CN101253508A

CN101253508A - Group registration device, group registration method, group registration cancel device, and group registration cancel method

Info

Publication number: CN101253508A
Application number: CNA2006800321063A
Authority: CN
Inventors: 佐伯惠子; 久野浩; 中村敦; 足达诚一
Original assignee: Sony Corp
Current assignee: Sony Corp
Priority date: 2005-08-31
Filing date: 2006-08-08
Publication date: 2008-08-27
Also published as: JP4760233B2; JP2007065981A

Abstract

The present invention provides a group registration device and others capable of simplifying a registration process to enable easy group registration while maintaining a secure registration process. The group registration device (10) includes a registration request detection unit, a session ID generation unit for generating a session ID, a registration request message transmission unit, a registration reply message reception unit, a verification unit (231) for verifying the onceness of the message, and a storage unit (241) for storing an ID list contained in the registration reply message in the storage region while correlating the ID list with the group ID. In the same registration session, the registration request message is transmitted once and the registration replay message is received once. Nothing other than the registration request message is transmitted. Nothing other than the registration reply message is received.

Description

Group register device, group are nullified device, group register method, licence acquisition device, licence adquisitiones, time setting device and time setting method

Technical field

The present invention relates to be used for the group register device and the group register method of the registration of execution group, and the group cancellation device that is used to organize cancellation, particularly, relate to group register device and nullify device with group register method and group with copyright management.

The invention still further relates to licence acquisition device and licence adquisitiones, particularly, relate to licence acquisition device and licence adquisitiones with copyright management.

The invention still further relates to the time point setting device and the time point method to set up that are used to be provided with time point, particularly, relate to the time point setting device and the time point method to set up that are used for by the network settings time point.

Background technology

Now, in order to prevent the illegal copies of digital content, the copyright management system of DRM (digital rights management) technology that is used for the circulation and the use of limiting content has obtained popularizing.

For above-mentioned copyright management system, have a kind of system, wherein a plurality of content processing apparatus that belong to each user such as PC etc. are registered to server by the user, and in each content processing apparatus by user's registration, can realize share (for example, the seeing patent document 1) of content.

That is to say, the a plurality of content processing apparatus that belong to each user are registered to server requests, server generates can be by the common ID of user's (perhaps group) sign, and a plurality of content processing apparatus that belong to the user are stored its ID, and each content processing apparatus can be shared and play content thus.

Yet note, register up to having registered between the content processing apparatus (ID being stored in the device of oneself) to server requests from content processing apparatus, for the processing except that registration (as authentication processing etc.), content processing apparatus must be carried out repeatedly with server and exchange.

Therefore, content processing apparatus must comprise and is used for waiting for that the ID that will send from server and operation are about the processing resource of the processing of registration be used to operate processing resource except that the processing its registration (as authentication processing etc.).Particularly, not under the extra high situation in the processing power of installing, the processing load of relevant location registration process is high, therefore installs and can not directly carry out location registration process for server.

And now, along with popularizing of the Internet, the raising of the processing speed of personal computer (PC), and the increase of memory capacity provide the digital content such as film, music etc. to become very common by network or recording medium.

Can repeatedly copy and can not worsen its quality digital content.Therefore, illegal copies content and the situation not obtaining copyright owner's permission and distribution and exchange its content increases.

In order to prevent this illegal copies of digital content, there is a kind of system, wherein provide licence to the content that will distribute, and when using its content, if about the licence of its content, then PC can not play or copy its content (for example, seeing patent document 2) to PC.

Utilize said system, to the server requests licence, and obtain the licence that from server, sends such as the client computer of PC etc., thereby use and the corresponding content of its licence.

Yet note, even under the situation that the content that will use had just been determined obtain licence from server before, client computer obtains license list temporarily from server, from wherein choosing with the corresponding licence of object content once more and also being necessary to the selected licence of server requests.

And, from a series of exchanges of client computer to the client requests license list is when obtaining licence from server till, need by between client-server repeatedly executive communication set up SSL (secured session layer) and above-mentioned license list.

Also have, now, there is a kind of content delivering system, wherein utilizes by the system of network to client computer distribution such as the various content-datas of software program, film, music etc., the term of validity such as time limit etc. is provided, is used for client computer and plays or activate content-data.

Therefore, if the additional term of validity to content-data, and restriction plays or activates the processing of content-data, then the time point management at the distribution target place of content-data is important, so that whether before the deadline determine current date exactly.

So far, also comprise time point management function, distorting the possible of time point with unauthorized manner in the device certainly but have as its internal clocking such as the client computer of personal computer (PC) etc.

Therefore, by the module of output time point, use tamper-evident structure, and come the time point of exporting from its module is encrypted, thereby prevent from illegally to distort the danger (for example, seeing patent document 3) of time point with public key cryptographic methods.

Yet note, unless use content-data, otherwise not from being used for the module output time point of output time point, and use at time point whether before the deadline determine current date, therefore have and during time lag, distort the possible of time point such as the client-side of PC etc.

Also have, when using content-data at every turn, output time point from module, and do not consider at client-side time point to be set by mistake, if therefore frequency of utilization height by the time point precision of PC management, therefore then frequent execution time point set handling has poor efficiency ground and carries out the possibility of handling.

Also have, if in PC etc., do not comprise the module that is used for output time point, when then using content-data, need provide the memory unit that can be connected on USB mouth etc. at every turn, if but such memory unit is mislayed or lose, then can not time point be set for client computer such as PC etc.The module that is used for output time point is stored in attention in above-mentioned memory unit.

[patent document 1] Japanese uncensored patent application gazette No.2005-141635

[patent document 2] Japanese uncensored patent application gazette No.2003-174443

[patent document 3] Japanese uncensored patent application gazette No.2003-280522

Summary of the invention

Therefore, according to the present invention of the problems referred to above structure, and the purpose of this invention is to provide a kind of improved group of new register device, group register method and organize the cancellation device, can simplify location registration process thus, so that registration of execution group easily or the registration of cancellation group keep safe location registration process simultaneously.

Also have, another object of the present invention provides a kind of new improved licence acquisition device and licence adquisitiones, can simplify licence thus and obtain processing, so that easily exequatur is obtained, keeps the licence of safety to obtain processing simultaneously.

Also have, a further object of the present invention provides a kind of new improved time point setting device and time point method to set up, can recognize the necessity that time point is provided with thus exactly, and when the processing load reduces time point can be set.

In order to address the above problem,, provide a kind of group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group according to first viewpoint of the present invention.This group register device comprises: be used to detect the register requirement detecting unit that information recording carrier and/or signal conditioning package is registered to the request of group; The session id generation unit is used for a series of exchanges as enrollment session, the message of its transmission request group registration and answer message for this message sink, and generate the session id that is used to identify its enrollment session; The login request message transmitting element is used for sending information recording carrier ID and/or the signal conditioning package ID of signal conditioning package and the login request message of session id that comprises the information recording carrier that will be registered to group to registrar; The message sink unit is answered in registration, is used for comprising that from the registrar reception being registered to the information recording carrier ID of group and/or the ID tabulation of signal conditioning package ID and the registration of session id by registrar answers message; Authentication unit is used for verifying whether the session id that is included in the registration answer message is consistent with the session id that generates at the session id generation unit, deletes session id then; And storage unit, be used for answering ID list storage in the message to the memory block, so that be associated with the group ID of designated groups with being included in registration; Wherein use login request message transmitting element and registration to answer the message sink unit, in same enrollment session, send login request message once, and the reception registration is answered message once; And the treatment limits that wherein will carry out in enrollment session is for being sent login request message by the login request message transmitting element, and answers the message sink unit by registration and receive registration and answer message.Attention, group register device are for example online (synchronously) or off-line (asynchronous), and are the devices according to the session id method, but are not limited to such example.

Storage unit can with the ID list storage that in message is answered in registration, comprises in the memory block of off-line or online device certainly or another device so that be associated with group ID.

In order to address the above problem,, provide a kind of group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register device comprises: the register requirement detecting unit is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; The session id generation unit is used for a series of exchanges as enrollment session, the message of its transmission request group registration and answer message for this message sink, and generate the session id that is used to identify its enrollment session; The login request message transmitting element is used for sending information recording carrier ID and/or the signal conditioning package ID of signal conditioning package and the login request message of session id that comprises the information recording carrier that will be registered to group to registrar; The pass phrase receiving element is used for comprising that by coding being registered to the information recording carrier ID of group and/or the ID tabulation of signal conditioning package ID and the registration of session id by registrar answers the pass phrase that message is obtained from the registrar reception; Whether authentication unit is used for that pass phrase is decoded as registration and answers message, consistent with the session id that generates in session id generation step with the session id that checking is included in the registration answer message, deletes session id then; And storage unit, be used for answering the memory block of the ID list storage in the message in the device certainly, so that be associated with the group ID of designated groups with being included in registration; Wherein use login request message transmitting element and pass phrase receiving element, in same enrollment session, send login request message once, and receive pass phrase once; And the treatment limits that wherein will carry out in enrollment session is for being sent login request message by the login request message transmitting element, and receives pass phrase by the pass phrase receiving element.Notice that the group register device is an off-line (asynchronous) for example, and be device, but be not limited to such example according to the session id method.

The pass phrase receiving element can be configured to so that off-line receives pass phrase.

In order to address the above problem,, provide a kind of group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register device comprises: the register requirement detecting unit is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; The login request message transmitting element is used for sending to registrar the login request message of the signal conditioning package ID of the information recording carrier ID comprise the information recording carrier that will be registered to group and/or signal conditioning package; The message sink unit is answered in registration, is used for receiving from registrar comprising by registrar and being registered to the ID tabulation of the information recording carrier ID of group and/or signal conditioning package ID and message is answered in the registration of the counter information that obtains at the registrar end; Authentication unit is used to be verified as whether the context of registering between counter information of answering the message setting and the counter information that will obtain is suitable in will being registered to the device certainly of group, upgrade the counter information in installing then; And storage unit, be used for answering ID list storage in the message to the memory block, so that be associated with the group ID of designated groups with being included in registration; Wherein answer the message sink unit with login request message transmitting element and registration, with a series of exchanges, the message of its transmission request group registration and answer message for this message sink, as enrollment session, and in same enrollment session, send login request message once, and receive registration answer message once; And the treatment limits that wherein will carry out in enrollment session is for being sent login request message by the login request message transmitting element, and answers the message sink unit by registration and receive registration and answer message.Attention, group register device are for example online (synchronously) or off line (asynchronous), and are the devices according to the counter information method, but are not limited to such example.

Counter information is a timestamp, register the message playback receiving element and can receive the registration answer message that timestamp is set by registrar, and authentication unit can verify whether the timestamp of generation in installing certainly when message is answered in the reception registration is new for the timestamp for the setting of registration answer message.

In order to address the above problem,, provide a kind of group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register device comprises: the register requirement detecting unit is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; The login request message transmitting element is used for sending to registrar the login request message of the signal conditioning package ID of the information recording carrier ID comprise the information recording carrier that will be registered to group and/or signal conditioning package; The pass phrase receiving element is used for receiving from registrar and comprises by registrar by coding and to be registered to the ID tabulation of the information recording carrier ID of group and/or signal conditioning package ID and the pass phrase that message is obtained is answered in the registration of the counter information that obtains at the registrar end; Authentication unit, be used for that pass phrase is decoded as registration and answer message, to be verified as whether the context of registering between counter information of answering the message setting and the counter information that will obtain is suitable in will being registered to the device certainly of group, upgrade the counter information in installing then; And storage unit, be used for answering ID list storage in the message to the memory block, so that be associated with the group ID of designated groups with being included in registration; Wherein use login request message transmitting element and pass phrase receiving element, in same enrollment session, send login request message once, and receive pass phrase once, described enrollment session is a series of exchanges, the message of its transmission request group registration and answer message for this message sink; And the treatment limits that wherein will carry out in enrollment session is for being sent login request message by the login request message transmitting element, and receives pass phrase by the pass phrase receiving element.Notice that the group register device is an off-line (asynchronous) for example, and be device, but be not limited to such example according to the counter information method.

Counter information is a timestamp, the pass phrase receiving element can receive pass phrase from registrar, and authentication unit can verify when receiving pass phrase whether newly answer the timestamp that message is provided with in the registration that pass phrase obtained in order to decode at the timestamp that generates in device.

In order to address the above problem, according to another viewpoint of the present invention, provide a kind of group cancellation device that is used for nullifying the registration of at least one information recording carrier and/or signal conditioning package from the group of at least one information recording carrier and/or signal conditioning package registration.This group is nullified device and comprised: the de-registration request detecting unit is used to detect the request of the registration of nullifying the information recording carrier that is registered to group and/or signal conditioning package; Nullify beginning message sink unit, be used for a series of exchanges, its reception begins to organize the message of cancellation and sends answer message for this message, as nullifying session, and from log-on server, receive serve as the signature that begins to organize cancellation, comprise that being used to identify its cancellation of nullifying the session id of session begins message; The de-registration request message sending unit is used to create and send based on the ID tabulation of the signal conditioning package ID of the information recording carrier ID of the information recording carrier that serves as the object that will organize cancellation and/or signal conditioning package and session id and the un-register request message that the request group is nullified; And the cancellation unit, be used to delete and be included in ID in the de-registration request message, that be associated with the group ID that is used for identified group and tabulate and nullify with the execution group; Wherein, in same cancellation session, receive and nullify beginning message once, and send de-registration request message once with nullifying beginning message sink unit and de-registration request message sending unit; And the treatment limits that wherein will carry out in nullifying session serves as reasons and nullifies beginning message sink unit and receive and nullify beginning message, and sends de-registration request message by the de-registration request message sending unit.Attention, group cancellation device are for example online (synchronously), and are the devices according to the session id method, but are not limited to such example.

In order to address the above problem, according to another viewpoint of the present invention, provide a kind of group cancellation device that is used for nullifying the registration of at least one information recording carrier and/or signal conditioning package from the group of at least one information recording carrier and/or signal conditioning package registration.This group is nullified device and comprised: the de-registration request detecting unit is used to detect the request of the registration of nullifying the information recording carrier that is registered to group and/or signal conditioning package; Nullify beginning message sink unit, be used for from log-on server receive serve as the signature that begins to organize cancellation, comprise that the cancellation of the counter information that is obtained by log-on server begins message; The de-registration request message sending unit, being used for creating and send will be from the ID tabulation of the signal conditioning package ID of the information recording carrier ID of the information recording carrier of the object of organizing cancellation and/or signal conditioning package and counter information and the un-register request message that the request group is nullified based on serving as; Authentication unit is used to verify whether the context between the counter information that obtains is suitable in being included in the device certainly of nullifying the counter information in the beginning message and will organizing cancellation; And the cancellation unit, be used to delete and be included in ID in the de-registration request message, that be associated with the group ID that is used for identified group and tabulate, nullify with the execution group; Wherein with nullifying beginning message sink unit and de-registration request message sending unit, with a series of exchanges, its reception begins to organize the message of cancellation and sends answer message for this message, as nullifying session, and in same cancellation session, receive and nullify beginning message once, and send de-registration request message once; And the treatment limits that wherein will carry out in nullifying session serves as reasons and nullifies beginning message sink unit and receive and nullify beginning message, and sends de-registration request message by the de-registration request message sending unit.Attention, group cancellation device are for example online (synchronously), and are the devices according to the counter information method, but are not limited to such example.

Authentication unit can be used to upgrade the counter information in device.

In order to address the above problem,, provide a kind of group register method that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register method comprises: register requirement detects step, is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; Session id generates step, is used for a series of exchanges as enrollment session, and the message of its transmission request group registration and answer message for this message sink, and be used to generate the session id that is used to identify its enrollment session; The login request message forwarding step is used for sending information recording carrier ID and/or the signal conditioning package ID of signal conditioning package and the login request message of session id that comprises the information recording carrier that will be registered to group to registrar; The message sink step is answered in registration, is used for comprising that from the registrar reception being registered to the information recording carrier ID of group and/or the ID tabulation of signal conditioning package ID and the registration of session id by registrar answers message; Storing step is used for answering ID list storage in the message in the memory block with being included in registration, is included in registration with the box lunch checking and answers session id in the message when consistent with the session id that generates in session id generation step, is associated with the group ID of designated groups; And the deletion step that is used to delete session id; Wherein login request message forwarding step and registration answer message sink step are respectively carried out once in order in same enrollment session; And the treatment limits that wherein will carry out in enrollment session is that the message sink step is answered in login request message forwarding step and registration.Attention, group register method are for example online (synchronously) or off-line (asynchronous), and are the methods according to the session id method, but are not limited to such example.

In order to address the above problem,, provide a kind of group register method that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register method comprises: register requirement detects step, is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; Session id generates step, is used for a series of exchanges as enrollment session, and the message of its transmission request group registration and answer message for this message sink, and be used to generate the session id that is used to identify its enrollment session; The login request message forwarding step is used for sending information recording carrier ID and/or the signal conditioning package ID of signal conditioning package and the login request message of session id that comprises the information recording carrier that will be registered to group to registrar; The pass phrase receiving step is used for comprising that by coding being registered to the information recording carrier ID of group and/or the ID tabulation of signal conditioning package ID and the registration of session id by registrar answers the pass phrase that message is obtained from the registrar reception; Storing step, be used for to be included in registration and answer the interior ID list storage of message to the interior memory block of device certainly that will organize registration, verify when the session id that is included in the registration answer message is consistent with the session id that generates in session id generation step with box lunch, be associated with the group ID of designated groups; And the deletion step that is used to delete session id; Wherein login request message forwarding step and pass phrase receiving step are respectively carried out once in order in same enrollment session; And the treatment limits that wherein will carry out in enrollment session is login request message forwarding step and pass phrase receiving step.Notice that the group register method is an off-line (asynchronous) for example, and be method, but be not limited to such example according to the session id method.

In the pass phrase receiving step, pass phrase can be arranged as off-line and receive, and can also provide the term of validity to group ID.

Do not have at login request message specified message recording medium and/or signal conditioning package under the situation of group of registration, can carry out such layout, wherein generate new group ID, and in receiving step, receive the registration that also comprises the group ID in the ID tabulation and answer message by register device.

In storing step, can with the ID list storage that in message is answered in registration, comprises in the memory block of off-line or online device certainly or another device so that be associated with group ID.

The session id number that will generate for each enrollment session is 1, therefore, can carry out such layout, and wherein for each enrollment session, message count that will send and the message count that will receive all are 1.

In order to address the above problem,, provide a kind of group register method that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register method comprises: register requirement detects step, is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; The login request message forwarding step is used for sending to registrar the login request message of the signal conditioning package ID of the information recording carrier ID comprise the information recording carrier that will be registered to group and/or signal conditioning package; The message sink step is answered in registration, is used for receiving from registrar comprising by registrar and being registered to the ID tabulation of the information recording carrier ID of group and/or signal conditioning package ID and message is answered in the registration of the counter information that obtains at the registrar end; Storing step, be used for to be included in registration and answer the interior ID list storage of message to the memory block, with box lunch be verified as that the counter information of message setting is answered in registration and the counter information that in will being registered to the device certainly of group, obtain between context when being suitable, be associated with the group ID of designated groups; And the step of updating that is used to upgrade the counter information in device; Wherein with a series of exchanges, the message of its transmission request group registration and answer message for this message sink, as enrollment session, in same enrollment session, login request message forwarding step and registration are answered the message sink step each are carried out once in order; And the treatment limits that wherein will carry out in enrollment session is that the message sink step is answered in login request message forwarding step and registration.Attention, group register method are for example online (synchronously) or off-line (asynchronous), and are the methods according to the counter information method, but are not limited to such example.

Counter information is a timestamp, and can carry out such layout, wherein reception is provided with the registration answer message of timestamp by registrar in registering answer message sink step, and verifies in storing step whether the timestamp of generation in installing certainly when answer message is registered in reception is new for being the timestamp of registering the setting of answer message.

In order to address the above problem,, provide a kind of group register method that is used at least one information recording carrier and/or signal conditioning package are registered to group according to another viewpoint of the present invention.This group register method comprises: register requirement detects step, is used to detect the request that information recording carrier and/or signal conditioning package is registered to group; The login request message forwarding step is used for sending to registrar the login request message of the signal conditioning package ID of the information recording carrier ID comprise the information recording carrier that will be registered to group and/or signal conditioning package; The pass phrase receiving step is used for receiving from registrar and comprises by registrar by coding and to be registered to the ID tabulation of the information recording carrier ID of group and/or signal conditioning package ID and the pass phrase that message is obtained is answered in the registration of the counter information that obtains at the registrar end; Storing step, be used for to be included in registration and answer the interior ID list storage of message to the memory block, with box lunch be verified as that the counter information of message setting is answered in registration and the counter information that in will being registered to the device certainly of group, obtain between context when being suitable, be associated with the group ID of designated groups; And the step of updating that is used to upgrade the counter information in device; Wherein in same enrollment session login request message forwarding step and pass phrase receiving step each is carried out once in order, described enrollment session is a series of exchanges, the message of its transmission request group registration and answer message for this message sink; And the treatment limits that wherein will carry out in enrollment session is login request message forwarding step and pass phrase receiving step.Notice that the group register method is an off-line (asynchronous) for example, and be method, but be not limited to such example according to the counter information method.

In the pass phrase receiving step, pass phrase can be arranged as off-line and receive.

Counter information is a timestamp, and can carry out such layout, wherein in the pass phrase receiving step, from registrar, receive pass phrase, and whether checking is new for answering the timestamp that message is provided with for the registration of obtaining by the decoding pass phrase at the timestamp that generates when receiving pass phrase in storing step in device.

In order to address the above problem,, provide a kind of being used for to hold the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence acquisition device comprises: licence is obtained the request detection unit, is used for the request that detection obtains licence; The session id generation unit is used for a series of exchanges, and ask for permission message that card obtains and answer message for this message sink of its transmission as obtaining session, and generates and is used to identify the session id that it obtains session; Licence is obtained the request message transmitting element, is used for holding to licence that device sends the storage Target id comprise the storage target that is used to identify the one or two or more licence that storage asks and the licence of session id is obtained request message; Licence is obtained and is answered the message sink unit, is used for holding device from licence and receives and comprise the licence of being asked, obtain answer message about the licence of additional information, storage Target id and the session id of the service condition of licence; Authentication unit is used for verifying being included in licence whether obtain the session id of answering in the message consistent with the session id that generates at the session id generation unit, deletes its session id then; And storage unit, be used for storing licence into memory block according to the storage Target id; Wherein obtain request message transmitting element and licence and obtain and answer the message sink unit, obtain in the session, send licence and obtain request message once, and receive licence and obtain and answer message once same with licence; And the treatment limits that wherein will carry out in obtaining session sends licence and obtains request message for obtained the request message transmitting element by licence, and obtained by licence and to answer the message sink unit and receive licence and obtain answer message.Attention, licence acquisition device are for example online (synchronously) or off-line (asynchronous), and are the devices according to the session id method, but are not limited to such example.

The storage Target id can be arranged as the information recording carrier ID of information recording carrier and/or the signal conditioning package ID of signal conditioning package.

Additional information can be configured to comprise transport-type identification information and component property information.

Licence can be configured to and comprises the content key that is used to decipher with the corresponding encrypted content of licence.

Licence is held server, signal conditioning package that licensees that device can be configured to licensee or the information recording carrier that licensees.

In order to address the above problem,, provide a kind of being used for to hold the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence acquisition device comprises: licence is obtained the request detection unit, is used for the request that detection obtains licence; Licence is obtained the request message transmitting element, is used for holding the device transmission to licence and comprises that the licence of the storage Target id that identifies the storage target that is used to store the one or two or more licence of being asked obtains request message; Licence is obtained and is answered the message sink unit, be used for from licence hold device receive comprise the licence of being asked, about the service condition of licence additional information, storage Target id and obtain answer message by the licence that licence is held the counter information that device obtains; Authentication unit, be used to verify and be included in that licence is obtained the counter information of answering in the message and at device certainly, it is a licence storage target, in context between the counter information that obtains whether be suitable, upgrade the counter information in device then; And storage unit, be used for storing licence into memory block according to the storage Target id; Wherein obtaining request message transmitting element and licence with licence obtains and answers the message sink unit, with a series of exchanges, ask for permission message that card obtains and answer message of its reception for this message sink, as obtaining session, and obtain in the session same, send licence and obtain request message once, and the reception licence is obtained answer message once; And the treatment limits that wherein will carry out in obtaining session sends licence and obtains request message for obtained the request message transmitting element by licence, and obtained by licence and to answer the message sink unit and receive licence and obtain answer message.Attention, licence acquisition device are for example online (synchronously) or off-line (asynchronous), and are the devices according to the counter information method, but are not limited to such example.

Counter information is a timestamp, and can carry out such layout, wherein licence is obtained and is answered the message sink unit and receive and hold the licence that device is provided with timestamp by licence and obtain answer message, and the authentication unit checking obtains the timestamp that is obtained by signal conditioning package when answering message and whether newly obtains the timestamp of answering in the message in being included in licence receiving licence.

In order to address the above problem,, provide a kind of being used for to hold the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence acquisition device comprises: licence is obtained the request detection unit, is used for the request that detection obtains licence; The session id generation unit is used for a series of exchanges, and ask for permission message that card obtains and answer message for this message sink of its transmission as obtaining session, and generates and is used to identify the session id that it obtains session; Licence is obtained the request message transmitting element, is used for holding device to licence and sends and to comprise that the storage Target id that is used to identify the storage target that is used to store the one or two or more licence of being asked and the licence of session id obtain request message; The pass phrase receiving element is used for holding device from licence and receives by coding and comprise the licence of being asked, obtain about the licence of additional information, storage Target id and the session id of the service condition of licence and answer the pass phrase that message is obtained; Authentication unit is used for that pass phrase is decoded as licence and obtains answer message, and whether being included in licence with checking, to obtain the session id of answering in the message consistent with the session id that generates in session id generation step, deletes session id then; And storage unit, be used for will being included in licence and obtain the licence of answering in the message and store the memory block into according to the storage Target id; Wherein obtain request message transmitting element and pass phrase receiving element, obtain in the session, send licence and obtain request message once, and the reception licence is obtained answer message once same with licence; And the treatment limits that wherein will carry out in obtaining session sends licence and obtains request message for obtained the request message transmitting element by licence, and receives pass phrase by the pass phrase receiving element.Notice that the licence acquisition device is an off-line (asynchronous) for example, and be device, but be not limited to such example according to the session id method.

Also have, the pass phrase receiving element can be configured to off-line and receive pass phrase.

In order to address the above problem,, provide a kind of being used for to hold the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence acquisition device comprises: licence is obtained the request detection unit, is used for the request that detection obtains licence; Licence is obtained the request message transmitting element, is used for holding the device transmission to licence and comprises that the licence of the storage Target id that identifies the storage target that is used to store the one or two or more licence of being asked obtains request message; The pass phrase receiving element, be used for from licence hold device receive by coding comprise the licence of being asked, about the service condition of licence additional information, storage Target id and obtain by the licence that licence is held the counter information that device obtains and to answer the pass phrase that message is obtained; Authentication unit, be used for that pass phrase is decoded as licence and obtain answer message, be included in that licence is obtained the counter information of answering in the message and at device certainly with checking, it is a licence storage target, in context between the counter information that obtains whether be suitable, upgrade then from device, it is a licence storage target, interior counter information; And storage unit, be used for will being included in licence and obtain the licence of answering in the message and store the memory block into according to the storage Target id; Wherein obtain request message transmitting element and pass phrase receiving element with licence, with a series of exchanges, ask for permission message that card obtains and answer message of its reception for this message sink, as obtaining session, and obtain in the session same, send licence and obtain request message once, and the reception licence is obtained answer message once; And the treatment limits that wherein will carry out in obtaining session sends licence and obtains request message for obtained the request message transmitting element by licence, and receives pass phrase by the pass phrase receiving element.Notice that the licence acquisition device is an off-line (asynchronous) for example, and be device, but be not limited to such example according to the counter information method.

The pass phrase receiving element can be configured to off-line and receive pass phrase.

Counter information is a timestamp, the pass phrase receiving element receives has the pass phrase of holding the timestamp that device is provided with from licence, and whether the timestamp that the authentication unit checking is obtained by signal conditioning package when receiving pass phrase newly obtains the timestamp of answering in the message in being included in the licence that obtains by the decoding pass phrase.

In order to address the above problem,, provide a kind of being used for to hold the licence adquisitiones that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence adquisitiones comprises: licence is obtained the request detection step, is used for the request that detection obtains licence; Session id generates step, is used for a series of exchanges, and ask for permission message that card obtains and answer message for this message sink of its transmission as obtaining session, and is used to generate and is used to identify the session id that it obtains session; Licence is obtained the request message forwarding step, is used for holding device to licence and sends and to comprise that the storage Target id that is used to identify the storage target that is used to store the one or two or more licence of being asked and the licence of session id obtain request message; Licence obtains answers the message sink step, is used for holding device from licence and receives and comprise the licence of being asked, obtain answer message about the licence of additional information, storage Target id and the session id of the service condition of licence; Storing step is used for obtaining the session id of answering in the message when consistent with the session id that generates in session id generation step when checking is included in licence, according to storing Target id licence is stored in the memory block; And the deletion step that is used to delete session id; Wherein obtain request message forwarding step and licence and obtain and answer the message sink step each is carried out once in order at the same licence of obtaining in the session; And the treatment limits that wherein will carry out in obtaining session is that licence is obtained the request message forwarding step and licence is obtained answer message sink step.Attention, licence adquisitiones are for example online (synchronously) or off-line (asynchronous), and are the methods according to the session id method, but are not limited to such example.

In order to address the above problem,, provide a kind of being used for to hold the licence adquisitiones that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence adquisitiones comprises: licence is obtained the request detection step, is used for the request that detection obtains licence; Licence is obtained the request message forwarding step, is used for holding device to licence and sends and to comprise that the licence of storage Target id that sign is used to store the storage target of the one or two or more licence of being asked obtains request message; Licence is obtained and is answered the message sink step, be used for from licence hold device receive comprise the licence of being asked, about the service condition of licence additional information, storage Target id and obtain answer message by the licence that licence is held the counter information that device obtains; Storing step, be used for being included in that licence is obtained the counter information of answering in the message and at device certainly when checking, it is a licence storage target, in context between the counter information that obtains when being suitable, according to the storage Target id licence is stored in the memory block; And step of updating, being used for upgrading from device, it is a licence storage target, interior counter information; Wherein with a series of exchanges, ask for permission message that card obtains and answer message of its transmission for this message sink, as obtaining session, to obtain in the session same, licence is obtained request message forwarding step and licence and is obtained and answer the message sink step each is carried out once in order; And the treatment limits that wherein will carry out in obtaining session is that licence is obtained the request message forwarding step and licence is obtained answer message sink step.Attention, licence adquisitiones are for example online (synchronously) or off-line (asynchronous), and are the methods according to the counter information method, but are not limited to such example.

Counter information is a timestamp, and can carry out such layout, wherein obtain to answer to receive in the message sink step and hold the licence that device is provided with timestamp by licence and obtain answer message, and checking obtains the timestamp that signal conditioning package obtains when answering message and whether newly obtains the timestamp of answering in the message in being included in licence receiving licence in storing step at licence.

In order to address the above problem,, provide a kind of being used for to hold the licence adquisitiones that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence adquisitiones comprises: licence is obtained the request detection step, is used for the request that detection obtains licence; Session id generates step, is used for a series of exchanges, and ask for permission message that card obtains and answer message for this message sink of its transmission as obtaining session, and is used to generate and is used to identify the session id that it obtains session; Licence is obtained the request message forwarding step, is used for holding device to licence and sends and to comprise that the storage Target id that is used to identify the storage target that is used to store the one or two or more licence of being asked and the licence of session id obtain request message; The pass phrase receiving step is used for holding device from licence and receives by coding and comprise the licence of being asked, obtain about the licence of additional information, storage Target id and the session id of the service condition of licence and answer the pass phrase receiving step that message is obtained; Storing step is used for obtaining the session id of answering in the message when consistent with the session id that generates in session id generation step when checking is included in licence, according to storing Target id licence is stored in the memory block; And the deletion step that is used to delete session id; Wherein obtain request message forwarding step and pass phrase receiving step each is carried out once in order at the same licence of obtaining in the session; And the treatment limits that wherein will carry out in obtaining session is that licence is obtained request message forwarding step and pass phrase receiving step.Notice that the licence adquisitiones is an off-line (asynchronous) for example, and be method, but be not limited to such example according to the session id method.

