JP2002288453A - Information terminal - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an information terminal which retrieves a storage place on of ciphered contents data, which a user wants to acquire, and acquires ciphered contents data from this retrieved storage place. SOLUTION: When wanting to newly purchase music of an artist A, the user of a mobile phone 100 receives the retrieval result of the artist A from a delivery server 10. The mobile phone 100 retrieves a memory card, where ciphered contents data included in the retrieval result received from the delivery server 10 is stored, on the basis of a database. When ciphered contents data is stored in a memory card 111, the mobile phone 100 copies ciphered contents data from a mobile phone 101 and receives a license from the delivery server 10.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an information terminal device which holds a plurality of databases for managing content data and retrieves the content data by searching the plurality of databases in response to a content data acquisition request. It is.

[0002]

2. Description of the Related Art In recent years, with the advancement of digital information communication networks such as the Internet, it has become possible for each user to easily access network information using personal terminals using cellular phones and the like.

In such a digital information communication network, information is transmitted by digital signals. Therefore, for example, even when music or video data transmitted in the information communication network described above is copied by each individual user, the data is copied with almost no deterioration in sound quality or image quality due to such copying. It is possible.

Therefore, when contents such as music data and image data, etc., for which rights of the creator exist, are transmitted over such digital information communication networks, appropriate copyright protection measures must be taken. , The rights of the copyright holder may be significantly infringed.

On the other hand, giving priority to the purpose of copyright protection,
If it is not possible to distribute content data through the rapidly expanding digital information communication network, basically, even for copyright owners who can collect a certain copyright fee when copying copyrighted work data, However, it is disadvantageous.

Here, considering not a distribution via the digital information communication network as described above but a recording medium on which digital data is recorded as an example, a CD (compact disc) on which music data which is usually sold is recorded is considered. Regarding (2), music data can be freely copied from a CD to a magneto-optical disk (MD or the like) in principle as long as the copied music is stopped for personal use. However, an individual user who performs digital recording or the like indirectly pays a certain amount of the price of the digital recording device itself or a medium such as an MD as a deposit to the copyright holder.

Furthermore, when music data as a digital signal is copied from a CD to an MD, the music information is transferred from a recordable MD to another MD in consideration of the fact that the information is digital data with little copy deterioration. Copying as digital data is not possible due to copyright protection due to equipment configuration.

[0008] Even in such circumstances, distribution of content data such as music data and image data to the public through a digital information communication network is itself an act restricted by the public transmission right of the copyright holder. Sufficient measures must be taken for copyright protection.

In this case, for content data such as music data and image data which are copyrighted works transmitted to the public through the digital information communication network, once received content data is prevented from being further copied without permission. It is necessary.

[0010] Therefore, a distribution server that holds encrypted content data obtained by encrypting the content data is a data server that distributes the encrypted content data to a memory card mounted on a terminal device such as a mobile phone via the terminal device. A distribution system has been proposed. In this data distribution system, a public encryption key of a memory card and a certificate thereof, which have been authenticated by a certificate authority in advance, are transmitted to a distribution server at the time of a distribution request of encrypted content data. After confirming the reception, the encrypted content data and the license key for decrypting the encrypted content data are transmitted to the memory card. When distributing the encrypted content data and the license key, the distribution server and the memory card generate a different session key for each distribution, and encrypt the public encryption key with the generated session key. The keys are exchanged between the memory cards.

[0011] Finally, the distribution server transmits the license encrypted by the public encryption key of each memory card and further encrypted by the session key and the encrypted content data to the memory card. Then, the memory card records the received license key and the encrypted content data on the memory card.

When playing back the encrypted content data recorded on the memory card, the user inserts the memory card into the portable telephone. The mobile phone has a dedicated circuit for decrypting the encrypted content data from the memory card and reproducing and outputting the decrypted content data to the outside in addition to the normal telephone function.

As described above, each user receives the encrypted content data and the license from the distribution server by his / her own mobile phone, and records the received encrypted content data and the license on its own memory card.

[0014]

However, when each user wants to newly obtain encrypted content data, the encrypted content data may be recorded on a memory card of another user. In such a case, if each user receives the encrypted content data to be obtained from the distribution server, there is a problem that it takes a long time to receive the encrypted content data and the communication cost is high.

SUMMARY OF THE INVENTION The present invention has been made to solve such a problem. It is an object of the present invention to search a storage location of encrypted content data that a user wants to acquire, and to search for encrypted content data from the searched storage location. An object of the present invention is to provide an information terminal device for acquiring data.

[0016]

According to the present invention, an information terminal device retrieves and encrypts a plurality of beta bases created in a plurality of information terminal devices for managing encrypted content data. An information terminal device for acquiring content data and a license for reproducing encrypted content data, a transmitting / receiving unit for exchanging data with the outside, a key operation unit for inputting an instruction, and a plurality of databases And a control unit, wherein each of the plurality of databases includes a plurality of pieces of content specifying information for specifying a plurality of pieces of encrypted content data, and a license corresponding to the plurality of pieces of encrypted content data. License information indicating the presence / absence of data and the data recording device on which the encrypted content data and license are recorded A plurality of recording device specifying information for identifying the plurality of databases, and a list includes a plurality of database specifying information for specifying a plurality of beta bases and an information terminal device for generating each of the plurality of databases. Including a plurality of terminal identification information, the control unit transmits a search condition of the purchase content input via the key operation unit to the distribution server via the transmission / reception unit in response to a purchase request of the encrypted content data, The content identification information of the content that matches the search condition is received from the distribution server via the transmission / reception unit, and the license information and the terminal identification information corresponding to the content identification information that matches the content identification information that matches the received content identification information. Are extracted from multiple databases and lists, and the extracted content identification information, license information, To create a search results database containing specific information.

Preferably, the information terminal device further includes a display unit for giving various types of information to the user as visual information, and the control unit reads out the content specifying information, the license information, and the terminal specifying information from the search result database. When the selection of the encrypted content data held by the other information terminal device is input via the key operation unit, the transmission / reception unit transmits a request to copy the encrypted content data to the other information terminal device. When the duplication is permitted in another information terminal device, the encrypted content data is received from the other information terminal device via the transmission / reception unit.

Preferably, the control unit further receives a license corresponding to the copied encrypted content data from the distribution server when the license information corresponding to the requested encrypted content data indicates that there is no license. .

Preferably, the information terminal device further includes a display unit for giving various information to the user as visual information, and an interface for controlling exchange between the data recording device and the control unit, Information, license information, and terminal identification information are read from the search result database and displayed on a display unit, and selection of encrypted content data recorded in a data recording device with which the user exchanges data is input via a key operation unit. When the license information corresponding to the selected encrypted content data indicates that there is no license, a license transmission request is transmitted to the distribution server via the transmission / reception unit, and the license is received from the distribution server via the transmission / reception unit.

Preferably, the information terminal device further includes a display unit for giving various types of information to the user as visual information, and an interface for controlling exchange between the data recording device and the control unit, Information, license information, and terminal identification information are read from the search result database and displayed on the display unit, and the encrypted content selected when the selection of the encrypted content data held by the distribution server is input via the key operation unit Transmitting a transmission request for the data and a license corresponding to the selected encrypted content data to the distribution server via the transmission / reception unit,
Receiving the encrypted content data and the license from the distribution server via the transmission / reception unit;

Preferably, the control unit further receives a database held by the other information terminal device from the other information terminal device via the transmission / reception unit in response to the database acquisition request, and stores the received database in the storage unit. And update the list by adding the stored database.

[0022]

Embodiments of the present invention will be described in detail with reference to the drawings. In the drawings, the same or corresponding portions have the same reference characters allotted, and description thereof will not be repeated.

FIG. 1 is a schematic diagram conceptually illustrating the overall configuration of a data distribution system in which an information terminal device according to the present invention acquires encrypted content data and a license for decrypting the encrypted content data. is there.

In the following, music data is stored in a memory card 1 attached to a user's mobile phone via a mobile phone network.
The configuration of a data distribution system that distributes content data to content data 10 to 112 will be described as an example. However, as will be apparent from the following description, the present invention is not limited to such a case. For example, the present invention can be applied to the case of distributing image data, moving image data, news, data for English conversation, and the like.

Referring to FIG. 1, distribution carrier 20 relays a distribution request (distribution request) from a user obtained through his / her mobile phone network to distribution server 10. Distribution server 10 for managing content data such as music data
Is whether the memory card 110 (or 111, 112) attached to the mobile phone 100 (or 101, 102) of the mobile phone user who has accessed for data distribution has valid authentication data, After authenticating whether or not the memory card is a legitimate memory card, encrypting the content data with a predetermined encryption method in order to protect the copyright on the legitimate memory card, and then distributing the data. A license including a license key for decrypting the encrypted content data as information necessary for reproducing the encrypted content data, the additional information, and the encrypted content data is given to the mobile phone company as the distribution carrier 20. .

The distribution carrier 20 transmits the distribution request via its own mobile telephone network to the portable telephone 100 (or 1).
The encrypted content data and the license are distributed to the memory card 110 (or 111, 112) attached to the memory card (01, 102) via the mobile phone network and the mobile phone 100 (or 101, 02).

In FIG. 1, for example, a removable memory card 110 (or 111, 112) is attached to a mobile phone 100 (or 101, 102) of a mobile phone user.
Is attached. Memory card 110
(Or 111, 112) receives the encrypted content data received by the mobile phone 100 (or 101, 102), decrypts the encryption performed to protect the copyright, and Or 10
1, 102) to a music reproducing unit (not shown).

