JP2002314531A - Electronic data recording and reproducing device and method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To prevent electronic data from leaking, being fraudulently altered and being unauthorizedly copied at a high level. SOLUTION: When a biological information authentication section 1 confirms a fingerprint of a user itself, the biological information authentication section 1 outputs an authentication result 1A denoting coincidence and a control section 2 outputs a recording and reproducing permission 2A to a recording and reproducing section 3. Thus, the recording and reproducing section 3 uses a recording section 31 to record external input information 5A or uses a reproduction section 32 to reproduce external output information 6A. When the fingerprint of the user itself cannot be confirmed, the biological information authentication section 1 outputs an authentication result 1A denoting dissidence and the control section 2 outputs no recording and reproducing permission 2A. Thus, the recording and reproducing by the recording and reproducing section 3 is inhibited.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to an electronic data recording / reproducing apparatus and method, and more particularly to an electronic data recording / reproducing apparatus and method having a function of preventing leakage, falsification, and unauthorized copying of electronic data.

[0002]

2. Description of the Related Art In recent years, with the advancement of the information-oriented society, the amount of computerized information (data and contents) has increased dramatically. Much of this information requires the protection of personal privacy, the confidentiality of the company, and the protection of copyright, and its handling is very important.
Therefore, it is necessary to provide a method of protecting such electronic data against leakage, tampering, unauthorized copying, and the like. As a defense method, an authentication system using a password or a password is mainly used. This method can achieve a certain effect if a strictly managed system is constructed via a network.

A local electronic data recording / reproducing apparatus used personally by a user without going through a network, for example, a VTR, CDR-R, and CDR capable of recording and reproducing music and video.
-RW, DVD-RAM, etc. can easily copy electronic data at present. In addition, it is possible to view privately shot video, recorded audio, and the like without permission, and to falsify digital information. in this way,
Conventional local systems have a problem that methods for protecting against information leakage, falsification, unauthorized copying, and the like are insufficient.

On the other hand, personal authentication is performed using biometric information, for example, a fingerprint, and the operation of the recording / reproducing apparatus is permitted according to the success of the authentication. Techniques for protecting copying and the like have been proposed (for example, Japanese Patent Laid-Open No. 10-21119).
No. 1).

[0005]

However, in such a conventional technique, a biometric information detecting circuit for detecting biometric information of a user, a CPU for performing authentication, and a memory for storing personal authentication information are provided in the apparatus. They are installed separately and exchange various data with each other via a bus line. Therefore, by reading or rewriting the information for personal authentication via the bus line, there is a problem that the personal authentication can be illegally successful and the electronic data may be leaked, falsified, illegally copied, etc. there were.

[0006] In addition, unauthorized copying such as dubbing is prevented by comparing information used for personal authentication. However, since the information used for personal authentication goes out of the apparatus, the information is read or rewritten. By doing so, there is a problem that there is a risk that the personal authentication function can be successfully performed, and information leakage, falsification, illegal copying, or other unauthorized acts can be performed. An object of the present invention is to solve such a problem, and an object of the present invention is to provide an electronic data recording / reproducing apparatus and a method capable of preventing illegal acts such as leakage, tampering, and illegal copying of electronic data at a high level. .

[0007]

In order to achieve such an object, an electronic data recording / reproducing apparatus according to the present invention comprises:
In an electronic data recording / reproducing apparatus for recording / reproducing electronic data based on authentication of a user, biometric information obtained by comparing biometric information obtained from a user with collation data registered in advance and outputting an authentication result for the user himself / herself An authentication unit, a control unit that outputs a recording / reproduction permission only when the authentication result from the biometric information authentication unit indicates that the authentication is successful, and a recording / reproduction that performs recording / reproduction of electronic data based on the recording / reproduction permission from the control unit And a reproducing unit. As a biometric information authentication unit, a sensor that obtains biometric information from a user, a storage circuit that previously stores collation data for collating biometric information of the user himself, and a biometric information acquired by the sensor and registered in the storage circuit. A verification circuit for comparing and verifying the verification data with the verification data, and outputting the authentication success / failure of the user as an authentication result, wherein the storage circuit, the sensor and the verification circuit are integrally formed on the same semiconductor substrate. It is.

When recording electronic data, the first electronic signature registered in advance is output to the recording / reproducing unit only when the authentication result from the biometric information recognizing unit indicates that the authentication has succeeded, and the collation success is indicated. An electronic signature authentication / issuing unit that outputs the authentication / electronic signature verification result to the control unit is further provided, and the control unit determines that the authentication / electronic signature verification result from the electronic signature authentication / issuing unit succeeds in the authentication instead of the authentication result. The recording / reproducing permission is output only when the recording / reproducing permission is indicated, and when the recording / reproducing section records the electronic data, the electronic signature to be recorded is firstly transmitted from the electronic signature authentication / issuing section in response to the recording / reproducing permission from the control section. An electronic signature may be added and the electronic data may be recorded.

When reproducing the electronic data, only when the validity of the second digital signature added to the reproduced electronic data is confirmed and the authentication result from the biometric information recognition unit indicates that the authentication is successful, An electronic signature authentication / issuing unit that outputs an authentication / electronic signature verification result indicating authentication success to the control unit is further provided. The control unit replaces the authentication result with the authentication / electronic signature verification result from the electronic signature authentication / issuing unit. Outputs the recording / reproducing permission only when indicates that the authentication has succeeded, and when the recording / reproducing unit reproduces the electronic data, outputs the second digital signature added to the electronic data to the digital signature authentication / issuing unit. You may do so.

Further, when the electronic data is recorded by the electronic signature authentication / issuing unit, the validity of the third electronic signature input from outside the electronic data recording / reproducing device is confirmed, and the electronic signature is issued by the biometric information recognition unit. The first electronic signature registered in advance is output to the recording / reproducing unit only when the authentication result of the user indicates successful authentication of the user himself, and the authentication / electronic signature verification result indicating the successful authentication is output to the control unit. , In the recording and playback section,
When recording the electronic data, a first electronic signature from the electronic signature authentication / issuing unit is added to the electronic data input from outside the electronic data recording / reproducing apparatus in accordance with the recording / reproducing permission from the control unit. The electronic data may be recorded.

