JP2019033449A - Data transmitting apparatus, data receiving apparatus, method, and program - Google Patents

Abstract

To provide a data transmitting apparatus, a data receiving apparatus, a method, and a program that makes leakage of data transmitted by one-way communication less likely to occur.SOLUTION: A data transmitting apparatus 100 includes one or more sensors for acquiring information from a living body and outputting sensor data, encryption control units 104 and 105 for encrypting desired information with an encryption key including sensor data to generate encrypted data, an attribute information generation control unit 108 for generating attribute information of the sensor data, a packet generation control unit 106 for generating a one-way transmission packet including the attribute information and the encrypted data, and a transmission unit 107 for transmitting the packet.SELECTED DRAWING: Figure 1

Description

  The present invention relates to a data transmission device, a data reception device, a method, and a program using one-way communication.

  Blood pressure monitors having a function of transferring blood pressure data to a user's portable information terminal have been put on the market. As the portable information terminal, for example, a smartphone, a tablet terminal, or a notebook personal computer is used. If such a function is used, the user can list his / her blood pressure measurement results under various situations on the portable information terminal. Also, near field communication technology, particularly Bluetooth (registered trademark) technology is typically used for transferring blood pressure data. In general, Bluetooth communication (connection) can be realized with a small scale and power saving compared to WLAN (Wireless Local Area Network) communication. The version 4.0 of the Bluetooth specification is also called BLE (Bluetooth Low Energy), and can further reduce power consumption compared to the previous specification.

  In BLE, bi-directional communication called connection can be performed. However, for the connection, the operations imposed on the user for pairing are complicated, the communication procedure after pairing is complicated, the portable information terminal side needs to support BLE, only the portable information terminal In addition, blood pressure monitors also require high-performance hardware (processors, memory), high development and / or evaluation costs, large communication overhead, and inability to transmit small volumes of data .

  On the other hand, in BLE, one-way communication called advertising can also be performed. Japanese Patent Application Laid-Open No. 2004-133620 discloses a technique for transmitting arbitrary data including a blank portion of a data field of an advertisement packet.

Japanese Patent No. 5852620

  If blood pressure data is transmitted using advertising, pairing and subsequent complicated communication procedures become unnecessary, and the above problem is solved or reduced. However, for example, if the sphygmomanometer has only a one-way transmission function, control is performed by sending control data from the portable information terminal to the sphygmomanometer, or conversely, the state of the portable information terminal from the sphygmomanometer (data reception status) Etc.) cannot be referred to.

  In general, data wirelessly transmitted from the sphygmomanometer can be received by a data receiving device other than the user's portable information terminal depending on the propagation state of the radio wave. At this time, if blood pressure data is transmitted without being encrypted, the blood pressure data of the user may be seen by others. It is required to prevent the leakage of information representing the health state of the user and improve the safety of the blood pressure data transfer function. Furthermore, as described above, for example, if the sphygmomanometer has only a one-way transmission function, the sphygmomanometer cannot refer to the data reception status in the portable information terminal. It may be possible to send packets with more power than necessary to prevent them from occurring. In such a case, leakage of information representing the health status of the user is more likely to occur.

  The present invention has been made paying attention to the above circumstances, and an object thereof is to provide a data transmission device, a data reception device, a method, and a program that make it difficult to cause leakage of data transmitted by one-way communication. It is.

  The present invention employs the following configuration in order to solve the above-described problems.

  That is, a data transmission device according to one aspect of the present invention encrypts desired information by encrypting desired information with one or more sensors that acquire information from a living body and output sensor data, and an encryption key that includes the sensor data. An encryption control unit for generating, an attribute information generation control unit for generating attribute information of the sensor data, a packet generation control unit for generating a packet for one-way transmission including the attribute information and the encrypted data, A transmission unit that transmits the packet.

  In the above configuration, one or more sensors acquire information from a living body and output one or more sensor data. Desired information (for example, biological information, hereinafter also referred to as “biological information”) is encrypted using one sensor data of one or more sensor data as an encryption key. As the encryption method, a common key encryption method is adopted, and a specific encryption method is not particularly limited. Since the sensor data is data specific to the living body, it is excellent in confidentiality as an encryption key. Further, the data transmission device generates attribute information of the sensor data, generates encrypted data using the encryption key, and includes the attribute information and the encrypted data in the packet for one-way transmission. Send in one direction. That is, the packet is only transmitted from the data transmitting apparatus, and this apparatus does not receive the packet. As described above, since desired information is encrypted by using sensor data peculiar to a living body as an encryption key and transmitted together with attribute information, a data transmission device capable of realizing transmission with excellent secrecy is provided. be able to.

The data transmission device according to the above aspect further includes an encryption key generation control unit that generates, as the encryption key, information including the same sensor data as the sensor data acquired by the reception device based on the same living body.
In the above configuration, since the receiving device obtains sensor data from the same living body and uses this sensor data as an encryption key, the receiving device and the transmitting device do not have a common encryption key in advance and are generated at the time of data transmission. The encryption key can be generated and used also by the receiving device. Therefore, since a common encryption key can be used between the receiving device and the transmitting device, it is possible to provide a data transmitting device that enables secure data transmission.

In the data transmission device according to the above aspect, the attribute information generation control unit generates date information when sensor data is acquired by the sensor as the attribute information and type information of the sensor data.
In the above configuration, the data transmission device receives the attribute information at the receiving device in order to generate the date and time information when the sensor data is acquired by the sensor as the attribute information and the type information of the sensor data. It becomes clear when the sensor data included in is acquired. For this reason, the receiving device can obtain sensor data from the same living body, and the receiving device can obtain the same sensor data if the receiving device recognizes the time when the transmitting device acquires the sensor data. Therefore, it is possible to provide a data transmission device that enables the reception device to generate the same encryption key as that of the transmission device. This time may be the time when the sensor generates sensor data from the living body. Moreover, the date information including the date is not limited to the time.

In the data transmission device according to the above aspect, the sensor data includes at least one of a blood pressure value, a pulse rate, a step count, and a triaxial acceleration.
In the above configuration, the sensor data acquired by the data transmission device includes at least one of a blood pressure value, a pulse, the number of steps, and a triaxial acceleration. The data transmission device generates an encryption key using one or more of these. For example, information at the same time of the number of steps and the triaxial acceleration is adopted as sensor data. In this case, since the number of steps is a one-dimensional component and the three-axis acceleration is a three-dimensional component, sensor data of a five-dimensional component is combined with the time (or date and time information). Of the three-axis acceleration, only the acceleration related to the X-axis may be used, or only the acceleration of the X-axis and the Y-axis may be used. The sensor data may be anything as long as it is data related to a living body that can be measured by the receiving device. Here, as an example, the blood pressure value, the pulse rate, the number of steps, and the triaxial acceleration are cited, but any information may be used as long as it is information related to a living body that can be shared with the receiving device. As described above, by using one or more sensor data, the data transmitting apparatus can generate an encryption key.

In the data transmitting apparatus according to the above aspect, the desired information includes at least one of a blood pressure value and a pulse.
In the above configuration, the desired information to be encrypted using the encryption key is biometric information acquired by the sensor of the data transmission device, for example, a blood pressure value and / or a pulse. The data transmission device can transmit biometric information using the sensor data as an encryption key. Here, the biological information is usually time-series data that is a blood pressure value and / or a pulse including the acquisition date. Therefore, it is possible to provide a data transmission device that can securely transmit desired biological information.

