JP2002099743A - Data reproducing device and license managing method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a data reproducing device and a license managing method with a procedure where the selection of music and the management of contents are simplified. SOLUTION: A portable telephone set 100 includes a controller 1106, a display 1110, a key operation part 1108, a memory 1230, a memory card 110 and a reproduction system circuit. In a music reproducing mode, information (reproduced music list) on reproducible contents data is displayed on the display 1110 based on an inter-media music list recorded in the memory card 110. A user selects music from pertinent display. In a media managing mode, compiling work is possible corresponding to the inter-media music list showing the data contents recorded in the memory card 110.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

[0001] 1. Field of the Invention [0002] The present invention relates to a data reproducing apparatus and a license management method used in a data distribution system capable of protecting copyright of copied information.

[0002]

2. Description of the Related Art In recent years, with the progress of information communication networks such as the Internet, it has become possible for each user to easily access network information using a personal terminal using a cellular phone or the like.

In such an information communication network, information is transmitted by digital signals. Therefore, for example, even when music or video data transmitted in the information communication network described above is copied by each individual user, the data is copied with almost no deterioration in sound quality or image quality due to such copying. It is possible.

[0004] Therefore, in the case where a creation, such as music data or image data, for which a writer's right exists, is transmitted on such an information communication network, appropriate copyright protection measures must be taken. , The rights of the copyright holder may be significantly infringed.

[0005] Distributing music data and image data to the public through a digital information communication network is itself an act restricted by the public transmission right of the copyright holder. Therefore, sufficient measures for copyright protection are required. Need to be taken.

[0006]

By the way, a decryption key (license) for reproducing content data can be set with a limit on the number of times of reproduction and a limit on a due date.

However, when decoding (reproducing) content data requiring copyright protection, if the user needs to confirm the license status each time,
The reproduction procedure becomes complicated for the user.

[0008] Further, there is a demand from the user side to manage such downloaded content data by a simple procedure.

Accordingly, the present invention has been made to solve such a problem, and an object of the present invention is to automatically determine a license state in a playback mode and present encrypted content data which can be played back. And a license management method.

A further object is to provide a data reproducing apparatus and a license management method capable of managing downloaded encrypted content data by a simple procedure.

[0011]

Means for Solving the Problems and Effects of the Invention A data reproducing apparatus according to an aspect of the present invention downloads encrypted content data obtained by encrypting content data and license information relating to the encrypted content data and records the data. What is claimed is: 1. A data reproducing apparatus for recording encrypted content data recorded on an apparatus and reproducing the encrypted content data recorded on a data recording apparatus, comprising: a communication unit for communicating with an external device; an interface for controlling data transfer; a control unit; And The control unit displays a content list related to the reproducible encrypted content data on the display unit during reproduction.

Preferably, encrypted content data to be reproduced is selected from a content list.

[0013] Preferably, the control unit generates a content list in the medium based on the data recorded in the data recording device, and generates a content list based on the content list in the medium at the time of reproduction.

Preferably, the data recording device generates a content list in the medium including information on data to be recorded, and the control unit generates a content list based on the content list in the medium at the time of reproduction.

The in-media content list includes, for each content, encrypted content data and license information, and information specifying that only encrypted content data or only license information exists. Further, the in-media content list includes, for each content, information indicating whether or not the reproduction is restricted by the license information.

[0016] In particular, the control unit displays information on the content in which both the encrypted content data and the license information exist.

In particular, at the time of reproduction, the control section deletes, from the content list, the encrypted content data that cannot be reproduced based on the license information.

In particular, in the media management mode, the control unit further includes a circuit for displaying the contents list in the medium on the display unit and editing data that can be changed in the contents list in the medium displayed on the display unit.

According to a license management method according to a further aspect of the present invention, an encrypted content data obtained by encrypting content data and license information relating to the encrypted content data are downloaded, recorded in a data recording device, and recorded in the data recording device. A license management method in a data reproducing apparatus for reproducing encrypted content data, comprising: a step of determining a mode; and a content list relating to reproducible encrypted content data when the mode is determined to be a reproduction mode. And a reproduction step including a display step of displaying a content list.

[0020] Preferably, the reproducing step includes:
The method further includes a step of deleting the encrypted content data that cannot be reproduced based on the license information from the content list.

Preferably, the method further comprises the step of generating a content list in the medium based on data recorded in the data recording device, and the content list is generated based on the content list in the medium.

In particular, in the step of determining the mode, when it is determined that the mode is the media management mode, the method further includes a step of editing data that can be changed in the content list in the medium.

Therefore, according to the present invention, the license limit can be automatically determined on the reproducing side.
The music selection operation on the user side is simplified. Further, since the user can edit the changeable data relating to the content, the data can be managed according to the user's intention.

[0024]

Embodiments of the present invention will be described in detail with reference to the drawings. In the drawings, the same or corresponding portions have the same reference characters allotted, and description thereof will not be repeated.

[First Embodiment] FIG. 1 conceptually illustrates the overall configuration of a data distribution system for distributing encrypted content data to be reproduced by a data terminal device to a memory card according to the present invention. FIG.

In the following, a configuration of a data distribution system for distributing digital music data to each mobile phone user via a mobile phone network will be described as an example. As will be apparent from the following description, the present invention is not limited to this configuration. The present invention is not limited to such a case, and can be applied to the case of distributing content data as another copyrighted work, for example, image data, moving image data, and the like. Also,
The present invention is also applicable to a case of distributing via another information communication network.

Referring to FIG. 1, license server 10 for managing music data having a copyright includes a memory card 110 attached to portable telephone 100 of portable telephone user 1 who has accessed for data distribution. Performs authentication processing to determine whether or not the card has valid authentication data, that is, whether or not the memory card is a valid memory card. Music data (hereinafter also referred to as content data) is written to the valid memory card by a predetermined encryption method. After being encrypted, such encrypted content data is given to a mobile phone company which is a distribution carrier 20 for distributing data.

The distribution carrier 20 relays a distribution request (delivery request) from each mobile telephone user to the license server 10 through its own mobile telephone network. Upon receiving the distribution request, the license server 10 confirms that the memory card or the like is a legitimate device, further encrypts the requested content data, and transmits the encrypted content data to the mobile phone network of the distribution carrier 20 via the mobile phone network. The content data is distributed to a memory card inserted through a mobile phone of a telephone user.

In FIG. 1, for example, a detachable memory card 1 is attached to a portable telephone 100 of a portable telephone user 1.
10 is mounted. Memory card 11
0 receives and stores the encrypted content data received by the mobile phone 100. Further, it receives a license key by the authentication process performed for the distribution and stores the data. After decrypting the encryption, it is provided to a music playback unit (not shown) in the mobile phone 100.

Further, for example, the portable telephone user can decrypt the encrypted content data with the license key via the headphone 130 or the like connected to the portable telephone 100, "play" and listen.

In the following, such a license server 1
The distribution server 30 is collectively referred to as “0” and the distribution carrier 20.

The process of transmitting content data from the distribution server 30 to each mobile phone or the like is referred to as "distribution".

With such a configuration, first, unless the memory card 110 is used, it is difficult to receive the distribution of the content data from the distribution server 30 and reproduce the music.

