JP2004133501A - Information processor, information processing method, content distribution system, recording medium and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To update a license of which a temporary term has expired in the background. <P>SOLUTION: The license for content has the temporary term. If a license for content of which the reproduction is commanded has expired or there is a license of which the timer has come into effect, an issuance permission request for the corresponding license is transmitted. If license issuance permission and a transaction ID are received, using a secure communication pathway, a license request is transmitted, and whether or not the license issuance is received is decided. If the license issuance is received, the license is overwritten with the issued license, and the timer of the updated license is set to terminate processing. If the license issuance permission is not received or the license issuance is not received, an error message is displayed to terminate the processing. This invention is applicable to a server for downloading the content, a personal computer and an MMK(multi media kiosk). <P>COPYRIGHT: (C)2004,JPO

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention relates to an information processing apparatus and an information processing method, a content distribution system, a recording medium, and a program, in particular, content data and information necessary for recording or reproducing the content data, for example, information such as a license, The present invention relates to an information processing apparatus and an information processing method, a content distribution system, a recording medium, and a program, which are preferably used when separately delivering.
[0002]
[Prior art]
In a data distribution service that provides music via the Internet, the data distribution is performed by a content server that provides audio data and a license server that provides a license for copyright-protected content.
[0003]
The user can register or delete the content or license once downloaded to the recording medium protected by the copyright in the license server, and, for example, license the content such as depositing money in a lending safe. Has already been realized (see, for example, Patent Document 1).
[0004]
[Patent Document 1]
JP-A-2002-7357
[0005]
[Problems to be solved by the invention]
However, when the license of the content can be deposited in the license server or the license of the deposited content can be withdrawn in the conventional manner, for example, the user can use the license of the content. The license of the user who should have a valid license has expired due to the failure, loss, or theft of the personal computer while recording on the personal computer that is being recorded, or , May be used by third parties.
[0006]
In a conventional content distribution system, if the license used for a client is lost due to theft, loss, or failure of the device, the license is redistributed from the server, or the right backed up by the client is restored through the intervention of the server. For example, a third party who pretended to have lost a license could use these functions to obtain a copy of the license. On the other hand, in general, the server has been monitored for the resurrection of the license, and the number of times the license can be resurrected is limited, thereby preventing endless duplication. However, in this case, there is a problem that a malicious third party reduces the right of redistribution that can be used by legitimate users.
[0007]
The present invention has been made in view of such a situation, and by updating a license at regular intervals, it is possible to protect the right of a user who should properly hold a license. Things.
[0008]
[Means for Solving the Problems]
A first information processing apparatus according to the present invention includes an information transmitting / receiving means for transmitting / receiving information to / from another information processing apparatus, a recording means for recording second information relating to the distribution of the first information, and a first information processing means. Distribution control means for controlling distribution of the information to another information processing apparatus, wherein the information transfer means receives a signal requesting distribution of the first information from the other information processing apparatus, Distributes the first information to another information processing device, receives the first information from the other information processing device, and reproduces the first information by the user based on the first information. Or, information that allows predetermined content data to be reproduced or recorded for a period indicated by a temporary period shorter than the predetermined period permitted to be recorded, and the second information recorded by the recording unit. Is another information processing It is delivered to the apparatus, characterized in that it comprises a third information indicating a temporary period of the first information.
[0009]
At least a part of the information exchange by the information exchange means may be exchanged via a secure communication path.
[0010]
At least a part of the information exchange by the information exchange means may be encrypted and exchanged.
[0011]
An authentication processing executing means for executing the authentication processing may be further provided, and the distribution control means sends the other information processing apparatus to the other information processing apparatus only when the authentication processing by the authentication processing executing means is correctly completed. The information transfer means can be controlled so as to distribute one piece of information.
[0012]
An information generating means for generating fourth information which is random information may be further provided, and the information transfer means may transmit the fourth information to another information processing apparatus. The distribution control means can control the information transfer means to distribute the first information to the other information processing device only when the fourth information is received from the other information processing device. be able to.
[0013]
The information processing apparatus may further include information recording control means for controlling a change in recording of the second information recorded by the recording means, wherein the first information includes the other information It is possible to further include fourth information indicating whether or not the first information has been distributed to the apparatus. The information recording control means has the information exchange means to distribute the first information to another information processing apparatus. In such a case, the fourth information included in the second information recorded by the recording unit may be updated to the one in which the first information is distributed to another information processing apparatus. The first information is distributed to the other information processing device by the information exchange unit, and the temporary information expires, or the first information is received from the other information processing device by the information exchange unit. In the case, the second The fourth information included in the information, it is possible to first information is to be updated to those not delivered to another information processing apparatus.