In the data reception device according to the above aspect, a packet for one-way transmission including encrypted data that is encrypted data and attribute information of sensor data included in an encryption key used in the transmission device is received. And receiving one or more sensors that obtain information from a living body and output sensor data, and based on the attribute information included in the packet, the sensor data included in the encryption key from the output sensor data. A selection control unit for selecting; and a decryption control unit for decrypting encrypted data included in the packet using an encryption key including the selected sensor data to generate decrypted data.
In the above configuration, the data receiving device receives the encrypted data encrypted using the encryption key by the data transmitting device and the attribute information of the sensor data, and receives the sensor data from the same living body as the data transmitting device. An encryption key is generated by extraction with a device. Since the encryption key including the same sensor data is generated from the same living body between the data transmission device and the data reception device, the data reception device can decrypt the transmission data with this encryption key. Therefore, it is possible to provide a data receiving device that can receive biometric information securely by receiving a packet for one-way transmission.

In the data receiving device according to the above aspect, the attribute information includes type information of sensor data and date / time information when the sensor data included in the encryption key is acquired by the sensor, and the selection control unit includes the type Based on the information and the date / time information, sensor data included in the encryption key is selected, and the same information as the selected sensor data is acquired by the transmission device.
In the above configuration, by receiving the attribute information of the sensor data included in the received packet, what type of sensor data the encryption key included in the transmission packet includes, and the date and time when the sensor data was acquired by the sensor The data receiving apparatus can recognize the information. The data receiving device can assuredly generate the same encryption key as that of the data transmitting device by grasping the type of sensor data and the date / time information when the sensor data is acquired by the sensor. Therefore, it is possible to provide a data receiving device that can recognize the type of sensor data and generate an encryption key including the corresponding sensor data.

In the data receiving apparatus according to the above aspect, the type information indicates information detected by a corresponding sensor.
In the above configuration, since the attribute information included in the received packet includes type information regarding the type of sensor data, the data receiving apparatus can recognize which type of sensor data is received. The types of sensor data include, for example, blood pressure value, pulse rate, number of steps, and triaxial acceleration, and the attribute information included in the packet includes at least one of these types.

In the data receiving device according to the above aspect, the sensor data includes at least one of a blood pressure value, a pulse rate, a step count, and a triaxial acceleration.
In the above configuration, the data receiving device generates an encryption key based on one or more of these sensor data. The effects here are the same as those in the data transmitting apparatus. That is, for example, information at the same time (or the same date and time information) of the pulse, the number of steps, and the triaxial acceleration is adopted as the sensor data. In this case, since the pulse and the number of steps are each a one-dimensional component and the three-axis acceleration is a three-dimensional component, the sensor data is a six-dimensional component together with the time (or date and time information). Of the three-axis acceleration, only the acceleration related to the Z-axis may be used, or only the acceleration of the X-axis and the Z-axis may be used. The sensor data may be anything as long as it is data related to a living body that can be measured by the data transmission device. Here, as an example, the blood pressure value, the pulse rate, the number of steps, and the triaxial acceleration are cited, but any information may be used as long as it is information about a living body that can be shared with the data transmission device. As described above, by employing one or more sensor data, the data receiving apparatus can generate the same encryption key as that of the data transmitting apparatus.

In the data receiving apparatus according to the above aspect, the decoded data includes at least one of a blood pressure value and a pulse.
In the above configuration, the decoded data is biometric information acquired by the sensor of the data transmission device, for example, a blood pressure value and / or a pulse. The data receiving device can decrypt the biometric information by using the same sensor data as the data transmitting device as an encryption key. Here, the biological information is usually time-series data that is a blood pressure value and / or a pulse including the acquisition date. Therefore, it is possible to provide a data receiving apparatus that can securely decrypt desired biometric information.

The data transmission device according to the above aspect is a sphygmomanometer or a pulse meter, and the data reception device is a portable information terminal.
In the above configuration, the biological information measured by the sphygmomanometer or the pulse meter is transmitted, and the portable information terminal can securely receive the biological information.

The packet generated by the data transmission device according to the above aspect is transmitted by the short-range wireless communication method.
In the above configuration, transmission from the data transmission device to the data reception device is performed by a device with lower power consumption and lower cost than other wireless communication methods by following a short-range wireless communication method (for example, BLE). It becomes possible.

  According to the present invention, it is possible to provide a data transmission device, a data reception device, a method, and a program that can prevent leakage of data transmitted by one-way communication.

The figure which illustrates typically an example of the application scene of the data transmitter which concerns on embodiment, and a data receiver. The figure which illustrates typically an example of the hardware constitutions of the data transmitter which concerns on embodiment. The figure which illustrates typically an example of the hardware constitutions of the data receiver which concerns on embodiment. The figure which illustrates typically an example of the software structure of the data transmitter which concerns on embodiment. The figure which illustrates typically an example of the software structure of the data receiver which concerns on embodiment. The figure which illustrates an example of the process sequence of the data transmitter which concerns on embodiment. The figure which illustrates an example of the process sequence of the data receiver which concerns on embodiment. Explanatory drawing of the advertising performed in BLE. The figure which illustrates the data structure of the packet transmitted / received in BLE. The figure which illustrates the data structure of the PDU field of an advertisement packet. The figure which shows an example of the data structure stored in the payload of the PDU field of the packet which the data transmitter which concerns on embodiment transmits. The figure which illustrates an example of the data transmission system containing the data transmitter which concerns on embodiment, and a data receiver.

  Hereinafter, an embodiment according to an aspect of the present invention (hereinafter, also referred to as “this embodiment”) will be described with reference to the drawings. Note that, in the following embodiments, the same numbered portions are assumed to perform the same operation, and repeated description is omitted.

[Application example]
First, an example of a scene to which the present invention is applied will be described with reference to FIG. FIG. 1 schematically illustrates an example of an application scene of the data transmission device 100 and the data reception device 150 according to the present embodiment. The data transmission device 100 according to the present embodiment stores, in the sensor data storage unit 102, time-series sensor data in which the sensor data acquired by the sensor 101 from the living body and the time from the time measuring unit 103 are associated with each other. As the sensor data, sensor data of a type corresponding to each sensor (for example, blood pressure value, pulse rate, step count, acceleration) is stored in the sensor data storage unit 102. Then, the encryption key generation unit 104 generates an encryption key including the sensor data stored in the sensor data storage unit 102, and the encryption unit 105 acquires desired data (for example, biometric information) acquired from the sensor data storage unit 102. ) Is encrypted with this encryption key. The attribute information generation unit 108 generates sensor data attribute information included in the encryption key generated by the encryption key generation unit 104. This attribute information includes the type of the corresponding sensor data and the date and time when the sensor data was extracted by the sensor. Next, the packet generation unit 106 generates a packet including encrypted data and attribute information, and the transmission unit 107 transmits the generated one-way transmission packet (for example, using BLE advertising). The sensor data storage unit 102, the timing unit 103, the encryption key generation unit 104, and the encryption unit 105 correspond to the “encryption control unit” of the present invention.

  Similar to the data transmission device 100, the data reception device 150 according to the present embodiment stores the sensor data acquired from the living body by the sensor 151 and the time-series sensor data associated with the time by the timer unit 153 in the sensor data storage unit 152. Remember. Here, the sensor 151 outputs the same type of sensor data as the sensor 101 in the data transmission device 100. In addition, the receiving unit 154 receives a packet for one-way transmission, and the attribute information extracting unit 157 extracts attribute information (for example, sensor data type and generation date / time) about the sensor data included in the packet from the packet. Based on the extracted attribute information, the encryption key selection unit 155 selects sensor data corresponding to the sensor data used as the encryption key in the data transmission device 100 from the sensor data storage unit 152. The decryption unit 156 receives the encrypted data from the reception unit 154, decrypts the encrypted data using the encryption key including the sensor data selected by the encryption key selection unit 155 as a decryption key, and the data reception device is a data transmission device It is possible to receive the desired data acquired in. Note that each of the data transmission device 100 and the data reception device 150 preferably has a plurality of sensors of the same type. At least one sensor of the same type is provided between the data transmission device 100 and the data reception device 150.