Further, the recording / reproducing unit reproduces the electronic data in response to the recording / reproducing permission from the control unit, outputs the data to the outside of the electronic data recording / reproducing apparatus, and outputs the second data added to the electronic data. The electronic signature may be output to the outside of the electronic data recording / reproducing device.

An electronic data recording / reproducing method according to the present invention is an electronic data recording / reproducing method for recording / reproducing electronic data with an electronic data recording / reproducing apparatus based on the authentication of a user. The provided biometric information authentication unit compares and compares biometric information obtained from the user with pre-registered collation data, outputs an authentication result for the user himself / herself, and controls the electronic data recording / reproducing device. The recording / reproducing permission is output only when the authentication result from the biometric information authenticating section indicates that the authentication is successful, and the recording / reproducing section provided in the electronic data recording / reproducing apparatus performs electronic control based on the recording / reproducing permission from the control section. It is assumed that data is recorded / reproduced, and a biometric information authentication unit collates a sensor that obtains biometric information from a user with biometric information of the user. A matching circuit for storing matching data in advance and a matching circuit for comparing the biometric information acquired by the sensor with matching data registered in the storing circuit, and outputting the authentication success / failure of the user as an authentication result. And
In this case, the components integrally formed on the same semiconductor substrate are used.

At this time, in the electronic signature authentication / issuing unit provided in the electronic data recording / reproducing device, when recording the electronic data, the electronic signature is registered in advance only when the authentication result from the biometric information recognition unit indicates that the authentication is successful. The first electronic signature is output to the recording / reproducing unit, and the authentication /
The electronic signature verification result is output to the control unit, and the control unit outputs the recording / reproduction permission only when the authentication / electronic signature verification result from the electronic signature authentication / issuing unit indicates authentication success instead of the authentication result. When recording the electronic data, the reproducing unit adds the first electronic signature from the electronic signature authentication / issuing unit to the electronic data to be recorded according to the recording / reproducing permission from the control unit, and records the electronic data. You may do so.

In the electronic signature authentication / issuing unit provided in the electronic data recording / reproducing apparatus, when reproducing the electronic data, the validity of the second electronic signature added to the reproduced electronic data is confirmed. Only when the authentication is successful and the authentication result from the biometric information recognition unit indicates authentication success, the authentication / electronic signature verification result indicating authentication success is output to the control unit, and the control unit replaces the authentication result with the electronic signature authentication / authentication. Only when the result of the authentication / electronic signature collation from the issuing unit indicates that the authentication is successful, the recording / reproducing permission is output. When reproducing the electronic data, the recording / reproducing unit outputs the second electronic signature added to the electronic data. May be output to the electronic signature authentication / issuing unit.

Further, the electronic signature authentication / issuing unit confirms the validity of the third electronic signature input from outside the electronic data recording / reproducing apparatus when recording the electronic data,
Only when the authentication result from the biometric information recognition unit indicates that the user is successfully authenticated, the first electronic signature registered in advance is output to the recording / reproducing unit, and the authentication / electronic signature verification result indicating the authentication success Is output to the control unit, and when recording / reproducing the electronic data, the recording / reproducing unit authenticates / issues an electronic signature to the electronic data input from outside the electronic data recording / reproducing apparatus in response to the recording / reproducing permission from the control unit. The electronic data may be recorded by adding a first electronic signature from a copy unit.

Further, the recording / reproducing unit reproduces the electronic data in response to the recording / reproducing permission from the control unit, outputs the electronic data to the outside of the electronic data recording / reproducing apparatus, and adds the second data added to the electronic data. May be output to the outside of the electronic data recording / reproducing apparatus.

[0017]

Next, embodiments of the present invention will be described with reference to the drawings. FIG. 1 is a block diagram showing an electronic data recording / reproducing apparatus according to a first embodiment of the present invention. The electronic data recording / reproducing apparatus includes a biometric information authentication unit 1, a control unit 2, and a recording / reproducing unit 3. In the following, a case where a fingerprint is used as biometric information will be described as an example.
It is also possible to use an iris, a handwriting, a palm shape (finger joint length), a vein pattern, a face arrangement pattern, and the like.

The biometric information authentication section 1 compares and verifies the biometric information of the user obtained from the user with collation data registered in advance, and outputs an authentication result of the user. FIG. 2 shows a block diagram of the biometric information authentication unit 1.
The biometric information authentication unit 1 includes a sensor 11 that reads a fingerprint (biometric information) and outputs it as sensing data 11A, and collation data 12 generated in advance from fingerprint data of the user himself / herself.
A, the storage data 12A and the sensing data 11A from the sensor 11 are compared and collated with the collation data 12A stored in the storage circuit 12, and the authentication success / failure of the user himself / herself is determined according to the degree of matching / mismatching. A matching circuit 13 that outputs an authentication result 1A indicating success is provided.

The sensor 1 constituting the biometric information authentication unit 1
1, the memory circuit 12 and the matching circuit 13 are integrally formed on the same semiconductor substrate. By using a technology for forming each of these circuits as a semiconductor device of a one-chip LSI (for example, see Japanese Patent Application Laid-Open No. 2000-242771), it is also possible to realize a very small biometric information authentication unit 1. . Note that the matching data used for authentication in the biometric information authentication unit 1 is generated from fingerprint data of the user himself / herself by a predetermined registration operation, and is registered in the storage circuit 12.

The control unit 2 outputs a recording / reproduction permission 2A when the authentication result 1A from the biometric information authentication unit 1 indicates successful verification with the user, and does not output it when the authentication result 1A indicates unsuccessful verification. The recording and reproducing unit 3 includes a recording unit 31 and a reproducing unit 32. When the recording / reproduction permission 2A is output from the control unit 2, the recording unit 31 transmits the electronic data input from outside the electronic data recording / reproducing apparatus, that is, the external input information 5A, to a VTR tape, CD, DVD, memory, or the like. On a recording medium (not shown).