In addition, in order to address the above problem,, provide a kind of being used for to hold the licence adquisitiones that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence adquisitiones comprises; Licence is obtained the request detection step, is used for the request that detection obtains licence; Licence is obtained the request message forwarding step, is used for holding device to licence and sends and to comprise that the licence of storage Target id that sign is used to store the storage target of the one or two or more licence of being asked obtains request message; The pass phrase receiving step, be used for from licence hold device receive by coding comprise the licence of being asked, about the service condition of licence additional information, storage Target id and obtain by the licence that licence is held the counter information that device obtains and to answer the pass phrase that message is obtained; Storing step, be used for obtaining when answering message when pass phrase being decoded as licence, and be included in that licence is obtained the counter information of answering in the message and at device certainly when checking, it is a licence storage target, in context between the counter information that obtains when being suitable, according to the storage Target id licence is stored in the memory block; And step of updating, being used for upgrading from device, it is a licence storage target, interior counter information; Wherein with a series of exchanges, ask for permission message that card obtains and answer message of its transmission for this message sink, as obtaining session, to obtain in the session same, the request message forwarding step obtained by licence and the pass phrase receiving step is respectively carried out once in order; And the treatment limits that wherein will carry out in obtaining session is that licence is obtained request message forwarding step and pass phrase receiving step.Notice that the licence adquisitiones is an off-line (asynchronous) for example, and be method, but be not limited to such example according to the counter information method.

Counter information is a timestamp, and can carry out such layout, wherein in the pass phrase receiving step, receive and hold the pass phrase message that device is provided with timestamp, and whether the checking timestamp that signal conditioning package obtains when receiving pass phrase message newly obtains the timestamp of answering in the message in being included in the licence that obtains by the decoding pass phrase in storing step by licence.

In order to address the above problem,, provide a kind of being used for to hold the licence adquisitiones that device is obtained the one or two or more licence that allows contents processing from licence according to another viewpoint of the present invention.This licence adquisitiones comprises: the request detection step is used for the request that detection obtains licence; Session id generates step, is used to generate the session id of obtaining session that sign obtains licence; Forwarding step is used for sending to the licence treating apparatus and comprises and be used for that sign obtains and the storage Target id of the storage target of store licenses and the licence of session id are obtained request message; Receiving step, be used for receiving and comprise additional information, licence, session id and confirmed to store target that it is to follow the message that forwarding step is created at the license server end so that the licence of the storage Target id of store licenses is obtained answer message about licence from license server; And verification step, be used to store be included in and obtain the information of answering in the message from the licence in the memory block of device or another device, if and also have to determine to hold the session id that obtains the device with consistent by the session id of device generation certainly from licence, then delete its session id.

Also have,,, provide a kind of and be used for based on the time point setting device that the time point that is calculated by signal conditioning package is set by the time point device calculating time point information that correct time point generated according to another viewpoint of the present invention in order to address the above problem.This time point setting device comprises: the request detection unit is used to detect the request of the time point information that is generated by the time point device; The session id generation unit is used for a series of exchanges, and it sends the message of request time dot information and answers message for this message sink, as time point session is set, and generation is used to identify the session id that its time point is provided with session; Time point is provided with the request message transmitting element, be used for comprising that to the transmission of time point device the time point of time point precision information and session id is provided with request message, the time point precision of described time point precision information indication information treating apparatus, it is the information that is stored in safely in advance in the memory block of signal conditioning package; Time point is provided with the response message receiving element, is used for receiving from the time point device comprising time point information, describing the time of reception point that time point that time point can be provided with condition is provided with conditional information and session id based on time point information response message is set; Authentication unit, be used for being verified as that time point is provided with the session id of answering the message setting and whether generate the session id that step generates at session id consistent, and also verify at time point and mistiming between the transmitting time point of request message and the time of reception point that time point is provided with answer message is set whether within time point is provided with the allowed time scope of describing in the conditional information; And the unit is set, be used to delete session id, and if because the checking result of authentication unit, making time point is determining of can being provided with, and then also is used for based on time point information and the time point of configuration information treating apparatus; Wherein with time point request message transmitting element and time point are set and are provided with and answer the message sink unit, be provided with at one time in the session, the transmitting time point is provided with request message once, and the time of reception point is provided with answer message once; And the treatment limits that wherein will carry out in time point is provided with session is provided with request message for by time point request message transmitting element transmitting time point being set, and is provided with by time point and answers message sink unit time of reception point answer message is set.Attention, time point setting device are for example online (synchronously), and are the devices according to the session id method, but are not limited to such example.Also have, aforementioned calculation correct time point means for example basis of calculation time, but is not limited to such example.

Time point is provided with that conditional information can be configured to depend on the time point precision of time point precision information indication and the information that generated by the time point device.

Comprising that time point is provided with under the situation of the effective time point expiration of being provided with of conditional information, under the situation of passing by at the fixed time, perhaps to obtain under the situation of content at signal conditioning package, the request detection unit can be used for detecting at least the request to time point information.

In order to address the above problem,, to provide a kind of and be used for based on the time point method to set up that the time point that is calculated by signal conditioning package is set by the time point device calculating time point information that correct time point generated according to another viewpoint of the present invention.This time point method to set up comprises: the request detection step is used to detect the request to the time point information that is generated by the time point device; Session id generates step, is used for a series of exchanges, and it sends the message of request time dot information and answers message for this message sink, as time point session is set, and is used to generate and is used to identify the session id that its time point is provided with session; Time point is provided with the request message forwarding step, be used for comprising that to the transmission of time point device the time point of time point precision information and session id is provided with request message, the time point precision of described time point precision information indication information treating apparatus, it is the information that is stored in safely in advance in the memory block of signal conditioning package; Time point is provided with answers the message sink step, is used for receiving from the time point device comprising time point information, describing the time point that time point that time point can be provided with condition is provided with conditional information and session id based on time point information answer message is set; Verification step, be used for being verified as that time point is provided with the session id of answering the message setting and whether generate the session id that step generates at session id consistent, and also verify at time point and mistiming between the transmitting time point of request message and the time of reception point that time point is provided with answer message is set whether within time point is provided with the allowed time scope of describing in the conditional information; Time point is provided with step, is used to delete session id, and if be determining of can being provided with owing to the result of checking makes time point, then also be used for based on this time point information and the time point of configuration information treating apparatus; The deletion step is used to delete session id; Time point wherein is set in the session at one time to be provided with request message forwarding step and time point and to be provided with and to answer the message sink step each is carried out once in order; And the treatment limits that wherein will carry out in time point is provided with session is that time point is provided with the request message forwarding step and time point is provided with answer message sink step.Attention, time point method to set up are for example online (synchronously), and are the methods according to the session id method, but are not limited to such example.

In order to address the above problem,, to provide a kind of and be used for based on the time point setting device that the time point that is calculated by signal conditioning package is set by the time point device calculating time point information that correct time point generated according to another viewpoint of the present invention.This time point setting device comprises: the request detection unit is used to detect the request of the time point information that is generated by the time point device; Time point is provided with the request message transmitting element, be used for comprising that to the transmission of time point device the time point of time point precision information is provided with request message, the time point precision of described time point precision information indication information treating apparatus, it is the information that is stored in safely in advance in the memory block of signal conditioning package; Time point is provided with answers the message sink unit, is used for receiving from the time point device comprising time point information, describing based on time point information that time point that time point can be provided with condition is provided with conditional information and the time point of the counter information that obtained by the time point device is provided with answer message; Authentication unit, when by relatively time point be provided with answer the counter information that is provided with in the message and verify that by the counter information that the signal conditioning package that will carry out the time point setting obtains context is suitable time, and also mistiming between the time of reception point that the transmitting time point of request message and time point be provided with answer message is set when being included within the scope that the allowed time in the conditional information is set at time point when checking, be used for the counter information of lastest imformation treating apparatus; And the unit is set, if because the result of checking, making time point is determining of can being provided with, and then is used for based on time point information and the time point of configuration information treating apparatus; Wherein with time point request message transmitting element and time point being set is provided with and answers the message sink unit, with a series of exchanges, it sends the message of request time dot information, and about its its message sink answer message, as time point session is set, and be provided with in the session at its same time point, the transmitting time point is provided with request message once, and the time of reception point is provided with and answers message once; And the treatment limits that wherein will carry out in time point is provided with session is provided with request message for by time point request message transmitting element transmitting time point being set, and is provided with by time point and answers message sink unit time of reception point answer message is set.Attention, time point setting device are for example online (synchronously), and are the devices according to the counter information method.Also have, aforementioned calculation correct time point for example means to be counted the standard time.

Time point is provided with that conditional information can be configured to depend on the time point precision of time point precision information indication and the information that generated by the time point device.Comprising that time point is provided with under the situation of the effective time point expiration of being provided with of conditional information, under the situation of passing by at the fixed time, perhaps to obtain under the situation of content at signal conditioning package, the request detection unit can be used for detecting at least the request to time point information.

Counter information is a timestamp.Time point is provided with the unit reception of answer message sink and for its time point that timestamp is set answer message is set by the time point device.Whether the timestamp that the authentication unit checking is generated by signal conditioning package when the time of reception point is provided with answer message newly answers the timestamp that message is provided with in being provided with for time point.

In order to address the above problem,, to provide a kind of and be used for based on the time point method to set up that the time point that is calculated by signal conditioning package is set by the time point device calculating time point information that correct time point generated according to another viewpoint of the present invention.This time point method to set up comprises: the request detection step is used to detect the request of the time point information that is generated by the time point device; Time point is provided with the request message forwarding step, be used for comprising that to the transmission of time point device the time point of time point precision information is provided with request message, the time point precision of described time point precision information indication information treating apparatus, it is the information that is stored in safely in advance in the memory block of signal conditioning package; Time point is provided with answers the message sink step, is used for receiving from the time point device comprising time point information, describing based on time point information that time point that time point can be provided with condition is provided with conditional information and the time point of the counter information that obtained by the time point device is provided with answer message; Verification step, be used for by relatively answering the set counter information of message and verify by the counter information that signal conditioning package generated that will carry out the time point setting whether context is suitable, and also verify whether be included within the scope that the allowed time in the conditional information is set in the mistiming that time point is provided with between the transmitting time point of request message and the time of reception point that time point is provided with answer message for time point is provided with; Time point is provided with step, if because the result of checking makes time point and be determining of can being provided with, then is used for based on time point information and the time point of configuration information treating apparatus; And step of updating, be used for the counter information of lastest imformation treating apparatus; Wherein with a series of exchanges, it sends the message of request time dot information and answers message for this message sink, as time point session is set, and be provided with in the session at its time point, time point is provided with request message forwarding step and time point and is provided with and answers the message sink step each is carried out once in order; And the treatment limits that wherein will carry out in time point is provided with session is that time point is provided with the request message forwarding step and time point is provided with answer message sink step.Attention, time point method to set up are for example online (synchronously), and are the methods according to the counter information method.Also have, aforementioned calculation correct time point means for example basis of calculation time.

As mentioned above, according to this present invention, except the security that keeps having message nonredundancy assurance etc., location registration process in enrollment session is formed by the transmission of login request message and as the reception (the perhaps input of pass phrase) that message is answered in the registration of the answer message of login request message, simplified location registration process, even therefore the not high user's set of processing power also can be carried out location registration process fully.

And, according to this present invention, except the security that keeps having message nonredundancy assurance etc., the processing that obtains in obtaining session obtains the transmission of request message by licence and obtains the reception (the perhaps input of pass phrase) of answering message as the licence that licence is obtained the answer message of request message and form, simplified and obtained processing, though therefore the user's set that processing power is not high also fully execution obtain processing.

And, according to the present invention,,, can carry out the time point setting to the client information treating apparatus by detecting the request that time point is provided with according to the licence of expiration, the increment of the schedule time etc.And even under the situation that the time point precision is low and reliability is low of signal conditioning package, the condition by determining according to its time point precision to be provided with about time point also can keep the reliability about time point.

Description of drawings

Fig. 1 schematically illustrates the explanation diagrammatic sketch of registering according to the group of embodiment according to the first embodiment of the present invention.

Fig. 2 is explanation has the copyright management system of group management method according to embodiment the block scheme of primary clustering.

Fig. 3 is the block scheme that schematically illustrates according to the general structure of the group Accreditation System of embodiment.

Fig. 4 is the block scheme that schematically illustrates according to the hardware configuration of the PC of embodiment.

Fig. 5 is the block scheme that schematically illustrates according to the function of the PC of embodiment.

Fig. 6 is the block scheme that schematically illustrates according to the hardware configuration example of the user's set of present embodiment.

Fig. 7 is the block scheme that schematically illustrates according to the function of the PD of embodiment.

Fig. 8 schematically illustrates the sequence chart with the group register method of synchronous/session id method according to embodiment.

Fig. 9 schematically illustrates the sequence chart with the group register method of synchronous/counter information method according to embodiment.

Figure 10 schematically illustrates the sequence chart with the group register method of asynchronous/session id method according to embodiment.

Figure 11 schematically illustrates the sequence chart with the group register method of asynchronous/counter information method according to embodiment.

Figure 12 is that explanation is nullified the sequence chart of handling according to the group of the user's set of embodiment.

Figure 13 is that explanation is nullified the sequence chart of handling according to the group of the user's set of embodiment.

Figure 14 be illustrate according to a second embodiment of the present invention with and the explanation diagrammatic sketch of the licence processing components of specific example in copyright management system of combination.

Figure 15 is the explanation diagrammatic sketch that schematically illustrates about the transmission of messages between the licence processing components of embodiment.

Figure 16 A is that explanation is at the explanation diagrammatic sketch about the licence transport-type between the assembly of embodiment.

Figure 16 B is that explanation is at the explanation diagrammatic sketch about the licence transport-type between the assembly of embodiment.

Figure 16 C is that explanation is at the explanation diagrammatic sketch about the licence transport-type between the assembly of embodiment.

Figure 17 is the explanation diagrammatic sketch of the relation of explanation between transport-type ID and message, and described transport-type ID is the example according to the transport-type identification information of embodiment.

Figure 18 is the explanation diagrammatic sketch of the relation of explanation between component property ID and message, and described component property ID is the example according to the component property information of embodiment.

Figure 19 schematically illustrates the block scheme of obtaining the general structure of system according to the licence of embodiment.

Figure 20 is the block scheme that schematically illustrates according to the hardware configuration example of the PC of embodiment.

Figure 21 is the block scheme that schematically illustrates according to the hardware configuration example of the PD of embodiment.

The block scheme of the functional structure of Figure 22 copyright management unit that to be explanation had according to the user's set of embodiment etc.

The block scheme of the functional structure of Figure 23 copyright management unit that to be explanation had according to the user's set of embodiment etc.

Figure 24 schematically illustrates the sequence chart with the licence adquisitiones of synchronous/session id method according to embodiment.

Figure 25 schematically illustrates the sequence chart with the licence adquisitiones of synchronous/counter information method according to embodiment.

Figure 26 schematically illustrates the sequence chart with the licence adquisitiones of asynchronous/session id method according to embodiment.

Figure 27 schematically illustrates the sequence chart with the licence adquisitiones of asynchronous/counter information method according to embodiment.

Figure 28 schematically illustrates the explanation diagrammatic sketch of obtaining the licence adquisitiones of licence among user's set according to an embodiment of the invention.

Figure 29 schematically illustrates according to embodiments of the invention to obtain the explanation diagrammatic sketch of the method in the system at licence.

Figure 30 illustrates that schematically the time point of a third embodiment in accordance with the invention is provided with the block scheme of the general structure of system.

Figure 31 is the block scheme that schematically illustrates according to the structure of the signal conditioning package of embodiment.

Figure 32 is the block scheme of explanation according to the schematic construction of the time point server of embodiment.

Figure 33 schematically illustrates according to embodiment to be used for the explanation diagrammatic sketch that time point is provided with data in server.

Figure 34 is the explanation diagrammatic sketch of explanation according to the example of the schematic construction that the conditional information table is set of embodiment.

Figure 35 is the sequence chart that schematically illustrates according to the time point method to set up of the session id method of embodiment.

Figure 36 is the explanation diagrammatic sketch that schematically illustrates for the difference time of embodiment.

Figure 37 is the sequence chart that schematically illustrates according to the processing of the time point method to set up of the counter information method of embodiment.

Embodiment

Below with reference to accompanying drawing suitable embodiment of the present invention is described in detail.Note,, represent to have substantially the assembly of identical function structure, thereby omit its redundant description with identical reference number for this instructions and accompanying drawing.

＜the first embodiment 〉

At first, will be described group register device, group register method, group cancellation device and group cancellation method according to first embodiment of the invention.

(adopting the general introduction of the copyright management of group management method)

At first, will be described according to present embodiment serves as the group management method on the basis of organizing Accreditation System to employing the general introduction of copyright management system.

Adopt the copyright management system of group management method to be configured to be used to manage the copyright management system of the copyright of the use of the content between the multiple arrangement (as content processing apparatus etc.) and protection content according to present embodiment.

That is to say, in order to prevent the illegal use of content, such as with certain mode through the distribution of a large amount of contents of the Internet etc. etc., adopt the above-mentioned copyright management system restriction of group management method to belong to sharing of content between the device of different user.

By adopting the copyright management system of group management method, carry out copyright management, the increment that wherein content is provided the source (particularly, at first hold content by the user) or the management increment that uses as content of the increment (increment) of the device of content creating, and providing the source to allow or forbid the broadcast of the content on each device according to content.

More specifically, by adopting the copyright management system of group management method, the multiple arrangement that the user will belong to each user on service server 20 or management server 21 is registered to group, in being registered to each device of group, provide the source ID in source and source ID to tabulate and the broadcast of control content then based on the expression content.Therefore, between the device that is registered to same user's set group, can freely copy and play the same content that the source is provided.

Notice that content can be a content arbitrarily, the audio content that constitutes such as music, speech, radio program etc., the video content that rest image that is made of film, tv program, video program or moving image, photo, picture, table etc. are formed, e-book, recreation, software etc.Below with reference to audio content, especially be described, but the present invention is not limited to such example from Distributor example distribution or that from music CD, peel off the music content of (rip) as content.

Next, will be described the general introduction of the group registration of copyright management system based on Fig. 1 with above-mentioned employing group management method.Notice that Fig. 1 is the explanation diagrammatic sketch that schematically illustrates according to the group registration of the group Accreditation System 100 of present embodiment.

As shown in Figure 1, for example, content processing apparatus (PC, signal conditioning package or user's set) 10-1 and 10-2 and content reproduction device (PD) 20-1 and 20-2 are grouped into device group (content processing apparatus 10-1 and content reproduction device 20-1) that belongs to user A and the device group (content processing apparatus 10-2 and content reproduction device 20-2) that belongs to user B.For management server 21 or service server 20, content processing apparatus 10 and content reproduction device 20 are registered to the grouping like this that group is come actuating unit by the user.

Below concrete example with reference to content processing apparatus (PC) 10-1 that belongs to user A is described this group registration.At first, user A use belong to own/herself content processing apparatus 10-1 access services server 20 and management server 21, carry out user authentication process and to the device ID of management server 21 transmission content processing apparatus 10-1.Then, the device ID that service server 20 is preserved content processing apparatus 10-1 is registered to content processing apparatus 10-1 the device group of user A then so that it is associated with user A.

Notice that above-mentioned visit is to handling in device or through the common name of the information processing of the information of network, such as using system, be connected to server, reference paper, preservation file, deleted file, change file etc.

In addition, the user totem information that management server 21 sends expression user A to content processing apparatus 10-1 (for example, group ID, device ID, media ID, page or leaf ID etc.), content processing apparatus 10 stores the user totem information that is received in its memory unit into then.Similarly, other content processing apparatus 10 also is registered to group.Also carry out content reproduction device (PD) 20 is registered to group via content processing apparatus (PC) 10.

Therefore, by adopting the copyright management system of group management method, for each user who holds device, each device all is registered to group in service server 20 and management server 21.As a result, in that be registered to can free content shared between same user's the device group.On the other hand, in that be registered to can not content shared between the device group of different user.

Below, the general introduction of such content sharing administrative skill will be described based on Fig. 2.Notice that Fig. 2 is the block scheme of explanation according to the primary clustering of the copyright management system of present embodiment employing group management method.

As shown in Figure 2, adopt the copyright management system of group management method to comprise source ID extra cell A, content play unit B and list management unit C according to present embodiment as primary clustering.

For example, source ID extra cell A provides in content processing apparatus 10 grades, comprises the function of the source ID that the source is provided of additional representation content in content.Attention " additional source ID in content " means source ID is associated with content, for example, it comprises the data of source ID is added to processing in the file (content file) that comprises content-data, made processing that content file is associated with the file that comprises source ID data etc.

Also have, " content provide source " is the source on each user class of shared content in the copyright management system that adopts group management method.Particularly, the example that the source is provided of content comprises that (1) use content distribution service to obtain the user of content such as (buy), and (2) by peel off, the content processing apparatus 10 of content creating such as record automatically.

Above-mentioned source ID is unique identifier that each such content provides the source that appends to.This source ID appends on the content, can be identified at thus in the system circulation content the source is provided.

For present embodiment, adopt such source ID, for example, media ID, recorder ID and group ID.Content processing apparatus 10 is being provided as content under the situation in source, and recorder ID is source ID, and the user is being provided as content under the situation in source, and group ID is source ID.

Recorder ID is that unique appending to comprises that content peels off the identifier in each content processing apparatus 10 (PC etc.) of function.Based on the device ID of these content processing apparatus 10 grades and by comprising that the content processing apparatus 10 of peeling off function generates these recorder ID, is safely stored in it in content processing apparatus 10 then.When peeling off content from the removable recording medium 40 such as music CD etc., content processing apparatus 10 appends to the recorder ID of content processing apparatus 10 itself in the content peeled off (after this, be called peel off content).Therefore, according to such recorder ID, can identify the content processing apparatus 10 that serves as the establishment source (that is, content provides the source) of peeling off content.

Also have, group ID will uniquely append to hold medium or such as each user's of the device of content processing apparatus 10 and/or content reproduction device 20 etc. identifier.Particularly, the user account by the content sharing that copyright management system the provided service of adopting group management method according to present embodiment adds this group ID.According to such group ID, but the device group under the identity device and the owner of these device groups.

Service ID is the unique ID in content distribution service that realizes with the copyright management system that adopts group management method or the increment of the peeling off the content sharing service.Below, content distribution service is from the service of content distributing server to content processing apparatus 10 distributing contents.And, peel off the content sharing service and be by carry out above-mentioned group of registration make peel off content can be between a plurality of content processing apparatus 10 that belong to same user and content reproduction device 20 etc. services shared.

For example, by content processing apparatus 10 such group ID is appended to from the distributing contents of content distributing server distribution.Therefore, group ID appends to distributing contents, can identify the user in the purchase source (that is, content provides the source) of this distributing contents thus.

As mentioned above, the content extra cell 1 that comprises in can freely copying by content processing apparatus 10 between content processing apparatus 10 and content reproduction device 20 has added the content of source ID (recorder ID or group ID).

Next, the content play unit B is made up of content reproduction device or content play software, and provides in content processing apparatus 10 or content reproduction device 20.This content play unit B comprises has added the source ID tabulation L that allows the source ID that resets in this content play unit.This source ID tabulation L offers each content play unit B, and under the different situation of content play unit B, the source ID that is included in each source ID tabulation L is also different.

When playing the content of additional above-mentioned source ID, the content play unit B is checked above-mentioned source ID tabulation L, and the broadcast of this content of enable/disable.That is to say, under the source ID that appends to content was included in situation among the source ID tabulation L, the content play unit B can be play this content, and on the other hand, under the source ID that appends to content was not included in situation among the source ID tabulation L, the content play unit B can not be play this content.Therefore, the content play unit B is by the increment of source ID,, provides the increment in source and the broadcast of control content by content that is.

In addition, for example, about list management unit C, the content play unit B can ask new source ID is added among the source ID tabulation L that belongs to content play unit B itself.That is to say that be not included in the content that the new source ID among the source ID tabulation L that belongs to content play unit B itself is added in order to play, the content play unit B need be added this new source ID in source ID tabulation L.Therefore, in order to allow the renewal of source ID tabulation L, the request of content play unit B allows to add this new source ID about list management unit C.

For example, provide list management unit C in content processing apparatus 10, its renewal belongs to the source ID tabulation L of content play unit B.Below, " source ID tabulation L renewal " mean to/from source ID tabulation L interpolation/deletion source ID.To/from source ID tabulation L interpolation/deletion source ID, but list management unit C enable/disable has been added the broadcast of the content of this source ID in the content play unit B thus.

Such list management unit C acquisition group certificate G, it is the shared information that group ID is associated with recorder ID, upgrades source ID tabulation L then based on such group certificate G.Particularly, under the situation consistent with the group ID in being included in above-mentioned source ID tabulation L of the group ID in being included in group certificate G, list management unit C adds the source ID L that tabulates to being included in recorder ID among the group certificate G.Therefore, the recorder ID of content processing apparatus 10 that is registered to same user's device group is added among the source ID tabulation L, peel off content thereby enable to play through what this content processing apparatus 10 was peeled off.

As mentioned above, by adopt the copyright management system of group management method according to present embodiment, be controlled at the broadcast of the content at each content processing apparatus 10 and content reproduction device 20 places by above-mentioned source ID extra cell A, content play unit B and list management unit C, thereby manage the copyright of the content that will between content processing apparatus 10, copy.

(system architecture)

Next, will adopt the general structure of group Accreditation System 100 of the copyright management system of group management method to be described being applied to according to present embodiment based on Fig. 3.Notice that Fig. 3 is the block scheme that schematically illustrates according to the general structure of the group Accreditation System 100 of present embodiment.

As shown in Figure 3, for example, according to the group Accreditation System 100 of present embodiment by (after this, being referred to as " user's set 10 " sometimes), service server 20, management servers 21 such as a plurality of user's

set

10a, 10b, make those install interconnective network 30 (comprising home network 30a and local line 30b) and be used for forming at the removable recording medium 40 of the data of exchange such as content, licence etc. between these devices.

For example, user's set 10 is the signal conditioning packages that will be registered to group, but be not limited to such example, for example, can be to be used to the content reproduction device that uses the various content processing apparatus of content or be used for play content etc.

In Fig. 3, example as this user's set 10, (after this example illustrates notes type or desktop PC, be called PC) 10a, mancarried device (after this, being called PD) 10b, home server 10c, television equipment 10d, record/play-back device 10e (as CD, HD or DVD recorder/player etc.), fixed-audio player 10f, AUtomobile audio frequency device 10g, cell phone 10h etc. as the pocket content reproduction device.

User's set 10 is not limited to such example, for example, can be various signal conditioning packages, as computer installation arbitrarily, portable terminal, digital video camera, local game control desk, intelligent appliance etc. such as PDA (personal digital assistant) etc.

For user's set 10, comprise that the device (for example, PC 10a, cell phone 10h etc.) via the communication function of network 30 can communicate to connect with each server (service server 20 etc.).By such user's set 10, for example, can register, and can transmit contents from service server 20 to management server 21 request groups.

Note,, can from service server 20, download the software that is used for the software of content distribution service or is used for copyright management, and can install for user's set 10.Therefore, for user's set 10,, such data can be recorded in the memory unit such as memory storage or removable recording medium 40 etc. in response to distributing encrypted content, licence and encrypted content key from content service server 20.

Also have, by user's set 10, for example, can carry out following configuration, wherein with from writing down (self record audio frequency, recording of video etc.) or content creating again such as peeling off, it can be recorded in memory storage or the removable recording medium 40.Notice that record means with being included in imaging device/sound collection means in the user's set 10 itself and is recorded as the audio frequency etc. of picture/collection sound as the video/audio numerical data certainly.Also have, peel off to mean to extract and be recorded in such as music CD, video DVD, be used for the digital content (voice data or video data etc.) in the storage medium of CD-ROM etc. of software, convert thereof into and it to be recorded in memory storage or the removable recording medium 40 then by the file layout of Computer Processing.

Management server 21 comprises to user's set 10 and transmits function such as the security information of the ID tabulation that is registered to group by service server 20 etc.Service server 20 also carries out user management, group management, license management etc. to distribution of contents.

Service server 20 and management server 21 are made up of computer installation that comprises server capability etc.Notice that at least one in service server 20 and the management server 21 comprises (for example) www server, group management sever, content distributing server, certificate management server, bill server etc.

Notice that in response to the register requirement of the user's set of registering from the process user who belongs to the user 10, group management sever is registered to group by the user with user's set 10 and content reproduction device 20.

Content distributing server provides the server of content distribution service, in response to dispense request from the user's set 10 that belongs to the user, via network 30 to user's set 10 distributing contents.This content distributing server 34 is for example, to provide the EMD server of EMD (electronic music distribution) service etc.For example, this content distributing server uses the music content that will distribute such as the compressing and coding system compression and the coding of ATRAC3 (registered trademark) system or MP3 system etc., use such as the encryption system of DES etc. it is encrypted, then it is distributed to user's set 10.In addition, content distributing server 34 is used to decipher the content key of this distributing contents, is transferred to user's set 10 with the distributing contents of encrypting then.

Network 30 is the order wire networks that connect above-mentioned user's set 10 and

server

20 and 21, so that carry out two-way communication.For example, network 30 is formed such as the leased line network of WAN, LAN, IP-VPN etc., and can is wired or wireless by the common network such as the Internet, telephone network, satellite communication network etc.

In addition, such network 30 comprises private network.From the viewpoint of copyright management, this private network means the network of a plurality of user's sets 10 of content shared in the scope that is interconnected on privately owned purposes.The concrete example of such private network comprise a plurality of user's sets 10 that connection is used by same user network, be connected the home network of a plurality of user's sets 10 that use in the same family and be connected the LAN of a plurality of user's sets 10 that use in limited group (company, friend etc.) on a small scale.

Removable recording medium 40 is the removable medias that can store such as the various data of content, pass phrase (pass pharse), program etc., its example comprises the various CDs such as DVD-R, DVD-RW, DVD-RAM, CD-R, CD-RW, magneto-optic disk etc., such as the disk of floppy disk, hard disk etc., and various semiconductor memory.Notice that for example, removable recording medium 40 can be to use the recording medium of the copyright management function of the copy of encryption key limiting content or broadcast etc.

For group Accreditation System 100 according to present embodiment, even at user's set 10, especially at the relatively little user's set 10 of processing power, for example under the situation of PD 10b or cell phone 10h etc., if user's set 10 networks are connected to management server 21 or service server 20 (promptly, online), then user's set 10 and/or removable recording medium 40 also can be registered to group safely by handling the light communication protocol of load, and this is its first feature.

And, by group Accreditation System 100, even user's set 10 or removable recording medium 40 etc. are not (off-lines) that network connects, another user's set 10 replacement management servers 21 wait asks the group registration, offline user device 10 can be registered to group thus, this is its second feature.

As shown in Figure 1, be registered under the situation of group at off-line PD 10b, for example, can carry out the group registration by the access management server 21 of PD 10b own, on the other hand, under the situation of off-line AUtomobile audio frequency device 10g, for example, PC 10a replaces PD 10b to registration such as management server 21 groups such as request such as grade, and can register this AUtomobile audio frequency device 10g by the print media 41 of describing pass phrase or the removable recording medium 40 that writes down pass phrase information etc.Note, after a while the details that the detailed description group is registered.

Next, will the structure according to the user's set 10 of present embodiment be described in detail.

At first, will the hardware configuration according to the user's set 10 of present embodiment be described.Fig. 4 is the block scheme that schematically illustrates according to the hardware configuration example of the user's set 10 of present embodiment.Notice that Fig. 4 is to be particular hardware configuration under the situation of the PC 10a shown in Fig. 3 at user's set 10.

As shown in Figure 4, for example, user's set 10 comprises and the control module 101, ROM (ROM (read-only memory)) 102, RAM (random access memory) 103, host bus 104, bridge 105, external bus 106, interface 107, input block 108, output unit 110, memory storage (HDD) 111, driver 112, connectivity port 114 and the communication unit 115 that are equivalent to CPU (CPU (central processing unit)) etc.

