JPH11164132A - Data control system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To obtain a low cost system which can safely perform data control through the use of electronic watermark technology by controlling data according to a control rule, having a token or control flag defined in advance. SOLUTION: In a step 800, it is checked from distributed data whether or not there is a control flag(CF) embedded by using electronic watermark technology. When no CF is detected, unrestricted control, e.g., duplication, video- recording, reproduction, etc., are performed. When a CF is detected, it is determined in a next step 820 whether or not there is an added token. When the result of the step 820 is NO, data control is inhibited. Namely, no duplication, video-recording, reproduction, etc., is done and the process is ended as it is. When the result of the step 820 is YES, the data control (duplication, video- recording, reproduction, etc.), by the control rule having a token or CF defined in advance is performed.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a data control system using a digital watermark technique. More specifically, by using a control flag indicating that the data is controlled and a token having information on how to control the data, the data is transmitted to the destination at a desired data control (for example, duplication). Control, reproduction control, reception control, etc.).

[0002]

2. Description of the Related Art As the multimedia environment spreads,
The problem is the protection of copyrighted works. Digital video disk (DVD), set-top box (ST
B: Set Top Box), cable television (Cable TV), network distribution, etc., despite having sufficient hardware specifications for distribution of theater movies, etc., protection of these contents, especially illegal Regarding the issue of duplication (copy), no specification has been provided that the content supplier can fully understand. Digital data is extremely easy to copy and modify.
This is because no effective specification has been provided to prevent them. In the present invention, copying is permitted only once (onetime cop
The distribution of a number of attractive content using these media can be safely done using a method that can incorporate a control mechanism into the content itself so that conditional distribution such as y) can be performed. Provide a mechanism to do it. There are several data control methods that are conventionally performed to protect content, prohibit copying, prohibit reproduction, and the like. For example,
In Japanese Patent Laid-Open No. 6-4026, a code 2 which is obtained by performing a one-way conversion f on a code 1 which is appropriately generated is generated as a code indicating permission information of each category, and a code 1 and a code 2 are used when indicating permission. Is described, and when prohibition is indicated, only code 2 is described, thereby making it difficult to create a code in a permitted state. However, in such a method, copying can be performed again by storing the code 1 and re-writing it later.

For example, in Japanese Patent Laid-Open No. 6-309239, a flag file indicating that a data file has not been copied is used, and if the flag file exists, the encrypted data file is converted into an original data file, Delete the flag file after copying the file, 1
It discloses a method of permitting copying only once. However, in this method, since the flag file is a file different from the data file, the flag file can be easily copied again only by storing and reproducing the flag file. Also,
If the flags do not match or the flag does not exist, it is determined that copying is prohibited, so that even content that has been shot or produced by yourself falls into the prohibited category.

In the conventional method, basically, data is controlled by using a code, a flag, and the like different from the data. In this way, once the other code or flag is identified, it is possible to manipulate it,
Vulnerable to malicious third-party attacks. A technique that does not have such a drawback and can be used for data control is desired. Furthermore, the data control method in the related art is completely independent of the data control method, and does not affect the mechanism of the existing video distribution system or device. do
A new data control method that is wnward compatible) is desired.

[0005] As a technique for protecting copyrights of still images, moving images, and sounds, there is a digital watermarking technique (watermarking technique). The digital watermark technology is a technology also called a data hiding (TM) technology. In a nutshell, it is a generic term for technology that embeds certain information in other media (still images, audio, video, etc.). Unlike encryption, this technology is not about how to keep information confidential. How to integrate the information with the medium in which the information is to be embedded. This is because, when embedding information to be hidden in data of a medium, a method of embedding the information by operating data on the medium is employed.
For example, in the case of image data, it means that pixel values such as luminance are changed to have information other than the original data. In the present invention, “embedding” means that additional information is concealed in the form of a modification of the data itself using a digital watermarking technique or the like.