  The one-way communication method from the data transmission device to the data reception device is, for example, BLE advertising. A packet for one-way transmission is generated by this communication method. The desired data transmitted in the present embodiment may be arbitrary data, but is, for example, biological information, specifically, for example, a blood pressure value and / or a pulse. The sensor data may be any data that can be detected by the sensors 101 and 151, and is, for example, the number of steps and / or triaxial acceleration. Furthermore, biological information such as a blood pressure value and / or a pulse may be used as long as it can be detected by a sensor. The encryption method employs a common key encryption method, and a specific encryption method is not particularly limited, but for example, DES or AES is used. For example, the data transmission device is a blood pressure monitor or a pulse meter, and the data reception device is a portable information terminal such as a smartphone, a mobile phone, or a mobile personal computer.

  As described above, in this embodiment, the data transmission device 100 encrypts desired biological information using predetermined sensor data as an encryption key, and transmits a packet for one-way transmission including the encrypted data and attribute information of the sensor data. The data receiving device 150 generates and transmits the sensor 101 out of the sensor data measured by the sensor 151 from the same living body detected by the data transmitting device 100 based on the attribute information of the received sensor data. The same sensor data is extracted, and the encrypted data is decrypted with this sensor data. Therefore, in the data receiving device 150, the same sensor data as that of the data transmitting device 100 can be obtained by the sensor 151, and an encryption key including this sensor data can be generated. In other words, both the data transmission device 100 and the data reception device 150 obtain sensor data that can be recognized only by both parties from the same living body, whereby the sensor data can be set as a common encryption key. Therefore, according to the present embodiment, by using the sensor data having low reproducibility data and generating the encryption keys on the transmitting side and the receiving side respectively, the packet for one-way transmission can be securely transmitted and information can be transmitted. Can be transmitted. In principle, regarding the same type of sensor data (for example, blood pressure value), sensor data acquired from the same living body based on attribute information (for example, the same time) is the sensor 101 and the sensor 151. Get the same sensor data. However, in reality, there is a low possibility that the measured amounts indicated by the sensor data exactly coincide with each other due to the accuracy error of the sensor itself, the difference in accuracy between products, and the like. Accordingly, here, when the measured physical quantity includes a physical quantity indicated by each sensor data within a certain range regarding accuracy, it is assumed that these sensor data are the same. It is assumed that this range related to accuracy will be narrowed due to improvements in sensor accuracy due to technological advances, reduction in accuracy variations among products, and the like.

[Configuration example]
(Hardware configuration)
<Data transmission device>
Next, an example of a hardware configuration of the data transmission device 100 according to the present embodiment will be described with reference to FIG.
As shown in FIG. 2, the data transmission device 100 according to the present embodiment includes an output device 211, an input device 212, a control unit 213, a storage unit 214, a drive 215, an external interface 216, a communication interface 217, and a battery 218. Computer connected to the computer. Furthermore, the data transmission device 100 includes a biological sensor 219, a motion sensor 220, and a timing device 221. The data transmission device 100 according to the present embodiment corresponds to a “data transmission device” of the present invention. In FIG. 2, the communication interface and the external interface are described as “communication I / F” and “external I / F”, respectively.

  The control unit 213 includes a CPU (Central Processing Unit), a RAM (Random Access Memory), a ROM (Read Only Memory), and the like, and controls each component according to information processing. The storage unit 214 is an auxiliary storage device such as a hard disk drive or a solid state drive, for example, and an encryption key generation and packet transmission control program executed by the control unit 213, a sensor detected by the biometric sensor 219 and / or the motion sensor 220. Data, desired data scheduled to be transmitted, date / time data counted by the timing device 221 and the like are stored.

  The encryption key generation and packet transmission control program generates an encryption key from the sensor data, encrypts the desired data using the generated encryption key, and unidirectionally transmits the encrypted data and the attribute information of the sensor data. This is a program for executing a process of transmitting with a packet for transmission (FIG. 6). The desired data is, for example, biological information. The biological information is, for example, time series data of blood pressure values.

  The communication interface 217 is, for example, a short-range wireless communication (for example, Bluetooth (registered trademark)) module, a wireless LAN module, or the like, and is an interface for performing wireless communication via a network. The communication interface 217 is an interface for wirelessly connecting the data transmission device 100 to the data reception device 150. The communication interface 217 is controlled by the control unit 213. The communication interface 217 is used for receiving a packet including the encrypted data generated by the control unit 213 and transmitting the packet to the data receiving device 150. Note that the communication interface 217 cannot receive information from the data reception device 150, and only transmits a packet for one-way transmission.

  The input device 212 is a device for inputting, for example, a mouse or a keyboard. The output device 211 is a device for outputting, for example, a display or a speaker. The external interface 216 is a USB port or the like, and is an interface for connecting to an external device such as the biological sensor 219, the motion sensor 220, and / or the time measuring device 221, for example. In FIG. 2 and the like, the biological sensor 219, the motion sensor 220, and the timing device 221 are not illustrated as being connected to the external interface 216, but this is later connected to the internal block of the control unit 213 in FIG. This is because it is described as being directly connected to the control unit 213 for the sake of clarity.

  The storage unit 214 stores the information such as the program, such as a computer and other devices, machines, etc., in an electrical, magnetic, optical, mechanical, or chemical action. It is a medium that accumulates. The data transmission device 100 stores, from the storage unit 214, an encryption key generation and packet transmission control program, sensor data detected by the biometric sensor 219 and / or the motion sensor 220, desired data to be transmitted, attribute information of the sensor data, and Date / time data measured by the timing device 221 may be acquired.

  The drive 215 is, for example, a CD (Compact Disk) drive, a DVD (Digital Versatile Disk) drive, or the like, and is a device for reading a program stored in a storage medium. The type of the drive 215 may be appropriately selected according to the type of storage medium. The encryption key generation and packet transmission control program, the sensor data detected by the biometric sensor 219 and / or the motion sensor 220, the desired data to be transmitted, and the date / time data measured by the timing device 221 are stored in this storage medium. It may be. Here, as an example of the storage medium, a disk type storage medium such as a CD or a DVD is illustrated. However, the type of the storage medium is not limited to the disk type and may be other than the disk type. Examples of the storage medium other than the disk type include a semiconductor memory such as a flash memory.

  The battery 218 is a rechargeable secondary battery, for example. The battery 218 supplies power to each element mounted on the data transmission device 100 main body. The battery 218 supplies power to, for example, the output device 211, the input device 212, the control unit 213, the storage unit 214, the drive 215, the external interface 216, the communication interface 217, the biological sensor 219, the motion sensor 220, and the timing device 221. .

  The biosensor 219 is, for example, a blood pressure measurement device. In this case, the living body sensor 219 detects the blood pressure value of the living body by detecting the pressure of the pressure cuff attached to the wrist of the user who is a living body. The biological sensor 219 outputs blood pressure data (for example, time-series data of blood pressure values) to the control unit 213. The biosensor 219 may be a pulse measuring device or may measure a pulse together with blood pressure.

  The motion sensor 220 detects the motion of the living body and passes the motion information to the control unit 213. The motion sensor 220 is a three-axis acceleration sensor, for example, and detects the acceleration of the living body with respect to three linearly independent axes (for example, three axes orthogonal to each other). Then, the motion sensor 220 outputs an acceleration signal representing acceleration in three directions to the control unit 213.

