JP2001338242A - Method and system for distributing electronic information and storage medium with electronic information distribution program stored therein - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a method and a system for distributing electronic information by which a computerized right can be distributed circulated safely by preparing original information for preventing the copy of an electronic ticket and the right to use information for specifying a user, and a storage medium with a electronic information distribution program, stored therein. SOLUTION: An issuer device generates the electronic ticket on which right information is described, and transmits this electronic ticket to a user device. The user device stores the electronic ticket in a storage means and transfers information for identifying a token preserving device to the issuer device. By using the electronic ticket and a verification key, the issuer device generate a token which is the originality information of the electronic ticket, and transfers it to the token-preserving device. The user device transmits information for identifying the user device to the issuer device and the issuer device generates the issue certificate of the token and transfers the right to use to the user device. The user device verifies the right to use and verifies holding of the token to the token-preserving device.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a method and system for distributing electronic information and a storage medium storing an electronic information distribution program, and more particularly, to unauthorized copying of data representing rights such as electronic tickets and digital copyrights. An electronic information distribution method and system and an electronic information distribution program capable of realizing re-distribution between users with respect to data required to prevent data leakage, and capable of authenticating the owner of valid electronic information. It relates to the stored storage medium.

[0002]

2. Description of the Related Art In recent years, many electronic ticket systems have been proposed as means for realizing rights distribution. With the digitization of rights through the introduction of these systems, it is possible to immediately obtain rights via a network without having to visit a ticket providing organization, thereby greatly improving the convenience for users.

[0003] Further, with the digitization of tickets, it is possible to reduce the cost of printing right information such as right contents and issue numbers on tickets, the cost of mailing tickets, and the like, which are essential for conventional paper tickets. .

[0004] Japanese Patent Application No. 10-288293 describes an example of such an electronic ticket system.
In the present invention, a rights information structure definition that defines the types and meanings of various attributes of rights information that are different for each application to which an electronic ticket is applied, various electronic ticket issuance conditions that are different for each application to which an electronic ticket is applied, The transfer condition and the consumption condition are defined in the ticket schema that defines the structure of the electronic ticket or in the electronic ticket itself. The issuing device, the transfer device, the transfer device, the consuming device, and the ticket gate device that process electronic tickets perform processing while interpreting these conditions, so that various tickets having various distribution conditions can be shared and issued. Processing is performed by equipment, transfer equipment, consumption equipment, and ticket gate equipment.

[0005] However, since the electronic ticket is electronic information, a perfect copy can be created very easily. Once a user makes a copy of the electronic chet, there is a risk that illegal use such as multiple use of exercising the copy multiple times may be performed. Therefore, in order to realize an electronic ticket system, it is necessary to use, in addition to the above-mentioned conventional technology, a technology for preventing unauthorized duplication of an electronic ticket.

[0006] As a conventional technique for duplicating data representing a right represented by an electronic ticket and for preventing multiple use, there are the following techniques.

A first prior art is a method of preparing a server for centrally managing data owner information and usage status.
In this method, when data is transferred from one user to another, the transferor transmits a transfer certificate for the data to the central management server, thereby requesting a change in the owner of the data. Similarly, when the data is used, the user sends a use certificate for the data to the central management server, thereby requesting a change to the used state of the data. Upon receiving these requests, the central management server updates its own database. At the time of updating, if inconsistency arises between the received request content and the database information before updating, transfer or use of the data is refused. As described above, multiple transfer and multiple use of the data are prevented.

An example in which this prior art is applied to rights distribution is described in Japanese Patent Application No. 11-310090. In this method, the information for specifying the owner of the right is managed by the central management server, thereby preventing the multiple use of the right. In addition, in order to prevent a decrease in processing efficiency due to digital signature verification of the transfer certificate or the use certificate, a method is employed in which the owner of the right can be efficiently authenticated only by the hash function. When the technology is applied to an electronic ticket system, information for specifying the owner of the electronic ticket is managed by a central management server. Also,
Each time an electronic ticket is transferred and exercised, the central management server authenticates the user and updates the electronic ticket owner as needed. The user can store the electronic ticket in a normal storage medium such as a hard disk device without using a special device such as a tamper-resistant device.

The second prior art is a method of storing data in a tamper-resistant device such as an IC card to prevent the data from being copied by anyone other than the issuer. In this method, the data stored in the tamper-resistant device cannot be referred to from outside the tamper-resistant device. When transferring the data between users, the data is encrypted and transferred between the tamper-resistant devices. Once this transfer is completed, the data is securely deleted from the transferor's tamper-resistant device. Similarly, even when the data is used, the data is reliably deleted from the user's tamper-resistant device.
As described above, multiple transfer and multiple use of the data are prevented.

An example of this prior art is disclosed in Japanese Patent Application No. Hei 11-03 / 11.
9080 "and Japanese Patent Application No. 11-247457. In this proposal, of the data for which multiple use is to be prevented, only information (tokens) that guarantees originality is stored in a tamper-resistant device, and the data itself is stored in a normal storage medium, so that the processing speed and storage capacity are maintained. For example, a highly efficient distribution system has been realized.

When this technique is applied to an electronic ticket system, only a token that guarantees the originality of the electronic ticket is stored in a tamper-resistant device, and the electronic ticket itself is stored in a normal storage medium. Then, only an electronic ticket with a valid token is regarded as a valid ticket, and a user or a ticket examiner rejects a ticket without a valid token as an invalid electronic ticket.

The third prior art circulates, along with data, history data in which an owner transition accompanying the distribution of the data is recorded, and detects multiple use of the data by verifying the history data at the time of return. Is the way. in this way,
If data is used multiple times, it is detected that data having the same identifier is duplicated at the time of return.
Once the fact of multiple use is found, by analyzing the owner transition on the history data, it is possible to identify the user who has actually committed the fraud.

An example of a system in which this prior art is applied to the field of electronic cash is disclosed in Japanese Patent Laid-Open No. 9-28465. In this system, electronic banknote data representing the amount of circulation is distributed along with communication history data at the time of transfer of the data. Here, since the electronic cash is redeemed at the stage where the communication history is returned to the bank, if a certain user uses the electronic cash multiple times, the bank detects this fact by searching the communication history data. be able to.

[0014]

However, when the above conventional technique is applied to an electronic ticket system, the following problems occur.

In the first prior art, both information relating to prevention of unauthorized duplication of an electronic ticket and information relating to owner authentication when using an electronic ticket are managed by a centralized management server. Therefore, the administrator of the central management server falsifies the owner information of the electronic ticket managed by himself without the permission of the original electronic ticket owner,
There is a risk that any electronic ticket under server management can be illegally used. Similarly, if the server has been tampered with by anyone, there is a risk that any electronic ticket under the server management may be illegally used by an attacker.

In the second prior art, the prevention of unauthorized duplication of an electronic ticket is realized by the tamper resistance of an IC card or the like held by each user. At the same time, the possession of an electronic ticket (or a token which is information for guaranteeing the originality) stored in the tamper-resistant device is regarded as a user of the electronic ticket. In other words, both prevention of unauthorized duplication of the electronic ticket and user authentication are integrally realized by the tamper-resistant device.
Therefore, in this method, it is a precondition that all users have a tamper-resistant device such as an IC card and an access means to the tamper-resistant device such as an IC card reader / writer. Considering today's situation where these devices are not widespread as user terminals, this precondition is a major constraint.

In the third prior art, although multiple use of rights is detected by verification at the time of circulation of an electronic ticket, safe distribution of rights in the distribution process of the electronic ticket is not guaranteed. That is, this technique has a problem that it is only possible to perform post-detection after an electronic ticket is exercised, and that the validity of the electronic ticket in a distribution process cannot be determined.

The present invention has been made in view of the above points, and prepares original information for preventing unauthorized duplication of an electronic ticket and a usage right which is information for identifying a user of the electronic ticket. By separately managing and verifying information, there is no need to trust an institution unconditionally, and even if each user does not have an IC card or other tamper-resistant device, he or she can obtain electronic rights. It is an object of the present invention to provide an electronic information distribution method and system that can be safely and repeatedly distributed, and a storage medium storing an electronic information distribution program.

[0019]

FIG. 1 is a diagram for explaining the principle of the present invention.

The present invention (Claim 1) realizes re-distribution between users with respect to data representing rights such as electronic tickets and data requiring prevention of unauthorized duplication such as digital copyrights. In the electronic information distribution method for authenticating the owner of valid electronic information, when issuing an electronic ticket, the issuer device generates an electronic ticket in which the right information is described (step 1). The electronic ticket is transmitted to the user device (step 2), and the user device stores the electronic ticket in a storage unit for storing a set of data held by the user (step 3), and identifies the token storage device. The information to be issued is transferred to the issuer device (step 4), and the issuer device uses the electronic ticket and the verification key to create a token which is originality information for guaranteeing the originality of the electronic ticket. Generate (step 5) and transfer it to a token storage device for storing the token (step 6), the user device transmits information identifying the user device to the issuer device (step 7), and the issuer The device generates a token issuance certificate (step 8), transfers the usage right to the user device (step 9), and the user device verifies the usage right (step 10). If successful, the usage right is stored (step 11), and it is verified that the token is held in the token storage device (step 12).