When the recording / reproducing permission 2A is output from the control unit 2, the reproducing unit 32 outputs the electronic data recorded on the recording medium in advance as external output information 6A to the outside of the electronic data recording / reproducing apparatus. . Therefore, when the fingerprint of the user is confirmed by the sensor 11 of the biometric information authenticating unit 1, the biometric information authenticating unit 1 outputs an authentication result 1A indicating that the authentication is successful, and the control unit 2 sets the recording / reproduction permission 2
A is output to the recording / reproducing unit 3.

Thus, in the recording / reproducing section 3, the recording section 3
1 for recording or reproducing the external input information 5A
Of the external output information 6A is performed. If the fingerprint of the user is not confirmed, the biometric information authentication unit 1 outputs an authentication result 1A indicating that authentication has failed.
Accordingly, the recording / reproduction permission 2A is not output from the control unit 2, and the recording / reproduction operation in the recording unit 31 and the reproduction unit 32 of the recording / reproduction unit 3 is prohibited.

As described above, VTR, CDR-R, CDR
One chip L for recording / reproducing equipment such as RW and DVD-RAM
By providing the biometric information authentication unit 1 and the control unit 2 made of SI, only the authenticated user can record / reproduce electronic data. As a result, it is possible to prevent, at a high level, illegal acts such as leakage, tampering, and illegal copying of electronic data by others.

Since this one-chip LSI only holds information necessary for authentication inside the LSI and outputs only the authentication result outside the LSI, it is possible to successfully perform authentication incorrectly as in the conventional case. No, you get a high level of defense. Further, since the number of additional components is extremely small, a low-cost and high-security device can be realized.

Next, a second embodiment according to the present invention will be described with reference to FIG. FIG. 3 is a block diagram illustrating an electronic data recording / reproducing apparatus according to the second embodiment. The electronic data recording / reproducing apparatus of FIG. 3 includes, in addition to the components of the electronic data recording / reproducing apparatus according to the above-described first embodiment (see FIG. 1), a configuration in which the biometric information authentication unit 1 and the control unit 2 In addition, an electronic signature authentication / issuing unit 4 is provided, and other configurations are the same as those of the electronic data recording / reproducing apparatus according to the above-described first embodiment.

The digital signature authentication / issuing unit 4 of the electronic data recording / reproducing apparatus according to the present embodiment checks the validity of the user's own digital signature (first digital signature) as signature management, Has the function of issuing an electronic signature.

First, a case where electronic data is recorded by the recording section 31 of the recording / reproducing section 3 will be described. The biometric information authentication unit 1 authenticates the user himself using the fingerprint obtained from the user, and outputs the authentication result to the electronic signature authentication / issue unit 4. When reproducing the electronic data, the electronic signature authentication / issuing unit 4 records the user's own electronic signature 4A only when the authentication result 1A from the biometric information authentication unit 1 indicates that the authentication is successful. And the authentication / electronic signature collation result 4B indicating successful authentication is output to the control unit 2.

Based on the authentication / digital signature collation result 4B indicating the successful authentication, the control section 2 outputs a recording / reproduction permission 2A to the recording / reproduction section 3, and the recording / reproduction section 3 records the recording / reproduction permission.
Of the external input information 5A is recorded. At this time,
The external input information 5A to be recorded is added with the electronic signature 4A of the user passed from the electronic signature authentication / issuing unit 4 and recorded. If the authentication result 1A indicates that the authentication is unsuccessful, the authentication / electronic signature verification result 4B indicating that is output, and the control unit 2 does not output the recording / reproduction permission 2A. Thus, the recording operation in the recording / reproducing unit 3 is prohibited.

Next, a case where electronic data is recorded by the reproducing section 32 of the recording / reproducing section 3 will be described. The biometric information authentication unit 1 authenticates the user himself or herself based on the fingerprint obtained from the user, and outputs the authentication result to the electronic signature authentication / issue unit 4. In addition, the reproducing section 32 of the recording / reproducing section 3 reads the electronic signature (second electronic signature) added to the electronic data to be reproduced, and outputs it to the digital signature authentication / issuing section 4 as the digital signature 3A. When the electronic data is reproduced, the electronic signature authentication / issuing unit 4 confirms that the authentication result 1A from the biometric information authentication unit 1 indicates a successful verification, and that the electronic signature 3A belongs to the user himself, that is, the validity is confirmed. Only when the verification is successful, the authentication / digital signature verification result 4B indicating the verification success is output.

Based on the authentication / electronic signature verification result 4B indicating the successful verification, the control unit 2 outputs a recording / reproduction permission 2A to the recording / reproduction unit 3, and the recording / reproduction unit 3 outputs the external output information 6A from the reproduction unit 32. Playback is performed. If the authentication result 1A indicates that the authentication is unsuccessful, the authentication
Since the electronic signature verification result 4B is output, the control unit 2 does not output the recording / reproduction permission 2A. Thereby, the reproducing operation in the recording / reproducing section 3 is prohibited.

As described above, the electronic signature authenticating / issuing unit 4 is provided to confirm the validity of the electronic signature recorded in the electronic data, and the user using the fingerprint (biological information) in the biometric information authenticating unit 1. Only when both the authentication of the person and the validity of the electronic signature are obtained, the recording / reproduction of the electronic data is permitted. Therefore, compared to the above-described first embodiment, a more advanced At the level, it is possible to prevent information leakage, falsification, illegal copying and other illegal acts.

Therefore, the electronic data recorded by the electronic data recording / reproducing apparatus according to the present embodiment is added with the electronic signature of the recorded person. For this reason, even if an unauthorized person obtains electronic data with an electronic signature added by a user other than the user and attempts to reproduce the electronic data on an electronic data recording / reproducing device, the validity of the electronic signature recorded on the electronic data is invalid. Cannot be reproduced because it cannot be obtained.