In addition, the distribution carrier 20 counts the frequency each time content data for one song is distributed, for example, so that the mobile phone user receives (downloads) the content data and receives a copyright fee. Is collected by the distribution carrier 20 together with the communication charge of the mobile phone, the copyright holder can easily secure the copyright charge.

In such a configuration, in order for the user of the mobile phone to be able to reproduce the content data distributed in an encrypted manner, the system firstly needs an encryption key for communication. This is a method for distribution. The second is a method of encrypting content data to be distributed. Third, there is a configuration that realizes content data protection for preventing unauthorized copying of the content data thus distributed.

Fourth, in the reproduction mode,
This is a configuration for automatically determining the license status.
Fifth, there is a configuration for allowing a user to edit a list regarding contents.

In the first embodiment, especially when each session of distribution and reproduction occurs, the authentication and checking functions for the destination of these content data are enhanced, and the non-authentication or decryption key is broken. To prevent the output of the content data to the recording device and the content reproduction device (mobile phone), thereby enhancing the copyright protection of the content data, and presenting a list related to the content data to the user, and the user side of the list. This shows a configuration that allows editing.

FIG. 2 is a diagram for explaining characteristics of data, information, and the like for communication used in the data distribution system shown in FIG.

First, data distributed from the distribution server 30 will be described. Data is content data such as music data. In the content data Data,
Encrypting that can be decrypted with the license key Kc is performed. The license server (also referred to as a “content key”; the same applies hereinafter) encrypted content data {Data} Kc, which has been encrypted by the decryption using the Kc, is distributed from the distribution server 30 to the mobile phone user in this format.

In the following, it is assumed that the notation {Y} X indicates that the data Y has been encrypted with the decryption key X.

Further, the distribution server 30 distributes, along with the encrypted content data, additional information Data-inf as plain text information such as copyright related to the content data or server access. The license information includes a content ID which is a code for identifying the content data Data, and a license ID which is a management code capable of specifying issuance of a license.
And the license purchase condition AC including information such as the number of licenses and function limitation determined by the designation from the user side.
There are access restriction information AC1 which is information based on restrictions on memory access, and reproduction circuit control information AC2 which is control information in the reproduction circuit, and the like, which are generated based on. Thereafter, the license key Kc and the content I
D, license ID, access control information AC1, and reproduction circuit control information AC2 are collectively referred to as a license.

FIG. 3 is a diagram for explaining characteristics of data, information, and the like for use in the authentication and inhibition class list used in the data distribution system shown in FIG.

In the first embodiment, distribution and reproduction of content data can be prohibited for each class of recording device (memory card) and data terminal device (mobile phone) for reproducing content data. Banned class list CRL (Class Revocat)
ion List). In the following, data in the prohibited class list may be represented by the symbol CRL as necessary.

The prohibition class list related information includes the prohibition class list data CRL listing the classes of the data terminal device and the memory card for which distribution and reproduction of the license are prohibited.

The prohibited class list data CRL is managed in the distribution server 30 and is also recorded and held in a memory card. Such a prohibition class list needs to be upgraded and updated at any time. However, as for data changes, the distribution server 30 basically generates difference data CRL_dat reflecting only the changed points. Accordingly, the prohibition class list CRL in the memory card is rewritten accordingly. For the version of the prohibited class list, CRL_ver
Is output from the memory card side, and this is confirmed on the distribution server 30 side to execute version management. The difference data CRL_dat also includes information of a new version. Also, the update date and time can be used as the version information.

As described above, the prohibited class list CRL is
Supplying a license key to a data terminal device and a memory card in which a class-specific, that is, a decryption key specific to the type of a data terminal device and a memory card has been broken by holding and operating not only in the distribution server but also in the memory card. Ban. For this reason, it becomes impossible to reproduce the content data in the data terminal device and to move the content data in the memory card.

As described above, the prohibited class list CRL in the memory card is configured to sequentially update data at the time of distribution. The prohibited class list C in the memory card
The management of the RL is performed independently of the higher level in the tamper resistance module (Tamper Re
banned class list data CRL from a higher level by a file system, an application program, etc.
Has a configuration that cannot be tampered with. As a result, copyright protection for data can be further strengthened.

Each of the data terminal device and the memory card is provided with a unique public encryption key KPpn and KPmci, respectively. Respectively, can be decoded. These public encryption key and secret decryption key have different values for each type of data terminal device and each type of memory card. These public encryption keys and secret decryption keys are collectively called class keys.

Crtfn and Cmci are provided as class certificates of the reproduction circuit and the memory card, respectively.

[0050] These class certificates have different information for each class of the memory card and the content reproducing unit (mobile phone). For the class key for which the encryption with the class key has been broken, that is, the secret decryption key has been obtained,
It is listed in the prohibition class list and is subject to prohibition of license issuance.

The public encryption key and the class certificate unique to the memory card and the content reproducing unit are provided by the authentication data {KPmci // Cmci} KPma and {KPp
In the format of n // Crtfn @ KPma, it is recorded on the memory card and the mobile phone at the time of shipment. As will be described in detail later, KPma is a public authentication key common to the entire distribution system.

FIG. 4 is a diagram for collectively explaining the characteristics of keys related to encryption in the data distribution system shown in FIG.

Each time content data is distributed and reproduced, it is generated in the distribution server 30, the mobile phone 100, and the memory card 110 as an encryption key for maintaining confidentiality in data transfer between the memory card and the outside of the memory card. Common keys Ks1 to Ks3 are used.

Here, the common keys Ks1 to Ks3 are unique common keys generated for each “session” which is a unit of communication or access between the distribution server, the mobile phone, or the memory card. The common keys Ks1 to Ks3 are also referred to as “session keys”.

These session keys Ks1 to Ks3
Is managed by the distribution server, the mobile phone, and the memory card by having a unique value for each communication session. Specifically, the session key Ks1 is
Generated by the distribution server for each distribution session.
The session key Ks2 is generated for each distribution session and reproduction session by the memory card, and the session key Ks3 is generated for each reproduction session in the mobile phone. In each session, these session keys are transmitted and received, a session key generated by another device is received, encryption is performed using the session key, and a license key is transmitted. Can be improved.

As a key for managing data processing in the memory card 110, a public encryption key KPm and a public encryption key KPm set for each medium called a memory card are used.
There is a unique secret decryption key Km for each memory card capable of decrypting the data encrypted by.

FIG. 5 shows the license server 1 shown in FIG.
FIG. 3 is a schematic block diagram illustrating a configuration of a zero.

The license server 10 includes an information database 304 for storing data obtained by encrypting content data in accordance with a predetermined method, distribution information such as a license ID, and the like. A charging database 302 for storing the corresponding charging information, a CRL database 306 for managing a prohibited class list CRL, and an information database 3
04, a data processing unit 310 for receiving data from the charging database 302 and the CRL database 306 via the data bus BS1, and performing predetermined processing;
Distribution carrier 20 and data processing unit 31 via a communication network
And a communication device 350 for exchanging data with the communication device 350.

