configured to select content in the content reception device. In response, a request to distribute the content based on the lending authentication information is transmitted to the other content receiving device, and the content receiving unit receives the content distributed from the other content receiving device. A featured content distribution system.

  (9) In the content distribution system according to any one of (1) to (8), the content receiving device includes the authentication information creating unit, the authentication information transmitting unit, the lending authentication information creating unit, Lending authentication information transmitting means, wherein the authentication information creation requesting means requests the other content receiving apparatus to create the authentication information, and the lending authentication information creation requesting means sends the other content receiving apparatus to the other content receiving apparatus. A content distribution system that requests creation of the lending authentication information, and wherein the authentication information storage unit stores the authentication information or the lending authentication information received from the other content receiving device.

  (10) In the content distribution system according to (9), the authentication information created by the authentication information transmitting device includes information specifying a device that creates lending authentication information related to the content corresponding to the authentication information (FIG. 5). The content receiving device includes a distribution request receiving unit that receives a content distribution request from another content receiving device (for example, the control unit 110 that executes S8, the control unit 310 that executes S301), and the distribution request. Authentication information creation device selection means (for example, control means 110 for executing S91, 96, 98) for selecting a device that creates content lending authentication information corresponding to the authentication information creation device selection means. When the request receiving means receives the rental authentication information creation request, the content authentication information corresponding to the distribution request is displayed. Accordingly, a device for generating rental authentication information is selected from a content receiving device that has received a distribution request, another content receiving device, and an authentication information transmitting device. Distribution system.

  Further, according to the above embodiment, the following content distribution method can be realized.

  (11) A content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproducing the content distributed from the content distribution device to the content reception device, A content distribution method in a content distribution system in which an authentication information transmission apparatus that transmits to a content distribution apparatus in response to a request from a content reception apparatus is connected via a communication line, wherein the content distribution apparatus includes: Including a step of distributing content in response to a request from the receiving device (for example, S303), and in the authentication information transmitting device, in response to a request from the content receiving device, content received by the content receiving device Playback to the content receiving device A step of creating authentication information necessary for performing (for example, S211) and a step of transmitting the authentication information created in the step of creating the authentication information to the content receiving device (for example, S212). And, in response to a request from the content receiving device, creates rental authentication information necessary for reproducing the content received at the content receiving device at another content receiving device different from the content receiving device. And transmitting the lending authentication information created in the step of creating the lending authentication information to the content receiving device or the other content receiving device, in the content receiving device, Requesting the authentication information transmitting apparatus to create the authentication information (for example, S22) 1), requesting the authentication information transmitting apparatus to create the lending authentication information (for example, S92), and receiving the authentication information or lending authentication information received in the step of receiving the authentication information. Storing the lending authentication information received in the step of performing (for example, S12, S93, etc.), and in response to the selection of the content in the content receiving device, a request for distribution of the content to the content distribution device. Received in the transmitting step (for example, S32, S44, S55, etc.), receiving the content distributed from the content distribution device (for example, S32, S44, S55, etc.), and receiving the content. Storing the stored content and storing the content Replaying the memorized content based on the authentication information stored in the step of storing the authentication information or the lending authentication information (for example, S35, S47, S58, etc.) Content delivery method.

  Further, according to the above embodiment, the following authentication information transmitting apparatus can be realized.

  (12) A content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproduction of the content distributed from the content distribution device to the content reception device, In the authentication information transmitting device in the content distribution system connected to the authentication information transmitting device that transmits to the content distributing device in response to a request from the receiving device, in response to the request from the content receiving device Authentication information generating means (for example, control means 210 for executing S211) for generating authentication information necessary for reproduction of the content received by the content receiving apparatus, and the authentication information generating means The authentication information created by Authentication information transmitting means (for example, control means 210 for executing S212) to be transmitted to the receiving device, and the content receiving device of the content received by the content receiving device in response to a request from the content receiving device Lending authentication information creating means for creating lending authentication information necessary for reproduction in another different content receiving device (for example, control means 210 for executing S221), and the lending authentication created by the lending authentication information creating means An authentication information transmitting apparatus comprising: lending authentication information transmitting means (for example, control means 210 for executing S222) for transmitting information to the content receiving apparatus or the other content receiving apparatus.