The digital signature used in the present embodiment is realized by applying a public key encryption technique. In this technique, a public key and a secret key are generated in pairs based on seed information such as random numbers. In this case, a message encrypted on one side of the paired key cannot be decrypted not only by the other key, but also by the key used for the encryption itself. Can not.

For example, Y who wants to send a message to X transmits the message after encrypting it with the public key of X. The received user X can decrypt with the private key of X stored only by himself.
Therefore, even if the message is illegally intercepted by a third party on the way, since the message is publicly encrypted, the content is not confirmed by the third party. Also, since the public key of X used for encryption cannot be decrypted, there is no fear that X will be misused even if he distributes his own public key.

Conversely, if Y is able to decrypt the encrypted message of X with the public key of X, it turns out that it has been encrypted with the private key of X. In addition, since only X stores the private key of X, it is possible to confirm that the message decrypted with the public key of X is the message sent by X, and realize the same function as a signature or a seal. Although it is necessary to technically detect the non-tampering property, a technique called a hash function may be used together for such a purpose. In this way, an electronic signature can be realized.

In the method of recording an electronic signature on electronic data, an area for exclusive use of an electronic signature may be provided on a recording medium and recorded in the area for exclusive use of an electronic signature. Also, I
Like a digital video tape with C, a recording component for an electronic signature may be added to a recording medium, and an electronic signature may be obtained from the recording component. The digital signature is recorded using a known digital watermarking technique. It may be embedded in electronic data.

Therefore, the electronic signature authentication / issuing unit 4 incorporated in the recording / reproducing apparatus of the present invention includes at least the secret key of the user used for the electronic signature (first electronic signature) 4A at the time of recording the electronic data, The function described above can be realized if the user has the public key of the user himself / herself, which is paired with the secret key, used to confirm the validity of the electronic signature (second electronic signature) 3A at the time of reproducing the electronic data. The case where the access level to the electronic data is controlled using the electronic signature of the user other than the user will be described later.

Next, a third embodiment of the present invention will be described with reference to FIG. FIG. 3 is a block diagram showing an electronic data recording / reproducing apparatus according to the third embodiment. The electronic data recording / reproducing apparatus shown in FIG.
Among the components of the electronic data recording / reproducing apparatus according to the embodiment (see FIG. 3), the electronic signature authentication / issuing unit 4 has a function of taking in an electronic signature from outside the apparatus as an external input 5B. . The reproducing unit 32 of the recording / reproducing unit 3
The electronic signature 3A read in step (1) is output as an external output 6B. The other configuration is the same as that of the electronic data recording / reproducing apparatus according to the second embodiment.

When this electronic data recording / reproducing apparatus is used alone, it performs exactly the same operation as the above-described second embodiment, and the same operation and effect can be obtained. In the present embodiment, such electronic data recording / reproducing devices are connected to each other, and when the authentication of the user and the validity of the electronic signature are confirmed, the electronic data can be exchanged between the two devices. Things.

In this embodiment, the external output information (electronic data) 6A and the external output (electronic signature) 6B of one of the two electronic data recording / reproducing devices for reproducing the electronic data record the electronic data. Input information (electronic data) 5A and external input (electronic signature) of the other device
Passed as 5B. Also, it is assumed that both electronic data recording / reproducing apparatuses have the same secret key as information for confirming the validity of the electronic signature exchanged between the two apparatuses.

When electronic data reproduced by one electronic data recording / reproducing device is recorded by the other electronic data recording / reproducing device, that is, when electronic data is copied by using two electronic recording / reproducing devices, first, transmission is performed. The authentication of the user is performed by the biometric information authentication unit 1 of the electronic data recording / reproducing apparatus on the side, and the authentication result 1A is transmitted to the electronic signature authentication / issue unit 4.
Output to Further, in order to reproduce the electronic data to be transferred, on the transmitting side, the electronic signature (second electronic signature) 3A recorded in advance on the electronic data is read by the reproducing unit 32 and output to the electronic signature authentication / issuing unit 4. Is done.

In the electronic data recording / reproducing apparatus on the transmitting side, the electronic signature authenticating / issuing unit 4 indicates that the authentication result 1A from the biometric information authenticating unit 1 indicates that the authentication is successful, and the reproducing unit 3
If the validity of the electronic signature 3A from the user 2 is confirmed, the authentication / electronic signature verification result 4B indicating the successful authentication of the user himself / herself
Is output. The control unit 2 outputs a recording / reproduction permission 2A to the recording / reproduction unit 3 based on the authentication / electronic signature collation result 4B indicating the successful authentication.

In response, the reproducing section 32 of the recording / reproducing section 3 reproduces the electronic data, and outputs the external output information 6A to the electronic data recording / reproducing apparatus on the receiving side. Further, the electronic signature 3A read by the reproducing unit 32 is output as an external output 6B to the electronic data recording / reproducing apparatus on the receiving side.

On the other hand, the electronic data recording / reproducing apparatus on the receiving side receives the electronic data from the transmitting side as the external input information 5A and also receives the electronic signature from the transmitting side as the external input (third electronic signature) 5B. Receive. Further, in the electronic data recording / reproducing apparatus on the receiving side, the authentication of the user is performed by the biometric information authentication unit 1, and the authentication result 1A is obtained.
Is output to the electronic signature authentication / issuing unit 4.

The electronic signature authentication / issuing unit 4 checks the validity of the electronic signature from the transmitting side using a common secret key registered in advance. And the biometric information authentication unit 1
The authentication / electronic signature verification result 4B indicating the authentication success is output only when the authentication result 1A from the user indicates the authentication success of the user himself and the validity of the electronic signature from the transmission side is confirmed.

The recording / reproduction permission 2A is output from the control section 2 to the recording / reproduction section 3 based on the authentication / electronic signature collation result 4B indicating the successful authentication from the electronic signature authentication / issuing section 4. Then, in the recording / reproducing unit 3, the recording unit 31 records the external input information 5A, that is, the electronic data from the transmission side.

