JP2009159485A - Information processing system, method, and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To easily perform setting of a cipher pursuant to a law concerning the cipher in equipment. <P>SOLUTION: A maker providing equipment 1 records cipher law information for each country in a cipher law information management server 2. A user connects the equipment 1 to a network. To the equipment 1, there is set an IP address which is allocated by DHCP and is manually set. The equipment 1 employs an IP address of its own as a key and reversely resolve a domain name from the DNS server. The equipment 1 determines country identifier from the domain name. A cipher law information management server 2 determines a country where the equipment 1 is existent from the country identifier transmitted by the equipment 1, and transmits to the equipment 1 cipher law information in response to that country. The equipment 1 receives the cipher law information from the cipher law information management server 2, analyzes the cipher law information, and sets the cipher. <P>COPYRIGHT: (C)2009,JPO&INPIT

Description

  The present invention relates to an information processing system and the like for performing settings related to encryption in a computer based on a law related to encryption.

  In recent years, encryption is commonly used in computers. In a computer, encryption is realized by an encryption algorithm. Encryption algorithms include a symmetric key algorithm, a public key algorithm, a digital signature algorithm, and the like.

  In addition, for example, there are various types of symmetric key algorithms such as DES and AES. Cryptographic algorithms have different cryptographic strengths (difficulty in encryption) depending on the algorithm. There are many encryption algorithms that use fixed-length data called encryption keys. In general, the longer the data length (also referred to as key length) of the encryption key, the harder it is to break the encryption.

  Since the encryption technique is detailed in Non-Patent Document 1, details are omitted in this specification. Because ciphers have been used mainly for military purposes, there are cases where laws restrict the use, export, and import of ciphers. For example, in Japan, exports are restricted by the “Foreign Exchange and Foreign Trade Control Law”. On the other hand, there are no restrictions on use and import. According to Non-Patent Document 2, the use of cryptography is restricted in France.

  In this way, since encryption is restricted by law, when exporting equipment incorporating encryption, the laws of the country of the export destination should be investigated so as not to violate the law. For example, the encryption algorithm incorporated in the device, the data length of the usable key, etc. are corrected and set according to the law. In many cases, cryptographic algorithms and key data used in the device are incorporated in the device.

  In some cases, the encryption setting is recorded on a medium such as a memory card, and the setting is read by the device. By changing the settings recorded on the media, settings can be made according to the laws of each country. For example, in Patent Document 1, a medium called a national flag card is prepared, and encryption settings are recorded on the medium. Furthermore, the encryption function cannot be used unless the national flag card is inserted into the device.

Japanese Patent Laid-Open No. 10-79731 JP 9-297191 A JP 2004-236182 A JP 2004-186853 A By Bruce Schneier, directed by Hiroo Yamagata, "Encyclopedia of Cryptographic Technology", Publisher: Softbank Publishing, ISBN4-7973-1911-9 “Policy Trend Survey Report on Cryptographic Technology”, Information Processing Promotion Association, URL: http://www.ipa.go.jp/security/fy11/report/contents/crypto/crypto/report/CryptogrphyPolicy/CryptographyPolicyReport. pdf

  As described above, a device having an encryption function needs to comply with the laws on encryption in each country. When the law concerning encryption is revised after the device is shipped, it is necessary to change the encryption function built into the device or the encryption setting recorded on the media, but many of them are used without change. Even if the change is possible, the system in the device must be replaced or the medium must be rewritten, which is complicated. Furthermore, even if the law does not change, when transporting equipment to another country, it is necessary to investigate the law in the destination country and make settings accordingly. Had occurred.

  The present invention has been made in view of the above-described problems, and an object of the present invention is to easily perform encryption setting in a device in accordance with a law relating to encryption.

The information processing system of the present invention is an information processing system used in an environment in which communication from a device to a server is possible, and means for managing cryptographic law information that allows a computer to interpret national laws relating to cryptography by the server, Means for stopping encryption processing in the device in the device, means for determining the country to which the device belongs in the device, means for transmitting the country identifier determined in the device to the server, and the server Means for receiving the country identifier transmitted by the device in the server, means for selecting the country's cryptographic law information suitable for the country identifier in the server, and means for returning the cryptographic law information to the device in the server; Means for receiving the cryptographic law information returned by the server in the device, means for analyzing the cryptographic law information received in the device, and Means for converting the analyzed cryptographic law information into a security policy, means for setting the security policy converted in the device, and means for permitting execution of encryption processing in the device in the device, It is characterized in that the country to which the device belongs is determined, and encryption settings suitable for the laws of the country are made.
The information processing method of the present invention is an information processing method in an environment in which communication from a device to a server is possible, and the server manages cryptographic law information that allows a computer to interpret laws related to national cryptography. Stopping the encryption process in the device in the device, determining the country to which the device belongs in the device, transmitting the country identifier determined in the device to the server, and the server Receiving the country identifier transmitted by the device in step, selecting the country's cryptographic law information suitable for the country identifier in the server, returning the cryptographic law information to the device in the server, Receiving the cryptographic law information returned by the server in the device; analyzing the cryptographic law information in the device; and analyzing the cryptographic law analyzed in the device And a step of converting the security information into a security policy, a step of setting the security policy converted in the device, and a step of permitting the device to execute encryption processing in the device, to which the device belongs It is characterized in that the country is determined and the encryption setting suitable for the law of the country is performed.
Moreover, the program of this invention is a program for making a computer perform each process of the method as described above.