  Further, according to the above embodiment, the following content receiving apparatus can be realized.

  (13) A content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproducing the content distributed from the content distribution device to the content reception device, In the content receiving apparatus in the content distribution system, which is connected to the authentication information transmitting apparatus that transmits to the content distributing apparatus in response to a request from the content receiving apparatus via a communication line, the content is sent to the authentication information transmitting apparatus. An authentication information creation requesting unit (for example, control unit 110 that executes S11) that requests creation of authentication information necessary for reproduction of the content in the receiving device and the authentication information transmitting device are different from the content receiving device. For playback of the content in other content receiving devices Lending authentication information creation request means (for example, control means 110 that executes S92) that requests creation of necessary lending authentication information authentication information, and the authentication information received from the authentication information transmitting apparatus or the lending authentication information is stored. Authentication information storage means (for example, a tamper-resistant memory 160) and a distribution request transmission means for transmitting a content distribution request to the content distribution apparatus in response to selection of content in the content reception apparatus ( For example, the control unit 110 that executes S32, S44, and S55), the content receiving unit that receives the content distributed from the content distribution device (for example, the control unit 110 that executes S32, S44, and S55); Content storage for storing content received by the content receiving means Means (for example, external storage device 130), authentication information storage means (for example, tamper resistant memory 160) that stores the authentication information or the lending authentication information received from the authentication information transmitting means, and the content Content reproduction means for reproducing the content stored by the storage means based on the authentication information or the lending authentication information stored in the authentication information storage means (for example, the control means 110 for executing S35, S47, and S58). And a content receiving apparatus.

  (14) In the content receiving device according to (13), the reproducing unit may be configured to change the content received by the content receiving unit based on the authentication information or the lending authentication information stored in the authentication information storage unit. A content receiving apparatus comprising a decrypting means for decrypting.

  (15) The content receiving device described in (13) or (14) includes a viewing restriction determination unit (for example, a control unit 110 that executes S85) that determines whether content viewing restriction information is satisfied. The authentication information creation requesting unit requests the authentication information transmitting device to create the lending authentication information when the viewing restriction determining unit determines that the viewing restriction information is satisfied. Content receiving device.

  (16) The content reception device according to any one of (13) to (15), wherein the rental authentication information includes reproduction restriction information related to content reproduction in the other content reception device. apparatus.

  (17) In the content receiving device according to (15) or (16), reproduction condition satisfaction determining means for determining whether or not the reproduction condition based on the reproduction restriction information is satisfied (for example, control for executing S52 and S60) And the authentication information creation requesting unit has already received the content storage unit when the reproduction condition satisfaction determining unit determines that the reproduction condition based on the restriction information is satisfied. Is stored, the playback unit plays back the content, and when the content storage unit has not yet stored the content, the delivery request transmitting unit sends the content delivery request to the content delivery device. And the reproducing means reproduces the content received from the distribution request transmitting means. Content receiving device.

  (18) In the content receiving device described in (17), after the reproduction of the content by the reproduction unit, an update unit that updates a reproduction condition based on the reproduction restriction information (for example, the control unit 110 that includes S59) The content receiving device is characterized in that the playback condition satisfaction determining means determines whether or not a playback condition based on the playback restriction information updated by the updating means is satisfied.

  (19) The content receiving device according to any one of (13) to (18), further comprising content distribution means for distributing content in response to a request from the other content receiving device, wherein the distribution request transmitting means includes: In response to the selection of the content in the content receiving device, the distribution request for the content based on the lending authentication information is transmitted to the other content receiving device, and the content receiving unit receives the content from the other content receiving device. A content receiving apparatus for receiving distributed content.