Further, for example, a portable telephone user "plays" and listens to such content data via a headphone 130 (or 131, 132) or the like connected to the portable telephone 100 (or 101, 102). It is possible.

With such a configuration, first, unless the memory card 110 (or 111, 112) is used, it is difficult to receive the content data from the distribution server 10 and reproduce the music. Become.

Moreover, the distribution carrier 20 counts the frequency each time content data for one song is distributed, for example, so that the mobile phone user receives (downloads) the content data and receives a copyright fee. Is collected by the distribution carrier 20 together with the communication charge of the mobile phone, the copyright holder can easily secure the copyright charge.

Therefore, in the data distribution system shown in FIG. 1, the portable telephone 100 (or 101, 10
2) The memory card 110 (or 111,
112) can receive and store the encrypted content data, additional information, and license from the distribution server 10 via the mobile phone network.

In the configuration as shown in FIG. 1, in order for the content data distributed in an encrypted form to be reproducible on the user side of the portable telephone, the system firstly requires communication. The second is the method itself for encrypting the content data, and the third is the copyright for preventing such unauthorized copying of the content data. This is a configuration that realizes protection.

Each of the mobile phones 100 to 102 creates a database for managing the encrypted content data stored in the attached memory card 110 to 112 by a method described later, and stores the created beta base. Hold. Further, the mobile phone 100 stores a database for managing the encrypted content data stored in the memory cards 111 and 112 in the mobile phone 1.
01 and 102, and stores the encrypted content data stored in the memory card 110 together with a database for managing the encrypted content data. That is, the user of the mobile phone 100 receives from the mobile phones 101 and 102 a database for managing the encrypted content data stored in the memory cards 111 and 112 owned by the users of the mobile phones 101 and 102 as friends. Hold. As described above, the friend acquires the database for managing the encrypted content data received from the distribution server 10 and stored in the memory cards 111 and 112 of the friend and holds the database in the mobile phone 100, as described later. When the user of the mobile phone 100 wants to obtain new encrypted content data, if the new encrypted content data has already been delivered to the memory cards 111 and 112, the user may use the new encrypted content data. The content data is transferred to the memory card 1 via the mobile phones 101 and 102.
11 and 112. Note that the mobile phone 100
Communication between the mobile phone 101 and the mobile phone 101, 102 is USB
(Universal Series Bus) may be performed via the cable 65 or may be performed by wireless communication.

The portable telephone 100 receives a license for decrypting and reproducing the encrypted content data received from the portable telephones 101 and 102 from the distribution server 10 via the portable telephone network. The distribution server 10
Since the license distribution is charged, the license is acquired from the distribution server 10 in principle.

In the embodiment of the present invention, in particular, when each processing of distribution and reproduction occurs, the authentication and checking functions for the destination of these content data are enhanced, and the non-authenticated recording device and information terminal are used. A configuration for enhancing the copyright protection of content data by preventing output of content data to an apparatus (a playback terminal capable of decrypting and playing back encrypted content data is also referred to as a mobile phone; the same applies hereinafter) will be described.

In the following description, the process of transmitting the encrypted content data, the additional information, and the license from the distribution server 10 to each mobile phone is referred to as “distribution”.

FIG. 2 is a diagram for explaining characteristics of data, information, and the like for communication used in the data distribution system shown in FIG.

First, data distributed from the distribution server 10 will be described. Dc is content data such as music data. The content data Dc is encrypted so as to be decryptable with the license key Kc. License key K
The encrypted content data {Dc} Kc, which has been encrypted by decryption by c, is distributed from the distribution server 10 to the user of the mobile phone in this format.

In the following, it is assumed that the notation {Y} X indicates that the data Y has been encrypted with the decryption key X.

Further, the distribution server 10 distributes the encrypted content data and additional information Dc-inf as plain text information such as a copyright relating to the content data or server access.

As a license, a license key K
c and a license ID, which is a management code for specifying distribution of a license key or the like from the distribution server 10, are stored in the distribution server 10 and the mobile phone 100 (or 101, 10).
It is exchanged with 2). Furthermore, the license is generated based on a content ID, which is a code for identifying the content data Dc, and a license purchase condition AC including information such as the number of licenses and function limitation determined by designation from the user side. There are access control information ACm, which is information relating to restrictions on license access in a recording device (memory card), and reproduction control information ACp, which is control information relating to reproduction in an information terminal device. Specifically, the access control information ACm is control information for outputting a license or a license key from a memory card to the outside, and includes the number of reproducible times (the number of license keys to be output for reproduction) and the license. Restriction information on transfer / replication of data. The reproduction control information ACp is information for restricting the reproduction after the content reproduction circuit receives the license key for reproducing the content data, and includes a reproduction time limit, a reproduction speed change restriction, and a reproduction range designation (partial license). .

Thereafter, the license ID and the content ID
, A license key Kc, access control information ACm,
The playback control information ACp is collectively referred to as a license.

FIG. 3 is a diagram for explaining characteristics of data, information, and the like for authentication used in the data distribution system shown in FIG.

A public encryption key KPpy unique to the content reproduction device and the memory card in the information terminal device.
And KPmw, respectively, and a public encryption key KPp
y and KPmw are a secret decryption key Kpy unique to the content reproduction device and a secret decryption key K unique to the memory card.
mw, respectively. These public encryption key and secret decryption key have different values for each type of memory card. The public encryption key and the secret decryption key are collectively referred to as a class key, the public encryption key is referred to as a class public encryption key, the secret decryption key is referred to as a class secret decryption key, and a unit sharing the class key is referred to as a class. The class differs depending on the manufacturing company, the type of product, the lot at the time of manufacturing, and the like.

Further, Cpy is provided as a class certificate of the content reproduction device, and Cmw is provided as a class certificate of the memory card. These class certificates have different information for each class of content reproduction device and memory card.

The class public encryption key and class certificate of these content reproduction devices are stored in the authentication data {KPp
In the format of y // Cpy @ KPa, the class public encryption key and the class certificate of the memory card are the authentication data @ KPm
In the format of w // Cmw @ KPa, the data is recorded on the data reproducing device and the memory card at the time of shipment. As will be described in detail later, KPa is a public authentication key common to the entire distribution system.

As a key for managing data processing in the memory card 110, a public encryption key KPmcx and a public encryption key K
There is a unique secret decryption key Kmcx capable of decrypting data encrypted with Pmcx. The public encryption key and the secret decryption key set for each memory card are collectively referred to as individual keys, and the public encryption key KPmc
x is called an individual public encryption key, and the secret decryption key Kmcx is called an individual secret decryption key.

Each time the license is distributed and reproduced, the distribution server 10, the mobile phones 100 to 102,
And the common keys Ks1 to Ks3 generated in the memory cards 110 to 112 are used.

Here, the common keys Ks1 to Ks3 are unique common keys generated for each "session" which is a unit of communication or access between the distribution server, the content reproduction device or the memory card. These common keys Ks1 to Ks3 are referred to as “session keys”.
Also referred to as.

These session keys Ks1 to Ks3
Has a unique value for each session,
It is managed by a distribution server, a content reproduction device, and a memory card. Specifically, the session key Ks1 is generated by the distribution server for each distribution session. The session key Ks2 is generated for each distribution session and reproduction session by the memory card, and the session key Ks3 is generated for each reproduction session in the content reproduction device. In each session, these session keys are transmitted and received, a session key generated by another device is received, encryption is performed using the session key, and a license key or the like is transmitted. Can be improved.

FIG. 4 is a schematic block diagram showing the configuration of the distribution server 10 shown in FIG. The distribution server 10 includes an information database 304 for storing distribution information such as data obtained by encrypting content data according to a predetermined method and a content ID, and charging for each user of the mobile phone according to the start of access to the content data. A charging database 302 for storing information, a menu database 307 for storing a menu of content data stored in the information database 304, and a distribution of a license ID or the like generated for each license distribution and specifying a license. The data from the distribution record database 308 holding the log, the information database 304, the accounting database 302, the menu database 307, and the distribution record database 308 are transferred to the bus BS1
And a communication device 350 for transmitting and receiving data between the distribution carrier 20 and the data processing unit 310 via a communication network.

The data processing unit 310 is controlled by the distribution control unit 315 for controlling the operation of the data processing unit 310 and the distribution control unit 315 in accordance with the data on the bus BS1. And the authentication data {KPmw /
/ Cmw @ KPa, an authentication key holding unit 313 for holding a public authentication key KPa, and authentication data {KPmw // Cm for authentication sent from a memory card.
w｝ KPa via communication device 350 and bus BS1, decryption processing section 312 for performing decryption processing using public authentication key KPa from authentication key holding section 313, and a session for generating session key Ks1 for each distribution session Key generator 316 and session key generator 316
Decrypts the session key Ks1 generated by
And an encryption processing unit 318 for encrypting using the class public encryption key KPmw obtained by step S12 and outputting the encrypted data to the bus BS1, and receiving data transmitted after being encrypted by the session key Ks1 from the bus BS1. And a decoding processing unit 320 for performing a decoding process.

Data processing section 310 further encrypts license key Kc and access control information ACm provided from distribution control section 315 with individual public encryption key KPmcx for each memory card obtained by decryption processing section 320. Encryption processing unit 326 and encryption processing unit 3
26 includes an encryption processing unit 328 for further encrypting the output from the decryption processing unit 320 using the session key Ks2 given from the decryption processing unit 320 and outputting the encrypted data to the bus BS1.