One of the major features of digital watermarking is that it is an invisible or inaudible marking method. When embedding information in the media, instead of adding data bits, the existing data is processed (data deformation) so that it cannot be detected by human vision and the information is embedded. There is no increase in data volume. For example, embedding data in an image with 640 x 480 pixels does not change to 640 x 480 pixels. By embedding text information and audio information in an image, the storage side has to handle only one type of medium. One of the biggest features is the inseparability of embedded information. The digital watermark embeds the additional information directly in the data structure of the medium, not in the header or a separate file. Therefore, even if the platform or data format of the medium changes, the embedded information is preserved as long as the quality of the original data is preserved. Can be taken out.

An example of a data control method using this digital watermarking technique will be described below. It should be noted that not only recording, duplication, and reproduction at a data distribution destination, but also control of whether or not to permit reception of the data (reception control) in data distribution by radio waves or the like is possible in exactly the same manner. (1) A step of embedding a control flag (CF) indicating the protection level of the content in the image data using a digital watermark technique. (2) a step of detecting the CF embedded in the content in the recording and reproducing apparatus, determining whether recording or reproduction is possible, and appropriately controlling recording or reproduction. (In the case of recording, the recording is stopped when a CF indicating recording prohibition is detected. In the case of reproduction, the reproduction medium is for recording, and
If a CF indicating recording prohibition is detected, it is determined to be an illegal copy and playback is stopped.) (3) If a CF indicating recording is permitted only once is detected,
Permit recording and leave a record indicating that it was recorded.
A step of, when the recorded content is reproduced and re-recording is attempted, preventing re-recording from the CF and the recorded mark.

Here, the steps (1) and (2) are performed by a digital watermarking technique at the time of content creation.
This can be realized by embedding a CF in the content in advance. Regarding step (3), (1),
Similar to the step (2), it is possible to use the digital watermark technique to prohibit the recording again. However, a problem arises in this case. Recording devices are often owned by the end user and must be made compact and inexpensive. In a device having such a limited processing capability, it is practically difficult to add a recorded mark and embed a digital watermark in consideration of image quality and residual signal strength as in the case of content creation.

For example, when the target image data is MPEG-compressed image data, in addition to the video data separation function for detecting CF, the image data after embedding the recorded mark is left. A function of re-synthesizing and returning the data (audio data, sub-picture, etc.) is required. Summing up the buffers and circuits for this, C
This is more than twice the detection circuit of F, and is not a practical solution. In addition, the video data to be embedded is
Since only the I-frame is used, there is a disadvantage that the embedded information does not remain in other frames (B and P) when the MPEG is decompressed.

[0010]

SUMMARY OF THE INVENTION Accordingly, an object of the present invention is to provide a system and a method for securely controlling data using a digital watermarking technique at a low manufacturing cost.

Another object is to provide a system for safely performing data copy control, reproduction control, or reception control using a digital watermarking technique.

Still another object is to provide a data control method and system that can withstand a malicious third party attack.

Still another object is to provide a data control method and a data control system which are inexpensive in cost and functionally equivalent or more effective than conventional techniques.

Another object is to provide a data control method in the related art and a completely independent data control method, and a new data control method and system that can coexist with existing methods. is there.

[0015]

In order to solve the above problems, a control flag indicating that data is to be controlled is embedded in the data by digital watermarking technology, and information on how to control the data ( For example, the number of copies,
A token having the number of times of reproduction, designation of a playback device, designation of a user, etc.) is created using the content of the data, the token is added to the data and distributed, and the control flag is determined from the distributed data. Is detected, and when the control flag is detected, the token added to the data is read out, and a predefined control rule (token, various flags, media type of the token or the control flag) of the token or the control flag is read out. Data control (duplication control, reproduction control,
Build a system (including reception control). Further, at the time of data control, further data control can be further suppressed by a token change operation (deletion of token, invalidation of token, increase / decrease of token number, change of token creation image part).

[0016]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS A description will be given separately of two processes, token creation and data control. First, FIG. 7 shows a flow of a token creation process. In step 700, a CF is embedded in the original data using a digital watermark technique. Here, data refers to images, audio, still images, moving images, and the like. Next, in step 710, a portion for which a token is to be created in the data in which the CF is embedded is extracted using the embedding key. At step 720, a token is created from the extracted partial data using a one-way function. In addition to the one-way function, a method of creating an asymmetric key from a digest may be used. Alternatively, for example, a plurality of tokens may be created using different keys. Then, in step 730, the created token is added to the data in which the CF is embedded. At this time, the data is added using, for example, a user data area.

