JP2003224557A - Reception recording and reproducing device and reception recording and reproducing method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To back up contents while protecting copyright so as not to reproduce the contents of a hard disk drive in other reception recording and reproducing devices. <P>SOLUTION: When a user instructs backup, the reception recording and reproducing device 100 preserves a cipher key together with equipment information (the ID of a storage device 106, the ID of the recording medium of the storage device 112 and the ID of the reception recording and reproducing device 100, etc.), when the backup is instructed. At the time of restoration, the equipment information at the time of the backup and the equipment information when the restoration is to be performed are compared, and when it is not incorrect restoration, deciphering is performed by using the cipher key and the restoration to the storage device 106 is performed. An identification name for identifying the backup data is not ciphered. <P>COPYRIGHT: (C)2003,JPO

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a recording / reproducing device, and more particularly to a receiving / recording / reproducing device and a receiving / recording / reproducing method for recording / reproducing a signal received from a digital broadcast or the like in a storage device.

[0002]

2. Description of the Related Art In recent years, recording devices such as hard disk drives (hereinafter referred to as HDDs) have begun to be used for AV applications, and television receivers with built-in HDDs capable of recording and reproducing programs have appeared. There is. With such a receiver, time-shifted viewing in which recording and reproduction are performed simultaneously is possible. As a device for performing this time shift viewing, for example, Japanese Patent Laid-Open No. 8-138318 is known.

Also, the broadcasting itself has begun to shift from analog broadcasting to digital broadcasting, and services unique to digital broadcasting and services such as shopping with a two-way function using a telephone line are also provided.

Unlike conventional analog broadcasting, the data sent by digital broadcasting does not deteriorate due to transmission, and provides high-definition video such as high-definition television. Therefore, from the viewpoint of copyright protection, it is illegal to record in a storage device. It is necessary to design the receiver so that copying etc. cannot be performed easily. H
The receiver with the built-in DD prevents the HDD from being easily removed to the outside, and prevents unauthorized access by internally recording and recording the data.

In a receiving / recording / reproducing apparatus including an HDD or the like, the HDD may fail due to various factors such as frequency of use, and various system information recorded in the HDD or recorded programs may be lost. To do. However, unlike a personal computer or the like, there is no backup function in the event of a file failure, so there was no way to recover when a file actually failed.

[0006]

As described above, in the conventional receiving / recording / reproducing apparatus, when the HDD built in the apparatus fails, various system information recorded in the HDD and recorded programs are recorded. It was lost and could not be recovered.

The present invention has been made to solve the above problems, and an object of the present invention is to realize a backup of the contents while protecting the copyright so that the contents of the HDD cannot be reproduced by another receiving / recording / reproducing apparatus. To do.

It is another object of the present invention to provide a receiving / recording / reproducing apparatus having an improved user interface so that the backed up contents can be easily referred to.

[0009]

In order to achieve the above-mentioned object, in the present invention, a first storage means for receiving a digital broadcast signal and storing the received signal, and an external management of the authentication data. First communication means for receiving an encryption key by outputting to a center, and the encryption key input from the first communication means are used to encrypt the data recorded in the first storage means, and Encryption means for outputting encrypted encrypted data, unique identification information for identifying the identification name given to the data accumulated in the first accumulating means and the first accumulating means Index data creating means for creating index data for obtaining the identification name given to the data, and tampering check using the index data and the encrypted data. A tampering check data generating means for generating a tampering check data to, and output means for outputting to the second storage means provided outside combining the index data and the encrypted data,
A second communication unit that receives a decryption key from the external management center after it is confirmed that the unique identification information has not been changed by transmitting the authentication data, and the second communication unit inputs the decryption key. And a recording means for decoding the data input from the second storage means using the decryption key and recording the decrypted data in the first storage means. Provide a device.

In order to achieve the above object, in the present invention, a first storage means for receiving a digital broadcast signal and storing the received signal, and an encryption / decryption key used for encryption and decryption are provided. Memory means for generating and encrypting the generated encryption / decryption key and then storing the encrypted encryption / decryption key in the memory, and the encryption / decryption key for encrypting the data recorded in the first accumulating means. From the encryption means for outputting the encrypted data that has been encrypted, the identification name given to the data stored in the first storage means, and the unique identification information for identifying the first storage means,
Index data creation means for creating index data for obtaining an identification name given to the data, and tamper check data creation for creating tamper check data for checking tampering using the index data and the encrypted data Means, an output means for synthesizing the index data and the encrypted data and outputting the combined data to a second storage means provided outside, and a unique means for identifying the first storage means included in the index data Determination means for determining whether the identification information of the first accumulating means has been changed or not, and from the memory when the determination result of the determining means determines that there is no change. When the read and encrypted encryption / decryption key is read and decrypted and it is determined that there is a change, Encryption / decryption means for stopping the decryption using the encryption / decryption key, and decryption means for decrypting the data input from the second storage means using the encryption / decryption key input from the decryption key decryption means And a recording unit for recording the data decoded by the decoding unit in the first storage unit.