According to the present invention (claim 2), it is possible to re-distribute data between users such as data representing rights such as electronic tickets and data which is required to prevent unauthorized duplication such as digital copyright. In addition, in the electronic information distribution method for authenticating the owner of the valid electronic information, when transferring the electronic ticket, the user device A extracts the electronic ticket to be transferred, and Transfer to
The user device B stores the electronic ticket and transfers information for identifying the token storage device B to the issuer device A. The user device A requests the token storage device A to transfer the token, The storage device A transfers the token to the token storage device B, the user device B transfers information identifying the user device B to the user device A, and the user device A transmits the information based on the token. A transfer certificate is generated, a use right is extracted, and the use right is updated using the transfer certificate to one containing information corresponding to data, information corresponding to the own device, and information corresponding to the data transfer destination device. Then, the use right is transferred to the user device B, the user device B determines whether the device having the right to use the data specified by the use right is its own device, and further, the token is stored in the token storage device. Is stored in B Testimony, if the verification is successful, stores the right to use.

The present invention (Claim 3) realizes the re-distribution between users of data representing rights such as an electronic ticket and data required to prevent unauthorized duplication such as digital copyright. In the electronic information distribution method for authenticating the owner of valid electronic information, when consuming the electronic ticket, the user device extracts the electronic ticket to be consumed and transfers it to the ticket gate device. Then, the ticket gate device stores the electronic ticket, the user device requests the token storage device to transfer the token to the ticket gate device, and the token storage device transfers the token to the ticket gate device. , The ticket gate device transfers the information identifying the ticket gate device to the user device, and the user device generates a ticket gate certificate based on the token, extracts the usage right, and uses the ticket gate certificate to generate the ticket gate certificate. Updates the use rights, ticket gate's device,
Verify that the token is valid, and if it is,
The usage right is stored, and it is verified whether the data indicated by the token and the usage right are the same.

The present invention (Claim 4) realizes the re-distribution between users of data representing rights such as electronic tickets and data required to prevent unauthorized duplication such as digital copyrights. And an electronic information distribution system for authenticating an owner of valid electronic information, wherein a first authentication for determining that data to be distributed is not illegally copied. A first device having means, a second device having second authentication means for determining that use of data is permitted for a certain device, and data owned by a certain device.
The second authentication means determines that the use of the data is permitted for the device, and the first authentication means determines that the data is not illegally copied. And a third device having third authentication means for determining that the data owned by the device is not an illegal copy and that the device has the right to use the data.

According to the present invention (claim 5), third information indicating the originality of data, including first information corresponding to a certain device, and data or second information corresponding to the data. And a fourth device having a first transfer unit for transferring the first device and a unit for specifying the transfer source device when the third information is transferred from another device, further comprising a fourth device. The first authentication unit is configured to perform the authentication when the transfer source device of the third information is authenticated, or when the transfer source device and the device corresponding to the first information of the third information are the same, Means for determining that data corresponding to the second information of the third information is not illegally copied.

According to the present invention (claim 6), the data or the fourth information, which is information corresponding to the data, and the fifth information and the sixth information corresponding to a certain device, Means for holding or obtaining the seventh information for specifying the device having the usage right, means for holding or obtaining the information corresponding to the data transfer destination device, and the sixth information, And a second transfer unit that transfers the seventh information to the transfer destination device, and further includes a fifth device that has a second transfer unit that transfers the seventh information to the transfer destination device. The authentication means may determine the seventh information, the fourth information, the fifth information,
And when it is determined that all of the sixth information has been updated by the device corresponding to the fifth information, the data corresponding to the fourth information is output by the device corresponding to the sixth information. And means for determining that use of the device is permitted.

According to the present invention (claim 7), in the seventh information, the data constituted by information corresponding to all the devices that have owned the data from the time when the data was issued by a device to the present. The fifth device further includes information corresponding to its own device, and means for appending to the eighth information, and the second authentication means of the second device further comprises , It is determined that the fourth information and the fifth information have been updated by the device corresponding to the fifth information, and from the set of information corresponding to the device constituting the eighth information,
The history of the user update of the data from the device corresponding to the information to the device corresponding to the sixth information is configured, and, for each information configuring the history, for the device corresponding to the information, Only when it is determined that the data has been updated by the device to which the data has been transferred, means for determining that use of the data corresponding to the fourth information by the device corresponding to the sixth information is permitted is performed. Including.

According to the present invention (claim 8), in the fifth device, means for concealing the secret key, and among the seventh information, the fifth information and the sixth information updated by the own device, Or the eighth
Means for generating a signature for the information of the second device, and means for transferring the signature together with the seventh information.
Of the fifth information, the sixth information, or the eighth
By verifying the signature for the information, the person who updated the information is determined.

According to the present invention (claim 9), the third device
In the authentication means, it is determined by the first authentication means of the first device that the data corresponding to the second information is not illegally copied, and the second authentication means of the second device determines When it is determined that the use of the data corresponding to the fourth information by the device corresponding to the sixth information is permitted, the device corresponding to the first information and the device corresponding to the fifth information are determined. Is the same, and only when the data corresponding to the second information and the data corresponding to the fourth information are the same, the data is not illegally duplicated or forged, and It is determined that the device corresponding to the sixth information has the right to use the data.

According to the present invention (claim 10), in the fourth device, the first information corresponding to the own device, data or
The information processing apparatus further includes a second generation unit configured to generate third information indicating originality of the data, the second information being configured from second information that is information corresponding to the data.

According to the present invention (claim 11), in the fourth device, when the first authentication means determines that the data is not an illegal copy, the third information indicating the originality of the data is obtained. And a first storage unit for storing.

According to the present invention (claim 12), in the fifth device, when the device having the right to use the data is specified by the second authentication means, the eighth information indicating the right to use the data is provided. And a second storage unit for storing.

According to the present invention (claim 13), in the third device, the fourth information, the fifth information, and the sixth information are extracted from the seventh information stored in the fifth device. And a third authentication unit of the third device, the first authentication information of the device corresponding to the fifth information, and the information corresponding to the data corresponding to the fourth information, respectively, It is determined that the third information held as the second information and the third information is stored in the eighth device, and only when the corresponding third information is stored in the fourth device, the third information is stored. It is determined that the information corresponding to the fourth information and the data corresponding to the second information are not illegal duplications, and that the device corresponding to the sixth information has the right to use the data.

[0033] The present invention (claim 14) provides a data processing for performing a process corresponding to data only when the third authentication means determines that the own device has a right to use data that is not an illegal copy. There is further provided a sixth device having means.

According to the present invention (claim 15), in each of the above apparatuses, means for concealing a secret key and a fingerprint of the own apparatus, which is an output of a one-way function of a public key corresponding to the secret key, are used. Is generated as information for specifying

According to the present invention (claim 16), in each of the above apparatuses, an output is generated by a one-way function of the data as information corresponding to the data. The present invention (claim 17)
Uses an identifier of a resource on a network as information corresponding to data in each of the above devices.

FIG. 2 is a diagram showing the principle of the present invention.

According to the present invention (claim 18), for data representing a right such as an electronic ticket or data required to prevent unauthorized duplication such as digital copyright,
An electronic information distribution system for realizing re-distribution between users and authenticating the owner of valid electronic information, comprising: information corresponding to the own device, data and / or information corresponding to the data. An originality information generating means 101 for generating originality information indicating the originality of data, a first transfer means 102 for transferring originality information, and holding information corresponding to a data transfer destination device; Alternatively, the first information obtaining means 103 to obtain, and the data or the information corresponding to the data, the information corresponding to the own device, and the device having the authority to use the data, including the information corresponding to the transfer destination device. Issuer device 10 having use right generating means 104 for generating the use right to be specified and second transfer means 105 for transferring the use right
A third transfer unit 304 for transferring originality information indicating the originality of data, including information corresponding to a certain device, and data or information corresponding to the data, and originality information from another device. A first specifying unit 303 for specifying a transfer source device when information is transferred; a first authentication unit 302 for determining that data corresponding to originality information is not illegally copied; When the first authentication means 302 determines that the data corresponding to the original information is not an illegal copy, the token storage device 30 having original information storage means 301 for storing the original information; A fourth transfer unit 201 for transferring a use right for specifying a device having a right to use data, including data or information corresponding to the data and two pieces of information corresponding to a certain device; Be done A second authentication unit 202 that determines whether the device having the authority to use the data is the own device, and stores the use right when the own device has the right to use the data by the second authentication unit 202. Usage right storage means 203
And third authentication means 206 for determining that originality information corresponding to the data is stored in the token storage device.
And second information obtaining means 204 for holding or obtaining information corresponding to the data transfer destination device, data or information corresponding to the data, and information corresponding to the own device. A user device 20 having a usage right updating unit 205 for updating the information to information including the information corresponding to the data transfer destination device; information corresponding to a certain device;
When originality information including information corresponding to the data is transferred from another device, a second specifying unit 401 for specifying the transfer source device and a second determining unit 401 for determining that the originality information is valid. The fourth authentication means 402, the fifth authentication means 403 for determining that the owner of the data is specified to the own device from the usage right, and the fifth authentication means 403 for determining that the usage right and the data indicated by the originality information are the same. There is a ticket gate device 40 including a sixth authentication unit 405 for discriminating and a data processing unit 404 for performing a process corresponding to data.

