WO2007034640A1 - Provided information management system and provided information management program - Google Patents

Provided information management system and provided information management program Download PDF

Info

Publication number
WO2007034640A1
WO2007034640A1 PCT/JP2006/316146 JP2006316146W WO2007034640A1 WO 2007034640 A1 WO2007034640 A1 WO 2007034640A1 JP 2006316146 W JP2006316146 W JP 2006316146W WO 2007034640 A1 WO2007034640 A1 WO 2007034640A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
provision
provider
collation
identification information
Prior art date
Application number
PCT/JP2006/316146
Other languages
French (fr)
Japanese (ja)
Inventor
Isamu Kaneko
Original Assignee
Oknack Inc.
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Oknack Inc. filed Critical Oknack Inc.
Publication of WO2007034640A1 publication Critical patent/WO2007034640A1/en

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6209Protecting access to data via a platform, e.g. using keys or access control rules to a single file or object, e.g. in a secure envelope, encrypted and accessed using a key, or with access control rules appended to the object itself
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/10Protecting distributed programs or content, e.g. vending or licensing of copyrighted material ; Digital rights management [DRM]

Definitions

  • the present invention relates to a management system that is suitably used to eliminate unauthorized provision information when disseminating provision information such as music content.
  • Patent Document 1 Japanese Patent Laid-Open No. 5-236057
  • the present invention provides an information provider side device that first provides provided information such as music content on an information sharing network using a communication model such as PeertoPeer, and connection destination information of the device having the provided information.
  • a connection destination search means for searching for, and using the information sharing network, establishes a connection with a device having provided information based on the connection destination information, receives the provided information directly, and receives the received provision
  • a provided information management system comprising: an information receiver side device that can provide information in the information sharing network; and a provided information management device that manages the provided information, the information provider side device Identification information adding means for adding identification information such as provider identification information for identifying the information provider and provision information for identifying the provision information to the provision information provided by the device, and provision provided by the device Providing information transmitting means for transmitting information in association with the identification information, and the providing information management device creates matching information for managing the providing information based on the identification information Identification information reception means for receiving the identification information associated with the provided information, wherein the information receiver side device comprises a verification information
  • the provision information received by the provision information receiving means Based on the identification information included in the verification information and the identification information received by the identification information receiving means, the provision information received by the provision information receiving means according to the content of the verification information Collating means for outputting a control signal for controlling information, provided information accumulating means for accumulating provided information permitted to be accumulated by the collating means and identification information associated with the provided information, and provided information accumulating means Provision information transmitting means for transmitting the provision information stored in the information when receiving the provision information request signal transmitted from the other information supplier-side device. .
  • the external power of the information sharing network is not a form for managing the provided information, it is possible to avoid being a target of hacking using the management form.
  • the information provider side device provides provider identification information adding means for adding provider identification information for identifying the information provider to the provided information provided by the information provider side device, Provision information transmitting means for transmitting the provision information in association with the provider identification information for identifying the information provider, and the provision information management device permits provision of information.
  • Information generating means; and collation information output means for outputting the collation information created by the collation information creating means, and the information receiver side device displays the provider identification information associated with the provision information.
  • Provider identification information receiving means for receiving information
  • provision information receiving means for receiving provided information associated with the provider identification information for identifying the information provider, and provider identification information of an information provider permitted to provide information
  • Collation information accepting means for accepting collation information including information on the provider, provider identification information accepted by the provider identification information accepting means, and acceptance by the collation information accepting means.
  • the provided information received by the provided information receiving means is verified based on the provided provider identification information to verify whether the provided information is provided by the information provider authorized to provide the information, and the information is allowed to be provided.
  • the collation means for outputting the accumulation permission signal for permitting the accumulation of the provision information, the provision information permitted to be accumulated by the collation means, and the relevant information Provision information storage means for storing the provider identification information associated with the provision information, provision information request signals transmitted from other information supply / demand side devices received the provision information accumulated in the provision information storage means It is conceivable to have a provision information transmission means to send it when triggered!
  • the provision information management device has a deletion instruction means for transmitting a deletion instruction of the provision information stored in the information receiver side device based on the identification information. Even if the correct provision information leaks into the system, the illegal provision information can be deleted to maintain an appropriate provision information management system.
  • provision information management device has provision information storage means for storing provision information transmitted from the information provider side device, there are few devices having provision information in the system! /, Even in this case, the information receiver can reliably obtain the desired information.
  • the collation information creating means is provided with collation information including identification information relating to provision information prohibiting distribution in the information sharing network and information to be deleted!
  • the identification information included in the verification information and the identification information received by the identification information receiving means based on the verification information determined by the provided information verification means to be regular verification information. If the ID matches the identification information included in the verification information, a control signal is output indicating that the provided information associated with the identification information is not received, or the identification information It is also conceivable to output a control signal indicating that the provided information associated with the information is deleted.
  • FIG. 1 is an overall configuration diagram in an embodiment of the present invention.
  • FIG. 2 is a functional block diagram according to the embodiment.
  • FIG. 3 is a screen view of the information receiver side device S3 in the same embodiment.
  • FIG. 4 is a screen view of the information receiver side device S3 in the same embodiment.
  • FIG. 5 is an operation flowchart of the provided information management apparatus S1 in the embodiment.
  • FIG. 6 is an operation flowchart of the information provider side device S2 in the embodiment.
  • FIG. 7 is an operation flowchart of the information receiver side device S3 in the embodiment.
  • FIG. 8 is an operation flowchart of the provided information management apparatus S1 in the embodiment.
  • FIG. 9 is an operation flowchart of the information receiver side device S3 in the fourth embodiment.
  • the provided information management system in this embodiment appropriately applies digital contents (provided information) such as music and movies on an information sharing network using a communication model such as so-called PeertoPeer (hereinafter referred to as P2P).
  • P2P PeertoPeer
  • the information provider side device S2 as the information processing device provided on the provider side of the provision information and the receiver side of the provision information are provided.
  • Information processing equipment An information processing system in which the receiver S3 is connected to be capable of bidirectional communication via a communication line such as the Internet, and is further connected to both devices to be capable of bidirectional communication via the communication line such as the Internet.
  • the provision information management device S1 as a device is provided.
  • the "information provider" in this embodiment is, for example, a music content artist, a content distributor who manages the copyright of the music content, etc. Of these, those registered as those who can use this system.
  • the person who first makes the information he / she can receive from other information receiver side device S3 in the information sharing network of this system, or who sends it to other information receiver side device S3, V
  • Registration is performed using registration support means (not shown).
  • the registration support means requests the information provider to input basic data of the information provider.
  • a provider identifier (ID) as provider identification information is issued, and the basic data is stored in association with the provider identifier.
  • Information recipient refers to a person who receives information provided by an information provider or the like and who has been registered as a person who can use this equipment as well as an information provider.
  • the registration procedure, identification information acquisition process, and the like are the same as described above, and a description thereof will be omitted.
  • the information receiver in the present embodiment is a person who can be a secondary information provider that transfers provided information received from another device to another device.
  • An "information sharing network” is a connection established on the basis of connection destination information of a device having provided information, and directly using a communication model such as PeertoPeer (P2P) in an equal position.
  • P2P PeertoPeer
  • the network is an application built by devices having specific applications (file exchange software) on an IP network, and files released by individual devices are automatically spread.
  • the file is automatically transferred to another device.
  • search target information including a search key and connection destination information of provided information is distributed to each device in the network as information about provided information.
  • the information receiver side device S3 that hesitates the provided information searches the search target information stored in each device using the search key, and receives the corresponding search target information. Then, the connection destination information having the provided information is read from the search target information, and the provided information is received by establishing a direct connection with the device.
  • P2P refers to a form of communication model in which each exchanges information on an equal footing.
  • each device information provider side device S2, information receiver side device S3, etc.
  • each peer Is a technology for building distributed applications that play a symmetric role.
  • each peer in the case of the P2P method, it means a method in which each other plays an equal role and each peer can be an information provider side or an information receiver side as needed.
  • the peer In connection with the connection, the peer can operate as either a connection accepting side or an active connection side.
  • File sharing software refers to software for sharing files possessed by each device via, for example, the Internet.
  • the file sharing software in the present embodiment also has a file search function. ing.
  • the information provider side device S2 and the information receiver side device S3 are concepts including so-called personal devices, facsimile devices, telephones, etc. In implementation, these devices may be used together. However, in the following description of the present embodiment, the case where the information receiver side device S3 and the information provider side device S2 are personal devices will be described. . These locations are not limited to domestic but may be overseas.
  • the information provider side device S2 and the information receiver side device S3 include a keyboard and a mouse.
  • Input device such as display, output device such as display, speaker, etc., storage device such as HD, CPU, internal memory, communication device such as communication interface, etc., and has a web browser.
  • the provided information management device S1 has a WEB server function, a database function, and the like, and has substantially the same device configuration as the information receiver side device S3 and the information provider side device S2.
  • the provided information management device S1 does not matter whether it is provided in a centralized location or in a distributed manner, and the location is not limited to domestic, and may be overseas.
  • the provided information management device S1 mainly manages the provider identification information and plays a role for distributing music content and the like provided by the legitimate information provider. It may also serve as a billing server.
  • the communication model such as p EertoPeer
  • a provision information management system having a provision information management device S1 to be managed, which is stored in a storage device of the information receiver side device S3, the information provider side device S2, or the provision information management device S1. did It, by the CPU and peripheral devices in their system is activated, executing various functions described below.
  • the provided information management device S1 is used to manage information providers and individual provided information that can provide music content or the like as a primary provider in the system, for example, illegal copying. It plays a role in managing identification information such as provider identification information in order to prevent content from being mixed in the system.
  • the provider information accepting means 1A is mainly used in the registration procedure of the information provider, and provides information necessary for registration using a communication device such as the input device or the communication interface. Various information of the person is accepted.
  • the identification information management means 1B manages provider identification information of an information provider who is permitted to provide information at least in the system (in the information sharing network). Accepting provider information using the acceptance means 1A and judging whether or not it satisfies the specified registration requirement items, etc. And give a unique provider identifier to the provider who meets the requirements.
  • an information provider to which a provider identifier is assigned using an unauthorized provider information receiving means is later an unauthorized information provider (providing unauthorized copy content).
  • the relevant information provider is searched from the collation list described later based on the provider identifier included in the unauthorized provider information, and provided by the unauthorized provider.
  • An instruction signal for deleting the person identification information from the collation list is output.
  • an information provider who is permitted to provide information is the first information provided by the information provider as the primary provider in the system (information sharing network).
  • the information receiver can be the secondary information provider because it can transmit the received provided information in response to a request from another device.
  • the provider identification information transmitting unit 1C serves to transmit the provider identification information permitted by the identification information management unit 1B to the information provider side device S2 using the communication unit or the like.
  • the key generation means 1D provides a new information provision in the system (in the information sharing network).
  • the encryption of the information provided in the system corresponding to the provider identification information of the provider is performed.
  • the private key is a public key encryption method (private key and public key) that is not disclosed to the general public and is held by the administrator and information provider. Encrypted by.
  • the public key is widely disclosed to the administrator and the information recipient, and cannot be combined with the public key corresponding to the data encrypted with the secret key.
  • the secret key and the public key are set for each information provider identifier.
  • encryption information public key, secret key unique to the provided information management device is also set.
  • the public key information of the provided information management device is transmitted and spread in advance when, for example, each device in the information sharing network logs in to the provided information management device S1.
  • the management collation list creation means 1E has a function of creating a management collation list including provider identification information permitted to provide information based on the provider identification information management means 1B.
  • the management verification list is list data that can list information providers who are allowed to provide information to the system, and is necessary for the administrator to manage provider identification information, etc. Is. The management verification list is used only by the administrator.
  • the information provider information (provider) received from the key generation means 1D and the provider information reception means 1A upon receiving a provider permission signal from the identification information management means 1B upon receiving a provider permission signal from the identification information management means 1B.
  • Name, provision qualification, connection destination information such as IP address and port number, public key, secret key, etc. as encryption information are added to the management verification list as data associated with the information provider identifier.
  • the provider identification information stored in the management verification list is deleted, and the management information that always has the latest provider identification information is deleted. Create a collation list.
  • the shared collation list creation means 1F is based on the identification information! And manage the provided information
  • a collation list creation means for creating a collation list for the information provider is for information provider limited including provider identification information permitted to provide information based on the provider identification information management means 1B.
  • a collation list is created, and a shared collation that includes provider identification information, etc., necessary for the recipient of the provided information to determine whether or not the information provided by the legitimate provider Has a function to create a list.
  • the shared collation list is list data that can list information providers who are permitted to provide information to the system, and is shared by all users who use the system.
  • the management collation list creation means 1E when receiving the provider permission signal from the identification information management means 1B, the key generation means 1D and the provider information Information receiving means 1A
  • the above information provider information received (provider name, provision qualification, IP address and port number as connection destination information, public key etc. as encryption key information), provider identification information Is added to the shared collation list.
  • the shared verification list does not include secret key information.
  • the shared collation list has an administrator identifier that is management identification information and guarantees that the collation list is a legitimate list (guaranteeed that it has been tampered with, guarantee of origin). Are associated with the digital signature that has been digitally authenticated and the private key information of the provided information management device used to realize the digital signature.
  • the provider identification information stored in the shared collation list is deleted, and the latest provider identification information is always stored. Create a shared collation list.
  • the shared collation list transmission unit 1G is a collation list output unit that outputs the shared collation list created by the common collation list creation unit. Specifically, the collation list transmission unit 1G creates the common collation list creation unit 1F.
  • the administrator identifier used as management identification information and digital authentication for guaranteeing that the collation list is a legitimate list (assurance of being altered, guarantee of origin, guarantee of origin) It has a function of transmitting the shared collation list to the information receiver side device S3 in a state where a digital signature is added and encrypted with the secret key of the provided information management device.
  • the shared collation list request signal that is the identification information request signal transmitted from the information receiver side device S3
  • the shared list is read by reading the combined list from the information storage means II described later, adding the administrator identifier, which is management identification information, and a digitally authenticated digital signature, and encrypting it with the private key of the provided information management device.
  • the shared verification list is transmitted to the information receiver side device S3 which is the transmission source of the request signal.
  • the deletion instruction means 1H has a function of deleting provided information such as music content provided by an unauthorized information provider from the system (in the information sharing network).
  • the provision information identifier of the unauthorized information provider to be deleted is specified based on the provider identification information received using the unauthorized information receiving means. Then, a deletion program that instructs the information receiver side device S3 to delete the provision information associated with the provider identifier of the unauthorized information provider from the provision information already stored in the information receiver side device S3 is provided to the information receiver side device S3. The information is forcibly transmitted and the information provided by an unauthorized information provider is deleted.
  • the deletion program transmits a new shared verification list from which the unauthorized provider identification information has been deleted, and also the information receiver side Forcibly sending the deletion program to device S3.
  • the deletion program compare the old shared collation list stored in the information receiver side device S3 with the new shared collation list, detect the illegal provider identification information on the old shared collation list, and detect the fraud
  • a deletion program that deletes the provision information having the provider identification information may be transmitted.
  • the deletion program can be disseminated at the same time.
  • the information storage means II stores various data such as a management collation list, a shared collation list, provided information, a program, etc. in each area.
  • the management collation list area based on each provider identifier, the provider name, provision qualification, connection destination information (IP address, port number), encryption key information (public key, Data for the administrator collation list including provider information such as private keys is stored.
  • a provision information identifier provided by the provider may be stored in association with the provider identifier.
  • the management collation list data guarantees that the management identifier is an administrator identifier and that the collation list is a legitimate list.
  • the digitally authenticated digital signature information for guarantee and origin assurance it is stored in association with the encryption information (public key, private key) of the provided information management device.
  • the shared collation list area based on each provider identifier, provider information such as the provider name, provision qualification, connection destination information (IP address, port number), public key, etc.
  • provider information such as the provider name, provision qualification, connection destination information (IP address, port number), public key, etc.
  • the shared collation list data including the administrator identifier is stored.
  • the shared collation list data guarantees that the management identifier is an administrator identifier and that the collation list is a legitimate list (guarantee that it has been tampered with, the guarantee of origin). For this purpose, it stores the digitally authenticated digital signature information and the private key information used to realize the digital signature in association with each other.
  • the provision information transmitted from the information provider side device S2 is accumulated in the provision information area.
  • the provision information identifier Hash value
  • the hash value that serves as the provided information (file) identifier summarizes the entire contents of one provided information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
  • the noh and shh values are unique data of a fixed length derived by a string array power mathematical algorithm.
  • a hash function called SHA-1 is used.
  • the hash value is generated. Specifically, in the hash function, a 160-bit hash value is generated from the original text of 2 64 bits or less. Since the calculation method includes an irreversible one-way function with initial value sensitivity, the hash value takes a pseudo random number. Therefore, the original text cannot be reproduced based on this.
  • use the hash function at both ends of the communication path to generate hash values and compare them.
  • a hash value is obtained from the entire content of provided information, and used as an identifier for identifying a file. In this process, the file name and other information are not used together.
  • the hash value of the aisle is the same as the general-purpose MD5 hash value used for checking the file contents.
  • the information provider side device S2 uses the provider identifier assigned from the provided information management device S1, and is operated by a primary information provider that can provide music content and the like in this system. It plays the role of providing its own music content and distributing it within this system.
  • provider information transmission means 2A provider identification information reception means 2B, provision information request reception means 2C, identification information addition means 2D, provision information management means 2E, digest information management means 2F, information storage Means 2G and provided information transmission means 2H.
  • the information provider side device S2 has various means (not shown) similar to those of the information receiver side device S3 described later (not shown), and at the same time as the information provider side in the information sharing network. It also functions as the receiver S3.
  • the provider information transmitting means 2A is used to register with the provided information management device S1 and to have a unique provider identifier assigned thereto. Connection destination information, provision information, search target information, etc.) to the provision information management device S1.
  • the provider identification information accepting means 2B accepts a provider identifier which is provider identification information when registration is completed in the provision information management device S1, and is mainly an input unit such as a communication unit or a keyboard. To do.
  • the provided information request accepting means 2C receives a provided information request signal transmitted from the information receiver side device S3 of provided information.
  • the provided information request receiving means 2C provides at least a provided search key included in the search target information.
  • the provided information identification information necessary for identifying the information and the connection destination information of the information receiver side device S3 of the provided information are received.
  • the identification information adding means 2D is means for creating provision information to be transmitted to the information receiver apparatus using provision information transmission means 2H described later, and at least provider identification information for identifying the information provider and It has a function of adding identification information such as provision information identification information for identifying the provision information to the provision information provided by itself. That is, based on the provision information identification information included in the provision information request signal, it is stored in the information storage means 2G described later. Read the provided information, and add the provided provider information for transmission with the provider identifier and provider information identifier (hash value) as their provider identification information, and the administrator identifier as management identification information added Has the ability to create!
  • Provided information management means 2E has a function of individually managing provided information provided by itself.
  • Each provided information identifier (hash value) is attached to the provided information main body (music information).
  • Video information, etc., as well as additional information related to the provided information e.g. content title, playback time, artist name, album name, genre, content, and sales information when selling the provided information
  • Management information such as sales price, viewing frequency, viewing information such as availability of viewing).
  • the digest information management means 2F is a means for the information receiver to create search target information that serves as a guideline when searching for the provided information desired by the information receiver based on the provided information. It contains information that serves as a search key to be entered when the information recipient searches for provided information.
  • the digest information management means 2F also has a function of creating the provided information identifier (no hash value), and manages each search target information in association with the provided information identifier (hash value). ing.
  • the search target information may include file name, key information, size, update time, connection destination information (IP address, port number), and so on. Further, it has a function of generating digest information used in digital authentication by the provided information matching means 3F described later. Specifically, the hash information such as SHA-1 is used to generate digest information that is a hash value from provided information and its own provider identification information (provider identifier).
  • the information storage unit 2G has a provider information area, a provided information area, a program area, and the like, and stores various types of information.
  • the provider name, provision qualification, connection destination information (IP address, port number), secret key, etc. are associated with the provider identifier that is the provider identification information.
  • IP address, port number, secret key, etc. Stores provider information that is self-information.
  • provided information that can be transmitted to other devices is accumulated.
  • the provided information including the provided information body (music information, video information, etc., which is the content of the file itself) in association with the information identifier (hash value)
  • additional information related to the provided information for example, content serving as index information
  • Information such as title, playback time, artist name, album name, genre, contents, sales price when selling the provided information, viewing information such as the number of viewings, availability of viewing, etc.
  • search target information and the provided information are created using the provided information management means 2E and the digest information management means 2F.
  • Provision information transmission means 2H transmits its own search target information and provision information in association with the provider identification information and provision information identification information added using provider identification information addition means 2D. Take a role as a means.
  • the storage means power is read based on the provision information identifier included in the provision information request signal and the requested provision information is read out.
  • search target information to be searched is transmitted (spread) to other devices.
  • connection management means (not shown) is provided to connect to other devices in the information sharing network.
  • the connection management means manages connection destination information of other devices and connections to the devices. Specifically, in order to connect the search link in the information sharing network, the connection destination information of other devices is collected and stored in the information storage means 2G.
  • the connection management means manages the TCP connection (BSD socket) used for actual communication and communication buffering for asynchronous communication along with this connection destination information.
  • Connection destination information of other devices in the information sharing network is acquired at the following two timings. First, when the connection is established, the initial connection destination information and the connection information of other devices that have been stored once by the connected device are received and the connection destination such as the IP address, port number, connection line upload speed, etc. Get information. In addition, after connecting search links using them, the connection environment etc. is obtained directly from the other party.
  • IP address IPv4
  • port number T P
  • upload speed in KbyteZ seconds
  • connection form directly via ZNAT, no ZDDNSZ open port
  • the information receiver side device S3 includes at least a shared collation list accepting means 3A, provided information search means 3B, provided information requesting means 3C, provider identification information accepting means 3D, provided information accepting means 3E, provided information collation Means 3F, information storage means 3G, provision information request acceptance means 3H, provision information transmission means 31, provision information output means 3J.
  • the shared collation list accepting means 3A is a means for receiving a shared collation list limited to information providers, which is collation information including at least provider identification information of an information provider who is permitted to provide information.
  • the information receiver each time an information receiver connects to the system, the information receiver sends a shared collation list request signal to the provided information management device S1, and at that time, the latest shared collation list is sent to the provided information. Received from the management device S1.
  • the shared collation list accepting means 3A determines whether the common collation list (accepted collation information) is a legitimate shared collation list transmitted from the provided information management device. It also has a function as a means!
  • the public key is used to determine the strength of a regular shared collation list using a digital signature, and when the shared collation list is received, it is received in advance. ! /, Composited using the public key of the provided information management device, attached to the shared verification list, received digital authentication using the digital signature, and the shared verification list is a legitimate shared verification list. Determine whether it is a list (determining that it has not been tampered with, determining the legitimacy of the source, etc.).
  • the common collation list is accepted and stored in information storage means 3G described later, and used in provided information collation means 3F described later.
  • the common collation list is discarded without being accumulated.
  • the provided information search means 3B searches the provided information desired by the information recipient from within this system (information sharing network) using a search key that is a keyword such as the title of the provided information, and provides the provided information. It is a means for knowing the connection destination information of the device having. Specifically, when a keyword such as the title of the provided information is entered in a predetermined format displayed on the screen of the information receiver side device S3, the information sharing network The search request information (search key information) is automatically sent to the devices that are connected via the network. Then, the search result information including the connection destination information of the provision information is received from the device having the provision information to be searched or the device that stores the connection destination information of the provision information!
  • the search target information of each device is searched for information corresponding to the search key, and the search target information corresponding to the search key is received as search result information.
  • the search target information includes the connection destination information of the device having the provision information and the information provider identifier of the provision information.
  • the devices searched here may be all of the provided information management device Sl, the information provider side device S2, the other information receiver side device S3, or any of the devices present in the system. ,.
  • a search request is propagated to a remote device until a certain condition (having search target information including a search key) is satisfied, and a search key that matches the search condition is packed in a response message. And come back.
  • the information receiver specifies a search keyword and performs a search
  • the information receiver side device S3 creates search request information using file exchange software. Since the search request information includes a search condition, the search start device packs the search key in the request message and sends the search request information to the adjacent device. If the device that received the request finds a search key that hits this condition, it knocks the search key to the request and passes the request to the next device.
  • the search target information including the search key of the search result is returned to the search source by going back the route.
  • the provided information search means 3B of the present embodiment uses a search link network to search the search target information including the search key information and to spread the search target information.
  • the sender of the search key packs the search key in the search information and sends it out, and the receiver sends out the search key by unpacking it.
  • this system treats the diffusion of search keys as a kind of search. Specifically, once a spreading request is sent once every 30 seconds and a spreading request is issued to a neighboring device that has a search link, the neighboring device will search for a search message that includes a search key in the spreading request as a response message. Packs information and returns it. In this way, the search target information including the search key is distributed to the network connected by the search link.
  • the determination of which device is adjacent is based on, for example, the line speed.
  • Provided information request means 3C is used when requesting provided information to a device having provided information searched using provided information search means 3B.
  • the connection destination information of the device having the provided information is read, and a PtoP connection is established with the device. After that, a provision information request signal is transmitted to a device having provision information.
  • the information receiver side device S3 also has connection management means (not shown) that the information provider side device S2 has, and establishes a connection with the device having the provision information using the connection management device. To do.
  • the provider identification information accepting means 3D has a function of receiving and accepting at least information related to the provider identification information associated with the provision information provided by the information provider.
  • provider identification information associated with search target information sent together with the search result is also included.
  • Provided information receiving means 3E is means for receiving provided information requested using provided information requesting means 3C.
  • the search target information and the like are also included in the provider identification information. Receive in the associated state.
  • the provided information collating means 3F is based on the collation information determined to be regular collation information! /, The identification information included in the collation information, and the identification information received by the identification information receiving means. And a control means for outputting a control signal for controlling the provided information received by the provided information receiving means in accordance with the contents of the matching information.
  • the provider information receiving unit accepts it. If the provided information is the information provided by the information provider authorized to provide information, and the information provided by the information provider authorized to provide the information is This is a verification means for outputting a storage permission signal indicating permission, and has the function of verifying the received information provided by an appropriate information provider.
  • the provision information and provision are provided using the hash function. The digest information is created from the person identifier.
  • a public key associated with the provider identifier is searched from the shared matching list, and the public information and the digest information are used to search for the provided information in an authentication server such as a provided information management device.
  • an authentication server such as a provided information management device.
  • a storage permission signal indicating that storage of the provided information is permitted is output.
  • the information storage means 3G stores a shared collation list, provided information, a program, and the like divided into various areas.
  • provider information such as the provider name, provision qualification, connection destination information (IP address, port number), public key, etc.
  • connection destination information IP address, port number
  • public key etc.
  • shared collation list data including the manager identifier and the like is stored.
  • provided information received from other devices is accumulated in the provided information area, and in the present embodiment, the search target information is based on each provided information identifier (hash value). Stores file name, key information, file size, update time, connection destination information (IP address, port number) of provided information, and stores the provided information (file contents themselves).
  • the search target information and the provided information are associated with the provider identifier of the providing information provider that is the transmission source!
  • the provided information request accepting means 3H is a means for receiving provided information request information transmitted from another information receiver side device S3. Specifically, the provided information request accepting means 3H is provided from another information receiver side device S3. By receiving the provided provision information request signal, the retrieval target is searched from the retrieval target information and provision information stored in the provision information area based on the provision information identifier or the like.
  • the provision information transmitting means 31 transmits provision information stored in the provision information area when receiving a provision information request signal transmitted from another information receiver side device S3. is there. More specifically, the provided information request receiving means 3H provides its own provided information area. As a result of searching the information in the area, if the information requested by another device matches the provided information stored in its own provided information area, the matching search target information and provided information are requested in a state associated with the provider identifier. Then send it to the device. Note that information is directly transmitted to and received from the receiving apparatus using the connection management means. Further, the distribution of search target information and the like are executed using the provided information transmitting means 31.
  • Provided information output means 3J is an output means for outputting provided information based on the collation result of provided information collating means 3F, and triggered by receiving an output enable signal by provided information collating means 3F. Then, using a dedicated playback program or a general-purpose playback program, an image is displayed on the display screen of the information receiver side device S3 as shown in FIG. 3 or FIG. 4, and music is played back.
  • the provided information management device S1 uses the provider information receiving means 1A, the registration means (not shown), etc., and registration request information from the information provider side device S2 that is newly desired to be registered. Is received (step S1: Y), a format for receiving various provider information necessary for registration is transmitted to the information provider side device S2, and the provider information is received according to the format (step S2). Then, the identification information management means 1B determines whether or not the received provider information satisfies a predetermined registration requirement item, thereby giving a provider identifier that is provider identification information.
  • a permission decision is made to determine whether or not the request is satisfied, a unique provider identifier is given to a provider who satisfies certain requirements, and a key generation command signal is output to the key generation means 1D. Then, in response to the key generation command signal, the key generation means 1D generates a public / private key pair for the provider identifier (step S3). Then, the management collation list creation means 1E receives various management information (provider name, provision qualification) in association with the provider identifier when receiving the management collation list creation signal from the identification information management means 1B. Then, add the IP address and port number as the connection destination information (public key, secret key, etc. as encryption key information) to the administrator list to create the latest management verification list (step S4).
  • the provider identifier added to the management verification list is registered together with the secret key. Is sent to the information provider side device S2 that has been sent (step S5).
  • the shared collation list creating means 1F adds a new information provider to the common collation list, and the recipient of the provider-provided information is authorized.
  • the latest shared collation list including the provider identification information necessary for determining whether the information provided by the provider is correct or not is created (step S6).
  • step S7 After adding authentication information to the shared collation list (step S7), the shared collation list file is shared with the information sharing network (step S8).
  • to share on the information sharing network means that the information sharing network is used to disclose various information (files) that the device itself has and other devices can receive the information. That means.
  • all the devices constituting the information sharing network share the same file exchange software, and share files on the information sharing network using a communication method such as P2P. Realize.
  • the digest management means uses the digest management means.
  • the search target information that serves as a guideline for searching for the provided information desired by the user is created from the provided information, and the provided information is created using the provided information management means 2E (step S102).
  • the digest information management means 2F first creates the provision information identifier (hash value), and then adds the name information of the file to the provision information identifier (hash value),
  • One search target information is created for one provided information by associating the index information such as the IP address indicating the size, update time, and connection destination information of the provided information body with the port number.
  • the provided information management means 2E In addition to the provided information body (music information, video information, etc.), the provided information management means 2E also provides additional information related to the provided information (for example, content title, index time, artist name as index information) , Album name, genre, content, sales price when selling the provided information, viewing information such as viewing frequency, viewing availability, etc. ) Is associated with the provision information identifier (hash value) to create one provision information.
  • the provided information collating means 3F which will be described later, generates digest information used for digital authentication.
  • the hash information such as SHA-1 is used to generate digest information that is a hash value from the provided information and its own provider identification information (provider identifier).
  • step S103 when digital authentication is performed on the digest using the secret key and the digest information (step S103), the search target information and the like are stored in the provided information area, and other devices It is disclosed and shared in a state where it can be transmitted in accordance with a powerful connection (step S104).
