JP2002007263A - Method and system for input/output information management of digital contents, and recording medium with program recorded for input/output management of digital contents - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a method and a system for digital contents management which reduces the risk of a tamper-resistant area being broken, uses a terminal other than a terminal used for downloading as a contents storage and management terminal, and changes the contents storage, and to provide management terminal for one contents. SOLUTION: Individual equipment, having a tamper-resistant storage area provided with an area where input/output information of digital contents transmitted between devices is stored, is connected to one of the devices transmitting the digital contents and input/output information of the digital contents to the device, where the equipment is connected is written to the tamper-resistant storage area of the equipment.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a method and system for managing digital contents distributed among devices such as digital content providing information terminals, portable terminals, digital content storage / use devices, and digital content use devices. And a recording medium on which a management program is recorded.

[0002]

2. Description of the Related Art Conventionally, in the case of digital contents requiring copyright protection, for example, music contents, movie contents, software contents, etc., various industry groups have prescribed the handling of contents in order to protect the copyright of digital contents. The role of providing a guideline for copyright protection is provided.

For example, in the case of music content, SDM
An organization called I (Secure Digital Music Initiative)
Using CM (Licensed Compliant Modules) as a gateway, check-out / check-in of content (that is, loading / unloading of content into / from a content use device or content storage device) is performed with tamper resistance (that is, resistance to physical attacks, tampering, etc. (E.g., storage area).

[0004] Original music contents obtained by legitimate procedures and means are required to be managed safely and confidentially in a tamper-resistant area in the device from which the contents were obtained.

[0005] Specifically, the LCM imposes restrictions on the copying of digital contents or the movement of digital contents (change of storage location) according to the media, and can use the digital contents properly within the restrictions. To do.

Referring to FIGS. 1 to 4, an example of a conventional music content acquisition system conforming to the LCM regulations will be described. FIG. 1 shows music content recorded on a CD as C
FIG. 10 is an explanatory diagram of an example of CD ripping that is extracted from D, converted into a format, and used / stored.

[0007] The personal computer 10 is a CD-R.
The music content is read from the CD-Rom mounted on the om drive 11 and the format conversion unit 12 converts the format of the music content into a compression format usable by a computer (CD ripping). The format-converted music content is stored in the storage device 16 or transferred to the external device 30 via the I / O interface 17 in accordance with the LCM regulations. In order to handle music contents in accordance with the LCM rules, a tamper-resistant area 15 is provided on a hard disk or an IC chip in the personal computer 10, and a content management application module 14 and a license compliant module (LCM) And manage the check-in / check-out of the music contents. As described above, the personal computer 10 that performs the CD ripping functions as a music content storage terminal and a management terminal. The music content is stored not only in the storage device 16 of the personal computer 10 but also in, for example,
It is also possible to store the data on a recording medium such as a memory medium.
Media drive 1 for such memory media
8 is provided.

The use device 30 is, for example, a device such as a player, and receives music content sent from the personal computer 10 via the I / O interface 31 and temporarily stores the music content in the recording medium 32.
The music content is reproduced. In general, when digital content is transmitted between devices such as distribution of music content from the personal computer 10 to the device 30 to be used, the digital content uses a known encryption method to prevent unauthorized use. It is transmitted using.

FIG. 2 is a configuration diagram of a system for downloading contents via a network. In this example, the personal computer 10 downloads the content from the content server 40 via a network such as the computer network 50 and the network interface 19 and stores the content in the storage device 16.
For example, when the personal computer 10 acquires music content via the network 50 as in the example of FIG. 1, the personal computer 10 provides the tamper-resistant area 15 on a hard disk or an IC chip,
Content management application module 14 and L
The use of the CM 13 enables the terminal to function as a personally owned content storage / management terminal and perform content check-in / check-out management.