FIG. 8 shows the flow of data control processing. First, at step 800, it is checked whether or not there is a CF embedded using the digital watermark technique from the distributed data. If no CF is detected in step 800, any unrestricted control, such as duplication, recording, or playback, is performed. When CF is detected in step 800,
Next, in step 820, it is determined whether there is a token added. (At this time, verification of the token may be included.) If the result of step 820 is NO, data control is prohibited. That is, duplication, recording, or reproduction is not performed, and the process ends. If step 820
If the result is YES, data control (duplication, recording, or reproduction, etc.) is performed according to a predefined control rule of the token or the control flag. Here, the control rules defined in advance include, in addition to tokens and flags, types of media for storing and reproducing data, and the like.
This is a rule that defines the control contents. Normally, the control content is determined by a combination of the tabulated parameters. Since such a combination method is known, it will not be described in detail in the present application. A person skilled in the art can easily modify the rule so as to make it more detailed and perform various other controls. If necessary, step 840 manipulates the token to change subsequent data control. The operation of the token means increase / decrease, deletion, invalidation, and change of the number of tokens for limiting the number of times of copying.
In addition, the operation of the partial data for which the token is to be created may be performed. The operation of the token may be performed before data control by the token is performed for security.

There is no difference between the role of the control flag and the role of the token, except that predetermined data control is performed only when the control flag exists. That is, the control flag may include information for controlling data (such as the number of times copying is permitted), the token may include the information, or both may include the information.

[0019]

Embodiments of the present invention will be described below with reference to the drawings. FIG. 1 shows an embodiment of a hardware configuration of a data control (including duplication control, reproduction control, reception control, and token creation) system used in the present invention. The system 100 includes a central processing unit (CPU) 1 and a memory 4
And The CPU 1 and the memory 4 are connected via a bus 2 to a hard disk drive 13 (or a storage medium drive such as MO, CD-ROM 23, DVD 32, etc.) as an auxiliary storage device via an IDE controller 25. Similarly, the CPU 1 and the memory 4 are connected via the bus 2
It is connected to a hard disk device 30 (or a storage medium drive such as MO 28, CD-ROM 23, DVD 31, etc.) as an auxiliary storage device via a SCSI controller 27. The floppy disk device 20 is connected to the bus 2 via a floppy disk controller 19.

A floppy disk is inserted into the floppy disk device 20 and the floppy disk or the like or the hard disk device 13 (or MO, CD-ROM,
A storage medium such as a DVD) and a ROM 14 can cooperate with an operating system to give instructions to a CPU and the like, and record computer program codes or data for implementing the present invention. It is performed by being done. The code of this computer program is compressed or divided into several parts,
It can also be recorded on multiple media.

The system 100 further includes user interface hardware and a pointing device (mouse, joystick, etc.) for inputting.
7 or a keyboard 6 and a display 12 for presenting visual data to the user. Further, it is possible to connect a printer via the parallel port 16 and a modem via the serial port 15. The system 100 can connect to a network via a serial port 15 and a modem or a communication adapter 18 (Ethernet or token ring card) or the like, and can communicate with another computer or the like. According to the present invention, in addition to data distribution using a medium such as a floppy disk, distribution data can be transmitted / received through the serial port 15 and the modem or the communication adapter 18. Further, a remote transmission / reception device may be connected to the serial port 15 or the parallel port 16 to transmit / receive data by infrared rays or radio waves.

The speaker 23 receives, via the amplifier 22, the audio signal that has been D / A (digital / analog converted) by the audio controller 21 and outputs it as audio. Also, the audio controller 21
Converts the audio information received from the microphone 24 into an A / D
(Analog / Digital) conversion, and audio information outside the system can be taken into the system.

As described above, the data control system 100 of the present invention can be used for ordinary personal computers (PCs), workstations, notebook PCs,
C, a network computer, various home appliances such as a television with a built-in computer, a game machine having a communication function, a communication terminal having a communication function including a telephone, a facsimile, a mobile phone, a PHS, an electronic organizer, or a combination thereof. It will be readily apparent that it is feasible. However, these components are merely examples, and not all of them are essential components of the present invention.