According to the present invention (claim 19), data representing rights such as an electronic ticket and data which is required to prevent unauthorized duplication such as digital copyrights are provided.
A storage medium that stores an electronic information distribution program mounted on an issuer device for realizing re-distribution between users and authenticating the owner of valid electronic information, and corresponding to its own device. An originality information generation process for generating originality information indicating the originality of the data, including information and data or information corresponding to the data, a first transfer process for transferring the originality information, A first information obtaining process for holding or obtaining information corresponding to the transfer destination device, including data or information corresponding to the data, information corresponding to the own device, and information corresponding to the transfer destination device ,
There is a usage right generation process for generating a usage right for specifying a device having the data usage right, and a second transfer process for transferring the usage right.

According to the present invention (claim 20), data representing a right such as an electronic ticket or data which is required to prevent unauthorized duplication such as a digital copyright is provided.
A storage medium for storing an electronic information distribution program mounted on a token storage device for realizing the re-distribution between users and for authenticating the owner of valid electronic information, and corresponding to a certain device. Information, and a third transfer process of transferring originality information indicating the originality of the data, including the data or the information corresponding to the data, and when the originality information is transferred from another device, A first specifying process for specifying a transfer source device, a first authentication process for determining that data corresponding to the originality information is not illegally copied, and data corresponding to the originality information in the authentication process , Is determined to be not an unauthorized copy, and stores the original information.

According to the present invention (claim 21), data representing a right such as an electronic ticket or data which is required to prevent unauthorized duplication such as a digital copyright is provided.
A storage medium that stores an electronic information distribution program mounted on a user device for realizing the re-distribution between users and for authenticating the owner of valid electronic information, the data or the data And a fourth transfer process for transferring a use right that specifies a device having the right to use data, including information corresponding to the device and two information corresponding to a certain device, and a right to use data specified by the use right. A second authentication process for determining whether the device having
A use right storing process for storing the use right when the own device has the use right of the data by the authentication process of
A third authentication process for determining that the originality information corresponding to the data is stored in the token storage device, and holding or obtaining the information corresponding to the data transfer destination device A process, a usage right is data or information corresponding to the data, information corresponding to the own device,
And a use right update process of updating the information including information corresponding to the data transfer destination device.

According to the present invention (claim 22), for data representing a right such as an electronic ticket or data required to prevent unauthorized duplication such as a digital copyright,
A storage medium that stores an electronic information distribution program mounted on a ticket gate device for realizing re-distribution between users and authenticating the owner of legitimate electronic information, and corresponds to a certain device. Information, data or, when originality information including information corresponding to the data is transferred from another device, a second specifying process for specifying the transfer source device,
A fourth authentication process for judging that the originality information is valid, a fifth authentication process for judging that the data owner is specified to the own device based on the usage right, a usage right and the originality There is a ticket gate device having a sixth authentication process for determining that the data indicated by the information is the same, and a data processing process for performing processing corresponding to the data.

As described above, in the present invention, there are two methods of managing the owner of a right in order to distribute the right safely, and guaranteeing the originality of the right in order to prevent duplication of the right. By independently managing the security of the rights. First, the right holder manages the transfer by using a transfer history using a signature called a usage right, and furthermore, regarding the originality, information representing the originality called a token stored in a tamper-resistant device such as an IC card. Guarantee by managing. Here, by entrusting the management of the originality to an agent, a rights management server, etc.,
Even people who do not have a tamper-resistant device can safely own rights. Further, by making the management of the owner independent of the management of the originality, it is possible to prevent the unauthorized use of the right by the depository.

[0043]

Embodiments of the present invention will be described below.

First, the meaning of the expressions used in the following description will be described.

X‖y is the concatenation of x and y.

H is a one-way hash function, y
= H (x) has a property that it is difficult to obtain x from y. As such a hash function, “MD5” of RSA of the United States and the like are known.

Spk is a signature function for generating an electronic signature Spk (x) that can be verified by the verification function Vpk.

Vpk is a verification function: Vpk (x, Spk (x)) = 1, Vpk (x, oth
er) = 0 (other ≠ Spk (x)). In other words, the electronic signature Spk (x) has the property of being able to verify whether or not the electronic signature Spk (x) is a correct signature by Spk for x.

Pk is a verification key, and Pk is
Has the property that Vpk can be configured. Further, H (Pk) is particularly called a fingerprint of Pk.

Spk, V having the properties described above
ESIGN of Nippon Telegraph and Telephone or the like is known as an electronic signature system that realizes pk.

Hereinafter, embodiments of the present invention will be described with reference to the drawings.

[First Embodiment] FIG. 3 shows the configuration of an electronic information distribution system according to a first embodiment of the present invention.

The electronic information distribution system shown in FIG. 1 includes one or more issuer devices 10, one or more user devices 20, and one or more token storage devices 3.
It comprises zero, one or a plurality of ticket gate devices 40.

Each device is connected by one or a plurality of connection devices 50.

In the electronic information distribution system shown in FIG. 1, the electronic ticket issuer has an issuer device 10.
The issuer device 10 issues an electronic ticket to be distributed in the electronic information distribution system in response to a request from the user device 20 or the like. Further, originality information (token) for guaranteeing the originality of the issued electronic ticket and a usage right for specifying a device having the authority to use the electronic ticket are generated.

The user of the electronic ticket uses the user device 20
Having. The user device 20 receives, transfers, and exercises the electronic ticket issued from the issuer device 10. In addition, the user device 20 performs processing such as receiving and verifying the usage right, updating and transferring the usage right accompanying the transfer of the electronic ticket, and the like. As a method of implementing the user device 20,
In addition to a personal computer and the like, implementation to a portable information terminal and the like are included.

The user of the electronic ticket further has a token storage device 30. The token storage device 30 receives the token, and transfers and verifies the token in response to a request from the user device 20. Token storage device 30
As a method for realizing the method, in addition to an IC card having tamper resistance, a method such as a remote server managed by a third party is included.

The ticket examiner of the electronic ticket is the ticket examiner device 40
Having. The ticket gate apparatus 40 performs processing such as reception of an electronic ticket, a token, and a usage right, and verification of the usage right and the token. Further, the ticket gate device 40 has a function of performing a process according to the content of the electronic ticket only when both the correct token and the usage right corresponding to the electronic ticket exist.

When issuing an electronic ticket, the issuer device 1
Communication means is established between the user device 20 and the issuer device 10 and the token storage device 30 via the connection device 50. Thereby, the electronic ticket generated by the issuer device 10 and the usage right are transferred to the user device 20.
The token is transferred to the token storage device 30.
At the time of transfer of the electronic ticket, communication means is established between the two user devices 20 and between the two token storage devices 30 via the connection device 50. Thereby, the transfer of the electronic ticket and the usage right between the user devices 20,
The transfer of the token between the token storage devices 30 is performed.

When the electronic ticket is turned on, the user device 2
0 and the ticket gate device 40, and the token storage device 30
Communication means is established between the ticket gate device 40 and the ticket gate device 40 via the connection device 50. Thereby, the transfer of the electronic ticket and the usage right between the user device 20 and the ticket gate device 40,
The transfer of the token between the token storage device 30 and the ticket gate device 40 is performed.

Next, with reference to FIGS. 4 to 8, details of each device which is a component in this embodiment will be described.

FIG. 4 shows the configuration of the issuer device according to the first embodiment of the present invention.

The issuer device 10 shown in FIG.
1, a signature unit 12, a data generation unit 13, and an original data distribution system 14.