The data processing section 310 includes a data bus BS1.
A distribution control unit 315 for controlling the operation of the data processing unit 310 according to the above data, and a session key generation unit 316 for generating a session key Ks1 at the time of the distribution session under the control of the distribution control unit 315. Processing unit for receiving authentication data {KPmci // Cmci} KPma for authentication sent from a memory card and a mobile phone via communication device 350 and data bus BS1, and performing a decryption process using public authentication key KPma. 3
12, an encryption processing unit 318 for encrypting the session key Ks1 generated by the session key generation unit 316 using the public encryption key KPmci obtained by the decryption processing unit 312, and outputting the encrypted data to the data bus BS1. And a decryption processing unit 320 that receives data transmitted after being encrypted by the session key Ks1 from the data bus BS1 and performs decryption processing.

The data processing section 310 further encrypts the license key Kc and the reproduction circuit control information AC2 given from the distribution control section 315 with the public encryption key KPm unique to the memory card obtained by the decryption processing section 320. Encryption processing unit 326 and encryption processing unit 32
6 is further encrypted by the session key Ks2 given from the decryption processing unit 320, and the data bus BS
1 and an encryption processing unit 328 for outputting the data to the output unit 1.

The operation in the distribution session of the license server 10 will be described later in detail using a flowchart.

FIG. 6 is a schematic block diagram for explaining the configuration of portable telephone 100 shown in FIG.

The portable telephone 100 has an antenna 1102 for receiving a signal wirelessly transmitted by the portable telephone network.
And a transmitting / receiving unit 1104 for receiving a signal from the antenna 1102 and converting it to a baseband signal, or for modulating data from a mobile phone and giving it to the antenna 1102.
A data bus BS2 for exchanging data with each unit of the mobile phone 100, and a controller 11 for controlling the operation of the mobile phone 100 via the data bus BS2.
06.

The mobile phone 100 further includes a key operation unit 11 for giving an external instruction to the mobile phone 100.
08, a display 1110 for providing information output from the controller 1106 and the like as visual information to a mobile phone user, and a voice for reproducing voice based on data received via the data bus BS2 in a normal call operation. And a sound reproducing unit 1112.

The portable telephone 100 further includes a DA converter 1113 for converting the output of the audio reproducing unit 1112 from a digital signal to an analog signal, and a terminal 1114 for outputting the output of the DA converter 1113 to an external output device or the like. including.

The portable telephone 100 further includes a removable memory card 110 for storing and decoding content data (music data) from the distribution server 30.
And a memory interface 12 for controlling data transfer between the memory card 110 and the data bus BS2.
00.

The portable telephone 100 can further authenticate its legitimacy by decrypting the public encryption key KPp1 and the class certificate Crtf1 set for each type (class) of the portable telephone with the public decryption key KPma. Authentication data {KPp1 // Crtf1} K
An authentication data holding unit 1202 that holds Pma is included.

The cellular phone 100 further decrypts the data received from the data bus BS2 with the Kp1 holding unit 1204 for retaining the decryption key Kp1 unique to the cellular phone (content reproduction circuit), and the memory card 11
And a decryption processing unit 1206 for obtaining a session key Ks2 generated by 0.

The mobile phone 100 further includes a session key for encrypting data exchanged on the data bus BS2 with the memory card 110 in a reproduction session for reproducing the content data stored in the memory card 110. A session key generation unit 1210 that generates Ks3 using a random number or the like, and a generated session key Ks3 is encrypted with the session key Ks2 obtained by the decryption processing unit 1206, and the data bus B
And an encryption processing unit 1208 for outputting to S2.

Cellular telephone 100 further includes a decryption processing unit 1212 for decrypting data on data bus BS2 with session key Ks3 and outputting the decrypted data.

The mobile phone 100 further receives a decrypted content data {Data} Kc from the data bus BS2, decrypts it with the license key Kc obtained from the decryption processing unit 1212, and outputs the content data. Music playback unit 1216 for playing back the content data in response to the output of decryption processing unit 1214
And a D / A converter 1218 for converting the output of the music reproduction unit 1216 from a digital signal to an analog signal, and outputs of the D / A converter 1113 and the D / A converter 1218, and selectively receives the terminal 1114 or the terminal 1114 or Terminal 12
20 includes a switch 1222 for outputting from the switch 20, a connection terminal 1224 for receiving the output of the switch 1222 and connecting to the headphone 130, and a memory 1230 for recording data.

The controller 1106 performs data download processing, data reproduction processing, power supply control processing, etc., and also performs reproduction music list generation, media music list generation in the media management mode, display control, and the like.

In FIG. 6, for simplicity of description, only blocks related to the distribution and reproduction of music data of the present invention are shown in the portable telephone, and blocks relating to the call function originally provided in the portable telephone are described. Is partially omitted.

The operation of each component of the mobile phone 100 in each session will be described later in detail with reference to flowcharts.

FIG. 7 is a schematic block diagram for explaining the configuration of memory card 110. As described above, KPmci and Kmci are provided as a public encryption key and a secret decryption key unique to the memory card, and a class certificate Cmci of the memory card is provided. In the memory card 110, these are natural numbers i = 1, respectively.

Therefore, the memory card 110 has an authentication data holding unit 1400 for holding the authentication data {KPmc1 // Cmc1} KPma and a K for holding the unique decryption key Kmc1 set for each type of memory card.
mc holding unit 1402 and Km1 holding unit 142 holding secret decryption key Km1 uniquely set for each memory card
1 and a KPm1 holding unit 1416 that holds a public encryption key KPm1 that can be decrypted by Km1. The authentication data holding unit 1400 decrypts the public encryption key KPmc1 and the class certificate Cmc1 set for each type and class of the memory card with the public authentication key KPma, thereby encrypting the authentication so that the validity can be authenticated. The data is held as {KPmc1 // Cmc1} KPma.

As described above, by providing an encryption key for a recording device called a memory card, management of distributed content data and an encrypted license key is executed for each memory card, as will be apparent from the following description. It becomes possible to do.

The memory card 110 further includes, for each type of memory card, a data bus BS3 for transmitting and receiving signals to and from the memory interface 1200 via a terminal 1201 and data supplied to the data bus BS3 from the memory interface 1200. Unique secret decryption key Kmc
1 from the Kmc1 holding unit 1402,
0 is the session key K generated in the distribution session
a decoding processing unit 1404 that outputs s1 to the contact point Pa;
Receiving the authentication key KPma from the ma holding unit 1414, a decryption processing unit 1408 that performs decryption processing by KPma from data supplied to the data bus BS3 and outputs the decryption result to the encryption processing unit 1410, Switch 1
And an encryption processing unit 1406 for encrypting data selectively given by 444 and outputting the encrypted data to the data bus BS3.

The memory card 110 further stores a session key Ks2 in each session of distribution and reproduction.
And a session key Ks2 output from the session key generator 1418
To the public encryption key KP obtained by the decryption processing unit 1408
An encryption processing unit 1410 that encrypts with pn or KPmci and sends it to the data bus BS3, and receives data encrypted with the session key Ks2 from the data bus BS3 and decrypts with the session key Ks2 obtained from the session key generation unit 1418. , A decoding processing unit 1412 for sending a decoding result to the data bus BS4.