  According to the present invention, the user can easily perform encryption processing in accordance with the laws of each country, so that the possibility of violating the laws is reduced. Further, by updating the cryptographic law information on the cryptographic law information management server in accordance with the revision and enforcement of the law, it is possible to easily follow changes in the laws of each country. Furthermore, since there is a function for determining in which country the device is located, an effect of reducing the load at the time of setting by the user can be obtained.

  Prior to describing an embodiment of the information processing system of the present invention, IPsec used as an application example will be described. IPsec (IP security) is defined by a plurality of RFCs, centering on RFC 2401 (Security Architecture for the Internet Protocol).

  IPsec performs authentication and encryption processing in the IP layer. Therefore, it is possible to perform secure communication without performing authentication / encryption processing in an application layer, a TCP / UDP layer, or the like above the IP layer.

The functions that can be realized with IPsec include the following.
Access control: Permits / denies connection based on the connection source address.
• Guarantee of communication data integrity: Guarantees that communication data has not been tampered with in the middle of the communication path.
-Concealment of communication contents: The communication data is encrypted so that the contents of the communication data cannot be easily determined even if the communication data is intercepted on the communication path.

  IPsec is composed of a plurality of technologies in order to realize the above functions. IPsec uses security protocols called AH (Authentication Header) and ESP (Encapsulating Security Payload).

  AH is used for authentication (guarantee of integrity of communication data), and ESP is used for encryption (confidentiality of communication contents). AH is defined by RFC2402, and ESP is defined by RFC2406. AH and ESP have two modes, a transport mode and a tunnel mode, respectively. In the transport mode, the payload portion of the IP packet is the processing target of the security protocol, and in the tunnel mode, the entire IP packet is the processing target.

  IPsec uses a set of parameters called SA (Security Association) in order to manage keys, encryption algorithms, and the like. A database that manages the SA is called SAD (Security Association Database).

  The SA parameters include an identifier between two points to be communicated, an SPI, a type of security protocol, an encryption algorithm and its key, an SA lifetime, an IV (Initial Vector) value used in the encryption algorithm, and a counter. The SA has a direction, and two SAs are required to perform a set of bidirectional communication.

  The security policy generally refers to an action guideline indicating “what”, “from”, and “how”, but SP (Security Policy) in IPsec applies IPsec to any IP packet. Indicates whether or not to perform (access control). The SP parameters include an IP layer protocol number, an IP address, a network address, a transport layer protocol, a port number, and a user identifier.

  A database that manages the SP is called an SPD (Security Parameter Database). As an implementation example, a method for setting an SP operating on a Linux operating system will be described.

  There are two methods for setting the SP: a method using the setkey command and a method using a script to set the machine at the time of startup. When setting using the setkey command, there are a method in which the administrator inputs the SP in an interactive format and a method in which a file in which the SP is described in advance is prepared and read by the setkey command. The environment of FIG. 15 will be described as an example.

  In FIG. 15, an address of 2001: 340: 2 :: 1 is assigned to the network interface on the outside (WAN side) of router A, and 2001: 340: 2: 100 :: is assigned to the network interface on the inside (LAN side). Assume that 1 is assigned. Router A manages a prefix of 2001: 340: 2: 100 :: / 64. It is assumed that the host A is in the subnet of the router A and has an address of 2001: 340: 2: 100 :: 2.

  Similarly, the router B is assigned addresses 2001: 340: 2 :: 2 to the outer network interface and 2001: 340: 2: 200 :: 1 to the inner network interface. It is assumed that a prefix of 2001: 340: 2: 200 :: / 64 is managed, and a host B having an address of 2001: 340: 2: 200 :: 2 exists in the router B subnet.

  In FIG. 15, a case where communication is performed between the host A and the host B and the IPsec transport mode is performed bidirectionally between the host A and the host B will be described.

  The file shown in FIG. 16 is prepared on the host A, and the file shown in FIG. 17 is prepared on the host B. The file is read and set using the setkey command. Thereafter, the IPsec transport mode is implemented for communication between the host A and the host B by setting the SA using an IKE program described later.

  Here, “spdadd” in the setting file referred to in the figure is a command indicating that an SP is added to the SPD, the next address indicates a transmission source, and the next address indicates a transmission destination address. Indicates what the address is. Other examples include “spddelete” indicating deletion.

  In addition to the address designation as shown in FIGS. 16 and 17, it is possible to designate by a prefix as shown in FIGS.

  When the SP of FIG. 18 is set to the host A and the SP of FIG. 19 is set to the host B, the host A applies the IPsec transport mode to communication having the prefix 2001: 340: 2: 200 :: / 64. In the host B, the IPsec transport mode is applied to communication having the prefix 2001: 340: 2: 100 :: / 64.