DV which performs token creation and data control
An embodiment of the DR system will be described. System 1 in FIG.
FIG. 2 shows a case where the DVD 31 or DVD 32 is externally connected, and FIG. External type DV
DR drive 40 and built-in DVD-R drive 5
0 is connected to the system 100 via an IDE (ATA API: ATA Packet Interface) interface (also via SCSI). FIG. 4 shows a block diagram of the DVD-R system.

In FIG. 4, a disk 210 is rotated by a motor 214 connected to a drive circuit 212, and data recorded in the disk 210 is read by an optical head 216. The drive circuit 212 operates according to a command from the DVD control block 218. The signal read by the opto-electrical head 216 is input to the DVD control block 218, amplified, converted if necessary, and
Sent to 20. The composite block 220 performs signal modulator, demodulator and error correction. The DVD control block 218 includes a servo circuit 218B for controlling the drive circuit 212 in response to servo data recorded in the disk or a control signal from the decoding block. The DVD control block 218 includes the signal reading circuit 2
18A.

The data received by the decoding block 220 is subjected to error correction by the buffers 220A, MPU 220B and decoder 220C in the decoding block connected by a common bus, decoded in real time, and transmitted to the data control block 230. Is done. Data control block 2
30, embedding CF information, generating a token, adding a token to target data,
Detection of CF information, data control by the token, and operation of the token are performed. From the data control block 230, video data is sent to the system 100 via the ATAPI interface 222, and audio data is sent to the system 10 via a DAC (digital-to-analog converter) 224.
0 respectively.

When recording, data is transferred from the ATAPI interface 222 to the data control block 230, the composite block 220, and the DVD control block in this order.
Flows in the opposite direction to when reading. At this time, the optoelectric head 216 operates as a recording head. The DVD-R data control system is based on the cooperation with the data processing system 100.
Similarly, the present invention can be implemented in a playback device and a DVD-R recorder without departing from the essence of the present invention.

FIG. 5 shows an embodiment of a copy control system in digital image distribution using a one-way hash function. In brief, using digital watermark technology, a "token" for controlling duplication and recording is added to digital data to be broadcast, and at the same time that the "token" is invalidated while being duplicated or recorded. This system does not allow any duplication or recording. The token is C
Like F (control flag), information on how to control data (for example, the number of times copying is permitted, the number of times playback is permitted, the designation of a playback device, the designation of a user, etc.) can be included. For the sake of simplicity, in FIGS. 5 and 6, it is determined whether data can be copied based on the presence or absence of a token. Also, the number of tokens can be increased or decreased to a desired number according to the difference in the implementation environment. (For example, the number of tokens may be defined as the limit of the number of times of reproduction and the number of times of reproduction.)

In the embodiment shown in FIG. 5, a CF indicating that copying can be performed up to one time is embedded in the content by a digital watermarking technique. Only when this CF is detected, the recorder enables only one copy. A result of calculating the content of the content is added to digital content such as a digital image, digital video, digital audio or the like (including a stream after compression such as MPEG). The result of this operation is called a "token". Whether or not copying or recording is possible is determined depending on whether or not the "token" exists.

The copy control system will be described in more detail.
In FIG. 5, the token is a bit string calculated from a part (or all) of the image data using a one-way hash function or the like, recorded and held in a predetermined place as a comment field or user data, and distributed together with the image data. . The one-way hash function used to create a token is a commonly known one, such as MD5 or CR
C (Cyclic RedundancyCheck) can be used. The function for creating the token and which part of the image is being calculated are kept secret so that the token cannot be generated on the user side.