The memory card 110 further includes a decryption processing unit 1422 for decrypting the data on the data bus BS3 with the secret decryption key Km1 unique to the memory card 110 paired with the public encryption key KPm1, and a public encryption key KPm1.
The license key Kc, the reproduction circuit control information AC2 and the reproduction information (content ID, license ID, access control information AC1), and the difference data CRL_dat for updating the version of the unencrypted prohibited class list. And the prohibited class list data CRL sequentially updated by the data bus BS4 and stored.
a @ Kc and additional information Data-inf are transferred to the bus BS3.
And a memory 1415 for receiving and storing. The memory 1415 is configured by, for example, a semiconductor memory.

The memory card 110 further has a license information holding unit 1440 for holding the license ID, the content ID, and the access restriction information AC1 obtained by the decryption processing unit 1422, and an external device via the data bus BS3. Data transfer, data bus B
Upon receiving the reproduction information and the like with the S4, the memory card 110
And a controller 1420 for controlling the operation of.

The license information holding unit 1440 can exchange data of the license ID, the content ID, and the access restriction information AC1 with the data bus BS4. The license information holding unit 1440 has N (N: natural number) banks, and holds license information corresponding to each license for each bank.

In FIG. 7, the area enclosed by the solid line indicates that if an unauthorized opening process from the outside is performed in the memory card 110, the internal data is erased or the internal circuit is destroyed. On the other hand, it is assumed that the module is incorporated in a module TRM for disabling reading of data and the like in a circuit existing in the area. Such modules are generally tamper resistance modules (T
amper Resistance Module).

Of course, the structure including the memory 1415 may be incorporated in the module TRM. However, with the configuration shown in FIG. 7, the reproduction information required for reproduction held in the memory 1415 is:
Since all of them are encrypted data, it is impossible for a third party to reproduce music only with the data in the memory 1415, and it is necessary to provide the memory 1415 in an expensive tamper resistance module. There is an advantage that the manufacturing cost is reduced because there is no such device.

Next, the operation of each session of the data distribution system shown in FIG. 1 will be described in detail with reference to flowcharts.

FIGS. 8 and 9 are first and second flowcharts for explaining a distribution operation (hereinafter, also referred to as a distribution session) that occurs when a content is purchased in the data distribution system shown in FIG.

FIGS. 8 and 9 show an operation in the case where portable telephone user 1 receives distribution of content data, which is music data, from distribution server 30 via portable telephone 100 by using memory card 110. are doing.

First, the mobile phone 10 of the mobile phone user 1
From 0, a distribution request is made by operating the key buttons of the key operation unit 1108 by the mobile phone user 1 (step S100).

In memory card 110, authentication data {KPmc1 // Cmc1} KPma is output from authentication data holding unit 1400 in response to the distribution request (step S102).

The mobile phone 100 has a memory card 110
Authentication data for authentication from KPmc1 // Cmc
In addition to 1 @ KPma, the content ID and the license purchase condition data AC are transmitted to the distribution server 30 (step S104).

In distribution server 30, content ID and authentication data {KPmc1 // Cmc
1｝ KPma, the license purchase condition data AC is received (step S106), and the decryption processing unit 312 decrypts the authentication data output from the memory card 110 with the public authentication key KPma (step S108).

The distribution control unit 315 determines from the decryption processing result of the decryption processing unit 312 whether the processing has been performed normally, that is, the memory card 110 transmits the public encryption key KPmc1 and the certificate Cmc1 from the authorized memory card. In order to authenticate the holding, authentication processing is performed to determine whether or not an authorized organization has received encrypted authentication data for certifying its validity (step S110).
If it is determined that the authentication data is valid, the distribution control unit 315 determines the public encryption key KPmc1 and the certificate Cmc1.
Approve and accept. Then, the next processing (step S1)
Go to 12). If it is not valid authentication data,
Unapproved, public encryption key KPmc1 and certificate Cmc
1 is not received and the process is terminated (step S17).
0).

[0093] As a result of the authentication, if it is recognized that the device is a legitimate device, the distribution control unit 315 then proceeds to the memory card
Ten class certificates Cmc1 are prohibited class list CRL
The CRL database 306 is inquired as to whether or not it is listed in the list. If these class certificates are targets of the prohibited class list, the distribution session is ended here (step S170).

On the other hand, if the class certificate of the memory card 110 is not included in the prohibited class list, the process proceeds to the next processing (step S112).

As a result of the authentication, when it is confirmed that the access is from a mobile phone equipped with a memory card having valid authentication data and the class is out of the prohibited class list, the distribution server 30 generates a session key. The unit 316 generates a session key Ks1 for distribution. The session key Ks1 is the public encryption key K corresponding to the memory card 110 obtained by the decryption processing unit 312.
The encryption is performed by the encryption processing unit 318 using Pmc1 (step S114).

The encrypted session key Ks1 is
It is output as {Ks1} Kmc1 to the outside via the data bus BS1 and the communication device 350 (step S1).
16).

When mobile phone 100 receives the encrypted session key {Ks1} Kmc1 (step S
118), in the memory card 110, the decoding processing unit 1404 converts the received data given to the data bus BS3 via the memory interface 1200 into the holding unit 1
The session key Ks1 is decrypted and extracted by performing decryption processing using the secret decryption key Kmc1 unique to the memory card 110 held in the memory card 402 (step S120).

[0098] The controller 1420
After confirming the reception of the session key Ks1 generated in the step (1), the memory card 110 is instructed to generate the session key Ks2 generated during the distribution operation in the memory card 110.

In a distribution session, the controller 1420 operates the memory 14 in the memory card 110.
As information relating to the state (version) of the prohibited class list recorded in the memory 15, version data CRL_ver of the list is extracted from the memory 1415 and output to the data bus BS 4.

The encryption processing unit 1406 includes a changeover switch 1
A changeover switch 1 is provided by a session key Ks1 provided from the decryption processing unit 1404 via the contact point Pa of the switch 442.
Session key Ks2 and public encryption key KPm given by sequentially switching the contacts of 444 and 1446
1 and version data CRL_ of the prohibited class list
ver is encrypted as one data string, and {Ks2 /
/ KPm1 // CRL_ver @ Ks1 to data bus B
Output to S3 (step S122).

Encrypted data {Ks2 // KPm1 // CRL_ver} Ks1 output to data bus BS3
Is output from the data bus BS3 to the mobile phone 100 via the terminal 1201 and the memory interface 1200, and transmitted from the mobile phone 100 to the distribution server 30 (step S124).

The distribution server 30 sends the encrypted data {Ks2
// KPm1 // CRL_ver @ Ks1 is received,
The decryption processing unit 320 performs decryption processing using the session key Ks1, and receives the session key Ks2 generated by the memory card 110, the public encryption key KPm1 unique to the memory card 110, and the version data CRL_ver of the prohibited class list in the memory card 110. (Step S126).

Version information CRL of prohibited class list
_Ver is the distribution control unit 31 via the data bus BS1.
5, the distribution control unit 315 generates difference data CRL_dat indicating a change between the version of the CRL_ver and the current version of the prohibited class list data in the CRL database 306 according to the received version data CRL_ver ( Step S12
8).

Further, distribution control section 315 determines in step S
According to the content ID and the license purchase condition data AC acquired at 106, a license ID, access restriction information AC1, and reproduction circuit control information AC2 are generated (step S130). Further, a license key Kc for decrypting the encrypted content data is obtained from the information database 304 (step S132).