The control unit 11 holds the verification key PkI and performs control for safely distributing tickets. Here, PkI is a signature function S provided in the signature unit 12 described later.
It is a verification key corresponding to pkI, and its fingerprint H (PkI) is used as an identifier for specifying the issuer. Details of the control by the control unit 11 will be described later.

The signature section 12 has a signature function SpkI. The signature function SpkI differs for each issuer device 10 and is kept secret by the signature unit 12.

The data generator 13 generates data m based on internally generated information or based on externally provided information. Since the data storage device according to the present invention does not have any restrictions on the description content of the data m, the data m may include, in addition to electronic information representing the right handled by a general ticket such as a ticket or a concert ticket, a program, It can handle music, image data, and the like.

The original data distribution system 14 has a one-way hash function H, and generates tokens (H (m), H (PkI)) from the data m and the verification key PkI. Here, H (PkI) is token issuer information, and is a fingerprint that identifies the issuer of the token. Here, the hash value of m is used to identify the data m, but an identifier of m may be used.

The original data distribution system 14 also includes a device for transmitting a token.
It is also possible to use the issuer device described in 47457 and the like.

FIG. 5 shows the configuration of the user device according to the first embodiment of the present invention.

The user device 20 shown in FIG.
1, a storage unit 22, an authentication unit 23, and a signature unit 24.

The control section 21 holds the verification key PkU and performs control for safely distributing tickets. here,
PkU is a verification key corresponding to SpkU provided in the signature unit 24, and its fingerprint H (PkU) is used as an identifier for identifying the user device 20. Details of the control by the control unit 21 will be described later.

The authentication section 23 includes a verifier V.

The signature section 24 has a signature function SpkU. The signature function SpkU differs for each user device 20 and is kept secret by the signature unit 24.

The storage unit 22 stores a set Mu of data held by the user and a set Ku of usage rights. These sets can be updated by the control unit 21.

FIG. 6 shows the configuration of the token storage device according to the first embodiment of the present invention.

The token storage device 30 shown in the figure has an original data distribution system 31. As the original data distribution system 31, a user device or the like described in Japanese Patent Application No. 11-247457 can be used. Further, information Tu for identifying the token storage device 30 is provided. As the information Tu, a URL, a hash value of a public key included in the token storage device 30, or the like can be used.

FIG. 7 shows the structure of a ticket gate apparatus according to the first embodiment of the present invention.

The ticket gate device 40 shown in FIG.
1, an authentication unit 42, an original data distribution system 43, and a storage unit 44.

The control unit 41 has a verification key PkE and performs control for safely distributing tickets. Control unit 41
The details of the control by will be described later.

The authentication section 42 has a verifier V.

The original distribution system 43 is based on Japanese Patent Application No. 11-2
It is possible to use a ticket gate device described in US Pat.

The storage unit 44 stores a set Me of data held by the ticket gater and a set Ke of usage rights. These sets can be updated by the control unit 41.

FIG. 8 shows the configuration of the connection device according to the first embodiment of the present invention.

The connection device 50 shown in the figure has a plurality of communication units 51.

The communication section 51 provides a temporary or permanent communication means between the issuer device 10, the user device 20, the ticket reader device 40, and the user device 20. Here, as the connection device 50, a plurality of PCs (personal contents) interconnected via a network can be used.

The method for safely distributing an electronic ticket using each apparatus having the above-described configuration is as follows: (1) In the case of issuing a ticket, (2) In the case of transferring a ticket,
(3) Each case of ticket wicket will be described separately. The communication across the devices is performed by the connection device 50.
It is assumed that the communication is via the communication unit 51 in the middle.

(1) In the case of issuing a ticket: FIG. 9 is a sequence chart showing the operation in the case of issuing a ticket according to the first embodiment of the present invention. In FIG. 1, the connection device 50 existing between the issuer device 10, the user device 20, and the token storage device 30 is omitted.

Step 101) The control unit 11 of the issuer device 10 generates data m by the data generation unit 13. It is assumed that the data m is an electronic ticket in which right information is described.

Step 102) The control unit 11 of the issuer device 10 transfers the data m to the control unit 21 of the user device 20.

Step 103) The control unit 21 of the user device 20 adds and stores the data m to the data set Mu held by the user of the storage unit 22.

Step 104) The control unit 21 of the user device 20 transfers Tu, which is information for identifying the token storage device 30, to the control unit 11 of the issuer device 10.

Step 105) The control unit 11 of the issuer device 10 gives the data m and PkI to the original data distribution system 14 and requests generation and transfer of tokens (H (m), H (PkI)). The token is transferred to the token storage device 30. For the generation and transfer of the token, the means described in Japanese Patent Application No. 11-247457 can be used.

Step 106) The control unit 21 of the user device 20 transmits information H (PkU) for identifying the user device 20.
Is transferred to the control unit 11 of the issuer device 10.

Step 107) The control section 11 of the issuer apparatus 10 gives H (m), H (PkI), and H (PkU) to the signature section 12, and issues the issuance certificate c0 = (c01, c02, c03, c04, c05) is generated. Here, each element of c0 has the following value.

C01 = H (m) c02 = H (PkI) c03 = H (PkU) c04 = SPKi (c01‖c02‖c03) c05 = PkI Step 108) The control unit 11 of the issuer device 10 has the usage right k0. (= C0) is transferred to the control unit 21 of the user device 20.

Step 109) Using the authentication unit 23, the control unit 21 of the user device 20 verifies that all of the following expressions hold. If the verification fails, the subsequent processing is interrupted, and the control unit 11 of the issuer device 10 is notified of the interruption of the processing.

Vc05 ((c01‖c02‖c03), c04) c02 = H (c05) c03 = H (PkU) c01 = H (m) Step 110) The control unit 21 of the user device 20 sets the usage right k0 It is stored in addition to Ku in the storage unit 22.

Step 111) The control unit 21 of the user device 20 sends the token T to the token storage device 30.
(= H (m), c02) is verified. As a verification method, a method described in Japanese Patent Application No. 11-247457 can be used. If the verification fails, the processing is interrupted assuming that the token has not been transferred, and the control unit 11 of the issuer device 10 is notified of the interruption of the processing.

(2) In the case of ticket transfer: The following is a flow of ticket transfer processing from the user device 20a and the token storage device 30a to the user device 20b and the token storage device 30b via the connection device 50.

Here, a case where the n-th transfer is performed will be described.

FIG. 10 is a sequence chart showing an operation in the case of a ticket transfer according to the first embodiment of the present invention.
In FIG. 2, two user devices 20a and 20b,
The connection device 50 existing between the token storage devices 30a and 30b is omitted. Also, a is added to each component of the user device 20a and the token storage device 30a, and b is added to each component of the user device 20b and the token storage device 30b.

Step 201) The control unit 21a of the user device 20a extracts the ticket m to be transferred from the Mua stored in the storage unit 22a.

Step 202) The control unit 21a of the user device 20a transfers the ticket m to the control unit 21b of the user device 20b.

Step 203) The control unit 21b of the user device 20b adds the ticket m to the Mub of the storage unit 22b and stores it.

Step 204) The control unit 21b of the user device 20b transfers Tub, which is information for identifying the token storage device 30b, to the control unit 21a of the issuer device 20a.

Step 205) The control unit 21a of the user device 20a requests the token storage device 30a to transfer the token (H (m), H (PkI)). The token is transferred to the token storage device 30b. For the transfer of the token, the means described in Japanese Patent Application No. 11-247457 can be used.

Step 206) The control section 21 of the user device 20b transmits the information H (Pk
Ub) is transferred to the control unit 21a of the user device 20a.

Step 207) The control unit 21a of the user device 20a sends H (m) and H (PkUb) to the signature unit 24.
To generate a transfer certificate cn (cn1, cn2, cn3, cn4, cn5). Here, each element of cn has the following value.

Cn1 = H (m) cn2 = H (PkUa) cn3 = H (PkUb) cn4 = SpKuA (cn1‖cn2‖cn3) cn5 = PkUa Step 208) The control unit 21a of the user device 20a
Is a usage right kn1 (= c0,
c1, ..., cn-1) are taken out.

Step 209) The control unit 21a of the user device 20a sends the usage right kn (= c0, c1,... Cn-
(1, cn) to the control unit 21b of the user device 20b. Step 210) The control unit 21 of the user device 20b
b verifies that all of the following expressions hold using the authentication unit 23b. If the verification fails, the subsequent processing is interrupted, and the interruption of the processing is notified to the control unit 21a of the user device 20a.

For all i (i: 0, 1,... N), Vci5 ((ci1ｃci2‖ci3), ci4) ci2 = H (ci5) ci1 = H (m) is verified.

For all j (j: 0, 1,..., N−1), verify that cj3 = c (j + 1) 2.

Verify that cn3 = H (PkUb).

Step 211) The control unit 21b of the user device 20b adds the right of use kn to Kub of the storage unit 22b and stores it.