[0014]
According to a second information processing method of the present invention, a recording control step of controlling recording of second information relating to distribution of first information, and a signal requesting distribution of the first information from another information processing apparatus. A first reception control step of controlling reception of the first information, a transmission control step of controlling transmission of the first information to another information processing apparatus, and a reception of the first information from the other information processing apparatus. Controlling the second reception control step, wherein the first information includes a predetermined period of time shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. The second information whose content data can be reproduced or recorded and whose recording is controlled by the process of the recording control step is a temporary expiration date of the first information to be distributed to another information processing apparatus. The first Characterized in that it comprises the information.
[0015]
The program recorded on the first recording medium according to the present invention includes a first reception control step of controlling reception of a signal requesting distribution of the first information from another information processing apparatus; A transmission control step of controlling transmission of the first information to the processing device, and a second reception control step of controlling reception of the first information from another information processing device, wherein the first information Is information that allows the user to reproduce or record the predetermined content data for a period indicated by a temporary period shorter than the predetermined period during which the user is permitted to reproduce or record the predetermined content data. Features.
[0016]
A first program according to the present invention includes: a first reception control step of controlling reception of a signal requesting distribution of first information from another information processing apparatus; And a second reception control step of controlling the reception of the first information from another information processing apparatus. The information is characterized in that it is information that allows predetermined content data to be reproduced or recorded for a period indicated by a temporary expiration date shorter than a predetermined period in which data reproduction or recording is permitted.
[0017]
According to a second information processing apparatus of the present invention, an information transmitting / receiving means for transmitting / receiving information to / from another information processing apparatus, and first information corresponding to predetermined content data by the information transmitting / receiving means based on an operation input by a user Request signal transmission control means for controlling transmission of a signal requesting transmission of the first information, and recording means for recording the first information received by the information exchange means and second information relating to the use of the first information. The information exchange means receives the first information from the other information processing device, and transmits the first information to the other information processing device based on a user's operation input; Information that allows the user to reproduce or record the predetermined content data for a period indicated by a temporary period shorter than the predetermined period during which the user is permitted to reproduce or record the predetermined content data. The second information recorded by the recording means includes third information indicating the temporary expiration date of the first information, and the request signal transmission control means performs the operation based on the user's operation input or other information. When the temporary period elapses after receiving the first information from the information processing device, the information transmission / reception means is controlled to transmit a signal requesting transmission of the first information.
[0018]
At least a portion of the signal requesting transmission of the first information may be transmitted and received over a secure communication path.
[0019]
At least a part of the signal requesting the transmission of the first information may be transmitted and received after being encrypted.
[0020]
Acquisition means for acquiring information necessary for the authentication processing can be further provided, and the information exchange means can cause another information processing apparatus to transmit information necessary for the authentication processing. .
[0021]
A content data processing means for recording or reproducing content data using the first information may be further provided.
[0022]
A second information processing method according to the present invention includes a first request signal transmission control step of controlling transmission of a signal requesting transmission of first information corresponding to predetermined content data, based on a user operation input; A reception control step of controlling reception of first information from another information processing apparatus and second information relating to use of the first information; first information received by the processing of the reception step; Based on a recording control step of controlling recording of the second information and third information included in the second information and indicating a temporary expiration date of the first information, the first information is transmitted from another information processing apparatus to the first information processing apparatus. If the temporary expiration date has passed after receiving the information, a second request signal transmission control step for controlling transmission of a signal requesting transmission of the first information, and the first information based on a user operation input Transmission to other information processing devices Transmitting the predetermined content data for a period indicated by a temporary period shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. Alternatively, the information is information that can be recorded.
[0023]
The program recorded on the second recording medium of the present invention is a first request for controlling transmission of a signal requesting transmission of first information corresponding to predetermined content data based on an operation input by a user. A signal transmission control step, a reception control step of controlling reception of first information from another information processing apparatus, and second information relating to the use of the first information, and a first information received by the processing of the reception step. And a recording control step for controlling recording of the second information, and other information processing based on the third information included in the second information and indicating the temporary expiration date of the first information. A second request signal transmission control step for controlling transmission of a signal requesting transmission of the first information when the temporary expiration date has elapsed after receiving the first information from the apparatus; , Other information of the first information A transmission control step of controlling transmission to the processing device, wherein the first information is transmitted only during a period indicated by a temporary period shorter than a predetermined period during which the user is allowed to reproduce or record the predetermined content data. , Characterized in that it is information capable of reproducing or recording predetermined content data.
[0024]
A second program according to the present invention includes a first request signal transmission control step of controlling transmission of a signal requesting transmission of first information corresponding to predetermined content data based on an operation input by a user; A reception control step of controlling reception of the first information and the second information relating to the use of the first information from the information processing apparatus, and the first information and the second information received by the processing of the reception step. A first information from another information processing apparatus based on a recording control step of controlling the recording of the first information and third information indicating a temporary term of the first information included in the second information. If the temporary expiration date has passed after the reception, a second request signal transmission control step for controlling transmission of a signal requesting transmission of the first information, and a second request signal transmission control step based on an operation input by the user. Control of transmission to the information processing device Transmitting the predetermined content data for a period indicated by a temporary period shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. Alternatively, the information is information that can be recorded.
