JP2012175160A - Wireless communication device, wireless communication method, program, and wireless communication system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a novel and improved wireless communication device, wireless communication method, program and wireless communication system capable of reducing time and labor of a user for setting on whether to authorize data communication.SOLUTION: A master unit 10 comprises: a communication unit for performing communication with slave units 20A and 20B by wireless signals; a storage unit for storing an operation mode used when a first key which is to be used for data communication with the slave units 20A and 20B is distributed to the slave units 20A and 20B via the communication unit; and a control unit for, based on the operation mode stored in the storage unit and a current operation mode, performing control on whether to authorize data communication with the slave units 20A and 20B.

Description

  The present invention relates to a wireless communication device, a wireless communication method, a program, and a wireless communication system.

  In recent years, techniques for distributing keys and setting information such as WSC (Wi-Fi Simple Config) standardized by Wi-Fi Alliance and Buffalo's AOSS (Air Station One-Touch Security System) have become widespread on wireless networks. It was. With such spread, anyone can easily set up a wireless network that he has built.

  In addition, with such widespread use, there has been an increasing need to easily set up a wireless network that has not been constructed by the user, such as a workplace or a friend's house. In such a use case, from a security point of view, the slave unit is not allowed to allow data communication with the master unit semipermanently, but the slave unit is allowed to perform data communication with the master unit only for a predetermined period. There is a need to do it.

  However, a key exchanged using WSC, AOSS, or the like is usually semi-permanent, and in order to disable the key, it is necessary to change the key setting itself managed in the parent device. . If you change the key settings managed by the parent device, not only the child device that you want to disallow data communication with the parent device, but also all the child devices that used that key, that is, the parent device until now. There is a problem that all the slave units that were able to perform data communication with can no longer communicate data with the master unit.

  In order to solve such a problem, after the parent device exchanges a key with the child device using WSC, AOSS, or the like, data communication with the child device is performed by filtering using a MAC (Media Access Control address) address. There is a method to disallow it. However, in order to restrict access using the MAC address, it is necessary to perform settings for performing MAC filtering on the parent device each time.

  In addition, in order to easily perform the setting for performing the MAC filtering, device identification information for identifying the child device is stored in the parent device once accessed from the child device, and the parent device is set when the setting is performed. Discloses a technology that simplifies the setting by displaying the device identification information (see, for example, Patent Document 1).

JP 2006-203422 A

  However, according to the technique disclosed in Patent Document 1 described above, the user needs to change the setting for manually performing MAC filtering on the parent device.

  Therefore, the present invention has been made in view of the above problems, and an object of the present invention is to reduce the time and effort required for the user to make settings relating to whether or not data communication is permitted. Another object of the present invention is to provide a new and improved wireless communication apparatus, wireless communication method, program, and wireless communication system.

  In order to solve the above-described problem, according to an aspect of the present invention, a first communication unit that is used for data communication between a communication unit that communicates with another wireless communication device using a wireless signal and the other wireless communication device. A storage unit that stores an operation mode when the key is distributed to the other wireless communication device via the communication unit, and the other operation mode based on the operation mode and the current operation mode stored by the storage unit. And a control unit that controls whether or not to allow data communication with the other wireless communication device.

  The control unit performs data communication with the other wireless communication device based on the operation mode stored in the storage unit and the operation mode when a request for data communication is made from the other wireless communication device. It is good also as controlling whether it permits.

  When the current operation mode is switched, the control unit performs a second operation different from the first key based on the operation mode after the switching and the operation mode stored in the storage unit. It is determined whether or not to distribute the key to the other wireless communication device, and the communication unit determines that the second key is distributed to the other wireless communication device by the control unit. The second key may be distributed to other wireless communication devices.

  When the control unit determines to distribute the second key to the other wireless communication device, the communication unit receives the key transmission request transmitted from the other wireless communication device, and then receives the key transmission request. The second key may be distributed to other wireless communication devices.

  If the control unit determines that the second key is distributed to the other wireless communication device, the communication unit transmits a key change request indicating that the key is changed to the other wireless communication device. The key transmission request may be received from the other wireless communication device after transmitting the key change request.

  The said communication part is good also as transmitting the said key change request | requirement using Invitation_Request prescribed | regulated by Wi-Fi direct.

  The control unit performs data communication with the other wireless communication device when the operation mode stored in the storage unit is the first operation mode and the current operation mode is the second operation mode. Is not permitted, the operation mode stored in the storage unit is the second operation mode, and the current operation mode is the first operation mode, the communication with the other wireless communication device Data communication may be prohibited.

  The control unit performs data communication with the other wireless communication device when the operation mode stored in the storage unit is the first operation mode and the current operation mode is the second operation mode. However, if the operation mode stored in the storage unit is the second operation mode and the current operation mode is the first operation mode, the other wireless communication device It is also possible to allow data communication with.

  The operation mode may be switched based on an operation input from the user.

  The operation mode may be switched based on time.

  The operation mode may be switched based on the position of the wireless communication device.

  In order to solve the above problem, according to another aspect of the present invention, an operation when the first key used for data communication with another wireless communication device is distributed to the other wireless communication device. Wireless communication, comprising: storing a mode; and controlling whether or not to permit data communication with the other wireless communication device based on the stored operation mode and the current operation mode A method is provided.