FIG. 3 is a configuration diagram of a system for acquiring contents using a contents providing information terminal. A content providing information terminal 60, for example, a KIOSK terminal (a terminal installed in a public space and operated by a user to perform content acquisition, information search, and the like) can store music stored in the storage device 61. content,
Alternatively, the music content fetched from the media via the media drive 66 is transferred to the I / O interface 6.
5 is downloaded to the utilization device 30 connected thereto. The content providing information terminal 60 has a tamper-resistant area 62 provided on a hard disk or an IC chip, and has a content application module 63 and an LCM 64
By using, content check-in /
Checkout management can be performed.

[0011] Connected to the content providing information terminal 60,
The portable use device 30 that acquires the content from the content providing information terminal 60 is a device that records the acquired content on the recording medium 32 or reproduces the content. However, the use device 30 itself does not have the ability to store and manage contents. Therefore, the use device 30
The content recorded on the recording medium 32 is transferred to a content storage / management terminal such as the personal computer 10 via the I / O interface 31 and is saved. Therefore, the LC on the content providing information terminal 60
MCM and LCM 13 on personal computer 10
Is changed so that the content acquired from the content providing information terminal 60 can be saved only once from the recording medium 32 such as the portable use device 30 to the content storage / management terminal such as the personal computer 10. As a result, the user can obtain the desired content storage / management terminal 1
A method has also been proposed in which check-in / check-out management can be performed with 0.

FIG. 4 is a block diagram of a system for downloading contents from a contents server using a portable terminal via a network such as a computer network. Content is stored in the content server 40
Is downloaded to the portable terminal 70 via a network such as the computer network 50. The portable terminal 70 can record the content received by the network interface 71 on the recording medium 73. As the mobile terminal 70, for example, a mobile phone or P
DA is used. In the case of this example, the mobile terminal 70 to which the music content is downloaded is stored and stored in the content.
Since it is not a management terminal, the music content is transmitted from the information terminal 70 to the I / O interface 72 as in the example of FIG.
Is transmitted to the personal computer 10 via the. The personal computer 10 has a tamper-resistant area 15 on a hard disk or an IC chip, and uses the content management application module 14 and the LCM 13 to store and store personally owned contents.
It functions as a management terminal, and can perform content check-in / check-out management.

As described above, in the case of the prior art, content check-in / check-out is performed by content storage /
This is performed at the management terminal.

[0014]

In the case of the conventional system shown in FIGS. 1 and 2, the content is taken into a content download / storage terminal such as a personal computer 10, so that the content is checked in. / Checkout management is performed at the terminal from which the content is downloaded, and the tamper-resistant area is provided at the terminal for download / accumulation / management. However, download and storage / management terminals have a limited lifespan,
In addition, in the related art, movement of management data from the tamper-resistant area is not allowed. Therefore, when the life of the download / accumulation / management terminal comes to an end, the content that should have no life will end its life, and there is a problem that the content cannot be used when the terminal becomes unavailable. Furthermore, since the tamper-resistant area of the download / accumulation / management terminal is provided on the memory by a software method, there is a problem that the tamper-resistant area is likely to be broken by unauthorized means.

In the case of the prior art shown in FIGS. 3 and 4, a device for acquiring contents, that is, a device 30 or a portable terminal 70, and a device for storing and managing contents, that is, a personal computer 10, are connected to each other. Are different devices, and it is difficult to maintain the principle of performing content check-in / check-out management in a tamper-resistant region in the device that has acquired the content.

Furthermore, since the check-in / check-out is managed in the content storage management device in common with the prior art examples shown in FIGS.
Editing operations related to copyrights, such as taking in and out of contents, cannot be performed by devices other than the storage management device, which is extremely inconvenient for the user.

In view of the above-mentioned problems of the prior art, the present invention reduces the risk that the tamper-resistant region is broken, and stores the content other than the terminal used for downloading and storing the content.
A method and system for managing digital content which can be used as a management terminal and which can change a content storage / management terminal for one content, and a recording medium on which a management program is recorded. And

[0018]

According to one aspect of the present invention, there is provided a method for managing input / output information of digital contents transmitted between devices, the method comprising: A separate device having a tamper-resistant storage area provided with an area for storing the input / output information is connected to one of the devices to which the digital content is transmitted, and the digital content is transferred between the devices. The input / output information is written in the tamper-resistant storage area of the device.