Further, in order to achieve the above object, in the present invention, a first storage means for receiving a digital broadcast signal and storing the received signal, and an encryption / decryption key used for encryption and decryption are provided. Memory means which is generated and stores the generated encryption / decryption key in a memory, and a memory means consisting of one chip, and the encryption / decryption key is used to encrypt the data recorded in the internal storage means. The encryption means for outputting the encrypted data, the identification name given to the data accumulated in the first accumulating means, and the unique identification information for identifying the first accumulating means, Index data creation means for creating index data for obtaining the identification name given to the data, and tampering check using the index data and the encrypted data. A tampering check data generating means for generating a tampering check data for click, and output means for outputting to the second storage means provided outside combining the index data and the encrypted data,
Determination means for determining whether or not the identification information of the first accumulating means is changed from unique identification information for identifying the first accumulating means included in the index data; As a result of the determination by the means, when it is determined that there is no change, the encryption / decryption key is read from the memory, and the second encryption / decryption key is read using the read encryption / decryption key.
Decoding means for decoding the data inputted from the accumulating means, and stopping the decoding of the data inputted from the second accumulating means when it is determined that there is a change, and the data decoded by the decoding means. A recording / reproducing apparatus is provided, which comprises:

In order to achieve the above object, in the present invention, a step of receiving a digital broadcast signal and accumulating the received signal in a first accumulating means, and an authentication by the first communicating means The step of receiving the encryption key by outputting the data to an external management center, and the encryption means records it in the first storage means by using the encryption key input from the first communication means. The step of encrypting the data and outputting the encrypted encrypted data, the identification name given to the data accumulated in the first accumulating means by the index data creating means, and the first accumulating means A step of creating index data for obtaining an identification name given to the data from unique identification information for identifying A step of generating a tampering check data for checking falsification by using the index data and the encrypted data, by the output means,
A step of combining the index data and the encrypted data and outputting the combined data to a second storage means provided externally, and changing the unique identification information by transmitting the authentication data by a second communication means. Receiving the decryption key from the external management center after it has been confirmed that there is no password, and the recording means inputs the decryption key from the second storage means using the decryption key input from the second communication means. And a step of decoding the decoded data and recording the decoded data in the first storage means.

Further, in order to achieve the above object, in the present invention, the steps of receiving a digital broadcast signal and accumulating the received signal in the first accumulating means and performing encryption and decryption by the memory means. Generating an encryption / decryption key to be used, encrypting the generated encryption / decryption key and then storing the encrypted encryption / decryption key in a memory, and recording by the encryption means in the first storage means using the encryption / decryption key By the step of encrypting the stored data and outputting this encrypted encrypted data, and the index data creating means,
Index data for obtaining the identification name given to the data from the identification name given to the data stored in the first storage means and the unique identification information for identifying the first storage means And a step of creating tampering check data for checking tampering using the index data and the encrypted data by the tampering check data creating means, and outputting the index data and the encryption by the output means. The step of combining the data and outputting the second data to an externally provided second storage means, and the determination means from the unique identification information for identifying the first storage means included in the index data, The step of determining whether or not the identification information of the storage means of No. 1 has been changed, and the determination by the encryption key decoding means. As a result of the determination by the means, when it is determined that there is no change, the encrypted encryption / decryption key read from the memory is read and decrypted, and when it is determined that there is a change, the encryption / decryption key Stopping the decryption using the decryption means, decrypting the decryption key using the encryption / decryption key input from the decryption key decryption means, and decrypting the data input from the second storage means, and the recording means. And a step of recording the data decoded by the decoding means in the first storage means.