  The time measuring device 221 is a device that measures time, and can measure the date and time. For example, the time measuring device 221 is a clock including a calendar, and passes information on the current date and time to the control unit 213.

  It should be noted that regarding the specific hardware configuration of the data transmission device 100, the components can be omitted, replaced, and added as appropriate according to the embodiment. For example, the control unit 213 may include a plurality of processors. The data transmission device 100 may be composed of a plurality of information processing devices. The data transmission apparatus 100 may be a general-purpose desktop PC (Personal Computer), tablet PC, or the like, in addition to an information processing apparatus designed exclusively for the provided service.

<Data receiving device>
Next, an example of the hardware configuration of the data receiving apparatus 150 according to the present embodiment will be described with reference to FIG. The hardware configuration of the data receiving device 150 is almost the same as that of the data transmitting device 100.
As shown in FIG. 3, the data receiving device 150 according to the present embodiment includes an output device 311, an input device 312, a control unit 313, a storage unit 314, a drive 315, an external interface 316, a communication interface 317, and a battery 318. Computer connected to the computer. Further, the data receiving device 150 includes a biological sensor 319, a motion sensor 320, and a timing device 321. The data receiving apparatus 150 according to the present embodiment corresponds to a “data receiving apparatus” of the present invention. In FIG. 3, the communication interface and the external interface are described as “communication I / F” and “external I / F”, respectively.

  The control unit 313 includes a central processing unit (CPU), a random access memory (RAM), a read only memory (ROM), and the like, and controls each component according to information processing. The storage unit 314 is an auxiliary storage device such as a hard disk drive or a solid state drive, for example, and an encryption key generation and data decryption control program executed by the control unit 313, a sensor detected by the biosensor 319 and / or the motion sensor 320 Data, desired data received and decoded, date / time data counted by the timing device 321 and the like are stored.

  The encryption key generation and data decryption control program generates an encryption key from the sensor data that is the detection result of the biometric sensor 319 and / or the motion sensor 320, and generates the encryption key from the generated encryption key based on the attribute information of the received sensor data. This is a program for executing a process of decrypting encrypted data included in a received packet for one-way transmission by selecting and using an encryption key including corresponding sensor data (FIG. 7). The desired data is, for example, biological information. The biological information is, for example, time series data of blood pressure values.

  The communication interface 317 is almost the same as the communication interface 217. The communication interface 317 is an interface for receiving data from the data transmission device 100. The communication interface 317 receives a packet from the data transmission device 100 and passes it to the control unit 313.

  The input device 312, the output device 311, and the external interface 316 are the same as the input device 212, the output device 211, and the external interface 216, respectively.

  The storage unit 314 reads information such as a program recorded in a computer or other device, machine, etc., such as a program, electrical, magnetic, optical, mechanical, or chemical action. It is a medium that accumulates. The data receiving device 150 receives the encryption key generation and data decryption control program, the sensor data detected by the biometric sensor 319 and / or the motion sensor 320, the attribute information of the sensor data included in the received packet, from the storage unit 314. The desired data decoded in this way and the date / time data measured by the timing device 321 may be acquired.

  The drive 315 is, for example, a CD (Compact Disk) drive, a DVD (Digital Versatile Disk) drive, or the like, and is a device for reading a program stored in a storage medium. The type of drive 315 may be appropriately selected according to the type of storage medium. The encryption key generation and data decryption control program, the sensor data detected by the biometric sensor 319 and / or the motion sensor 320, the desired data received and decrypted, and the date / time data measured by the timing device 321 are stored in this storage medium. It may be stored. Here, as an example of the storage medium, a disk type storage medium such as a CD or a DVD is illustrated. However, the type of the storage medium is not limited to the disk type and may be other than the disk type. Examples of the storage medium other than the disk type include a semiconductor memory such as a flash memory.

  The battery 318 is similar to the battery 218. The battery 318 supplies power to each element mounted on the data receiving device 150 main body.

  The biosensor 319 and the motion sensor 320 are preferably similar to the biosensor 219 and the motion sensor 220, respectively, but it is sufficient that at least one sensor can acquire the same type of sensor data. However, the biometric sensor 319 and the motion sensor 320 are for obtaining sensor data for generating an encryption key.

  The timing device 321 is the same as the timing device 221.

  It should be noted that regarding the specific hardware configuration of the data receiving apparatus 150, the components can be omitted, replaced, and added as appropriate according to the embodiment. For example, the control unit 313 may include a plurality of processors. The data receiving device 150 may be composed of a plurality of information processing devices. The data receiving device 150 may be a general-purpose desktop PC (Personal Computer), tablet PC, or the like, in addition to an information processing device designed exclusively for the provided service.

(Software configuration)
<Data transmission device>
Next, an example of a software configuration of the data transmission device 100 according to the present embodiment will be described with reference to FIG.
When executing the necessary program, the control unit 213 of the data transmission device 100 expands the encryption key generation and packet transmission control program stored in the storage unit 214 in the RAM. Then, the control unit 213 controls each component by interpreting and executing the encryption key generation and packet transmission control program expanded in the RAM by the CPU. Accordingly, as illustrated in FIG. 4, the data transmission device 100 according to the present embodiment includes a biological information measurement unit 401, a storage control unit 402, a motion information measurement unit 403, an encryption key generation unit 404, an encryption unit 405, a packet It functions as a computer including a generation unit 406, a transmission unit 407, and an attribute information generation unit 408.

The biological information measurement unit 401 passes the sensor data that the biological sensor 219 detects and outputs the biological information to the storage control unit 402 together with the date / time information acquired from the timing device 221. The time series data of the biometric information that combines the biometric information and the date / time information may be passed to the storage control unit 402.
The motion information measuring unit 403 passes the sensor data that the motion sensor 220 detects and outputs the motion information to the storage control unit 402 together with the date and time information acquired from the timing device 221. The time series data of the motion information combining the motion information and the date / time information may be passed to the storage control unit 402. The motion information is, for example, information on the three-axis acceleration of the living body, but may be information on one-axis or two-axis acceleration among them.
The storage control unit 402 causes the storage unit 214 to store data associated with the sensor data and the date / time information received from the biological information measurement unit 401. In addition, the storage control unit 402 causes the storage unit 214 to store data associated with the sensor data and the date / time information received from the motion information measurement unit 403. Further, the storage control unit 402 may acquire date / time information from the timing device 221 and store the date / time information in the storage unit 214 in association with other received information.

  The encryption key generation unit 404 extracts the sensor data from the data stored in the storage unit 214 together with the date and time when the original information of the sensor data (for example, the biological information or the movement information) is detected by the sensor, This sensor data is generated as an encryption key. The encryption key may include data shared with the data receiving device 150 that is set in advance in addition to the sensor data. For example, the MAC (media access control) address of the data transmission device 100 may be included in the encryption key in advance. This MAC address is also set to be known in advance by the data receiving apparatus 150. In this case, the MAC address of the data transmission device 100 is stored in the storage unit 214 and the storage unit 314.

  The attribute information generation unit 408 generates attribute information of the sensor data extracted by the encryption key generation unit 404 and passes it to the packet generation unit 406. The attribute information is information indicating the attribute of the sensor data. For example, the type of the sensor data (for example, blood pressure value, pulse rate, number of steps, or acceleration) and the date and time when the original information of the sensor data was detected by the sensor. Including.

  The encryption unit 405 receives the desired data to be transmitted stored in the storage unit 214 and encrypts the desired data with the encryption key received from the encryption key generation unit 404. As the encryption method, a common key encryption method is adopted, and a specific encryption method is not particularly limited. Specific encryption methods include, for example, DES (Data Encryption Standard) and AES (Advanced Encryption Standard).