According to a second aspect of the present invention, there is provided a method for managing input / output information of digital content transmitted from a first device to a second device, the area storing the input / output information of the digital content. A separate device having a tamper-resistant storage area provided with
Connected to at least one of the devices, determines whether transmission of the digital content from the first device to the second device is permitted, and determines whether transmission of the digital content is permitted. If you have
The digital content is transmitted from the first device to the second device, and the input / output information indicating that the digital content has been transmitted between the devices is stored in the tamper-resistant storage area of the separate device. It is characterized by writing.

According to the first and second aspects of the present invention, digital contents are actually downloaded,
Alternatively, since an area for storing the input / output information of the digital content is provided in a device separate from the device to be stored, the danger of unauthorized access to the storage area is reduced. Further, when digital content is transmitted between devices, the input / output information of digital content can be written from either one of the devices connected to the separate device, so that the device that is downloaded and stored can store the digital content. By selecting the other device as one device, a terminal other than the terminal used for downloading can be used as a content storage / management terminal. Also, when transmitting digital content, the separate device is connected to a device different from the device used immediately before to write the input / output information on the digital content to the separate device, and the input relating to the current transmission is performed. By writing the output information to the separate device, the content storage / management terminal for one content can be changed.

According to the third aspect of the present invention, an IC card is used as the device, and the IC card is
It is connected to the above one device via a C card reader / writer. Therefore, the security inherent in the IC card can be effectively used.

Further, according to the invention according to claim 4, the one device may be a digital content providing terminal. According to the invention according to claim 5, the one device may be a portable information terminal. According to the invention according to claim 6, the one device may be a user terminal that stores the digital content.

FIG. 5 is a block diagram of a system for managing input / output information of digital contents transmitted between a first device and a second device. The invention according to claim 7 is such a system, wherein the IC card reader / writer 110 connected to the first device 100 and the digital content 130 inserted into the IC card reader / writer 110 are written on the digital content 130. IC card 30 having tamper-resistant storage area 310 provided with an area for storing output information
0, and the first device 100 connected to the IC card reader / writer 110 has a license management unit 14 for preventing unauthorized use of the digital content.
0, and the license management means 140
Means 142 for determining whether the transmission of the digital content between the device 100 and the second device 200 is permitted, and starting the transmission of the digital content when it is determined that the transmission is permitted. The input / output information corresponding to the transmission of the digital content is transmitted to the IC card 300 via the IC card reader / writer.
And a means 144 for setting the tamper-resistant region 310 of FIG.

According to the seventh aspect of the present invention, an area for storing digital content input / output information is provided in an IC card 300 separate from a device in which digital content is actually downloaded or stored. The danger of unauthorized access to the storage area due to the tamper resistance and security inherently provided in the IC card 300 is reduced. Also, when digital content is transmitted between devices, input / output information of digital content can be written from the device to which this IC card is connected, so that the device that is not the one that is downloaded and stored can be used. By selecting one of the devices, a terminal other than the terminal used for downloading can be used as a content storage / management terminal. Also, when transmitting digital content, the IC card is connected to a device different from the device used immediately before to write the input / output information on the digital content to the IC card, and the input / output information on the current transmission is transmitted. Is written in the IC card, the content storage / management terminal for one content can be changed.

[0025] The invention according to claim 8 provides a first device for holding digital contents, a second device for receiving the digital contents from the first device, the first device and the second device. An IC card reader / writer connected to at least one of the devices, and an tamper-resistant storage area inserted into the IC card reader / writer and provided with an area for storing the input / output information of the digital content. A storage medium storing a digital content input / output information management program executed by the one device, wherein the digital content is transmitted from the first device to the second device. Is a code for determining whether the unauthorized use is performed, and if it is determined that the unauthorized use is not performed, the digital A code for starting the transmission of the content and setting input / output information corresponding to the transmission of the digital content in the tamper-resistant area of the IC card via the IC card reader / writer; This is a recording medium on which a program is recorded, characterized in that the program is prevented.