The operation of the distribution server 10 in a distribution session will be described later in detail using a flowchart.

FIG. 5 is a diagram showing the portable telephones 100 to 100 shown in FIG.
FIG. 2 is a schematic block diagram for explaining a configuration of a second embodiment.

The portable telephones 100 to 102 include a bus BS2 for transmitting and receiving data to and from each section of the portable telephones 100 to 102, an antenna 1101 for receiving a signal wirelessly transmitted by the portable telephone network, and an antenna 1101. A transmission / reception unit 1102 for receiving a signal, converting the signal to a baseband signal, or modulating data from each unit of the mobile phones 100 to 102 and providing the modulated data to the antenna 1101.

The cellular phones 100 to 102 further store the memory cards 110 to 1 along with the encrypted content data.
And a RAM 1103 for storing a database for managing encrypted content data created based on the content management information stored in the storage device 12. In addition, RAM
1103 also stores a database acquired from another mobile phone.

The portable telephones 100 to 102 further include a controller 1106 for controlling the operation of the portable telephones 100 to 102 via the bus BS2 and a key operation unit for giving external instructions to the portable telephones 100 to 102. 1108 and a display panel 1 for providing information output from the controller 1106 and the like to the user as visual information.
110.

The mobile phones 100 to 102 further include removable memory cards 110 to 112 for storing content data (music data) from the distribution server 10 or another mobile phone and performing a decoding process. Memory card interface 12 for controlling data transfer between memory cards 110-112 and bus BS2
00.

The mobile phones 100 to 112 further authenticate the authenticated data {KPp1 // Cp1 by decrypting the class public encryption key KPp1 and the class certificate Cp1 with the public authentication key KPa so that their validity can be authenticated. ｝
An authentication data holding unit 1500 that holds KPa is included. Here, the class y of the mobile phones 100 to 102 is y = 1.
And

The mobile phones 100 to 102 further decode the data received from the bus BS2 with the Kp1 holding unit 1502 that holds the class-specific decryption key Kp1, and generate the data generated by the memory cards 110 to 112. Decryption processing unit 1504 for obtaining session key Ks2
And

The mobile phones 100 to 102 further encrypt data exchanged on the bus BS2 with the memory cards 110 to 112 in a reproduction session for reproducing the content data stored in the memory cards 110 to 112. Session key Ks3 for performing
Key generation unit 1508 for generating a key by a random number or the like
When the license key Kc and the reproduction control information ACp are received from the memory cards 110 to 112 in the reproduction session of the encrypted content data, the session key Ks3 generated by the session key generation unit 1508 is obtained by the decryption processing unit 1504. Session key K
and an encryption processing unit 1506 that encrypts the data by s2 and outputs the encrypted data to the bus BS2.

The portable telephones 100 to 102 further decode the data on the bus BS2 with the session key Ks3 and output the license key Kc and the reproduction control information ACp, and the encrypted content data from the bus BS2. Upon receiving {Dc} Kc, the decryption processing unit 1
510 decrypts the encrypted content data {Dc} Kc using license key Kc from
And a decoding processing unit 1516 that outputs the audio data to the music reproduction unit 1518.

The mobile phones 100 to 102 further include a music playback unit 1518 for receiving the output from the decryption processing unit 1516 and playing back the content data, and a music playback unit 1.
It includes a DA converter 1519 for converting the output of 518 from a digital signal to an analog signal, and a terminal 1530 for outputting the output of the DA converter 1519 to an external output device (not shown) such as headphones.

The portable telephones 100 to 102 further include a USB interface 1112 for controlling data transfer between the bus BS2 and the terminal 1114 when receiving content data, additional information, and a license from another portable telephone. And a terminal 1114 for connecting the USB cable 65.

In FIG. 5, the area surrounded by the dotted line constitutes a content reproducing device 1550 for decrypting the encrypted content data and reproducing the music data.

Further, in FIG. 5, a voice codec for modulating and decoding voice data necessary for a normal call function, a microphone, and the like are omitted.

The operation of each component of each of the mobile phones 100 to 102 in each session will be described later in detail with reference to flowcharts.

FIG. 6 shows the memory cards 110 to 110 shown in FIG.
FIG. 2 is a schematic block diagram for explaining a configuration of a second embodiment.

As described above, KPmw is used as the class public encryption key and the class secret decryption key of the memory card.
And Kmw are provided, and the class certificate Cmw of the memory card is provided. In the memory card 110, it is assumed that a natural number w = 3. It is assumed that a natural number x for identifying a memory card is represented by x = 4 for the memory card 110.

Therefore, memory card 110 holds authentication data holding unit 1400 holding authentication data {KPm3 // Cm3} KPa and individual secret decryption key Kmc4 which is a unique decryption key set for each memory card. Kmc holding unit 1402, Km holding unit 1421 holding class secret decryption key Km3, and individual secret decryption key Kmc4
K holding public encryption key KPmc4 that can be decrypted by
Pmc holding unit 1416.

As described above, by providing an encryption key for a recording device called a memory card, management of distributed content data and an encrypted license key is executed for each memory card, as will be apparent from the following description. It becomes possible to do.

The memory card 110 further transmits a signal to the terminal 142 between the memory card 110 and the memory card interface 1200.
14 and a bus BS for exchanging signals between the interface 1424
And a decryption processing unit 1422 that receives the class secret decryption key Km3 from the Km holding unit 1421 from the data supplied from the interface 1424 to the bus BS3, and outputs the session key Ks1 generated in the distribution session by the distribution server 10 to the contact point Pa. Receives the public authentication key KPa from the KPa holding unit 1414, executes a decryption process of the data provided to the bus BS3 with the public authentication key KPa, and outputs the decryption result and the obtained class certificate to the controller 1420.
The decryption processing unit 1408 that outputs the obtained class public key to the encryption processing unit 1410 and the key selectively given by the switch 1442,
And an encryption processing unit 1406 for encrypting the data selectively given by 46 and outputting it to the bus BS4.

The memory card 110 further stores a session key Ks2 in each session of distribution and reproduction.
And a session key Ks2 output from the session key generator 1418
Is encrypted by the class public encryption key KPpy or KPmw obtained by the decryption processing unit 1408 and the bus B
An encryption processing unit 1410 that outputs to S3, a decryption processing unit 1412 that receives data encrypted with the session key Ks2 from the bus BS3 and decrypts the data with the session key Ks2 obtained from the session key generation unit 1418, The license key Kc and the reproduction control information ACp read from the memory 1415 in the reproduction session are converted into the individual public encryption key KPmcx (x ≠) of the other memory card 110 decrypted by the decryption processing unit 1412.
4) an encryption processing unit 1417 for performing encryption.

The memory card 110 further includes a bus BS
3, a decryption processing unit 1404 for decrypting the data on 3 with the individual private decryption key Kmc4 of the memory card 110 paired with the individual public encryption key KPmc4, and a log storing a history of communication between the distribution server 10 and A license (Kc, AC) for reproducing the encrypted content data {Dc} Kc and the encrypted content data {Dc} Kc
p14, ACm, license ID, content ID), additional information Dc-inf, a playlist of encrypted content data, and a license management file for managing a license from the bus BS3, and a memory 1415 for receiving and storing the license management file. And The memory 1415 is configured by, for example, a semiconductor memory. Also, the memory 1415
A log area 1415A, a license area 1415B,
And a data area 1415C. Log area 1415A
Is an area for recording a log. Log area 141
5A includes a reception log recorded when a license is input to the memory card 110 and stored.

The license area 1415B is an area for recording a license. License area 1415
B is a license (license key Kc, reproduction control information A
Cp, access restriction information ACm, license ID, content ID). The license is stored in the license area 1415B corresponding to the entry number. When accessing the license, the license is stored or the entry for which the license is to be recorded is specified by the entry number. Has become.

The data area 1415C includes an encrypted content data {Dc} Kc, additional information Dc-inf of the encrypted content data, a license management file for recording information necessary for managing a license for each encrypted content, and This is an area for recording a playlist for recording basic information for accessing the encrypted content data and the license recorded on the memory card. The data area 1415C can be directly accessed from outside.

The memory card 110 further includes a bus BS
3 to exchange data with the outside via the bus BS
3 includes a controller 1420 for receiving playback information and the like and controlling the operation of the memory card 110.

Note that all components except the data area 1415C are configured in a tamper-resistant module area.

The memory cards 111 and 112 have the same configuration as the memory card 110. In this case, a natural number other than “4” is used as the natural number x for identifying the memory card.

The operation of each session in the data distribution system shown in FIG. 1 will be described below.

[Distribution] First, the operation of distributing the encrypted content data and the license from the distribution server 10 to the memory card 110 of the mobile phone 100 in the data distribution system shown in FIG. 1 will be described.

FIGS. 7 and 8 show memory card 11 attached to portable telephone 100, which is generated when encrypted content data is purchased in the data distribution system shown in FIG.
7 is a first and a second flowchart for explaining an operation of distributing encrypted content data {Dc} Kc to 0, additional information Dc-inf, and a license (hereinafter, also referred to as a distribution session).

Prior to the processing in FIG.
It is assumed that the user No. 0 connects to the distribution server 10 via the mobile phone network and acquires the content ID of the content desired to be purchased.