  In order to solve the above problem, according to another aspect of the present invention, a computer is used for data communication between a communication unit that communicates with another wireless communication device by a wireless signal and the other wireless communication device. A storage unit that stores an operation mode when the first key to be used is distributed to the other wireless communication device via the communication unit, and the operation mode and the current operation mode stored by the storage unit, And a control unit for controlling whether or not to allow data communication with the other wireless communication device, a program for causing the wireless communication device to function is provided.

  In order to solve the above problem, according to another aspect of the present invention, there is provided a wireless communication system having a first wireless communication device and a second wireless communication device, wherein the first wireless communication device is the first wireless communication device. The device includes a communication unit that communicates with the second wireless communication device using a wireless signal, and a first key used for data communication with the second wireless communication device in the second wireless communication device. Based on the operation mode stored in the storage unit and the current operation mode, the data communication with the second wireless communication apparatus is performed based on the storage unit that stores the operation mode when distributed via the communication unit. A wireless communication system comprising: a control unit that controls whether to permit or not, wherein the second wireless communication device includes a communication unit that communicates with the first wireless communication device using a wireless signal. The

  As described above, according to the present invention, it is possible to reduce the time and effort required for the user to perform the setting relating to whether or not data communication is permitted.

It is the figure which showed the structural example of the radio | wireless communications system which concerns on embodiment of this invention. It is the figure which showed the function structural example of the radio | wireless communication apparatus which concerns on embodiment of this invention. It is a sequence diagram which shows the 1st example of access control by the radio | wireless communications system which concerns on embodiment of this invention. It is a figure for demonstrating the case where two operation modes are made into an exclusive relationship. It is a figure for demonstrating the case where two operation modes are made into a hierarchical relationship. It is explanatory drawing which showed the structural example of the Provisioning_Discovery_Request frame. It is a sequence diagram which shows the 2nd example of the access control by the radio | wireless communications system which concerns on embodiment of this invention. It is a sequence diagram which shows the 3rd example of access control by the radio | wireless communications system which concerns on embodiment of this invention.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the accompanying drawings. In addition, in this specification and drawing, about the component which has the substantially same function structure, duplication description is abbreviate | omitted by attaching | subjecting the same code | symbol.

  In the present specification and drawings, a plurality of components having substantially the same functional configuration may be distinguished by adding different alphabets after the same reference numeral. However, when it is not necessary to particularly distinguish each of a plurality of constituent elements having substantially the same functional configuration, only the same reference numerals are given.

Further, the “DETAILED DESCRIPTION OF THE INVENTION” will be described according to the following item order.
1. 1. Description of Embodiment 1-1. Configuration example of wireless communication system 1-2. Functional configuration example of wireless communication device 1-3. First example of access control by wireless communication system 1-4. Second example of access control by wireless communication system 1-5. 1. Third example of access control by wireless communication system Conclusion

<1. Description of Embodiment>
[1-1. Configuration example of wireless communication system]
FIG. 1 is an explanatory diagram showing a configuration example of a wireless communication system 1 according to an embodiment of the present invention. As shown in FIG. 1, the wireless communication system 1 according to the embodiment of the present invention includes a parent device 10 as an example of a first wireless communication device and slave devices 20A and 20B as examples of a second wireless communication device. And comprising. Here, the case where the wireless communication system 1 includes the slave units 20A and 20B as the slave units 20 is shown, but the number of the slave units 20 is not particularly limited, and may be one. There may be a plurality.

  Master device 10 can wirelessly communicate with each of slave devices 20A and 20B. Master device 10 only needs to have a function of managing slave devices 20A and 20B, and may be a router, an access point, a mobile device software AP (software access point), It may be a group owner of Wi-Fi direct formulated by Wi-Fi Alliance.

  Hereinafter, as an example, the case where the child device 20A and the parent device 10 are used by the user A and the child device 20B is used by the user B different from the user A will be described. An operation mode is set in the base unit 10, and this operation mode can be switched between the first operation mode and the second operation mode. Hereinafter, a case where two operation modes are provided will be described. However, the operation mode is not particularly limited as long as there are a plurality of operation modes. Hereinafter, a case where the first operation mode is “Party mode” and the second operation mode is “Home mode” will be described as an example. In the following, when the operation mode is “Home mode”, the parent device 10 permits communication with the child device 20A, but does not allow communication with the child device 20B, and the operation mode is “Party mode”. In some cases, the base unit 10 will be described focusing on an example of permitting communication with the handset 20A and the handset 20B.

[1-2. Example of functional configuration of wireless communication device]
The configuration example of the wireless communication system 1 according to the embodiment of the present invention has been described above. Next, a functional configuration example of the wireless communication device (master device 10, slave devices 20A and 20B) according to the embodiment of the present invention will be described with reference to FIG.

  As shown in FIG. 2, the wireless communication device according to the embodiment of the present invention (each of the parent device 10 and the child devices 20A and 20B) is the current wireless communication device status, information on other wireless communication devices, etc. Display unit 110 that displays the input, an input unit 120 that receives an input of an operation from the user, a storage unit 140 that stores information on the current state of the wireless communication device, information on other wireless communication devices, and wireless communication with other wireless communication devices And a communication unit 150 that performs the control, a control unit 130 that controls operations of these functional blocks, and the like. The antenna 160 has a function of transmitting and receiving radio signals. The storage unit 140 may be a volatile memory such as a RAM (Random Access Memory) or a non-volatile storage device such as a hard disk, or an external storage device connected to a wireless communication device via a network. It may be.