[0026]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS A content check-in / check-out management system using an IC card according to a first embodiment of the present invention as shown in FIG. 6 will be described below.

FIG. 1 shows a personal computer 10 as a content acquisition / storage device, a KIOSK terminal 60 as a content providing information terminal, a content server 40 capable of distributing content on the Internet, for example, Such a computer network 50 and a computer network 50
A portable terminal 70 (for example, a cellular phone, a PDA, etc.) that can be connected to a computer network 50 and can acquire contents on the computer network 50, and a content utilization device 30 such as a CD-ROM player are shown.

In order to retain content check-in / check-out management data, a third party refers to the content.
A tamper-resistant area 310 of the IC card 300 that is very difficult to update is provided. In the prior art, the personal computer 10 and the KIOSK terminal 60, which have performed content check-in / check-out management using a tamper-resistant area provided inside the device,
In the case of the present embodiment, by using the tamper-resistant area 310 on the IC card 300, it functions as a content management terminal.

Therefore, in the first embodiment of the present invention, the IC
The personal computer 10 and the KIOSK terminal 60 are provided with an IC card reader / writer for accessing the check-in / check-out management data held in the tamper-resistant area 310 of the card 300 and performing the check-in / check-out management.

Among the components in the first embodiment of the present invention shown in FIG. 6, those which are the same as or equivalent to the components of the prior art system described with reference to FIGS. They have the same reference numbers. In the figure,
The content is transmitted from the I / O interface 65 of the KIOSK terminal 60 to the I / O interface 31 of the device 30 to be used.
From the content server 40 to the network interface 71 of the portable terminal 70 or the network interface 19 of the personal computer 10 via the computer network 50. Also, the I / O interface 31 of the device 30 and the I / O
I / O interface 72 and personal computer 1
It is also possible to transmit the content to and from the I / O interface 17 of 0.

The IC card reader / writer is also connected to the portable terminal 70, and when downloading contents from the content server 40 to the portable terminal 70 via the computer network 50, the content server 4
0 can write check-out data as a check-in / check-out management terminal.

In the present embodiment, the LCM that actually performs the check-in / check-out management is provided in the personal computer 10, the KIOSK terminal 60, and the content server 40. Therefore, the IC card 30
The check-in / check-out data of the tamper-resistant area 310 of the personal computer 10, the KIOSK
Written in accordance with instructions from the terminal 60 and the network server 40.

FIG. 7 is a table showing check-in / check-out data recorded in a tamper-resistant area of an IC card according to a second embodiment of the present invention in a table format. The content ID is an ID for identifying a content downloaded by a user of the IC card from a KIOSK terminal or a content server, or a content read from a medium such as a CD-ROM. Two items, a media / device ID and a check-in / out flag, are associated with one content ID.
The media / device ID is an ID for identifying the device or media that has acquired the corresponding content. The check-in / out flag is a flag for distinguishing whether the corresponding content has been input or output.

In the example shown in FIG.
= "Content 00", media / device ID = "player A", check-in / out flag = "out"
Indicates that the content 00 has been output to the player A. In the second row, the content ID = "content 01", the media / device ID = "mobile terminal B", and the check-in / out flag = "in" indicate that the content 01 has been input from the mobile terminal B. Content ID in third row = “content 02”, media / device ID
= “Memory medium C”, check-in / out flag = “out” indicates that the content 02 has been stored in the memory medium C.