Control module 101 serves as calculation processing apparatus and control device, operates according to various programs, and each unit in the control user's set 10.The program that ROM 102 storage control units 101 use, calculating parameter etc.RAM 103 interim storages are used for the program of control module 101 execution, the parameter that changes with its execution according to circumstances etc.These interconnect by the host bus of being made up of the bus that is used for control module etc. 104.

Host bus 104 is through 105 external buss 106 that are connected to such as PCI (periphery component interconnection/interface) bus etc. of passing a bridge.

For example, input block 108 is by such as the functional unit of mouse, keyboard, touch-screen, button, switch, handle etc. and be used to generate input signal and its input control circuit that outputs to control module 101 etc. is formed.The user of user's set 10 operates input block 108, and thus for user's set 10, the user can import various data, and can indicate and handle operation.

For example, output unit 110 is by CRT (cathode-ray tube (CRT)) display device, LCD (LCD) device, such as the display device of lamp, form such as the audio output device of loudspeaker etc.

For example, output unit 110 output play content.Particularly, display device shows the various information such as the playing video data that uses literal or image etc.On the other hand, audio output device sends the sound of voice data of being play etc.

Memory storage 111 is the devices that are used to store data, is configured to the example according to the storage unit of the user's set 10 of present embodiment, for example is made up of HDD (hard disk drive).Memory storage 111 drives hard disk, and storage is by the program and the various data of control module 101 execution.And, the source ID tabulation L that memory storage 111 storages are described after a while, content data base 116, self ID (own-ID) database 117, contents management information database 118 etc.

Driver 112 is the reader/writers that are used for recording medium, and is built into or appends to from the outside user's set 10.For removable recording medium 40 such as the disk that in user's set 10, loads, CD, magneto-optic disk, semiconductor memory etc., the various data of driver 112 record/broadcast such as contents, group certificate G, program etc.

Particularly, the data of driver 112 playback records in removable recording medium 40 provide it to the RAM103 that is connected to it via interface 107, external bus 106, bridge 105 and host bus 104 then.When in case of necessity, control module 101 with this data storage in ROM 102, memory storage 111 etc.On the other hand, driver 112 receives data, data that regenerate that are stored in ROM 102 or the memory storage 111 etc. or the data that obtain from external device (ED) from control module 101, be written into then in the removable recording medium 40.

Connectivity port 114 is to be used to connect for example port of external user device 10 (as PD 10b etc.) etc., and comprises the connecting terminal such as USB, IEEE1394 etc.Connectivity port 114 is connected to control module 101 etc. via interface 107, external bus 106, bridge 105, host bus 104 etc.According to such connectivity port 114, user's set 10 can be via the various data of local line 30b transmission about PD 10b.

For example, the communication interface that is used to be connected to network 30 formed by communicator etc. of communication unit 115.Communication unit 115 transmission/receptions are about the various data such as the external device (ED) of another user's set 10, service server 20 etc., as content, source ID tabulation L (perhaps GID tabulation), control signal etc.

Next, will the major function according to the PC 10a of the user's set 10 of embodiment be described.Notice that Fig. 5 is the block scheme that schematically illustrates according to the function (perhaps module) of the PC 10a of present embodiment.

As shown in Figure 5, for example, PC 10a comprises data communication units 120, group registering unit 130, list management unit 140, distribution services use unit 152, source ID extra cell 154, contents processing unit 160, content data base 116, self ID database 117 and contents management information database 118.

Data communication units 120 sends/receives various data between PC 10a and external device (ED).For example, data communication units 120 is to use the modular program of above-mentioned communication unit 115 transmission/reception data between user's set 10 and another user's set 10 or server 30 via network 30.Also have, data communication units 120 uses above-mentioned connectivity port 114 via local line 30b transmission/reception data between PC 10a and PD 10b.

Group registering unit 130 is carried out user registration process, and the group location registration process (device registration processing) about the user's set 10 of management server 21 etc. is carried out in request.By this group location registration process, group registering unit 130 is to management server 21 transmission group registration information (for example, group register requirement notice, group ID, password, Termination ID, media ID, recorder ID etc.).

Here, Termination ID is the ID that unique identification serves as the user's set 10 of the request source (perhaps communication sources) that is used for to server requests.For example, based on the independent random number that generates, the device ID of each user's set 10 etc., generate Termination ID and recorder ID uniquely by each user's set 10.

Also have, in response to the group registration of user's set 10, group registering unit 130 receives the service data (page or leaf ID, service Public key etc.) from management server 21 notices.In addition, for example, the page or leaf ID that group registering unit 130 will receive outputs to list management unit 140, and the service Public key that will receive outputs to contents processing unit 160.This service Public key (privacy key) is the necessary key of enabling decryption of encrypted content-data, and is stored safely in order to avoid distorted.

Also have, group registering unit 130 is carried out about the group of the user's set 10 of management server 21 and is nullified processing.Also in this case, with the situation of registration under identical mode, group registering unit 130 is to management server 21 transmission group de-registration request information (for example, group de-registration request notice, group ID, password, Termination ID etc.).Under the situation of the cancellation of carrying out registration, group registering unit 130 is notify list administrative unit 140 correspondingly.

List management unit 140 is and the corresponding assembly of the list management unit C shown in Fig. 2.For example, list management unit 140 comprises the function that is used to upgrade the source ID tabulation L that belongs to user's set 10.

Also has the active ID when group is nullified in the list management unit 140 deletion source ID tabulation L.

Notice that source ID tabulation L is stored among the memory storage 111 of user's set 10 or the ROM102 etc. safely.For example, to its additional character signature so that prevent from by the user to encrypt under the illegal tamper condition and store this source ID tabulation L.

By present embodiment, as mentioned above, the group ID that receives from management server 21 when the group registration is stored in the PC 10a, so that be included in the source ID tabulation L.That is, as mentioned above, because group ID is used as the source ID that enables to play the distributing contents that has added this group ID, so carry out the Play Control of distributing contents based on such group ID.

In addition, though not shown in the accompanying drawings,, for example, list management unit 140 is furnished with recorder ID updating block, tabulation lock unit, self ID adding device and group ID updating block.

The recorder ID updating block adds recorder ID or media ID etc. in source ID tabulation L.Particularly, at first, the recorder ID updating block is read the group ID tabulation that sends from management server 21, also reads the group ID in the source ID tabulation L.Next, the recorder ID updating block determines whether two group ID are consistent.As this result who determines, under the situation of two group ID unanimities, the recorder ID updating block read out in comprise in the above-mentioned group of ID tabulation with another user's set 10 corresponding recorder ID, then it is added among the source ID tabulation L.

Therefore, have only with the user's set 10 corresponding recorder ID that are registered to same device group and just can add among the source ID tabulation L.Notice that for example, by providing about adding the upper limit of the recorder ID number among the source ID tabulation L to, the recorder ID updating block can limit the interpolation of recorder ID.

The tabulation lock unit comprises makes the synchronous function of multiple source ID tabulation L.Source ID described herein tabulation L means the different multiple source ID tabulation L of mergings (merge) synchronously, thereby synchronous source ID tabulation L comprises tabulate all recorder ID of comprising in the L and do not have redundancy of a plurality of original source ID.

For example, the self ID adding device will unconditionally add source ID tabulation L to user's set 10 corresponding recorder ID own.Particularly, for example, the self ID adding device is read from self ID database 117 and user's set 10 corresponding recorder ID own, is written into then among the source ID tabulation L.Therefore, user's set 10 can be play through the content of peeling off certainly of peeling off, and irrelevant with the registration of whether existence group.Note, can carry out such layout, wherein the self ID adding device is based on generation group ID such as random numbers, and it is recorded in the self ID database 117.

For example, in case when the registration of the group of user's set 10 from above-mentioned group of registering unit 130 input group ID, group ID updating block just adds such group ID to the source ID L that tabulates.Therefore, user's set 10 can be play the distributing contents that has added this group ID.

And, in case from above-mentioned group of registering unit 130 input group notice of cancellation, group ID updating block is just deleted the active ID that comprises in the source ID tabulation L (recorder ID and organize ID).Yet note having only with user's set 10 corresponding recorder ID own and can from source ID tabulation L, not delete.Therefore, user's set 10 can not be play peeling off content and not managing content the content of copyright of creating except oneself.

Note the renewable source ID tabulation L that from user's set 10, receives of recorder ID updating block and group ID updating block and it is sent back to such as PD 10b etc.

Distribution services uses unit 152 to carry out about the processing as the content distribution service of the above-mentioned service server 20 that is used for distributing contents.

Particularly, distribution services use unit 152 to/from above-mentioned service server 20, send/receive various information, for example, use the necessary user authentication information of foregoing distribution services (user ID (perhaps organizing ID), password etc.), bill information, distribution of contents solicited message etc., and the I/O of assisting those information.

And distribution services uses unit 152 to receive from the distributing contents of service server 20 transmissions and the licence of this distributing contents via network 30 and communicator 115.That is to say, in case the user of user's set 10 uses content distribution service to buy content, distribution services uses unit 152 just by the file of separate file (separate file) download distribution content from service server 20 and the file of the licence of the service condition of determining this distributing contents.Under the situation of the content of copyright management that carry out to adopt group management method,, describe by above-mentioned group of registration and distribute to user's page or leaf ID or group ID etc. by the licence of distributing contents.

Distribution services uses unit 152 to handle distributing content data and the licensc e data that receives thus, and creates the content file be made up of content and licence as identical file.

At this moment, about the distributing contents of group management method, will organize the content-data that ID appends to distributing contents by source ID extra cell 154.Source ID extra cell 154 is and the corresponding assembly of above-mentioned source ID extra cell A.Source ID extra cell 154 will be organized ID and append to distributing contents.Particularly, source ID extra cell 154 is carried out and will be converted to the processing of group ID with the page or leaf ID that describes in the corresponding licence of distributing contents.For example, in the same manner as described above, by the service ID of content distribution service being added to the conversion process of carrying out among page ID from page or leaf ID to group ID.Therefore, the group ID that represents the user of this distributing contents of purchase and service is associated with distributing contents.

Therefore, distribution services is used unit 152 and source ID extra cell 154 content creating files, and it has made up the file of the content of being distributed and the file of licence.

For example, the corresponding ID of self ID database 117 storage and user's set 10 itself are such as the device ID of user's set 10, recorder ID, Termination ID etc.

Device ID is unique additional identifier in the increment of various devices (user's set 10 and content reproduction device 20 etc.).For example, distribute this device ID when transporting, and it is stored in the self ID database 117 safely in the factory of user's set 10.

The 160 pairs of contents in contents processing unit are carried out various processing.For example, contents processing unit 160 comprises content play unit 170, content providing unit 180, content acquiring unit 182 and peels off unit 184.

Content play unit 170 is and the corresponding assembly of content play unit B shown in Fig. 2.For example, content play unit 170 is by the playing device that comprises content playback function or be installed in content play software in the user's set 10 etc. and form, and can play various contents.The content-data that output is play by content play unit 170 from above-mentioned output unit 110.

Note, two or more a plurality of content play unit 170 can be provided in a user's set 10.For example, for a user's set 10, two or more content play software is installed, two or more playing devices are provided, use content play software and playing device etc. together, thus, can be configured in the user's set 10 with each content distribution service or the corresponding two or more content play of each copyright managing method unit 170.

Content providing unit 180 provides content to another user's set 10 or PD 10b.Simultaneously, content acquiring unit 182 obtains content from another user's set 10 or PD 10b.For example, these content providing unit 180 and content acquiring unit 182 can via use transmission/receptions such as network 20 handle carry out content provide/obtain processing, perhaps can carry out via removable recording medium 40.

Note, when so playing, providing or obtaining content, contents processing unit 160 in can content-based management information base 118 contents management information and control above-mentioned processing, perhaps can be on output unit 110 displaying contents management information.

Peeling off unit 184 peels off the content that writes down in recording medium 40a recording musical content or video content, such as CD, DVD etc.Particularly, for example, peel off the input of unit 184 according to the user, Control Driver 112 is extracted music/video data etc. from recording medium 40a, create then will be such the music/video data-switching become can be by the content of the form of user's set 10 processing (for example, ATRAC3 (registered trademark) form etc.).Recorder ID with PC 10a is added so contents through peeling off by source ID extra cell 154.

In addition, though not shown in the accompanying drawings, PC 10a can comprise be used for the transmission control module that control content is transmitted between PC 10a and PD 10b.For example, this transmission control module basis is controlled the delivery of content of will store among the PC 10a based on the transmission request of user's input and is arrived PD 10b, perhaps the delivery of content of storing among the PD 10b is arrived PC 10a.

And this transmission control module not only can be carried out the transmission control of the content (having added the content of source ID) of having managed copyright, also can carry out the transmission control of the content (original contents (raw content) that for example, does not have additional source ID) of not managing copyright.For example, for the content of not managing copyright, in case input, is transmitted control module from the transmission request of user's set 10 to PD 10b or 10 the transmission request from PD 10b to user's set and just the interior group ID of source ID tabulation of group ID in the source ID tabulation of user's set 10 and PD 10b is compared.As this comparative result, under the situation of two group ID unanimities, transmit control module and allow this transmission, and on the other hand, under two inconsistent situations of group ID, forbid this transmission.Therefore, use not only can be limited, and the use of the content of not protecting copyright (being not limited in the copy between the device) can be limited with the content of group management method management copyright.

Up to now, each assembly of PC 10a is described.For example, above-mentioned data communication units 120, group registering unit 130, list management unit 140, distribution services use unit 152, source ID extra cell 154, contents processing unit 160, transmission control module etc. can be configured to comprise the hardware of above-mentioned each function, perhaps can above-mentioned each functional programs of computer realization are configured by installing in user's set 10.

Note, in Fig. 4 and Fig. 5, to user's set 10 is that the situation of PC 10a is described as an example, but user's set 10 is not limited to such example, and as long as user's set is the identical device of level that has with the processing power of PC 10a.

Also have, can also provide the function of the Fig. 6 or the user's set shown in Fig. 7 10 of description being formed by following to the user's set 10 shown in Fig. 4 and Fig. 5.

Then, will be with reference to the hardware configuration of figure 6 descriptions according to the user's set 10 of present embodiment.Fig. 6 is the block scheme that schematically illustrates according to the example of the hardware configuration of the user's set 10 of present embodiment.Notice that Fig. 6 is illustrated in the hardware configuration under the particular case that user's set 10 is the PD 10b shown in Fig. 3.

As shown in Figure 6, for example, PD 10b has main control unit 201, flash memory 202, RAM 203, data processing unit 204, bus 206, input block 208, display unit 210, memory storage (HDD) 211, demoder 213, communication unit 215, audio output circuit 216, telepilot 218 and earphone 219.

Main control unit 201 plays the control device, so that each assembly of control PD 10b.For example, the program of the action of flash memory 202 store predetermined main control units 201 and various data.In addition, RAM 203 for example is made of SDRAM (synchronous dram), and the various data about the processing of main control unit 201 are carried out primary storage.Notice that the processing power of main control unit 201 still is not limited to this example than the low certain degree of processing power of the control module 101 shown in above-mentioned Fig. 4.

Data processing unit 204 is made of system LSI etc., and handles the data of transmitting in PD 10b.Bus 206 is the data lines that connect main control unit 201, flash memory 202, RAM 203, data processing unit 204, input block 208, display unit 210, memory storage (HDD) 211, demoder 213, communication unit 215, audio output circuit 216 etc.

For example, input block 208 and telepilot 218 be by the functional unit such as touch-screen, button key, handle, dial (of a telephone) etc., and be used for generating input signal and outputing to the formations such as input control circuit of main control unit 201 etc. according to the operation that the user carries out at the functional unit place.By the telepilot 218 of operating this input block 208 and describing after a while, the user of PD 10b can import various data and indication processing operation to PD 10b.

For example, display unit 210 is made of LCD panel and LCD control circuit etc.Corresponding with the control that main control unit 201 carries out, display unit 210 shows various information with literal or image.

Memory storage 211 is the devices that are used to store data, for example, is made of the storage unit according to the PD 10b of present embodiment.For example, this memory storage 211 is made of the hard disk drive (HDD) of the memory capacity of the magnitude with tens GB, and store various kinds of data, such as the program of compressed content, main control unit 201, deal with data etc.

Demoder 213 carries out the decryption processing, decoding processing of encrypted content datas, around handling, be used to the processing that is converted to the PCM data etc.

The various data of communication unit 215 and user's set 10 exchange such as the contents that are connected via the local line 30b such as USB cable etc., source ID tabulation L, contents management information, control signal etc., perhaps communication unit 215 is via network 30 and various data such as external unit exchange such as the content of other user's set 10 or management server 21 etc., source ID tabulation L, contents management information, control signal etc.

Audio output circuit 216 amplify by demoder 213 decodings and carry out the analog audio data of DA conversion by CPU, and output to telepilot 218.This analog audio data outputs to earphone 219 from telepilot 218, the output of the loudspeaker from be built in earphone 219 then.

Below, the general data that description is had the PD 10b of such hardware configuration flows.

Data stream in the time of will be to content reproduction device (PD) 10b play content is described.At first, to main control unit 201 input content play requests, allow to play under the situation of this content at main control unit 201, data processing unit 204 is read content-data from memory storage 211, and when being delivered to RAM203, the content-data that is delivered to RAM 203 is delivered to demoder 213.Then, the 203 pairs of encrypted content datas of demoder carry out decryption processing, decoding processing, around handling, being transformed into the processing of PCM data etc., are delivered to main control unit 201 then.In addition, main control unit 201 makes the PCM data of input carry out DA conversion (not shown), carries out the volume adjustment thus and is transformed into analog audio data, and be delivered to the amplifier of audio output circuit 216.Audio output circuit 216 is exported analog audio data via telepilot 218 from earphone 219.

Next, will be with reference to the major function of figure 7 descriptions according to the PD 10b of present embodiment.Notice that Fig. 7 is the block scheme that schematically illustrates according to the function (perhaps module) of the PD 10b of present embodiment.

As shown in Figure 7, for example, user's set 10 has data communication units 220 and storage unit 230.In addition, storage unit 230 storage sets registering unit 231, list management unit 241, message generation unit 261, counter unit 263, time point unit 264, ID generation unit 265, register requirement detecting unit 267 and source ID tabulation L and content DB 234.

Data communication units 220 uses above-mentioned communication unit 215 via local line 30b and user's set 10 swap datas, perhaps via network 30 and such as the swap datas such as server of management server 21.

For example, storage unit 230 is made of above-mentioned memory storage 211 and flash memory 202 etc., and the various data in the storage user's set 10.Storage unit 230 is stored for example source ID tabulation L, content data base 234 etc.

Also have, the source ID tabulation L common and in the above-mentioned user's set 10 (PC 10a) of the source ID tabulation L in the storage unit 230 is identical.By the group registration of PD 10b, interpolation group ID, and, the recorder ID of also adding the user's set 10 that belongs to same device group.For present embodiment, upgrade source ID tabulation L by the list management unit 140 of PD 10b, but can carry out such layout, wherein PD 10a upgrades its source ID tabulation L.

Group registering unit (perhaps authentication unit) 231 carries out the user registration process of management servers 21, about the checking (device registration processing) of the group location registration process of user's set 10 etc.In addition, import under the situation of pass phrase can decode pass phrase and convert registration to and answer message of group registering unit 231 at the outside off-line of user's set 10 (asynchronous).This will describe in detail after a while.

List management unit (perhaps storage unit, nullify the unit) the 241st, with the corresponding assembly of the list management unit C shown in Fig. 2, and list management unit 241 is storage sets ID in source ID tabulation L, storage such as the ID that installs ID etc. etc. in the source ID tabulation L that is connected with group ID.This will describe in detail after a while.

Content data base 234 storages are from content transmitted such as user's set 10 or service servers 20.Control method for playing back at PD 10b is set under the situation of group management method, and the content of having added the licence that comprises source ID is stored in the content data base 234.

Also have, for example, the device ID of the unshowned self ID database security ground storage PD 10b in the storage unit 230.This device ID is unique ID that distributes to each PD 10b when transporting in factory, and uses when the registration of PD 10b group.

Message generation unit 261 is obtained counter information (perhaps timestamp) that is generated by counter unit 263 and/or the session id that is generated by ID generation unit 265, and transmits login request message to data communication units 220.

Also have, message generation unit 261 can determine that user's set 10 is to be in online (synchronously) state that is connected to network 30, still is in off-line (asynchronous) state that is not connected to network 30, and adds in the registration message as status information.

Counter unit 263 generates counter information.For example, counter unit 263 generate by 1 counter information that increases progressively as " 1,2,3 ... " (increasing progressively), and generate by 1 counter information that successively decreases as " 90,89,88 ... " (successively decreasing).Notice that the counter information that is generated is stored in the memory unit such as the cache memory of user's set 10, up to being updated to next counter information.

Also have, counter unit 263 is not limited to the situation of the counter information that generates the above-mentioned counter information that increases progressively or successively decrease, as counter information, can also represent time point by 264 generations of time point unit, and the timestamp of generation " YYYYMMDDhhmmss " form, such as " 13: 50: 15 on the 22nd August in 2005 ".Note, also store the timestamp that generates, up to using next update of time stamp.

Time point unit 264 can keep precise time (standard time), and can be in response to external request, the time point of output " YYYYMMDDhhmmss " form.Notice that the time point unit further is arranged as the time of not maintaining the standard itself, but by NTP via 30 access time of network server etc., thereby obtain the standard time point.

In a single day in order to carry out the group registration, ID generation unit 265 sends the message of request registration to the management server that is used for the registration between them, and receives its answer message, just generate the session id of identifier register session, and described enrollment session is a series of exchanges.

The request that register requirement detecting unit (perhaps using) 267 is registered by the input group of importing from input block 208.In case detect request, generate login request message with regard to Indication message generation unit 261.

PD 10b can handle the copyright management of (handle) group management method based on the source ID that adds content to and source ID tabulation L, as the broadcast of control content.Therefore, the user can freely download content to PD 10b and play content from his user's set 10, so the degree of freedom that content is used is higher than traditional registration/method of settlement, and is more user-friendly.

Note, above-mentioned data communication units 220, group registering unit 231, list management unit 241, message generation unit 261, counter unit 263, time point unit 264, ID generation unit 265, register requirement detecting unit 267 etc. can be configured to have the hardware of above-mentioned functions, perhaps can be configured by being installed in by the program of computer realization above-mentioned functions among the PD 10b.

Note, example via PD 10b, user's set 10 shown in Fig. 6 and Fig. 7 has been described, but be not limited to this example, as long as it is not have very high processing power but the user's set 10 with communication function, and for example, can under situation, carry out such as the Any user device 10 of cell phone 10h.

(about data)

Below, will the general data that be used for according to the group Accreditation System of present embodiment be described briefly.

" session id " is the ID that is used to identify such as the session of enrollment session etc., is used to guarantee the nonredundancy for the transmission of messages/reception of management server 21.When session is movable (live), keeps session id safely so that preventing the third party distorts, and when conversation end, it is abandoned.

" counter information " is such as the information that increases progressively counter with the nonredundancy of guaranteeing transmission of messages/reception, timestamp etc.This counter information also needs to keep safely to distort so that prevent the third party.

" Termination ID " is the ID of (for example) sign to the request user's set 10 of service server 20 or the registration of management server 21 request groups.

" media ID " is to organize the ID of registration, is used to identify hard disk drive (HDD), removable recording medium 40 etc.

" recorder ID " is the ID that (for example) is used for the identification record device.

" device ID " is the ID that (for example) is used to identify player device.

" term of validity information " is the information that the condition of the term of validity of organizing ID is given in indication.Term of validity information by Start Date of the term of validity and time (year, month, day, the time) and Close Date of the term of validity and time (year, month, day, the time) constitute the scope of the indication term of validity.

" operation permission information " is the information that (for example) indicates the action type that the group of being represented by group ID is allowed.For operation permission information, for example, " 0 " expression does not allow play/not allow record, and " 1 " expression allows play/not allow record, and " 2 " expression does not allow broadcast/permission record, and " 3 " expression allows broadcast/permission record.

The GID tabulation is for example organized the tabulation that ID, ID tabulation (comprising the tabulation of device ID, media ID etc.), term of validity information, operation permission information etc. are formed by many groups.Notice that the GID tabulation is the information that comprises in login request message, and for example be ID tabulation, but be not limited to this example through the group registration.

" signature " is (for example) signed data.

" service ID " is the ID that is used for identification service.And service ID is relevant with group ID.

" online (synchronously) information " is the information of state that expression is connected to the user's set 10 of network.

" off-line (asynchronous) information " is the information of expression from the state of the user's set 10 of network disconnection.

Though above-mentioned data are main data of using, can use other data to carry out according to the group Accreditation System 100 of present embodiment, are confined to this data and have more than.

(the group register method: synchronously/the session id method)

Next, will a series of processing of using such as the group register method of above-mentioned group of Accreditation System 100 be described with reference to figure 8.Fig. 8 is the sequence chart that the group register method of synchronous/session id method schematically is described.

Note, copyright management unit shown in Fig. 8 is equivalent to comprise the entity of above-mentioned group of registering unit 231, list management unit 241, ID generation unit 265 etc., and the application shown in Fig. 8 is equivalent to comprise the entity of above-mentioned message generation unit 261, register requirement detecting unit 267 etc.

At first, as shown in Figure 8,, between the application and service server 20 of the user's set 10 of register requirement end, establish a communications link safely, and carry out the user and recognize and levy via network 30 at step S801 to S811.

Particularly, in case the register requirement detecting unit 267 of the application of user's set 10 detects register requirement in response to user's input, data communication units 220 just sends user ID and password (S801) to service server 20.So user ID and the password of service server 20 contrast registered in advance in database checked the user ID and the password that receive, carries out user authentication process (S803) then.

Setting up as above-mentioned check result under the situation of authentification of user, service server 20 allows login, and sends the notice (S805) that authentification of user has been set up in expression to the application of user's set 10.Next, use to service server 20 transmission register requirement notices (S807).This register requirement notice allows service server 20 know that user's set 10 visited register requirement.Notice that requisite for the group registration is enrollment session, and above-mentioned register requirement notice can be omitted.

Next, service server 20 generates affairs ID (TID) (S809), the application (S811) that the affairs ID that generates and URL (URL(uniform resource locator)) are sent to user's set 10 then, and described URL is the example of the address information of management server 21.Therefore, user's set 10 can be based on the URL that receives and access management server 21.

In following steps S813 to S841, carry out the processing that is used at management server 21 place's actual registered user's sets 10.

Particularly, at first, the application of user's set 10 to service server 20 request service datas (perhaps service ID) (S813).Immediately, service server 20 returns service data (perhaps service ID) (S815) to user's set 10.

Notice that above-mentioned service data can comprise and the corresponding page or leaf of authenticated ID, and the service sharing key.

Next, the application of user's set 10 sends service data (S817) to the ID of copyright management unit generation unit 265.

In case receive service data, ID generation unit 265 just generates the session id (perhaps SID) of identifier register session.The SID that generates sends to application (S819) with being tabulated by the ID that forms corresponding to the Termination ID of user's set 10 itself and recorder ID etc.

We will say by utilizing the key such as AES-CBC etc. to carry out encrypt/decrypt, can read among Fig. 8 by the data in [] of the copyright management unit of user's set 10 and management server 21 inputs.For example, for [ID tabulation, the SID] shown in the step S819, have only the copyright management unit of user's set 10 and management server 21 to can read ID tabulation and SID.

Next, the service data that the message generation unit 261 of user's set 10 is provided with based on the session id that receives among the above S811, ID tabulation, TID and for management server 21, and generate login request message (S821).Notice that login request message comprises online information.Termination ID and recorder ID etc. are generated by user's set 10.

Next, management server 21 determines whether to allow the registration (S823) of user's set 10 based on ID tabulation that comprises etc. in the login request message that has received.(S823) disposing this registration based on the upper limit number of the user's set 10 that can register (for example, the upper limit number of device ID (for example 3), the upper limit number of recorder ID (for example 10)) in same device group allow/does not allow to determine.More specifically, for example registering under the situation of three user's sets 10 with different device ID for the device group of authenticated, management server 21 is forbidden the registration of new user's set 10.Also have, under the situation of for example passing by to have registered for the device group of authenticated ten user's sets 10 (no matter whether having registered them now) with different recording device ID, management server 21 is forbidden the registration of new user's set 10.

If as registration allow/do not allow the result who determines and allow registration, then management server 21 sends ID tabulation and TID to service server 20, with the location registration process (S825) of the user's set 10 of carrying out request registration.

Write and register the ID (S827) that from the user's set 10 of request registration, receives in the record of the authenticated of service server 20 in group registration database (not shown) such as Termination ID, device ID, media ID, recorder ID etc.In addition, service server 20 sends about the registration of registered user's device 10 to management server 21 and finishes notice and GID tabulation.

Note, under the situation that does not have to carry out such as the group ID of the registration of device ID or media ID, for example, service server 20 generates new group ID, and will be registered to group (S827), but be not limited to this example such as the device ID relevant that will register and the ID of media ID with group ID.

In case confirm in login request message, to comprise online information, session id that management server 21 just receives based on the GID tabulation that receives from service server 20 with from register requirement user's set 10 etc. and generate registration and answer message, and send it to (S831) in the user's set 10.If confirm to be not included in line information in login request message, then management server 21 does not generate registration and answers message, but the information that service server 20 is created such as pass phrase, it will be described after a while.

For example, the signature that comprises in login request message is the MAC value such as the data of Termination ID, GID tabulation, session id etc., but is not limited to this example.Can verify the integrality of registration answer message by this signature.

Answer message in case receive registration, the application of user's set 10 just is not delivered to it group registering unit 231 (S833) of copyright management unit with not doing any change.Notice that for example, application can not be read registration and be answered the information that comprises in the message, such as " SID ".

Whether Termination ID and (perhaps it the is controlled oneself) Termination ID when sending login request message of the login request message that 231 checkings of group registering unit receive mate (S835).

Next, whether 231 checkings of group registering unit have received once (S837) about the registration answer message (answer) that user's set 10 has sent login request message once.For example, whether the SID of the SID of group registering unit 231 checking receptions and ID generation unit 265 generations when sending login request message mates.

Note, the checking of the nonredundancy of message (S837) is not limited to the coupling of SID, it also can so that confirm whether to have the transmission/reception of other message, thereby verify nonredundancy by for example carrying out with reference to sending sign and receiving flag after the checking of the coupling of SID.

Also have, verify (S837) with above-mentioned message nonredundancy, whether group registering unit 231 has also distorted the integrality of verifying registration answer message based on the signature that comprises and for message in message is answered in registration.

Next, in case the checking of group registering unit 231 finish, the group ID in the GID tabulation that list management unit 241 is just added and storage receives from management server 21 of user's set 10 in its self source ID tabulation L, thereby make GID tabulation effectively (S839).Therefore, user's set 10 can be play the distributing contents that has added its group ID.

Notice that list management unit 241 can receive page or leaf ID from management server 21, and based on page or leaf ID and generation group ID.

Also have, the information in the GID tabulation such as operation permission information and term of validity information etc., is also stored in source ID tabulation L or another memory block by list management unit 241.

Next, group registering unit 231 and ID generation unit 265 abandon session id (SID) (S841).Like this, according to the present embodiment utilization synchronously/a series of processing of the group register method of session id method finish.

Note, for the group register method shown in Fig. 8, the example of registering with reference to the group of the PD 10b shown in execution graph 6 and Fig. 7 is described, but is not limited to this example, except PD 10b, also can similarly carry out for other user's set 10.

Note, after the such location registration process of user's set 10, can carry out following certificate issuance and distribution processor.That is to say that at first, user's set 10 issue comprises corresponding to the group ID of itself and the group certificate G of recorder ID, and will organize certificate G and be sent to the certificate management server (not shown).The group certificate G that certificate management server will receive then stores in the certificate database.Therefore, when another user's set 10 is registered to same device group, but distribution group certificate G, so that share recorder ID.

(the group register method: synchronously/the counter information method)

Next, will a series of processing of using such as the group register method of above-mentioned group of Accreditation System 100 be described with reference to figure 9.Fig. 9 is the sequence chart that schematically illustrates the group register method of synchronous/counter information method.