  • the information receiver side device S3 requesting the provision information connects to the provision information management device S1 and logs in (step S201: Y), and receives the latest shared collation list (step S201).
  • step S201: Y the latest shared collation list
  • step S201: Y the latest shared collation list
  • Digital authentication is performed on the shared collation list via the authentication server, and it is determined whether the shared collation list is a legitimate shared collation list (determination of tampering, legitimacy of origin) Etc.). Then, the authorized shared collation list for which authentication has been approved is stored in the information storage means 3G (step S203: Y). If the authentication is not approved (not in the regular shared collation list), the shared collation list is discarded (step S205), and a new shared collation list is received again.
  • step S204 based on the search target information spread to each device, the provided information desired to be downloaded is searched (step S204).
  • connection is made to an information sharing network, and search is performed using the P2P file sharing software.
  • the name (or part of the file) you are looking for is entered in the [Search word] text box displayed on the display means of the information receiver device S3, and the search key is pressed when the [Search] button is pressed. Accept.
  • Each device in the information sharing network Since it is connected in a network, it sends file search request data to other neighboring devices. If that device does not have a search key, the search destination device is repeatedly requested (sent) for the search request data to the next device. Then, the search request data is transmitted to all devices connected to the information sharing network, and individual devices can be searched. In this way, the search request is propagated through several devices, and the search target information having the search key together with the search match data is received as the search result information from the device having the search target information matching the search key.
  • the information receiver side device S3 displays a list of files that meet the conditions specified based on the received search match data and the like on the display means.
  • the information receiver side device S3 downloads the provided information found by the search, and uses the P2P method with the device having the provided information based on the connection destination information included in the search target information. A direct connection is made and a provision information request signal is transmitted (step S206).
  • step S207 when the provided information and the information provider identifier associated with the provided information are received (step S207), the provided information and the provider identifier power also create digest information using the matching means. To do. (Step S208).
  • a public key associated with the provider identifier is searched from the shared collation list, and using the public key, authentication information (not shown) of the provided information management device S1 is used to provide the provided information.
  • step S209: Y the output means of the information receiver side device S3, such as playing music using the output means or displaying the video, is used. Output advertisement information.
  • the provision information is accumulated in the provision information area (step S211), and the provision information is shared on the information sharing network (step S213).
  • the received data such as provided information is deleted (step S212).
  • the device having the provision information requested by the information receiver side device S3 is directly connected to the information receiver side device S3 by P2P and receives the provision information request signal, it is included in the provision information request signal. Provision information requested from the storage means based on the provision information identifier The information is read and transmitted to the information receiver side device S3.
  • the provided information management device S1 uses the unauthorized provider information receiving means 1A (not shown), for example, unauthorized information regarding an unauthorized information provider that provides illegal copy content, etc.
  • the provider information is received and accepted (step S301)
  • the corresponding information provider is searched from the management collation list based on the provider identifier included in the unauthorized provider information (step S302).
  • the provider identification information of the unauthorized provider is deleted from the management verification list (step S303), and the provider identification information of the unauthorized provider is deleted from the shared verification list (step S304).
  • authentication is added to the new shared collation list from which the provider identification information of the illegal provider has been deleted (step S305), and the shared collation list is shared on the information sharing network (step S306).
  • the provided information management device S1 uses the unauthorized provider information receiving means 1A (not shown), for example, to provide unauthorized information related to an unauthorized information provider that provides illegal copy content, etc.
  • the provision information such as music content provided by an unauthorized information provider is deleted from the system (in the information sharing network) using the deletion instruction means 1H or the like.
  • the provision information identifier of the unauthorized information provider to be deleted is specified based on the provider identification information received using the unauthorized information receiving means. Then, a deletion program that instructs the information receiver side device S3 to delete the provision information associated with the provider identifier of the unauthorized information provider from the provision information already stored in the information receiver side device S3 is provided to the information receiver side device S3. The information is forcibly transmitted and the information provided by an unauthorized information provider is deleted.
  • the provided information received by the provided information accepting means 3E is collated to confirm whether the provided information is provided by the information provider authorized to provide the information, and the information permitted to provide the information
  • the provision information collating means 3F that outputs an accumulation permission signal for permitting accumulation of the provision information, and the provision information permitted to be accumulated by the provision information collating means 3F
  • the information storage means 3G for storing the provider identification information associated with the provided information, and the provided information stored in the information storage means 3G, the provided information request signal transmitted from the other information receiver side device S3.
  • the provision of the provision information transmission means 31 for transmission upon reception allows the information receiver side device S3 to allow only the provision information provided by the information provider authorized to provide the information. , Incorrect proposal Sharing and diffusion of information can be effectively prevented.
  • the provider identification information management means 1B for managing the provider identification information of the information provider permitted to provide information, and the provision of which information provision is permitted based on the provider identification information management means 1B
  • Provided information management device S1 comprising: a shared collation list creation means 1F for creating a collation list including user identification information; and a shared collation list transmission means 1G for outputting the collation list created in the shared collation list creation means 1F Therefore, it is possible to appropriately manage the collation list and prevent distribution of illegal provision information more effectively.
  • the provision information management device S1 has a deletion instruction means 1H that transmits a deletion instruction of the provision information stored in the information receiver side device S3 based on the provider identification information.
  • the provision information management system can be maintained by deleting the provision information.
  • provision information management device S1 includes provision information storage means II for storing provision information transmitted from the provider side device, there are few devices having provision information in the system. ! In any case, information recipients can get the information they want.
  • the information provider side device S2 transmits management identification information for identifying the provided information management device S1 in association with the provided information or the provider identification information, so that the information provider side device S2 transmits the management identification information in the system. It is also possible to manage the flowing information in a batch.
  • provided information receiver side device S3 has connection destination search means for searching connection destination information of a device having provided information, and an information sharing network using a communication model such as PeertoPeer By establishing a connection with a device having provision information based on the connection destination information using a work and directly transmitting / receiving the provision information, it is possible to improve provision efficiency of the provision information.
  • information is provided in the information sharing network by running a collation list for information providers only, including the identification information of the providers permitted to provide information, in the information sharing network.
  • the information providers who can be managed were limited and the provided information was managed.
  • the information must be distributed in the information sharing network !, Kena! /, (Prohibit distribution) Provided information identification information and the provided information are transmitted
  • the identification information such as the provider identification information of the information provider is managed as a collation list for automatic deletion and matches the identification information included in the collation list
  • the information receiver side device S3 Describes a configuration in which the provision information associated with the identification information is ignored without being received, or the provision information stored in the information storage means 3G is deleted.
  • the provided information management device S1 manages a collation list for automatic deletion, which is collation information for excluding illegal provision information from the information sharing network.
  • the management collation list creation means 1E of the provided information management device S1 receives information on an illegal information provider or illegal provision information from an unauthorized information reception means (not shown), the unauthorized information provider And a function to create a management collation list that includes identification information related to illegally provided information.
  • the management collation list which is a deletion collation list, is list data that can list information providers and information to be prohibited or deleted from distribution to this system. It is necessary for management. Further, only the administrator uses the management verification list.
  • the identification information and the identification information included in the management collation list stored in the information storage means 1H And compare. If there is no identification information that is subject to deletion or prohibition in the existing management collation list, the information provider to be deleted or information (identification information) related to the information to be deleted is added, so that it is always up-to-date.
  • the management verification list may include only the identification information or the information provider information ( Provider name, provision qualification, IP address and port number as connection information, public key and secret key as encryption information, etc.) may be held as data associated with information provider identifier.
  • the management collation list is created mainly based on the hash value that is the provided information (file) identifier.
  • the hash value that becomes the provision information (file) identifier summarizes the entire contents of one provision information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
  • the management collation list creation means 1E outputs a deletion command signal for deleting the provision information stored in the provision information area accumulated in the information accumulation means 1H based on the identification information. Specifically, the identification information included in the management collation list is collated with the identification information of the provision information stored in the provision information area stored in the information storage means 1H. Outputs a command signal for deleting the provision information associated with the identification information.
  • Shared collation list creation means 1F is collation list creation means for creating a collation list for managing the provided information based on the identification information.
  • the illegal collation information reception means Based on the information sharing network, and creates a collation list for automatic deletion that includes identification information about the information provider and provision information to be deleted. However, it has a function to create a shared collation list for automatic deletion including identification information necessary for determining whether or not the information is provided by an unauthorized provider.
  • the shared collation list for automatic deletion is list data that can list information providers that are prohibited from providing information to this system and information that is prohibited from being distributed. Share with all users.
  • the management collation list creation means 1E when receiving information (identification information, etc.) related to unauthorized providers and unauthorized information, the identification information and the information storage means 1H are stored.
  • the identification information included in the shared collation list that has been stored is compared. If there is no identification information that is subject to deletion or prohibition in the existing shared collation list, the information provider to be deleted or information (identification information) related to the provision information is added, and the latest information is always updated.
  • the shared collation list may contain only identification information, or the information provider information (provider name, provision qualification, IP address as connection destination information, port number, etc.) (A public key that becomes information) may be held as data associated with the information provider identifier.
  • a shared collation list for automatic deletion is created mainly based on the hash value that is the provided information (file) identifier.
  • the hash value that serves as the provided information (file) identifier summarizes the entire contents of one provided information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
  • the shared collation list includes an administrator identifier as management identification information and a guarantee that the collation list is a legitimate list (has been tampered with! ) And the information on the private key of the provided information management device used for the digital signature.
  • the shared collation list transmission unit 1G is a collation list output unit that outputs the shared collation list created by the common collation list creation unit.
  • information on the entire shared matching list is output to the information receiver side device S3 that has logged in for the first time. However, after the second time, information is added from the existing shared matching list. Only the changed part is output as the change information of the shared collation list.
  • the identification information (newly prohibited identification information, etc.) that is the changed part of the shared collation list changed by the shared collation list creation means 1F includes an administrator identifier that becomes management identification information, A digitally authenticated digital signature is added to guarantee that the verification list is a legitimate list (guaranteeed that it has been tampered with, and the origin is guaranteed), and is added to the private key of the provided information management device S 1 In the encrypted state, the information receiving side device S3 has a function of transmitting information for changing the shared collation list of the information receiving side device S3.
  • the shared verification list request signal that is the identification information request signal transmitted from the information receiver side device S3
  • the latest shared verification list at that time is read from the information storage means II described later
  • the shared verification list is added to the information receiver side device S3, which is the transmission source of the request signal, with information that can determine that the shared verification list is legitimate. Send a strike.
  • the information storage means II stores various data such as a management collation list, a common collation list, provided information, a program, etc. in each area.
  • the management collation list area mainly stores the management collation list created based on the above-mentioned provided information (file) identifiers! And
  • the information provider identifier of the information provider that is subject to deletion or prohibition is stored. Based on each information provider identifier, the provider name, provision qualification In addition, it stores data for the administrator collation list including provider information such as connection destination information (IP address, port number), and encryption key information (public key, private key).
  • provider information such as connection destination information (IP address, port number), and encryption key information (public key, private key).
  • the provided information identifier provided by the provider is also stored in association with the provider identifier.
  • the management collation list data includes an administrator identifier as management identification information and a guarantee that the collation list is a legitimate list (guarantee that tampering has not occurred, source guarantee
  • the encrypted information (public key, private key) of the provided information management device is stored and stored.
  • the data of the shared collation list shall be provided with an administrator identifier as management identification information, and a guarantee that the collation list is a legitimate list (guaranteeed that it has been tampered with, guarantee of origin)
  • the digitally authenticated digital signature information and the private key of the provided information management device S 1 are stored in association with each other!
  • provided information transmitted from the information provider side device S2 is accumulated.
  • each provided information identifier (hash value)
  • the information providing apparatus S2 has the same configuration as that of the first embodiment.
  • the information supply / demand side device S3 prohibits provided information having identification information (provider identification information or provided information identification information) that matches the identification information included in the automatic verification shared collation list. (Not transmitted / received) Also, in the case of the provided information stored in the information storage means II, it has a function (program) for deleting the provided information.
  • the shared collation list accepting means 3A of the information supply / demand side apparatus S3 is a means for accepting a shared collation list (deletion collation list) that is collation information including identification information of provision information to be prohibited or deleted.
  • a shared collation list request signal is transmitted to the provided information management device S1, and the latest shared collation list at that time is received from the provided information management device S1.
  • the entire shared collation list is received for the first time, but thereafter, only information on the changed part of the shared collation list is received.
  • the shared collation list accepting means 3A the collation information (accepted collation information), collation information for determining whether the information is related to the regular shared collation list transmitted from the provided information management device. It also has a function as a determination means.
  • the public key is used to determine the strength of a regular shared collation list using a digital signature, and when the shared collation list is received, it is received in advance.
  • ! / Composited using the public key of the provided information management device, attached to the shared verification list, received digital authentication using the digital signature, and the shared verification list is a legitimate shared verification list. Judge whether it is a list (judgment that it has not been tampered with, judgment of legitimacy of origin, etc.).
  • the common collation list is accepted and accumulated in information storage means 3G described later.
  • the information receiver side device S3 performs information storage means 3 described later.
  • the shared collation list already stored in G and the common collation list acceptance means 3A The change information related to the shared collation list determined to be legitimate is compared. If the change information has, for example, identification information that is newly deleted or prohibited, the identification information is added to the common collation list. Change the data.
  • the identification information receiving means 3D has a function of receiving and receiving at least identification information such as provider identification information and provision information identification information.
  • the provided information collating means 3F is based on the collation information determined to be regular collation information! /, Based on the identification information included in the collation information, and the identification information received by the identification information receiving means 3D. And a control means for outputting a control signal for controlling the provided information received by the provided information receiving means 3 E according to the contents of the matching information.
  • identification information such as provider identification information or provision information identification information received by the provider identification information receiving means 3D is compared with identification information included in the shared verification list, and the shared information If it matches the identification information included in the collation list, a control signal is output indicating that the provided information associated with the identification information is not received.
  • identification and management are mainly performed based on the distribution information (file) identifier based on the hash value.
  • identification information such as provider identification information and provision information identification information already associated with the provision information stored in the information storage means 3G is collated with the identification information included in the shared collation list. If it matches the identification information included in the shared collation list, a control signal is output to delete the provision information associated with the identification information from the information storage means 3G.
  • the information storage means 3G stores a shared collation list for automatic deletion, provided information, a program, and the like divided into various areas.
  • the shared collation list created based on the information and the hash value is mainly stored as the provided information (file) identifier.
  • information provider identifiers to be deleted or prohibited are stored.
  • the provider name, provision qualification, connection destination information IP Stores shared collation list data including administrator identifiers in addition to provider information such as addresses and port numbers) and public keys.
  • the shared collation list data also stores the public key information of the provided information management device S1 in order to determine whether the collation list is a regular list.
  • the provided information area stores the provided information received by other devices, and in the present embodiment, the information to be searched is based on each provided information identifier (hash value). Stores file name, key information, file size, update time, connection destination information (IP address, port number) of provided information, and stores the provided information (file contents themselves).
  • the search target information and the provided information are associated with the provider identifier and the provided information identifier of the providing information person who is the transmission source.
  • the mode in which the information receiver side device S3 actively acquires the provided information using the information sharing network has been described.
  • a matching list for automatic download is made to flow in the information sharing network, and the information receiver side device S3 in the information sharing network matches the identification information included in the matching list. Describes a configuration that automatically (passively) downloads provided information.
  • the provided information management device S1 generates a collation list for automatic download including identification information of provided information to be automatically (passively) downloaded to the information receiver side device S3 in the information sharing network. to manage.
  • the management collation list creation means 1E possessed by the provided information management device S1 uses the provided information diffusion accepting means (not shown) to automatically (passively) download provided information to the information receiver side device S3.
  • the identification information When the identification information is received, it has a function of creating a management collation list including the information provider concerning the provision information to be automatically downloaded and the identification information concerning the provision information.
  • the collation list for management which is the collation list of the list, is list data that can list provided information that is automatically downloaded to the information receiver side device S3, and is necessary for the administrator to manage the provider information, etc. It will be.
  • the management verification list is used only by the administrator.
  • the identification information and the information storage means 1H Compare with the identification information stored in the management verification list. If there is no current identification information in the existing management collation list, the new identification information is added and the latest management collation list is always created.
  • the management verification list may contain only identification information, or the information provider information (provider name, provision qualification, IP address and port number as connection information, etc.) Public key, secret key, etc.) may be held as data associated with the information provider identifier.
  • the management collation list is created mainly based on the hash value that is the provided information (file) identifier.
  • the hash value that serves as the provided information (file) identifier summarizes the entire contents of one provided information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
  • the shared collation list creation means 1F is a collation list creation means for creating a collation list for automatic download for managing the provided information based on the identification information. This is to create a collation list for automatic download that includes information providers of information to be downloaded and information related to the information to be downloaded (identification information). It has a function to create a shared collation list that includes identification information necessary to determine whether or not. Note that the shared collation list for automatic download is list data that can list provided information to be automatically downloaded, and is shared by all users who use this system.
  • the identification information and the information storage means 1H The identification information included in the shared collation list for automatic download is compared. If there is no such identification information in the existing shared collation list, information (identification information) on the provided information that can be automatically downloaded is added, and the latest shared collation list is always created.
  • the shared collation list may have only identification information, or the information provider information (provider name, provision qualification, IP address and port number as connection destination information, etc.) May be held as data associated with the information provider identifier.
  • the shared collation list is created mainly based on the hash value that is the provided information (file) identifier.
  • the hash value that becomes the provision information (file) identifier summarizes the entire contents of one provision information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
  • the shared collation list includes an administrator identifier serving as management identification information, and a guarantee that the collation list is a legitimate list (warranted! ) Is associated with a digitally authenticated digital signature and private information of the provided information management device.
  • the shared collation list transmission unit 1G is a collation list output unit that outputs the shared collation list created by the common collation list creation unit.
  • the information of the entire shared collation list is output for the first time, but only the part that has been changed from the existing shared collation list is changed for the second and subsequent times. Output as information.
  • management information that becomes management identification information is added to identification information (identification information related to provided information to be newly downloaded automatically) that is a changed part of the shared verification list changed by the shared verification list creation means 1F.
  • identification information identification information related to provided information to be newly downloaded automatically
  • a digital signature that is digitally authenticated to guarantee that it is a legitimate list of the collation list (tampering, guarantee of origin, guarantee of origin). It has a function of transmitting information for changing the shared collation list of the information receiver side device S3 to the information receiver side device S3 in a state encrypted with the secret key. That is, the identification information transmitted from the information receiver side device S3 is required.
  • the shared collation list request signal that is a solicitation signal
  • the latest shared collation list at that time is read from the information storage means II described later, and information that can be used to determine that the shared collation list is legitimate.
  • the shared verification list is transmitted to the information receiver side device S3 which is the transmission source of the request signal.
  • the information storage means II stores various data such as a management collation list, a common collation list, provided information, a program, etc. in each area.
  • the management collation list area is mainly subject to download automatically! /, Provided information (file) identifier, based on the value of The management collation list created in this way is stored.
  • Provided information (file) identifier based on the value of The management collation list created in this way is stored.
  • an information provider identifier of provided information that is automatically downloaded is stored.
  • the provider name, provision qualification, connection It stores the collation list data for administrators including provider information such as destination information (IP address, port number) and encryption information (public key, private key).
  • the provided information identifier provided by the provider is stored in association with the provider identifier.
  • the management collation list data includes an administrator identifier as management identification information and a guarantee that the collation list is a legitimate list (guarantee that tampering has not occurred, source guarantee
  • the encrypted information (public key, private key) of the provided information management device is stored and stored.
  • the shared collation list created based on the provision information (file) identifier that is to be dynamically downloaded is based on the value and the hash value. Has accumulated.
  • the information provider identifier of the provided information to be automatically downloaded is stored. Based on each information provider identifier, the provider name, Stores the shared collation list data including the administrator identifier in addition to the provider information such as provision qualification, connection destination information (IP address, port number), and public key.
  • the data in the shared collation list is used to guarantee that the collation list is an authorized list (guaranteeed that the collation list has been tampered with, the guarantee of origin).
  • the digitally authenticated digital signature information and the private key of the provided information management device S1 are stored in association with each other.
  • automatically provided offer information is accumulated in the offer information area.
  • the file name that is the search target information is based on each offer information identifier (hash value).
  • the information providing apparatus S2 has the same configuration as that of the first embodiment.
  • the information supply and demand side device S3 provides provision information having identification information (provider identification information or provision information identification information) that matches the identification information included in the shared collation list (automatic download collation list). It has a function (program, etc.) for automatically retrieving and receiving information using the provision information search means 3B, provision information request means 3C, etc., and accumulating provision information that matches the shared collation list.
  • provision information having identification information (provider identification information or provision information identification information) that matches the identification information included in the shared collation list (automatic download collation list). It has a function (program, etc.) for automatically retrieving and receiving information using the provision information search means 3B, provision information request means 3C, etc., and accumulating provision information that matches the shared collation list.
  • the shared collation list accepting means 3A of the information supply / demand side device S3 is an automatic download for collation information including at least provision information identification information of provision information permitted to be automatically downloaded.
  • a means for accepting a shared collation list each time a connection is made to the system, a shared collation list request signal is transmitted to the provided information management device S1, and the latest shared collation list is sent from the provided information management device S1 at that time. Receive.
  • the entire shared collation list is received for the first time, but thereafter, only information on the changed part of the shared collation list is received.
  • the shared collation list accepting means 3A determines whether the information is related to the regular collation list (acknowledgment information received) or the regular shared collation list transmitted from the provided information management device. It also has a function as a determination means.
  • the public key is used to determine the strength of a regular shared collation list using a digital signature, and when the shared collation list is received, it is received in advance.
  • the common collation list is accepted and stored in the information storage means 3G described later.
  • the information receiver side device S3 receives the shared collation list already stored in the information storage means 3G described later and the common collation list reception means 3A, Compared to the change information related to the shared collation list that is determined to exist, if the change information has, for example, identification information that is newly subject to automatic download, the identification information is added to the common collation list, etc. Make data changes.
  • the identification information receiving means 3D has a function of receiving and receiving at least identification information such as provider identification information and provided information identification information.
  • the provided information collating means 3F is based on the collation information determined to be legitimate collation information! /, Based on the identification information included in the collation information, and the identification information received by the identification information receiving means 3D. And a control means for outputting a control signal for controlling the provided information received by the provided information receiving means in accordance with the contents of the matching information.
  • the provided information receiving means 3D based on the provider identification information received by the provider identification information receiving means 3D and the provider identification information received by the collation information receiving means, it is received by the provided information receiving means. If the provided information is the information provided by the information provider authorized to provide the information, and if the provided information indicates automatic download, a storage permission signal indicating that storage of the provided information is permitted The received provided information has a function of verifying the appropriate provided information power instructed for automatic download.
  • the provision information and the provider identifier are used. Create digest information.
  • the public key associated with the provider identifier is searched from the shared matching list, digital authentication of the provided information (digest information) is performed using the public key, and the digital authentication is successful.
  • An accumulation permission signal for permitting accumulation of provided information is output.
  • the information accumulating means 3G stores the shared collation list, provided information, programs, etc. in various areas.
  • the common collation list created based on the information and the hash value is mainly stored as the provided information (file) identifier.
  • the provider information such as provider name, provision qualification, connection destination information (IP address, port number), public key, etc.
  • the data of the shared collation list includes the administrator identifier that is the management identification information, and a guarantee that the collation list is a legitimate list (guaranteeed that it has been tampered with, the guarantee of origin)
  • the digital signature information for digital authentication and the private key of the provided information management device S1 are stored in association with each other.
  • search target information is based on each provided information identifier (hash value).
  • Information file name, file size, update time, connection destination information (IP address, port number) of provided information, and the provided information (file contents themselves) is stored.
  • the search target information and the provided information are associated with the provider identifier of the providing information provider that is the transmission source!
  • the provided information management system shown in the first embodiment provides information in the information sharing network by flowing a collation list for limiting the information provider including the identification information of the provider permitted to provide information in the information sharing network. It is configured to manage information provided by limiting the number of information providers who can provide information.
  • the provided information management system shown in the second embodiment is not allowed to flow through the information sharing network !, Kena! / ⁇ (Distribution prohibited) Provided information identification information and the provided information are transmitted.
  • the identification information such as the provider identification information of the information provider is managed as a collation list and matches the identification information included in the collation list, the information receiver side device S3 The associated provision information is ignored without being received, or the provision information stored in the information storage means 3G is deleted.
  • a collation list for automatic download is made to flow in the information sharing network, and is included in the collation list for the information receiver side device S3 in the information sharing network. It is configured to automatically (passively) download provided information that matches the identification information.
  • the information receiver side device S3 requesting the provided information connects to the provided information management device S1 and logs in (step S401: Y), and the latest shared collation list (shared for information providers only).
  • a collation list, a shared collation list for automatic deletion, and a common collation list for automatic download are received (step S402).
  • step S403 it is determined whether or not the above-mentioned common collation list is a regular list.
  • the shared verification list is duplicated using the public key of the provided information management apparatus that has been received in advance, and is added to the shared verification list and is not illustrated using the digital signature.
  • the digital verification is performed on the shared collation list, and it is determined whether the shared collation list is a legitimate shared collation list (determination that it has not been tampered with, determination of legitimacy of the source, etc.).
  • step S403 Y
  • the regular common collation list is accumulated in the information accumulating means 3G.
  • the information storage means 3G reads the already shared collation list (step S404) and relates to the existing collation list and the common collation list that is determined to be legitimate. For example, if the change information has new identification information, the data change such as adding the identification information to the shared collation list is performed.
  • step S405 the shared collation list that is not authenticated (is not a regular shared collation list) is discarded (step S405), and a new shared collation list is received again.
  • the information that has the identification information in the shared collation list for automatic download is first used to connect to the information sharing network, and the P2P file sharing software is used. To search.
  • each device in the information sharing network is connected in a network, the identification information of the provided information (file) that is automatically downloaded to other adjacent devices.
  • Search request data using as a search key is transmitted. If the device does not have a search key, the search destination device is repeatedly requested (transmitted) for the search request data to the next device. Then, search request data is transmitted to all devices connected to the information sharing network, and individual devices can be searched. In this way, the search request is propagated through a number of devices, and the search target information having the search key together with the search match data is received as the search result information from the device having the search target information that matches the search key. The search ends when
  • the information receiver side device S3 displays a list of files that meet the conditions specified based on the received search match data and the like on the display means.
  • the information receiver side device S3 downloads the provided information found by the search, based on the connection destination information included in the search target information, and the P2P method with the device having the provided information Connect directly and send a provision information request signal.
  • the power information is collated with the provisional information that the provision information matches with the provision information held in the automatic deletion shared collation list.
  • identification information such as provider identification information and provision information identification information received by the provider identification information receiving means 3D, and identification information included in the shared verification list for automatic deletion are included.
  • the identification information included in the shared verification list for automatic deletion If it matches the information (step S411: Y), the provision information associated with the identification information is not received and a control signal is output (step S415).
  • identification information such as provider identification information and provision information identification information already associated with the provision information stored in the information storage means 3G is collated with the identification information included in the shared collation list. If it matches the identification information included in the shared collation list (step S411: Y), a control signal is output to delete the provision information associated with the identification information from the information storage means 3G. (Step S415).
  • the collation means is used to create digest information from the provided information and the provider identifier.
  • the public key associated with the provider identifier is searched from the shared verification list, and provided using the authentication means (not shown!) Of the provided information management device S1 using the public key. If the digital authentication of the information is received and the digital authentication is successful, the provided information can be obtained using the output means of the information receiver side device S3, such as playing music using the output means or displaying images. Output.
  • the provided information is stored in the provided information area (step S414).
  • step S413: N the received data such as provided information is deleted (step S415).
  • this embodiment also has provision information search means 3B. Therefore, instead of automatic download, it searches for and receives provision information desired by itself. It is also possible. The steps after reception are the same as the steps after S410.
  • the information provider side device and the information receiver side device may provide the provided information management device. It may also serve as a device.
  • the provided information management device also serves as the information provider side device
  • the source information (source) of the provided information such as each music content is used as identification information as identification information added by the identification information adding means. By using it, it becomes easy to manage each provided information.
  • the identification information the provided identifier of the provided information person or the provided information identifier is used.
  • the identification information such as the content name or a certain relationship is used. It is also possible to use identification information that identifies items that have
  • each embodiment mainly explains one piece of identification information such as provider identification information (for example, in the first embodiment, it has provision information person identification information that should limit the provision information person. The power mainly explained about the shared matching list)
  • other identification information may be used. (For example, in the first embodiment, etc., a shared collation list having provided information identification information is used to manage each provided information)
  • the identification information of the provided information used in the collation list is not limited to that described in the present embodiment, and one identification information or a plurality of identification information may be used in combination. .
  • the management collation list and the shared collation list are created separately.
  • a shared collation list can be created based on the management collation list, or a single collation list can be created. Matching squirrel is ignored.
  • the power of using a collation list as collation information for example, including a case where information that is a part of collation information such as information in which collation information is changed without being listed. It is.
  • the shared collation list which is collation information
  • the shared collation list is acquired when connected to the provided information management device S 1 and logged in.
  • the version information A shared collation list to which information is added may be spread in the information sharing network and received at any time when the search target information is spread or when the provided information is acquired.
  • the information receiver side device S3 selects either the shared collation list owned by itself or the received shared collation list based on the version information added to the shared collation list. Compare if is new.
  • the shared collation list receiving unit 3A uses the collation information determination unit, and the shared information is stored in the shared collation list. It is determined whether or not the collation list is a regular list. Specifically, the shared collation list is composited using the public key of the provided information management apparatus that has been received in advance, and is added to the common collation list, and is not illustrated using the digital signature. Digital authentication is performed on the shared collation list via the digital authentication server, and it is determined whether the shared collation list is a legitimate shared collation list. Judgment etc.). Then, the authorized common collation list for which authentication is permitted is stored in the information storage means 3G. If the authentication is not allowed, the shared verification list (not the regular shared verification list) is discarded, and the shared verification list that it had so far is stored as it is.
  • the above-described two types of shared collation list acceptance methods that is, a method in which the information receiver apparatus S3 receives the shared collation list from the information management apparatus S1 provided at the time of login, and the information sharing network It may be possible to use a method that receives a spread shared collation list in the same way as provided information.
  • priority information may be programmed such that the shared collation list received from the provided information management device S1 is preferentially received and the existing shared collation list is rewritten.
  • a list that can be set by the information receiver side device S3 a list having identification information of provision information to be automatically downloaded and identification information of provision information to be automatically deleted even when received are received. You may accumulate

