JP2000285210A - Portable recording medium and read/write system for portable recording medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To obtain an IC card which enables a user to safely read and write information even in the case that the user cannot input a password because of diseases or injuries. SOLUTION: An IC card owner B who has an enciphered group key 72 inputs a password 67 to be able to read and write his or her own key 73 and uses this key 73 to decipher the group key 73. He or she uses the deciphered group key 68 to decipher deciphered information 63, which can be read and written without passwords, as information 66 of a person A.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

[0001] 1. Field of the Invention [0002] The present invention relates to reading and writing information on portable recording media such as IC (Integrated Circuit) cards.

[0002]

2. Description of the Related Art FIG. 16 is a diagram showing a conventional method of using an IC card. In FIG. 16, the left side is the normal I
9 shows a method of using the C card. If the user wants to obtain the information of Mr. A recorded on the IC card, he or she inputs a password known only to Mr. A. Others cannot obtain the information on A's IC card without knowing the password unless A teaches. The right side of FIG. 16 shows an emergency case in which Mr. A has suffered illness or injury. A
In an emergency where you cannot enter your own password,
No one can get the information of Mr. A recorded on the C card.

FIG. 17 is a diagram showing another conventional method of using an IC card.

In FIG. 1, reference numeral 111 denotes a host computer to which an R / W (read / write) device 112 is connected.

The R / W device 112 includes a control unit 113,
In addition to the memory 114, the R / W units 115 and 116 have two R / W units 115 and 116.
7 and the second card 118 are set separately.

The R / W device 112 thus constructed
Then, when the application program 211 on the host computer 111 instructs reading / writing of a file on the first card 117, a command is sent to the R / W device 112 by the control program 212 and the The control of the R / W unit 115 is executed according to the instruction, and data is read / written to / from the optical data recording unit on the first card 117.
Data reading / writing is performed on the upper IC chip through the contact. Data read / write is performed for the second card 118 in the same manner as for the first card 117. In this case, each data read / written to the first and second cards 117 and 118 is temporarily stored in the memory 114.

Next, the operation under such a configuration will be described. In this case, the first card 117 is a user card stored by the user, and the first card 117 divides the optical data recording section into a plurality of partitions 171, 172, 173 as shown in FIG. Partition 1
Different types of data are recorded in 71, 172, and 173. A second card 118 is an application card prepared for each application to identify an application. As shown in FIG.
1, partition name 182, data format 18
3 has been recorded. This application information is
May be recorded on either the optical data recording section of the card 118 or the IC chip.

Then, the first and second cards 1
17 and 118 are the respective R / W units 115 of the R / W device 112,
Set to 116. In this case, the host computer 1
The 11th control program 212 reads the application information of the second card 118 in accordance with the instruction of the application program 211, and
81, fetch the partition name 182;

Next, a partition corresponding to the partition name 182 is searched from the plurality of partitions 171, 172, 173 of the first card 117.

Then, it is determined whether or not there is a corresponding partition. If there is no corresponding partition, an error message is displayed and the process is terminated.

On the other hand, if there is a corresponding partition,
A plurality of partitions 171, 1 of the first card 117
The partition to be accessed is selected from 72 and 173. Then, the first card 117 is executed by the application program 211 of the host computer 111.
The read / write is executed for the data in the selected partition.

In this case, the application program 2
The reading / writing of data in the partition according to 11 is only for data in the selected partition, and does not relate to data in other partitions.

Therefore, in this way, the plurality of partitions 171, 172, 173 of the first card 117 are provided.
Is permitted based on the partition name 182 recorded as the application information of the second card 118, so that the read / write is executed with respect to the data in the permitted partition of the first card 117. Will be able to do the same first card 1
Even within 17, data in other partitions is not erroneously accessed, so that unnecessary viewing of data can be prevented.

[0014]

In a system using a current IC card, when reading and writing data in the IC card, it is necessary to input a password unique to the owner of the IC card.

According to this method, data in the IC card cannot be obtained in an emergency such as when the IC card owner cannot input his / her own password due to injury or illness. Therefore, the IC card cannot be used even if it contains information for treatment and information such as identity.