Note, copyright management unit shown in Fig. 9 is equivalent to comprise the entity of above-mentioned group of registering unit 231, list management unit 241, counter unit 263, time point unit 264 etc., and the application shown in Fig. 9 is equivalent to comprise the entity of above-mentioned message generation unit 261, register requirement detecting unit 267 etc.

At first, as shown in Figure 9,, between the application and service server 20 of the user's set 10 of register requirement end, establish a communications link safely, and carry out authentification of user via network 30 at step S901 to S911.

Particularly, in case the register requirement detecting unit 267 of the application of user's set 10 detects register requirement in response to user's input, data communication units 220 just sends user ID and password (S901) to service server 20.So user ID and the password of service server 20 contrast registered in advance in database checked the user ID and the password that receive, and carried out user authentication process (S903).

Setting up under the situation of authentification of user as the result of above-mentioned inspection, service server 20 allows login, and sends the notice (S905) that authentification of user has been set up in expression to the application of user's set 10.Next, use to service server 20 transmission register requirement notices (S907).This register requirement notice allows service server 20 know that user's set 10 visited register requirement.

Next, service server 20 generates affairs ID (TID) (S909), and the application (S911) that the affairs ID that generates and URL (URL(uniform resource locator)) are sent to user's set 10, and described URL is the example of the address information of management server 21.Therefore, user's set 10 can be based on the URL that receives and access management server 21.

In following steps S913 to S941, carry out the processing of actual registered user's set 10 in management server 21.

Particularly, at first, the application of user's set 10 to service server 20 request service datas (perhaps service ID) (S913).Immediately, service server 20 returns service data (perhaps service ID) (S915) to user's set 10.

Notice that above-mentioned service data can comprise and authenticated corresponding page or leaf ID and service sharing key.

Next, the application of user's set 10 sends service data (S917) to the copyright management unit.

In case receive service data, just tabulate to the ID that use to send by forming with corresponding Termination ID of user's set 10 itself and recorder ID etc. in the copyright management unit.

We will say by utilizing the key such as AES-CBC etc. to carry out encrypt/decrypt, can read among Fig. 9 by the data in [] of the copyright management unit of user's set 10 and management server 21 inputs.For example, for [the ID tabulation] shown in the step S919 Shen, have only the copyright management unit of user's set 10 and management server 21 can read the ID tabulation.

Next, the message generation unit 261 of user's set 10 generates login request message (S921) based on the ID tabulation that receives among the above S911, Termination ID, TID and the service data that is provided with for management server 21.Notice that login request message comprises online information.Generate Termination ID and recorder ID etc. by user's set 10.

Next, management server 21 determines whether to allow the registration (S923) of user's set 10 based on being included in the ID tabulation grade in the login request message that has received.This registration allow/do not allow to determine (S923) basic and above-mentioned synchronously/the group register method of session id method is identical, so will omit its detailed description.

If as registration allow/do not allow the result who determines and allow registration, then management server 21 sends ID tabulation and TID to service server 20, with the location registration process (S925) of the user's set 10 of carrying out request registration.

Write and register the ID (S927) that from the user's set 10 of request registration, receives in the record of the authenticated of service server 20 in group registration database (not shown) such as Termination ID, device ID, media ID, recorder ID etc.In addition, service server 20 sends about the registration of registered user's device 10 to management server 21 and finishes notice and registration GID tabulation.

Note, under the situation that does not have to carry out such as the group ID of the registration of device ID or media ID, for example, service server 20 generates new group ID, and will be registered to group (S927), but be not limited to this example such as the device ID relevant that will register and the ID of media ID with group ID.

Management server 21 generates registration based on GID tabulation that receives from service server 20 etc. and answers message, for registration answer message is provided with timestamp, and sends to user's set 10 (S931).Timestamp is generated by management server 21 or user's set 10, and we will say that the timestamp that is generated by management server 21 and user's set 10 is synchronous.

For example, the signature that comprises in login request message is the MAC value such as the data of Termination ID, GID tabulation, timestamp etc., but is not limited to this example.Can verify the integrality of registration answer message by this signature.

Answer message in case receive registration, the application of user's set 10 just with its without any change be delivered to the group registering unit 231 (S933) of copyright management unit.

Whether Termination ID and the Termination ID when sending login request message of group registering unit 231 checkings in the login request message that receives mates (S935).Under the unmatched situation of Termination ID, the user's set 10 of request registration is different, therefore has the possibility that can not organize registration.

Next, whether 231 checkings of group registering unit have received once (S937) about the registration answer message (answer) that user's set 10 has sent login request message once.For example, 231 pairs of group registering unit are registered timestamp of answering in the message and the timestamp that receives from counter unit 263 and are compared when receiving registration answer message, and more recently whether the timestamp of checking counter unit 263 (perhaps upgrade).At the counter information except timestamp, under the situation such as the counter that increases progressively, whether group registering unit 231 its counter informations of checking answer the counter information of message less than registration, but are not limited to this example.

Also have, for example, the checking by carry out nonredundancy with reference to the group registering unit 231 that sends sign and receiving flag so that determine whether the transmission/reception of other message, but is not limited to this example.

Also have, verify with above-mentioned message nonredundancy, whether group registering unit 231 has also distorted the integrality of verifying registration answer message based on the signature that comprises in the registration answer message and for message.

Next, in case the checking end of group registering unit 231, the list management unit 241 of user's set 10 is tabulated interior group ID in its source ID tabulation L with regard to the GID that adds and storage receives from management server 21, thereby makes GID tabulation effectively (S939).Therefore, user's set 10 can be play the distributing contents that has added its group ID.

Notice that list management unit 241 can receive a page ID from management server 21, and based on page or leaf ID and generation group ID.

Next, group registering unit 231 abandons the timestamp that receives from counter unit 263.The timestamp that counter unit 263 also will generate when receiving registration answer message stores in the memory block, thereby upgrades the timestamp of having stored (S941).

Note, at counter information is not timestamp but under the situation such as the counter information of the counter of (incremented/decremented) etc., after by group registering unit 231 in-discard counter information, next counter information of counter unit 263 usefulness (for example, answering the counter information that is provided with in the message in registration) upgrades the counter information that has stored in the memory block.

Particularly, for example, under the situation of the counter that the initial value at the counter information of counter unit 263 and management server 21 is 0, increase progressively, in case management server 21 receives registration message, management server 21 just is updated to " 1 " with its counter information from " 0 ", and sends the registration answer message that counter information is " 1 ".

Next, because answering the value of the counter information that is provided with in the message in registration is " 1 ", and the counter information that receives from counter unit 263 is " 0 ", so group registering unit 231 determines that it is suitable that message is answered in registration, so what group registering unit 231 abandoned it is stored in counter information " 0 " in the memory block, is updated to the counter information " 1 " of registration answer message then.Like this, utilize a series of processing of the group register method of synchronous/session id method to finish.

Note, for the group register method shown in Fig. 9, the example of registering with reference to the group of the PD 10b shown in execution graph 6 and Fig. 7 is described, but is not limited to this example, can also carry out other user's set 10 except PD 10b with same method.

Note, after such location registration process of user's set 10, can carry out following certificate issuance and distribution processor.That is to say that at first, user's set 10 issue comprises corresponding to the group ID of itself and the group certificate G of recorder ID, and will organize certificate G and be sent to the certificate management server (not shown).The group certificate G that certificate management server will receive then is stored in the certificate database.Therefore, when another user's set 10 is registered to same device group, but distribution group certificate G, so that share recorder ID.

Also have, for synchronously/the group register method of counter ID method, reference count information is that the example of timestamp is described, but is not limited to this example, can be to guarantee to increase under the situation of counter etc. of (or minimizing) to carry out at for example counter information also.In this case, user's set 10 and management server 21 needs to divide the counter memory block that is used in memory counter, and each is all answered message and upgrade another self counter by sending or receive login request message or registration.

Therefore, message transmission/reception be limited to according to the present embodiment utilization synchronously/login request message and registration in the enrollment session of counter information method answer message, the processing that alleviates transmission/receptions on the network is thus loaded.In addition, under the situation of session id method, the session id (SID) that is used for the identifier register session generates at user's set 10 ends rather than server end, and for the counter information method, need be when sending login request message at the additional counter information of user's set 10 ends.Also have, registration is answered message and is comprised that user's set 10 itself adds the group ID of (registration) and media ID etc., so the processing that can omit generation group ID, thereby alleviates the load of the group location registration process of user's set 10.That is to say, use 10 groups of registrations of user's set that this group register method makes it possible to not have by conduct the user's set 10 (cell phone 10h etc.) of very high processing power.

(group register method: asynchronous/the session id method)

Next, a series of processing of the group register method of use such as above-mentioned group of Accreditation System 100 will be described with reference to Figure 10.Figure 10 is the sequence chart that schematically illustrates the group register method of asynchronous/session id method.

Note, copyright management unit shown in Figure 10 is equivalent to comprise the entity of above-mentioned group of registering unit 231, list management unit 241, ID generation unit 265 etc., and the application shown in Figure 10 is equivalent to comprise the entity of above-mentioned message generation unit 261, register requirement detecting unit 267 etc.

At first, as shown in figure 10, user's set 10-1 is connected with service server 20 or management server 21 online (synchronously), but user's set 10-2 is off-line (asynchronous).The purpose that the group registration is shown in Figure 10 like this is to carry out the group registration of async user's device 10-2.

As shown in figure 10, in step S1001 to S1011, between the application and service server 20 of the user's set 10-1 of register requirement end, establish a communications link safely, and carry out authentification of user via network 30.Notice that step S1001 to S1011 is basic identical with the step S801 to S811 shown in above-mentioned Fig. 8, therefore will omit its detailed description.

In following steps S1013 to S1043, carry out the processing of actual registered user's set 10-2 in management server 21.

Particularly, at first, the application of user's set 10-1 to service server 20 request service datas (perhaps service ID) (S1013).Immediately, service server 20 returns service data (perhaps service ID) (S1015) to user's set 10.

Next, the application of user's set 10-1 sends service data (S1017) to the ID of copyright management unit generation unit 265.

In case receive service data, ID generation unit 265 just generates the session id (perhaps SID) of identifier register session.The SID that generates sends to application (S1019) with being tabulated by the ID that forms with corresponding Termination ID of user's set 10-2 itself and recorder ID.Note, directly import with the corresponding ID tabulation of user's set 10-2 itself, but be not limited to this example from the input block 208 of user's set 10-1.

We will say by utilizing such as the key of AES-CBC etc. and carry out encrypt/decrypt, can read among Figure 10 by the data in [] of the copyright management unit of user's set 10 and management server 21 inputs.For example, for [ID tabulation, the SID] shown in the step S1019, have only the copyright management unit of user's set 10-1 or user's set 10-2 and management server 21 can read ID tabulation and SID.

Then, the service data that the message generation unit 261 of the application of user's set 10-1 is provided with based on the session id that receives in above S811, ID tabulation, TID and for management server 21 generates login request message (S1021).Notice that login request message comprises off-line (asynchronous) information.Though not shown in the drawings, in login request message, comprise the MAC value of obtaining from SID at least.

Next, management server 21 determines whether to allow the registration (S1023) of user's set 10-2 based on ID tabulation that comprises etc. in the login request message that has received.This registration allow/does not allow to determine that (S923) allow/do not allow to determine that (S823) is identical with the registration shown in above-mentioned Fig. 8 substantially, therefore will omit its detailed description.

If as registration allow/do not allow the result who determines and allow registration, then management server 21 sends ID tabulation and TID to service server 20, to carry out the location registration process (S1025) of user's set 10-2.

Write and register the Termination ID that from user's set 10-1, receives, the ID (S1027) that installs ID, media ID, recorder ID etc. in the record of the authenticated of service server 20 in group registration database (not shown) such as user's set 10-2.In addition, service server 20 sends registration to management server 21 and finishes notice and GID tabulation.

Note, under the situation that does not have to carry out such as the group ID of the registration of device ID or media ID, for example, service server 20 generates new group ID, and will be registered to group (S1027), but be not limited to this example such as the device ID relevant that will register and the ID of media ID with group ID.

In case confirm in login request message, to comprise information off-line, management server 21 just sends the GID tabulation that receives from service server 20 and the session id that receives from register requirement user's set 10 etc., and indication service server 20 is created pass phrases (S1031).

Service server 20 generates and comprises session id and its MAC value that receives from user's set 10-1, and also comprises GID tabulation and Termination ID and session id etc., and the registration answer message that also comprises its signature (MAC) value.In addition, 20 pairs of above-mentioned registrations answer message of service server are encoded and are converted pass phrase to.

That is to say that this pass phrase is included in the SID that comprises in the login request message, its MAC value, also has the SID and the signature that are provided with when message is answered in registration generating.The integrality of the SID that comprises in the user's set 10-2 end checking login request message, the integrality of message (comprising SID) is answered in the checking registration, and verifies whether two SID mate, thus the nonredundancy of checking message, but be not limited to this example.

Note, described the example of obtaining the MAC value of the SID that in login request message, comprises at service server 20 ends, but be not limited to this example, for example, can also obtain at user's set 10-1 end.Make generation generate the danger of SID with unauthorized manner by spoofs services server 20 obtaining of user's set 10-1 end.

Next, the pass phrase of Sheng Chenging is recorded in the removable recording medium 40 as mentioned above, and perhaps, for example the form with character, symbol etc. is printed on the print media.As shown in figure 10, the copyright management unit of user's set 10-2 receives the input of pass phrase via removable recording medium 40 or by the input block 208 that the user operates user's set 10-2, (S1033) such as the character of printing on print media with input, symbols.

In case imported pass phrase (S1033), just decode pass phrase and convert registration to and answer message (S1035) of the group registering unit 231 of user's set 10-2.

Whether Termination ID that 231 checkings of group registering unit comprise in the registration answer message of decoding and its Termination ID mate (S1037).

Next, whether 231 checkings of group registering unit have received once (S1039) about the registration answer message (answer) that user's set 10 has sent login request message once.For example, group registering unit 231 verifies whether two SID that comprise mate in message is answered in registration.

Also have, when the nonredundancy of checking message, group registering unit 231 is also based on about the MAC value of the SID that comprises in message is answered in registration and sign and verify integrality (S1039) for whether having distorted.

Note, the checking of the nonredundancy of message (S1039) is not limited to the coupling of SID, it can so that confirm whether to have the transmission/reception of other message, thereby verify nonredundancy by for example carrying out with reference to sending sign and receiving flag after the checking of the homogeny of SID.

Next, in case the checking end of group registering unit 231, the list management unit 241 of user's set 10-2 just makes the GID tabulation that comprises in decoding registration answer message effective.Among user's set 10-2 answers the registration of decoding that group ID in the GID tabulation that comprises in the message adds and the source ID that stores it into the tabulates L (S1041).Therefore, user's set 10-2 can play the distributing contents that has added its group ID.

Note, the list management unit 241 of user's set 10-2 can be based on answer the page or leaf ID that comprises in the message in the registration of obtaining by the decoding pass phrase generation group ID.

Also have, the information in the GID tabulation such as operation permission information and term of validity information etc., also stores in source ID tabulation L or another memory block by list management unit 241.

Next, group registering unit 231 abandons session id (SID) (S1043).Also have, for example, in case transmit login request message after generating session id, the ID generation unit 265 of user's set 10-1 just abandons session id (SID).Like this, according to the utilization of present embodiment synchronously/a series of processing of the group register method of session id method finish.

Note, for the group register method shown in Figure 10, be described with reference to the example of carrying out group registration with the off-line AUtomobile audio frequency device 10g PD 10b shown in Fig. 6 and Fig. 7, shown in Fig. 3 or automobile navigation apparatus (not shown), but be not limited to this example, can also carry out other user's set 10 except PC 10b and AUtomobile audio frequency device 10g with same method.

(group register method: asynchronous/the counter information method)

Next, a series of processing of the group register method of use group Accreditation System 100 will be described with reference to Figure 11.Figure 11 is the sequence chart that the group register method of synchronous/counter information method schematically is described.

Note, copyright management unit shown in Figure 11 is equivalent to comprise the entity of above-mentioned group of register device 231, list management device 241, counter 263, time point unit 264 etc., and the application shown in Figure 11 is equivalent to comprise the entity of above-mentioned message generation unit 261, register requirement detecting unit 267 etc.

At first, as shown in figure 11, user's set 10-1 is connected with service server 20 or management server 21 online (synchronously), but user's set 10-2 is off-line (asynchronous).The purpose that the group registration is shown in Figure 11 like this is to carry out the group registration of async user's device 10-2.

As shown in figure 11, in step S1101 to S1111, between the application and service server 20 of the user's set 10 of register requirement end, establish a communications link safely, and carry out authentification of user via network 30.Notice that step S1101 to S1111 is basic identical with the step S801 to S811 shown in above-mentioned Fig. 8, therefore will omit its detailed description.

In following steps S1113 to S1145, carry out the processing of actual registered user's set 10-2 in management server 21.

Particularly, at first, the application of user's set 10-1 to service server 20 request service datas (perhaps service ID) (S1113).Immediately, service server 20 returns service data (perhaps service ID) (S1115) to user's set 10-1.

Next, the application of user's set 10-1 sends service data (S1117) to the copyright management unit.

In case receive service data, the copyright management unit is just to use sending by the ID that forms with the corresponding Termination ID of user's set 10 itself, media ID etc. tabulate (S1119).Note, directly import with the corresponding ID tabulation of user's set 10-2 itself, but be not limited to this example from the input block 208 of user's set 10-1.

We will say by utilizing such as the key of AES-CBC etc. and carry out encrypt/decrypt, can read among Figure 11 by the data in [] of the copyright management unit of user's set 10-1 or user's set 10-2 and management server 21 inputs.For example, for [the ID tabulation] shown in the step S1119, have only the copyright management unit of user's set 10-1 or user's set 10-2 and management server 21 can read the ID tabulation.

Next, the message generation unit 261 of user's set 10-1 is based on the session id that receives among the above S1111, ID tabulation, TID, and the service data that is provided with for management server 21 generates login request message (S1121).Notice that login request message comprises off-line (asynchronous) information.

Next, management server 21 determines whether to allow the registration of user's set 10-2 based on ID tabulation that comprises etc. in the login request message that has received.Notice that this registration allows/does not allow to determine that (S1123) allow/do not allow definite identically with the registration shown in above-mentioned Fig. 8 substantially, so will omit its detailed description.

If as registration allow/do not allow the result who determines and allow registration, then management server 21 sends ID tabulation and TID to service server 20, with the location registration process (S1125) of the user's set 10-2 that carries out request registration.

Write and register the ID (S1127) of the user's set 10-2 that from user's set 10-1, receives in the record of the authenticated of service server 20 in group registration database (not shown) such as Termination ID, device ID, media ID, recorder ID etc.In addition, service server 20 sends registration to management server 21 and finishes notice and GID tabulation.

Note, under the situation that does not have to carry out such as the group ID of the registration of device ID or media ID, for example, service server 20 generates new group ID, and will be registered to group (S1127), but be not limited to this example such as the device ID relevant that will register and the ID of media ID with group ID.

In case confirm to comprise information off-line in login request message, management server 21 just sends from the GID tabulation of service server 20 receptions, the timestamp that oneself generates, Termination ID etc., and indication service server 20 is created pass phrase (S1131).

Service server 20 generates the registration that comprises GID tabulation, Termination ID and timestamp and answers message.In addition, service server 20 these registrations of coding are answered message and are created pass phrase.

Timestamp is generated by management server 21 or user's set 10, and we will say that two timestamps that generated by management server 21 and user's set 10 are synchronous.

Next, for example, the pass phrase of Sheng Chenging is recorded in the removable recording medium 40 as mentioned above, and perhaps the form with character, symbol etc. is printed on the print media.As shown in figure 11, the copyright management unit of user's set 10-2 receives the input of pass phrase via removable recording medium 40 or by the input block 208 that the user operates user's set 10-2, (S1133) such as the character of printing on print media with input, symbols.

In case imported pass phrase (S1133), just decode pass phrase and convert registration to and answer message (S1135) of the group registering unit 231 of user's set 10-2.

Whether Termination ID that 231 checkings of group registering unit comprise in decoding registration answer message and its Termination ID mate (S1137).

Also have, the nonredundancy checking (S1139) of message is not limited to the checking of counter information, it also can be by for example being carried out with reference to sending sign and receiving flag by group registering unit 231, so that confirm whether to have the transmission/reception of other message, so that the checking nonredundancy.

Next, in case the checking end of group registering unit 231, the list management unit 241 of user's set 10-2 just makes the GID tabulation that comprises in decoding registration answer message effective.User's set 10-2 adds and is stored in the decoding registration and answers during group ID in the GID tabulation that comprises in the message tabulates L to its source ID, thus validation (S1141).Therefore, user's set 10-2 can play the distributing contents that has added its group ID.

Next, group registering unit 231 abandons the timestamp that receives from counter unit 263.The timestamp that counter unit 263 also will generate when receiving registration answer message stores in the memory block, thereby upgrades the timestamp of having stored (S1141).

Note, at counter information is not timestamp but under the situation such as the counter information of the counter of (incremented/decremented) etc., after group registering unit 231 in-discard counter information, next counter information of counter unit 263 usefulness (for example, answering the counter information that is provided with in the message in registration) upgrades and has stored counter information in the memory block into.

Particularly, for example, under the situation of the counter that the initial value at the counter information of the counter unit 263-2 of user's set 10-1 and management server 21 is 0, increase progressively, in case management server 21 receives login request message, management server 21 just is updated to " 1 " with its counter information from " 0 ", and transmitting counter information is the registration answer message of " 1 " then.

Next, because answering the value of the counter information that is provided with in the message in registration is " 1 ", and the counter information that receives from counter unit 263-2 is " 0 ", so group registering unit 231-1 determines that it is suitable that message is answered in registration, so group registering unit 231-1 abandons its counter information " 0 " that is stored in the memory block, and be updated to the counter information " 1 " of registration answer message.Like this, utilize a series of processing of the group register method of asynchronous/counter information method to finish.

Note, for the group register method shown in Figure 11, example with reference to the group registration of carrying out off-line AUtomobile audio frequency device 10g shown in the Fig. 3 with the PD 11b shown in Fig. 6 and Fig. 7 or automobile navigation apparatus (not shown) is described, but be not limited to this example, can also carry out other user's set 10 except PC10b and AUtomobile audio frequency device 10g with same method.

Also have, as shown in figure 11, the example that generates pass phrase by service server 20 is described, but is not limited to this example.For example, can carry out generating the situation of pass phrase by management server 21.

Therefore, for according to the enrollment session in the asynchronous/session id/counter information method of present embodiment, the exchange of login request message and pass phrase is sufficient.Also have, even be under the situation of off-line at user's set 10, also can to answer message coding be that the group that pass phrase is carried out user's set 10 is registered by register.In addition, even offline user device 10 is not used, as long as it has the copyright management unit, it also can organize registration safely.

Also have,, be that the situation of PD 10b is described, but be not limited to this example user's set 10 for group register method according to present embodiment.For example, even be under the situation of cell phone 10h, PC 10a etc. at user's set 10, even perhaps under the situation such as the group registration of removable recording medium 40 grades that will carry out except user's set 10, this also can carry out.

(the group cancellation method: synchronously/the session id method)

Next, will be described the processing of logging off users device 10 the device group that has been registered to from user's set 10 with reference to Figure 12.Figure 12 schematically illustrates according to the group of the user's set 10 of present embodiment to nullify the sequence chart of handling.

Note, copyright management unit shown in Figure 12 is equivalent to comprise the entity of above-mentioned group of registering unit 231, list management unit 241, ID generation unit 265 etc., and the application shown in Figure 12 is equivalent to comprise the entity of above-mentioned message generation unit 261, register requirement detecting unit 267 etc.

At first, as shown in figure 12,, between the application and service server 20 of de-registration request end subscriber device 10, establish a communications link safely, and carry out authentification of user via network 30 at step S1201 to S 1211.

Particularly, at first, in case the register requirement detecting unit 267 of the application of user's set 10 detects de-registration request in response to user's input, data communication units 220 just sends user ID and password (S1201) to service server 20.So user ID and the password of service server 20 contrast registered in advance in database checked the user ID and the password that receive, and carried out user authentication process (S1203).

Setting up as above-mentioned check result under the situation of authentification of user, service server 20 allows login, and sends the notice (S1205) that authentification of user has been set up in expression to the application of user's set 10.Next, use to service server 20 transmission de-registration request notices (S1207).This de-registration request notice allows service server 20 know that user's set 10 visited de-registration request.Notice that nullifying requisite for group is to nullify session, and above-mentioned de-registration request notice can be omitted.

Next, service server 20 generates affairs ID (TID) (S1209), and in the application that the affairs ID that generates and URL (URL(uniform resource locator)) are sent to user's set 10 (S1211), described URL is the example of the address information of management server 21.Therefore, user's set 10 can be based on the URL that receives and access management server 21.

In following steps S1217 to S1241, carry out the processing of actual logging off users device 10.

Particularly, at first, for the corresponding service data of group ID that keeps with its, user's set 10 will with such as device ID or media ID will ineffective treatment the corresponding service data of group ID send to management server 21 (S1217) with TID.Note, for example by the user choose will ineffective treatment (cancellations) the ID such as device ID, still be not limited to this example.

Also have, the ineffective treatment of service data means user's set 10 deletions and is included in its interior group ID and/or the recorder ID (comprising media ID, device ID etc.) of source ID tabulation L.Ineffective treatment can not be play the content of having added these sources ID on user's set 10.

In case receive service data and TID, management server 21 just generates the SID that sign is nullified session.Management server 21 obtains the MAC value and it is used as signature from SID, comprise that with generation the cancellation of SID and signature begins message, sends it to user's set 10 (S1219) then.

We will say by utilizing such as the key of AES-CBC etc. and carry out encrypt/decrypt, can read among Figure 12 by the data in [] of the copyright management unit of user's set 10 and management server 21 inputs.For example, for [SID] shown in the step S1219, have only the copyright management unit of user's set 10 and management server 21 can read SID.

Next, the service data that will nullify of the application of user's set 10 begins the group registering unit 231 (S1221) that message sends to the copyright management unit with the cancellation of reception.

Group registering unit 231 is obtained the MAC value of the SID that begins to comprise in the message in the cancellation that receives, verifies then whether its value with the signature of following mates.

Next, in case group registering unit 231 confirm with corresponding group of ID of service data (perhaps service ID) in have device ID, recorder ID, media ID etc., list management unit 241 just deletion relates to device ID, recorder ID or the media ID of organizing ID, thereby makes device ID, recorder ID, media ID invalid (S1223).

In addition, obtain signature the SID that list management unit 241 is tabulated, comprised from the ID of service data, deletion, the Termination ID of user's set 10 and the service data in nullifying beginning message, then these data and signature are delivered to message generation unit 261 (S1225).

Next, message generation unit 261 sends de-registration request message (S1227) via network 30 to management server 21 based on the data that receive.Notice that online information is included in the de-registration request message.

Next, management server 21 checking itself having sent the de-registration request message (answer) that once cancellation begins message about management server 21 and whether received once (S1231) from user's set 10.For example, management server 21 verifies whether SID from the de-registration request message that user's set 10 receives and the SID that is provided with mate when sending de-registration request message.

Note, the checking of the nonredundancy of message (S1231) is not limited to the coupling of SID, it also can be by for example being carried out with reference to sending sign and receiving flag by management server 21 after the checking of the coupling of SID, so that confirm whether to have the transmission/reception of other message, thus the checking nonredundancy.

And, with above-mentioned message nonredundancy checking (S1231),, whether distorted the integrality of verifying cancellation answer message for message also based on the signature that in nullifying answer message, comprises.

Next, management server 21 abandons SID (S1233), sends ID tabulation and service data, and this organizes the cancellation of registration to service server 20 indications.

In case device ID, recorder ID, media ID that alleged occurrence is listed from the ID tabulation that management server 21 receives, service server 20, with regard to delete device ID, recorder ID or media ID, thereby make device ID, recorder ID or media ID invalid (S1237).

At this moment, the recorder ID of the user's set 10 that request is nullified is maintained in the group registration database (not shown) of service server 20, rather than deletion.Peel off content sharing when service when providing, this can prevent to register the too much user's set with the function peeled off 10 and can share the troubles of peeling off content from a large number of users device 10.

Finish in case ineffective treatment is handled (S1237), service server 20 just sends to management server 21 confirms (ACK) (S1239), and management server 21 also sends ACK (S1241) to user's set 10 in addition.Like this, according to the present embodiment utilization synchronously/a series of processing of the group cancellation method of session id method finish.

(the group cancellation method: synchronously/the counter information method)

Next, will be described the processing of logging off users device 10 the device group that has been registered to from user's set 10 with reference to Figure 13.Figure 13 schematically illustrates according to the group of the user's set 10 of present embodiment to nullify the sequence chart of handling.

Note, copyright management unit shown in Figure 13 is equivalent to comprise the above-mentioned group of entity of nullifying unit 231, list management device 241, counter 263, time point unit 264 etc., and the application shown in Figure 13 is equivalent to comprise the entity of above-mentioned message generation unit 261, register requirement detecting unit 267 etc.

At first, as shown in figure 13,, between the application and service server 20 of the user's set 10 of de-registration request end, establish a communications link safely, and carry out authentification of user via network 30 at step S1301 to S1311.

Notice that step S1301 to S1311 is basic identical with the step S1201 to S1211 shown in above-mentioned Figure 12, therefore will omit its detailed description.

In following steps S1317 to S1341, carry out the processing of actual logging off users device 10.

Particularly, at first, user's set 10 will be in the corresponding service data of group ID that its keeps, send to management server 21 (S1317) with the corresponding service data of group ID that will ineffective treatment with TID such as device ID or media ID.Note, for example by the user choose will ineffective treatment (cancellations) the ID such as device ID, still be not limited to this example.

Next, in case receive service data and TID, management server 21 stabbed with regard to the rise time.Management server 21 obtains signature from timestamp, generate to comprise that the cancellation of timestamp and signature begins message, and send it to user's set 10 (S1319).

We will say, carry out encrypt/decrypt by utilizing such as the key of AES-CBC etc., can read among Figure 13 by the data in [] of the copyright management unit of user's set 10 and management server 21 inputs.For example, for [SID] shown in the step S1319, have only the copyright management unit of user's set 10 and management server 21 can read SID.

Next, the service data that will nullify of the application of user's set 10 begins the group registering unit 231 (S1321) that message sends to the copyright management unit with the cancellation of reception.

Group registering unit 231 is obtained the MAC value of the timestamp that begins to comprise in the message in the cancellation that receives, and verifies then whether its value with the signature of following mates.

Next, in case group registering unit 231 confirm with corresponding group of ID of service data (perhaps service ID) in have device ID, recorder ID, media ID etc., list management unit 241 just deletion relates to device ID, recorder ID or the media ID of organizing ID, thereby makes device ID, recorder ID, media ID invalid (S1323).

Now, carrying out ineffective treatment (S1323) before by group registering unit 231, organizing registering unit 231 can compare with the timestamp that receives from counter unit 263 when receiving cancellation beginning message the timestamp of nullifying in the beginning message, and more recently whether the timestamp of checking counter unit 263 (perhaps upgrade).

Then, the time point of 263 reference time of counter unit dot element 264 generates timestamp, and the timestamp (S1324) that is provided with in nullifying beginning message with newly-generated update of time stamp.Notice that counter unit 263 can be stored in timestamp in the memory block with newly-generated update of time stamp.

Next, list management unit 241 was stabbed, is obtained signature the Termination ID of user's set 10 and the service data from the ID of service data, deletion tabulation, update time, and these data and signature are delivered to message generation unit 261 (S1325).

Next, message generation unit 261 sends de-registration request message (1327) via network 30 to management server 21 based on the data that receive.Notice that online information is included in the de-registration request message.

Next, management server 21 checking itself having sent the de-registration request message (answer) that once cancellation begins message about management server 21 and whether received once (S1331) from user's set 10.For example, 21 pairs of timestamps from the de-registration request message that user's set 10 receives of management server compare with the timestamp that is generated by management server 21 when receiving de-registration request message, and more recently whether checking (perhaps upgraded) by the timestamp that management server 21 generates.At the counter information except timestamp, under the situation such as the counter that increases progressively, whether group registering unit 231 its counter informations of checking answer the counter information of message less than registration, but are not limited to this example.