FIG. 8 is a timing chart showing the flow of check-in / check-out data between the IC card and each terminal according to the third embodiment of the present invention. In this example,
Consider a case where contents are written from the KIOSK terminal 60 installed in a street or the like to the use device 30, and then the contents are written from the use device 30 to the personal computer 10 as a content storage / management terminal and saved. Further, in this example, the contents and the like that are data-communicated between the devices are all encrypted (for example, using a public key encryption method or a secret key encryption method) and transmitted through a communication path.

The KIOSK terminal 60 includes an IC card reader / writer 67, a content management application module 63 that can be implemented as software, and an LCM.
64 inclusive. When the IC card 300 is not inserted, the KIOSK terminal 60 does not have the tamper-resistant area for check-in / check-out management, but the
By inserting the IC card 300 into the IC card reader / writer 67 of the OSK terminal 60, the tamper-resistant area 310 for content check-in / check-out management is changed to a KIO.
It is provided to the SK terminal 60.

Steps 1 to 7 in FIG.
3 shows a procedure of a process of selling content from the OSK terminal 60 to the use device 30. When the user inserts the IC card 300 into the IC card reader / writer 67 of the KIOSK terminal 60, the IC card is checked (step 1). Next, when the user requests the KIOSK terminal 60 to write the content, the application module 63 requests the LCM 64 to write the content (step 2), and the LCM 63 writes the content to the device 30 (step 3). ). Device 3
0 indicates that the content writing has been completed.
The CM 63 is notified (step 4), and the LCM 63 sends a completion notification to the application module (step 5). Next, the application module 63 of the KIOSK terminal 60 writes the checkout data in the tamper-resistant area 310 of the IC card 300 via the IC card reader / writer 67 (step 6), and then checks the write data (step 7). ).

For example, when a user uses the KIOSK terminal 60 to store a content (for example, a content on a recording medium 32 or the like built in the device 30 (for example, device ID = "00A"))
When the content ID = "001") is fetched, the content ID is stored in the tamper-resistant area 310 on the IC card 300.
= “001”, media / device ID = “00A”, and check-in / out flag = “out” are newly written. This indicates that the content has been checked out to the utilizing device. Thereby, KIOSK
The process of selling the content from the terminal 60 to the device 30 is completed.

The process of writing the checkout data at this time will be described with reference to the checkout access flow from the application module to the IC card according to the fourth embodiment of the present invention shown in FIG.

Step 101: It is checked whether or not the inserted IC card is improper. If the IC card is improperly used, the process is terminated.

Step 102: Since the IC card is not illegally used, the tamper-resistant area in the IC card is scanned to check for an empty area.

Step 103: The content ID of the content to be checked out and the media ID (or device ID) of the destination recording medium are read.

Step 104: acquired content ID
Then, the media ID and the checkout flag are written in an appropriate part in the tamper-resistant area.

Step 105: It is confirmed whether or not the writing of the checkout data has been performed normally. If not, the process returns to the step 103.

Step 106: Since the check-out data has been normally written, the content is transferred to a destination recording medium or the like.

Step 107: It is checked whether or not the content has been transferred normally. If the transfer has not been completed yet, the flow returns to step 106.

Step 108: If the copy of the content is prohibited, the LCM deletes the transfer source content.

The contents taken into the storage medium 32 of the use device 30 can be used by the use device 30 until the content is saved in the personal computer 10 as a content storage / management terminal.

Next, referring again to FIG.
A process for saving the content stored in the personal computer 10 to the personal computer 10 will be described.

The personal computer 10 has a KIO
As with the SK terminal 60, the application module 1
4 and the LCM 13 are installed, and the IC card reader / writer 20 is connected. The user inserts the same IC card 300 used when acquiring the content with the KIOSK terminal 60 into the IC card reader / writer 20. Thus, the user can transfer the tamper-resistant area 310 of the IC card 300 used at the time of check-in / check-out at the KIOSK terminal 60 to the content on the personal computer 10 which is another content storage / management terminal. Can be used as a tamper-resistant area for check-in / check-out management. Here, in the tamper-resistant area 310 on the used IC card 300, data indicating that the content obtained from the KIOSK terminal 60 has been checked out to the recording medium 32 of the use device 30 is recorded.