  The packet generation unit 406 acquires the attribute information of the sensor data, which is information related to the encryption key, from the attribute information generation unit 408, and obtains this attribute information related to the encryption key and the desired data encrypted by the encryption unit 405. Generate a containing packet. This packet is a one-way transmission packet, for example, a BLE advertisement packet. Further, the attribute information related to the encryption key includes, for example, the date and time when information (biological information and / or motion information) that is the source of the sensor data included in the encryption key is acquired by the sensor. Note that the information related to the encryption key may include sensor position information. This date and time information is used when data is decrypted with the encryption key. In the specification and claims, “the sensor data is acquired by the sensor” may be abbreviated as “the sensor data is acquired by the sensor”.

  The transmission unit 407 transmits the packet generated by the packet generation unit 406 via the communication interface 217 using a predetermined communication method for one-way transmission. This communication method is, for example, BLE, and the transmission unit 407 transmits a packet using BLE advertising.

<Data receiving device>
Next, an example of the software configuration of the data receiving apparatus 150 according to the present embodiment will be described with reference to FIG.
When executing the necessary program, the control unit 313 of the data receiving device 150 expands the encryption key generation and data decryption control program stored in the storage unit 314 in the RAM. Then, the control unit 313 controls each component by interpreting and executing the encryption key generation and data decryption control program expanded in the RAM by the CPU. Accordingly, as illustrated in FIG. 5, the data reception device 150 according to the present embodiment includes a biological information measurement unit 501, a storage control unit 502, a motion information measurement unit 503, a reception unit 504, an encryption key selection unit 505, and a decryption unit. 506 and an attribute information extraction unit 507 function as a computer.

  The biological information measuring unit 501 passes the sensor data from the biological sensor 319 and the date / time information acquired from the timing device 321 to the storage control unit 502. Moreover, time series data of biometric information that is a combination of the biometric information and date / time information may be passed to the storage control unit 502.

  The motion information measuring unit 503 passes the sensor data from the motion sensor 320 and the date / time information acquired from the timing device 321 to the storage control unit 502. In addition, time series data of motion information combining the motion information and date information may be passed to the storage control unit 402. The motion information is, for example, information on the three-axis acceleration of the living body, but may be information on one-axis or two-axis acceleration among them.

  The storage control unit 502 causes the storage unit 314 to store data associated with the sensor data and the date / time information received from the biological information measurement unit 501. In addition, the storage control unit 502 causes the storage unit 314 to store data associated with the sensor data and the date / time information received from the motion information measurement unit 503. Further, the storage control unit 502 may acquire date / time information from the timing device 221 and store the date / time information in the storage unit 314 in association with other received information.

  The receiving unit 504 receives a packet from the data transmission device 100 via the communication interface 317. This packet includes at least encrypted data and sensor data attribute information related to the encryption key.

  The attribute information extraction unit 507 extracts attribute information included in the packet from the packet received by the reception unit 504 and passes it to the encryption key selection unit 505. The attribute information includes date and time information when the sensor data is detected by the sensor and information related to the type of sensor data. This sensor data is data included in the encryption key of the encrypted data included in the packet. The types of sensor data include, for example, blood pressure value, pulse rate, number of steps, and triaxial acceleration, and the type information included in the packet includes at least one of these types.

  The encryption key selection unit 505 acquires the attribute information of the sensor data from the attribute information extraction unit 507, specifies the sensor data included in the encryption key based on the attribute information, and stores the sensor data corresponding to the sensor data in the storage unit From 314. Based on this attribute information included in the packet, the sensor data can be uniquely identified. Therefore, the encryption key selection unit 505 can acquire sensor data corresponding to this type and date from the storage unit 314. Therefore, the encryption key selection unit 505 selects an encryption key including sensor data from a plurality of sensor data stored in the storage unit 314. If the packet includes another MAC address, the MAC address is also selected from the storage unit 314. It is confirmed whether the MAC address matches the MAC address included in the received packet. If they match, the process proceeds as it is, and if they do not match, this packet is discarded as having a different destination.

  The decryption unit 506 receives encrypted data from the reception unit 504 and receives an encryption key including sensor data from the encryption key selection unit 505. Then, the decryption unit 506 decrypts the encrypted data with this encryption key and receives desired data. The decoding unit 506 stores the desired data in the storage unit 314.

<Others>
Each function of the data transmission device 100 and the data reception device 150 will be described in detail in an operation example described later. In the present embodiment, an example is described in which each function of the data transmission device 100 and the data reception device 150 is realized by a general-purpose CPU. However, some or all of the above functions may be realized by one or more dedicated processors. In addition, regarding the functional configuration of the data transmission device 100, functions may be omitted, replaced, or added as appropriate according to the embodiment.

[Operation example]
<Data transmission device>
Next, an operation example of the data transmission device 100 will be described with reference to FIG. FIG. 6 is a flowchart illustrating an example of a processing procedure of the data transmission device 100. Note that the processing procedure described below is merely an example, and each processing may be changed as much as possible. Further, in the processing procedure described below, steps can be omitted, replaced, and added as appropriate according to the embodiment.

(Start-up)
First, the user activates the data transmission device 100 and causes the activated data transmission device 100 to execute an encryption key generation and packet transmission control program. The control unit 213 of the data transmitting apparatus 100 generates an encryption key including sensor data according to the following processing procedure, encrypts desired data to be transmitted with the encryption key, and encrypts the data and attribute information of the sensor data. A packet for one-way transmission including is transmitted.

(Step S601)
In step S <b> 601, the control unit 213 functions as the encryption key generation unit 404 and the attribute information generation unit 408 and uses any type of data among the sensor data acquired by the biometric sensor 219 and / or the motion sensor 220. Decide whether to generate an encryption key, and generate an encryption key according to the determination. The types of sensor data include, for example, blood pressure value, pulse rate, number of steps, and triaxial acceleration, and the type information included in the attribute information includes at least one of these types. Furthermore, the encryption key generation unit 404 also determines the date and time when sensor data to be used is detected by the sensor. The encryption key generation unit 404 may determine the type of sensor data first and determine which date and time of the sensor data to use, or vice versa. Further, the determination of the type and date may be changed according to the following four methods. The attribute information generation unit 408 generates sensor data type information and date / time information when the sensor data is detected by the sensor as attribute information, and passes them to the packet generation unit 406.

There are various types of sensor data to be used by the encryption key generation unit 404, but there are the following four main methods.
1. Each time a key is generated, the type of sensor data is randomly determined. In this case, for example, the encryption key generation unit 404 may include a random number generator, and the type of sensor data may be determined based on the random number generated by the random number generator.
2. A user instruction is accepted, and the type of sensor data is determined according to the instruction. Further, for example, the encryption key is generated with the same type of sensor data until the user gives another change instruction.
3. The order of the types to be used is determined in advance, and the types are changed according to the order in a certain cycle.
4). The sensor is determined to be of a type that is surely detecting the target physical quantity. For example, when the blood pressure value output from the sensor is larger than a predetermined value, the sensor determines the blood pressure value as the type of sensor data assuming that the sensor reliably detects the blood pressure value.

(Step S602)
In step S602, the control unit 213 functions as the encryption unit 405, and encrypts desired data to be transmitted using the encryption key determined in step S601 to generate encrypted data.

(Step S603)
In step S603, the control unit 213 functions as the packet generation unit 406, and obtains the encrypted data generated in step S602 and the attribute information of the sensor data used for the encryption key generated by the encryption key generation unit 404. Include and generate packet. This attribute information includes the type of sensor data and date / time information when the used sensor data is detected by the sensor.