  The transport layer protocol is specified at the next “any” part. “Any” indicates that all transport layer protocols are targeted. In addition, designation such as “icmp” is possible. The next “−P in” and “−P out” specify the direction in which the SP is applied.

  The next “ipsec” indicates that IPsec processing is performed on a packet that meets the conditions. In addition, it is possible to specify “none” indicating that no processing is performed on a packet that meets the conditions, “discard” that discards the packet, and the like.

  Next, the security protocol, mode, processing node, and level are specified. The security protocol “esp” indicates that encryption processing is performed. Although not described here, “ah” indicates that authentication is performed.

  In the next section, the mode is specified. “Transport” indicates operation in the transport mode, and “tunnel” indicates operation in the tunnel mode.

  Then, between the next slash (/) and the slash, an address of a device that actually performs processing is shown. Can be omitted when in transport mode.

  In the tunnel mode, two security gateway addresses are specified (for processing between two security gateways).

  The last level indicates how severely a packet that matches the condition is processed. For example, “require” forces a process to be performed on a packet that matches the condition, and discards the packet if it cannot be performed. In the case of “use”, processing is performed on a packet that matches the condition, but communication is permitted even if processing cannot be performed.

  Although FIGS. 15, 16, 17, 18, and 19 show examples using IPv6 addresses, IPsec communication is possible even with IPv4 addresses, and SP settings are also possible. This SP description method is merely an example in Linux, and there is another description method.

  In order to perform IPsec, it is necessary to share SA parameters between two points that perform IPsec communication. It is also necessary to share the key used in the encryption algorithm. In IPsec, manual key management and automatic key management are defined as management methods.

  Manual key management is a method in which an administrator shares parameters between two points using a method other than communication. For example, parameters are shared between two distant points by a method such as sending key data by mail or telling key data by telephone. However, in an environment where SA establishment and disappearance frequently occur, management becomes virtually impossible. Therefore, a method of automatically exchanging parameters using communication is desired, and automatic key management has been devised.

  As an automatic key management method, IPsec uses IKE (Internet Key Exchange). IKE is specified in RFC2409. IKE consists of two phases: Phase 1 for exchanging IKE's own SA, and Phase 2 for securely exchanging parameters for IPsec SA under SA established by Phase 1 (IKE).

  In phase 1, three types of authentication methods are defined: electronic signature, public key cryptography, and pre-shared key, and programs that execute IKE agree and use one of them. IPsec communication is enabled by setting an IPsec SA using IKE. Based on the above points, embodiments of the present invention will be described below.

(First embodiment)
Embodiments of the present invention will be described below with reference to the drawings. First, the general configuration of the system and equipment used in the present invention will be described.

  FIG. 1 is an example of an environment for implementing the present invention. The device 1 is connected to a network 4 and can communicate with the Internet protocol through the Internet 5. The network 4 is a part of the Internet 5 in a broad sense. In addition, the network 4 can communicate with the Internet protocol regardless of wired or wireless. The device 1 is the center for implementing the present invention.

  A cryptographic law information management server 2 is connected to the network 4. The cryptographic law information management server 2 records and manages information on the laws related to cryptography in each country. A domain name system (Domain Name) (DNS) server 3 is connected to the network 4.

  The cryptographic law information management server 2 and the DNS server 3 are accessible from the device 1. In the present embodiment, it is assumed that the device 1 is installed in a place where Japanese law is applied, for example.

  DNS is a system that manages combinations of identifiers called IP addresses and domain names. Domain names have a hierarchical structure and are separated by “.” (Dot). From the right side of the domain name, the top level domain, second level domain, third level domain, etc. are arranged. For example, in the domain name “canon.co.jp”, “jp” is the top level domain, “co” is the second level domain, and “canon” is the third level domain.

  A country indicating a country in the top level domain is called a country code Top Level Domain (ccTLD). For example, “jp” indicates Japan and “fr” indicates France. Allocation of ccTLD is performed by an organization called ICANN (Internet Corporation for Assigned Names and Numbers) or a registry certified by ICANN.

  FIG. 2 is a hardware configuration example of the device 1. In FIG. 2, the CPU 101 controls the operation of the entire device 1. The RAM 102 is a temporary storage device (Random Access Memory), and the ROM 103 is a non-volatile memory (Read Only Memory) in which non-erasable data such as a program is incorporated.

  The bus 104 is an internal bus that connects the modules. The network interface 105 is an interface used when the device 1 performs data transmission / reception with an external device. The recording device 106 is, for example, a hard disk, which can read and write, and the recorded content does not disappear even when the power is turned off. The display device 107 is a part that displays information to the user, such as a liquid crystal display. The input device 108 is an input device such as a keyboard and a mouse.

  The display device 107 and the input device 108 may be devices having both display and input functions such as a liquid crystal display having a touch panel function. In the device 1, an operating system (OS) for executing the present invention operates.

  FIG. 3 shows a software configuration for implementing the present invention. It is divided into a kernel space where the OS operates and a user space where the application operates. In the kernel space, there is a cryptographic law information management unit 201 which is the center of the control of the present invention. The cryptographic law information management unit 201 controls other software components.