Image data to be subjected to the one-way hash function is selected by using an embedded key. Which part of the image data is used and the initial value of the hash operation are secret, and the publicly used hash function is used. The created token is recorded in an additional data area of the image to be transmitted (for example, in the case of MPEG2, a user data area—8 × n bits can be used in 8-bit units) to add the token. The one-way hash function is
Generally, it is expressed as follows. h = H (M) where:
M is an arbitrary-length message (numerical value), h is a fixed-length numerical value, and H is a defined hash function. The one-way hash function is defined as satisfying the following conditions in addition to the above conditions. -It is easy to calculate h when M is given. -It is difficult to calculate M (inverse transformation) when h is given. -Given M, it is difficult to find M 'that satisfies H (M) = H (M'). Utilizing this characteristic, data is electronically signed and used to perform authentication and to detect the presence or absence of tampering. The input message M is
Multiple elements are also possible. Here, an example of creating a hash by the following method is given. ^{_{H i = H (I i,}} h i-1) (I 0 = k) In other words, the M ⁱ was a combination of I ^1, I ² ... hash value of up to I ⁿ and the i-th. Here, I ⁱ is an image data block, and ⁿ data from I ¹ to In are selected by the embedding key. H _i is the hash value of the I-th image data blocks, it sought hash value of up to I ⁱ and I ^i-1 th and (h ^i-1) as input, image data This operation is of interest The number of blocks (n) is repeated to obtain a hash value. Also, I ⁰ is represented by a constant k, and this numerical value is also kept secret together with the embedded key.

In the creation of a token, a valid token is added only when the CF embedded by the digital watermarking technology indicates that the content can be copied once. In addition, a token is created from a signal detected from a mark embedded with a digital watermark. In this case, the token or the digest is created using the signal from the digital watermark detector even when the token is verified on the user side.

The created token is, for example, user data (UD: User Data) of extension data in a sequence header of the MPEG format.
Write to the area. It is also possible to scramble the created token using an asymmetric key and record it. In this case, even if the cracker knows the part of the image information used for the token creation, the token cannot be created.

On the user side, token verification is valid only when the CF embedded by the digital watermarking technology indicates that the content can be copied once.
On a recorder or the like, a token is created from the delivered image in a similar manner, and it is verified whether the token matches the token delivered with the image. If verification is not possible, recording is prohibited. In addition, analog protection signals (Analog protection si
gnal) and CGMS-A data are added to prevent copying to analog. If the verification is successful, the stream in which the token is deleted or invalidated is recorded. The invalidation is performed on the token (it is sufficient if a mismatch with the operation result can be created). Alternatively, this is performed by changing the portion of the image used for token creation. (The token created from the changed image is different and cannot be verified.) If further copying is attempted, there is no valid token and the recording is prevented. Since the content with the token must not be a copy, if this is detected from the stream from the rewritable DVD, it is regarded as being illegally copied and the reproduction is prohibited.

FIG. 6 shows, as another embodiment of the copy control system system in digital image distribution, a system for creating a token from an image compression summary using an asymmetric key. The basic mechanism is the same as when a one-way hash function is used. An important point in the case of a system that creates a token using an asymmetric key is that the method of creating the token from the digest is secret, but the creation of the digest from the token is public. On the user side, a summary is created by a public key from the distributed token on a recording device or the like, and the digest is compared with a digest similarly created from the distributed image to verify whether they match. Even if the token is valid even though the CF is not "copy once", copying is prohibited. Further, the token is invalidated. In addition to the data control, a system in which a right is granted only once by granting a certain right by adding a token and invalidating the token when the right is exercised can be similarly implemented.
For example, a method of attaching a token to electronic money and invalidating the token at the time of payment can be similarly implemented.

Next, as an application of the present invention, a method of performing replication control with a simple configuration in the STB will be described. Conventionally, as a method of receiving paid digital broadcasts such as satellite broadcasts and controlling analog recording based on billing information, Macrovison
Existed. However, the digital signal output
There was no easy way to control recording on a digital recorder such as D-RAM in the STB. Macrovison below
1 shows a conventional method of controlling analog recording using.

[0037]

In a pay digital broadcast such as a satellite broadcast, only when the receiver pays a fee or the like, the digital output is permitted to be copied.
To make it easier to do it in the STB, look at the control flags and tokens. The reason is as follows. First, the control flag embedded in the digital watermark is used as 2-bit Copy Control Information (CCI), and the token (TOKEN) inserted in the User Data Area of the MPEG-2 stream is detected, so that digital recorders such as DVD-RAM can be used. The method of controlling whether recording / playback is possible is as follows.