Note, the checking of the nonredundancy of message (S1331) is not limited to the coupling of timestamp, it also can be by for example being carried out with reference to sending sign and receiving flag by management server 21 after the checking of the coupling of timestamp, so that confirm whether to have the transmission/reception of other message, thus the checking nonredundancy.Notice that sending sign and receiving flag needs to provide in advance in management server 21.

In addition, with above-mentioned message nonredundancy checking (S1331),, whether distorted the integrality of verifying cancellation answer message for message also based on the signature that in nullifying answer message, comprises.

Next, management server 21 abandons the timestamp that receives from user's set 10.For example, management server 21 also uses the timestamp that receives from user's set 10 to upgrade the timestamp of having stored (S1332).

Next, management server 21 sends ID tabulation and the service data that will nullify to service server 20, and to the cancellation of service server 20 indication groups registration.

In case the device ID that service server 20 alleged occurrences are listed from the ID tabulation that management server 21 receives, recorder ID, media ID etc., service server 20 is with regard to delete device ID, recorder ID or media ID, thereby makes device ID, recorder ID or media ID invalid (S1337).

At this moment, the recorder ID of the user's set 10 that request is nullified is maintained in the group registration database (not shown) of service server 20, rather than deletion.Peel off content sharing when service when providing, this can prevent to register the user's set 10 that too much has the function peeled off and can share the troubles of peeling off content from a large number of users device 10.

Finish in case ineffective treatment is handled (S1337), service server 20 just sends ACK (S1339) to management server 21, and management server 21 sends ACK (S1341) to user's set 10 in addition.Like this, according to the present embodiment utilization synchronously/a series of processing of the group cancellation method of counter information method finish.

Note,, be that the example of the situation of PD 10b is described, but be not limited to this example user's set 10 for group cancellation method according to present embodiment.For example, even be under the situation of cell phone 10h, PC 10a etc. at user's set 10, even perhaps under the situation such as the group registration of removable recording medium 40 grades that will carry out except user's set 10, this also can carry out.

Therefore, nullify processing, at first carry out to nullify and handle, after this carry out cancellation and handle at service server 20 ends at user's set 10 ends for the group of user's set 10.Therefore, can avoid carrying out nullifying, but in fact also not make the group of user's set 10 register invalid situation at service server 20.

Also have, for the group cancellation method shown in Figure 12 and Figure 13, be that the example of the situation of PD 10b is described, but be not limited to this example user's set 10, also can to such as cell phone 10h, PC 10a etc. if the Nehe device carry out, as long as it is online.

Finish like this description according to the group Accreditation System of present embodiment.This system has showed following advantage.

(1) simplified group registration/group and nullified processing in necessary enrollment session/cancellation session, even so the user's set 10 to not having high throughput, also can the cancellation of execution group registration/group.

(2) by only one or the checking on another (monolateral authentication) in user's set 10 ends and management server 21 ends, can carry out in group registration/group and nullify the authentication of carrying out in necessary enrollment session/cancellation session, therefore in group registration/group is nullified, reduce the total load of user's set 10 and management server 21 at least.

(3) even be under the situation of off-line at user's set 10, when another user's set 10 access services servers 20 or management server 21 and when creating information such as pass phrase, offline user device 10 can be imported this pass phrase and the registration of execution group.

Notice that above-mentioned series of processes can be carried out by specialized hardware, also can be carried out by software.If carry out this series of processes by software, the program that then disposes this software is installed in the signal conditioning package such as multi-purpose computer or microcomputer etc., and makes signal conditioning package act as user's set 10, service server 20 and management server 21.

Can in advance program be recorded in as among hard disk drive that is built into the recording medium in the computing machine (HDD) or the ROM.

Program is not limited to be stored in the hard disk drive, can also be temporarily or storage (record) for good and all in removable recording medium such as floppy disk, CD-ROM (compact-disc ROM (read-only memory)), MO (magneto-optic) dish, DVD (digital versatile dish), disk, semiconductor memory etc.

Note, except that from so removable storage medium, being installed in the computing machine, program can also through the digital satellite broadcasting satellite from the download website wireless transmission to computing machine, perhaps be delivered in the computing machine by cable, and computing machine can be installed to the program of transmitting in such a manner among the built-in HDD via network such as the Internet.

Now, should be appreciated that, in this description, describe the treatment step of the program be used to make computing machine carry out various processing and might not handle according to the sequential of the order of process flow diagram record, can also be concurrently or carry out and handle (for example, parallel processing or handle by purpose) individually.

Though below with reference to the accompanying drawings preferred embodiment is described, the invention is not restricted to this example.Clearly, those skilled in the art can understand various changes or the change in the scope of the technological thought of claim record, and should be appreciated that those also belong within the technical scope of the present invention certainly.

Though the application that is had with reference to user's set 10 is the example that is exclusively used in the software of group registration/group cancellation the foregoing description is described, the present invention is not limited to this example.For example, it still can be carried out under this application is situation such as the software of general crawler etc.

And though the example to liking user's set 10 that reference group registration or group are nullified is described the foregoing description, the present invention is not limited to this example.For example, its still can group registration or group nullify to as if the situation of removable recording medium 40 etc. under carry out.

Though with reference to the example of unique user device 10 or 40 groups of registrations of removable recording medium has been described the foregoing description, the invention is not restricted to this example.For example, it also can in batch mode carried out under the situation to a plurality of user's sets 10 and/or 40 groups of registrations of removable recording medium.

And, though with reference under being the situation of off-line at user's set 10, user's set 10 usefulness the group register method example of importing pass phrase is described the foregoing description, the present invention is not limited to this example.For example, it also can be carried out under the situation such as one dimension bar code or two-dimentional bar code at least a of user's set 10 input characters, symbol and shape or combination.

In addition, though with reference to for the group cancellation method, user's set 10 ends at first carry out ineffective treatment and group is nullified, and the example of nullifying in service server 20 execution groups is described the foregoing description afterwards, and the present invention is not limited to this example.For example, it can also be nullified in service server 20 at first execution groups, carries out under the situation that user's set 10 execution groups are nullified afterwards.

And though the foregoing description is described with the example of offline group register method from service server 20 or management server 21 input pass phrases with reference to online user's device 10-2, the present invention is not limited to this example.For example, it also can be carried out under the situation of online user's device 10-1 input pass phrase.Note, in this case, user's set 10-2 is not connected to the network 30 that can visit such as the server of management server 21, can carry out such layout, wherein user's set 10-2 is connected with user's set 10-1 local network, and answer message by the decoding registration that pass phrase obtained and be delivered to user's set 10-2 from user's set 10-1, perhaps after user's set 10-1 carries out the nonredundancy checking etc. of message, to arrive user's set 10-2 such as the data transfer of GID, make based on the GID tabulation and in the registration of user's set 10-2 end execution group.

＜the second embodiment 〉

Next, with licence acquisition device and the licence adquisitiones described according to a second embodiment of the present invention.

(utilizing the general introduction of the copyright managing method of group management method)

To the general introduction that utilize the copyright managing method of copyright management system according to present embodiment be described.At first, will the general introduction of binding form copyright managing method be described.

According to the copyright management system of present embodiment is to be used to manage the service condition and the user mode of rights management content (after this being called " content ") and to use its contents encryption key and content service condition and user mode describe the use of control content, thereby carry out the system of copyright management, wherein in above-mentioned rights management content, carried out encryption such as the digital content of video, audio frequency etc.Below three be so necessary master data of copyright management.

(1) content

(2) content-encrypt process key (after this being called " content key ")

(3) about the service condition and the user mode of the transmission of the use of content and master data (after this being called " licence ") described.

As mentioned above, content is the set of encrypted digital content.In the scope of the service condition of describing in licence, by the deciphering of content key, such content becomes available.Necessary value when content key is to use content, and manage in the mode that is associated with licence, in each copyright management system, value is remained secret simultaneously.That describes in the licence is to use condition, is used for the transmission of the use of limiting content and above-mentioned three master datas and the user mode of content (situation) so far, and manages in copyright management system, in order to avoid be forged or distort.

Also have, the copyright management system for using such three master datas must satisfy following three conditions suitably to carry out copyright management.

(condition 1) guarantees the confidentiality (never exposed content key) of content key

(condition 2) guarantees the integrality (never distorting licence) of licence

(condition 3) guarantees the correlativity (content is relevant with content key and licence, and never exchanges this correlativity) of three master datas

In order to make the copyright management system can manipulation and corresponding various embodiments such as subscriber device type, content type, use Limit Type, for copyright management system according to present embodiment, copyright management function is regarded as the set of a plurality of basic functions, and be divided into a plurality of modules that are used for each basic function being used to carry out the copyright management unit (perhaps copyright management software) that copyright management handles in each user's set.For copyright management system, between a plurality of basic function module, exchange and handle three master datas, thereby the copyright management of carrying out content is handled.

For describing module division in more detail, at first, list all use limitation functions of copyright management unit, these use limitation functions to be divided into following two class functions.

(a) about the function of permanent preservation licence

(b) about the function of temporary transient occupancy permit

In addition, under these two general classification, from the user's that uses content viewpoint, use limitation function to decompose, so that the copyright management unit is resolved into and uses the part of the form of the corresponding module of limitation function (licence processing components) according to type of service (operating position).

Therefore, belong to the one or more of above-mentioned (a) and each licence processing components (b), can realize the content of every kind of operating position is used restriction by combination.Also have, use about the parameter of the use limitation function that is divided into each licence processing components and describe licence.Exchange the licence of description like this between the licence processing components that user's set in giving network is equipped with portablely.Therefore, the place of the use of content restriction can be dispersed among a plurality of user's sets that connect by network.

Therefore, for copyright management system according to present embodiment, copyright management unit (perhaps copyright management software) is decomposed into the part of the form of a plurality of licence processing components (basic function module), and arrange with dispersing mode, for example on network, make up these licence processing components, thereby realize the portability of the content in the network so that use.

Now, the concrete example of licence processing components and combination thereof will be described with reference to Figure 14.Figure 14 is the explanation diagrammatic sketch of the concrete example of explanation licence processing components and combination thereof.

As shown in figure 14, the

licence processing components

11,12,22 and 23 of carrying out copyright management is categorized as the preservation assembly 1 of carrying out above-mentioned functions (a) and the use assembly of carrying out above-mentioned functions (b).

Preserving assembly 1 is the licence processing components with function of permanent preservation licence, and licence 305 and content key 302 are safely stored in the memory unit.For example, preserving assembly 1 comprises the preservation assembly 11 that is used for hard disk drive (perhaps HDD) and is used for preservation assembly 12 such as the removable storage medium of semiconductor memory etc.The preservation assembly 11 that is used for HDD is saved in licence 305 and content key 302 among the HDD 111 that is built in user's set safely.Also have, the preservation assembly 12 that is used for removable storage medium is saved in the removable storage medium 40 that is installed on user's set safely with licence 305 and content key 302.Therefore, provide preservation assembly 1 to each a plurality of memory unit with different storage meanss.

Such preservation assembly 1 reads out in licence 305 and the content key of preserving corresponding in the memory unit own 302, and is sent to use assembly 2.Also have, preserving assembly 1 will write and be saved in corresponding to the memory unit own from licence 305 and the content key 302 that uses assembly 2 to transmit.

On the other hand, using assembly 2 is the licence processing components with function of temporary transient occupancy permit, and estimates licence 305 and the use of control content and the transmission of licence 305 and content key 302 that (evaluate) transmits from preserving assembly 1.For example, use assembly 1 to comprise to be used to the player module of estimating from the broadcast of preserving licence 305 that assembly 1 transmits and control content 22, be used to estimate from preserving licence 305 that assembly 1 transmits and the moving assembly 3 that moves of controlling licence 305.

Therefore, the licence 305 that uses the only interim use of assembly 2 when using content, to receive from preservation assembly 1, and can not for good and all keep (for example, being kept in the memory unit) licence 305 etc.

Like this, with the basic function of copyright management unit be divided into a plurality of preservation assemblies 1 and a plurality of use assembly 2 make these assemblies can be between these assemblies cross license 305 etc., and the use of control content.

For example, under the situation of the broadcast of control content, as shown in figure 14, preserve assembly 11 and from HDD111, read and corresponding licence 305 of content and the content key 302 that will play, and be sent to player module 22.Player module 22 is estimated the broadcast condition of describing in the licence 305 that is transmitted, and determines whether to allow the broadcast of the content that will play.If its result determines to allow to play, the then content execution decryption processing of player module 22 usefulness content key L to playing, and the feasible broadcast that will describe after a while used to carry out and play.

And, moving of control and the corresponding licence of content so that under the situation of mobile content between the user's set, as shown in figure 14, preserve assembly 11 and from HDD 111, read and corresponding licence 305 of content and the content key 302 that will play, and be sent to moving assembly 23.Moving assembly 23 is estimated the broadcast condition of describing in the licence 305 that is transmitted, and determines whether to allow moving of licence and content key 302.If its result determines to allow to move, then moving assembly 23 is sent to preservation assembly 12 with licence and content key 302.Preserving assembly 12 is saved in licence and the content key 302 that is transmitted in the removable storage medium 40.Note after this, unless special the description was called " binding (bind) " otherwise should preserve to handle.Under the situation of mobile licence 305 like this, to use by the activation of describing after a while, the content that will move also moves to removable storage medium 40 from HDD 11.Therefore, can in being installed, play another user's set of removable storage medium 40 content that will move based on licence 305.Therefore, the mobile feasible energy control content of control licence 305 and content key 302 moves.

Now the general introduction according to the copyright managing method in the copyright management system of present embodiment is described.The copyright management unit that meets this copyright managing method according to enforcements such as each subscriber device type and content types makes and will can be connected on the network in various contents that exchange between the user's set etc., thereby improves the portability of content.

(the licence host-host protocol between the assembly)

As mentioned above, for copyright management system,, can control content use by cross license and content key etc. between a plurality of licence processing components that form in part as copyright management unit 3 according to present embodiment.

At this moment, need control effectively, make and between according to the suitable licence processing components of suitable process, transmit licence and content key etc.Otherwise, exist in the danger that unauthorized ground between the licence processing components transmits licence etc. and uses content in undelegated mode.For example, if licence and content key directly are sent to another from a certain preservation assembly 11 without replication component 24 and preserve assembly 12, even it is then restricted to number of copy times as the copy condition of licence, can not carry out technology yet, thereby cause unauthorized copying of licence etc. number of copy times.

So for the copyright management unit 3 according to present embodiment, the host-host protocol etc. of regulation licence between the licence processing components is so that prevent the unauthorized transmission of licence and content key and carry out copyright management function in the mode of the mandate be sure of.

For this host-host protocol, as mentioned above, exchange comprises the message such as the data of licence and content key between the licence processing components.This host-host protocol is not stipulated the physical format of the overall message that exchanges between the assembly, but regulation is as the form of the data of message composition.The definition of data form helps guaranteeing the mutual operation among the licence processing components of different embodiments.For example, under the situation of cross license between a plurality of user's sets 10 of copyright management unit 3 etc. with different embodiments, if will be public by the data layout of copyright management unit 3 message transmitted, then the data such as licence etc. can easily exchange and need not conversion.

Notice that the physical format of message can be depending on embodiment.This makes that the embodiment of licence host-host protocol can the matching operation environment.For example, as the example of the embodiment of communication protocol, can understand realization constitutes the data of message in the mode towards row method.Also have, under situation, can understand the data that will constitute message and be input to method in the independent variable as the embodiment of the method call between the class.

It below is detailed description to the licence host-host protocol between such licence processing components.

At first, will general introduction according to the transmission of messages of present embodiment between the licence processing components be described with reference to Figure 15.Figure 15 is the explanation diagrammatic sketch of explanation according to the transmission of messages of present embodiment between the licence processing components.

As shown in figure 15, with situation about describing from transmission sources (transmitting terminal) licence processing components 31 grades (after this being called " transmission sources the assembly 31 ") transmission of licence and the corresponding licence 305 of this licence and content key 302 to (after this being called " transmission objectives assembly 32 ") such as transmission objectives (receiving end) licence processing components 32 of licence.Note, transmission sources assembly 31 and transmission objectives assembly 32 can be any of preserving in assembly (or storage unit) 1 or the use assembly 2, but should note, if transmission sources assembly 31 is to preserve assembly 1, then transmission objectives assembly 32 is to use assembly 1, on the other hand, if transmission sources assembly 31 is to use assembly 2, then transmission objectives assembly 32 is to preserve assembly 1.

For the licence host-host protocol according to present embodiment, the message 400 of tentation data form is transferred to transmission objectives assembly 32 from transmission sources assembly 31.This message 400 comprise transport-type identification information 310, component property information 320, the licence 305 that will transmit and with the licence 305 corresponding content keys 302 that will transmit.Transmit in the licence 305 and content key 302 that this message 400 makes transport-type identification information 310 and component property information 320 to add to will to transmit, so the mode that this four number is associated is according to this transmitted.

Transport-type identification information 310 is the information of the transport-type that is illustrated in the licence 305 between transmission sources assembly 31 and the transmission objectives assembly 32 (transmission/demonstration/renewal 1/ is upgraded 2/ and upgraded 3).Also have, component property information 320 is the information of the attribute (use/preservation) of expression transmission sources assembly 31.Below describe each information in detail.

(transport-type identification information)

Figure 16 A to Figure 16 C is the explanation diagrammatic sketch of explanation according to the licence transport-type of present embodiment between assembly.Shown in Figure 16 A to Figure 16 C, according to the object of the transmission of licence 305 and the mutual operation between transmission sources assembly 31 and the transmission objectives assembly 32, the transport-type of licence 305 is divided three classes: " transmission ", " demonstration " and " renewal ".In addition, " renewal " be categorized as " upgrading 1 (request is upgraded) ", " upgrading 2 (transmitting more new permit) " and " upgrading 3 (update notifications is finished) ".Therefore, licence 305 has five kinds of transport-types.Below every kind of transport-type is described.

Shown in Figure 16 A, " transmission " is the transmission of the original (original copy) of licence 305.Licence 305 from transmission sources assembly 31 " transmission " under the situation of transmission objectives assembly 32, the licence 305 that transmission sources assembly 31 deletion itselfs keep also is transferred to transmission objectives assembly 32 with the original 305a of licence 305.Therefore, licence 305 can move to transmission objectives assembly 32 from transmission sources assembly 31.

Also have, shown in Figure 16 B, " demonstration " is the transmission of the copy (duplicating copy) of licence 305.With licence 305 from transmission sources assembly 31 " demonstration " under the situation of transmission objectives assembly 32, transmission sources assembly 31 is transferred to transmission objectives assembly 32 with the copy 305b of licence 305, keeps licence 305 simultaneously and does not delete it.Therefore, the licence 305 of transmission sources assembly 31 maintenances can be shown on the transmission objectives assembly 32.

Also have, shown in Figure 16 C, " renewal " is the transmission that is used to upgrade the licence 305 that transmission sources assembly 31 has.Under the situation of " renewal " licence 305, at first, transmission sources assembly 31 is shown to transmission objectives assembly 32 with the copy 305b of the licence 305 that it has, and carries out update request (" upgrading 1 ").Then, transmission objectives assembly 32 upgrades the licence 305 that transmitted and the original 305a of the licence 305 that upgrades is sent to transmission objectives assembly 32 (" upgrading 2 ").In addition, transmission objectives assembly 32 is shown to transmission objectives assembly 32 with the copy 305b of the licence 305 of renewal, and carries out to upgrade and finish notice (" upgrading 3 ").Therefore, upgraded the licence 305 that has before the transmission sources assembly 31.

The transport-type that therefore, five kinds of licences 305 are arranged between transmission sources assembly 31 and transmission objectives assembly 32.Correspondingly, for licence host-host protocol, be provided with five kinds of transport-type identification informations 320 according to these five kinds of transport-types according to present embodiment.

Figure 17 illustrates the relation between transport-type ID and the message, and described transport-type ID is the example according to the transport-type identification information 320 of embodiment.As shown in figure 17, distribute five kinds of transport-type ID (0x01,0x02,0x03,0x04,0x05) accordingly with above-mentioned five kinds of transport-types (transmit, show,

upgrade

1,2,3).Transport-type ID is the ID that is used to identify transport-type, and is the example of transport-type identification information.

The transmission sources assembly 31 that comprises the such transport-type ID in the message 400 makes licence 305 to transmit with the transport-type of the licence 305 that comprises in the message 400 of indicating.

Corresponding with included transport-type ID, message 400 is divided into five classes.Particularly, the message 400 that comprises transport-type ID " 0x01 " is the message that is used to transmit the original of licence.Also have, the message 400 that comprises transport-type ID " 0x02 " is the message that is used to show the copy of licence.Also have, the message 400 that comprises transport-type ID " 0x03 " is the message that is used to carry out the update request of licence.Also have, the message 400 that comprises transport-type ID " 0x04 " is the message that is used to transmit the licence of renewal.Also have, the message 400 that comprises transport-type ID " 0x05 " is the message of finishing that is used to notify the licence renewal.

The corresponding transport-type identification information 310 of difference (transport-type ID) with the transport-type of licence has more than been described.With the transmission transport-type identification information of licence 305, make transmission objectives assembly 32 can identify the transport-type of licence 305, and can carry out licence 305 according to the transport-type that is identified and handle by transmission sources assembly 31.

(component property information)

The licence processing components is divided into two classes according to its attribute usually, and it will be described in detail after a while.One class is the preservation assembly 1 (such as preserving assembly 11) that is used for licence 305 is saved in memory unit, and another kind of is the use assembly 2 (such as player module 22) that is used for occupancy permit 305.This attributive classification is used to forbid that the licence processing components with same alike result interconnects.

Component type attribute information 320 is the information of the attribute of expression transmission sources assembly 31, particularly, is that expression transmission sources assembly 31 belongs to the information that assembly 1 also is to use assembly 2 of preserving.Each licence processing components has the component type attribute information 320 under its, and when creating message, comprises its component type attribute information 320 in the message.

Relation between Figure 18 illustrated components Property ID and the message, described component property ID is the example of component property information 320.As shown in figure 18, give and preserve assembly 1 allocation component Property ID " 0x01 ", and give and use assembly 2 allocation component Property IDs " 0x02 ".That is to say, belong to the

preservation assembly

11,12 of preserving assembly 1 ... have identical component property ID " 0x01 ", and belong to the broadcast of using assembly 2, move, copy, rent and answer

assembly

22,23,24,25 and 26 and have identical component property ID " 0x02 ".

Correspondingly, preserve assembly 1 if transmission sources assembly 31 belongs to, then the message 400 from 31 transmission of transmission sources assembly comprises component property ID " 0x01 ".On the other hand, use assembly 2 if transmission sources assembly 31 belongs to, then the message 400 from 31 transmission of transmission sources assembly comprises component property ID " 0x02 ".

Comprise in the message 400 that the component type attribute information 320 that is made of such component property ID etc. allows the attribute of transmission objectives assemblies 32 sign transmission sources assemblies 31, and check whether transmission sources assembly 31 has different attributes with transmission objectives assembly 32.

(system architecture)

Next, will be used for being described with reference to Figure 19 correspondence according to the one-piece construction that present embodiment adopts the licence of the copyright management system of binding management method to obtain system 200.Notice that Figure 19 schematically illustrates the integrally-built block scheme of obtaining system 200 according to the licence of present embodiment.

As shown in figure 19, for example, according to the licence of present embodiment obtain system 200 by (after this, being referred to as " user's set 10 " sometimes), service server 20, management servers 21 such as a plurality of user's

set

10a, 10b, interconnect the network 30 (comprising home network 30a and local line 30b) of those devices and be used for forming at the removable recording medium 40 of exchange such as the data of content, licence etc. between these devices.

User's set 10 is the various signal conditioning packages that can use content, and is the topology example according to licence treating apparatus of the present invention.In Figure 19, example as this user's set 10, illustration notebook type or desktop PC (after this, be called PC) 10a, mancarried device (after this, being called PD) 10b, home server 10c, television equipment 10d, record/play-back device 10e, fixed-audio player 10f, AUtomobile audio frequency device 10g, cell phone 10h etc. such as CD, HD or DVD recorder/player etc. as the portable content playing device.Yet, user's set 10 is not limited to this example, for example, can also be by various signal conditioning packages, such as any computer installation, formation such as portable terminal, digital video camera, family game control desk, intelligent appliance such as PDA (personal digital assistant) etc.

For example, user's set 10 has the licence of obtaining the licence that uses content from management server 21 and service server 20 and obtains function.After a while description is obtained the details of the method for licence.

User's set 10 is not limited to above-mentioned licence and obtains function, for example, user's set 10 (for example also has the content functions of use, content play, preservation, move, merge, divide, change, copy, rent and answer function etc.), content based on licence is used control function, content management function (for example, the content of content-based ID, licence, content key etc. search and delete function), by peel off, the content creating function etc. of record etc. certainly.

In user's set 10, comprise that the device (for example, PC 10a, PD 10b, home server 10c etc.) by the communication function of network 30 can be connected with the server communication such as service server 20 etc.For such user's set 10, for example, can download and install software or the copyright management software that is used for content distribution service from service server 20.

Also have, for user's set 10, for example, can be configured like this, wherein by writing down (audio recording of oneself, videograph etc.) certainly or peeling off and wait new content creating, it can be recorded in memory storage or the removable recording medium 40.Note, mean that record utilizes the imaging device/collection audio unit that comprises in user's set 10 itself and the audio frequency etc. that carries out imaging/sound collecting from record, as the video/audio numerical data.Also have, peel off to mean and be extracted in the digital content (voice data or video data etc.) that the storage medium such as the music CD that is used for software, video DVD, CD-ROM etc. writes down, convert thereof into the file layout that computing machine can be handled, and it is recorded in memory storage or the removable recording medium 40.

For obtaining system 200 according to the licence of present embodiment, first is characterised in that, as long as user's set 10 is connected to management server 21 or service server 20 (online) by network, even user's set 10 with low relatively especially processing power, for example especially under the situation such as PD 10b or cell phone 10h etc., user's set 10 or removable recording medium 40 etc. also can utilize the communication protocol with light processing load to obtain licence safely.

Also have, obtain system 200 for licence, second is characterised in that, even be not connected at user's set 10 under the situation of network (off-line), as an alternative, another user's set 10 also can carry out license request to management server 21 grades, and offline user device 10 and/or removable recording medium 40 can be obtained licence thus.

As shown in figure 19, obtain under the situation of licence at online PD 10b, PD 10b itself can access management server 21 to obtain licence, yet on the other hand, as an alternative, off-line AUtomobile audio frequency device 10g can ask for permission to demonstrate,prove to management server 21 grades and obtain licence by PC 10a, and via print media 41 or removable storage medium 40 etc. pass phrase is input to AUtomobile audio frequency device 10g.To describe obtaining of licence in detail after a while.

Notice that above-mentioned visit is referred to as information processing, for example, the use of system, be connected to server, reference document, preservation file, deleted file, change file etc.

Management server 21 comprises and is used for transmitting such as by the encrypted content of service server 20 management, the licence of service condition of describing content and the function of security information that is used for the encrypted content key etc. of decryption content to user's set 10.For distribution of contents, service server 20 is also carried out user management, group management, license management etc.

Service server 20 and management server 21 are made up of computer installation that comprises server capability etc.Notice that for example, one of service server 20 and management server 21 comprise www server, group management sever, content distributing server, certificate management server, bill server etc. at least.

For example, Distributor provides the server of content distribution service, and in response to the dispense request from user's set 10, via network 30 to user's set 10 distributing contents.

For example, if distribution of music content, then Distributor is configured to provide EMD (electronic music distribution) the EMD server of service.In this case, for example, content distributing server uses the music content that will distribute such as compressing and coding system compression and the coding of ATRAC3 (senior conversion acoustic coding) (registered trademark) or MP3 (mpeg audio layer-3) etc., use such as the encryption system of DES (data encryption system) etc. it is encrypted, then it is distributed to user's set 10.

Also have, Distributor can also be configured to be used to provide the content of establishment to use the server of serving, and is used to manage by the use of user's set 10 by the content of establishments such as peeling off, write down certainly.

In these cases, Distributor is described the licence and the content key that is used for decryption content of the service condition of institute's content creating to user's set 10 distributions.Therefore, user's set 10 can be based on licence that obtains from Distributor and content key, and use (broadcast, copy etc.) self by the content of creating such as peeling off.

Notice that in the example of Figure 19, service server 20 or management server 21 are sent to user's set 10 by the branch on network 30 content, licence, content key etc. are provided, but be not limited to this example.For example, can provide content, licence, content key etc. to user's set 10 by removable storage medium such as DVD, CD, MD, semiconductor memory etc.

Network 30 is the order wire networks that are used for connecting communicatedly user's set 10 and service server 20/ management server 21.For example, network 30 is formed such as the dedicated network of WAN, LAN, IP-VPN etc., and can is wired or wireless by the common network such as the Internet, the Internet VPN, telephone network, satellite communication network etc.

In addition, such network 30 comprises the private network such as home network 30b and local line 30b.For these, from the viewpoint of copyright management, private network is a plurality of user's sets 10 interconnective network in privately owned usable range of content shared.

For example, the home network 30a in the user family shown in Figure 19 has interconnective PC 10a, home server 10c, television equipment 10d, recorder/player 10e and fixed-audio player 10f.In them, for example, home server 10c has concentrator function, router feature, gateway function etc., the user's set 10 of management in user family and the communication between the open air.

Removable recording medium 40 is the removable medias that can store such as the various data of content, licence content key etc., its example comprises the various CDs such as DVD-R, DVD-RW, DVD-RAM, CD-R, CD-RW, magneto-optic disk etc., such as the disk of floppy disk, hard disk etc., and various semiconductor memory.Notice that for example, removable recording medium 40 can be the recording medium with copyright management function of the copy that is used to use encryption key to come limiting content or broadcast etc.

At first, will describe in detail about structure with reference to Figure 20 according to the PC10a of present embodiment.Figure 20 is the block scheme that schematically illustrates according to the hardware configuration example of the PC 10a of present embodiment.

As shown in figure 20, for example, PC 10a comprises control module (CPU (CPU (central processing unit))) 101, ROM (ROM (read-only memory)) 102, RAM (random access memory) 103, host bus 104, bridge 105, external bus 106, interface 107, input block 108, output unit 110, memory storage (HDD) 111, driver 112, connectivity port 1120 and communication unit 115.Notice that the PC 10a shown in Figure 20 has and the PC 10a identical functions structure shown in above-mentioned Fig. 4 usually, therefore will omit its detailed description.

Next, will hardware configuration according to the PD 10b of present embodiment be described with reference to Figure 21.Notice that Figure 21 is the block scheme that schematically illustrates according to the hardware configuration example of the PD 10b of present embodiment.

As shown in figure 21, for example, PD 10b comprises control module (perhaps CPU) 201, flash memory 202, RAM 203, bus 206, input block 208, display device 210, HDD 211, driver 212, demoder 213, communication unit 215, audio output circuit 216, telepilot 218 and earphone 219.Notice that except that having driver 212 and not having the data processing unit 204, the PD 10b shown in Figure 21 has and the PD 10b identical functions structure shown in above-mentioned Fig. 6 usually, therefore will omit its detailed description.

Now, the HDD among Figure 21 211 is the data storage devices according to the example of the memory unit of the PD 10b of present embodiment.For example this HDD 211 is made of the hard disk drive (HDD) of the memory capacity with tens of GB magnitudes, and memory contents, licence, content key, such as the various data and the various data of the program that will carry out by control module 201.PD 10b with this HDD 211 is configured to write down the content recorder/player with play content.Therefore, except that the content that provides from PC 10a via removable storage medium 40, also can be stored in the HDD 211 and play from the content of receptions such as PCa through local line 30b.Yet PD 10b is not limited to this example, can also be configured to not have the content playing device of HDD 211.In this case, PD 10b only can carry out the content of record in the removable storage medium 40 and read and play (can not write down).

Driver 212 is recording medium reader/writers, and it is built among the PC 10b.Driver 212 is to/record from the various removable storage medium 40 of the above-mentioned PD of being loaded into 10b/play various data, such as content, licence, content key etc.

Though the example PC 10a of user's set 10 and the hardware configuration example of PD 10b are described with reference to Figure 20 and Figure 21, but the user's set 10 that is to use content is not limited to above-mentioned PC 10a and PD10b, can also be configured to home server 10c, television equipment 10d, record/play-back device 10e, fixed-audio player 10f, AUtomobile audio frequency device 10g, cell phone 10h and various other electronic appliance and signal conditioning package.Correspondingly, user's set 10 can have the hardware configuration unique to each device, and carries out processing according to hardware configuration.