  The security policy conversion unit 202 has a role of analyzing the cryptographic law information passed from the cryptographic law information management unit 201 and converting the data into data that can be interpreted by the security policy management unit 211 described later. The security policy management unit 211 manages action guidelines indicating “what”, “from”, and “how”. In the present embodiment, the above-described IPsec SA and SP are used as an example as a function of the security policy management unit 211 and a security policy format. That is, the security policy management unit 211 is an IPsec SA and SP in this embodiment. However, the use of IPsec SA and SP is merely an example, and there is no problem even if other security policy description methods can be converted from cryptographic law information.

  The encryption / decryption unit 212 performs data encryption and decryption processing based on the security policy set by the security policy management unit 211. The network unit 213 is a part that performs communication using IP packets.

  There is an application 221 in the user space. The application 221 normally performs communication using IP packets without being aware of the security mechanism in the kernel space. Of course, the security policy management unit 211 can also be operated. Whether it is arbitrarily operable depends on the design policy of the device 1.

  The user space has a cryptographic library 231. The encryption library 231 is used when the application 221 performs encryption / decryption in the user space. For example, in an OS with an enhanced security function such as OpenBSD, an application can use the encryption / decryption function in the OS. However, in many OSs, a mechanism and API used at that time are not provided. A cryptographic library in user space is used.

  In order to use an encryption algorithm that is not prepared in the encryption / decryption unit 212, an encryption library may be prepared in the user space. In this embodiment, the cryptographic library 231 is controlled by the cryptographic law information management unit 201.

  Next, the overall processing of the present invention will be described. The present invention mainly consists of two phases. The first is the country determination phase. This is a phase in which the network of the device 1 is determined to be connected to. When the connected country is determined, the process proceeds to the encryption law information setting phase. The cryptographic law information setting phase is a phase in which information on the laws relating to cryptography in the country to which the device 1 belongs is acquired and the device 1 is set in accordance with the law. After the completion of the two phases, the device 1 can perform cryptographic processing based on the laws of the country to which the device 1 belongs. Hereinafter, each phase will be described.

<Country judgment phase>
FIG. 4 shows a flowchart of the country determination phase.
After starting in step S101, in step S102, the cryptographic law information management unit 201 sets the security policy management unit 211 to stop the encryption process, that is, to perform no encryption process. This can be realized by flushing the SP and setting no SP. As a result, communication using all IP packets is performed in plain text. The process of step S102 is performed after the device 1 is started and before communication using an IP packet is started.

  In step S103, the device 1 acquires an IP address. Specifically, the CPU 101 in FIG. 2 sets an IP address in the network interface 105. Here, the IP address acquisition method does not matter. For example, you may acquire from a DHCP server using DHCP (Dynamic Host Configuration Protocol). Alternatively, it may be set statically by using a setting file (/ etc / hosts file or / etc / sysconfig / network-scripts / ifcfg-eth0 script file) in the device 1.

  In step S <b> 104, the CPU 101 performs a process of reversely retrieving the domain name from the IP address set in step S <b> 103. In FIG. 1, this is handled by the device 1 sending a query to the DNS server 3 and receiving a response.

  In step S105, it is determined whether information indicating the country has been acquired. In the present embodiment, it is assumed that the information indicating the country is ccTLD. If the domain name has not been acquired and if the domain name has been acquired but not ccTLD, the determination is NO and the process proceeds to step S106. Judgment as to whether it is a ccTLD is made by holding a list of ccTLDs in advance in the ROM 103 or the recording device 106 in the device 1, and comparing the domain name with the CPU 101. Alternatively, an external server having a list of ccTLDs may be prepared and the device 1 may inquire about it. If ccTLD can be acquired, the determination is YES, and the process proceeds to step S108. In the present embodiment, it is assumed that the device 1 acquires the character string “jp”, determines whether it is ccTLD, and acquires ccTLD indicating Japan.

  In step S106, it is determined whether there is another country determination method. If YES, the method is executed in step S107, and it is determined again whether information indicating the country has been acquired in step S105. If there is no other method in step S106, the process proceeds to step S109.

  In step S108, information indicating the country obtained from the country determination method (a character string “jp” in the case of the present embodiment) is obtained as a pre-process for allowing the user to select or confirm the country in step S109 described later. ) In the RAM 102.

  In step S <b> 109, the CPU 101 displays a country identification selection screen on the display device 107. The user operates the input device 108 and selects a country in which the device 1 is subject to the law from the display indicating the country displayed on the display device 107. Here, there is no problem if the display indicating the country indicates a country such as a country name or a national flag design.

  In step S110, based on the display indicating the country selected by the user in step S109, a country identifier that is easy to transmit as a selection result is stored in the RAM 102 or the recording device 106.

  After saving, the country determination phase ends in step S111. The country identifier is preferably a text character from the ease of transmission and small size such as country name and ccTLD. In the present embodiment, it is assumed that a character string “japan” is stored. The country identifier may be ccTLD, a number, or other data as long as the country can be uniquely identified.

  An example of detailed processing in step S109 in FIG. 4 will be described with reference to FIG. In FIG. 4, when information indicating the country (ccTLD of “jp” in the present embodiment) can be acquired by any country determination method, the process starts from step S <b> 201 of FIG. 5.