Step 212) The control unit 21b of the user device 20b verifies that the token (H (m), c02) is held in the token storage device 30b. As a verification method, the means described in Japanese Patent Application No. 11-247457 can be used. If the verification fails, the process is suspended assuming that the token has not been transferred, and the control unit 21a of the user device 20a is notified of the suspension of the process.

(3) In the case of ticket consumption: The following is the flow of ticket consumption processing from the user device 20 and the token storage device 30 to the ticket gate device 40 via the connection device 50. Here, a case where transfer is performed n times will be described.

FIG. 11 is a sequence chart showing the operation in the case of ticket consumption according to the first embodiment of the present invention.
It should be noted that the connection device 50 existing between the user device 20, the token storage device 30, and the ticket gate device 40 is omitted in FIG.

Step 301) The control unit 21 of the user device 20 extracts a ticket m to be consumed from Mu stored in the storage unit 22.

Step 302) The control unit 21 of the user device 20 transfers m to the control unit 41 of the ticket gate device 40.

Step 303) The control section 41 of the ticket gate apparatus 40 adds m to Me in the storage section 44 and stores it.

Step 304) The control unit 21 of the user device 20 sends the token T to the token storage device 30.
(= (H (m), H (PkI))).
The token is transferred to the ticket gate device 40. The means described in Japanese Patent Application No. 11-247457 can be used for transferring the token.

Step 305) The control section 41 of the ticket gate apparatus 40 has information H (PkE) for identifying the ticket gate apparatus 40.
To the control unit 21 of the user device 20.

Step 306) The control unit 21 of the user device 20 gives H (m), H (PkU), and H (PkE) to the signature unit 24, and generates a ticket inspection certificate cn + 1 = (c (n + 1) 1, c ( n + 1) 2, c (n
+1) 3, c (n + 1) 4, c (n + 1) 5).

Here, each element of c (n + 1) has the following value.

C (n + 1) 1 = H (m) c (n + 1) 2 = H (PkU) c (n + 1) 3 = H (PkE) c (n + 1) 4 = SpkU (c (n + 1) ‖c (n +
1) 2 @ c (n + 1) 3) c (n + 1) 5 = PkU Step 307) The control unit 21 of the user device 20 uses the Ku of the storage unit 22 to obtain the usage right kn (= c0, c1,..., C
Take out n).

Step 308) The control unit 21 of the user device 20 uses the usage right kn + 1 (= c0, c1,..., Cn,
cn + 1) is transferred to the control unit 41 of the ticket gate apparatus 40.

Step 309) The control unit 41 of the ticket gate apparatus 40 verifies that all of the following expressions hold by using the authentication unit 42. If the verification fails, the subsequent processing is interrupted and the control unit 21 of the user device 20 is notified of the interruption of the processing.

For all i (i: 0, 1,..., N + 1), verify that Vci5 ((ci1‖ci2‖ci3), ci4) ci2 = H (ci5) ci1 = H (m).

For all j (j: 0, 1,..., N), 0j3 = c (j + 1) 2 is verified.

Verify that c (n + 1) 3 = H (PkE).

Step 310) The control section 41 of the ticket gate apparatus 40 adds the usage right kn to Ke in the storage section 44 and stores it.

Step 311) The control unit 41 of the ticket gate apparatus 40 verifies that the token T (= H (m), c02) is held. For the verification method, refer to Japanese Patent Application No. Hei.
The means described in 1-247457 can be used. If the verification fails, the process is interrupted assuming that the token has not been transferred, and the control unit 21 of the user device 20
To notify the interruption of processing.

(4) In the case of presenting a ticket: Presenting a ticket can be realized by the same procedure as that for consuming a ticket, except for the following points. -Token transfer can be realized by the same procedure as token consumption, except for the following points. -In the verification of the holding of the token, it is verified that the token has been presented.

[Second Embodiment] In this embodiment, an example in which tokens of a plurality of users are collectively managed by a token management server will be described.

FIG. 12 shows the configuration of an electronic information distribution system according to the second embodiment of the present invention.

As shown in the drawing, the electronic information distribution system according to the present embodiment has one or a plurality of issuer devices 1.
0, 1 or more user devices 20, 1 or
It comprises one or a plurality of token storage servers 60 having a plurality of token storage devices 30 and one or a plurality of ticket gate devices 40. Each device is connected by one or a plurality of connection devices 50.

This embodiment is different from the first embodiment in that the first embodiment
In the embodiment of the present invention, the token of the user is stored in the token storage device 30 different for each user, whereas in the present embodiment, the token managed by a single administrator (third party) The token storage device 30 is placed under the storage server 60, and the token is stored in these token storage devices 30. In other words, the token storage server 60 owns a plurality of accounts for each user, and stores tokens on behalf of each user.

In this embodiment, the tokens of a plurality of users are collectively managed by the token storage server 60.
Since the electronic ticket and the usage right are still managed by the user device possessed by each user, improper exercise of the right by the token management server 60 is prevented.

The distribution method of the electronic ticket according to the present embodiment differs from the first embodiment in the following points in the sequence chart in FIG.

(1) Ticket transfer In step 205 of FIG. 10, the token storage device 3
Since the transfer of the token from 0a to the token storage device 30b is processed inside the token storage server 60,
No communication via the connection device 50 occurs.

[Third Embodiment] In this embodiment, an example in which an electronic ticket, a token, and a usage right are issued on the issuer side (issuing server) will be described.

FIG. 13 shows the configuration of an electronic information distribution system according to the third embodiment of the present invention.

As shown in the figure, the electronic information distribution system according to the present embodiment includes one or more
0, 1 or more user devices 20, 1 or
It is composed of a plurality of ticket gate devices 40.

Each device is connected by one or a plurality of connection devices 50.

In the present embodiment, an electronic ticket, a token corresponding to the electronic ticket, and a usage right are issued in the issuing server 70 managed by the electronic ticket issuer. at the same time,
Processing such as token reception, transfer, and verification is also performed by the issuing server 70. On the other hand, since the management of the electronic ticket itself and its right to use is entrusted to the user device 20, the unauthorized use of the electronic ticket by the issuing server 70 is prevented in the same manner as in the first embodiment. Is done.

Compared with the first embodiment, the following points are different in the electronic ticket distribution method according to the configuration of the present embodiment.

(1) Ticket issuance: Step 1 in FIG.
At 05, the issuer device 10 sends the token storage device 3
Since the token transfer to 0 is processed inside the issuing server 70, no communication via the connection device 50 occurs.

(2) Ticket transfer: In step 205 of FIG. 10, the transfer of the token from the token storage device 30a to the token storage device 30b is performed by the issuing server 70.
Since the processing is performed internally, communication via the connection device 50 does not occur.

[Fourth Embodiment] In this embodiment, only when both the correct token and the right of use corresponding to the electronic ticket exist in the ticket gate server managed by the electronic ticket gater as a result of receiving and verifying, An example in which processing according to the content of an electronic ticket is performed will be described.

FIG. 14 shows the configuration of an electronic information distribution system according to the fourth embodiment of the present invention.

As shown in the figure, the electronic information distribution system according to the present embodiment includes one or a plurality of issuer devices 1.
0, one or a plurality of token storage devices 30, one or a plurality of ticket gate servers 80 having one or a plurality of ticket gate devices 40, and one or a plurality of user devices 20. Each device is connected by one or a plurality of connection devices 50.

In this embodiment, in the ticket gate server 80 managed by the electronic ticket gate person, processing such as token reception and verification is performed, and at the same time, electronic ticket, token, usage right reception, usage right and token verification, and the like. Is performed, and the process according to the content of the electronic ticket is performed only when both the correct token and the usage right corresponding to the electronic ticket exist. Also in the present embodiment, regarding the electronic ticket itself and its usage right, the user device 20
Since the management is delegated to the third party, unauthorized use of the electronic ticket by the issuing server 70 is prevented beforehand as in the first embodiment.

As compared with the first embodiment, the distribution method of the electronic ticket according to the configuration of the present embodiment is different in the following points.

(1) Ticket transfer: In step 205 in FIG. 10, the transfer of the token from the token storage device 30a to the token storage device 30b is performed by the ticket gate server 80.
Since the processing is performed internally, communication via the connection device 50 does not occur.

(2) Ticket Ticket: In step 304 of FIG. 11, the transfer of the token from the token storage device 30 to the ticket reader device 40 is processed inside the issuing server 70, so that the communication via the connection device 50 is performed. Does not occur.

[Fifth Embodiment] In this embodiment, an example will be described in which ticket issuance, transfer, and ticket inspection processing are collectively performed by the integrated management server.

FIG. 15 shows the configuration of an electronic information distribution system according to the fifth embodiment of the present invention.

