WO2001054099A1 - Systeme d'authentification de donnees - Google Patents
Systeme d'authentification de donnees Download PDFInfo
- Publication number
- WO2001054099A1 WO2001054099A1 PCT/JP2001/000346 JP0100346W WO0154099A1 WO 2001054099 A1 WO2001054099 A1 WO 2001054099A1 JP 0100346 W JP0100346 W JP 0100346W WO 0154099 A1 WO0154099 A1 WO 0154099A1
- Authority
- WO
- WIPO (PCT)
- Prior art keywords
- data
- content
- processing
- key
- encryption
- Prior art date
Links
- 238000012545 processing Methods 0.000 claims description 2044
- 238000000034 method Methods 0.000 claims description 873
- 230000008569 process Effects 0.000 claims description 596
- 238000003672 processing method Methods 0.000 claims description 247
- 238000003860 storage Methods 0.000 claims description 244
- 230000015654 memory Effects 0.000 claims description 226
- 230000006837 decompression Effects 0.000 claims description 194
- 238000012795 verification Methods 0.000 claims description 148
- 238000004891 communication Methods 0.000 claims description 132
- 238000009826 distribution Methods 0.000 claims description 120
- 238000013524 data verification Methods 0.000 claims description 110
- 238000007405 data analysis Methods 0.000 claims description 58
- 238000013500 data storage Methods 0.000 claims description 57
- 238000012384 transportation and delivery Methods 0.000 claims description 43
- 238000012546 transfer Methods 0.000 claims description 39
- 238000004422 calculation algorithm Methods 0.000 claims description 33
- 230000006835 compression Effects 0.000 claims description 33
- 238000007906 compression Methods 0.000 claims description 32
- 238000004590 computer program Methods 0.000 claims description 19
- 239000000284 extract Substances 0.000 claims description 16
- 238000004458 analytical method Methods 0.000 claims description 14
- 238000000605 extraction Methods 0.000 claims description 10
- 239000000470 constituent Substances 0.000 claims description 3
- 238000013502 data validation Methods 0.000 claims 1
- 238000013478 data encryption standard Methods 0.000 description 125
- 238000010586 diagram Methods 0.000 description 106
- 230000006870 function Effects 0.000 description 30
- 238000013523 data management Methods 0.000 description 25
- 238000007726 management method Methods 0.000 description 22
- 238000004364 calculation method Methods 0.000 description 18
- 238000004519 manufacturing process Methods 0.000 description 18
- 230000000694 effects Effects 0.000 description 10
- 230000004913 activation Effects 0.000 description 8
- 238000001994 activation Methods 0.000 description 7
- 238000005516 engineering process Methods 0.000 description 6
- 230000004807 localization Effects 0.000 description 6
- 230000005540 biological transmission Effects 0.000 description 5
- 239000004065 semiconductor Substances 0.000 description 5
- XAGFODPZIPBFFR-UHFFFAOYSA-N aluminium Chemical compound [Al] XAGFODPZIPBFFR-UHFFFAOYSA-N 0.000 description 4
- 229910052782 aluminium Inorganic materials 0.000 description 4
- 230000001174 ascending effect Effects 0.000 description 4
- 238000001514 detection method Methods 0.000 description 4
- 238000003379 elimination reaction Methods 0.000 description 4
- 230000000717 retained effect Effects 0.000 description 4
- 230000008901 benefit Effects 0.000 description 3
- 230000015572 biosynthetic process Effects 0.000 description 3
- 230000008030 elimination Effects 0.000 description 3
- 230000004075 alteration Effects 0.000 description 2
- 238000006243 chemical reaction Methods 0.000 description 2
- 238000007796 conventional method Methods 0.000 description 2
- 238000013075 data extraction Methods 0.000 description 2
- 230000010365 information processing Effects 0.000 description 2
- 230000014759 maintenance of location Effects 0.000 description 2
- 239000000203 mixture Substances 0.000 description 2
- BDAGIHXWWSANSR-UHFFFAOYSA-M Formate Chemical compound [O-]C=O BDAGIHXWWSANSR-UHFFFAOYSA-M 0.000 description 1
- 125000002066 L-histidyl group Chemical group [H]N1C([H])=NC(C([H])([H])[C@](C(=O)[*])([H])N([H])[H])=C1[H] 0.000 description 1
- GEIAKCPGVIYGOY-UWVGGRQHSA-N N-[(2S)-1-hydroxybutan-2-yl]-N-[2-[[(2S)-1-hydroxybutan-2-yl]-nitrosoamino]ethyl]nitrous amide Chemical compound CC[C@@H](CO)N(CCN(N=O)[C@@H](CC)CO)N=O GEIAKCPGVIYGOY-UWVGGRQHSA-N 0.000 description 1
- 101000941356 Nostoc ellipsosporum Cyanovirin-N Proteins 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 238000012790 confirmation Methods 0.000 description 1
- 238000005520 cutting process Methods 0.000 description 1
- 238000013144 data compression Methods 0.000 description 1
- 230000002708 enhancing effect Effects 0.000 description 1
- 230000007717 exclusion Effects 0.000 description 1
- RFHAOTPXVQNOHP-UHFFFAOYSA-N fluconazole Chemical compound C1=NC=NN1CC(C=1C(=CC(F)=CC=1)F)(O)CN1C=NC=N1 RFHAOTPXVQNOHP-UHFFFAOYSA-N 0.000 description 1
- 238000009963 fulling Methods 0.000 description 1
- 238000007429 general method Methods 0.000 description 1
- 238000009434 installation Methods 0.000 description 1
- 230000003993 interaction Effects 0.000 description 1
- 230000001788 irregular Effects 0.000 description 1
- 238000012423 maintenance Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000002156 mixing Methods 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000002093 peripheral effect Effects 0.000 description 1
- 238000004321 preservation Methods 0.000 description 1
- 239000011347 resin Substances 0.000 description 1
- 229920005989 resin Polymers 0.000 description 1
- 230000000630 rising effect Effects 0.000 description 1
- 235000002020 sage Nutrition 0.000 description 1
- 238000007789 sealing Methods 0.000 description 1
- 238000000926 separation method Methods 0.000 description 1
- 125000004079 stearyl group Chemical group [H]C([*])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])C([H])([H])[H] 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3271—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
- H04L9/3273—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response for mutual authentication
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/10—Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/64—Protecting data integrity, e.g. using checksums, certificates or signatures
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/00094—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to authorised record carriers
- G11B20/00123—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to authorised record carriers the record carrier being identified by recognising some of its unique characteristics, e.g. a unique defect pattern serving as a physical signature of the record carrier
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/00166—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to authorised contents recorded on or reproduced from a record carrier, e.g. music or software
- G11B20/00173—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to authorised contents recorded on or reproduced from a record carrier, e.g. music or software wherein the origin of the content is checked, e.g. determining whether the content has originally been retrieved from a legal disc copy or another trusted source
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
- G11B20/00217—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier the cryptographic key used for encryption and/or decryption of contents recorded on or reproduced from the record carrier being read from a specific source
- G11B20/00224—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier the cryptographic key used for encryption and/or decryption of contents recorded on or reproduced from the record carrier being read from a specific source wherein the key is obtained from a remote server
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
- G11B20/00217—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier the cryptographic key used for encryption and/or decryption of contents recorded on or reproduced from the record carrier being read from a specific source
- G11B20/00246—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier the cryptographic key used for encryption and/or decryption of contents recorded on or reproduced from the record carrier being read from a specific source wherein the key is obtained from a local device, e.g. device key initially stored by the player or by the recorder
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
- G11B20/00485—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
- G11B20/00492—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
- G11B20/00485—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
- G11B20/00492—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted
- G11B20/00507—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted wherein consecutive physical data units of the record carrier are encrypted with separate encryption keys, e.g. the key changes on a cluster or sector basis
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
- G11B20/00485—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
- G11B20/00492—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted
- G11B20/00536—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein content or user data is encrypted wherein encrypted content data is subjected to a further, iterated encryption, e.g. interwoven encryption
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/0021—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
- G11B20/00485—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier
- G11B20/00557—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier characterised by a specific kind of data which is encrypted and recorded on and/or reproduced from the record carrier wherein further management data is encrypted, e.g. sector headers, TOC or the lead-in or lead-out areas
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/00731—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
- G11B20/00739—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction is associated with a specific geographical region
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/00731—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
- G11B20/00746—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number
- G11B20/00753—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of copies that can be made, e.g. CGMS, SCMS, or CCI flags
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00086—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
- G11B20/00731—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction
- G11B20/00746—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number
- G11B20/00753—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of copies that can be made, e.g. CGMS, SCMS, or CCI flags
- G11B20/00768—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of copies that can be made, e.g. CGMS, SCMS, or CCI flags wherein copy control information is used, e.g. for indicating whether a content may be copied freely, no more, once, or never, by setting CGMS, SCMS, or CCI flags
- G11B20/00775—Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving a digital rights management system for enforcing a usage restriction wherein the usage restriction can be expressed as a specific number wherein the usage restriction limits the number of copies that can be made, e.g. CGMS, SCMS, or CCI flags wherein copy control information is used, e.g. for indicating whether a content may be copied freely, no more, once, or never, by setting CGMS, SCMS, or CCI flags wherein said copy control information is encoded in an encryption mode indicator [EMI]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0625—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation with splitting of the data block into left and right halves, e.g. Feistel based algorithms, DES, FEAL, IDEA or KASUMI
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04L9/0637—Modes of operation, e.g. cipher block chaining [CBC], electronic codebook [ECB] or Galois/counter mode [GCM]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0643—Hash functions, e.g. MD5, SHA, HMAC or f9 MAC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/08—Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
- H04L9/0894—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
- H04L9/0897—Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/14—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols using a plurality of keys or algorithms
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3236—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
- H04L9/3242—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions involving keyed hash functions, e.g. message authentication codes [MACs], CBC-MAC or HMAC
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
- H04L9/32—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
- H04L9/3247—Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials involving digital signatures
-
- G—PHYSICS
- G11—INFORMATION STORAGE
- G11B—INFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
- G11B20/00—Signal processing not specific to the method of recording or reproducing; Circuits therefor
- G11B20/00007—Time or data compression or expansion
- G11B2020/00014—Time or data compression or expansion the compressed signal being an audio signal
- G11B2020/00057—MPEG-1 or MPEG-2 audio layer III [MP3]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/60—Digital content management, e.g. content distribution
Definitions
- the present invention relates to a data processing device and a data processing method, and more particularly, to a method, a device, and a method of assigning a verification value for verifying the validity of data constituting data content, that is, for falsification. Also, the present invention relates to an apparatus and a method capable of enhancing security by generating an individual key required for cryptographic processing using a master key corresponding to each individual key. Further, the present invention provides a configuration for eliminating unauthorized use of data content, and more specifically, relates to an apparatus and a method capable of identifying unauthorized playback equipment and eliminating unauthorized use of content. You.
- the present invention provides an apparatus which makes it possible to easily set content usable only in a data processing apparatus and content usable in another data processing apparatus based on information unique to the data processing apparatus. And methods. Further, the present invention relates to a method, an apparatus, and a method of assigning a verification value for verifying the validity of data constituting data content, that is, for checking for falsification.
- the present invention encrypts data including at least one of audio information, image information, and program data, provides the encrypted data to various types of header information, and provides the content user with the content information.
- a data processing device, a content data generation method, and a content processing device that realizes a content data configuration that enables content data to be provided and used under high security management in a configuration that executes or stores data in a recording device. And a data processing method.
- the present invention provides a configuration for efficiently executing a reproduction process when the data content is compressed audio data or image data.
- the configuration of the content data is composed of compressed data and decompressed data. Compressed data that has a configuration combined with a processing program, or stores an applicable decompression processing program as header information
- the present invention relates to a data processing device, a data processing method, and a content data generation method capable of searching and extracting an applicable decompression processing program based on content header information and executing a reproduction process.
- the present invention provides various types of contents, such as audio, images, games, and programs, which can be obtained from storage media such as DVDs and CDs, or wired and wireless communication means such as CATV, the Internet, and satellite communications. Playback on a recording / playback device
- the present invention relates to a configuration and a method for ensuring security so that the distributed content is not illegally used by a third party other than an authorized user.
- the main components of a memory card device used in a conventional video game device, information device such as a PC are control means for operation control, and connected to a slot provided in the information device body and connected to the control means. And a non-volatile memory connected to the control means for storing data.
- the nonvolatile memory provided in the memory card is composed of E-PROM :, flash memory, and so on.
- the content is called up from the nonvolatile memory by a user instruction from the information device itself such as a game device or a PC used as a playback device, or a user instruction via a connected input means, and is read from the nonvolatile memory. Or, it is reproduced through a connected display, speaker, etc.
- the encrypted data can be returned to usable decrypted data (plaintext) by a decryption process according to a predetermined procedure.
- Data encryption and decryption methods using an encryption key for such information encryption processing and a decryption key for decryption processing have been well known.
- DES data encryption standard: ecryptionstanaddadard
- the encryption key and the decryption key used for the above-described encryption processing and decryption are, for example, It can be obtained by applying a one-way function such as a hash function based on a password or the like.
- a one-way function is a function that makes it very difficult to find its input from its output.
- a one-way function is applied with a password determined by the user as an input, and an encryption key and a decryption key are generated based on the output.
- a method in which processing using an encryption key used for encryption and processing for a decryption key used for decryption are different algorithms is a so-called public key encryption method.
- the public key encryption method uses a public key that can be used by an unspecified user, and encrypts an encrypted document for a specific individual using a public key issued by the specific individual.
- a document decrypted with a public key can be decrypted only with a private key corresponding to the public key used for the encryption process. Since the private key is owned only by the individual who issued the public key, documents encrypted with the public key can be decrypted only by the individual who has the private key.
- a representative public key encryption method is RSA (Rivest-Shamir-Ad1eman) encryption.
- FIG. 1 shows a program, audio data, video data, etc. (content (content)) obtained from a data providing means such as a DVD, a CD 30, the Internet 40, etc. in a reproducing means 10 such as a PC (personal computer) and a game machine. 3) shows an example of a configuration in which data obtained from a DVD, a CD 30, the Internet 40 or the like can be stored in a storage means 20 such as a floppy disk, a memory card, a hard disk, or the like.
- a storage means 20 such as a floppy disk, a memory card, a hard disk, or the like.
- Contents such as programs, audio data, and video data are encrypted and provided to a user having the reproduction unit 10.
- Legitimate users can access encrypted data First, it acquires key data that is the encryption and decryption keys.
- the reproduction means 10 has a CPU 12, and reproduces the input data in the reproduction processing section 14.
- the reproduction processing unit 14 executes the decryption processing of the encrypted data, and reproduces the provided program and reproduces the content such as audio data and image data.
- the authorized user performs a process of storing the content such as the program / data in the storage means 20 in order to use the provided program again.
- the reproduction means 10 has a storage processing unit 13 for executing this content storage processing.
- the storage processing unit 13 performs a storage process by performing an encryption process on the data in order to prevent unauthorized use of the data stored in the storage unit 20.
- the storage processing unit 13 When encrypting content, a content encryption key is used.
- the storage processing unit 13 encrypts the content using the content code key, and stores it in the storage unit 21 of the storage means 20 such as a floppy disk (FD), a memory card, or a hard disk.
- the user retrieves the stored content from the storage means 20 and reproduces the content
- the user retrieves the encrypted data from the storage means 20 and in the reproduction processing unit 14 of the reproduction means 10, the content decryption key, That is, decryption processing is performed using the decryption key to obtain decrypted data from the encrypted data and reproduce the decrypted data.
- the storage contents are encrypted in the storage means 20 such as a floppy disk, a memory card, etc.
- the storage means 20 such as a floppy disk, a memory card, etc.
- the same content key that is, the same decryption key for decrypting the encrypted content is used.
- Reproduction is impossible unless it is a means of reproduction. Therefore, in order to realize a form that can be used in multiple information devices, it is necessary to share the encryption key provided to the user.
- sharing the encryption key and decryption key for content means that if the key information is leaked from one device, the extent of damage is limited to the entire system that uses the key. I will.
- encrypted content created on, for example, a certain PC and stored in a storage means such as a memory card or a floppy disk is transferred to another floppy disk. It can be easily copied, and it is possible to use the copied floppy disk instead of the original content data, and many content data that can be used in information devices such as game machines and PCs are copied, or It could have been tampered with.
- a check value for verification is included in the content data to check the validity of the content data, that is, that the data has not been tampered with, and a check generated based on the data to be verified in the recording / reproducing device
- a method of performing data verification by comparing a value with a check value included in content data has been performed.
- the check value for the data content is generally generated for the entire data.
- the check processing of the check value generated for the entire data it is necessary to select the check target. It is necessary to execute check value generation processing for the entire data that has become invalid.
- the method of obtaining the check value ICV by using the message authentication code (MAC) generated in the DES_CBC mode it is necessary to execute the DES-CBC process on the entire data.
- This calculation amount increases as the data length increases, and there is a problem in terms of processing efficiency. Disclosure of the invention
- the present invention solves the above-mentioned problems of the conventional technology.
- the present invention efficiently executes data validity confirmation processing, increases the efficiency of content data verification processing, and downloads recorded data to a recording device after verification.
- a first object is to provide a data processing device, a data processing method, a data verification value assigning method, and a program providing medium, which can efficiently execute the processing or the reproduction processing after the verification. The purpose.
- encryption methods such as data encryption, data decryption, data verification, authentication processing, and signature processing as methods for limiting the use of content data to authorized users.
- secret information shared between two devices that is, between devices that transfer content data or devices that perform authentication processing, is applied to encryption and decryption of content data. It is necessary to share key information and to share the authentication key used for authentication between the authenticating devices.
- the encrypted data of the content using the shared key information can be transmitted by a third party without a license.
- Decryption becomes possible, and unauthorized use of content becomes possible.
- an authentication key is leaked, and authentication is performed for a device that has no license at all, and leaking the key threatens the entire system.
- the present invention solves such a problem.
- the data processing device, the data processing system, and the data processing method according to the present invention provide an individual link required to execute encryption processing such as data encryption, data decryption, data verification, authentication processing, and signature processing. Instead of storing in the storage unit, the master chain for generating these individual keys is stored in the storage unit, and the encryption processing unit needs the individual key based on the master key and the device or data identification data.
- a second object of the present invention is to provide a data processing device, a data processing system, and a data processing method that enhance security in cryptographic processing by generating a data processing device.
- the present invention provides a configuration capable of eliminating such an unauthorized playback device, that is, a configuration in which an unauthorized playback device is identified, and the identified unauthorized device is not allowed to execute processing such as reproduction and download of content data.
- a third object is to provide a data processing device, a data processing method, and a content data generation method which are described above.
- an encryption process using a predetermined encryption key for example, a signature process.
- the signature key uses the content.
- all the entities in the system are common.With such a signing key, it is possible to use common content on different devices, and problems such as illegal copying of the content occur. is there.
- the password may be stolen, and the same password may be entered by entering the same password via a different player.
- the present invention solves such a problem of the prior art.
- a device unique key unique to a data processing device and a system common to other data processing devices using content data are provided.
- a data processing device and data processing method that enables content to be played back only by a specific data processing device in accordance with content usage restrictions.
- the fourth purpose is to provide.
- content data includes various information such as audio information, image information, and program data.
- content data includes various information such as audio information, image information, and program data.
- content data includes various types of content, such as when all of the content data needs to be encrypted, or when a portion that requires encryption and a portion that does not require encryption are mixed.
- Applying the encryption process uniformly to such various contents may cause unnecessary decryption in the playback process, or may cause undesired situations in terms of processing efficiency and processing speed.
- data such as music data that requires real-time reproduction is desired to have a high processing speed and a content data structure that can be decoded.
- a data processing device, a content data generation method, and a data processing method according to the present invention apply various content data configurations according to types of content data, that is, apply a plurality of different data formats according to content to content. It is a fifth object of the present invention to provide a data processing device, a content data generation method, and a data processing method that can generate and process content data with high security and that can be easily used in reproduction, execution, and the like. I do.
- the decoded audio data, image data, and the like are output to the AV output unit and reproduced.
- many contents are often subjected to compression processing and stored or distributed on a storage medium. Therefore, it is necessary to decompress these compressed data before the reproduction process.
- the audio data is MP3 compressed
- the audio data is decoded by an MP3 decoder and output.
- the content data is image data and is an MPEG2 compressed image, it is output after the MPPEG2 decoder performs decompression processing.
- a sixth object is to provide a data processing device, a data processing method, and a content data generation method for efficiently executing a reproduction process when the content is compressed audio data, image data, or the like.
- a data processing device for processing content data provided by a storage medium or a communication medium, an encryption processing unit for performing encryption processing on the content data, and an encryption processing unit. And a control unit for executing control on the partial data set.
- the encryption processing unit generates a partial check value as a check value for a partial data set including one or more partial data obtained by dividing the content data configuration unit into a plurality of parts.
- the intermediate check value is generated based on the partial check value set data string including at least one of the partial check values, and the generated intermediate value is generated.
- check values a plurality of partial check values corresponding to a plurality of partial check values constituting the above partial check value set
- the data processing apparatus characterized by having a configuration that executes a verification process for the entire minute data set.
- the partial check value is a value generated by an encryption process using a partial data to be checked as a message and applying a partial check value generation key.
- the check value is a value generated by performing an encryption process using a partial check value set data string to be checked as a message and applying a total check value generation key. It has a configuration in which the total check value generation key is stored.
- the cryptographic processing unit has a plurality of types of partial check value generation keys corresponding to the generated partial check values.
- the encryption processing is DES encryption processing
- the encryption processing unit has a configuration capable of executing DES encryption processing.
- the partial check value is a message authentication code (MA C) generated in a DES-CBC mode using partial data to be checked as a message.
- the intermediate check value is a message authentication code (MA C) generated in the DES-CBC mode using the partial check value set data string to be checked as a message. Characterized by having a configuration for executing
- the encryption processing configuration in the DES-CBC mode of the encryption processing unit has a configuration in which triple DES is applied only to a part of a message sequence to be processed.
- the data processing device has a signature key, and the encryption processing unit is generated by encryption processing applying the signature key to the intermediate check value. This feature is characterized in that a value is applied as a collation value for data verification.
- the data processing device has a plurality of different signature keys as signature keys, and the cryptographic processing unit performs the different processing according to the usage restriction mode of the content data. It is characterized in that a signature key selected from a plurality of signature keys is applied to the encryption processing for the intermediate check value and used as a collation value for data verification.
- the data processing device includes, as the plurality of signature keys, a common signature key common to all entities of the system that executes the data verification process; It has a device-specific signature key unique to each device to be executed.
- the partial check value is one or more header partial check values generated for data in a header part forming a part of the data, and a partial data value.
- one or more content check values generated for the content block data constituting Generates one or more header partial check values for the partial data set of the data in the header part and executes the matching process.
- the partial check value includes one or more header partial check values generated for data in a header part forming a part of the data, Generates one or more header partial check values for the partial data set of the data in the header part, executes the matching process, and further generates the one or more header partial check values and
- the present invention is characterized in that it has a configuration in which a total check value is generated based on a data string composed of content block data constituting a part, and a data verification is executed by executing a matching process.
- the data processing device further includes a recording device for storing data on which the validity has been verified in the encryption processing unit.
- the control unit in the collation processing of the partial check value in the cryptographic processing unit, if the collation is not established, the control unit may store the data in the recording device.
- the feature is that it has a configuration to cancel.
- the data processing device further includes a reproduction processing unit that reproduces the data whose validity has been verified in the encryption processing unit.
- the control unit performs the reproduction processing. Stop playback processing in the unit It is characterized by having a configuration.
- the data processing device executes only the process of comparing the header partial check value of the data in the process of comparing the partial check value in the encryption processing unit, It is characterized by having control means for transferring data for which verification of the partial check value has been established to the reproduction processing unit to enable reproduction.
- a second aspect of the present invention is a data processing device that performs processing of content data provided by a storage medium or a communication medium, and an encryption processing unit that performs an encryption process on the content data; And a control unit that controls the signal processing unit.
- the encryption processing unit operates on the decrypted data obtained by decrypting the encrypted data.
- Data processing characterized by having a configuration for generating a check value of the data to be verified by performing cryptographic processing using a signature key on the operation processing result data obtained by executing the processing.
- the arithmetic processing is a processing of performing an exclusive OR operation on the decrypted data obtained by the decrypting processing of the encrypted data in a predetermined byte unit.
- a data processing method for processing content data provided by a storage medium or a communication medium wherein the partial data includes one or more partial data obtained by dividing a content data configuration unit into a plurality of parts.
- a partial check value is generated as a check value for the set, and the verification process of the partial data is executed by comparing the generated partial check value, and the partial check value set data including at least one or more of the partial check values is executed.
- the partial tick value Is the partial data to be checked as a message, is a partial check, and is a value generated by cryptographic processing using a value generation key. And a value generated by encryption processing using a total check value generation key.
- the partial check value is generated by applying a different type of partial check value generation key corresponding to the generated partial check value.
- the encryption process is a DES encryption process.
- the partial check value is a message authentication code (MA C) generated in the DES-CBC mode using partial data to be checked as a message.
- the intermediate check value is characterized by being a message authentication code (MA C) generated in the DES-CBC mode using a partial check value set data string to be checked as a message.
- a value generated by encryption processing applying a signature key to the intermediate check value is applied as a collation value for data verification. Fine.
- a different signature key is applied to the encryption process for the intermediate check value according to the data use restriction mode to be used as a collation value for data verification.
- the signature key is a common signature key common to all entities of the system that executes the data verification process, and a unique signature key for each device that executes the data verification process. And selecting and using the device-specific signature key according to the data use restriction mode.
- the partial check value is one or more headers generated for the data in the header part forming a part of the data.
- the above header partial check values are generated and collation processing is performed, and one or more content check values are generated for the partial data set of the data in the content part and collation processing is executed. It is characterized in that a total check value is generated based on the header partial check value and all of the above-mentioned content check values, and data verification is executed.
- the partial check value includes one or more header partial check values generated for data in a header portion forming a part of the data. Generates one or more header partial check values for the partial data set of the data in the header part, executes the matching process, and further generates the one or more header partial check values generated above. It is characterized in that data verification is performed by generating a total check value based on a data string composed of content block data constituting a part of the data and executing a collation process. '
- one embodiment of the data processing method of the present invention is characterized in that after the data is verified, a process of storing the verified data in a recording device is further included. Further, in one embodiment of the data processing method of the present invention, in the collation processing of the partial check value, when collation is not established, a control for stopping the storage processing to the recording device is executed. I do.
- one embodiment of the data processing method of the present invention is characterized in that the method includes a data reproducing process of reproducing data after verifying the data.
- the collation processing of the partial check value only the collation processing of the header partial check value of the data is executed.
- the data for which the matching of the header partial check value has been established is transferred to the above-mentioned reproduction processing unit, and a control for enabling reproduction is performed.
- a fourth aspect of the present invention is a data processing method for processing content data provided by a storage medium or a communication medium, and when the data to be verified is encrypted data, decrypts the encrypted data.
- the arithmetic processing is performed on the decrypted data obtained by the processing, and the cryptographic processing using the signature key is performed on the arithmetic processing result data obtained by the arithmetic processing, whereby the check value of the data to be verified is obtained.
- the data processing method is characterized by generating
- the arithmetic processing is a processing of performing an exclusive OR operation on the decrypted data obtained by decrypting the encrypted data in a predetermined byte unit.
- a fifth aspect of the present invention is a method for assigning a data verification value for data verification processing, wherein a partial check value is used as a check value for a partial data set including one or more partial data obtained by dividing data into a plurality of parts.
- the partial check value is a value generated by a symbol process using a partial data to be checked as a message and applying a partial check value generation key.
- the intermediate check value described above uses a partial check value set data string to be checked as a message, and the total check value generation key Characterized in that it is a value generated by the use the cryptographic processing.
- the partial check value is generated by applying a different type of partial check value generation key corresponding to the partial check value to be generated. I do.
- the encryption processing is DES encryption processing.
- the partial check value is a message recognition fjE code (MAC) generated in the DES-CBC mode using partial data to be checked as a message.
- the intermediate check value is a message authentication code (MA C) generated in the DES-CBC mode using the partial check value set data string to be checked as a message.
- a value generated by encryption processing applying a signature key to the intermediate check value is applied as a collation value for data verification.
- a different signature key is applied to the encryption processing for the intermediate check value according to the data use restriction mode to make a comparison value for data verification.
- the signature key is a common signature key common to all entities of the system that executes the data verification process, and each device that executes the data verification process A unique device-specific signature key is set so as to be selected and used according to the data use restriction mode.
- the partial check value includes one or more header partial check values generated for data in a header part constituting a part of the data, Including one or more content check values generated for the data in the content part that constitutes the part, the above-mentioned header partial check value and the total check value for all of the above content check values are generated and data verification is executed. Is set.
- the partial check value includes one or more header partial check values generated for data in a header part forming a part of the data, It is characterized in that data verification is performed by generating a total check value for all of the data string consisting of the one or more header partial check values and the content block data constituting a part of the data. You You.
- a sixth aspect of the present invention is a program providing medium for providing a computer program which causes a computer to execute data verification processing for performing data validity verification on a system. Performing a verification process of the partial data by collating a partial check value generated as a check value for a partial data set including at least one partial data obtained by dividing the data into a plurality of partial data, and combining a plurality of the partial tucking values Executing a verification process on the entire partial data sets corresponding to the partial check values constituting the partial check value set, using an intermediate check value generated based on the partial check value set
- a program providing medium characterized by including:
- a seventh aspect of the present invention is a data processing device, comprising: an encryption processing unit that performs at least one of data encryption, data decryption, data verification, authentication processing, and signature processing; A storage unit that stores a master key for generating a key applied to the symbol processing, wherein the encryption processing unit stores an individual key required to execute the encryption processing, the master key, A data processing apparatus characterized in that the data processing apparatus has a configuration for generating the data based on identification data of a device or data to be subjected to encryption processing. Further, in one embodiment of the data processing device of the present invention, the data processing device is a data processing device that performs an encryption process on transfer data via a storage medium or a communication medium, and the storage unit stores the transmission data.
- the storage unit stores a distribution key generation master key MK dis that generates a distribution key K dis applied to the ⁇ signal processing, and the encryption processing unit transmits the distribution key generation master key MK dis stored in the storage unit and the transfer
- the present invention is characterized in that a cryptographic process is executed based on a data identifier which is data identification data to generate a delivery key K dis for the transfer data.
- the data processing device is a data processing device that performs an authentication process of an external connection device that is a transfer destination or a transfer source of transfer data. Generate the authentication key Kake for the external connection device
- the encryption processing unit stores the authentication key generation master key MKake to be generated, and the authentication key generation master key MKake stored in the storage unit and the external connection as identification data of the external connection device. It has a configuration in which an encryption key is executed based on a device identifier to generate an authentication key Kake of the externally connected device.
- the data processing device is a data processing device that executes a signature process on data
- the storage unit is a data processing device signature key K dev of the data processing device.
- the cryptographic processing unit stores the signature key generation master key MK de V stored in the storage unit and the identification data of the data processing device. It is characterized in that a cryptographic process is executed based on the data processing device identifier and a data processing device signature key K dev of the data processing device is generated.
- an individual chain generation process for generating an individual key required for performing an encryption process based on the master key and identification data of a device or data to be subjected to the encryption process.
- a cryptographic process in which at least a part of the identification data of the device or data to be subjected to cryptographic processing is used as a message, and the master key is used as a cryptographic key.
- the encryption processing is an encryption processing to which a DES algorithm is applied.
- an eighth aspect of the present invention is a data processing system comprising a plurality of data processing devices, wherein each of the plurality of data processing devices performs data encryption, data decryption, data verification, and authentication processing.
- a common master key for generating a key to be applied to at least one of the signature processing and the encryption processing, wherein each of the plurality of data processing devices identifies the master key and a device or data to be subjected to the encryption process.
- the data processing system is characterized in that it has a configuration for generating a common individual key required for executing the above-mentioned encryption processing based on data.
- the plurality of data processing devices include: a content data providing device that provides content data; - co that utilizes the data: is constituted by over data utilizing device, con - data providing apparatus Contact Yopiko: - both the data utilization device, distribution content De between the near point Ddeta providing apparatus and co data utilizing apparatus
- the content data providing apparatus further includes a delivery key generation master key for generating a co-delivery key to be applied to the data processing of the data, and the content data providing apparatus includes: a delivery key generation master key; A content data delivery key is generated based on the content identifier, which is an identifier, and the content data is encrypted.
- the content data using device transmits the content key using the delivery key generation master key and the provided content data.
- the content data providing device includes a plurality of different distribution key generation master keys for generating a plurality of different content data distribution keys; A plurality of different content data delivery keys are generated based on one delivery key generation master key and the content identifier described above, and an encryption process is performed using the plurality of generated delivery keys to generate a plurality of types of encrypted content data.
- the content data utilization device has at least one distribution key generation master key of a plurality of different distribution key generation master keys of the content data provision device, and has its own distribution key generation master key. Can decrypt only encrypted content data using a distribution key generated using the same distribution key generation master key as It characterized by having a a configuration.
- the same content key generation master key for generating a content key applied to content data encryption processing is provided.
- the data is encrypted by the content key generated based on the content key generation master key and the device identifier of the data processing device A.
- Content data stored in the storage medium can be transferred to a different data processing device.
- the device B generates a content key based on the same content key generation master key and the device identifier of the data processing device A. Based on the generated content key, the data processing device A It is characterized by executing decryption processing of the encrypted content data stored in the storage medium.
- the plurality of data processing devices are configured by a host device and a slave device to be subjected to authentication processing of the host device; Both of the devices have an authentication key generation master applied to an authentication process between a host device and a slave device, and the slave device has the authentication key generation master key and a slave that is an identifier of the slave device.
- An authentication key is generated based on the device identifier and stored in the memory in the slave device, and the host device uses the authentication key generation master key and the slave device identifier as the identifier of the slave device. It has a configuration to generate an authentication key and execute the authentication process. Sign. '
- a ninth aspect of the present invention in a data processing method for performing at least one of data encryption, data decryption, data verification, authentication processing, and signature processing, A master key for generating a key to be applied to the above-mentioned cryptographic processing, which is an individual key required for execution; a key generation step for generating based on identification data of a device or data to be subjected to cryptographic processing; And a cryptographic processing step of performing cryptographic processing based on the key generated by the generating step.
- the data processing executed in the data processing method is a cryptographic process for transfer data via a storage medium or a communication medium
- the key generation step includes A cryptographic process is performed based on a distribution key generation master key MKdis for generating a distribution key Kdis applied to the cryptographic process and a data identifier which is the identification data of the above-mentioned transfer data, and the above-mentioned transfer data is distributed.
- This is a distribution key generation step for generating a key K dis
- the step is a step of executing the encryption processing of the transfer data based on the distribution key K dis generated in the distribution key generation step.
- the data processing executed in the data processing method is an authentication process of an externally connected device that is a transfer destination or a transfer source of the transfer data
- the generating step executes an encryption process based on an authentication key generation master key MKake for generating the authentication key Kake of the external connection device and an external connection device identifier which is identification data of the external connection device.
- generating an authentication key K ake of the external connection device is performed based on the authentication key K ake generated in the authentication key generation step.
- the authentication process is performed.
- the data processing executed in the data processing device is a signature process for data
- the key generation step includes a data processing device signature of the data processing device.
- a signature for generating dev A cryptographic process is performed based on the master key MK de V for generating a key and a data processing device identifier which is identification data of the data processing device, and the data processing device signature of the data processing device is executed.
- This is a signature key generation step of generating a key K dev
- the encryption processing step is a step of executing a signature processing on data based on the signature key K dev generated in the signature key generation step.
- the key generation step includes a step of performing at least a part of identification data of a device or data to be subjected to encryption processing as a message, and applying the master key as an encryption key. It is characterized by the following.
- the encryption processing is an encryption processing to which a DES algorithm is applied.
- a tenth aspect of the present invention is a data processing method in a data processing system comprising a content data providing device for providing content data and a content data using device for using the content data.
- the data providing device generates a content data delivery key based on a delivery key generation master key for generating a content data delivery key applied to content data encryption processing, and a content identifier which is an identifier of the provided content data.
- the content data encryption device executes an encryption process of the content data.
- the data processing method is characterized in that the content data is generated and the content data is decrypted.
- the content data providing device has a plurality of different distribution key generation master keys for generating a plurality of different content data distribution keys, and A plurality of different content data delivery keys are generated based on the delivery key generation master key and the content identifier, and encryption processing is performed using the plurality of generated delivery keys to execute a plurality of types of encrypted content data.
- the content data utilization device has at least one distribution key generation master key of a plurality of different distribution key generation master keys of the content data providing device, and has its own distribution key generation Generates the same delivery key as the master key for decryption Decrypts only the encrypted content data with the delivery key generated using the master key for master And features.
- a first aspect of the present invention is a data processing method in a data processing system constituted by a plurality of data processing devices.
- the content data encrypted by the content key generated based on the content chain generation master key for generating the content key applied to the content data encryption process and the device identifier of the data processing device A is stored in the storage medium.
- the same content key as the content key based on the same content key generation master key as the data processing device A and the device identifier of the data processing device A Generating a content key; and storing the content key using the content key generated in the data processing device B.
- a data processing method characterized by having:
- a twelfth aspect of the present invention is a data processing method in a data processing system including a host device and a slave device to be subjected to authentication processing of the host device.
- An authentication key is generated based on an authentication key generation master key for generating an authentication key applied to an authentication process between the device and the slave device, and a slave device identifier which is an identifier of the slave device.
- An authentication key is stored in a memory in the slave device, and the host device generates an authentication key based on the master key for generating an authentication chain and a slave device identifier that is an identifier of the slave device.
- the data processing method is characterized by performing an authentication process.
- a computer for executing, on a computer system, encryption processing for executing at least one of data encryption, data decryption, data verification, authentication processing, and signature processing.
- a program providing medium for providing a program, wherein the computer program includes a master key for generating an individual key required for performing an encryption process and a key for applying the encryption process, and a cryptographic key.
- a key generation step generated based on the identification data of the device or data to be processed, and a cryptographic processing step of performing cryptographic processing based on the key generated in the key generation step. It is in the program providing medium which is the feature.
- a fourteenth aspect of the present invention is a data processing device for processing content data provided by a storage medium or a communication medium, the storage unit storing a data processing device identifier, and an unauthorized device included in content data.
- a list verification unit that extracts a list and executes a matching process between an entry in the list and the data processing device identifier stored in the storage unit; and a result of the matching process in the matching processing unit.
- a control unit for stopping execution of at least one of the processing of reproducing the content data and the processing of storing the content data in the recording device when the information matching the data processing identifier is included in the unauthorized device list.
- the list verification unit has an encryption processing unit that performs encryption processing on the content data, and the encryption processing unit is included in the content data.
- the unauthorized device list is verified for tampering based on a check value of the unauthorized device list to be tampered with, and the verification process is executed only when it is determined by the verification that there is no tampering.
- the data processing device has an unauthorized device list check value generation key, and the encryption processing unit performs processing on the unauthorized device list configuration data to be verified.
- the list verification unit has an encryption processing unit that performs encryption processing on the content data, and the encryption processing unit is included in the content data. Decryption processing of the encrypted unauthorized device list to be performed, and performing the above-described collation processing on the unauthorized device list obtained as a result of the decryption process.
- the list verification unit includes a cryptographic processing unit that executes a mutual authentication process with a recording device that is a transfer destination or a transfer source of the content data, The list verification unit extracts and stores the unauthorized device list included in the content data on condition that authentication by the mutual authentication process with the recording device executed by the encryption processing unit is established. And performing a collation process with the data processing device identifier stored in the unit.
- a fifteenth aspect of the present invention is a data processing method for processing content data provided by a storage medium or a communication medium, and a list extracting step of extracting a fraudulent device list included in the content data;
- List extraction above A collation processing step for performing collation processing between an entry included in the list extracted by the step and the data processing device identifier stored in the storage unit in the data processing device;
- the data processing method further includes verifying whether the unauthorized device list has been tampered with based on a check value of the unauthorized device list included in the content data.
- a verification step is included, and the collation processing step is performed only when the verification step determines that there is no tampering.
- the verifying step includes performing an encryption process using an unauthorized device list check value generation key on the unauthorized device list configuration data to be verified to check the unauthorized device list. Generating a value, verifying the generated unauthorized device list check value against a check value of the unauthorized device list included in the content data, and verifying whether the unauthorized device list has been tampered with. And characterized in that:
- the data processing method further includes a decryption step of performing a decryption process of an encrypted unauthorized device list included in the content data;
- the processing step is characterized in that the collation processing is performed on the unauthorized device list obtained as a result of the decryption step.
- the data processing method further includes a mutual authentication processing step with a recording device that is a transfer destination or a transfer source of the content data
- the collation processing step includes: The collation processing is executed on condition that the authentication by the mutual authentication processing with the recording device executed in the mutual authentication processing step is established.
- a sixteenth aspect of the present invention is a content data generation method for generating content data provided to a plurality of recording / reproducing devices by a storage medium or a communication medium, and the content data generation method includes header information of the content data.
- the content data generation method is characterized in that an unauthorized device list including a recording / reproducing device identifier of a recording / reproducing device to be excluded from use of content data as configuration data is stored as content data.
- an unauthorized device list check value for falsification check of the unauthorized device list is stored as header information of the content data.
- the unauthorized device list is encrypted and stored in the header information of the content data.
- a seventeenth aspect of the present invention is a program providing medium for providing a computer program that causes a computer system to execute processing of content data provided by a storage medium or a communication medium.
- the program includes: a list extraction step for extracting a list of unauthorized devices included in the content data; an entry included in the list extracted by the list extraction step; and the data processing stored in the storage unit in the data processing device.
- Storage processing for recording devices In program providing medium characterized by having a step to stop the execution of any one of the processes.
- an eighteenth aspect of the present invention is a data processing device for processing content data provided by a storage medium or a communication medium, and an encryption processing unit for performing an encryption process on the content data; A control unit that controls the cryptographic processing unit; and a control unit that is used for cryptographic processing in the cryptographic processing unit.
- a system common key common to other data processing devices that use data a device unique key unique to the data processing device used for encryption processing in the above-mentioned symbol processing unit, or a device unique key for generating the device private key.
- the cryptographic processing unit has at least one of an identifier and the cryptographic processing unit applies the system common key or the device unique key to the content data according to the usage mode of the content data.
- the data processing device has a configuration for performing the following.
- the encryption processing unit may transmit either the system common key or the device unique key in accordance with the use restriction information included in the content data. It is characterized in that it has a configuration to execute encryption processing by applying to data.
- the data processing device further includes a recording device for recording content data
- the encryption processing unit stores the content data in only its own data processing device.
- the content data is subjected to symbol processing using the device unique key to generate data to be stored in the recording device, and the content data is subjected to its own data processing.
- the content data is subjected to an encryption process using the system common key to generate data to be stored in the recording device. .
- the data processing device has a signature key K de V unique to the data processing device and a system signature key K sys common to a plurality of data processing devices.
- the cryptographic processor applies the above-mentioned device-specific signature key K dev to the above-mentioned content data.
- the system signature key K sys is applied to the content data.
- a total check value is generated by cryptographic processing, and the control unit. And executing a control for storing either the device-specific check value or the total check value generated in the recording device together with the content data in the recording device.
- the data processing device has a signature key K dev unique to the data processing device and a system signature key K sys common to a plurality of data processing devices.
- the signal processing unit performs encryption processing by applying the device-specific signature key K dev to the content data.
- the unique check value is generated, the generated device-specific check value is collated, and the content data with the use restriction that can be used in the device other than the own data processing device is reproduced.
- a total check value is generated by signal processing applying the above system signature key K sys to the content data, and the generated total check value is generated.
- the control unit executes value comparison processing, and the control unit continues the processing of the content data in the encryption processing unit only when the comparison of the device-specific check value is established or when the comparison of the total check value is established. And generating reproducible decoded data.
- the data processing device has a recording data processing device signature key master key MK dev and a data processing device identifier ID dev, and the encryption processing unit A signature key K dev as a data processing device unique key is generated by performing a signal processing based on the data processing device signature key master key MK dev and the data processing device identifier ID de V.