  In step S202, a display indicating the country is displayed on the display device 107 in FIG. 2 based on the information indicating the country recorded in step S108 in FIG. Here, the display indicating the country is preferably data that allows the user to easily select the country, such as a country name or a national flag design. In the present embodiment, the CPU 101 displays the flag for “Hinomaru” corresponding to the character string “jp” prepared in advance in the recording device 106 as a display indicating the country for the character string “jp” recorded in step S108. Is displayed. Then, the CPU 101 prompts the user to select a YES / NO option indicating whether or not the country to which the device 1 is subject to the law is correct in the information indicating the country obtained in step S108 in FIG. Display on the device 107. The user operates the input device 108 of the device 1 and selects YES / NO. In the present embodiment, the user looks at the flag data of “Hinomaru” and selects YES. If the user selects YES in step S203, the process proceeds to step S205 and ends.

  Here, the country identifier stored in step S110 of FIG. 4 indicates the same country as the information indicating the country obtained by the country determination method. In this embodiment, the country identifier is a character string “japan” indicating Japan. When the user selects NO in step S203, or when the process proceeds from step S106 in FIG. 4 and starts from step S211, the process proceeds to step S204.

  In step S204, the device 1 displays a country identification list prepared in advance from the recording device 106 on the display device 107, and prompts the user to select a country in which the device 1 exists. When the user selects the display indicating the country, the country identifier indicating the same country as the display indicating the country is stored in the RAM 102 or the recording device 106, and the process proceeds to step S205 to end.

  In the example shown in FIG. 5, from the information indicating the country obtained by some country determination method, the display indicating the country is shown to the user and YES / NO is requested from the user, but the user is requested to determine by another method. Also good. For example, when YES / NO is not obtained as in step S203 and the country identification list is displayed in step S204, it is possible to display the country identification list in a place that is most conspicuously selected, or display in a conspicuous color. The display content is not limited as long as the load when the user selects can be reduced. Moreover, it is also possible to use the data indicating the country obtained by the country determination method as data indicating the country to which the device 1 is subject to the law without requesting the user to make a determination. However, since it is difficult to determine without error whether the device 1 is installed in which country's law, it is desirable to ask the user for a final determination.

  An example of another country determination method in step S107 in FIG. 4 is shown in FIG. FIG. 6 shows a method that applies the mechanism of the Traceroute command. In this method, an IP address of a node close to the device 1 (an IP address other than the device) is acquired, reverse lookup is performed using DNS for the IP address, and the acquired ccTLD is regarded as a country to which the device 1 belongs. . This is based on the assumption that even if the ccTLD of the device 1 cannot be obtained, the ccTLD of the neighboring node of the device 1 is likely to be equal to the ccTLD of the country to which the device 1 belongs.

  The Traceroute command is a command for investigating a route on the Internet by making an ICMP packet an ECHO Request of Type 8 and sequentially increasing the transferable value (number of hops) called TTL from 1 by one. Each time an IP packet is transferred, the TTL is reduced by one at a node (device such as a router) in the middle of the route. The node on the network when TTL becomes 0 returns an ICMP packet of Type 11 (Time Excluded for a Datagram) to the transmission source. From this returned ICMP packet, it is possible to obtain the IP address of the node in the middle of the route. For example, when TTL is 1, it is possible to obtain the IP address of a node that is one hop away from the source node. When TTL is 2, 2 hops, when TTL is 3, 3 hops, and so on. In the present embodiment, the transmission destination address when the device 1 transmits an ICMP packet is the cryptographic law information management server 2 in FIG.

  Hereinafter, FIG. 6 will be described. After the start in step S301 of FIG. 6, the CPU 101 sets the value of the counter n in the RAM 102 to 1 in step S302. The counter n indicates the number of hops from the device 1 to the node.

  In step S303, the CPU 101 compares the counter n with the maximum number of hops. As the maximum number of hops, it is desirable to set the number of hops from the device 1 that seems to have the same domain name as the device 1. The maximum number of hops may be set in advance by the manufacturer of the device 1 or may be changeable by the user. As a result of the comparison, if the counter n is equal to or greater than the set maximum number of hops, the determination is NO, and the process proceeds to step S309 and ends. If it is less than the maximum number of hops, the determination is YES, and the process proceeds to step S304.

  In step S304, an attempt is made to acquire the IP address of the nth hop node from the device 1. Here, the CPU 101 transmits an ICMP ECHO Request packet through the network interface 105 by setting the value of the counter n as the value of TTL, and tries whether there is a reply. If there is a reply, the answer is YES and the process proceeds to step S305. If there is no reply, or if the IP address cannot be acquired for some reason, the determination is NO, and the process proceeds to step S309 and ends.

  In step S305, the domain name is reversely looked up with respect to the IP address acquired in step S304. In step S306, it is determined whether ccTLD has been acquired. If it can be obtained, the determination is YES, and the process proceeds to step S308 and ends. If the domain name could not be acquired, or if the domain name could be acquired but was not ccTLD, NO is determined and the process proceeds to step S307.