Referring to FIG. 7, the user of portable telephone 100 issues a distribution request by designating a content ID via key operation unit 1108 (step S10).
0). A purchase condition A for purchasing a license of the encrypted content data via the key operation unit 1108
C is input, and the purchase condition AC is input (step S102). That is, in order to purchase the license key Kc for decrypting the selected encrypted content data, the access control information AC of the encrypted content data is purchased.
m and reproduction control information ACp to set the purchase condition AC.
Is entered.

When purchase condition AC for encrypted content data is input, controller 1106 gives an instruction to output authentication data to memory card 110 via bus BS2 and memory card interface 1200 (step S104). Controller 1 of memory card 110
420 receives the authentication data transmission request via the terminal 1426, the interface 1424, and the bus BS3 (step S106). And the controller 1420
Reads the authentication data {KPm3 // Cm3} KPa from the authentication data holding unit 1400 via the bus BS3,
{KPm3 // Cm3} KPa is output via bus BS3, interface 1424, and terminal 1426 (step S108).

Controller 1106 of Mobile Phone 100
Is the authentication data {KPm3 /
In addition to / Cm3 @ KPa, a content ID, license purchase condition data AC, and a distribution request are transmitted to distribution server 10 (step S110).

In the distribution server 10, the distribution request, the content ID, and the authentication data {KP
m3 // Cm3 @ KPa and the license purchase condition data AC are received (step S112), and the decryption processing unit 312 decrypts the authentication data output from the memory card 110 with the public authentication key KPa (step S114). ).

The distribution control unit 315 performs an authentication process for judging from the decryption processing result in the decryption processing unit 312 whether or not an authorized organization has received encrypted authentication data for certifying its validity. (Step S116).
If it is determined that the authentication data is valid, the distribution control unit 315 approves and accepts the class public encryption key KPm3 and the class certificate Cm3. Then, control goes to the next process (step S118). If it is not valid authentication data, it is rejected and the distribution session is terminated without accepting the class public encryption key KPm3 and the class certificate Cm3 (step S184).

As a result of the authentication, when it is confirmed that the access is from a mobile phone equipped with a memory card having valid authentication data, session key generating section 316 in distribution server 10 transmits a session key for distribution. K
s1 is generated (step S118). The session key Ks1 is encrypted by the encryption processing unit 318 using the class public encryption key KPm3 corresponding to the memory card 110 obtained by the decryption processing unit 312 (step S120).

The distribution control unit 315 generates a license ID (step S122), and transmits the license ID and the encrypted session key Ks1 to the license ID //
As {Ks1} Km3, the bus BS1 and the communication device 3
The data is output to the outside through the device 50 (step S124).

The mobile phone 100 has a license ID //
Upon receiving {Ks1} Km3, the controller 1106
Inputs the license ID // {Ks1} Km3 into the memory card 110 (step S126). Then, in the memory card 110, the controller 14 is connected via the terminal 1426 and the interface 1424.
20 receives the license ID // {Ks1} Km3 (step S128). And the controller 142
0 is the log area 1 of the memory 1415 via the bus BS3.
The reception log recorded in 415A is initialized, and the received license ID is stored in log area 1415A (step S130). At this time, the reception status in the reception log
te is set to OFF. Then, the controller 1
420 gives {Ks1} Km3 to the decryption processing unit 1422 via the bus BS3, and the decryption processing unit 1422 uses the class secret decryption key Km3 unique to the memory card 110 stored in the Km storage unit 1421 to generate {Ks1} Km3. To decrypt the session key Ks1 and accept the session key Ks1 (step S13).
2).

[0093] The controller 1420
When the reception of the session key Ks1 generated in step (1) is confirmed, the session key generation unit 1418 is instructed to generate the session key Ks2 generated during the distribution operation in the memory card 110. Then, the session key generation unit 1418 generates a session key Ks2 (Step S134). The controller 1420 receives the generated session key Ks2 via the bus BS3,
The received session key Ks2 is stored in the log area 1415A of the memory 1415, and the reception state is turned ON (step S136).

The encryption processing unit 1406 includes the changeover switch 14
The changeover switch 14 is provided by the session key Ks1 provided from the decryption processing unit 1422 through the contact point Pa at 42.
The session key Ks2 and the individual public encryption key KPmc4, which are given by sequentially switching the contacts 46, are encrypted as one data string, and {Ks2 // KPm
c4 @ Ks1 is output to the bus BS3. Encrypted data {Ks2 // KPmc4} Ks1 output to bus BS3
Is output from the bus BS3 to the mobile phone 100 via the interface 1424 and the terminal 1426 (step S138), and transmitted from the mobile phone 100 to the distribution server 10 (step S140).

Referring to FIG. 8, distribution server 10 transmits $ K
s2 // KPmc4 @ Ks1 and receives the
At 20, a decryption process is performed using the session key Ks 1, the session key Ks 2 generated by the memory card 110 and the individual public encryption key K of the memory card 110.
Pmc4 is received (step S142).

The distribution control unit 315 obtains the license key Kc from the information database 304 according to the content ID obtained in step S112 (step S14).
4) In accordance with the license purchase condition data AC acquired in step S112, the access control information ACm and the reproduction control information ACp are determined (step S146).

The distribution control unit 315 gives the generated license, that is, the license ID, the content ID, the license key Kc, the reproduction control information ACp, and the access control information ACm to the encryption processing unit 326. The encryption processing unit 326 encrypts the license using the individual public encryption key KPmc4 of the memory card 110 obtained by the decryption processing unit 320 and encrypts the encrypted data {license ID // content ID // Kc // ACm // ACp} Kmc4.
Is generated (step S148). Then, the encryption processing unit 328 outputs the encrypted data from the encryption processing unit 326 {license ID // content ID // Kc // ACm //
ACp @ Kmc4 is encrypted with the session key Ks2 from the decryption processing unit 320, and the encrypted data {license ID // content ID // Kc // ACm //
ACp {Kmc4} Ks2 is output. Delivery control unit 31
5 is the encrypted data via the bus BS1 and the communication device 350 {license ID // content ID // Kc
// Acm // ACp {Kmc4} Ks2 is transmitted to mobile phone 100 (step S150).

Mobile phone 100 transmits the encrypted data {license ID // content ID // Kc /
/ ACm // ACp {Kmc4} Ks2 is received and input to the memory card 110 via the bus BS2 (step S152). In the memory card 110, the terminal 1
Bus 426 via interface 426 and interface 1424
The decoding processing unit 1412 decodes the received data given in S3. The decryption processing unit 1412 decrypts the received data on the bus BS3 using the session key Ks2 given from the session key generation unit 1418, and
(Step S154).

At this stage, an encryption license {license ID // content ID // Kc // ACm // ACp} Kmc4 that can be decrypted with the individual secret decryption key Kmc4 held in the Kmc holding unit 1402 is stored in the bus BS3. Is output (step S154).

In accordance with an instruction from the controller 1420, the encrypted license $ license ID // content ID /
/ Kc // ACm // ACp @ Kmc4 is decrypted by the individual secret decryption key Kmc4 in the decryption processing unit 1404, and the license (license key Kc, license I
D, content ID, access control information ACm, and reproduction control information ACp) are received (step S15).
6). At this stage, the terminal 1426 and the interface 1
An entry number for storing a license is input via 424.

Then, controller 1420 transmits the received license (license key Kc, license I
D, content ID, access control information ACm, and reproduction control information ACp) are stored in the license area 1415B of the memory 1415 according to the received entry number (step S158). And the controller 1420
Is stored in the log area 14 of the memory 1415 via the bus BS3.
Turn off the reception state recorded in the 15A reception log
(Step S160). When the writing of the license is completed, the controller 1106 of the mobile phone 100
The license management information is updated, and the updated license management information is input to the memory card 110 (Step S)
162). Controller 1420 of memory card 110
Writes the input license management information into the data area 1415C of the memory 1415 (step S164).

After the license distribution is completed, controller 1106 of mobile phone 100 transmits a distribution request for the encrypted content data to distribution server 10 (step S166), and distribution server 10 transmits a request for distribution of the encrypted content data. Is received (step S168). Then, the distribution control unit 315 of the distribution server 10 sends the encrypted content data {Dc} K
c and the additional information Dc-inf are obtained, and these data are output via the bus BS1 and the communication device 350 (step S170).

The portable telephone 100 has a function of {Dc} Kc // D
Upon receiving the c-inf, the encrypted content data {D
It receives c @ Kc and additional information Dc-inf (step S172). Then, the controller 1106
Inputs the encrypted content data {Dc} Kc and the additional information Dc-inf to the memory card 110 via the bus BS2 and the memory card interface 1200 (step S174).

The controller 142 of the memory card 110
0 is the encrypted content data {Dc} Kc via terminal 1426, interface 1424 and bus BS3.
And additional information Dc-inf, and the received encrypted content data {Dc} Kc and additional information Dc
-Inf is recorded in the data area 1415C of the memory 1415 (step S176). And the controller 1
Reference numeral 420 denotes the information of the received content in the data area 14.
It is added to the 15C playlist (step S178).

Then, controller 1106 of mobile phone 100 transmits encrypted content data {Dc} Kc
Distribution server 1 and distribution information Dc-inf
0 (step S180), and the distribution server 10
Upon receiving the distribution acceptance, the distribution control unit 315 writes the information to the accounting database 302 via the bus BS1 and performs an accounting process (step S182). Then, the distribution operation ends (step S184).