- the encryption processing unit performs the DES encryption process by applying the data processing device signature chaining master key MK dev to the data processing device identifier ID dev.
- the signature key K dev is generated.
- the encryption processing unit includes: An encryption process is performed on the content data to generate an intermediate check value, and an encryption process is performed by applying the data processing device unique key or the system shared key to the intermediate check value.
- the encryption processing unit generates a partial check value by performing an encryption process on a partial data set including one or more partial data obtained by dividing the content data into a plurality of parts, An intermediate check value is generated by encrypting a partial check value set data string including the generated partial check value.
- a nineteenth aspect of the present invention is a data processing method for processing content data provided by a storage medium or a communication medium, and uses the content data according to a usage mode of the content data. Select either the encryption processing system common key common to other data processing devices or the encryption key specific to the data processing device, and apply the selected encryption key to the above content data to encrypt A data processing method characterized by performing a process.
- the step of selecting the symbol processing key is a step of selecting according to use restriction information included in the content data.
- a use restriction may be imposed on use of the content data only by its own data processing device.
- the content data is subjected to an encryption process using the system common key to generate storage data for the recording device.
- a device-specific check is performed on the above content data by performing cryptographic processing using the device-specific signature key K dev If a value is generated and the above-mentioned content data is stored in the above-mentioned recording device as being usable in equipment other than its own data processing device, encryption processing using the above-mentioned system signing key K sys for the above-mentioned content data Thus, a total check value is generated, and either the generated device-specific check value or the total check value is stored in the recording device together with the content data.
- the content data whose use is restricted only for its own data processing device is reproduced. Then, a device-specific check value is generated by performing a signal process that applies the device-specific signature key K dev to the content data, and a verification process of the generated device-specific check value is performed.
- a total check value is generated by encrypting the content data by applying the system signature key K sys, If the verification processing of the generated total check value is executed and the verification of the device-specific check value is established, Wherein the verification of the total check value to perform the reproduction of the content data only when a condition is satisfied.
- a signature key K dev as a data processing device unique key is obtained by performing cryptographic processing based on the data processing device signature key master key MK dev and the data processing device identifier ID dev. It is characterized by including a generating step.
- the step of generating the signature key K dev includes a DES encryption process in which the data processing device signature key master key MK dev is applied to the data processing device identifier ID dev. Generating the signature key K dev from Further, in one embodiment of the data processing method of the present invention, the data processing method further includes a step of executing an encryption process on the content data to generate an intermediate check value, wherein the data processing is performed on the intermediate check value. It is characterized by executing encryption processing using a device unique key or a system shared key.
- the data processing method further comprises: generating a partial pick value by performing an encryption process on a partial data set including at least one partial data obtained by dividing the content data into a plurality of parts. It is a special feature to generate an intermediate check value by performing cryptographic processing on the partial chip value set data string including the generated partial chip value.
- a 20th aspect of the present invention is a program providing medium for providing a computer program for causing a computer system to execute data processing for processing content data provided by a storage medium or a communication medium.
- the computer program may execute a symbol processing system common key common to other data processing devices that use the content data, or a device specific device unique to the data processing device, depending on a usage mode of the content data.
- a program providing medium comprising: a step of selecting one of the encryption processing keys of a key; and a step of performing encryption processing by applying the selected encryption processing key to the content data.
- a twenty-first aspect of the present invention is a data processing device for processing content data provided by a storage medium or a communication medium, and an encryption processing unit for performing an encryption process on the content data; A control unit that controls the cryptographic processing unit.
- the cryptographic processing unit generates a content check value for each unit of the verification target content data included in the data, and performs a collation process of the generated content check value.
- the data processing device is characterized in that the data processing device has a configuration of executing a validity verification process in units of content block data in the data by executing the above.
- the data processing device Has a content check value generation key
- the encryption processing unit generates a content intermediate value based on the content block data to be verified, and performs an encryption process using the content check value generation key for the content intermediate value. Is executed to generate the content value.
- the encryption processing unit when the content block data to be verified is encrypted, performs a predetermined process on the entire decrypted text obtained by decrypting the content block data.
- a predetermined arithmetic processing is performed on a byte-by-byte basis to generate a content intermediate value. If the content block data to be verified is not decoded, the entire content block data is subjected to a predetermined arithmetic processing on a predetermined byte-by-byte basis, and the content is processed. It is characterized by a configuration that generates an intermediate value 3 ⁇ 4r.
- the predetermined arithmetic processing applied in the generation processing of the intermediate check value in the encryption processing unit is an exclusive OR operation.
- the encryption processing unit has a symbol processing configuration in a CBC mode, and a content intermediate value generation process when the content block data to be verified is encrypted.
- the decoding process applied to the above is a decoding process in the CBC mode.
- the encryption processing configuration in the CBC mode included in the encryption processing unit employs the multiple-time common key encryption processing only in a part of a message string to be processed.
- the encryption processing unit may include a case where the content block data includes a plurality of parts, and some of the parts included in the content block data are to be verified.
- step (1) a content check value is generated based on the verification target packet, and a verification process of the generated content check value is performed, thereby executing the validity verification process for each content block data unit in the data. It is characterized by having the structure which does.
- the encryption processing unit includes a plurality of parts included in the content block data and a single verification-required part to be verified. If the part is encrypted, execute the encryption process by applying the content check value generation key to the value obtained by exclusive-ORing the entire decrypted text obtained by decryption processing of the verification-required part in specified byte units. If a content check value is generated and the above-mentioned verification-required parts are not encrypted, a value obtained by performing an exclusive-OR operation on the whole of the verification-required parts in a predetermined byte unit is encrypted by applying the above-mentioned content check value generation key. It is characterized in that a content check value is generated by executing processing.
- the encryption processing unit when the content block data includes a plurality of parts and the verification target includes a plurality of verification-required parts, the encryption processing unit includes: The result obtained by executing the encryption processing using the above-mentioned content check value generation key on the concatenated data of the part check values obtained by executing the encryption processing by applying the content check value generation It is characterized in that it is a configuration with a value.
- the data processing device further includes a recording device for storing content data including content block data that has been verified by the encryption processing unit.
- the control unit in the collation processing of the content check value in the cryptographic processing unit, if the collation is not established, transmits to the recording device. It is a special feature that it has a configuration to stop the storage processing of. .
- the data processing device further includes a reproduction processing unit that reproduces the data whose validity has been verified in the encryption processing unit.
- the data processing device Is characterized in that, in the collation processing of the content check value in the encryption processing unit, if the collation is not established, the control unit has a configuration to stop the reproduction processing in the reproduction processing unit. .
- a twenty-second aspect of the present invention is a data processing method for processing content data provided by a storage medium or a communication medium, and includes a content check value for each content block data to be verified included in the data.
- the data processing method is characterized in that a validity verification process is executed for each content lock data in the data by generating a content check value and executing a collation process of the generated content check value.
- the data processing method generates a content intermediate value based on the content block data to be verified, and applies a content check value generation key to the generated content intermediate value. It is characterized in that a content check value is generated by executing an encryption process.
- the data processing method when the content block data to be verified is encrypted, the entire decrypted text obtained by the decryption processing of the content lock data is transmitted. A predetermined arithmetic processing is performed in predetermined byte units to generate a content intermediate value, and if the content block data to be verified is not encrypted, the entire content block data is subjected to predetermined calculation processing in predetermined byte units and the content intermediate value is calculated. It is characterized by generating values.
- the predetermined arithmetic processing applied in the generation processing of the intermediate check value is an exclusive OR operation.
- the decryption processing applied to the content intermediate value generation processing in a case where the content block data to be verified is encrypted, It is characterized by the decoding process in CBC mode. Further, in one embodiment of the data processing method of the present invention, the decryption processing configuration in the CBC mode is characterized in that the common key encryption processing is applied only to a part of a message sequence to be processed. .
- the data processing method when the content block data includes a plurality of parts, and some of the parts included in the content block data are to be verified, A content check value is generated based on the verification target part, and a verification process of the generated content check value is executed, thereby executing a validity verification process for each content block data unit in the data.
- the verification required part when it is encrypted, it performs a signal process that applies the content check value generation key to the value obtained by XORing the entire decrypted text obtained by decryption processing of the verification required parts in predetermined byte units.
- a content check value is generated and the above verification required parts are not encrypted, a value obtained by performing an exclusive OR operation on the entire verification required parts in predetermined byte units is encrypted by applying the above content check value generation key. It is characterized by executing a process to generate a content check value.
- the data processing method when the content block data includes a plurality of parts, and a plurality of verification-required parts to be verified are included,
- the result obtained by further executing the encryption processing by applying the above-mentioned content check value generation key to the linked data of the part check values obtained by performing the encryption processing by applying the check value generation key It is characterized as a content check value.
- the data processing method further includes a step of storing content data including content block data on which the validity has been verified. Further, in one embodiment of the data processing method of the present invention, the data processing method further includes: in the collation processing of the content check value, when the collation is not established, the control unit stores the data in the recording device. It is characterized by stopping the processing.
- the data processing method further includes a step of executing a reproduction process of reproducing the data on which the validity has been verified.
- the data processing method is characterized in that, in the collation processing of the content check value, when the collation is not established, the reproduction processing is stopped.
- a twenty-third aspect of the present invention is a content data verification value assigning method for content data verification processing, wherein a content check value is generated for each content block data to be verified included in data, and the generated content is generated.
- a method for assigning a check value to content data including content block data to be verified is characterized by providing a content data verification value assigning method.
- the content check value is generated by a cryptographic process using a content block data to be checked as a message and applying a content check value generation key. Value.
- the content check value includes generating a content intermediate value based on the content block data to be verified, and performing the content check on the content intermediate value. It is a value generated by performing encryption processing using a value generation key. Further, in one embodiment of the content data verification value assigning method of the present invention, the content check value is a value generated by executing a symbol processing in the CBC mode on the content block data to be verified.
- the encryption processing configuration in the CBC mode described above includes a multiple-time common key code only in a part of a message sequence to be processed.
- the content lock data includes a plurality of parts, and the content lock data includes a plurality of parts.
- a content check value is generated based on the parts to be verified, and the generated content check value is added to the content data including the content block data to be verified.
- the content block If the data contains multiple parts and there is only one part to be verified that is to be verified, and if the above parts to be verified are encrypted, the entire decrypted text obtained by decrypting the parts to be verified is required.
- a content check value is generated by performing an encryption process by applying a content check value generation key to a value obtained by performing an exclusive OR operation on a predetermined byte unit, and if the above verification required parts are not encrypted, the relevant verification required parts are used.
- a content check value is generated by performing an encryption process using the above content check value generation key to generate a content check value, and the generated content check value includes the content block data to be verified. It is characterized by being added to content data.
- the content data verification value assigning method when the content block data includes a plurality of parts and there are a plurality of verification required
- the concatenation data obtained by applying the content check value generation key to the concatenated data of the part check values obtained by applying the content check value generation key The result is a content check value, and the generated content check value is added to the content data including the content lock data to be verified.
- the twenty-fourth aspect of the present invention is provided by a storage medium or a communication medium.
- a twenty-fifth aspect of the present invention is directed to a storage data storage device for recording a content data having a plurality of content blocks of which at least a part of the blocks are encrypted, and a header portion storing information relating to the content block.
- a data processing device that performs a process of generating the content block.
- the data processing device performs a sign processing of the encryption key Kcon of the content block with the encryption key Kdis for the content data to be stored in the recording device.
- the encryption key data Kd is [K con] is constituted by data stored in the header section
- the encryption key data Kd is [K con] is extracted from the header section and decrypted by executing decryption processing 3 ⁇ 4.
- the data Kcon is generated, and a different encryption key Kstr is applied to the generated decrypted data Kcon to perform the signal processing.
- a configuration is provided in which new encryption key data K str [K con] that has been subjected to symbol processing with the encryption key K str is generated and stored in the header section of the content data.
- a plurality of content locks in which at least a part of the blocks are encoded and storage data for a content data recording device having a header section storing information on the content blocks are generated.
- a data processing device that executes a process for performing the above-described processing.
- the data processing device is a device in which the content block included in the content data to be stored in the recording device is a content in which the content block is encrypted with a symbol key Kb 1 c And the encryption key data K con [Kb 1 c] encrypted with the encryption key K con, and the encryption key K .
- the # key data Kd is [K con]
- the decrypted data K con is generated by performing decryption processing by taking out from the header part, and performing a decryption process by applying a different decryption key K str to the generated decrypted data K con to perform encryption.
- a data processing device having a configuration for generating encryption key data K str [K con] encrypted by a key K str and storing the generated encryption key data in a header section of the content data.
- a twenty-seventh aspect of the present invention provides a content data storage device having a plurality of content blocks in which at least a part of the blocks are encrypted, and a content data storage device having a header unit storing information related to the content blocks.
- a data processing device that performs a process of generating the content data, and the data processing device is encrypted by the content block power S and the encryption key Kb 1 c included in the content data to be stored in the recording device.
- the above-mentioned encrypted chain data Kd is [Kb 1 c] is transmitted from the content block section.
- the decrypted key Kb 1 c is decrypted to generate decrypted data Kb 1 c by performing a decryption process on the encrypted key Kb 1 c.
- a key key K str [Kb 1 c] encrypted with the encryption key K str is generated and stored in the content block.
- a twenty-eighth aspect of the present invention is a content data generating method for generating content data, wherein a plurality of content blocks configured by data including at least one of audio information, image information, and program data are provided. Blocks are concatenated, and at least some of the content blocks included in the plurality of content blocks are subjected to encryption processing using an encryption key K con, and decryption key data obtained by encrypting the encryption key K con using a decryption key K dis Generate Kd is [K con] and create the above content
- the content data generation method is to store content data in a header portion and generate content data including a plurality of content blocks and a header portion.
- identification information of the content data is characterized by including a process of generating block information storing information including the presence / absence of management and storing the generated block information in the header section.
- the content data generation method further includes: generating a partial check value based on a part of information constituting the header portion; Storing in the header section, generating a total check value based on the partial check value, and storing the total check value in the header section.
- the data to be checked is a message
- the check value generation key is encrypted. It is characterized in that it is executed by applying the DES ⁇ algorithm that is the key.
- the content data generation method further includes encrypting the block information with an encryption key K bit, and converting the encryption key K bit to an encryption key K dis.
- the encryption key data K dis [K bit] generated by the above is stored in the header section.
- each block of the plurality of blocks in the content lock is generated as a common fixed data length.
- each block of the plurality of blocks in the content lock is generated as a configuration in which an encrypted data portion and a non-signature data portion are regularly arranged. It is characterized by.
- a twentieth aspect of the present invention provides a method for generating content data.
- This is a method of generating data, in which a plurality of content blocks including at least one of audio information, image information, and program data are connected, and at least a part of the plurality of content locks is converted into audio information, image information,
- [Kb 1 c] generates encryption key data Kd is [Kc on] obtained by subjecting the encryption key Kc on to the encryption key Kd is and stores it in the header of the content data.
- a content data generation method for generating content data including a plurality of content blocks and a header portion is further provided in a thirtieth aspect of the present invention.
- This is a content data generation method for generating content data, in which a plurality of content blocks including at least one of audio information, image information, and program data are connected, and at least a part of blocks of a plurality of content blocks is connected.
- a symbol data portion obtained by encrypting data including at least one of audio information, image information, and program data with an encryption key Kb1c, and a symbol key Kb1c of the symbol data portion as an encryption key Kd.
- This is a content data generation method configured to generate content data including a plurality of content blocks and a header portion, which is formed by a thread of encryption key data Kd is [Kb 1 c] encrypted by is.
- a storage device for recording content data having a plurality of content blocks in which at least a part of the blocks are encrypted, and a header portion storing information related to the content blocks.
- This is a data processing method for executing processing, and the content data to be stored in the recording device is encryption key data Kd is [Kc on Is composed of the data stored in the header part, the encryption key data Kd is [Kc on] is taken out from the header part and decryption processing is performed to generate decrypted data K con, By applying a different key code K str to the generated decrypted data K con and performing cryptographic processing, new cryptographic key data K str [K con] encrypted by the cryptographic key K str is obtained. Generating the encryption key data K str [K con] in a header portion of the content data, and storing the encrypted key data K str [K con] in the recording device together with the plurality of content blocks. .
- the content block contained in the content to be stored in the recording device is composed of the content encrypted by the encryption key Kb 1 c and the encryption key K con Key data K con [K b 1 c], and encryption key data Kd is [Kc on] obtained by encrypting the encryption key K con with the encryption key K dis is stored in the header section.
- the encryption key data Kd is [Kc on] is taken out from the header portion and decryption processing is performed to perform decryption data K con
- decryption processing is performed to perform decryption data K con
- the encryption key data K str [K con And storing the generated encryption key data K str [K con] in the header of the content data, and storing the generated encryption key data in the recording device together with the plurality of content blocks. It is in.
- a storage device for recording content data having a plurality of content blocks, at least some of which blocks are encrypted, and a header portion storing information related to the content blocks.
- This is a data processing method that executes processing, and the content block contained in the content to be stored in the recording device is encrypted with the encryption key Kb1c and the content block.
- Key data Kd is [K b 1 c]
- the encryption key data Kd is [K b 1 c] is taken out from the content block unit
- the encryption key Kb 1 c is decrypted to perform decryption data Kb 1 c by applying a different symbol key K str to the generated decrypted data Kb.1 c to perform symbol processing, whereby an encryption key K str [ Kb 1 c] is generated, the generated encryption key K str [Kb 1 c] is stored in the content block section, and stored in the recording device together with a plurality of content blocks. is there.
- a thirty-fourth aspect of the present invention is directed to a content data storage device having a plurality of content blocks, at least some of which are encrypted, and a content data recording device having a header section storing information relating to the content block.
- the encryption key data Kd is [K con] obtained by subjecting 0 11 to the encryption key 1 ⁇ (1 is is configured by data stored in the header portion
- the encryption key data Kd is [K con on ] Is extracted from the above header
- decryption processing is executed to generate decrypted data Kcon
- performing encryption processing by applying a different encryption key K str to the generated decryption data K con to obtain new encryption key data K str encrypted by the encryption key K str [K con] and storing the generated encryption key data K str [K con] in the header of the content data.
- a data processing apparatus for performing a process of reproducing content data provided by a storage medium or a communication medium, the content processing device comprising: Performs content data analysis of compressed content and decompression processing And a decompression process of compressed content included in the content data using a decompression program included in the content data obtained as an analysis result of the content data analysis unit. And a decompression processing unit.
- a data storage unit for storing the compressed content extracted by the content data analysis unit and a decompression processing program extracted by the content data analysis unit are stored.
- the content data analysis unit obtains configuration information of the content data based on header information included in the content data and analyzes the content data. It is characterized by having a configuration.
- the decompression processing unit when the header information includes reproduction priority information of the compressed content, and the decompression processing unit includes a plurality of compressed contents to be subjected to decompression processing,
- the decompression processing unit is configured to sequentially execute content decompression processing in accordance with the priority based on the priority information in the header information obtained by the content data analysis unit.
- the data processing device further comprises a display unit for displaying information of the compressed content to be subjected to decompression processing, and content information displayed on the display unit.
- Input means for inputting the reproduced content identification data
- the decompression processing section performs decompression processing of the compressed content corresponding to the identification data based on the reproduced content identification data input from the input means. It is characterized in that it is configured to execute.
- a sixth aspect of the present invention is provided by a storage medium or a communication medium.
- a data processing device that performs content data reproduction processing, receives content data including either a compression core or a decompression processing program, and receives the content data from the header information included in the received content data, and the content data is compressed content. And if the content data is compressed content, obtain the type of compression processing program applied to the compressed content from the header information of the content data.
- the decompression processing program includes a content data analysis unit that obtains a decompression processing program type from the header information of the content data, and a decompression processing unit that executes decompression processing of the compressed content.
- a decompression processing program applicable to the type of compression processing program for compressed content is selected based on the type of decompression processing program analyzed by the content data analysis unit, and decompression processing by the selected decompression processing program is performed.
- the data processing device In the data processing device.
- the data processing device further includes a data storage unit that stores the compressed content extracted by the content data analysis unit, and a content data analysis unit.
- the header information includes playback priority information of the compressed content, and when there are a plurality of compressed contents to be expanded,
- the decompression process is characterized in that the decompression process is sequentially executed in accordance with the priority based on the priority information in the header information acquired by the content data analysis unit.
- the data processing device has a search unit for searching for a decompression processing program, and the search unit includes The decompression processing program applicable to the compression processing program type of the compressed content analyzed by the data analysis unit is searched by using the program storage means accessible by the data processing device as a search target. I do.
- the data processing device further comprises a display unit for displaying information of the compressed content to be subjected to decompression processing, and content information displayed on the display unit.
- Input means for inputting the reproduced content identification data
- the decompression processing section performs decompression processing of the compressed content corresponding to the identification data based on the reproduced content identification data input from the input means. It is characterized in that it is configured to execute.
- a 37th aspect of the present invention is a data processing method for performing a reproduction process of content data provided by a storage medium or a communication medium, and includes a compressed content and a program for decompressing the compressed content. Executing a content data analysis of the content data, extracting a compressed content from the content data, and a content data analyzing step of extracting a decompression processing program; and a content data obtained as an analysis result of the content data analyzing step. A decompression processing step of performing decompression processing of compressed content included in the content data using a decompression processing program.
- the data processing method further includes a data storage step of storing the compressed content extracted by the content data analysis step, and an extraction by the content data analysis unit.
- the content data analyzing step includes a step of: It is characterized in that content data is analyzed by acquiring configuration information of the ten data.
- the decompression processing step is characterized in that, based on the priority information in the header information acquired in the content data analysis step, the content decompression processing is sequentially performed according to the priority.
- the data processing method further includes a display step of displaying information of compressed content to be subjected to decompression processing on a display means, and a content displayed on the display means. And an input step of inputting the reproduction content identification data selected from the information.
- the decompression processing step includes the steps of: executing the identification data based on the reproduction content identification data input in the input step; It is characterized by executing the decompression processing of the compressed content corresponding to.
- a thirty-eighth aspect of the present invention is a data processing method for performing a reproduction process of content data provided by a storage medium or a communication medium.
- the content data including any of the decompression processing programs determines whether the content data is the compressed content or the decompression processing program, and If the data is compressed content, the type of compression processing program applied to the compressed content is obtained from the header information of the content data, and if the content data is a decompression program, the A content data analysis step of acquiring a decompression processing program type from the header information; and a decompression processing program applicable to the compression processing program type of the compressed content analyzed in the content data analysis step, According to A selection step for selecting based on the analyzed decompression processing program type; And a decompression processing step of performing decompression processing by the decompression processing program selected in the selection step.
- the data processing method further includes a data storage step of storing the compressed content extracted by the content data analysis unit, and a data storage step of extracting the compressed content by the content data analysis unit.
- the header information includes playback priority information of the compressed content
- the expansion processing step includes: Based on the priority information in the header information obtained in the content data analysis step, the content data is sequentially executed in accordance with the priority.
- the data processing method further includes a search step of searching for a decompression processing program, wherein the search step is analyzed in the content data analysis step. It is characterized in that a decompression processing program applicable to the compression processing program type of the compressed content is searched by using the accessible program storage means as a search target.
- the data processing method further includes a display step of displaying information of the compressed content to be decompressed on a display means, and a content displayed on the display means.
- a third aspect of the present invention is characterized in that decompression processing of compressed content is executed.
- a content data generation method for generating content data wherein the content data generation method is characterized in that content data is generated by combining compressed content and a decompression program for the compressed content.
- the content data is further provided with configuration information of the content data as header information of the content data.
- the content data includes, as header information, reproduction priority information of the content included in the content data.
- a 40th aspect of the present invention relates to a content data generation method for performing a process of generating content data provided by a storage medium or a communication medium, wherein the content data is a compressed content or an expansion processing program. If the content data is compressed content, the type of the compression processing program applied to the compressed content is added as header information, and the content data is decompressed.
- the content data generation method is characterized by generating content data to which a decompression processing program type is added as header information.
- reproduction priority information of the content included in the content data is added as header information of the content data.
- a forty-first aspect of the present invention is a program providing medium for providing a computer program for causing a computer system to execute a reproduction process of content data provided by a storage medium or a communication medium,
- the content program executes content data analysis of the content data including the compressed content and the decompression processing program of the compressed content, and executes the extraction processing of the compressed content and the decompression processing program from the content data.
- the analysis step and the analysis result of the content data analysis step And a decompression processing step of executing decompression processing of compressed content included in the content data using a decompression processing program included in the content data obtained as described above.
- the program providing medium is, for example, a medium that provides a computer program in a computer-readable format to a general-purpose computer system that can execute various program codes.
- the form of the medium is not particularly limited, such as a storage medium such as CD, FD, and MO, or a transmission medium such as a network.
- Such a program providing medium defines a structural or functional cooperative relationship between the computer and the providing medium for realizing the functions of the predetermined computer on the computer system. is there.
- a cooperative operation is exerted on the computer system, and the same operation and effect as in the other aspects of the present invention are obtained. You can do it.
- the partial check value generated as the check value for the partial data set including one or more partial data obtained by dividing the content data into a plurality of parts is obtained.
- Verification processing of partial data is performed by collation processing, and verification is performed on a partial check value set obtained by combining a plurality of partial check values. Verification processing is performed for the entire partial data set corresponding to the multiple partial check values that make up, so partial verification processing is possible, unlike the configuration in which only a single check value is assigned to the entire content data Also, the entire verification process is performed using the partial check value, so that the process becomes more efficient.
- the possibility of tampering for example, the verification process corresponding to the usage mode of the content data, for example, the download process and the reproduction process, can be performed, such as omitting the verification process for the data portion having no data, and efficient verification according to the usage mode can be performed.
- an individual key required to execute encryption processing such as data decryption, data decryption, data verification, authentication processing, and signature processing is obtained. It has a configuration in which a master key for generating these individual keys is stored in the storage unit without being stored in the storage unit, and the encryption processing unit in the data processing device requires individual keys such as an encryption key and an authentication key. Accordingly, the master key corresponding to those individual keys is extracted from the storage unit, and based on the extracted master key and the identification data of the device or data, for example, the encryption processing applying the DES algorithm is executed, Since individual keys such as an encryption key and an authentication key are generated, there is no possibility that the individual key itself leaks from the storage unit.
- identification data information of an unauthorized device is stored in the content data, and the unauthorized device list and After executing the matching process with the recorder / reproducer identifier of the recorder / player that wants to use the content, as a result of the comparison, an entry that matches the recorder / reproducer identifier exists in the entry included in the unauthorized device list. In such a case, the execution of subsequent processing, such as content data decryption, download, playback processing, etc., is stopped. It is possible to eliminate the illegal use of the content due to.
- the check value for the unauthorized device list in the content data is also included in the content data. Can be prevented, and a more secure content data use configuration can be provided.
- the data processing device such as a PC stores a device unique key unique to the data processing device and a system common key common to other data processing devices that use the content data
- the content according to the content usage restriction is stored. Processing becomes possible.
- the data processing device selectively uses these two keys in accordance with the content usage restrictions. For example, if the content can be used only in the data processing device, use a key unique to the data processing device. On the other hand, if the content can be used in other systems, use the system common key. Perform check value generation and collation processing of. Only when the verification is successful, the encrypted data can be decrypted and reproduced, so that the use of the content such as the content that can be used only by the data processing device or the content that can be commonly used in the system, etc. Processing according to the restriction becomes possible.
- a content check value is generated for each content block data, and a collation process of the generated content check value is executed.
- the content intermediate value is generated based on the content block data to be verified, and the content check value is generated by encryption processing using the content check value generation key.
- verification can be performed in units of content blocks, and the usage of content data, for example, Simple download and playback processing It is possible to perform a simplified verification process, and it is possible to perform an efficient verification according to a use mode.
- the data processing device, the content data generation method, and the data processing method of the present invention have a configuration in which a plurality of content blocks are provided in the content data, and an encryption process can be performed for each content block. Since the key used for content encryption is further encrypted and stored in the header, for example, even if there are multiple content blocks and blocks that require encryption and unnecessary blocks are mixed, It is possible to create an arbitrary data configuration by connecting each block.
- the configuration of the content block is a regular configuration, for example, a configuration having a uniform data length, or an encrypted block and an unencrypted (plaintext).
- a configuration in which blocks and blocks are alternately arranged it is possible to quickly execute the decryption processing and the like, and perform processing in accordance with the content of the content data, for example, encryption suitable for reproduction of music data and the like.
- Content data can be provided.
- the data processing device, the data processing method, and the content data generation method of the present invention can efficiently execute a reproduction process when the content is compressed audio data, image data, or the like.
- the decompression processing using the decompression processing program attached to the compressed content data can be performed in the playback processing device, and the reproduction processing can be performed. It is possible to avoid a situation in which the decompression processing program does not exist in the apparatus and reproduction cannot be performed.
- the configuration of the content data is a combination of the compressed data and the header section storing the type of the compression processing program.
- the content is a decompression program
- the content data is made up of a combination of a decompression program and a header section storing the type of the program, so that the playback processing device can perform compression processing.
- the decompression processing program applicable to the tend data is determined based on the header information. Further, the decompression processing is executed by retrieving the applicable program from a recording device or the like that can be accessed by the reproduction processing device. There is no need to execute a program search process, and efficient playback processing becomes possible.
- FIG. 1 is a diagram showing a configuration of a conventional data processing system.
- FIG. 2 is a diagram showing a configuration of a data processing device to which the present invention is applied.
- FIG. 3 is a diagram showing a configuration of a data processing device to which the present invention is applied.
- FIG. 4 is a diagram showing a data format of content data on a medium and a communication path.
- FIG. 5 is a diagram showing a handling policy included in the header in the content data.
- FIG. 6 is a diagram showing block information included in a header in content data.
- FIG. 7 is a diagram showing a digital signature generation method using DES.
- FIG. 8 is a diagram showing a digital signature generation method using triple DES.
- FIG. 9 is a diagram illustrating an embodiment of a triple DES.
- FIG. 10 is a diagram illustrating a digital signature generation method partially using triple DES.
- FIG. 11 is a diagram showing a processing flow in digital signature generation.
- FIG. 12 is a diagram showing a processing flow in digital signature verification.
- FIG. 13 is a diagram for explaining a processing sequence of a mutual authentication process using the symmetric key encryption technology.
- FIG. 14 is a diagram illustrating a public key certificate.
- FIG. 15 is a diagram for explaining a processing sequence of a mutual authentication process using the asymmetric key encryption technology.
- FIG. 16 is a diagram depicting a processing flow of an encryption processing using the elliptic curve encryption
- FIG. 17 is a diagram depicting a processing flow of a decryption processing using the elliptic curve encryption
- FIG. 18 is a diagram showing a data holding state on the recording / reproducing device.
- FIG. 19 is a diagram showing a data retention state on the recording device.
- FIG. 20 is a diagram showing a flow of a mutual authentication process between the recording / reproducing device and the recording device.
- FIG. 21 is a diagram showing a relationship between a master key of the recording / reproducing device and a corresponding key block of the recording device.
- FIG. 22 is a diagram showing a processing flow in a content download process.
- FIG. 23 is a diagram for explaining a method of generating a check value A: ICVa.
- FIG. 24 is a diagram for explaining a method of generating the check value B: ICVb.
- - Figure 25 is a diagram for explaining how to generate the total tick value and the check value unique to the recording / reproducing device.
- FIG. 28 is a diagram showing a processing flow in content reproduction processing.
- 'FIG. 29 is a diagram for explaining a command execution method in the recording device.
- FIG. 30 is a diagram for explaining a command execution method in content storage processing in the recording device.
- FIG. 31 is a diagram for explaining a command execution method in the content reproduction processing in the recording device.
- FIG. 32 is a diagram illustrating the configuration of the format type 0 of the content data format.
- FIG. 33 is a view for explaining the configuration of the format type 1 of the content data format.
- FIG. 34 is a view for explaining the configuration of the format type 2 of the content data format.
- FIG. 35 is a view for explaining the configuration of format type 3 of the content data format.
- FIG. 36 is a diagram for explaining a generation processing method of the content check value ICVi in the format type 0.
- FIG. 37 is a view for explaining a generation processing method of the content check value ICVi in the format type 1.
- FIG. 38 is a diagram for explaining a method of generating a total check value and a check value specific to a recording / reproducing device in the format .types 2 and 3. ⁇
- FIG. 39 is a diagram showing a processing flow of the content download processing in the format .types 0 and 1.
- FIG. 40 is a diagram depicting a processing flow of a content download processing in the format type 2;
- FIG. 41 is a diagram depicting a processing flow of a content download processing in the format type 3;
- FIG. 42 is a diagram depicting a processing flow of a content reproduction processing in the format type 0;
- FIG. 43 is a diagram depicting a processing flow of a content reproduction processing in the format type 1;
- FIG. 44 is a diagram depicting a processing flow of a content reproduction processing in the format type 2;
- FIG. 45 is a diagram depicting a processing flow of a content reproduction processing in the format type 3;
- FIG. 46 is a diagram (part 1) illustrating a method of generating and verifying a check value by a content creator and a content verifier.
- FIG. 4 is a diagram (part 2) for explaining the verification method.
- FIG. 48 is a diagram (part 3) illustrating a method of generating and verifying a check value by a content creator and a content verifier.
- FIG. 49 is a diagram illustrating a method of individually generating various keys using a master key. .
- FIG. 50 is a diagram (example 1) showing a content provider and an example of processing performed by a user in a method of individually generating various keys using a master key.
- Figure 51 is a diagram (Example 2) showing a content provider and an example of processing performed by a user in a method of individually generating various keys using a master chain.
- FIG. 52 is a diagram for explaining a configuration in which the use restriction is performed by properly using the master key.
- Figure 53 is a diagram (Example 3) showing a content provider and an example of processing performed by the user in the method of individually generating various keys using the master key.
- Fig. 54 is a diagram (Example 4) showing a content provider and an example of processing by a user in a method of individually generating various keys using a master key.
- FIG. 55 is a diagram (example 5) showing a content provider and an example of processing performed by a user in a method of individually generating various keys using a master key.
- FIG. 56 is a diagram showing a processing flow for storing an encryption key to which triple DES is applied by using a single DES algorithm.
- FIG. 57 is a diagram showing a content reproduction processing flow (Example 1) based on the priority order.
- FIG. 58 is a diagram showing a content reproduction processing flow (example 2) based on the priority.
- FIG. 59 is a diagram showing a content reproduction processing flow (Example 3) based on the priority.
- FIG. 60 is a diagram illustrating a configuration for executing a process of decoding (expanding) compressed data in the content reproduction process.
- FIG. 61 is a diagram showing a configuration example (example 1) of content.
- FIG. 62 is a diagram showing a playback processing flow in Content Configuration Example 1.
- FIG. 63 is a diagram illustrating a configuration example (example 2) of content.
- FIG. 64 is a diagram illustrating a playback processing flow in the content configuration example 2.
- FIG. 65 is a diagram illustrating a configuration example (example 3) of content.
- FIG. 66 is a diagram showing a playback processing flow in the content configuration example 3.
- FIG. 67 is a diagram illustrating a configuration example (example 4) of content.
- FIG. 68 is a diagram illustrating a playback processing flow in the content configuration example 4.
- FIG. 69 is a diagram illustrating the generation and storage processing of save data.
- FIG. 70 is a diagram depicting a processing flow relating to a save data storage processing example (example 1);
- FIG. 71 is a diagram showing a configuration (example 1) of a data management file used in storage and reproduction processing of save data. .
- FIG. 72 is a diagram depicting a processing flow relating to an example of save data reproduction processing (example 1);
- FIG. 73 is a diagram depicting a processing flow relating to a save data storage processing example (example 2); .
- ⁇ 74 is a diagram showing a processing flow relating to an example of save data reproduction processing (Example 2).
- FIG. 75 is a diagram depicting a processing flow relating to a save data storage processing example (example 3);
- FIG. 76 is a diagram showing a data management file configuration (example 2) used in storage data storage and playback processing.
- FIG. 77 is a diagram showing a processing flow relating to an example of the save data reproduction processing (Example 3).
- FIG. 78 is a diagram showing a processing flow relating to an example of save data storage processing (Example 4).
- FIG. 79 is a diagram illustrating a processing flow relating to an example of save data reproduction processing (Example 4).
- FIG. 80 is a diagram depicting a processing flow relating to a save data storage processing example (example 5);
- FIG. 81 is a diagram showing a configuration (example 3) of a data management file used in storage and reproduction processing of save data.
- FIG. 82 is a diagram depicting a processing flow relating to an example of the save data reproduction processing (example 5);
- FIG. 83 is a diagram depicting a processing flow relating to a save data storage processing example (example 6);
- FIG. 84 is a diagram showing a data management file configuration (Example 4) used in storage data storage and playback processing.
- FIG. 85 is a diagram depicting a processing flow relating to an example of save data reproduction processing (Example 6);
- Figure 86 is a diagram for explaining the configuration of the elimination of content unauthorized users (revocation).
- FIG. 87 is a diagram showing a processing flow (example 1) of elimination of content unauthorized users (revocation).
- FIG 8 8 8 is a diagram depicting a processing flow of the content fraudster exclusion (Ribokeshiyon) (Example 2).
- FIG. 89 is a diagram for explaining the configuration of the security chip (Example 1).
- FIG. 90 is a diagram illustrating a processing flow in a method of manufacturing a security chip.
- FIG. 91 is a diagram illustrating a configuration (example 2) of the security chip.
- FIG. 92 is a diagram showing a processing flow in data writing processing in the security chip (example 2).
- Figure 93 shows the write data check processing in the security chip (Example 2) It is a figure which shows the processing flow in.
- FIG. 2 shows a block diagram of the overall configuration according to an embodiment of the data processing device of the present invention.
- the data processing apparatus of the present invention has a recording / reproducing device 300 and a recording device 400 as main components.
- the recording / reproducing device 300 is constituted by, for example, a personal computer (PC: Persona1Computer) or a game machine. As shown in FIG. 2, the recording / reproducing device 300 includes a control unit 301 that performs overall control including communication control with the recording device 400 during encryption processing in the recording / reproducing device 300, and a recording / reproducing device that controls overall encryption processing.
- the recording / reproducing device 300 downloads content data to the recording device 400 and reproduces content data from the recording device 400 under the control of the control unit 301.
- the recording device 400 is preferably a storage medium that is preferably detachable from the recording / reproducing device 300, for example, a memory card or the like. Having.
- the recording / reproducing device 300 includes a reading unit 304 as an interface capable of inputting content data stored in a storage medium, a DVD, a CD, an FD, and an HDD shown in the left end of FIG. 2, and content distributed from a network such as the Internet. It has a communication unit 305 as an interface capable of inputting data, and inputs contents from outside.
- the recording / reproducing device 300 has an encryption processing unit 302, and when the content data input from the outside via the reading unit 304 or the communication unit 304 is downloaded to the recording device 400, or when the content data is downloaded to the recording device 400.
- Execute The cryptographic processing unit 302 holds a control unit 360 that controls the entire cryptographic processing unit 302, information such as a key for cryptographic processing, and performs processing so that data cannot be easily read from the outside.
- an encrypted Z decryption unit 308 that performs encryption processing, decryption processing, data generation / verification for authentication, random number generation, and the like.
- the control unit 301 sends an initialization instruction to the recording device 400 via the recording device controller 303 when the recording device 400 is mounted on the recording / reproducing device 300, for example.
- the mutual authentication process performed between the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 and the ⁇ / decryption unit 406 of the recording device encryption processing unit 410 Performs mediation processing in various processing such as check value collation processing, encryption, and decryption processing. Each of these processes will be described in detail later.
- the cryptographic processing unit 302 is a processing unit that executes authentication processing, encryption processing, decryption processing, data verification processing, and the like, as described above.
- the encryption processing control unit 360 is a control unit that performs overall control of encryption processing such as authentication processing and encryption / decryption processing performed in the recording / reproducing device 300.
- the recording / reproducing device The setting of the authentication completion flag at the time of completion of the authentication process executed between the device 300 and the recording device 400, and the execution of the encryption / decryption unit 310 of the recording / reproducing device encryption unit 302 For example, an instruction to execute a tuck value generation process relating to download or reproduction content data, an instruction to execute a generation process to generate various key data, and the like, and control the entire cryptographic process.
- the internal memory 307 which will be described in detail later, is a key required for various processes such as a mutual authentication process, a check value comparison process, an encryption process, and a decryption process executed in the recording / reproducing device 300. Stores data or identification data.
- the encryption Z decryption unit 308 uses the key data and the like stored in the internal memory 307 to download content data input from the outside to the recording device 400, Record content data stored in 400 It performs authentication processing, encryption processing, and decryption processing for playback and execution from the device 400, as well as generation and verification of predetermined check values and digital signatures, data verification, and generation of random numbers.
- the signal processing unit 302 is composed of a semiconductor chip having a structure that is difficult to access from the outside, has a multilayer structure, and the internal memory is sandwiched between dummy layers such as an aluminum layer. It is configured as a tamper-resistant memory that has the characteristic that it is difficult to read data illegally from the outside, such as the operating voltage and / or frequency width is narrow. This configuration will be described in detail later.
- the recording / reproducing device 300 has a central processing unit (main CPU: CentralProcesssingUit) 106 and a RAM in addition to these encryption processing functions.
- main CPU CentralProcesssingUit
- RAM random access memory
- Central processing unit Main CPU: Central Processing Unit
- RAM Random Access Memory
- ROM Read Only Memory
- a central processing unit Main Processing Unit
- Main Processing Unit Central Processing Unit
- RAM Random Access Memory
- ROM Read Only Memory
- a central processing unit Mainn CPU: Central Processing
- Un it 106 controls the playback and execution of the content, such as outputting the content data read from the recording device and decoded to the AV processing unit 109 under the control of the control unit 301. Perform
- RAMI 07 is used as main memory for various processing in CPU 106 And is used as a work area for processing by the main CPU 106.
- the ROM 108 stores a basic program or the like for starting the OS or the like started by the main CPU 106.
- the AV processing unit 109 specifically has a data compression / decompression processing mechanism such as an MPEG2 decoder, an ATRAC decoder, and an MP3 decoder. Perform processing for data output to data output devices such as displays or speakers that do not.
- a data compression / decompression processing mechanism such as an MPEG2 decoder, an ATRAC decoder, and an MP3 decoder. Perform processing for data output to data output devices such as displays or speakers that do not.
- the input interface 110 outputs input data from various input means such as a connected controller, keyboard, mouse, etc., to the main CPU 106.
- the main CPU 106 executes a process according to an instruction from the controller from the user based on, for example, a game program being executed.
- PIO Parallel I / O Interface
- SIO Serial I / O Interface
- the main CPU 106 also performs control when storing, for example, setting data and the like relating to a running game and the like as save data in the recording device 400.
- the stored data is transferred to the control unit 301, and the control unit 301 causes the encryption processing unit 302 to perform encryption processing on the save data as necessary, and stores the encrypted data in the recording device 400. To be stored.
- the recording device 400 is a storage medium that is preferably detachable from the recording / reproducing device 300 as described above, and is configured by, for example, a memory card.
- the recording device 400 has an encryption processing unit 401 and an external memory 402.
- the recording device encryption processing unit 401 performs an interaction between the recording / reproducing device 300 and the recording device 400 at the time of downloading content data from the recording / reproducing device 300 or reproducing content data from the recording device 400 to the recording / reproducing device 300.
- Processing to perform authentication processing, encryption processing, decryption processing, and data verification processing It has a control unit, an internal memory, an encryption / decryption unit, and the like, like the encryption processing unit of the recording / reproducing device 300. These details are shown in Figure 3.
- the external memory 402 is composed of, for example, a nonvolatile memory such as an EEPROM, a hard disk, a RAM with a battery, and the like, and stores encrypted content data and the like.
- FIG. 3 shows the outline of the data structure input from the media 500 and the communication means 600 as the content providing means to which the data processing apparatus of the present invention receives data, and the content providing means 500 , 600, a recording / reproducing device for inputting contents from the recording device 400, and a recording device 400, mainly showing a configuration relating to encryption processing.