[0039]

Here, for each of writing and reading,
The case of the copy control by the combination of the CCI and the token is as follows.

・ In case of writing CCI / TOKEN COPY permission ----------------------------- (1,1) NO COPY (0 , 0) COPY OK (1,0) + TOKEN COPY OK (TOKEN destroyed when writing) (1,0) NO COPY (-,-) COPY OK

When reading (from DVD-RAM) CCI / TOKEN COPY permission ----------------------------- (1,1) NO PLAY (0,0) PLAY (1,0) + TOKEN NO PLAY (1,0) PLAY (-,-) PLAY

From the above, it can be seen that it is only necessary to look at CCI (1,0) + TOKEN in order to permit duplication permission in the STB.

[0044]

For example, in a digital broadcast, as shown in the figure below, an MP with a CCI (1, 0) and a token
The EG-2 Stream is sent out, and the receiving STB controls the destruction or passing of the token as it is based on the charging information, which is input information from outside, so that the DVD-
A method for controlling recording on a device having a digital watermark detection chip such as a digital Recorder such as a RAM is as follows.

[0046]

In addition, a method of embedding an invalid token in a portion corresponding to the token and calculating and adding a correct token by the STB instead of attaching the token in advance on the sending side will be described below.

[0048]

The following is a concrete method of destroying TOKEN,
The following shows how to add. First, the method of destroying TOKEN is to monitor the MPEG stream and find the TOKEN Header as shown below. If TOKEN Header is found, TOK follows
Whether to destroy EN is controlled in consideration of charging information. TOKEN header Detection circuit and AND for destruction of TOKEN
All circuits can be easily configured.

[0050]

Next, in the TOKEN addition method, as shown below, the MPEG stream is monitored, the TOKEN is calculated from the stream, and the TOKEN Header is found. If TOKEN Header is found, overwrite TOKEN in the following TOKEN area (containing dummy data) taking into account accounting information. TOKE
The N header detection circuit, TOKEN calculation circuit, and SELector circuit for adding TOKEN can be easily configured.

[0052]

As in the above embodiment, the digital broadcast STB
Addition to perform digital video output duplication control (copying permitted / impossible) using digital watermark based on smart card, user billing information, and user input information in Consumer Box such as Information (TOKEN) can be easily changed in STB. The important thing here is that Copy Control Information (C
CI).

[0054]

According to the present invention, in an application which permits one-time copying of distribution content, by using the method of the present invention, as compared with the case where the digital watermarking method is used for all data controls, the function is as follows. In addition to the digital watermark chip that originally detects the CF, only the function to invalidate the token is required, so the number of logic gates is about 1/20 or less, and the effect is equal or better. Can be obtained. Also, when embedding is performed using only the digital watermark technology, since embedding can be performed only in the I-frame, the copied mark that has been embedded becomes invalid when the image departs from the MPEG format. On the other hand, according to the method of the present invention, the token is invalidated when leaving the MPEG, but since the token cannot be duplicated when the token is invalidated, the effect of the duplication prohibition itself persists regardless of the data format. Therefore, safer data control becomes possible. In addition, the digital watermark is used to control the duplication of digital video output based on the smart card, user billing information, and user input information in the Consumer Box such as the STB of digital broadcasting. Copy control within STB
Easily done without the need to ask for Information (CCI).

[Brief description of the drawings]

FIG. 1 is an embodiment of a hardware configuration of a data control system.

FIG. 2 is a schematic view of a data control system using an external DVD drive.

FIG. 3 is a schematic view of a data control system incorporating a DVD drive.

FIG. 4 is a block diagram of a DVD-R data control system.

FIG. 5 is a copy control system in digital image distribution using a one-way hash function.

FIG. 6 is a copy control system in digital image distribution using an asymmetric key.

FIG. 7 is a diagram showing a flow of a token creation process.

FIG. 8 is a diagram showing a flow of a data control process.