When the IC card 300 is inserted into the IC card reader / writer 20, the validity of the IC card 300 is checked (step 8). Next, the application module 14 of the personal computer 10 uses the usage device 3 storing the content to be moved.
0 requests the LCM 13 to inspect the recording medium 32 (step 9), the LCM 13 inspects the recording medium 32 (step 10), and sends the inspection result to the application module 1.
4 (step 11). Next, the application module 14 requests the LCM 13 to inspect the content stored in the recording medium 32 of the use device 30 (step 12), and the LCM 13 instructs the use device 30 to check the content stored in the recording medium 32. Request a list (step 13). The usage device 30 stores the content list corresponding to the request in the LC of the personal computer 10.
Reply to M13 (step 14), LCM 13 returns the contents list to application module 14 (step 15).

Next, the application module 14
Accesses the tamper-resistant area 310 of the IC card 300, checks the check-out information of the check-out data recorded in the tamper-resistant area 310,
The check-out data relating to the content to be moved from is checked (step 16).

Subsequently, the application module 14
Requests the LCM 13 to transfer the content (step 17). If the transfer satisfies the copyright protection regulations, the LCM 13 requests the device 30 to transfer the content (step 18). The usage device 30 that has received the request extracts the content from the recording medium 32, transfers the content, and requests the LCM 13 of the personal computer 10 to write (step 19). The LCM 13 requested to write the content writes the content to the storage device 16 (step 20).

After the writing of the content is completed, the application module 14 requests the LCM 13 to erase the transfer source content (in a case where copying is prohibited and only movement is possible) (step 21). A request is made to delete the content stored in the storage 32 (step 22). The use device 30 notifies the LCM 13 of the completion of the content erasing process (step 2).
3), the LCM 13 transmits the completion notification to the application module 14 (Step 24).

Finally, the application module 14 of the personal computer 10 deletes the check-out flag recorded in the tamper-resistant area 310 of the IC card 300 and rewrites it with a check-in flag (step 25).

FIG. 10 is an access flow at the time of check-in from an application module to an IC card according to a fifth embodiment of the present invention. The write-in process of the check-in data will be described with reference to FIG.

Step 111: It is checked whether or not the inserted IC card is unauthorized, and if it is illegally used, the process is terminated.

Step 112: The content ID of the content to be checked in and the media ID (or device ID) of the source recording medium are read.

Step 113: Since the IC card is not illegally used, the tamper-resistant area in the IC card is scanned to check an area corresponding to the content to be checked in.

Step 114: Check whether the check-in data read from the IC card matches the data of the content itself, and if not, end the process.

Step 115: Delete the corresponding check-out data and rewrite it with check-in data.

Step 116: Check whether the checkout data has been normally erased, and if not, return to step 115.

Step 117: Since the check-out data has been normally erased, the contents are transferred.

Step 118: It is checked whether or not the content has been transferred normally. If the transfer has not been completed yet, the flow returns to step 117.

Step 119: If the copy of the content is prohibited, the LCM deletes the transfer source content.

The contents stored in the personal computer 10 can be re-transferred to the portable terminal 70 or the device 30 unless prohibited by LCM. In that case, the IC card reader / writer 20 connected to the personal computer 10
Is inserted, and the same processing as that for downloading the content from the KIOSK terminal 60 to the usage device 30 described above is performed, thereby moving the content from the personal computer 10 to the mobile terminal 70 or the usage device 30, and checking in the content. -Checkout data can be rewritten. If the transfer is successful,
The content stored in the personal computer 10 is deleted.