- the medium 500 is, for example, an optical disk medium, a magnetic disk medium, a magnetic tape medium, a semiconductor medium, or the like.
- the communication means 600 is a means capable of data communication such as Internet communication, cable communication, satellite communication and the like.
- a recording / reproducing device 300 is a medium 500 as a content providing means.
- the content data has the following components.
- Identification information as an identifier of content data.
- Handling policy Content data configuration information, for example, header size, content size, format version, content type that indicates whether the content is a program or data, etc. that make up the content data, and only devices that have downloaded the content
- a handling policy that includes usage restriction information, such as whether it can not be used or can be used with other devices.
- Block information Block information composed of the number of content blocks, block size, encryption flag indicating the presence or absence of encryption, and the like.
- Key data An encryption key for encrypting the above block information, or
- Key data consisting of a content key for encrypting the lock.
- Content block Content block consisting of program data, music, image data, etc., which are actually played back.
- the content data is the content key (here, this is the content key (
- K kon Const nt t Key
- the recording device 400 is a recording device-specific key stored in the internal memory 405 of the recording device (here, this is a storage key (storage key (hereinafter referred to as K str)). ),
- K str storage key
- the content included in the content data, the block information included as the header information of the content data, and various types of key information, for example, the content key K con are encrypted and stored in the external memory 402. I do.
- the Specific procedures such as mutual authentication processing, content data encryption and decryption processing are required. These processes will be described in detail later.
- the recording device 400 has an encryption processing unit 401 and an external memory 402, and the encryption processing unit 401 has a control unit 400, a communication unit 404, and an internal memory. It has a memory 405, an encryption Z decryption unit 406, and an external memory control unit 407.
- the recording device 400 controls the external signal processing, controls the external memory 402, interprets the command from the recording / reproducing device 300, and executes the processing. 1 and an external memory 402 holding contents and the like.
- the recording device encryption processing unit 401 is a control unit 403 that controls the entire recording device encryption processing unit 401, a communication unit 404 that transmits and receives data to and from the recording / reproducing device 300, and a signal processing unit.
- Internal memory 405 that holds information such as key data of the server, and is processed so that it cannot be easily read from the outside, encryption processing, decryption processing, generation and verification of authentication data, random numbers
- an external memory control unit 407 for reading and writing data in the external memory 402.
- the control unit 4003 is a control unit that executes control related to overall encryption processing such as authentication processing, encryption / decryption processing, and the like executed in the recording device 400, and includes, for example, a recording / reproducing apparatus 300 Setting of the authentication completion flag at the time of completion of the authentication processing executed with the recording device 400, various processing executed in the encryption Z decryption unit 406 of the encryption processing unit 401, for example, download Or, it performs overall control of the encryption process, such as an execution instruction of a tick value generation process for reproduced content data and an execution instruction of a generation process of various key data.
- the internal memory 405 is constituted by a memory having a plurality of blocks, and the mutual authentication processing executed in the recording device 400, the check value collation processing, the encryption, and the decryption It is configured to store a plurality of sets of key data or identification data required for various processes such as conversion processing.
- the internal memory 405 of the recording device encryption processing unit 401 holds important information such as an encryption key, like the internal memory 307 of the recording / reproducing device encryption processing unit 302 described above. Therefore, it is necessary to have a structure that is difficult to read illegally from the outside. Therefore, the encryption processing unit 401 of the recording device 400 is composed of a semiconductor chip having a structure that is difficult to access from the outside, has a multilayer structure, and has a memory inside such as an aluminum layer. It is sandwiched between dummy layers or formed at the lowest layer, and has a configuration that makes it difficult to read data illegally from the outside, such as a narrow operating voltage and / or frequency range.
- the recording / reproducing device encryption processing unit 302 may be software configured so that secret information such as a key is not easily leaked to the outside.
- No. Z Decoding unit 4006 downloads content data from recording / reproducing device 300 Load processing, playback processing of the computer stored in the external memory 402 of the recording device 400, or internal memory during the mutual authentication processing between the recording / reproducing device 300 and the recording device 400 Performs data verification, encryption, decryption, generation and verification of predetermined check values and digital signatures, generation of random numbers, etc. I do.
- the communication unit 404 is connected to the recording device controller 303 of the recording / reproducing device 300, and controls the control unit 301 of the recording / reproducing device 300 or the control unit 4 of the recording device 403. In accordance with the control of 03, communication of transfer data between the recording / reproducing device 300 and the recording device 400 at the time of content data download processing, reproduction processing, or mutual authentication processing is performed.
- the configuration shown in FIG. 4 is a diagram showing the format of the entire content data
- the configuration shown in FIG. 5 is a diagram showing details of a “handling policy” constituting a part of the header portion of the content data
- FIG. 4 is a diagram showing details of “block information” whose configuration forms part of a header part of content data.
- a representative example of a data format applied in the system of the present invention will be described.
- a format suitable for a game program a format suitable for real-time processing of music data, and the like.
- a plurality of different data formats such as mats are available, and these formats are described in “(10) Multiple content data formats and download and playback processing corresponding to each format” later. Details will be described.
- each block (content block data) in the content section includes both encrypted and unencrypted data. These forms differ depending on the content data, and a configuration in which all content block data included in the data may be encrypted.
- the data format is divided into a header part and a content part.
- the header part consists of identification information (Content ID), handling policy (Usage P o 1 icy), check value A, Integrity Check V A (hereinafter referred to as ICV a)), block information key (B 1 ock Information Table Key (hereinafter referred to as Kbit)), content key Kcon, and block information (B lock Information (Table)), a check value B (ICVb), and a total check value (ICVt).
- the content section consists of multiple content blocks (ICVt). For example, it consists of encrypted content and unencrypted content.
- the identification information indicates an individual identifier (Content ID) for identifying the content.
- the handling policy is as follows: header size (Header Length), which indicates the size of the header, content size (Content'Length), which indicates the size of the content, and format.
- the format version (For—mat Version) indicating the version information of the format
- the format type (For mat Type) indicating the type of format, whether the content stored in the content section is a program or data.
- Content type that indicates the type of content (Content Type)
- launch priority information that indicates the launch priority when the content type is a program, and content that is downloaded according to this format.
- the data items recorded in the above-mentioned handling policy are one example, and various handling policy information can be recorded according to the form of the corresponding content data.
- various handling policy information can be recorded according to the form of the corresponding content data. For example, as will be described in detail in “(1 7) Rejection of unauthorized devices (revocation) configuration” later, the identifier of the unauthorized recording / reproducing device is recorded as data, and the content is used by the unauthorized device by collation at the start of use. It is also possible to configure to eliminate.
- Check values A and ICVa are check values for verifying falsification of identification information and handling policies. It functions as a check value for partial data, not the entire content data, that is, a partial check value.
- the data block information key Kbit is used to encrypt the block information
- the content key Kcon is used to encrypt the content block. It should be noted that the block information key Kbit and the content key Kcon are encrypted on the medium 500 and the communication means 600 with a delivery key (Distributio n Key (hereinafter, referred to as Kdis)) described later.
- Kdis Distribution key
- Figure 6 shows the details of the block information.
- the block information in Fig. 6 is based on Fig. 4. All data is encrypted with the block information key Kbit to be decrypted.
- the block information includes a content block number (Bockock Number) indicating the number of content blocks and N pieces of content block information.
- the content block information includes a block size (B lock Length), an encryption flag (Encryption Flag) indicating whether or not encryption is performed, and a verification target flag indicating whether a check value needs to be calculated ( ICVF 1 ag) and content check value (ICV i).
- the content check value is a check value used to verify tampering of each content block.
- a specific example of the method of generating the content check value is described in the section “(10) Multiple data formats, download processing to recording device corresponding to each format, and reproduction process from recording device” below. I do.
- the block information key Kbit that encrypts the block information is further encrypted by the delivery key Kdis.
- the check values B and ICVb are check values for verifying tampering of the block information key Kbit, the content key Kcon, and the block information. It functions as a check value of partial data, not the entire content data, ie, a partial check value.
- the total check value I CV t is calculated based on I CV a, I CVb, the check value I CV i (if set) of each content block, these partial check values, or all of the data to be checked. This is a check value for verifying tampering.
- the block size, encryption flag, and verification target flag can be set freely in FIG. 6, a configuration in which rules are determined to some extent may be used.
- the ciphertext area and the plaintext area may be repeated at a fixed size, all content data may be encrypted, and the block information BIT may be compressed.
- the content key KcQn may be included in the content block instead of the header portion. No. An example of the content data format will be described in more detail in the section “(10) Multiple Content Data Formats and Download and Playback Processes Corresponding to Each Format”.
- Falsification detection data is attached to data for which falsification is to be detected, ⁇ ⁇ ⁇ Data for author authentication.
- each check value A, B, total check value in the double frame part in the data structure described in Fig. 4, and the content check value stored in each block in the block information shown in Fig. 6, etc. is generated as the tampering detection data.
- a general method of generating a digital signature using DES will be described with reference to FIG.
- the message to be digitally signed is divided into 8-byte units (hereinafter, the divided messages are referred to as Ml, ⁇ 2, ⁇ , ⁇ ).
- the initial value (InitialValue (hereinafter, referred to as IV)) and Ml are exclusively ORed (the result is I1).
- I I is entered into the DES encryption section, and is encrypted using a key (hereinafter, referred to as K 1) (the output is referred to as E 1).
- E1 and M2 are exclusive-ORed, and the output I2 is input to the DES encryption unit, and is decrypted using the key K1 (output E2). Thereafter, this process is repeated, and encryption processing is performed on all messages.
- the last EN appears as an electronic signature.
- This key is generally called a message authentication code (MAC (Message Authentic—cationdCode)), and is used to check for falsification of the message.
- MAC message Authentic—cationdCode
- CBC Cipher'BlocChChailning
- the MAC values output in the generation example shown in FIG. 7 correspond to the respective chip values A and B, the total chip value in the double frame portion in the data structure shown in FIG.
- the content check values I CV1 to I CV N stored in each block in the block information can be used.
- the verifier uses the same If the MAC value is generated by the method and the same value is obtained, the verification is successful.
- FIG. 8 shows a processing configuration diagram showing a MAC value generation method with further improved security compared to the MAC value generation method shown in Fig. ⁇ .
- FIG. 8 shows an example in which a MAC value is generated using a triple DES (Trim DES) instead of the single DES in FIG.
- Triple DES triple DES
- FIG. 9 shows a detailed configuration example of each Triple DES (Tripple DES) component shown in FIG.
- Triple DES Triple DES
- FIGS. 9 (a) and 9 (b) there are two different modes in the configuration as a triple DES (TrippleDES).
- FIG. 9 (a) shows an example in which two encryption keys are used, in which an encryption process using a key 1, a decryption process using a key 2, and an encryption process using a key 1 are performed in this order. Two types of keys are used in the order of Kl, K2, and Kl.
- Fig. 9 (b) shows an example using three encryption keys, in which the encryption process with key 1, the encryption process with key 2, and the encryption process with key 3 are performed in this order. The encryption process is performed every time.
- FIG. 10 shows an example of an MA C value generation configuration obtained by improving the triple DES configuration described in FIGS. 8 and 9.
- Fig. 10 all the encryption processing for each message from the beginning to the middle of the message string to be signed is performed by a single DES, and only the encryption processing for the last message is shown in Fig. 9 (a). It has a triple DE S (Trile DE S) configuration.
- the MAC value generation processing time of the message is almost as short as the time required for the MAC value generation processing by a single DES.
- the security is reduced and the MAC value is higher than the MAC value by single DES.
- the triple DES configuration for the final message can be the configuration shown in Fig. 9 (b).
- FIG. 11 is a flow of processing for generating digital signature data using EC—DSA ((Elitic Curve Digital Signature A 1—gorit hm), IEEE P 13 63 / D 3). is there.
- ECC elliptic curve cryptography
- ECC elliptic CurvveCrryptograaphy
- the hash function is a function that receives a message, compresses the message into data of a predetermined bit length, and outputs the data as a hash value.
- a hash function it is difficult to predict the input from the hash value (output).
- many bits of the hash value change, and the same hash value It has the feature that it is difficult to find different input data with.
- MD4, MD5, SHA-1 or the like may be used, or DES-CBC similar to that described in FIG. 7 or the like may be used.
- the MAC value (the check value: equivalent to I CV) that becomes the force value becomes the hash value.
- step S3 a random number u (0 ⁇ u ⁇ r) is generated, and in step S4, a coordinate V (Xv, Yv) obtained by multiplying the base point by u is calculated.
- u ⁇ u ⁇ r
- step S8 Calculate dr, determine whether d is 0 in step S8, and if d is not 0, output c and d as digital signature data in step S9. Assuming that r is 160 bits long, the digital signature data is 320 bits long.
- step S6 If c is 0 in step S6, the process returns to step S3 and a new random Regenerate numbers. Similarly, if d is 0 in step S8, the process returns to step S3 to generate a random number again.
- step S 18 Xp modr is calculated and compared with the digital signature data c. Finally, if the values match, the flow advances to step S19 to determine that the electronic signature is correct.
- the data has not been tampered with, indicating that the person holding the private key corresponding to the public key generated the electronic signature.
- step S12 If the electronic signature data c or d does not satisfy 0 ⁇ c ⁇ r and 0 ⁇ d ⁇ r in step S12, the process proceeds to step S20. If the point P is a point at infinity in step S17, the process proceeds to step S20. Furthermore, In step S18, also when the value of Xp mod does not match the digital signature data c, the process proceeds to step S20.
- step S20 If it is determined in step S20 that the digital signature is incorrect, it is known that the data has been falsified or that the person holding the private key corresponding to the public key has not generated the digital signature.
- DES is used as the common key code method, but any common key encryption method may be used as described above.
- 8 generates a 64-bit random number Rb, and transmits Rb and its own ID, ID (b), to A.
- A Upon receiving this, A generates a new 64-bit random number R a, encrypts the data using the key K ab in the DE CCB mode in the order of Ra, Rb, and ID (b). I will send it back.
- Ra corresponds to M1
- Rb corresponds to M2
- ID (b) corresponds to M3
- B receiving this decrypts the received data with the key K ab.
- the ciphertext E1 is decrypted with the key Kab to obtain a random number Ra.
- the cipher text E 2 is decrypted with the key K ab, and the result is exclusively ORed with E 1 to obtain Rb.
- the cipher text E 3 is decrypted with the key K ab, and the result is XORed with E 2 to obtain I D (b). From the obtained Ra, Rb, and ID (b), verify that the Rb and ID (b) force B match those transmitted. If this passes, B authenticates A as valid.
- B generates a session key to be used after authentication (Sessio n Key (hereinafter referred to as Kses)) (random number is used as the generation method). Then, Rb, Ra, ⁇ : 3 6 3 1 ashamed, encrypts using the key Kab in the DE CCB mode, and sends it back to A.
- Kses Sessio n Key
- A decrypts the received data with the key Kab. Decrypt received data Since the decoding method is the same as the decoding process of B, the details are omitted here. Of the Rb, R a, and K ses obtained in this way, verify that 113 and 1 ⁇ & match the one sent by A. If it passes, A authenticates B as valid. After mutually authenticating each other, the session key K ses is used as a common key for secret communication after authentication.
- a public key certificate is a certificate issued by a certificate authority (CA) in public key cryptography, and the user submits his / her ID, public chain, etc. to the certificate authority to authenticate.
- the certificate is created by the certificate authority by adding information such as the certificate authority's ID and expiration date, and adding a signature from the certificate authority.
- the public key certificate shown in Figure 14 contains the certificate version number, the serial number of the certificate assigned by the certificate authority to the certificate subscriber, the algorithm and parameters used for digital signature, the name of the certificate authority, and the validity of the certificate. Includes the expiration date, the relying party's name (user ID), the relying party's public key, and a digital signature.
- the digital signature is the version number of the certificate, the serial number of the certificate assigned by the certificate authority to the subscriber, the algorithm and parameters used for the electronic signature, the name of the certificate authority, the expiration date of the certificate, the certificate subscriber
- a hash value is generated by applying a hash function to the name of the certificate and the entire public key of the certificate subscriber, and the data is generated using the private key of the certificate authority for the hash value. For example, the processing flow described in FIG. 11 is applied to the generation of the digital signature.
- the certification authority issues the public key certificate shown in Figure 14, updates the expired public key certificate, and creates, manages, and manages a list of unauthorized persons to exclude users who have committed illegal acts. Distribute (this is called Revocation). It also generates public and private keys as needed.
- Revocation this is called Revocation
- the user verifies the digital signature of the public key certificate using the public key of the certificate authority held by the user, and after the verification of the digital signature succeeds. Extract the public key from the public key certificate and use the public key. Therefore, all users who use the public key certificate need to hold the public key of the common certificate authority. Since the method of verifying the electronic signature has been described with reference to FIG. 12, the details thereof will be omitted.
- ECC is used as the public key cryptosystem, but any public key cryptosystem may be used as described above. Also, the key size need not be 160 bits.
- Ra and Rb are 64 bits each, and the X and Y coordinates of Av are each 160 bits. Therefore, a digital signature is generated for a total of 448 bits.
- the method for generating a digital signature has been described with reference to FIG. 11, and the details thereof will be omitted. Also, the public key certificate has been described with reference to FIG.
- B Receiving the public key certificate, Ra, Rb, Av, and electronic signature A.
- Sig of B B verifies that Rb sent by A matches the one generated by B.
- the electronic signature in the public key certificate of A is verified with the public key of the certificate authority, and the public key of A is extracted.
- the verification of the public key certificate was explained using FIG. 14, and the details are omitted.
- Sig is verified using the extracted public key of A.
- the method for verifying the electronic signature has been described with reference to FIG. 12, and the details thereof will be omitted.
- B After successfully verifying the electronic signature, B authenticates A as valid.
- B After successfully verifying the electronic signature, B authenticates A as valid.
- B generates a random number B k smaller than the characteristic p.
- Aig receives Sig and verifies that Ra sent by B matches the one generated by A. As a result, if they match, the digital signature in B's public key certificate is verified with the public key of the certificate authority, and B's public key is extracted. Then, the electronic signature B. Sig is verified using the extracted public key of B. After successfully verifying the electronic signature, A authenticates B as valid.
- B is calculated as B k XAV (B k is a random number, but Av is a point on the elliptic curve, so scalar multiplication of the point on the elliptic curve is required).
- A calculates Ak XBV, and uses the lower 64 bits of the X coordinate of these points as a session key and uses it for subsequent communication (when the common key encryption is a 64-bit key length common key encryption).
- the session key may be generated from the Y coordinate, and may not be the lower 64 bits.
- the transmitted data may not only be encrypted with the session key but also may be digitally signed.
- step S24 the X coordinate of V is multiplied by Mx Then, the remainder is obtained by p and set as XO.
- step S25 the Y coordinate of V is multiplied by My to obtain the remainder by p and set to Y0. If the length of the message is less than the number of bits of p, My uses a random number, and the decoding unit discards My.
- step S26 uXG is calculated, and in step S27, ciphertext uXG, (X'0, Y0) is obtained.
- step S35 the message is extracted by setting X1 to Mx and Y1 to My. At this time, if My is not a message, Y 1 is discarded.
- the key used for encryption and the key used for decryption can be different keys.
- the RSA cryptosystem is known, but a detailed description thereof is omitted (the details are described in PKC S # 1 Ver s io n 2).
- a method of generating random numbers include a method of generating a true random number by amplifying thermal noise and generating the AZD output, and a method of generating a pseudo random number by combining a plurality of linear circuits such as M-sequences.
- a method of generating the data using a common key encryption such as DES is also known.
- a pseudorandom number generation method using DES will be described (based on ANIX 9.17).
- FIG. 18 is a diagram for explaining data holding contents of the internal memory 307 included in the recording / reproducing device encryption processing unit 302 in the recording / reproducing device 300 shown in FIG.
- the following keys and data are stored in the internal memory 307.
- MK ake Authentication key required for mutual authentication performed between the recording / reproducing device 300 and the recording device 400 (see Fig. 3) (Au thentication and Key Exchange Key (hereinafter referred to as Ka ke)) Master key for the recording device authentication key for generating the key.
- IV ake Initial value for recording device authentication key.
- MK dis The master key for the distribution key for generating the distribution chain Kd is.
- K i c V t Total check value generation key which is a key for generating total check value I CV t.
- K s y s A system signing key used to attach a common signature or ICV to the distribution system.
- KdeV A recording / reproducer signature key that is unique to each recording / reproducing device and is used by the recording / reproducing device to apply a signature or ICV.
- I Vmem Initial value, initial value used for encryption processing in mutual authentication processing. Common with recording devices.
- FIG. 19 is a diagram showing a data retention state on the recording device.
- the internal memory 405 is divided into a plurality of blocks (N blocks in this example), and the following keys and data are stored in each block.
- I Dmem recording device identification information, identification information unique to the recording device.
- Kake an authentication key, an authentication key used for mutual authentication with the recording / reproducing device 300.
- I Vmem Initial value, initial value used for encryption processing during mutual authentication processing.
- K s tr A storage key, a block information key, and a symbol key for other content data.
- K r random number generation chain
- s seed
- the external memory 402 holds a plurality of (M in this example) content data, and each holds the data described in FIG. 4, for example, as shown in FIG. 26 or FIG. 27. . The differences between the configurations in FIGS. 26 and 27 will be described later.
- FIG. 20 is a flowchart showing an authentication procedure between the recording / reproducing device 300 and the recording device 400.
- step S41 the user enters the recording device 400 into the recording / reproducing device 300.
- a recording device that can communicate without contact is used, there is no need to insert it.
- the recording device detecting means (not shown) in the recording / reproducing device 300 shown in FIG. Notify the installation of.
- the control unit 301 of the recording / reproducing device 300 transmits an initialization command to the recording device 400 via the recording device controller 303.
- the recording device 400 receives the command via the communication unit 404 in the control unit 403 of the recording device No. processing unit 401, and sets the authentication completion flag. If you clear. That is, it is set to the unauthenticated state. .
- step S43 the control unit 301 of the recording / reproducing device 300 transmits an initialization command to the recording / reproducing device encryption processing unit 302.
- the recording device ⁇ entrance number is also transmitted.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 that has received the initialization command corresponds to the recording device / entrance number in the control unit 303 of the recording / reproducing device encryption processing unit 302. If the authentication completion flag is set and cleared, clear it. Ie unauthenticated state Set to o.
- step S44 the control unit 301 of the recording / reproducing device 300 specifies a key block number used by the recording device encryption processing unit 401 of the recording device 400. The details of the key block number will be described later.
- step S45 the control unit 301 of the recording / reproducing device 300 reads out the recording device identification information IDmem stored in the designated lock block of the internal memory 40.5 of the recording device 400.
- step S46 the control unit 301 of the recording / reproducing device 300 transmits the recording device identification information ID mem to the recording / reproducing device encryption processing unit 302, and performs authentication based on the recording device identification information ID mem. Generate a key Kake.
- the method of generating the authentication key K a ke is, for example, as follows.
- MK ake is executed between the recording / reproducing device 300 and the recording device 400 (see FIG. 3).
- This is a master key for a recording device authentication key for generating an authentication key Kake required for mutual authentication processing.
- This is a key stored in the internal memory 307 of the recording / reproducing device 300 as described above. It is.
- ID mem is recording device identification information unique to the recording device 400.
- IVake is the initial value for the recording device authentication key.
- DES () is a function that uses the first argument as an encryption key and encrypts the value of the second argument with DES, and the operation ⁇ ⁇ indicates exclusive OR of 64 bits. .
- the message M shown in FIGS. 7 and 8 is the recording device identification information: ID mem
- the key 1 is the master key for the device authentication key: MKake
- Initial value IV The output obtained as IV ake is the authentication key K ake.
- step S47 mutual authentication and session key K ses generation processing are performed.
- Mutual authentication is performed by the encryption / decryption unit 308 of the recording / reproducing unit encryption unit 302 and the recording data. This is performed between the encryption / decryption units 406 of the vice encryption processing unit 401, and the mediation is performed by the control unit 301 of the recording / reproducing unit 300.
- the mutual authentication processing can be executed, for example, according to the processing described in FIG. 13 described above.
- a and B correspond to the recording / reproducing device 300 and the recording device 400, respectively.
- the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300 generates a random number R b, and records the random number R b and the recording S live device identification information ID de V, which is its own ID, on the recording device 400. Is transmitted to the recording device encryption processing section 401.
- the recording / reproducing device identification information ID deV is an identifier unique to the reproducing device stored in the storage unit configured in the recording / reproducing device 300.
- the configuration may be such that the recording / reproducing device identification information IDdev is recorded in the internal memory of the recording / reproducing device encryption processing section 302.
- the recording device encryption processing unit 401 of the recording device 400 receives the random number Rb and the recording / reproducing device identification information ID de V
- the recording device encryption processing unit 401 of the recording device 400 generates a new 64 bit random number Ra, and generates Ra, Rb
- the recording / reproducing device identification information ID de V in this order, encrypts the data using the authentication key Kake in the CBC mode of DES, and returns it to the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300.
- 1 & corresponds to ⁇ 1 1
- 1 13 corresponds to]
- ID de V corresponds to M3
- the output E1, E2, E3 at the time becomes a ciphertext.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 that has received the ciphertexts El, E2, and E3 decrypts the received data with the authentication key Kake.
- the ciphertext E1 is decrypted with the authentication key Kake, and the result is exclusively ORed with the IV mem to obtain a random number Ra.
- the ciphertext E2 is decrypted with the authentication key Kake, and the result is XORed with E1 to obtain Rb.
- the cipher text E 3 is decrypted with the authentication key K ake, and the result is XORed with E 2 to obtain the recording / reproducing device identification information ID de V.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 authenticates the recording device 400 as valid.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 generates a session key (Session Key (hereinafter referred to as K ses)) to be used after authentication (the generating method is a random number). Is used).
- K ses Session Key
- the recording device encryption processing unit 401 of the recording device 400 that has received this decrypts the received data with the key K a ke.
- the method of decrypting the received data is the same as the decryption process in the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300, and thus the details are omitted here.
- Rb, Ra, and Kse s obtained in this way, it is verified that Rb and Ra match those transmitted by the recording device 400. If the verification is successful, the recording device encryption processing unit 401 of the recording device 400 authenticates the recording / reproducing device 300 as valid.
- the session key K se s is used as a common key for secret communication after authentication.
- step S48 the process proceeds from step S48 to step S49, where the session key K ses is held in the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300, and the mutual key is retained.
- An authentication completion flag indicating that the authentication has been completed is set. If the mutual authentication has failed, the process proceeds to step S50, where the session key K ses generated in the authentication process is discarded, and the authentication completion flag is cleared. It should be noted that if the recording device has already been cleared, it is not necessary to perform the clearing process.
- the recording device 300 If the recording device 400 is removed from the entrance of the recording device, the recording device 300 The recording device detection means notifies the control unit 301 of the recording / reproducing device 300 that the recording device 400 has been removed, and receives the notification, and the control unit 301 of the recording / reproducing device 300 receives the notification. Instructs the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300 to clear the authentication completion flag corresponding to the recording device / entrance number. The recording / reproducing device encryption unit 302 of the recording device Clear the authentication completion flag corresponding to the entrance number.
- the present invention is not limited to the above-described example of the authentication process. May be performed.
- a in FIG. 13 is a recording / reproducing device 300
- B is a recording device 400
- B the recording device 400 is A: a recording / reproducing device 30.
- the mutual authentication process may be performed by setting the ID sent first to 0 as the recording device identification information in the key lock in the recording device.
- Various processes can be applied to the authentication process performed in the present invention, and the present invention is not limited to the above-described authentication process.
- One feature of the mutual authentication process in the data processing device of the present invention is that a plurality of key blocks (ex. N key blocks) are configured on the recording device 400 side, and the recording / reproducing device 300 The point is that one key block is designated (step S44 in the processing flow of FIG. 20) and the authentication processing is executed.
- a plurality of key blocks are formed in the internal memory 405 configured in the encryption processing unit 401 of the recording device 400, and different key data and Various data such as ID information is stored.
- the mutual authentication process performed between the recording / reproducing device 300 and the recording device 400 described in FIG. 20 is performed for one key block of the plurality of key blocks of the recording device 400 in FIG. Executed.
- a common key is used for mutual authentication: a common authentication key is generally used. Therefore, for example, if the authentication key is changed for each product destination (by country) or for each product, the key data required for the authentication process on the recording / reproducing device side and the recording device side is changed on both devices It is necessary to do. Therefore, for example, the key data required for the authentication processing stored in the newly released recording / reproducing device does not correspond to the key data required for the authentication processing stored in the previously sold recording device. Recording / playback device will not be able to access older versions of the recording device c
- a plurality of key blocks as different key sets are stored in the recording device 400 in advance.
- a key block to be applied to the authentication process that is, a designated key block
- This setting information is stored in the memory unit of the recording / reproducing device, for example, the internal memory 307 in FIG. 3 or another storage element of the recording / reproducing device 300, and the control unit in FIG. Accessed by 301, the key block designation is performed according to the setting information.
- the master key MKake for the recording device authentication key in the internal memory 307 of the recording / reproducing device 300 is a master key for the authentication key set according to the setting of each designated key block. Only the designated key block can be supported, and mutual authentication with key blocks other than the designated key block is not established.
- N memory blocks 1 to N are set in the internal memory 405 of the recording device 400, and the recording device identification information, the authentication chain, The initial value, storage chain, random number generation key, and seed are stored, and at least key data for authentication is stored as different data for each block.
- the key data configuration of the key block of the recording device 400 is different for each block. Therefore, for example, the key block that a certain recording / reproducing apparatus A can perform authentication processing using the master key MKake for the recording device authentication key stored in the internal memory is the key block No. 1, and another The key block that can be authenticated by the recording / reproducing device B having the following specifications can be set as another key block, for example, a key block No. 2.
- encryption processing is performed using the storage key K str stored in each key block, and the content is stored.
- the content processor The content key for encrypting the key is encrypted with the storage key.
- the storage key is configured as a different key for each block. Therefore, between two recording / reproducing units set to specify different key blocks, it is prevented that the content stored in the memory of one recording device is commonly used by both. You. In other words, a recording / reproducing device with different settings can use only the content stored in the recording device that matches each setting.
- data that can be shared for each key block can be shared.
- only the key data for authentication and the stored key data may be configured to be different.
- a key block number to be specified for each model (stationary type, portable type, etc.) of the recording / reproducing device 300 is set differently, or There are examples in which the designated key block is set differently for each application.
- the designated key block is No. 1 for recording / reproducing units sold in Japan, and the key block differs for each region so that the designated key block is No. 2 for recording / reproducing units sold in the United States.
- a configuration for performing the setting is also possible.
- the content used in each different sales area and stored on the recording device with a different storage key even if the recording device such as a memory card is from the United States to Japan or from S to United States Even if it is transferred to a storage device, it cannot be used by a recording / reproducing device with a different key setting, so that illegal or irregular distribution of the content stored in the memory can be prevented.
- the content key K con encrypted with the different storage key K s tr can be mutually used between the two countries.
- At least one key block from 1 to N in the internal memory 405 of the recording device 400 shown in FIG. Can also be configured as a commonly available key block Les ,.
- the master key MKake for the recording device authentication key that can be authenticated with the key block No.N in all devices, the type of the recording / reproducing device 300, each application, each destination country, etc. It can be handled as distributable content regardless of.
- the encrypted content stored in the memory card with the storage key stored in the key block No. N becomes a content that can be used in all devices.
- music data and the like are encrypted with a storage key of a commonly available key block and stored in a memory card, and this memory card is also stored in a common storage device authentication key master key MKake. It is possible to perform decoding / reproduction processing of data from a memory card by setting it in an audio reproduction device or the like.
- the recorder / reproducer 2101 is a recorder / reproducer for products destined for Japan, and has a master key that can be authenticated with No. 1, 4 of the key block of the recording device.
- the recording / reproducing device 2102 is a recording / reproducing device for a product for the US, and has a master key for establishing an authentication process with No. 2, 4 of the key block of the recording device.
- the recorder / reproducer 2103 is a recorder / reproducer for EU products, and has a master key that can be authenticated with No. 3 and 4 of the key block of the recording device.
- the recording / reproducing unit 201 establishes authentication with the key block 1 or key block 4 of the recording device A, 210 4, and performs encryption via the storage key stored in each key block.
- the processed content is stored in the external memory.
- the recording / reproducing device 2102 establishes authentication with the key block 2 or the key block 4 of the recording device B, 210, and performs encryption processing via the storage key stored in each key block.
- the applied content is stored in the external memory.
- the recording / reproducing device 2103 establishes authentication with the lock block 3 or 4 of the recording device C, 210, and performs encryption processing via the storage key stored in each lock block.
- the content subjected to is stored in the external memory.
- recording device A, 210 is connected to recording / reproducing device 2 When attached to 102 or recording / reproducing device 2103, the content that has been encrypted with the storage key of key block 1 is recorded to recording / reproducing device 210, recording / reproducing device 210 It cannot be used because authentication with Block 1 is not established. On the other hand, the content that has been subjected to symbol processing with the key stored in the key block 4 is used because authentication is established between the recording / reproducing device 210, the recording / reproducing device 210, and the key block 4. It becomes possible.
- a key block including a plurality of different key sets is configured in a recording device, while a master key capable of authenticating a specific key block is provided in a recording / reproducing device. Since the configuration is such that the content is stored, it is possible to set content usage restrictions according to various usage modes.
- a plurality of key blocks that can be designated in one recording / reproducing device for example, 1 to k, and a plurality of key blocks that can be designated in other recording / reproducing devices, such as p to q, can be provided.
- a configuration in which a plurality of lock blocks that can be used in common are provided;
- the recording / reproducing device 300 the recording / reproducing device 300
- FIG. 22 is a flowchart illustrating a procedure for downloading content from the recording / reproducing device 300 to the recording device 400.
- FIG. 22 it is assumed that the above-described mutual authentication processing has already been completed between the recording / reproducing device 300 and the recording device 400.
- step S51 the control unit 301 of the recording / reproducing unit 300 reads data according to a predetermined format from the medium 500 storing the content using the reading unit 304, The data is received from the communication means 600 in accordance with a predetermined format by using the communication device 300. Then, the control section 301 of the recording / reproducing apparatus 300 sends the header (Header) part (see FIG. 4) of the data to the recording / reproducing apparatus signal processing section 302 of the recording / reproducing apparatus 300. Send.
- Header header part
- step S52 the header (Header) is extracted in step S51.
- the control unit 306 of the received recording / reproducing device encryption processing unit 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate the check value A.
- the check value A is, as shown in FIG. 23, the check value A generation key KicVa stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key and identification information
- the handling policy (Usage P o 1 icy) as a message, and is calculated according to the ICV calculation method described in Fig. 7.
- the check value A is compared with the check value: I CV a stored in the header (He ader). If they match, the process proceeds to step S53.
- check values A and I CVa are check values for verifying falsification of identification information and handling policy.
- identification information Content ID
- handling policy User Policy
- step S53 the control unit 306 of the recording / reproducing device encryption processing unit 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to generate the delivery key Kd is.
- a method of generating the delivery key Kd is, for example,
- K d i s D E S (M K d i s, C o n t e n t I D ⁇ I V d i s)
- MKd is is a master key for the distribution key for generating the distribution key Kd is, which is stored in the internal memory of the recording / reproducing device 300 as described above.
- Content ID is identification information of the header part of the content data
- Ivdis is an initial value for a delivery key.
- DES () is a function for encrypting the value of the second argument using the first argument as an encryption key
- the operation ⁇ ⁇ indicates a 64-bit exclusive OR.
- step S54 the control unit 306 of the recording / reproducing device encryption processing unit 302 uses the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302, and uses the distribution key Kd is generated in step S53.
- the block information key Kbit and the content key Kcon stored in the header of the data 500 received via the reading unit 304 or the data received from the communication unit 600 via the communication unit 305 (see FIG. 4). ) Is decrypted.
- the block information key Kbit and the content key Kcon are previously encrypted by a distribution key Kdis on a medium such as a DVD or a CD or a communication path such as the Internet.
- step S55 the control section 303 of the recording / reproducing apparatus signal processing section 302 uses the signal / Z decryption section 308 of the recording / reproducing apparatus encryption processing section 302 to perform decryption in step S54.
- the block information (BIT) is decrypted with the obtained block information key Kbit.
- the block information (BIT) is previously encrypted with a block information key Kbit on a medium such as a DVD or a CD or a communication path such as the Internet.
- step S56 the control section 303 of the recording / reproducing apparatus encryption processing section 302 divides the block information key Kbit, the content key K con and the block information (BIT) into 8-byte units, and Exclusive OR (any operation, such as addition or subtraction, may be used).
- the control section 303 of the recording / reproducing apparatus encryption processing section 302 causes the encryption / decryption section 308 of the recording / reproducing apparatus encryption processing section 302 to calculate the check value B (IC Vb).
- the check value B is obtained by using the check value B generation key K ic V b stored in the internal memory 307 of the recording / reproducing device signal processing unit 302 as a key, Generate the value by encrypting it with DES.
- check value B is compared with I CVb in the header, and if they match, Proceed to step S57.
- the check values B and I CVb are check values for verifying tampering of the block information key Kbit, the content key Kcon, and the block information (BIT).
- the check value B generation key KicVb stored in the internal memory 307 of the recorder / reproducer encryption processor 302 is used as a key, and the block information key Kbit, the content key Kcon and the block information (BIT) are 8 bytes. If the check value B, which is generated by encrypting the value obtained by dividing the unit into exclusive OR and using DES with DES, matches the check value: ICV b stored in the header, It is determined that the block information key Kbit; the content key Kcon and the block information have not been tampered with.
- step S57 the control section 306 of the recording / reproducing apparatus encryption processing section 302 causes the encryption / decryption section 308 of the recording / reproducing apparatus encryption processing section 302 to calculate an intermediate check value.
- the intermediate check value is stored in the header (Header) verified using the total check value generation key KicVt stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key.
- the generated intermediate check value is stored in the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 as necessary.
- This intermediate check value is generated as a message with check value A, check value B, and all content check values, and the intermediate check verifies the data to be verified for each of these check values.
- This may be performed by a value matching process.
- the non-tampering verification process as shared data of the entire system and the verification process for identifying as occupied data occupied only by each recording / reproducing device 300 after the download process can be performed separately.
- a plurality of different check values that is, the total check value I
- the CV t and the recording / reproducing unit specific check value I CVd ev can be generated separately based on the intermediate check value.
- the control unit 306 of the recording / reproducing device encryption processing unit 302 described later will cause the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate the total check value ICVt.
- the total check value I CV t is, as shown in FIG. 25, the system signature key K sys stored in the internal memory 307 of the recording / reproducing device signal processing unit 302 as a key, and the intermediate check value is encrypted with DES. And generate it.
- the generated total check value I CV t is compared with the I CV t in the header stored in step S51, and if they match, the process proceeds to step S58.
- the system signature key K sys is a signature key that is common to a plurality of recording / reproducing devices, that is, the entire system set that executes recording / reproducing processing of certain data.
- the total check value I CV t is a check value for verifying tampering of all check values of I CV a, I C Vb, and each content block. Therefore, if the total check value generated by the above processing matches the check value: ICV t stored in the header (He ader), the IC Va, ICVb, and all check values of each content block are falsified. It is determined that there is not.
- step S58 the control unit 301 of the recording / reproducing device 300 extracts the content block information from the block information (BIT), and checks whether the content block is to be verified. If the content block is to be verified, the content check value is stored in the block information in the header.
- BIT block information
- the corresponding content block is read from the medium 500 by using the reading unit 304 of the recording / reproducing device 300, or by using the communication unit 305 of the recording / reproducing device 300. It is received from the communication means 600 and transmitted to the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300. Received this The control section 303 of the recording / reproducing apparatus encryption processing section 302 causes the encryption / decryption section 308 of the recording / reproducing apparatus encryption processing section 302 to calculate a content intermediate value.
- the content intermediate value is obtained by decrypting the input content block in the DES CBC mode with the content key K con decrypted in step S54, dividing the result into 8-byte units, and performing exclusive OR (addition, Any operation, such as subtraction, may be used).
- the control section 303 of the recording / reproducing apparatus encryption processing section 302 causes the encryption / decryption section 308 of the recording / reproducing apparatus encryption processing section 302 to calculate the content check value.
- the content check value is generated by encrypting the content intermediate value with DES using the content check value generation key K i cvc stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key.
- the control unit 303 of the recording / reproducing device encryption processing unit 302 sets the content check value and the ICV in the content block received from the control unit 301 of the recording / reproducing device 300 in step S51. Are compared, and the result is passed to the control section 301 of the recording / reproducing apparatus 300.
- the control unit 301 of the recording / reproducing unit 300 that has received the data extracts the next content block to be verified and extracts the next content block to be verified. The same verification process is repeated until all content locks are verified.
- the initial value IVc for generating the content check value is stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302, You may use it. Also, all the checked content values are stored in the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300.
- the recording / reproducing device cryptographic processing section 302 of the recording / reproducing device 300 monitors the verification order of the content blocks to be verified, and verifies the order of the content blocks being incorrect or the same content block more than once. If it is, authentication shall be deemed to have failed. If all the verifications are successful, the process proceeds to step S59.
- step S59 the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300 sends the content of the block information key K bit decrypted in step S54 to the content.
- the key K con is encrypted by the encryption / decryption unit 308 of the recording / reproducing device signal processing unit 302 using the session key K ses shared at the time of mutual authentication.
- the control unit 301 of the recording / reproducing device 300 sends the block information key K bit and the content key K con coded with the session key K ses to the recording / reproducing device encryption processing unit 300 of the recording / reproducing device 300. 2, and transmits these data to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- step S600 the recording device 400, which has received the block information key K bit and the content key K con transmitted from the recording / reproducing device 300, processes the received data into a recording device.
- the encryption / decryption unit 406 of the unit 401 decrypts it with the session key K ses shared at the time of mutual authentication, and stores it in the internal memory 405 of the recording device encryption processing unit 401. Re-encrypt with the stored storage device-specific storage key K str.
- the control unit 301 of the recording / reproducing device 300 was re-encrypted with the storage key K str from the recording device 400 via the recording device controller 303 of the recording / reproducing device 300. Read the block information key K b 1 t and the content key K con. Then, these keys are replaced with a block information key Kbit and a content key Kcon encrypted with the distribution key Kdis.
- step S61 the control unit 301 of the recording / reproducing device 300 extracts the usage restriction information from the usage policy of the data header, and the downloaded content is recorded / reproduced. It can be used only by the device 300 (in this case, the use restriction information is set to 1). F) It is determined whether it can be used by another similar recording / reproducing device 300 (in this case, the use restriction information is set to 0). If the result of the determination is that the use restriction information is 1, the flow proceeds to step S62.
- step S62 the control unit 301 of the recording / reproducing device 300 causes the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 to calculate a check value unique to the recording / reproducing device.
- the check value specific to the recording / reproducing device is obtained by setting the recording / reproducing device signature key K de V stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as ⁇ as shown in FIG. 5 Generate the intermediate check value stored in 8 by encrypting it with DES .
- the calculated recording / reproducing device-specific check value ICV dev is overwritten instead of the total check value ICV t.
- the system signature key K S y S is a system signature key used to attach a common signature or ICV to the distribution system
- the recording / reproducing device signature key K dev is a recording / reproducing device. This is different for each device, and is the signature key used by the recorder / player to sign the ICV or the ICV. That is, data signed by the system signature key K sys is successfully used by a system (recording / reproducing apparatus) having the same system signature key, that is, the total check value ICV t is equal to the data, and is commonly used.
- the recording / reproducing device signature key is a key unique to the recording / reproducing device.
- the data that was signed by the device i.e., the data stored in the recording device after the signature
- the recording / reproducing device-specific check value ICV dev Will not match, and an error will occur and playback will not be possible.
- the data processing device of the present invention by setting the usage restriction information, it is possible to freely set the content that can be commonly used in the system and the content that can be used uniquely for the recording / reproducing device.
- step S63 the control unit 301 of the recording / reproducing device 300 stores the content in the external memory 402 of the recording device 400.
- FIG. 26 is a diagram showing the content status in the recording device when the use restriction information is 0.