──────────────────────────────────────────────────の Continued on the front page (51) Int.Cl. ⁶ Identification code FI H04N 7/08 H04N 7/08 Z 7/081 (72) Inventor Noriyuki Morimoto 1623 Shimotsuruma, Yamato-shi, Kanagawa 14 Japan A・ BM Research Institute, Tokyo Research Laboratory (72) Inventor Shuichi Shimizu 1623-14 Shimotsuruma, Yamato City, Kanagawa Prefecture

Claims (31)

[Claims] 1. A data control system, which indicates that the system performs data control by digital watermarking technology.
Means for embedding a control flag in the data to be distributed, means for creating a token having information on how to control the data using the content of the data, means for adding the token to the data Means for distributing the data to which the token has been added; means for detecting the control flag from the distributed data; and when the control flag is detected, the token added to the data. A data control system comprising: a reading unit; and a unit configured to control the data in accordance with a predefined control rule of the token or the control flag. 2. The system of claim 1, wherein the means for controlling the data further comprises means for changing, invalidating, or deleting the token. 3. The system according to claim 2, wherein said control is copy control, reproduction control, or reception control. 4. A data copying apparatus, comprising: means for detecting, from data, a control flag embedded in the data by a digital watermarking technique, the control flag indicating that data copying control is to be performed; When a control flag is detected, from the data, means for reading a token indicating copy control information of the data, and copy control of the data according to a predefined control rule of the token or the control flag. Means for performing, a data duplication device comprising: 5. A data reproducing apparatus, comprising: means for detecting, from data, a control flag embedded in the data by a digital watermarking technique, the control flag indicating that data reproduction control is to be performed; When a control flag is detected, from the data, means for reading out a token indicating data reproduction control information, and controlling the reproduction of the data according to a predefined control rule of the token or the control flag. A data reproducing apparatus, comprising: 6. A data receiving apparatus, comprising: means for detecting, from data, a control flag embedded in the data by digital watermarking, the control flag indicating that data reception control is to be performed; When a control flag is detected, from the data, means for reading out a token indicating data reception control information, and controlling the reception of the data according to a predefined control rule of the token or the control flag. A data receiving device, comprising: 7. A data control device, comprising: a control unit that controls data embedded from data to the data by a digital watermarking technique.
Means for detecting a flag; means for reading out a token indicating how to control data from the data when the control flag is detected; and defining the token or the control flag in advance. Means for controlling the data in accordance with the set control rules. 8. A token creating apparatus for creating a token for performing data control, the apparatus comprising: a means for embedding a control flag indicating that data is controlled by digital watermarking technology in data; A token creation device, comprising: means for creating a token having information on how to control data using the content of the data; and means for adding the token to the data. 9. A data control system, comprising: means for embedding a control flag in data to be distributed, indicating that data is to be controlled by digital watermarking technology, and how to control the data. Means for creating a token having the above information using the contents of the data, means for adding the token to the data, means for distributing the data to which the token has been added, and Means for detecting the control flag, means for reading out a token added to the data when the control flag is detected, means for creating a token again from the data, Means for comparing the token with the recreated token; and if the comparisons match, the read talk Or according to a predefined control rule of the control flag, and means for controlling said data, the data control system. 10. The system according to claim 9, wherein said means for controlling said data further comprises means for deleting said added token. 11. The system of claim 10 wherein said means for creating a token and said means for creating a token again include means for creating a token from data using a one-way function. 12. The system according to claim 11, wherein said control is copy control, reproduction control, or reception control. 13. A data copying apparatus, comprising: means for detecting, from data, a control flag embedded in the data by a digital watermarking technique, the control flag indicating that data copying control is to be performed; When a control flag is detected, means for reading out a token indicating copy control information of the data from the data, means for creating a token from the data, token read out, and token created Means for comparing the read token or the control flag in accordance with a predefined control rule of the control flag if the comparisons match, and controlling the data with respect to duplication. Duplication device. 14. A data reproducing apparatus, comprising: means for detecting, from data, a control flag embedded in the data by a digital watermarking technique, the control flag indicating that data reproduction control is to be performed; When a control flag is detected, a means for reading out a token indicating reproduction control information of the data from the data; a means for creating a token from the data; a read-out token; and a created token And means for controlling the data for reproduction in accordance with a predefined control rule of the read token or the control flag if the comparisons match, the data comprising: Playback device. 15. A data receiving apparatus, comprising: means for detecting, from data, a control flag embedded in the data by a digital watermarking technique, the control flag indicating that data reception control is to be performed; When a control flag is detected, means for reading out a token indicating data reception control information from the data, means for creating a token from the data, token read out, and token created And means for controlling the data regarding reception according to a predefined control rule of the read token or the control flag if the comparisons match, the data comprising: Receiver. 16. A data control device for controlling data, the device comprising: a control unit for embedding the data from the data into the data by a digital watermarking technique;