As shown in the figure, the electronic information distribution system according to the present embodiment has one or a plurality of issuer devices 1.
0, one or more token storage devices 30, one or more ticket reader devices 40, one or more integrated management servers 90, and one or more user devices 20
Consists of Each device is connected by one or a plurality of connection devices 50.

In the present embodiment, from the electronic ticket and the processing of issuing the usage right and the token corresponding to the electronic ticket, the token management such as the storage and verification of the token and the ticket inspection processing such as the reception and verification of the usage right are collectively performed. The processing is performed in the integrated management server 90. Also in the present embodiment, the management of the electronic ticket itself and its usage right is processed by the user device 20, so that the integrated management server 90 manages the electronic ticket in the same manner as in the first embodiment. Unauthorized use is prevented beforehand.

As compared with the first embodiment, the following points are different in the electronic ticket distribution method according to the configuration of the present embodiment.

(1) Issuing a ticket: In step 105 in FIG. 9, the token transfer from the issuer device 10 to the token storage device 30 is processed inside the issuing server 70, so that the communication via the connection device 50 Does not occur.

(2) Ticket transfer: In step 205 in FIG. 10, the transfer of the token from the token storage device 30a to the token storage device 30b is processed inside the issuing server 70, so that the communication via the connection device 50 is performed. Does not occur.

(3) Ticket Ticket: In step 304 in FIG. 11, the transfer of the token from the token storage device 30 to the ticket reader device 40 is processed inside the issuing server 70, so that the communication via the connection device 50 is performed. Does not occur.

[Sixth Embodiment] In this embodiment, an example will be described in which an electronic ticket storage device for storing an electronic ticket is provided.

FIG. 16 shows the configuration of an electronic information distribution system according to the sixth embodiment of the present invention. The electronic information distribution system shown in FIG.
0, 1 or more user devices 20, 1 or
It comprises a plurality of token storage devices 30, one or a plurality of ticket gate devices 40, and one or a plurality of electronic ticket storage devices 100. Also, each device is one or
It is connected by a plurality of connection devices 50.

In the present embodiment, the user of the electronic ticket
It has an electronic ticket storage device 100 in addition to the user device 20 and the token storage device 30. User device 20
Unlike the first embodiment, the electronic ticket storage device 100 only receives, transfers, and verifies the usage right corresponding to the electronic ticket, and stores the electronic ticket in the electronic ticket storage device 100. The realization method of the electronic ticket storage device 100 includes implementation by a remote server managed by a third party. By reducing the processing in the user device 20, for example, it becomes easy to mount the user device 20 on a device having a limited processing capability such as a portable terminal device.

As compared with the first embodiment, the following points are different in the electronic ticket distribution method according to the configuration of the present embodiment.

(1) Ticket issuance: In step 102 in FIG. 9, the control unit 11 of the issuer device 10
The electronic ticket m is transferred to the electronic ticket storage device 100.

At step 103 in FIG. 9, the electronic ticket storage device 100 stores the electronic ticket m.

(2) Ticket transfer: In step 201 of FIG. 10, a ticket m to be transferred is extracted from the electronic ticket storage device 100 corresponding to the user device 20a.

In step 202 of FIG. 10, the electronic ticket storage device 100 corresponding to the user device 20a
The ticket m is transferred to the electronic ticket storage device 100 corresponding to the user device 20b.

In step 203 of FIG. 10, the electronic ticket storage device 100 corresponding to the user device 20b
Stores ticket m.

(3) Ticket ticket: In step 301 of FIG. 11, a ticket m to be transferred is extracted from the electronic ticket storage device 100 corresponding to the user device 20.

In step 302 of FIG. 11, the electronic ticket storage device 100 corresponding to the user device 20 transfers the ticket m to the control unit 41 of the ticket gate device 40.

[Seventh Embodiment] In all the configurations from the second embodiment to the fifth embodiment, the electronic ticket managed by the user device 20 can be changed in the same manner as in the sixth embodiment. It is managed by the electronic ticket storage device 100.

[Eighth Embodiment] The structure of the usage right in the first to seventh embodiments is merely an example. For example, the form of omitting the owner history information of the electronic ticket may be omitted. Can also.

In this case, the processing in the case of a ticket transfer and a ticket gate is changed as follows. Here, only the difference from the first embodiment will be described.

(1) Ticket transfer: FIG. 16 is a sequence chart showing the ticket transfer operation according to the eighth embodiment of the present invention. Here, the steps different from those in the first embodiment are as follows. "'" In the following step numbers
By adding, a distinction is made from the first embodiment.

Step 207 ') The control unit 21a of the user device 20a transmits the transfer certificate cn (cn1, cn2, cn
3, cn4, cn5), which are issued to the issuer device 10
To the control unit 11. Here, each element of cn has the following value.

Cn1 = H (m) cn2 = H (PkI) cn3 = H (PkUb) cn4 = null cn5 = PkI Step 208 ') The control unit 11 of the issuer apparatus 10
The transfer certificate received is given to the signature unit 12, and the usage right kn =
(Cn1, cn2, cn3, cn4, cn5) are generated and transferred to the control unit 21a of the user device 20a. Here, each element of kn has the following value.

Cn1 = H (m) cn2 = H (PkI) cn3 = H (PkUb) cn4 = SpkI (cn1‖cn2‖cn3) cn5 = PkI Step 209 ′) Control unit 21a of user device 20a
Verifies that the following equation is satisfied using the authentication unit 23a. If the verification is successful, the use right is transferred to the user device 20.
b to the control unit 21b. If the verification fails, the subsequent processing is interrupted.

Vcn5 (cn1‖cn2‖cn3), c
n4) Step 210 ′) Control unit 21b of user device 20b
Verifies that all of the following expressions hold using the authentication unit 23b. If the verification fails, the subsequent processing is interrupted, and the control unit 21a of the user device 20a is notified of the interruption.

Vcn5 ((cn1‖cn2‖cn3‖), cn4) cn2 = H (cn5) cn1 = H (m) cn3 = H (PkUb) (2) Ticket ticket: FIG. 18 shows an eighth embodiment of the present invention. It is a sequence chart which shows operation | movement of the ticket gate of an Example.

The following steps are different from the first embodiment. The number of the following step is distinguished from the first embodiment by adding "'" to the number.

Step 306 ′) The control unit 21 of the user device 20 checks the ticket proof cn + 1 = (c (n + 1) 1, c (n + 1) 2, c (n
+1) 3, c (n + 1) 4, c (n + 1) 5), and transfers them to the control unit 11 of the issuer device 10. Here, each element of cn + 1 has the following value.

C (n + 1) 1 = H (m) c (n + 1) 2 = H (PkI) c (n + 1) 3 = H (PkE) c (n + 1) 4 = null c (n + 1) 5 = PkI Step 307 ' The control unit 11 of the issuer device 10
The received ticket proof is given to the signature unit 12, and the usage right kn + 1 = (c (n + 1) 1, c (n + 1) 2, c (n
+1) 3, c (n + 1) 4, c (n + 1) 5) are generated and transferred to the control unit 21 of the user device 20. Here, each element of kn + 1 has the following value.

C (n + 1) 1 = H (m) c (n + 1) 2 = H (PkI) c (n + 1) 3 = H (PkE) c (n + 1) 4 = SpkI (cn1‖cn2‖cn3) c (n + 1) 5) = PkI Step 308 ′) The control unit 21 of the user device 20
Using the authentication unit 23, it is verified that the following equation is satisfied. When the verification is established, the use right is transferred to the control unit 41 of the ticket gate apparatus 40. If the verification fails, the subsequent processing is interrupted.

Vc (n + 1) 5 ((c (n + 1) 1‖c
(N + 1) 2 @ c (n + 1) 3 @ c (n + 1) 4) Step 309 ') The control unit 41 of the ticket gate apparatus 40
Using the authentication unit 43, it is verified that all of the following expressions are satisfied. If the verification fails, the subsequent processing is interrupted,
The control unit 21 of the user device 20 is notified of the interruption of the process.

Vc (n + 1) 5 ((c (n + 1) 1‖c
(N + 1) 2‖c (n + 1) 3), c (n + 1) 4) c (n + 1) 2 = H (c (n + 1) 5) c (n + 1) 1 = H (m) c (n + 1) 3 = H ( PkE) Also, in the above embodiment, description has been made based on each configuration diagram. However, for each device of each electronic information distribution system, the operation of the component is constructed as a program, and the user device 20, the issuer device 10 , Token storage device 30, ticket gate device 4
0, the present invention is stored in a disk device connected to a computer used as an electronic ticket storage device 100, each server or the like, or in a portable storage medium such as a floppy (registered trademark) disk or a CD-ROM. The present invention can be easily realized by installing it at the time of implementation.