[0025]
In the content distribution system according to the present invention, the first information processing apparatus may include a first information exchange unit that exchanges information with the second information processing apparatus, and a second information recording unit that records second information related to the distribution of the first information. And a distribution control unit that controls distribution of the first information to the second information processing device by the first information exchange unit, the first information exchange unit includes a second information processing unit. A signal for requesting distribution of the first information is received from the device, and the first information is distributed to the second information processing device based on the control of the distribution control unit. Receiving the first information, the second information recorded by the one recording unit includes third information indicating a temporary term of the first information, which is distributed to the second information processing apparatus, A second information exchange in which the second information processing apparatus exchanges information with the first information processing apparatus; Request signal transmission control means for controlling transmission of a signal requesting transmission of first information corresponding to predetermined content data by second information transfer means based on a user's operation input; And second recording means for recording second information relating to the use of the first information, the second information being transmitted and received by the first information receiving means. While receiving the first information from the processing device, the first information is transmitted to the first information processing device based on a user's operation input, and the first information is transmitted to the second information recorded by the second recording unit. Contains the third information, the request signal transmission control means, based on the user's operation input, or after receiving the first information from the first information processing device, if the temporary expiration date has passed, The first information must be transmitted by the information transfer means. And the first information is transmitted for a predetermined period only for a period indicated by a temporary period shorter than the predetermined period during which the user is allowed to reproduce or record the predetermined content data. The information is characterized by being capable of reproducing or recording content data.
[0026]
In the first information processing apparatus, method, and program according to the present invention, a signal requesting distribution of the first information is received from another information processing apparatus, and the first information is transmitted to the other information processing apparatus. The first information is transmitted and received from another information processing device, and the first information is indicated by a temporary period shorter than a predetermined period during which the user is allowed to reproduce or record the predetermined content data. This is information that allows predetermined content data to be reproduced or recorded only during the period of time.
[0027]
In the second information processing apparatus, method, and program of the present invention, transmission of first information corresponding to predetermined content data is requested based on an operation input by a user, and the first information is transmitted from another information processing apparatus. And second information relating to the use of the first information are received, and the received first information and second information are recorded and included in the second information. After receiving the first information from another information processing device based on the third information indicating the temporary expiration date of the information, a signal requesting transmission of the first information is transmitted when the temporary expiration date has passed. The first information is transmitted to another information processing device based on a user's operation input, and the first information is transmitted from a predetermined period during which the user is allowed to reproduce or record predetermined content data. Also indicated by a short temporary deadline Only while is information capable of reproducing or recording predetermined contents data.
[0028]
In the content distribution system according to the present invention, the first information processing device receives a signal requesting distribution of the first information from the second information processing device, and sends the first information processing device a first signal. The information is transmitted, the first information is received from the second information processing apparatus, and the second information processing apparatus transmits the first information corresponding to the predetermined content data based on a user operation input. Is requested, the first information and the second information relating to the use of the first information are received from the first information processing apparatus, and the received first information and the second information are recorded. Based on the third information indicating the temporary expiration date of the first information included in the second information, when the temporary expiration date has elapsed after receiving the first information from the first information processing apparatus , A signal requesting transmission of the first information is transmitted, , The first information is transmitted to the first information processing apparatus, and the first information has a temporary term shorter than a predetermined period during which the user is allowed to reproduce or record the predetermined content data. Is information that allows predetermined content data to be reproduced or recorded only during the period indicated by.
[0029]
BEST MODE FOR CARRYING OUT THE INVENTION
Hereinafter, embodiments of the present invention will be described with reference to the drawings.
[0030]
FIG. 1 is a diagram for describing a content distribution system to which the present invention has been applied. The server 1 that manages the license is connected to the personal computers 3-1 to 3-3 used by the user via a network 2 configured by a wide area network such as the Internet or a secure communication path such as a dedicated line. n and MMKs (Multi Media Kiosks) 4-1 to 4-m that allow the user to execute transmission and reception of predetermined data using a recording medium such as an MD (Mini Disk (trademark)). ing.
[0031]
The server 1 transmits the content data to the personal computers 3-1 to 3-n or the MMKs 4-1 to 4-m and performs an authentication process using authentication information such as a login name and a password. A license that permits recording or reproduction of content data is distributed to personal computers 3-1 to 3-n or MMKs 4-1 to 4-m used by a correctly authenticated user. In addition, the server 1 receives the license of the content from the personal computer 3-1 to 3-n or the MMK 4-1 to 4-m used by the user, and deposits the license according to the request of the user. License can be given again.