Referring to FIG. 9, distribution control section 315 generates a license, ie, license key Kc, reproduction circuit control information AC2, license ID, content I
D and the access restriction information AC1
Give to 6. The encryption processing unit 326 includes a decryption processing unit 320
The license is encrypted with the public encryption key KPm1 unique to the memory card 110 obtained by (step S)
136). The encryption processing unit 328 includes an encryption processing unit 326.
And the difference data CRL_da of the prohibited class list supplied by the distribution control unit 315 via the data bus BS1.
In response to t, encryption is performed using the session key Ks2 generated in the memory card 110. The encrypted data output from the encryption processing unit 328 is
It is transmitted to mobile phone 100 via S1 and communication device 350 (step S138).

As described above, the encryption keys generated by the distribution server and the memory card are exchanged, encryption is performed using the encryption keys received by each other, and the encrypted data is transmitted to the other party. In fact, mutual authentication can be performed in the transmission and reception of each encrypted data, and the security of the data distribution system can be improved.

Mobile phone 100 transmits the encrypted data {Kc // AC2 // license ID // content ID // AC1 \ Km1 // CRL_dat \ Ks
2 (step S140), and outputs it to the memory card 110 via the memory interface 1200. In the memory card 110, the memory interface 1
The received data supplied to the data bus BS3 via the data processing unit 200 is decoded by the decoding processing unit 1412. The decryption processing unit 1412 uses the session key Ks2 given from the session key generation unit 1418 to
Is decoded and output to the data bus BS4 (step S142).

At this stage, Km is applied to data bus BS4.
1 and an encryption license {Kc // AC2 // license ID // content ID // AC1} Km1 that can be decrypted with the secret decryption key Km1 held in the holding unit 1421, and CR
L_dat is output. According to the instruction of the controller 1420, the encryption license {Kc // AC2 // license ID // content ID // AC1} Km1
Is recorded in the memory 1415 (step S14).
4). On the other hand, the encrypted license {Kc // AC2 // license ID // content ID // AC1} Km1
Is decrypted by the decryption processing unit 1422 using the secret decryption key Km1, and the memory card 11
Only the license ID, the content ID, and the access restriction information AC1 referred to within 0 are received (step S146).

The controller 1420 transmits the received CRL
Based on _dat, the prohibited class list data CRL in the memory 1415 and its version are updated (step S148). Further, the license ID, the content ID, and the access restriction information AC1 are recorded in the license information holding unit 1440 (step S1).
50).

At the stage where the processing up to step S150 has been normally completed in the memory circuit, a request for distribution of content data is made from the cellular phone 100 to the distribution server 30 (step S152).

Upon receiving the content data distribution request, distribution server 30 transmits encrypted content data {Data} Kc and additional information Da from information database 304.
ta-inf is acquired, and these data are output via the data bus BS1 and the communication device 350 (step S154).

[0112] The portable telephone 100 has a function of {Data} Kc /
/ Data-inf is received, and the encrypted content data {Data} Kc and additional information Data-inf are received (step S156). Encrypted content data {Data} Kc and additional information Data-inf
Are the memory interface 1200 and the terminal 1201
Through the data bus BS3 of the memory card 110. In memory card 110, received encrypted content data {Data} Kc and additional information D
The data “ata-inf” is directly recorded in the memory 1415 (step S158).

Further, a notification of distribution acceptance is transmitted from memory card 110 to distribution server 30 (step S1).
60) When the distribution server 30 receives the distribution acceptance (step S162), the distribution termination processing is executed (step S164) with the storage of the billing data in the billing database 302 (step S164), and the entire processing ends (step S164). Step S1
70).

In this way, the memory card 110 attached to the mobile phone 100 is an authorized device, and at the same time, the public encryption keys KPp1 and KPmc1 that can be encrypted and transmitted together with the class certificate Cmc1 are valid. After confirming that each class certificate Cmc1
Can distribute content data only in response to a distribution request from a memory card that is not listed in a prohibited certificate list, that is, a class certificate list in which encryption by public encryption keys KPp1 and KPmc1 has been broken. Distribution to the memory card and distribution using the decrypted class key can be prohibited.

Next, a process related to music reproduction of content data delivered to memory card 110 in mobile phone 100 will be described with reference to FIG.

The memory card 110 records music data and license information in the medium in the memory 1415. The mobile phone 100 has a memory card 110
, And generates the in-media music list R1 and records it in the memory 1230.

The in-media song list R1 is created by extracting key related information such as song titles from metadata transmitted from the distribution server 30 together with the encrypted content data {Data} Kc.

The in-media music list R1 is shown in FIG.
As shown in FIG. 7, the list includes a property list 500 indicating the characteristics of each piece of music data to be recorded, and a music name / artist name list 501 indicating the music title and artist name of each piece of music data to be recorded.

In the figure, reproduction numbers 001 to 006, “L” and “C” are recorded in the characteristic list 500, and the artist names A to A corresponding to the song names 1 to 11 are recorded in the song title / artist name list 501. F is recorded.

The reproduction number in the characteristic list 500 is a number assigned to reproducible music data.

A song in which “L” is recorded in the property list 500 indicates that only the encrypted content data {Data} Kc exists in the memory card 110 and no license key Kc exists. For example, a mobile phone user 1
This corresponds to the case where the encrypted content data {Data} Kc is copied or downloaded from the user 2 of the personal computer or another mobile phone.

A tune in which “C” is recorded in the property list 500 indicates that the memory card 110 has the license key Kc but does not have the encrypted content data {Data} Kc. For example, by moving the encrypted content data {Data} Kc to another recording medium using a personal computer or the like while the user 1 has the license key and the encrypted content data in the memory card 110, The case where the encrypted content data {Data} Kc is deleted from the memory card 110 corresponds to this. Also, the user 2 of the mobile phone receives the encrypted content data {Data} K from the user 1 of the mobile phone.
c, the encrypted content data {Data} Kc is deleted from the user 1's mobile phone.

The mobile phone 100 includes a controller 110
Based on the control of No. 6, a reproduction music list R2 is generated in the reproduction mode. The playback music list R2 is recorded in the memory 1230. As shown in FIG. 10B, the reproduction music list R2 includes a reproduction number list 510 indicating reproduction numbers and a music name / artist name list 511.

The reproduction music list R2 is created by extracting reproducible music data having content data and license data from among the music data recorded in the in-media music list R1. More specifically, the playback song list R2 is
It is generated based on music data having a reproduction number.

[0125] The reproduction music list R2 is displayed on the display 1110 of the mobile phone 100, for example. The user selects a song to be played from the displayed playback song list R2.

In the first embodiment, the in-media music list R1 is updated based on the restrictions imposed by the license.
Then, the reproduction music list R2 is updated according to the music list R1 in the medium.

For example, the reproduction number 0 shown in FIG.
Regarding the song name 8 / artist D of No. 04, the license has a playback date limit, and when the playback date specified by the license has passed, the playback number 004 is set to the characteristic “LN” as shown in FIG. change. When the number of times of reproduction is limited by the license, even when the number of times of reproduction reaches the limit value by the license, the reproduction number is changed to a symbol (for example, “LC”) indicating that reproduction is not possible due to the license restriction. change.