It should be noted that the present invention is not limited to the above-described embodiment, and various modifications and applications are possible within the scope of the claims.

[0191]

As described above, according to the present invention, a secure distribution of an electronic ticket representing a right is realized without depending on a tamper-resistant device such as an IC card. Thus, a large amount of electronic tickets can be distributed without being influenced by the capacity of a tamper-resistant device such as an IC card. For example, in the case of a user who normally owns a portable storage device such as an IC card, only the usage right of an electronic ticket that is usually used is stored in the IC card, and the other usage rights are stored in a home user device (PC). Etc.).

In order to exercise an electronic ticket, a corresponding usage right is required. For example, the electronic ticket body and the corresponding token are temporarily deposited in another user's token storage device. It is also possible. As a result, for example, when the ticket transferee is absent, an asynchronous transfer such that the electronic ticket to be transferred and the token corresponding to the transferee are transferred to the transferee device in advance, and the usage right is transferred to the ticket transferor again at a later date. Can be realized safely.

[Brief description of the drawings]

FIG. 1 is a diagram for explaining the principle of the present invention.

FIG. 2 is a principle configuration diagram of the present invention.

FIG. 3 is a configuration diagram of an electronic information distribution system according to a first example of the present invention.

FIG. 4 is a configuration diagram of an issuer device according to the first embodiment of the present invention.

FIG. 5 is a configuration diagram of a user device according to the first embodiment of the present invention.

FIG. 6 is a configuration diagram of a token storage device according to the first embodiment of the present invention.

FIG. 7 is a configuration diagram of a ticket gate apparatus according to the first embodiment of the present invention.

FIG. 8 is a configuration diagram of a connection device according to the first embodiment of the present invention.

FIG. 9 is a sequence chart showing an operation of issuing an electronic ticket according to the first embodiment of the present invention.

FIG. 10 is a sequence chart showing an electronic ticket transfer operation according to the first embodiment of the present invention.

FIG. 11 is a sequence chart showing an operation of an electronic ticket gate according to the first embodiment of the present invention.

FIG. 12 is a configuration diagram of an electronic information distribution system according to a second embodiment of the present invention.

FIG. 13 is a configuration diagram of an electronic information distribution system according to a third embodiment of the present invention.

FIG. 14 is a configuration diagram of an electronic information distribution system according to a fourth embodiment of the present invention.

FIG. 15 is a configuration diagram of an electronic information distribution system according to a fifth embodiment of the present invention.

FIG. 16 is a configuration diagram of an electronic information distribution system according to a sixth embodiment of the present invention.

FIG. 17 is a sequence chart showing an electronic ticket transfer operation according to the eighth embodiment of the present invention.

FIG. 18 is a sequence chart showing an operation of an electronic ticket gate according to the eighth embodiment of the present invention.

[Explanation of symbols]

 REFERENCE SIGNS LIST 10 issuer device 11 control unit 12 signature unit 13 data generation unit 14 original data distribution system 20 user device 21 control unit 22 storage unit 23 authentication unit 24 signature unit 30 token storage device 31 original data distribution system 40 ticket gate device 41 control Unit 42 authentication unit 43 original data system 44 storage unit 50 connection device 51 communication unit 60 token storage server 70 issue server 80 ticket gate server 90 integrated management server 100 electronic ticket storage device 101 originality information generation means 102 first transfer means 103 first 1st information obtaining means 104 usage right generation means 105 second transfer means 201 fourth transfer means 202 second authentication means 203 usage right storage means 204 second information obtaining means 205 usage right update means 206 third authentication Means 301 Original information storage means 30 First authentication means 303 first specifying means 304 third transfer means 401 second specifying means 402 fourth authentication unit 403 fifth authentication means 404 the data processing means 405 sixth authentication means

 ────────────────────────────────────────────────── ─── Continuing on the front page (72) Inventor Masayuki Terada 2-3-1, Otemachi, Chiyoda-ku, Tokyo Nippon Telegraph and Telephone Corporation F-term (reference) 5B049 AA05 CC13 5B055 EE02 EE03 KK05 KK19 5J104 AA07 AA09 KA01 LA03 LA06 NA02 PA07 PA12

Claims (22)