When the information recording / reproducing apparatus shown in FIG. 17 is used, the information recorded on the first card is permitted to be accessed based on the information recorded on the second card. It is possible to access the information recorded on the first card without having to provide a password for accessing the first card. However, when the second card is stolen, or when the information recorded on the second card is stolen, there is a disadvantage that the information on the first card is stolen. Also, the second
When the card of the second card is given to an unspecified number of people, the second card becomes the exact same card. Therefore, once the information of the second card is once leaked, all the second cards are deleted. There is a disadvantage that the contents are known.

SUMMARY OF THE INVENTION The present invention has been made to solve the above problems, and has no password by encrypting information stored in a portable recording medium such as an IC card. The purpose is to provide a system that can safely read and write information.

In particular, it is an object of the present invention to provide a system that can be decrypted only by a specific person (a specific group) by limiting possession of a digital key used for encryption processing.

[0019]

A portable recording medium writing system according to the present invention encrypts information using an information encryption key for encrypting information, and records the encrypted information on a first portable recording medium. An information encrypting means for encrypting an information decryption key for decrypting the encrypted information recorded on the first portable recording medium by using a key encryption key, and the encrypted information decryption key; And a key encrypting means for recording a key decryption key for decrypting the encrypted information decryption key on a second portable recording medium.

The key encrypting means encrypts the same information decryption key using a plurality of different key encryption keys to generate a plurality of different information decryption keys having different contents. A plurality of second portable recording media having different recording contents are created.

Further, the key encryption means uses a public key as a key encryption key and a secret key as a key decryption key.

Further, a portable recording medium according to the present invention is characterized in that information encrypted by the information encryption means is recorded.

The portable recording medium according to the present invention is characterized in that an information decryption key encrypted by the key encrypting means and a key decryption key for decrypting the encrypted information decryption key are recorded. And

Further, the portable recording medium reading system of the present invention inputs an information decryption key encrypted from the second portable recording medium and a key decryption key for decrypting the encrypted information decryption key. Key decryption means for decrypting the encrypted information decryption key using the input key decryption key and outputting the decrypted information decryption key; and inputting the encrypted information from the first portable recording medium. Information decryption means for inputting an information decryption key recorded by being decrypted by the key decryption means, and decrypting and outputting the input encrypted information using the input information decryption key, I do.

[0025]

DESCRIPTION OF THE PREFERRED EMBODIMENTS Embodiment 1 In the present invention, cryptographic processing is used. Generally, a common key cryptosystem and a public key cryptosystem are known as cryptosystems. The common key encryption method is a case where the encryption key and the decryption key are a common key, that is, a common key. On the other hand, in the public key cryptosystem, an encryption key (public key) and a decryption key (private key) are different. The encryption key is made public and the decryption key is kept secret. In the common key cryptosystem, it is necessary that a sender and a receiver of information have the same key in secret in advance. On the other hand, in the public key cryptosystem, the public key does not need to be kept secret, but is encrypted using the public key that is open to the communication partner and decrypted using the private key. The common key encryption method processing unit described in the embodiment described below is a processing unit that performs encryption or decryption using the above-described common key encryption method. The public key cryptosystem processing unit is a processing unit that performs encryption using a public key or performs decryption using a secret key.

FIG. 1 is a diagram showing a computer system 10 on which the system of the present invention operates.

FIG. 2 is a hardware configuration diagram of the computer system 10.

The computer system 10 includes a CRT 11
, System unit 12, keyboard 13 and mouse 14
And an IC card read / write device 19. A flexible disk 15 and a fixed disk 16 are installed inside the system unit 12. Further, inside the system unit 12, a CPU 20, a bus 21, a RAM 22, a ROM 23, a timer 24, and a communication board 18 are installed.

FIGS. 3, 4, and 5 show the I of this embodiment.
It is a figure showing a C card. As shown in FIG. 3, A's IC card 60 (an example of a first IC card or a first portable recording medium) has A's password 61 and A's encrypted with A's public key. 'S information 62, A's information 6 encrypted with A's group key
3. The secret key 64 of Mr. A is recorded.

As shown in FIG. 4, B's IC card 70 (an example of a second IC card or a second portable recording medium) contains B's password 71 and B's public key. The encrypted group key 72 and Mr. B's secret key 73 are recorded.

Further, as shown in FIG. 5, C's IC card 74 (an example of a second IC card or a second portable recording medium) includes C's password 75 and C's public key. The encrypted group key 76 and the secret key 77 of Mr. C are recorded.

One IC card has an area for storing information (62) readable and writable only by the owner, and an area for storing information (63) readable and writable only by the group key. The area may contain the same information or completely different information).