  (20) In the content receiving device according to any one of (13) to (19), in response to a request from the other content receiving device, reproduction of the content received by the other content receiving device is performed. Authentication information creation means (for example, control means 210 that executes S211) for creating authentication information necessary to be performed by another content receiving device, and the authentication information created by the authentication information creation means, Authentication information transmitting means (for example, control means 210 for executing S212) to be transmitted to another content receiving device, and content received by the other content receiving device in response to a request from the other content receiving device Is necessary for the reproduction of the content on the second other content receiving device different from the other content receiving device. Lending authentication information creating means for creating certificate information (for example, the control means 210 for executing S221) and the lending authentication information created by the lending authentication information creating means are used as the other content receiving apparatus or the second Lending authentication information transmitting means (for example, control means 210 for executing S222) for transmitting to another content receiving apparatus, and the authentication information creation requesting means sends the authentication information to the other content receiving apparatus. The lending authentication information creation request requests the other content receiving device to create the lending authentication information, and the authentication information storage means receives the authentication information received from the other content receiving device or The content receiving apparatus, wherein the rental authentication information is stored.

  (21) In the content receiving device according to (20), the authentication information created by the authentication information transmitting device includes information for specifying a device that creates lending authentication information related to the content corresponding to the authentication information (FIG. 5). The content receiving device includes a distribution request receiving unit that receives a content distribution request from another content receiving device (for example, the control unit 110 that executes S8, the control unit 310 that executes S301), and the distribution request. Authentication information creation device selection means (for example, control means 110 for executing S91, 96, 98) for selecting a device that creates content lending authentication information corresponding to the authentication information creation device selection means. When the request receiving means receives the rental authentication information creation request, it is based on the content authentication information corresponding to the distribution request. The content reception device is characterized in that the device for creating the lending authentication information is selected from the content receiving device that has received the distribution request, the other content receiving device, and the authentication information transmitting device. apparatus.

  There are the following as existing technologies. That is, the portable device is connected to a media player of a computer for which the user has already obtained a content viewing license, and the user is permitted to transfer the license to the portable device by the media player. . In this case, when the user transfers the content protected in the computer to the portable device, the media player of the computer receives the content encryption key from the viewing license and decrypts it. The media player requests a public key from the portable device, encrypts a content encryption key using the public key, and inserts it into a new license bound to the device certificate of the portable device . The computer then transfers the new license along with the content to the portable device. This transferred license is tied to the portable device in the same way as a directly acquired license. This transferred license does not allow further transfer of licenses. However, the computer as the license transfer source can transfer the license within a limited range. According to this technique, what corresponds to the lending authentication information in the first embodiment of the present invention is created by a computer (terminal). However, in the first embodiment, since the rental authentication information is created by the authentication information transmitting apparatus 200, forgery of the license can be suppressed, and the issuance management of the loan authentication information can be easily performed. There is an advantage such as being able to easily charge each time.

  In the present embodiment, the case where the user of the content receiving apparatus 100 rents the purchased or rented content to the user of another content receiving apparatus 100 (the content is also lent) is described as an example. If the expiration date of the license relating to the content is set to indefinite, it means that the content has been “purchased”. You can also buy a gift, present it, introduce a new shopper, recommend a purchase, and cash back in return.

  Also, if you want to rent content partially to other users, or if you want to rent for a short time, rent the content free of charge, pay the full amount of the lender for a certain period of time, or after free trailer viewing It is possible to make a modification such as inquiring from the server (paying back to the lender if it is seen) whether to return to the lender and pay the fee for formal confirmation.

  As mentioned above, although embodiment of this invention was illustrated, it is not restricted to this.

  Each means that is a constituent requirement of the content distribution system S, the content reception device 100, the authentication information transmission device 200, and the content distribution device 300 shown in the above embodiment can be appropriately changed in design so as to meet the gist of the present invention. is there. The effects described in the embodiments of the present invention are only the most preferable effects resulting from the present invention, and the effects of the present invention are limited to those described in the embodiments of the present invention. It is not a thing.