But should be noted that user's set 10, it is to handle the licence treating apparatus that licence is controlled with the use of carrying out content, has above-mentioned copyright management unit (copyright management module, perhaps copyright management program).Particularly, user's set 10 has the memory unit that is used to keep the copyright management program, and the processor that is used to carry out this copyright management program, and sends the message of the card that asks for permission to management server 21, whether checking is legal from the answer message of management server 21, and obtains licence.

Also have, except that obtaining licence, for example user's set 10 can also determine whether by the service condition of estimating licence to allow to use content from one's body at it, and in the use of determining to carry out under the condition that allows to use content.

Though the example with reference to PD 10b is described the user's set shown in Figure 21 10, but user's set 10 is not limited to this example, for example can be the Any user device 10 that has the reduction process ability and have communication capacity, such as cell phone 10h.

Next, the functional structure of the copyright management unit (perhaps copyright management program) 3 that will be had the user's set 10 according to present embodiment with reference to Figure 22 is described.The block scheme of the functional structure of Figure 22 copyright management unit that to be explanation had according to the user's set 10 of present embodiment.

Particularly, as shown in figure 22, copyright management unit 3 is connected to the application 4 that is used to use content.This application 4 has user interface capabilities and the actual function of using content.

Particularly,, use 4 and use request, and on display device etc., show various function screens from user's received content as user interface capabilities.Also have, as the content functions of use, for example, use the broadcast of 4 execution contents, mobile content etc. between (for example, between PC 10a and the PD 10b) between a plurality of user's sets 10 or the memory unit (for example, HDD 111 and removable storage medium 40) in same user's set 10.By the use of copyright management unit 3 controls by the content of this application 4.

Use 4 and also have request detection unit 81 and request message generation unit 82.Request detection unit 81 detects licence by the input signal from input block 108 or input block 208 and obtains request.In case detect such request, just submit to licence to obtain the generation of request message to assembly management unit 5.

Request message generation unit 82 obtains counter information (perhaps timestamp) that is generated by counter assembly 84 and/or the session id that is generated by ID formation component 83, and generation is used for obtaining request message to the licence of server requests licence.

Also have, request message generation unit 82 can be based on determining that from the response of communication unit 115 that user's set 10 had or communication unit 215 user's set 10 is online (synchronously) states that are connected to network 30, still be not connected to off-line (asynchronous) state of network 30, and add licence to as status information and obtain request message.

Though will describe application 4 with reference to the example of the specific program that uses copyright management system according to present embodiment, use 4 and be not limited to this example, for example also can under situation, carry out such as the application of general crawler etc.

Copyright management unit 3 has the assembly 1 of preservation, use assembly 2, ID formation component 83, counter assembly 84, checking assembly 85 and time point assembly 86.Note, preserve assembly 1 and use assembly 2 to be equivalent to the licence processing components, will describe in detail after a while.

In order between the licence processing components, to exchange safely about licence (their licence, content key etc.) information, for example the integrality of the assembly that can be had by 21 pairs of copyright management unit 5 of management server through network etc. is verified, pre-treatment as the licence service condition in the evaluation/confirmation licence processing components, perhaps as independent processing, user's set 10 can be obtained licence in legal mode thus.

ID formation component 83 generates the session id that sign obtains session, and this obtains session is to send message to obtain licence and the reception a series of exchanges about the answer message of this request message for management server 21.

Counter assembly 84 generates counter information.For example, counter assembly 84 generate by 1 counter information that increases progressively as " 1,2,3 ... " (increasing progressively), and generate by 1 counter information that successively decreases as " 90,89,88 ... " (successively decreasing).Notice that the counter information of generation is stored in the memory unit such as the cache memory of user's set 10, up to being updated to next counter information.

Also have, counter assembly 84 is not limited to the situation of the counter information that generates the above-mentioned counter information that increases progressively or successively decrease, can also refer to time point by 86 generations of time point assembly, and generation is as the timestamp of " YYYYMMDDhhmmss " form of counter information, such as " 13: 50: 15 on the 22nd August in 2005 ".Note, also store the timestamp that generates, up to using next update of time stamp.

For example after card that management server 21 is asked for permission, message is answered in 85 checkings of checking assembly.Also have, itself be off-line (asynchronous) and import from the outside under the situation of pass phrase, checking assembly 85 these pass phrases of decoding at user's set 10.Details will be described after a while.

Time point assembly 86 can keep precise time (standard time), and can export the time point of " YYYYMMDDhhmmss " form in response to external request.Notice that time point assembly 86 can also be arranged as and itself not maintain the standard the time, but via network 30 by NTP access time server etc., to obtain the standard time point.

For example, can perhaps can be configured preserving the hardware that assembly 1, use assembly 2, ID formation component 83, counter assembly 84, checking assembly 85 etc. are configured to have above-mentioned each function by making above-mentioned each functional programs of computer realization be installed in the user's set 10.

Next, assembly management unit 5 will be described.Assembly management unit 5 has according to the content use that comes self-application 4 asks to use necessary licence processing components and other assembly (ID formation component 83 is to checking assembly 85) to carry out the function that the content use is controlled.

At first, assembly management unit 5 is identified for the licence processing components that content is used control and treatment.Particularly, in case receive content and use request from using 4, assembly management unit 5 just is identified for carrying out preservation assembly 1 and other assembly (ID formation component 83 is to checking assembly 85) that the use assembly 2 of the use control of the related content that receives request, the use that is used to preserve content are controlled necessary licence and content key.Send the loading indication so that load (activation) to these assemblies of determining.

Then, assembly management unit 5 indicates loading preservation assemblies or request message formation component with establishment message, and obtains message.At this moment, the licence of storage in preserving assembly 1 and invalid (deletion) of content key can be indicated in assembly management unit 5.For example, under the situation of mobile content, assembly management unit 5 will be indicated and be preserved licence and the content key that the assembly deletion is preserved, and send then to be used for message transmitted.

In addition, assembly management unit 5 is to using assembly 2 to transmit from preserving the message that assembly 1 is obtained, and perhaps the licence of obtaining from management server 21 to 85 transmission of checking assembly is obtained answer message.

After licence was obtained the checking of answering message, checking assembly 85 was obtained answer message to using assembly 2 to transmit licence.The details of this checking will be described after a while.

After the confirmation of message (comprise licence obtain answer message) legitimacy, use assembly 2 to estimate the service condition of describing in the licences, determine whether to allow the use of content, if allow to use, then indication is used and is used this content.Noting, is under the situation of moving assembly 23 grades using assembly 2, in order to move corresponding licence and content key so that mobile content concomitantly sends a message to other and preserves assembly 1.

Like this, assembly management unit 5 makes a plurality of licence processing components carry out the essential function according to the use request of content, and makes these licence processing components cross license and content keys, thereby the content that control is asked is used.

Then, as shown in figure 23, the assembly management unit 5 that copyright management unit 3 has above-mentioned a plurality of licence processing components and controls these licence processing components.The licence processing components is the module that forms as the part according to the increment (use limitation function) of dynamic process licence.These licence processing components have use for control content (play, move etc.) and handle the function of licence and content key (evaluation, transmission etc.), and in memory unit the function of preservation and administration of licences and content key safely.

In copyright management unit 3, based on the control of assembly management unit 5 and between the licence processing components, exchange safely about licence (licence itself, content key etc.) information, thereby transmission and processing are used for the proper data of suitable licence processing components, thereby the use of control content.

As mentioned above, the licence processing components is categorized as and preserves assembly 1 and use assembly 2.

At first, will describe preservation assembly 1 in detail.Preserving assembly 1 has and stores licence and content key in the memory unit function safely.Particularly, preserving assembly 1 execution is saved in licence and content key such as the processing in the memory unit of HDD 111 or removable storage medium 40 etc., so that in (this processing is called binding), guarantee the correlativity (above-mentioned condition 3) of content key, licence and content in the integrality (above-mentioned condition 2) of guaranteeing confidentiality of content key (above-mentioned condition 1) and licence.Also have, preserve assembly 1 and carry out except the binding of licence and content key and handle, from memory unit, read the processing of licence and content key or rewrite or deletion is kept at processing licence in the memory unit and the content key etc.

Execution read memory unit preservation assembly 1 depend in part on the enforcement environment, therefore give its each the memory unit with different storage meanss is provided.Therefore, basically, a kind of preservation assembly 1 is corresponding with a kind of memory unit.More specifically, corresponding to the removable storage medium 40 of every type and specification (for example, general semiconductor storer, semiconductor memory, CD, DVD etc.) with copyright management function, provide and preserve assembly 1, and, provide and preserve assembly 1 also corresponding to the dissimilar HDD (HDD 111 of PC 10a, the HDD 211 of PD 10b etc.) that user's set 10 had.

In the example shown in Figure 23, preservation assembly (binding 1) corresponding to HDD is shown, be used for licence and content key are saved in the licence/content key storage unit 6a that is made of HDD, and, be used for licence and content key are saved in the licence/content key storage unit 6b that is made of removable storage medium 40 corresponding to the preservation assembly of removable storage medium (binding 2) 12.

Preserve assembly 1 to preserve licence and content key (that is, binding), therefore can not distort licence or content key or not leak licence or content key with the mode that memory unit is associated safely.

Next, will describe use assembly 2 in detail.Use assembly 2 have with licence and content key and in case of necessity also with content as input, estimate the function of the use of the various service conditions (the broadcast condition of Miao Shuing, mobile condition etc. after a while) described in the licence and control content.Also have, depend on the type of using assembly 2,, have the function of the licence of new permit more and output renewal according to the use control of content.

Also have, for example, use assembly 2 to be connected to the content storage unit 7 that constitutes by HDD, removable storage medium 40 etc., and can from content storage unit 7, read and contents processing in case of necessity.On the other hand, use assembly 2 directly from licence/content key storage unit 6, not obtain licence and content key, must be by preserving assembly 1.In other words, using assembly 2 itself not have from memory unit reads licence and content key and licence and content key is saved in function the memory unit, but handle and in licence/content key storage unit 6, read and, and where necessary also to the preservation assembly 1 transmission permission card and the content key that will be written in the memory unit from the licence and the content key of licence/content key storage unit 6 transmission by preserving assembly 1.

The as many use assembly 2 of type of service (operation) with content is provided at least.Below, the type of the type of service of description content.For example, the content type of service comprises: return to " copy " of another memory unit, in rented content between user's set 10 or the memory unit " renting ", the content that will rent between user's set 10 or memory unit as " broadcast " of audio frequency or video output content, at mobile content between user's set 10 or the memory unit (transmission original) " moving ", the content copy (transmission copy) that will preserve in a memory unit hirer (renter) " returning " etc.

Notice that for example, above-mentioned " broadcast " type can comprise normal speed playback, normal speed playback, fast forward playback, fast-forward playback, F.F., rewinding, time-out, searching operation etc.Be also noted that above-mentioned " renting " is equivalent to meet SDMI " Check Out " (checking out), and " returning " is equivalent to meet SDMI " Check In " (registration).

For each use (each operation) of controlling such content, for example, player module 22, moving assembly 23, copy assembly 24 are provided the samely, rent assembly 25 and return assembly 26 with the concrete example of the use assembly 2 of present embodiment.

For the broadcast of control content, player module 22 is estimated the broadcast condition of describing in the licence, and the broadcast of control content.According to the Play Control of the renewal that relates to licence with do not relate to the Play Control of the renewal of licence, two class player modules 22 are provided, it will be described in detail after a while.

Also have, for moving of control content, for moving of control content, moving assembly 23 estimate with the corresponding licence of content in the mobile condition described, and the licence of control licence and content key and content key between user's set 10 or memory unit move (moving of original).For example, allowing by moving assembly 23 under the situation of mobile licence and content key between source memory unit and the target memory unit, also allowing the mobile and corresponding content of licence between source memory unit and target memory unit.

Also have, for the copy of control content, the copy condition of describing in 24 evaluations of copy assembly and the corresponding licence of content, and be controlled at copy licence and content key (moving of copy) between user's set 10 or the memory unit.For example, allowing copy assembly 24 under the situation of copy licence and content key between source memory unit and the copy targeting memory unit, also allow copy and the corresponding content of licence between copy source memory unit and copy targeting memory unit.

Also have, for renting of control content, rent assembly 25 estimate with the corresponding licence of content in the leasing conditions for tanker described, and be controlled at and rent licence and content key between user's set 10 or the memory unit.For example, renting the source memory unit and renting under the situation of renting licence and content key between the target memory unit allowing to rent assembly 25, also allowing renting the source memory unit and renting and rent between the target memory unit and the corresponding content of licence.

Also have, for returning of control content, return assembly 26 estimate with the corresponding licence of content in the condition of returning described, and be controlled at user's set 10 or return the source memory unit and return and return licence and content key between the target memory unit.For example, returning the source memory unit and returning under the situation of returning licence and content key between the target memory unit allowing to return assembly 26, also allowing returning the source memory unit and returning and return between the target memory unit and the corresponding content of licence.

For the copyright management unit, user's set 10 is estimated service condition and the user mode of describing in the licence, determine whether to satisfy service condition, only determining to satisfy under the situation of service condition, the just processing of the use (broadcast, copy etc.) of executable content and licence (preserve, copy, move etc.).For example, allowing under the situation of play content, user's set 10 is desirable as to be used for the key of enabling decryption of encrypted content key, and uses obtained key to come the enabling decryption of encrypted content key, and use the content key of deciphering to come the enabling decryption of encrypted content, thereby play content.

Also have, user's set 10 can be via network 30, home network 30a, local line 30b or removable storage medium 40 and other user's set 10 exchanging contents and licence (move, copy, rent, return).Yet notice that for exchanging contents and licence between user's set 10, the mobile condition described etc. must be estimated in copyright management unit 3 in licence, and must the permission content and licence mobile etc.

Describe five kinds with reference to Figure 23 like this and used assembly 2.Note, use the use assembly of handling 2 about carrying out similar content, can be according to depending on that owing to embodiment the part of environment provides a plurality of use assemblies 2.For example, can provide a plurality of player modules 22 for every kind of demoder.

Shown in describing among Figure 14, by such as above-mentioned preservation assembly 1 with use licence processing components that assembly 2 forms the use of content to be controlled by cross license and content key.For cross license and content key in this way, the licence processing components exchanges messages according to certain protocol.As mentioned above, message comprises

(1) licence,

(2) content key,

(3) the transport-type identification information of the transport-type (that is, type of message) of expression licence, and

(4) be illustrated in the component property information of the attribute of the licence processing components on the transmission sources of message.

In these, (3) transport-type identification information and (4) component property information are to guarantee licence and component keys suitably are transferred to the data of suitable licence processing components.

(about data)

Now, be used for the general data that licence is obtained system 200 with describing briefly according to present embodiment.

" session id " is the ID of sign such as the session that obtains session etc., is used to guarantee the nonredundancy for the transmission of messages/reception of management server 21.When session is activity, keeps session id safely so that preventing the third party distorts, and when conversation end, it is abandoned.

" Termination ID " be, for example, sign is to the ask for permission ID of the request user's set 10 that card obtains of service server 20 or management server 21.

" media ID (perhaps information recording carrier ID) " is the ID of sign hard disk drive (HDD), removable recording medium 40 etc., and is the ID that in fact provides the object of licence.

" recorder ID (perhaps signal conditioning package ID) " for example is, the ID of identification record device, and be the ID of the object (subject) that in fact provides licence.

" device ID (perhaps signal conditioning package ID) " for example is, the ID of sign player device, and be the ID that in fact provides the object of licence.

" license information " comprise, for example, has the licence, transport-type identification information, component property information, content key of the information of the term of validity that can use with effective means about content or number of times etc.

" licence MAC (the perhaps MAC of license information) " is the MAC value of the license information in above-mentioned (7) that obtained.

" signature " for example is, signed data.

" service ID " is the ID of identification service.And service ID is relevant with group ID.

Though above-mentioned data are main data of using, obtain system 200 according to the licence of present embodiment and can use other data to carry out, be confined to this data and have more than.

(the licence adquisitiones: synchronously/the session id method)

Next, will a series of processing that use such as above-mentioned licence is obtained the licence adquisitiones of system 200 be described with reference to Figure 24.Figure 24 is the sequence chart that the licence adquisitiones of synchronous/session id method schematically is described.

At first, as shown in figure 24,, between the application 4 of the user's set 10 of obtaining the request end and service server 20, establish a communications link safely, and carry out authentification of user via network 30 at step S2401 to S2411.

Particularly, at first,, use 4 and just send user ID and password (S2401) to service server 20 in case the request detection unit 81 of the application 4 of user's set 10 detects the request of obtaining in response to user's input.So user ID and the password of service server 20 contrast registered in advance in database checked the user ID and the password that receive, and carried out user authentication process (S2403).

Setting up under the situation of authentification of user as above-mentioned check result, service server 20 allows login, and sends the notice (S2405) that authentification of user has been set up in expression to the application 4 of user's set 10.Next, application 4 sends licences to service server 20 and obtains request notice (S2407).This licence is obtained request notice allows service server 20 know that user's set 10 visited licence and obtained request.Notice that obtaining requisite for licence is to obtain session, and above-mentioned licence is obtained the request notice and can be omitted.

Next, service server 20 generates affairs ID (TID) (S2409), the application 4 that the affairs ID that generates and URL (URL(uniform resource locator)) are sent to user's set 10 then, and described URL is the example (S2411) of the address information of management server 21.Therefore, user's set 10 can be based on the URL that receives and access management server 21.

At following steps S2413 to S2441, carry out licence from management server 21 actual storage to user's set 10 and/or the processing of removable recording medium 40.

Particularly, at first, the application 4 of user's set 10 to service server 20 request service datas (perhaps service ID) (S2413).Immediately, service server 20 returns service data (perhaps service ID) (S2415) to user's set 10.

Next, the application 4 indication copyright management unit 3 of user's set 10 generate the licence of demonstrate,proving that is used to ask for permission and obtain request message (S2417).

Obtain request message in case receive licence, ID formation component 83 just generates the session id (perhaps SID) that sign obtains session.The SID that generates is sent to and uses 4 (S2419).

We will say, carry out encrypt/decrypt by utilizing the key such as AES-CBC etc., can read among Figure 24 by the data in [] of the copyright management unit 3 of user's set 10 and management server 21 inputs.For example, for [SID] shown in the step S2419, have only the copyright management unit 3 of user's set 10 and management server 21 can read SID.

Next, use the TID that receives among 4 request message generation unit 82 dialogue-based ID, the above S2411, service data, it Termination ID and be used to preserve the preservation target information (media ID, device ID etc.) of the licence of having accepted and the generation licence is obtained request message, and send it to (S2421) in the management server 21.Notice that licence is obtained request message and comprised online information as status information.Generate Termination ID etc. by user's set 10.

Next, management server 21 determines whether to allow to obtain licence (S2423) based on obtain the preservation target information (for example, media ID) that comprises in the request message at the licence that has received.For example, this is obtained permission/do not allow to determine (S2423) and confirms to preserve target information whether cancel (revoked).Note, can omit this permission/do not allow to determine (S2423).

If allow to obtain as obtaining permission/do not allow the result who determines, then management server 21 sends TID to service server 20, to carry out the processing (S2425) of preserving the target store licenses specifying.

Service server 20 generates and will be stored in such as the license information in the storage target of user's set 10 (licence, content key), and license information is sent to management server 21 (S2429).

In case obtaining at licence, confirmation comprises online information in the request message, session id that management server 21 just receives based on the license information that receives from service server 20 with from user's set 10 etc. and generate licence and obtain answer message, and send it to user's set 10 (S2431).If confirm to comprise online information in licence is obtained request message, then management server 21 does not generate licence and obtains answer message, but makes the information that service server 20 is created such as pass phrases, and it will be described after a while.

As shown in figure 24, for example, the signature that comprises in licence is obtained request message is the MAC value such as the data of Termination ID, license information, media ID (perhaps installing ID, recorder ID etc.) and session id etc., but is not limited to this example.Can verify that by this signature licence obtains the integrality of answering message.

Obtain answer message in case receive licence, the application 4 of user's set 10 just is not delivered to it copyright management unit 3 (S2433) with not doing any change.Notice that for example, application 4 can not read in licence and obtain the information that comprises in the answer message, such as " SID ".

The checking of checking assembly 85 is from using 4 licences that receive and obtain the Termination ID of request message and whether (perhaps it) Termination ID when sending licence and obtain request message mating (S2435).

Next, the checking of checking assembly 85 has sent once licence about user's set 10 and obtains the licence of request message and obtain and answer message (answer) and whether received once (S2437).For example, verify that assembly 85 checking licences are obtained the SID that answers in the message and whether the SID that ID formation component 83 generates when the transmission licence is obtained request message mates.Note, this checking is to obtain necessary licence at licence to obtain the authentication of carrying out in the session, and can carry out (monolateral authentication) by the checking of only or another in user's set 10 ends and management server 21 ends, therefore in obtaining, reduced by licence the total load of user's set 10 and management server 21 at least.

Note, the checking of the nonredundancy of message (S2437) is not limited to the coupling of SID, it also can so that confirm whether to have the transmission/reception of other message, thereby verify nonredundancy by for example carrying out with reference to sending sign and receiving flag after the checking of the coupling of SID.In this case, distribute predetermined memory block to sending sign and receiving flag.

Also have, with above-mentioned message nonredundancy checking (S2437), answer the signature that comprises in the message based on obtaining at licence, whether authentication unit 85 has also been distorted for message is verified that licence obtains the integrality of answering message.

Next, in case the checking of the checking assembly 85 of user's set 10 finishes, answer message is just obtained to using assembly 2 to transmit licence in assembly management unit 5.Use assembly 2 (moving assembly 23 etc.) to answer the component property information that comprises in the message and transport-type identification information and estimate licence and obtain condition based on obtaining at licence, preserving the license information that assembly 1 will comprise licence, content key etc. immediately stores in the memory block of preserving target (media ID, device ID etc.) (S2439).Like this, user's set 10 can be play and the corresponding distributing contents of license information.

Also have, will obtain the removable storage medium 40 of answering message or being delivered to user's set 10 or conduct preservation target individually from service server 20 with licence associated content and licence.

Next, the ID formation component 83 of copyright management unit 3 is discarded in the session id (SID) that generates among the step S2419 (S2441).Like this, according to the present embodiment utilization synchronously/a series of processing of the licence adquisitiones of session id method finish.

Note, for the licence adquisitiones shown in Figure 24, the example that obtains as the licence of the PD 10b of user's set 10 with reference to execution is described, but is not limited to this example, can also carry out other user's set 10 except PD 10b with same method.

And, for the licence adquisitiones shown in Figure 24 according to present embodiment, being included in licence with reference to the license information that comprises licence and content key obtains in the message and the example that sends is described, but be not limited to this example, can also carry out such layout, wherein, for example, obtain the MAC value (licence MAC) of license information, and licence MAC is included in licence obtains and answer in the message and send.In this case, obtain answer message with licence and send licence and content key discretely.

(the licence adquisitiones: synchronously/the counter information method)

Next, will a series of processing that use such as above-mentioned licence is obtained the licence adquisitiones of system 200 be described with reference to Figure 25.Figure 25 is the sequence chart that the licence adquisitiones of synchronous/counter information method schematically is described.

At first, as shown in figure 25,, between the application 4 of the user's set 10 of obtaining the request end and service server 20, establish a communications link safely, and carry out authentification of user via network 30 at step S2501 to S2511.Notice that details is basic identical with the step S2501 to S2511 shown in above-mentioned Figure 24, therefore will omit its detailed description.

At following steps S2513 to S2543, carry out licence from management server 21 actual storage to user's set 10 and/or the processing of removable recording medium 40.

Particularly, at first, the application 4 of user's set 10 to service server 20 request service datas (perhaps service ID) (S2513).Immediately, service server 20 returns service data (perhaps service ID) (S2515) to user's set 10.

Next, use 4 request message generation unit 82 based on the TID that in step S2511, obtains, service data, it Termination ID and be used for the preservation target information (media ID, install ID etc.) of the licence that storage (preservations) accepts and the generation licence is obtained request message (S2521) when license request receives, and send it to management server 21 (S2521).

Next, management server 21 determines whether to allow to obtain licence (S2523) based on obtain the preservation target information (for example, media ID) that comprises in the request message at the licence that has received.For example, whether this obtains permission/do not allow to determine (S2523) and confirms to preserve target information and cancel.Note, can omit this permission/do not allow to determine (S2523).

If obtain permission/do not allow the result who determines and allow to obtain licence as licence, then management server 21 sends TID and timestamps to service server 20, to carry out the processing (S2525) of preserving target place store licenses specifying.

Service server 20 generates and will be stored in such as the license information in the storage target of user's set 10 (licence, content key), and license information is sent to management server 21 (S2529).

Management server 21 generates licence based on the TID that receives from service server 20 etc. and obtains answer message, obtains to licence and answers message and add timestamp, and send to user's set 10 (S2531).By management server 21 or 10 rise times of user's set stamp, we will say that the timestamp that is generated by management server 21 and user's set 10 is synchronous.

For example, the signature that comprises in licence is obtained request message is the MAC value such as the data of Termination ID, license information, media ID (perhaps installing ID, recorder ID etc.), timestamp etc., but is not limited to this example.Can verify that by this signature licence obtains the integrality of answering message.

Obtain answer message in case receive licence, the application 4 of user's set 10 just is delivered to it copyright management unit 3 (S2533).Note, for example, use 4 and can not read and be included in licence and obtain the information of answering in the message, such as " timestamp ".

The checking of checking assembly 85 is from using 4 licences that receive and obtain the Termination ID of request message and whether (perhaps it) Termination ID when sending licence and obtain request message mating (S2535).

Next, the checking of checking assembly 85 has sent once licence about user's set 10 and obtains the licence of request message and obtain and answer message (answer) and whether received once (S2537).For example, 85 pairs of licences of checking assembly are obtained the timestamp of answering in the message and are obtained the timestamp of answering 84 generations of message hour counter assembly at the reception licence and compare, and more recently whether the timestamp of checking counter assembly 84 (perhaps upgrade).Notice that for the counter information except timestamp, such as the situation of the counter that increases progressively etc., the counter information whether checking assembly 85 its counter informations of checking answer message less than registration still is not limited to this example.Note, this checking is to obtain necessary licence at licence to obtain the authentication of carrying out in the session, and can carry out (monolateral authentication) by only one or checking on another in user's set 10 ends and management server 21 ends, therefore in licence is obtained, reduce the total load of user's set 10 and management server 21 at least.

Note, the checking of the nonredundancy of message (S2537) is not limited to the checking of timestamp, it also can be by for example being carried out with reference to sending sign and receiving flag by checking assembly 85 after the checking of timestamp, so that confirm whether to have the transmission/reception of other message, thus the checking nonredundancy.In this case, distribute predetermined memory block to sending sign and receiving flag.

Also have, with above-mentioned message nonredundancy checking (S2537), answer the signature that comprises in the message based on obtaining at licence, whether checking assembly 85 has also been distorted for message is verified that licence obtains the integrality (S2537) of answering message.

Next, in case the checking of the checking assembly 85 of user's set 10 finishes, answer message is just obtained to using assembly 2 to transmit licence in assembly management unit 5.Use assembly 2 (moving assembly 23 etc.) to answer the component property information that comprises in the message and transport-type identification information and estimate licence and obtain condition, preserve the license information that assembly 1 will comprise licence, content key etc. immediately and store in the memory block of preserving target (media ID, device ID etc.) (S2539) based on obtaining at licence.Like this, user's set 10 can be play and the corresponding distributing contents of license information.

Next, the counter assembly 84 of copyright management unit 3 abandons the timestamp that is stored in the memory block, and is updated to newly-generated time counter (receiving the time counter that generates when licence is obtained answer message) (S2543).Like this, according to the present embodiment utilization synchronously/a series of processing of the licence adquisitiones of counter information method finish.

Also have, for synchronously/and the licence adquisitiones of counter information method, reference count information is that the example of timestamp is described, but is not limited to this example, for example, can be to guarantee to increase under the situation of counter etc. of (perhaps reducing) to carry out also at counter information.

Particularly, for example, under the situation of the counter that the initial value at the counter information of user's set 10 and management server 21 is 0, increase progressively, in case management server 21 receives licence and obtains request message, management server 21 just is updated to " 1 " with its counter information from " 0 ", and to send counter information be that the licence of " 1 " is obtained answer message.

Next, because obtaining the value of answering the counter information that is provided with in the message at licence is " 1 ", and the counter information that receives from counter assembly 84 is " 0 ", so checking assembly 85 determines that it is suitable that message is answered in registration, so what checking assembly 85 abandoned it is stored in counter information " 0 " in the memory block, is updated to the counter information " 1 " that licence is obtained answer message then.

Above-mentioned according to present embodiment synchronously/session that obtains of counter information method is restricted to that licence is obtained request message and licence is obtained transmission/receptions of answering message, therefore reduced the processing of transmission/reception on the network and loaded.In addition, under session id method situation, not at server end but generate the SID that sign obtains session at user's set 10 ends.Under the situation of counter information method, when the transmission licence is obtained request message, need not add counter information at user's set 10 ends.That is to say, can not be that very high user's set 10 (cell phone 10h etc.) is obtained licence by processing power.

Note, for the licence adquisitiones shown in Figure 25 according to present embodiment, be that the example of PD 10b is described, but be not limited to this example, can also carry out other user's set 10 except PD 10b with same method with reference to user's set 10.

Also have, for the licence adquisitiones shown in Figure 25 according to present embodiment, being included in licence with reference to the license information that comprises licence and content key obtains in the message and the example that sends is described, but be not limited to this example, can also carry out such layout, wherein, for example, obtain the MAC value (licence MAC) of license information, and licence MAC is included in licence obtains and answer in the message and send.In this case, obtain answer message with licence and send licence and content key discretely.

(licence adquisitiones: asynchronous/the session id method)

Next, will a series of processing that use such as above-mentioned licence is obtained the licence adquisitiones of system 200 be described with reference to Figure 26.Figure 26 is the sequence chart that the licence adquisitiones of asynchronous/session id method schematically is described.

At first, as shown in figure 26, user's set 10-1 is connected with service server 20 or management server 21 online (synchronously), and user's set 10-2 is off-line (asynchronous).The purpose that the group registration is shown in Figure 26 like this is that the licence of carrying out async user's device 10-2 is obtained.

As shown in figure 26,, between the application 4 of the user's set 10-1 of representative of consumer device 10-2 and service server 20, establish a communications link safely, and carry out authentification of user via network 30 at step S2601 to S2611.Notice that step S2601 to S2611 is basic identical with the step S2401 to S2411 shown in above-mentioned Figure 24, therefore will omit its detailed description.

At following steps S2613 to S2643, carry out the processing of store licenses on user's set 10-2 and/or removable recording medium 40.Note, can once store a plurality of licences.

Particularly, at first, the application 4 of user's set 10-1 to service server 20 request service datas (perhaps service ID) (S2613).Immediately, service server 20 returns service data (perhaps service ID) (S2615) to user's set 10.

Next, the application 4 indication copyright management unit 3 of user's set 10 generate the licence of demonstrate,proving that is used to ask for permission and obtain request message (S2617).

Obtain request message in case receive licence, ID formation component 83 just generates the session id (perhaps SID) that sign obtains session.The SID that generates is sent to and uses 4 (S2619).

Next, the TID that receives among the request message generation unit 82 dialogue-based ID of the application of user's set 10-1, the above S2611, service data, with corresponding Termination ID of user's set 10-2 and the preservation target information (media ID, device ID etc.) that is used for when license request receives (S2601), preserving the licence of having accepted, generate licence and obtain request message, and send it to management server 21 (S2621).Notice that licence is obtained request message and comprised off-line (asynchronous) information.Also have, though not shown in the accompanying drawings, the MAC value of obtaining from SID can be included in licence at least and obtain the request message.

Note, for example, the Termination ID of the user's set 10-2 that in step S2601, accepts, device ID and direct input block 208 inputs such as media ID that also have the removable recording medium 40 that loads at user's set 10-2 from user's set 10-1, but be not limited to this example.