For example, as shown in FIG. 12A, it is assumed that music is selected from music names 1, 3, 4, 8, 10, and 11 to which reproduction numbers 001 to 006 are assigned in the reproduction music list R2. It is assumed that the reproduction number 004 has a reproduction frequency limit. When the reproduction number 004 is reproduced by the number of times of reproduction, FIG.
As shown in (b), the reproduction number 004 is deleted from the reproduction music list. Then, as shown in FIG. 12C, the reproduction numbers are automatically corrected, and the reproduction numbers 001, 002, 003, 004, and 005 are assigned to the song titles 1, 3, 8, and 11, respectively.

Next, the flow of the content data reproducing operation in mobile phone 100 will be described.

Referring to FIG. 13, it is assumed that a standby state is set as an initial state. When entering the music playback mode (step S200), the controller 1106 sends the data bus B
The authentication data {KPp1 // Crtf1} KPma is read from authentication data holding unit 1202 via S2, and authentication data {KPp1 // Crtf1} KPma is input to memory card 110 via memory interface 1200 (step S201).

The memory card 110 stores the authentication data $ KP
p1 // Crtf1 @ KPma is accepted (step S
202). Then, the decryption processing unit 1 of the memory card 110
408 is the received authentication data {KPp1 // Crtf
1 @ KPma is decrypted with the public authentication key KPma held in the KPma holding unit 1414 (step S20).
3), the controller 1420 performs an authentication process based on the decryption processing result in the decryption processing unit 1408. That is,
An authentication process is performed to determine whether or not the authentication data {KPp1 // Crtf1} KPma is legitimate authentication data (step S204).

If the authentication data cannot be decrypted, controller 1420 outputs an output indicating rejection of the authentication data via data bus BS 3 and terminal 1201 to mobile phone 100.
Is output to the memory interface 1200 (step S230). Then, a display indicating that reproduction is impossible is performed (step S
231), end the music reproduction mode.

If the authentication data can be decrypted, the controller 1420 stores the acquired certificate Crtf1 in the memory 14
It is determined whether or not the data is included in the prohibited class list data read from No. 15 (step S205). In this case, an ID is assigned to the certificate Crtf1, and the controller 1420 determines whether or not the ID of the received certificate Crtf1 exists in the prohibited class list data. If it is determined that certificate Crtf1 is included in the prohibited class list data, controller 1420 outputs an output of rejection of authentication data to memory interface 1200 of mobile phone 100 via data bus BS3 and terminal 1201 (step S230). .

When the authentication data cannot be decrypted with the public authentication key KPma in step S204, and when the certificate Crtf1 received in step S205 is included in the prohibited class list data, an output of rejection of the authentication data is made. . Then, controller 1106 of mobile phone 100 displays on display 1110 that the reproduction is not possible due to the rejection of the authentication data.

At step S205, the certificate Crt
If it is determined that f1 is not included in the prohibited class list data, a reproduction music list R2 is generated and displayed (step S206). When the playback song list R2 is displayed, the user enters a song selection mode (step S20).
7).

When a music piece is selected, referring to FIG. 14, session key generating section 1418 of memory card 110 generates a session key Ks2 for a reproduction session (step S208). Then, the encryption processing unit 1410
Session key K from session key generator 1418
The public encryption key K decrypted by the decryption processing unit 1408
{Ks2} Kp1 encrypted by Pp1 is output to data bus BS3 (step S209). Then, controller 1420 outputs {Ks2} Kp1 to memory interface 1200 via terminal 1201, and controller 1106 of mobile phone 100 acquires {Ks2} Kp1 via memory interface 1200. Then, Kp1 holding section 1204 outputs secret decryption key Kp1 to decryption processing section 1206.

The decryption processing unit 1206 is the Kp1 holding unit 12
{Ks2} Kp1 is decrypted by the secret decryption key Kp1 paired with the public encryption key KPp1 output from the server 04, and the session key Ks2 is output to the encryption processing unit 1208 (step S210). Then, session key generating section 1210 generates a session key Ks3 for a reproduction session, and outputs session key Ks3 to encryption processing section 1208 (step S211). The encryption processing unit 1208 encrypts the session key Ks3 from the session key generation unit 1210 with the session key Ks2 from the decryption processing unit 1206, and {Ks3} K
s2, and the controller 1106 outputs the data bus B
$ K via S2 and the memory interface 1200
s3 @ Ks2 is output to the memory card 110 (step S212).

The decryption processing unit 1412 of the memory card 110
Is connected to terminal #K via terminal 1201 and data bus BS3.
s3 @ Ks2 is input, and the session key generation unit 1418
$ K by the session key Ks2 generated by
By decrypting s3 @ Ks2, a session key Ks3 generated by the mobile phone 100 is obtained (step S21).
3).

In response to receiving session key Ks 3, controller 1420 sets license information holding unit 1440.
The corresponding access restriction information AC1 is checked (step S214).

In step S214, access restriction information AC1, which is information relating to restrictions on memory access, is confirmed. If the reproduction is not possible, the reproduction operation is terminated. If the number of times of reproduction is limited, the data of the access restriction information AC1 is updated to update the number of times of reproduction. Then, the process proceeds to the next step (step S21)
5). When the access restriction information AC1 is updated, the in-media music piece list R1 is also updated on the mobile phone 100 side.

If the number of times of reproduction is not restricted by the access restriction information AC1, step S215
Is skipped, and the process proceeds to the next process without updating the access restriction information AC1 (step S216).

If it is determined in step S214 that the reproduction is possible in the reproduction operation, a license decryption process including the license key Kc of the selected music data is executed. Specifically, the controller 1
In accordance with the instruction of 420, the encrypted license $ Kc // AC2 read from memory 1415 to data bus BS4
// License ID // Content ID // AC1 @ K
m1 is decrypted by the decryption processing unit 1422 using the secret decryption key Km1 unique to the memory card 110, and the license key Kc and the reproduction circuit control information AC2 required for the reproduction process are obtained on the data bus BS4 (step S216).

The obtained license key Kc and reproduction circuit control information AC2 are sent to the encryption processing unit 1406 via the contact Pd of the changeover switch 1444. Encryption processing unit 1
406 encrypts the license key Kc received from the data bus BS4 and the reproduction circuit control information AC2 with the session key Ks3 received from the decryption processing unit 1412 via the contact point Pd of the changeover switch 1442, and ｛Kc // AC
2｝ Ks3 is output to the data bus BS3 (Step S
217).

[0144] The encrypted data output to data bus BS3 is transmitted to mobile phone 100 via memory interface 1200.

In portable telephone 100, encrypted data {Kc // AC2} Ks3 transmitted to data bus BS2 via memory interface 1200 is decrypted by decryption processing section 1212, and license key Kc and reproduction circuit control are performed. Information AC2 is received (step S218). The decryption processing unit 1212 transmits the license key Kc to the decryption processing unit 1214, and outputs the reproduction circuit control information AC2 to the data bus BS2.

The controller 1106 has a data bus BS.
2, the reproduction circuit control information AC2 is received, and the reproduction is confirmed (step S219).

In step S219, if it is determined that reproduction is impossible by the reproduction circuit control information AC2,
The reproduction operation ends.