  For example, the input unit 120 may be configured by buttons, may be configured by a touch panel, or may be configured by being separated from a wireless communication device such as a remote controller, and may be operated via a network. You may be comprised by what is input. Further, the display unit 110 may have a display function by a display, or may have a display function by blinking a lamp. In addition, the display unit 110 may have a function of displaying on a remote controller separated from the wireless communication device, or may have a function of displaying via a network. Instead of the display unit 110, a device that outputs a sound such as a beep sound may be used. The input unit 120 and the display unit 110 are not essential.

[1-3. First example of access control by wireless communication system]
Heretofore, the functional configuration example of the wireless communication device (master device 10, slave devices 20A and 20B) according to the embodiment of the present invention has been described. Next, a first example of access control by the wireless communication system 1 according to the embodiment of the present invention will be described with reference to FIG. In this example, a method is shown in which data communication is permitted for the child device 20A without any particular limitation, and data communication is temporarily permitted for the child device 20B. Data communicated in the data communication is not particularly limited, and is used by an application executed in each of the parent device 10 and the child device 20, for example.

  In this example, “Home mode” and “Party mode” are assumed as operation modes. The “Home mode” is a mode in which data communication with the partner (slave device 20A) that has performed key exchange in the mode is permitted in both the “Home mode” and the “Party mode”. In this mode, only data communication with the partner (slave device 20B) that has exchanged the key is permitted. In this case, it can be said that “Home mode” and “Party mode” have a hierarchical relationship.

  However, the “Home mode” may also be a mode in which only data communication with the partner (slave device 20A) that has performed key exchange in this mode is permitted. In this case, it can be said that the “Home mode” and the “Party mode” are in an exclusive relationship. Hereinafter, the case where the two operation modes are in an exclusive relationship will be described with reference to FIG. 4, and then the case where the two operation modes are in a hierarchical relationship will be described with reference to FIG.

  As shown in FIG. 4, when the “Home mode” and the “Party mode” are in an exclusive relationship, data communication can be performed with a partner who has performed key exchange when the operation mode is “Home mode”. A possible range is only when the operation mode is the “Home mode”. The range at this time is shown as “Mode A” in FIG. The range in which data communication can be performed with the partner that has performed the key exchange when the operation mode is “Party mode” is only when the operation mode is “Party mode”. The range at this time is shown as “Mode B” in FIG.

  As shown in FIG. 5, when the “Home mode” and the “Party mode” are in a hierarchical relationship, data communication can be performed with a partner who has performed key exchange when the operation mode is “Home mode”. The possible range is when the operation mode is “Home mode” or “Party mode”. The range at this time is shown as “Mode A” in FIG. The range in which data communication can be performed with the partner that has performed the key exchange when the operation mode is “Party mode” is only when the operation mode is “Party mode”. The range at this time is shown as “Mode B” in FIG.

  Returning to FIG. 3, the description will be continued. As shown in FIG. 3, when the operation mode is “Home mode”, for example, when the user performs a predetermined operation required in WSC, Key exchange is performed with 20A by WSC (step S11). The key is used for data communication performed between the parent device 10 and the child device 20A, and is distributed from the parent device 10 to the child device 20A. The base unit 10 stores the operation mode when the key is distributed to the slave unit 20A via the communication unit 150 in the storage unit 140 (step S12). FIG. 3 shows an example in which the operation mode when the key is distributed to the child device 20A is stored as “Home mode”.

  In FIG. 3, the operation mode when the key is distributed to the child device 20A is stored in the storage unit 140 of the parent device 10 as “Home mode”, and the storage unit of the parent device 10 is also set as “Party mode”. An example stored in 140 is shown. This is because the “Home mode” and the “Party mode” are in a hierarchical relationship, and the data communication is permitted to the slave unit 20A even in the “Party mode”.

  In the example shown in FIG. 3, the device identification information for identifying the slave unit 20A (in this example, “slave unit 20A”) and the operation mode when performing key exchange (in this example, “Home mode”) are The associated information is registered as a device list. Thereby, it becomes possible to manage the operation mode for each handset 20 when the key exchange is performed. This device list can also be stored in the storage unit 140 of the parent device 10. As device identification information for identifying the child device 20A, for example, a MAC address can be used.

  In base unit 10, when the data transmitted from slave unit 20 </ b> A is encrypted, the encryption is released using this key, and in base unit 20 </ b> A, the data transmitted from base unit 10 is encrypted. Encryption can be broken with this key. Control unit 130 of base unit 10 receives the operation mode stored in storage unit 140 of base unit 10 (the operation mode when key exchange is performed with slave unit 20A) and a request for data communication from slave unit 20A. Whether or not data communication with the child device 20A is permitted is controlled based on the operation mode.

  Here, the control unit 130 of the parent device 10 includes the operation mode stored in the storage unit 140 of the parent device 10 (the operation mode “Home mode” when key exchange is performed with the child device 20A), and the child device 20A. Since the operation mode “Home mode” when a request for data communication is made coincides, data communication with the child device 20A is permitted. Therefore, after the key exchange (step S11), data communication can be performed between the parent device 10 and the child device 20A (step S13).