Abstract

Sharing and diffusion of falsely provided information is effectively prevented. An information recipient device (S3) for receiving provided information in a system where provided information such as music contents is circulated over an information sharing network using communication models such as a peertopeer is characterized by comprising check information judging means (3E) for judging whether or not the check information received from a provided information management device (S1) for managing the provided information is normal check information and check means (3F) for checking identification information included in the check information with the identification information received by identification information receiving means according to the check information judged as being normal and outputting a control signal for controlling the provided information received by the provided information receiving means according to the contents of the check information.

Description

明 細 書  Specification
提供情報管理システム、提供情報管理プログラム  Provided information management system, provided information management program
技術分野  Technical field
[0001] 本発明は、音楽コンテンツ等の提供情報を広める際に、不正な提供情報を排除す るために好適に利用される管理システムに関するものである。  TECHNICAL FIELD [0001] The present invention relates to a management system that is suitably used to eliminate unauthorized provision information when disseminating provision information such as music content.
背景技術  Background art
[0002] インターネットに代表される通信システムや装置の発達で、近時、インターネットの データ性及びリアルタイム性を利用した情報交換が盛んになって 、る。(例えば特許 文献 1参照)  [0002] With the development of communication systems and devices typified by the Internet, information exchange using the data and real-time properties of the Internet has recently become popular. (For example, see Patent Document 1)
[0003] このようなものとして、例えば特定のファイル交換ソフトを各装置にインストールして 形成される情報共有ネットワーク内で、音楽コンテンツ等を自動的に各装置に拡散さ せるといったシステムがある。  As such a system, for example, there is a system in which music content or the like is automatically diffused to each device in an information sharing network formed by installing specific file exchange software on each device.
特許文献 1:特開平 5 - 236057号公報  Patent Document 1: Japanese Patent Laid-Open No. 5-236057
発明の開示  Disclosure of the invention
発明が解決しょうとする課題  Problems to be solved by the invention
[0004] し力しながら、前記システムにおける各コンテンツの送受信は、サーバを介さず提 供情報であるコンテンツを持つ装置と情報受給者側装置との間で直接送受信される ため、著作権等を有しない不正な音楽コンテンツ等が当該ネットワーク内に出回るこ とを防止することは大変困難であった。 However, since the transmission / reception of each content in the system is directly transmitted / received between the device having the content as the provided information and the information receiver side device without going through the server, the copyright etc. It was very difficult to prevent unauthorized music content, etc., that we did not have on the network.
課題を解決するための手段  Means for solving the problem
[0005] そこで、本願発明は、音楽コンテンツ等の提供情報を PeertoPeer等の通信モデル を用いた情報共有ネットワーク上に最初に提供する情報提供者側装置と、当該提供 情報を有する装置の接続先情報を検索する接続先検索手段を有し、前記情報共有 ネットワークを利用して前記接続先情報に基づいて提供情報を有する装置と接続を 確立し、直接に提供情報を受信すると共に、当該受信した提供情報を前記情報共有 ネットワーク内に提供可能とする情報受給者側装置と、当該提供情報を管理する提 供情報管理装置とを有する提供情報管理システムであって、前記情報提供者側装 置が、情報提供者を識別する提供者識別情報や前記提供情報を識別する提供情報 識別情報等の識別情報を、自己が提供する提供情報に付加する識別情報付加手段 と、自己が提供する提供情報を、前記識別情報と関連付けて送信する提供情報送信 手段とを具備し、前記提供情報管理装置が、前記識別情報に基づいて、前記提供 情報を管理するための照合情報を作成する照合情報作成手段と、前記照合情報作 成手段にて作成した照合情報を出力する照合情報出力手段とを具備し、前記情報 受給者側装置が、前記提供情報と関連付けられた前記識別情報を受け付ける識別 情報受付手段と、当該識別情報と関連付けられた提供情報を受け付ける提供情報 受付手段と、前記識別情報に関する情報を含んだ照合情報を受け付ける照合情報 受付手段と、前記照合情報受付手段にて受け付けた照合情報が、正規の照合情報 であるかを判定する照合情報判定手段と、前記照合情報判定手段にて、正規の照 合情報であると判断した照合情報に基づ!/、て、当該照合情報に含まれる識別情報と 、前記識別情報受付手段により受け付けた識別情報とを照合し、当該照合情報の内 容に合わせて前記提供情報受付手段により受け付けた提供情報を制御する制御信 号を出力する照合手段と、前記照合手段により蓄積を許可された提供情報及び当該 提供情報と関連付けられた識別情報を蓄積する提供情報蓄積手段と、前記提供情 報蓄積手段に蓄積した提供情報を、他の情報需給者側装置から送信された提供情 報要求信号を受信することを契機に送信する提供情報送信手段とを具備してなるこ とを特徴とする。 [0005] Therefore, the present invention provides an information provider side device that first provides provided information such as music content on an information sharing network using a communication model such as PeertoPeer, and connection destination information of the device having the provided information. A connection destination search means for searching for, and using the information sharing network, establishes a connection with a device having provided information based on the connection destination information, receives the provided information directly, and receives the received provision A provided information management system comprising: an information receiver side device that can provide information in the information sharing network; and a provided information management device that manages the provided information, the information provider side device Identification information adding means for adding identification information such as provider identification information for identifying the information provider and provision information for identifying the provision information to the provision information provided by the device, and provision provided by the device Providing information transmitting means for transmitting information in association with the identification information, and the providing information management device creates matching information for managing the providing information based on the identification information Identification information reception means for receiving the identification information associated with the provided information, wherein the information receiver side device comprises a verification information output means for outputting the verification information created by the verification information creation means Means, receiving information receiving means for receiving providing information associated with the identification information, matching information receiving means for receiving matching information including information relating to the identification information, and The verification information received by the verification information reception unit is a verification information determination unit that determines whether the verification information is regular verification information, and the verification information that is determined by the verification information determination unit as regular verification information. Based on the identification information included in the verification information and the identification information received by the identification information receiving means, the provision information received by the provision information receiving means according to the content of the verification information Collating means for outputting a control signal for controlling information, provided information accumulating means for accumulating provided information permitted to be accumulated by the collating means and identification information associated with the provided information, and provided information accumulating means Provision information transmitting means for transmitting the provision information stored in the information when receiving the provision information request signal transmitted from the other information supplier-side device. .
[0006] これにより、不正な提供情報の拡散を防止するという効果を維持しつつ、本システ ム内に提供情報を提供することができる装置を増やし、正規の提供情報に関する伝 播効率を飛躍的に向上させることができる。  [0006] This increases the number of devices that can provide provision information in the system while maintaining the effect of preventing the spread of illegal provision information, and dramatically increases the propagation efficiency for legitimate provision information. Can be improved.
[0007] また、情報共有ネットワークの外部力も提供情報を管理する形態ではないため、当 該管理形態を利用したハッキングの対象となることを回避することができる。  [0007] Further, since the external power of the information sharing network is not a form for managing the provided information, it is possible to avoid being a target of hacking using the management form.
[0008] 具体的な構成としては、前記情報提供者側装置が、情報提供者を識別する提供者 識別情報を自己が提供する提供情報に付加する提供者識別情報付加手段と、自己 が提供する提供情報を、当該情報提供者を識別する提供者識別情報と関連付けて 送信する提供情報送信手段とを具備し、前記提供情報管理装置が、情報提供を許 可する情報提供者の提供者識別情報を管理する提供者識別情報管理手段と、前記 提供者識別情報管理手段に基づいて情報提供を許可された提供者識別情報を含 む照合情報を作成する照合情報作成手段と、前記照合情報作成手段にて作成した 照合情報を出力する照合情報出力手段とを具備し、前記情報受給者側装置が、前 記提供情報と関連付けられた前記提供者識別情報を受け付ける提供者識別情報受 付手段と、当該情報提供者を識別する提供者識別情報と関連付けられた提供情報 を受け付ける提供情報受付手段と、情報提供を許可された情報提供者の提供者識 別情報に関する情報を含んだ照合情報を受け付ける照合情報受付手段と、前記提 供者識別情報受付手段により受け付けた提供者識別情報と、前記照合情報受付手 段により受け付けた提供者識別情報とに基づいて、前記提供情報受付手段により受 け付けた提供情報が、情報提供を許可された情報提供者力ゝらの提供情報であるかを 照合し、情報提供を許可された情報提供者力ゝらの提供情報である場合には、提供情 報の蓄積を許可する旨の蓄積許可信号を出力する照合手段と、前記照合手段により 蓄積を許可された提供情報及び当該提供情報と関連付けられた提供者識別情報を 蓄積する提供情報蓄積手段と、前記提供情報蓄積手段に蓄積した提供情報を、他 の情報需給者側装置カゝら送信された提供情報要求信号を受信することを契機に送 信する提供情報送信手段を有して!/、ることが考えられる。 [0008] As a specific configuration, the information provider side device provides provider identification information adding means for adding provider identification information for identifying the information provider to the provided information provided by the information provider side device, Provision information transmitting means for transmitting the provision information in association with the provider identification information for identifying the information provider, and the provision information management device permits provision of information. A collation that creates provider identification information management means for managing provider identification information of permitted information providers and collation information including provider identification information permitted to provide information based on the provider identification information management means. Information generating means; and collation information output means for outputting the collation information created by the collation information creating means, and the information receiver side device displays the provider identification information associated with the provision information. Provider identification information receiving means for receiving information, provision information receiving means for receiving provided information associated with the provider identification information for identifying the information provider, and provider identification information of an information provider permitted to provide information Collation information accepting means for accepting collation information including information on the provider, provider identification information accepted by the provider identification information accepting means, and acceptance by the collation information accepting means. The provided information received by the provided information receiving means is verified based on the provided provider identification information to verify whether the provided information is provided by the information provider authorized to provide the information, and the information is allowed to be provided. Information provided by the information provider, the collation means for outputting the accumulation permission signal for permitting the accumulation of the provision information, the provision information permitted to be accumulated by the collation means, and the relevant information Provision information storage means for storing the provider identification information associated with the provision information, provision information request signals transmitted from other information supply / demand side devices received the provision information accumulated in the provision information storage means It is conceivable to have a provision information transmission means to send it when triggered!
[0009] これにより、情報共有ネットワーク内に情報提供をできる情報提供者を限定し、正規 の提供情報が伝播するように管理することができる。  [0009] Thereby, it is possible to limit the information providers who can provide information within the information sharing network, and to manage so that regular provision information is propagated.
[0010] 更に、前記提供情報管理装置が、前記識別情報に基づ!、て、情報受給者側装置 に蓄積された提供情報の削除指示を送信する削除指示手段を有することで、万が一 、不正な提供情報がシステム内に流出してしまったとしても、当該不正な提供情報を 削除して適切な提供情報管理システムを保つことができる。 [0010] Further, the provision information management device has a deletion instruction means for transmitting a deletion instruction of the provision information stored in the information receiver side device based on the identification information. Even if the correct provision information leaks into the system, the illegal provision information can be deleted to maintain an appropriate provision information management system.
[0011] また、前記提供情報管理装置が、前記情報提供者側装置から送信される提供情報 を蓄積する提供情報蓄積手段を有することにより、システム内に提供情報を有する装 置が少な!/、場合であっても、情報受給者は望む提供情報を確実に入手できる。  [0011] Further, since the provision information management device has provision information storage means for storing provision information transmitted from the information provider side device, there are few devices having provision information in the system! /, Even in this case, the information receiver can reliably obtain the desired information.
[0012] カロえて、前記照合情報作成手段が、情報共有ネットワーク内での流通を禁止する 提供情報や、削除の対象として!、る提供情報に関する識別情報を含む照合情報を 作成するものであり、前記提供情報照合手段が、正規の照合情報であると判断した 照合情報に基づいて、当該照合情報に含まれる識別情報と、前記識別情報受付手 段により受け付けた識別情報とを照合し、当該照合情報に含まれて!/、る識別情報と 合致した場合には、当該識別情報と関連付けられた提供情報は受信しない旨の制 御信号を出力する、又は、当該識別情報と関連付けられた提供情報を情報蓄積手 段力 削除する旨の制御信号を出力することも考えられる。 [0012] The collation information creating means is provided with collation information including identification information relating to provision information prohibiting distribution in the information sharing network and information to be deleted! The identification information included in the verification information and the identification information received by the identification information receiving means based on the verification information determined by the provided information verification means to be regular verification information. If the ID matches the identification information included in the verification information, a control signal is output indicating that the provided information associated with the identification information is not received, or the identification information It is also conceivable to output a control signal indicating that the provided information associated with the information is deleted.
発明の効果  The invention's effect
[0013] 各装置にて提供情報を送受信するシステム内にて不正な提供情報が共有されるこ とを防止すると共に、不正な提供情報を提供する提供者を当該システム内から効果 的に排除することができる。  [0013] While preventing unauthorized provision information from being shared in a system that transmits / receives provision information in each device, it effectively eliminates providers that provide unauthorized provision information from the system. be able to.
図面の簡単な説明  Brief Description of Drawings
[0014] [図 1]本実施の一実施形態における全体構成図。  FIG. 1 is an overall configuration diagram in an embodiment of the present invention.
[図 2]同実施の形態における機能ブロック図。  FIG. 2 is a functional block diagram according to the embodiment.
[図 3]同実施の形態における情報受給者側装置 S3の画面図。  FIG. 3 is a screen view of the information receiver side device S3 in the same embodiment.
[図 4]同実施の形態における情報受給者側装置 S3の画面図。  FIG. 4 is a screen view of the information receiver side device S3 in the same embodiment.
[図 5]同実施形態における提供情報管理装置 S1の動作フローチャート。  FIG. 5 is an operation flowchart of the provided information management apparatus S1 in the embodiment.
[図 6]同実施形態における情報提供者側装置 S2の動作フローチャート。  FIG. 6 is an operation flowchart of the information provider side device S2 in the embodiment.
[図 7]同実施形態における情報受給者側装置 S3の動作フローチャート。  FIG. 7 is an operation flowchart of the information receiver side device S3 in the embodiment.
[図 8]同実施形態における提供情報管理装置 S1の動作フローチャート。  FIG. 8 is an operation flowchart of the provided information management apparatus S1 in the embodiment.
[図 9]第四実施形態における情報受給者側装置 S3の動作フローチャート。  FIG. 9 is an operation flowchart of the information receiver side device S3 in the fourth embodiment.
発明を実施するための最良の形態  BEST MODE FOR CARRYING OUT THE INVENTION
[0015] <第一実施形態 >  <First embodiment>
以下、本発明の実施形態を、図面を参照して説明する。  Embodiments of the present invention will be described below with reference to the drawings.
[0016] この実施形態における提供情報管理システムは、いわゆる PeertoPeer (以下、 P2 Pという)等の通信モデルを用いた情報共有ネットワーク上に、例えば、音楽や映画な どのデジタルコンテンツ (提供情報)を適切に流通させるためのものであり、図 1に示 すように、当該提供情報の提供者側にそれぞれ設けられた情報処理装置たる情報 提供者側装置 S2及び当該提供情報の受給者側に設けられた情報処理装置たる情 報受給者側装置 S3とを、インターネット等の通信回線を介して双方向通信可能に接 続しており、更に両装置と当該インターネット等の通信回線を介して双方向通信可能 に接続した情報処理装置たる提供情報管理装置 S1を備えた構成としている。 [0016] The provided information management system in this embodiment appropriately applies digital contents (provided information) such as music and movies on an information sharing network using a communication model such as so-called PeertoPeer (hereinafter referred to as P2P). As shown in Fig. 1, the information provider side device S2 as the information processing device provided on the provider side of the provision information and the receiver side of the provision information are provided. Information processing equipment An information processing system in which the receiver S3 is connected to be capable of bidirectional communication via a communication line such as the Internet, and is further connected to both devices to be capable of bidirectional communication via the communication line such as the Internet. The provision information management device S1 as a device is provided.
[0017] 本実施の形態においては、提供情報として音楽コンテンツ等を取り扱い、必要に応 じて当該音楽コンテンツ等を販売する市場において当該提供情報管理システムを利 用した場合について説明する。  [0017] In the present embodiment, a case will be described in which music content or the like is handled as provided information, and the provided information management system is used in a market where the music content or the like is sold as necessary.
[0018] ここで「情報提供者」とは、本実施形態においては、例えば音楽コンテンツのァーテ イストゃ、当該音楽コンテンツ等の著作権を管理するコンテンツ販売業者などであり、 不特定多数の業者のうち、本システムを利用可能な者として登録されたもののことを 指す。つまり、最初に本システムの情報共有ネットワーク内に、自己の提供情報を他 の情報受給者側装置 S3から受信可能な状態としたり、他の情報受給者側装置 S3へ 送信したりする者、 V、わゆる提供情報の発信源である一次情報提供者のことを!、う。  [0018] Here, the "information provider" in this embodiment is, for example, a music content artist, a content distributor who manages the copyright of the music content, etc. Of these, those registered as those who can use this system. In other words, the person who first makes the information he / she can receive from other information receiver side device S3 in the information sharing network of this system, or who sends it to other information receiver side device S3, V The primary information provider who is the source of the information provided.
[0019] 登録は、登録支援手段(図示しない)を利用して行われる。この登録支援手段は、 前記不特定の情報提供者が、例えばオンラインにより提供情報管理装置 S1にァクセ スした場合に、その情報提供者の基本データの入力を要求し、その情報提供者に、 後述の提供者識別情報たる提供者識別子 (ID)を発行するとともに、この提供者識別 子に関連付けて前記基本データを記憶するものである。  [0019] Registration is performed using registration support means (not shown). When the unspecified information provider accesses the provided information management device S1, for example, online, the registration support means requests the information provider to input basic data of the information provider. A provider identifier (ID) as provider identification information is issued, and the basic data is stored in association with the provider identifier.
[0020] 「情報受給者」は、情報提供者等からの提供情報を受け入れる者を ヽ、情報提供 者同様、本設備を利用可能な者として登録された者のことを指す。登録にあたっての 手続や識別情報取得の工程等は、上述と同様であるので説明は省略する。  [0020] "Information recipient" refers to a person who receives information provided by an information provider or the like and who has been registered as a person who can use this equipment as well as an information provider. The registration procedure, identification information acquisition process, and the like are the same as described above, and a description thereof will be omitted.
[0021] 尚、後述するように、本実施の形態における情報受給者は、他の装置から受け入れ た提供情報を他の装置に転送する二次情報提供者となり得る者である。  [0021] As will be described later, the information receiver in the present embodiment is a person who can be a secondary information provider that transfers provided information received from another device to another device.
[0022] 「情報共有ネットワーク」とは、提供情報を有する装置の接続先情報に基づ ヽて接 続を確立し、 PeertoPeer (P2P)等の通信モデルを用いてそれぞれが対等な立場で 直接に各々が持つ提供情報等を送受信することが可能なネットワークを 、う。  [0022] An "information sharing network" is a connection established on the basis of connection destination information of a device having provided information, and directly using a communication model such as PeertoPeer (P2P) in an equal position. A network that can send and receive information provided by each.
[0023] 本実施の形態においては、 IPネットワーク上に、特定のアプリケーション(ファイル 交換ソフト)を有する装置相互が築いたアプリケーションによるネットワークであり、個 々の装置が公開したファイルが自動的に拡散していくネットワークをいう。当該情報 共有ネットワークを形成する各装置は、所定のファイル共有ソフト等を有しており、利 用者が相互にコンピュータをつなぎあってシステムを維持し、ファイル (提供情報)を 交換可能なネットワークを形成している。また、本実施の形態においては、サーバを 使わずにある装置がファイルを提供可能な状態 (情報蓄積手段の一定領域)に置 ヽ たとき、そのファイルが自動的に他の装置に転送されて拡散するネットワークをいう。 詳述すると、まずネットワーク内には、提供情報に関する情報として検索キー及び提 供情報の接続先情報を含む検索対象情報をネットワーク内の各装置に拡散している[0023] In the present embodiment, the network is an application built by devices having specific applications (file exchange software) on an IP network, and files released by individual devices are automatically spread. A network that goes on. Information concerned Each device that forms a shared network has predetermined file sharing software, etc., and users can connect computers to each other to maintain the system and form a network where files (provided information) can be exchanged. ing. In this embodiment, when a device is placed in a state where a file can be provided without using a server (a certain area of the information storage means), the file is automatically transferred to another device. A network that spreads. More specifically, first, in the network, search target information including a search key and connection destination information of provided information is distributed to each device in the network as information about provided information.
。提供情報を搜している情報受給者側装置 S3は、検索キーを用いて各装置に蓄積 された検索対象情報を検索し、該当する検索対象情報を受信する。そして、当該検 索対象情報から提供情報を持つ接続先情報を読出し、その装置と直接接続を確立 して提供情報を受信する。 . The information receiver side device S3 that hesitates the provided information searches the search target information stored in each device using the search key, and receives the corresponding search target information. Then, the connection destination information having the provided information is read from the search target information, and the provided information is received by establishing a direct connection with the device.
[0024] 「P2P」とは、それぞれが対等な立場で情報のやり取りを行う通信モデルの一形態 をいい、具体的には、各装置 (情報提供者側装置 S2、情報受給者側装置 S3等)が 対称的な役割を果たす分散アプリケーションを構築するための技術である。つまり、 P 2P方式の場合、お互いが対等な役割をはたし、それぞれのピアが必要に応じて情 報提供者側にも情報受給者側にもなり得る方式をいう。また、接続に関しても、ピア は接続を受け付ける側とアクティブに接続を行う側のどちらとしても動作可能である。  [0024] "P2P" refers to a form of communication model in which each exchanges information on an equal footing. Specifically, each device (information provider side device S2, information receiver side device S3, etc.) ) Is a technology for building distributed applications that play a symmetric role. In other words, in the case of the P2P method, it means a method in which each other plays an equal role and each peer can be an information provider side or an information receiver side as needed. In connection with the connection, the peer can operate as either a connection accepting side or an active connection side.
[0025] 「ファイル共有ソフト」というのは、例えばインターネットを経由して各装置が持ってい るファイルを共有するためのソフトウェアをいい、本実施の形態におけるファイル共有 ソフトは、ファイルの検索機能も備えている。  [0025] "File sharing software" refers to software for sharing files possessed by each device via, for example, the Internet. The file sharing software in the present embodiment also has a file search function. ing.
[0026] 1.機器構成  [0026] 1. Equipment configuration
次いで、この提供情報管理システムを構築するにあたって利用する機器構成につ いて説明すると、情報提供者側装置 S2、情報受給者側装置 S3は、いわゆるパーソ ナル装置や、ファクシミリ装置、電話等も含む概念であり、実施に際しては、これらの 機器が併用されることもあるが、本実施形態の以下の説明においては情報受給者側 装置 S3、情報提供者側装置 S2がパーソナル装置である場合について説明する。な お、これらの所在は、国内に限られず、海外でも構わない。  Next, the equipment configuration used in constructing the provided information management system will be described. The information provider side device S2 and the information receiver side device S3 are concepts including so-called personal devices, facsimile devices, telephones, etc. In implementation, these devices may be used together. However, in the following description of the present embodiment, the case where the information receiver side device S3 and the information provider side device S2 are personal devices will be described. . These locations are not limited to domestic but may be overseas.
[0027] また、これら情報提供者側装置 S2、情報受給者側装置 S3は、キーボード、マウス 等の入力装置、ディスプレイ、スピーカ等の出力装置、 HD等の記憶装置、 CPU,内 部メモリ、通信インタフェース等の通信装置を備えたもので、 WEBブラウザ等を有す る。 [0027] Further, the information provider side device S2 and the information receiver side device S3 include a keyboard and a mouse. Input device such as display, output device such as display, speaker, etc., storage device such as HD, CPU, internal memory, communication device such as communication interface, etc., and has a web browser.
[0028] 提供情報管理装置 S1は、 WEBサーバ機能やデータベース機能等を備えたもので あり、情報受給者側装置 S3、情報提供者側装置 S2と略同様な機器構成を有してな る。なお、この提供情報管理装置 S1は、一箇所に集中させて設けてあるか、分散さ せて設けてあるかは問わないし、その所在は国内に限られず、海外でも構わない。  The provided information management device S1 has a WEB server function, a database function, and the like, and has substantially the same device configuration as the information receiver side device S3 and the information provider side device S2. The provided information management device S1 does not matter whether it is provided in a centralized location or in a distributed manner, and the location is not limited to domestic, and may be overseas.
[0029] 本実施形態においては、提供情報管理装置 S1は、主に提供者識別情報を管理し 、正規の情報提供者が提供した音楽コンテンツ等を流通させるための役割を担って いるが、その他、課金サーバ等の役割を担ってもよい。  [0029] In the present embodiment, the provided information management device S1 mainly manages the provider identification information and plays a role for distributing music content and the like provided by the legitimate information provider. It may also serve as a billing server.
[0030] 2.概略機能  [0030] 2. General functions
し力して本実施形態における提供情報管理システムは、図 2に示すように、音楽コ ンテンッ等の提供情報を peertoPeer等の通信モデルを用いた情報共有ネットヮー ク上に最初に提供する情報提供者側装置 S2と、当該提供情報を有する装置の接続 先情報を検索する接続先検索手段を有し、前記情報共有ネットワークを利用して前 記接続先情報に基づいて提供情報を有する装置 (SI, S2, S3)と接続を確立し、直 接に提供情報を受信すると共に、当該受信した提供情報を前記情報共有ネットヮー ク内に提供可能とする情報受給者側装置 S3と、当該提供情報を管理する提供情報 管理装置 S1とを有する提供情報管理システムであって、前記情報受給者側装置 S3 、情報提供者側装置 S2や提供情報管理装置 S1の記憶装置に記憶させた所定のプ ログラムにしたがって、それら装置における CPUや周辺機器が作動することにより、 以下に示す各種機能を発揮する。 Providing information management system in this embodiment with by force, as shown in FIG. 2, information to be provided to provide information such as music co Nten' first on information sharing Nettowa click using the communication model, such as p EertoPeer A user side device S2 and a connection destination search means for searching connection destination information of the device having the provision information, and a device having the provision information based on the connection destination information using the information sharing network (SI , S2, S3) to establish a connection and receive the provision information directly, and also to provide the received provision information in the information sharing network S3 and the information receiver side device S3. A provision information management system having a provision information management device S1 to be managed, which is stored in a storage device of the information receiver side device S3, the information provider side device S2, or the provision information management device S1. did It, by the CPU and peripheral devices in their system is activated, executing various functions described below.
[0031] 以下、装置毎に詳述する。 [0031] Hereinafter, each device will be described in detail.
[0032] 提供情報管理装置 S1は、前述の通り本システム内に音楽コンテンツ等を一次提供 者として提供可能な情報提供者や個々の提供情報を管理するためのものであり、例 えば違法なコピーコンテンツが、システム内に混在することを防止するために提供者 識別情報等の識別情報を管理する役割を果たす。  [0032] As described above, the provided information management device S1 is used to manage information providers and individual provided information that can provide music content or the like as a primary provider in the system, for example, illegal copying. It plays a role in managing identification information such as provider identification information in order to prevent content from being mixed in the system.
[0033] 具体的には、少なくとも、提供者情報受付手段 1Aと、識別情報管理手段 1Bと、提 供者識別情報送信手段 1Cと、鍵生成手段 1Dと、管理用照合リスト作成手段 1Eと、 共有照合リスト作成手段 1Fと、共有照合リスト送信手段 1Gと、削除指示手段 1Hと、 情報蓄積手段 IIとしての機能を有している。 [0033] Specifically, at least provider information receiving means 1A, identification information management means 1B, Provider identification information transmission means 1C, key generation means 1D, management collation list creation means 1E, shared collation list creation means 1F, shared collation list transmission means 1G, deletion instruction means 1H, information storage means II As a function.
[0034] 提供者情報受付手段 1Aは、主として情報提供者の登録手続きの際に利用される もので、前記入力装置や通信インタフェース等の通信装置を用いて、登録のために 必要となる情報提供者の各種情報を受け付ける。  [0034] The provider information accepting means 1A is mainly used in the registration procedure of the information provider, and provides information necessary for registration using a communication device such as the input device or the communication interface. Various information of the person is accepted.
[0035] 識別情報管理手段 1Bは、少なくとも本システム内(情報共有ネットワーク内)に、情 報提供することを許可する情報提供者の提供者識別情報を管理するものであり、前 記提供者情報受付手段 1Aを用いて提供者情報を受け付け、所定の登録要件項目 を満たしているカゝ否か等を判断することにより、提供者識別情報である提供者識別子 を付与する力否力の許諾判断を行 、、要件を満たして 、る提供者に対してユニーク な提供者識別子を付与する。  [0035] The identification information management means 1B manages provider identification information of an information provider who is permitted to provide information at least in the system (in the information sharing network). Accepting provider information using the acceptance means 1A and judging whether or not it satisfies the specified registration requirement items, etc. And give a unique provider identifier to the provider who meets the requirements.
[0036] 更には、不正提供者情報受付手段(図示しない)を用いて、提供者識別子を付与し た情報提供者が、後に不正な情報提供者である (不正なコピーコンテンツを提供して いる等)との不正提供者情報を受け付けた際には、当該不正提供者情報に含まれる 提供者識別子等に基づいて該当する情報提供者を後述する照合リストから検索し、 当該不正提供者の提供者識別情報を前記照合リストから削除する指示信号を出力 する。  [0036] Furthermore, an information provider to which a provider identifier is assigned using an unauthorized provider information receiving means (not shown) is later an unauthorized information provider (providing unauthorized copy content). Etc.), the relevant information provider is searched from the collation list described later based on the provider identifier included in the unauthorized provider information, and provided by the unauthorized provider. An instruction signal for deleting the person identification information from the collation list is output.
[0037] 尚、本実施の形態にお!ヽて、情報提供することを許可された情報提供者とは、最初 に本システム内(情報共有ネットワーク内)に、一次提供者として自己の提供情報を 他の情報受給者側装置 S3から受信可能な状態としたり、他の情報受給者側装置 S3 へ送信したりする者、つまり提供情報の発信源となる者のことを許可された者を 、う。 また、本実施の形態においては、情報受給者は、受信した提供情報を他の装置から の要求に応じて送信可能としているため、二次情報提供者となりうる。  [0037] In this embodiment, an information provider who is permitted to provide information is the first information provided by the information provider as the primary provider in the system (information sharing network). A person who is allowed to receive from the other information receiver side device S3 or transmits to the other information receiver side device S3, that is, a person who is permitted to be a source of provided information, Yeah. In the present embodiment, the information receiver can be the secondary information provider because it can transmit the received provided information in response to a request from another device.
[0038] 提供者識別情報送信手段 1Cは、前記通信部等を用いて前記識別情報管理手段 1Bにて許可した提供者識別情報を前記情報提供者側装置 S2に送信する役割を果 たす。  [0038] The provider identification information transmitting unit 1C serves to transmit the provider identification information permitted by the identification information management unit 1B to the information provider side device S2 using the communication unit or the like.
[0039] 鍵生成手段 1Dは、本システム内(情報共有ネットワーク内)に情報提供する新たな 情報提供者が許可され、前記識別情報管理手段 IBから鍵生成指令信号を受け付 けると、当該提供者の提供者識別情報に対応して、本システム内に提供する提供情 報等の暗号ィ匕に必要となる一対の秘密鍵と公開鍵の生成を担う。秘密鍵は、公開鍵 暗号方式で使用される一対の鍵組 (秘密鍵と公開鍵)のうち、一般に公開せず管理 者及び情報提供者が保有しており、各提供情報は、当該秘密鍵により暗号化される 。一方、公開鍵は、管理者及び情報受給者に対して広く公開されるものであり、前記 秘密鍵で暗号ィ匕されたデータに対応する公開鍵でし力複合できな 、構成として 、る [0039] The key generation means 1D provides a new information provision in the system (in the information sharing network). When the information provider is authorized and receives the key generation command signal from the identification information management means IB, the encryption of the information provided in the system corresponding to the provider identification information of the provider is performed. Responsible for generating a pair of private key and public key required for dredging. The private key is a public key encryption method (private key and public key) that is not disclosed to the general public and is held by the administrator and information provider. Encrypted by. On the other hand, the public key is widely disclosed to the administrator and the information recipient, and cannot be combined with the public key corresponding to the data encrypted with the secret key.
[0040] 尚、当該秘密鍵及び公開鍵は、情報提供者識別子毎に設定して ヽる。カロえて、後 述する共有照合リストが正規のリストであることを保証するため、当該提供情報管理 装置固有の暗号化情報 (公開鍵、秘密鍵)も設定している。 It should be noted that the secret key and the public key are set for each information provider identifier. In order to ensure that the shared collation list described later is a legitimate list, encryption information (public key, secret key) unique to the provided information management device is also set.
[0041] 尚、当該提供情報管理装置の公開鍵情報は、例えば、情報共有ネットワーク内の 各装置が、当該提供情報管理装置 S1にログインして来た際に、予め送信し拡散して おく。 [0041] The public key information of the provided information management device is transmitted and spread in advance when, for example, each device in the information sharing network logs in to the provided information management device S1.
[0042] 管理用照合リスト作成手段 1Eは、前記提供者識別情報管理手段 1Bに基づいて情 報提供を許可された提供者識別情報を含む管理用照合リストを作成する機能を有し ている。尚、当該管理用照合リストは、本システムに情報提供をすることを許可された 情報提供者を一覧可能なリストデータであり、管理者が提供者識別情報等を管理す るために必要となるものである。また、当該管理用照合リストは、管理者のみが利用す る。  [0042] The management collation list creation means 1E has a function of creating a management collation list including provider identification information permitted to provide information based on the provider identification information management means 1B. The management verification list is list data that can list information providers who are allowed to provide information to the system, and is necessary for the administrator to manage provider identification information, etc. Is. The management verification list is used only by the administrator.