In order to achieve the above object, according to the present invention, a step of receiving a digital broadcast signal and accumulating the received signal in the first accumulating means, and a memory means consisting of one chip, Generating an encryption / decryption key to be used for encryption and decryption, and storing the generated encryption / decryption key in a memory, and recording by the encryption means in the internal storage means using the encryption / decryption key. Encrypting the stored data and outputting the encrypted data that has been encrypted, the index data creating means, and the identification name given to the data stored in the first storing means and the first storing Creating index data for obtaining an identification name given to the data from unique identification information for identifying the means, and tampering check data creation A step of creating tampering check data for checking tampering using the index data and the encrypted data by means, and combining the index data and the encrypted data by the output means The step of outputting to the second accumulating means and the determining means change from the unique identification information for identifying the first accumulating means included in the index data to the identification information of the first accumulating means. And the decryption means reads the encryption / decryption key from the memory when it is determined by the determination means that there is no change, and the read encryption / decryption key is read. The data input from the second storage means is decrypted using a key, and when it is determined that there is a change, the second storage means A receiving / recording / reproducing method comprising: a step of stopping decoding of input data; and a step of recording data decoded by the decoding means into the first storage means by a recording means. To do.

[0015]

BEST MODE FOR CARRYING OUT THE INVENTION (First Embodiment) A first embodiment of the present invention will be described below with reference to the drawings. FIG. 1 is a diagram for explaining the configuration of a receiving / recording / reproducing apparatus 100 according to the first embodiment of the present invention. Figure 1
In, 101 is a tuner, 102 is a selector, and 10
3 is a TS and MPEG processing unit that performs demultiplexing processing of a transport stream and decoding processing of MPEG2 video / audio, 104 is a display control unit that synthesizes a program and a user interface image, 105 is a monitor, 1
Reference numeral 06 indicates a storage device including an HDD, and 107 indicates storage / storage.
A storage / reproduction control unit that controls reproduction, an input processing unit 108 that receives an input from a user, a communication device 109 that communicates with an external center via a telephone line, and the like, and a backup control unit 110 that controls backup processing, 111
Is an external storage device I / F which is an interface device between the external storage device 112 and the backup control unit 110,
A storage device 112 is provided outside the receiving / recording / reproducing device.

First, the operation of real-time viewing will be described. The digital broadcast signal received by the tuner 101 is transmitted through the selector 102 to the TS and MPEG processing unit 1
Sent to 03. The TS and MPEG processing unit 103 performs demultiplexing processing of the transport stream (hereinafter, referred to as TS) input from the selector 102 and decoding processing of MPEG2 video, and outputs it to the display control unit 104. The display control unit 104 converts the format of the signal input from the TS and MPEG processing unit 103 so that the signal can be displayed on the monitor 105, and outputs the signal to the monitor 105. The monitor 105 displays the signal input from the display control unit 104. The program is thus displayed. Although not shown, the audio signal is also decoded and reproduced from the speaker.

Next, the program storage operation will be described.
When the user wants to store a program, the user operates a button, a switch, or the like, which is an input unit, to request the program to be stored via the input processing unit 108. Input processing unit 1
When the user makes a request to store a program, 08 inputs the program to the storage / reproduction control unit 107. The storage / playback control unit 107 controls the storage device 106 to store the program from the tuner 101 when the user requests the storage of the program. The storage device 106 includes a storage / reproduction control unit 10
When there is a storage request from 7, the program received by the tuner 101 is stored.

In this way, the programs are stored in the storage device 106. Next, the reproduction operation of the programs stored in the storage device 106 will be described. When the user wants to reproduce the program stored in the storage device 106, the user needs to input the input processing unit 10.
Requesting reproduction of the program stored in the storage device 106 via S8. When the user makes a reproduction request for a program, the input processing unit 108 inputs this to the accumulation / reproduction control unit 107. When the user requests playback of a program, the storage / playback control unit 107 reads the TS of the program for which playback is instructed from the storage device 106, and performs TS processing / selection via the selector 102.
Input to the MPEG processing unit 103. The TS input to 102 is reproduced and displayed on the monitor 105 by the same operation as the real-time viewing described above.

(Description of Backup / Restore Operation of Program Accumulated in Storage Device 106) In the present invention, the data stored in the storage device 106 is newly stored in the storage device 112 provided outside the receiving / recording / reproducing device 100. The function to back up is provided. Further, a function of restoring the data backed up in the storage device 112 provided outside the receiving / recording / reproducing device 100 to the storage device 106 is provided.

Hereinafter, the receiving / recording / reproducing apparatus will be referred to as the storage apparatus 10.
The overall operation of backing up / restoring the data stored in the storage device 6 to the storage device 112 will be described in more detail with reference to FIGS. 2 and 3.