  Thereafter, it is assumed that the operation mode is switched. The operation mode is switched by, for example, the control unit 130 of the parent device 10. Here, as shown in FIG. 3, it is assumed that the operation mode is switched based on an operation input from the user (step S14). An operation input from the user can be received by the input unit 120 of the parent device 10. However, the switching of the operation mode is not limited to the case where it is performed based on an operation input from the user. For example, the operation mode may be switched based on the time, or may be switched based on the position of the parent device 10.

  The time may be acquired from a clock built in the parent device 10 or may be acquired from a clock existing outside the parent device 10. For example, the control unit 130 of the parent device 10 may switch the operation mode when the current time reaches a predetermined time. For example, the control unit 130 of the parent device 10 may switch the operation mode to another operation mode when the same operation mode continues for a predetermined time. For example, the control unit 130 of the parent device 10 may switch the operation mode to the “Home mode” when a predetermined time has elapsed since the operation mode was switched to the “Party mode”.

  The position of base unit 10 can be detected using GPS (Global Positioning System) positioning, positioning using radio waves from a Wi-Fi base station, or the like. In this case, for example, the control unit 130 of the parent device 10 determines “Party mode” if the detected position of the parent device 10 is outside the home, and “ The operation mode can be switched to “Home mode”.

  As shown in FIG. 3, for example, after the operation mode is switched to “Party mode”, the base unit 10 is operated by the communication unit 150 when the user performs a predetermined operation required for the WSC. Key exchange by WSC is performed with the machine 20B (step S15). The key is used for data communication performed between the parent device 10 and the child device 20B, and is distributed from the parent device 10 to the child device 20B. The base unit 10 stores the operation mode when the key is distributed to the slave unit 20B via the communication unit 150 in the storage unit 140 (step S16). FIG. 3 shows an example in which the operation mode when the key is distributed to the child device 20B is stored as “Party mode”.

  In the example shown in FIG. 3, the device identification information for identifying the slave unit 20B (in this example, “slave unit 20B”) and the operation mode when the key exchange is performed (in this example, “Party mode”) are The associated information is registered as a device list.

  Control unit 130 of base unit 10 receives the operation mode stored in storage unit 140 of base unit 10 (the operation mode when key exchange is performed with slave unit 20A) and a request for data communication from slave unit 20A. Whether or not data communication with the child device 20A is permitted is controlled based on the operation mode.

  Here, the control unit 130 of the base unit 10 performs the data communication from the operation mode stored in the storage unit 140 of the base unit 10 (“Party mode” when key exchange is performed with the slave unit 20A) and the slave unit 20A. Since the operation mode “Party mode” when the request is made coincides, data communication with the child device 20A is permitted. Therefore, after the key exchange (step S15), data communication can be performed between the parent device 10 and the child device 20A (step S17).

  In base unit 10, when the data transmitted from slave unit 20B is encrypted, the encryption is released with this key. In slave unit 20B, the data transmitted from base unit 10 is encrypted. Encryption can be broken with this key. Control unit 130 of base unit 10 receives the operation mode stored in storage unit 140 of base unit 10 (the operation mode when key exchange is performed with slave unit 20B) and data communication from slave unit 20B. Whether to allow data communication with the slave unit 20B is controlled based on the operation mode.

  Here, the control unit 130 of the parent device 10 performs the data communication from the operation mode (operation mode when the key is exchanged with the child device 20B) stored in the storage unit 140 of the parent device 10 and the child device 20B. Since the operation mode “Party mode” when the request is made coincides, data communication with the child device 20B is permitted. Therefore, after key exchange (step S15), data communication can be performed between the parent device 10 and the child device 20B (step S18).

  Thereafter, as shown in FIG. 3, it is assumed that the operation mode is switched based on an operation input by the user (step S19). However, as described above, the switching of the operation mode is not limited to the case where the operation mode is performed based on an operation input from the user.

  As shown in FIG. 3, for example, after the operation mode is switched to “Home mode”, the base unit 10 is operated by the control unit 130 to store the operation mode stored in the storage unit 140 (when the key is exchanged with the slave unit 20B). ) And the operation mode when a request for data communication is made from the handset 20B, it is controlled whether to permit data communication with the handset 20B.

  Here, the control unit 130 of the parent device 10 performs the data communication from the operation mode (operation mode when the key is exchanged with the child device 20B) stored in the storage unit 140 of the parent device 10 and the child device 20B. Since the operation mode “Home mode” when the request is made does not match, data communication with the child device 20B is not permitted. Therefore, after switching the operation mode (step S19), it becomes impossible to perform data communication between the parent device 10 and the child device 20B (step S20).

  As shown in FIG. 3, for example, after the operation mode is switched to “Home mode”, the base unit 10 performs an operation mode (key exchange with the slave unit 20 </ b> A) stored in the storage unit 140 by the control unit 130. On the other hand, and whether or not data communication with the child device 20A is permitted is controlled based on the operation mode when a request for data communication is made from the child device 20A.