[0043] 具体的には、識別情報管理手段 1Bから提供者許諾信号を受信することを契機に、 前記鍵生成手段 1Dや前記提供者情報受付手段 1Aから受け付けた前記情報提供 者情報 (提供者名、提供資格、接続先情報である IPアドレスやポート番号等、暗号ィ匕 情報となる公開鍵、秘密鍵等)を、情報提供者識別子に関連付けたデータとし管理 用照合リストに追加する。また、前記識別情報管理手段 1Bから、不正提供者削除指 令信号を受信すると、管理用照合リストに蓄積していた提供者識別情報等を削除し、 常に最新の提供者識別情報を有する管理用照合リストを作成する。  [0043] Specifically, the information provider information (provider) received from the key generation means 1D and the provider information reception means 1A upon receiving a provider permission signal from the identification information management means 1B. Name, provision qualification, connection destination information such as IP address and port number, public key, secret key, etc. as encryption information are added to the management verification list as data associated with the information provider identifier. Also, when receiving the unauthorized provider deletion instruction signal from the identification information management means 1B, the provider identification information stored in the management verification list is deleted, and the management information that always has the latest provider identification information is deleted. Create a collation list.
[0044] 共有照合リスト作成手段 1Fは、前記識別情報に基づ!、て、前記提供情報を管理す るための照合リストを作成する照合リスト作成手段であり、具体的には、前記提供者 識別情報管理手段 1Bに基づいて情報提供を許可された提供者識別情報を含む情 報提供者限定用の照合リストを作成するものであり、提供情報の受給者が、正規の提 供者カゝら提供された情報カゝ否かを判断するために必要となる提供者識別情報等を含 む共有照合リストを作成する機能を有している。尚、当該共有照合リストは、本システ ムに情報提供をすることを許可された情報提供者を一覧可能なリストデータであり、 本システムを利用する利用者全体で共有する。 [0044] The shared collation list creation means 1F is based on the identification information! And manage the provided information A collation list creation means for creating a collation list for the information provider. Specifically, the collation list creation means is for information provider limited including provider identification information permitted to provide information based on the provider identification information management means 1B. A collation list is created, and a shared collation that includes provider identification information, etc., necessary for the recipient of the provided information to determine whether or not the information provided by the legitimate provider Has a function to create a list. The shared collation list is list data that can list information providers who are permitted to provide information to the system, and is shared by all users who use the system.
[0045] 具体的には、前記管理用照合リスト作成手段 1Eと同様に、識別情報管理手段 1B カゝら提供者許諾信号を受信することを契機に、前記鍵生成手段 1Dや前記提供者情 報受付手段 1Aカゝら受け付けた前記情報提供者情報 (提供者名、提供資格、接続先 情報である IPアドレスやポート番号等、暗号ィ匕情報となる公開鍵等)を、提供者識別 情報である情報提供者識別子に関連付け、共有照合リストに追加する。尚、当該共 有照合リストには、秘密鍵情報は含まれない。また、当該共有照合リストには、管理識 別情報となる管理者識別子と、当該照合リストが正規のリストであることを保証 (改竄さ れて 、な 、ことの保証、出所の保証)するためのデジタル認証されたデジタル署名や 、当該デジタル署名の実現に利用する提供情報管理装置の秘密鍵の情報を関連付 けている。 [0045] Specifically, similar to the management collation list creation means 1E, when receiving the provider permission signal from the identification information management means 1B, the key generation means 1D and the provider information Information receiving means 1A The above information provider information received (provider name, provision qualification, IP address and port number as connection destination information, public key etc. as encryption key information), provider identification information Is added to the shared collation list. The shared verification list does not include secret key information. In addition, the shared collation list has an administrator identifier that is management identification information and guarantees that the collation list is a legitimate list (guaranteeed that it has been tampered with, guarantee of origin). Are associated with the digital signature that has been digitally authenticated and the private key information of the provided information management device used to realize the digital signature.
[0046] 一方、前記識別情報管理手段 1Bから、不正提供者削除指令信号を受信すると、 共有照合リストに蓄積して 、た提供者識別情報等を削除し、常に最新の提供者識別 情報を有する共有照合リストを作成する。  [0046] On the other hand, when receiving the unauthorized provider deletion command signal from the identification information management means 1B, the provider identification information stored in the shared collation list is deleted, and the latest provider identification information is always stored. Create a shared collation list.
[0047] 共有照合リスト送信手段 1Gは、前記共有照合リスト作成手段にて作成した共有照 合リストを出力する照合リスト出力手段であり、具体的には、前記共有照合リスト作成 手段 1Fにて作成した共有照合リストに、管理識別情報となる管理者識別子と、当該 照合リストが正規のリストであることを保証 (改竄されて 、な 、ことの保証、出所の保証 )するためのデジタル認証されたデジタル署名とを付加し、提供情報管理装置の秘 密鍵にて暗号化した状態で、情報受給者側装置 S 3に向けて当該共有照合リストを 送信する機能を有する。つまり、情報受給者側装置 S3から送信された識別情報要求 信号である共有照合リスト要求信号を受信することにより、その時点で最新の共有照 合リストを後述する情報蓄積手段 IIから読出し、管理識別情報である管理者識別子 及びデジタル認証されたデジタル署名を付加し、提供情報管理装置の秘密鍵にて 暗号ィヒすることにより、共有照合リストに対する保証を付けた状態で当該要求信号の 送信元である情報受給者側装置 S3に共有照合リストを送信する。 [0047] The shared collation list transmission unit 1G is a collation list output unit that outputs the shared collation list created by the common collation list creation unit. Specifically, the collation list transmission unit 1G creates the common collation list creation unit 1F. In the shared collation list, the administrator identifier used as management identification information and digital authentication for guaranteeing that the collation list is a legitimate list (assurance of being altered, guarantee of origin, guarantee of origin) It has a function of transmitting the shared collation list to the information receiver side device S3 in a state where a digital signature is added and encrypted with the secret key of the provided information management device. In other words, by receiving the shared collation list request signal that is the identification information request signal transmitted from the information receiver side device S3, the latest shared reference light at that time is received. The shared list is read by reading the combined list from the information storage means II described later, adding the administrator identifier, which is management identification information, and a digitally authenticated digital signature, and encrypting it with the private key of the provided information management device. In a state where the guarantee is attached, the shared verification list is transmitted to the information receiver side device S3 which is the transmission source of the request signal.
[0048] 削除指示手段 1Hは、不正な情報提供者が提供した音楽コンテンツ等の提供情報 を本システム内(情報共有ネットワーク内)から削除する機能を担うものである。 [0048] The deletion instruction means 1H has a function of deleting provided information such as music content provided by an unauthorized information provider from the system (in the information sharing network).
[0049] 詳述すると、前記不正情報受付手段を用いて受け付けた提供者識別情報に基づ いて削除対象となる不正な情報提供者の提供情報識別子を特定する。そして、既に 情報受給者側装置 S3に蓄積された提供情報の中から、不正な情報提供者の提供 者識別子と関連付けられた提供情報の削除を指示する削除プログラムを、情報受給 者側装置 S3に強制的に送信し、不正な情報提供者が発信源となっている提供情報 を削除していく。 More specifically, the provision information identifier of the unauthorized information provider to be deleted is specified based on the provider identification information received using the unauthorized information receiving means. Then, a deletion program that instructs the information receiver side device S3 to delete the provision information associated with the provider identifier of the unauthorized information provider from the provision information already stored in the information receiver side device S3 is provided to the information receiver side device S3. The information is forcibly transmitted and the information provided by an unauthorized information provider is deleted.
[0050] 当該削除プログラムは、例えば情報受給者側装置 S3から、照合リスト要求信号を 受信した際に、不正提供者識別情報を削除した新規の共有照合リストを送信すると 共に、当該情報受給者側装置 S3に対して削除プログラムを強制的に送信することが 考えられる。その際には、情報受給者側装置 S3が蓄積している旧共有照合リストと新 規共有照合リストとを比較し、旧共有照合リストに乗っている不正提供者識別情報を 検出し、当該不正提供者識別情報を持つ提供情報を削除する削除プログラムを送 信してもよい。また、検索対象情報を拡散する際に削除プログラムを同時に拡散する ことち考免られる。  [0050] For example, when the verification program receives a verification list request signal from the information receiver side device S3, the deletion program transmits a new shared verification list from which the unauthorized provider identification information has been deleted, and also the information receiver side Forcibly sending the deletion program to device S3. In that case, compare the old shared collation list stored in the information receiver side device S3 with the new shared collation list, detect the illegal provider identification information on the old shared collation list, and detect the fraud A deletion program that deletes the provision information having the provider identification information may be transmitted. In addition, when disseminating search target information, the deletion program can be disseminated at the same time.
[0051] 情報蓄積手段 IIは、管理用照合リスト、共有照合リスト、提供情報、プログラム等の 各種データを各領域に分けて格納するものである。  [0051] The information storage means II stores various data such as a management collation list, a shared collation list, provided information, a program, etc. in each area.
[0052] 詳述すると、管理用照合リスト領域には、各提供者識別子に基づいて、その提供者 名、提供資格、接続先情報 (IPアドレス、ポート番号)、暗号ィ匕情報 (公開鍵、秘密鍵 )などの提供者情報を含む管理者用照合リストのデータを蓄積している。また、その 他、その提供者が提供する提供情報識別子等も前記提供者識別子に関連付けて蓄 積してもよい。カロえて、当該管理用照合リストのデータは、管理識別情報となる管理 者識別子と、当該照合リストが正規のリストであることを保証 (改竄されて 、な 、ことの 保証、出所の保証)するためのデジタル認証されたデジタル署名の情報の他、当該 提供情報管理装置の暗号化情報 (公開鍵、秘密鍵)と関連付けて格納して 、る。 More specifically, in the management collation list area, based on each provider identifier, the provider name, provision qualification, connection destination information (IP address, port number), encryption key information (public key, Data for the administrator collation list including provider information such as private keys is stored. In addition, a provision information identifier provided by the provider may be stored in association with the provider identifier. The management collation list data guarantees that the management identifier is an administrator identifier and that the collation list is a legitimate list. In addition to the digitally authenticated digital signature information for guarantee and origin assurance), it is stored in association with the encryption information (public key, private key) of the provided information management device.
[0053] また、共有照合リスト領域には、各提供者識別子に基づ!ヽて、その提供者名、提供 資格、接続先情報 (IPアドレス、ポート番号)、公開鍵、などの提供者情報の他、管理 者識別子等を含む共有照合リストのデータを格納する。加えて、当該共有照合リスト のデータは、管理識別情報となる管理者識別子と、当該照合リストが正規のリストであ ることを保証 (改竄されて ヽな ヽことの保証、出所の保証)するためのデジタル認証さ れたデジタル署名の情報と、当該デジタル署名の実現に利用する秘密鍵の情報を 関連付けて格納している。  [0053] Also, in the shared collation list area, based on each provider identifier, provider information such as the provider name, provision qualification, connection destination information (IP address, port number), public key, etc. In addition, the shared collation list data including the administrator identifier is stored. In addition, the shared collation list data guarantees that the management identifier is an administrator identifier and that the collation list is a legitimate list (guarantee that it has been tampered with, the guarantee of origin). For this purpose, it stores the digitally authenticated digital signature information and the private key information used to realize the digital signature in association with each other.
[0054] 更に、提供情報領域には、前記情報提供者側装置 S2から送信された提供情報が 蓄積されており、本実施の形態においては、各提供情報識別子 (ハッシュ値)に基づ いて、検索対象情報であるファイル名、キー情報、ファイルの大きさ、更新時刻、提供 情報の接続先情報 (IPアドレス。ポート番号)を格納すると共に、当該音楽ファイルの 内容そのもの (本体)を含む提供情報や、提供者識別子等を格納して!/、る。 [0054] Further, the provision information transmitted from the information provider side device S2 is accumulated in the provision information area. In the present embodiment, based on each provision information identifier (hash value), Stored information including the file name, key information, file size, update time, and connection destination information (IP address, port number) of the information to be searched, as well as the contents of the music file itself (main unit) Or store the provider identifier!
[0055] ここで、提供情報 (ファイル)識別子となって 、るハッシュ値は、一つの提供情報の 内容全体を要約したものなので、たとえファイル名が異なっていても、当該ハッシュ値 が同じであれば同じ内容の提供情報として取り扱うことが可能となる。  [0055] Here, the hash value that serves as the provided information (file) identifier summarizes the entire contents of one provided information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
[0056] ノ、ッシュ値とは、文字列の並び力 数学的なアルゴリズムで導き出した一定長の一 意なデータであり、本実施の形態においては、いわゆる SHA— 1と呼ばれるハッシュ 関数を用いて前記ハッシュ値を生成している。具体的には、当該ハッシュ関数におい ては、 2の 64乗ビット以下の原文から 160ビットのハッシュ値を生成する。計算方法に は初期値敏感性の不可逆な一方向関数を含むため、ハッシュ値は擬似的な乱数の ような値をとる。従って、これをもとに原文を再現することはできない。通信の際に原 文が改ざんされていないか検証する際には、通信経路の両端で前記ハッシュ関数を 用 、てハッシュ値を生成し、両者を比較するとよ 、。  [0056] The noh and shh values are unique data of a fixed length derived by a string array power mathematical algorithm. In this embodiment, a hash function called SHA-1 is used. The hash value is generated. Specifically, in the hash function, a 160-bit hash value is generated from the original text of 2 64 bits or less. Since the calculation method includes an irreversible one-way function with initial value sensitivity, the hash value takes a pseudo random number. Therefore, the original text cannot be reproduced based on this. When verifying that the original text has not been tampered with during communication, use the hash function at both ends of the communication path to generate hash values and compare them.
[0057] その他、ハッシュ値を導く方法としては、 128bitの MD5をハッシュ関数として、提供 情報の内容全体からハッシュ値を求め、ファイルを識別する識別子として使用するこ とも考えられる。この過程では、ファイル名そのほかの情報は併用していないので、フ アイルのハッシュ値はファイルの内容確認に利用されている汎用的な MD5ハッシュ 値と同じ値になる。 [0057] As another method for deriving a hash value, it is conceivable that 128-bit MD5 is used as a hash function, a hash value is obtained from the entire content of provided information, and used as an identifier for identifying a file. In this process, the file name and other information are not used together. The hash value of the aisle is the same as the general-purpose MD5 hash value used for checking the file contents.
[0058] 次に、情報提供者側装置 S2は、前記提供情報管理装置 S1から付与された提供者 識別子を用いて、本システム内に音楽コンテンツ等を提供可能な一次情報提供者が 操作する装置であり、自己の音楽コンテンツ等を提供し本システム内に流通させる役 割を果たす。  [0058] Next, the information provider side device S2 uses the provider identifier assigned from the provided information management device S1, and is operated by a primary information provider that can provide music content and the like in this system. It plays the role of providing its own music content and distributing it within this system.
[0059] 具体的には、提供者情報送信手段 2A、提供者識別情報受付手段 2B、提供情報 要求受付手段 2C、識別情報付加手段 2D、提供情報管理手段 2E、ダイジェスト情報 管理手段 2F、情報蓄積手段 2G、提供情報送信手段 2Hとしての機能を有している。  [0059] Specifically, provider information transmission means 2A, provider identification information reception means 2B, provision information request reception means 2C, identification information addition means 2D, provision information management means 2E, digest information management means 2F, information storage Means 2G and provided information transmission means 2H.
[0060] 尚、当該情報提供者側装置 S2は、後述する情報受給者側装置 S3と同様の各種 手段を有し (図示せず)、情報共有ネットワーク内で情報提供者側であると同時に情 報受給者側装置 S3としても機能して 、る。  [0060] The information provider side device S2 has various means (not shown) similar to those of the information receiver side device S3 described later (not shown), and at the same time as the information provider side in the information sharing network. It also functions as the receiver S3.
[0061] 提供者情報送信手段 2Aは、前記提供情報管理装置 S1へ登録を行い、ユニーク な提供者識別子を付与してもらう際に利用するもので、通信部等を用いて自己の情 報 (接続先情報、提供情報、検索対象情報等)を前記提供情報管理装置 S1へ送信 する役割を担う。  [0061] The provider information transmitting means 2A is used to register with the provided information management device S1 and to have a unique provider identifier assigned thereto. Connection destination information, provision information, search target information, etc.) to the provision information management device S1.
[0062] 提供者識別情報受付手段 2Bは、前記提供情報管理装置 S1にて登録が完了した 際に提供者識別情報である提供者識別子を受け付けるものであり、主として通信部 やキーボード等の入力部を用いて行う。  [0062] The provider identification information accepting means 2B accepts a provider identifier which is provider identification information when registration is completed in the provision information management device S1, and is mainly an input unit such as a communication unit or a keyboard. To do.
[0063] 提供情報要求受付手段 2Cは、提供情報の情報受給者側装置 S3から送信されてく る提供情報要求信号を受信するもので、例えば検索対象情報内に含まれる検索キ 一など、少なくとも提供情報を識別するために必要となる提供情報識別情報と、当該 提供情報の情報受給者側装置 S3の接続先情報とを受け付ける。  [0063] The provided information request accepting means 2C receives a provided information request signal transmitted from the information receiver side device S3 of provided information. For example, the provided information request receiving means 2C provides at least a provided search key included in the search target information. The provided information identification information necessary for identifying the information and the connection destination information of the information receiver side device S3 of the provided information are received.
[0064] 識別情報付加手段 2Dは、後述する提供情報送信手段 2Hを用いて情報受給者装 置に送信する提供情報を作成する手段であり、少なくとも情報提供者を識別する提 供者識別情報及び前記提供情報を識別する提供情報識別情報等の識別情報を、 自己が提供する提供情報に付加する機能を有する。つまり、前記提供情報要求信号 に含まれる提供情報識別情報に基づ!、て、後述する情報蓄積手段 2Gに蓄積された 提供情報を読み出し、当該提供情報に、自己の提供者識別情報である提供者識別 子及び提供情報識別子 (ハッシュ値)、更には管理識別情報である管理者識別子を 付加した送信用の提供情報を作成する機能を有して!、る。 [0064] The identification information adding means 2D is means for creating provision information to be transmitted to the information receiver apparatus using provision information transmission means 2H described later, and at least provider identification information for identifying the information provider and It has a function of adding identification information such as provision information identification information for identifying the provision information to the provision information provided by itself. That is, based on the provision information identification information included in the provision information request signal, it is stored in the information storage means 2G described later. Read the provided information, and add the provided provider information for transmission with the provider identifier and provider information identifier (hash value) as their provider identification information, and the administrator identifier as management identification information added Has the ability to create!
[0065] 提供情報管理手段 2Eは、自己が提供する提供情報を個別に管理する機能を有す るもので、それぞれに提供情報識別子 (ハッシュ値)を付し、その提供情報本体 (音 楽情報、映像情報等)の他、当該提供情報に関する付加的情報 (例えば、インデック ス情報となるコンテンツタイトル、再生時間、アーティスト名、アルバム名、ジャンル、 内容や、当該提供情報を販売する際の販売情報である販売価格や、視聴回数、視 聴の可否等の視聴情報等)の提供情報を管理して 、る。  [0065] Provided information management means 2E has a function of individually managing provided information provided by itself. Each provided information identifier (hash value) is attached to the provided information main body (music information). Video information, etc., as well as additional information related to the provided information (e.g. content title, playback time, artist name, album name, genre, content, and sales information when selling the provided information) Management information such as sales price, viewing frequency, viewing information such as availability of viewing).
[0066] ダイジェスト情報管理手段 2Fは、情報受給者が、自己が望む提供情報を検索する 際の指針となる検索対象情報を提供情報に基づいて作成する手段であり、当該検索 対象情報には、情報受給者が提供情報を検索する際に入力する検索キーとなる情 報を含んでいる。また、当該ダイジェスト情報管理手段 2Fは、前記提供情報識別子( ノ、ッシュ値)を作成する機能も有しており、当該提供情報識別子 (ハッシュ値)に関連 づけて、各検索対象情報を管理している。検索対象情報としては、ファイル名、キー 情報、大きさ、更新時刻、接続先情報 (IPアドレス。ポート番号)等を含むことが考えら れる。更に、後述する提供情報照合手段 3Fにてデジタル認証の際に利用するダイジ ェスト情報を生成する機能を有する。具体的には、前記 SHA— 1等のハッシュ関数を 用いて、提供情報と自己の提供者識別情報 (提供者識別子)から、ノ、ッシュ値である ダイジェスト情報を生成する。  [0066] The digest information management means 2F is a means for the information receiver to create search target information that serves as a guideline when searching for the provided information desired by the information receiver based on the provided information. It contains information that serves as a search key to be entered when the information recipient searches for provided information. The digest information management means 2F also has a function of creating the provided information identifier (no hash value), and manages each search target information in association with the provided information identifier (hash value). ing. The search target information may include file name, key information, size, update time, connection destination information (IP address, port number), and so on. Further, it has a function of generating digest information used in digital authentication by the provided information matching means 3F described later. Specifically, the hash information such as SHA-1 is used to generate digest information that is a hash value from provided information and its own provider identification information (provider identifier).
[0067] 情報蓄積手段 2Gは、提供者情報領域、提供情報領域、プログラム領域等を有し、 各種情報を蓄積している。  [0067] The information storage unit 2G has a provider information area, a provided information area, a program area, and the like, and stores various types of information.
[0068] 詳述すると、提供者情報管理領域には、提供者識別情報である提供者識別子に 関連付けて、提供者名、提供資格、接続先情報 (IPアドレス、ポート番号)、秘密鍵等 の自己の情報となる提供者情報を蓄積している。 More specifically, in the provider information management area, the provider name, provision qualification, connection destination information (IP address, port number), secret key, etc. are associated with the provider identifier that is the provider identification information. Stores provider information that is self-information.
[0069] また、提供情報領域には、他の装置へ送信可能な提供情報が蓄積されており、提 供情報識別子 (ハッシュ値)に関連付けて、検索対象情報であるファイル名、キー情 報、大きさ、更新時刻、接続先情報 (IPアドレス。ポート番号)を蓄積するほか、提供 情報識別子 (ハッシュ値)に関連付けて、提供情報本体 (ファイルの内容そのもので ある楽情報、映像情報等)を含む提供情報の他、当該提供情報に関する付加的情 報 (例えば、インデックス情報となるコンテンツタイトル、再生時間、アーティスト名、ァ ルバム名、ジャンル、内容や、当該提供情報を販売する際の販売情報である販売価 格や、視聴回数、視聴の可否等の視聴情報等)を情報提供者識別情報と関連付け て蓄積している。 [0069] In the provided information area, provided information that can be transmitted to other devices is accumulated. In association with the provided information identifier (hash value), the file name, key information, Stores size, update time, connection destination information (IP address, port number) and provides In addition to the provided information including the provided information body (music information, video information, etc., which is the content of the file itself) in association with the information identifier (hash value), additional information related to the provided information (for example, content serving as index information) (Information such as title, playback time, artist name, album name, genre, contents, sales price when selling the provided information, viewing information such as the number of viewings, availability of viewing, etc.) It is stored in association with identification information.
[0070] 尚、当該検索対象情報や提供情報は、前記提供情報管理手段 2Eや前記ダイジ スト情報管理手段 2Fを用いて作成されたものである。  It should be noted that the search target information and the provided information are created using the provided information management means 2E and the digest information management means 2F.
[0071] 提供情報送信手段 2Hは、前記提供者識別情報付加手段 2Dを用いて付加した提 供者識別情報や提供情報識別情報と関連付けて、自己の検索対象情報や提供情 報を送信する送信手段としての役割を担う。  [0071] Provision information transmission means 2H transmits its own search target information and provision information in association with the provider identification information and provision information identification information added using provider identification information addition means 2D. Take a role as a means.
[0072] 具体的には、前記提供情報要求信号を受信することを契機として、提供情報要求 信号に含まれる提供情報識別子に基づいて蓄積手段力 要求された提供情報を読 み出して情報受給者側装置 S3へと送信する。また、検索対象となる検索対象情報を 他の装置へと送信 (拡散)する。  [0072] Specifically, when receiving the provision information request signal, the storage means power is read based on the provision information identifier included in the provision information request signal and the requested provision information is read out. Send to side device S3. Also, search target information to be searched is transmitted (spread) to other devices.
[0073] 尚、情報共有ネットワークにて他の装置と接続するため、図示しない接続管理手段 を有している。当該接続管理手段は、他の装置の接続先情報と、その装置への接続 を管理する。具体的には、情報共有ネットワーク内での検索リンクの接続のために、 他の装置の接続先情報を収集して情報蓄積手段 2Gに蓄積して 、る。接続管理手段 では、この接続先情報とともに、実際の通信に用いる TCPコネクション (BSDソケット) の管理や非同期通信のための通信バッファリングを行う。  [0073] Note that connection management means (not shown) is provided to connect to other devices in the information sharing network. The connection management means manages connection destination information of other devices and connections to the devices. Specifically, in order to connect the search link in the information sharing network, the connection destination information of other devices is collected and stored in the information storage means 2G. The connection management means manages the TCP connection (BSD socket) used for actual communication and communication buffering for asynchronous communication along with this connection destination information.
[0074] 情報共有ネットワーク内の他の装置の接続先情報は、以下の 2つのタイミングで取 得する。まず、前記初期接続先情報や一旦接続した装置が蓄積している他の装置の 接続先情報を接続を確立した際に受信し、 IPアドレス、ポート番号、接続回線のアツ ブロード速度等の接続先情報を取得する。またそれらを使って検索リンクを接続した あと、直接相手から接続環境等を取得する。  [0074] Connection destination information of other devices in the information sharing network is acquired at the following two timings. First, when the connection is established, the initial connection destination information and the connection information of other devices that have been stored once by the connected device are received and the connection destination such as the IP address, port number, connection line upload speed, etc. Get information. In addition, after connecting search links using them, the connection environment etc. is obtained directly from the other party.
[0075] 接続前に他の装置力 渡される情報としては、 IPアドレス (IPv4)、ポート番号 (TC P)、アップロード速度 (KbyteZ秒単位)等があり、接続後に相手ノードから取得する 情報として、接続形態 (直接 ZNAT経由 ZDDNSZ開放ポートなし)などである。 [0075] Information that is passed to other devices before connection includes IP address (IPv4), port number (TC P), upload speed (in KbyteZ seconds), and is obtained from the other node after connection Information includes connection form (directly via ZNAT, no ZDDNSZ open port).
[0076] 情報受給者側装置 S3は、少なくとも共有照合リスト受付手段 3A、提供情報検索手 段 3B、提供情報要求手段 3C、提供者識別情報受付手段 3D、提供情報受付手段 3 E、提供情報照合手段 3F、情報蓄積手段 3G、提供情報要求受付手段 3H、提供情 報送信手段 31、提供情報出力手段 3Jとしての機能を有している。  [0076] The information receiver side device S3 includes at least a shared collation list accepting means 3A, provided information search means 3B, provided information requesting means 3C, provider identification information accepting means 3D, provided information accepting means 3E, provided information collation Means 3F, information storage means 3G, provision information request acceptance means 3H, provision information transmission means 31, provision information output means 3J.
[0077] 共有照合リスト受付手段 3Aは、少なくとも情報提供を許可された情報提供者の提 供者識別情報を含んだ照合情報である情報提供者限定用の共有照合リストを受け 付ける手段であり、本実施の形態においては、情報受給者が、本システムに接続す るたびに、共有照合リスト要求信号を前記提供情報管理装置 S1へと送信し、その時 点で最新の共有照合リストを前記提供情報管理装置 S1から受信する。  [0077] The shared collation list accepting means 3A is a means for receiving a shared collation list limited to information providers, which is collation information including at least provider identification information of an information provider who is permitted to provide information. In this embodiment, each time an information receiver connects to the system, the information receiver sends a shared collation list request signal to the provided information management device S1, and at that time, the latest shared collation list is sent to the provided information. Received from the management device S1.
[0078] 力!]えて、当該共有照合リスト受付手段 3Aは、共有照合リスト (受け付けた照合情報) 力 提供情報管理装置から送信された正規の共有照合リストであるかを判定する照 合情報判定手段としての機能も有して!/ヽる。  [0078] The shared collation list accepting means 3A determines whether the common collation list (accepted collation information) is a legitimate shared collation list transmitted from the provided information management device. It also has a function as a means!
[0079] 詳述すると、本実施の形態にぉ ヽては、前記公開鍵を利用しデジタル署名により正 規の共有照合リストである力判定しており、当該共有照合リストを受け付けると、予め 受信して!/、た提供情報管理装置の公開鍵を用いて複合ィ匕し、共有照合リストに付カロ されて 、るデジタル署名を用いてデジタル認証を受け、当該共有照合リストが正規の 共有照合リストであるかを判定する(改竄されていないことの判定、出所の正当性の 判定等する)。  More specifically, for the present embodiment, the public key is used to determine the strength of a regular shared collation list using a digital signature, and when the shared collation list is received, it is received in advance. ! /, Composited using the public key of the provided information management device, attached to the shared verification list, received digital authentication using the digital signature, and the shared verification list is a legitimate shared verification list. Determine whether it is a list (determining that it has not been tampered with, determining the legitimacy of the source, etc.).
[0080] ここで、正規の共有照合リストであると判断した場合には、当該共有照合リストを受 け付けて後述する情報蓄積手段 3Gに蓄積すると共に、後述する提供情報照合手段 3Fにて用いる。一方、正規の共有照合リストで無いと判断しない場合 (デジタル認証 に失敗、複合化に失敗等)には、その共有照合リストは蓄積せずに破棄する。  [0080] Here, when it is determined that it is a regular shared collation list, the common collation list is accepted and stored in information storage means 3G described later, and used in provided information collation means 3F described later. . On the other hand, if it is not judged that it is a legitimate shared collation list (digital authentication failed, decryption failed, etc.), the common collation list is discarded without being accumulated.
[0081] 提供情報検索手段 3Bは、提供情報のタイトル等のキーワードとなる検索キーを用 いて、本システム (情報共有ネットワーク)内から、情報受給者が希望する提供情報を 検索し、当該提供情報を有する装置の接続先情報を知るための手段である。具体的 には、情報受給者側装置 S3の画面に表示した所定のフォーマットに提供情報のタイ トル等のキーワードなどが入力されると、検索を行っている装置と情報共有ネットヮー クにて接続されて!、る装置に対して検索要求情報 (検索キー情報)を自動的に送信 する。そして、当該検索対象である提供情報を持っている装置、又は当該提供情報 の接続先情報を蓄積して!/、る装置から、提供情報の接続先情報を含む検索結果情 報を受信する。本実施の形態においては、各装置の持つ検索対象情報内から検索 キーに該当するものを検索し、検索キーに該当した検索対象情報を検索結果情報と して受信する。尚、当該検索対象情報には、提供情報を持つ装置の接続先情報及 び当該提供情報の情報提供者識別子が含まれる。また、ここで検索される装置は、 本システム内に存在する提供情報管理装置 Sl、情報提供者側装置 S2、他の情報 受給者側装置 S3の全てでもよ 、し、何れかの装置でもよ 、。 [0081] The provided information search means 3B searches the provided information desired by the information recipient from within this system (information sharing network) using a search key that is a keyword such as the title of the provided information, and provides the provided information. It is a means for knowing the connection destination information of the device having. Specifically, when a keyword such as the title of the provided information is entered in a predetermined format displayed on the screen of the information receiver side device S3, the information sharing network The search request information (search key information) is automatically sent to the devices that are connected via the network. Then, the search result information including the connection destination information of the provision information is received from the device having the provision information to be searched or the device that stores the connection destination information of the provision information! In this embodiment, the search target information of each device is searched for information corresponding to the search key, and the search target information corresponding to the search key is received as search result information. The search target information includes the connection destination information of the device having the provision information and the information provider identifier of the provision information. The devices searched here may be all of the provided information management device Sl, the information provider side device S2, the other information receiver side device S3, or any of the devices present in the system. ,.
[0082] 具体的には、検索要求は一定の条件 (検索キーを含む検索対象情報を有する)を 満足するまで遠方の装置へ伝播し、検索条件にマッチする検索キーを応答メッセ一 ジにパックして戻ってくる。情報受給者が検索キーワードを指定して検索をかけると、 情報受給者側装置 S3は、ファイル交換ソフトを用いて検索要求情報を作成する。検 索要求情報には検索条件が含まれているので、検索開始装置は要求メッセージに 検索キーを詰めて隣接装置に検索要求情報を送る。要求を受け取った装置では、こ の条件にヒットする検索キーが見つかれば、その検索キーを要求にノックして隣の装 置に要求を渡す。要求内の検索キーの個数が限界になると、ルートを逆に遡って検 索結果の検索キーを含む検索対象情報を検索元に戻す。  [0082] Specifically, a search request is propagated to a remote device until a certain condition (having search target information including a search key) is satisfied, and a search key that matches the search condition is packed in a response message. And come back. When the information receiver specifies a search keyword and performs a search, the information receiver side device S3 creates search request information using file exchange software. Since the search request information includes a search condition, the search start device packs the search key in the request message and sends the search request information to the adjacent device. If the device that received the request finds a search key that hits this condition, it knocks the search key to the request and passes the request to the next device. When the number of search keys in the request is limited, the search target information including the search key of the search result is returned to the search source by going back the route.
[0083] 更に、本実施の形態の提供情報検索手段 3Bは、検索リンクのネットワークを用い、 検索キー情報を含む検索対象情報の検索のほか、当該検索対象情報の拡散を行う 。拡散と検索のいずれの場合でも、検索キーの送信側は検索情報に検索キーをパッ クして送り出し、受信側は検索キーをアンパックして取り出す。このため、本システム では検索キーの拡散も一種の検索として扱う。具体的には、 30秒に 1回、拡散要求 を送信し、検索リンクを張っている隣接装置に対して拡散要求を発行すると、隣接装 置が応答メッセージとして拡散要求に検索キーを含む検索対象情報をパックして返 してくる。このような方法で検索キーを含む検索対象情報を検索リンクでつなぎ合わ せたネットワークに流通させていく。  Furthermore, the provided information search means 3B of the present embodiment uses a search link network to search the search target information including the search key information and to spread the search target information. In both cases of spread and search, the sender of the search key packs the search key in the search information and sends it out, and the receiver sends out the search key by unpacking it. For this reason, this system treats the diffusion of search keys as a kind of search. Specifically, once a spreading request is sent once every 30 seconds and a spreading request is issued to a neighboring device that has a search link, the neighboring device will search for a search message that includes a search key in the spreading request as a response message. Packs information and returns it. In this way, the search target information including the search key is distributed to the network connected by the search link.
[0084] 尚、どの装置が隣接しているかの判断は、例えば回線速度などに基づいて判断す る。 Note that the determination of which device is adjacent is based on, for example, the line speed. The