Accordingly, if the authentication of the principal user is unsuccessful on one of the electronic data recording / reproducing apparatuses on the receiving side and the transmitting side, copying of the electronic data is prohibited. Copying of electronic data is also prohibited when the validity of the electronic signature cannot be confirmed for the electronic data to be reproduced on the transmitting side, and when the validity of the electronic signature from the transmitting side cannot be confirmed on the receiving side.

As described above, according to the present embodiment, when electronic data is copied by two electronic data recording / reproducing apparatuses, the transmission-side electronic data recording / reproducing apparatus uses the biometric information to authenticate the user himself / herself and to transmit the electronic data to be transferred. After confirming the validity of the electronic signature recorded in the electronic device, the electronic data and the electronic signature are transmitted to the electronic data recording / reproducing apparatus on the receiving side, and the electronic data recording / reproducing apparatus on the receiving side transmits the electronic data and the electronic signature from the transmitting side. The electronic data from the transmitting side is recorded after confirming the validity of the electronic signature and the authentication of the user himself / herself based on the biometric information. As a result, even when electronic data is transferred to a different electronic data recording / reproducing apparatus and copied, it is possible to prevent information leakage, falsification, illegal copying, and other illegal acts at an extremely high level.

When confirming the validity of the electronic signature transmitted from the transmitting side to the receiving side, the receiving side electronic data recording / reproducing apparatus needs a private key for verifying the public key. As described above, the private key is generated by the electronic signature authentication / issuing unit 4 as a pair with the public key based on seed information such as a random number. In the key generation, usually, a key generation algorithm for generating a secret key / public key pair uniquely from one kind of information is used, and the electronic signature authentication / issuing units 4 of both electronic data recording / reproducing apparatuses are used. In, the same secret key / public key pair can be generated from the same seed information.

Therefore, by inputting information which only the user himself can know, for example, a personal identification number, into the electronic signature authentication / issuing unit 4 as seed information, the same secret key / public key pair can be generated in both devices. It is difficult for others to generate the same private / public key pair. At this time, the secret key
When a public key pair is generated, a private key / public key pair may be generated only when authentication of the user himself / herself using biometric information is obtained. As a result, even if seed information is leaked, the secret key of the user himself / herself
The public key cannot be generated illegally.

In the above description, a case has been described in which the same signature key / public key pair is generated by the digital signature authentication / issuing unit 4 of each electronic data recording / reproducing apparatus. However, the present invention is not limited to this. . For example, the secret key generated by the electronic signature authentication / issuing unit 4 of one electronic data recording / reproducing device may be transferred to the other electronic data recording / reproducing device as needed.

For example, when transferring the secret key generated by the electronic signature authentication / issuing unit 4 of the electronic data recording / reproducing apparatus on the transmitting side to the receiving side, it is necessary that the biometric information authenticating unit 1 authenticates the user himself / herself. After confirming the above, the data may be transferred to the electronic data recording / reproducing apparatus on the receiving side and stored in the electronic signature authentication / issuing unit 4. Further, the private key from the transmitting side is stored in the electronic signature authenticating / issuing section 4 only when the user is authenticated by the biometric information authenticating section 1 of the electronic data recording / reproducing apparatus on the receiving side at the time of storage. You may.

In the above description, the electronic signature authentication / issue unit 4
The above describes the case where only the user's own digital signature, that is, the private key / public key pair, is handled by the user.However, other than the user's own digital signature, a digital signature having a different access level to the electronic data such as a recording operation and a reproducing operation is used. It may be provided. FIG. 5 is an explanatory diagram showing access level control using a plurality of digital signatures. Here, as an electronic signature,
A public signature A and a public signature B are provided in addition to the user's own signature.

First, the case of a personal signature will be described.
According to the principal signature, as described above, the reproduction and recording of the electronic data are permitted only by the electronic data recording / reproducing device having the private key corresponding to the public key to be disclosed together with the electronic data, that is, the principal electronic data recording / reproducing device Is done. Therefore, in another person's electronic data recording / reproducing apparatus having no secret key, reproduction and recording of the electronic data are prohibited.

On the other hand, if it is desired that the electronic data be widely disclosed to general users and freely recorded, the public signature B
Is used. The private key of the public signature B is stored in advance in the electronic signature authentication / issuing unit 4 of the electronic data recording / reproducing apparatus, or is disclosed in a form that can be obtained by all users. 4 can be set.

Then, the electronic signature authentication / issuing unit 4 checks the public signature B input together with the electronic data with the corresponding private key, and when the validity of the public signature B is obtained,
Based on the access level preset in the public signature B, recording and reproduction of the electronic data are permitted / prohibited. In the example of FIG. 5, since the access level of “reproducible / recordable” is set for the public signature B, all users can freely reproduce / record the electronic data.

Similarly, the electronic signature authentication / issuing unit 4 checks the public key of the public signature A, which has been input together with the electronic data, with the corresponding private key, and if the validity of the public signature A is obtained, Respectively permits / prohibits recording and reproduction of the electronic data based on the access level preset in the public signature A. In the example of FIG. 5, since the access level of “reproducible / non-recordable” is set for the public signature A, all users can freely reproduce the electronic data, but recording is prohibited. Become.

As described above, by setting different access levels for each electronic signature in advance, the electronic data can be protected according to the purpose of providing, publishing, or distributing the electronic data. As for the access level, the same access level may be applied to the entire electronic data as described above, or a different access level may be applied to only a part of the electronic data. For example, by making a part of the electronic data, for example, only the beginning part reproducible as a reference (or a privilege or an added value), the contents of the electronic data can be conveyed to general users in an easy-to-understand manner. It becomes useful in selling electronic data such as.

Next, a fourth embodiment of the present invention will be described with reference to FIG. FIG. 6 is a block diagram showing an electronic data recording / reproducing apparatus according to the fourth embodiment. The electronic data recording / reproducing apparatus according to the fourth embodiment shown in FIG. 6 includes the recording / reproducing of the electronic data recording / reproducing apparatus according to the third embodiment (see FIG. 4) described above. The electronic signature 3A read by the reproducing unit 32 of the unit 3 is added to the external output information and output as external output information + electronic signature 6C.