  Here, the control unit 130 of the parent device 10 includes the operation mode stored in the storage unit 140 of the parent device 10 (the operation mode “Home mode” when key exchange is performed with the child device 20A), and the child device 20A. Since the operation mode “Home mode” when a request for data communication is made coincides, data communication with the child device 20A is permitted. Therefore, after switching the operation mode (step S19), data communication can be performed between the parent device 10 and the child device 20A (step S21).

  As described above, the base unit 10 is controlled by the control unit 130 based on the operation mode stored in the storage unit 140 (the operation mode when the key is exchanged with the slave unit 20) and the current operation mode. Whether to allow data communication with the machine 20 is controlled. In particular, in the first example of access control by the wireless communication system 1, the base unit 10 is operated by the control unit 130 and stored in the storage unit 140 (operation mode when key exchange is performed with the mobile unit 20). An example of controlling whether or not to allow data communication with the child device 20 based on the operation mode when a request for data communication is made from the child device 20 has been described.

  According to the first example of access control by the wireless communication system 1 according to the embodiment of the present invention, it is possible to reduce time and effort required for a user to make a setting regarding whether or not to allow data communication. In particular, according to the first example of access control by the wireless communication system 1, the parent device 10 can control whether or not to allow data communication with the child device 20 without changing the key. .

  In the first example of access control by the wireless communication system 1, the case where the two operation modes are hierarchically related has been mainly described. That is, in the base unit 10, the operation mode (the operation mode when the key is exchanged with the handset 20 </ b> B) stored in the storage unit 140 by the control unit 130 is “Party mode”, and the current operation mode is “Home mode”. ", The data communication with the handset 20B is not permitted. On the other hand, in the base unit 10, the operation mode (the operation mode when performing key exchange with the slave unit 20 </ b> A) stored in the storage unit 140 by the control unit 130 is “Home mode”, and the current operation mode is “ In the case of “Party mode”, data communication with the child device 20A is permitted.

  However, as described above, the two operation modes may be in an exclusive relationship. That is, in the base unit 10, the operation mode (the operation mode when performing key exchange with the slave unit 20 </ b> B) stored in the storage unit 140 by the control unit 130 is “Party mode”, and the current operation mode is “ In the “Home mode”, the data communication with the child device 20B can be prohibited. In addition, the operation mode stored in the storage unit 140 by the control unit 130 (the operation mode when performing key exchange with the child device 20A) is “Home mode”, and the current operation mode is “Home mode”. In the case of “Party mode”, data communication with the child device 20A can be disabled.

  In the second example and the third example of access control by the wireless communication system 1 described later, the two operation modes may be in an exclusive relationship or in a hierarchical relationship. Further, as described above, it has been shown that the method of switching the operation mode is not particularly limited, but the operation mode switching is also performed in the second and third examples of access control by the wireless communication system 1 described later. The method is not particularly limited.

[1-4. Second example of access control by wireless communication system]
Heretofore, the first example of access control by the wireless communication system 1 according to the embodiment of the present invention has been described. Subsequently, a second example of access control by the wireless communication system 1 according to the embodiment of the present invention will be described with reference to FIG. Also in this example, there is shown a technique for permitting data communication to the slave device 20A without any particular limitation and temporarily permitting data communication to the slave device 20B. However, in this example, every time the parent device 10 switches the operation mode, the key used for data communication with the child device 20 is changed, and the changed key is distributed to the predetermined child device 20 again. I will do it.

  In the state illustrated in FIG. 7, it is assumed that the processes in steps S11 to S16 illustrated in FIG. 3 are omitted. Therefore, in the state shown in FIG. 7, the first key has already been exchanged between the master unit 10 and the slave unit 20A, and between the master unit 10 and the slave unit 20B (from the master unit 10). The distribution of the first key to the slave units 20A and 20B has been completed). As a result, as shown in FIG. 7, device identification information for identifying the slave unit 20A (in this example, “slave unit 20A”) and an operation mode when performing key exchange (in this example, “Home mode”) Is associated as a device list. That is, the operation mode of the slave unit 20A is already stored in the storage unit 140 of the master unit 10. Similarly, information in which device identification information for identifying the slave unit 20B (in this example, “slave unit 20B”) is associated with an operation mode when performing key exchange (in this example, “Party mode”). Is registered as a device list. That is, the operation mode of the child device 20B is already stored in the storage unit 140 of the parent device 10.

  In this state, each of parent device 10, child device 20A, and child device 20B performs data communication using the first key, so data communication between parent device 10 and child device 20A is possible. (Step S41), data communication between the parent device 10 and the child device 20B is possible (Step S42). When the operation mode is switched (step S43), the control unit 130 of the parent device 10 changes the key used for data communication with each of the child devices 20A and 20B from the first key to the second key. Suppose that it did (step S44). Then, since different keys are used in the parent device 10 and the child device 20A, data communication between the parent device 10 and the child device 20A becomes impossible (step S45). Similarly, data communication between the parent device 10 and the child device 20B becomes impossible.

  Here, when the operation mode is switched, the control unit 130 of the parent device 10 operates after the switching (the “Home” mode in this example) and the operation mode (the child device 20A) stored in the storage unit 140. And the operation mode when the key exchange is performed), it is determined whether or not to distribute a second key different from the first key to the slave unit 20A. Here, control unit 130 of base unit 10 is switched to the operation mode stored in storage unit 140 of base unit 10 (the operation mode “Home mode” when key exchange is performed with slave unit 20A) ”. Since the operation mode (in this example, “Home” mode) matches, it is determined that the second key is distributed to the child device 20A.