The information of the use area (62) which can be read and written only by the owner is encrypted by the public key cryptosystem. The information (63) of the area using the group key is encrypted by the common key encryption method.

Since the secret key (64) itself is stored in an area readable and writable only by the owner, the password (61) of the IC card must be known in order to take out the secret key (64). The group key is an encryption key given to a group used in the common key cryptosystem. Here, a group is a group of people who can read and write information on a certain IC card in an emergency. For example, Mr. A's I
The group for the C card is composed of B and C.

As a normal usage method, as shown in FIG. 6, the owner himself can read and write information in the IC card by inputting a password.

In the case shown in FIG. 6, Mr. A's password 6
5 is input, the password is compared with the password 61 of Mr. A in the IC card.
4 shows a case where the information 62 of A who is encrypted with the public key of A is decrypted and the information 66 of A is extracted.

In an emergency in which the IC card owner cannot input the password, as shown in FIG. 7, the person who owns the IC card possesses the group key of the IC card and obtains the information by using the group key. Becomes possible.

In FIG. 7, Mr. B's password 67
Is entered, B's password 7 in the IC card
1 is compared, and if they match, the group key 72 encrypted with B's public key is decrypted using B's private key 73, and the decrypted group key 68 is extracted. A case where the information 63 of Mr. A encrypted with the group key of Mr. A is decrypted by using the decrypted group key 68 and the information 66 of Mr. A is extracted is shown.

FIG. 8 is a diagram showing details of the IC card writing system 30 installed in the computer system 10. The IC card writing system 30 includes:
It has an information encryption unit 31, a key encryption unit 32, and a recording unit 33. The information encryption unit 31 has a public key encryption method processing unit 35 and a common key encryption method processing unit 36. The key encryption unit 32 has a public key encryption system processing unit 37. The recording unit 33 has a password recording unit 34. These units and processing units are, for example, program modules recorded on the flexible disk 15 or the fixed disk 16. These program modules are supplied to the RAM 22 and executed by the CPU 20, whereby each unit or each unit is processed. The function of the processing unit is exhibited. Alternatively, these program modules may be recorded in the ROM 23. Alternatively, the information may be shared by the RAM 22 via the communication board 18.

The IC card writing system 30 further includes a key file 41 for Mr. A, a key file 46 for Mr. B,
It has a key file 49 for Mr. C. These files are stored in the flexible disk 15, the fixed disk 16, or the RAM 22. Alternatively, it may be stored in the ROM 23. A's key file 41 contains a public key (personal key) 4
2 and a secret key (personal key) 43 are stored. Also, A
Has an information encryption key (group key)
44 and an information decryption key (group key) 45 are stored. B's key file 46 stores a key encryption key (public key) 47 and a key decryption key (private key) 48 unique to B. C's key file 49 stores a key encryption key (public key) 50 and a key decryption key (private key) 51 unique to C. Each of these keys is generated by a key generation device (not shown) or a key generation program and stored in each file.

The password recording unit 34 includes the keyboard 13
From A's password 61, B's password 7
1. The user inputs the password 75 of Mr. C and records it on the IC card 60 of Mr. A, the IC card 70 of Mr. B, and the IC card 74 of Mr. C, respectively. The recording of the password may be performed by the IC card writing system 30, but the password may be input to each IC card at a different place at a later date in another system.

The information encrypting means 31 inputs the information 66 of Mr. A from the file 29 of Mr. A. The public key cryptosystem processing unit 35 encrypts the information 66 of Mr. A using the public key (personal key) 42 and records it on the IC card 60 of Mr. A via the recording unit 33. On the other hand, the common key cryptosystem processing unit 3
6 encrypts the information 66 of Mr. A using the information encryption key (group key) 44 and records it on the IC card 60 of Mr. A via the recording unit 33. Further, the recording unit 33 inputs the secret key (personal key) 43 and records it on Mr. A's IC card 60. Thus, the IC card read / write device 19
Is used to complete the IC card 60 of Mr. A.

The key encryption means 32 inputs an information decryption key (group key) 45. The public key cryptosystem processing unit 37
The input information decryption key (group key) 45 is encrypted using a key encryption key (public key) 47, and the IC card 70 of Mr. B is encrypted.
Is recorded via the recording unit 33. Further, the recording unit 33
Inputs the key decryption key (secret key) 48 and records it on Mr. B's IC card 70. Thus, Mr. B's IC card 70 is completed.