[0085] 提供情報要求手段 3Cは、前記提供情報検索手段 3Bを用いて検索した提供情報 を持つ装置に対して、提供情報を要求する際に利用するものであり、本実施の形態 においては、前記提供情報検索手段 3Bを用いて受信した検索結果から、提供情報 を有する装置の接続先情報を読み取り、当該装置との間に PtoPの接続を確立する 。そして、その後、提供情報要求信号を提供情報を持つ装置に向けて送信する。尚 、当該情報受給者側装置 S3も、前記情報提供者側装置 S2が有する接続管理手段 ( 図示しない)を有しており、当該接続管理装置用いて提供情報を有する装置等との 接続を確立する。  [0085] Provided information request means 3C is used when requesting provided information to a device having provided information searched using provided information search means 3B. In the present embodiment, From the search result received using the provided information search means 3B, the connection destination information of the device having the provided information is read, and a PtoP connection is established with the device. After that, a provision information request signal is transmitted to a device having provision information. The information receiver side device S3 also has connection management means (not shown) that the information provider side device S2 has, and establishes a connection with the device having the provision information using the connection management device. To do.
[0086] 提供者識別情報受付手段 3Dは、少なくとも前記情報提供者カゝら提供される提供 情報と関連付けられた提供者識別情報に関する情報を受信して受け付ける機能を 有しており、本実施の形態においては、検索結果と共に送られて来る検索対象情報 と関連付けられた提供者識別情報も含まれる。  [0086] The provider identification information accepting means 3D has a function of receiving and accepting at least information related to the provider identification information associated with the provision information provided by the information provider. In the form, provider identification information associated with search target information sent together with the search result is also included.
[0087] 提供情報受付手段 3Eは、前記提供情報要求手段 3Cを用いて要求した提供情報 を受信するための手段である。本実施の形態においては、前述の通り、情報提供者 側装置 S2との間に PtoPの接続を確立した状態で、自己が要求した提供情報の他、 前記検索対象情報等も提供者識別情報と関連付けられた状態で受信する。  [0087] Provided information receiving means 3E is means for receiving provided information requested using provided information requesting means 3C. In the present embodiment, as described above, with the PtoP connection established with the information provider side device S2, in addition to the provision information requested by itself, the search target information and the like are also included in the provider identification information. Receive in the associated state.
[0088] 提供情報照合手段 3Fは、正規の照合情報であると判断した照合情報に基づ!/、て 、当該照合情報に含まれる識別情報と、前記識別情報受付手段により受け付けた識 別情報とを照合し、当該照合情報の内容に合わせて前記提供情報受付手段により 受け付けた提供情報を制御する制御信号を出力する照合手段である。  [0088] The provided information collating means 3F is based on the collation information determined to be regular collation information! /, The identification information included in the collation information, and the identification information received by the identification information receiving means. And a control means for outputting a control signal for controlling the provided information received by the provided information receiving means in accordance with the contents of the matching information.
[0089] 具体的には、前記提供者識別情報受付手段 3Dにより受け付けた提供者識別情報 と、前記照合情報受付手段により受け付けた提供者識別情報とに基づいて、前記提 供情報受付手段により受け付けた提供情報が、情報提供を許可された情報提供者 力もの提供情報である力を照合し、情報提供を許可された情報提供者力もの提供情 報である場合には、提供情報の蓄積を許可する旨の蓄積許可信号を出力する照合 手段であり、受信した提供情報が、適切な情報提供者より提供されたものカゝを照合す る機能を有する。 [0090] 本実施の形態にお!ヽては、提供情報を有する装置から、提供情報及び当該提供 情報と関連付けられた情報提供者識別子を受信すると、前記ハッシュ関数を用いて 当該提供情報と提供者識別子カゝらダイジェスト情報を作成する。次に、前記共有照 合リストの中から前記提供者識別子に対応付けられた公開鍵を検索し、当該公開鍵 と前記ダイジェスト情報とを用いて提供情報管理装置等の認証サーバにて提供情報 のデジタル認証を受け、当該デジタル認証に成功すると提供情報の蓄積を許可する 旨の蓄積許可信号を出力する。 Specifically, based on the provider identification information received by the provider identification information receiving unit 3D and the provider identification information received by the collation information receiving unit, the provider information receiving unit accepts it. If the provided information is the information provided by the information provider authorized to provide information, and the information provided by the information provider authorized to provide the information is This is a verification means for outputting a storage permission signal indicating permission, and has the function of verifying the received information provided by an appropriate information provider. [0090] In the present embodiment, when receiving provision information and an information provider identifier associated with the provision information from an apparatus having provision information, the provision information and provision are provided using the hash function. The digest information is created from the person identifier. Next, a public key associated with the provider identifier is searched from the shared matching list, and the public information and the digest information are used to search for the provided information in an authentication server such as a provided information management device. Upon receiving digital authentication, if the digital authentication is successful, a storage permission signal indicating that storage of the provided information is permitted is output.
[0091] 情報蓄積手段 3Gは、共有照合リスト、提供情報、プログラム等を各種領域に分けて 格納するものである。  [0091] The information storage means 3G stores a shared collation list, provided information, a program, and the like divided into various areas.
[0092] 詳述すると、共有照合リスト領域には、各提供者識別子に基づいて、その提供者名 、提供資格、接続先情報 (IPアドレス、ポート番号)、公開鍵、などの提供者情報の他 、管理者識別子等を含む共有照合リストのデータを格納する。  More specifically, in the shared collation list area, based on each provider identifier, provider information such as the provider name, provision qualification, connection destination information (IP address, port number), public key, etc. In addition, the shared collation list data including the manager identifier and the like is stored.
[0093] 尚、共有照合リスト領域には、前記照合情報判定手段にて、正規の照合情報であ るかを判定した共有照合リストのみを蓄積する。  [0093] In the shared collation list area, only the common collation list for which the collation information determination unit determines whether the collation information is regular is stored.
[0094] また、提供情報領域には、他の装置から受信した提供情報が蓄積されており、本実 施の形態においては、各提供情報識別子 (ハッシュ値)に基づいて、検索対象情報 であるファイル名、キー情報、ファイルの大きさ、更新時刻、提供情報の接続先情報( IPアドレス。ポート番号)を格納すると共に、当該提供情報 (ファイルの内容そのもの) を蓄積している。また、当該検索対象情報及び提供情報は、発信源である提供情報 者の提供者識別子と関連付けられて!/、る。  [0094] In addition, provided information received from other devices is accumulated in the provided information area, and in the present embodiment, the search target information is based on each provided information identifier (hash value). Stores file name, key information, file size, update time, connection destination information (IP address, port number) of provided information, and stores the provided information (file contents themselves). In addition, the search target information and the provided information are associated with the provider identifier of the providing information provider that is the transmission source!
[0095] 提供情報要求受付手段 3Hは、他の情報受給者側装置 S3から送信された提供情 報要求情報を受信するための手段で、具体的には、他の情報受給者側装置 S3から 送信されてきた提供情報要求信号を受信することにより、提供情報識別子等に基づ Vヽて前記提供情報領域内に蓄積した検索対象情報や提供情報の中から検索対象 を検索する。  The provided information request accepting means 3H is a means for receiving provided information request information transmitted from another information receiver side device S3. Specifically, the provided information request accepting means 3H is provided from another information receiver side device S3. By receiving the provided provision information request signal, the retrieval target is searched from the retrieval target information and provision information stored in the provision information area based on the provision information identifier or the like.
[0096] 提供情報送信手段 31は、前記提供情報領域に蓄積された提供情報を、他の情報 受給者側装置 S3から送信された提供情報要求信号を受信することを契機に送信す るものである。詳述すると、前記提供情報要求受付手段 3Hにて自己の提供情報領 域内の情報を検索した結果、他の装置から要求されている情報が自己の提供情報 領域に蓄積した提供情報と合致すると、合致した検索対象情報や提供情報を提供 者識別子と関連付けた状態で要求して来た装置へと送信する。尚、受信側の装置と は、前記接続管理手段を用いて情報を直接送受信している。また、検索対象情報の 拡散等も当該提供情報送信手段 31を用いて実行する。 The provision information transmitting means 31 transmits provision information stored in the provision information area when receiving a provision information request signal transmitted from another information receiver side device S3. is there. More specifically, the provided information request receiving means 3H provides its own provided information area. As a result of searching the information in the area, if the information requested by another device matches the provided information stored in its own provided information area, the matching search target information and provided information are requested in a state associated with the provider identifier. Then send it to the device. Note that information is directly transmitted to and received from the receiving apparatus using the connection management means. Further, the distribution of search target information and the like are executed using the provided information transmitting means 31.
[0097] 提供情報出力手段 3Jは、前記提供情報照合手段 3Fの照合結果に基づいて、提 供情報を出力する出力手段であり、提供情報照合手段 3Fにより、出力可能信号を 受けることを契機として、専用の再生プログラム又は汎用の再生プログラムを用いて、 図 3又は図 4に示すように情報受給者側装置 S3の表示画面に画像を表示したり、音 楽を再生したりする。 Provided information output means 3J is an output means for outputting provided information based on the collation result of provided information collating means 3F, and triggered by receiving an output enable signal by provided information collating means 3F. Then, using a dedicated playback program or a general-purpose playback program, an image is displayed on the display screen of the information receiver side device S3 as shown in FIG. 3 or FIG. 4, and music is played back.
[0098] 次に、各装置の動作について図 5乃至図 8のフローチャートを参照して説明する。  Next, the operation of each device will be described with reference to the flowcharts of FIGS.
(1)提供情報者識別子等を登録 (照合リスト作成)  (1) Register provided information person identifier, etc. (Create collation list)
まず、図 5に示すように、提供情報管理装置 S1が提供者情報受付手段 1Aや登録 手段(図示しない)等を用いて、新規に登録を希望する情報提供者側装置 S2からの 登録要求情報を受け付けると (ステップ S1: Y)、登録に必要となる各種提供者情報 を受け付けるフォーマットを、前記情報提供者側装置 S2へと送信し、当該フォーマツ トに従って提供者情報を受け付ける (ステップ S2)。そして、識別情報管理手段 1Bは 、受け付けた提供者情報が、所定の登録要件項目を満たしているカゝ否か等を判断す ることにより、提供者識別情報である提供者識別子を付与するカゝ否かの許諾判断を 行 、、一定の要件を満たして 、る提供者に対してユニークな提供者識別子を付与す るとともに、鍵生成手段 1Dに対して鍵生成指令信号を出力する。すると、当該鍵生 成指令信号を受けて前記鍵生成手段 1Dは、当該提供者識別子に対する公開鍵及 び秘密鍵のペアを生成する (ステップ S3)。そして、管理用照合リスト作成手段 1Eは 、前記識別情報管理手段 1Bから管理用照合リスト作成信号を受け付けることを契機 に、当該提供者識別子に関連付けて、各種提供者情報 (提供者名、提供資格、接続 先情報である IPアドレスやポート番号等、暗号ィ匕情報となる公開鍵、秘密鍵等)を管 理者リストに追加し最新の管理用照合リストを作成する (ステップ S4)。  First, as shown in FIG. 5, the provided information management device S1 uses the provider information receiving means 1A, the registration means (not shown), etc., and registration request information from the information provider side device S2 that is newly desired to be registered. Is received (step S1: Y), a format for receiving various provider information necessary for registration is transmitted to the information provider side device S2, and the provider information is received according to the format (step S2). Then, the identification information management means 1B determines whether or not the received provider information satisfies a predetermined registration requirement item, thereby giving a provider identifier that is provider identification information. A permission decision is made to determine whether or not the request is satisfied, a unique provider identifier is given to a provider who satisfies certain requirements, and a key generation command signal is output to the key generation means 1D. Then, in response to the key generation command signal, the key generation means 1D generates a public / private key pair for the provider identifier (step S3). Then, the management collation list creation means 1E receives various management information (provider name, provision qualification) in association with the provider identifier when receiving the management collation list creation signal from the identification information management means 1B. Then, add the IP address and port number as the connection destination information (public key, secret key, etc. as encryption key information) to the administrator list to create the latest management verification list (step S4).
[0099] また、当該管理用照合リストに追加された提供者識別子は前記秘密鍵と共に登録 された情報提供者側装置 S2に送信する (ステップ S5)。 [0099] The provider identifier added to the management verification list is registered together with the secret key. Is sent to the information provider side device S2 that has been sent (step S5).
[0100] 次に、前記管理用照合リスト等に基づいて、前記共有照合リスト作成手段 1Fは、新 規の情報提供者を共有照合リストに追加し、提供者提供情報の受給者が、正規の提 供者カゝら提供された情報カゝ否かを判断するために必要となる提供者識別情報等を含 む最新の共有照合リストを作成する (ステップ S6)。 [0100] Next, based on the management collation list or the like, the shared collation list creating means 1F adds a new information provider to the common collation list, and the recipient of the provider-provided information is authorized. The latest shared collation list including the provider identification information necessary for determining whether the information provided by the provider is correct or not is created (step S6).
[0101] そして、当該共有照合リストに認証情報を付加した後 (ステップ S7)、当該共有照合 リストのファイルを情報共有ネットワークで共有する (ステップ S8)。 [0101] Then, after adding authentication information to the shared collation list (step S7), the shared collation list file is shared with the information sharing network (step S8).
[0102] ここで、「情報共有ネットワークで共有する」とは、前記情報共有ネットワークを用い て、自己が有する各種情報 (ファイル)を公開し他の装置が当該情報を受信可能な状 態とすることをいう。 [0102] Here, "to share on the information sharing network" means that the information sharing network is used to disclose various information (files) that the device itself has and other devices can receive the information. That means.
[0103] 本実施の形態においては、情報共有ネットワークの構成装置となっているものは、 全て同じファイル交換ソフトを共有すると共に、 P2P等の通信方式を利用して情報共 有ネットワークでのファイル共有を実現して 、る。  [0103] In this embodiment, all the devices constituting the information sharing network share the same file exchange software, and share files on the information sharing network using a communication method such as P2P. Realize.
(2)新規提供情報を情報共有ネットワーク内に提供 (2) Providing newly provided information within the information sharing network
情報提供者側装置 S2は、図 6に示すように、前記提供情報領域に新規提供情報 が蓄積されることで新規提供情報があると判断すると (ステップ S101)、ダイジェスト 管理手段を用いて、当該提供情報から自己が望む提供情報を検索する際の指針と なる検索対象情報を作成すると共に、提供情報管理手段 2Eを用いて、当該提供情 報を作成する (ステップ S 102)。  As shown in FIG. 6, when the information provider side device S2 determines that there is new provision information by accumulating new provision information in the provision information area (step S101), the digest management means uses the digest management means. The search target information that serves as a guideline for searching for the provided information desired by the user is created from the provided information, and the provided information is created using the provided information management means 2E (step S102).
[0104] 具体的には、ダイジェスト情報管理手段 2Fは、まず、前記提供情報識別子 (ハツシ ュ値)を作成し、その後、当該提供情報識別子 (ハッシュ値)に、ファイルの名前ゃキ 一情報、大きさ、更新時刻、提供情報本体の接続先情報を示す IPアドレスとポート番 号などインデックス情報を関連づけて、一の提供情報に対して、一の検索対象情報 を作成する。 [0104] Specifically, the digest information management means 2F first creates the provision information identifier (hash value), and then adds the name information of the file to the provision information identifier (hash value), One search target information is created for one provided information by associating the index information such as the IP address indicating the size, update time, and connection destination information of the provided information body with the port number.
[0105] また、提供情報管理手段 2Eにより、その提供情報本体 (音楽情報、映像情報等)の 他、当該提供情報に関する付加的情報 (例えば、インデックス情報となるコンテンツタ ィトル、再生時間、アーティスト名、アルバム名、ジャンル、内容や、当該提供情報を 販売する際の販売情報である販売価格や、視聴回数、視聴の可否等の視聴情報等 )を、前記提供情報識別子 (ハッシュ値)に関連づけて、一の提供情報を作成する。 [0105] In addition to the provided information body (music information, video information, etc.), the provided information management means 2E also provides additional information related to the provided information (for example, content title, index time, artist name as index information) , Album name, genre, content, sales price when selling the provided information, viewing information such as viewing frequency, viewing availability, etc. ) Is associated with the provision information identifier (hash value) to create one provision information.
[0106] 更に、後述する提供情報照合手段 3Fにてデジタル認証の際に利用するダイジエス ト情報を生成する。具体的には、前記 SHA— 1等のハッシュ関数を用いて、提供情 報と自己の提供者識別情報 (提供者識別子)から、ノ、ッシュ値であるダイジェスト情報 を生成する。  [0106] Furthermore, the provided information collating means 3F, which will be described later, generates digest information used for digital authentication. Specifically, the hash information such as SHA-1 is used to generate digest information that is a hash value from the provided information and its own provider identification information (provider identifier).
[0107] 次に、前記秘密鍵と前記ダイジェスト情報とを用いて当該ダイジェストに対してデジ タル認証を受けると (ステップ S103)、当該検索対象情報等を前記提供情報領域に 蓄積し、他の装置力もの接続に応じて送信可能な状態において公開して共有する( ステップ S 104)。  Next, when digital authentication is performed on the digest using the secret key and the digest information (step S103), the search target information and the like are stored in the provided information area, and other devices It is disclosed and shared in a state where it can be transmitted in accordance with a powerful connection (step S104).
(3)提供情報を要求  (3) Request information provided
まず、図 7に示すように、提供情報を要求する情報受給者側装置 S3は、提供情報 管理装置 S1に接続してログインし (ステップ S201: Y)、最新の共有照合リストを受信 する (ステップ S 202)そして、前記共有照合リスト受付手段 3Aの有する照合情報判 定手段を用いて、前記共有照合リストが正規のリストである力否かを判定する。具体 的には、当該共有照合リストを予め受信していた提供情報管理装置の公開鍵を用い て複合ィ匕し、共有照合リストに付加されて 、るデジタル署名を用いて図示しな 、デジ タル認証サーバを介して当該共有照合リストにっ ヽてデジタル認証を行 ヽ、当該共 有照合リストが、正規の共有照合リストであるかを判定する(改竄されていないことの 判定、出所の正当性の判定等する)。そして、認証が認められた正規の共有照合リス トを情報蓄積手段 3Gに蓄積する (ステップ S203 :Y)。尚、認証が認められな力つた ( 正規の共有照合リストで無 、)共有照合リストにっ 、ては破棄し (ステップ S 205)、再 び新たな共有照合リストの受信を行う。  First, as shown in FIG. 7, the information receiver side device S3 requesting the provision information connects to the provision information management device S1 and logs in (step S201: Y), and receives the latest shared collation list (step S201). S 202) Then, using the collation information determining means of the common collation list receiving means 3A, it is determined whether or not the common collation list is a regular list. Specifically, the shared collation list is composited using the public key of the provided information management apparatus that has been received in advance, and is added to the common collation list and is not shown using a digital signature. Digital authentication is performed on the shared collation list via the authentication server, and it is determined whether the shared collation list is a legitimate shared collation list (determination of tampering, legitimacy of origin) Etc.). Then, the authorized shared collation list for which authentication has been approved is stored in the information storage means 3G (step S203: Y). If the authentication is not approved (not in the regular shared collation list), the shared collation list is discarded (step S205), and a new shared collation list is received again.
[0108] 次に、各装置に拡散している検索対象情報を基に、ダウンロードを希望する提供情 報を検索する(ステップ S 204)。  [0108] Next, based on the search target information spread to each device, the provided information desired to be downloaded is searched (step S204).
[0109] 具体的には、まず情報共有ネットワークに接続し、前記 P2P方式のファイル共有ソ フトを用いて検索する。情報受給者側装置 S3の表示手段に表示された [検索単語] テキストボックスに探しているファイルの名前(一部でもよい)が入力され、 [検索]ボタ ンが押下されることにより、検索キーを受け付ける。情報共有ネットワーク内の各装置 は、網の目状に接続しているため、隣接する他の装置に対してファイルの検索依頼 データを送信する。そしてその装置に検索キーがなければ、その検索依頼データを またその隣の装置に依頼 (送信)するということを検索先の装置力 繰り返していく。 すると、いっかは情報共有ネットワークに接続されている全ての装置に対して検索依 頼データが送信され、個々の装置を検索することできる。このようにいくつもの装置を 介して、検索依頼を伝播していき、検索キーに合致する検索対象情報を有する装置 から、検索合致データと共に検索キーを有する検索対象情報を検索結果情報として 受信することを契機に検索を終了する。 [0109] Specifically, first, connection is made to an information sharing network, and search is performed using the P2P file sharing software. The name (or part of the file) you are looking for is entered in the [Search word] text box displayed on the display means of the information receiver device S3, and the search key is pressed when the [Search] button is pressed. Accept. Each device in the information sharing network Since it is connected in a network, it sends file search request data to other neighboring devices. If that device does not have a search key, the search destination device is repeatedly requested (sent) for the search request data to the next device. Then, the search request data is transmitted to all devices connected to the information sharing network, and individual devices can be searched. In this way, the search request is propagated through several devices, and the search target information having the search key together with the search match data is received as the search result information from the device having the search target information matching the search key. The search ends when
[0110] 尚、情報受給者側装置 S3は、受信した検索合致データ等に基づいて指定した条 件に合うファイルを表示手段に一覧表示する。  [0110] The information receiver side device S3 displays a list of files that meet the conditions specified based on the received search match data and the like on the display means.
[0111] その後、情報受給者側装置 S3は、検索で発見された提供情報をダウンロードする ため、前記検索対象情報に含まれる接続先情報に基づ 、て提供情報を有する装置 と P2P方式にて直接的に接続し、提供情報要求信号を送信する (ステップ S 206)。  [0111] After that, the information receiver side device S3 downloads the provided information found by the search, and uses the P2P method with the device having the provided information based on the connection destination information included in the search target information. A direct connection is made and a provision information request signal is transmitted (step S206).
[0112] そして、提供情報と、当該提供情報と関連付けられた情報提供者識別子を受信す ると (ステップ S 207)、前記照合手段を用いて当該提供情報と提供者識別子力もダイ ジェスト情報を作成する。(ステップ S208)。次に、共有照合リストの中から前記提供 者識別子に対応付けられた公開鍵を検索し、当該公開鍵を用いて提供情報管理装 置 S1が有する認証手段(図示しない)を用いて提供情報のデジタル認証を受け、当 該デジタル認証に成功すると (ステップ S 209 : Y)、出力手段を用いて音楽を再生し たり、映像を表示したりなど、情報受給者側装置 S3の出力手段を用いて提供情報を 出力する。また、当該提供情報を提供情報領域に蓄積すると共に (ステップ S211)、 当該提供情報を情報共有ネットワーク上で共有する (ステップ S213)。一方、前記認 証に失敗した場合には、受信した提供情報等のデータは削除する (ステップ S212)  [0112] Then, when the provided information and the information provider identifier associated with the provided information are received (step S207), the provided information and the provider identifier power also create digest information using the matching means. To do. (Step S208). Next, a public key associated with the provider identifier is searched from the shared collation list, and using the public key, authentication information (not shown) of the provided information management device S1 is used to provide the provided information. When the digital authentication is received and the digital authentication is successful (step S209: Y), the output means of the information receiver side device S3, such as playing music using the output means or displaying the video, is used. Output advertisement information. Further, the provision information is accumulated in the provision information area (step S211), and the provision information is shared on the information sharing network (step S213). On the other hand, if the authentication fails, the received data such as provided information is deleted (step S212).
(4)提供情報を送信 (4) Send provided information
一方、情報受給者側装置 S3が要求する提供情報を有する装置は、前記情報受給 者側装置 S3と P2Pにて直接接続して前記提供情報要求信号を受信すると、提供情 報要求信号に含まれる提供情報識別子に基づいて蓄積手段から要求された提供情 報を読み出して情報受給者側装置 S3へと送信する。 On the other hand, when the device having the provision information requested by the information receiver side device S3 is directly connected to the information receiver side device S3 by P2P and receives the provision information request signal, it is included in the provision information request signal. Provision information requested from the storage means based on the provision information identifier The information is read and transmitted to the information receiver side device S3.
(5)提供情報者識別子等を削除  (5) Delete provided information person identifier, etc.
図 8に示すように、提供情報管理装置 S1は、不正提供者情報受付手段 1A (図示し ない)を用いて、例えば、適法でないコピーコンテンツ等を提供している不正な情報 提供者に関する不正情報提供者情報を受信などして受け付けると (ステップ S301)、 当該不正提供者情報に含まれる提供者識別子等に基づいて該当する情報提供者 を管理用照合リストから検索する (ステップ S302)。そして、当該不正提供者の提供 者識別情報を管理用照合リストから削除する (ステップ S303)と共に、当該不正提供 者の提供者識別情報を共有照合リストから削除する (ステップ S304)。その後、不正 提供者の提供者識別情報が削除された新たな共有照合リストに認証を付加し (ステツ プ S305)、当該共有照合リストを情報共有ネットワークにて共有する (ステップ S306)  As shown in FIG. 8, the provided information management device S1 uses the unauthorized provider information receiving means 1A (not shown), for example, unauthorized information regarding an unauthorized information provider that provides illegal copy content, etc. When the provider information is received and accepted (step S301), the corresponding information provider is searched from the management collation list based on the provider identifier included in the unauthorized provider information (step S302). Then, the provider identification information of the unauthorized provider is deleted from the management verification list (step S303), and the provider identification information of the unauthorized provider is deleted from the shared verification list (step S304). After that, authentication is added to the new shared collation list from which the provider identification information of the illegal provider has been deleted (step S305), and the shared collation list is shared on the information sharing network (step S306).
[0113] 一方、提供情報管理装置 S1は、不正提供者情報受付手段 1A (図示しない)を用 いて、例えば、適法でないコピーコンテンツ等を提供している不正な情報提供者に関 する不正情報提供者情報を受信などして受け付けると、前記削除指示手段 1H等を 用いて、不正な情報提供者が提供した音楽コンテンツ等の提供情報を本システム内 (情報共有ネットワーク内)から削除する。 [0113] On the other hand, the provided information management device S1 uses the unauthorized provider information receiving means 1A (not shown), for example, to provide unauthorized information related to an unauthorized information provider that provides illegal copy content, etc. When the user information is received and accepted, the provision information such as music content provided by an unauthorized information provider is deleted from the system (in the information sharing network) using the deletion instruction means 1H or the like.
[0114] 詳述すると、前記不正情報受付手段を用いて受け付けた提供者識別情報に基づ いて削除対象となる不正な情報提供者の提供情報識別子を特定する。そして、既に 情報受給者側装置 S3に蓄積された提供情報の中から、不正な情報提供者の提供 者識別子と関連付けられた提供情報の削除を指示する削除プログラムを、情報受給 者側装置 S3に強制的に送信し、不正な情報提供者が発信源となっている提供情報 を削除していく。  More specifically, the provision information identifier of the unauthorized information provider to be deleted is specified based on the provider identification information received using the unauthorized information receiving means. Then, a deletion program that instructs the information receiver side device S3 to delete the provision information associated with the provider identifier of the unauthorized information provider from the provision information already stored in the information receiver side device S3 is provided to the information receiver side device S3. The information is forcibly transmitted and the information provided by an unauthorized information provider is deleted.
[0115] 以上の構成により、不正な提供情報が流通することを防ぎつつ、システム内に提供 情報を提供することができる装置を増やし、正規の提供情報に関する伝播効率を飛 躍的に向上させることができる。  [0115] With the above configuration, while preventing unauthorized distribution of information from being distributed, the number of devices capable of providing the information provided in the system is increased, and the propagation efficiency of legitimate information provided is dramatically improved. Can do.
[0116] また、前記情報受給者側装置 S3が、前記提供者識別情報受付手段 3Dにより受け 付けた提供者識別情報と、前記共有照合リスト受付手段 3Aにより受け付けた提供者 識別情報とに基づいて、前記提供情報受付手段 3Eにより受け付けた提供情報が、 情報提供を許可された情報提供者力ゝらの提供情報であるかを照合し、情報提供を許 可された情報提供者力ゝらの提供情報である場合には、提供情報の蓄積を許可する 旨の蓄積許可信号を出力する提供情報照合手段 3Fと、前記提供情報照合手段 3F により蓄積を許可された提供情報及び当該提供情報と関連付けられた提供者識別 情報を蓄積する情報蓄積手段 3Gと、前記情報蓄積手段 3Gに蓄積した提供情報を 、他の情報受給者側装置 S3から送信された提供情報要求信号を受信することを契 機に送信する提供情報送信手段 31を有することにより、情報受給者側装置 S3にお いては、情報提供を許可された情報提供者力ゝらの提供情報のみを許容するため、不 正な提供情報の共有や拡散等を効果的に防止することができる。 [0116] Also, the provider identification information received by the provider identification information receiving unit 3D and the provider received by the shared collation list receiving unit 3A by the information receiver side device S3. Based on the identification information, the provided information received by the provided information accepting means 3E is collated to confirm whether the provided information is provided by the information provider authorized to provide the information, and the information permitted to provide the information In the case of the provision information provided by the provider, the provision information collating means 3F that outputs an accumulation permission signal for permitting accumulation of the provision information, and the provision information permitted to be accumulated by the provision information collating means 3F And the information storage means 3G for storing the provider identification information associated with the provided information, and the provided information stored in the information storage means 3G, the provided information request signal transmitted from the other information receiver side device S3. The provision of the provision information transmission means 31 for transmission upon reception allows the information receiver side device S3 to allow only the provision information provided by the information provider authorized to provide the information. , Incorrect proposal Sharing and diffusion of information can be effectively prevented.
[0117] また、情報提供を許可する情報提供者の提供者識別情報を管理する提供者識別 情報管理手段 1Bと、前記提供者識別情報管理手段 1Bに基づ 、て情報提供を許可 された提供者識別情報を含む照合リストを作成する共有照合リスト作成手段 1Fと、前 記共有照合リスト作成手段 1Fにて作成した照合リストを出力する共有照合リスト送信 手段 1Gとを具備する提供情報管理装置 S1を有しているため、前記照合リストの管理 を適正に行い、不正な提供情報の流通をより効果的に防止できる。  [0117] Also, the provider identification information management means 1B for managing the provider identification information of the information provider permitted to provide information, and the provision of which information provision is permitted based on the provider identification information management means 1B Provided information management device S1 comprising: a shared collation list creation means 1F for creating a collation list including user identification information; and a shared collation list transmission means 1G for outputting the collation list created in the shared collation list creation means 1F Therefore, it is possible to appropriately manage the collation list and prevent distribution of illegal provision information more effectively.
[0118] 更に、前記提供情報管理装置 S1が、前記提供者識別情報に基づいて、情報受給 者側装置 S3に蓄積された提供情報の削除指示を送信する削除指示手段 1Hを有す ることで、万が一、不正な提供情報がシステム内に流出してしまったとしても、当該不 正な提供情報を削除して適切な提供情報管理システムを保つことができる。  [0118] Furthermore, the provision information management device S1 has a deletion instruction means 1H that transmits a deletion instruction of the provision information stored in the information receiver side device S3 based on the provider identification information. In the unlikely event that illegal provision information leaks into the system, the provision information management system can be maintained by deleting the provision information.
[0119] 加えて、前記提供情報管理装置 S1が、前記提供者側装置から送信される提供情 報を蓄積する提供情報蓄積手段 IIを有することにより、システム内に提供情報を有 する装置が少な!、場合であっても、情報受給者は望む提供情報を入手できる。  [0119] In addition, since the provision information management device S1 includes provision information storage means II for storing provision information transmitted from the provider side device, there are few devices having provision information in the system. ! In any case, information recipients can get the information they want.
[0120] また、前記情報提供者側装置 S2が、提供情報又は提供者識別情報と関連付けて 、前記提供情報管理装置 S1を識別する管理識別情報を送信しておくことで、当該シ ステム内に流れる情報を一括して管理することも可能となる。  [0120] In addition, the information provider side device S2 transmits management identification information for identifying the provided information management device S1 in association with the provided information or the provider identification information, so that the information provider side device S2 transmits the management identification information in the system. It is also possible to manage the flowing information in a batch.
[0121] 更に、提供情報受給者側装置 S3が、提供情報を有する装置の接続先情報を検索 する接続先検索手段を有し、 PeertoPeer等の通信モデルを用いた情報共有ネット ワークを利用して前記接続先情報に基づいて提供情報を有する装置と接続を確立し 、直接に提供情報の送受信を行うことで、提供情報の入手効率を向上できる。 [0121] Further, provided information receiver side device S3 has connection destination search means for searching connection destination information of a device having provided information, and an information sharing network using a communication model such as PeertoPeer By establishing a connection with a device having provision information based on the connection destination information using a work and directly transmitting / receiving the provision information, it is possible to improve provision efficiency of the provision information.
<第二実施形態 >  <Second embodiment>
第一実施形態にお!ヽては、情報提供を許可された提供者識別情報を含む情報提 供者限定用の照合リストを情報共有ネットワーク内に流すことで、情報共有ネットヮー ク内に情報提供をできる情報提供者を限定し、提供情報を管理していた。  In the first embodiment, information is provided in the information sharing network by running a collation list for information providers only, including the identification information of the providers permitted to provide information, in the information sharing network. The information providers who can be managed were limited and the provided information was managed.
[0122] 第二実施形態においては、第一実施形態とは逆に、情報共有ネットワーク内に流し ては!、けな!/、 (流通を禁止する)提供情報識別情報や当該提供情報を送信して!/、る 情報提供者の提供者識別情報等の識別情報を自動削除用の照合リストとして管理し 、当該照合リストに含まれる識別情報と合致した際には、情報受給者側装置 S3は、 当該識別情報と関連付けられた提供情報を、受信せずに無視したり、情報蓄積手段 3Gに蓄積された提供情報を削除する構成について説明する。  [0122] In the second embodiment, contrary to the first embodiment, the information must be distributed in the information sharing network !, Kena! /, (Prohibit distribution) Provided information identification information and the provided information are transmitted When the identification information such as the provider identification information of the information provider is managed as a collation list for automatic deletion and matches the identification information included in the collation list, the information receiver side device S3 Describes a configuration in which the provision information associated with the identification information is ignored without being received, or the provision information stored in the information storage means 3G is deleted.
[0123] 以下、各装置の概略機能について、第一実施形態と異なる点を詳述する。  [0123] Hereinafter, the points of difference between the schematic functions of the devices and the first embodiment will be described in detail.
[0124] 提供情報管理装置 S1は、不正な提供情報を情報共有ネットワーク内から排除する ための照合情報である自動削除用の照合リストを管理する。  [0124] The provided information management device S1 manages a collation list for automatic deletion, which is collation information for excluding illegal provision information from the information sharing network.