When the user wants to back up the data stored in the storage device 106 to the storage device 112 provided outside the receiving / recording / reproducing device 100, the user first performs "backup / restore" provided in the input processing unit 108. Press the button marked with (step 201).
Then, the input processing unit 108 notifies the backup control unit 11 that the "backup / restore" button has been pressed.
Enter 0. As a result, the backup controller 110
Displays the backup / restore menu shown in FIG. 3A on the monitor 105.
Control 04. The display control unit 104 creates the menu screen shown in FIG. 3A and outputs it to the monitor. As a result, the menu screen shown in FIG. 3A is displayed (step 202).

"Backup" and "Restore" arranged at the bottom of the menu screen shown in FIG. 3A are buttons on the screen that the user can select, and the user is provided in the input processing unit 108. The cursor can be moved by operating the cross-shaped button, etc., and it is possible to select either "backup" or "restore" processing.

First, the operation of backing up will be described. In FIG. 3A, the user moves the cursor to “backup” and presses the enter button provided in the input processing unit 108. Then, the backup control unit 110
The device conditions at the time of backup are sent to the management center (step 204). After sending the device conditions in step 204, the guide screen shown in FIG.
The display control unit 104 is controlled so that
The data stored in the storage device 106 is stored in the storage device 11
The process of backing up to 2 is executed (step 20).
5). In this step 205, the progress status of the backup is also displayed to inform the user of the progress status of the backup process.

When the backup process is completed, the display control unit 104 is caused to display a guide indicating that the process has been completed. As a result, a guide screen indicating that the backup process has been completed is displayed on the monitor 105 (step 206), and the user knows that the backup process has been completed.

Next, the operation for restoring will be described. In step 203, the user moves the cursor to "restore" on the screen of FIG.
The determination button provided in 08 is pushed. Then, the backup control unit 110 sends the device condition to the management center (step 207).

The management center sets the device condition when the backup is performed in step 204 and the device condition when the restore is performed in step 207 to a predetermined level (it does not necessarily mean that they are all the same). ), And when it is determined that the data can be restored, the data for restoration is returned to the receiving / recording / reproducing device 100, and when the data is restored and it is determined that there is a copyright problem, the restoration is prohibited. The data to be recorded is returned to the receiving / recording / reproducing apparatus 100.

The backup controller 110 receives the data returned from the management center (step 20).
8) If data that can be restored is sent from the management center, a process of restoring the data backed up in the storage device 112 to the storage device 106 is executed (step 209). In step 209, the progress status of the backup is also displayed as shown in FIG. 3C, and the user is informed of the progress status of the backup process.

When the restoration process is completed, the backup control unit 110 causes the display control unit 104 to display a guide display to the effect that the process has been completed. As a result, a guide screen is displayed on the monitor 105 indicating that the restoration process has been completed (step 21).
0), the user knows that the backup process is completed.

In step 208, when the data whose restoration is prohibited is sent from the management center, the backup control unit 110 does not restore the data backed up in the storage device 112 to the storage device 106, and the data shown in FIG. As shown in (d), since the device conditions are different, the display control unit 104 is controlled to display a guide indicating that the restoration is prohibited on the monitor 105 (step 21).
1).

As described above, the backup controller 110
Has a user interface function of controlling the display control unit 104 when a user issues a backup / restore instruction and displaying the progress of backup / restore, the contents of data, etc. to the user. The backup control unit 110 also controls the backup of the data stored in the storage device 106 to the storage device 112 and the restore operation of the data backed up in the storage device 112.

More specifically, data is encrypted / decrypted at the time of backup / restoration, and the backup control unit 110 communicates with the management center to obtain this encryption / decryption function and the encryption / decryption key used for it. The communication device 109 that performs communication is controlled.

(Detailed Description of Backup Operation) In the present invention, when the content stored in the storage device 106 is backed up to the storage device 112 outside the receiving / recording / reproducing device 100, a management center (not shown) is provided via the communication device 109. The storage device 112 is backed up after obtaining and encrypting the backup encryption key from. On the contrary, when the contents backed up in the storage device 112 outside the receiving / recording / reproducing device 100 are restored to the storage device 106, the decryption key for restoration is acquired from the management center via the communication device 109, decrypted, and then stored. Restoring to the device 106.

Next, the operations of the encryption key acquisition and the decryption key acquisition performed between the reception / recording / reproducing apparatus of the present invention thus configured and the management center will be described with reference to FIG. Here, a communication system performed between the receiving / recording / reproducing apparatus and the management center is not described, but a communication system in which security is maintained point-to-point by appropriately using means such as encryption.