The key encrypting means 32 completes the IC card 74 of Mr. C using the key file 49 of Mr. C in the same procedure as that of Mr. B. Here, the characteristic point is B's I
Although the C card 70 and Mr. C's IC card 74 have the same group key, each has a key encryption key (public key) 47.
And the key encryption key (public key) 50, so that B's IC card 70 and C's IC card 74
Is recording completely different data. That is, despite recording the same group key, a group key 72 encrypted with B's public key and a group key 76 encrypted with C's public key,
B's IC card 70 and C's IC card 74 record completely different things. Although the figure shows the case of two cards, even if the third and subsequent cards are generated, cards with different contents can be generated as long as the group key is encrypted using the public key cryptosystem. Can be.

FIG. 9 is a diagram showing an IC card reading system 80 installed in the computer system 10. The IC card reading system 80 includes a key decrypting unit 81, an information decrypting unit 82, and a reading unit 83. The key decryption means 81 has a public key cryptosystem processing unit 85. The information decrypting means 82 has a common key cryptosystem processing unit 86 and a public key cryptosystem processing unit 87. The reading unit 83 has a password check unit 84. Each of the above-described units and each processing unit also includes the flexible disk 15 or the fixed disk 16 or the communication board 18
The program module supplied from the CPU to the RAM 22 or the program module recorded in the ROM 23 is C
The functions are exhibited by being executed by the PU 20.

FIG. 9 shows a normal case. That is, the case where Mr. A reads the information of Mr. A is shown. When Mr. A enters Mr. A's password 65 from the keyboard 13, the password checker 84 detects whether or not it matches Mr. A's password 61 of the Mr. A's IC card 60.
2 works. The public key cryptosystem processing section 87 of the information decrypting means 82 inputs the secret key 64 of A and the information 62 of A encrypted with the public key of A, and encrypts the information with the public key of A. The decrypted information 62 of Mr. A is decrypted using the secret key 64 of Mr. A. The public key cryptosystem processing unit 87 records the decrypted information 66 of Mr. A in the file 29 of Mr. A. Or CR the information 66 of Mr. A
Display at T11.

FIG. 10 shows an emergency or abnormal situation. That is, a case is shown in which Mr. A cannot enter the password and accesses Mr. A's information using Mr. B's information. B is keyboard 1
When Mr. B's password 67 is entered from 3, the password checker 84 enters Mr. B's password 71 from Mr. B's IC card 70 and detects whether they match. If they match, the key decryption means 81 operates. The public key cryptosystem processing unit 85 of the key decryption means 81 inputs the group key 72 encrypted with Mr. B's public key,
Using the secret key 73 of B, the group key 72 encrypted with the public key of B is decrypted. The decrypted group key 68 output by the public key cryptosystem processing unit 85
Is input to the common key cryptosystem processing unit 86 of the information decrypting means 82. The common key encryption method processing unit 86 inputs the information 63 of Mr. A encrypted with the group key of Mr. A, and uses the decrypted group key 68 to encrypt the information of Mr. A encrypted with the group key of Mr. A. The information 63 is decrypted and the information 66 of Mr. A is output. The decrypted information 66 of Mr. A is recorded in the file 29 of Mr. A. Alternatively, the information 66 of Mr. A is displayed on the CRT 11.

As shown in FIG. 10, even if A cannot enter the password by himself, B enters the password and encrypts it from B's IC card 70 with B's public key. By extracting the group key 72, the information 63 of the person A encrypted with the group key of the person A is decrypted, and the information of the person A can be obtained. Since the group key recorded on Mr. B's IC card 70 has been encrypted by the public key cryptosystem, the security is improved. Furthermore, since the IC cards of Mr. B and Mr. C record different information, even if Mr. B's IC card is stolen, the information recorded on Mr. B's IC card can be decrypted. In addition to the fact that the content of the IC card of Mr. C is different, there is no fear that the information of the IC card of Mr. C is automatically understood.