As described above, the memory card 110 attached to the mobile phone 100 is a device that holds regular authentication data, and at the same time, the public encryption key KPm3 that can be encrypted and transmitted together with the class certificate Cm3 is valid. The content data can be distributed after confirming that the content data is valid, and the distribution of the content data to an unauthorized memory card can be prohibited.

The distribution of the encrypted content data, the additional information, and the license to the memory cards 111, 112 mounted on the mobile phones 101, 102 is also performed according to the flowcharts shown in FIGS.

FIG. 9 shows the memory 14 of the memory card 110.
15 license area 1415B and data area 1
415C. Data area 1415C
Includes a playlist file 160, entry management information 165, a card ID 166, and a content file 1
611-161n and the license management file 1621
162n are recorded. Content file 1
611 to 161n record the received encrypted content data {Dc} Kc and the additional information Dc-inf as one file. Also, the license management file 16
21 to 162n are the content files 16 respectively.
11 to 161n, and includes an entry number in which a license for decrypting and reproducing the encrypted content data recorded in the corresponding content files 1611 to 161n is stored.

The license area 1415B stores a license and a valid flag in the area specified by the entry number. Therefore, the license management file 16
If the entry number is read from the license management file 16 based on the read entry number, the license management file 16 is read.
Content file 1611 corresponding to 21 to 162n
161n can be read from the license area 1415B for decrypting the encrypted content data. The valid flag indicates whether the license can be issued from the memory card 110 to the outside.
When the license is stored in the memory card 10, “valid” is recorded. When the license is transferred from the memory card 110 to the outside by moving the license, which will be described later, “invalid” is recorded.
Is recorded.

When receiving the encrypted content data and the license from distribution server 10, memory card 110 records the encrypted content data and the license in memory 1415.

The license management file 1622
Is indicated by a dotted line but indicates that it is not actually recorded. Although the content file 1612 exists but cannot be reproduced without a license, this corresponds to, for example, a case where a mobile phone receives only encrypted content data from another mobile phone.

FIG. 10 is a conceptual diagram showing the relationship between the encrypted content data {Dc} Kc recorded in the content files 1611 to 161n shown in FIG. 9 and the additional information Dc-inf. FIG. 10 shows a case where the number of contents is ten. Content data 1631 to 1640
Are the content files 1611 to 1620, respectively.
Is the encrypted content data recorded in the. The content management information 163 includes management information 1651 to 1660, and the management information 1651 to 1660
D, title name, artist name and content type. The management information 1651 to 1660 are management information for managing the content data 1631 to 1640, respectively. Therefore, the management information 1651
To 1660 are the content data 1631 to
The content management information 163 is made to correspond to the content management information 1640.

[Reproduction] The operation of the memory card 110 mounted on the mobile phone 100 to reproduce the encrypted content data received from the distribution server 10 will be described.

FIG. 11 is a flow chart for explaining the operation of reproducing the content data received by memory card 110 in mobile phone 100. Note that FIG.
Prior to the processing in, the user of the mobile phone 100 reads the content (song) to be reproduced in accordance with the playlist recorded in the data area 1415C of the memory card 100.
Is determined, a content file is specified, and a license management file is obtained.

Referring to FIG. 11, when the reproduction operation is started, the user of portable telephone 100 operates key operation unit 1108.
A reproduction request is input to the mobile phone 100 via the terminal (step S700). Then, controller 1106 makes an output request for authentication data to content reproduction device 1550 via bus BS2 (step S702), and content reproduction device 1550 receives the output request for authentication data (step S704).
Then, the authentication data holding unit 1500 stores the authentication data $ K
Pp1 // Cp1｝ KPa is output (step S70).
6), the controller 1106 inputs the authentication data {KPp1 // Cp1} KPa to the memory card 110 via the memory card interface 1200 (step S708).

Then, memory card 110 receives authentication data {KPp1 // Cp1} KPa, and decryption processing section 1408 receives received authentication data {KPp1 // Cp
p1 @ KPa is decrypted with the public authentication key KPa held in the KPa holding unit 1414 (step S710),
The controller 1420 performs an authentication process based on the decryption processing result in the decryption processing unit 1408. That is, an authentication process is performed to determine whether the authentication data {KPp1 // Cp1} KPa is legitimate authentication data (step S).
712). If decryption has failed, the flow shifts to step S746, and the reproduction operation ends. When the authentication data can be decrypted, the controller 1420 controls the session key generation unit 1418, and the session key generation unit 1418
A session key Ks2 for a reproduction session is generated (step S713). Then, the encryption processing unit 1410
Outputs to the bus BS3 {Ks2} Kp1 obtained by encrypting the session key Ks2 from the session key generation unit 1418 with the public encryption key KPp1 decrypted by the decryption processing unit 1408. Then, the controller 1420
Is transmitted to the memory card interface 1200 via the interface 1424 and the terminal 1426 {Ks2} K
p1 is output (step S714). Mobile phone 10
0 controller 1106 acquires {Ks2} Kp1 via the memory card interface 1200. Then, the controller 1106 gives {Ks2} Kp1 to the decryption processing unit 1504 of the content reproduction device 1550 via the bus BS2 (step S716), and the decryption processing unit 1504 outputs the public encryption key output from the Kp1 holding unit 1502. Secret decryption key K paired with KPp1
{Ks2} Kp1 is decrypted by p1, and the session key Ks2 is output to the encryption processing unit 1506 (step S1).
718). Then, the session key generation unit 1508
Generates a session key Ks3 for a reproduction session, and outputs the session key Ks3 to the encryption processing unit 1506 (step S720). The encryption processing unit 1506 receives the session key Ks from the session key generation unit 1508.
3 is encrypted with the session key Ks2 from the decryption processing unit 1504, and {Ks3} Ks2 is output (step S722). The controller 1106 sends $ Ks via the bus BS2 and the memory card interface 1200.
3 @ Ks2 is output to memory card 110 (step S724).

Then, the decryption processing unit 1412 of the memory card 110 includes the terminal 1426 and the interface 142
4, and {Ks3} Ks2 are input via the bus BS3. The decryption processing unit 1412 includes the session key generation unit 1
By decrypting {Ks3} Ks2 with the session key Ks2 generated by 418, the session key Ks3 generated by the mobile phone 100 is received (step S).
726).

Controller 1106 of mobile phone 100
Acquires the entry number in which the license is stored from the license management file of the reproduction request music acquired in advance from the memory card 110 (step S72).
8) The obtained entry number and reproduction permission request are output to the memory card 110 via the memory card interface 1200 (step S730).

Controller 142 of memory card 110
0 accepts the entry number and the reproduction permission request, and acquires the license and the validity flag stored in the area specified by the entry number (step S732). Then, the controller 1420 checks the valid flag (step S733). If the validity flag is “absent” in step S733, there is no license in the specified entry, and the reproduction operation ends (step S746). If the validity flag is "valid" in step S733, the process proceeds to the next step S734 because a license exists in the specified entry.

Then, the controller 1420 checks the access restriction information ACm (step S734).

In step S734, by checking access restriction information ACm, which is information relating to restrictions on memory access, more specifically, by checking the number of times of reproduction, if the reproduction is already disabled, When the reproduction operation is completed and the number of times of reproduction of the access restriction information is limited, the number of reproduction of the access restriction information ACm is changed (step S736), and the process proceeds to the next step (step S738). On the other hand, access restriction information ACm
If the reproduction is not restricted by the reproduction frequency of step S736, step S736 is skipped, and the process proceeds to the next step (step S738) without changing the reproduction frequency of access restriction information ACm.

If it is determined in step S734 that the reproduction operation can be performed, the license key Kc and the reproduction control information ACp of the reproduction request music recorded in the license area 1415B of the memory 1415 are stored on the bus BS3. (Step S73)
8).

The obtained license key Kc and reproduction control information ACp are sent to the encryption processing unit 1406 via the contact Pf of the changeover switch 1446. The encryption processing unit 1406
Decoding processing unit 1 via contact Pb of changeover switch 1442
The license key Kc and the reproduction control information ACp received via the changeover switch 1446 are encrypted by the session key Ks3 received from the key 412, and {Kc // ACp} Ks
3 is output to the bus BS3 (step S738).

The encrypted data output to the bus BS3 is
The mobile phone 10 via the interface 1424, the terminal 1426, and the memory card interface 1200
Sent to 0.

In portable telephone 100, encrypted data {Kc // ACp} Ks3 transmitted to bus BS2 via memory card interface 1200 is decrypted by decryption processing section 1510, and license key K
c and the playback control information ACp (step S7)
40, S742). The decryption processing unit 1510 transmits the license key Kc to the decryption processing unit 1516, and
Cp is output to the bus BS2.

The controller 1106 receives the reproduction control information ACp via the bus BS2 and confirms whether or not reproduction is possible (step S744).

If it is determined in step S744 that the reproduction cannot be performed based on the reproduction control information ACp, the reproduction operation ends.

If it is determined in step S744 that the content can be reproduced, controller 1106 requests encrypted content data {Dc} Kc from memory card 110 via bus BS2 and memory card interface 1200. Then, controller 1420 of memory card 110 acquires encrypted content data {Dc} Kc from memory 1415, and outputs it to memory card interface 1200 via bus BS3, interface 1424, and terminal 1426.