  On the other hand, when the operation mode is switched, the control unit 130 of the parent device 10 changes the operation mode after switching (the “Home” mode in this example) and the operation mode stored in the storage unit 140 (the child device 20B and Based on the operation mode when the key exchange is performed), it is determined whether or not to distribute the second key different from the first key to the child device 20B. Here, control unit 130 of base unit 10 is switched to the operation mode stored in storage unit 140 of base unit 10 (the operation mode “Party mode” when key exchange is performed with handset 20B). Since the operation mode (in this example, “Home” mode) does not match, it is determined that the second key is not distributed to the child device 20B.

  The communication unit 150 of the base unit 10 determines that the control unit 130 distributes the second key to the slave unit 20A. Therefore, the communication unit 150 distributes the second key to the slave unit 20A, while the control unit 130 distributes the second key. Since it is determined not to distribute to the child device 20B, the second key is not distributed to the child device 20B. The communication unit 150 of the parent device 10 may distribute the second key to the child device 20A after the key transmission request is transmitted from the child device 20A. In the example illustrated in FIG. 7, when it is detected that the slave unit 20 </ b> A cannot communicate with the master unit 10, a Provisioning_Discovery_Request is transmitted from the slave unit 20 </ b> A as a key transmission request (step S <b> 46). An example is shown in which 150 receives the Provisioning_Discovery_Request and then exchanges the second key with the child device 20A (distributes the second key to the child device 20A) (step S47). As a reply to Provisioning_Discovery_Request in step S42, Provisioning_Discovery_Response can be transmitted from slave unit 20A to master unit 10.

  On the other hand, the communication unit 150 of the parent device 10 does not distribute the second key to the child device 20B after receiving the key transmission request transmitted from the child device 20B. In the example illustrated in FIG. 7, it is detected that the slave device 20B cannot communicate with the master device 10 and the Provisioning_Discovery_Request is transmitted from the slave device 20B as a key transmission request (step S48), but the communication unit of the master device 10 150 shows an example in which the second key is not exchanged with the child device 20B after receiving Provisioning_Discovery_Request (the second key is not distributed to the child device 20B) (step S49). In addition, Provisioning_Discovery_Response can be transmitted from the child device 20B to the parent device 10 as a reply to the Provisioning_Discovery_Request in step S44.

  The key transmission request must be decipherable by the parent device 10 even when the key used by the parent device 10 and the key used by the child device 20 are different. Therefore, the key transmission request needs to be transmitted from the child device 20 to the parent device 10 in an unencrypted format. As the key transmission request, for example, a Provisioning_Discovery_Request frame can be used, but the key transmission request is not limited to the case of using the Provisioning_Discovery_Request frame.

  Hereinafter, a configuration example of the Provisioning_Discovery_Request frame will be described with reference to FIG. The Provisioning_Discovery_Request frame has a format as shown in FIG. 6, for example. A key exchange method can be set in the Config_Method field. As the key exchange method, for example, a PIN method, a push button method, and the like are assumed. However, for example, the key exchange method determined in the initial setting stage may be set in the Config_Method field, or may be set last time. The key exchange method may be stored as a history, and a key exchange method stored as a history may be set. Note that a Config_Method field may also exist in Provisioning_Discovery_Response. In this field, when the base unit 10 determines to distribute the second key to the slave unit 20A, a value equivalent to the key exchange method set in the Config_Method field of the Provisioning_Discovery_Request is set. If it is determined that the second key is not distributed to the slave unit 20B, NULL (empty data) can be set.

  Returning to FIG. 7, the description will be continued. According to the processing flow described above, after key exchange (step S43) between the parent device 10 and the child device 20A, data communication is performed between the parent device 10 and the child device 20A. Can be done. On the other hand, since key exchange has failed between the parent device 10 and the child device 20B (step S45), it is impossible to perform data communication between the parent device 10 and the child device 20A.

  According to the second example of access control by the wireless communication system 1 according to the embodiment of the present invention, it is possible to reduce the time and effort required for the user to make a setting regarding whether or not to allow data communication. In particular, according to the second example of access control by the wireless communication system 1, the parent device 10 can control whether to allow data communication with the child device 20 by changing the key.

[1-5. Third example of access control by wireless communication system]
Heretofore, the third example of access control by the wireless communication system 1 according to the embodiment of the present invention has been described. Next, a third example of access control by the wireless communication system 1 according to the embodiment of the present invention will be described with reference to FIG. Also in this example, there is shown a technique for permitting data communication to the slave device 20A without any particular limitation and temporarily permitting data communication to the slave device 20B. Similarly to the second example, every time the parent device 10 switches the operation mode, the key used for data communication with the child device 20 is changed, and after changing the predetermined child device 20 again. The key will be distributed. However, in this example, before the base unit 10 distributes the key after the change, the base unit 10 transmits a key change request indicating that the key is changed to the predetermined handset 20.