Also, external input information to which an electronic signature is added is input from the same terminal as external input information + electronic signature,
The external input information 5C is passed to the recording unit 31, and the digital signature 5D is passed to the digital signature authentication / issuing unit 4. In other respects, the configuration is the same as that of the electronic data recording / reproducing apparatus according to the above-described second embodiment.

As described above, since the external output information and the electronic signature are output collectively and the external input information and the electronic signature are input collectively, the electronic data and the electronic signature can be handled as a pair. Security against fraud can be increased, and the number of terminals required for connection can be reduced.

Next, referring to FIG.
A specific example of the configuration of the sensor 11 will be described. FIG. 7 is a diagram showing a schematic cross section of the sensor 11 constituting the biometric information authentication unit 1. The sensor 11 is, for example, 80 μm thick on an interlayer insulating film 314 formed on a lower insulating film 312 on a semiconductor substrate 311 made of silicon, for example.
A plurality of corner sensor electrodes 315 and a grid-like ground electrode 3
16 and a plurality of sensor electrodes 315 and ground electrodes 3
16 are arranged on the same plane defined by the surface of the interlayer insulating film 314.

The sensor electrode 315 is covered with a passivation film 317 formed on the interlayer insulating film 314 and has a thickness of 150 μm.
A plurality of them are provided at m intervals, are made of Au, and have a thickness of about 1 μm. Since the thickness of the passivation film 317 was about 3 μm,
On top of the passivation film 317, about 2 (= 3-
1) It exists in μm. This passivation film 317
Is made of an insulator such as polyimide having a relative dielectric constant of about 4.0.

A wiring 313 connected to the sensor electrode 315 via a through hole is formed on the lower insulating film 312, while a sensor electrode 3 is formed on the semiconductor substrate 311.
A capacitance detection circuit 318 for detecting the capacitance formed in the reference numeral 15 is formed. This capacitance detection circuit 318 is connected to the sensor electrode 315 by the wiring 313 described above.
The capacitance detection circuit 318 is provided for each sensor electrode 315, and detects a capacitance formed between the sensor electrode 315 and a part of a recognition target (finger).

The output side of each capacitance detection circuit 318 is connected to the matching circuit 13, and the fingerprint data obtained by converting the capacitance formed on each sensor electrode 315 into light and shade is output to the matching circuit 13. Each of the capacitance detection circuit 318, the matching circuit 13 and the storage circuit 12 is, for example, a semiconductor substrate 3 under the sensor electrode 315.
11 is formed. This makes it possible to integrate the biometric information authentication unit 1 into one chip. As another example of such a one-chip implementation, there is one disclosed in, for example, JP-A-2000-242771.

FIG. 8 shows the capacitance detection circuit 318 shown in FIG.
FIG. 2 is a circuit diagram showing a specific configuration of FIG. Cf is a capacitance formed between the sensor electrode 315 and the finger skin 331 shown in FIG. Sensor electrode 31 forming capacitance Cf
5 is connected to the drain terminal of the NchMOS transistor Q3a, and the source terminal of the transistor Q3a is connected to the input side of the current source 332A of the current I. Also, a node N between the sensor electrode 315 and the transistor Q3a
1a includes an Nch MOS transistor (first element) Q2
The source terminal of a is connected. This transistor Q
The drain terminal 2a, the drain terminal of the PchMOS transistor (first switch means) Q1a, and the gate terminal of the NchMOS transistor Q4a whose power supply voltage VDD is applied to the drain terminal and whose source terminal is connected to the ground via the resistor Ra. Have been. The inverter gate 333A is connected to the source terminal of the transistor Q4a.

Signals PRE (bar) and RE are applied to the gate terminals of the transistors Q1a and Q3a, respectively. A bias voltage VG is applied to the gate terminal of the transistor Q2a from a constant voltage source. Here, assuming that the threshold voltage between the gate and the source at which the transistor Q2a is turned off is Vth, the voltages VDD and VG are set so that VDD> VG-Vth. Also, the nodes N1a,
N2a has parasitic capacitances Cp1a and Cp2a, respectively. A signal generating circuit 332 is constituted by the current source 332A and the transistor Q3a, and the output circuit 3 is constituted by the transistor Q4a, the resistor Ra, and the inverter gate 333A.
33 are configured.

FIG. 9 is a timing chart for explaining the operation of the capacitance detection circuit 318. FIG. 9A shows a potential change of a signal PRE (bar) for controlling the transistor Q1a, and FIG. Control signal R
The potential change of E is shown, and (c) shows the potential change of each of the nodes N1a and N2a. First, the transistor Q1
The high-level (VDD) signal PR
E (bar) is applied, and a low-level (GND) signal RE is applied to the gate terminal of the transistor Q3a. Therefore, at this time, transistors Q1a, Q3
a are not conducting.

In this state, the signal PRE (bar) becomes High.
When the level changes from the low level to the low level, the transistor Q
1a becomes conductive. At this time, the transistor Q3a remains non-conductive and the signal generation circuit 332 is in the stopped state, so that the potential of the node N2a is precharged to VDD. The node N1a is charged until the gate-source voltage of the transistor Q2a reaches the threshold voltage Vth and the transistor Q2a is turned off. As a result, the potential of the node N1a is precharged to VG-Vth.

After the precharge is completed, the signal PRE
When (bar) changes to the high level, the transistor Q1a is turned off. At the same time, the signal RE goes high.
When the signal changes to the high level, the transistor Q3a is turned on, and the signal generation circuit 332 changes to the operating state. Then, the electric charge charged at the node N1a by the current source 332A is extracted, and when the potential at the node N1a slightly decreases, the gate-source voltage of the transistor Q2a becomes larger than the threshold voltage Vth, and the transistor Q2
a changes to a conductive state. Thereby, the electric charge of the node N2a is also extracted, and the potential of the node N2a starts to decrease.