1 is a configuration diagram of a content distribution system S according to a first embodiment of the present invention. The electrical block diagram of the content receiver 100 of 1st Embodiment of this invention. The electrical block diagram of the authentication information transmitter 200 of 1st Embodiment of this invention. The electrical block diagram of the content delivery apparatus 300 of 1st Embodiment of this invention. The figure which shows the information contained in the purchase license of 1st Embodiment of this invention. The figure which shows the structure of the lending list | wrist and borrowing list | wrist of 1st Embodiment of this invention. The main flowchart of the content receiver 100 of 1st Embodiment of this invention. The flowchart of the content purchase process of 1st Embodiment of this invention. The flowchart of the reproduction | regeneration processing of the content of 1st Embodiment of this invention. The flowchart of the reproduction | regeneration processing of the purchased content of 1st Embodiment of this invention. The flowchart of the reproduction | regeneration processing of the rented content of 1st Embodiment of this invention. The flowchart of the reproduction | regeneration processing of the borrowing content of 1st Embodiment of this invention. The flowchart following FIG. The flowchart of the borrowing request process of the content of 1st Embodiment of this invention. The flowchart of the rental process of the content of 1st Embodiment of this invention. The flowchart of the rental license creation process of 1st Embodiment of this invention. The flowchart of the other process of 1st Embodiment of this invention. The flowchart of the borrowing process of the content of 1st Embodiment of this invention. The main flowchart of the authentication information transmitter 200 of 1st Embodiment of this invention. The flowchart of the issuing process of the purchase license of 1st Embodiment of this invention. The flowchart of the issuing process of the lending authentication information of 1st Embodiment of this invention. The flowchart of the content delivery process of 1st Embodiment of this invention. FIG. 3 is a schematic diagram of a process for issuing authentication information that is performed when content is purchased by a viewing user of the content receiving apparatus 100 according to the first embodiment of the present invention. FIG. 3 is a schematic diagram of a process of issuing rental authentication information performed when a content user lends content by the content receiving device 100 according to the first embodiment of the present invention. The figure which shows the information contained in the purchase license of 2nd Embodiment of this invention. The flowchart of the rental license creation process of 2nd Embodiment of this invention. Schematic of the process of issuing rental authentication information that is performed at the time of rental of content by the viewing user of the content receiving apparatus 100 according to the second embodiment of the present invention. The block diagram of the content delivery system of the deformation | transformation embodiment of this invention. The block diagram of the content delivery system of the deformation | transformation embodiment of this invention. The block diagram of the content delivery system of the deformation | transformation embodiment of this invention. Schematic which shows one Embodiment of the input device of the content receiver 100 of this invention.

Explanation of symbols

S content distribution system 100 content receiving apparatus 101, 201, 301 CPU
102, 202, 302 ROM
103, 203, 303 RAM
110, 210, 310 Control means 130, 230, 330 External storage device 140 Decryptor 150 DRM module 160 Tamper resistant memory 170, 270, 370 Communication interface 200 Authentication information transmitting device 200 ′ Dedicated mobile information terminal authentication server 200 ′
300 Content Distribution Device 340 Encryptor 500, 500 ′ Portable Information Terminal 501 ′ Determination Button 504 ′ Level Gauge

Claims (16)