Next, management server 21 determines whether to allow to obtain licence (S2623) based on obtain the preservation target information (for example, media ID) that comprises in the request message at the licence that has received.For example, whether this obtains permission/do not allow to determine (S2623) and confirms to preserve target information and cancel.Attention can be omitted this permission/do not allow to determine (S2623).

If allow to obtain as obtaining permission/do not allow the result who determines, then management server 21 sends TID and pass phrase (S2625) is created in indication to service server 20.

Service server 20 generates licence and obtains answer message, and it comprises from the session id and the MAC value thereof of user's set 10-1 reception and also comprises license information and Termination ID and session id thereof etc.The above-mentioned licence of service server 20 codings is obtained answer message, and converts pass phrase to.

That is to say that this pass phrase is included in licence and obtains SID, its MAC value that comprises in the request message and generating SID and the signature that is provided with when message is answered in registration.The integrality of the SID that the checking of user's set 10-2 end comprises in login request message, the integrality of message (comprising SID) is answered in the checking registration, and verifies whether two SID mate, thus the nonredundancy of checking message, but be not limited to this example.

Note, described the example of obtaining the MAC value of the SID that in licence is obtained request message, comprises at service server 20 ends, but be not limited to this example, for example, can also obtain at user's set 10-1 end.Make existence generate the danger of SID with unauthorized manner by spoofs services server 20 obtaining of user's set 10-1 end.

Next, the pass phrase of Sheng Chenging is recorded in the removable recording medium 40 as mentioned above, and perhaps, for example the form with character, symbol etc. is printed on the print media.As shown in figure 26, the copyright management unit 3-2 of user's set 10-2 receives the input (S2633) of pass phrase via removable recording medium 40 or by the input block 208 that the user operates user's set 10-2, the character of printing on print media with input, symbol etc.

The pass phrase and convert licence to and obtain and answer message (S2635) in case input pass phrase (S2633), the checking assembly 85 of user's set 10-2 are just decoded.

Whether 85 checkings of checking assembly obtain the Termination ID and its Termination ID that are provided with in the request message at the licence of having decoded mates (S2637).

Next, the checking of the checking assembly 85 of copyright management unit 3-2 has sent once licence about user's set 10 and obtains the licence of request message and obtain and answer message (answer) and whether received once (S2639).For example, as mentioned above, whether checking assembly 85 checking licences are obtained two SID that answer in the message and are mated.Note, this checking is to obtain necessary licence at licence to obtain the authentication of carrying out in the session, and can carry out by only one or checking (monolateral authentication) on another in user's set 10 ends and management server 21 ends, therefore in obtaining, reduced by licence the total load of user's set 10 and management server 21 at least.

Also have, when the nonredundancy of checking message, checking assembly 85 also verifies that for whether having distorted licence obtains the integrality (S2639) of answering message based on signature.

Note, the checking of the nonredundancy of message (S2639) is not limited to the coupling of SID, and can so that confirm whether to have the transmission/reception of other message, thereby verify nonredundancy by for example after the checking of the coupling of SID, carrying out with reference to sending sign and receiving flag.

Next, in case the checking of the checking assembly 85 of user's set 10-2 finishes, answer message is just obtained to using assembly 2 to transmit licence in assembly management unit 5.Use assembly 2 (moving assembly 23 etc.) to answer the component property information that comprises in the message and transport-type identification information and estimate licence and obtain condition, preserve the license information that assembly 1 will comprise licence, content key etc. immediately and store in the memory block of preserving target (media ID, device ID etc.) (S2641) based on obtaining at licence.Like this, user's set 10-2 or removable recording medium 40 can be play and the corresponding distributing contents of license information.

Also have, will be delivered to user's set 10-2 or preserve the removable storage medium 40 of target as licence from service server 20 through removable storage medium 40 individually with the licence associated content.

Next, the ID formation component 83 of copyright management unit 3 is discarded in the session id (SID) that generates among the step S2619 (S2643).Like this, utilize a series of processing of the licence adquisitiones of asynchronous/session id method to finish according to present embodiment.

Note, for the licence adquisitiones shown in Figure 26, the example that obtains with reference to the licence of carrying out off-line AUtomobile audio frequency device 10g with the PD 10b shown in Figure 16 A to Figure 16 C or auto navigation (not shown) is described, but be not limited to this example, can also carry out other user's set 10 except PD 10b and AUtomobile audio frequency device 10g or removable recording medium 40 with same method.

Also have, as shown in figure 26, the example that generates pass phrase by service server 20 is described, but is not limited to this example.For example, can carry out such layout, wherein generate pass phrase by management server 21.

(licence adquisitiones: asynchronous/the counter information method)

Next, will a series of processing that use such as above-mentioned licence is obtained the licence adquisitiones of system 200 be described with reference to Figure 27.Figure 27 is the sequence chart that the licence adquisitiones of asynchronous/counter information method schematically is described.

At first, as shown in figure 27, user's set 10-1 is connected with service server 20 or management server 21 online (synchronously), and user's set 10-2 is off-line (asynchronous).It is that the licence of carrying out async user's device 10-2 is obtained that the purpose that licence obtains is shown in Figure 27 like this.

As shown in figure 27,, between the application 4 of the user's set 10-1 of representative of consumer device 10-2 and service server 20, establish a communications link safely, and carry out authentification of user via network 30 at step S2701 to S2711.Notice that step S2701 to S2711 is basic identical with the step S2401 to S2411 shown in above-mentioned Figure 24, therefore will omit its detailed description.

At following steps S2713 to S2741, carry out the processing of store licenses on user's set 10-2 and/or removable recording medium 40.Note, can once store a plurality of licences.

Next, the request message generation unit 82 of the application of user's set 10-1 is based on the TID that receives among the above S2711, service data, with the corresponding Termination ID of user's set 10-2 and preserve the preservation target information (media ID, device ID etc.) of the licence of having accepted and generate licence and obtain request message when license request receives (S2701), and sends it to management server 21 (S2721).Notice that licence is obtained request message and comprised off-line (asynchronous) information.

Note, for example, the media ID of the Termination ID of the user's set 10-2 that accepts in step S2701, device ID and the removable recording medium 40 that loads at user's set 10-2 etc. are directly from input block 208 inputs of user's set 10-1, but are not limited to this example.

Next, management server 21 determines whether to allow to obtain licence (S2723) based on obtain the preservation target information (for example, media ID) that comprises in the request message at the licence that has received.For example, whether this obtains permission/do not allow to determine (S2723) and confirms to preserve target information and cancel.Note, can omit this permission/do not allow to determine (S2723).

If allow to obtain licence as obtaining permission/do not allow the result who determines, then in case confirm to obtain and comprise information off-line in the request message, just send TID and timestamps to service server 20 at licence, and indication establishment pass phrase (S2725).

Service server 20 generates and will be stored in such as the license information in the storage target of user's set 10 (licence, content key), and the generation licence is obtained answer message, it comprises license information, such as the preservation target information of Termination ID, media ID etc., also comprise signature.The service server 20 above-mentioned licence of also encoding is obtained and is answered message and convert pass phrase to.

Next, for example, the pass phrase of Sheng Chenging is recorded in the removable recording medium 40 as mentioned above, and perhaps the form with character, symbol etc. is printed on the print media.As shown in figure 27, the copyright management unit 3-2 of user's set 10-2 receives the input (S2733) of pass phrase via removable recording medium 40 or by the input block 208 that the user operates user's set 10-2, the character of printing on print media with input, symbol etc.

The pass phrase and convert licence to and obtain and answer message (S2735) in case input pass phrase (S2733), the checking assembly 85 of user's set 10-2 are just decoded.

Next, the checking assembly 85 of copyright management unit 3-2 verifies whether obtain the Termination ID and its Termination ID that are provided with in the request message at the licence of having decoded mates (S2737).

Next, the checking of the checking assembly 85 of copyright management unit 3-2 has sent once licence about user's set 10 and obtains the licence of request message and obtain and answer message (answer) and whether received once (S2739).For example, checking assembly 85 pairs of licences are obtained the timestamp of answering in the message and are obtained and answer the timestamp that message hour counter assembly 84 generates and compare receiving licence, and more recently whether the timestamp of checking counter assembly 84 (perhaps upgrade).

Also have, with above-mentioned message nonredundancy checking, whether checking assembly 85 has also been distorted based on signature and for message is verified that licence obtains the integrality (S2639) of answering message.

Note, the checking of the nonredundancy of message (S2639) is not limited to the checking of timestamp, also can be by for example after the checking of timestamp, carrying out with reference to sending sign and receiving flag by checking assembly 85, so that confirm whether to have the transmission/reception of other message, thus the checking nonredundancy.

Next, in case the checking of the checking assembly 85 of user's set 10-2 finishes, answer message is just obtained to using assembly 2 to transmit licence in assembly management unit 5.Use assembly 2 (moving assembly 23 etc.) to answer the component property information that comprises in the message and transport-type identification information and estimate licence and obtain condition, preserve the license information that assembly 1 will comprise licence, content key etc. immediately and store in the memory block of preserving target (media ID, device ID etc.) (S2741) based on obtaining at licence.Like this, user's set 10-2 or removable storage medium 40 can be play and the corresponding distributing contents of license information.

Also have, will be delivered to user's set 10-2 or as the removable storage medium 40 of the preservation target of licence via removable storage medium 40 grades from service server 20 individually with the licence associated content.

Next, abandon the time counter that the counter assembly 84 by copyright management unit 3 generates.Attention is not a timestamp but under the situation such as the counter information of (incremented/decremented) counter etc., after in-discard counter information, counter assembly 84 is updated to next counter information (S2743) at counter information.With same method, for example after the process time of scheduled volume, management server 21 is refresh counter information (S2747) also.Like this, according to utilizing of present embodiment asynchronous/a series of processing of the licence adquisitiones of counter information method finish.

Note, for the licence adquisitiones shown in Figure 26 and Figure 27, with reference to being PD 10b to user's set 10 and being described for the example that off-line AUtomobile audio frequency device 10g or auto navigation (not shown) exequatur are obtained, but be not limited to this example, can also carry out other user's set 10 except PD 10b and AUtomobile audio frequency device 10g or removable recording medium 40 with same method.

The session needs transmission/reception licence of obtaining of above-mentioned asynchronous/counter information method according to present embodiment is obtained request message and pass phrase.Also have, even under the situation of user's set 10 or removable recording medium 40 off-lines, user's set 10 or removable recording medium 40 can be that pass phrase is obtained licence by registering the answer message coding also.In addition, as long as offline user device 10 has copyright management unit 3, even without using 4, it also can obtain licence safely.

(about the license transfer between the user's set 10)

As shown in figure 28, licence can be delivered to receiving end user's set 10 from transmitting terminal user's set 10.Notice that the details of the license transfer shown in Figure 28 are almost with above-mentioned to obtain the processing of licence from server identical, therefore with detailed.

Can be with the license transfer that obtains from management server 21 to another user's set 10, therefore can the more flexible and binding of mode exequatur efficiently.

That is to say that user's set 10 can be via removable storage medium 40 mutual exchanging contents, licence, content key etc., and need not by network 30.Also have, can carry out such layout, wherein this removable storage medium 40 is inserted into the content that is installed in StoreFront etc. and sells in the terminal (not shown), so that storage is operated the content bought, licence etc. according to the user in removable storage medium 40.Like this, can give content that other user's set 10 provides purchase etc. via removable storage medium 40.

The example with reference to the application of the copyright management of binding method is described obtaining system 200 according to the licence of present embodiment, but be not limited to this example, can also be arranged as and obtain system 200 by the licence of the copyright management of as shown in figure 29 employing group management method and form.The group management method copyright management is the playing system of in service server 20 or management server 21 multiple arrangement that each user had being carried out group registrations and being controlled at the content on the device of organizing registration based on the expression source ID that the source is provided of content and source ID tabulation by the user.

Notice that above-mentioned processing series can be carried out by specialized hardware, also can be carried out by software.If carry out a series of processing by software, the program that then disposes this software is installed in the signal conditioning package such as multi-purpose computer or microcomputer etc., and makes signal conditioning package act as user's set 10, service server 20 and management server 21.

Note, except that from so removable storage medium, being installed in the computing machine, program can also through the digital satellite broadcasting satellite from the download website wireless transmission to computing machine, the network that perhaps passes through such as LAN (LAN (Local Area Network)) or the Internet is delivered in the computing machine by cable, and computing machine can be installed to the program of transmitting in such a manner among the built-in HDD.

Now, should be appreciated that, in this description, describe the treatment step of the program make computing machine carry out various processing and might not handle according to the sequential of the order of process flow diagram record, and the processing that comprises concurrently or carry out individually (for example, parallel processing or handle by purpose).

Also have, program can be by single Computer Processing, or can press the dispersing mode processing by a plurality of computing machines.

Though preferred embodiment below has been described with reference to the drawings, and the present invention is not limited to this example.Clearly, those skilled in the art can understand in the scope of the technological thought of claim record and carry out various changes or change, and should be appreciated that those also belong within the technical scope of the present invention certainly.

Though the application that is had with reference to user's set 10 is the example that is exclusively used in the software that licence obtains the foregoing description is described, the present invention is not limited to this example.For example, this still can carry out under application is situation such as the software of general crawler etc.

Though with reference to the example that obtains a licence the foregoing description is described, the present invention is not limited to this example.For example, this still can be stored in batches in licence being stored in each user's set 10 and/or removable storage medium 40 or with a plurality of licences under the situation in user's set 10 or the removable storage medium 40 and carry out.

Also have, though with reference to the example that at user's set 10 is under the situation of off-line, user's set 10 usefulness licence adquisitioneses are imported pass phrase the foregoing description is described, the present invention is not limited to this example.For example, this can also carry out under the situation of at least a combination (such as one dimension bar code or two-dimentional bar code) of user's set 10 input characters, symbol and shape.

Also have, though utilize off-line licence adquisitiones from the example of service server 20 or management server 21 input pass phrases the foregoing description to be described with reference to offline user device 10-2, the present invention is not limited to this example.For example, this also can carry out under the situation of offline user device 10-1 input pass phrase.Note, in this case, user's set 10-2 is not connected to the network 30 that can visit such as the server of management server 21, can carry out such layout, wherein user's set 10-2 is connected with user's set 10-1 local network, obtain answer message by the decoding licence that pass phrase obtained and be delivered to user's set 10-2 from user's set 10-1, perhaps after the checking of the nonredundancy of the message that user's set 10-1 carries out etc., to make and preserve license information such as the data transfer of license information etc. to user's set 10-2 at user's set 10-2 end.

＜the three embodiment 〉

Next, will the time point setting device and the time point method to set up of a third embodiment in accordance with the invention be described.

(system 300 being set) about time point

At first, the one-piece construction of the system that is provided with according to the time point of present embodiment will be described with reference to Figure 30.Notice that Figure 30 illustrates that schematically the time point according to present embodiment is provided with the integrally-built block scheme of system 300.

As shown in figure 30, according to the time point of present embodiment be provided with system 300 at least by a plurality of

signal conditioning package

1101a, 1101b ..., 1101n (after this can be referred to as " signal conditioning package 1101 "),

time point server

1131a, 1131b ..., and network 1103 formations that interconnect these devices.

Signal conditioning package 1101 has the communication function that enables to be connected to network 1103 and transmission/reception data, also has the time point function that keeps the time in the signal conditioning package 1101, and it will be described after a while.

More specifically, for example, signal conditioning package 1101 can be by such as the computer installation of personal computer (no matter being notebook type or desktop), PDA (personal digital assistant), portable video player/register, such as the portable audio player/register of IC register, formations such as imaging device, household game control desk, VCR, CD or DVD recorder/player, radio device, cell phone, PHS, intelligent appliance such as digital camera or video recorder etc.

Also have, signal conditioning package 1101 is not limited to above-mentioned functions, for example, but also record/broadcast such as the content-data of video of in being equivalent to the memory storage of internal HDD, storing or audio frequency.

Notice that signal conditioning package 1101 can receive the distribution of foregoing data from the Distributor (not shown) that is connected to network 1103, and can play the content-data of distribution.

Time point server (for example, the time point device) 1131 is in response to from the request such as the client computer of signal conditioning package 1101, and output is used to be provided with the time point information of time point.Time point information is wherein to be provided with accurately and the reliable information of time point; For example, Japan standard time.

For example, time point server 1131 is can be to keep the device of correct time with the same mode of atomic clock.Note, exist a plurality of time point servers 1131 (1131a, 1131b ...) situation under, can between time point server 1131, share time point information via network 1103, so time point is synchronous.

Signal conditioning package 1101 is via 1103 access time of network point server 1131, in case receive the time point of output from time point server 1131, signal conditioning package 1101 just is provided with its time point based on this time point information.

Above-mentioned visit is referred to as and is used for via network or the information processing of process information in device certainly, such as using system, be connected to server, reference document, preservation file, deleted file, change file etc.

Above-mentioned time point can be the date form such as " YYYYMMDD ", and form in the time of perhaps can being the date such as " YYYYMMDDhh " perhaps can be the date Hour Minute Second form such as " YYYYMMDDhhmmss ".

Whether expired the time point of signal conditioning package 1101 management be the term of validity that is used for confirming describing in the licence, serve as the material that determines whether to allow the play content data important information.

Network 1103 generally is the public network such as the Internet that connects via ADSL (asymmetrical digital subscriber line) or FTTH methods such as (family expenses optical fiber), but also comprises the close network such as WAN, LAN, IP-VPN etc.Also have, connect medium and be not limited to cable or wireless, as use FDDI (optical fiber distributing data interface) fiber optic cables etc., use Ethernet (registered trademark) concentric cable or twisted-pair cable, meet the wireless etc. of IEEE 802.11b, also comprise satellite communication network.

For time point system 300 is set with such structure, signal conditioning package 1101 with reference to according to it the setting of time point precision information the term of validity, predetermined time interval or for example when the download content data etc., and under the situation that the term of validity has been expired, from time point server 1131 time of reception dot informations, thus can signal conditioning package 1101 times that keep be set to reliable time point.Note, will describe the time point precision and the term of validity after a while.

(about signal conditioning package 1101)

Then, will describe structure in detail with reference to Figure 31 according to the signal conditioning package 1101 of present embodiment.Figure 31 is the block scheme that schematically illustrates according to the structure of the signal conditioning package 1101 of present embodiment.

As shown in figure 31, for example, signal conditioning package 1101 comprises control module 1102, storer 1104, secure information storage unit 1105, input block 1106, output unit 1108, communication unit 1110, memory storage 1114 and time point administrative unit 501.

Control module (perhaps CPU) 1102 plays calculation processing apparatus and control device, the processing of each unit in can also control information treating apparatus 1101.Also have, control module 1102 will be set to time point unit 1181 from the time point of time point server 1131.

For example, storer 1104 is made of RAM, ROM, cache memory etc., and have temporary transient storage about the function of the various data of the processing on the control module 1102, be used for the running program of control module 1102 etc.

Secure information storage unit 1105 is to be used to store the memory unit of (security information) for information about that need guarantee confidentiality and integrity.Particularly, for example, secure information storage unit 1105 has the nonvolatile memory of tamper-evident structure, but is not limited to this example.

In addition, for example, tamper-evident structure mean have make the LSI be difficult to carry out the user analyze, to the device of the circuit/equipment of the analysis of its operation etc., can prevent to distort inside information and forgery thus.

Notice that for example, the security information of storage is the time point precision information and conditional information is set in secure information storage unit 1105, but is not limited to this example, for example can store conditional information is set in storer 1104.In the case, store with the MAC that conditional information is set conditional information is set.

For example, input block 1106 by such as the functional unit of mouse, keyboard, touch-screen, pushbutton switch, handle etc. and the input control circuit that is used to generate the input signal that will output to control module 1102 etc. constitute.The user of signal conditioning package 1101 operates this input block 1106, so that handle operation etc. to signal conditioning package 1101 various data of input and indication.

For example, output unit 1108 is by constituting such as the display device of CRT display device, LCD (LCD) device, lamp etc. and such as the audio output device of loudspeaker etc.For example, these output unit 1108 exportable in progress content-datas.

Communication unit 1110 is communication interfaces, is made of for example order wire, telecommunication circuit, communicator etc.This communication unit 1110 can be via the various data of network 1103 exchange such as time point information, control signal etc. between such as other external device (ED) of signal conditioning package 1101 and time point server 1131 etc.

Memory storage 1114 is the devices that are used to store data, is made of for example hard disk drive, flash memory etc., and can stores various data such as program, content-data etc.

Also have, these memory storage 1114 storages and signal conditioning package 1101 corresponding device ID (for example, Termination ID) own, for example.Device ID is unique identifier of distributing to such as each device of signal conditioning package 1101 grades, can install ID identification information treating apparatus 1101 uniquely by this thus.

Also have, memory storage 1114 will be used 503 and be installed in wherein.This application 503 has user interface capabilities.

Particularly, use 503 and accept request that time point is provided with, on display device etc., show various operations screens, as user interface capabilities from the user.

Also have, use 503 and have request detection unit 1189, as the function that detects the request that is used for the time point information that time point is provided with.

Request detection unit 1189 and the cooperation of user profile function, to detect direct request to time point information from the user, with the own request time dot information of predetermined time interval, so that detect request, and for example with reference to the term of validity of describing in the conditional information is set and finds under its over and done with situation, detection still is not limited to these examples to the request of time point information.

Though will be that the example that is exclusively used in the program of time point setting is described with reference to the application 503 according to present embodiment, the present invention be not limited to this example.For example, this can be to carry out under the situation such as the program of general crawler etc. etc. using 503 still.

As shown in figure 31, time point administrative unit 501 has ID generation unit 1178, time point unit 1181, authentication unit 1185, unit 1187 sum counter information generating unit 1191 is set.

ID generation unit 1178 generates and is used for the session id that the identified time point is provided with session, and it is to send request to time point server 113 to be used for the message of the time point information that time point is provided with and to receive a series of exchanges to its answer message.

Notice that for example, ID generation unit 1178 can generate random number, therefore can repeatedly not generate same session id, and random number is used as session id, but be not limited to this example.

Time point unit 1181 generates and the output time point.Note, be used in cut-out under the situation such as the power supply of battery etc. of retention time point, time point unit 1181 is provided with the unreliable and inaccurate sign of some instruction time in such as memory block that is built into the register (not shown) in the time point unit 1181 or storer 1104 etc., it is unreliable and inaccurate perhaps the time point precision information being changed into the express time point, but is not limited to this example.

Authentication unit 1185 obtains difference time between message transmitting time point and message sink time point based on the time points of 1181 outputs from the time point unit, and the amplitude of comparing difference time and allowed time (perhaps RTT etc.).As this result relatively, authentication unit 1185 verifies whether allow to be provided with time point based on the time point information that sends from time point server 1131.

As the result who carries out checking by authentication unit 1185, if determine to allow to be provided with time point, unit 1187 then is set the time point of describing in the time point information is being set in time point unit 1181, conditional information also will be set store in the secure information storage unit 1105, conditional information will be set thereby upgrade.

Counter information generation unit 1191 generates counter information, obtains the counter information of generation, and exports to the outside.For example, counter information generation unit 1191 generates by 1 counter information that increases progressively, as " 1,2,3 ... " (increasing progressively), and generate by 1 counter information that successively decreases, as " 90,89,88 ... " (successively decreasing).Notice that the counter information of generation is stored in the memory unit such as the cache memory of signal conditioning package 1101, up to being updated to next counter information.

Also have, counter information generation unit 1191 is not limited to generate the above-mentioned counter information that increases progressively or the situation of the counter information that successively decreases, as counter information, can also represent time point by 1181 generations of time point unit, and the timestamp of generation " YYYYMMDDhhmmss " form, such as " 13: 50: 15 on the 22nd August in 2005 ".Notice that the timestamp that generates of storage also is up to by next update of time stamp.

(about time point server 1131)

Next, will time point server 1131 according to present embodiment be described with reference to Figure 32.Notice that Figure 32 is the block scheme of explanation according to the schematic construction of the time point server of present embodiment.

Shown in figure 32, for example, time point server 1131 comprises control module (perhaps CPU etc.) 1301, storer 1303, input block 1306, memory storage 1307, output unit 1308, communication unit 1305, time point unit 1309, conditional information generation unit 1311 is set, signature generation unit 1314, sum counter information generating unit 1316.

Control module 1301 plays calculation processing apparatus and control device, also the processing of each unit in the may command time point server 1131.Also have, for example, storer 1303 is made of RAM, ROM, cache memory etc., and have temporary transient storage about the function of the various data of the processing on the control module 1301, be used for the running program of control module 1301 etc.

Communication unit 1305 is communication interfaces, is made of for example order wire, telecommunication circuit, communicator etc.This communication unit 1305 can via network 1103 between such as other external unit of signal conditioning package 1101 grades swap time dot information, various control signals etc.

Memory storage 1307 is the devices that are used to store data, and is made of for example hard disk drive, also can store the various data such as program etc.Also have, for example, memory storage 1307 storages by the allowed time or the term of validity etc. forms the conditional information table is set so that generation is provided with conditional information.To describe this after a while the conditional information table will be set.

Time point unit 1309 generates and output correct time dot information.For example, the correct time point means with the standard time from outputs such as atomic clocks and puts the time point that is complementary.That is to say the time point information of 1309 constant outputs of time point unit and standard time point coupling.

In case receive the request of time point information, conditional information generation unit 1311 be set conditional information be set with regard to generating.For example, time limit (term of validity) formation of conditional information by the validity of allowed time (perhaps time bar) of putting the permissible range that is provided with based on time point information instruction time and the time point that indication is provided with in signal conditioning package 1101 is set, still is not limited to this example.

Also have, conditional information generation unit 1311 is set generates conditional information is set by the conditional information table that is provided with reference to storage in memory storage 1307, it will be described in detail after a while.

The MAC value of signature generation unit 1314 by obtaining Termination ID, conditional information, time point information and session id (perhaps counter information) are set generate signature, still be not limited to this example.

Counter information generation unit 1316 generation counter informations, but its details is identical with above-mentioned counter information generation unit 1191 substantially, therefore will omit description.

(about data)

Now, will describe briefly according to present embodiment with reference to Figure 33 and be used for the general data that time point is provided with system 300.

" Termination ID " is, for example, sign is to the ID of the solicited message treating apparatus 1101 of time point server 1131 request time dot informations.

" time point precision information " is the information of indication from the precision of the time point of time point unit 1181 outputs of signal conditioning package 1101.For the structure and the security of time point unit 1181, consider the precision of time point.For example, have in time point unit 1181 under the situation of the anti-tamper characteristic that is difficult to distort time point, the time point precision is higher.

" conditional information is set " and for example constitutes by the allowed time and the term of validity.Must be within the allowed time from the request time dot information up to the time of time of reception dot information.Also have, after the past, the time point of signal conditioning package 1101 is invalid in the term of validity, and signal conditioning package 1101 need be reset its time point based on time point information and from time point server 113.

" session id " is the ID that is used to identify such as the session of time point session etc., is used to guarantee the nonredundancy of message transmission/reception.When session is activity, distort in order to prevent the third party, keep session id safely, and when conversation end, it is abandoned.

" counter information " is the information such as the counter that increases progressively the nonredundancy of guaranteeing message transmission/reception, timestamp etc.This counter information also needs to keep safely so that prevent third-party distorting.

" signature " be for example based on Termination ID, conditional information, time point information and session id etc. are set and the signed data that obtains.Though mainly use such data, being provided with according to the time point of present embodiment that system 300 is not limited to only is the data shown in Figure 33, also can use other data to carry out.

Next, will describe with reference to Figure 34 and the conditional information table will be set according to present embodiment.Figure 34 is the explanation diagrammatic sketch of explanation according to the example of the schematic construction that the conditional information table is set of present embodiment.

As shown in figure 34, the conditional information table being set is made of " time point precision information ", " allowed time " and " term of validity " at least.Notice that the above-mentioned conditional information that is provided with was made of the one group of allowed time and the term of validity.

As shown in figure 34, for example, the time point precision information is " high (1), " in (2) " and " low (3) " by time point precision order from high to low.How high the time point precision information puts instruction time precision by the numerical value in above-mentioned () has.

If time point precision height, then this guarantees to keep correct time for a long time and guarantees reliable time point, therefore gives allowed time and the preferential treatment of the term of validity.For example, as shown in figure 34, find at the time point precision information it is under the situation of " height ", the allowed time is 60 (seconds) and the term of validity was 3 (years), therefore general's the longest effective time.

Conditional information generation unit 1311 is set based on from the time point precision information of signal conditioning package 1101 and with reference to shown in Figure 34 the conditional information table being set, and generates conditional information is set.Note, conditional information generation unit 1311 is set conditional information is set with reference to generating based on time point precision information the conditional information table being set, but be not limited to this example, for example, according to the retention time of the height and the signal conditioning package 1101 of time point precision, conditional information generation unit 1311 is set further prolongs/shorten with reference to the allowed time and/or the term of validity obtained based on time point precision information the conditional information table being set.For example, time point precision information at signal conditioning package 1101 be " in ", and " in " during (maintenance phase) be under 60 days the situation, can further prolong the allowed time (30 (second)) and the term of validity (1 (moon)) obtained from the conditional information table is set, be (40 (second)) and the term of validity is the condition setting information of (2 (moon)) to obtain the allowed time.That is to say, be provided with conditional information generation unit 1311 can with reference to corresponding to its time point precision information and during the conditional information table is set, and dynamically change the allowed time and/or the term of validity, thereby generate conditional information is set.

(time point method to set up, session id method)

Next, will time point method to set up according to the session id method of present embodiment be described with reference to Figure 35.Figure 35 is the sequence chart that schematically illustrates according to the processing of the time point method to set up of the session id method of present embodiment.

Time point method to set up according to present embodiment is the processing of carrying out between signal conditioning package 1101 and time point server 1131.

As shown in figure 35, at first, in case use that 503 request detection unit 1189 detects because such as over and done with former of the schedule time or the term of validity thereby the time point information request that proposes, just the session id (SID) of asking to be used to obtain time point information and time point precision information to time point administrative unit 501 (S3501).

Next, the ID generation unit 1178 of time point administrative unit 501 generates session id (SID).The time point precision information of SID that generates and storage in security information 105 is sent to uses 503 (S3503).Notice that for example, the SID that ID generation unit 1178 generates can be the random number that generates at random, but is not limited to this example.

We will say, carry out encrypt/decrypt by utilizing the key such as AES-CBC etc., be merely able to read data in [] among Figure 35 etc. by the time point administrative unit 501 of signal conditioning package 1101 and time point server 1131.For example, for [SID] shown in the step S3503 and [time point precision information], have only the time point administrative unit 501 of signal conditioning package 1101 and time point server 1131 can read SID and time point precision information.

Next, the application 503 of signal conditioning package 1101 is based on the session id of obtaining in step S3503 and time point precision information and the rise time point is provided with request message, and sends it to time point server 1131 (S3505).Be created on time point by signal conditioning package 1101 Termination ID that comprises in the request message etc. is set.

Notice that the authentication unit 1185 of signal conditioning package 1101 is obtained time point T from time point unit 1181 when the transmitting time point is provided with request message ₁For example, the authentication unit 1185 of signal conditioning package 1101 is obtained " 18: 15: 10.015 on the 22nd August in 2005 " as time point T ₁

Time point server 1131 conditional information generation unit 1311 is set with reference to the conditional information table being set based on what the time point precision information that is provided with in the request message was set at time point, and generate conditional information be set.Next, the time point informations of signature generation unit 1,314 1309 outputs, conditional information, SID and Termination ID are set obtain MAC value, and generate and sign from the time point unit.

In addition, control module 1301 is created the time point that comprises the session id, time point information and the signature that conditional information are set, receive from signal conditioning package 1101 answer message is set, and sends it to solicited message treating apparatus 1101 (S3507).Notice that for example, signature is the MAC value that conditional information, SID, time point information and Termination ID are set, but be not limited to this example.

In addition, the authentication unit 1185 of signal conditioning package 1101 is provided with when answering message at the time of reception point, with obtain the same mode of time that the transmitting time point is provided with request message, from time point unit 1181, obtain time point T ₂For example, the authentication unit 1185 of signal conditioning package 1101 is obtained " 18: 17: 11.015 on the 22nd August in 2005 " as time point T ₂

In case receive above-mentioned time point answer message is set, the application 503 of signal conditioning package 1101 just is not delivered to it time point administrative unit 501 (S3509) with not doing any change.Notice that for example, application 503 can not read in time point the information that comprises in the answer message is set, such as " SID ".