[0125] 当該提供情報管理装置 S1が有する管理用照合リスト作成手段 1Eは、図示しない 不正情報受付手段から、不正な情報提供者や不正な提供情報に関する情報を受信 すると、当該不正な情報提供者や不正な提供情報に関する識別情報を含む管理用 照合リストを作成する機能を有している。尚、削除照合リストとなる当該管理用照合リ ストは、本システムに流通することを禁止や削除する情報提供者や提供情報を一覧 可能なリストデータであり、管理者が提供者識別情報等を管理するために必要となる ものである。また、当該管理用照合リストは、管理者のみが利用する。  [0125] When the management collation list creation means 1E of the provided information management device S1 receives information on an illegal information provider or illegal provision information from an unauthorized information reception means (not shown), the unauthorized information provider And a function to create a management collation list that includes identification information related to illegally provided information. The management collation list, which is a deletion collation list, is list data that can list information providers and information to be prohibited or deleted from distribution to this system. It is necessary for management. Further, only the administrator uses the management verification list.
[0126] 具体的には、不正提供者や不正提供情報に関する情報 (識別情報)等を受信する と、当該識別情報と、情報蓄積手段 1Hに蓄積していた管理用照合リストが有する識 別情報とを比較する。そして、既存の管理用照合リストに、削除や禁止対象となって いる識別情報がない場合には、当該削除等される情報提供者や提供情報に関する 情報 (識別情報)等を追加し、常に最新の管理用照合リストを作成する。尚、当該管 理用照合リストには、前記識別情報のみを保有しても良いし、前記情報提供者情報( 提供者名、提供資格、接続先情報である IPアドレスやポート番号等、暗号化情報と なる公開鍵、秘密鍵等)を、情報提供者識別子に関連付けたデータとして保有しても 良い。 [0126] Specifically, when receiving information (identification information), etc., regarding the illegal provider and illegal provision information, the identification information and the identification information included in the management collation list stored in the information storage means 1H And compare. If there is no identification information that is subject to deletion or prohibition in the existing management collation list, the information provider to be deleted or information (identification information) related to the information to be deleted is added, so that it is always up-to-date. Create a collation list for management. The management verification list may include only the identification information or the information provider information ( Provider name, provision qualification, IP address and port number as connection information, public key and secret key as encryption information, etc.) may be held as data associated with information provider identifier.
[0127] 本実施の形態においては、主に、提供情報 (ファイル)識別子となっているノ、ッシュ 値に基づいて当該管理用照合リストを作成している。  In the present embodiment, the management collation list is created mainly based on the hash value that is the provided information (file) identifier.
[0128] ここで、提供情報 (ファイル)識別子となって 、るハッシュ値は、一つの提供情報の 内容全体を要約したものなので、たとえファイル名が異なっていても、当該ハッシュ値 が同じであれば同じ内容の提供情報として取り扱うことが可能となる。  [0128] Here, the hash value that becomes the provision information (file) identifier summarizes the entire contents of one provision information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
[0129] 力!]えて、管理用照合リスト作成手段 1Eは、前記情報蓄積手段 1Hに蓄積している 提供情報領域に格納した提供情報を、前記識別情報に基づ 、て削除する削除指令 信号を出力する。具体的には、当該管理用照合リストに含まれる識別情報と、前記情 報蓄積手段 1Hに蓄積している提供情報領域に格納した提供情報の識別情報とを 照合し、両者が合致した場合には、当該識別情報と関連付けられた提供情報を削除 する指令信号を出力する。  [0129] Power! The management collation list creation means 1E outputs a deletion command signal for deleting the provision information stored in the provision information area accumulated in the information accumulation means 1H based on the identification information. Specifically, the identification information included in the management collation list is collated with the identification information of the provision information stored in the provision information area stored in the information storage means 1H. Outputs a command signal for deleting the provision information associated with the identification information.
[0130] 共有照合リスト作成手段 1Fは、前記識別情報に基づいて、前記提供情報を管理す るための照合リストを作成する照合リスト作成手段であり、具体的には、前記不正情 報受付手段に基づいて、情報共有ネットワーク内での流通を禁止したり、削除の対象 としている情報提供者や提供情報に関する識別情報を含む自動削除用の照合リスト を作成するものであり、提供情報の受給者が、不正な提供者カゝら提供された情報か 否か等を判断するために必要となる識別情報を含む自動削除用の共有照合リストを 作成する機能を有している。尚、当該自動削除用の共有照合リストは、本システムに 情報提供をすることを禁止した情報提供者や流通することを禁止した提供情報を一 覧可能なリストデータであり、本システムを利用する利用者全体で共有する。  [0130] Shared collation list creation means 1F is collation list creation means for creating a collation list for managing the provided information based on the identification information. Specifically, the illegal collation information reception means Based on the information sharing network, and creates a collation list for automatic deletion that includes identification information about the information provider and provision information to be deleted. However, it has a function to create a shared collation list for automatic deletion including identification information necessary for determining whether or not the information is provided by an unauthorized provider. Note that the shared collation list for automatic deletion is list data that can list information providers that are prohibited from providing information to this system and information that is prohibited from being distributed. Share with all users.
[0131] 具体的には、前記管理用照合リスト作成手段 1Eと同様に、不正提供者や不正提供 情報に関する情報 (識別情報等)を受信すると、当該識別情報と、情報蓄積手段 1H に蓄積していた共有照合リストが有する識別情報とを比較する。そして、既存の共有 照合リストに、削除や禁止対象となっている識別情報がない場合には、当該削除等さ れる情報提供者や提供情報に関する情報 (識別情報)等を追加し、常に最新の共有 照合リストを作成する。尚、当該共有照合リスト〖こは、識別情報のみを保有しても良い し、前記情報提供者情報 (提供者名、提供資格、接続先情報である IPアドレスゃポ ート番号等、暗号ィ匕情報となる公開鍵等)を、情報提供者識別子に関連付けたデー タとして保有しても良い。 [0131] Specifically, similar to the management collation list creation means 1E, when receiving information (identification information, etc.) related to unauthorized providers and unauthorized information, the identification information and the information storage means 1H are stored. The identification information included in the shared collation list that has been stored is compared. If there is no identification information that is subject to deletion or prohibition in the existing shared collation list, the information provider to be deleted or information (identification information) related to the provision information is added, and the latest information is always updated. share Create a collation list. The shared collation list may contain only identification information, or the information provider information (provider name, provision qualification, IP address as connection destination information, port number, etc.) (A public key that becomes information) may be held as data associated with the information provider identifier.
[0132] 本実施の形態においては、主に、提供情報 (ファイル)識別子となっているノ、ッシュ 値に基づいて当該自動削除用の共有用照合リストを作成している。  In the present embodiment, a shared collation list for automatic deletion is created mainly based on the hash value that is the provided information (file) identifier.
[0133] ここで、提供情報 (ファイル)識別子となって 、るハッシュ値は、一つの提供情報の 内容全体を要約したものなので、たとえファイル名が異なっていても、当該ハッシュ値 が同じであれば同じ内容の提供情報として取り扱うことが可能となる。  [0133] Here, the hash value that serves as the provided information (file) identifier summarizes the entire contents of one provided information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
[0134] また、当該共有照合リストには、管理識別情報となる管理者識別子と、当該照合リス トが正規のリストであることを保証 (改竄されて!、な 、ことの保証、出所の保証)するた めのデジタル認証されたデジタル署名や、当該デジタル署名に利用する提供情報管 理装置の秘密鍵の情報を関連付けて 、る。  [0134] In addition, the shared collation list includes an administrator identifier as management identification information and a guarantee that the collation list is a legitimate list (has been tampered with! ) And the information on the private key of the provided information management device used for the digital signature.
[0135] 共有照合リスト送信手段 1Gは、前記共有照合リスト作成手段にて作成した共有照 合リストを出力する照合リスト出力手段である。  The shared collation list transmission unit 1G is a collation list output unit that outputs the shared collation list created by the common collation list creation unit.
[0136] 本実施の形態においては、始めてログインしてきた情報受給者側装置 S3には、共 有照合リスト全体の情報を出力するが、二度目以降は、既存の共有照合リストから追 加等の変更があった箇所のみを共有照合リストの変更情報として出力する。  [0136] In the present embodiment, information on the entire shared matching list is output to the information receiver side device S3 that has logged in for the first time. However, after the second time, information is added from the existing shared matching list. Only the changed part is output as the change information of the shared collation list.
[0137] 具体的には、前記共有照合リスト作成手段 1Fにて変更した共有照合リストの変更 箇所である識別情報 (新たに禁止した識別情報等)に、管理識別情報となる管理者 識別子と、当該照合リスト正規のリストであることを保証 (改竄されて 、な 、ことの保証 、出所の保証)するためのデジタル認証されたデジタル署名を付加し、提供情報管 理装置 S 1の秘密鍵にて暗号化した状態で、情報受給者側装置 S 3に向けて情報受 給者側装置 S3が有する共有照合リストを変更する情報を送信する機能を有する。つ まり、情報受給者側装置 S3から送信された識別情報要求信号である共有照合リスト 要求信号を受信することにより、その時点で最新の共有照合リストを後述する情報蓄 積手段 IIから読出し、当該共有照合リストが、正規のものであることを判定できる情報 を付加した状態で当該要求信号の送信元である情報受給者側装置 S3に共有照合リ ストを送信する。 [0137] Specifically, the identification information (newly prohibited identification information, etc.) that is the changed part of the shared collation list changed by the shared collation list creation means 1F includes an administrator identifier that becomes management identification information, A digitally authenticated digital signature is added to guarantee that the verification list is a legitimate list (guaranteeed that it has been tampered with, and the origin is guaranteed), and is added to the private key of the provided information management device S 1 In the encrypted state, the information receiving side device S3 has a function of transmitting information for changing the shared collation list of the information receiving side device S3. That is, by receiving the shared verification list request signal that is the identification information request signal transmitted from the information receiver side device S3, the latest shared verification list at that time is read from the information storage means II described later, and The shared verification list is added to the information receiver side device S3, which is the transmission source of the request signal, with information that can determine that the shared verification list is legitimate. Send a strike.
[0138] 情報蓄積手段 IIは、管理用照合リスト、共有照合リスト、提供情報、プログラム等の 各種データを各領域に分けて格納するものである。  The information storage means II stores various data such as a management collation list, a common collation list, provided information, a program, etc. in each area.
[0139] 詳述すると、管理用照合リスト領域には、主として、上記提供情報 (ファイル)識別子 となって!/、るノ、ッシュ値に基づ 、て作成した前記管理用照合リストを蓄積して 、る。ま た、前記提供情報識別子の他、当該削除や禁止対象となっている情報提供者の情 報提供者識別子を格納しており、各情報提供者識別子に基づいて、その提供者名、 提供資格、接続先情報 (IPアドレス、ポート番号)、暗号ィ匕情報 (公開鍵、秘密鍵)な どの提供者情報を含む管理者用照合リストのデータを蓄積している。また、その他、 その提供者が提供する提供情報識別子等も前記提供者識別子に関連付けて蓄積し ている。  More specifically, the management collation list area mainly stores the management collation list created based on the above-mentioned provided information (file) identifiers! And In addition to the provided information identifier, the information provider identifier of the information provider that is subject to deletion or prohibition is stored. Based on each information provider identifier, the provider name, provision qualification In addition, it stores data for the administrator collation list including provider information such as connection destination information (IP address, port number), and encryption key information (public key, private key). In addition, the provided information identifier provided by the provider is also stored in association with the provider identifier.
[0140] カロえて、当該管理用照合リストのデータには、管理識別情報となる管理者識別子と 、当該照合リストが正規のリストであることを保証 (改竄されていないことの保証、出所 の保証)するためのデジタル認証されたデジタル署名の情報の他、当該提供情報管 理装置の暗号化情報 (公開鍵、秘密鍵)と関連付けて格納して 、る。  [0140] The management collation list data includes an administrator identifier as management identification information and a guarantee that the collation list is a legitimate list (guarantee that tampering has not occurred, source guarantee In addition to the digitally authenticated digital signature information, the encrypted information (public key, private key) of the provided information management device is stored and stored.
[0141] また、共有照合リスト領域には、主として、上記提供情報 (ファイル)識別子となって V、るハッシュ値に基づ 、て作成した前記自動削除用の共有照合リストを蓄積して!/、る 。カロえて、前記提供情報識別子の他、削除や禁止対象となっている情報提供者識別 子を格納しており、各提供者識別子に基づいて、その提供者名、提供資格、接続先 情報 (IPアドレス、ポート番号)、公開鍵、などの提供者情報の他、管理者識別子等を 含む共有照合リストのデータを格納する。力 tlえて、当該共有照合リストのデータは、管 理識別情報となる管理者識別子と、当該照合リストが正規のリストである保証 (改竄さ れて 、な 、ことの保証、出所の保証)するためのデジタル認証されたデジタル署名の 情報と当該提供情報管理装置 S 1の秘密鍵とを関連付けて格納して!/、る。  [0141] Also, in the shared collation list area, the above-described shared collation list for automatic deletion created based on the hash value V, which serves as the provided information (file) identifier, is accumulated! / , Ru In addition to the provided information identifier, it stores information provider identifiers that are subject to deletion or prohibition. Based on each provider identifier, the provider name, provision qualification, connection destination information (IP Stores shared collation list data including administrator identifiers in addition to provider information such as addresses and port numbers) and public keys. In addition, the data of the shared collation list shall be provided with an administrator identifier as management identification information, and a guarantee that the collation list is a legitimate list (guaranteeed that it has been tampered with, guarantee of origin) The digitally authenticated digital signature information and the private key of the provided information management device S 1 are stored in association with each other!
[0142] 更に、提供情報領域には、前記情報提供者側装置 S2から送信された提供情報が 蓄積されており、本実施の形態においては、各提供情報識別子 (ハッシュ値)に基づ いて、検索対象情報であるファイル名、キー情報、ファイルの大きさ、更新時刻、提供 情報の接続先情報 (IPアドレス。ポート番号)を格納すると共に、当該提供情報本体( 音楽データファイルの内容そのもの)を含む提供情報や、提供者識別子等を格納し ている。 [0142] Further, in the provided information area, provided information transmitted from the information provider side device S2 is accumulated. In the present embodiment, based on each provided information identifier (hash value), Stores the search target information file name, key information, file size, update time, connection destination information (IP address, port number) of the provided information, and the provided information body ( It stores provided information including the music data file itself) and provider identifiers.
[0143] 尚、上記手段以外は、第一実施形態と同様の構成を有している。  [0143] The configuration other than the above is the same as that of the first embodiment.
[0144] 情報提供側装置 S2は、第一実施形態と同様の構成を有している。  [0144] The information providing apparatus S2 has the same configuration as that of the first embodiment.
[0145] 情報需給側装置 S3は、前提として、前記自動削除用の共有照合リストに含まれる 識別情報と合致した識別情報 (提供者識別情報又は提供情報識別情報)を有する 提供情報は、禁止する (送受信しない)また、前記情報蓄積手段 IIに蓄積している提 供情報である場合には、当該提供情報を削除する機能 (プログラム)を有して!/、る。  [0145] The information supply / demand side device S3, as a premise, prohibits provided information having identification information (provider identification information or provided information identification information) that matches the identification information included in the automatic verification shared collation list. (Not transmitted / received) Also, in the case of the provided information stored in the information storage means II, it has a function (program) for deleting the provided information.
[0146] 情報需給側装置 S3の共有照合リスト受付手段 3Aは、少なくとも禁止又は削除する 提供情報の識別情報を含んだ照合情報である共有照合リスト (削除照合リスト)を受 け付ける手段であり、本システムに接続するたびに、共有照合リスト要求信号を前記 提供情報管理装置 S1へと送信し、その時点で最新の共有照合リストを前記提供情 報管理装置 S1から受信する。  [0146] The shared collation list accepting means 3A of the information supply / demand side apparatus S3 is a means for accepting a shared collation list (deletion collation list) that is collation information including identification information of provision information to be prohibited or deleted. Each time the system is connected, a shared collation list request signal is transmitted to the provided information management device S1, and the latest shared collation list at that time is received from the provided information management device S1.
[0147] 本実施の形態においては、一度目は、共有照合リスト全体を受信するが、その後は 、当該共有照合リストの変更箇所のみの情報を受信する。  In the present embodiment, the entire shared collation list is received for the first time, but thereafter, only information on the changed part of the shared collation list is received.
[0148] 力!]えて、当該共有照合リスト受付手段 3Aは、共有照合リスト (受け付けた照合情報) 力 提供情報管理装置から送信された正規の共有照合リストに関する情報であるか を判定する照合情報判定手段としての機能も有している。  [0148] The shared collation list accepting means 3A, the collation information (accepted collation information), collation information for determining whether the information is related to the regular shared collation list transmitted from the provided information management device. It also has a function as a determination means.
[0149] 詳述すると、本実施の形態にぉ ヽては、前記公開鍵を利用しデジタル署名により正 規の共有照合リストである力判定しており、当該共有照合リストを受け付けると、予め 受信して!/、た提供情報管理装置の公開鍵を用いて複合ィ匕し、共有照合リストに付カロ されて 、るデジタル署名を用いてデジタル認証を受け、当該共有照合リストが正規の 共有照合リストであるかを判定する(改竄されていないことの判定、出所の正当性の 判定等)する。  More specifically, for the present embodiment, the public key is used to determine the strength of a regular shared collation list using a digital signature, and when the shared collation list is received, it is received in advance. ! /, Composited using the public key of the provided information management device, attached to the shared verification list, received digital authentication using the digital signature, and the shared verification list is a legitimate shared verification list. Judge whether it is a list (judgment that it has not been tampered with, judgment of legitimacy of origin, etc.).
[0150] ここで、正規の共有照合リストであると判断した場合には、当該共有照合リストを受 け付けて後述する情報蓄積手段 3Gに蓄積する。  [0150] Here, when it is determined that it is a regular shared collation list, the common collation list is accepted and accumulated in information storage means 3G described later.
[0151] 本実施の形態においては、当該情報受給者側装置 S3が後述する情報蓄積手段 3[0151] In the present embodiment, the information receiver side device S3 performs information storage means 3 described later.
Gに既に蓄積している共有照合リストと、当該共有照合リスト受付手段 3Aにて受信し 、正規であると判断した共有照合リストに関する変更情報とを比較し、変更情報が、 例えば、新たに削除'禁止対象となる識別情報を有する場合には、当該識別情報を 共有照合リストに追加する等のデータ変更を行う。 The shared collation list already stored in G and the common collation list acceptance means 3A The change information related to the shared collation list determined to be legitimate is compared. If the change information has, for example, identification information that is newly deleted or prohibited, the identification information is added to the common collation list. Change the data.
[0152] 一方、正規の共有照合リストで無 、と判断しな 、場合 (デジタル認証に失敗、複合 化に失敗等)には、その共有照合リストは蓄積せずに破棄する。  [0152] On the other hand, if it is not judged that the regular shared collation list is none (digital authentication failure, decryption failure, etc.), the common collation list is discarded without being accumulated.
[0153] 識別情報受付手段 3Dは、少なくとも提供者識別情報や提供情報識別情報などの 識別情報を受信して受け付ける機能を有して 、る。  The identification information receiving means 3D has a function of receiving and receiving at least identification information such as provider identification information and provision information identification information.
[0154] 提供情報照合手段 3Fは、正規の照合情報であると判断した照合情報に基づ!/、て 、当該照合情報に含まれる識別情報と、前記識別情報受付手段 3Dにより受け付け た識別情報とを照合し、当該照合情報の内容に合わせて前記提供情報受付手段 3 Eにより受け付けた提供情報を制御する制御信号を出力する照合手段である。  The provided information collating means 3F is based on the collation information determined to be regular collation information! /, Based on the identification information included in the collation information, and the identification information received by the identification information receiving means 3D. And a control means for outputting a control signal for controlling the provided information received by the provided information receiving means 3 E according to the contents of the matching information.
[0155] 具体的には、前記提供者識別情報受付手段 3Dにより受け付けた提供者識別情報 や提供情報識別情報等の識別情報と、前記共有照合リストに含まれる識別情報とを 照合し、当該共有照合リストに含まれている識別情報と合致した場合には、当該識別 情報と関連付けられた提供情報は受信しない旨の制御信号を出力する。  [0155] Specifically, identification information such as provider identification information or provision information identification information received by the provider identification information receiving means 3D is compared with identification information included in the shared verification list, and the shared information If it matches the identification information included in the collation list, a control signal is output indicating that the provided information associated with the identification information is not received.
[0156] 尚、本実施の形態においては、主として、提供情報 (ファイル)識別子となっている ノ、ッシュ値に基づ 、て識別し管理して 、る。  In the present embodiment, identification and management are mainly performed based on the distribution information (file) identifier based on the hash value.
[0157] また、既に情報蓄積手段 3Gに蓄積している提供情報と関連付けられている提供者 識別情報や提供情報識別情報等の識別情報と、前記共有照合リストに含まれる識別 情報とを照合し、当該共有照合リストに含まれている識別情報と合致した場合には、 当該識別情報と関連付けられた提供情報を情報蓄積手段 3Gから削除する旨の制 御信号を出力する。  [0157] Also, identification information such as provider identification information and provision information identification information already associated with the provision information stored in the information storage means 3G is collated with the identification information included in the shared collation list. If it matches the identification information included in the shared collation list, a control signal is output to delete the provision information associated with the identification information from the information storage means 3G.
[0158] 情報蓄積手段 3Gは、自動削除用の共有照合リスト、提供情報、プログラム等を各 種領域に分けて格納するものである。  [0158] The information storage means 3G stores a shared collation list for automatic deletion, provided information, a program, and the like divided into various areas.
[0159] 詳述すると、共有照合リスト領域には、主として、上記提供情報 (ファイル)識別子と なって 、るノ、ッシュ値に基づ 、て作成した前記共有照合リストを蓄積して 、る。また、 前記提供情報識別子の他、削除や禁止対象となって!/、る情報提供者識別子を格納 しており、各提供者識別子に基づいて、その提供者名、提供資格、接続先情報 (IP アドレス、ポート番号)、公開鍵、などの提供者情報の他、管理者識別子等を含む共 有照合リストのデータを格納する。力 tlえて、当該共有照合リストのデータは、当該照合 リストが正規のリストである力判定するために、前記提供情報管理装置 S1の公開鍵 情報をも格納している。 More specifically, in the shared collation list area, the shared collation list created based on the information and the hash value is mainly stored as the provided information (file) identifier. In addition to the provided information identifier, information provider identifiers to be deleted or prohibited are stored. Based on each provider identifier, the provider name, provision qualification, connection destination information ( IP Stores shared collation list data including administrator identifiers in addition to provider information such as addresses and port numbers) and public keys. In addition, the shared collation list data also stores the public key information of the provided information management device S1 in order to determine whether the collation list is a regular list.
[0160] 尚、共有照合リスト領域には、前記照合情報判定手段にて、正規の照合情報であ るかを判定した共有照合リストのみを蓄積する。  [0160] In the shared collation list area, only the common collation list for which the collation information determination unit determines whether the collation information is regular is stored.
[0161] また、提供情報領域には、他の装置力 受信した提供情報が蓄積されており、本実 施の形態においては、各提供情報識別子 (ハッシュ値)に基づいて、検索対象情報 であるファイル名、キー情報、ファイルの大きさ、更新時刻、提供情報の接続先情報( IPアドレス。ポート番号)を格納すると共に、当該提供情報 (ファイルの内容そのもの) を蓄積している。また、当該検索対象情報及び提供情報は、発信源である提供情報 者の提供者識別子及び提供情報識別子と関連付けられている。  [0161] In addition, the provided information area stores the provided information received by other devices, and in the present embodiment, the information to be searched is based on each provided information identifier (hash value). Stores file name, key information, file size, update time, connection destination information (IP address, port number) of provided information, and stores the provided information (file contents themselves). In addition, the search target information and the provided information are associated with the provider identifier and the provided information identifier of the providing information person who is the transmission source.
<第三実施形態 >  <Third embodiment>
第一実施形態及び第二実施形態においては、情報受給者側装置 S3が、能動的 に提供情報を情報共有ネットワークを利用して取得する形態について説明した。  In the first embodiment and the second embodiment, the mode in which the information receiver side device S3 actively acquires the provided information using the information sharing network has been described.
[0162] 第三実施形態においては、自動ダウンロード用の照合リストを情報共有ネットワーク 内に流し、情報共有ネットワーク内の情報受給者側装置 S3に対して、当該照合リスト に含まれる識別情報と合致する提供情報を自動的に (受動的に)ダウンロードさせる 構成について説明する。  [0162] In the third embodiment, a matching list for automatic download is made to flow in the information sharing network, and the information receiver side device S3 in the information sharing network matches the identification information included in the matching list. Describes a configuration that automatically (passively) downloads provided information.
[0163] 以下、各装置の概略機能について、第一実施形態と異なる点を詳述する。  [0163] The differences between the schematic functions of the respective devices and the first embodiment will be described in detail below.
[0164] 提供情報管理装置 S1は、情報共有ネットワーク内の情報受給者側装置 S3に対し て、自動的に (受動的に)ダウンロードさせる提供情報の識別情報を含む自動ダウン ロード用の照合リストを管理する。  [0164] The provided information management device S1 generates a collation list for automatic download including identification information of provided information to be automatically (passively) downloaded to the information receiver side device S3 in the information sharing network. to manage.
[0165] 当該提供情報管理装置 S1が有する管理用照合リスト作成手段 1Eは、図示しない 提供情報拡散受付手段により、自動的に (受動的に)情報受給者側装置 S3へダウン ロードさせる提供情報の識別情報を受信すると、当該自動ダウンロードする提供情報 に関する情報提供者や提供情報に関する識別情報を含む管理用照合リストを作成 する機能を有している。尚、自動的に (受動的に)提供情報をダウンロードさせるため の照合リストとなる当該管理用照合リストは、情報受給者側装置 S3に自動的にダウン ロードさせる提供情報等を一覧可能なリストデータであり、管理者が提供者情報等を 管理するために必要となるものである。また、当該管理用照合リストは、管理者のみが 利用する。 [0165] The management collation list creation means 1E possessed by the provided information management device S1 uses the provided information diffusion accepting means (not shown) to automatically (passively) download provided information to the information receiver side device S3. When the identification information is received, it has a function of creating a management collation list including the information provider concerning the provision information to be automatically downloaded and the identification information concerning the provision information. To automatically (passively) download the provided information The collation list for management, which is the collation list of the list, is list data that can list provided information that is automatically downloaded to the information receiver side device S3, and is necessary for the administrator to manage the provider information, etc. It will be. The management verification list is used only by the administrator.
[0166] 具体的には、前記提供情報拡散受付手段から、自動的にダウンロードさせる提供 情報の情報提供者や提供情報に関する情報 (識別情報)等を受信すると、当該識別 情報と、情報蓄積手段 1Hに蓄積していた管理用照合リストが有する識別情報とを比 較する。そして、既存の管理用照合リストに、今回の識別情報がない場合には、当該 新たな識別情報等を追加し、常に最新の管理用照合リストを作成する。尚、当該管 理用照合リストには、識別情報のみを保有しても良いし、前記情報提供者情報 (提供 者名、提供資格、接続先情報である IPアドレスやポート番号等、暗号化情報となる公 開鍵、秘密鍵等)を、情報提供者識別子に関連付けたデータとして保有しても良い。  [0166] Specifically, when the information provider of the provision information to be automatically downloaded and information (identification information) related to the provision information to be downloaded are received from the provision information diffusion acceptance means, the identification information and the information storage means 1H Compare with the identification information stored in the management verification list. If there is no current identification information in the existing management collation list, the new identification information is added and the latest management collation list is always created. The management verification list may contain only identification information, or the information provider information (provider name, provision qualification, IP address and port number as connection information, etc.) Public key, secret key, etc.) may be held as data associated with the information provider identifier.
[0167] 本実施の形態においては、主に、提供情報 (ファイル)識別子となっているノ、ッシュ 値に基づいて当該管理用照合リストを作成している。  [0167] In the present embodiment, the management collation list is created mainly based on the hash value that is the provided information (file) identifier.
[0168] ここで、提供情報 (ファイル)識別子となって 、るハッシュ値は、一つの提供情報の 内容全体を要約したものなので、たとえファイル名が異なっていても、当該ハッシュ値 が同じであれば同じ内容の提供情報として取り扱うことが可能となる。  [0168] Here, the hash value that serves as the provided information (file) identifier summarizes the entire contents of one provided information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
[0169] 共有照合リスト作成手段 1Fは、前記識別情報に基づいて、前記提供情報を管理す るための自動ダウンロード用の照合リストを作成する照合リスト作成手段であり、具体 的には、自動的にダウンロードさせる提供情報の情報提供者や提供情報に関する情 報 (識別情報)等を含む自動ダウンロード用の照合リストを作成するものであり、提供 情報の受給者が、自動的にダウンロード可能な情報か否か等を判断するために必要 となる識別情報を含む共有照合リストを作成する機能を有している。尚、当該自動ダ ゥンロード用の共有照合リストは、自動的にダウンロードさせる提供情報を一覧可能 なリストデータであり、本システムを利用する利用者全体で共有する。  [0169] The shared collation list creation means 1F is a collation list creation means for creating a collation list for automatic download for managing the provided information based on the identification information. This is to create a collation list for automatic download that includes information providers of information to be downloaded and information related to the information to be downloaded (identification information). It has a function to create a shared collation list that includes identification information necessary to determine whether or not. Note that the shared collation list for automatic download is list data that can list provided information to be automatically downloaded, and is shared by all users who use this system.
[0170] 具体的には、前記管理用照合リスト作成手段 1Eと同様に、前記提供情報拡散受付 手段から、自動的にダウンロードさせる提供情報の情報提供者や提供情報に関する 情報 (識別情報)等を受信すると、当該識別情報と、情報蓄積手段 1Hに蓄積してい た自動ダウンロード用の共有照合リストが有する識別情報とを比較する。そして、既存 の共有照合リストに、当該識別情報がない場合には、自動的にダウンロード可能な提 供情報に関する情報 (識別情報)等を追加し、常に最新の共有照合リストを作成する 。尚、当該共有照合リストには、識別情報のみを保有しても良いし、前記情報提供者 情報 (提供者名、提供資格、接続先情報である IPアドレスやポート番号等、暗号化情 報となる公開鍵等)を、情報提供者識別子に関連付けたデータとして保有しても良い [0170] Specifically, as with the management collation list creation means 1E, the information provider of the provision information to be automatically downloaded from the provision information diffusion acceptance means, information (identification information) about the provision information, etc. When received, the identification information and the information storage means 1H The identification information included in the shared collation list for automatic download is compared. If there is no such identification information in the existing shared collation list, information (identification information) on the provided information that can be automatically downloaded is added, and the latest shared collation list is always created. Note that the shared collation list may have only identification information, or the information provider information (provider name, provision qualification, IP address and port number as connection destination information, etc.) May be held as data associated with the information provider identifier.
[0171] 本実施の形態においては、主に、提供情報 (ファイル)識別子となっているノ、ッシュ 値に基づいて当該共有照合リストを作成している。 [0171] In the present embodiment, the shared collation list is created mainly based on the hash value that is the provided information (file) identifier.
[0172] ここで、提供情報 (ファイル)識別子となって 、るハッシュ値は、一つの提供情報の 内容全体を要約したものなので、たとえファイル名が異なっていても、当該ハッシュ値 が同じであれば同じ内容の提供情報として取り扱うことが可能となる。  [0172] Here, the hash value that becomes the provision information (file) identifier summarizes the entire contents of one provision information, so even if the file names are different, the hash value is the same. Can be handled as provided information of the same content.
[0173] また、当該共有照合リストには、管理識別情報となる管理者識別子と、当該照合リス トが正規のリストであることを保証 (改竄されて!、な 、ことの保証、出所の保証)するた めのデジタル認証されたデジタル署名や提供情報管理装置の秘密鍵の情報を関連 付けている。  [0173] In addition, the shared collation list includes an administrator identifier serving as management identification information, and a guarantee that the collation list is a legitimate list (warranted! ) Is associated with a digitally authenticated digital signature and private information of the provided information management device.
[0174] 共有照合リスト送信手段 1Gは、前記共有照合リスト作成手段にて作成した共有照 合リストを出力する照合リスト出力手段である。  The shared collation list transmission unit 1G is a collation list output unit that outputs the shared collation list created by the common collation list creation unit.
[0175] 本実施の形態においては、一度目は共有照合リスト全体の情報を出力するが、二 度目以降は、既存の共有照合リストから追加等の変更があった箇所のみを共有照合 リストの変更情報として出力する。  [0175] In the present embodiment, the information of the entire shared collation list is output for the first time, but only the part that has been changed from the existing shared collation list is changed for the second and subsequent times. Output as information.
[0176] 具体的には、前記共有照合リスト作成手段 1Fにて変更した共有照合リストの変更 箇所である識別情報 (新たに自動ダウンロードする提供情報に関する識別情報等) に、管理識別情報となる管理者識別子と、当該照合リスト正規のリストであることを保 証 (改竄されて 、な 、ことの保証、出所の保証)するためのデジタル認証されたデジ タル署名を付加し、提供情報管理装置の秘密鍵にて暗号化した状態で、情報受給 者側装置 S3に向けて情報受給者側装置 S3が有する共有照合リストを変更する情報 を送信する機能を有する。つまり、情報受給者側装置 S3から送信された識別情報要 求信号である共有照合リスト要求信号を受信することにより、その時点で最新の共有 照合リストを後述する情報蓄積手段 IIから読出し、当該共有照合リストが、正規のも のであることを判定できる情報を付加した状態で当該要求信号の送信元である情報 受給者側装置 S3に共有照合リストを送信する。 [0176] Specifically, management information that becomes management identification information is added to identification information (identification information related to provided information to be newly downloaded automatically) that is a changed part of the shared verification list changed by the shared verification list creation means 1F. And a digital signature that is digitally authenticated to guarantee that it is a legitimate list of the collation list (tampering, guarantee of origin, guarantee of origin). It has a function of transmitting information for changing the shared collation list of the information receiver side device S3 to the information receiver side device S3 in a state encrypted with the secret key. That is, the identification information transmitted from the information receiver side device S3 is required. By receiving a shared collation list request signal that is a solicitation signal, the latest shared collation list at that time is read from the information storage means II described later, and information that can be used to determine that the shared collation list is legitimate. In the added state, the shared verification list is transmitted to the information receiver side device S3 which is the transmission source of the request signal.
[0177] 情報蓄積手段 IIは、管理用照合リスト、共有照合リスト、提供情報、プログラム等の 各種データを各領域に分けて格納するものである。 [0177] The information storage means II stores various data such as a management collation list, a common collation list, provided information, a program, etc. in each area.