A content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproduction of the content distributed from the content distribution device to the content reception device. An authentication information transmitting device that transmits to the content distribution device in response to a request from the content distribution system connected via a communication line,
The content distribution device includes content distribution means for distributing content in response to a request from the content reception device,
The authentication information transmitting device includes:
In response to a request from the content receiving device, authentication information creating means for creating authentication information necessary for reproducing the content received at the content receiving device at the content receiving device;
Authentication information transmitting means for transmitting the authentication information created by the authentication information creating means to the content receiving device;
Lending that creates lending authentication information necessary for reproducing content received at the content receiving device at another content receiving device different from the content receiving device in response to a request from the content receiving device Authentication information creation means;
Lending authentication information transmitting means for transmitting the lending authentication information created by the lending authentication information creating means to the content receiving device or the other content receiving device,
The content receiving device is:
Authentication information creation request means for requesting the authentication information transmitting apparatus to create the authentication information;
Lending authentication information creation request means for requesting creation of the lending authentication information to the authentication information transmitting device;
Authentication information storage means for storing the authentication information received from the authentication information transmission means, or the loan authentication information received from the loan authentication information transmission means;
Distribution request transmission means for transmitting a distribution request for the content to the content distribution device in response to selection of content in the content reception device;
Content receiving means for receiving content distributed from the content distribution device;
Content storage means for storing the content received by the content receiving means;
Content reproduction means for reproducing the content stored by the content storage means based on the authentication information or the lending authentication information stored in the authentication information storage means;
The authentication information creating means;
The authentication information transmitting means;
The lending authentication information creating means;
The lending authentication information transmitting means;
Distribution request receiving means for receiving a content distribution request from the other content receiving device;
An authentication information creation device selection means for selecting a device for creating the lending authentication information of the content corresponding to the distribution request ,
The authentication information creation request means requests the other content reception device to create the authentication information,
The lending authentication information creation request means requests the other content receiving device to create the lending authentication information,
The authentication information storage means stores the authentication information or the lending authentication information received from the other content receiving device,
The authentication information created by the authentication information transmitting device includes information for specifying a device that creates lending authentication information related to content corresponding to the authentication information,
When the distribution request receiving unit receives the lending authentication information generation request, the authentication information generating apparatus selecting unit generates an apparatus for generating the lending authentication information based on the authentication information of the content corresponding to the distribution request. A content distribution system comprising: selecting a content receiving device that has received a distribution request, another content receiving device, and the authentication information transmitting device . The content distribution system according to claim 1,
The authentication information includes identification information for identifying the content receiving device,
The lending authentication information includes at least one of identification information for identifying the content receiving device, identification information for identifying the other content receiving device, and identification information for identifying the content. Distribution system. In the content delivery system of Claim 1 or Claim 2,
The content distribution means includes an encryption means for encrypting the content or an encryption key for encrypting the content based on the authentication information,
The reproduction means includes decryption means for decrypting the content received by the content reception means or the encryption key based on the authentication information or the lending authentication information stored in the authentication information storage means. A featured content distribution system. In the content delivery system in any one of Claims 1-3,
The content receiving device includes a viewing restriction determination unit that determines whether content viewing restriction information is satisfied,
The authentication information creation requesting unit requests the authentication information transmitting apparatus to create the lending authentication information when the viewing restriction determining unit determines that the viewing restriction information is satisfied. Content distribution system. In the content delivery system in any one of Claims 1-4,
The content distribution system, wherein the lending authentication information includes reproduction restriction information related to reproduction of content in the other content receiving device. The content distribution system according to claim 5, wherein
The content receiving device includes a playback condition satisfaction determining unit that determines whether a playback condition based on the playback restriction information is satisfied,
The authentication information creation request means includes:
When it is determined by the reproduction condition satisfaction determination means that the reproduction condition based on the reproduction restriction information is satisfied,
When the content storage means already stores the content, the playback means plays the content,
When the content storage unit has not yet stored the content, the distribution request transmission unit transmits the content distribution request to the content distribution device;
The content distribution system, wherein the reproduction means reproduces the content received from the distribution request transmission means. The content distribution system according to claim 6, wherein
The content receiving device includes update means for updating a playback condition based on the playback restriction information after the playback of the content by the playback means,
The content distribution system according to claim 1, wherein the reproduction condition satisfaction determining unit determines whether or not a reproduction condition based on the reproduction restriction information updated by the updating unit is satisfied. In the content delivery system in any one of Claims 1-7,
The content receiving device includes the content distribution unit,
The distribution request transmitting means transmits a distribution request for the content based on the lending authentication information to the other content receiving device in response to the selection of the content in the content receiving device.