  In the state illustrated in FIG. 8, it is assumed that the processes in steps S11 to S16 illustrated in FIG. 3 are omitted. Therefore, in the state shown in FIG. 8, the first key has already been exchanged between the parent device 10 and the child device 20A, and between the parent device 10 and the child device 20B (from the parent device 10). The distribution of the first key to the slave units 20A and 20B has been completed). As a result, as shown in FIG. 8, the device identification information for identifying the slave unit 20A (in this example, “slave unit 20A”) and the operation mode when key exchange is performed (in this example, “Home mode”) Is associated as a device list. That is, the operation mode of the slave unit 20A is already stored in the storage unit 140 of the master unit 10. Similarly, information in which device identification information for identifying the slave unit 20B (in this example, “slave unit 20B”) is associated with an operation mode when performing key exchange (in this example, “Party mode”). Is registered as a device list. That is, the operation mode of the child device 20B is already stored in the storage unit 140 of the parent device 10.

  In this state, each of parent device 10, child device 20A, and child device 20B performs data communication using the first key, so data communication between parent device 10 and child device 20A is possible. (Step S51), data communication between the parent device 10 and the child device 20B is possible (Step S52). When the operation mode is switched (step S53), the control unit 130 of the parent device 10 changes the key used for data communication with each of the child devices 20A and 20B from the first key to the second key. Suppose that it did (step S54). Then, since different keys are used in the parent device 10 and the child device 20A, data communication between the parent device 10 and the child device 20A becomes impossible. Similarly, data communication between the parent device 10 and the child device 20B becomes impossible.

  Here, when the operation mode is switched, the control unit 130 of the parent device 10 operates after the switching (the “Home” mode in this example) and the operation mode (the child device 20A) stored in the storage unit 140. And the operation mode when the key exchange is performed), it is determined whether or not to distribute a second key different from the first key to the slave unit 20A. Here, control unit 130 of base unit 10 is switched to the operation mode stored in storage unit 140 of base unit 10 (the operation mode “Home mode” when key exchange is performed with slave unit 20A) ”. Since the operation mode (in this example, “Home” mode) matches, it is determined that the second key is distributed to the child device 20A.

  On the other hand, when the operation mode is switched, the control unit 130 of the parent device 10 changes the operation mode after switching (the “Home” mode in this example) and the operation mode stored in the storage unit 140 (the child device 20B and Based on the operation mode when the key exchange is performed), it is determined whether or not to distribute the second key different from the first key to the child device 20B. Here, control unit 130 of base unit 10 is switched to the operation mode stored in storage unit 140 of base unit 10 (the operation mode “Party mode” when key exchange is performed with handset 20B). Since the operation mode (in this example, “Home” mode) does not match, it is determined that the second key is not distributed to the child device 20B.

  The communication unit 150 of the base unit 10 determines that the control unit 130 distributes the second key to the slave unit 20A. Therefore, the communication unit 150 distributes the second key to the slave unit 20A, while the control unit 130 distributes the second key. Since it is determined not to distribute to the child device 20B, the second key is not distributed to the child device 20B. The communication unit 150 of the parent device 10 may distribute the second key to the child device 20A after receiving the key transmission request transmitted from the child device 20A. Since communication unit 150 of base unit 10 determines that control unit 130 distributes the second key to slave unit 20A, it transmits a key change request indicating that the key is to be changed to slave unit 20A. It is good also as receiving a key transmission request | requirement from the subunit | mobile_unit 20A after transmitting.

  In the example illustrated in FIG. 8, the Invitation_Request defined by Wi-Fi Direct is transmitted as a key change request from the parent device 10 to the child device 20A (Step S55), and the communication unit 150 of the child device 20A receives the Invitation_Request. Thereafter, the Provisioning_Discovery_Request is transmitted to the parent device 10 (step S56). After the communication unit 150 of the parent device 10 receives the Provisioning_Discovery_Request, the second key is exchanged with the child device 20A (second key to the child device 20A). An example is shown (step S57). Note that Invitation_Response can be transmitted from the slave unit 20A to the master unit 10 as a reply to the Invitation_Request in step S55. Further, Provisioning_Discovery_Response can be transmitted from the slave unit 20A to the master unit 10 as a reply to the Provisioning_Discovery_Request in step S56.

  On the other hand, the communication unit 150 of the parent device 10 does not distribute the second key to the child device 20B after receiving the key transmission request transmitted from the child device 20B.

  The key change request must be decipherable in the parent device 10 even when the key used in the parent device 10 and the key used in the child device 20 are different. Therefore, the key change request needs to be transmitted from the slave unit 20 to the master unit 10 in an unencrypted format. For example, the Invitation_Request specified by Wi-Fi Direct can be used as the key change request, but the key change request is not limited to the case of using Invitation_Request specified by Wi-Fi Direct. .

  Returning to FIG. 7, the description will be continued. According to the processing flow as described above, after key exchange (step S57) between the parent device 10 and the child device 20A, data communication is performed between the parent device 10 and the child device 20A. This can be performed (step S58). On the other hand, since the key used between the master unit 10 and the slave unit 20B is different between the master unit 10 and the slave unit 20B, it is impossible to perform data communication between the master unit 10 and the slave unit 20B. It becomes possible (step S59).