  In step S307, the CPU 101 increments the counter n by 1, and proceeds to step S303. Adding 1 to the counter n means trying to acquire ccTLD for a node far from the device 1 by one hop before the addition.

  As described above, using the method shown in FIG. 6, the device 1 can try to obtain information indicating the country from the IP address of the node up to the set maximum hop count.

  There are other country determination methods performed in step S107 in FIG. For example, by installing a global positioning system (generally abbreviated as GPS) in the device 1, acquiring the position of the device 1 on the earth, and comparing the position data with the map of the country, the device 1 is installed. It is possible to find out which country it is. However, even if this method is used, the accuracy of GPS and the physical location of the device 1 and the country to which the law is applied are not necessarily the same. Is not absolute). As an example of performing country determination using this method, Patent Document 2 is cited.

  In addition, there are a method for determining the country from the operator code included in the base station of the mobile phone network (for example, Patent Document 3) and a method based on the voltage (for example, Patent Document 4). The question of whether the law is applicable is not absolute. On the other hand, in the method according to the present invention as described above, there is no problem even if the country determination method is performed.

<Cryptographic law information setting phase>
In this phase, the device 1 transmits the country identifier to the cryptographic law information management server 2 and acquires the corresponding cryptographic law information. After the acquisition, the device 1 analyzes the cryptographic law information and sets it in the device 1 so that the device 1 operates in accordance with the law concerning encryption. In describing this phase, the configuration of the cryptographic law information management server 2 will be described.

  FIG. 7 is a hardware configuration example of the cryptographic law information management server 2. The CPU 301 controls the operation of the entire cryptographic law information management server 2. The RAM 302 is a temporary storage device (Random Access Memory), and the ROM 303 is a non-volatile memory (Read Only Memory) in which non-erasable data such as a program is incorporated.

  A bus 304 is an internal bus that connects the modules. The network interface 305 is an interface used when the cryptographic law information management server 2 performs data transmission / reception with an external device. The recording device 306 is, for example, a hard disk and the like, which can be read and written, and the recorded content does not disappear even when the power is turned off. There may be an input device or a display device, but it is usually not necessary.

  FIG. 8 shows a flowchart of the operation of the device 1 in this phase, and FIG. 9 shows a flowchart of the operation of the cryptographic law information management server 2. Hereinafter, description will be given mainly with reference to FIGS. 8 and 9.

  After starting the processing in step S401 in FIG. 8, in step S402, the CPU 101 of the device 1 transmits the country identifier stored in step S110 in FIG. 4 to the cryptographic law management server 2 through the network interface 105. In the present embodiment, the country identifier is a character string “Japan”.

  In FIG. 9, the cryptographic law management server 2 prepares to receive a country identifier after starting in step S501. In step S502, the device 1 receives the country identifier transmitted in step S402 of FIG.

In step S503, the CPU 301 of the cryptographic law management server 2 searches the recording device 306 for cryptographic law information corresponding to the country identifier, and sends the cryptographic law information to the transmission source of the packet received in step S502 via the network interface 305. Send back.
After the reply, the process proceeds to step S504 and ends. There is no problem even if the processing of combining steps S502 and S503 is performed in parallel. In other words, it is possible to start a plurality of processes and threads so that the encryption law management server 2 can cope with a plurality of country identifiers received simultaneously, and to perform the processing of combining steps S502 and S503 respectively. Absent.

  In step S403 in FIG. 8, the device 1 receives the cryptographic law information returned from the cryptographic law management server 2 in step S503 in FIG. Here, FIG. 10 shows an example of cryptographic law information.

  In FIG. 9, one set of parentheses indicates the encryption algorithm and the maximum key length allowed. For example, it is assumed that (DES, *) indicates that there is no restriction on the maximum key length in the case of “*” in DES (Data Encryption Standard). Although not shown in FIG. 10, for example, (AES, 192) indicates that use of a maximum key length up to 192 bits is permitted in AES (Advanced Encryption Standard). In addition, “-” indicates that the use of the encryption algorithm is not permitted. If the location of the encryption algorithm is “any”, all encryption algorithms are indicated. In addition, it is assumed that the cryptographic law information is interpreted from the top, and the previously interpreted information is not overwritten.

  That is, in FIG. 10, it is interpreted that the maximum key length of DES is unlimited, MD5 is up to 128 bits, SHA-1 is prohibited, and algorithms other than DES, MD5, and SHA-1 are prohibited. FIG. 10 is merely an example, and for example, the encryption algorithm may be subdivided and specified. In addition, it is possible to specify the security protocol such that the use of encryption is prohibited from 0 to 12 o'clock in the world standard time with time information, ESP is allowed but AH is not possible, and the presence or absence of a signature algorithm can be specified But you can. However, the device 1 must be able to interpret the expanded cryptographic law information. Since there is no restriction on the use of cryptography in Japan at the time of writing this specification, the content of FIG. 10 does not conform to Japanese law, but it is assumed that there is a restriction for explanation.