FIG. 4A is a diagram for explaining the operation sequence for obtaining the backup encryption key from the management center at the time of backup. In FIG. 4A, the user receives the data stored in the storage device 106 in the receiving device 100 via the input processing unit 108 at an arbitrary timing, and the storage device 1 outside the receiving / recording / reproducing device 100.
Input the backup instruction to 12.

The backup control unit 110 acquires a list of data stored in the storage device 106 via the storage / reproduction control unit 107. Backup control unit 110
In parallel with the communication device 1 in the sequence shown in FIG.
A request for acquisition of an encryption key used for backup is made by communicating with the management center via 09.

Next, the management center requests the backup control unit 110 for authentication data in response to the acquisition request from the backup control unit 110. Next, the backup control unit 110 determines the ID of the receiving / recording / reproducing apparatus 100 and the storage device 11 provided outside the receiving / recording / reproducing apparatus 100.
2 ID, I of the recording medium provided in the storage device 112
D is sent to the management center as authentication data.

Next, the management center checks the ID and the like of the receiving / recording / reproducing apparatus included in the authentication data input from the receiving / recording / reproducing apparatus 100. This inspection is to inspect whether the ID of the receiving / recording / reproducing device is registered in the system, whether the storage device 112 is an ID excluded as an unauthorized device, or the like. And the management center
If there is no problem with these data, a decryption key paired with an arbitrary encryption key is generated, and the ID of the received recording / reproducing apparatus 100, the ID of the receiving / accumulating apparatus 112, the ID of the recording medium, the encryption key and the decryption key Is recorded on a recording medium in the management center as a list of data as shown in FIG. Then, the encryption key data is transmitted to the receiver.

The backup controller 110 encrypts the data to be backed up from the storage device 106 using the encryption key input from the management center. Further, the backup control unit 110 sets the list data indicating which data has been backed up, the ID of the receiving / recording / reproducing device 100, the ID of the storage device 112, and the ID of the recording medium to be recorded as non-encrypted (without encryption). Create index data.

Then, the backup control unit 110 adds the backup data body obtained by encrypting the data to be backed up from the storage device 106 with the encryption key to the above-mentioned unencrypted index data, and further adds the index data and the backup data body. The data shown in FIG. 5 is obtained by calculating and adding tampering check data to the combined data. The backup control unit 110 uses the package shown in FIG. 5 as a unit to store the storage device 11 via the external storage device interface 111.
It records on the recording medium in 2.

As described above, since the index data shown in FIG. 5 is non-encrypted, the receiving / recording / reproducing apparatus 100 can always refer to the contents, so that the contents backed up on the medium are not lost and the user interface is not lost. improves.

For example, if the storage device 112 is a DVD, the entire list can be viewed on a PC or other text or html.
In addition to recording in the format, by recording in the format of DVD-Video that can be played back by an ordinary DVD player or the like, the recorded content can be confirmed without describing the content on the surface of the medium.

(Detailed Description of Restoration Operation) Next, after the storage device 106 is replaced due to a file or the like in the storage device 106 being damaged or broken, the data backed up in the storage device 112 is restored in the storage device 106. The operation in this case will be described in detail with reference to FIG. Figure 4
(B) is a diagram for explaining an operation sequence of acquiring a decryption key for restore from the management center at the time of restore.

The user sets the storage medium used for backup in the storage device 112 and inputs a restore instruction through the input processing unit 108. This starts the restore operation.

The input processing unit 108 notifies the backup control unit 110 when the user inputs a restore instruction. The backup control unit 110 first transmits an acquisition request for a decryption key required to decrypt the backup data via the management center and the communication device 109. In response to this, the management center returns a signal requesting the authentication data. The backup control unit 110 transmits the requested authentication data to the management center via the communication device 109.
The management center confirms whether or not the authentication data sent from the receiving / recording / reproducing apparatus 100 exists in the management list recorded in the management center shown in FIG. The ID of the receiving / recording / reproducing apparatus 100, the external storage apparatus ID, and the recording medium ID are compared, and the number of restorations is checked to determine whether or not restoration is possible. For example, I of the receiving / recording / reproducing apparatus 100
D and the recording medium ID are compared with each other completely, and it is determined that the external storage device ID is not a device excluded as an unauthorized device. When the result of this determination is OK, the decryption keys recorded as a set in the management list of the management center are transmitted to the receiving / recording / reproducing apparatus 100. On the contrary, when the determination result is NG, the reason (for example, the ID of the recording medium is different) is notified to the receiving / recording / reproducing apparatus 100.