The period during which the signal RE is set to the high level is Δ
t, the potential decrease amount ΔV of the node N1a after the lapse of Δt
Is VDD− (VG−Vth) + IΔt / (Cf + Cp1a)
become. Here, the parasitic capacitance Cp2a is equal to the parasitic capacitance Cp1a.
And small enough.

Since the current I of the current source 332A, the period Δt, and the parasitic capacitances Cp1a and Cp2a are respectively constant, the amount of potential decrease ΔV occurs between the sensor electrode 315 and the surface 331 of the finger to be recognized. It is determined by the capacitance value Cf. Since the capacitance value Cf is determined by the distance between the sensor electrode 315 and the surface 331 of the finger, the capacitance value Cf differs depending on the unevenness of the fingerprint. From this, the magnitude of the potential decrease amount ΔV changes reflecting the unevenness of the fingerprint. This potential decrease amount Δ
Since V is supplied to the output circuit 333 as an input signal, ΔV is input to the output circuit 333, and a signal reflecting the unevenness of the fingerprint is output.

The output signal of each of these capacitance detecting circuits 318 is output to the matching circuit 13 as the above-mentioned fingerprint image data. Then, the matching circuit 13 performs user authentication by comparing and matching the fingerprint image data with registered fingerprint image data stored in the storage circuit 12 in advance.

In FIG. 2, the sensor 1 in the biometric information authentication unit 1
1, an example in which the matching circuit 13 and the storage circuit 12 are configured as one chip has been described.
May be integrated into a single chip, the matching circuit 13 is connected to the sensor 11 via a bus, and the storage circuit 12 is connected to the matching circuit 13 via a bus. Further, the sensor 11 and the matching circuit 13 may be integrated into one chip, and the storage circuit 12 may be connected to the integrated one via a bus.

[0075]

As described above, the present invention provides a biometric information authentication unit provided in the electronic data recording / reproducing apparatus.
The biometric information obtained from the user is compared with pre-registered collation data, an authentication result for the user is output, and a control unit provided in the electronic data recording / reproducing apparatus performs authentication from the biometric information authentication unit. Only when the result indicates that the authentication is successful, the recording / reproducing permission is output, and the recording / reproducing unit provided in the electronic data recording / reproducing apparatus records / reproduces the electronic data based on the recording / reproducing permission from the control unit. As a biometric information authentication unit, a sensor that acquires biometric information from a user, a storage circuit that stores collation data for collating the biometric information of the user in advance, and a biometric information acquired by the sensor and registered in the storage circuit. And a verification circuit that compares the verification data with the verification data and outputs the success / failure of the authentication of the user as an authentication result. Those as adapted to use those which are.

Therefore, VTR, CDR-R, CDR
-A recording / reproducing device such as a RW or a DVD-RAM is provided with a biometric information authentication unit or a control unit composed of a one-chip LSI so that only the authenticated user can record / read electronic data.
The electronic data can be reproduced, and illegal acts such as leakage, falsification, illegal copying, and the like of electronic data by others can be prevented. Since this one-chip LSI only holds information necessary for authentication inside the LSI and outputs only the authentication result outside the LSI, it is not possible to successfully succeed in authentication as in the prior art. High defense level is obtained. further,
Since the number of circuit components to be added is extremely small, a low-cost and high-security device can be realized,
A high level of prevention of electronic data leakage, tampering, and unauthorized copying

[Brief description of the drawings]

FIG. 1 is a block diagram of an electronic data recording / reproducing apparatus according to a first embodiment.

FIG. 2 is a block diagram illustrating a biometric information authentication unit.

FIG. 3 is a block diagram of an electronic data recording / reproducing apparatus according to a second embodiment.

FIG. 4 is a block diagram of an electronic data recording / reproducing apparatus according to a third embodiment.

FIG. 5 is an explanatory diagram showing access level control using a plurality of digital signatures.

FIG. 6 is a block diagram of an electronic data recording / reproducing apparatus according to a fourth embodiment.

FIG. 7 is a cross-sectional view illustrating a configuration example of a sensor.

FIG. 8 is a circuit diagram illustrating a configuration example of a capacitance detection circuit of a sensor.

FIG. 9 is a timing chart illustrating an operation of the capacitance detection circuit.

[Explanation of symbols]

1 ... biometric information authentication unit, 1A ... authentication result, 11 ... sensor,
11A: sensing data, 12: storage circuit, 12A ...
Verification data, 13 verification circuit, 2 control unit, 2A recording / reproduction permission, 3 recording / reproduction unit, 31 recording unit, 32 reproduction unit, 3A electronic signature, 4 electronic signature authentication / issue unit, 4A
... Electronic signature, 4B ... Authentication / electronic signature verification result, 5A, 5
C: external input information, 5B, 5D: external input (electronic signature), 6A: external output information, 6B: external output (electronic signature), 6C: external output information + electronic signature.

Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat II (Reference) H04N 5/91 A61B 5/10 320B 320C 320Z H04N 5/91 P (72) Inventor Kuragi Billion Otemachi, Chiyoda-ku, Tokyo 2-3-1, Nippon Telegraph and Telephone Corporation F-term (reference) AA09 KA01 KA16 LA06

Claims (10)