[0178] 詳述すると、管理用照合リスト領域には、主として、自動的にダウンロードさせる対 象となって!/、る提供情報 (ファイル)識別子となって 、るノ、ッシュ値に基づ 、て作成し た前記管理用照合リストを蓄積してる。また、前記提供情報識別子の他、自動的にダ ゥンロードさせる対象となっている提供情報の情報提供者識別子を格納しており、各 提供者識別子に基づいて、その提供者名、提供資格、接続先情報 (IPアドレス、ポ ート番号)、暗号化情報 (公開鍵、秘密鍵)などの提供者情報を含む管理者用照合リ ストのデータを蓄積している。また、その他、その提供者が提供する提供情報識別子 等も前記提供者識別子に関連付けて蓄積して ヽる。 [0178] More specifically, the management collation list area is mainly subject to download automatically! /, Provided information (file) identifier, based on the value of The management collation list created in this way is stored. In addition to the provided information identifier, an information provider identifier of provided information that is automatically downloaded is stored. Based on each provider identifier, the provider name, provision qualification, connection It stores the collation list data for administrators including provider information such as destination information (IP address, port number) and encryption information (public key, private key). In addition, the provided information identifier provided by the provider is stored in association with the provider identifier.
[0179] カロえて、当該管理用照合リストのデータには、管理識別情報となる管理者識別子と 、当該照合リストが正規のリストであることを保証 (改竄されていないことの保証、出所 の保証)するためのデジタル認証されたデジタル署名の情報の他、当該提供情報管 理装置の暗号化情報 (公開鍵、秘密鍵)と関連付けて格納して 、る。  [0179] The management collation list data includes an administrator identifier as management identification information and a guarantee that the collation list is a legitimate list (guarantee that tampering has not occurred, source guarantee In addition to the digitally authenticated digital signature information, the encrypted information (public key, private key) of the provided information management device is stored and stored.
[0180] また、共有照合リスト領域には、主として、動的にダウンロードさせる対象となってい る提供情報 (ファイル)識別子となって 、るノ、ッシュ値に基づ 、て作成した前記共有 照合リストを蓄積している。力 tlえて、前記提供情報識別子の他、自動的にダウンロー ドさせる対象となっている提供情報の情報提供者識別子を格納しており、各情報提 供者識別子に基づいて、その提供者名、提供資格、接続先情報 (IPアドレス、ポート 番号)、公開鍵、などの提供者情報の他、管理者識別子等を含む共有照合リストのデ ータを格納する。力 tlえて、当該共有照合リストのデータは、管理識別情報となる管理 者識別子と、当該照合リストが正規のリストである保証 (改竄されて 、な 、ことの保証、 出所の保証)するためのデジタル認証されたデジタル署名の情報と当該提供情報管 理装置 S1の秘密鍵とを関連付けて格納している。 [0181] 更に、提供情報領域には、自動的にダウンロードした提供情報が蓄積されており、 本実施の形態においては、各提供情報識別子 (ハッシュ値)に基づいて、検索対象 情報であるファイル名、キー情報、ファイルの大きさ、更新時刻、提供情報の接続先 情報 (IPアドレス。ポート番号)を格納すると共に、当該提供情報本体 (ファイルの内 容そのもの)を含む提供情報や、提供者識別子等を格納して!/、る。 [0180] Also, in the shared collation list area, the shared collation list created based on the provision information (file) identifier that is to be dynamically downloaded is based on the value and the hash value. Has accumulated. In addition to the provided information identifier, the information provider identifier of the provided information to be automatically downloaded is stored. Based on each information provider identifier, the provider name, Stores the shared collation list data including the administrator identifier in addition to the provider information such as provision qualification, connection destination information (IP address, port number), and public key. In addition, the data in the shared collation list is used to guarantee that the collation list is an authorized list (guaranteeed that the collation list has been tampered with, the guarantee of origin). The digitally authenticated digital signature information and the private key of the provided information management device S1 are stored in association with each other. [0181] Furthermore, automatically provided offer information is accumulated in the offer information area. In this embodiment, the file name that is the search target information is based on each offer information identifier (hash value). , Key information, file size, update time, connection destination information (IP address, port number) of the provision information, provision information including the provision information main body (the file content itself) and provider identifier And so on!
[0182] 尚、上記手段以外は、第一実施形態と同様の構成を有している。  [0182] The configuration other than the above is the same as that of the first embodiment.
[0183] 情報提供側装置 S2は、第一実施形態と同様の構成を有している。 [0183] The information providing apparatus S2 has the same configuration as that of the first embodiment.
[0184] 情報需給側装置 S3は、前提として、前記共有照合リスト (自動ダウンロード照合リス ト)に含まれる識別情報と合致した識別情報 (提供者識別情報又は提供情報識別情 報)を有する提供情報を前記提供情報検索手段 3Bや提供情報要求手段 3C等を用 いて自動的に検索 ·受信し、共有照合リストに合致する提供情報を蓄積する機能 (プ ログラム等)を有している。 [0184] The information supply and demand side device S3, as a premise, provides provision information having identification information (provider identification information or provision information identification information) that matches the identification information included in the shared collation list (automatic download collation list). It has a function (program, etc.) for automatically retrieving and receiving information using the provision information search means 3B, provision information request means 3C, etc., and accumulating provision information that matches the shared collation list.
[0185] 情報需給側装置 S3の共有照合リスト受付手段 3Aは、少なくとも自動的にダウン口 ードすることを許可された提供情報の提供情報識別情報を含んだ照合情報である自 動ダウンロード用の共有照合リストを受け付ける手段であり、本システムに接続するた びに、共有照合リスト要求信号を前記提供情報管理装置 S1へと送信し、その時点で 最新の共有照合リストを前記提供情報管理装置 S1から受信する。  [0185] The shared collation list accepting means 3A of the information supply / demand side device S3 is an automatic download for collation information including at least provision information identification information of provision information permitted to be automatically downloaded. A means for accepting a shared collation list, each time a connection is made to the system, a shared collation list request signal is transmitted to the provided information management device S1, and the latest shared collation list is sent from the provided information management device S1 at that time. Receive.
[0186] 本実施の形態においては、一度目は、共有照合リスト全体を受信するが、その後は 、当該共有照合リストの変更箇所のみの情報を受信する。  In the present embodiment, the entire shared collation list is received for the first time, but thereafter, only information on the changed part of the shared collation list is received.
[0187] 力!]えて、当該共有照合リスト受付手段 3Aは、共有照合リスト (受け付けた照合情報) 力 提供情報管理装置から送信された正規の共有照合リストに関する情報であるか を判定する照合情報判定手段としての機能も有している。  [0187] The shared collation list accepting means 3A determines whether the information is related to the regular collation list (acknowledgment information received) or the regular shared collation list transmitted from the provided information management device. It also has a function as a determination means.
[0188] 詳述すると、本実施の形態にぉ ヽては、前記公開鍵を利用しデジタル署名により正 規の共有照合リストである力判定しており、当該共有照合リストを受け付けると、予め 受信して!/、た提供情報管理装置の公開鍵を用いて複合ィ匕し、共有照合リストに付カロ されて 、るデジタル署名を用いてデジタル認証を受け、当該共有照合リストが正規の 共有照合リストであるかを判定する(改竄されていないことの判定、出所の正当性の 判定等する)。 [0189] ここで、正規の共有照合リストであると判断した場合には、当該共有照合リストを受 け付けて後述する情報蓄積手段 3Gに蓄積する。 More specifically, for the present embodiment, the public key is used to determine the strength of a regular shared collation list using a digital signature, and when the shared collation list is received, it is received in advance. ! /, Composited using the public key of the provided information management device, attached to the shared verification list, received digital authentication using the digital signature, and the shared verification list is a legitimate shared verification list. Determine whether it is a list (determining that it has not been tampered with, determining the legitimacy of the source, etc.). [0189] Here, if it is determined that it is a regular shared collation list, the common collation list is accepted and stored in the information storage means 3G described later.
[0190] 本実施の形態においては、当該情報受給者側装置 S3が後述する情報蓄積手段 3 Gに既に蓄積している共有照合リストと、当該共有照合リスト受付手段 3Aにて受信し 、正規であると判断した共有照合リストに関する変更情報とを比較し、変更情報が、 例えば、新たに自動ダウンロードの対象となる識別情報を有する場合には、当該識 別情報を共有照合リストに追加する等のデータ変更を行う。  [0190] In the present embodiment, the information receiver side device S3 receives the shared collation list already stored in the information storage means 3G described later and the common collation list reception means 3A, Compared to the change information related to the shared collation list that is determined to exist, if the change information has, for example, identification information that is newly subject to automatic download, the identification information is added to the common collation list, etc. Make data changes.
[0191] 一方、正規の共有照合リストで無 、と判断しな 、場合 (デジタル認証に失敗、複合 化に失敗等)には、その共有照合リストは蓄積せずに破棄する。  [0191] On the other hand, if it is not judged that the regular shared collation list is none (digital authentication failed, decryption failed, etc.), the common collation list is discarded without being accumulated.
[0192] 識別情報受付手段 3Dは、少なくとも提供者識別情報や提供情報識別情報などの 識別情報を受信して受け付ける機能を有して 、る。  [0192] The identification information receiving means 3D has a function of receiving and receiving at least identification information such as provider identification information and provided information identification information.
[0193] 提供情報照合手段 3Fは、正規の照合情報であると判断した照合情報に基づ!/、て 、当該照合情報に含まれる識別情報と、前記識別情報受付手段 3Dにより受け付け た識別情報とを照合し、当該照合情報の内容に合わせて前記提供情報受付手段に より受け付けた提供情報を制御する制御信号を出力する照合手段である。  [0193] The provided information collating means 3F is based on the collation information determined to be legitimate collation information! /, Based on the identification information included in the collation information, and the identification information received by the identification information receiving means 3D. And a control means for outputting a control signal for controlling the provided information received by the provided information receiving means in accordance with the contents of the matching information.
[0194] 具体的には、前記提供者識別情報受付手段 3Dにより受け付けた提供者識別情報 と、前記照合情報受付手段により受け付けた提供者識別情報とに基づいて、前記提 供情報受付手段により受け付けた提供情報が、情報提供を許可された情報提供者 力もの提供情報である力を照合し、自動ダウンロードを指示した提供情報である場合 には、提供情報の蓄積を許可する旨の蓄積許可信号を出力する照合手段であり、受 信した提供情報が、自動ダウンロードを指示した適切な提供情報力を照合する機能 を有する。  [0194] Specifically, based on the provider identification information received by the provider identification information receiving means 3D and the provider identification information received by the collation information receiving means, it is received by the provided information receiving means. If the provided information is the information provided by the information provider authorized to provide the information, and if the provided information indicates automatic download, a storage permission signal indicating that storage of the provided information is permitted The received provided information has a function of verifying the appropriate provided information power instructed for automatic download.
[0195] 本実施の形態においては、提供情報を有する装置から、提供情報及び当該提供 情報と関連付けられた情報提供者識別子を受信すると、前記ハッシュ関数を用いて 当該提供情報と提供者識別子とからダイジェスト情報を作成する。次に、前記共有照 合リストの中から前記提供者識別子に対応付けられた公開鍵を検索し、当該公開鍵 を用いて提供情報 (ダイジェスト情報)のデジタル認証を受け、当該デジタル認証に 成功すると提供情報の蓄積を許可する旨の蓄積許可信号を出力する。 [0196] 情報蓄積手段 3Gは、共有照合リスト、提供情報、プログラム等を各種領域に分けて 格納するものである。 In the present embodiment, when receiving provision information and an information provider identifier associated with the provision information from a device having provision information, using the hash function, the provision information and the provider identifier are used. Create digest information. Next, when the public key associated with the provider identifier is searched from the shared matching list, digital authentication of the provided information (digest information) is performed using the public key, and the digital authentication is successful. An accumulation permission signal for permitting accumulation of provided information is output. [0196] The information accumulating means 3G stores the shared collation list, provided information, programs, etc. in various areas.
[0197] 詳述すると、共有照合リスト領域には、主として、上記提供情報 (ファイル)識別子と なって 、るノ、ッシュ値に基づ 、て作成した前記共有照合リストを蓄積して 、る。加え て、前記提供情報識別子の他、各提供者識別子に基づいて、その提供者名、提供 資格、接続先情報 (IPアドレス、ポート番号)、公開鍵、などの提供者情報の他、管理 者識別子等を含む共有照合リストのデータを格納する。  More specifically, in the shared collation list area, the common collation list created based on the information and the hash value is mainly stored as the provided information (file) identifier. In addition to the provider information identifier, based on each provider identifier, the provider information such as provider name, provision qualification, connection destination information (IP address, port number), public key, etc. Stores shared collation list data including identifiers and the like.
[0198] カロえて、当該共有照合リストのデータは、管理識別情報となる管理者識別子と、当 該照合リストが正規のリストである保証 (改竄されて 、な 、ことの保証、出所の保証) するためのデジタル認証されたデジタル署名の情報と当該提供情報管理装置 S1の 秘密鍵とを関連付けて格納して 、る。  [0198] The data of the shared collation list includes the administrator identifier that is the management identification information, and a guarantee that the collation list is a legitimate list (guaranteeed that it has been tampered with, the guarantee of origin) The digital signature information for digital authentication and the private key of the provided information management device S1 are stored in association with each other.
[0199] 尚、共有照合リスト領域には、前記照合情報判定手段にて、正規の照合情報であ るかを判定した共有照合リストのみを蓄積する。  It should be noted that only the shared collation list determined by the collation information determination means to determine whether the collation information is regular or not is stored in the shared collation list area.
[0200] また、提供情報領域には、他の装置力 受信した提供情報が蓄積されており、本実 施の形態においては、各提供情報識別子 (ハッシュ値)に基づいて、検索対象情報( キー情報)であるファイル名、ファイルの大きさ、更新時刻、提供情報の接続先情報( IPアドレス。ポート番号)を格納すると共に、当該提供情報 (ファイルの内容そのもの) を蓄積している。また、当該検索対象情報及び提供情報は、発信源である提供情報 者の提供者識別子と関連付けられて!/、る。  [0200] In the provided information area, provided information received by other devices is stored, and in this embodiment, search target information (key) is based on each provided information identifier (hash value). (Information) file name, file size, update time, connection destination information (IP address, port number) of provided information, and the provided information (file contents themselves) is stored. In addition, the search target information and the provided information are associated with the provider identifier of the providing information provider that is the transmission source!
<第四実施形態 >  <Fourth embodiment>
第一実施形態に示す提供情報管理システムは、情報提供を許可された提供者識 別情報を含む情報提供者限定用の照合リストを情報共有ネットワーク内に流すことで 、情報共有ネットワーク内に情報提供をできる情報提供者を限定し、提供情報を管理 する構成を有している。  The provided information management system shown in the first embodiment provides information in the information sharing network by flowing a collation list for limiting the information provider including the identification information of the provider permitted to provide information in the information sharing network. It is configured to manage information provided by limiting the number of information providers who can provide information.
[0201] 第二実施形態に示す提供情報管理システムは、情報共有ネットワーク内に流して は!、けな!/ヽ (流通を禁止する)提供情報識別情報や当該提供情報を送信して ヽる情 報提供者の提供者識別情報等の識別情報を照合リストとして管理し、当該照合リスト に含まれる識別情報と合致した際には、情報受給者側装置 S3は、当該識別情報と 関連付けられた提供情報を、受信せずに無視したり、情報蓄積手段 3Gに蓄積され た提供情報を削除する構成を有して 、る。 [0201] The provided information management system shown in the second embodiment is not allowed to flow through the information sharing network !, Kena! / ヽ (Distribution prohibited) Provided information identification information and the provided information are transmitted. When the identification information such as the provider identification information of the information provider is managed as a collation list and matches the identification information included in the collation list, the information receiver side device S3 The associated provision information is ignored without being received, or the provision information stored in the information storage means 3G is deleted.
[0202] 第三実施形態に示す提供情報管理システムは、自動ダウンロード用の照合リストを 情報共有ネットワーク内に流し、情報共有ネットワーク内の情報受給者側装置 S3〖こ 対して、当該照合リストに含まれる識別情報と合致する提供情報を自動的に (受動的 に)ダウンロードさせる構成を有して 、る。 [0202] In the provided information management system shown in the third embodiment, a collation list for automatic download is made to flow in the information sharing network, and is included in the collation list for the information receiver side device S3 in the information sharing network. It is configured to automatically (passively) download provided information that matches the identification information.
[0203] 第四実施形態においては、前記第一実施形態乃至第三実施形態の全ての構成を 有するシステムについて説明する。各装置の構成等は、上述のとおりである。 [0203] In the fourth embodiment, a system having all the configurations of the first to third embodiments will be described. The configuration of each device is as described above.
[0204] 本システムにおいては、共有照合リストとして、 (1)情報提供者限定用の共有照合リ スト(2)自動削除用の共有照合リスト (3)自動ダウンロード用の共有照合リストとを併 用している。 [0204] In this system, (1) Shared collation list for information providers only (2) Shared collation list for automatic deletion (3) Shared collation list for automatic download is doing.
[0205] 以下、当該第四実施形態に示す提供情報管理システムを用いて、前記情報受給 者側装置 S3が、提供情報を要求する工程について図 9を参照して説明する。  [0205] Hereinafter, a process in which the information receiver side device S3 requests provision information using the provision information management system shown in the fourth embodiment will be described with reference to FIG.
[0206] まず、提供情報を要求する情報受給者側装置 S3は、提供情報管理装置 S1に接 続してログインし (ステップ S401: Y)、最新の共有照合リスト (情報提供者限定用の 共有照合リスト、 自動削除用の共有照合リスト、自動ダウンロード用の共有照合リスト) を受信する (ステップ S402)。  [0206] First, the information receiver side device S3 requesting the provided information connects to the provided information management device S1 and logs in (step S401: Y), and the latest shared collation list (shared for information providers only). A collation list, a shared collation list for automatic deletion, and a common collation list for automatic download are received (step S402).
[0207] そして、前記共有照合リスト受付手段 3Aの有する照合情報判定手段を用いて、前 記共有照合リストが正規のリストである力否かを判定する (ステップ S403)。具体的に は、当該共有照合リストを予め受信していた提供情報管理装置の公開鍵を用いて複 合化し、共有照合リストに付加されて 、るデジタル署名を用いて図示しな 、デジタル 認証サーバを介して当該共有照合リストについてデジタル認証を行い、当該共有照 合リストが、正規の共有照合リストであるかを判定する(改竄されていないことの判定、 出所の正当性の判定等する)。  [0207] Then, using the collation information determination means of the common collation list acceptance means 3A, it is determined whether or not the above-mentioned common collation list is a regular list (step S403). Specifically, the shared verification list is duplicated using the public key of the provided information management apparatus that has been received in advance, and is added to the shared verification list and is not illustrated using the digital signature. The digital verification is performed on the shared collation list, and it is determined whether the shared collation list is a legitimate shared collation list (determination that it has not been tampered with, determination of legitimacy of the source, etc.).
[0208] そして、認証が認められると (ステップ S403: Y)、始めて受信する共有照合リストで ある場合には、当該正規の共有照合リストを情報蓄積手段 3Gに蓄積する。また、既 共有照合リストを有している場合には、情報蓄積手段 3G力 既共有照合リストを読出 し (ステップ S404)、既共有照合リストと、正規であると判断した共有照合リストに関す る変更情報とを比較し、変更情報が、例えば、新たな識別情報を有する場合には、 当該識別情報を共有照合リストに追加する等のデータ変更を行う。 [0208] Then, when the authentication is approved (step S403: Y), if it is the first shared collation list received, the regular common collation list is accumulated in the information accumulating means 3G. If there is an already shared collation list, the information storage means 3G reads the already shared collation list (step S404) and relates to the existing collation list and the common collation list that is determined to be legitimate. For example, if the change information has new identification information, the data change such as adding the identification information to the shared collation list is performed.
[0209] 尚、認証が認められな力つた (正規の共有照合リストで無い)共有照合リストについ ては破棄し (ステップ S405)、再び新たな共有照合リストの受信を行う。  [0209] It should be noted that the shared collation list that is not authenticated (is not a regular shared collation list) is discarded (step S405), and a new shared collation list is received again.
[0210] その後、まず、自動ダウンロード用の共有照合リストに基づいて、自動的に提供情 報の検索 ·受信を開始する (S409)。  [0210] After that, based on the shared collation list for automatic download, search and reception of provided information is automatically started (S409).
[0211] 具体的には、まず情報共有ネットワークに接続し、予めインストールされたプロダラ ムにより、自動ダウンロード用の共有照合リストにある識別情報を有する提供情報を、 前記 P2P方式のファイル共有ソフトを用いて検索する。  [0211] Specifically, the information that has the identification information in the shared collation list for automatic download is first used to connect to the information sharing network, and the P2P file sharing software is used. To search.
[0212] 本実施の形態においては、情報共有ネットワーク内の各装置は、網の目状に接続 して 、るため、隣接する他の装置に対して自動ダウンロードする提供情報 (ファイル) の識別情報を検索キーとする検索依頼データを送信する。そしてその装置に検索キ 一がなければ、その検索依頼データをまたその隣の装置に依頼 (送信)するということ を検索先の装置力 繰り返していく。すると、いっかは情報共有ネットワークに接続さ れている全ての装置に対して検索依頼データが送信され、個々の装置を検索するこ とできる。このようにいくつもの装置を介して、検索依頼を伝播していき、検索キーに 合致する検索対象情報を有する装置から、検索合致データと共に検索キーを有する 検索対象情報を検索結果情報として受信することを契機に検索を終了する。  [0212] In the present embodiment, since each device in the information sharing network is connected in a network, the identification information of the provided information (file) that is automatically downloaded to other adjacent devices. Search request data using as a search key is transmitted. If the device does not have a search key, the search destination device is repeatedly requested (transmitted) for the search request data to the next device. Then, search request data is transmitted to all devices connected to the information sharing network, and individual devices can be searched. In this way, the search request is propagated through a number of devices, and the search target information having the search key together with the search match data is received as the search result information from the device having the search target information that matches the search key. The search ends when
[0213] 尚、情報受給者側装置 S3は、受信した検索合致データ等に基づいて指定した条 件に合うファイルを表示手段に一覧表示する。  [0213] The information receiver side device S3 displays a list of files that meet the conditions specified based on the received search match data and the like on the display means.
[0214] その後、情報受給者側装置 S3は、検索で発見された提供情報をダウンロードする ため、前記検索対象情報に含まれる接続先情報に基づ 、て提供情報を有する装置 と P2P方式にて直接的に接続し、提供情報要求信号を送信する。  [0214] After that, the information receiver side device S3 downloads the provided information found by the search, based on the connection destination information included in the search target information, and the P2P method with the device having the provided information Connect directly and send a provision information request signal.
[0215] そして、提供情報を有する装置から提供情報を受信すると、当該提供情報が前記 自動削除用の共有照合リストが保有する提供情報と合致する力否力を照合する。  [0215] Then, when the provision information is received from the apparatus having the provision information, the power information is collated with the provisional information that the provision information matches with the provision information held in the automatic deletion shared collation list.
[0216] 具体的には、前記提供者識別情報受付手段 3Dにより受け付けた提供者識別情 報や提供情報識別情報等の識別情報と、前記自動削除用の共有照合リストに含ま れる識別情報とを照合し、当該自動削除用の共有照合リストに含まれている識別情 報と合致した場合には (ステップ S411: Y)、当該識別情報と関連付けられた提供情 報は受信しな 、旨の制御信号を出力する (ステップ S415)。 Specifically, identification information such as provider identification information and provision information identification information received by the provider identification information receiving means 3D, and identification information included in the shared verification list for automatic deletion are included. The identification information included in the shared verification list for automatic deletion If it matches the information (step S411: Y), the provision information associated with the identification information is not received and a control signal is output (step S415).
[0217] また、既に情報蓄積手段 3Gに蓄積している提供情報と関連付けられている提供者 識別情報や提供情報識別情報等の識別情報と、前記共有照合リストに含まれる識別 情報とを照合し、当該共有照合リストに含まれている識別情報と合致した場合には( ステップ S411: Y)、当該識別情報と関連付けられた提供情報を情報蓄積手段 3Gか ら削除する旨の制御信号を出力する (ステップ S415)。  [0217] Also, identification information such as provider identification information and provision information identification information already associated with the provision information stored in the information storage means 3G is collated with the identification information included in the shared collation list. If it matches the identification information included in the shared collation list (step S411: Y), a control signal is output to delete the provision information associated with the identification information from the information storage means 3G. (Step S415).
[0218] 次に、自動削除用の共有照合リストに合致しな力つた場合には、提供情報者限定 用の共有照合リストと照合する (ステップ S412)。  [0218] Next, when it does not match the automatic verification shared collation list, it collates with the shared collation list limited to the provided information person (step S412).
[0219] 具体的には、前記照合手段を用いて当該提供情報と提供者識別子からダイジエス ト情報を作成する。次に、共有照合リストの中から前記提供者識別子に対応付けられ た公開鍵を検索し、当該公開鍵を用いて提供情報管理装置 S1が有する認証手段( 図示しな!、)を用いて提供情報のデジタル認証を受け、当該デジタル認証に成功す ると、出力手段を用いて音楽を再生したり、映像を表示したりなど、情報受給者側装 置 S3の出力手段を用いて提供情報を出力する。また、当該提供情報を提供情報領 域に蓄積する (ステップ S414)。  [0219] Specifically, the collation means is used to create digest information from the provided information and the provider identifier. Next, the public key associated with the provider identifier is searched from the shared verification list, and provided using the authentication means (not shown!) Of the provided information management device S1 using the public key. If the digital authentication of the information is received and the digital authentication is successful, the provided information can be obtained using the output means of the information receiver side device S3, such as playing music using the output means or displaying images. Output. In addition, the provided information is stored in the provided information area (step S414).
[0220] 尚、当該提供情報は、情報共有ネットワーク上で共有する。一方、前記認証に失敗 した場合には (ステップ S413 :N)、受信した提供情報等のデータは削除する (ステツ プ S415)。  [0220] The provided information is shared on the information sharing network. On the other hand, if the authentication fails (step S413: N), the received data such as provided information is deleted (step S415).
[0221] また、当該実施形態は、第一実施形態に示すように、提供情報検索手段 3Bも有し ているため、自動ダウンロードに変えて、自己が希望する提供情報を検索し、受信す ることも可能である。受信後のステップは、上記 S410以下のステップと同様である。  [0221] In addition, as shown in the first embodiment, this embodiment also has provision information search means 3B. Therefore, instead of automatic download, it searches for and receives provision information desired by itself. It is also possible. The steps after reception are the same as the steps after S410.
[0222] 尚、各部の具体的な構成は、上述した実施形態のみに限定されるものではなぐ本 発明の趣旨を逸脱しな 、範囲で種々変形が可能である。  [0222] The specific configuration of each part is not limited to the above-described embodiments, and various modifications can be made without departing from the spirit of the present invention.
[0223] 例えば、上記第一実施形態乃至第四実施形態において、個々に異なる照合リスト について説明したが、全ての機能を併用したシステムや、任意の機能を組み合わせ たシステムとすることも考えられる。  [0223] For example, in the first to fourth embodiments, different collation lists have been described. However, a system that combines all functions or a system that combines arbitrary functions is also conceivable.
[0224] また、前記情報提供者側装置や前記情報受給者側装置が、前記提供情報管理装 置の機能を兼ねても良い。例えば、提供情報管理装置が、情報提供者側装置を兼 ねる際には、識別情報付加手段にて付加する識別情報として、各音楽コンテンツ等 の提供情報の出所 (供給元)等を識別情報として利用することで、各提供情報を管理 しゃすくなる。 [0224] Also, the information provider side device and the information receiver side device may provide the provided information management device. It may also serve as a device. For example, when the provided information management device also serves as the information provider side device, the source information (source) of the provided information such as each music content is used as identification information as identification information added by the identification information adding means. By using it, it becomes easy to manage each provided information.
[0225] 更に、本実施の形態にお!、ては、識別情報として、提供情報者の提供識別子ゃ提 供情報の識別子を利用していたが、コンテンツ名等の識別情報や、一定の関係を有 するものを識別する識別情報を利用することも考えられる。また、各実施形態は、例 えば、提供者識別情報等の一の識別情報を主として説明(例えば、第一実施形態に おいては、提供情報者を限定すベぐ提供情報者識別情報を有する共有照合リスト について主に説明)した力 各実施形態において、他の識別情報を利用していいの は勿論のことである。(例えば、第一実施形他において、提供情報毎に管理するため に提供情報識別情報を有する共有照合リストを用いる等)  [0225] Furthermore, in the present embodiment, as the identification information, the provided identifier of the provided information person or the provided information identifier is used. However, the identification information such as the content name or a certain relationship is used. It is also possible to use identification information that identifies items that have In addition, each embodiment mainly explains one piece of identification information such as provider identification information (for example, in the first embodiment, it has provision information person identification information that should limit the provision information person. The power mainly explained about the shared matching list) Of course, in each embodiment, other identification information may be used. (For example, in the first embodiment, etc., a shared collation list having provided information identification information is used to manage each provided information)
カロえて、照合リストに用いる提供情報の識別情報は、本実施の形態に挙げたものに 限らないのは勿論であり、一の識別情報や、複数の識別情報を併用して使用しても 良い。  Of course, the identification information of the provided information used in the collation list is not limited to that described in the present embodiment, and one identification information or a plurality of identification information may be used in combination. .
[0226] また、上記実施形態においては、管理用照合リストと、共有照合リストとを別々に作 成していたが、管理用照合リストを基にして共有照合リストを作成したり、単一の照合 リス卜とすることち考免られる。  [0226] In the above embodiment, the management collation list and the shared collation list are created separately. However, a shared collation list can be created based on the management collation list, or a single collation list can be created. Matching squirrel is ignored.
[0227] 更に、本実施の形態においては、照合情報として照合リストを用いた力 例えば、リ ストにせずに、照合情報を変更した情報等の照合情報の一部の情報とする場合も含 まれる。 [0227] Furthermore, in the present embodiment, the power of using a collation list as collation information, for example, including a case where information that is a part of collation information such as information in which collation information is changed without being listed. It is.
[0228] 力!]えて、本実施の形態においては、照合情報である共有照合リストを、提供情報管 理装置 S 1に接続してログインした際に、取得する構成としていたが、提供情報と同様 に、バージョン情報を付加した共有照合リストを情報共有ネットワーク内に拡散してお き、検索対象情報等の拡散の際や提供情報の取得の際に、随時受信する形態とし ても良い。  [0228] Power! In this embodiment, the shared collation list, which is collation information, is acquired when connected to the provided information management device S 1 and logged in. However, as with the provided information, the version information A shared collation list to which information is added may be spread in the information sharing network and received at any time when the search target information is spread or when the provided information is acquired.
[0229] その場合には、情報受給者側装置 S3は、共有照合リストに付加されたバージョン 情報に基づいて、自己の所有する共有照合リストと受信した共有照合リストとをどちら が新しいかを比較する。 [0229] In that case, the information receiver side device S3 selects either the shared collation list owned by itself or the received shared collation list based on the version information added to the shared collation list. Compare if is new.
[0230] そして、受信した共有照合リストの方が新 、バージョン情報を有して 、る場合には 、前述の通り、前記共有照合リスト受付手段 3Aの有する照合情報判定手段を用いて 、前記共有照合リストが正規のリストであるか否かを判定する。具体的には、当該共 有照合リストを予め受信していた提供情報管理装置の公開鍵を用いて複合ィ匕し、共 有照合リストに付加されて 、るデジタル署名を用いて図示しな 、デジタル認証サーバ を介して当該共有照合リストについてデジタル認証を行い、当該共有照合リストが、 正規の共有照合リストであるかを判定する(改竄されて 、な 、ことの判定、出所の正 当性の判定等する)。そして、認証が認められた正規の共有照合リストを情報蓄積手 段 3Gに蓄積する。尚、認証が認められな力つた (正規の共有照合リストで無い)共有 照合リストについては破棄し、今まで自己が有していた共有照合リストをそのまま蓄積 しておく。  [0230] If the received shared collation list is newer and has version information, as described above, the shared collation list receiving unit 3A uses the collation information determination unit, and the shared information is stored in the shared collation list. It is determined whether or not the collation list is a regular list. Specifically, the shared collation list is composited using the public key of the provided information management apparatus that has been received in advance, and is added to the common collation list, and is not illustrated using the digital signature. Digital authentication is performed on the shared collation list via the digital authentication server, and it is determined whether the shared collation list is a legitimate shared collation list. Judgment etc.). Then, the authorized common collation list for which authentication is permitted is stored in the information storage means 3G. If the authentication is not allowed, the shared verification list (not the regular shared verification list) is discarded, and the shared verification list that it had so far is stored as it is.
[0231] 更に、上述の 2種類の共有照合リスト受け付け方法、つまり、ログイン時などに提供 情報管理装置 S1から共有照合リストを情報受給者側装置 S3が受信する方法と、情 報共有ネットワーク内に拡散している共有照合リストを提供情報と同様に受信する方 法とを併用することも考えられる。  [0231] Furthermore, the above-described two types of shared collation list acceptance methods, that is, a method in which the information receiver apparatus S3 receives the shared collation list from the information management apparatus S1 provided at the time of login, and the information sharing network It may be possible to use a method that receives a spread shared collation list in the same way as provided information.
[0232] この際には、例えば提供情報管理装置 S1から受信した共有照合リストを優先的に 受け付けて既存の共有照合リストを書き変えるなどの優先情報をプログラムしておい てもよい。  [0232] In this case, for example, priority information may be programmed such that the shared collation list received from the provided information management device S1 is preferentially received and the existing shared collation list is rewritten.
[0233] また、情報受給者側装置 S3にて設定可能なリストとして、自動的にダウンロードす る提供情報の識別情報を有するリスト及び受信をしても自動的に削除する提供情報 の識別情報を有するリストを蓄積しておいても良い。その際には、情報受給者側装置 S3に、予め自動検索 ·受信及び自動削除のプログラムをインストールしておき前記リ ストとの照合することにより、当該リストに応じてダウンロードや削除動作を行う。  [0233] In addition, as a list that can be set by the information receiver side device S3, a list having identification information of provision information to be automatically downloaded and identification information of provision information to be automatically deleted even when received are received. You may accumulate | store the list which has. In that case, a program for automatic search / reception and automatic deletion is installed in the information receiver side device S3 in advance, and the list is compared with the list, and download or deletion operation is performed according to the list.
産業上の利用可能性  Industrial applicability
[0234] 本発明を活用すれば、各装置にて提供情報を送受信するシステム内にて不正な提 供情報が共有されることを防止すると共に、不正な提供情報を提供する提供者を当 該システム内から効果的に排除することができる。 [0234] By utilizing the present invention, it is possible to prevent unauthorized provision information from being shared within a system in which each apparatus transmits and receives the provision information, and to provide a provider who provides unauthorized provision information. It can be effectively excluded from within the system.