  According to the third example of access control by the wireless communication system 1 according to the embodiment of the present invention, it is possible to reduce the time and effort required for the user to make a setting regarding whether or not to allow data communication. In particular, according to the third example of access control by the wireless communication system 1, the parent device 10 can control whether or not to allow data communication with the child device 20 by changing the key. The fact that the key has been changed can be communicated to a predetermined handset 20.

<2. Conclusion>
As described above, the parent device 10 according to the embodiment of the present invention is based on the operation mode when the key used for data communication with the child device 20 is distributed to the child device 20 and the current operation mode. It is possible to control whether or not data communication with the child device 20 is permitted. With this configuration, it is possible to reduce the time and effort required for the user to make a setting relating to whether or not data communication is permitted.

  Although the preferred embodiments of the present invention have been described in detail with reference to the accompanying drawings, the present invention is not limited to such examples. It is obvious that a person having ordinary knowledge in the technical field to which the present invention pertains can come up with various changes or modifications within the scope of the technical idea described in the claims. Of course, it is understood that these also belong to the technical scope of the present invention.

  For example, each step in the processing of the wireless communication system 1 of the present specification does not necessarily have to be processed in time series in the order described as a sequence diagram. For example, each step in the processing of the wireless communication system 1 may be processed in an order different from the order described as the sequence diagram or may be processed in parallel.

  Further, it is possible to create a computer program for causing the hardware incorporated in the parent device 10 or the child device 20 to exhibit the same functions as the components of the parent device 10 or the child device 20 described above. A storage medium storing the computer program is also provided.

DESCRIPTION OF SYMBOLS 1 Radio | wireless communications system 10 Master unit 20 (20A, 20B) Slave unit 110 Display part 120 Input part 130 Control part 140 Storage part 150 Communication part

Claims (14)

A communication unit that communicates with other wireless communication devices by wireless signals;
A storage unit for storing an operation mode when the first key used for data communication with the other wireless communication device is distributed to the other wireless communication device via the communication unit;
A control unit that controls whether to allow data communication with the other wireless communication device based on the operation mode stored in the storage unit and the current operation mode;
A wireless communication device. The controller is
Whether to allow data communication with the other wireless communication device based on the operation mode stored in the storage unit and the operation mode when a request for data communication is made from the other wireless communication device To control the
The wireless communication apparatus according to claim 1. The controller is
When the current operation mode is switched, a second key different from the first key is assigned to the other key based on the switched operation mode and the operation mode stored in the storage unit. Determine whether to distribute to wireless communication devices,
The communication unit is
When it is determined by the control unit to distribute the second key to the other wireless communication device, the second key is distributed to the other wireless communication device.
The wireless communication apparatus according to claim 1. The communication unit is
When the control unit determines that the second key is to be distributed to the other wireless communication device, after receiving the key transmission request transmitted from the other wireless communication device, the other wireless communication device Distribute the second key to
The wireless communication apparatus according to claim 3. The communication unit is
When the control unit determines that the second key is to be distributed to the other wireless communication device, a key change request indicating that the key is changed is transmitted to the other wireless communication device, and the key change is performed. Receiving the key transmission request from the other wireless communication device after transmitting the request;
The wireless communication apparatus according to claim 4. The communication unit is
Transmitting the key change request using Invitation_Request defined by Wi-Fi Direct;
The wireless communication apparatus according to claim 5. The controller is
When the operation mode stored in the storage unit is the first operation mode and the current operation mode is the second operation mode, data communication with the other wireless communication device is not permitted, When the operation mode stored in the storage unit is the second operation mode and the current operation mode is the first operation mode, data communication with the other wireless communication device is not permitted. And
The wireless communication apparatus according to claim 1. The controller is
When the operation mode stored in the storage unit is the first operation mode and the current operation mode is the second operation mode, data communication with the other wireless communication device is not permitted. However, when the operation mode stored in the storage unit is the second operation mode and the current operation mode is the first operation mode, data communication with the other wireless communication device is performed. to approve,
The wireless communication apparatus according to claim 1. The operation mode is:
Switch based on user input,
The wireless communication apparatus according to claim 1. The operation mode is:
Switch based on time,
The wireless communication apparatus according to claim 1. The operation mode is:
Switched based on the position of the wireless communication device,
The wireless communication apparatus according to claim 1. Storing an operation mode when a first key used for data communication with another wireless communication device is distributed to the other wireless communication device;
Controlling whether to allow data communication with the other wireless communication device based on the stored operation mode and the current operation mode;
A wireless communication method. Computer
A communication unit that communicates with other wireless communication devices by wireless signals;
A storage unit for storing an operation mode when the first key used for data communication with the other wireless communication device is distributed to the other wireless communication device via the communication unit;
A control unit that controls whether to allow data communication with the other wireless communication device based on the operation mode stored in the storage unit and the current operation mode;
A program for functioning as a wireless communication device. A wireless communication system having a first wireless communication device and a second wireless communication device,
The first wireless communication device is:
A communication unit that communicates with the second wireless communication device by a wireless signal;
A storage unit for storing an operation mode when a first key used for data communication with the second wireless communication device is distributed to the second wireless communication device via the communication unit;
A control unit that controls whether to allow data communication with the second wireless communication device based on the operation mode stored in the storage unit and the current operation mode;
With
The second wireless communication device is:
A communication unit for communicating with the first wireless communication device by a wireless signal;
A wireless communication system.

Images