Means for detecting a flag, when the control flag is detected, from the data, means for reading out a token indicating how to control the data, and means for creating a token from the data. Means for comparing the read token with the created token; and, if the comparisons match, controlling the data according to a predefined control rule of the read token or the control flag. And a means for performing. 17. The system of claim 1, wherein the means for controlling the data further comprises means for deleting the added token.
Apparatus according to any of claims 3 to 16. 18. A token generating apparatus for generating a token for performing data control, the apparatus comprising: a means for embedding a control flag indicating that data control is to be performed in data by digital watermarking technology; A token creation device, comprising: means for creating a token having information on how to control data using the content of the data; and means for adding the token to the data. 19. The apparatus according to claim 13, wherein said means for generating a token further includes means for generating a token from data using a one-way function. 20. A data control method, comprising the steps of embedding a control flag in data to be distributed, indicating that data is to be controlled by digital watermarking technology, and information on how to control the data. Creating a token having the content of the data; adding the token to the data; distributing the data to which the token is added; from the distributed data, Detecting a flag; reading out the token added to the data if the control flag is detected; according to a predefined control rule of the token or the control flag, Performing a control; and a data control method. 21. The method of claim 20, wherein controlling the data further comprises changing, invalidating, or deleting the token. 22. The method according to claim 21, wherein said control is copy control, reproduction control, or reception control. 23. A medium including a program for controlling data, the program being embedded in the data from the data by a digital watermarking technique and indicating a control of the data.
A function of detecting a flag; a function of reading out a token indicating how to control the data from the data when the control flag is detected; and a pre-definition of the token or the control flag. And a function of controlling the data in accordance with the set control rules. 24. A medium including a program for creating a token for performing data control, wherein the program embeds, in the data, a control flag indicating that data is to be controlled by a digital watermarking technique. A program for creating a token having information on how to control data using the content of the data, and a function of adding the token to the data. A medium containing 25. A token creation device for controlling copying of digital content, wherein the token creation device sets a control flag indicating that digital content copying is permitted by a digital watermarking technique. Means for embedding in the content, means for creating a token having information for controlling duplication of the digital content from the digital content using a one-way function, and means for adding the token to the digital content. A token creation device comprising: 26. An apparatus for copying digital content, comprising detecting a control flag embedded in the digital content by a digital watermarking technique, the control flag indicating permission of copying of the digital content. Means for reading the token added to the digital content when the control flag is detected; and using a one-way function from the digital content,
Means for creating a token, means for comparing the read token with the created token, means for duplicating the digital content if the comparisons match, such that the next token comparison fails. In addition, the digital
Remove the added token from the content or
Alternatively, a digital content copying apparatus, comprising: means for changing the digital content. 27. A data control apparatus, comprising: a control unit that controls data embedded from data to the data by a digital watermarking technique.
Means for detecting a flag, means for reading out a token indicating control information of data from the data when the control flag is detected, and means for reading the token or the control flag based on externally input information. Means for controlling the data in accordance with the previously defined control rule. 28. A data control apparatus for receiving data including a control flag indicating that the apparatus performs control of data embedded by digital watermarking technology and a token indicating control information of the data. And a means for controlling the data in accordance with a predefined control rule of the token or the control flag based on externally input information. 29. The system according to claim 27, wherein said control is copy control, reproduction control, or reception control. 30. The system according to claim 27, wherein said means for controlling data includes means for destroying said token or invalidating said token. 31. The system according to claim 27, wherein said external input is billing information or user input information.