In the receiving / recording / reproducing apparatus 100, when the decryption key is obtained from the management center via the communication apparatus 109, the data body encrypted and backed up in the storage apparatus 112 is decrypted, and the decrypted data is reproduced. Overwrite storage is performed in the storage device 106 via the storage / reproduction control unit 107.

As described above, the management / center manages backup / restore, and the content of the backup data is not encrypted so that it can be referred to at any time.

As a result, it is possible to provide a data backup system having an improved user interface while maintaining a certain level of security. Since the encryption / decryption key used for encryption is managed by the management center, high security can be ensured. In addition,
In this embodiment, the encryption key and the decryption key are different from each other, but instead, as shown in FIG. 7, an encryption algorithm using a common key in which the encryption key and the decryption key are common, may be used. The effect of can be obtained.

(Second Embodiment) A second embodiment of the present invention will be described below with reference to the drawings. FIG. 8 is a diagram for explaining the configuration of the receiving / recording / reproducing apparatus 100 according to the second embodiment of the present invention. 8 is different from FIG. 1 in that a nonvolatile memory 801 is provided instead of the communication device 109.
Manages backup / restore in 1. The non-volatile memory 801 stores an encryption key and a management list,
At the time of restoration, the restoration operation is performed based on this information.

The data restoration is the same as that of the first embodiment, but the common key cryptographic algorithm is used for the encryption key and the decryption key used for encryption, and the backup control unit 110 of the receiving / recording / reproducing apparatus 100 uses the same. It is generated and recorded in the non-volatile memory 801 integrated with the backup control unit 110 into a single chip for use. This non-volatile memory 801 includes a backup control unit 110 and a 1-chip LSI.
This is a secured memory area, which is a secure area that the user cannot easily access.

In the second embodiment, as compared with the first embodiment, the encryption / decryption key used for encryption is not managed by the management center, so the security is somewhat inferior, but the signal recording / reproducing apparatus is different. Since it is recorded in a secure area in 100, a certain degree of security can be ensured.

As a method for preventing the user from accessing the key for decrypting the encryption other than recording it in the secure area, the encryption / decryption key generated by the backup control unit 110 is stored in the backup control unit 110. The data is encrypted by a predetermined encryption method and recorded in the non-volatile memory 801. With such a configuration, the nonvolatile memory 8
01 is a general-purpose memory, and the user can obtain only the encrypted encryption key and cannot obtain the correct encryption key, so that the security can be maintained.

Even with such a configuration, as in the first embodiment, backup / restore management is performed, and the content of the backup data is not encrypted so that it can be referred to at any time.

As a result, it is possible to provide a data backup system with an improved user interface while maintaining a certain level of security. (Third Embodiment) Hereinafter, a third embodiment of the present invention will be described with reference to the drawings. FIG. 9 is a diagram for explaining the configuration of the receiving / recording / reproducing apparatus 100 according to the third embodiment of the present invention. 9 is different from FIG. 8 in that an IC card (specifically, IC card I / F and IC card) 901 is newly provided. This IC card 901 is for receiving pay broadcast, which is usually provided in a digital broadcast receiving apparatus. In the embodiment of the present invention, the ID of the IC card provided for subscriber management of pay broadcasting is also added as authentication information.
As in the first embodiment, the receiving / recording / reproducing apparatus 100 also sends the ID information of the IC card obtained by communicating with the IC card as the authentication information at the time of backup to the management center and uses it as one of the authentication data. There is. At this time, the management list managed by the management center is as shown in FIG. 10, and the number of items checked by the management center at the time of restoration increases, making it more difficult to perform fraudulent acts.

Further, if the management center is an administrator who manages the pay broadcast receiving device, the subscriber information can be referred to based on the ID information of this IC card, so that the illegal acts can be further reduced. .

Even with such a configuration, as in the first embodiment, backup / restore is managed on the management center side, and the content of the backup data is not encrypted and can be referred to at any time. ing.

As a result, it is possible to provide a data backup system having an improved user interface while maintaining a certain level of security.

[0057]

As described above, according to the present invention,
The content can be backed up while protecting the copyright so that it cannot be reproduced by another receiving / recording / reproducing apparatus. In addition, the content of the backup data can be referred to at any time by not encrypting it.

[Brief description of drawings]

FIG. 1 is a block diagram for explaining a configuration of a receiving / recording / reproducing apparatus 100 according to a first embodiment of the present invention.