  In the present embodiment, the description will be continued assuming that the cryptographic law information shown in FIG. 10 is received in step S403 of FIG. In step S404 of FIG. 8, the cryptographic law information management unit 201 of the device 1 analyzes the received cryptographic law information. The CPU 101 temporarily records the received cryptographic law information in the RAM 102. Then, a program for analyzing cryptographic law information recorded in advance in the ROM 103 or the recording device 106 is executed and analyzed.

  In step S <b> 405, the cryptographic law information management unit 201 transmits the cryptographic law information analyzed in step S <b> 404 to the security policy conversion unit 202 and converts it into a security policy that can be set in the security policy management unit 211. For example, SA is as shown in FIG. 11, and SP is as shown in FIG.

  In step S406, the CPU 101 of the device 1 determines whether the device 1 has an encryption / decryption unit program that can execute the encryption algorithm described in the encryption law information. If there is YES, the process proceeds to step S410. If not, the determination is NO and the process proceeds to step S407.

  In step S407, the device 1 requests an external server to acquire a deficient encryption / decryption program. In this embodiment, it is assumed that the encryption / decryption program is stored in the cryptographic law information management server 2, and the device 1 accesses it.

  FIG. 13 is a flowchart when the cryptographic law information management server 2 requests an encryption / decryption program. In step S601 of FIG. 13, the cryptographic law information management server 2 activates a process or thread that processes an acquisition request for an encryption / decryption program from the device 1.

  In step S602, the encryption / decryption program acquisition request transmitted by the device 1 in step S407 of FIG. 8 is received. In step S603, an encryption / decryption program that matches the request is selected, and the program is returned in step S604. The process ends in step S605. There is no problem even if a plurality of processes or threads for processing the flowchart of FIG.

  Returning to FIG. 8, in step S <b> 408, the device 1 receives the encryption / decryption program returned in step S <b> 604 in FIG. 13, and incorporates the received program in step S <b> 409 in the system of the device 1. In Linux, the encryption / decryption program is provided as a binary called a module, and is incorporated into the kernel using an insmod command or the like. In this way, by enabling the encryption / decryption program to be incorporated from the outside, it becomes possible to flexibly comply with the laws relating to encryption. After incorporation, the process proceeds to step S410.

  In step S410, the cryptographic law information management unit 201 sets a security policy in the security policy management unit 211. In the present embodiment, the SA and SP shown in FIGS. 11 and 12 are set.

  In step S411, the cryptographic law information management unit 201 accesses the security policy management unit 211 and permits execution of the encryption / decryption processing. Thereafter, the process proceeds to step S412 and ends.

  With the above processing, the device 1 can perform encryption processing in accordance with encryption laws. In this embodiment, IPsec communication can be performed.

  In the present embodiment, the case where SA is performed by manual key setting is shown, but automatic key exchange may be performed using IKE. In this case, the cryptographic law information management unit 201 monitors the acquired SA as a result of the automatic key exchange, checks whether the cryptographic law information is satisfied before the setting is made, and if not, performs the setting process. Is required. When the cryptographic library 231 performs cryptographic processing requested by the application 221, the cryptographic library 231 accesses the cryptographic law information management unit 201 and determines whether the cryptographic processing conforms to the acquired cryptographic law information. As a result of the determination, if it does not conform to the cryptographic law information, the cryptographic process is not permitted and the cryptographic process fails. If it matches, perform cryptographic processing. Further, in the encryption library 231, as shown in FIG. 8, the encryption / decryption program can be set from the outside of the device 1. In this way, the operation of the encryption library 231 can be adapted to the laws relating to encryption. If the above processing is performed once a day, for example, when the day changes, the data of the cryptographic law information management server 2 is modified so that the device 1 performs cryptographic processing in accordance with the enforcement of the law. Is possible.

(Second Embodiment)
In the first embodiment, as shown in FIG. 3, the cryptographic law information management unit 201 and the security policy conversion unit 202 are mounted in the kernel space. In the present embodiment, as shown in FIG. 14, an example in which the cryptographic law information management unit 401 and the security policy conversion unit 402 are implemented in the user space is shown. Since the basic configuration of the device 1 is the same as that of the first embodiment, only different parts will be described.

  In the present embodiment and the first embodiment, the flowchart of the operation shown in the first embodiment is not changed. However, since the cryptographic law information management unit 401 and the security policy conversion unit 402 are in the user space, an interface for controlling the security policy management unit 211 and the network unit 213 existing in the kernel space is required. This interface can be implemented using system calls.

  It can also be implemented using a device file. However, in the first embodiment, there are protection due to existence in the kernel space, low overhead, ease of mounting, and the like, but such advantages are lost in this embodiment. Also, either the cryptographic law information management unit 401 or the security policy conversion unit 402 can be implemented in the kernel space. In that case, an interface that enables communication between the two is required.

  In order to realize the present invention, a storage medium in which a program code (computer program) of software that realizes the functions of the above-described embodiments may be used. In this case, the object of the present invention is achieved by supplying the storage medium to the system or apparatus, and the computer (or CPU or MPU) of the system or apparatus reads and executes the program code stored in the storage medium.

  In this case, the program code itself read from the storage medium realizes the functions of the above-described embodiments, and the program code itself and the storage medium storing the program code constitute the present invention.