(Step S604)
In step S604, the control unit 213 functions as the transmission unit 407, and transmits the packet generated in step S603 by one-side transmission via the communication interface 217. For example, the transmission unit 407 transmits an advertisement packet via the communication interface 217.

  Next, an operation example of the data receiving device 150 will be described with reference to FIG. FIG. 7 is a flowchart illustrating an example of a processing procedure of the data reception device 150. Note that the processing procedure described below is merely an example, and each processing may be changed as much as possible. Further, in the processing procedure described below, steps can be omitted, replaced, and added as appropriate according to the embodiment.

(Start-up)
First, the user activates the data receiving apparatus 150 and causes the activated data receiving apparatus 150 to execute an encryption key generation and data decryption control program. The control unit 313 of the data receiving device 150 selects an encryption key based on the attribute information of the sensor data included in the received packet according to the following processing procedure, and uses the encryption key to receive the desired encrypted data. Decrypt to obtain decrypted data.

(Step S701)
In step S <b> 701, the control unit 313 functions as the reception unit 504 and receives an advertisement packet via the communication interface 317.

(Step S702)
In step S702, the control unit 313 functions as the attribute information extraction unit 507, acquires attribute information of the sensor data included in the encryption key from the packet received in step S701, and sends the attribute information to the encryption key selection unit 505. hand over. The attribute information extraction unit 507 extracts, from the received packet, the type of sensor data used for the encryption key and the date and time when the sensor data was detected by the sensor as attribute information of the sensor data.

(Step S703)
In step S703, the control unit 313 functions as the encryption key selection unit 505. Based on the type of sensor data included in the attribute information extracted in step S702 and the date and time described above, sensor data matching the attribute information is acquired. A selection is made from the storage unit 314, and an encryption key including this is generated. If the received packet includes a MAC address, it is checked whether this address is constant with the MAC address stored in the storage unit 314. If they match, the process proceeds as it is, and if they do not match, this packet is discarded as having a different destination.

(Step S704)
In step S704, the control unit 313 functions as the decryption unit 506, and decrypts the advertisement packet received by the reception unit 504 using the encryption key generated in step S703.

(Step S705)
In step S705, the control unit 313 functions as the decryption unit 506 and acquires the desired data decrypted in step S704. The desired data is, for example, biological information (for example, a blood pressure value and / or a pulse) acquired by the data transmission device 100.

<Action and effect>
As described above, in the present embodiment, in the data transmission device 100, the type and the detected date and time that are the attribute information of the sensor data are determined in step S601 above, and an encryption key including the sensor data is created. In step S702 and step S703, the data reception device 150 can select sensor data corresponding to the attribute information from the storage unit 314 and use the encryption key to decrypt the encrypted data on the reception side. Since the same sensor data is uniquely detected and stored by the data transmission device 100 and the data reception device 150, a common encryption key can be owned by the transmission side and the reception side.

  That is, in this embodiment, in the data transmission apparatus 100, the encryption key generation unit 404 acquires sensor data from a plurality of sensors (biological sensor 219, motion sensor 220), and the encryption unit 405 has a date and time of the sensor data. The desired information (for example, biometric information) to be transmitted can be encrypted by a preset encryption method using the encryption key as an encryption key. Since the sensor data is data unique to the living body, it becomes an encryption key with low reproducibility and excellent secrecy. Then, the packet generation unit 406 generates a packet including the encrypted data and the sensor data attribute information (for example, the type and the detected date and time), and the transmission unit 407 transmits the packet in one direction (the advertisement packet). Send). Thereafter, in the data reception device 150, the reception unit 504 receives the advertisement packet, the encryption key selection unit 505 refers to the attribute information of the sensor data included in the packet, and the sensor data corresponding to the attribute information is stored from the storage unit 314. get. The encryption key selection unit 505 selects and generates an encryption key including the sensor data. In this way, the data transmitting apparatus 100 and the data receiving apparatus 150 can have the same common encryption key. Then, the decryption unit 506 can decrypt the desired encrypted data received from the reception unit 504 using the encryption key generated by the encryption key selection unit 505 to obtain the desired data. Therefore, according to the present embodiment, it is possible to make it difficult to cause leakage of data transmitted by one-way communication.

[Advertisement of BLE]
Here, the advertisement of BLE will be schematically described.
In the passive scan method employed in BLE, as illustrated in FIG. 8, a new node (corresponding to the data transmission device 100 of the present embodiment) periodically transmits an advertisement packet informing its existence. This new node can save power consumption by entering a low power consumption sleep state between the transmission of one advertisement packet and the next transmission. Further, since the advertisement packet receiving side also operates intermittently, power consumption associated with transmission / reception of the advertisement packet is very small.

  FIG. 9 shows the basic structure of a BLE wireless communication packet. The BLE wireless communication packet includes a 1-byte preamble, a 4-byte access address, a 2-39 byte (variable) protocol data unit (PDU), and a 3-byte cyclic redundancy checksum (CRC: Cyclic). Redundancy Checksum). The length of the BLE wireless communication packet depends on the length of the PDU and is 10 to 47 bytes. A 10-byte BLE wireless communication packet (a PDU is 2 bytes), also called an Empty PDU packet, is periodically exchanged between the master and the slave.

  The preamble field is prepared for synchronization of BLE wireless communication and stores repetition of “01” or “10”. The access address stores a fixed numerical value in the advertising channel and a random access address in the data channel. In the present embodiment, an advertisement packet that is a BLE wireless communication packet transmitted on the advertising channel is targeted. The CRC field is used for detection of reception errors. The CRC calculation range is only the PDU field.

  Next, the PDU field of the advertisement packet will be described with reference to FIG. Note that the PDU field of the data communication packet, which is a BLE wireless communication packet transmitted on the data channel, has a data structure different from that in FIG. 10, but the description thereof is omitted because the data communication packet is not targeted in this embodiment.

  The PDU field of the advertisement packet includes a 2-byte header and a 0-37 byte (variable) payload. The header further includes a 4-bit PDU Type field, a 2-bit unused field, a 1-bit TxAdd field, a 1-bit RxAdd field, a 6-bit Length field, and a 2-bit unused field. Including.

  A value indicating the type of this PDU is stored in the PDU Type field. Some values such as “connectable advertising” and “non-connecting advertising” are defined. A flag indicating whether or not there is a transmission address in the payload is stored in the TxAdd field. Similarly, a flag indicating whether or not there is a reception address in the payload is stored in the RxAdd field. In the Length field, a value indicating the byte size of the payload is stored.

  Arbitrary data can be stored in the payload. Therefore, the data transmitting apparatus 100 uses a predetermined data structure to store the type of sensor data to be an encryption key, the date and time when the sensor data was detected, and the encrypted biometric information in the payload. This data structure includes, for example, an identifier that represents a user, an identifier that represents the data transmission device 100 that is the transmission source device, or an identifier that represents the data reception device 150 that is the destination device, date and time data, and biological information associated with the date and time data (for example, , Systolic blood pressure value, diastolic blood pressure value, pulse rate, activity amount).

Next, the data structure of the payload will be specifically described with reference to FIG.
The data structure 1100 includes an ID field 1101, a type field 1102, a date / time field 1103, and an encrypted data field 1104.

  The ID field 1101 stores an identifier representing a user. An identifier representing the data transmitting device 100 or the data receiving device 150 may be stored instead of or in addition to the identifier representing the user.

  The type field 1102 stores type information included in the attribute information of sensor data. That is, data in which one or more types of sensor data included in the encryption key are designated is stored. The types of sensor data include, for example, blood pressure value, pulse rate, number of steps, and triaxial acceleration, and may include activity amount and the like.