The content receiving system, wherein the content receiving means receives content distributed from the other content receiving device. A content distribution device, a plurality of content reception devices that receive content from the content distribution device, and predetermined authentication information necessary for reproduction of the content distributed from the content distribution device to the content reception device. In the content receiving device in the content distribution system, the authentication information transmitting device that transmits to the content distribution device in response to a request from the communication line,
Authentication information creation requesting means for requesting the authentication information transmitting device to create authentication information necessary for reproducing the content in the content receiving device;
Lending authentication information creation request means for requesting the authentication information transmitting device to create lending authentication information authentication information necessary for reproduction of the content in another content receiving device different from the content receiving device;
Authentication information storage means for storing the authentication information received from the authentication information transmitting device or the lending authentication information;
Distribution request transmission means for transmitting a distribution request for the content to the content distribution device in response to selection of content in the content reception device;
Content receiving means for receiving content distributed from the content distribution device;
Content storage means for storing the content received by the content receiving means;
Authentication information storage means for storing the authentication information or the lending authentication information received from the authentication information transmitting means;
Content reproduction means for reproducing the content stored by the content storage means based on the authentication information or the lending authentication information stored in the authentication information storage means;
In response to a request from the other content receiving device, authentication information creating means for creating authentication information necessary for reproducing the content received by the other content receiving device at the other content receiving device. When,
Authentication information transmitting means for transmitting the authentication information created by the authentication information creating means to the other content receiving device;
In response to a request from the other content receiving apparatus, the content received by the other content receiving apparatus is reproduced by a second other content receiving apparatus different from the other content receiving apparatus. Lending authentication information creating means for creating necessary lending authentication information;
Lending authentication information transmitting means for transmitting the lending authentication information created by the lending authentication information creating means to the other content receiving device or the second other content receiving device;
Distribution request receiving means for receiving a content distribution request from the other content receiving device;
An authentication information creation device selection means for selecting a device for creating the lending authentication information of the content corresponding to the distribution request ,
The authentication information creation request means requests the other content reception device to create the authentication information,
The lending authentication information creation request requests the other content receiving device to create the lending authentication information,
The authentication information storage means stores the authentication information or the lending authentication information received from the other content receiving device,
The authentication information created by the authentication information transmitting device includes information for specifying a device that creates lending authentication information related to content corresponding to the authentication information,
When the distribution request receiving unit receives the lending authentication information generation request, the authentication information generating apparatus selecting unit generates an apparatus for generating the lending authentication information based on the authentication information of the content corresponding to the distribution request. A content receiving apparatus, wherein a content receiving apparatus that has received a distribution request, another content receiving apparatus, and the authentication information transmitting apparatus are selected . The content receiving device according to claim 9 ,
The content receiving apparatus characterized in that the reproduction means includes a decoding means for decoding the content received by the content receiving means based on the authentication information or the lending authentication information stored in the authentication information storage means . In the content receiver of Claim 9 or Claim 10 ,
A viewing restriction determining means for determining whether or not content viewing restriction information is satisfied,
The authentication information creation requesting unit requests the authentication information transmitting apparatus to create the lending authentication information when the viewing restriction determining unit determines that the viewing restriction information is satisfied. Content receiving device. The content receiving device according to any one of claims 9 to 11 ,
The content receiving apparatus, wherein the lending authentication information includes reproduction restriction information related to content reproduction in the other content receiving apparatus. The content receiving device according to claim 11 or 12 ,
Reproduction condition satisfaction determination means for determining whether or not a reproduction condition based on the reproduction restriction information is satisfied,
The authentication information creation request means includes:
When it is determined by the reproduction condition satisfaction determination means that the reproduction condition based on the restriction information is satisfied,
When the content storage means already stores the content, the playback means plays the content,
When the content storage unit has not yet stored the content, the distribution request transmission unit transmits the content distribution request to the content distribution device;
A content receiving apparatus, wherein the reproducing means reproduces the content received from the distribution request transmitting means. The content receiving device according to claim 13 ,
Update means for updating a playback condition based on the playback restriction information after the playback of the content by the playback means;
The content reception apparatus, wherein the reproduction condition satisfaction determining unit determines whether or not a reproduction condition based on the reproduction restriction information updated by the updating unit is satisfied. The content receiver according to any one of claims 9 to 14 ,
Content distribution means for distributing content in response to a request from the other content receiving device;
The distribution request transmitting means transmits a distribution request for the content based on the lending authentication information to the other content receiving device in response to the selection of the content in the content receiving device.
The content receiving device, wherein the content receiving means receives content distributed from the other content receiving device. The program for functioning a computer as each means of the content receiver of Claim 9 to 15 .

Images