  As a storage medium for supplying the program code, for example, a flexible disk, a hard disk, an optical disk, a magneto-optical disk, a CD-ROM, a CD-R, a magnetic tape, a nonvolatile memory card, a ROM, or the like can be used.

  Needless to say, the OS (basic system or operating system) running on the computer performs part or all of the actual processing based on the instruction of the program code.

  Furthermore, the program code read from the storage medium may be written in a memory provided in a function expansion board inserted into the computer or a function expansion unit connected to the computer. In this case, based on the instruction of the written program code, the CPU or the like provided in the function expansion board or function expansion unit may perform part or all of the actual processing.

It is a figure which shows the example of the environment which implements this invention. It is a figure which shows the hardware structural example of the apparatus which concerns on embodiment of this invention. It is a figure which shows the software structural example of the apparatus which concerns on embodiment of this invention. It is a flowchart which shows the operation example of the country determination phase in the apparatus which concerns on embodiment of this invention. It is a flowchart which shows the operation example of the display which makes a user select a country. It is a flowchart which shows the example of the country determination method which applied the mechanism of Traceroute command. It is a figure which shows the hardware structural example of the cryptographic law information management server which concerns on this invention embodiment. It is a flowchart which shows the operation example of the encryption law information setting phase in the apparatus which concerns on embodiment of this invention. It is a flowchart which shows the operation example which returns the encryption law information in the encryption law information management server which concerns on embodiment of this invention. It is a figure which shows an example of encryption law information. It is a figure which shows an example of SA converted from the encryption law information. It is a figure which shows an example of SP converted from the encryption law information. It is a flowchart which shows the operation example at the time of providing an encryption / decryption program. It is a figure which shows the other software structural example of the apparatus which concerns on embodiment of this invention. It is a figure for demonstrating the example of the environment for demonstrating the setting of IPsec. It is a figure for demonstrating an example of SP at the time of setting an IPsec transport mode. It is a figure for demonstrating an example of SP at the time of setting an IPsec transport mode. It is a figure for demonstrating an example at the time of using prefix designation | designated by SP. It is a figure for demonstrating an example at the time of using prefix designation | designated by SP.

Explanation of symbols

1 Device 2 Cryptographic Law Information Management Server 3 DNS Server 4 Network 5 Internet 101, 301 CPU
102, 302 RAM
103, 303 ROM
104, 304 Bus 105, 305 Network interface 106, 306 Recording device 107 Display device 108 Input device 201, 401 Cryptographic law information management unit 202, 402 Security policy conversion unit 211 Security policy management unit 212 Encryption / decryption unit 212
213 Network unit 221 Application 231 Cryptographic library

Claims (7)

An information processing system used in an environment in which a device can communicate with a server,
Means for managing on the server cryptographic law information that allows a computer to interpret national cryptographic laws;
Means for stopping encryption processing in the device in the device;
Means for determining the country to which the device belongs in the device;
Means for transmitting the country identifier determined by the device to the server;
Means for receiving the country identifier transmitted by the device at the server;
Means for selecting cryptography information of the country suitable for the country identifier in the server;
Means for returning the cryptographic law information to the device at the server;
Means for receiving the cryptographic law information returned by the server in the device;
Means for analyzing the cryptographic law information received at the device;
Means for converting the cryptographic law information analyzed in the device into a security policy;
Means for setting the security policy converted in the device;
Means for permitting execution of encryption processing in the device in the device,
An information processing system characterized by determining a country to which the device belongs and performing encryption setting suitable for the law of the country. Means for displaying to the user the result determined to be the country to which the device belongs;
Means for displaying options to the user for the country to which the device belongs;
Means for inputting a selection result of the options;
The information processing system according to claim 1, further comprising means for converting the selection result into the country identifier. As a means of determining the country to which the device belongs,
Means for obtaining a domain name from an IP address;
The information processing system according to claim 1, further comprising means for determining whether the domain name includes a country code top level domain.   The information processing system according to claim 3, further comprising means for acquiring an IP address other than the device. Means for determining an encryption / decryption program insufficient to execute the cryptographic law information acquired by the device;
Means for providing the encryption / decryption program from the server;
Means for requesting the encryption / decryption program from the server to the server in the device;
The information processing system according to claim 1, further comprising means for receiving the encryption / decryption program in the device and incorporating the program into the device. An information processing method in an environment capable of communicating from a device to a server,
Managing cryptographic law information that allows the computer to interpret national cryptographic laws with the server;
Stopping the encryption process in the device in the device;
Determining the country to which the device belongs in the device;
Transmitting the country identifier of the country determined in the device to the server;
Receiving the country identifier transmitted by the device at the server;
Selecting the country's cryptographic law information suitable for the country identifier at the server;
Returning the cryptographic law information to the device at the server;
Receiving the cryptographic law information returned by the server in the device;
Analyzing the cryptographic law information in the device;
Converting the cryptographic law information analyzed in the device into a security policy;
Setting the security policy converted in the device;
And allowing the device to execute encryption processing in the device,
An information processing method comprising: determining a country to which the device belongs, and setting encryption suitable for the law of the country.   The program for making a computer perform each process of the method of Claim 6.

Images