  The date / time field 1103 stores date / time information included in the attribute information of the sensor data. That is, date / time data when the sensor data included in the encryption key is detected by the sensor is stored.

  The encrypted data field 1104 stores desired data to be transmitted encrypted with an encryption key corresponding to the type field 1102 and the date / time field 1103.

[Modification]
As mentioned above, although embodiment of this invention has been described in detail, the above description is only illustration of this invention in all the points. It goes without saying that various improvements and modifications can be made without departing from the scope of the present invention. For example, the following changes are possible. In implementing the present invention, a specific configuration according to the embodiment may be adopted as appropriate. In the following, the same reference numerals are used for the same components as in the above embodiment, and the description of the same points as in the above embodiment is omitted as appropriate. The following modifications can be combined as appropriate.

<1>
(System example)
An example of a data transmission system including a network will be described with reference to FIG.
In the data transmission device 100, the packet generation unit 406 transmits the sensor data attribute information (type and date / time detected) and the encrypted data in the advertisement packet, and the data reception device 150 receives this packet and encrypts it. Generate a key and decrypt the encrypted data with this encryption key. Then, the data receiving device 150 transmits the decrypted data (for example, biometric information) to the server 1200 via the network.
The data receiving apparatus 150 transmits to the server 1200 using mobile communication or WLAN, for example. In the example of FIG. 12, the appearance of a wristwatch-type wearable sphygmomanometer is shown as the data transmission device 100, but the appearance of the data transmission device 100 is not limited to this and may be a stationary sphygmomanometer. It may be a sensor device that measures the amount related to other biological information or activity information.

<2>
(Hardware configuration)
In the above embodiment, the data transmission device 100 includes an output device 211, an input device 212, a control unit 213, a storage unit 214, a drive 215, an external interface 216, a communication interface 217, and a battery 218, as shown in FIG. Includes an electrically connected computer. However, in addition to this, an apparatus for performing various types of information processing may be provided. For example, the data transmission device 100 may further include an atmospheric pressure sensor and a temperature / humidity sensor.

The atmospheric pressure sensor detects atmospheric pressure and outputs atmospheric pressure data to the control unit 213.
The temperature / humidity sensor measures the ambient temperature and ambient humidity around the data transmission device 100 and outputs temperature and humidity data to the control unit 213.

  In addition, the data transmission device 100 may include a GPS receiver. The GPS receiver receives GPS signals transmitted from a plurality of GPS satellites, and outputs the received GPS signals to the control unit 213. The control unit 213 calculates the current position information of the data transmission device 100, that is, the position of the measurement subject (user) wearing the data transmission device 100 by performing a ranging calculation based on each GPS signal. .

In this case, the battery 218 is supplied to, for example, the output device 211, the control unit 213, the storage unit 214, the atmospheric pressure sensor, the temperature / humidity sensor, the communication interface 217, the biological sensor 219, the motion sensor 220, the time measuring device 221, and the GPS receiver. Supply power.
The hardware configuration of the above modification may also include the data receiving device 150. In this case, the position information by the GPS, the atmospheric pressure data, and the temperature and humidity data may be included in the sensor data, and an encryption key generated based on them may be used.

<3>
(Software configuration)
The data transmission apparatus 100 according to the present embodiment may function as a computer further including an activity amount measurement unit, a step count measurement unit, a sleep state measurement unit, and an environment (temperature and humidity) measurement unit. The storage unit 214 stores, for example, programs (activity amount measurement program, step count measurement program, sleep state measurement program, and environment (temperature and humidity) measurement program) corresponding to each, and when executing necessary programs. The desired program is expanded in the RAM. Then, the control unit 213 interprets and executes the program expanded in the RAM and controls each component.

  The activity amount measuring unit detects acceleration from an acceleration sensor and calculates an activity amount. The activity amount measuring unit can calculate the activity amount in various activities such as housework and desk work as well as walking of the measurement subject using the acceleration signal. The activity amount is an index related to the activity of the measurement subject such as walking distance, calorie consumption, or fat burning amount.

  The step counting unit detects acceleration by an acceleration sensor and atmospheric pressure by an atmospheric pressure sensor, and calculates the number of steps, the number of steps taken early, and the number of steps going up the stairs. The walking of the person to be measured is calculated using the acceleration signal. The step count measuring unit can calculate the number of steps of the person being measured, the number of steps taken fast, the number of steps going up the stairs, and the like using the atmospheric pressure data and the acceleration signal.

  The sleep state measurement unit can estimate the sleep state by detecting the acceleration with the acceleration sensor and detecting the turnover state with the acceleration signal.

  The environment (temperature and humidity) measurement unit causes the storage unit 214 to store environment data indicating the environment temperature and the environment humidity measured by the temperature and humidity sensor in association with the measurement time of the temperature and humidity sensor. The temperature (change in temperature) is considered as one of factors that can cause blood pressure fluctuations in humans, for example. Therefore, the environmental data is information that can be a factor of blood pressure fluctuations of the measurement subject.

  The software configuration of the above modification may also include the data receiving device 150. In this case, the activity amount, the number of steps up the stairs, and the sleep state may be included in the sensor data, and an encryption key generated based on them may be used.

<4>
The data transmission device 100 is configured separately from the data reception device 150. However, the configurations of the data transmission device 100 and the data reception device 150 do not have to be limited to such an example, and a system having the functions of both the data transmission device 100 and the data reception device 150 is realized by a single computer. May be.

<5>
When an operation unit included in the input device 212 is pressed (turned on), the data transmission device 100 may start measurement of biological information. Then, after the measurement is completed, the operation of FIG. 6 may continue.

<6>
In the above-described embodiment, blood pressure measurement has been described, but a blood pressure measurement method applicable to the present embodiment will be described. As a general technique, there is a technique of measuring a user's blood pressure value by an oscillometric method using a cuff structure. However, this need not be the case when only measuring blood pressure values. For example, a pressure pulse wave sensor that detects a pressure pulse wave for each heart beat is provided, and a blood pressure value (systolic blood pressure value and diastolic blood pressure value) is detected by detecting the pressure pulse wave of the radial artery passing through the measurement site (for example, the left wrist). Value) may be measured (tonometry method). The pressure pulse wave sensor may measure the blood pressure value by detecting the pulse wave of the radial artery passing through the measurement site (for example, the left wrist) as a change in impedance (impedance method). The pressure pulse wave sensor includes a light emitting element that irradiates light toward an artery passing through a corresponding portion of a measurement site, and a light receiving element that receives reflected light (or transmitted light) of the light. A blood pressure value may be measured by detecting a pulse wave as a change in volume (photoelectric method). In addition, the pressure pulse wave sensor includes a piezoelectric sensor that is in contact with the part to be measured, and measures a blood pressure value by detecting distortion due to the pressure of the artery passing through the corresponding part of the part to be measured as a change in electrical resistance. (Piezoelectric method). Further, the pressure pulse wave sensor includes a transmitting element that transmits a radio wave (transmitted wave) toward an artery passing through a corresponding portion of the measurement site, and a receiving element that receives a reflected wave of the radio wave. A change in the distance between the artery and the sensor due to the pulse wave may be detected as a phase shift between the transmitted wave and the reflected wave to measure the blood pressure value (radio wave irradiation method). Note that other methods may be applied as long as a physical quantity capable of calculating the blood pressure value can be observed.