Controller 1106 of mobile phone 100
Are the memory card interface 1200 and the bus B
The encrypted content data {Dc} Kc is obtained via S2, and the encrypted content data {D
c｝ Kc is provided to the content reproduction device 1550.

Then, the content reproduction device 1550
Of the encrypted content data {D
The content data Dc is obtained by decrypting c @ Kc with the license key Kc output from the decryption processing unit 1510.

The decrypted content data Dc
Is output to the music playback unit 1518 and the music playback unit 1518
Reproduces the content data {Dc} Kc, and the DA converter 1519 converts the digital signal into an analog signal and outputs it to the terminal 1530. And the music data is in terminal 1
530 is output to the headphone 130 via an external output device and reproduced. Thus, the reproducing operation ends (step S746).

[0132] The encrypted content data recorded on the memory cards 111 and 112 are stored in the mobile phones 101 and 112, respectively.
The reproduction operation at 102 is also performed according to the flowchart shown in FIG.

The mobile phones 100 to 102 respectively
When the memory cards 110 to 112 are inserted, a database for managing the encrypted content data recorded on the memory cards 110 to 112 is created, and the created database is stored in the RAM 1103. With reference to FIG. 12, creation of a database in mobile phones 100 to 102 will be described.

Referring to FIG. 12, database 150
Are content No. 1531 and content ID 153
2, a title name 1533, an artist name 1534, a content type 1535, a license presence / absence 1536, and a storage card ID 1537. When the memory card 110 is inserted, the controller 1106 of the mobile phone 100 stores the memory 1415 of the memory card 110 via the bus BS2 and the memory card interface 1200.
, The additional information Dc-inf, the entry number and the card ID are read from the data area 1415C. Then, the content ID, title name, artist name, and content type included in the read additional information Dc-inf are
Each is the content No. 153 of the database 150
1, content ID 1532, title name 1533, artist name 1534, and content type 1535
To be stored. The controller 1106 also stores the presence or absence of a license for the corresponding content data in the license presence / absence 1536 based on the read entry number.
That is, the controller 1106 controls the memory card 11
If the entry number can be read from 0, it is recognized that there is a license. If the entry number cannot be read, it is recognized that there is no license. Further, controller 1106 stores the card ID read from memory card 110 in storage card ID 1537.

[0135] The controller 1106 is a portable telephone 10
When a plurality of memory cards are sequentially inserted into the memory card 0, a database for encrypted content data stored in all the memory cards is created. Therefore. In FIG. 12, the storage card ID 1537 includes
A plurality of card IDs are shown, and content No. 15
31 indicates that the contents 1 to N are stored in different memory cards. Then, the controller 1106 stores the created database 150 in the RA
It is stored in M1103.

The mobile phones 101 and 102 also create a database for managing the encrypted content data stored in the attached memory card in the same manner as the mobile phone 100, and store the created database in the RAM.
1103.

Referring to FIGS. 13 and 14, mobile phone 100 records the encrypted content data and license received from distribution server 10 on memory card 110, and manages the encrypted content data recorded on memory card 110. The operation that can be performed by the user of the mobile phone 100 at the stage when the database for creating is created will be described. At this stage, the display panel 111 of the mobile phone 100
At 0, a screen 170 shown in FIG. 13 is displayed.

[0138] The user of the mobile phone 100 can send a request from the user of the mobile phones 101 and 102 as friends to the mobile phone 10.
It is possible to have the database stored in the RAMs 1102 and 1102 transmitted.

Referring to FIG. 13, the user of portable telephone 100 looks at screen 170 of display panel 1110, selects “acquire tune information”, and presses “enter”. The screen 171 is displayed. Screen 171
Is a screen for asking the user of the mobile phone 100 about a communication method when the database is transmitted from the mobile phones 101 and 102. The user of the mobile phone 100 selects, for example, “cable connection” and presses “enter”. Then, on the display panel 1110, a screen 17 with a comment “Connect the cable and press“ Start ”” is displayed.
2 is displayed. The user of the mobile phone 100 connects the mobile phone 100 with the mobile phone 10 via a cable.
Connect with 1,102 and press "Start".

Then, on the display panel 1110, a screen 173 showing a message of "acquiring ..." is displayed. When the acquisition of the owned music information is completed, the display panel 111
0 indicates a screen 17 showing a message indicating that the acquisition is completed.
4 is displayed. Thus, the user of the mobile phone 100 receives the database from the mobile phones 101 and 102. Then, controller 1106 of mobile phone 100 stores the received beta base in RAM 1103. Therefore, the RAM 1103 stores a plurality of databases as shown in FIG. When a plurality of databases are stored in the RAM 1103, the controller 1106 of the mobile phone 100 creates a list 155 for managing the plurality of databases as shown in FIG.

The list 155 contains the database No. 155
1, content database 1552, number of contents 1
553, a terminal ID 1554, and an owner name 1555. The database No. 1551 is a reference number assigned to each database. Note that “1” indicates that the database is held in the own mobile phone.
The content database 1552 is information for identifying a plurality of databases. The number of contents 1553 is
Shows the number of contents included in each database. Terminal I
D1554 is information for specifying a mobile phone holding each database. As the terminal ID, for example, a telephone number of a mobile phone can be considered. Owner name 1555
Represents the owner of each database.

As described above, when receiving the database from the mobile phones 101 and 102, the controller 1106 of the mobile phone 100 creates the list 155, and stores the created list 155 in the RAM 1103.

Referring again to FIG.
When the user of “0” selects “Purchase Song” on the screen 170 and presses “OK”, the screen 175 is displayed on the display panel 111.
Displayed as 0. That is, a screen asking the user of the mobile phone 100 about a search method for a song to be newly purchased is displayed. The user of the mobile phone 100 may select “artist name”
Is selected and "Enter" is pressed, a screen 176 prompting input of an artist name to be searched is displayed on the display panel 1110.

The user of the mobile phone 100 inputs "artist A" and presses "search start". The input “Artist A” is transmitted from the mobile phone 100 to the distribution server 10. Then, the distribution server 10 searches for the content ID and title of the music data composed by the artist A based on the “artist A” received from the mobile phone 100, and compares the search result with the mobile phone 10.
Send to 0.

Then, the mobile phone 100 receives the search result from the distribution server 10 and stores the title of the song composed by the artist A, the person who owns the song, and the license of the song stores the song. Information indicating whether or not it is present at the place where it is located is displayed on the display panel 1110 as a screen 177.

When screen 177 is displayed on display panel 1110, if the user of mobile phone 100 selects a song of “Title 4”, screen 17 is displayed on display panel 1110.
8 is displayed. Since the song of “Title 4” is owned by B and has no license, the encrypted content data stored on B's memory card is copied (duplicated) via B's mobile phone. Become. Then, next, a screen 178 is displayed on the display panel 1110 asking for a communication method when copying the encrypted content data from Mr. B's mobile phone. Mobile phone 10
In the screen 178, the user of “0”
Select "" and press "OK". "Connect the cable and press" Start "when ready. Is displayed (screen 179). The user of the mobile phone 100 connects his / her mobile phone 100 to Mr. B's mobile phone via a cable and presses “start”.

Referring to FIG. 14, display panel 1110 displays a message "copy inquiring" (screen 180). When Mr. B inserts the memory card storing the content of title 4 and permits copying, a message saying “copying is permitted and copying content of title 4” and the progress of copying are displayed on the display panel. 1110 (screen 18
1). When the copy of the encrypted content data from Mr. B's memory card is completed, a message indicating that “the title 4 has been successfully acquired” is displayed, and
A message is displayed that says "To acquire a license, press" Acquire license "" (screen 182). Then, when the user of the mobile phone 100 presses “acquire license”, the screen moves to a screen 183.

When "Title 3" is selected on the screen 177 shown in FIG. 13, since the content of "Title 3" is held by the user of the mobile phone 100 and has no license, the screen shifts to the screen 183 shown in FIG. I do.

On the screen 183, “Distribution server 10
Is displayed and a message “Acquiring the license of“ title n ”” is displayed on the display panel 1110 (screen 183). Then, when the acquisition of the license is completed, a message “acquisition of license for“ title n ”has been completed” is displayed on display panel 1110 (screen 184). The screen 17 shown in FIG.
7, when the user of the mobile phone 100 selects “Title 2”, the content and license of “Title 2” are held by the user of the mobile phone 100, so the copy of the encrypted content data or the distribution of the license No reception from the server 10 is performed.
On screen 177, mobile phones 100 to 102 are displayed.
When encrypted content data that has not been distributed to the memory cards 110 to 112 attached to the
The distribution operation of the encrypted content data and the license is executed according to the flowchart shown in FIG.

Mobile phone 100 copies the encrypted content data from another mobile phone and, when receiving the license of the copied encrypted content data from distribution server 10, transfers the encrypted content data and the license to memory card 110. At the same time as recording, the database for managing the encrypted content data stored in the memory card 110 is updated.

Referring to FIGS. 16 and 17, the operation on screens 175 to 177 shown in FIG. 13 will be described in detail. FIG. 16 is a flowchart for explaining the search operation of the encrypted content data in the distribution server 10. FIG. 17 is a flowchart for describing an operation in which mobile phone 100 having received the search result in distribution server 10 searches for encrypted content data described in the search result based on its own database. .