- FIG. 27 is a diagram showing the content status in the recording device when the use restriction information is 1.
- FIG. 26 differs from FIG. 4 in that the content block information key K bit and the content key K c 0 1 1 are encrypted with the delivery key! ⁇ (1 is The only difference between Fig. 27 and Fig. 26 is that the check value calculated from the intermediate check value is encrypted with the system signature key K sys in Fig. 26, In FIG. 27, it is encrypted with the recording / reproducing device signature key K dev unique to the recording / reproducing device.
- the verification of the check value A fails in step S52
- if the verification of the check value B fails in step S56
- step S62 is skipped and the process proceeds to step S63.
- FIG. 28 is a flowchart illustrating a procedure in which the recording / reproducing device 300 reads out a content from the recording device 400 and uses the content. Also in FIG. 28, it is assumed that mutual authentication has already been completed between the recording / reproducing device 300 and the recording device 400.
- step S71 the control unit 301 of the recording / reproducing device 300 reads the content from the external memory 402 of the recording device 400 using the recording device controller 303. Then, the control section 301 of the recording / reproducing apparatus 300 transmits a header (Head er) portion of the data to the recording / reproducing apparatus signal processing section 302 of the recording / reproducing apparatus 300.
- Step S72 is a process similar to step S52 described in “(7) Download process from recording / reproducing device to recording device”, and is a recording / reproducing device encryption processing unit that receives the header (Header).
- the control unit 306 of 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate the pick value A.
- the check value A is obtained by using the check value A generation key K leva stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key as shown in FIG.
- check values A and I CVa are check values for verifying falsification of identification information and handling policy.
- the check value A generated key K icva stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 is used as a key, and identification information (Content ID) and handling policy (Usage Policy) are used as messages in Fig. 7. If the check value A calculated according to the described ICV calculation method matches the check value stored in the header: ICV a, the identification information stored in the recording device 400 and the handling Then, it is determined that the policy has not been tampered.
- step S73 the control unit 301 of the recording / reproducing device 300 divides the block information key K bit and the content key K c ⁇ ⁇ from the read header (He ader) part. It is taken out and transmitted to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- the recording device 400 that has received the block information key K bit and the content key K con transmitted from the recording / reproducing device 300 transmits the received data to the encryption Z decryption unit 406 of the recording device encryption processing unit 401 and the recording device.
- the control unit 301 of the recording / reproducing device 300 transmits the content of the block information key Kbit re-encoded by the session key K ses from the recording device 400 via the recording device controller 303 of the recording / reproducing device 300. Read the key K con.
- step S74 the control section 301 of the recording / reproducing apparatus 300 transmits the received book information key K bit and the content key Kcon re-encrypted with the received session key K ses to the recording / reproducing apparatus 300. This is transmitted to the recording / reproducing device encryption processing unit 302.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 sends the encryption / decryption Z decryption of the recording / reproducing device encryption processing unit 302.
- the encryption unit 308 sends the block information key Kbit and the content key Kcon encrypted with the session key K ses Decrypt with the shared session key K ses.
- the block information received in step S71 is decrypted with the decrypted block information key Kbit.
- the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300 transmits the decrypted block information key Kbit, content key Kcon and block information BIT to the block information received in step S71.
- the key Kbit, the content key Kcon and the block information BIT are replaced and stored.
- the control unit 301 of the recording / reproducing device 300 reads out the decrypted block information BI from the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300.
- Step S75 is the same process as step S56 described in “(7) Download process from recording / reproducing device to recording device”.
- the control unit 306 of the recording / reproducing device encryption processing unit 302 divides the block information key ⁇ bit, content key K con and block information (BIT) read from the recording device 400 into 8-byte units, and exclusive ORs all of them. I do.
- the control section 306 of the recording / reproducing apparatus cryptographic processing section 302 causes the encryption Z decrypting section 308 of the recording / reproducing apparatus cryptographic processing section 302 to calculate the check value B (ICVb). As shown in FIG.
- the check value B is obtained by using the chip value B generation key Kicvb stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key, and Is generated by encrypting the logical OR value with DES. Finally, the check-in B is compared with the I CVb in the header, and if they match, the process proceeds to step S76.
- the check values B and I CVb are check values for verifying tampering of the block information key Kbit, the content key Kcon, and the block information.
- the check value B generation key KicVb stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key
- the block information read from the recording device 400, the key Kbit, the content key Kcon, and the block information ( BIT) is divided into 8-byte units, and the value obtained by exclusive ORing is encrypted with DES.
- the check value B generated is the header (Header) in the data read from the recording device 400.
- step S76 the control unit 306 of the recording / reproducing device encryption processing unit 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate an intermediate check value.
- the intermediate check value is obtained by using the total check value generation key KicVt stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key as shown in FIG.
- the check value A, check value B, and all retained content check values in parentheses are calculated as messages according to the ICV calculation method described in FIG.
- the internal memory 307 of the recording / reproducing device encryption processing unit 302 may store the IVt as the initial value for generating the total tick value and use it. .
- the generated intermediate check value is stored in the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 as necessary.
- the control unit 301 of the recording / reproducing device 300 transmits the usage restriction information from the usage policy (Usage Policy) included in the header of the data read from the external memory 402 of the recording device 400.
- Usage Policy usage policy
- step S77 It is determined whether the extracted and downloaded content can be used only by the recording / reproducing device 300 (use restriction information is 1), and can be used by another similar recording / reproducing device 300 (use restriction information is 0). As a result of the determination, if the use restriction information is 1, that is, if the use restriction that the downloaded content can be used only by the recording / reproducing device 300 is set, the process proceeds to step S80, and the use restriction information is 0, that is, another If the setting can be used by the similar recording / reproducing device 300, the process proceeds to step S78. Note that the process of step S77 may be performed by the encryption processing unit 302.
- step S78 the calculation of the total check value I CV t is performed in the same manner as in step S58 described in (7) Down-port processing from the recording / reproducing device to the recording device. That is, the control unit 306 of the recording / reproducing device encryption processing unit 302 calculates the total check value ICVt in the encryption / decoding unit 308 of the recording / reproducing device encryption processing unit 302 Let The total check value I CV t is determined by using the system signature key K sys stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key as shown in FIG. Generated by encrypting with S.
- step S79 the process proceeds to step S79, and the total check value I CV t generated in step S 78 is compared with the I CV t in the header (Header) stored in step S 71, and when they match.
- step S82 the total check value I CV t generated in step S 78 is compared with the I CV t in the header (Header) stored in step S 71, and when they match.
- the total check value I CV t is a check value for verifying tampering of all check values of I CVa, I CVb and each content block. Therefore, if the total check value generated by the above-described processing matches the check value: I CV t stored in the header (Header), the data stored in the recording device 400 includes I CVa, It is determined that all the check values of I CVb and each content block have not been tampered with.
- step S77 If it is determined in step S77 that the downloaded content is a setting that can be used only by the recording / reproducing device 300, that is, if the setting information is 1, the process proceeds to step S80.
- step S80 the control unit 306 of the recording / reproducing device signal processing unit 302 sends the recording / reproducing device-specific tuck value I CVd ev to the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302.
- the recording / reproducing device-specific check value I CVd e V is the recording / reproducing device-specific recording / reproducing device signature stored in the internal memory 307 of the recording / reproducing device encryption processing section 302 as shown in FIG.
- an intermediate check value is generated by encrypting it with DES.
- step S81 the check value I CVd ev unique to the recording / reproducing device calculated in step S 80 is compared with the I CVd ev in the header stored in step S71, and when they match, Goes to step S82.
- data signed by the system signing key K sys is commonly checked by a system (recording / reproducing apparatus) having the same system signing key, that is, the total check value ICV t is matched.
- a system recording / reproducing apparatus
- the recording / reproducing device signature key is a key unique to the recording / reproducing device
- data signed using the recording / reproducing device signature key K dev In other words, after the signature, the data stored in the recording device will not match the check value ICV dev unique to the recording / reproducing device if the recording device is mounted on another recording / reproducing device and the reproduction is attempted. It will not be possible to play because of an error.
- step S82 the control of the recording / reproducing device 300 is performed.
- the unit 301 extracts the content block information in the block information BIT read out in step S74, and checks whether or not the content block is to be encrypted. If the content block has been encrypted, the corresponding content block is read out from the external memory 402 of the recording device 400 via the recording device controller 303 of the recording / reproducing device 300, and then recorded / reproduced.
- the recording / reproducing device encryption processing unit 302 of the device 300 To the recording / reproducing device encryption processing unit 302 of the device 300.
- control unit 303 of the recording / reproducing device encryption processing unit 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to decrypt the content, and at the same time, the content. If the block is to be verified, the content check value is verified in the next step S83.
- Step S83 is the same process as step S58 described in “(7) Download process from recording / reproducing device to recording device”.
- the control unit 301 of the recording / reproducing device 300 fetches the content block information in the block information (BIT), determines whether or not the content block is to be verified from the storage status of the content check value, If the content block is to be verified, the corresponding content block is received from the external memory 402 of the recording device 400, and the recording / reproducing device encryption processing unit 3002 of the recording / reproducing device 300 is received.
- Send to The control unit 303 of the recording / reproducing device encryption processing unit 302 that has received this causes the symbol Z decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate a content intermediate value.
- the content intermediate value is generated by decrypting the input content block in the DES CBC mode with the content key K con decrypted in step S74, dividing the result into 8 bytes, and performing exclusive OR operation.
- the control section 303 of the recording / reproducing apparatus encryption processing section 302 causes the encryption Z decrypting section 308 of the recording / reproducing apparatus encryption processing section 302 to calculate the content check value.
- the content check value is generated by encrypting the content intermediate value with DESS using the content check value generation key K i cvc stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key.
- the control unit 303 of the recording / reproducing device encryption processing unit 302 determines the content check value and the content block in the content block received from the control unit 301 of the recording / reproducing device 300 in step S.71.
- the ICV is compared, and the result is passed to the control section 301 of the recording / reproducing apparatus 300.
- the control unit 301 of the recording / reproducing device 300 receives the comparison result of the content check value (if not verified, the comparison results are all successful), and the verification is successful. Then, the decrypted content is extracted from the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300. Then, the next content block to be decrypted is taken out, decrypted by the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300, and the process is repeated until all content blocks are decrypted. In step S83, if the recording / reproducing apparatus encryption processing unit 302 of the recording / reproducing apparatus 300 does not match in the verification processing of the content check value, the processing is regarded as a failure in the verification at that time.
- the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300 monitors the decryption order of the content locks to be decrypted, and detects the wrong order or the same content block. If decryption is performed more than once, the decryption shall be deemed to have failed. .
- step S72 If the check value A fails in step S72, the check value B fails in step S75, the total check value ICV t fails in step S79, the step If the verification of the check value ICV dev specific to the recording / reproducing device has failed in S81, and if the verification of the content check value of each content block has failed in step S83, the process proceeds to step S84, and The error is displayed.
- step S74 of FIG. 28 the data encrypted with the different storage key K str for each recording device is decrypted, so that the data can be correctly decrypted by another recording device. What! / Because it has a configuration
- the recording device can be used only after the mutual authentication process executed between the recording / reproducing device 300 and the recording device 400 described above.
- a recording / reproducing device 300 and a recording / reproducing device may be used to generate a recording device, such as a memory card, in which contents are stored by unauthorized duplication, etc.
- Fig. 29 is a diagram illustrating the command processing configuration in this recording device.
- the recording / reproducing apparatus 300 As shown in FIG. 29, between the recording / reproducing apparatus 300 having the recording / reproducing apparatus encryption processing section 302 and the recording device 400 having the recording device encryption processing section 401, the recording / reproducing apparatus 300 is provided. Under the control of the control unit 301 of the recording device controller 303, a command number (No. 0) is transmitted to the communication unit (including the reception register) 404 of the recording device 400. ) Is output.
- the recording device 400 has a command number management unit 222 in the control unit 403 in the encryption processing unit 401.
- the command number management unit 2901 holds a command register 2902, and stores a command sequence corresponding to a command number output from the recording / reproducing device 300. In the command sequence, as shown on the right side of FIG. 29, command numbers 0 to y are sequentially associated with execution commands for the command numbers.
- the command number management unit 290 1 monitors the command number output from the recording / reproducing device 300, retrieves the corresponding command from the command register 292, and executes it.
- the command sequence stored in the command register 2992 is associated with the command numbers 0 to k preceding the command sequence relating to the authentication processing sequence, as shown on the right of FIG. Furthermore, the command sequence for the authentication processing sequence The subsequent command numbers p to s are associated with decryption, key exchange, and encryption processing command sequence 1, and the following command numbers u to y are associated with decryption, key exchange, and encryption processing command sequence 2.
- the recording device 400 when the recording device 400 is mounted on the recording / reproducing device 300, the control unit 301 of the recording / reproducing device 300, the recording device controller An initialization command is transmitted to the recording device 400 via the interface 303. Receiving this, the recording device 400 receives the command via the communication unit 404 in the control unit 403 of the recording device encryption processing unit 401, and clears the authentication flag 2903. That is, an unauthenticated state is set. Alternatively, in the case where power is supplied from the recording / reproducing device 300 to the recording device 400, the system may be set to an unapproved state at power-on.
- the control unit 301 of the recording / reproducing device 300 transmits an initialization command to the recording / reproducing device encryption processing unit 302.
- the recording device @ entrance number is also transmitted.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 executes the authentication corresponding to the recording device / entrance number in the control unit of the recording / reproducing device signal processing unit 302. Clear flag 2904. That is, an unauthenticated state is set.
- the control unit 301 of the recording / reproducing device 300 outputs the command numbers sequentially from the command number ⁇ in ascending order via the recording device controller 303.
- the command sequence stored in the command register 2902 is assigned a command number so that the authentication process is performed in advance, and the subsequent processes are decrypted, key exchanged, and encrypted. Is stored.
- a specific example of the processing sequence of decryption, key exchange, and encryption processing will be described with reference to FIGS.
- FIG. 30 shows a part of the process executed in the process of downloading content from the recording / reproducing device 300 to the recording device 400 described above with reference to FIG. Specifically, it is executed between steps S59 and S60 in FIG.
- step S 3001 is processing in which the recording device receives data (ex. Block information key Kbit, content key Kcon) encrypted with the session key K ses from the recording / reproducing device.
- the command sequence p to s shown in FIG. 29 is started.
- the command strings p to s are started after the authentication processing commands 0 to k have been completed and the authentication flags 2903 and 2904 shown in FIG. 29 are set to the authenticated flags. This is guaranteed by the command number management section 2901 accepting command numbers only in ascending order from 0.
- Step S3002 is a process of storing, in a register, data (ex. Block information key Kbit, content key Kcon) encrypted by the recording device using the session key Kse s received from the recording / reproducing device.
- data ex. Block information key Kbit, content key Kcon
- Step S3003 is a step of executing processing for extracting data (ex. Block information linked Kbit, content key Kcon) encoded with the session key Kses from a register and decrypting the data with the session key Kses. is there.
- data ex. Block information linked Kbit, content key Kcon
- Step S3004 is a step of executing a process of encrypting the data (ex. Block information key Kbit, content key Kcon) decrypted with the session key Kses with the storage key Kstr.
- the above processing steps 3002 to 3004 are processings included in the command numbers p to s in the command register described in FIG. These processes are recorded data
- the recording device signal processing unit 401 sequentially executes according to the command numbers p to s received from the recording / reproducing device 300. This is the step of storing the converted data (ex. The pro- cess information key Kbit and the content key Kcon) in the external memory of the recording device.
- the recording / reproducing unit 300 may read the data encrypted with the storage key K str from the recording device encryption processing unit 401, and then store the data in the external memory 402 of the recording device 400.
- steps S 3002 to S 3004 are a non-interruptible execution sequence that is continuously executed. For example, at the end of the decoding process in step S 3003, a data read command from the recording / reproducing device 300 is issued. However, since the read command is different from the command numbers in ascending order set in the command numbers p to s of the command register 2902, the command number management unit 2901 does not accept the execution of the read. Therefore, it is impossible to read out the decrypted data generated at the time of key exchange in the recording device 400 from the outside, for example, from the recording / reproducing device 300, and it is possible to prevent the key data and the contents from being illegally read.
- FIG. 31 constitutes a part of the processing executed in the content reproduction processing in which the content is read from the recording device 400 described above with reference to FIG. Specifically, this is the process executed in step S73 in FIG.
- a step S 3101 reads data (& ⁇ . Block information key Kbit, content key Kcon) encrypted with the storage key K str from the external memory 402 of the recording device 400. The steps to be performed.
- Step S3102 is a step of storing data (ex. Block information key Kbit, content key Kcon) encrypted with the storage key Kstr read from the memory of the recording device in a register.
- the recording / reproducing device 300 encrypts the data from the external memory 402 of the recording device 400 with the storage key Kstr.
- the read data may be read and then stored in the register of the recording device 400.
- Step S3103 is a step of taking out the data (ex. Block information key K bit and content key K con) decoded with the storage key K str from the register and decrypting it with the storage key K str. .
- Step S3104 is a step of encrypting the data (ex. Block information key Kbit, content key Kcon) decrypted with the storage key Kstr using the session key Kses.
- the above processing steps 3102 to 3104 are the processings included in the command numbers u to y in the command register described in FIG. These processes are sequentially executed by the recording device encryption processing unit 406 according to the command numbers U to y received from the recording / reproducing unit 300 in the command number management unit 2901 of the recording device.
- the next step S3105 is a process of transmitting data (ex. Block information key K bit, content key K con) encrypted with the session key K ses from the recording device to the recording / reproducing device.
- steps S3102 to S3104 are non-interruptible execution sequences that are continuously executed.
- the recording / reproducing unit 3 Even if there is a data read instruction from 00, the read command is the command number in the command register 2902! ! Since the command numbers are different from the ascending command numbers set in ⁇ y, the command number management unit 290 1 does not accept the execution of reading. Therefore, it is impossible to read out the decrypted data generated at the time of key exchange in the recording device 400 from outside, for example, from the recording / reproducing device 300, and it is possible to prevent the key data or the content from being illegally read.
- the objects to be decrypted and encrypted by key exchange are the block information key Kbit and the content key Kcon.
- the command sequence stored in the command register 2902 shown may include decryption and encryption processing involving key exchange of the content itself.
- the object to be decrypted and encrypted by the exchange is not limited to the above example.
- the key exchange processing in the data processing apparatus of the present invention can be executed only after the authentication processing between the recording / reproducing device and the recording device is completed. Since the configuration prevents access, high security of contents and key data is ensured.
- the data format in the media 500 or the communication means 600 shown in FIG. 3 is one type shown in FIG.
- the data format in the media 500 or the communication means 600 is not limited to the format shown in FIG. 4 described above. If the content is music, if it is image data, or if it is a program such as a game. In some cases, it is desirable to adopt a data format according to the content.
- Figures 32 to 35 show four different data formats. The data format on the media 500 or the communication means 600 shown in FIG.
- the data format is shown in the following case. First, the outline of the data formats shown in FIGS. 32 to 35 will be described, and then the content of each data in each format and the difference between the data in each format will be described.
- FIG. 32 shows format type 0, which is common to the type shown as an example in the above description.
- the feature of this format type 0 is that the whole data is divided into N data blocks of arbitrary size, that is, block 1 to block N, and each block is arbitrarily encrypted.
- data can be configured by mixing plaintext blocks.
- Block encryption Is executed by the content key K con the content key K con is encrypted on the medium by the distribution key K dis, and at the time of storage in the recording device, by the storage key K str stored in the internal memory of the recording device. It is encrypted.
- the block information key K bit is also encrypted on the medium using the distribution key K dis, and when stored in the recording device, is encrypted using the storage key K str stored in the internal memory of the recording device.
- FIG. 33 shows format type 1.
- Format type 1 divides the entire data into N data blocks, that is, block 1 to block N, as in format type 0. It differs from the above-mentioned format type 0 in that the size of each block is the same.
- the encryption mode of the block using the content key K con is the same as that of the format type 0 described above.
- the content key K con and the block information key K bit are encrypted by the distribution key K dis on the media and encrypted by the storage key K str stored in the internal memory of the recording device when stored in the recording device. Is the same as the format type 0 described above.
- Format type 1 differs from format type 0 in that a fixed block configuration simplifies configuration data such as the data length of each block. Noise can be reduced. '
- each block is composed of a pair of an encrypted part and a non-encrypted (plaintext) part.
- the block length and configuration are regular, there is no need to check each block length and block configuration at the time of decryption processing or the like, so that efficient decryption and encryption processing can be performed.
- the parts that make up each block that is, the encrypted part and the non-encrypted (plaintext) part, can be defined as check targets for each part. If the block is a containing block, the content check value for that block is I CV i is defined.
- FIG. 34 shows format type 2.
- the feature of format type 2 is that it is divided into N data blocks of the same size, that is, blocks 1 to N, and each block has its own block key K b It is encrypted with 1c.
- the encryption of each block key K b 1 c is performed by the content key K con, and the content key K con is encrypted on the medium by the distribution key K dis. It is encoded by the storage key K str stored in the internal memory of.
- the block information key Kbit is also encrypted on the medium by the distribution key Kdis, and is encoded by the storage key Kstr stored in the internal memory of the recording device when stored in the recording device.
- Fig. 35 shows format type 3.
- the feature of format type 3 is that it is divided into N data blocks of the same size, that is, block 1 to block N, like format 'type 2.
- Each block is encrypted with its own block key K b 1 c, and further, without using a content key, each block key K b 1 c is encrypted with a distribution key K dis on the media. It is encrypted and is encrypted on the recording device by the storage key K str.
- the content key K con does not exist on the media or on the device.
- the block information key Kbit is encrypted on the medium by the delivery key Kdis, and when stored in the recording device, is encrypted by the storage key Kstr stored in the internal memory of the recording device.
- the header part contains the content identifier, handling policy, check values A and B, total check value, block information key, Includes content key and block information.
- the handling policy includes the content data length, header length, format type (formats 0 to 3 described below), for example, whether it is a program or data.
- the localization flag which is a flag for determining whether or not the content can be used specifically for the recording / reproducing device. It stores permission flags for content copy and move processing, as well as various usage restriction information and process information on the content, such as the content encryption algorithm and mode.
- Check value A is a check value for identification information and handling policy, and is generated by, for example, the method described above with reference to FIG.
- the block information key K bit is a key for encrypting the block information.
- the block information key is encrypted by the distribution key K dis on the medium, and when stored in the recording device, the internal memory of the recording device is used. Is encrypted by the storage key K str stored in.
- the content key K con is a key used for encrypting the content.
- the content key K con is encrypted with the distribution key K dis on the medium in the same manner as the block information key K bit. It is encrypted with the storage key K str stored in the internal memory of the device.
- the content key K con is also used for encrypting the block key K b 1 c that can be formed in each content block.
- the content key K con does not exist.
- the block information is a table that describes the information of each block.
- the block check value that is, the content check value ICV i
- the block check value is a value obtained by performing an exclusive OR operation on the entire plaintext (decrypted text) in units of 8 bytes.
- ic V c is used as a key).
- FIG. 36 shows an example of a configuration for generating the content block check value I CV i.
- Each of the messages M constitutes 8 bytes each of the decrypted data and the plaintext data.
- the content check value I CV i is defined for the block.
- the check value P_ICV ij of part j in block i is the packet; if j is encrypted, the content check value is the exclusive OR of the entire plaintext (decrypted text) in 8-byte units. Generated as a value encrypted with the generation key KicVc. If the part j is not encrypted, the whole block data (plaintext) of the part is tampered with the tampering check value generation function (DES-CBC-MAC, content check value generation) shown in Fig. 36 in 8-byte units. Key KicVc).
- Figure 37 shows a falsified check value generation function (DES-CBC-MAC, content check value) in 8-byte units for data obtained by concatenating multiple part check values P—I CV ij in the order of the part numbers. Generated key K icvc).
- Figure 37 shows an example of a configuration for generating the content check value I CVi for the content block.
- the block check value I CV i is not defined.
- Check value B is a check value for the block information key, the content key, and the entire block information, and is generated by, for example, the method described with reference to FIG.
- the total check value I CV t is the check value A: I CVa, the check value B: I CVb, and the check value I CV i included in each block whose content is to be checked.
- the check value A is generated by applying a system signing key K sys to an intermediate check value generated from each check value such as I CV a and performing an encryption process.
- the total check value I CV t is calculated from the above check value A: I CV a, check value B: I CV from the content data, ie, the block key of block 1.
- Figure 38 shows an example of a configuration that generates the total check value I CVT for Format Types 2 and 3.
- the unique check value ICV de V is equal to the total check value I if the above-mentioned low power flag is set to 1, that is, if the content indicates that the content is uniquely available to the recording / reproducing device.
- Check value that can be replaced by CV t In the case of format 'type 0 or 1, check value A: I CV a, check value B: I CVb, and each plot whose content is to be checked.
- the check value I CV i included in the check is generated as a check value for the entirety. Specifically, as described with reference to FIG. 25 or FIG. 38 above, the check value A is encrypted by applying the recording / reproducing device signature key Kd ev to the intermediate check value generated from each check value such as ICV a. Generated by performing the conversion process.
- Step S101 is an authentication processing step between the recording / reproducing device and the recording device, and is executed according to the authentication processing flow of FIG. 20 described above.
- step S101 When the authentication processing in step S101 is completed and the authentication flag is set, the recording / reproducing apparatus 300 proceeds to step S102 via the reading unit 304, for example, the medium 500 storing the content data.
- the data is read in accordance with a predetermined format by using the communication unit 305, or the data is received from the communication means 600 in accordance with the predetermined format using the communication unit 305, and the header (He ader)
- the portion is transmitted to the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300.
- step S103 the control unit 306 of the encryption processing unit 302 causes the encryption Z decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate the check value A.
- the checker A uses the chip value A generation key Kicva stored in the internal memory 307 of the recording / reproducing device encryption processor 3 ⁇ 2 as a key, and uses identification information (Content ID) as the key. This is calculated according to the ICV calculation method described with reference to Fig. 7 using the usage policy as a message.
- step S104 the checker A is compared with the checker ID: ICVa stored in the header, and if they match, the process proceeds to step S105.
- the check values A and ICV a are check values for verifying falsification of identification information and handling policy.
- Check value stored in the internal memory 307 of the recorder / reproducer encryption unit 302 The check value A generation key Kicva is used as a key, and identification information (Content ID) and handling policy (Usage Policy) are sent as a message. If, for example, the check value A calculated according to the ICV calculation method matches the check value: ICV a stored in the header (Header), there is no falsification of the identification information and the handling policy. Is determined.
- step S105 the control section 303 of the recording / reproducing apparatus cryptographic processing section 302 determines whether the delivery key Kdis is taken out or generated, by the decoding / decoding section 3 of the recording / reproducing apparatus cryptographic processing section 302. 08.
- the method of generating the delivery key Kd is performed, for example, by using the master key MKd is for delivery as in step S53 of FIG. 22 described above.
- step S106 the control unit 306 of the recording / reproducing device encryption processing unit 302 uses the generated transmission key Kd is using the symbol / decryption unit 308 of the recording / reproducing device encryption processing unit 302. Of the block information key Kbit and the content key K con stored in the header part of the data 500 received via the reading unit 304 or the data received from the communication unit 600 via the communication unit 304. Perform decryption processing. Further, in step S107, the control section 303 of the recording / reproducing apparatus signal processing section 302 uses the decrypted block information key Kbit in the encryption / decryption section 308 of the recording / reproducing apparatus encryption processing section 302. Decode the block information.
- step S108 the control section 303 of the recording / reproducing apparatus encryption processing section 302 generates a check value B (ICVb ') from the block information key Kbit, the content key Kcon, and the block information (BIT). I do.
- the check value B is obtained by using the check value B generation key KicVb stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key, a block information key Kbit, and a content
- the exclusive OR value consisting of the key K c ⁇ ⁇ and the block information (BI ⁇ ) is encrypted with DES and generated.
- step S109 the check value ⁇ is compared with the ICVb in the header (Header), and if they match, the process proceeds to step S110.
- the check values B and I CVb are check values for verifying tampering of the block information key Kbit, the content key Kcon, and the block information.
- the check value B generation key KicVb stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 is used as a key, and the block information key Kbit, the content key Kcon and the block information (BIT) are 8 bytes. If the check value B generated by encrypting the value obtained by dividing the data into units and performing the exclusive OR with DES using the DES matches the check value: I CVb stored in the header (Header), It is determined that there is no falsification of the block information link Kbit, the content key Kcon, and the block information.
- step S110 the control unit 306 of the recording / reproducing device signal processing unit 302 causes the encryption / Z decryption unit 308 of the recording / reproducing device signal processing unit 302 to calculate an intermediate check value.
- the intermediate check value is obtained by using the total check value generation key K ic V t stored in the internal memory 307 of the recording / reproducing device signal processing unit 302 as a key,
- the value A, check value B, and all retained content check values are calculated as messages according to the ICV calculation method described in Fig. 7 and others.
- the generated intermediate chip value is stored in the recording / reproducing device encryption processing section 30'2 of the recording / reproducing device 300 as necessary.
- step S111 the control section 303 of the recording / reproducing apparatus cryptographic processing section 302 calculates the total check value ICVt 'in the signal decoding section 308 of the recording / reproducing apparatus signal processing section 302.
- the total check value I CV t is obtained by encrypting the intermediate check value with DES using the system signature key K sys stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key.
- step S112 the generated total check value ICVt 'is compared with the ICVt in the header (Header), and if they match, the process proceeds to step S113. As described above with reference to FIG.
- the total check value I CV t is a check value for verifying tampering of all check values of I CV a, IC Vb, and each content block. Therefore, if the total check value generated by the above processing matches the check value stored in the header (Header): ICVt, the check values of I CV a, I CVb, It is determined that there is no tampering
- the control unit 301 of the recording / reproducing device 300 extracts the content block information in the block information (BIT), and determines whether the content block is to be verified. Check. If a content block is to be verified, a content check flag is stored in the block information in the header.
- step S114 the corresponding content block is read from the medium 500 using the reading unit 304 of the recording / reproducing device 300.
- the data is received from the communication means 600 using the communication section 300 of the recording / reproducing apparatus 300, and transmitted to the recording / reproducing apparatus encryption processing section 302 of the recording / reproducing apparatus 300.
- the control section 303 of the recording / reproducing apparatus encryption processing section 302 calculates the content check value ICV i, in the encryption / decryption section 308 of the recording / reproducing apparatus encryption processing section 302. Let it.
- the content check value ICV i when the block is encrypted, decrypts the input content block with the content key K con in the DES CBC mode and all the results are 8 bytes.
- the content intermediate value generated by performing an exclusive OR operation on a unit basis is encrypted with the content check value generation key KicVc stored in the internal memory 307 of the recording / reproducing device 300 to generate the content intermediate value.
- the falsification check value generation function (DES_CBC—MAC, content check value generation key KicV) shown in Fig. 36 shows the entire data (plaintext) in 8-byte units. c is used as a key).
- step S115 the control section 303 of the recording / reproducing apparatus encryption processing section 302 records the content check value and the recording in step S102.
- the ICV in the content block received from 1 is compared, and the result is passed to the control section 301 of the recording / reproducing apparatus 300.
- the control unit 301 of the recording / reproducing unit 300 that has received the data extracts the next content block to be verified and extracts the next content block to be verified. Then, the same verification process is repeated until all content locks are verified (step S116). If any of the check values cannot be obtained in step S104, step S109, step S112, or step S115, the download process ends as an error. .
- step S117 the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300 records the block information key K bit and the content key Kcon decrypted in step S106.
- the encryptor Z decryptor 308 of the regenerator cryptographic processor 302 encrypts with the session key K ses shared at the time of mutual recognition and authentication.
- the control unit 310 of the recording / reproducing device 300 stores the block information key K bit and the content key K con encrypted with the session key K ses in the recording / reproducing device encryption processing unit 300 2 of the recording / reproducing device 300. And transmits these data to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- step S118 the recording device 400, which has received the block information key K bit and the content key KcoII transmitted from the recording / reproducing device 300, transmits the received data to the recording device.
- the encryption / decryption unit 406 of the encryption processing unit 401 decrypts it with the session key K ses shared during mutual authentication, and the recording device internal memory 400 of the encryption processing unit 401 Then, the data is encrypted again with the storage device-specific storage key K str stored in 5, and the control unit 301 of the recording / reproducing device 300 controls the recording device controller 303 of the recording / reproducing device 300. Then, the block information key K bit and the content link K con re-encrypted with the storage key K str are read from the recording device 400. That is, the key of the block information key Kbit encrypted with the delivery key Kdis and the key of the content key Kcon are exchanged.
- step S120 the control unit 301 of the recording / reproducing device 300 causes the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 to calculate a check value unique to the recording / reproducing device.
- the check value unique to the recording / reproducing device is obtained by using the recording / reproducing device signature key K dev unique to the recording / reproducing device stored in the internal memory 307 of the recording / reproducing device encryption processing section 302
- the intermediate check value generated in step S110 is encrypted by DES and generated.
- the calculated recording / reproducing device-specific check value I C V de V is overwritten instead of the total check value I C V t.
- the system signing key K sys is a system signing key used to attach a common signature or ICV to the distribution system, and the recording / reproducing device signing key K dev is used for each recording / reproducing device. Differently, it is the recorder / reproducer signing key used by the recorder / player to sign or ICV. In other words, data signed with the system signature key K sys can be shared by systems (recording / reproducing devices) that have the same system signature key, so that the total check value ICV t matches.
- the recording / reproducing device signature key K de V is used because the recording / reproducing device signature key is unique to the recording / reproducing device. If the data signed by using this method, that is, the data stored in the recording device after signing, is used to set the recording device to another recording / reproducing device and reproducing it, the check value ICV unique to the recording / reproducing device is used. Since dev does not match and an error occurs, playback cannot be performed.
- the content that can be used in common with the system and the content that can be used uniquely for the recording / reproducing device can be freely set by setting the use restriction information.
- step S122 the control unit 301 of the recording / reproducing device 300 causes the recording / reproducing device encryption processing unit 302 to execute formation of a stored data format.
- a stored data format there are 0 to 3 format types, and the format in the header is According to this setting type, data is formed according to the storage format on the right side of FIGS. 32 to 35 described above according to this setting type. Since the flow shown in FIG. 39 has one of the formats 0 and 1, it is formed in one of the formats shown in FIGS.
- step S122 when the formation of the stored data format is completed, in step 122, the control unit 301 of the recording / reproducing device 300 stores the content in the external memory 4 of the recording device 400. 0 Save to 2.
- the above is the mode of the download processing of the content data in the format types 0 and 1.
- Steps S101 to S109 are the same as the above-described download processing of format types 0 and 1, and a description thereof will be omitted.
- the format type 2 does not have the content check value ICVi in the block information because the content check value ICVi is not defined.
- the intermediate check value in format type 2 is the concatenation of check value A, checky B, and the entire contents data from the first data of the first block (block key of block 1) to the last block. It is generated by applying the system signature key K sys to the intermediate check value generated based on the data and executing the encryption process.
- the content data is read out in step S151, and based on the check value A and the check value B in step S152, the content data is read out! /, Generate intermediate check value. Note that even if the content data is encrypted, the decryption process is not performed.
- Format type 2 uses the same processing as format types 0 and 1 described above. Since the decryption of the block data and the inquiry processing of the content check value are not performed in the first step, quick processing is possible.
- step S111 and subsequent steps is the same as the processing in format types 0 and 1, and a description thereof will be omitted.
- the download processing of format type 2 does not perform block data decryption and content check value inquiry processing, unlike the processing of format types 0 and 1, so that rapid processing can be performed and music data can be obtained.
- Etc. This format is suitable for data processing that requires real-time processing.
- Steps S101 to S105 are the same as the above-described download processing of format types 0, 1, and 2, and thus description thereof is omitted.
- Format type 3 basically has much in common with the processing in format type 2, but format type 3 does not have a content key, and the block key K b 1 c is a storage key in the recording device. It differs from the format type 2 in that it is stored after being encrypted with K str.
- the block information key is decrypted in the step S161 following the step S105.
- the control unit 300 of the recording / reproducing device encryption processing unit 302 uses the encryption / decryption unit 308 of the recording / reproducing device signal processing unit 302, and the delivery generated in step S105.
- the key K dis uses the key K dis, the block stored in the header section of the data received from the media 500 via the reading section 304 or the communication means 600 via the communication section 304. Performs decryption processing of the key information key K bit.
- format type 3 since the content key K con does not exist in the data, the content key K con is decrypted. Is not executed.
- step S107 the block information is decrypted using the block information key K bit decrypted in step S161, and in step S162, the recording / reproducing device encryption processing unit 3
- the control unit 302 of 02 generates a pick value B (ICVb ') from the block information key K bit and the block information (BIT).
- the check value B is obtained by using the check value B generation key KicVb stored in the internal memory 307 of the recording / reproducing device encryption processor 302 as a key, a block information key Kbit, and block information (BIT). Is generated by encrypting the exclusive OR value consisting of
- step S109 the check value B is compared with the ICVb in the header (Header), and if they match, the process proceeds to step S151.
- check values B and I CV b function as check values for verifying tampering of block information key K bit and block information. If the generated check value B matches the check value: ICVb stored in the header (Header), it is determined that the block information key Kbit and the block information have not been tampered with.
- Steps 3151 to 3112 are the same as the processing of the format type 2 and thus the description is omitted.
- step S163 the block key Kb1c included in the content data read in step S151 is decrypted with the distribution key Kdis generated in step S105.
- step S164 the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 transmits the block information key K bit decrypted in step S1661 and in step S166,
- the decrypted block key Kb1c is encrypted by the encryption / decryption unit 308 of the recording / reproducing device signal processing unit 302 with the session key Kses shared at the time of mutual authentication.
- the control unit 301 of the recording / reproducing device 300 sends the block information key K bit and the block key Kb 1 c encrypted with the session key K ses to the recording / reproducing device encryption processing unit 3 of the recording / reproducing device 300. And read these data from the recording / reproducing unit 300.
- the data is transmitted to the recording device 400 via the device controller 303.
- step S165 the recording device 400, which has received the block information key K bit and block key Kb1c transmitted from the recording / reproducing device 300, stores the received data in the storage device 400.
- the encryption / decryption unit 406 of the recording device No. processing unit 401 decrypts it with the session key K ses shared during mutual authentication, and the internal memory of the recording device encryption processing unit 401 The re-encryption is performed using the storage device-specific storage key K str stored in the storage device 400, and the control unit 301 of the recording / reproducing device 300 operates as a recording device controller 300 of the recording / reproducing device 300.
- the block information key K bit and the block key K b 1 c re-encrypted with the storage key K str are read from the recording device 400 through 3. That is, the block information key K bit and the block key K b 1 c encrypted with the delivery key K dis are initially converted to the block information key K bit and the block key K b 1 c re-encrypted with the storage key K str Perform the replacement.
- format type 3 download processing like format type 2, does not perform block data decoding and content check value query processing, so rapid processing is possible, and music data and other real-time processing is required. It is a format suitable for the data processing performed. In addition, since the range in which the encrypted content is protected by the block key Kb1c is localized, the security is higher than that of the format type 2.
- 201 is an authentication processing step between the recording / reproducing device and the recording device. This is executed according to the authentication processing flow of FIG. 20 described above.
- step S202 the recording / reproducing apparatus 300 reads a data header according to a predetermined format from the recording device 400 and records the data. This is transmitted to the recording / reproducing device encryption processing unit 302 of the reproducing device 300.
- step S203 the control section 306 of the signal processing section 302 causes the encryption Z decryption section 308 of the recording / reproducing apparatus encryption processing section 302 to calculate the check value A.
- the check value A is determined by using the check value A generation key KicVa stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key and identifying information ( Content ID) and handling policy (Usage P ⁇ ⁇ 1 icy) are calculated as messages.
- step S204 the calculated check value A is compared with the check value: I CVa stored in the header (Header), and if they match, the process proceeds to step S205.
- Check values A and ICVa are check values for verifying falsification of identification information and handling policies. If the calculated check value A matches the check value: I CV a stored in the header, it is determined that the identification information and the handling policy stored in the recording device 400 have not been tampered with. Is done.
- step S205 the control unit 301 of the recording / reproducing device 300 transmits the block information chain Kbit and the content key K c encrypted with the storage device-specific storage key K str from the read header.
- ⁇ ⁇ is taken out and transmitted to the recording device 400 via the recording device controller 303 of the recording / reproducing device 30.
- the recording device 400 that has received the block information key Kbit and the content key Kcon transmitted from the recording / reproducing device 300 transmits the received data to the encryption Z decryption unit 406 of the recording device encryption processing unit 401 and the recording device. It is decrypted with the storage device-specific storage key K str stored in the internal memory 405 of the cryptographic processing unit 401, and is re-encrypted with the session key K se s. Shared during mutual authentication. Let it. This process is as described in detail in (9) Key exchange process after mutual authentication. is there.
- step S206 the control unit 301 of the recording / reproducing device 300 sends the block information key re-encoded by the session key K ses from the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- Receive Kbit and content key Kcon Receive Kbit and content key Kcon.
- step S207 the control unit 301 of the recording / reproducing device 300 transmits / receives the block information key Kbit and the content key K con re-encrypted with the received session key K ses to the recording / reproducing device 300.
- the recording / reproducing apparatus encryption processing section 302 of the recording / reproducing apparatus 300 that has transmitted the block information key Kbit and the content key Kco11 re-encrypted with the session key K ses to the Regenerator
- the session where the block information key Kbit and the content key Kcon encrypted by the session key K ses are shared by the encryption / decryption unit 308 of the Decrypt with key K ses.
- step S208 the block information read out in step S202 is decrypted with the decrypted block information chain Kbit.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 transmits the decrypted block information key K bit, content key K con and block information BIT to the block information included in the header read in step S202. It is retained by replacing it with the link Kbit, the content key K con and the block information BIT.
- the control unit 301 of the recording / reproducing device 300 reads out the decrypted block information BIT from the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 in advance.
- step S209 the control unit 303 of the recording / reproducing device encryption processing unit 302 generates a check value B (ICV b ′) from the block information key Kbit, the content key Kcon, and the block information (BIT). I do.
- the check value B is determined by using the check value B generation key Kic Vb stored in the internal memory 307 of the recording / reproducing device signal processing unit 302 as a key, the block information key Kbit, and the content The exclusive OR value consisting of the key K con and the block information (BIT) Generated by encryption.
- step S210 the check value B is compared with the ICVb in the header, and if they match, the process proceeds to step S211.
- the check values B and I CVb are check values for verifying tampering of the block information key Kb i.t, the content key Kcon, and the block information, and the generated check value B is included in the header (Header).
- step S 211 the control unit 306 of the recording / reproducing device encryption processing unit 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate an intermediate check value.
- the total check value generation key KicVt stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 is used as a key, and the check value in the verified header is used.
- A, check value B, and all content check values in the block information are calculated as messages according to the ICV calculation method described in FIG. Note that the generated intermediate check value is stored in the recording / reproducing unit signal processing unit 302 of the recording / reproducing device 300 as necessary.
- step S212 the control unit 301 of the recording / reproducing device 300 uses the usage policy information from the handling policy (Usage Policy) included in the header of the data read from the external memory 402 of the recording device 400. Then, it is determined whether the content to be reproduced can be used only by the recording / reproducing device 300 (use restriction information is 1) or can be used by another similar recording / reproducing device 300 (use restriction information is 0).
- Usage Policy the usage policy information from the handling policy included in the header of the data read from the external memory 402 of the recording device 400. Then, it is determined whether the content to be reproduced can be used only by the recording / reproducing device 300 (use restriction information is 1) or can be used by another similar recording / reproducing device 300 (use restriction information is 0).
- step S212 the processing of step S212 may be performed by the encryption processing unit 302.
- the control unit 301 of the recording / reproducing device 300 is Is calculated by the recording / reproducing device encryption processing section 302 of the recording / reproducing device 300.
- the check value I CVd e V ′ unique to the recording / reproducing device is obtained by using the recording / reproducing device signature key Kdev stored in the internal memory 307 of the recording / reproducing device encryption processing section 302 as a key as shown in FIG. 21 Generate the intermediate check value stored in 1 by encrypting it with DES.