In the sixth embodiment of the present invention, contents are distributed from the contents server 40 to the portable terminal 70 via the computer network 50. In this case, the IC card reader / writer 75 connected to the portable terminal 70
By inserting the C card 300, the same processing as the check-in / check-out management described above is performed, the content is written to the portable terminal 70, and the check-in / check-out data of the tamper-resistant area 310 of the IC card 300 is stored. Can be rewritten. At this time, it should be noted that the LCM 43 of the content server 40 writes the checkout data to the tamper-resistant area 310 of the IC card 300 via the application module 74 of the mobile terminal 70. For example, when a user sends a message from the content server 40 to
The content (for example, content ID = “00B”) is stored in the recording medium 73 or the like built in the device ID = “00B”.
2 ”), the content ID =“ 002 ”, the media / device ID =“ 00B ”, and the check-in / out flag =“ out ”are newly written in the tamper-resistant area 310 on the IC card 300. In addition, the content is saved in the personal computer 10,
In order to manage with the personal computer 10, the IC card 300 is inserted into the IC card reader / writer 20 of the personal computer 10 which is a content storage / management terminal, and the content written on the recording medium 73 of the portable terminal 70 is personalized. The content may be transferred to the computer 10, the content on the recording medium 73 of the mobile terminal 70 may be deleted, and the check-in / out flag may be rewritten to “in”.

The configuration of the check-in / check-out management system according to the above-described embodiment of the present invention is not limited to the example described in the above-described embodiment. , IC card, I
The parts other than the hardware such as the C card reader / writer and the computer's CPU and memory are constructed with software (programs) that realize the same functions, recorded on a disk device or the like, and installed on the computer as necessary. It is also possible to perform check-in / check-out management. Further, the constructed program is transferred to a floppy (registered trademark) disk, a memory card, a CD, or the like.
-Stored in a portable recording medium such as a ROM, and can be used for general purposes in a case where such information retrieval processing is used.

Although the representative embodiments of the present invention have been described above, the present invention is not limited to the above embodiments, and various modifications and applications are possible within the scope of the claims.

[0070]

As described above, conventionally, the check-in / check-out management is performed only by the terminal that has acquired the content or the content storage / management terminal that stores the content. , I
By storing and using the check-in / check-out information in the tamper-resistant area of the C card, access to the check-in / check-out information becomes location-free, so that an IC card reader / writer is provided. All terminals on which the checkout management software is installed can be used as content storage / management terminals.

Conventionally, it was necessary to associate one content storage / management terminal with one content, but according to the present invention, content check-in / check-out information is stored in an IC card. Therefore, the content storage / management terminal for this content can be freely changed to a device that can read / write an IC card.

Therefore, according to the present invention, there is obtained an advantage that contents can be freely moved or copied between devices within the range defined by the LCM.

Conventionally, check-in / check-out information is stored in a tamper-resistant area on hardware or software in the content storage / management terminal. On the other hand, according to the present invention, since the check-in / check-out information is stored in the tamper-resistant area of the IC card, higher security than in the related art is realized.
This is because IC cards are (1) it is very difficult to physically duplicate the card itself, (2) it is difficult to access the inside of the card, it is difficult to falsify or steal data, and (3) This is because readers / writers can locally authenticate their validity and have excellent characteristics such as unauthorized use and easy detection of unauthorized cards.

[Brief description of the drawings]

FIG. 1 is a configuration diagram of a conventional CD ripping system.

FIG. 2 is a configuration diagram of a conventional system for downloading content via a network.

FIG. 3 is a configuration diagram of a content acquisition system from a content providing information terminal according to a conventional technique.

FIG. 4 is a configuration diagram of a content acquisition system via a network using a portable terminal according to the related art.

FIG. 5 is a configuration diagram of a digital content input / output information management system according to the present invention.

FIG. 6 is a configuration diagram of a content check-in / check-out management system using an IC card according to the first embodiment of the present invention.

FIG. 7 is an explanatory diagram of check-in / check-out data recorded in a tamper-resistant area of an IC card according to a second embodiment of the present invention.

FIG. 8 is a timing chart showing a flow of check-in / check-out data between an IC card and each terminal according to a third embodiment of the present invention.