FIG. 11 shows an IC card writing system 3
FIG. 1 is a diagram illustrating an entire system that uses an IC card reading system and an IC card reading system. IC card writing system 30
Are deployed to system houses and system designers. I
The C card reading system 80 is used for hospitals, government offices, schools,
It is placed in the workplace. IC card writing system 30
A's IC card 60 generated by A is owned by A. B's IC card 70 generated by IC card writing system 30 is owned by wife B. The doctor C owns Mr. C's IC card 74 generated by the IC card writing system 30. And I
Other ICs generated by the C card writing system 30
The card is owned by, for example, an official D, a teacher E, and a boss F. If Mr. A has any trouble and cannot input a password himself, the information of Mr. A can be used by using the IC card of his wife B who is a relative. Alternatively, authorized doctors, officials, teachers, and supervisors at hospitals, government offices, schools, and workplaces can obtain private information of Mr. A by using their own IC cards. Although not shown, the IC card reading system 80 is arranged at a plurality of emergency hospitals in the area, and the IC card is distributed to emergency rescue personnel, so that the information of Mr. A can be taken out at the emergency hospital. Can be.

In this embodiment, the private information of the individual A can be securely protected, and the information cannot be accessed by himself due to some trouble. If there is no need for this information, prepare another IC card in advance and use the information on the other IC card to
This is to extract the information of Mr. IC card. In particular, a feature is that even when a plurality of second cards are issued, the plurality of IC cards all have different information. The reason is that the group key is encrypted by a public key encryption method depending on the person having the IC card. In the prior art, the second
There is a technique for accessing the contents of the first card by using the contents of the first card. However, as in this embodiment, the contents of the second card are written using an encryption key depending on the holder of the second card. There is no example of encryption. Further, there is no disclosure of a technique of encrypting information of a first card by a common key encryption method, encrypting the common key (decryption key) by a public key encryption method, and recording the second card. This embodiment is characterized in that the information of the first card is encrypted, and the decryption key is further encrypted when the decryption key is recorded on the second card. The major feature is that the encryption method of the decryption key recorded on the second card is a public key encryption method.

Embodiment 2 12, 13, and 14
Makes A's IC card 60 the first IC card,
A case where Mr. B's IC card 70 is used as a second IC card is shown, and Mr. B's IC card 70 is used as a first IC card.
The case where the IC card 90 of Mr. D is the second IC card is shown.

FIG. 15A shows the relationship between Mr. A, Mr. B, and Mr. C shown in FIGS. 3, 4, and 5.
(B), Mr. A shown in FIGS. 12, 13 and 14;
The relationship between Mr. B and Mr. D is shown. The case where the tip of the arrow is the first IC card and the source of the arrow is the second IC card is shown. Further, as shown in (c), (d), and (e), the relationship between the first IC card and the second IC card may be various. Although not shown,
Network-like or other hierarchical relationships are also conceivable.

Embodiment 3 In the above embodiment, the case of an IC card has been described, but an optical card, a magnetic card, or a magnetic disk may be used instead of the IC card. Further, any other portable recording medium may be used.

In the above embodiment, the case where the common key cryptosystem and the public key cryptosystem are used has been described.
A case where another encryption method is used may be used.

[0055]

As described above, according to the present invention, even in an emergency in which a password cannot be input due to injury or illness, information on a portable recording medium of a specific person (group) is used. Thereby, there is an effect that information of a portable recording medium for which acquisition of information is desired can be acquired.

Further, since the decryption key recorded on the portable recording medium of a specific person (group) is encrypted, the security is improved.

Further, since the public key cryptosystem is used as the cryptosystem, even when a plurality of second portable recording media are created, those recording different contents can be generated.

[Brief description of the drawings]

FIG. 1 is an IC card writing system 30 of the present invention.
10 is a diagram illustrating a computer system 10 on which an IC card reading system 80 operates.

FIG. 2 is a hardware configuration diagram of a computer system 10 of the present invention.

FIG. 3 is a diagram showing Mr. A's IC card 60 of the present invention.

FIG. 4 is a diagram showing Mr. B's IC card 70 of the present invention.

FIG. 5 is a diagram showing Mr. C's IC card 74 of the present invention.

FIG. 6 is a diagram showing a method of using Mr. A's IC card 60 of the present invention.

FIG. 7 is a diagram showing a method of using Mr. B's IC card 70 and Mr. A's IC card 60 of the present invention.

FIG. 8 is an IC card writing system 30 of the present invention.
FIG.

FIG. 9 is an IC card reading system 80 of the present invention.
FIG. 5 is a diagram showing the normal operation of FIG.