- step S 214 the ICV de V ′ of the recording / reproducing device specific calculated in step S 2 13 and the ICV dev in the header read out in step S 202 are compared, and they match. In this case, the process proceeds to step S217.
- step S215 the control unit 306 of the recording / reproducing device encryption processing unit 302 causes the encryption / Z decryption unit 308 of the recording / reproducing device signal processing unit 302 to calculate the total check value I C Vt.
- the total check value I CV t ′ is obtained by using the system signature key K sys stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key and setting the intermediate check value to DES. Generate by encryption.
- step S216 the generated total check-in ICVt, and the ICVt in the header (Header) are compared, and if they match, the process proceeds to step S217. .
- the total check value I CV t and the check value I CVd e v specific to the recording / reproducing device are check values for verifying tampering of all the check values of I CVa, I CVb and each content block. Therefore, if the check value generated by the above process matches the check value stored in the header (Header): ICV t or ICV dev, the ICVa, ICVb stored in the recording device 400 It is determined that all the check values of each content block have not been tampered with.
- step S 217 the control unit 301 of the recording / reproducing device 300 reads the block data from the recording device 400. Further, it is determined in step S218 whether or not the data has been encrypted. If the data has been encrypted, the encryption processing unit 302 of the recording / reproducing device 300 decrypts the block data. If not, the process skips step S219 and proceeds to step S220.
- step S220 the control unit 301 of the recording / reproducing device 300 Check whether the content block is verified based on the content block information in the block information (BIT). If the content block is to be verified, the content check value is stored in the block information in the header. If the content block was verified, go to step S
- the content check value I CV i ′ is obtained by decrypting the input content block with the content key Kcon in the DES CBC mode using the content key Kcon when the block is encrypted as described above with reference to Fig. 36.
- a content intermediate value generated by exclusive ORing all the results in units of 8 bytes is encrypted and generated using a content check value generation key KicVc stored in an internal memory 307 of the recording / reproducing device 300. If the block is not encrypted, the entire data (plaintext) is plotted in 8-byte units.
- step S222 the control unit 306 of the recording / reproducing device encryption processing unit 302 stores the generated content check value I CVi, and the header value received from the recording device 400 in step S202.
- the content check value I CV i is compared, and the result is passed to the control unit 301 of the recording / reproducing device 300.
- the control unit 301 of the recording / reproducing apparatus 300 stores the plaintext data for execution (reproduction) in the recording / reproducing apparatus system RAM in step S223 if the verification is successful.
- the control section 301 of the recording / reproducing apparatus 300 further takes out the next content lock to be verified, and causes the recording / reproducing apparatus encryption processing section 302 of the recording / reproducing apparatus 300 to verify the content lock, and performs the same verification processing until all content blocks are verified. Then, the RAM storage process is repeated (step S224).
- Step S204 step S210, step S214, step S204
- step S224 If it is determined in step S224 that all blocks have been read, the flow advances to step S225 to start execution and reproduction of the content (program, data).
- the above is a description of the mode of content data reproduction processing in format type 0.
- step S201 to step S217 The processing from step S201 to step S217 is the same as the above-mentioned format type 0 reproduction processing, and therefore the description is omitted.
- step S231 decryption of an encrypted part is executed, and a part ICV is generated. Further, in step S232, a block I CV i, is generated.
- the content check value I CV i is defined for the block.
- the check value P—I CV ij of part j in block i is the content check value generation key K ic that is the exclusive-OR value of the entire plaintext (decrypted text) in 8-byte units when the part is encrypted. Generated as a value encrypted with Vc.
- the entire data (plaintext) is changed in 8 bytes in units of the tampering check value generation function (DES-CBC-MAC, the content check value generation key K icvc). ) Is generated as the value obtained by inputting to.
- DES-CBC-MAC the tampering check value generation function
- the falsification check value generation function (DES-CBC-MA) shown in Fig. 36 shows the entire data (plain text) in 8-byte units for data obtained by concatenating a plurality of part check values P_ICV i, j in the order of part numbers.
- C the content check value generation key K icvc is used as the key). This is as described earlier in FIG. 37.
- step S222 the process of comparing the content check values generated in the above-described procedure is executed in step S222. Subsequent steps S 2 2 3 The following processing is the same as that of the format type 0, and a description thereof will be omitted.
- Steps S201 to S210 are the same as the above-described playback processing of format types 0 and 1, and a description thereof will be omitted.
- format type 2 In format type 2, the processing of steps S211 to S216 performed in format types 0 and 1 is not performed. Also, since the format type 2 does not have a content check value, the verification of the content check value in step S222 executed in the format types 0 and 1 is not performed.
- step S210 After the step of verifying the check value B in step S210, the process proceeds to step S217, where the control unit 301 of the recording / reproducing device 300 Block data is read by control. Further steps
- the encryption processing unit 303 of the recording / reproducing device 300 executes the decryption processing of the block key Kb1c included in the block data.
- the block key Kb1c stored in the recording device 400 is encrypted with the content key Kcon as shown in FIG. 34, and the content key Kcon decrypted in the previous step S207 is obtained. To decrypt the block key K b 1 c using the key.
- step S 2 42 the block key decrypted in step S 2 41
- a block data decoding process is performed using Kb 1 c.
- step S243 execution (reproduction) of content (program, data) is performed. Steps S217 to S243 are repeatedly executed for all blocks. If it is determined in step S244 that all blocks have been read, the playback processing ends.
- the format type 2 processing omits the check value verification processing such as the total check value, and is a configuration suitable for high-speed decoding processing, and requires real-time processing such as music data.
- This format is suitable for data processing.
- the reproduction process of the content data in the format type 3 will be described with reference to FIG. The following describes mainly the points that are different from the format types 0, 1, and 2 playback processing described above.
- Format type 3 basically has many parts in common with the processing in format type 2, but format type 3 does not have a content key as described in FIG. 35 and block key Kb 1
- the difference from format type 2 is that c is encrypted and stored with the storage key K str in the recording device.
- steps S201 to S210 the processing of step S251, step S252, step S253, and step S254 is different from the corresponding processing in the format types 0, 1, and 2 in that the processing does not include the content chain. It is configured as
- step S251 the control unit 301 of the recording / reproducing device 300 extracts the block information key K bit encoded with the storage device-specific storage key Kstr from the read header, and reads the recording device of the recording / reproducing device 300. It is transmitted to the recording device 400 via the controller 303.
- the recording device 400 that has received the block information key Kbit transmitted from the recording / reproducing device 300 transmits the received data to the encryption / decryption unit 406 of the recording device signal processing unit 401 and the internal of the recording device encryption processing unit 401.
- Decryption is performed using the storage device-specific storage key K str stored in the memory 405 and shared during mutual authentication. Re-encrypt with the saved session key K ses. This processing is as described in detail in the section of (9) Key exchange processing after mutual authentication described above.
- step S252 the control unit 301 of the recording / reproducing device 300 re-executes from the recording device 400 using the session key Kses via the recording device controller 303 of the recording / reproducing device 300. ⁇ Receives the encrypted block information key K bit.
- the control unit 301 of the recording / reproducing device 300 stores the block information key K bit re-encrypted with the received session key K ses in the recording / reproducing device 300.
- the recording / reproducing device signal processing unit 302 of the recording / reproducing device 300 which has transmitted the block information key K bit re-encrypted with the session key K ses to the reproducing device encryption processing unit 302,
- the encryption / decryption unit 308 of the recording / reproducing device signal processing unit 302 sends the block information key K bit encrypted with the session key K ses to the session key shared during mutual authentication. Decrypt with K ses.
- step S208 the block information read out in step S202 is decrypted with the decrypted block information key Kbit.
- the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300 includes the decrypted block information key K bit and the block information BIT in the header read out in step S202. Block information key K bit and block information BIT are replaced and stored.
- the control section 301 of the recording / reproducing apparatus 300 reads out the decrypted block information BIT from the recording / reproducing apparatus encryption processing section 302 of the recording / reproducing apparatus 300.
- step S254 the control unit 306 of the recording / reproducing device encryption-processing unit 302 generates a check value B (ICVb ') from the block information key K bit and the block information (BIT). I do.
- the check value B is, as shown in FIG. 24, a check value B generation key K ic V b stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302, and a block information key.
- An exclusive OR value consisting of K bits and block information (BIT) is generated by encrypting with DES.
- step S210 the check value B is compared with the ICV b in the header (Header), and if they match, the process proceeds to step S211.
- step S255 and step S256 since the block key is encrypted with the storage key when stored in the recording device, the decryption processing with the storage key in the recording device 400, the encryption processing with the session key, and the recording The decryption process using the session key in the reproducer 300 is required. A series of these processes are the processing steps shown in step S255 and step S256.
- step S255 the control unit 301 of the recording / reproducing device 300 sends the block key Kb1c encrypted from the block read in step S217 with the storage device-specific storage key Kstr. Is taken out and transmitted to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- the recording device 400 receiving the block key K b 1 c transmitted from the recording / reproducing device 300 transmits the received data to the recording device encryption processing unit 410 encryption Z decryption unit 4 06.
- the encryption key is decrypted with the storage device-specific storage key K str stored in the internal memory 405 of the storage device encryption processor 401, and the session key K shared during mutual authentication Re-encrypt with ses. This processing is as described in detail in the section of “(9) Key exchange processing after mutual authentication” described above.
- step S256 the control unit 301 of the recording / reproducing device 300 sends the session key K ses from the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- the control unit 301 of the recording / reproducing device 300 sends the session key K ses from the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- the block key K b 1 c re-encrypted.
- step S257 a decryption process using the session key Kse s of the block key Kb1c is performed by the encryption processing unit 310 of the recording / reproducing device 300.
- step S224 block data is decrypted using the block key Kb1c decrypted in step S257.
- step S243 execution (reproduction) of content (program, data) is performed. The processing from step S217 to step S243 is repeatedly executed for all blocks. If it is determined in step S224 that all blocks have been read, the playback processing ends.
- the above processing is the content reproduction processing in the format type 3. This is similar to Format Type 2 in that the verification processing of the total check value is omitted, but has a higher security and higher level of processing configuration compared to Format Type 2 in that it includes a block key key exchange process. Has become.
- check values ICV used in the data processing device of the present invention are as follows, briefly summarizing each check value described in the embodiment.
- Check value B, I CVb Check value for verifying tampering of block information key Kbit, content key Kcon, and block information.
- Content check value I C Vi Check value for verifying tampering of each content block of content.
- Total check value I CV t Check value I CV a, Check value I CVb, Check value for verifying tampering of all check values of each content lock.
- Reproducer-specific check value ICV de V Replaced with the total check value I CV t when the localization flag is set to 1, that is, when the content indicates that the content is available for the recording / reproducer. This is a check value.
- the content to be checked by ICVt and ICV deV may include the content itself instead of the check value of each content block.
- the above check values are used in the data processing device of the present invention.
- the check value A, the check value B, the total check value, and the content check value are, for example, the content providing the content data as shown in FIGS. 32 to 35 and FIG.
- An ICV value is generated by the provider or the content manager based on the respective data to be verified, stored in the data together with the content, and provided to the user of the recording / reproducing device 300.
- the user of the recording / reproducing device that is, the content user
- downloads this content to the recording device or reproduces the content it generates an ICV for verification based on the data to be verified and stores the generated ICV.
- the playback device-specific check value ICV dev is replaced with the total check value ICV t and stored in the recording device when the content indicates that the content is available for the recording / playback device.
- the generation process of the check value has been described mainly in terms of the configuration of the generation process based on DES-CBC.
- the IVC generation processing modes are not limited to the above-described methods, but include various generation processing modes and various verification processing modes. In particular, for the relationship between the content provider or administrator and the content user, various IVC generation and verification processing configurations described below are possible.
- Figs. 46 to 48 show diagrams describing the generation process of the check value I CV by the creator and the verification process by the verifier.
- Fig. 46 shows the process of generating ICV by DES_CBC described in the above embodiment, for example, by the ICV creator who is the content provider or administrator, and the generated ICV together with the content is used by the recording / playback user. That is, the configuration provided to the verifier.
- the key required by the recording / reproducing device user, that is, the verifier in the verification process is, for example, each check value generation key stored in the internal memory 307 shown in FIG.
- the verifier who is a content user uses the check value generation key stored in the internal memory 307, the verifier who is a content user generates a check value by applying DES-CBC to the data to be verified. And execute the comparison processing with the stored check value.
- each check value generation key is configured as a key that is secretly shared by the creator of the ICV and the verifier.
- Figure 47 shows that an ICV creator, a content provider or administrator, generates an ICV with a public key symbol digital signature and provides the generated ICV along with the content to the content user, that is, a verifier. I do.
- the content user that is, the verifier, stores the public key of the ICV creator, and executes the ICV verification process using this public key.
- the public key of the content user (recorder / reproducer user), that is, the ICV generator of the verifier does not need to be kept secret, and is easy to manage. This is a mode suitable for the case where the generation and management of the ICV is performed at a high security management level, such as when the generation and management of the ICV are performed by one entity.
- Figure 48 shows that an ICV creator, a content provider or administrator, generates an ICV using a public key cryptographic digital signature and provides the generated ICV along with the content to the content user, that is, a verifier. Further, the public key used for verification by the verifier is stored in a public key certificate (for example, see FIG. 14) and provided to the recording / reproducing device user, that is, the verifier, together with the content data. If there are multiple ICV generators, each generator will have the Key Management Center create data (public key certificate) that certifies the validity of the public key.
- the content user who is the verifier of the ICV, has the public key of the key management center, and the verifier verifies the public key certificate using the public key of the key management center, and the validity is confirmed. Then, retrieve the public key of the ICV creator stored in the public key certificate. In addition, the method of verifying the ICV using the extracted public key of the ICV creator is used in this method. This is an effective mode when it is established.
- various master keys are stored in the internal memory of the recording / reproducing device 300 in the data processing device of the present invention.
- an authentication key Kake is generated (see Equation 3), or a distribution key Kdis is generated (see Equation 4).
- each entity held common secret information, such as key information.
- a one-to-many relationship for example, a relationship between many content users for one content provider or many recording media for one recording / reproducing device, all entities, that is, many content users, or Is to store and hold secret information shared by multiple recording media, for example, key information.
- one content provider can individually store secret information (ex. Key) for each of a number of content users. This was managed and used appropriately for each content user.
- FIG. 49 shows a diagram illustrating a configuration for generating various keys using various master keys of the recording / reproducing device 300.
- Content is input from the medium 500 and the communication means 600 in FIG. 49 in the same manner as in the embodiment described above.
- the content is decrypted by the content key K con, and the content key K con is decrypted by the delivery key K dis.
- the recording / reproducing device 300 when the recording / reproducing device 300 takes out the content from the medium 500 and the communication means 600 and tries to download it to the recording device 400, in the case of FIG. 22 and FIGS. As described above, the recording / reproducing device 300 needs to acquire the distribution key K dis that encrypts the content key.
- This K dis can be obtained directly from the media 500 and the communication means 600, or it can be obtained in advance by the recording / reproducing device 300 and stored in the memory in the recording / reproducing device 300.
- K dis can be obtained directly from the media 500 and the communication means 600, or it can be obtained in advance by the recording / reproducing device 300 and stored in the memory in the recording / reproducing device 300.
- such a key distribution scheme to a large number of users has the potential for leakage that affects the entire system as described above. ′
- the data processing system of the present invention as shown in the lower part of FIG.
- the recording / reproducing device 300 needs the authentication key K a ke.
- the recording / reproducing device 300 can obtain the authentication key directly from the recording medium 400, for example, or can be obtained in advance by the recording / reproducing device 300 and stored in the memory in the recording / reproducing device 300. Similar to the distribution key configuration described above, the distribution configuration of such a key to a large number of users has the potential for leakage that affects the entire system.
- this authentication key K ake is used as an authentication key master key MK ake stored in the memory of the recording / reproducing device 300 and a recording device identification ID: I Dm
- the recording / reproducing device signature key Kd e “required for the process of generating the recording / reproducing device-specific check value I CVd ev can have the same configuration as the above-described distribution key and authentication chain.
- the recording / reproducing device signature key Kd ev was configured to be stored in the internal memory
- the recording / reproducing device signature key master key MKd ev was stored in the memory
- the recording / reproducing device signature key Kd ev was not stored in the internal memory. As shown in the lower part of FIG.
- Kd ev DES (MK dev, I Dd ev) based on the ID de V and the master key MKd e V for the recording / reproducing device signature key.
- FIG. 50 is a diagram illustrating an encryption process of content or the like using a master key in content production or an administrator, and decryption of encrypted data using a master key in a user device, for example, the recording / reproducing device 300 in the above-described embodiment. It is a processing example.
- Step S501 in content production or management is a step of assigning an identifier (content ID) to the content.
- Step S502 is a step of generating a key for encrypting content or the like based on the master key of the content production or manager and the content ID. This is, for example,
- step S503 is a step of encrypting a part or all of the content with a key (for example, a distribution key Kdis).
- the content creator distributes the encrypted content through such steps through media such as a DVD and communication means.
- step S504 Reads out the content ID from the content data received via media, communication means, etc.
- step S505 a key to be applied to decrypt the encrypted content is generated based on the read content ID and the owned master key.
- step S507 use of the decrypted content, that is, reproduction or a program is executed.
- both the content production or administrator and the user device have a master key (for example, a master key MKdis for generating a distribution key), and perform encryption and decryption of the content.
- a master key for example, a master key MKdis for generating a distribution key
- Necessary delivery keys are generated sequentially based on the master key possessed by each and each ID (content ID).
- a content production or manager owns a plurality of master keys and executes a process corresponding to a content distribution target.
- Step S 511 in content production or management is a step of assigning an identifier (content ID) to the content.
- Step S 512 is a step of selecting one master key from a plurality of master keys (for example, a plurality of distribution key generation master keys MK dis) possessed by the content production or manager. The selection process will be further described with reference to FIG. 52.
- a master key to be applied is set in advance in association with each country of the content user, each model, or each version of the model, and the setting is performed. In accordance with the following.
- step S 514 is a step of encrypting a part or all of the content with a chain (for example, a distribution key Kd isi).
- the content creator uses the content ID, the used masker key identification information, and the encrypted content as a distribution unit for the encrypted content, such as a DVD or other media, a communication means, or the like. Deliver via.
- step S516 the master key corresponding to the master key identification information in the content data distributed via media such as a DVD or communication means. Determine whether or not you own If there is no master key corresponding to the master-key identification information in the content data, the distribution content cannot be used in the user device, and the process ends.
- step S 517 If the user owns the master key corresponding to the master-key identification information in the distributed content data, the content ID is determined from the content data received via the media, the communication means, etc. in step S 5 17. read out.
- step S5108 a chain to be applied to decryption of the encrypted content is generated based on the read content ID and the owned master key.
- step S 519 the content is decrypted using this key, and in step S 520, use of the decrypted content, that is, reproduction or program is executed.
- the content production or manager has a master key set including a plurality of master keys, for example, a plurality of distribution key generation master keys MK disl to n.
- the user device has one master key, for example, one distribution key generation master key KK disi, and The user device can decrypt and use the content only when the administrator performs encryption processing using MK d 'isi.
- FIG. 52 shows an example in which a different master key is applied for each country.
- the content provider has master keys ⁇ 1 to ⁇ , and MK1 is used to generate a key to execute the encryption processing of the content to be delivered to the user device for Japan.
- an encryption key K1 is generated from the content ID and MK1, and the content is encrypted by ⁇ 1.
- ⁇ 2 is used to generate a key to execute the encryption processing of the content delivered to the user device for US
- MK3 is the key to execute the encryption processing of the content to be delivered to the user device for EU (Europe). It is set to be used for generation.
- the master key MK1 is stored in its internal memory in a user device for Japan, specifically, a recording / reproducing device such as a PC or a game device sold in Japan.
- MK 2 is stored in its internal memory
- the user device for the EU has a master key MK 3 stored in its internal memory.
- the content provider performs the encryption process of the content that is delivered to the user device by selectively using the master key from the master keys MK1 to n according to the user device that can use the content.
- the content is encrypted with the link K1 generated using the master key MK1.
- This encrypted content can be decrypted using the master key MK1 stored in the user device for Japan, that is, a decryption key can be generated, but it is stored in another US or EU user device. Since the key K1 cannot be obtained from the master keys MK2 and MK3, decryption of the encrypted content becomes impossible.
- Figure 52 shows an example of distinguishing the master key by user device country.
- Various usage forms are possible, such as switching the master key according to the model of the device or the version.
- FIG. 53 shows a processing example in which an identifier unique to a medium, that is, a medium ID and a master key are combined.
- the medium is a medium storing content such as a DVD and a CD.
- the media ID may be unique for each individual medium, for example, may be unique for each title of content such as a movie, or may be unique for each production lot of media. As described above, various methods can be used as the media ID allocation method.
- Step S521 in the media production or management is a step of determining an identifier (media ID) for the media.
- step S523 is a step of encrypting a part or all of the media storage content with a key (for example, a distribution key Kdis). The media producer supplies the content storage media that has been encrypted through these steps.
- the user device such as the recording / reproducing device 300 reads the medium ID from the supplied medium in step S524.
- the content is decrypted using the key, and in step S527, the decrypted content is used, that is, the reproduction or the program is executed.
- both the media production or administrator and the user device use a master key (for example, a master key MKd is ), And sequentially generates distribution keys required for content encryption and decryption based on their own master key and each ID (media ID).
- a master key MKd for example, MKd is
- the content in the media can be decrypted by the third party, but the decryption of the content stored on other media with a different media ID is prevented.
- This has the effect of minimizing the impact of the disclosure of one media key on the entire system.
- the user device side that is, the recording / reproducing device does not need to hold the key association list for each medium.
- FIG. 54 shows an example of processing in which an identifier unique to a recording / reproducing device, that is, a recording / reproducing device ID and a master key are combined.
- Step S531 in the recording / reproducing apparatus user is a step of generating a key for encrypting content or the like based on the master key stored in, for example, the internal memory of the recording / reproducing apparatus and the recording / reproducing apparatus ID.
- step S532 is a step of encrypting a part or all of the stored content with a key (for example, a distribution key Kcon).
- the encrypted content is stored in a recording device such as a hard disk.
- the system administrator managing the recording / reproducing device receives a request from the recording / reproducing device user who has stored the content to restore the stored data.
- the recording / reproducing device sends the recording / reproducing device ID. Is read.
- the content is decrypted using this key.
- both the recording / reproducing user and the system administrator have a master key (for example, a master key MK con for content key generation), and encrypt and decrypt the content.
- the distribution key required for each is sequentially generated based on the owning master key and each ID (recorder / reproducer ID).
- FIG. 55 shows a configuration in which an authentication chain used for a mutual authentication process between a slave device, for example, a recording device such as a memory card, and a host device, for example, a recording / reproducing device, is generated based on one master key.
- a slave device for example, a recording device such as a memory card
- a host device for example, a recording / reproducing device
- the slave device which is a recording device, performs mutual processing based on the master key and the slave device ID stored in the internal memory of the slave device, which is a recording device, as initialization processing before the start of authentication processing in step S541.
- Generate an authentication key Kake to be used for authentication processing. This is generated by, for example, K a ke D E S (M K a ke, slave device I D).
- the generated authentication key is stored in the memory.
- step S543 the slave device ID is read from the attached recording device, that is, the slave device, via the communication means.
- step S544 the read An authentication key to be applied to mutual authentication processing is generated based on the obtained slave device ID and the owned authentication key generation master key.
- This generation processing is, for example, an authentication key K ake-DES (M ake, slave device ID).
- step S545 an authentication process is performed using this authentication key.
- both the slave device and the master device have a master key, that is, a master key MKake for generating an authentication key, and sequentially generate authentication keys necessary for mutual authentication processing. It is generated based on its own master key and slave device ID.
- information such as keys necessary for a procedure related to cryptographic information processing between two entities such as between a content provider and a recording / reproducing device or between a recording / reproducing device and a recording device is stored.
- the configuration is such that the master key and each ID are generated sequentially. Therefore, even if key information is leaked from each entity, the range of damage caused by individual keys is further limited, and it is not necessary to manage the key list for each individual entity as described above.
- the signal processing between the recording / reproducing device 300 and the recording device 400 is mainly performed by the single DES configuration described above with reference to FIG. 7 in order to facilitate understanding of the description.
- the example using the encryption processing has been described.
- the encryption processing method applied to the data processing device of the present invention is not limited to the above-mentioned simple DES method, and an encryption method according to a required security state is adopted. Is possible.
- a triple DES scheme such as the configuration of FIGS. 8 to 10 described above may be applied.
- Both the cryptographic processing unit 401 of the chair 400 can execute the Triple DES method, and can execute the processing corresponding to the Triple DES encryption processing described in FIGS. 8 to 10. It is.
- the content provider may set the content key K con to a 64-bit key configuration using the single DES method in order to prioritize the processing speed according to the content. May be a 128-bit or a 192-bit key configuration using the triple DES method. Therefore, the configuration of the encryption processing unit 302 of the recording / reproducing device 300 and the encryption processing unit 401 of the recording device 400 can be adapted to either the triple DES method or the single DES method. It is not preferable to adopt a simple configuration. Therefore, it is desirable that the encryption processing section 302 of the recording / reproducing apparatus 300 and the encryption processing section 401 of the recording device 400 be configured to be compatible with both the single DES and the triple DES.
- the encryption processing unit 302 of the recording / reproducing device 300 and the encryption processing unit 401 of the recording device 400 are configured to be able to execute both the single DES method and the triple DES method. In order to do this, they have to configure different circuits and logic. For example, in order to execute processing corresponding to Triple DES in the recording device 400, it is necessary to newly store the instruction set of Triple DES in the command register shown in FIG. This complicates the processing unit included in the recording device 400.
- the data processing apparatus of the present invention has a single DES configuration for the logic of the encryption processing unit 401 on the recording device 400 side, and can execute processing corresponding to triple DES encryption processing.
- step S101 of this step an authentication process is executed, and a session key Kses is generated here.
- step S 117 the content key K con is encrypted by the session key K ses in the signal processing unit 302 of the recording / reproducing device 300, and the encryption key is stored in the recording device.
- step S118 the encryption processing unit 400 of the recording device 400, which has been transferred to the storage device 400 via communication means and received the encryption key, transmits the content key Kcon with the session key Kses.
- the reproducer 300 forms the data format (step S122), transmits the formatted data to the recording device 400, and the recording device 400 transmits the received data to the external memory 400. 2 is being processed.
- the encryption processing in the signal processing unit 401 of the recording device 400 executed between steps S117 and S118 can be performed using either the single DES method or the trynole DES method. If the content provider provides content data using the content key K con according to Triple DES, it also provides content data using the content link K con according to single DES. In both cases, it is possible to deal with both cases.
- FIG. 56 shows the triple DES method using both the encryption processing unit 302 of the recording / reproducing device 300 and the encryption processing unit 401 of the recording device 400 in the data processing device of the present invention. 4 shows a flow illustrating a configuration for executing a cryptographic processing method.
- FIG. 56 shows an example of encryption processing of the content key Kc ⁇ using the storage key Kstr executed when the content data is downloaded from the recording / reproducing device 300 to the recording device 400 as an example.
- content key K c ⁇ ⁇ force S Triple DES method is shown as an example in the case of a key.
- a processing example is shown as a representative of the content key Kc ⁇ , but the same processing can be performed for other data such as another key or content.
- the process uses two or three keys as a 128-bit key or a 19-bit key configuration when using a 64-bit key or triple DES.
- these three content keys be Kcon1, Kcon2, (Kcon3), respectively.
- K con 3 is shown in parentheses because it may not be used in some cases.
- Step S301 is a mutual authentication processing step between the recording / reproducing device 300 and the recording device 400. This mutual authentication processing step is executed by the processing of FIG. 20 described above. At the time of this authentication processing, a session key K se s is generated.
- step S302 a check processing of each check value, check value A, check value B, content check value, total check value, and each ICV is executed.
- step S303 the recording / reproducing apparatus 300 controls the recording / reproducing apparatus encryption processing section 302.
- the unit 306 uses the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 and uses the previously extracted or generated distribution key K dis to receive the media 504 Alternatively, the content key K con stored in the header part of the data received from the communication means 600 via the communication section 305 is decrypted.
- the content key is a key based on the triple DES scheme, and is a content key Kcon1, Kcon2, (Kcon3).
- step S 304 the control unit 306 of the recording / reproducing device signal processing unit 302, the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302, Only the content key K c ⁇ ⁇ 1 in the content keys K con 1, K con 2, (K con 3) decrypted in S 303 is shared by the session key K ses shared during mutual authentication. Encrypt.
- the control unit 301 of the recording / reproducing device 300 stores data including the content key K con 1 encrypted with the session key K ses in the recording / reproducing device encryption processing unit of the recording / reproducing device 300.
- the data is read from 302 and these data are transmitted to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- step S305 the recording device 400 that has received the content key Kcon1 transmitted from the recording / reproducing device 300 transmits the received content key Kcon1 to the recording device signal processing.
- the encryption / decryption unit 406 of the unit 401 decrypts it with the session key K ses shared during mutual authentication.
- step S306 the recording device is re-encrypted with the storage device-specific storage key K str stored in the internal memory 405 of the recording device encryption processing unit 401, and transmitted via the communication unit 404. To the recording / reproducing device 300.
- step S307 the control unit 360 of the recording / reproducing device signal processing unit 302, the encryption / decryption unit 330 of the recording / reproducing device encryption processing unit 302, performs step S307. Encrypt only the content key K con 2 in the content keys K con 1, K con 2, (K con 3) decrypted with 303 with the session key K ses shared during mutual authentication .
- the control unit 301 of the recording / reproducing device 300 sends data including the content key K con 2 encrypted with the session key K ses from the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300.
- the data is read and transmitted to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- step S308 the recording device 400 that has received the content key Kcon2 transmitted from the recording / reproducing device 300 transmits the received content key Kcon2 to the recording device encryption processing unit. It is decrypted by the session key K ses shared at the time of mutual authentication by the encryption and decryption unit 410 of the 401. Further, in step S309, the recording device is re-encrypted with the storage device-specific storage key K str stored in the internal memory 405 of the recording device encryption processing unit 401, and transmitted via the communication unit 404. To the recording / reproducing device 300.
- step S310 the control unit 360 of the recording / reproducing device signal processing unit 302, the encryption / decryption unit 308 of the recording / reproducing device signal processing unit 302, Only the content key K con 3 in the content keys K con 1, K con 2, and (K con 3) decrypted in S 303 is encrypted with the session key K ses shared during mutual authentication. I do.
- the control unit 310 of the recording / reproducing device 300 sends data including the content key K con 3 encrypted with the session key K ses from the recording / reproducing device encryption processing unit 302 of the recording / reproducing device 300.
- the data is read and transmitted to the recording device 400 via the recording device controller 303 of the recording / reproducing device 300.
- step S 311 the recording device 400 that has received the content link K con 3 transmitted from the recording / reproducing device 300 transmits the received content key K con 3 to the recording device encryption processing unit. Decryption is performed by the session key K ses shared at the time of mutual authentication by the symbol / decryption unit 406 of 401. Further, in step S 312, the communication unit 4104 is re-encrypted with the storage device-specific storage key K str stored in the internal memory 405 of the recording device signal processing unit 401, and And sends it to the recording / reproducing device 300.
- step S 3 13 the encryption processing unit of the recording / reproducing device forms the various data formats described in FIGS. 32 to 35 and transmits the data format to the recording device 400.
- the recording device 40 stores the received data for which the format formation has been completed in the external memory 402.
- the format data includes a content key Kcon1, Kcon2, (Kcon3) encrypted with the storage key Kstr.
- the recording device 400 repeatedly executes the same mode of processing, that is, the processing steps of steps S305 and S306 multiple times only by changing its target.
- the key to which Triple DES is applied can be stored in the memory.
- steps S305 and S306 are executed, the formatting process of step S313 is executed, and the content is stored in the memory. .
- a command for executing the processing of steps S305 and S306 is stored in the command register of FIG. 29 described above, and this processing is performed in the form of a content key, that is, a triple DES method.
- the configuration may be appropriately executed once to three times. Therefore, both the triple DES method and the single DES method can be performed without including the triple DES processing method in the processing logic of the recording device 400.
- the decoding method can be determined by recording it in the handling policy in the header part of the content data and referring to this.
- the handling policy stored in the header part of the content data used in the data processing device of the present invention includes the content type and the activation priority. Information is included.
- the recording / reproducing device 300 in the data processing apparatus of the present invention stores the accessible content data recorded on a recording device 400 or various recording media such as a DVD, a CD, a hard disk, and a game cartridge. If there is more than one, the activation order of these contents is determined according to the activation priority information. ''
- the recording / reproducing device 300 performs the authentication process with various recording devices such as DVD device, CD drive device, and hard disk drive device, and then performs the highest priority according to the priority information in the content data.
- the program in the content data with the highest priority is executed with priority.
- this “program activation processing based on the activation priority in the handling policy for content data” will be described.
- the recording / reproducing device 300 is not limited to a recording device 400 as shown in FIG. 2, but also a DVD, a CD, a hard disk, a PI 011 It has a configuration that allows access to various recording media such as a memory card and a game cartridge connected via 112.
- FIG. 2 shows only one reading unit 304 to avoid complicating the drawing, the recording / reproducing unit 304 may be a different storage medium, such as a DVD, a CD, a floppy disk, or a hard disk. Can be mounted in parallel.
- the recording / reproducing device 300 can access a plurality of storage media, and each of the storage media stores content data.
- content data supplied by an external content provider such as a CD is stored on the media in the data configuration shown in FIG. 4 described above, and when downloaded via these media or communication means, the content data shown in FIG.
- the content data structure shown in Fig. 27 is stored in each storage medium such as a memory card.
- the content data is stored in different formats on a medium and a recording device according to the format type of the content data.
- the handling policy in the header of the content data includes the content type and activation priority information. The content activation process of the recording / reproducing device when access to a plurality of content data is possible will be described according to a flow.
- FIG. 57 is a process flow showing a process example (1) when there are a plurality of startable contents.
- Step S611 is a step of executing a recording device authentication process accessible by the recording / reproducing device 300.
- the accessible recording devices include a memory card, a DVD device, a CD drive, a hard disk device, and, for example, a game cartridge connected via PI0111 and SIO112.
- the authentication process is executed for each recording device under the control of the control unit 301 shown in FIG. 2, for example, according to the procedure described above with reference to FIG.
- step S612 an executable program is detected from the content data stored in the memory of the recording device that has been successfully authenticated. This is Specifically, it is executed as a process of extracting a program whose content type included in the content data handling policy is a program.
- step S613 the startup priority of the bootable programs extracted in step S612 is determined. Specifically, this is a process of comparing the priority information included in the handling information in the header of the plurality of startable content data selected in step S612 and selecting the highest priority.
- the program selected in step S 6 14 is started. In the case where the priorities set in a plurality of bootable programs are the same, a default priority is set among the recording devices, and the content program stored in the highest priority device is set. Execute.
- Fig. 58 shows a processing mode in which identifiers are set for a plurality of recording devices, and authentication processing and content program search are sequentially performed on the recording devices with each identifier, that is, processing when there are a plurality of bootable contents.
- Example (2) is shown.
- Step S621 is a step of executing an authentication process (see FIG. 20) of the recording device (i) attached to the recording / reproducing device 300.
- a plurality (n) of recording devices are assigned an identifier of 1 (1 to n on the first page).
- step S622 it is determined whether or not the authentication in step S621 is successful, and if the authentication is successful, the process proceeds to step S623 and the recording medium of the recording device (i) is determined. Search for executable programs from inside. If the authentication is not successful, the process proceeds to step S627, and the presence or absence of a recording device capable of searching for new content is determined. If not, the process ends. If the recording device exists, the process proceeds to step S627. Proceed to 8 to update the recording device identifier i, and repeat the authentication processing steps from step S621.
- the process in step S6223 is a process of detecting a startable program from the content data stored in the recording device (i). This is, specifically, the content included in the content data handling policy.
- step S624 it is determined whether or not the content type program is extracted. If the content type is extracted, in step S625, the program having the highest priority among the extracted programs is selected. In step S626, the selection program is executed.
- step S624 If it is determined in step S624 that a program whose content type is a program has not been extracted, the flow advances to step S6272 to determine whether or not there is a recording device for searching for new content. If the recording device exists, the flow advances to step S628 to update the recording device identifier i, and the authentication processing steps from step S621 are repeated.
- FIG. 59 is a process flow showing a process example (3) when there are a plurality of startable contents.
- Step S651 is a step of executing an authentication process of a recording device accessible by the recording / reproducing device 300. Executes authentication processing for accessible DVD devices, CD drives, hard disk devices, memory cards, game cartridges, etc. The authentication process is executed for each recording device under the control of the control unit 301 shown in FIG. 2, for example, according to the procedure described above with reference to FIG.
- step S652 a bootable program is detected from the content data stored in the memory of the recording device that has been successfully authenticated. Specifically, this is executed as a process of extracting a program whose content type included in the content data handling policy is a program.
- step S653 information such as the name of the startable program extracted in step S652 is displayed on the display means.
- the display means is not shown in FIG. 2, the data output as the AV output data is output to the display means (not shown).
- the user-provided information such as the program name of each content data is stored in the identification information of the content data, and is transmitted via the control unit 301 under the control of the main CPU 106 shown in FIG.
- the program information such as the program name of each content data that has been authenticated is output to the output means.
- step S654 the input interface, controller, The main CPU 106 receives a program selection input by the user from input means such as a mouse or a keyboard via the interface 110, and executes the user selection program in step S655 according to the selection input. I do.
- the program start priority information is stored in the handling information in the header in the content data, and the recording / reproducing device 300 starts or displays the program according to this priority order. Since the startup program information is displayed on the means and selected by the user, there is no need for the user to search for the program, and the time required for startup and labor of the user can be saved. In addition, all bootable programs are started after the recording device is authenticated, or displayed as a bootable program, so the process of selecting the program and then confirming its validity is complicated. Is eliminated.
- the recording / reproducing device 300 downloads content from the medium 500 or the communication means 600 or performs reproduction processing from the recording device 400.
- the above description has centered on the processing of encrypted data associated with content download or playback processing.
- the control unit 301 in the recording / reproducing device 300 in FIG. 3 is a device 500 such as a DVD for providing content data, a communication means 600, a process of downloading or reproducing content data from a recording device. It controls the overall authentication, encryption, and decryption processes associated with the authentication.
- Reproducible contents obtained as a result of these processes are, for example, audio data, image data, and the like.
- the decoded data is placed under the control of the main CPU shown in FIG. 2 from the control unit 301, and is output to the AV output unit according to audio data, image data, and the like.
- the audio data is decoded and output by the MP3 decoder of the AV output unit shown in FIG.
- the MPEG 2 decoder of the AV processing unit executes decompression processing. Will be output.
- the data included in the content data may have been subjected to compression (encoding) processing, and some data may not have been subjected to compression processing. I do.
- the data processing device of the present invention has a structure in which compressed data and its decoding (decompression) processing program are stored together in the data content, or the link information between the compressed data and the decoding (decompression) processing program is stored in the content.
- a configuration for storing data as header information is disclosed.
- Fig. 60 shows a simplified diagram of the elements related to this configuration and related elements from the overall data processing diagram shown in Fig. 2.
- the recording / reproducing device 300 receives various contents from a device 500 such as a DVD, a CD, or the like, a communication device 600, or a recording device 400 such as a memory card storing the contents.
- contents are audio data, still images, moving image data, program data, etc., and are those that have been subjected to encryption processing, those that have not been subjected to compression processing, and those that have been subjected to compression processing.
- Various data such as those that have not been included.
- the control of the control unit 301 and the decryption processing of the encryption processing unit 302 are performed by the method described in the above item. .
- the decrypted data is transferred to the AV processing unit 109 under the control of the main CPU 106 and stored in the memory 309 of the AV processing unit 109.
- the analysis of the content configuration is performed. For example, if a data decompression program is stored in the content, the program is stored in the program storage unit 309. If data such as audio data and image data is included, these are stored in the data storage unit 309. Remember in 2.
- the decompression processing section 3904 executes decompression processing of the compressed data stored in the data storage section 3902 by using a decompression processing program such as MP3 stored in the program storage section. Output to monitor 3001 and monitor 302.
- audio data is shown as an example of content
- MP3 is applied as an example of a compression program.
- this configuration is applicable not only to audio data but also to image data.
- MP3 but also various programs such as MPEG2 and 4 can be applied to the compression / expansion processing program.
- FIG. 61 shows a content configuration example.
- FIG. 61 shows an example in which the music data 6102 compressed by the MP3 and the MP3 decoding (expansion) processing program 6101 are combined into one content. These contents are stored in the medium 500 or the recording device 400 as one content, or distributed from the communication means 600. If these contents are encrypted as described above, the recording / reproducing unit 300 executes decryption processing by the signal processing unit 303 and then executes the AV processing unit 109 Is forwarded to
- the content analysis unit 3101 of the AV processing unit 109 analyzes the received content and converts the content consisting of the audio data decompression program (MP3 decoder) and the compressed audio data part into an audio data decompression program (MP (3 Decoder)
- MP3 decoder the audio data decompression program
- MP (3 Decoder) The section is taken out, the program is stored in the program storage section 3093, and the compressed audio data is stored in the data storage section 3092.
- the content analysis unit 3101 receives information such as the content name and content configuration information received separately from the content, or identifies the identification data such as the data name included in the content, data length, Content analysis may be performed based on data indicating a data configuration or the like.
- the compression / decompression processing unit 3094 executes the MP3 compression stored in the data storage unit 392 according to the audio data decompression program (MP3 decoder) stored in the program storage unit 3093.
- the audio data decompression process is performed, and the AV processing unit 109 outputs the decompressed audio data to the speaker 3001.
- FIG. 62 shows a flow chart illustrating an example of a reproduction process of data having the content configuration shown in FIG. 61. Is shown.
- step S670 the data name stored in the memory 390 of the AV processing unit 109, for example, in the case of music data content, information such as a song name and the like received separately from the content, or in the content And display it on the monitor 302.
- step S672 the user's selection is received from various input means such as a switch and a keyboard via the input interface 110, and the reproduction process based on the user input data is controlled under the control of the CPU 106.
- the instruction is output to the AV processing unit 109.
- the AV processing unit 109 executes data extraction and decompression processing by user selection in step S673.
- Fig. 63 shows a configuration example in which one content contains either compressed audio data or a decompression processing program, and further includes content information indicating the content of the content as header information of each content. Show.
- the header information 622 when the content is a program 622, the header information 622 includes content identification information indicating that the program is a program and the program type is an MP3 decompressed program. It is.
- the audio data 620 when the audio data 620 is included as the content, the content information of the header 623 includes information indicating that the data is MP3 compressed data.
- the header information for example, only the information necessary for reproduction is selected from the data included in the content data configuration handling policy shown in FIG. 4 (see FIG. 5) and transferred to the AV processing unit 109. It is possible to configure by adding to.
- handling policy data required by the encryption processing unit 302 and the data required during the playback processing by the AV processing unit 109 are included in each configuration data in the “handling policy” shown in FIG.
- the AV processing unit 109 can extract only those identification values indicating that these identification values are necessary and use the extracted identification values as header information.
- the content analysis section 310 of the AV processing section 109 that has received each content shown in FIG. 63 stores the program content in the program storage section 303 according to the header information if the program is a program, and In the case of, the data content is stored in the data storage unit 392. After that, the compression / decompression processing section 3 0 9 4 The data is taken out from the data storage unit, and decompression processing is executed according to the MP3 program stored in the program storage unit 309 and output. If the same program is already stored in the program storage unit 309, the program storing process may be omitted.
- FIG. 64 shows a flow chart illustrating an example of a reproduction process of data having the content configuration of FIG. 63.
- the data name stored in the memory 309 of the AV processing unit 109 for example, in the case of music data content, information such as a song name received separately from the content, or in the content And display it on the monitor 302.
- the user's selection is received from various input means such as a switch and a keyboard via the input interface 110.
- a search program for example, MP3 for reproducing data corresponding to the user selection is retrieved.
- the maximum search range of the program search target is preferably an accessible range of the recording / reproducing device 300.