Claims

請求の範囲  The scope of the claims
音楽コンテンツ等の提供情報を PeertoPeer等の通信モデルを用いた情報共有ネ ットワーク上に最初に提供する情報提供者側装置と、当該提供情報を有する装置の 接続先情報を検索する接続先検索手段を有し、前記情報共有ネットワークを利用し て前記接続先情報に基づ ヽて提供情報を有する装置と接続を確立し、直接に提供 情報を受信すると共に、当該受信した提供情報を前記情報共有ネットワーク内に提 供可能とする情報受給者側装置と、当該提供情報を管理する提供情報管理装置と を有する提供情報管理システムであって、  An information provider side device that first provides provided information such as music content on an information sharing network using a communication model such as PeertoPeer, and a connection destination search means for searching connection destination information of a device having the provided information And using the information sharing network to establish a connection with a device having the provision information based on the connection destination information, and directly receiving the provision information and receiving the received provision information in the information sharing network A provision information management system comprising an information receiver side device that can be provided within a provision information and a provision information management device that manages the provision information;
前記情報提供者側装置が、  The information provider side device is:
情報提供者を識別する提供者識別情報や前記提供情報を識別する提供情報識別 情報等の識別情報を、自己が提供する提供情報に付加する識別情報付加手段と、 自己が提供する提供情報を、前記識別情報と関連付けて送信する提供情報送信 手段とを具備し、  Identification information adding means for adding identification information such as provider identification information for identifying an information provider and provision information identification information for identifying the provision information to the provision information provided by the self, provision information provided by the self, Providing information transmitting means for transmitting in association with the identification information;
前記提供情報管理装置が、  The provided information management device
前記識別情報に基づ!、て、前記提供情報を管理するための照合情報を作成する 照合情報作成手段と、  Based on the identification information !, collation information creating means for creating collation information for managing the provided information;
前記照合情報作成手段にて作成した照合情報を出力する照合情報出力手段とを 具備し、  Collation information output means for outputting the collation information created by the collation information creation means,
前記情報受給者側装置が、  The information receiver side device is:
前記提供情報と関連付けられた前記識別情報を受け付ける識別情報受付手段と、 当該識別情報と関連付けられた提供情報を受け付ける提供情報受付手段と、 前記識別情報に関する情報を含んだ照合情報を受け付ける照合情報受付手段と 前記照合情報受付手段にて受け付けた照合情報が、正規の照合情報であるかを 判定する照合情報判定手段と、  Identification information receiving means for receiving the identification information associated with the provision information, provision information receiving means for receiving the provision information associated with the identification information, and collation information reception for receiving collation information including information related to the identification information And collation information determination means for determining whether the collation information received by the collation information reception means is regular collation information;
前記照合情報判定手段にて、正規の照合情報であると判断した照合情報に基づ いて、当該照合情報に含まれる識別情報と、前記識別情報受付手段により受け付け た識別情報とを照合し、当該照合情報の内容に合わせて前記提供情報受付手段に より受け付けた提供情報を制御する制御信号を出力する照合手段と、 Based on the collation information determined by the collation information determination means as the regular collation information, the identification information included in the collation information is collated with the identification information received by the identification information reception means, Depending on the content of the collation information, the provided information receiving means Collation means for outputting a control signal for controlling the provided information received,
前記照合手段により蓄積を許可された提供情報及び当該提供情報と関連付けられ た識別情報を蓄積する提供情報蓄積手段と、  Provision information accumulating means for accumulating provision information permitted to be accumulated by the collating means and identification information associated with the provision information;
前記提供情報蓄積手段に蓄積した提供情報を、他の情報需給者側装置から送信 された提供情報要求信号を受信することを契機に送信する提供情報送信手段を有 して 、ることを特徴とする提供情報管理システム。  Provided information transmitting means for transmitting provided information stored in the provided information storage means when receiving a provided information request signal transmitted from another information supplier-side device is provided. Provide information management system.
前記情報提供者側装置が、  The information provider side device is:
情報提供者を識別する提供者識別情報を自己が提供する提供情報に付加する提 供者識別情報付加手段と、  A provider identification information adding means for adding provider identification information for identifying the information provider to the provided information provided by the self;
自己が提供する提供情報を、当該情報提供者を識別する提供者識別情報と関連 付けて送信する提供情報送信手段とを具備し、  Providing information transmitting means for transmitting the providing information provided by the user in association with the provider identification information for identifying the information provider;
前記提供情報管理装置が、  The provided information management device
情報提供を許可する情報提供者の提供者識別情報を管理する提供者識別情報管 理手段と、  A provider identification information management means for managing provider identification information of an information provider permitted to provide information; and
前記提供者識別情報管理手段に基づいて情報提供を許可された提供者識別情 報を含む照合情報を作成する照合情報作成手段と、  Collation information creating means for creating collation information including provider identification information permitted to provide information based on the provider identification information management means;
前記照合情報作成手段にて作成した照合情報を出力する照合情報出力手段とを 具備し、  Collation information output means for outputting the collation information created by the collation information creation means,
前記情報受給者側装置が、  The information receiver side device is:
前記提供情報と関連付けられた前記提供者識別情報を受け付ける提供者識別情 報受付手段と、  Provider identification information receiving means for receiving the provider identification information associated with the provision information;
当該情報提供者を識別する提供者識別情報と関連付けられた提供情報を受け付 ける提供情報受付手段と、  A provision information receiving means for accepting provision information associated with the provider identification information for identifying the information provider;
情報提供を許可された情報提供者の提供者識別情報に関する情報を含んだ照合 情報を受け付ける照合情報受付手段と、  A collation information accepting means for accepting collation information including information relating to provider identification information of an information provider permitted to provide information;
前記提供者識別情報受付手段により受け付けた提供者識別情報と、前記照合情 報受付手段により受け付けた提供者識別情報とに基づ 、て、前記提供情報受付手 段により受け付けた提供情報が、情報提供を許可された情報提供者力ゝらの提供情報 であるカゝを照合し、情報提供を許可された情報提供者力ゝらの提供情報である場合に は、提供情報の蓄積を許可する旨の蓄積許可信号を出力する照合手段と、 前記照合手段により蓄積を許可された提供情報及び当該提供情報と関連付けられ た提供者識別情報を蓄積する提供情報蓄積手段と、 Based on the provider identification information received by the provider identification information receiving means and the provider identification information received by the verification information receiving means, the provided information received by the provided information receiving means is information Information provided by the authorized information providers A verification means for outputting a storage permission signal indicating that storage of the provided information is permitted, if the information is provided by the information provider who has been permitted to provide the information; Provision information accumulating means for accumulating provision information permitted to be accumulated by the means and provider identification information associated with the provision information;
前記提供情報蓄積手段に蓄積した提供情報を、他の情報需給者側装置から送信さ れた提供情報要求信号を受信することを契機に送信する提供情報送信手段を有し ていることを特徴とする請求項 1記載の提供情報管理システム。  Characterized in that it has provision information transmission means for transmitting the provision information stored in the provision information storage means upon receipt of a provision information request signal transmitted from another information supplier-side device. The provided information management system according to claim 1.
[3] 前記提供情報管理装置が、前記識別情報に基づ!、て、情報受給者側装置に蓄積 された提供情報の削除指示を送信する削除指示手段を有することを特徴とする請求 項 1又は 2記載の提供情報管理システム。 [3] The provision information management device has a deletion instruction means for transmitting a deletion instruction of the provision information stored in the information receiver side device based on the identification information! Or the provided information management system described in 2.
[4] 前記提供情報管理装置が、前記提供者側装置から送信される提供情報を蓄積す る提供情報蓄積手段を有することを特徴とする請求項 1乃至 3記載の提供情報管理 システム。 4. The provision information management system according to claim 1, wherein the provision information management device has provision information storage means for storing provision information transmitted from the provider side device.
[5] 前記照合情報作成手段が、情報共有ネットワーク内での流通を禁止する提供情報 や、削除の対象として ヽる提供情報に関する識別情報を含む照合情報を作成するも のであり、  [5] The collation information creating means creates collation information including identification information relating to provision information prohibited from distribution in the information sharing network and provision information to be deleted.
前記提供情報照合手段が、正規の照合情報であると判断した照合情報に基づ 、 て、当該照合情報に含まれる識別情報と、前記識別情報受付手段により受け付けた 識別情報とを照合し、当該照合情報に含まれて 、る識別情報と合致した場合には、 当該識別情報と関連付けられた提供情報は受信しない旨の制御信号を出力する、 又は、当該識別情報と関連付けられた提供情報を情報蓄積手段力 削除する旨の 制御信号を出力することを特徴とする請求項 1乃至 4記載の提供情報管理システム。  Based on the collation information that the provided information collating unit determines to be regular collation information, the identification information included in the collation information is collated with the identification information received by the identification information receiving unit, If it matches the identification information included in the collation information, a control signal is output indicating that the provision information associated with the identification information is not received, or the provision information associated with the identification information is information. 5. The provided information management system according to claim 1, wherein a control signal for deleting the storage means force is output.
[6] 音楽コンテンツ等の提供情報を PeertoPeer等の通信モデルを用いた情報共有ネ ットワーク上に最初に提供する情報提供者側装置と、当該提供情報を有する装置の 接続先情報を検索する接続先検索手段を有し、前記情報共有ネットワークを利用し て前記接続先情報に基づ ヽて提供情報を有する装置と接続を確立し、直接に提供 情報を受信すると共に、当該受信した提供情報を前記情報共有ネットワーク内に提 供可能とする情報受給者側装置と、当該提供情報を管理する提供情報管理装置と を有する提供情報管理システムに用いられるコンピュータを機能させるためのプログ ラムにおいて、 [6] Information provider side that first provides provided information such as music content on an information sharing network using a communication model such as PeertoPeer, and a connection destination that searches connection destination information of the device that has the provided information The information sharing network is used to establish a connection with the apparatus having the provision information based on the connection destination information, and the provision information is directly received, and the received provision information is An information receiver side device that can be provided in the information sharing network, a provided information management device that manages the provided information, and In a program for causing a computer used in a provided information management system to function,
前記情報提供者側装置を、  The information provider side device,
情報提供者を識別する提供者識別情報や前記提供情報を識別する提供情報識別 情報等の識別情報を、自己が提供する提供情報に付加する識別情報付加手段と、 自己が提供する提供情報を、前記識別情報と関連付けて送信する提供情報送信 手段として機能させ、  Identification information adding means for adding identification information such as provider identification information for identifying an information provider and provision information identification information for identifying the provision information to the provision information provided by the self, provision information provided by the self, Function as providing information transmitting means for transmitting in association with the identification information;
前記提供情報管理装置を、  The provided information management device;
前記識別情報に基づ!、て、前記提供情報を管理するための照合情報を作成する 照合情報作成手段と、  Based on the identification information !, collation information creating means for creating collation information for managing the provided information;
前記照合情報作成手段にて作成した照合情報を出力する照合情報出力手段とし て機能させ、  Function as collation information output means for outputting the collation information created by the collation information creation means,
前記情報受給者側装置を、  The information receiver side device;
前記提供情報と関連付けられた前記識別情報を受け付ける識別情報受付手段と、 当該識別情報と関連付けられた提供情報を受け付ける提供情報受付手段と、 前記識別情報に関する情報を含んだ照合情報を受け付ける照合情報受付手段と 前記照合情報受付手段にて受け付けた照合情報が、正規の照合情報であるかを 判定する照合情報判定手段と、  Identification information receiving means for receiving the identification information associated with the provision information, provision information receiving means for receiving the provision information associated with the identification information, and collation information reception for receiving collation information including information related to the identification information And collation information determination means for determining whether the collation information received by the collation information reception means is regular collation information;
前記照合情報判定手段にて、正規の照合情報であると判断した照合情報に基づ いて、当該照合情報に含まれる識別情報と、前記識別情報受付手段により受け付け た識別情報とを照合し、当該照合情報の内容に合わせて前記提供情報受付手段に より受け付けた提供情報を制御する制御信号を出力する照合手段と、  Based on the collation information determined by the collation information determination means as the regular collation information, the identification information included in the collation information is collated with the identification information received by the identification information reception means, Matching means for outputting a control signal for controlling the provided information received by the provided information receiving means in accordance with the content of the matching information;
前記照合手段により蓄積を許可された提供情報及び当該提供情報と関連付けられ た識別情報を蓄積する提供情報蓄積手段と、  Provision information accumulating means for accumulating provision information permitted to be accumulated by the collating means and identification information associated with the provision information;
前記提供情報蓄積手段に蓄積した提供情報を、他の情報需給者側装置から送信 された提供情報要求信号を受信することを契機に送信する提供情報送信手段として 機能させるための提供情報管理プログラム。 コンピュータを機能させるためのプログラムにおいて、 A provision information management program for causing provision information stored in the provision information storage means to function as provision information transmission means for transmitting upon receipt of a provision information request signal transmitted from another information supplier-side device. In a program for causing a computer to function,
前記提供者側装置を、  The provider side device,
情報提供者を識別する提供者識別情報を自己が提供する提供情報に付加する提 供者識別情報付加手段と、  A provider identification information adding means for adding provider identification information for identifying the information provider to the provided information provided by the self;
自己が提供する提供情報を、当該情報提供者を識別する提供者識別情報と関連 付けて送信する提供情報送信手段として機能させ、  The provision information provided by the self functions as provision information transmission means for transmitting in association with the provider identification information for identifying the information provider,
前記提供情報管理装置を、  The provided information management device;
情報提供を許可する情報提供者の提供者識別情報を管理する提供者識別情報管 理手段と、  A provider identification information management means for managing provider identification information of an information provider permitted to provide information; and
前記提供者識別情報管理手段に基づいて情報提供を許可された提供者識別情 報を含む照合情報を作成する照合情報作成手段と、  Collation information creating means for creating collation information including provider identification information permitted to provide information based on the provider identification information management means;
前記照合情報作成手段にて作成した照合情報を出力する照合情報出力手段とし て機能させ、  Function as collation information output means for outputting the collation information created by the collation information creation means,
前記情報受給者側装置を、  The information receiver side device;
前記提供情報と関連付けられた前記提供者識別情報を受け付ける提供者識別情 報受付手段と、  Provider identification information receiving means for receiving the provider identification information associated with the provision information;
当該情報提供者を識別する提供者識別情報と関連付けられた提供情報を受け付 ける提供情報受付手段と、  A provision information receiving means for accepting provision information associated with the provider identification information for identifying the information provider;
情報提供を許可された情報提供者の提供者識別情報に関する情報を含んだ照合 情報を受け付ける照合情報受付手段と、  A collation information accepting means for accepting collation information including information relating to provider identification information of an information provider permitted to provide information;
前記提供者識別情報受付手段により受け付けた提供者識別情報と、前記照合情 報受付手段により受け付けた提供者識別情報とに基づ 、て、前記提供情報受付手 段により受け付けた提供情報が、情報提供を許可された情報提供者力ゝらの提供情報 であるカゝを照合し、情報提供を許可された情報提供者力ゝらの提供情報である場合に は、提供情報の蓄積を許可する旨の蓄積許可信号を出力する照合手段と、 前記照合手段により蓄積を許可された提供情報及び当該提供情報と関連付けられ た提供者識別情報を蓄積する提供情報蓄積手段と、  Based on the provider identification information received by the provider identification information receiving means and the provider identification information received by the verification information receiving means, the provided information received by the provided information receiving means is information Check the information provided by the information provider authorized to provide the information, and if the information provided by the information provider authorized to provide the information is permitted, allow the accumulation of the provided information. Collating means for outputting a storage permission signal indicating that the information has been provided; providing information accumulating means for accumulating providing information permitted to be accumulated by the collating means and provider identification information associated with the providing information;
前記提供情報蓄積手段に蓄積した提供情報を、他の情報需給者側装置から送信 された提供情報要求信号を受信することを契機に送信する提供情報送信手段として 機能させるための請求項 6記載の提供情報管理プログラム。 The provision information stored in the provision information storage means is transmitted from another information supplier-side device. 7. The provision information management program according to claim 6, wherein the provision information management program causes the information to function as provision information transmission means for transmitting upon receipt of the provided provision information request signal.
[8] コンピュータを機能させるためのプログラムにおいて、前記提供情報管理装置を、 前記識別情報に基づ!、て、情報受給者側装置に蓄積された提供情報の削除指示 を送信する削除指示手段として機能させるための請求項 6又は 7記載の提供情報管 理プログラム。 [8] In a program for causing a computer to function, the provided information management device is used as a deletion instruction means for transmitting an instruction to delete provided information stored in the information receiver-side device based on the identification information! The provided information management program according to claim 6 or 7 for functioning.
[9] コンピュータを機能させるためのプログラムにおいて、前記提供情報管理装置を、 前記提供者側装置カゝら送信される提供情報を蓄積する提供情報蓄積手段として機 能させるための請求項 6乃至 8記載の提供情報管理プログラム。  [9] A program for causing a computer to function, wherein the provision information management device functions as provision information storage means for storing provision information transmitted from the provider side device. The provided information management program.
[10] コンピュータを機能させるためのプログラムにおいて、  [10] In a program for operating a computer,
前記提供情報管理装置を、  The provided information management device;
前記情報共有ネットワーク内での流通を禁止する提供情報や、削除の対象としてい る提供情報に関する識別情報を含む照合情報を作成する照合情報手段と機能させ 前記情報受給者側装置を、  The information receiver side device is caused to function as collation information means for creating collation information including provision information forbidding distribution in the information sharing network and identification information related to provision information to be deleted.
正規の照合情報であると判断した照合情報に基づ 、て、当該照合情報に含まれる 識別情報と、前記識別情報受付手段により受け付けた識別情報とを照合し、当該照 合情報に含まれて ヽる識別情報と合致した場合には、当該識別情報と関連付けられ た提供情報は受信しない旨の制御信号を出力する、又は、当該識別情報と関連付 けられた提供情報を情報蓄積手段力 削除する旨の制御信号を出力する提供情報 照合手段として機能させることを特徴とする請求項 6乃至 9記載の提供情報管理プロ グラム。  Based on the collation information determined to be legitimate collation information, the identification information included in the collation information is collated with the identification information received by the identification information receiving means, and is included in the collation information. If it matches the identifiable identification information, a control signal is output indicating that the provision information associated with the identification information is not received, or the provision information associated with the identification information is deleted. 10. The provision information management program according to claim 6, wherein the provision information management program is made to function as provision information collation means for outputting a control signal to the effect.
PCT/JP2006/316146 2005-09-22 2006-08-17 Provided information management system and provided information management program WO2007034640A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2005276239A JP4403124B2 (en) 2005-09-22 2005-09-22 System, apparatus, method and program for content sharing
JP2005-276239 2005-09-22

Publications (1)

Publication Number Publication Date
WO2007034640A1 true WO2007034640A1 (en) 2007-03-29

Family

ID=37888694

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2006/316146 WO2007034640A1 (en) 2005-09-22 2006-08-17 Provided information management system and provided information management program

Country Status (2)

Country Link
JP (1) JP4403124B2 (en)
WO (1) WO2007034640A1 (en)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP5120091B2 (en) * 2008-06-19 2013-01-16 富士ゼロックス株式会社 Document tracking system, user terminal, document management server and program

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003288254A (en) * 2002-03-27 2003-10-10 Nri & Ncc Co Ltd Information processing device, peer-to-peer communication supporting method, and computer program
JP2004023456A (en) * 2002-06-17 2004-01-22 Fujitsu Ltd File translation device, personal information registration/introduction server, transmission control method, and program
JP2005141635A (en) * 2003-11-10 2005-06-02 Sony Corp Content sharing system, content processing apparatus, information processing apparatus, program, recording medium and content sharing method

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003288254A (en) * 2002-03-27 2003-10-10 Nri & Ncc Co Ltd Information processing device, peer-to-peer communication supporting method, and computer program
JP2004023456A (en) * 2002-06-17 2004-01-22 Fujitsu Ltd File translation device, personal information registration/introduction server, transmission control method, and program
JP2005141635A (en) * 2003-11-10 2005-06-02 Sony Corp Content sharing system, content processing apparatus, information processing apparatus, program, recording medium and content sharing method

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
IWATA S.: "Ima Aratamete Shitteokitai Korekara no P2P", NETWORK MAGAZINE, ASCII CORP., vol. 10, no. 3, 1 March 2005 (2005-03-01), pages 113 - 127, XP003002725 *

Also Published As

Publication number Publication date
JP2007087185A (en) 2007-04-05
JP4403124B2 (en) 2010-01-20

Similar Documents

Publication Publication Date Title
JP6608256B2 (en) Electronic data existence certification program and existence certification server
JP6483827B2 (en) Agreement agreement method, agreement verification method, agreement agreement system, agreement validation device, agreement agreement device, agreement agreement program and agreement validation program
US7310736B2 (en) Method and system for sharing storage space on a computer
AU2001285298B2 (en) Systems and methods for integrity certification and verification of content consumption environments
WO2018024061A1 (en) Method, device and system for licensing shared digital content
JP5463317B2 (en) Device type authentication in the transmission system
JP4993733B2 (en) Cryptographic client device, cryptographic package distribution system, cryptographic container distribution system, and cryptographic management server device
US20020152262A1 (en) Method and system for preventing the infringement of intellectual property rights
JP6275302B2 (en) Existence proof device, existence proof method, and program therefor
US20020152261A1 (en) Method and system for preventing the infringement of intellectual property rights
JP4168679B2 (en) Content usage management system, information processing apparatus or method for using or providing content, and computer program
WO2006018994A1 (en) Group management device, information processing device, and method
JP2003233589A (en) Method for safely sharing personal devices among different users
JP6543743B1 (en) Management program
JP2009009540A (en) Authentication system, user terminal, authentication server, authentication method, and authentication program
WO2006095726A1 (en) Information distribution system, node device, and release data issuing method, etc.
JP2008257719A (en) Secure pre-cache by local superflow and key exchange
JP4201556B2 (en) Information processing method and access authority management method in center system
US20230216661A1 (en) Data block modification
JP2005209181A (en) File management system and management method
JP4797709B2 (en) Information distribution system, node device, release data issuing method, etc.
CN114128216A (en) Multiple input transaction
JP5012574B2 (en) Common key automatic sharing system and common key automatic sharing method
JPWO2020085378A1 (en) Right holder terminal, user terminal, right holder program, user program, content use system and content use method
JP2005158022A (en) File security management system, authentication server, client device, program and storage medium

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application
NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 06796503

Country of ref document: EP

Kind code of ref document: A1