If it is determined in step S219 that reproduction is possible, controller 1106 requests encrypted content data {Data} Kc from memory card 110 via memory interface 1200. Then, the controller 1420 of the memory card 110 transmits the encrypted content data {Data} from the memory 1415.
Kc is obtained and output to the memory interface 1200 via the data bus BS3 and the terminal 1201 (Step S220).

Controller 1106 of mobile phone 100
Acquires the encrypted content data {Data} Kc via the memory interface 1200, and
Encrypted content data {Data} Kc via S2
To the decryption processing unit 1214. And the decryption processing unit 1
214 decrypts the encrypted content data {Data} Kc with the content key Kc output from the decryption processing unit 1212 to obtain the content data Data (step S221).

Then, the decrypted content data Da
ta is output to the music playback unit 1216, and
16 reproduces the content data and outputs the data from the DA converter 121
8 is a terminal for converting a digital signal into an analog signal.
Output to 20. The switch 1222 is connected to the terminal 12
20 is selected and the music data is output to the headphone 130 via the terminal 1224 and reproduced (step S2).
22).

When the reproduction operation of the selected content data is completed, the updated in-media music list R
1 is generated and displayed again (S223).

When a plurality of songs or the same song is selected a plurality of times by the song selection (step S207), each time the display operation (step S223) is completed, for example, as shown in FIG.
It moves to the process of step S208 of No. 4.

As described above, according to the first embodiment,
The mobile phone can reproduce the content data while sufficiently protecting the copyright. In particular, since the license restriction can be automatically determined, the music selection operation on the user side is simplified.

The in-media music list R1 is transferred to the memory card 110, and the
15 is also stored.

In the first embodiment, the reproduction music list R2 includes information on reproducible music data. However, the present invention is not limited to this. Song list R in media
Similar to 1, there are encrypted content data and a license key, only encrypted content data exists and no license key exists, license key exists but encrypted content data does not exist, and other restrictions related to licenses Information may be included to display these characteristics.

In this case, when music data that cannot be reproduced is selected, the controller 1106 asks the user whether to download data necessary for reproduction or delete the music data without executing reproduction processing. A message prompting is displayed on display 1110. Then, according to the user's selection, the download processing and the deletion are executed.
Thereby, the management of the recording data by the user is simplified.

[Second Embodiment] In the first embodiment, the in-media music list R1 is generated (updated) by the mobile phone 100. On the other hand, in the second embodiment, the in-media music list R1 is generated in the memory card 110.

In this case, the controller 1420 in the memory card 110 generates the in-media music list R1 based on the data stored in the memory card 110. The in-media music list R1 is transferred to the mobile phone 100 in response to a request from the controller 1106 of the mobile phone 100.

Then, in the playback mode, the controller 1106 generates and displays a playback music list R2 based on the music list R1 in the medium.

Even in this case, as in the first embodiment, the portable telephone can reproduce the content data while sufficiently protecting the copyright. In addition, since the license restriction can be automatically determined, the music selection operation on the user side is simplified.

[Third Embodiment] A mobile phone 100 and a memory card 110 according to a third embodiment will be described. Mobile phone 100 and memory card 11
The configuration of 0 is as described in the first embodiment.

[0162] The mobile phone 100 according to the third embodiment.
Has a media management mode for managing the music list in the media. The media management mode for managing the music list in the media will be described with reference to FIG.

The mobile phone 10 is added to the music list R1 in the media.
It is assumed that authentication between the memory card 110 and the mobile phone 100 has already been performed before accessing from 0.

First, it is assumed that the apparatus is in a standby state (step S300). When the mode is specified by the user,
It is determined whether the mode is the media management mode (step S302). If the mode is not the media management mode (for example, the above-described music playback mode or the like), the corresponding processing mode is executed (step S310).

If the mode is the media management mode, the mobile phone 100 obtains data from the memory card 110 (step S304).

[0166] Then, based on the data, the portable telephone 100 displays the in-media music list R1 on the display 11.
10 is displayed (step S306). In the display, the properties “C” (no content data), “L” (no license key), “LC” (restricted by the license and exceeded the limit), content data and license key in the property list 500 are displayed. Are displayed so that the user can recognize the existence of “. Note that a distinction may be made by color.

The display contents are not limited to those described above. Characteristics "C" (a song only with a license), "L" (a song only with a content), "LC" (a song that exceeds the number of times of reproduction),
In addition to “LN” (song exceeding the playback time limit), there may be a display mark of a song with a license restriction.

Then, data editing of the in-media music list R1 is performed (step S308). In the editing process,
It is possible to delete licenses and / or content data and change the order of playback numbers. The progress of the editing and the result are all displayed on the display 1110.

It is also possible to add personal information to each piece of music data. However, the license key and the content data cannot be falsified.

After the editing, the in-media music list R1 is transferred to the memory card 110. As described above, according to the third embodiment, since the data related to the content can be edited on the user side, data management according to the user's intention can be performed.

[Fourth Embodiment] In the third embodiment, the case where the in-media music list R1 is generated and edited by the mobile phone 100 has been described. In contrast, the fourth
In the embodiment, a case will be described in which the in-media music list R1 is generated by the memory card 110 and edited by the mobile phone 100.

In this case, when the mobile phone 100 enters the media management mode, the mobile phone 100 performs a process of reading the in-media music list R1 from the memory card 110 instead of step S304 shown in FIG. Then, the memory card 110
The music list R1 in the media received from step S30
6 is displayed.

Then, in step S308, data editing of the in-media music list R1 is performed. In the editing process, for example, the order of the reproduction numbers can be changed. The progress of the editing and the result are all displayed on the display 1110.

After the editing, the in-media music list R1 is transferred to the memory card 110. As described above, according to the fourth embodiment, since data related to content can be edited on the user side, data management according to the user's intention can be performed.

[Fifth Embodiment] In the first embodiment, the reproduction music list R2 is updated based on the update of the in-media music list R1. On the other hand, in the fifth embodiment, during the music reproduction mode, the reproduction music list R2 is directly updated in accordance with the license restriction.

For this reason, in the fifth embodiment, when the music playback mode is started, the portable telephone manages access-related information in the portable telephone. For example,
In the configuration according to the first embodiment, information regarding access (access restriction information AC1) is transferred to the mobile phone 100 side. After the transfer, the mobile phone manages information related to access in the mobile phone 100. Information regarding access managed by the mobile phone is referred to as information ACK1 regarding the number of times of reproduction.

The encryption / decryption method and the authentication method are not limited to those according to the first embodiment. A mobile phone (for example, mobile phone 100) is used as a playback side, and a memory card (for example, memory card 11) is used as a media side.
0) will be described as a representative example. In the following description, it is assumed that authentication of the mobile phone on the memory card side is valid.

An outline of the processing in the music reproduction mode according to the fifth embodiment will be described with reference to FIG. First, it is in a standby state (step S400). The mode is determined according to the instruction (step S402). If it is determined that the music playback mode is set, the playback music list R2 is generated based on the music list R1 in the medium and displayed on the display 1110 (step S404).

It is determined whether there is a music reproduction request (tune selection) (step S406). If there is no reproduction request, the process proceeds to step S404.

When there is a music reproduction request, it is determined whether or not the number of times of reproduction of the selected music data is limited by the license (step S408). If there is no restriction, the encrypted content data is decrypted in a predetermined format and the music is reproduced (step S422). Then, it is determined whether or not there is a music end request (step S424). If there is an end request, the process proceeds to step S404. If there is no end request, the reproduction state of step S422 is continued.