- each medium 500, communication means 600, recording device 400 0 etc. is also set as the search range.
- the content passed to the AV processing section 109 is only the data section, and the program content may be stored in another recording medium in the recording / reproducing apparatus 300, and may be transmitted via a medium such as a DVD or CD. It may be provided by a content provider. Therefore, a search target is a range in which the recording / reproducing device 300 can access and store the data.
- a reproduction program is found as a result of the search, a reproduction processing instruction based on the user input data is output to the AV processing unit 109 under the control of the CPU 106.
- the AV processing unit 109 executes data extraction and decompression processing according to the user selection in step S679. Further, as another embodiment, a program search may be performed before step S675, and in step S675, only data in which a program is detected may be displayed.
- one content contains compressed audio data 6303 and a decompression processing program 6302, and the content is further included as content header information 6301.
- 5 shows an example of a configuration that includes the reproduction priority information of the two. This is an example in which reproduction priority information is added as header information to the content configuration shown in FIG. This is based on the playback priority set between the contents received by the AV processing unit 109, as in “(14) Program start processing based on the start priority in the handling policy for content data” described above. The reproduction order is determined based on the reproduction order.
- FIG. 66 shows a flow chart illustrating an example of a reproduction process of data having the content configuration of FIG. 65.
- a step S681 sets the data stored in the memory 390 of the AV processing unit 109, that is, the data information of the data to be reproduced in the search list.
- the search list is set using a partial area of the memory in the AV processing unit 109.
- step S6882 the data analysis section 3101 of the AV processing section 109 selects high-priority data from the search list in the content analysis section 310, and in step S6883, the selected data is selected. Execute data playback processing.
- FIG. 67 shows an example in which one content is composed of any combination of header information and program data 640 or header information 640 and compressed data 640.
- An example of a configuration in which reproduction priority information is added to only the header 6403 is shown.
- FIG. 68 shows a flow chart illustrating an example of a process of reproducing data having the content configuration of FIG. 67.
- a step S691 sets the data stored in the memory 390 of the AV processing unit 109, that is, the data information of the data to be reproduced in the search list.
- the search list is set using a partial area of the memory in the AV processing unit 109.
- the content analysis unit 3101 of the AV processing unit 109 selects data having a high priority from the search list.
- step S693 a data reproduction program (for example, MP3) corresponding to the selected data is searched.
- the program search target it is preferable that the maximum search range be the access storage range of the recording / reproducing device 30 ⁇ similarly to the processing in the flow of FIG. 64 described above.
- each medium 50 shown in FIG. 0, communication means 600, recording device 400, etc. are also set as the search range. If a playback program is found as a result of the search (Yes in step S694), in step S695, the selected data is subjected to decompression playback processing using the program obtained as a result of the search. .
- step S694 if no program is detected as a search result (Yes in step S694), the process proceeds to step S696, and other data included in the search list set in step S691 , Those that require playback using the same program are deleted. This is because it is clear that even if a new playback program search for the data is executed, no data is detected. Further, in step S6997, it is determined whether the search list is empty. If the search list is not empty, the process returns to step S692, and the next higher priority data is extracted, and the program search process is executed. I do.
- the compressed content is composed of only the compressed data composed of the decryption (decompression) program or the compressed data, or if the decompression processing program is the only content, Since it has header information indicating what kind of compressed data the content is and what kind of processing is to be executed, the processing unit (for example, AV processing unit) that has received the content converts the compressed data into Either execute the decompression / reproduction processing using the attached decompression processing program, or search for the decompression processing program based on the header information of the compressed data, and perform the decompression / reproduction processing according to the program obtained as a result of the search.
- the configuration having the reproduction priority information in the header a configuration in which the reproduction order is automatically set is possible, and the operation of setting the reproduction order by the user can be omitted.
- the data processing device of the present invention provides a game processing system in which, for example, the content executed by the recording / playback device 300 is a game program or the like. If you want to interrupt the program halfway and restart anew after a predetermined time, save the game state at the time of the interruption, that is, store it in a recording device, read it out when resuming, and continue the game. It has a possible configuration.
- the configuration of save data storage in a conventional game machine, a personal computer or other recording / reproducing device is, for example, a configuration in which the save data is stored in a storage medium such as a memory card, a floppy disk, a game cartridge, or a hard disk which can be built in or external to the recording / reproducing device.
- a storage medium such as a memory card, a floppy disk, a game cartridge, or a hard disk which can be built in or external to the recording / reproducing device.
- the configuration is such that the data set processing is performed according to the common specification of the game application program.
- save data saved using a certain recording / reproducing device A may be used or rewritten by another game program, and conventionally, security of the save data has hardly been considered. This is the actual situation.
- the data processing device of the present invention provides a configuration capable of realizing such security of save data.
- save data of a certain game program is encrypted based on information usable only by the game program and stored in the recording device.
- the data is encrypted based on the information unique to the recording / reproducing device and stored in the recording device.
- FIG. 69 is a block diagram illustrating a save data storage process in the data processing device of the present invention.
- the content is provided to the recording / reproducing device 300 from a medium 500 such as a DVD or a CD, or from the communication means 600.
- the content provided is As described above, the content is encrypted with the content key K con, which is a key unique to the content, and the recording / reproducing device 300 executes the process described in “(7) Download process from recording / reproducing device to recording device”.
- the content key is obtained according to the processing described in the section (see FIG. 22), and the encrypted content is decrypted and stored in the recording device 400.
- the recording / reproducing device 300 decodes and reproduces the content program from a medium or a communication means, executes the program, and after execution, externally saves the obtained save data, or uses a built-in memory card, a hard disk, or the like.
- the recording device 400 Play and execute the content from the OA and attach the saved data to an external device or to a built-in memory card, hard disk, or other recording device 400A, 400B, or 400C. Processing to be Stored The processing to be stored in the recording device 400 and reproduced will be described.
- the recording / reproducing device 300 has a recording / reproducing device identifier ID dev, a system signature key K sys, which is a signature key common to the system, and a recording, which is a signature key unique to each recording / reproducing device. It has a regenerator signature key K dev and a master key for generating various individual keys.
- the master key is, for example, a key for generating a distribution key Kd is or an authentication key K ak, as described in detail in “(1 2) Encryption processing key generation configuration based on master key”.
- M Kx is shown as a representative of all the master keys of the recording / reproducing device 300 without limiting the type of the master key.
- the save data No. key KsaV is used to encrypt the save data when storing it in the various recording devices 400A to 400C, and to decrypt the save data when reproducing from the various recording devices 400A to 400C.
- the encryption key used for An example of the storage processing and the reproduction processing of the sep data will be described with reference to FIG.
- FIG. 70 is a flowchart of a process of storing save data in any of the recording devices 40 OA to 40 C using either the content private key or the system common key. Note that The process in each flow is a process executed by the recording / reproducing device 300, and the recording device for storing save data in each flow may be any of the built-in and external recording devices 400A to C. It is not limited to either.
- Step S701 is processing in which the recording / reproducing device 300 reads out a content identifier, for example, a game ID. This is the data included in the identification information in the content data shown in FIGS. 4, 26, 27, and 32 to 35 described above.
- the storage data storage instruction is input to the input interface 11 shown in FIG.
- the main CPU 106 received via 0 instructs the control unit 301 to read the content identifier.
- the control unit 301 controls the header in the content data via the reading unit 304. If the execution program is a content stored in the recording device 400, the identification information is retrieved via the recording device controller 303. If the recording / reproducing device 300 is executing a content program and the content identifier is already stored in the RAM or other accessible recording medium in the recording / reproducing device, a new reading process is performed. Without running
- the identification information included in the read data may be used.
- step S702 is a step of changing the processing depending on whether or not the use of the program is restricted.
- the program use restriction is restriction information for setting whether or not to impose a restriction that save data to be saved can be uniquely used only for that program.
- Program use is restricted ”, and save data that is not restricted by the program is“ unrestricted program use ”. This may be set arbitrarily by the user, or may be set by the content creator, and this information may be stored in the content program. Are stored as data management files in the recording devices 400A to 400C.
- Figure 71 shows an example of a data management file.
- the data management file contains data numbers, content identifiers, recorder / reproducer identifiers, and programs that contain program usage restrictions. Generated as a pull.
- the content identifier is identification data of a content program for which save data is to be stored.
- the recording / reproducing device identifier is the identifier of the recording / reproducing device storing the save data, for example, [ID de V] shown in FIG. 69.
- the program use restriction is set to “Yes” when the saved data to be saved is uniquely usable only for that program, and is set to “No” when the saved data can be used without being restricted to the corresponding program.
- the program use restriction may be arbitrarily set by the user of the content program, or may be set by the content creator, and this information may be stored in the content program.
- step S703 a content-specific key, for example, the content key Kcon described above is read from the content data, and the content-specific key is used as the save data encryption key KsaV, or based on the content-specific key. Generate save data ⁇ No. key K sa V.
- step S 702 if “NO” is set for the program use restriction, the process proceeds to step S 707.
- the system common key stored in the recording / reproducing device 300 for example, the system signature key Ksys
- the system signature key K Set sys is read from the internal memory 300 of the recording / reproducing device 300, and the system signature key K Set sys as the save data encryption key K sa V, or generate the save data encryption key K sa V based on the system signature key.
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- step S704 the save data encryption process is executed using the save data encryption key KsaV selected or generated in step S703 or step S707.
- This encryption process is executed by the symbol processing unit 302 in FIG. 2 by applying, for example, the DES algorithm described above.
- the save data encrypted in step S704 is stored in the recording device in step S705.
- the user selects one of the recording devices 400A to C in advance as a save data storage destination.
- step S706 the program use restriction information previously set in step S702 is written into the data management file described earlier with reference to FIG. 71, that is, the program use restriction "Yes" or " Do not write ".
- step S702 Yes, that is, "program use restriction” is selected, and in step S703, encryption is performed using the save data encryption key KsaV generated based on the content unique key.
- the processed save data cannot be decrypted by a content program that does not have content-specific key information, and save data can be used only by content programs that have the same content key information.
- the save data encryption key K sa V is not generated based on information unique to the recording / reproducing device, so the save data stored in a removable recording device such as a memory card is different.
- the recording / reproducing device can reproduce the content as long as it is used with the corresponding content program.
- step S 702 No, that is, “no program use restriction” is selected, and in step S 707, the save data encrypted by the save data encryption key K sav based on the system common key, Can be reproduced and used even when a program with a different content identifier is used or when a recording / reproducing device is different.
- FIG. 72 is a flowchart showing a process of reproducing the save data stored by the save data storage process of FIG.
- Step S711 is processing in which the recording / reproducing device 300 reads out a content identifier, for example, a game ID. This is the same process as step S701 of the save data storage process in FIG. 70 described above, and is included in the identification information in the content data. This is the process of reading the data to be read.
- step S711 the data management file described with reference to FIG. 71 is read from the recording devices 40OA to shown in FIG. 69, and the content identifier read in step S711, And extract the program use restriction information set correspondingly. If the program use restriction set in the data management file is "YES”, the process proceeds to step S714, and if "NO”, the process proceeds to step S717.
- a content-specific key for example, the content key Kcon described above is read from the content data and the content-specific key is used as the save data decryption key KsaV, or based on the content-specific key.
- a processing algorithm corresponding to the encryption key generation process is applied, and the data encrypted based on a certain content unique key is decrypted based on the same content unique key.
- a decryption key generation algorithm that can be decrypted by the key is applied.
- the system stored in the recording / reproducing device 300 is set in step S 717.
- the common key for example, the system signature key K sys is read from the internal memory 307 of the recording / reproducing device 300, and the system signature key K sys is used as the save data decryption key K sa V, or is used as the system signature key. Based on this, a save data decryption key K sa V is generated.
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- step S 715 the save data is decrypted using the save data decryption key K sa V selected or generated in step S 714 or step S 717.
- step S 716 the decrypted save data is reproduced and executed by the recording / reproducing device 300.
- the data management If the file is set to “Restrict program use”, the save data decryption key is generated based on the content unique key. If the setting is “No program use restriction”, the save data decryption key is generated based on the system common key. Then, the save data decryption key is generated. If "Use program restriction” is set, if the content identifiers of the used content are not the same, it will not be possible to obtain a decryption chain that enables the save data to be decrypted. Security can be improved.
- FIGS. 73 and 74 show a save data storage processing flow (FIG. 73) and a save data reproduction processing flow (FIG. 74) for generating an encryption key and a decryption key of the save data using the content identifier. .
- steps S721 to S722 are the same processing as steps S701 to S702 in FIG. 70, and a description thereof will be omitted.
- the content identifier that is, the content ID is read from the content data in step S722.
- the encryption processing unit 3007 of the recording / reproducing device 300 applies the master key MKx stored in the internal memory of the recording / reproducing device 300 to the content ID read from the content data, and performs, for example, DES.
- the save data encryption key K sa V can be obtained by (MK x, content ID).
- an encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key Ks'aV.
- step S720 the system common key stored in the recording / reproducing device 300, for example, the system signature key K sys is read from the internal memory 307 of the recording / reproducing device 300, and the system signature key K sys is saved data encryption key K sav, or generates a save data encryption key K sav based on the system signature key.
- the save data encryption key KsaV another key different from the other keys, which is separately stored in the internal memory 307 of the recording / reproducing device 300, may be used as the save data encryption key KsaV.
- step S724 and subsequent steps is the same as the processing in step S720 and subsequent steps in the processing flow of FIG. 70 described above, and a description thereof will not be repeated.
- FIG. 74 is a processing flow for reproducing and executing the save data stored in the recording device in the save data storage processing flow of FIG. 73, and steps S731 to S73'3 are described above. This is the same as the corresponding processing in FIG. 72, except for step S734.
- a content identifier that is, a content ID is read from the content data and the content ID is used as a save data decryption key K sa V, or the save data decryption key K sa Generate V.
- this decryption key generation process a processing algorithm corresponding to the encryption key generation process is applied, and data encrypted based on a certain content identifier is converted by a decryption key generated based on the same content identifier.
- a decryption key generation algorithm that can be decrypted is applied.
- Fig. 75 and Fig. 77 show the save data storage processing flow (Fig. 75) for generating the save data encryption key and the decryption key using the recording / playback device unique key (Fig. 75), and the save data reproduction processing flow (Fig. 77). ).
- step S 741 is the same as step S 7101 in FIG. The explanation is omitted.
- Step S 742 is a step of setting whether or not to limit the recording / reproducing device.
- the recording / reproducing device limit is set to ⁇ Yes '' when limiting the recording / reproducing device that can use save data, that is, when only saving / generating and storing the saved data can be used only for the recording / reproducing device.
- the setting is “No” when the device can be used. If the setting of “ ⁇ Restrict recording / reproducing device” is set in step S 742, the process proceeds to step S 743, and if the setting is “no”, the process proceeds to step S 747.
- Figure 76 shows an example of a data management file.
- the data management file is generated as a table containing items such as a data number, a content identifier, a recording / reproducing device identifier, and a recording / reproducing device restriction.
- the content identifier is identification data of a content program for which save data is to be stored.
- the recording / reproducing device identifier is the identifier of the recording / reproducing device storing the save data, for example, [IDdev] shown in FIG. 69.
- the recording / reproducing device limit is set to ⁇ Yes '' when limiting the recording / reproducing device that can use save data, that is, when using only the recording / reproducing device that generated and stored save data,
- the setting of "Never” is used when other recording / reproducing devices can be used.
- the recording / reproducing device restriction information may be arbitrarily set by a user who uses the content program, or may be set by a content creator, and this information may be stored in the content program.
- the recording / reproducing device 300 transmits the recording / reproducing device unique key in step S 743.
- the recording / reproducing device signature key K dev is read from the internal memory 307 of the recording / reproducing device 300, and the recording / reproducing device signature key K dev is used as the save data encryption key K sa V, or the recording / reproducing device A save data encryption key K sa V is generated based on the signature key K dev.
- a key different from the other keys stored separately in the internal memory 307 of the recording / reproducing device 300 may be used as the save data key KsaV.
- step S 742 set “No” for recording / reproducing device restrictions.
- step S 747 the system common key stored in the recording / reproducing device 300, for example, the system signature key K sys, is read from the internal memory 307 of the recording / reproducing device 300. Then, the system signature key K sys is used as the save data encryption key K sav, or the save data encryption key K sa V is generated based on the system signature key. Alternatively, another key different from the other keys stored separately in the internal memory 307 of the recording / reproducing device 300 may be used as the save data encryption key Ksav.
- steps S744 and S745 is the same as the corresponding processing in the processing flow of FIG. 70 described above, and a description thereof will be omitted.
- step S 746 the content identifier, the recording / reproducing device identifier, and the recording / reproducing device restriction information “yes / no” set by the user in step 742 are written in the data management file (see FIG. 76).
- FIG. 77 is a processing flow for reproducing and executing the save data stored in the recording device in the save data storage processing flow of FIG. 75
- step S751 is the corresponding processing of FIG. 72 described above. Reads the content identifier in the same manner as in.
- step S752 the recording / reproducing device identifier (, IDdeV) stored in the memory in the recording / reproducing device 300 is read.
- step S753 the information of the content identifier, the recording / reproducing device identifier, and the set recording / reproducing device restriction information “Yes Z No” is read from the data management file (see FIG. 76).
- the recording / reproducing device restriction information is set to “Yes”
- the recording / reproducing device identifier of the table entry is read from the recording / reproducing device identifier read in step S752. If not, the process ends.
- step S754 if the data management file setting is “recording / reproducing device restriction” in step S754, the process proceeds to step S755, and if “no”, the process proceeds to step S758. .
- the recording / reproducing device 300 sends the recording / reproducing device unique key, for example,
- the recording / reproducing device signature key K dev is read from the internal memory 307 of the recording / reproducing device 300 and the recording / reproducing device signature key K dev is used as the save data decryption key K sav or recording / reproducing.
- a save data decryption key K sav is generated based on the device signature key K dev.
- a processing algorithm corresponding to the encryption key generation process is applied, and data encrypted based on a certain recording / reproducing device unique key is generated based on the same recording / reproducing device unique key.
- a decryption key generation algorithm that can be decrypted by the decrypted key is applied.
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- step S 758 the system common key, for example, the system signature key K sys stored in the recording / reproducing device 300 is read out from the internal memory 300 of the recording / reproducing device 300, and the system signature key is read out.
- K sys as the save data decryption key K sa V or generate a save data decryption key K sa V based on the system signature key.
- an encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and different from the other keys may be used as the save data encryption key KsaV.
- the following steps S 756 and S 757 are the same as the corresponding steps in the save data reproduction processing flow described above.
- FIGS. 78 and 79 show processing flows for generating, storing, and reproducing save data encryption / decryption keys using the recording / reproducing device identifier.
- the save data is encrypted using the recording / reproducing device identifier and stored in the recording device.
- Steps S761 to S763 are the same processing as in FIG. 75 described above.
- an encryption key Ksav for the save data is generated using the recording / reproducing device identifier (ID dev) read from the recording / reproducing device.
- ID dev save Apply the data encryption key K sav, or apply the master key MK X stored in the internal memory of the recording / reproducing device 300 and use the DES (MK X, ID de V) to generate the save data encryption key K sav.
- a save data encryption key ksav is generated based on IDev.
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- FIG. 79 is a processing flow for reproducing and executing the save data stored in the recording device by the processing of FIG. 78. Steps S 771 to S 774 are the same as the corresponding processing in FIG. 77 described above.
- a decryption key Ksav of the save data is generated using the recording / reproducing device identifier (IDdeV) read from the recording / reproducing device.
- I Ddev as the save data decryption key K sa V, or apply the master key MK X stored in the internal memory of the recording / reproducing unit 300 to decrypt the save data using DES (MKx, ID dev).
- a save data decryption key K sa V is generated based on I D dev, such as obtaining an encryption key K sav.
- this decryption key generation process a processing algorithm corresponding to the encryption key generation process is applied, and data encrypted based on a certain recording / reproducing device identifier is generated based on the same recording / reproducing device identifier.
- a decryption key generation algorithm that can be decrypted by the decryption key is applied.
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- the save data for which “recording / playback device restriction” is selected is encrypted and decrypted by the recording / playback device identifier. Since the processing is executed, the recording It becomes possible to decode and use only a live creature, that is, the same recording and reproducing device.
- Figure 80 shows the save data storage processing flow.
- step S781 the content identifier is read from the content data.
- step S782 a program use restriction determination is performed, and in step S783, a recording / reproducing device restriction determination is performed.
- step S785 both the content unique key (ex.Kc on) and the recording / reproducing device unique key (Kd eV) are used. Based on this, a save data encryption key K sav is generated.
- a symbol key different from the other keys stored separately in the internal memory 307 of the recording / reproducing device 300 may be used as the save data encryption key KsaV.
- step S787 use the recording / reproducing device unique key (Kde V) as the save data encryption key K sa V or record / reproduce.
- Kde V recording / reproducing device unique key
- a save data encryption key Ksav is generated based on the device unique key (KdeV).
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- a system common key for example, a system signature key K sys is used as the save data encryption key K sav, or a save data encryption key K sa V is generated based on the system signature key K sys .
- an encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- step S789 the save data is encrypted by the save data encryption key Ksav generated in any of steps S785 to S788, and the saved data is stored in the recording device.
- the restriction information set in steps S782 and S783 is stored in the data management file.
- the data management file has, for example, the configuration shown in FIG. 81 and includes items such as a data number, a content identifier, a recording / reproducing device identifier, a program use restriction, and a recording / reproducing device restriction.
- FIG. 82 is a processing flow for reproducing and executing the save data stored in the recording device by the processing of FIG.
- step S791 the content identifier and recording / reproducing device identifier of the execution program are read
- step S792 the content identifier, recording / reproducing device identifier, program use restriction, Read the recording / reproducing device restriction information.
- the program usage restriction is “Yes” and the content identifiers do not match, or if the recording / reproducing apparatus restriction information is “Yes” and the recording / reproducing apparatus identifiers do not match, the process ends.
- steps S793, S794, and S795 the decryption key generation process is performed according to the data recorded in the data management file in one of the four modes of steps S796 to S799.
- step S796 both the content unique key (ex. K con) and the recording / reproducing device unique key (K de V) are used.
- a save data decryption key K sav is generated based on.
- a symbol different from the other keys stored separately in the internal memory 307 of the recording / reproducing device 300 may be used as the save data encryption key KsaV.
- the content unique key (ex.K con) is saved data decryption ⁇ ⁇ ⁇ K sav or the content unique key.
- a save data decryption key K sa V is generated based on (ex.K con).
- another encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- step S798 the recording / reproducing device unique key (K de V) is used as the save data decryption key K sa V or A save data decryption key K sa V is generated based on the recording / reproducing device unique key (K de V).
- K de V the recording / reproducing device unique key
- K de V another key different from the other keys stored separately in the internal memory 307 of the recording / reproducing device 300 may be used as the save data encryption key KsaV.
- a system common key for example, a system signature key K sys is set as a save data decryption key K sav
- a save data decryption key K sav is generated on the basis of the system signature key K sys.
- an encryption key that is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys may be used as the save data encryption key KsaV.
- step S800 a decryption process is performed using the save data decryption key generated in any of the above steps S796 to S799, and the decrypted save data is recorded / reproduced. Reproduced and executed at 300.
- the save data for which “program use restriction” is selected is subjected to encryption / decryption processing using the content unique key. Have the same content unique key Only when one piece of content data is used, it can be decrypted and used. Also, save data for which “Record / reproduce device restriction” is selected is encrypted and decrypted by the record / reproducer identifier, so that the record / reproducer with the same recorder / reproducer identifier is used. That is, decoding and use can be performed only by the same recording and reproducing device. Therefore, it is possible to set usage restrictions by both the content and the recording / reproducing device, and it is possible to further enhance the security of the save data.
- FIGS. 80 and 82 the generation configuration of the content unique key, the save data encryption key using the recording / reproducing device private key, and the decryption key is shown, but the content private key is used instead of the content private key.
- a configuration may be employed in which the recording / reproducing device identifier is used instead of the identifier and the recording / reproducing device unique key, and the save data encryption key and the decryption key are generated based on these identifiers.
- FIG. 83 shows a processing flow for generating an encryption key for save data based on the password input by the user and storing the encryption key in the recording device.
- Step S8221 is a process of reading a content identifier from the content data, which is the same as the above-described processes.
- Step S822 is a step of determining whether or not the user sets the program use restriction.
- the data management file set in this configuration has, for example, the configuration shown in FIG.
- the data includes a data number, a content identifier, a recording / reproducing device identifier, and program use restriction information by the user.
- “Program use restriction information by user” is an item for setting whether to restrict users who use the program.
- the user password is input in step S822.
- This input is made from input means such as a keyboard shown in FIG.
- the input password is output to the signal processing unit 302 under the control of the main CPU 106 and the control unit 301, and is processed based on the processing in step S824, that is, based on the input user password.
- a save data encryption key K sa V is generated.
- the password itself may be used as the encryption key K sa V, or the save data encryption key K sa V may be used by using the master key MK x of the recording / reproducing device.
- V DES (MK x, password).
- a one-way function may be applied with a password as an input, and an encryption key may be generated based on the output.
- step S828 a save data encryption key is generated based on the system common key of the recording / reproducing device 300.
- the save data is encrypted using the save data encryption key K sa V generated in step S828 or step S828 in step S828, and the save data is encrypted in step S828.
- the encrypted save data is stored in the recording device at.
- step S828 the program use restriction information set by the user set in step S822 is written in the data management file of FIG. 84 in association with the content identifier and the recording / reproducing device identifier.
- FIG. 85 is a diagram showing a playback processing flow of the save data stored by the processing of FIG. 83.
- step S831 the content identifier is read from the content data.
- step S832 the content identifier and the program use restriction information by the user are read from the data management file shown in FIG.
- step S833 a judgment based on the data in the data management file is performed, and if "use program restriction by user" is set, a password input is requested in step S834.
- step S835 a decryption key based on the input password is generated.
- a processing algorithm corresponding to the encryption key generation processing is applied, and encryption is performed based on a certain password.
- the decrypted data is set to a decryption key generation algorithm that can be decrypted with a decryption key generated based on the same password.
- step S833 If the determination in step S833 is that there is no restriction on the use of the program by the user, the system common key stored in the internal memory of the recording / reproducing device 300, for example, the system signature key Ksys is determined in step S8337.
- the save data decryption key K sav is generated using this.
- another encryption key which is separately stored in the internal memory 307 of the recording / reproducing device 300 and is different from the other keys, may be used as the save data encryption key KsaV.
- step S8336 the save data stored in the recording device is decrypted by using the decryption key KsaV generated in any of step S835 and step S8337, and In step S8336, the recording / reproducing device reproduces and executes the save data.
- the save data for which "Restrict program use by user" is selected is encrypted and decrypted using a key based on the user input password. Is executed, it is possible to decrypt and use the same password only when the same password is input, thereby improving the security of the save data.
- the data processing device of the present invention various contents data provided from the medium 500 (see FIG. 3) and the communication means 600 are recorded and reproduced by the recording / reproducing device 300.
- the security of the provided contents is enhanced by executing the encryption process and storing it on the recording device, and the configuration is such that only authorized users can use it.
- the input content is composed of various signature keys, master keys, and check value generation keys stored in the internal memory 307 included in the encryption processing unit 302 of the recording / reproducing device 300 (see FIG. Authentication processing, encryption processing, and decryption processing are performed using (see 18).
- the internal memory 307 for storing the key information is basically formed of a semiconductor chip having a structure that is difficult to access from the outside, has a multilayer structure, and has an internal memory of aluminum. It is sandwiched between dummy layers such as a Eu layer, or is formed at the lowest layer, and has a characteristic that makes it difficult to read data illegally from the outside, such as the operating voltage or Z and the width of the frequency are narrow. Desirably, in the unlikely event that unauthorized reading of the internal memory is performed and such key data etc. leaks out and is copied to a recording / reproducing device that is not properly licensed, unauthorized content will be copied by the copied key information. It may be used.
- Fig. 86 is a block diagram illustrating this configuration "(17) Configuration for eliminating unauthorized devices".
- the recording / reproducing device 300 is similar to the recording / reproducing device shown in FIGS. 2 and 3 above, has an internal memory, and has various key data described above (FIG. 18). have.
- the identifier of the recording / reproducing device, key data, etc. copied by a third party are not always stored in the internal memory 307 shown in FIG. 3, but the key data of the recording / reproducing device 300 shown in FIG. Are stored together or separately in a memory unit accessible by the cryptographic processing unit 302 (see FIGS. 2 and 3).
- the configuration is such that an unauthorized recording / reproducing device identifier list in the header of content data is stored.
- the content data has a revocation list as an illegal recording / reproducing device identifier (IDev) list.
- a list check value I CV rev is provided for checking the falsification of the repo list.
- Illegal recorder / reproducer identifier (IDev) lists can be used by content providers or For example, it is a list of IDs of IDs of unauthorized recording / reproducing devices found from the distribution status of unauthorized copying. This revocation list may be stored, for example, after being encrypted by the distribution key Kdis.
- the decoding process by the recording / reproducing device is the same as, for example, the content download process of FIG.
- the revocation list is shown as independent data in the content data of FIG. 86 for easy understanding.
- the revocation list is a component of the header part of the content data described above.
- a revocation list may be included in a certain handling policy (eg, see Figures 32 to 35).
- the tampering check of the handling policy data including the revocation list is performed by the check value ICVa described above. If the revocation list is included in the handling policy, the check value A is replaced by the ICVa check, the check value A generation key ic Va in the recording / reproducing device is used, and the check value generation key K ic is used. There is no need to store V-rev.
- the revocation list is checked with the list check value ICV rev for falsification check of the revocation list, and the list check value ICV re V is used.
- An intermediate check value is generated from other partial check values in the content data, and the intermediate check value is verified.
- the check method of the revocation list using the list check value I CV re V for falsification check of the revocation list is based on the generation of the check values such as I CVa and I CVb described in FIGS. It can be executed in the same manner as the processing. That is, the check value generation key KicV—reV stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 is used as a key, and the revocation list included in the content data is used as a message as shown in FIG. It is calculated according to the ICV calculation method described in FIG. The calculated check value I CV- rev 'is compared with the check value I CV- rev stored in the header, and if they match, it is determined that there is no tampering.
- the intermediate check value including the list check value ICV rev is, for example, as shown in FIG. 25, the total check value generation key K ic stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302.
- Vt the check value A, check value B, list check value ICV rev in the verified header, and the message string to which the content check value is added according to the format are used for the ICV calculation method described in Fig. 7 and others. Apply and generate.
- the revocation list and the list check value are recorded on a recording / reproducing device 3 via a media 500 such as a DVD or a CD, communication means 600 or a recording device 400 such as a memory card.
- a media 500 such as a DVD or a CD
- communication means 600 or a recording device 400 such as a memory card.
- the recording / reproducing device 300 may be a recording / reproducing device that holds valid key data, or may have an illegally copied identifier ID.
- FIGS. 87 and 88 show the processing flow of the elimination process of the unauthorized recording / reproducing device in such a configuration.
- FIG. 87 is a flowchart of a process for removing an unauthorized recording / reproducing device (revocation) when content is provided from a medium 500 such as a DVD or a CD, or a communication means 600.
- FIG. This is a flow of processing for eliminating an illegal recording / reproducing device when content is provided from the recording device 400 (revocation).
- Step 901 is a step in which a medium is mounted and content is provided, that is, a request for reproduction processing or download is made.
- the process shown in FIG. 87 is executed as a step before, for example, loading a medium such as a DVD into a recording / reproducing device and executing a download process or the like.
- the download process is as described above with reference to FIG. 22.
- the process is performed as a step before the execution of the process flow of FIG. 22 or in the process flow of FIG. 22. 87 is executed.
- step S911 When the recording / reproducing device 300 receives the content via a communication means such as a network, a communication session with the content distribution service side is established in step S911, and thereafter, the process proceeds to step S902. move on.
- step S902 a revocation list (see FIG. 86) is obtained from the header of the content data.
- the control unit 301 shown in FIG. 3 reads the content from the medium via the reading unit 304 when the content is in the medium, and the control unit shown in FIG. 3 when the content is from the communication unit. 301 is received from the content distribution side via the communication unit 305.
- step S903 the control unit 301 passes the revocation list acquired from the medium 500 or the communication means 600 to the symbol processing unit 302, and causes the symbol processing unit 302 to execute a check value generation process.
- the recording / reproducing apparatus 300 internally has a revocation check value generation key KicV-rev, and applies the revocation check value generation key KicV-rev as a message with the received revocation list as a message.
- the check value I CV—rev is calculated according to the I CV calculation method described in FIG. 23, FIG. 24, etc., and the calculation result and the check value stored in the header (Header) of the content data: ICV—rev If they match, it is determined that there is no tampering (Yes in step S904). If they do not match, it is determined that the data has been tampered with, and the process advances to step S909 to end the process as a processing error.
- step S905 the control unit 306 of the recording / reproducing device encryption processing unit 302 causes the encryption / decryption unit 308 of the recording / reproducing device encryption processing unit 302 to calculate the total check value I C V t ′.
- the total check value I CV t is obtained by encrypting the intermediate check value with DES using the system signature key K sys stored in the internal memory 307 of the recording / reproducing device encryption processing unit 302 as a key.
- the verification processing of each partial check value for example, ICVa, ICVb, etc., is omitted in the processing flow shown in FIG. 87, it is the same as the processing flow of FIGS. 39 to 45 described above. Verification of the partial check value corresponding to each data format is performed.
- step S906 the generated total check value ICVt, is compared with the ICVt in the header (Header), and if they match (Yes in step S906), step S907 Proceed to. If they do not match, they have been tampered with The process proceeds to step S909, and the process ends as a process error.
- the total check value I CV t checks the entire partial check value included in the content data, such as I CVa, I CVb, and the check value of each content block according to the data format.
- a list check value I CV rev for alteration check of the revocation list is added as a partial check value to these partial check values, and all of these alterations are verified.
- the total check value generated by the above process is the header (
- step S907 a comparison is made between the revocation list determined to have not been tampered with and the recording / reproducing device identifier (IDdeV) stored in its own recording / reproducing device 300.
- IDdeV recording / reproducing device identifier
- the recorder / reproducer 300 is illegally copied. It is determined that the key data is present, the process proceeds to step S909, and the subsequent procedures are stopped. For example, it is impossible to execute the procedure of the content download process shown in FIG.
- step S907 If it is determined in step S907 that the list of the illegal recording / reproducing device identifiers ID Dev does not include the identifier ID dev of its own recording / reproducing device, the recording / reproducing device 300 It is determined that the key data is present, and the process proceeds to step S908, where the subsequent procedures, for example, the program execution process or the content download process shown in FIG.
- FIG. 88 shows processing for reproducing content data stored in a recording device 400 such as a memory card.
- the recording device 400 such as a memory card and the recording / reproducing device 300 perform the mutual authentication process (step S922) described with reference to FIG.
- step S922 if mutual authentication is OK If the mutual authentication fails, the process proceeds to step S923 and subsequent steps, and an error occurs in step S930, and the subsequent processes are not executed.
- step S923 a revocation list (see FIG. 86) is obtained from the header of the content data.
- the subsequent processing of steps S924 to S930 is the same as the corresponding processing in FIG. 87 described above. That is, verification of the list by the list check value (S924, S925), verification by the total check value (S926, S927), and the correspondence between the list entry and its own recording / reproducing device identifier ID dev.
- step S930 the subsequent procedures are stopped. For example, the content reproduction process shown in FIG. 28 cannot be executed.
- the recorder / reproducer 300 transmits the valid key data. The process proceeds to step S929, and the subsequent procedures can be executed.
- data for identifying an unauthorized recording / reproducing device in combination with the content provided by the content provider or the administrator, that is, an invalid recording / reproducing device identifier A revocation list in which ID de Vs are listed is included as constituent data of the header part of the content data and provided to the user of the recording / reproducing device, and the user of the recording / reproducing device performs the operation prior to using the content by the recording / reproducing device.
- the identifier of the recording / reproducing device stored in the memory of its own recording / reproducing device is compared with the identifier of the list and there is data that matches, the subsequent processing is not executed. Therefore, it is possible to eliminate the use of content by an unauthorized recording / reproducing device that duplicates key data and stores it in memory.
- the internal memory 307 of the recording / reproducing device encryption processing unit 302 or the internal memory 405 of the recording device 400 holds important information such as a key. Therefore, it is necessary to have a structure that is difficult to read illegally from the outside. Therefore, the recording / reproducing device encryption processing unit 302 and the recording device encryption processing unit 401 are configured by, for example, a semiconductor chip having a structure that is difficult to access from the outside, have a multilayer structure, and The memory is sandwiched between dummy layers such as an aluminum layer or the lowermost layer, and has a characteristic that it is difficult to read data from the outside illegally, such as when the operating voltage or frequency width is narrow. It is configured as a memory.
- a conventional method for making it difficult to read and rewrite write data is to keep the command protocol of the data write secret, for example.
- the signal line that receives the data write command on the chip is separated from the signal line for communication used after commercialization, and the data write command is valid unless a signal is sent directly to the chip on the board For example, there is a method of preventing such a situation.
- FIG. 89 shows a security chip configuration applicable to, for example, the above-described recording / reproducing device encryption processing unit 302 or the encryption processing unit 401 of the recording device 400.
- Figure 89 (A) shows the security chip configuration during the chip manufacturing process, that is, the data writing process
- Figure 89 (B) shows a configuration example of a product equipped with a security chip that has written data, such as a recording / reproducing device.
- a recording / reproducing device Here is an example of 300, recording device 400.
- the security chip in the manufacturing process has a processing unit 8001 connected to a mode designation signal line 8003 and various command signal lines 8004, and a processing unit 8001 receives a mode designation signal.
- a data write process to the storage unit 8002 which is a non-volatile memory according to a mode set by the line 8003, for example, a data write mode or a data read mode, or data read from the storage unit 8002. Execute the processing.
- the security chip-equipped product shown in Fig. 89 (B) the security chip is connected to the external connection interface, peripheral devices, other elements, etc. by general-purpose signal lines, but the mode signal line 8003 It is in a disconnected state.
- Specific processing includes, for example, connecting the mode signal line 8003 to ground, rising to Vcc, cutting the signal line, or sealing with an insulating resin.
- the security chip 800 of the present configuration is stored in the data storage section 8002. Write processing and read processing of the data written to the storage unit 8002, even if a third party succeeds in accessing the mode signal line 8003. Unauthorized data writing and reading can be prevented.
- Step S951 is a step of setting the mode signal line 803 to the data write mode or the data read mode.
- Step S952 is a step of extracting authentication information from the chip.
- the security chip of this configuration stores information necessary for the authentication process such as a password and key information for the authentication process in the encryption technology in advance by, for example, a wire (Wire) and a mask ROM configuration.
- a step S952 reads out the authentication information and executes an authentication process. For example, if the authentication process is executed by connecting a legitimate data writing jig and data reading device to the general-purpose signal line, the result of authentication OK (Yes in step S953) is obtained, If a data write jig or data read device is connected to a general-purpose signal line and authentication processing is performed, authentication fails (No in step S953) and processing is stopped at that point. .
- the authentication processing can be executed, for example, according to the mutual authentication processing procedure of FIG. 13 described above.
- the processing unit 8001 shown in FIG. 89 has a configuration capable of executing these authentication processes. This can be realized, for example, by the same configuration as the command register incorporated in the control unit 403 of the encryption processing unit 401 of the recording device 4 ⁇ 0 shown in FIG. 29 described above.
- the processing unit of the chip in FIG. 89 has the same configuration as the command register built in the control unit 403 of the signal processing unit 401 of the recording device 400 shown in FIG.
- the processing unit 8001 accepts a data write command or a data read command and writes data only when authentication is performed in the authentication process. Processing (step S955) or data reading processing (step S956) is executed.
- authentication processing is performed when data is written or read, so that data is read from the storage unit of the security chip by a third party who does not have a proper right.
- data writing to the storage unit can be prevented.
- FIG. 91 shows an example in which an element configuration with higher security is adopted.
- the separation storage unit 8 2 0 0 security chip into two areas, one read-write capable read write combination region data (RW,: R ead W rite region) be 8 2 0 1
- the other is a write-only area (WO: Write Only) area 822 where only data can be written.
- the processing unit 8001 executes the data readout process including the authentication process described above with reference to Fig. 90 in the data readout process from the read / write combined area (RW: ReadWrite area) 8201. I do. However, the data write processing is executed according to the flow shown in FIG. '
- Step S961 in FIG. 92 sets the mode signal line 8003 to the write mode.
- step 962 the same authentication processing as that described in FIG. 90 is executed. . If the authentication is successful in the authentication process, the flow advances to step S9663 to store information such as highly secure key data in the write-only (WO) area 8202 via the command signal line 8004.
- a write / read / write area (RW: Read Write area) 8201 outputs a command to write data for checking that is not so high in security level, for example, to the processing section 8001.
- step S9664 the processing unit 8001 that received the command writes data according to the command in a write-only (WO) area 8202, a read / write combined area (RW: Read Write area).
- FIG. 93 shows a flow of a process for verifying data written in the write-only (WO) area 8202.
- step S971 in FIG. 93 the processing unit 8001 executes writing only (WO
- An encryption process based on the data written in the area 8202 is executed.
- These execution configurations are realized by a configuration that sequentially executes the cryptographic processing sequence stored in the command register, as in the above-described authentication processing execution configuration.
- the encryption processing algorithm executed in the processing unit 8001 is not particularly limited, and, for example, may be configured to execute the above-described DES algorithm.
- step S972 the verification device connected to the security chip receives the encryption processing result from the processing unit 8001.
- step S973 the same encryption processing as the algorithm executed in the processing unit 8001 was applied to the regular write data that was previously written to the storage unit. The result is compared with the encryption result from the processing unit 8001.
- the data readable area is limited to the read / write combined area (RW: Read Write area) 8201, and the write It is impossible to read the data written in the dedicated (WO) area 822, and the configuration has higher security. Also, unlike a chip that cannot read data at all, it has a read / write combined area (RW: Read Write area) 8201, so it is possible to check the correctness of memory access.
- the present invention is based on the user's possession of various contents such as audio, images, games, and programs that can be obtained through storage media such as DVDs and CDs, or wired and wireless communication means such as CATV, the Internet and satellite communications. Playback on a recording / playback device
- the distributed content can be used for devices and systems that ensure security so that third parties other than authorized users can not use the content illegally.