FIG. 2 is a flowchart for explaining a backup / restore operation of the receiving / recording / reproducing apparatus 100 of the present invention.

FIG. 3 is a diagram showing an interface screen at the time of backup / restore operation of the receiving / recording / reproducing apparatus 100 of the present invention.

FIG. 4 is a diagram for explaining an operation sequence of an encryption key acquisition and a decryption key acquisition according to the first embodiment of the present invention, and FIG. 2A is a backup encryption key from a management center at the time of backup. FIG. 2B is a diagram for explaining an operation sequence for acquiring a password, and FIG. 2B is a diagram for explaining an operation sequence for acquiring a decryption key for restore from the management center at the time of restore.

FIG. 5 is a diagram showing a package of data backed up in the storage device 112.

FIG. 6 is a diagram showing a management list managed by a management center.

FIG. 7 is a diagram showing a management list managed by a management center.

FIG. 8 is a block diagram for explaining a configuration of a receiving / recording / reproducing apparatus 100 according to a second embodiment of the present invention.

FIG. 9 is a block diagram for explaining a configuration of a receiving / recording / reproducing apparatus 100 according to a third embodiment of the present invention.

FIG. 10 is a diagram showing a management list according to a third embodiment of this invention.

[Explanation of symbols]

100 ... Receiving / recording / reproducing apparatus, 101 ... Tuner, 102
... selector, 103 ... TS and MPEG processing section, 104
... Display control unit, 105 ... Monitor, 106 ... Storage device,
107 ... Accumulation / reproduction control unit, 108 ... Input processing unit, 10
9 ... Communication device, 110 ... Backup control unit, 111 ...
External storage device I / F, 112 ... Storage device, 801 ... Non-volatile memory, 901 ... IC card.

Claims (9)