Referring to FIG. 16, when the search operation is started, the user of portable telephone 100 inputs artist A from key operation unit 1108 and inquires of distribution server 10 about content search (step S200). The distribution server 10 receives the artist A from the mobile phone 100, and the distribution control unit 315 determines the content of the artist A based on the additional information Dc-inf of the encrypted content data stored in the information database 304 via the bus BS1. Is transmitted to the mobile phone 100 via the bus BS1 and the communication device 350.
In this case, the distribution server 10 transmits a list of the content number S, the content ID, and the title name as shown in FIG. 18 to the mobile phone 100 as a search result.

Then, controller 1106 of mobile phone 100 includes antenna 1101 and transmission / reception unit 11.
02, the number of contents S detected by the distribution server 10 is obtained, and the number of contents in the search result is set to S (step S202). Then, the controller 1106 creates a search result database (step S204). That is, the controller 1106
Creates a search result database in which the number of contents searched in the distribution server 10 is set to S, as shown in FIG.

Thereafter, the controller 1106 acquires the content ID and the title of the search result (see FIG. 18) received from the distribution server 10 and stores them in the content ID column and the title name column of the search result database shown in FIG. Then, the acquired content ID and title name are stored (step S206). Then, the controller 1106 generates a search result database (FIG. 19).
All the columns of the owned terminal number and the owned terminal ID column of “see”) are initialized to “0” (step S208). The controller 1106 further initializes all the fields of the license presence / absence of the search result database to “0” (step S2).
10), the content search operation ends.

Thereafter, the flowchart shown in FIG. 17 is executed. Content ID included in search result (see FIG. 18) received by mobile phone 100 from distribution server 10
(1) When an operation of searching for a content specified by a content ID (S) with reference to a database stored in the RAM 1103 of the mobile phone 100 is started, m = 1 is set (step S300), n = 1 is set (step S302), and s = 1 is set (step S304). Here, m is the RAM 1103
, Represents the number of contents included in each database, and s represents the number of contents included in the search result database (see FIG. 19).

After the step S304, the portable telephone 100
The controller 1106 determines whether the content ID (1) of the search result database matches the content ID included in the database (1) stored in the RAM 1103 (step S306). Step S30
6, the content ID of the search result database
(1) is the content ID included in the database (1)
When it is determined that the
Is the terminal ID holding the database (1) in RAM1
The terminal ID is read from the list 155 (see FIG. 15) stored in the terminal 103 and the read terminal ID is stored in the column of the owned terminal ID in the search result database (step S308). Further, the controller 1106 reads the presence / absence of a license corresponding to the content ID (1) from the database (1) (see FIG. 12), and stores the read presence / absence of the license in the license presence / absence column of the search result database (step S310). . After that, the procedure moves to Step S312.

When it is determined in step S306 that the content ID (1) in the search result database does not match the content ID included in the database (1), the flow shifts to step S312. Step S3
In step 12, s = s + 1 is set (step S31).
2), the controller 1106 determines whether or not s = S (step S314). Here, S is the distribution server 1
0 is the total number of contents searched in FIG.
reference). When it is determined in step S314 that s = S, the process proceeds to step S316. When it is determined in step S314 that s = S is not satisfied,
Steps S306 to S314 are repeated. That is,
Steps S306 to S314 correspond to content ID (1) to content ID included in the search result database.
(S) is the content ID included in database (1)
It is determined whether or not (1) matches, and if they match, the presence or absence of a license corresponding to the matched content ID (1) and the terminal ID holding a database including the content ID (1) are stored in the RAM 1103. This is a step of reading from the retrieved database (see FIG. 12) and the list (see FIG. 15) and storing it in the search result database.

When it is determined in step S314 that s = S, n = n + 1 is set, and the controller 1106 determines whether or not n = N (m) (step S318). In step S318, n =
When it is determined that it is not N (m), steps S304 to S304 are performed.
S318 is repeated. In this case, all the content IDs of the database (1) stored in the RAM 1103
(1) to content ID (N (m)) and content ID (1) to content ID (S) of search result database
Is determined as to whether or not.

Then, in step S318, n = N
When it is determined that (m) is satisfied, m is set to m + 1 (step S320), and the controller 1106 sets m = m + 1.
It is determined whether it is M (step S322). Here, M represents the total number of databases stored in the RAM 1103. When it is determined in step S322 that m is not M, steps S302 to S322 are repeated. That is, the content IDs of the search result database are stored in the M databases stored in the RAM 1103.
(1) It is determined whether or not the content ID (S) is included. When it is determined in step S322 that m = M, the database search operation ends (step S324). As a result, the data is stored in the columns of the owned terminal IDs 1, 2,... And the license presence / absence column of the search result database shown in FIG.
Then, the controller 1106 stores the number of terminal IDs holding the database including each content ID in the column of the number of owned terminals. In FIG. 19, the content ID
Although the number of owned terminals corresponding to (6) is "2",
This means that the database containing the content ID (6) is 2
Indicates that it is held by one terminal. The owned terminal IDs 1, 2,... Indicate the order in which the terminal holding the database including the content ID (1) to the content ID (S) is found. Therefore, the terminal ID determined first is stored in the column of owned terminal ID1. Less than,
Similarly, the terminal ID determined as the second, third, etc.
Are stored in the columns of owned terminals ID2, ID3,.

As described above, when receiving the search result from distribution server 10, controller 1106 of mobile phone 100 creates a search result database. Then, the controller 1106 extracts the title name, the owned terminal ID, and the presence or absence of the license from the created search result database, and displays the title, the owner identified from the owned terminal ID, and the presence or absence of the license on the display panel 1110 on the screen 177 ( 13 (see FIG. 13).

Copying (copying) of encrypted content data from mobile phones 101 and 102 represented by screens 178 and 179 in FIG. 13 and screens 180 to 182 in FIG. 14 is performed according to a flowchart shown in FIG. . When the encrypted content data is copied from the memory cards 111 and 112 mounted on the mobile phones 101 and 102 to the memory card 110 mounted on the mobile phone 100, the controller 1106 of the mobile phones 101 and 102 and the controller 1106 of the mobile phone 100 are copied.
20 are involved in the transmission and reception of data. In FIG. 20, one controller is shown for convenience of explanation, and the one controller has the functions of the controller 1106 of the mobile phones 101 and 102 and the controller 1 of the mobile phone 100.
And 106 functions. FIG.
Before starting the process shown in FIG.
The users 1 and 102 insert the memory cards 111 and 112 into the mobile phones 101 and 102 and
It is assumed that permission has been given to a copy request of encrypted content data from the user.

Referring to FIG. 20, when a copy request is instructed by the user (step S400), controller 1106 of portable telephone 100 sets memory card 110
A transmission request for authentication data is transmitted to the memory card 110 via the memory card interface 1200 (step S402). The controller 1420 of the memory card 110 includes a terminal 1426, an interface 14
24, and a request for transmitting authentication data is received via the bus BS3 (step S404).

The controller 142 of the memory card 110
0, when receiving the transmission request of the authentication data, the authentication data {KPm3 // Cm3} from the authentication data holding unit 1400.
KPa is read via bus BS3, and the read authentication data {KPm3 // Cm3} KPa is output to memory card interface 1200 via bus BS3, interface 1424 and terminal 1426 (step S406). The controller 1106 of the mobile phone 100 receives the authentication data {KPm3 // Cm3} KPa via the memory card interface 1200 and sends the authentication data of the memory card 110 to the mobile phones 101 and 102 via the transmission / reception unit 1102 and the antenna 1101. {KPm3 // Cm3} KPa is transmitted (step S408).

Then, controller 1106 of mobile phones 101 and 102 transmits authentication data {KPm3 // Cm via antenna 1101 and transmitting / receiving section 1102.
3KPa, and receives the memory card 111, 1 via the bus BS2 and the memory card interface 1200.
12, the authentication data {KPm3 // Cm3} KPa is input (step S408). Memory cards 111, 11
2 via terminal 1426 and interface 1424, authentication data {KPm3 //
Cm3 @ KPa is received, and the received authentication data @ K
Pm3 // Cm3｝ KPa is supplied to the decoding processing unit 1408 via the bus BS3. Then, the decryption processing unit 1408
Executes decryption processing of the authentication data {KPm3 // Cm3} KPa using the authentication key KPa from the KPa holding unit 1414 (step S410). Controller 1420
Is determined based on the result of the decryption processing by the decryption processing unit 1408 whether or not the processing has been normally performed, that is, whether the memory card 110 is a regular memory card and the memory card 1
From 10, an authentication process is performed to determine whether or not the authorized data has been received by a legitimate institution for authentication to prove its validity (step S 412). If it is determined that the authentication data is valid, the controller 1420 approves and accepts the class public encryption key KPm3 and the class certificate Cm3 obtained from the authentication data. Then, control goes to the next process (step S414). If it is not valid authentication data, it is rejected and the class public encryption key KP
The process ends without accepting m3 and the class certificate Cm3 (step S420).

As a result of the authentication, when it is confirmed that the encrypted content data is copied to a memory card having valid authentication data, in the memory cards 111 and 112, the controller 1420 controls the memory 1415 via the bus BS3. The encrypted content data {Dc} Kc and the additional information Dc-inf are read from the data area 1415C, and {Dc} Kc // Dc-inf is output via the bus BS3, the interface 1424, and the terminal 1426 (step S414). Cellular phones 101, 102
Controller 1106 via the memory card interface 1200 and the bus BS2 {Dc} Kc //
Dc-inf is received, and {Dc} Kc // Dc-inf is transmitted to mobile phone 100 via transmitting / receiving section 1102 and antenna 1101 (step S416).