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Signal Processing (AREA)
- Computer Networks & Wireless Communication (AREA)
- Theoretical Computer Science (AREA)
- Software Systems (AREA)
- Power Engineering (AREA)
- Multimedia (AREA)
- Computer Hardware Design (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Bioethics (AREA)
- Health & Medical Sciences (AREA)
- Technology Law (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
- Signal Processing For Digital Recording And Reproducing (AREA)
- Lock And Its Accessories (AREA)
- Burglar Alarm Systems (AREA)
- Air Bags (AREA)
- Radar Systems Or Details Thereof (AREA)
- Selective Calling Equipment (AREA)
- Circuits Of Receivers In General (AREA)
- Communication Control (AREA)
- Adhesives Or Adhesive Processes (AREA)
- Polyesters Or Polycarbonates (AREA)
- Holo Graphy (AREA)
Description
Claims
Priority Applications (21)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
DK01901463T DK1195734T3 (da) | 2000-01-21 | 2001-01-19 | Anlæg til dataautentificering |
ES01901463T ES2301525T3 (es) | 2000-01-21 | 2001-01-19 | Sistema de autentificacion de datos. |
CA002365236A CA2365236A1 (en) | 2000-01-21 | 2001-01-19 | Data authentication system |
KR1020047007535A KR100653807B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 인증 처리 시스템 |
US09/937,120 US7373506B2 (en) | 2000-01-21 | 2001-01-19 | Data authentication system |
EP01901463A EP1195734B1 (en) | 2000-01-21 | 2001-01-19 | Data authentication system |
KR1020047007529A KR100653804B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 처리 장치 및 방법 |
KR10-2001-7012032A KR100456496B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 인증 처리 시스템 |
KR1020047007532A KR100653801B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 처리 장치 및 데이터 처리 방법 |
KR1020047007531A KR100653802B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 처리 장치, 데이터 처리 방법, 및 콘텐츠 데이터 생성 방법 |
DE60132962T DE60132962T2 (de) | 2000-01-21 | 2001-01-19 | Datenverarbeitungsvorrichtung und datenverarbeitungsverfahren |
AU27074/01A AU785421B2 (en) | 2000-01-21 | 2001-01-19 | Data authentication system |
BR0104356-0A BR0104356A (pt) | 2000-01-21 | 2001-01-19 | Aparelho, método e sistema de processamento de dados, métodos de comunicação de valor de verificação de dados, de geração de dados de conteúdo e de atribuição de valor de verificação de dados de conteúdo e meios de provisão e de suprimento de programa |
KR1020047007534A KR100653806B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 인증 처리 시스템 |
KR1020047007530A KR100653803B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 처리 시스템 및 데이터 처리 시스템에서의 데이터 처리 방법 |
KR1020047007533A KR100653805B1 (ko) | 2000-01-21 | 2001-01-19 | 데이터 인증 처리 시스템 |
HK02109413.8A HK1047815A1 (zh) | 2000-01-21 | 2002-12-30 | 數據處理設備和數據處理方法 |
US11/637,505 US20070088961A1 (en) | 2000-01-21 | 2006-12-12 | Data processing apparatus and data processing method |
US11/642,506 US20070136612A1 (en) | 2000-01-21 | 2006-12-19 | Data processing apparatus and data processing method |
US11/642,704 US7669052B2 (en) | 2000-01-21 | 2006-12-20 | Authentication and encryption utilizing command identifiers |
US12/709,918 US8375206B2 (en) | 2000-01-21 | 2010-02-22 | Authentication and encryption utilizing command identifiers |
Applications Claiming Priority (14)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
JP2000013322A JP2001203686A (ja) | 2000-01-21 | 2000-01-21 | データ処理装置、データ処理方法およびデータ検証値付与方法、並びにプログラム提供媒体 |
JP2000-013322 | 2000-01-21 | ||
JP2000-016292 | 2000-01-25 | ||
JP2000015551A JP2001211148A (ja) | 2000-01-25 | 2000-01-25 | データ処理装置、データ処理システム、およびデータ処理方法、並びにプログラム提供媒体 |
JP2000015858A JP2001209310A (ja) | 2000-01-25 | 2000-01-25 | データ処理装置、データ処理方法およびコンテンツデータ生成方法、並びにプログラム提供媒体 |
JP2000-016029 | 2000-01-25 | ||
JP2000016292A JP2001211080A (ja) | 2000-01-25 | 2000-01-25 | データ処理装置、データ処理方法およびコンテンツデータ生成方法、並びにプログラム提供媒体 |
JP2000016251A JP2001211152A (ja) | 2000-01-25 | 2000-01-25 | データ処理装置、コンテンツデータ生成方法、およびデータ処理方法、並びにプログラム提供媒体 |
JP2000016029A JP2001211149A (ja) | 2000-01-25 | 2000-01-25 | データ処理装置およびデータ処理方法、並びにプログラム提供媒体 |
JP2000016213A JP2001211151A (ja) | 2000-01-25 | 2000-01-25 | データ処理装置、データ処理方法およびコンテンツデータ検証値付与方法、並びにプログラム提供媒体 |
JP2000-015858 | 2000-01-25 | ||
JP2000-016213 | 2000-01-25 | ||
JP2000-015551 | 2000-01-25 | ||
JP2000-016251 | 2000-01-25 |
Related Child Applications (3)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
US09/937,120 Continuation US7373506B2 (en) | 2000-01-21 | 2001-01-19 | Data authentication system |
US09/937,120 A-371-Of-International US7373506B2 (en) | 2000-01-21 | 2001-01-19 | Data authentication system |
US10/412,771 Division US20030233559A1 (en) | 2000-01-21 | 2003-04-11 | Data processing apparatus and data processing method |
Publications (1)
Publication Number | Publication Date |
---|---|
WO2001054099A1 true WO2001054099A1 (fr) | 2001-07-26 |
Family
ID=27566947
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
PCT/JP2001/000346 WO2001054099A1 (fr) | 2000-01-21 | 2001-01-19 | Systeme d'authentification de donnees |
Country Status (14)
Country | Link |
---|---|
US (6) | US7373506B2 (ja) |
EP (4) | EP1624609B1 (ja) |
KR (9) | KR100652098B1 (ja) |
CN (4) | CN1818990A (ja) |
AT (2) | ATE522039T1 (ja) |
AU (1) | AU785421B2 (ja) |
BR (1) | BR0104356A (ja) |
CA (2) | CA2365236A1 (ja) |
DE (1) | DE60132962T2 (ja) |
DK (1) | DK1195734T3 (ja) |
ES (1) | ES2301525T3 (ja) |
HK (2) | HK1057122A1 (ja) |
NZ (1) | NZ513862A (ja) |
WO (1) | WO2001054099A1 (ja) |
Cited By (13)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2003337632A (ja) * | 2002-03-19 | 2003-11-28 | Microsoft Corp | ポリシーを実行された安全なデジタルデータフォーマットおよびコード |
JP2009081549A (ja) * | 2007-09-25 | 2009-04-16 | Kyocera Corp | 署名検証方法、ストリーム生成方法、受信装置、およびストリーム送信装置 |
JP2009081556A (ja) * | 2007-09-25 | 2009-04-16 | Kyocera Corp | 署名検証方法、ストリーム生成方法、受信装置、およびストリーム送信装置 |
US10666436B2 (en) | 2013-02-12 | 2020-05-26 | Amazon Technologies, Inc. | Federated key management |
US10721075B2 (en) | 2014-05-21 | 2020-07-21 | Amazon Technologies, Inc. | Web of trust management in a distributed system |
US10834139B2 (en) | 2012-06-07 | 2020-11-10 | Amazon Technologies, Inc. | Flexibly configurable data modification services |
US11036869B2 (en) | 2013-02-12 | 2021-06-15 | Amazon Technologies, Inc. | Data security with a security module |
US11323479B2 (en) | 2013-07-01 | 2022-05-03 | Amazon Technologies, Inc. | Data loss prevention techniques |
US11368300B2 (en) | 2014-06-27 | 2022-06-21 | Amazon Technologies, Inc. | Supporting a fixed transaction rate with a variably-backed logical cryptographic key |
US11372993B2 (en) | 2013-02-12 | 2022-06-28 | Amazon Technologies, Inc. | Automatic key rotation |
US11470054B2 (en) | 2013-06-13 | 2022-10-11 | Amazon Technologies, Inc. | Key rotation techniques |
US11626996B2 (en) | 2014-09-15 | 2023-04-11 | Amazon Technologies, Inc. | Distributed system web of trust provisioning |
US11734443B2 (en) * | 2017-01-19 | 2023-08-22 | Creator's Head Inc. | Information control program, information control system, and information control method |
Families Citing this family (362)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US7328350B2 (en) * | 2001-03-29 | 2008-02-05 | Arcot Systems, Inc. | Method and apparatus for secure cryptographic key generation, certification and use |
AU1431301A (en) * | 1999-11-22 | 2001-06-04 | Intel Corporation | Integrity check values (icv) based on pseudorandom binary matrices |
US7445550B2 (en) | 2000-02-22 | 2008-11-04 | Creative Kingdoms, Llc | Magical wand and interactive play experience |
US7878905B2 (en) | 2000-02-22 | 2011-02-01 | Creative Kingdoms, Llc | Multi-layered interactive play experience |
US8140859B1 (en) | 2000-07-21 | 2012-03-20 | The Directv Group, Inc. | Secure storage and replay of media programs using a hard-paired receiver and storage device |
JP4300705B2 (ja) * | 2000-12-05 | 2009-07-22 | ソニー株式会社 | データ転送システム、データ転送装置、データ転送方法、記録媒体 |
US7526795B2 (en) * | 2001-03-27 | 2009-04-28 | Micron Technology, Inc. | Data security for digital data storage |
US7409562B2 (en) | 2001-09-21 | 2008-08-05 | The Directv Group, Inc. | Method and apparatus for encrypting media programs for later purchase and viewing |
KR20040041684A (ko) * | 2001-10-12 | 2004-05-17 | 코닌클리케 필립스 일렉트로닉스 엔.브이. | 블록식으로 저장된 사용자 데이터를 판독 또는 기록하는장치 및 방법 |
JP4292736B2 (ja) * | 2001-11-15 | 2009-07-08 | ソニー株式会社 | 伝送システム、伝送方法 |
US20030145183A1 (en) * | 2002-01-31 | 2003-07-31 | Muehring Phillip T. | Applications for removable storage |
JP2003228915A (ja) * | 2002-02-01 | 2003-08-15 | Sony Corp | 再生制御方法、プログラム、記録媒体 |
EP1398704A4 (en) * | 2002-02-27 | 2007-04-04 | Matsushita Electric Ind Co Ltd | HOST DEVICE |
CN100547961C (zh) * | 2002-03-29 | 2009-10-07 | 松下电器产业株式会社 | 内容处理装置 |
US6967566B2 (en) | 2002-04-05 | 2005-11-22 | Creative Kingdoms, Llc | Live-action interactive adventure game |
US20070066396A1 (en) * | 2002-04-05 | 2007-03-22 | Denise Chapman Weston | Retail methods for providing an interactive product to a consumer |
AU2003246823A1 (en) * | 2002-04-12 | 2003-10-27 | Thomson Licensing S.A. | Method for the anonymous authentication of a data transmitter |
US8438392B2 (en) * | 2002-06-20 | 2013-05-07 | Krimmeni Technologies, Inc. | Method and system for control of code execution on a general purpose computing device and control of code execution in a recursive security protocol |
US7203844B1 (en) | 2002-06-20 | 2007-04-10 | Oxford William V | Method and system for a recursive security protocol for digital copyright control |
US20060041760A1 (en) * | 2002-06-26 | 2006-02-23 | Zezhen Huang | Trusted computer activity monitoring and recording system and method |
EP1387238B1 (en) * | 2002-07-30 | 2011-06-15 | Fujitsu Limited | Method and apparatus for reproducing information using a security module |
KR20040017445A (ko) * | 2002-08-21 | 2004-02-27 | 엘지전자 주식회사 | 멀티미디어 데이터 인증방법 |
US7401221B2 (en) * | 2002-09-04 | 2008-07-15 | Microsoft Corporation | Advanced stream format (ASF) data stream header object protection |
US8171567B1 (en) | 2002-09-04 | 2012-05-01 | Tracer Detection Technology Corp. | Authentication method and system |
JP2004104602A (ja) * | 2002-09-11 | 2004-04-02 | Pioneer Electronic Corp | 情報記録媒体、情報記録装置、情報再生装置、情報配信装置、それらの方法、それらのプログラムおよびそのプログラムを記録した記録媒体 |
JP3945644B2 (ja) * | 2002-11-05 | 2007-07-18 | ソニー株式会社 | コピー回数制御方法、サーバ装置、記録制御方法および記録制御装置 |
US7353543B2 (en) * | 2003-01-10 | 2008-04-01 | Matsushita Electric Industrial Co., Ltd. | Contents distribution system |
EP1609042A2 (en) * | 2003-03-24 | 2005-12-28 | Matsushita Electric Industrial Co., Ltd. | Data protection management apparatus and data protection management method |
US9446319B2 (en) | 2003-03-25 | 2016-09-20 | Mq Gaming, Llc | Interactive gaming toy |
JP2004295373A (ja) * | 2003-03-26 | 2004-10-21 | Sony Corp | 情報記録媒体、情報処理装置、情報記録媒体製造装置、および方法、並びにコンピュータ・プログラム |
CN1698307A (zh) * | 2003-04-11 | 2005-11-16 | 索尼株式会社 | 信息记录介质驱动装置 |
US7243237B2 (en) * | 2003-05-02 | 2007-07-10 | Microsoft Corporation | Secure communication with a keyboard or related device |
US7426637B2 (en) * | 2003-05-21 | 2008-09-16 | Music Public Broadcasting, Inc. | Method and system for controlled media sharing in a network |
DE10330089B4 (de) * | 2003-07-03 | 2014-02-27 | Bt Ignite Gmbh & Co. | Verfahren und Vorrichtung zum Übermitteln von Entschlüsselungscodes für frei übertragene, verschlüsselte Programminhalte an eindeutig identifizierbare Empfänger |
JP4676724B2 (ja) | 2003-08-12 | 2011-04-27 | 株式会社リコー | 情報処理装置、情報処理方法、情報処理プログラム、及び記録媒体 |
JP4728611B2 (ja) | 2003-08-12 | 2011-07-20 | 株式会社リコー | 記憶媒体、記憶装置、情報処理装置、情報処理方法、情報処理プログラム及び記録媒体 |
US7562230B2 (en) * | 2003-10-14 | 2009-07-14 | Intel Corporation | Data security |
EP1532984A1 (en) * | 2003-11-19 | 2005-05-25 | Institut National De La Sante Et De La Recherche Medicale (Inserm) | Use of anti CD44 antibodies for eradicating stem cells in acute myeloid leukemia |
US8165297B2 (en) * | 2003-11-21 | 2012-04-24 | Finisar Corporation | Transceiver with controller for authentication |
KR20050050976A (ko) * | 2003-11-26 | 2005-06-01 | 엘지전자 주식회사 | 이동 통신 단말기의 비밀번호 해킹 검출 방법 |
JP4250510B2 (ja) * | 2003-11-26 | 2009-04-08 | 株式会社東芝 | コンテンツ配信サービス提供システムとそのコンテンツ配信装置及びユーザ端末装置 |
JP4338508B2 (ja) * | 2003-12-05 | 2009-10-07 | シャープ株式会社 | データ処理装置 |
US7519274B2 (en) | 2003-12-08 | 2009-04-14 | Divx, Inc. | File format for multiple track digital data |
US8472792B2 (en) | 2003-12-08 | 2013-06-25 | Divx, Llc | Multimedia distribution system |
US20050132226A1 (en) * | 2003-12-11 | 2005-06-16 | David Wheeler | Trusted mobile platform architecture |
US20060165233A1 (en) * | 2003-12-17 | 2006-07-27 | Masao Nonaka | Methods and apparatuses for distributing system secret parameter group and encrypted intermediate key group for generating content encryption and decryption deys |
JP2005190350A (ja) * | 2003-12-26 | 2005-07-14 | Toshiba Corp | コンテンツ送信装置及びコンテンツ送信方法 |
US8140675B2 (en) | 2004-01-15 | 2012-03-20 | Panasonic Corporation | Content reproduction apparatus |
JP2005204250A (ja) * | 2004-01-19 | 2005-07-28 | Ricoh Co Ltd | 証明書確認方法、証明書確認プログラム及び証明書 |
WO2005081891A2 (en) * | 2004-02-23 | 2005-09-09 | Lexar Media, Inc. | Secure compact flash |
SG184722A1 (en) | 2004-03-12 | 2012-10-30 | Ingenia Holdings Ltd | Authenticity verification methods, products and apparatuses |
WO2005088517A1 (en) * | 2004-03-12 | 2005-09-22 | Ingenia Technology Limited | Methods and apparatuses for creating authenticatable printed articles and subsequently verifying them |
EP1580644A3 (en) * | 2004-03-15 | 2005-11-09 | Yamaha Corporation | Electronic musical apparatus for recording and reproducing music content |
US8539608B1 (en) * | 2004-03-25 | 2013-09-17 | Verizon Corporate Services Group Inc. | Integrity checking at high data rates |
JP4561146B2 (ja) * | 2004-03-29 | 2010-10-13 | ソニー株式会社 | コンテンツ流通システム、暗号化装置、暗号化方法、情報処理プログラム、及び記憶媒体 |
EP1603138A1 (fr) * | 2004-04-15 | 2005-12-07 | STMicroelectronics SA | Mémoire non volatile comprenant des moyens de brouillage de la lecture de cellules mémoire |
US8769671B2 (en) | 2004-05-02 | 2014-07-01 | Markmonitor Inc. | Online fraud solution |
US7870608B2 (en) | 2004-05-02 | 2011-01-11 | Markmonitor, Inc. | Early detection and monitoring of online fraud |
US9203648B2 (en) | 2004-05-02 | 2015-12-01 | Thomson Reuters Global Resources | Online fraud solution |
US7457823B2 (en) | 2004-05-02 | 2008-11-25 | Markmonitor Inc. | Methods and systems for analyzing data related to possible online fraud |
US7913302B2 (en) | 2004-05-02 | 2011-03-22 | Markmonitor, Inc. | Advanced responses to online fraud |
US8041769B2 (en) | 2004-05-02 | 2011-10-18 | Markmonitor Inc. | Generating phish messages |
JP4749680B2 (ja) * | 2004-05-10 | 2011-08-17 | 株式会社ソニー・コンピュータエンタテインメント | データ構造、データ処理装置、データ処理方法、認証装置、認証方法、コンピュータプログラム、及び記録媒体 |
JP4686138B2 (ja) * | 2004-05-26 | 2011-05-18 | 株式会社東芝 | 記憶媒体変換方法、プログラム及び機器 |
US7390071B2 (en) * | 2004-05-27 | 2008-06-24 | Silverbrook Research Pty Ltd | Printer controller for supplying data to a printhead module having a dropped row |
US7266661B2 (en) * | 2004-05-27 | 2007-09-04 | Silverbrook Research Pty Ltd | Method of storing bit-pattern in plural devices |
US7735944B2 (en) * | 2004-05-27 | 2010-06-15 | Silverbrook Research Pty Ltd | Printer comprising two printhead modules and at least two printer controllers |
US20070083491A1 (en) * | 2004-05-27 | 2007-04-12 | Silverbrook Research Pty Ltd | Storage of key in non-volatile memory |
US7281777B2 (en) * | 2004-05-27 | 2007-10-16 | Silverbrook Research Pty Ltd | Printhead module having a communication input for data and control |
US7448707B2 (en) * | 2004-05-27 | 2008-11-11 | Silverbrook Research Pty Ltd | Method of expelling ink from nozzels in groups, starting at outside nozzels of each group |
US7243193B2 (en) * | 2004-05-27 | 2007-07-10 | Silverbrook Research Pty Ltd | Storage of program code in arbitrary locations in memory |
US7374266B2 (en) | 2004-05-27 | 2008-05-20 | Silverbrook Research Pty Ltd | Method for at least partially compensating for errors in ink dot placement due to erroneous rotational displacement |
US7328956B2 (en) * | 2004-05-27 | 2008-02-12 | Silverbrook Research Pty Ltd | Printer comprising a printhead and at least two printer controllers connected to a common input of the printhead |
US7290852B2 (en) * | 2004-05-27 | 2007-11-06 | Silverbrook Research Pty Ltd | Printhead module having a dropped row |
US7607757B2 (en) * | 2004-05-27 | 2009-10-27 | Silverbrook Research Pty Ltd | Printer controller for supplying dot data to at least one printhead module having faulty nozzle |
US7549718B2 (en) | 2004-05-27 | 2009-06-23 | Silverbrook Research Pty Ltd | Printhead module having operation controllable on basis of thermal sensors |
US20060294312A1 (en) * | 2004-05-27 | 2006-12-28 | Silverbrook Research Pty Ltd | Generation sequences |
US7188928B2 (en) * | 2004-05-27 | 2007-03-13 | Silverbrook Research Pty Ltd | Printer comprising two uneven printhead modules and at least two printer controllers, one of which sends print data to both of the printhead modules |
US7377609B2 (en) * | 2004-05-27 | 2008-05-27 | Silverbrook Research Pty Ltd | Printer controller for at least partially compensating for erroneous rotational displacement |
US7314261B2 (en) * | 2004-05-27 | 2008-01-01 | Silverbrook Research Pty Ltd | Printhead module for expelling ink from nozzles in groups, alternately, starting at outside nozzles of each group |
US7427117B2 (en) | 2004-05-27 | 2008-09-23 | Silverbrook Research Pty Ltd | Method of expelling ink from nozzles in groups, alternately, starting at outside nozzles of each group |
US7600843B2 (en) * | 2004-05-27 | 2009-10-13 | Silverbrook Research Pty Ltd | Printer controller for controlling a printhead module based on thermal sensing |
US8011747B2 (en) * | 2004-05-27 | 2011-09-06 | Silverbrook Research Pty Ltd | Printer controller for controlling a printhead with horizontally grouped firing order |
US7517036B2 (en) * | 2004-05-27 | 2009-04-14 | Silverbrook Research Pty Ltd | Printhead module capable of printing a maximum of n channels of print data |
US7557941B2 (en) * | 2004-05-27 | 2009-07-07 | Silverbrook Research Pty Ltd | Use of variant and base keys with three or more entities |
US7631190B2 (en) * | 2004-05-27 | 2009-12-08 | Silverbrook Research Pty Ltd | Use of variant and base keys with two entities |
US7484831B2 (en) * | 2004-05-27 | 2009-02-03 | Silverbrook Research Pty Ltd | Printhead module having horizontally grouped firing order |
JP2005354217A (ja) * | 2004-06-08 | 2005-12-22 | Sony Corp | 情報出力処理装置、情報入力処理装置、情報処理システム及び情報処理方法 |
US20080072072A1 (en) * | 2004-06-09 | 2008-03-20 | Kenji Muraki | Recording Device and Recording Method |
JP4144573B2 (ja) * | 2004-07-15 | 2008-09-03 | ソニー株式会社 | 情報処理装置、および情報処理方法、並びにコンピュータ・プログラム |
US7623660B1 (en) * | 2004-07-20 | 2009-11-24 | Xilinx, Inc. | Method and system for pipelined decryption |
US8266429B2 (en) | 2004-07-20 | 2012-09-11 | Time Warner Cable, Inc. | Technique for securely communicating and storing programming material in a trusted domain |
US8312267B2 (en) | 2004-07-20 | 2012-11-13 | Time Warner Cable Inc. | Technique for securely communicating programming content |
GB2417592B (en) | 2004-08-13 | 2006-07-26 | Ingenia Technology Ltd | Authenticity verification of articles |
US7941786B2 (en) * | 2004-09-08 | 2011-05-10 | Universal Electronics Inc. | Configurable controlling device and associated configuration distribution system and method |
US9632665B2 (en) | 2004-09-08 | 2017-04-25 | Universal Electronics Inc. | System and method for flexible configuration of a controlling device |
US11687217B2 (en) | 2004-09-08 | 2023-06-27 | Universal Electronics Inc. | System and method for flexible configuration of a controlling device |
US8260259B2 (en) * | 2004-09-08 | 2012-09-04 | Qualcomm Incorporated | Mutual authentication with modified message authentication code |
US20060064394A1 (en) * | 2004-09-17 | 2006-03-23 | International Business Machines Corporation | Method for handling changing and disappearing online references to research information |
US7711965B2 (en) * | 2004-10-20 | 2010-05-04 | Intel Corporation | Data security |
KR100664306B1 (ko) * | 2004-10-29 | 2007-01-04 | 삼성전자주식회사 | 데이터 유효성 검증을 위한 예방 통제 데이터 생성 및검증 장치 및 방법 |
CN100565575C (zh) * | 2004-11-08 | 2009-12-02 | 索尼株式会社 | 信息处理系统和信息处理设备 |
JP3810425B2 (ja) * | 2004-12-16 | 2006-08-16 | 松下電器産業株式会社 | 改竄検出用データ生成方法、および改竄検出方法及び装置 |
US8601283B2 (en) * | 2004-12-21 | 2013-12-03 | Sandisk Technologies Inc. | Method for versatile content control with partitioning |
US8504849B2 (en) * | 2004-12-21 | 2013-08-06 | Sandisk Technologies Inc. | Method for versatile content control |
US8051052B2 (en) * | 2004-12-21 | 2011-11-01 | Sandisk Technologies Inc. | Method for creating control structure for versatile content control |
US20070168292A1 (en) * | 2004-12-21 | 2007-07-19 | Fabrice Jogand-Coulomb | Memory system with versatile content control |
JP4897701B2 (ja) * | 2004-12-22 | 2012-03-14 | サーティコム コーポレーション | 部分リボケーション・リスト |
US10064540B2 (en) * | 2005-02-02 | 2018-09-04 | Intuitive Surgical Operations, Inc. | Visualization apparatus for transseptal access |
JP4692003B2 (ja) * | 2005-02-10 | 2011-06-01 | ソニー株式会社 | 情報処理装置、および情報処理方法、並びにコンピュータ・プログラム |
JP4833568B2 (ja) * | 2005-03-15 | 2011-12-07 | 株式会社リコー | 情報処理装置、画像形成装置、起動プログラムおよび記憶媒体 |
US7610273B2 (en) * | 2005-03-22 | 2009-10-27 | Microsoft Corporation | Application identity and rating service |
JPWO2006115212A1 (ja) * | 2005-04-21 | 2008-12-18 | 松下電器産業株式会社 | アルゴリズム更新システム |
TW200729890A (en) * | 2005-06-29 | 2007-08-01 | Koninkl Philips Electronics Nv | Device and method for key block based authentication |
KR20080031751A (ko) * | 2005-06-29 | 2008-04-10 | 코닌클리케 필립스 일렉트로닉스 엔.브이. | 키 블록 기반의 인증 시스템 및 방법 |
KR100728928B1 (ko) * | 2005-07-01 | 2007-06-15 | 삼성전자주식회사 | 기록매체를 통해 오프라인된 영상기기에 컨텐츠 재생권한부여방법 |
DE602006004797D1 (de) * | 2005-07-05 | 2009-03-05 | St Microelectronics Sa | Prüfung einer in einer Speicherzone abgelegten digitalen Nachricht |
US7743409B2 (en) * | 2005-07-08 | 2010-06-22 | Sandisk Corporation | Methods used in a mass storage device with automated credentials loading |
JP4788212B2 (ja) * | 2005-07-13 | 2011-10-05 | 富士ゼロックス株式会社 | デジタル署名プログラム及びデジタル署名システム |
JP4818651B2 (ja) * | 2005-07-13 | 2011-11-16 | ルネサスエレクトロニクス株式会社 | 暗号化・復号化回路 |
JP4827468B2 (ja) | 2005-07-25 | 2011-11-30 | キヤノン株式会社 | 情報処理装置及び情報処理装置の制御方法、並びにコンピュータプログラム及びコンピュータ可読記憶媒体 |
GB2428948B (en) * | 2005-07-27 | 2007-09-05 | Ingenia Technology Ltd | Keys |
RU2008107316A (ru) * | 2005-07-27 | 2009-09-10 | Инджениа Текнолоджи Лимитед (Gb) | Проверка сигнатуры изделия, созданной на основании сигналов, полученных благодаря рассеянию когерентного оптического излучения от поверхности изделия |
WO2007012816A1 (en) | 2005-07-27 | 2007-02-01 | Ingenia Technology Limited | Verification of authenticity |
US7702107B1 (en) * | 2005-07-27 | 2010-04-20 | Messing John H | Server-based encrypted messaging method and apparatus |
WO2007012820A1 (en) * | 2005-07-27 | 2007-02-01 | Ingenia Technology Limited | Prescription authentication using speckle patterns |
US9325944B2 (en) | 2005-08-11 | 2016-04-26 | The Directv Group, Inc. | Secure delivery of program content via a removable storage medium |
GB2429950B (en) * | 2005-09-08 | 2007-08-22 | Ingenia Holdings | Copying |
JP5013694B2 (ja) * | 2005-09-09 | 2012-08-29 | キヤノン株式会社 | 画像処理方法、画像処理装置、プログラムコード及び記憶媒体 |
DE102005045733A1 (de) * | 2005-09-23 | 2007-04-05 | Nec Europe Ltd. | Verfahren zum Übermitteln von Nachrichten |
US20070074038A1 (en) * | 2005-09-29 | 2007-03-29 | International Business Machines Corporation | Method, apparatus and program storage device for providing a secure password manager |
US20070083467A1 (en) * | 2005-10-10 | 2007-04-12 | Apple Computer, Inc. | Partial encryption techniques for media data |
WO2007041824A1 (en) * | 2005-10-14 | 2007-04-19 | Research In Motion Limited | System and method for protecting master encryption keys |
TWI281825B (en) * | 2005-10-18 | 2007-05-21 | Univ Nat Taiwan | Right management system and method for digital broadcasting |
US8483616B1 (en) | 2005-11-01 | 2013-07-09 | At&T Intellectual Property Ii, L.P. | Non-interference technique for spatially aware mobile ad hoc networking |
KR100656402B1 (ko) * | 2005-11-26 | 2006-12-11 | 한국전자통신연구원 | 디지털 콘텐츠를 안전하게 배포하는 방법 및 그 장치 |
US8355410B2 (en) | 2007-08-17 | 2013-01-15 | At&T Intellectual Property I, L.P. | Location-based mobile gaming application and method for implementing the same using a scalable tiered geocast protocol |
KR20080080175A (ko) * | 2005-12-14 | 2008-09-02 | 엔디에스 리미티드 | 블록 사이퍼 암호화의 사용을 위한 방법 및 시스템 |
US7812935B2 (en) | 2005-12-23 | 2010-10-12 | Ingenia Holdings Limited | Optical authentication |
KR100703811B1 (ko) * | 2006-02-28 | 2007-04-09 | 삼성전자주식회사 | 휴대용 저장장치 및 휴대용 저장장치의 데이터 관리 방법 |
WO2007106844A2 (en) | 2006-03-14 | 2007-09-20 | Divx, Inc. | Federated digital rights management scheme including trusted systems |
US8209729B2 (en) * | 2006-04-20 | 2012-06-26 | At&T Intellectual Property I, Lp | Rules-based content management |
US8285988B2 (en) * | 2006-05-09 | 2012-10-09 | Broadcom Corporation | Method and system for command authentication to achieve a secure interface |
US8560829B2 (en) | 2006-05-09 | 2013-10-15 | Broadcom Corporation | Method and system for command interface protection to achieve a secure interface |
US8775319B2 (en) | 2006-05-15 | 2014-07-08 | The Directv Group, Inc. | Secure content transfer systems and methods to operate the same |
US8495380B2 (en) | 2006-06-06 | 2013-07-23 | Red Hat, Inc. | Methods and systems for server-side key generation |
JP2008009631A (ja) * | 2006-06-28 | 2008-01-17 | Hitachi Ltd | 記憶装置及び記憶方法 |
US8140843B2 (en) * | 2006-07-07 | 2012-03-20 | Sandisk Technologies Inc. | Content control method using certificate chains |
US8266711B2 (en) * | 2006-07-07 | 2012-09-11 | Sandisk Technologies Inc. | Method for controlling information supplied from memory device |
US8613103B2 (en) * | 2006-07-07 | 2013-12-17 | Sandisk Technologies Inc. | Content control method using versatile control structure |
US20100138652A1 (en) * | 2006-07-07 | 2010-06-03 | Rotem Sela | Content control method using certificate revocation lists |
US8639939B2 (en) | 2006-07-07 | 2014-01-28 | Sandisk Technologies Inc. | Control method using identity objects |
US8245031B2 (en) * | 2006-07-07 | 2012-08-14 | Sandisk Technologies Inc. | Content control method using certificate revocation lists |
US20080063206A1 (en) * | 2006-09-07 | 2008-03-13 | Karp James M | Method for altering the access characteristics of encrypted data |
JP4957148B2 (ja) * | 2006-09-26 | 2012-06-20 | 富士通株式会社 | 鍵管理機能を持つセキュア素子および情報処理装置 |
EP1912148A1 (en) * | 2006-10-09 | 2008-04-16 | Axalto S.A. | Protection against side channel attacks with an integrity check |
US20080091554A1 (en) * | 2006-10-12 | 2008-04-17 | Ing-Kai Huang | Method of selling software via network |
US8520850B2 (en) | 2006-10-20 | 2013-08-27 | Time Warner Cable Enterprises Llc | Downloadable security and protection methods and apparatus |
JP5026049B2 (ja) * | 2006-10-25 | 2012-09-12 | ソニー株式会社 | メディアドライブ装置、メディアドライブ装置の動作方法、プログラム、プログラム記録媒体 |
US8949600B2 (en) * | 2006-10-27 | 2015-02-03 | Qualcomm Incorporated | Composed message authentication code |
US8732854B2 (en) | 2006-11-01 | 2014-05-20 | Time Warner Cable Enterprises Llc | Methods and apparatus for premises content distribution |
JP2008117459A (ja) * | 2006-11-02 | 2008-05-22 | Hitachi Ltd | 記録再生装置 |
WO2008086313A1 (en) | 2007-01-05 | 2008-07-17 | Divx, Inc. | Video distribution system including progressive playback |
EP2122900A4 (en) | 2007-01-22 | 2014-07-23 | Spyrus Inc | PORTABLE DATA ENCRYPTION DEVICE WITH CONFIGURABLE SAFETY FUNCTIONS AND METHOD FOR FILING ENCRYPTION |
US8621540B2 (en) | 2007-01-24 | 2013-12-31 | Time Warner Cable Enterprises Llc | Apparatus and methods for provisioning in a download-enabled system |
US20080184041A1 (en) * | 2007-01-31 | 2008-07-31 | Microsoft Corporation | Graph-Based Tamper Resistance Modeling For Software Protection |
CN100440241C (zh) * | 2007-02-15 | 2008-12-03 | 北京中星微电子有限公司 | 数字版权管理方法和内容服务器以及媒体播放器 |
US8160245B2 (en) | 2007-03-07 | 2012-04-17 | Research In Motion Limited | Methods and apparatus for performing an elliptic curve scalar multiplication operation using splitting |
US8050403B2 (en) * | 2007-03-06 | 2011-11-01 | Research In Motion Limited | Method and apparatus for generating a public key in a manner that counters power analysis attacks |
US8762714B2 (en) * | 2007-04-24 | 2014-06-24 | Finisar Corporation | Protecting against counterfeit electronics devices |
KR20090001605A (ko) * | 2007-05-03 | 2009-01-09 | 삼성전자주식회사 | 재생 설정 정보를 포함하는 이동식 기록매체, 이동식기록매체에 기록된 재생 설정 정보를 이용하여 콘텐츠를재생하는 장치 및 방법 |
KR101370829B1 (ko) * | 2007-05-08 | 2014-03-10 | 삼성전자주식회사 | 데이터의 암호화/복호화 방법 및 이를 적용한 버스 시스템 |
US8423789B1 (en) | 2007-05-22 | 2013-04-16 | Marvell International Ltd. | Key generation techniques |
GB2450131B (en) * | 2007-06-13 | 2009-05-06 | Ingenia Holdings | Fuzzy Keys |
CN101329658B (zh) | 2007-06-21 | 2012-12-05 | 西门子(中国)有限公司 | 加密、解密方法,及应用所述方法的plc系统 |
KR101495535B1 (ko) * | 2007-06-22 | 2015-02-25 | 삼성전자주식회사 | 컨텐츠 디바이스의 폐기 여부를 확인하여 데이터를전송하는 전송 방법과 시스템, 데이터 서버 |
WO2009004716A1 (ja) * | 2007-07-03 | 2009-01-08 | Pioneer Corporation | 情報記録媒体、再生装置及びコンピュータプログラム |
JP4396737B2 (ja) * | 2007-07-17 | 2010-01-13 | ソニー株式会社 | 情報処理装置、コンテンツ提供システム、および情報処理方法、並びにコンピュータ・プログラム |
EP2168299A4 (en) * | 2007-07-17 | 2011-10-05 | Certicom Corp | METHOD OF COMPRESSING CRYPTOGRAPHIC VALUE |
FR2920067B1 (fr) * | 2007-08-13 | 2014-11-28 | Actimagine | Procede et dispositif de chiffrement partiel d'un contenu numerique |
WO2009027126A1 (en) * | 2007-08-24 | 2009-03-05 | International Business Machines Corporation | System and method for protection of content stored in a storage device |
WO2009027125A1 (en) | 2007-08-24 | 2009-03-05 | International Business Machines Corporation | System and method for content protection |
CN101836213B (zh) * | 2007-08-29 | 2015-06-24 | 僖迪网络科技株式会社 | 对数字媒体内容未经许可的复制的保护 |
US8059820B2 (en) * | 2007-10-11 | 2011-11-15 | Microsoft Corporation | Multi-factor content protection |
US9148286B2 (en) * | 2007-10-15 | 2015-09-29 | Finisar Corporation | Protecting against counterfeit electronic devices |
WO2009059331A2 (en) * | 2007-11-02 | 2009-05-07 | Finisar Corporation | Anticounterfeiting means for optical communication components |
KR20100106327A (ko) | 2007-11-16 | 2010-10-01 | 디브이엑스, 인크. | 멀티미디어 파일을 위한 계층적 및 감소된 인덱스 구조 |
US8181034B2 (en) * | 2008-01-20 | 2012-05-15 | Nds Limited | Secure data utilization |
US10552701B2 (en) * | 2008-02-01 | 2020-02-04 | Oath Inc. | System and method for detecting the source of media content with application to business rules |
JP4998314B2 (ja) * | 2008-02-19 | 2012-08-15 | コニカミノルタホールディングス株式会社 | 通信制御方法および通信制御プログラム |
JP5248153B2 (ja) * | 2008-03-14 | 2013-07-31 | 株式会社東芝 | 情報処理装置、方法及びプログラム |
US7940543B2 (en) * | 2008-03-19 | 2011-05-10 | Nanya Technology Corp. | Low power synchronous memory command address scheme |
US7676501B2 (en) * | 2008-03-22 | 2010-03-09 | Wilson Kelce S | Document integrity verification |
JP5164029B2 (ja) * | 2008-04-10 | 2013-03-13 | 日本電気株式会社 | 情報漏洩防止装置、その方法及びそのプログラム |
US7904450B2 (en) | 2008-04-25 | 2011-03-08 | Wilson Kelce S | Public electronic document dating list |
GB2460625B (en) * | 2008-05-14 | 2010-05-26 | Ingenia Holdings | Two tier authentication |
US20090290714A1 (en) * | 2008-05-20 | 2009-11-26 | Microsoft Corporation | Protocol for Verifying Integrity of Remote Data |
US8259949B2 (en) | 2008-05-27 | 2012-09-04 | Intel Corporation | Methods and apparatus for protecting digital content |
CN102077204B (zh) * | 2008-06-24 | 2013-06-12 | 纳格拉影像股份有限公司 | 安全内存管理系统和方法 |
US8954696B2 (en) | 2008-06-24 | 2015-02-10 | Nagravision S.A. | Secure memory management system and method |
JP4737243B2 (ja) * | 2008-07-11 | 2011-07-27 | ソニー株式会社 | 集積回路装置及びデータ伝送システム |
KR100897790B1 (ko) * | 2008-08-07 | 2009-05-15 | (주)씨디네트웍스 | 하드웨어 아이디 정보를 이용한 디지털 콘텐츠의 보호 방법및 장치 |
US8510560B1 (en) | 2008-08-20 | 2013-08-13 | Marvell International Ltd. | Efficient key establishment for wireless networks |
EP2166696B1 (fr) | 2008-08-27 | 2016-10-05 | STMicroelectronics (Rousset) SAS | Protection de l'intégrité de données chiffrées en utilisant un état intermédiare de chiffrement pour générer une signature |
US8044565B2 (en) * | 2008-08-29 | 2011-10-25 | Federal-Mogul Ingnition Company | Composite ceramic electrode and ignition device therewith |
US9240883B2 (en) | 2008-09-04 | 2016-01-19 | Intel Corporation | Multi-key cryptography for encrypting file system acceleration |
US8880879B2 (en) | 2008-09-04 | 2014-11-04 | Intel Corporation | Accelerated cryptography with an encryption attribute |
US9544922B2 (en) | 2008-09-16 | 2017-01-10 | At&T Intellectual Property I, L.P. | Quality of service scheme for collision-based wireless networks |
KR101595043B1 (ko) | 2008-09-18 | 2016-02-17 | 마벨 월드 트레이드 리미티드 | 적어도 부분적으로 부팅 동안에 어플리케이션들을 메모리에 프리로딩하는 방법 |
EP2330533B1 (en) * | 2008-09-24 | 2021-02-17 | Panasonic Intellectual Property Management Co., Ltd. | Recording/reproducing system, recording medium device, and recording/reproducing device |
US20100088520A1 (en) * | 2008-10-02 | 2010-04-08 | Microsoft Corporation | Protocol for determining availability of peers in a peer-to-peer storage system |
US8046337B2 (en) | 2008-10-15 | 2011-10-25 | International Business Machines Corporation | Preservation aware fixity in digital preservation |
US8219803B2 (en) * | 2008-10-20 | 2012-07-10 | Disney Enterprises, Inc. | System and method for unlocking content associated with media |
US8171306B2 (en) * | 2008-11-05 | 2012-05-01 | Microsoft Corporation | Universal secure token for obfuscation and tamper resistance |
FR2938355B1 (fr) * | 2008-11-10 | 2010-11-26 | Active Circle | Procede et systeme de stockage virtualise d'un ensemble de donnees numeriques |
WO2010055924A1 (ja) * | 2008-11-14 | 2010-05-20 | Okiセミコンダクタ株式会社 | 秘密情報伝送方法、秘密情報伝送システム及び秘密情報送信装置 |
US20100124329A1 (en) * | 2008-11-18 | 2010-05-20 | Lyman Dan C | Encrypted communication between printing system components |
US9104618B2 (en) | 2008-12-18 | 2015-08-11 | Sandisk Technologies Inc. | Managing access to an address range in a storage device |
GB2466465B (en) * | 2008-12-19 | 2011-02-16 | Ingenia Holdings | Authentication |
GB2466311B (en) * | 2008-12-19 | 2010-11-03 | Ingenia Holdings | Self-calibration of a matching algorithm for determining authenticity |
US8139765B2 (en) * | 2008-12-29 | 2012-03-20 | King Fahd University Of Petroleum & Minerals | Elliptical polynomial-based message authentication code |
US20100250502A1 (en) * | 2009-03-27 | 2010-09-30 | Kiyokazu Saigo | Method and apparatus for contents de-duplication |
JP2010267240A (ja) * | 2009-04-16 | 2010-11-25 | Toshiba Corp | 記録装置 |
ES2365887B1 (es) * | 2009-05-05 | 2012-09-03 | Scytl Secure Electronic Voting S.A. | Metodo de verificacion de procesos de descifrado |
US9602864B2 (en) | 2009-06-08 | 2017-03-21 | Time Warner Cable Enterprises Llc | Media bridge apparatus and methods |
US9866609B2 (en) | 2009-06-08 | 2018-01-09 | Time Warner Cable Enterprises Llc | Methods and apparatus for premises content distribution |
US9075958B2 (en) * | 2009-06-24 | 2015-07-07 | Uniloc Luxembourg S.A. | Use of fingerprint with an on-line or networked auction |
US9118428B2 (en) | 2009-11-04 | 2015-08-25 | At&T Intellectual Property I, L.P. | Geographic advertising using a scalable wireless geocast protocol |
GB2476226B (en) | 2009-11-10 | 2012-03-28 | Ingenia Holdings Ltd | Optimisation |
EP2507995A4 (en) | 2009-12-04 | 2014-07-09 | Sonic Ip Inc | SYSTEMS AND METHODS FOR TRANSPORTING ELEMENTARY BIT TRAIN CRYPTOGRAPHIC MATERIAL |
CN102725737B (zh) | 2009-12-04 | 2016-04-20 | 密码研究公司 | 可验证防泄漏的加密和解密 |
WO2011074844A2 (en) * | 2009-12-14 | 2011-06-23 | Lg Electronics Inc. | Method of processing non-real time service and broadcast receiver |
EP2532116A4 (en) | 2010-02-04 | 2015-11-18 | Gentex Corp | SYSTEM AND METHOD FOR WIRELESS MEMORY PROGRAMMING IN A COMMUNICATION SYSTEM |