[Claims] 1. A first storage unit for receiving a digital broadcast signal and storing the received signal; a first communication unit for receiving an encryption key by outputting authentication data to an external management center; An encryption unit that encrypts the data recorded in the first storage unit using the encryption key input from the first communication unit and outputs the encrypted data that has been encrypted; Index data for obtaining the identification name given to the data from the identification name given to the data stored in the storage means and the unique identification information for identifying the first storage means. Index data creating means, and tampering check data for creating tampering check data for checking tampering using the index data and the encrypted data. There is no change in the unique identification information by creating means, output means for combining the index data and the encrypted data and outputting to the second storage means provided outside, and transmitting the authentication data. Second communication means for receiving a decryption key from the external management center after it is confirmed, and the decryption key input from the second communication means for input from the second storage means. A receiving / recording / reproducing apparatus comprising: a recording unit that decodes data and records the decoded data in the first storage unit. 2. A first storage means for receiving a digital broadcast signal and storing the received signal, and an encryption / decryption key used for encryption and decryption, and encrypting the generated encryption / decryption key. Memory means for storing the data in the memory, and an encryption means for encrypting the data recorded in the first storage means using the encryption / decryption key and outputting the encrypted data. Index data for obtaining the identification name given to the data from the identification name given to the data stored in the first storage means and the unique identification information for identifying the first storage means And an tampering checker for creating tampering check data for checking tampering using the index data and the encrypted data. For identifying the first data storage means included in the index data, and the output data output means for combining the index data and the encrypted data and outputting the second data to the second storage means provided outside. From the unique identification information of the determination means for determining whether or not there is a change in the identification information of the first storage means, as a result of the determination of the determination means, when it is determined that there is no change, An encryption key decryption unit that reads out the encrypted encryption / decryption key read from the memory and decrypts it, and stops decryption using the encryption / decryption key when it is determined that there is a change, and the decryption key Decryption means for decrypting the data input from the second storage means using the encryption / decryption key input from the decryption means, and the data stored in the first storage means Receiving, recording and reproducing apparatus characterized by comprising a recording means for recording the stage. 3. A first storage unit for receiving a digital broadcast signal and storing the received signal, and an encryption / decryption key used for encryption and decryption, and the generated encryption / decryption key in a memory. A memory unit configured to store one chip; an encryption unit that encrypts the data recorded in the internal storage unit using the encryption / decryption key and outputs the encrypted encrypted data; Index data for obtaining the identification name given to the data from the identification name given to the data stored in the first storage means and the unique identification information for identifying the first storage means. Index data creating means for creating and tampering for creating tampering check data for checking tampering using the index data and the encrypted data Check data creation means, an output means for combining the index data and the encrypted data and outputting the combined data to a second storage means provided outside, and identifying the first storage means included in the index data. From the unique identification information for determination means for determining whether or not there is a change in the identification information of the first storage means, as a result of the determination of the determination means, when it is determined that there is no change The encryption / decryption key is read from the memory, the read encryption / decryption key is used to decrypt the data input from the second storage unit, and the second data is determined when it is determined that there is a change. A decoding means for stopping decoding of the data inputted from the storage means; and a recording means for recording the data decoded by the decoding means in the first storage means. Receiving, recording and reproducing apparatus. 4. The first communication means sends, as the authentication data, at least one of identification information unique to the receiving / recording / reproducing device and identification information unique to the external storage means to the external management center. 2. The receiving / recording / reproducing apparatus according to claim 1, which transmits. 5. The receiving / recording / reproducing apparatus according to claim 1, further comprising an IC card for descrambling pay broadcasting data, wherein the memory means is provided in the IC card. 6. The receiving / recording / reproducing apparatus according to claim 1, wherein the first communication means also transmits identification information unique to the IC card to the external management center. 7. A step of receiving a digital broadcast signal and accumulating the received signal in a first accumulating means, and outputting the authentication data to an external management center by the first communication means to generate an encryption key. And a step of receiving the data, wherein the encryption means encrypts the data recorded in the first storage means by using the encryption key input from the first communication means, and the encrypted data is encrypted. A step of outputting, and an identification name given to the data accumulated in the first accumulating means by the index data creating means and the unique identifying information for identifying the first accumulating means,
Creating index data for obtaining the identification name given to the data, and creating tampering check data for checking tampering using the index data and the encrypted data by the tampering check data creating means. A step of combining the index data and the encrypted data by an output means and outputting the combined data to a second storage means provided outside; and a step of transmitting the authentication data by a second communication means. Receiving a decryption key from the external management center after confirming that there is no change in the unique identification information, and using the decryption key input from the second communication unit by the recording unit, The data input from the second storage means is decoded, and the decoded data is recorded in the first storage means. And a step of receiving and recording and reproducing. 8. A step of receiving a digital broadcast signal and accumulating the received signal in a first accumulating means, and generating an encryption / decryption key to be used for encryption and decryption by the memory means, and the generated encryption. Storing the decryption key in a memory after encrypting the decryption key, using the encryption / decryption key by the encryption means,
The step of encrypting the data recorded in the storage means and outputting the encrypted encrypted data, and the identification given to the data stored in the first storage means by the index data creating means. A step of creating index data for obtaining an identification name given to the data from a name and unique identification information for identifying the first accumulating means; Creating a tampering check data for checking tampering using the encrypted data; and outputting the composited index data and the encrypted data to an externally provided second storage means by an output means. And a determination means for identifying the first storage means included in the index data. Determining whether or not the identification information of the first storage means has been changed from the unique identification information of the first storage means, and the encryption key decryption means determines that there is no change as a result of the determination by the determination means. When the encrypted encryption / decryption key read from the memory is read and decrypted, and when it is determined that there is a change, the decryption using the encryption / decryption key is stopped. A step of decrypting the data input from the second storage means by using the encryption / decryption key input from the decryption key decryption means, and a step of decrypting the data decrypted by the decryption means by the recording means. And a step of recording in the first storage means. 9. A step of receiving a digital broadcast signal and accumulating the received signal in a first accumulating means, and generating an encryption / decryption key used for encryption and decryption by a memory means consisting of one chip, Storing the generated encryption / decryption key in a memory, and encrypting the data recorded in the internal storage means by the encryption means using the encryption / decryption key, and the encrypted data From the identification data given to the data accumulated in the first accumulating means by the index data creating means and the unique identification information for identifying the first accumulating means,
Creating index data for obtaining the identification name given to the data, and creating tampering check data for checking tampering using the index data and the encrypted data by the tampering check data creating means. A step of synthesizing the index data and the encrypted data by an output means and outputting the synthesized data to a second storage means provided externally; and a determining means for the first storage included in the index data. Determining from the unique identification information for identifying the means whether or not the identification information of the first accumulating means has changed, and the decrypting means determines that the result of the determination by the determining means is changed. When it is determined that there is not, the encryption / decryption key is read from the memory, and the read encryption / decryption key is used. The second
Decoding the data input from the storage means, and stopping the decoding of the data input from the second storage means when it is determined that there is a change; A step of recording the recorded data in the first storage means.