<7>
The apparatus of the present invention can be realized by a computer and a program, and the program can be recorded on a recording medium (or a storage medium) or provided through a network.
Each of the above devices and their device portions can be implemented with either a hardware configuration or a combined configuration of hardware resources and software. As the software of the combined configuration, it is installed in a computer from a network or a computer-readable recording medium (or storage medium) in advance and is executed by a processor of the computer, thereby causing the computer to realize the functions of each device. A program is used.

  Note that the present invention is not limited to the above-described embodiment as it is, and can be embodied by modifying the constituent elements without departing from the scope of the invention in the implementation stage. Further, various inventions can be formed by appropriately combining a plurality of constituent elements disclosed in the embodiment. For example, some components may be deleted from all the components shown in the embodiment. Furthermore, you may combine suitably the component covering different embodiment.

  In addition, “and / or” means any one or more of items listed by connecting with “and / or”. As a specific example, “x and / or y” means any element of a set of three elements {(x), (y), (x, y)}. As another specific example, “x, y, and / or z” is a set of seven elements {(x), (y), (z), (x, y), (x, z ), (Y, z), (x, y, z)}.

<8>
Moreover, although a part or all of said embodiment can be described also as the following additional remarks, it is not restricted to the following.

(Appendix 1)
A data transmission device for measuring an amount related to biological information comprising a hardware processor and a memory,
The hardware processor is
One or more sensors obtain information from the living body and output sensor data,
Encrypt desired information with an encryption key including the sensor data to generate encrypted data,
Generating attribute information of the sensor data;
Generating a packet for one-way transmission including the attribute information and the encrypted data;
Configured to transmit the packet;
The memory is
A data transmission device comprising: a storage unit that stores the sensor data, the attribute information, and the encrypted data.

(Appendix 2)
A data receiving device for measuring a quantity related to biological information comprising a hardware processor and a memory,
The hardware processor is
Receiving a packet for one-way transmission including encrypted data that is encrypted data and attribute information of sensor data included in the encryption key used in the transmission device;
One or more sensors obtain information from the living body and output sensor data,
From the output sensor data, sensor data included in the encryption key is selected based on attribute information included in the packet,
The encrypted data included in the packet is decrypted using an encryption key including the selected sensor data to generate decrypted data,
The memory is
A data receiving apparatus comprising: a storage unit that stores the sensor data, the attribute information, and the encrypted data.

(Appendix 3)
Using at least one hardware processor, one or more sensors obtain information from the living body and output sensor data;
Using at least one hardware processor, encrypting desired information with an encryption key including the sensor data to generate encrypted data;
Using at least one hardware processor to generate attribute information of the sensor data;
A data transmission method comprising: generating a packet for one-way transmission including the attribute information and the encrypted data using at least one hardware processor.

(Appendix 4)
Using at least one hardware processor, receive a packet for one-way transmission including encrypted data that is encrypted data and attribute information of sensor data included in the encryption key used in the transmission device. ,
Using at least one hardware processor, one or more sensors obtain information from the living body and output sensor data;
Using at least one hardware processor, the sensor data included in the encryption key is selected from the output sensor data based on attribute information included in the packet;
A data receiving method comprising: decrypting encrypted data included in the packet using at least one hardware processor using an encryption key including the selected sensor data to generate decrypted data.

100: Data transmission device,
101 ... sensor,
102 ... Sensor data storage unit,
103 ... Timekeeping section,
104: Encryption key generation unit,
105 ... encryption section,
106 ... packet generator,
107: Transmitter,
108 ... attribute information generation unit,
150: Data receiving device,
150 ... external device,
151 ... sensor,
152 ... sensor data storage unit,
153 ... Timekeeping section,
154... Receiver
155 ... Encryption key selection unit,
156: Decoding unit,
157 ... attribute information extraction unit,
211 ... Output device,
212 ... Input device,
213 ... control unit,
214 ... storage unit,
215 ... Drive,
216 ... external interface,
217: Communication interface,
218 ... Battery,
219: biological sensor,
220 ... a motion sensor,
221 ... Timing device,
311 ... Output device,
312 ... Input device,
313: control unit,
314 ... Storage unit,
315 ... Drive,
316: External interface,
317: Communication interface,
318 ... Battery,
319: biological sensor,
320 ... motion sensor,
321 ... Timing device,
401 ... biological information measuring unit,
402: Storage control unit,
403 ... a motion information measuring unit,
404 ... encryption key generation unit,
405: Encryption unit,
406 ... Packet generator,
407 ... Transmitter,
408 ... attribute information generation unit,
501... Biological information measuring unit,
502 ... Storage control unit,
503 ... a motion information measuring unit,
504... Receiver
505 ... Encryption key selection unit,
506: Decoding unit,
507 ... attribute information extraction unit,
1100: Data structure,
1101 ... ID field,
1102 ... Type field,
1103 ... date and time field,
1104: Encryption data field,
1200 ... server.

Claims (14)

One or more sensors for obtaining information from a living body and outputting sensor data;
An encryption control unit that encrypts desired information and generates encrypted data using an encryption key including the sensor data;
An attribute information generation control unit for generating attribute information of the sensor data;
A packet generation control unit for generating a packet for one-way transmission including the attribute information and the encrypted data;
A transmitter for transmitting the packet;
Comprising
Data transmission device. An encryption key generation control unit for generating, as the encryption key, information including the same sensor data as the sensor data acquired by the receiving device based on the same living body,
Further comprising
The data transmission device according to claim 1. The attribute information generation control unit generates date and time information when sensor data is acquired by the sensor as the attribute information, and type information of the sensor data.
The data transmission device according to claim 2. The sensor data includes at least one of blood pressure value, pulse rate, number of steps, and triaxial acceleration.
The data transmission device according to any one of claims 1 to 3. The desired information includes at least one of a blood pressure value and a pulse.
The data transmission device according to any one of claims 1 to 4. A receiving unit that receives a packet for one-way transmission including encrypted data that is encrypted data and attribute information of sensor data included in an encryption key used in the transmission device;
One or more sensors for obtaining information from a living body and outputting sensor data;
A selection control unit that selects sensor data included in the encryption key from the output sensor data based on attribute information included in the packet;
A decryption control unit that decrypts the encrypted data included in the packet using an encryption key including the selected sensor data, and generates decrypted data;
Comprising
Data receiving device. The attribute information includes sensor data type information and date / time information when the sensor data included in the encryption key is acquired by the sensor,
The selection control unit selects sensor data included in the encryption key based on the type information and the date / time information,
The same information as the selected sensor data is acquired by the transmission device,
The data receiving device according to claim 6. The type information indicates information detected by a corresponding sensor.
The data receiving device according to claim 7. The sensor data includes at least one of blood pressure value, pulse rate, number of steps, and triaxial acceleration.
The data receiving device according to any one of claims 6 to 8. The decoded data includes at least one of a blood pressure value and a pulse.
The data receiving device according to any one of claims 6 to 9. One or more sensors obtain information from the living body and output sensor data,
Encrypt desired information with an encryption key including the sensor data to generate encrypted data,
Generating attribute information of the sensor data;
Generating a packet for one-way transmission including the attribute information and the encrypted data;
Transmitting the packet;
Comprising
Data transmission method. Receiving a packet for one-way transmission including encrypted data that is encrypted data and attribute information of sensor data included in the encryption key used in the transmission device;
One or more sensors obtain information from the living body and output sensor data,
From the output sensor data, sensor data included in the encryption key is selected based on attribute information included in the packet,
Decrypting the encrypted data included in the packet using an encryption key including the selected sensor data to generate decrypted data;
Comprising
Data reception method.   The program for functioning a computer as each control part with which the data transmission apparatus of any one of Claims 1 thru | or 5 is provided.   The program for functioning a computer as each control part with which the data receiver of any one of Claims 6 thru | or 10 is provided.