When a song whose number of times of reproduction is limited by the license is reproduced, it is determined whether or not the number of times of reproduction has reached the limit (step S410). If the number of times of reproduction is not the last, the information ACK1 relating to the number of times of reproduction is updated (step S420). Then, the process proceeds to step S422.

When the number of times of reproduction is the last reproduction,
It moves to the process of reproducing music (step S412). Then, it is determined whether there is a music end request (step S).
414) If there is an end request, the flow proceeds to step S416. If there is no end request, the reproduction state in step S412 is continued.

If there is a music end request after the last number of times of reproduction, the reproduced music data is deleted from the reproduction music list R2 and the reproduction music list R2 is reconstructed (step S41).
6). As a result, the list of reproducible music data and the corresponding reproduction number are corrected.

Each time a song is reproduced, the in-media song list R1 is updated, and a mark indicating that the corresponding song data cannot be reproduced by a license (for example,
“LC”) (step S418).

When the music playback mode ends, the in-media music piece list R1 is transferred to the memory card 110.

As described above, in the fifth embodiment, when the music reproduction mode is entered, the reproduction tune list R2 is automatically updated on the portable terminal side (reproduction side) based on the restriction by the license.

Thus, similarly to the first embodiment, the limitation of the license can be automatically determined, and the music selection operation on the user side is simplified.

In the above description, only the number of times of reproduction has been described. However, the present invention can be applied to any license limited by the license.

The embodiments disclosed this time are to be considered in all respects as illustrative and not restrictive. The scope of the present invention is defined by the terms of the claims, rather than the description of the embodiments, and is intended to include any modifications within the scope and meaning equivalent to the terms of the claims.

[Brief description of the drawings]

FIG. 1 is a schematic diagram conceptually illustrating a data distribution system.

FIG. 2 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG.

FIG. 3 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG. 1;

4 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG. .

FIG. 5 is a schematic block diagram illustrating a configuration of a license server.

FIG. 6 is a block diagram illustrating a configuration of a mobile phone.

FIG. 7 is a block diagram illustrating a configuration of a memory card.

FIG. 8 is a first flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;

FIG. 9 is a second flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;

FIG. 10 is a conceptual diagram showing (a) a music list R1 in a medium and (b) a reproduction music list R2.

11 (a) and (b) show a music list R in a medium.
FIG. 3 is a conceptual diagram for explaining an update status of No. 1;

FIGS. 12 (a), (b), and (c) are conceptual diagrams for explaining an update status of a reproduction music list R2.

FIG. 13 is a first flowchart for describing a reproducing operation in the mobile phone.

FIG. 14 is a second flowchart for describing a reproducing operation in the mobile phone.

FIG. 15 is a flowchart for explaining processing in a media management mode in the mobile phone.

FIG. 16 is a flowchart illustrating a processing operation in a music playback mode according to a fifth embodiment.

[Explanation of symbols]

10 license server, 20 distribution carrier, 30
Distribution server, 100 mobile phone, 110 memory card, 130 headphones, 140 computer, 1
41 hard disk, 142, 1106, 1420
Controller, 143 external interface, 144
License protection module, 145 communication cable, 3
02 billing database, 304 information database,
306 CRL database, 310 data processing unit, 3
12,320,1206,1212,1214,140
4, 1408, 1412, 1422 Decoding processing unit, 31
5 distribution control unit, 316, 1210, 1418 session key generation unit, 318, 326, 328, 1208,
1410 encryption processing unit, 350 communication device, 1102
Antenna, 1104 transmitting / receiving unit, 1108, 1224
Key operation unit, 1110 display, 1112 sound reproduction unit, 1113, 1218 DA converter, 111
4,1201,1220,1224 terminal, 1200
Memory interface, 1222 switch, 1402
Kmc1 holding unit, 1414, 1414B KPma holding unit, 1415 memory, 1416 KPm1 holding unit,
1421 Km1 holding unit, 1440 license information holding unit, 1442, 1444, 1446 changeover switch,
1202, 1400 Authentication data holding unit, 1204 K
p1 holding unit, 1216 music playback unit.

Claims (13)

[Claims] An encrypted content data obtained by encrypting content data and license information relating to the encrypted content data are downloaded and recorded in a data recording device, and the encrypted content data recorded in the data recording device is downloaded. A data reproducing apparatus for reproducing data, comprising: a communication unit for performing external communication; an interface for controlling data transfer; a control unit; and a display unit, wherein the control unit is capable of reproducing at the time of the reproduction. A data reproducing device that displays a content list related to the encrypted content data on the display unit. 2. The encrypted content data to be reproduced is selected from the content list.
A data reproducing apparatus according to claim 1. 3. The control unit according to claim 2, wherein the encrypted content data and the license information, the encrypted content data only, or only the license information exists for each content based on the data recorded in the data recording device. Generate a content list in the media including information indicating that the content is to be performed, at the time of the reproduction, based on the content list in the media,
The data reproducing device according to claim 1, wherein the content list is generated. 4. The data recording device indicates, based on data to be recorded, that for each content, the encrypted content data and the license information, the encrypted content data only, or only the license information is present. The content list in a medium containing information is generated, The control part generates the content list based on the content list in the media at the time of the above-mentioned reproduction.
A data reproducing apparatus according to claim 1. 5. The control unit generates, based on data recorded in the data recording device, an in-media content list including, for each content, information indicating whether or not reproduction is restricted by the license information. 2. The data reproducing apparatus according to claim 1, wherein at the time of the reproduction, the content list is generated based on the in-media content list. 6. The data recording apparatus generates, based on data to be recorded, an in-media content list including information indicating whether or not reproduction is restricted by the license information, for each content, Generating the content list based on the content list in the medium at the time of the reproduction.
Data playback device described in 7. The control unit displays information on a content in which both the encrypted content data and the license information are present.
The data reproducing device according to claim 1. 8. The control unit according to claim 1, wherein the control unit deletes, from the content list, information on the encrypted content data that has become unreproducible based on the license information during the reproduction. 2. The data reproducing apparatus according to claim 1. 9. In the media management mode, the control unit displays the in-media content list on the display unit, and edits changeable data in the in-media content list displayed on the display unit. The data reproducing apparatus according to claim 3, further comprising a circuit. 10. Downloading encrypted content data obtained by encrypting content data and license information relating to the encrypted content data, recording the encrypted content data in a data recording device, and recording the encrypted content data recorded in the data recording device. A method for managing a license in a data reproducing apparatus that reproduces the data, comprising: a step of determining a mode; and
A license management method, comprising: a reproduction step including a step of generating a content list regarding the reproducible encrypted content data and a display step of displaying the content list. 11. The method according to claim 10, wherein the reproducing step includes a step of deleting, from the content list, the encrypted content data that has become unreproducible based on the license information during the reproduction. License management method. 12. The medium according to claim 10, further comprising a step of generating a content list in the medium based on data recorded in the data recording device, wherein the content list is generated based on the content list in the medium. License management method. 13. The method according to claim 12, further comprising a step of editing changeable data in the in-media content list when it is determined that the mode is the media management mode in the step of determining the mode. License management method.