[Claims] The present invention realizes a re-distribution between users with respect to data representing rights such as electronic tickets and data which is required to prevent unauthorized duplication such as digital copyrights. In the electronic information distribution method for authenticating the owner of information, when issuing the electronic ticket, the issuer device generates an electronic ticket in which rights information is described, and transmits the electronic ticket to the user device. In the user device, the electronic ticket is stored in storage means for storing a set of data held by the user, and information for identifying a token storage device is transferred to the issuer device. Token storage device for generating a token as originality information for guaranteeing the originality of the electronic ticket using the electronic ticket and the verification key, and storing the token Transfer, the user device transmits information for identifying the user device to the issuer device, the issuer device generates a token issuance certificate, and transfers a usage right to the user device. The user device verifies the usage right, and if the verification of the usage right is successful, stores the usage right and verifies that the token is held in the token storage device. Electronic information distribution method characterized by performing. 2. A method for realizing the re-distribution of data between users, such as data representing rights such as an electronic ticket and data which is required to prevent unauthorized duplication such as digital copyright, and realizing proper electronic In the electronic information distribution method for authenticating the owner of information, when transferring the electronic ticket, the user device A extracts an electronic ticket to be transferred, transfers the electronic ticket to the user device B, and transfers the electronic ticket to the user device B. The user device B stores the electronic ticket and transfers information for identifying the token storage device B to the issuer device A. The user device A requests the token storage device A to transfer the token. The token storage device A transfers the token to a token storage device B, the user device B transfers information identifying the user device B to the user device A, and the user device Generates a transfer certificate based on the token, extracts a use right, and uses the transfer certificate to transfer the use right to information corresponding to data, information corresponding to the own device, and information corresponding to the data transfer destination device. Update to include
Transferring the use right to the user device B, wherein the user device B determines whether the device having the authority to use the data specified by the use right is its own device,
The electronic information distribution method further comprises verifying whether the token is stored in the token storage device B, and storing the usage right if the verification is successful. 3. Data that represents a right such as an electronic ticket, data that is required to prevent unauthorized duplication such as digital copyright, and the like, can be re-distributed between users, and a legitimate electronic In the electronic information distribution method for authenticating the owner of information, when consuming the electronic ticket, the user device extracts an electronic ticket to be consumed,
Transfer to a ticket gate device, the ticket gate device stores the electronic ticket, the user device requests a token storage device to transfer a token to the ticket gate device, the token storage device Transfers the token to the ticket gate device, the ticket gate device transfers information identifying the ticket gate device to the user device, and the user device issues a ticket verification certificate based on the token. Generate and take out the usage right, update the usage right using the ticket proof, and verify that the token is valid. An electronic information distribution method, comprising: storing and verifying whether the data indicated by the token and the usage right are the same. 4. It is possible to realize re-distribution between users for data representing rights such as an electronic ticket or data which is required to prevent unauthorized duplication such as digital copyrights, and An electronic information distribution system for authenticating an owner of information, comprising: a first device having first authentication means for determining that data to be distributed is not illegally copied A second device having second authentication means for determining that use of the data is permitted for a certain device; and for data owned by a certain device, the second authentication means Only when it is determined that use of the data is permitted for the device, and further when the first authentication unit determines that the data is not illegally copied. A third device having third authentication means for determining that the data owned by the device is not an illegal copy and that the device has a right to use the data. Distribution system. 5. A first method for transferring third information indicating the originality of the data, including first information corresponding to a certain device and data or second information corresponding to the data. A fourth device having a transfer unit and a unit for specifying a transfer source device when the third information is transferred from another device, wherein the first authentication unit of the first device When the transfer source device of the third information is authenticated, or when the transfer source device and the device corresponding to the first information of the third information are the same, the third 5. The electronic information distribution system according to claim 4, further comprising means for judging that data corresponding to the second information of said information is not illegally copied. 6. An apparatus having a right to use data, including data or fourth information that is information corresponding to the data, and fifth and sixth information corresponding to a certain apparatus. Means for holding or obtaining the seventh information to be specified; means for holding or obtaining the information corresponding to the destination device of the data; and means for holding the sixth information corresponding to the destination device. And a fifth transfer device for transferring the seventh information to the transfer destination device, further comprising: a fifth update device that updates the second information to the transfer destination device. The authentication means determines that all of the fourth information, the fifth information, and the sixth information have been updated by the device corresponding to the fifth information. If done,
6. The electronic information distribution system according to claim 4, further comprising means for determining that use of data corresponding to the fourth information by a device corresponding to the sixth information is permitted. 7. The seventh information is an eighth information composed of information corresponding to all devices that have owned the data from the time when the data was issued by a certain device until the present. The fifth device further includes a unit for additionally writing information corresponding to the own device and the eighth information, wherein the second authentication unit of the second device includes the seventh information It is determined that the fourth information and the fifth information have been updated by a device corresponding to the fifth information, and from a set of information corresponding to the devices constituting the eighth information, The fifth
The history of the user update of the data from the device corresponding to the information to the device corresponding to the sixth information is configured, and for each information constituting the history, the device corresponding to the information is Only when it is determined that the data has been updated by the device to which the data has been transferred, it is determined that use of the data corresponding to the fourth information by the device corresponding to the sixth information is permitted. The electronic information distribution system according to claim 6, wherein 8. The fifth apparatus, wherein: a means for concealing a secret key; and the fifth information updated by the own apparatus among the seventh information.
Means for generating a signature for the information, the sixth information, or the eighth information; and means for transferring the signature together with the seventh information. 8. The electronic device according to claim 6, wherein the second authentication unit determines a person who has updated the information by verifying a signature for the fifth information, the sixth information, or the eighth information. Information distribution system. 9. The third authentication device of the third device, wherein the first authentication device of the first device performs the second authentication.
It is determined that the data corresponding to the information is not illegally duplicated, and the second authentication unit of the second device determines that the sixth
When it is determined that the use of the data corresponding to the fourth information by the device corresponding to the information is permitted, the device corresponding to the first information and the device corresponding to the fifth information are Is the same, and only when the data corresponding to the second information and the data corresponding to the fourth information are the same, the data is not illegally copied or forged, and 9. The electronic information distribution system according to claim 5, wherein an apparatus corresponding to the sixth information determines that the apparatus has a right to use the data. 10. The fourth device includes first information corresponding to the own device, and data or second information that is information corresponding to the data.
6. The electronic information distribution system according to claim 5, further comprising a second generation unit that generates third information indicating the originality of the data. 11. The fourth device stores the third information indicating the originality of the data when the first authentication unit determines that the data is not an illegal copy. 7. The electronic information distribution system according to claim 6, further comprising a first storage unit. 12. The fifth device stores the eighth information indicating the right to use the data when the second authentication unit specifies the device having the right to use the data. 10. The electronic information distribution system according to claim 7, further comprising a second storage unit. 13. The third device, based on seventh information stored in the fifth device, obtains a fourth
Means for extracting information, fifth information, and sixth information, wherein the third authentication means of the third device comprises: information corresponding to a device corresponding to the fifth information; It is determined that the information corresponding to the data corresponding to the fourth information is stored in the eighth device, the third information having the first information and the second information, respectively. Only when the third information to be stored is stored in the fourth device,
The data corresponding to the fourth information and the second information is not an illegal copy, and it is determined that the device corresponding to the sixth information has the right to use the data.
Electronic information distribution system as described. 14. The data processing device according to claim 6, wherein the third authentication unit includes a data processing unit that performs a process corresponding to the data only when it is determined that the own device has a right to use the data that is not an illegal copy. 11. The electronic information distribution system according to claim 4, further comprising a device. 15. The apparatus, wherein the apparatus conceals a secret key, and generates a fingerprint of the apparatus, which is output by a one-way function of a public key corresponding to the secret key, as information for specifying the apparatus. The electronic information distribution system according to claim 4, further comprising: 16. The electronic information distribution system according to claim 4, wherein the device generates an output based on a one-way function of data as information corresponding to the data. 17. The electronic information distribution system according to claim 4, wherein the device uses an identifier of a resource on a network as information corresponding to the data. 18. Data that represents a right such as an electronic ticket or data that is required to prevent unauthorized duplication, such as digital copyright, can be transferred from one user to another, and can be authenticated electronically. An electronic information distribution system for authenticating an owner of information, comprising: generating originality information indicating the originality of data, including information corresponding to its own device and data or information corresponding to the data. Originality information generating means, first transfer means for transferring the originality information, first information obtaining means for holding or obtaining information corresponding to a data transfer destination device, and data or Corresponding information, information corresponding to the own device, including information corresponding to the transfer destination device,
Issuer device having use right generation means for generating a use right for specifying a device having data use authority; second transfer means for transferring the use right; information corresponding to a certain device; A third transfer unit for transferring originality information indicating the originality of the data, including information corresponding to the data, and a transfer source device when the originality information is transferred from another device. First identifying means for identifying, first authenticating means for judging that the data corresponding to the originality information is not illegally copied, and the first authenticating means corresponding to the originality information. If it is determined that the data is not an illegal copy, a token storage device having originality information storage means for storing the originality information, and data or information corresponding to the data, Two pieces of information A fourth transfer unit that transfers a use right that specifies a device having data use authority, and a second transfer unit that determines whether the device that has the data use right specified by the use right is its own device. An authentication unit, a usage right storage unit for storing the usage right when the own device has the usage right of the data by the second authentication unit, and originality information corresponding to the data is stored in the token storage device. A third authentication unit that determines that the data is stored, a second information obtaining unit that holds or obtains information corresponding to the destination device of the data, and the use right is stored in the data or the data. A user device having a usage right update unit for updating the information to include the corresponding information, the information corresponding to the own device, and the information corresponding to the data transfer destination device; information corresponding to a certain device; Is When originality information including information corresponding to the data is transferred from another device, a second specifying unit that specifies the transfer source device, and a second determining unit that determines that the originality information is valid. An authentication means of No. 4, a fifth authentication means for determining that the owner of the data is specified to the own device based on the use right, and that the use right and the data indicated by the originality information are the same An electronic information distribution system, comprising: a ticket gate device having a sixth authentication unit for determining and a data processing unit for performing a process corresponding to the data. 19. Data that represents a right such as an electronic ticket, data that is required to prevent unauthorized duplication such as digital copyright, and the like, can be re-distributed between users, and can be provided with legitimate electronic data. A storage medium storing an electronic information distribution program mounted on an issuer device for authenticating the owner of the information, the information including information corresponding to the own device, and data or information corresponding to the data. An originality information generation process for generating originality information indicating the originality of the data, a first transfer process for transferring the originality information, and a first process for holding or obtaining information corresponding to a data transfer destination device Information acquisition process, including data or information corresponding to the data, information corresponding to the own device, and information corresponding to the transfer destination device,
A storage medium storing an electronic information distribution program, comprising: a use right generation process for generating a use right for specifying a device having a data use right; and a second transfer process for transferring the use right. 20. Data that represents rights such as an electronic ticket or data that is required to prevent unauthorized duplication, such as digital copyright, can be re-distributed between users, and can be authenticated electronically. A storage medium storing an electronic information distribution program mounted on a token storage device for authenticating an owner of information, including information corresponding to a certain device, and data or information corresponding to the data. A third transfer process for transferring originality information indicating the originality of data, a first specifying process for specifying a transfer source device when the originality information is transferred from another device, A first authentication process for determining that the data corresponding to the gender information is not illegally copied; and determining that the data corresponding to the originality information is not a fraudulent copy in the authentication process. There If it is determined, a storage medium storing the electronic information distribution program characterized by having a originality information storage process of storing the raw nature information. 21. Data that represents a right such as an electronic ticket or data that is required to prevent unauthorized duplication, such as digital copyright, can be re-distributed between users, and can be provided with legitimate electronic data. A storage medium storing an electronic information distribution program mounted on a user device for authenticating an owner of information, comprising: data or information corresponding to the data; and two information corresponding to a certain device. A fourth transfer process for transferring a use right that specifies a device having data use authority, and a second transfer process for determining whether the device having data use authority specified by the use right is the own device. An authentication process; a use right storage process for storing the use right when the own device has a use right for the data by the second authentication process; and an originality corresponding to the data. A third authentication process for determining that the information is stored in the token storage device, a second information obtaining process for holding or obtaining information corresponding to the data transfer destination device, Rights to data or information corresponding to the data;
A storage medium storing an electronic information distribution program, characterized by having a use right update process for updating the information including information corresponding to its own device and information corresponding to a data transfer destination device. 22. For data representing a right such as an electronic ticket or data which is required to prevent unauthorized duplication such as a digital copyright, re-distribution between users is realized, and a legitimate electronic A storage medium storing an electronic information distribution program mounted on a ticket gate device for authenticating the owner of information, comprising: information corresponding to a certain device; and data or information corresponding to the data. A second specifying process for specifying the transfer source device when the originality information is transferred from another device; a fourth authentication process for determining that the originality information is valid; A fifth authentication process for determining that the owner of the data is specified to the own device, a sixth authentication process for determining that the use right and the data indicated by the originality information are the same, Storage medium storing electronic information distribution program, characterized in that it comprises a wicket device having a data processing process for performing a process corresponding to the serial data.