US9906838B2 (en) | 2010-07-12 | 2018-02-27 | Time Warner Cable Enterprises Llc | Apparatus and methods for content delivery and message exchange across multiple content delivery networks |
US8751795B2 (en) * | 2010-09-14 | 2014-06-10 | Mo-Dv, Inc. | Secure transfer and tracking of data using removable non-volatile memory devices |
US8645716B1 (en) | 2010-10-08 | 2014-02-04 | Marvell International Ltd. | Method and apparatus for overwriting an encryption key of a media drive |
US9563751B1 (en) | 2010-10-13 | 2017-02-07 | The Boeing Company | License utilization management system service suite |
US10016684B2 (en) * | 2010-10-28 | 2018-07-10 | At&T Intellectual Property I, L.P. | Secure geographic based gaming |
US10162553B2 (en) | 2010-11-24 | 2018-12-25 | Western Digital Technologies, Inc. | Methods and systems for object level de-duplication for solid state devices |
US8914534B2 (en) | 2011-01-05 | 2014-12-16 | Sonic Ip, Inc. | Systems and methods for adaptive bitrate streaming of media stored in matroska container files using hypertext transfer protocol |
JP5159916B2 (ja) * | 2011-04-28 | 2013-03-13 | 株式会社東芝 | ホスト |
FR2976147B1 (fr) * | 2011-05-30 | 2013-11-22 | Maxim Integrated Products | Schema d'entrelacement de donnees pour une memoire externe d'un microcontroleur securise |
US9400714B2 (en) * | 2011-06-06 | 2016-07-26 | International Business Machines Corporation | Wirelessly communicating a data file |
US20120331303A1 (en) * | 2011-06-23 | 2012-12-27 | Andersson Jonathan E | Method and system for preventing execution of malware |
US9319842B2 (en) | 2011-06-27 | 2016-04-19 | At&T Intellectual Property I, L.P. | Mobile device configured point and shoot type weapon |
US9161158B2 (en) | 2011-06-27 | 2015-10-13 | At&T Intellectual Property I, L.P. | Information acquisition using a scalable wireless geocast protocol |
US8812662B2 (en) | 2011-06-29 | 2014-08-19 | Sonic Ip, Inc. | Systems and methods for estimating available bandwidth and performing initial stream selection when streaming content |
KR101290809B1 (ko) * | 2011-07-08 | 2013-08-23 | 삼성중공업 주식회사 | 콘텐츠 제공 서버, 콘텐츠 암호화 방법, 콘텐츠 복호화 방법, 및 이들 방법이 저장된 기록매체 |
CN102279813B (zh) * | 2011-08-12 | 2014-03-12 | 无锡城市云计算中心有限公司 | 一种加密卡内系统的保护方法 |
US9467708B2 (en) | 2011-08-30 | 2016-10-11 | Sonic Ip, Inc. | Selection of resolutions for seamless resolution switching of multimedia content |
WO2013033458A2 (en) | 2011-08-30 | 2013-03-07 | Divx, Llc | Systems and methods for encoding and streaming video encoded using a plurality of maximum bitrate levels |
US8799647B2 (en) | 2011-08-31 | 2014-08-05 | Sonic Ip, Inc. | Systems and methods for application identification |
US8787570B2 (en) | 2011-08-31 | 2014-07-22 | Sonic Ip, Inc. | Systems and methods for automatically genenrating top level index files |
US8909922B2 (en) | 2011-09-01 | 2014-12-09 | Sonic Ip, Inc. | Systems and methods for playing back alternative streams of protected content protected using common cryptographic information |
US8964977B2 (en) | 2011-09-01 | 2015-02-24 | Sonic Ip, Inc. | Systems and methods for saving encoded media streamed using adaptive bitrate streaming |
WO2013035267A1 (ja) * | 2011-09-06 | 2013-03-14 | パナソニック株式会社 | 記録媒体装置、端末装置、配信装置、制御方法、プログラム、及びプログラムの記録媒体 |
JP5899751B2 (ja) * | 2011-09-28 | 2016-04-06 | ソニー株式会社 | 情報処理装置、および情報処理方法、並びにプログラム |
KR101913424B1 (ko) * | 2011-09-30 | 2018-11-01 | 한국전력공사 | 이종 기기간 암복호화 장치 및 방법 |
US9495870B2 (en) | 2011-10-20 | 2016-11-15 | At&T Intellectual Property I, L.P. | Vehicular communications using a scalable ad hoc geographic routing protocol |
US9436629B2 (en) | 2011-11-15 | 2016-09-06 | Marvell World Trade Ltd. | Dynamic boot image streaming |
US9195463B2 (en) * | 2011-11-30 | 2015-11-24 | International Business Machines Corporation | Processing core with speculative register preprocessing in unused execution unit cycles |
US8744419B2 (en) | 2011-12-15 | 2014-06-03 | At&T Intellectual Property, I, L.P. | Media distribution via a scalable ad hoc geographic protocol |
US8918908B2 (en) | 2012-01-06 | 2014-12-23 | Sonic Ip, Inc. | Systems and methods for accessing digital content using electronic tickets and ticket tokens |
US8868910B2 (en) * | 2012-02-09 | 2014-10-21 | Hewlett-Packard Development Company, L.P. | Elliptic curve cryptographic signature |
WO2013142517A1 (en) | 2012-03-20 | 2013-09-26 | Krimmeni Technologies, Inc. | Method and system for process working set isolation |
CN103377347B (zh) * | 2012-04-24 | 2016-01-06 | 腾讯科技(深圳)有限公司 | 文件加密、解密方法及装置 |
US9049022B2 (en) | 2012-04-27 | 2015-06-02 | Certicom Corp. | Hashing prefix-free values in a certificate scheme |
US8995656B2 (en) | 2012-04-27 | 2015-03-31 | Certicom Corp. | Multiple hashing in a cryptographic scheme |
US8850199B2 (en) | 2012-04-27 | 2014-09-30 | Certicom Corp. | Hashing prefix-free values in a signature scheme |
US9124432B2 (en) * | 2012-05-25 | 2015-09-01 | Kabushiki Kaisha Toshiba | Host device and authentication method for host device |
JP5973808B2 (ja) * | 2012-07-03 | 2016-08-23 | フェリカネットワークス株式会社 | 情報処理装置、端末装置、情報処理システム、情報処理方法およびコンピュータプログラム |
US9071451B2 (en) | 2012-07-31 | 2015-06-30 | At&T Intellectual Property I, L.P. | Geocast-based situation awareness |
US9571275B1 (en) | 2012-08-14 | 2017-02-14 | Google Inc. | Single use identifier values for network accessible devices |
US9936267B2 (en) | 2012-08-31 | 2018-04-03 | Divx Cf Holdings Llc | System and method for decreasing an initial buffering period of an adaptive streaming system |
CN102930223B (zh) * | 2012-09-21 | 2015-07-22 | 北京深思洛克软件技术股份有限公司 | 一种磁盘数据保护方法和系统 |
US9210589B2 (en) | 2012-10-09 | 2015-12-08 | At&T Intellectual Property I, L.P. | Geocast protocol for wireless sensor network |
US9565472B2 (en) | 2012-12-10 | 2017-02-07 | Time Warner Cable Enterprises Llc | Apparatus and methods for content transfer protection |
US9660745B2 (en) | 2012-12-12 | 2017-05-23 | At&T Intellectual Property I, L.P. | Geocast-based file transfer |
EP2744145A1 (en) * | 2012-12-14 | 2014-06-18 | Gemalto SA | Non alterable structure including cryptographic material |
CN103092688B (zh) * | 2012-12-28 | 2015-11-18 | 飞天诚信科技股份有限公司 | 一种在嵌入式系统中生成坐标点的方法 |
US9390291B2 (en) * | 2012-12-29 | 2016-07-12 | Intel Corporation | Secure key derivation and cryptography logic for integrated circuits |
US9313510B2 (en) | 2012-12-31 | 2016-04-12 | Sonic Ip, Inc. | Use of objective quality measures of streamed content to reduce streaming bandwidth |
US9191457B2 (en) | 2012-12-31 | 2015-11-17 | Sonic Ip, Inc. | Systems, methods, and media for controlling delivery of content |
US9575768B1 (en) | 2013-01-08 | 2017-02-21 | Marvell International Ltd. | Loading boot code from multiple memories |
US9288118B1 (en) | 2013-02-05 | 2016-03-15 | Google Inc. | Setting cookies across applications |
US9298947B2 (en) * | 2013-02-07 | 2016-03-29 | Qualcomm Incorporated | Method for protecting the integrity of a fixed-length data structure |
US20140282786A1 (en) | 2013-03-12 | 2014-09-18 | Time Warner Cable Enterprises Llc | Methods and apparatus for providing and uploading content to personalized network storage |
US9906785B2 (en) | 2013-03-15 | 2018-02-27 | Sonic Ip, Inc. | Systems, methods, and media for transcoding video data according to encoding parameters indicated by received metadata |
US9066153B2 (en) | 2013-03-15 | 2015-06-23 | Time Warner Cable Enterprises Llc | Apparatus and methods for multicast delivery of content in a content delivery network |
US10368255B2 (en) | 2017-07-25 | 2019-07-30 | Time Warner Cable Enterprises Llc | Methods and apparatus for client-based dynamic control of connections to co-existing radio access networks |
US10397292B2 (en) | 2013-03-15 | 2019-08-27 | Divx, Llc | Systems, methods, and media for delivery of content |
US9736801B1 (en) | 2013-05-20 | 2017-08-15 | Marvell International Ltd. | Methods and apparatus for synchronizing devices in a wireless data communication system |
US9521635B1 (en) | 2013-05-21 | 2016-12-13 | Marvell International Ltd. | Methods and apparatus for selecting a device to perform shared functionality in a deterministic and fair manner in a wireless data communication system |
US9094737B2 (en) | 2013-05-30 | 2015-07-28 | Sonic Ip, Inc. | Network video streaming with trick play based on separate trick play files |
US9100687B2 (en) | 2013-05-31 | 2015-08-04 | Sonic Ip, Inc. | Playback synchronization across playback devices |
US9380099B2 (en) | 2013-05-31 | 2016-06-28 | Sonic Ip, Inc. | Synchronizing multiple over the top streaming clients |
US9313568B2 (en) | 2013-07-23 | 2016-04-12 | Chicago Custom Acoustics, Inc. | Custom earphone with dome in the canal |
EP3028145A1 (en) | 2013-07-31 | 2016-06-08 | Marvell World Trade Ltd. | Parallelizing boot operations |
FR3010598B1 (fr) | 2013-09-06 | 2017-01-13 | Sagem Defense Securite | Procede de gestion de coherence de caches |
US9087192B2 (en) * | 2013-09-10 | 2015-07-21 | Infineon Technologies Ag | Electronic circuit and method for monitoring a data processing |
US9455962B2 (en) | 2013-09-22 | 2016-09-27 | Winbond Electronics Corporation | Protecting memory interface |
US9343162B2 (en) | 2013-10-11 | 2016-05-17 | Winbond Electronics Corporation | Protection against side-channel attacks on non-volatile memory |
JP2015103890A (ja) * | 2013-11-22 | 2015-06-04 | ソニー株式会社 | コンテンツ受信装置及びコンテンツ受信方法、並びにコンテンツ送信装置及びコンテンツ送信方法 |
US9386067B2 (en) | 2013-12-30 | 2016-07-05 | Sonic Ip, Inc. | Systems and methods for playing adaptive bitrate streaming content by multicast |
WO2015163967A2 (en) * | 2014-02-04 | 2015-10-29 | Exponential Horizons | Cryptographic method and system of protecting digital content and recovery of same through unique user identification |
FR3019416A1 (fr) * | 2014-03-28 | 2015-10-02 | Orange | Procede de traitement de donnees |
US9318221B2 (en) | 2014-04-03 | 2016-04-19 | Winbound Electronics Corporation | Memory device with secure test mode |
US9866878B2 (en) | 2014-04-05 | 2018-01-09 | Sonic Ip, Inc. | Systems and methods for encoding and playing back video at different frame rates using enhancement layers |
US9621940B2 (en) | 2014-05-29 | 2017-04-11 | Time Warner Cable Enterprises Llc | Apparatus and methods for recording, accessing, and delivering packetized content |
US11540148B2 (en) | 2014-06-11 | 2022-12-27 | Time Warner Cable Enterprises Llc | Methods and apparatus for access point location |
US11100234B2 (en) * | 2014-06-13 | 2021-08-24 | Hitachi Systems, Ltd. | Work recording apparatus, system, program, and method preventing confidential information leaks |
SG11201609457UA (en) | 2014-08-07 | 2016-12-29 | Sonic Ip Inc | Systems and methods for protecting elementary bitstreams incorporating independently encoded tiles |
EP2990978B1 (en) * | 2014-08-28 | 2020-11-18 | Vodafone GmbH | Operating a device for forwarding protected content to a client unit |
IL234956A (en) | 2014-10-02 | 2017-10-31 | Kaluzhny Uri | Data bus protection with enhanced key entropy |
US9935833B2 (en) | 2014-11-05 | 2018-04-03 | Time Warner Cable Enterprises Llc | Methods and apparatus for determining an optimized wireless interface installation configuration |
ES2874748T3 (es) | 2015-01-06 | 2021-11-05 | Divx Llc | Sistemas y métodos para codificar y compartir contenido entre dispositivos |
KR102249826B1 (ko) * | 2015-01-06 | 2021-05-11 | 삼성전자주식회사 | 데이터 관리 방법 및 이를 수행하는 전자 장치 |
JP6613568B2 (ja) * | 2015-01-19 | 2019-12-04 | 富士通株式会社 | 処理プログラム、処理装置および処理方法 |
WO2016116999A1 (ja) * | 2015-01-19 | 2016-07-28 | 三菱電機株式会社 | パケット送信装置、パケット受信装置、パケット送信プログラムおよびパケット受信プログラム |
US10110572B2 (en) * | 2015-01-21 | 2018-10-23 | Oracle International Corporation | Tape drive encryption in the data path |
US10715574B2 (en) | 2015-02-27 | 2020-07-14 | Divx, Llc | Systems and methods for frame duplication and frame extension in live video encoding and streaming |
US10911225B2 (en) * | 2015-06-05 | 2021-02-02 | Nutanix, Inc. | Optimizable full-path encryption in a virtualization environment |
JP2017069617A (ja) * | 2015-09-28 | 2017-04-06 | ルネサスエレクトロニクス株式会社 | 半導体装置および画像符号化方法 |
US9986578B2 (en) | 2015-12-04 | 2018-05-29 | Time Warner Cable Enterprises Llc | Apparatus and methods for selective data network access |
US10310774B2 (en) * | 2015-12-24 | 2019-06-04 | Intel Corporation | Techniques for data storage protection and integrity checking |
US9918345B2 (en) | 2016-01-20 | 2018-03-13 | Time Warner Cable Enterprises Llc | Apparatus and method for wireless network services in moving vehicles |
US10492034B2 (en) | 2016-03-07 | 2019-11-26 | Time Warner Cable Enterprises Llc | Apparatus and methods for dynamic open-access networks |
CN109075968A (zh) | 2016-03-08 | 2018-12-21 | 马维尔国际贸易有限公司 | 用于安全设备认证的方法和装置 |
US10019571B2 (en) | 2016-03-13 | 2018-07-10 | Winbond Electronics Corporation | Protection from side-channel attacks by varying clock delays |
US10095635B2 (en) | 2016-03-29 | 2018-10-09 | Seagate Technology Llc | Securing information relating to data compression and encryption in a storage device |
US10075292B2 (en) | 2016-03-30 | 2018-09-11 | Divx, Llc | Systems and methods for quick start-up of playback |
US10231001B2 (en) | 2016-05-24 | 2019-03-12 | Divx, Llc | Systems and methods for providing audio content during trick-play playback |
US10129574B2 (en) | 2016-05-24 | 2018-11-13 | Divx, Llc | Systems and methods for providing variable speeds in a trick-play mode |
US10148989B2 (en) | 2016-06-15 | 2018-12-04 | Divx, Llc | Systems and methods for encoding video content |
US10164858B2 (en) | 2016-06-15 | 2018-12-25 | Time Warner Cable Enterprises Llc | Apparatus and methods for monitoring and diagnosing a wireless network |
US20180013566A1 (en) * | 2016-07-05 | 2018-01-11 | Dark Matter L.L.C. | Apparatus, computer program, and method for securely broadcasting messages |
CN106897348B (zh) * | 2016-08-19 | 2020-10-27 | 创新先进技术有限公司 | 一种数据存储、数据校验、数据溯源方法和设备 |
US10389693B2 (en) * | 2016-08-23 | 2019-08-20 | Hewlett Packard Enterprise Development Lp | Keys for encrypted disk partitions |
US10498795B2 (en) | 2017-02-17 | 2019-12-03 | Divx, Llc | Systems and methods for adaptive switching between multiple content delivery networks during adaptive bitrate streaming |
CN108737353B (zh) * | 2017-04-25 | 2021-08-20 | 北京国双科技有限公司 | 一种基于数据分析系统的数据加密方法及装置 |
JP6757697B2 (ja) * | 2017-04-28 | 2020-09-23 | 株式会社日立製作所 | 制御コントローラおよび制御方法 |
KR101987025B1 (ko) * | 2017-05-31 | 2019-06-10 | 삼성에스디에스 주식회사 | 암호화 처리 방법 및 그 장치 |
US10645547B2 (en) | 2017-06-02 | 2020-05-05 | Charter Communications Operating, Llc | Apparatus and methods for providing wireless service in a venue |
US10638361B2 (en) | 2017-06-06 | 2020-04-28 | Charter Communications Operating, Llc | Methods and apparatus for dynamic control of connections to co-existing radio access networks |
CN107241356B (zh) * | 2017-07-24 | 2020-08-14 | 无锡江南计算技术研究所 | 一种网络设备合法性验证方法 |
US11030221B2 (en) * | 2017-12-22 | 2021-06-08 | Permutive Limited | System for fast and secure content provision |
CN108599922B (zh) * | 2018-04-26 | 2021-03-30 | 成都盛拓源科技有限公司 | 新型含密钥消息完整性认证码的生成方法 |
CN108566270B (zh) * | 2018-04-26 | 2021-10-01 | 成都盛拓源科技有限公司 | 使用双分组密码的新型加密方法 |
WO2019222516A1 (en) * | 2018-05-16 | 2019-11-21 | Lg Electronics, Inc. | Systems and methods for efficient key management in a vehicular intranet |
US10904292B1 (en) * | 2018-09-25 | 2021-01-26 | Amazon Technologies, Inc. | Secure data transfer device |
JP2020072348A (ja) * | 2018-10-30 | 2020-05-07 | キヤノン株式会社 | 認証方法、認証装置、被認証装置及び画像形成装置 |
US11469903B2 (en) * | 2019-02-28 | 2022-10-11 | Microsoft Technology Licensing, Llc | Autonomous signing management operations for a key distribution service |
US11825142B2 (en) | 2019-03-21 | 2023-11-21 | Divx, Llc | Systems and methods for multimedia swarms |
FR3094520B1 (fr) * | 2019-03-25 | 2021-10-22 | St Microelectronics Rousset | Clé de chiffrement et/ou de déchiffrement |
US11444776B2 (en) * | 2019-05-01 | 2022-09-13 | Kelce S. Wilson | Blockchain with daisy chained records, document corral, quarantine, message timestamping, and self-addressing |
TWI772648B (zh) * | 2019-06-03 | 2022-08-01 | 銓鴻資訊有限公司 | 基於集體驗證的部分資料驗證方法 |
US10803969B1 (en) | 2019-08-28 | 2020-10-13 | Micron Technology, Inc. | Memory authentication |
RU2759259C1 (ru) * | 2020-08-19 | 2021-11-11 | Акционерное общество "ЦентрИнформ" | Система маркировки и проверки подлинности объекта |
US11863679B2 (en) | 2020-08-26 | 2024-01-02 | Tenet 3, LLC | Blockchain records with third party digital signatures as a trust element for high-risk digital content |
US20220069981A1 (en) * | 2020-09-03 | 2022-03-03 | Google Llc | Distribute Encryption Keys Securely and Efficiently |
US12120225B2 (en) * | 2020-09-25 | 2024-10-15 | Renesas Electronics Corporation | Secure key generation and management in open and secure processor environments |
US12120518B2 (en) * | 2021-12-22 | 2024-10-15 | T-Mobile Innovations Llc | Cryptographic identification of false base stations |
Citations (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH03151738A (ja) * | 1989-11-08 | 1991-06-27 | Hitachi Ltd | 検証用データ生成装置 |
JPH06162289A (ja) * | 1992-11-18 | 1994-06-10 | Nippon Telegr & Teleph Corp <Ntt> | Icクレジットカード及びicカード端末 |
JPH06289782A (ja) * | 1993-04-07 | 1994-10-18 | Matsushita Electric Ind Co Ltd | 相互認証方法 |
JPH08248879A (ja) * | 1995-02-06 | 1996-09-27 | Internatl Business Mach Corp <Ibm> | 2つの鍵を使用して暗号化する方法および装置 |
JPH09106429A (ja) * | 1995-10-12 | 1997-04-22 | Hitachi Ltd | 電子伝票処理方法 |
JPH09121340A (ja) * | 1995-07-07 | 1997-05-06 | Thomson Consumer Electron Inc | 双方向情報システムにおいて伝送されたアプリケーションを認証する装置及び方法 |
JPH103257A (ja) * | 1996-06-18 | 1998-01-06 | Toshiba Corp | 電子署名付加方法及び電子署名装置並びに電子署名検証方法 |
JPH10126406A (ja) * | 1996-10-23 | 1998-05-15 | Toyo Commun Equip Co Ltd | ネットワークにおけるデータの暗号方式 |
JPH10164508A (ja) * | 1996-12-02 | 1998-06-19 | Nec Corp | オーディオ・ビデオ同期再生装置 |
JPH10187826A (ja) * | 1996-12-19 | 1998-07-21 | Nec Corp | 偽造カード使用防止方法およびカード読取書込装置ならびに偽造カード使用防止システム |
JPH10283280A (ja) * | 1997-04-07 | 1998-10-23 | M V P Kk | マルチメディア電子メール送信方法およびそれに用いる記録媒体 |
Family Cites Families (58)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
US5065429A (en) | 1989-04-03 | 1991-11-12 | Lang Gerald S | Method and apparatus for protecting material on storage media |
EP0483424A1 (en) * | 1990-10-30 | 1992-05-06 | International Business Machines Corporation | Key hashing in data processors |
JPH05327394A (ja) | 1992-05-27 | 1993-12-10 | Japan Radio Co Ltd | 弾性表面波素子のフェースダウン実装用パッケージ |
US5396558A (en) * | 1992-09-18 | 1995-03-07 | Nippon Telegraph And Telephone Corporation | Method and apparatus for settlement of accounts by IC cards |
FR2696854A1 (fr) * | 1992-10-09 | 1994-04-15 | Kudelski Sa Fabrique Enreg Nag | Système de traitement d'information utilisant un ensemble de cartes à mémoire. |
US5546461A (en) | 1993-04-09 | 1996-08-13 | Matsushita Electric Industrial Co., Ltd. | Scramble system for use in digital video signal recording and reproducing system or transmission and receiving system, comprising scramble apparatus and descramble apparatus |
US5450489A (en) * | 1993-10-29 | 1995-09-12 | Time Warner Entertainment Co., L.P. | System and method for authenticating software carriers |
US5715403A (en) | 1994-11-23 | 1998-02-03 | Xerox Corporation | System for controlling the distribution and use of digital works having attached usage rights where the usage rights are defined by a usage rights grammar |
CA2212574C (en) * | 1995-02-13 | 2010-02-02 | Electronic Publishing Resources, Inc. | Systems and methods for secure transaction management and electronic rights protection |
US5680587A (en) * | 1995-05-01 | 1997-10-21 | Computer Performance Inc. | Enhanced-performance floppy diskette subsystem |
EP0842471A4 (en) * | 1995-07-31 | 2006-11-08 | Hewlett Packard Co | METHOD AND APPARATUS FOR MANAGING RESOURCES UNDER THE CONTROL OF A PROTECTED MODULE OR OTHER PROTECTED PROCESSOR |
US6289102B1 (en) * | 1995-10-09 | 2001-09-11 | Matsushita Electric Industrial Co., Ltd. | Apparatus and method for preventing unauthorized use of information recorded on an information recording medium |
US5917910A (en) * | 1995-10-16 | 1999-06-29 | Sony Corporation | Encrypting method and apparatus, recording method, decrypting method and apparatus, and recording medium |
JP3151738B2 (ja) | 1995-11-21 | 2001-04-03 | 株式会社小糸製作所 | 車両用灯具 |
JPH09179951A (ja) | 1995-12-22 | 1997-07-11 | Dainippon Printing Co Ltd | 携帯可能情報記憶媒体及びそのシステム |
TW346571B (en) * | 1996-02-06 | 1998-12-01 | Matsushita Electric Ind Co Ltd | Data reception apparatus, data transmission apparatus, information processing system, data reception method |
US5673316A (en) | 1996-03-29 | 1997-09-30 | International Business Machines Corporation | Creation and distribution of cryptographic envelope |
JPH1065662A (ja) | 1996-04-01 | 1998-03-06 | Sony Corp | データ復号方法および装置、認証方法、記録媒体、ディスク製造方法、記録方法、並びに記録装置 |
US5883958A (en) * | 1996-04-01 | 1999-03-16 | Sony Corporation | Method and device for data decryption, a method and device for device identification, a recording medium, a method of disk production, and a method and apparatus for disk recording |
ES2286833T3 (es) * | 1996-05-15 | 2007-12-01 | Intertrust Technologies Corp | Metodo y aparato para acceder al contenido almacenado en un dvd. |
TW412734B (en) | 1996-12-26 | 2000-11-21 | Toshiba Corp | Storage medium for recording data, regeneration device for regenerating data recorded in the storage medium, and regeneration system for regenerating data recorded in the storage medium via network |
JP3746146B2 (ja) | 1997-02-07 | 2006-02-15 | 株式会社東芝 | 暗号情報の生成及び復号方法及び伝送及び受信装置 |
JP4268690B2 (ja) * | 1997-03-26 | 2009-05-27 | ソニー株式会社 | 認証システムおよび方法、並びに認証方法 |
JPH10303880A (ja) | 1997-05-01 | 1998-11-13 | Digital Vision Lab:Kk | サービス提供システム |
JP3575951B2 (ja) * | 1997-06-17 | 2004-10-13 | 株式会社東芝 | 機器認証方法及び装置並びに認証システム |
US6298401B1 (en) * | 1997-08-11 | 2001-10-02 | Seagate Technology Llc | Object oriented storage device having a disc drive controller providing an interface exposing methods which are invoked to access objects stored in a storage media |
US6011849A (en) * | 1997-08-28 | 2000-01-04 | Syndata Technologies, Inc. | Encryption-based selection system for steganography |
US5991878A (en) * | 1997-09-08 | 1999-11-23 | Fmr Corp. | Controlling access to information |
US6021419A (en) * | 1997-09-16 | 2000-02-01 | International Business Machines Corporation | System for filtering broadcast digital information in accordance with channel identifiers stored in preference list which can be dynamically updated via command through network |
FR2772532B1 (fr) | 1997-12-16 | 2000-01-07 | Schlumberger Ind Sa | Procede de securisation de la transmission d'un message d'un dispositif emetteur a un dispositif recepteur |
JPH11185006A (ja) | 1997-12-25 | 1999-07-09 | Dainippon Printing Co Ltd | Icカード |
JPH11213552A (ja) | 1998-01-26 | 1999-08-06 | Matsushita Electric Ind Co Ltd | データ記録再生方法およびデータ記録再生システム |
EP0989557A4 (en) | 1998-01-26 | 2009-12-23 | Panasonic Corp | APPARATUS, METHOD AND SYSTEM FOR RECORDING / REPRODUCING DATA, AND PROGRAM RECORDING MEDIA |
AU2583099A (en) * | 1998-02-04 | 1999-08-23 | Sun Microsystems, Inc. | Method and apparatus for efficient authentication and integrity checking using hierarchical hashing |
US6055236A (en) * | 1998-03-05 | 2000-04-25 | 3Com Corporation | Method and system for locating network services with distributed network address translation |
EP0994599A4 (en) | 1998-04-01 | 2009-06-03 | Panasonic Corp | DATA TRANSMITTING / RECEIVING METHOD, DATA TRANSMITTER, DATA RECEIVER, DATA TRANSMITTING / RECEIVING SYSTEM, AUDIOVISUAL CONTENT TRANSMITTING METHOD, AUDIOVISUAL CONTENT RECEIVING METHOD, AUDIOVISUAL CONTENT TRANSMITTER, AUDIOVISUAL CONTENT RECEIVER , AND RECORD SUPPORT |
WO1999055055A1 (en) | 1998-04-17 | 1999-10-28 | Iomega Corporation | System for keying protected electronic data to particular media to prevent unauthorized copying |
US6356753B1 (en) * | 1998-04-24 | 2002-03-12 | Ericsson Inc | Management of authentication and encryption user information in digital user terminals |
JPH11306088A (ja) | 1998-04-27 | 1999-11-05 | Toppan Printing Co Ltd | Icカードおよびicカードシステム |
JPH11338982A (ja) * | 1998-05-25 | 1999-12-10 | Mitsubishi Electric Corp | Icメモリカードシステム装置及びそのicメモリカード |
JP4208998B2 (ja) * | 1998-07-03 | 2009-01-14 | パイオニア株式会社 | 複製制限機能を備えた記録再生システム、記録装置および再生装置 |
US6304973B1 (en) * | 1998-08-06 | 2001-10-16 | Cryptek Secure Communications, Llc | Multi-level security network system |
CA2285872C (en) * | 1998-10-16 | 2009-10-06 | Matsushita Electric Industrial Co., Ltd. | Digital content protection system |
KR100286572B1 (ko) * | 1998-11-19 | 2001-04-16 | 남창우 | 금속박막을 이용한 연료전지 자동차용 소형연료개질기 및 그시스템 |
JP2000181803A (ja) | 1998-12-18 | 2000-06-30 | Fujitsu Ltd | 鍵管理機能付電子データ保管装置および電子データ保管方法 |
JP2000196582A (ja) | 1998-12-25 | 2000-07-14 | Nippon Telegr & Teleph Corp <Ntt> | 記憶メディア識別子を利用した不正利用防止のための情報記録、利用および配送方法 |
AU2998100A (en) * | 1999-02-18 | 2000-09-04 | Sun Microsystems, Inc. | Data authentication system employing encrypted integrity blocks |
US6366297B1 (en) * | 1999-03-01 | 2002-04-02 | 3Com Corporation | System and method for displaying modem information on a graphical user interface display |
MY123388A (en) * | 1999-03-15 | 2006-05-31 | Sony Corp | Processing method and apparatus for encrypted data transfer |
JP3992396B2 (ja) | 1999-03-31 | 2007-10-17 | 株式会社リコー | 電子文書管理装置、電子文書管理方法およびその方法をコンピュータに実行させるプログラムを記録したコンピュータ読み取り可能な記録媒体 |
US6468160B2 (en) | 1999-04-08 | 2002-10-22 | Nintendo Of America, Inc. | Security system for video game system with hard disk drive and internet access capability |
JP4177517B2 (ja) | 1999-05-21 | 2008-11-05 | 株式会社東芝 | コンテンツ処理システムおよびコンテンツ保護方法 |
JP2000341265A (ja) | 1999-05-28 | 2000-12-08 | Matsushita Electric Ind Co Ltd | データ記録および読み出し方法および記録装置および読み取り装置および書き込み装置 |
US6898709B1 (en) * | 1999-07-02 | 2005-05-24 | Time Certain Llc | Personal computer system and methods for proving dates in digital data files |
US6598161B1 (en) * | 1999-08-09 | 2003-07-22 | International Business Machines Corporation | Methods, systems and computer program products for multi-level encryption |
JP3748352B2 (ja) * | 1999-12-16 | 2006-02-22 | 富士通株式会社 | データ運用方法、画像生成方法のプログラムを記録する記録媒体、画像復元方法のプログラムを記録する記録媒体 |
FR2804023B1 (fr) * | 2000-01-26 | 2002-09-20 | Johnson & Johnson Consumer Fr | Complement nutritionnel a base d'huile de pepins de cassis |
EP1512147A2 (en) * | 2000-12-07 | 2005-03-09 | SanDisk Corporation | System, method, and device for playing back recorded audio, video or other content from non-volatile memory cards, compact disks or other media |
-
2001
- 2001-01-19 CN CNA2005101038929A patent/CN1818990A/zh active Pending
- 2001-01-19 KR KR1020027009870A patent/KR100652098B1/ko not_active IP Right Cessation
- 2001-01-19 CN CNA2005101041387A patent/CN1779689A/zh active Pending
- 2001-01-19 ES ES01901463T patent/ES2301525T3/es not_active Expired - Lifetime
- 2001-01-19 CN CNB02129853XA patent/CN100423041C/zh not_active Expired - Fee Related
- 2001-01-19 AT AT05077294T patent/ATE522039T1/de not_active IP Right Cessation
- 2001-01-19 BR BR0104356-0A patent/BR0104356A/pt not_active Application Discontinuation
- 2001-01-19 KR KR1020047007534A patent/KR100653806B1/ko not_active IP Right Cessation
- 2001-01-19 AT AT01901463T patent/ATE387775T1/de not_active IP Right Cessation
- 2001-01-19 KR KR1020047007532A patent/KR100653801B1/ko not_active IP Right Cessation
- 2001-01-19 CA CA002365236A patent/CA2365236A1/en not_active Abandoned
- 2001-01-19 CA CA002400786A patent/CA2400786C/en not_active Expired - Fee Related
- 2001-01-19 DK DK01901463T patent/DK1195734T3/da active
- 2001-01-19 NZ NZ513862A patent/NZ513862A/xx not_active Application Discontinuation
- 2001-01-19 EP EP05077294A patent/EP1624609B1/en not_active Expired - Lifetime
- 2001-01-19 KR KR1020047007535A patent/KR100653807B1/ko not_active IP Right Cessation
- 2001-01-19 EP EP05077295A patent/EP1622302A3/en not_active Withdrawn
- 2001-01-19 KR KR1020047007533A patent/KR100653805B1/ko not_active IP Right Cessation
- 2001-01-19 CN CNB018001009A patent/CN100511329C/zh not_active Expired - Fee Related
- 2001-01-19 EP EP02078475A patent/EP1267515A3/en not_active Withdrawn
- 2001-01-19 EP EP01901463A patent/EP1195734B1/en not_active Expired - Lifetime
- 2001-01-19 KR KR1020047007529A patent/KR100653804B1/ko not_active IP Right Cessation
- 2001-01-19 DE DE60132962T patent/DE60132962T2/de not_active Expired - Fee Related
- 2001-01-19 KR KR1020047007530A patent/KR100653803B1/ko not_active IP Right Cessation
- 2001-01-19 KR KR1020047007531A patent/KR100653802B1/ko not_active IP Right Cessation
- 2001-01-19 US US09/937,120 patent/US7373506B2/en not_active Expired - Fee Related
- 2001-01-19 WO PCT/JP2001/000346 patent/WO2001054099A1/ja active IP Right Grant
- 2001-01-19 KR KR10-2001-7012032A patent/KR100456496B1/ko not_active IP Right Cessation
- 2001-01-19 AU AU27074/01A patent/AU785421B2/en not_active Ceased
-
2002
- 2002-12-30 HK HK03107586.2A patent/HK1057122A1/xx not_active IP Right Cessation
- 2002-12-30 HK HK02109413.8A patent/HK1047815A1/zh unknown
-
2003
- 2003-04-11 US US10/412,771 patent/US20030233559A1/en not_active Abandoned
-
2006
- 2006-12-12 US US11/637,505 patent/US20070088961A1/en not_active Abandoned
- 2006-12-19 US US11/642,506 patent/US20070136612A1/en not_active Abandoned
- 2006-12-20 US US11/642,704 patent/US7669052B2/en not_active Expired - Fee Related
-
2010
- 2010-02-22 US US12/709,918 patent/US8375206B2/en not_active Expired - Fee Related
Patent Citations (11)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JPH03151738A (ja) * | 1989-11-08 | 1991-06-27 | Hitachi Ltd | 検証用データ生成装置 |
JPH06162289A (ja) * | 1992-11-18 | 1994-06-10 | Nippon Telegr & Teleph Corp <Ntt> | Icクレジットカード及びicカード端末 |
JPH06289782A (ja) * | 1993-04-07 | 1994-10-18 | Matsushita Electric Ind Co Ltd | 相互認証方法 |
JPH08248879A (ja) * | 1995-02-06 | 1996-09-27 | Internatl Business Mach Corp <Ibm> | 2つの鍵を使用して暗号化する方法および装置 |
JPH09121340A (ja) * | 1995-07-07 | 1997-05-06 | Thomson Consumer Electron Inc | 双方向情報システムにおいて伝送されたアプリケーションを認証する装置及び方法 |
JPH09106429A (ja) * | 1995-10-12 | 1997-04-22 | Hitachi Ltd | 電子伝票処理方法 |
JPH103257A (ja) * | 1996-06-18 | 1998-01-06 | Toshiba Corp | 電子署名付加方法及び電子署名装置並びに電子署名検証方法 |
JPH10126406A (ja) * | 1996-10-23 | 1998-05-15 | Toyo Commun Equip Co Ltd | ネットワークにおけるデータの暗号方式 |
JPH10164508A (ja) * | 1996-12-02 | 1998-06-19 | Nec Corp | オーディオ・ビデオ同期再生装置 |
JPH10187826A (ja) * | 1996-12-19 | 1998-07-21 | Nec Corp | 偽造カード使用防止方法およびカード読取書込装置ならびに偽造カード使用防止システム |
JPH10283280A (ja) * | 1997-04-07 | 1998-10-23 | M V P Kk | マルチメディア電子メール送信方法およびそれに用いる記録媒体 |
Non-Patent Citations (2)
Title |
---|
EIJI OKAMOTO: "Angou riron numon", 25 February 1993, KYOURITSU SHUPPAN K.K., XP002945021 * |
SHINICHI IKENO ET AL.: "Gendai angou riron", 20 May 1989, ZAIDAN HOUJIN, DENSHI JOUHOU TSUSHIN GAKKAI, XP002945020 * |
Cited By (14)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2003337632A (ja) * | 2002-03-19 | 2003-11-28 | Microsoft Corp | ポリシーを実行された安全なデジタルデータフォーマットおよびコード |
JP2009081549A (ja) * | 2007-09-25 | 2009-04-16 | Kyocera Corp | 署名検証方法、ストリーム生成方法、受信装置、およびストリーム送信装置 |
JP2009081556A (ja) * | 2007-09-25 | 2009-04-16 | Kyocera Corp | 署名検証方法、ストリーム生成方法、受信装置、およびストリーム送信装置 |
US10834139B2 (en) | 2012-06-07 | 2020-11-10 | Amazon Technologies, Inc. | Flexibly configurable data modification services |
US11036869B2 (en) | 2013-02-12 | 2021-06-15 | Amazon Technologies, Inc. | Data security with a security module |
US10666436B2 (en) | 2013-02-12 | 2020-05-26 | Amazon Technologies, Inc. | Federated key management |
US11372993B2 (en) | 2013-02-12 | 2022-06-28 | Amazon Technologies, Inc. | Automatic key rotation |
US11695555B2 (en) | 2013-02-12 | 2023-07-04 | Amazon Technologies, Inc. | Federated key management |
US11470054B2 (en) | 2013-06-13 | 2022-10-11 | Amazon Technologies, Inc. | Key rotation techniques |
US11323479B2 (en) | 2013-07-01 | 2022-05-03 | Amazon Technologies, Inc. | Data loss prevention techniques |
US10721075B2 (en) | 2014-05-21 | 2020-07-21 | Amazon Technologies, Inc. | Web of trust management in a distributed system |
US11368300B2 (en) | 2014-06-27 | 2022-06-21 | Amazon Technologies, Inc. | Supporting a fixed transaction rate with a variably-backed logical cryptographic key |
US11626996B2 (en) | 2014-09-15 | 2023-04-11 | Amazon Technologies, Inc. | Distributed system web of trust provisioning |
US11734443B2 (en) * | 2017-01-19 | 2023-08-22 | Creator's Head Inc. | Information control program, information control system, and information control method |
Also Published As
Similar Documents
Publication | Publication Date | Title |
---|---|---|
WO2001054099A1 (fr) | Systeme d'authentification de donnees | |
WO2001056224A1 (fr) | Systeme d'authentification de dispositif de stockage | |
KR20010109323A (ko) | 데이터 기록 재생기 및 세이브 데이터 처리 방법, 및프로그램 제공 매체 | |
JP4524829B2 (ja) | データ処理システム、記録デバイス、およびデータ処理方法、並びにプログラム提供媒体 | |
JP2001203686A (ja) | データ処理装置、データ処理方法およびデータ検証値付与方法、並びにプログラム提供媒体 | |
JP2003099332A (ja) | データ処理システム、データ記録再生器、記録デバイス、および方法、並びにプログラム提供媒体 | |
JP2001211152A (ja) | データ処理装置、コンテンツデータ生成方法、およびデータ処理方法、並びにプログラム提供媒体 | |
JP2001211162A (ja) | データ処理システム、記録デバイス、およびデータ処理方法、並びにプログラム提供媒体 | |
JP4686805B2 (ja) | データ記憶素子製造方法およびデータ記憶素子、並びにデータ処理装置 | |
JP2001209310A (ja) | データ処理装置、データ処理方法およびコンテンツデータ生成方法、並びにプログラム提供媒体 | |
JP2001211148A (ja) | データ処理装置、データ処理システム、およびデータ処理方法、並びにプログラム提供媒体 | |
JP2001209309A (ja) | データ処理装置、コンテンツデータ生成方法、およびデータ処理方法、並びにプログラム提供媒体 | |
JP2001209312A (ja) | データ処理システム、記録デバイス、およびデータ処理方法、並びにプログラム提供媒体 | |
JP2001211151A (ja) | データ処理装置、データ処理方法およびコンテンツデータ検証値付与方法、並びにプログラム提供媒体 | |
JP2001211149A (ja) | データ処理装置およびデータ処理方法、並びにプログラム提供媒体 | |
AU2005200290B2 (en) | Data processing apparatus and data processing method | |
AU2002301287B8 (en) | Data Processing Apparatus and Data Processing Method | |
AU2005200289B2 (en) | Data processing apparatus and data processing method | |
JP2001211080A (ja) | データ処理装置、データ処理方法およびコンテンツデータ生成方法、並びにプログラム提供媒体 |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
WWE | Wipo information: entry into national phase |
Ref document number: 01800100.9 Country of ref document: CN |
|
AK | Designated states |
Kind code of ref document: A1 Designated state(s): AU BR CA CN KR MX NZ RU SG US |
|
AL | Designated countries for regional patents |
Kind code of ref document: A1 Designated state(s): AT BE CH CY DE DK ES FI FR GB GR IE IT LU MC NL PT SE TR |
|
WWE | Wipo information: entry into national phase |
Ref document number: 2001901463 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 27074/01 Country of ref document: AU |
|
WWE | Wipo information: entry into national phase |
Ref document number: 513862 Country of ref document: NZ |
|
WWE | Wipo information: entry into national phase |
Ref document number: PA/a/2001/009138 Country of ref document: MX |
|
ENP | Entry into the national phase |
Ref document number: 2365236 Country of ref document: CA Ref document number: 2365236 Country of ref document: CA Kind code of ref document: A |
|
121 | Ep: the epo has been informed by wipo that ep was designated in this application | ||
WWE | Wipo information: entry into national phase |
Ref document number: 1020017012032 Country of ref document: KR |
|
WWE | Wipo information: entry into national phase |
Ref document number: 09937120 Country of ref document: US |
|
WWP | Wipo information: published in national office |
Ref document number: 2001901463 Country of ref document: EP |
|
WWE | Wipo information: entry into national phase |
Ref document number: 1020027009870 Country of ref document: KR |
|
WWE | Wipo information: entry into national phase |
Ref document number: 1020047007529 Country of ref document: KR Ref document number: 1020047007533 Country of ref document: KR Ref document number: 1020047007535 Country of ref document: KR Ref document number: 1020047007534 Country of ref document: KR Ref document number: 1020047007532 Country of ref document: KR Ref document number: 1020047007531 Country of ref document: KR Ref document number: 1020047007530 Country of ref document: KR |
|
WWG | Wipo information: grant in national office |
Ref document number: 27074/01 Country of ref document: AU |
|
WWG | Wipo information: grant in national office |
Ref document number: 2001901463 Country of ref document: EP |