[Claims] An electronic data recording / reproducing apparatus for recording / reproducing electronic data based on authentication of a user himself / herself, compares and compares biometric information acquired from a user with collation data registered in advance, and obtains an authentication result for the user himself / herself. A control unit that outputs a recording / reproducing permission only when the authentication result from the biometric information authenticating unit indicates that the authentication is successful; and a recording of electronic data based on the recording / reproducing permission from the control unit. A biometric information authenticating unit, a sensor for acquiring biometric information from a user, a storage circuit for storing collation data for collating biometric information of the user in advance, and the sensor And compares the biometric information acquired in step 1 with the matching data registered in the storage circuit, and outputs the authentication success / failure of the user as an authentication result. And a multiplexer circuit, electronic data recording and reproducing apparatus in which these memory circuits, sensors and verification circuit is characterized in that it is formed integrally on the same semiconductor substrate. 2. The electronic data recording / reproducing apparatus according to claim 1, wherein when recording the electronic data, only when the authentication result from the biometric information recognizing section indicates that the authentication is successful, the first registered first data is stored. An electronic signature authentication / issuing unit that outputs an electronic signature to the recording / reproducing unit and outputs an authentication / electronic signature verification result indicating successful verification to the control unit, wherein the control unit replaces the authentication result The recording / reproducing unit outputs the recording / reproducing permission only when the authentication / digital signature collation result from the digital signature authenticating / issuing unit indicates the success of the authentication. An electronic data recording / reproducing apparatus, wherein the electronic data to be recorded is added with a first electronic signature from the electronic signature authentication / issuing unit, and the electronic data is recorded. 3. The electronic data recording / reproducing apparatus according to claim 1, wherein when reproducing the electronic data, the validity of the second electronic signature added to the reproduced electronic data is confirmed, and the biometric information An electronic signature authentication / issuing unit that outputs an authentication / electronic signature verification result indicating authentication success to the control unit only when the authentication result from the recognition unit indicates authentication success, the control unit includes the authentication result Instead of outputting the recording / reproduction permission only when the authentication / electronic signature collation result from the electronic signature authentication / issuing unit indicates successful authentication, the recording / reproducing unit, when reproducing the electronic data, An electronic data recording / reproducing apparatus for outputting the added second electronic signature to the electronic signature authentication / issuing unit. 4. The electronic data recording / reproducing apparatus according to claim 2, wherein the electronic signature authentication / issuing unit, when recording the electronic data, inputs a third electronic signature inputted from outside the electronic data recording / reproducing apparatus. The first electronic signature registered in advance is output to the recording / reproducing unit only when the validity of the authentication is confirmed and the authentication result from the biometric information recognition unit indicates that the user is successfully authenticated. The authentication / electronic signature verification result indicating success is output to the control unit. When recording / reproducing the electronic data, the recording / reproducing unit is external to the electronic data recording / reproducing apparatus in response to recording / reproduction permission from the control unit. An electronic data recording / reproducing apparatus characterized by adding a first electronic signature from the electronic signature authentication / issuing unit to electronic data input from the electronic device and recording the electronic data. 5. The electronic data recording / reproducing device according to claim 3, wherein the recording / reproducing unit reproduces the electronic data in response to the recording / reproducing permission from the control unit and outputs the electronic data to the outside of the electronic data recording / reproducing device. And an electronic data recording / reproducing apparatus for outputting a second electronic signature added to the electronic data to the outside of the electronic data recording / reproducing apparatus. 6. An electronic data recording / reproducing method for recording / reproducing electronic data with an electronic data recording / reproducing device based on authentication of a user himself / herself. The acquired biometric information is compared and collated with pre-registered collation data, and an authentication result for the user is output.A control unit provided in the electronic data recording / reproducing apparatus includes an authentication result from the biometric information authenticating unit. Outputs a recording / reproducing permission only when indicates that the authentication has succeeded, and the recording / reproducing section provided in the electronic data recording / reproducing apparatus performs recording / reproducing of the electronic data based on the recording / reproducing permission from the control section. As the biometric information authentication unit, a sensor for obtaining biometric information from a user and collation data for collating biometric information of the user himself are stored in advance. A storage circuit, and a matching circuit that compares and matches biometric information acquired by the sensor with matching data registered in the storage circuit, and outputs a successful or unsuccessful authentication of the user as an authentication result. An electronic data recording / reproducing method, characterized by using an integrated unit formed thereon. 7. The electronic data recording / reproducing method according to claim 6, wherein the electronic signature authentication / issuing unit provided in the electronic data recording / reproducing apparatus performs authentication from the biometric information recognizing unit when recording the electronic data. Only when the result indicates successful authentication, a first electronic signature registered in advance is output to the recording / reproducing unit, and an authentication / electronic signature verification result indicating successful verification is output to the control unit. The unit outputs recording / reproduction permission only when the authentication / electronic signature collation result from the electronic signature authentication / issuing unit indicates authentication success in place of the authentication result, and the recording / reproducing unit records electronic data. In this case, the electronic data to be recorded is added with the first electronic signature from the electronic signature authentication / issuing unit and the electronic data is recorded according to the recording / reproduction permission from the control unit. Electronic data recording and reproduction method. 8. The electronic data recording / reproducing method according to claim 7, wherein the electronic signature authentication / issuing section provided in the electronic data recording / reproducing apparatus, when reproducing the electronic data, adds the electronic data to the reproduced electronic data. Only when the validity of the second digital signature is confirmed and the authentication result from the biometric information recognition unit indicates successful authentication, an authentication / electronic signature verification result indicating successful authentication is output to the control unit. The control unit outputs a recording / reproducing permission only when the authentication / electronic signature collation result from the electronic signature authenticating / issuing unit indicates authentication success in place of the authentication result. Outputting a second electronic signature attached to the electronic data to the electronic signature authentication / issuing unit when reproducing the electronic data. 9. The electronic data recording / reproducing method according to claim 7, wherein the electronic signature authentication / issuing unit, when recording the electronic data, inputs a third electronic signature inputted from outside the electronic data recording / reproducing apparatus. The first electronic signature registered in advance is output to the recording / reproducing unit only when the validity of the authentication is confirmed and the authentication result from the biometric information recognition unit indicates that the user is successfully authenticated. The authentication / electronic signature verification result indicating success is output to the control unit. In the recording / reproducing unit, when recording the electronic data, the electronic data recording / reproducing apparatus is externally operated in response to the recording / reproducing permission from the control unit. A method of adding a first electronic signature from the electronic signature authentication / issuing unit to the electronic data input from the electronic device and recording the electronic data. 10. The electronic data recording / reproducing method according to claim 8, wherein the recording / reproducing unit reproduces the electronic data in response to the recording / reproducing permission from the control unit and outputs the electronic data to the outside of the electronic data recording / reproducing apparatus. And outputting a second electronic signature added to the electronic data to the outside of the electronic data recording / reproducing apparatus.