Controller 1106 of mobile phone 100
Receives {Dc} Kc // Dc-inf via the antenna 1101 and the transmission / reception unit 1102, and receives {Dc} via the bus BS2 and the memory card interface 1200.
c｝ Kc // Dc-inf is input to the memory card 110, and the controller 1420 of the memory card 110 sends ｛Dc via the terminal 1426 and the interface 1424.
Receive c｝ Kc // Dc-inf. Then, controller 1420 transmits {Dc} Kc // via bus BS3.
Dc-inf is stored in the data area 1415C of the memory 1415.
(Step S418), and the operation of copying the encrypted content data ends (step S420).

After the copying of the encrypted content data is completed, the user of mobile phone 100 issues a license distribution request for decrypting and reproducing the copied encrypted content data according to the flowcharts shown in FIGS. The license is transmitted to the distribution server 10, the license is received from the distribution server 10, and the license is stored in the memory card 110.

As described above, the user of the mobile phone 100 confirms that the music to be newly purchased is stored in the memory cards 111 and 112 attached to the mobile phones 101 and 102, The encrypted content data is copied, and a license for the copied encrypted content data is received from the distribution server 10.

According to the embodiment of the present invention, the user of the portable telephone searches for the location of the song to be newly purchased, and then retrieves the encrypted content from the memory card storing the encrypted content data. Since the data is duplicated, it is not necessary to take a long time to receive the music to be purchased, and the communication cost for that can be saved.

The embodiments disclosed this time are to be considered in all respects as illustrative and not restrictive. The scope of the present invention is defined by the terms of the claims, rather than the description of the embodiments, and is intended to include any modifications within the scope and meaning equivalent to the terms of the claims.

[0171]

According to the present invention, the user of the portable telephone searches for the location of the song to be newly purchased and then retrieves the encrypted content data from the memory card storing the encrypted content data. Since the reproduction is performed, a long time is not required for receiving a song to be purchased, and communication costs for the reception can be saved.

[Brief description of the drawings]

FIG. 1 is a schematic diagram conceptually illustrating a data distribution system.

FIG. 2 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG.

FIG. 3 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG. 1;

FIG. 4 is a schematic block diagram showing a configuration of a distribution server in the data distribution system shown in FIG.

FIG. 5 is a schematic block diagram showing a configuration of a mobile phone in the data distribution system shown in FIG.

FIG. 6 is a schematic block diagram showing a configuration of a memory card in the data distribution system shown in FIG.

FIG. 7 is a first flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;

FIG. 8 is a second flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;

FIG. 9 is a diagram showing a configuration of a playlist file in the memory card.

FIG. 10 is a conceptual diagram showing a relationship between encrypted content data recorded in the content file shown in FIG. 9 and additional information.

FIG. 11 is a flowchart illustrating a reproduction operation in the mobile phone.

FIG. 12 is a conceptual diagram of a database for managing encrypted content data.

FIG. 13 is a diagram showing a screen displayed on a display panel during each operation of the mobile phone.

FIG. 14 is a diagram showing a screen displayed on a display panel during each operation of the mobile phone.

FIG. 15 is a conceptual diagram of a list for managing a plurality of databases.

FIG. 16 is a flowchart for explaining a search operation in a distribution server of a song to be purchased.

FIG. 17 is a flowchart illustrating a search operation in a mobile phone of encrypted content data included in a search result received from a distribution server.

FIG. 18 is an example of a search result transmitted from a distribution server.

FIG. 19 is a conceptual diagram of a database showing search results in a mobile phone.

FIG. 20 is a flowchart for describing an operation of copying encrypted content data from another mobile phone.

[Explanation of symbols]

10 distribution server, 20 distribution carrier, 65 dedicated cable, 100 to 102 mobile phone, 110 to 112
Memory card, 130-132 Headphones, 15
0 database, 155 list, 160 playlist file, 163 content management information, 165 entry management information, 166 card ID, 170-184
Screen, 302 charging database, 304 information database, 307 menu database, 308 distribution record database, 310 data processing unit, 312
320, 1404, 1408, 1412, 1422, 1
504, 1510, 1516 decryption processing unit, 313 authentication key holding unit, 315 distribution control unit, 316, 1418,
1508 Session key generator, 318, 326, 3
28, 1406, 1410, 1417, 1506 Cryptographic processing unit, 350 communication device, 1101 antenna, 11
02 transmitting / receiving unit, 1103 RAM, 1106, 142
0 controller, 1112 USB interface,
1114, 1426, 1530 terminals, 1108 key operation unit, 1110 display panel, 1200 memory card interface, 1400, 1500 authentication data holding unit, 1402 Kmc holding unit, 1414 KPa holding unit, 1415 memory, 1415A log area, 141
5B license area, 1415C data area, 14
16 KPmc holding unit, 1421 Km holding unit, 142
4 interface, 1442, 1446 changeover switch, 1502 Kp1 holding unit, 1518 music playback unit,
1519 DA converter, 1531 Content No., 1
532 content ID, 1533 title name, 15
34 artist name, 1535 content type, 1
536 license existence, 1537 storage card ID,
1550 content playback device, 1551 database No., 1552 database, 1553 content number, 1554 terminal ID, 1555 owner name, 1
621-162n license management file, 1611
~ 161n content file, 1631 ~ 1640
Content data, 1651 to 1660 management information.

──────────────────────────────────────────────────続 き Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) G06F 12/14 320 G06F 12/14 320E 17/30 110 17/30 110F 170 170Z H04Q 7/38 H04B 7 / 26 109S H04L 9/08 H04L 9/00 601B F-term (reference) 5B017 AA06 BA09 CA16 5B075 ND16 PP23 PQ02 5B082 HA05 5J104 AA01 AA16 EA01 EA04 EA16 NA03 PA02 PA07 5K067 AA32 BB04 DD17 EE02 EE10H23 EE02 EE02H23

Claims (6)

[Claims] Claims: 1. An information terminal device comprising: a plurality of information terminal devices;
An information terminal device for searching a plurality of beta bases for managing encrypted content data and acquiring the encrypted content data and a license for reproducing the encrypted content data, comprising: A transmission / reception unit for exchanging data, a key operation unit for inputting an instruction, a storage unit for storing the plurality of databases and a list, and a control unit, wherein each of the plurality of databases includes a plurality of A plurality of pieces of content specifying information for specifying the encrypted content data, a plurality of pieces of license information indicating the presence or absence of a license corresponding to the encrypted content data, and data recording in which the encrypted content data and the license are recorded. A plurality of recording device specifying information for specifying a device, wherein the list includes the plurality of recording device specifying information. A plurality of database specifying information for specifying a database, and a plurality of terminal specifying information for specifying an information terminal device in which each of the plurality of databases is generated, wherein the control unit includes the encrypted content data. In response to the purchase request, the search condition of the purchased content input via the key operation unit is transmitted to the distribution server via the transmission / reception unit, and the content identification information of the content matching the search condition is transmitted to the distribution server. From the plurality of databases and the list, the content identification information received from the transmission / reception unit and the license identification information and the terminal identification information corresponding to the received content identification information, and the content identification information corresponding to the received content identification information. Including the extracted content specifying information, license information and terminal specifying information. Creating a search result database, the information terminal device. 2. A display unit for providing various kinds of information to a user as visual information, wherein the control unit includes: content specifying information, license information,
And the terminal identification information is read from the search result database and displayed on the display unit. When a selection of encrypted content data held by another information terminal device is input via the key operation unit, the other information is read. A request for copying the encrypted content data is transmitted to the terminal device via the transmitting / receiving unit, and when the copying is permitted in the other information terminal device, the encrypted content data is transmitted and received from the other information terminal device. The information terminal device according to claim 1, wherein the information terminal device receives the information via a unit. 3. The server according to claim 2, wherein the license information corresponding to the requested encrypted content data indicates that there is no license, and the license corresponding to the copied encrypted content data from the distribution server is provided. The information terminal device according to claim 2, wherein the information terminal device receives the information. 4. A display unit for providing various information to a user as visual information, and an interface for controlling exchange with the data recording device, wherein the control unit includes: content identification information, license information ,
And terminal identification information is read from the search result database and displayed on the display unit, and selection of encrypted content data recorded in a data recording device with which the user exchanges data is input via the key operation unit. When the license information corresponding to the encrypted content data indicates that there is no license, the license transmission request is transmitted to the distribution server via the transmission / reception unit, and the license is transmitted from the distribution server via the transmission / reception unit. The information terminal device according to claim 1, which receives the information. 5. A display unit for providing various information to a user as visual information, and an interface for controlling exchange with the data recording device, wherein the control unit includes: content identification information, license information ,
And the terminal identification information is read from the search result database and displayed on the display unit, and when the selection of the encrypted content data held by the distribution server is input via the key operation unit, the selected encrypted content is displayed. A transmission request for data and a license corresponding to the selected encrypted content data is transmitted to the distribution server via the transmission / reception unit, and the encrypted content data and the license are received from the distribution server via the transmission / reception unit The information terminal device according to claim 1, wherein 6. The control unit further receives a database held by another information terminal device from the other information terminal device via the transmission / reception unit in response to a database acquisition request, and stores the received database. 6. The storage device according to claim 1, wherein the list is updated by adding the stored database to the storage unit.
An information terminal device according to the item.