FIG. 9 is an access flowchart at the time of checkout from an application module to an IC card according to a fourth embodiment of the present invention.

FIG. 10 is an access flowchart at the time of check-in from an application module to an IC card according to a fifth embodiment of the present invention.

[Explanation of symbols]

 REFERENCE SIGNS LIST 100 First device 110 IC card reader / writer 120, 210 I / O interface 130, 230 Digital content 140 License management means 142 Transmission permission determination means 144 Tamper-resistant area setting means 200 Second device 300 IC card 310 Tamper-resistant storage region

──────────────────────────────────────────────────続 き Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) G06K 17/00 G06K 17/00 L D 19/07 G09C 1/00 660D G09C 1/00 660 G06K 19/00 N H04L 9/10 H04L 9/00 621Z 9/32 673E 673B (72) Inventor Maki Asano 1-6-6 Uchisaiwaicho, Chiyoda-ku, Tokyo NTT Communications Corporation (72) Inventor Hidenori Araki 1-6-6 Uchisaiwaicho, Chiyoda-ku, Tokyo F-term in NTT Communications Corporation 5B035 AA13 BB09 BC00 5B049 AA05 BB00 CC00 FF08 GG02 GG10 5B058 CA27 KA02 KA04 KA31 YA20 5B85 AE00 BC02 5J104 AA07 AA13 KA02 NA35 NA42

Claims (8)

[Claims] 1. A method for managing input / output information of digital content transmitted between devices, comprising a separate tamper-resistant storage area provided with an area for storing the input / output information of the digital content. A method comprising: connecting a device to any one of the devices to which the digital content is transmitted; and writing input / output information of the digital content between the devices in the tamper-resistant storage area of the device. 2. A method for managing input / output information of digital content transmitted from a first device to a second device, comprising: a tamper-resistant device provided with an area for storing the input / output information of the digital content. A separate device having a dynamic storage area is connected to at least one of the first device and the second device, and transmission of the digital content from the first device to the second device is permitted. It is determined whether the transmission of the digital content is permitted. If the transmission of the digital content is permitted, the digital content is transmitted from the first device to the second device, and the digital content is transmitted between the devices. Writing the input / output information to the tamper-resistant storage area of the separate device. 3. The method according to claim 1, wherein an IC card is used as the device, and the IC card is connected to the one device via an IC card reader / writer. 4. The method according to claim 1, wherein said one device is a digital content providing terminal. 5. The method according to claim 1, wherein the one device is a portable information terminal. 6. The method according to claim 1, wherein the one device is a user terminal that stores the digital content. 7. A system for managing input / output information of digital contents transmitted between a first device and a second device, comprising: an IC card reader / writer connected to the first device; An IC card having a tamper-resistant storage area provided with an area for storing the input / output information of the digital content, wherein the IC card is connected to the IC card reader / writer. One device has license management means for preventing unauthorized use of the digital content, and the license management means comprises the first device and the second device.
Means for determining whether or not transmission of the digital content between the devices is permitted; and, if determined to be permitted, starting the transmission of the digital content and responding to the transmission of the digital content. Means for setting input / output information in the tamper-resistant area of the IC card via the IC card reader / writer. 8. A first device for holding digital content, a second device for receiving the digital content from the first device, and at least one of the first device and the second device. The connected IC card reader / writer and the IC card reader / writer are inserted into the IC card reader / writer,
An IC card having a tamper-resistant storage area provided with an area for storing the input / output information of the digital content, wherein the digital content input / output information management program executed by the one device is recorded. A code for determining whether the transmission of the digital content from the first device to the second device is an unauthorized use; and a code for determining whether the transmission of the digital content is an unauthorized use. A code for starting the transmission of the content and setting input / output information corresponding to the transmission of the digital content in the tamper-resistant area of the IC card via the IC card reader / writer; A recording medium on which a program is recorded, wherein the program is characterized in that the program is prevented.