Next, in case time point administrative unit 501 receives data (S3509) from using 503, the time point that authentication unit 1185 receives with regard to checking is provided with the Termination ID and the Termination ID when the transmitting time point is provided with request message (the perhaps Termination ID of oneself) of answering message and whether mates (S3511).

Next, authentication unit 1185 is answered the conditional information that is provided with that is provided with in the message with reference to being provided with at the time point that receives, and whether checking allows to be provided with time point (S3513).The time point T of authentication unit 1185 when the transmitting time point is provided with request message ₁Time point T when answer message being set with the time of reception point ₂Obtain the difference time, and relatively this difference time with allowed time in the conditional information is set, thereby determine whether to allow time point setting (S3513).

Now, will difference time according to present embodiment be described with reference to Figure 36.Figure 36 is the explanation diagrammatic sketch that schematically illustrates according to the mistiming of present embodiment.

As shown in figure 36, we will say that the time point that request message is set from signal conditioning package 1101 transmitting times point is time point T ₁

In case receive this time point request message is set, time point server 1131 is provided with answer message with regard to generating the time point comprise time point information and conditional information etc. is set, and sends it to signal conditioning package 1101.

As shown in figure 36, we will say that it is time point T that the time point that signal conditioning package 1101 receives transmission from time point server 1131 is provided with the time point of answering message ₂

Therefore, the difference time is time point T ₂Deduct time point T ₁The time that is obtained (time point T ₂-time point T ₁).

As shown in figure 35, whether the difference time that authentication unit 1185 checking is obtained (S3513) within the allowed time scope in conditional information is set, if in the scope of allowed time, then authentication unit 1185 checking has sent time point that once time point is provided with request message about signal conditioning package 1101 and is provided with and answers message (answer) and whether received once (S3515).For example, whether the SID of authentication unit 1185 checking receptions is consistent with the SID that is generated by ID generation unit 1178 when the transmitting time point is provided with request message.

Note, the nonredundancy checking (S3515) of message is not limited to the checking of SID, also can so that confirm whether to have the transmission/reception of other message, thereby verify nonredundancy by for example after the checking of SID, carrying out with reference to sending sign and receiving flag by authentication unit 1185.

Also have, with above-mentioned message nonredundancy checking (S3515), whether authentication unit 1185 has also distorted the proving time point that the integrality (S3515) of answering message is set based on the signature that comprises in the answer message is set at time point for message.

Next, under the situation that checking has finished and definite permission time point is provided with of authentication unit 1185, unit 1187 is set based on time point information and the time point of the time point unit 1181 of configuration information processing unit 1101, will be stored in then in secure information storage unit 1105 grades be provided with conditional information be updated to time point be provided with answer be provided with in the message conditional information (S3517) is set.

Then, authentication unit 1185 and ID generation unit 1178 abandon the session id (SID) that generated (S3519).This is through with and utilizes a series of processing of the time point method to set up of session id method according to present embodiment.

(time point method to set up, counter information method)

Next, will be with reference to the 37 time point methods to set up of describing according to the counter information method of present embodiment.The 37th, the sequence chart according to the processing of the time point method to set up of the counter information method of present embodiment schematically is described.

As shown in figure 37, at first, in case using 503 request detection unit 1189 detects owing to such as the over and done with reason of the schedule time or the term of validity, in order to obtain the time point information request that time point information proposes, just to time point administrative unit 501 request time point precision informations (S3701).

Next, the counter information generation unit 1191 of time point administrative unit 501 is sent in the time point precision information of storing in the secure information storage unit 1105 (S3703) to using 503.

We will say, carry out encrypt/decrypt by utilizing the key such as AES-CBC etc., can only read data in [] among Figure 37 etc. by the time point administrative unit 501 of signal conditioning package 1101 and time point server 1131.For example, for [the time point precision information] shown in the step S3703, have only the time point administrative unit 501 of signal conditioning package 1101 and time point server 1131 to decipher time for reading point precision information by it.

Then, the application 503 of signal conditioning package 1101 is based on the time point precision information of obtaining in step S3703 and rise time point is provided with request message, and sends it to time point server 1131 (S3705).Be created on time point by signal conditioning package 1101 Termination ID that comprises in the request message etc. is set.

The conditional information generation unit 1311 of being provided with of time point server 1131 is provided with the conditional information table with reference to what the time point precision information that is provided with in the request message was set based on time point, and generates conditional information is set.

Next, 1316 rise times of counter information generation unit of time point server 1131 stab.Next, the time point informations of signature generation unit 1,314 1309 outputs, be provided with and obtain MAC value conditional information, timestamp and the Termination ID, and generate to sign from the time point unit.

By

time point server

1131 or 1101 rise times of signal conditioning package stamp, we will say that two timestamps that generated by time point server 1131 and signal conditioning package 1101 are synchronous.

In addition, the control module 1301 of time point server 1131 is created and is comprised that the Termination ID that conditional information, timestamp, time point information is set, receives from signal conditioning package 1101 and the time point of signature are provided with answer message, and sends it to solicited message treating apparatus 1101 (S3707).Notice that for example, signature is the MAC value that conditional information, timestamp, time point information and Termination ID are set, but be not limited to this example.

In case receive above-mentioned time point answer message is set, the application 503 of signal conditioning package 1101 just is not delivered to it time point administrative unit 501 (S3709) with not doing any change.Notice that for example, application 503 can not read in time point the information that comprises in the answer message is set, such as " timestamp ".

Next, in case time point administrative unit 501 receives data (S3709) from using 503, the time point that authentication unit 1185 receives with regard to checking is provided with the Termination ID and the Termination ID when the transmitting time point is provided with request message (the perhaps Termination ID of oneself) of answering message and whether mates (S3711).

Next, authentication unit 1185 is answered the conditional information that is provided with that is provided with in the message with reference to being provided with at the time point that receives, and whether checking allows to be provided with time point (S3713).Notice that (S3713) basic and above-mentioned checking of being undertaken by authentication unit 1185 is handled in the checking of being undertaken by authentication unit 1185, and to handle (S3513) identical, so will omit its detailed description.

As shown in figure 35, whether the difference time that authentication unit 1185 checking is obtained (S3513) within the allowed time scope in conditional information is set, if in the scope of allowed time, then authentication unit 1185 checking has sent time point that once time point is provided with request message about signal conditioning package 1101 and is provided with and answers message (answer) and whether received once (S3715).For example, the timestamp of answering in the message is set 1185 pairs of time points of authentication unit and the timestamp that receives from the counter information generation unit when the time of reception point is provided with answer message compares, and verify then whether more recently the timestamp of counter information generation unit 1191 (perhaps upgrades).

Note, under the situation of the counter information except timestamp, the counters that for example increase progressively etc., whether the counter information of authentication unit 1185 checking counter information generation units 1191 is provided with the counter information of answering in the message less than time point, but is not limited to this example.

Note, the nonredundancy checking (S3715) of message is not limited to the checking of timestamp, also can be by for example after the checking of timestamp, carrying out with reference to sending sign and receiving flag by authentication unit 1185, so that confirm whether to have the transmission/reception of other message, thus the checking nonredundancy.

Also have, with the nonredundancy checking (S3715) of above-mentioned message, whether authentication unit 1185 has also distorted the proving time point that the integrality (S3715) of answering message is set based on the signature that comprises in message for message.

Next, finished and determined to allow to be provided with under the situation of time point in the checking of authentication unit 1185, unit 1187 is set based on time point information and the time point of the time point unit 1181 of configuration information processing unit 1101, and will be stored in the secure information storage unit 1105 etc. be provided with conditional information be updated to time point be provided with answer be provided with in the message conditional information (S3717) is set.

Next, authentication unit 1185 sum counter information generating unit 1191 abandon the timestamp that has generated.In addition, the timestamp that counter information generation unit 1191 will generate when the time of reception point is provided with answer message stores in the memory block, thereby upgrades the timestamp of having stored (S3719).

Note, at counter information is not timestamp but under the situation such as the counter information of the counter of (incremented/decremented) etc., after by authentication unit 1185 and counter information generation unit 1191 in-discard counter information, next counter information of counter information generation unit 1191 usefulness (for example, at time point the counter information that is provided with in the answer message being set) upgrades the counter information that has been stored in the memory block.

Particularly, for example, be under 0 the situation at the initial value of the counter information of the counter information generation unit 1191 sum counter information generating unit 1316 of time point server 1131, in case time point server 1131 receives time point request message is set, time point server 1131 just is updated to " 1 " with its counter information from " 0 ", and to send counter information be that the licence of " 1 " is obtained answer message.

Next, because at time point the value of answering the counter information that is provided with in the message being set is " 1 ", and the counter information that receives from counter information generation unit 1191 is " 0 ", so authentication unit 1185 determines that time point is provided with answer message and has the nonredundancy of guaranteeing, so what authentication unit 1185 abandoned it is stored in counter information " 0 " in the memory block, and is updated to time point the counter information " 1 " of answering message is set.Like this, end is according to a series of processing of the time point method to set up of the counter information method of present embodiment.

Also have, time point method to set up for the counter information method shown in Figure 37, reference count information is that the example of timestamp is described, but being not limited to this example, can also be to guarantee to increase under the situation of counter etc. of (perhaps reducing) to carry out at for example counter information.In this case, signal conditioning package 1101 and time point server were used in the counter memory block of memory counter information in 1131 minutes, and need be by sending or the time of reception point is provided with request message or time point and is provided with and answers message and upgrade separately counter information mutually.

As mentioned above, be provided with in the session at time point according to the session id/counter information method of present embodiment, exchange between signal conditioning package 1101 and the time point server 1131 is restricted to that time point is provided with request message and time point is provided with answer message, and the processing that therefore alleviates transmissions/reception on the network is loaded.Therefore, because the load that communication process needs is extremely low, so also can obtain time point information from time point server 1131 even have the signal conditioning package 1101 of low especially processing power.In addition, under the situation of session id method, the session id (SID) that is used for the identified time peer session is not at server end but generate at signal conditioning package 1101 ends.Under the situation of counter information method, need when being provided with request message, the transmitting time point not add counter information at signal conditioning package 1101 ends, therefore alleviated the processing load of signal conditioning package 1101 more.That is to say,,, also can the execution time put setting even be not very high device (cell phone, portable content player etc.) for processing power by this time point method to set up.And, in only one or another that time point is provided with that the authentication carried out in the requisite time point session need only be in signal conditioning package 1101 ends or time point server 1131 ends, carry out (monolateral authentication), therefore in time point is provided with, reduced total processing load of user's set 10 and management server 21 at least.

Notice that above-mentioned processing series can be carried out by specialized hardware, also can be carried out by software.If carry out a series of processing by software, the program that then disposes this software is installed in the signal conditioning package such as multi-purpose computer or microcomputer etc., and makes signal conditioning package act as signal conditioning package 1101 and/or time point server 1131.

Can in advance program be recorded in as among hard disk drive that is built into the recording medium in the computing machine (HDD) or the ROM (ROM (read-only memory)).

In addition, program is not limited to be stored in the hard disk drive, can also be temporarily or storage (record) for good and all in removable recording medium such as floppy disk, CD-ROM (compact-disc ROM (read-only memory)), MO (magneto-optic) dish, DVD (digital versatile dish), disk, semiconductor memory etc.Can be used as so-called canned software so removable recording medium is provided.

Note, except from so removable storage medium is installed to the computing machine, program can through the digital satellite broadcasting satellite from the download website wireless transmission to computing machine, the network that perhaps passes through such as LAN (LAN (Local Area Network)) or the Internet is delivered in the computing machine by cable, and computing machine can be installed to the program of transmitting in such a manner among the built-in HDD.

Now, should be appreciated that, in this description, the treatment step that describe to make the signal conditioning package 1101 that serves as computing machine carry out the program of various processing might not be handled according to the sequential of the order of process flow diagram record, the processing that also comprises concurrently or carry out individually (for example, parallel processing or handle by purpose).

For the foregoing description, the time point unit 1181 of reference information treating apparatus 1101, ID generation unit 1178, authentication unit 1185, unit 1187 is set and counter information generation unit 1191 is described by the example that hardware constitutes, but the present invention is not limited to this example.For example, these parts can be the programs that is made of one or more module or assembly.

Also have, the application 503 of reference information treating apparatus 1101 and request detection unit 1189 is that the example of program is described, but be not limited to this example, for example, application 503 and request detection unit 1189 can also be made of the hardware that one or more circuit arrangement constituted.

For the foregoing description, the time point unit 1309 of reference time point server 1131, conditional information generation unit 1311 is set, signature generation unit 1314 and counter information generation unit 1316 are described by the example that hardware constitutes, but the present invention is not limited to this example.For example, these parts can be the programs that is made of one or more module or assembly.

Claims

1. group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group comprises:

The register requirement detecting unit is used to detect the request that described information recording carrier and/or signal conditioning package is registered to described group;

Session id generation unit, a series of exchanges that are used for sending the message of described group of registration of request and answering message for this message sink be as enrollment session, and generate the session id that is used to identify this enrollment session;

The login request message transmitting element, be used for sending login request message to registrar, described login request message comprises the information recording carrier ID of the described information recording carrier that will be registered to described group and/or the signal conditioning package ID and the described session id of described signal conditioning package;

The message sink unit is answered in registration, be used for receiving registration from this registrar and answer message, described registration is answered message and is comprised by described registrar and be registered to the described information recording carrier ID of this group and/or ID tabulation and the described session id of signal conditioning package ID;

Authentication unit is used for verifying that described registration answers this session id that message comprises with whether consistent at the session id of described session id generation unit place generation, and deletes described session id; And

Storage unit, be used for described registration answer this ID list storage that message comprises in the memory block so that be associated with specifying described group group ID;

Wherein utilize described login request message transmitting element and described registration to answer the message sink unit, in same described enrollment session, send described login request message once, and receive described registration answer message once;

And the processing that wherein will carry out in described enrollment session is restricted to by described login request message transmitting element and sends described login request message, and answers the message sink unit by described registration and receive described registration and answer message.

2. group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group comprises:

The pass phrase receiving element, be used for receiving pass phrase, by to comprising that the registration that is registered to the ID tabulation of the described information recording carrier ID of this group and/or signal conditioning package ID and described session id by described registrar answers message and encode and obtain described pass phrase from this registrar;

Whether authentication unit is used for that described pass phrase is decoded as described registration and answers message, consistent with the session id that generates in described session id generation step to verify the session id that comprises in the described registration answer message, and deletes described session id; And

Storage unit, this ID list storage that is used for described registration answer message is comprised is to installing in the interior memory block certainly, so that be associated with specifying described group group ID;

Wherein utilize described login request message transmitting element and described pass phrase receiving element, in same described enrollment session, send described login request message once, and receive described pass phrase once;

And the processing that wherein will carry out in described enrollment session is restricted to by described login request message transmitting element and sends described login request message, and receives described pass phrase by described pass phrase receiving element.

3. group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group comprises:

The login request message transmitting element, be used for sending login request message to registrar, described login request message comprises the information recording carrier ID of the described information recording carrier that will be registered to described group and/or the signal conditioning package ID of described signal conditioning package;

The message sink unit is answered in registration, be used for receiving registration from this registrar and answer message, described registration is answered message and is comprised described information recording carrier ID and/or the ID tabulation of signal conditioning package ID and the counter information that obtains at this registrar end that is registered to this group by described registrar;

Authentication unit, be used to verify whether in the context of answering this counter information of message setting for described registration and will be registered between the counter information that obtains in described group the device certainly be suitable, and be updated in described this counter information in device; And

Storage unit, this ID list storage that is used for described registration answer message is comprised is in the memory block, so that be associated with specifying described group group ID;

Wherein utilize described login request message transmitting element and described registration to answer the message sink unit, to send the message of described group of registration of request and answer a series of exchanges of message as enrollment session for this message sink, in same described enrollment session, send described login request message once, and receive described registration answer message once;

4. group register device according to claim 3, wherein said counter information is a timestamp,

And the reception of message sink unit is provided with described timestamp by described registrar described registration answer message is answered in wherein said registration;

And whether the timestamp that wherein said authentication unit checking generates in described device certainly when message is answered in the described registration of reception is new for being the described timestamp that the message setting is answered in described registration.

5. group register device that is used at least one information recording carrier and/or signal conditioning package are registered to group comprises:

The pass phrase receiving element, be used for receiving the pass phrase that obtains by coding registration answer message from this registrar, described registration is answered message and is comprised described information recording carrier ID and/or the ID tabulation of signal conditioning package ID and the counter information that obtains at this registrar end that is registered to this group by described registrar;

Authentication unit, be used for that described pass phrase is decoded as described registration and answer message, whether is suitable with checking in the context of answering this counter information of message setting for described registration and will be registered between the counter information that obtains in described group the device certainly, and is updated in described this counter information in device; And

Wherein utilize described login request message transmitting element and described pass phrase receiving element, in same described enrollment session, send described login request message once, and receiving described pass phrase once, described enrollment session is to send the message of described group of registration of request and a series of exchanges of answering message for this message sink;

6. a group that is used for nullifying from the group of having registered at least one information recording carrier and/or signal conditioning package the registration of at least one information recording carrier and/or signal conditioning package is nullified device, comprising:

The de-registration request detecting unit is used to detect the request that cancellation has been registered to the registration of described group information recording carrier and/or signal conditioning package;

Nullify beginning message sink unit, be used for and receive described group of message of nullifying of beginning and to send a series of exchanges of answering message for this message as nullifying session, and receive from log-on server and to comprise that cancellation session id, that serve as the signal that begins described group of cancellation that is used to identify this cancellation session begins message;

The de-registration request message sending unit, be used for creating and send de-registration request message, described de-registration request message is used for asking described group of cancellation based on the ID tabulation of the information recording carrier ID of signal conditioning package ID that serves as the described information recording carrier that will carry out the described group of object of nullifying and/or described signal conditioning package and described session id; And

Nullify the unit, be used for deleting this ID that described de-registration request message comprises, that be associated with the group ID that is used to identify described group and tabulate, nullify with the execution group;

Wherein utilize described cancellation to begin message sink unit and described de-registration request message sending unit, in same described cancellation session, receive described cancellation and begin message once, and send described de-registration request message once;

And the processing that wherein will carry out in described cancellation session is restricted to and begins the message sink unit by described cancellation and receive described cancellation and begin message, and sends described de-registration request message by described de-registration request message sending unit.

7. a group that is used for nullifying from the group of having registered at least one information recording carrier and/or signal conditioning package the registration of at least one information recording carrier and/or signal conditioning package is nullified device, comprising:

Nullify beginning message sink unit, be used for from described log-on server receive serve as the described group of signature of nullifying of beginning, comprise that the cancellation of the counter information that is obtained by described log-on server begins message;

The de-registration request message sending unit, be used for creating and send de-registration request message, described de-registration request message is used for will asking described group of cancellation from the ID tabulation of the information recording carrier ID of the signal conditioning package ID of the described information recording carrier of the described group of object of nullifying and/or described signal conditioning package and described counter information based on serving as;

Authentication unit is used for verifying whether the context that will begin between this counter information that message comprises and the counter information that will carry out obtaining in the described group of device of nullifying certainly in described cancellation is suitable; And

Wherein utilize described cancellation to begin message sink unit and described de-registration request message sending unit, to receive described group of message of nullifying of beginning and answer a series of exchanges of message as nullifying session for this message transmission, and in same described cancellation session, receive described cancellation and begin message once, and send described de-registration request message once;

8. group register method that is used at least one information recording carrier and/or signal conditioning package are registered to group comprises:

Register requirement detects step, is used to detect the request that described information recording carrier and/or signal conditioning package is registered to described group;

Session id generates step, and a series of exchanges that are used for sending the message of described group of registration of request and answering message for this message sink are as enrollment session, and generates the session id that is used to identify this enrollment session;

The login request message forwarding step, be used for sending login request message to registrar, described login request message comprises the information recording carrier ID of the described information recording carrier that will be registered to described group and/or the signal conditioning package ID and the described session id of described signal conditioning package;

The message sink step is answered in registration, be used for receiving registration from this registrar and answer message, described registration is answered message and is comprised by described registrar and be registered to the described information recording carrier ID of this group and/or ID tabulation and the described session id of signal conditioning package ID;

Storing step, be used for answering this session id that message comprises when consistent with the session id that in described session id generation step, generates when being verified as described registration, answer this ID list storage of comprising in the message in the memory block, with described registration so that be associated with specifying described group group ID; And

The deletion step is used to delete described session id;

Wherein in same described enrollment session, described login request message forwarding step and described registration are answered the message sink step and are respectively carried out once in order;

And the processing that wherein will carry out in described enrollment session is restricted to described login request message forwarding step and the message sink step is answered in described registration.

9. one kind is used for holding the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence, comprising:

Licence is obtained the request detection unit, is used for the request that detection obtains described licence;

The session id generation unit is used for and will sends message that the described licence of request obtains and a series of exchanges of answering message for this message sink as obtaining session, and generation is used to identify the session id that this obtains session;

Licence is obtained the request message transmitting element, be used for holding device to described licence and send the licence comprise storage Target id and described session id and obtain request message, described storage Target id is used to identify the storage target that is used to store the described one or two or more licence of being asked;

Licence is obtained and is answered the message sink unit, is used for holding device from described licence and receives and comprise the described licence of being asked, obtain answer message about the licence of additional information, described storage Target id and the described session id of the service condition of this licence;

Authentication unit is used for verifying that described licence is obtained answers this session id that message comprises with whether consistent at the session id of described session id generation unit place generation, and deletes this session id; And

Storage unit is used for storing described licence into memory block according to described storage Target id;

Wherein utilize described licence to obtain request message transmitting element and described licence and obtain and answer the message sink unit,, send described licence and obtain request message once, and receive described licence and obtain and answer message once same described obtaining in the session;

And wherein will obtain the processing of carrying out in the session and be restricted to and obtain the request message transmitting element by described licence and send described licence and obtain request message, and obtain by described licence and to answer the message sink unit and receive described licence and obtain answer message described.

10. one kind is used for holding the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence, comprising:

Licence is obtained the request message transmitting element, be used for holding device to described licence and send the licence comprise the storage Target id that is used to identify the storage target and obtain request message, wherein said storage target is used to store the described one or two or more licence of being asked;

Licence is obtained and is answered the message sink unit, is used for holding device from described licence and receives and comprise the described licence of being asked, the additional information about the service condition of this licence, described storage Target id and obtain answer message by the licence that described licence is held the counter information that device obtains;

Authentication unit, be used for verifying at described licence and obtain whether the context of answering between this counter information that message comprises and the counter information that obtains is suitable in the device certainly as described licence storage target, and be updated in this this counter information in device; And

Wherein utilizing described licence to obtain request message transmitting element and described licence obtains and answers the message sink unit, to send message that the described licence of request obtains and answer a series of exchanges of message as obtaining session for this message sink, and same described obtaining in the session, send described licence and obtain request message once, and receive described licence and obtain and answer message once;

11. one kind is used for holding the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence, comprises:

Licence is obtained the request message transmitting element, be used for holding device to this licence and send the licence comprise storage Target id and described session id and obtain request message, described storage Target id is used to identify the storage target that is used to store the described one or two or more licence of being asked;

The pass phrase receiving element, be used for holding device and receive to obtain and answer the pass phrase that message is obtained by the coding licence from described licence, described licence obtain answer message comprise the described licence of being asked, about additional information, described storage Target id and the described session id of the service condition of this licence;

Authentication unit, be used for that described pass phrase is decoded as described licence and obtain answer message, whether consistent to verify that this licence is obtained this session id that comprises in the answer message with the session id that in described session id generation step, generates, and delete described session id; And

Storage unit is used for according to described storage Target id described licence being obtained and answers the described licence that message comprises and store in the memory block;

Wherein utilize described licence to obtain request message transmitting element and described pass phrase receiving element,, send described licence and obtain request message once, and receive described licence and obtain and answer message once same described obtaining in the session;

And wherein will obtain the processing of carrying out in the session and be restricted to and obtain the request message transmitting element by described licence and send described licence and obtain request message, and receive described pass phrase by described pass phrase receiving element described.

12. one kind is used for holding the licence acquisition device that device is obtained the one or two or more licence that allows contents processing from licence, comprises:

The pass phrase receiving element, be used for holding device from described licence and receive to obtain by the coding licence and answer the pass phrase that message is obtained, described licence is obtained and is answered message and comprise the described licence of being asked, the additional information about the service condition of this licence, described storage Target id and hold the counter information that device obtains by described licence;

Authentication unit, be used for that described pass phrase is decoded as described licence and obtain answer message, obtain at this licence whether the context of answering between this counter information that comprises in the message and the counter information that obtains is suitable with checking in the device certainly as licence storage target, and be updated in this this counter information in device as this licence storage target; And

Storage unit is used for according to described storage Target id described licence being obtained and answers this licence that message comprises and store in the memory block;

Wherein utilize described licence to obtain request message transmitting element and described pass phrase receiving element, to send message that the described licence of request obtains and answer a series of exchanges of message as obtaining session for this message sink, and same described obtaining in the session, send described licence and obtain request message once, and receive described licence and obtain and answer message once;

13. licence acquisition device according to claim 12, wherein said counter information is a timestamp,

And wherein said pass phrase receiving element is held device from described licence and is received described pass phrase;

And whether the timestamp that wherein said authentication unit checking is obtained by described signal conditioning package when receiving described pass phrase newly answers the described timestamp that comprises in the message in obtaining at the described licence that obtains by the described pass phrase of decoding.

14. one kind is used for holding the licence adquisitiones that device is obtained the one or two or more licence that allows contents processing from licence, comprises:

Licence is obtained the request detection step, is used for the request that detection obtains described licence;

Session id generates step, be used for sending message that the described licence of request obtains and a series of exchanges of answering message for this message sink as obtaining session, and generation is used to identify the session id that this obtains session;

Licence is obtained the request message forwarding step, be used for holding device to this licence and send the licence comprise storage Target id and this session id and obtain request message, this storage Target id is used to identify the storage target of the described one or two or more licence that storage asks;

Licence is obtained and is answered the message sink step, is used for holding device from described licence and receives and comprise the described licence of being asked, obtain answer message about the licence of additional information, described storage Target id and the described session id of the service condition of this licence;

Storing step is used for obtaining answer this session id that message comprises when consistent with the session id that generates in described session id generation step when being verified as described licence, according to described storage Target id described licence is stored in the memory block; And

The deletion step is used to delete described session id;

Wherein describedly obtain in the session described licence and obtain request message forwarding step and described licence and obtain and answer the message sink step each is carried out once in order same;

And wherein will obtain the processing of carrying out in the session and be restricted to described licence and obtain request message forwarding step and described licence and obtain and answer the message sink step described.

15. a time point setting device is used for the time point information that generated based on by the time point device that accurate time point is counted, and the time point by the signal conditioning package counting is set, this time point setting device comprises:

The request detection unit is used to detect the request to the time point information that is generated by described time point device;

The session id generation unit is used for and will sends the message of the described time point information of request and as time point session is set for a series of exchanges that this message sink is answered message, and generates and be used to identify the session id that this time point is provided with session;

Time point is provided with the request message transmitting element, be used for comprising that to described time point device transmission the time point of time point precision information and described session id is provided with request message, described time point precision information is indicated the time point precision of described signal conditioning package, and it is the information that is stored in safely in advance in the memory block of described signal conditioning package;

Time point is provided with answers the message sink unit, is used for receiving from described time point device comprising described time point information, describing the time point that time point that time point can be provided with condition is provided with conditional information and described session id based on this time point information answer message is set;

Authentication unit, be used to be verified as described time point and be provided with whether answer the described session id that message is provided with consistent with this session id that generates at described session id generation unit place, and also verify at described time point and mistiming between the transmitting time point of request message and the time of reception point that described time point is provided with answer message is set whether within described time point is provided with the allowed time scope of describing in the conditional information; And

The unit is set, is used to delete described session id, and if determine that as the checking result of described authentication unit time point can be provided with, then also be used for being provided with this time point of described signal conditioning package based on described time point information;

Wherein utilizing described time point that request message transmitting element and described time point are set is provided with and answers the message sink unit, be provided with in the session at same described time point, send described time point and request message is set once, and receive described time point and be provided with and answer message once;

And wherein will the processing of carrying out in the session be set and be restricted to and by described time point the request message transmitting element is set and sends described time point request message is set, and be provided with by described time point and answer the message sink unit and receive described time point answer message is set at described time point.

16. a time point setting device is used for the time point information that generated based on by the time point device that accurate time point is counted, and the time point by the signal conditioning package counting is set, this time point setting device comprises:

Time point is provided with the request message transmitting element, be used for comprising that to described time point device transmission the time point of time point precision information is provided with request message, described time point precision information is indicated the time point precision of described signal conditioning package, and it is the information that is stored in safely in advance in the memory block of described signal conditioning package;

Time point is provided with answers the message sink unit, is used for receiving from this time point device comprising described time point information, describing based on this time point information that time point that time point can be provided with condition is provided with conditional information and the time point of the counter information that obtained by this time point device is provided with answer message;

Authentication unit, be used for when to answer this counter information that message is provided with and be verified as context by this counter information that the signal conditioning package that will carry out described time point setting obtains be suitable by relatively being provided with at described time point, and also be verified as and at described time point be set this mistiming that the transmitting time point of request message and described time point be provided with between the time of reception point of answering message and when being provided with within the allowed time scope that comprises in the conditional information, upgrade this counter information of described signal conditioning package described; And

The unit is set,, this time point of described signal conditioning package is set based on described time point information then if be used for determining that as the result of described checking time point can be provided with;

Wherein utilizing described time point that request message transmitting element and described time point are set is provided with and answers the message sink unit, to send the message of the described time point information of request and as time point session is set for a series of exchanges that this message sink is answered message, and be provided with in the session at this time point, send described time point and request message is set once, and receive described time point and be provided with and answer message once;

17. it is the information that described time point device generates according to the time point precision with described time point precision information indication that time point setting device according to claim 16, wherein said time point are provided with conditional information.

18. time point setting device according to claim 16, wherein under the described situation that effective time point expiration is set that comprises that described time point is provided with conditional information, under the process situation of the schedule time, perhaps obtain under the situation of content at described signal conditioning package, the described request detecting unit detects the described request to time point information at least.

19. time point setting device according to claim 16, wherein said counter information is a timestamp,

And wherein said time point is provided with and answers the message sink unit and receive the described time point that is provided with described timestamp by described time point device answer message is set;

And whether the timestamp that wherein said authentication unit checking is generated by described signal conditioning package when this time point of reception is provided with answer message is newly in the described timestamp that the setting of answer message is set for described time point.

20. a time point method to set up is used for the time point information that generated based on by the time point device that accurate time point is counted, and the time point by the signal conditioning package counting is set, this time point method to set up comprises:

The request detection step is used to detect the request to the time point information that is generated by described time point device;

Time point is provided with the request message forwarding step, be used for comprising that to described time point device transmission the time point of time point precision information is provided with request message, described time point precision information is indicated the time point precision of described signal conditioning package, and it is the information that is stored in safely in advance in the memory block of described signal conditioning package;

Time point is provided with answers the message sink step, is used for receiving from this time point device comprising described time point information, describing based on this time point information that time point that time point can be provided with condition is provided with conditional information and the time point of the counter information that obtained by this time point device is provided with answer message;

Verification step, be used for by relatively answering this set counter information of message and verify by this counter information that signal conditioning package generated that will carry out described time point setting whether context is suitable, and whether checking was provided with within the allowed time scope that comprises in the conditional information described in the mistiming that described time point is provided with between the transmitting time point of request message and the time of reception point that described time point is provided with answer message for described time point is provided with;

Time point is provided with step, if be used for determining that as the result of described checking time point can be provided with, this time point of described signal conditioning package is set based on described time point information then;

Step of updating is used to upgrade this counter information of described signal conditioning package;

Wherein will send the message of the described time point information of request and as time point session will be set for a series of exchanges that this message sink is answered message, and be provided with in the session at this time point, described time point is provided with request message forwarding step and described time point and is provided with and answers the message sink step each is carried out once in order;

And wherein will the processing of carrying out in the session be set and be restricted to described time point and request message forwarding step and described time point are set are provided with and answer the message sink step at described time point.