FIG. 10 is an IC card reading system 8 of the present invention.
It is a figure which shows operation | movement at the time of abnormality of 0.

FIG. 11 is an overall view of a system according to the present invention.

FIG. 12 is a diagram showing Mr. A's IC card 60 of the present invention.

FIG. 13 is a diagram showing Mr. B's IC card 70 of the present invention.

FIG. 14 is a diagram showing Mr. D's IC card 90 of the present invention.

FIG. 15 is a diagram showing the relationship between the first and second portable recording media of the present invention.

FIG. 16 is a diagram showing a conventional method of using an IC card.

FIG. 17 is a diagram showing a conventional information recording / reproducing device.

FIG. 18 is a diagram showing a conventional optical card.

FIG. 19 is a diagram showing application information of a conventional second card.

[Explanation of symbols]

10 computer system, 11 CRT, 12 system unit, 13 keyboard, 14 mouse, 15
Flexible disk, 16 Fixed disk, 17
Display screen, 18 communication board, 19 IC card read / write device, 20 CPU, 21 bus, 22 RAM, 23
ROM, 24 timer, 29A's file, 3
0 IC card writing system, 31 information encryption unit, 32 key encryption unit, 33 recording unit, 34 password recording unit, 35, 37 public key encryption method processing unit, 36
Common key encryption processing unit, 41A's key file,
42 public key (personal key), 43 private key (personal key), 4
4 information encryption key (group key), 45 information decryption key (group key), 46 B's key file, 47 key encryption key (public key), 48 key decryption key (private key), 49 C's key file, 50 key encryption key (public key), 51 key decryption key (private key), 52 B's information encrypted by B's public key, 53 B's information encrypted by B's group key, 60 A's IC card, 61 A's password, 62 A's information encrypted with A's public key, 63 A's information encrypted with A's group key, 64 A's information
'S secret key, 65A's password, 66A's information, 67B's password, 68 decrypted group key, 70B's IC card, 71B's password, 72B's public key Encrypted group key, 73B's secret key, 74C's IC card, 75C's password, 76C
Group key, 77, encrypted with 's public key
C's secret key, 80 IC card reading system,
81 key decryption unit, 82 information decryption unit, 83 reading unit, 84 password check unit, 85 public key encryption method processing unit, 86 common key encryption method processing unit, 87 public key encryption method processing unit, 90 D's IC card, 91D
'S password, 92 D's group key encrypted with D's public key, 93 D's private key, 9
8 F's IC card.

 ────────────────────────────────────────────────── ─── Continuation of front page (72) Inventor Hirai extension F-term (reference) in Mitsubishi Electric Systemware Co., Ltd. 1-12-1 Yurakucho, Chiyoda-ku, Tokyo 5B035 AA13 BB09 CA38 5B058 KA31 KA35

Claims (6)

[Claims] 1. An information encrypting means for encrypting information with an information encryption key for encrypting information and recording the encrypted information on a first portable recording medium; An information decryption key for decrypting recorded encrypted information is encrypted using a key encryption key, and the encrypted information decryption key and a key decryption key for decrypting the encrypted information decryption key And a key encrypting means for recording the information on a second portable recording medium. 2. The key encrypting means encrypts the same information decryption key using a plurality of different key encryption keys to create a plurality of different information decryption keys having different contents. 2. The portable recording medium writing system according to claim 1, wherein a plurality of second portable recording media having different recording contents are created. 3. The portable recording medium writing system according to claim 1, wherein said key encryption means uses a public key as a key encryption key and a secret key as a key decryption key. 4. A first portable recording medium on which information encrypted by the information encryption means of the portable recording medium writing system according to claim 1 is recorded. 5. An information decryption key encrypted by the information encryption means of the portable recording medium writing system according to claim 1, and a key decryption key for decrypting the encrypted information decryption key. A second portable recording medium characterized by the above-mentioned. 6. An information decryption key encrypted from a second portable recording medium and a key decryption key for decrypting the encrypted information decryption key are input, and encryption is performed using the input key decryption key. Key decryption means for decrypting the decrypted information decryption key and outputting the decrypted information decryption key; and inputting the encrypted information from the first portable recording medium and decrypting and recording the decrypted information by the key decryption means. A portable recording medium reading system, comprising: an information decryption unit that inputs an information decryption key, decrypts the input encrypted information using the input information decryption key, and outputs the decrypted information.