[0032]
A user using the personal computers 3-1 to 3-n or the MMKs 4-1 to 4-m performs a process of downloading a license from the server 1 and a process of returning a license to the server 1 by performing a personal process. It instructs the computers 3-1 to 3-n or the MMKs 4-1 to 4-m. The license permits the content to be recorded and reproduced for a predetermined period, such as one month. The downloaded license is valid only for a temporary period regulated by a predetermined period, for example, three days. After the temporary period expires, the content is recorded and reproduced unless the license is downloaded (updated) again. I can't.
[0033]
The personal computers 3-1 to 3-n execute a process of requesting the server 1 to update the license after the license is downloaded and the temporary expiration date elapses even if there is no instruction from the user (that is, in the background process). I do. After distributing the license to the personal computers 3-1 to 3-n or the MMKs 4-1 to 4-m, the server 1 does not distribute the license to the user but temporarily distributes the license to the user. The license is distributed again (that is, the license is updated) in response to a request from the personal computer 3-1 to 3-n or the MMK 4-1 to 4-m.
[0034]
Therefore, the user is not connected to the network 2 by using the user who records and reproduces the content using the personal computers 3-1 to 3-n or the license downloaded using the MMKs 4-1 to 4-m. A user who records and reproduces content on a device loses a license due to a failure, loss, or theft, but, for example, a device (personal computer 3-1 to 3) connected to the network 2 and having no failure. -N or the MMK 4-1 to 4-m that is not out of order) to change the authentication information such as the login name and the password registered in the server 1, Can request the server 1 to distribute the license.
[0035]
Hereinafter, when it is not necessary to distinguish the personal computers 3-1 to 3-n individually, they are simply referred to as the personal computers 1; Collectively.
[0036]
FIG. 2 is a block diagram showing the configuration of the server 1.
[0037]
The CPU (Central Processing Unit) 11 is, for example, a signal corresponding to various commands input by the administrator of the server 1 using the input unit 16 via the input / output interface 15 and the internal bus 14, and a communication unit 19. And performs various processes based on those signals. A ROM (Read Only Memory) 12 stores a program used by the CPU 11 and basically fixed data of calculation parameters. A RAM (Random Access Memory) 13 stores programs used in the execution of the CPU 11 and parameters that change as appropriate in the execution. The CPU 11, the ROM 12, and the RAM 13 are interconnected by an internal bus 14.
[0038]
The internal bus 14 is also connected to an input / output interface 15. The input unit 16 includes, for example, a keyboard and a mouse, and is operated when various commands are input to the CPU 11. The output unit 17 includes, for example, a display device such as a CRT (Cathode Ray Tube) that displays various information as text or images, and an audio output device such as a speaker. The recording unit 18 is composed of, for example, a hard disk or a semiconductor memory, and is content data to be distributed to the personal computer 3 or the MMK 4, data necessary for issuing a license to the personal computer 3 or the MMK 4 or receiving a license return, the CPU 11. And the data used by the processing of these programs.
[0039]
The drive 20 is mounted with a magnetic disk 21, an optical disk 22, a magneto-optical disk 23, and a semiconductor memory 24 as necessary, and exchanges data. The communication unit 19 is connected to the network 2 and exchanges information with the personal computer 3 or the MMK 4.
[0040]
FIG. 3 is a block diagram showing a configuration of the personal computer 3.
[0041]
The CPU 31 receives, for example, signals corresponding to various commands input by the user using the input unit 36 and signals input via the communication unit 39 via the input / output interface 35 and the internal bus 34, and receives these signals. Executes various processes based on the signal. The ROM 32 stores programs used by the CPU 31 and basically fixed data of calculation parameters. The RAM 33 stores programs used in the execution of the CPU 31 and parameters that change as appropriate in the execution. The CPU 31, the ROM 32, and the RAM 33 are interconnected by an internal bus.
[0042]
The internal bus 34 is also connected to an input / output interface 35. The input unit 36 includes, for example, a keyboard and a mouse, and is operated when inputting various commands to the CPU 31. The output unit 37 is configured by a display device such as a CRT or the like that displays various types of information as text or images, or an audio output device such as a speaker. The recording unit 38 is composed of, for example, a hard disk or a semiconductor memory, and receives data from the server 1 for issuing a license or returns a license to the server 1, and data of content data and a license distributed from the server 1. In addition, it stores programs used by the CPU 31, data generated by processing of those programs, and the like.
[0043]
A magnetic disk 21, an optical disk 22, a magneto-optical disk 23, and a semiconductor memory 24 are mounted on the drive 40 as necessary, and exchange data. The communication unit 39 is connected to the network 2 and exchanges information with the server 1.
[0044]
FIG. 4 is a block diagram showing the configuration of MMK4.
[0045]
The MMK 4 includes a distribution terminal computer 51, an IEEE 1394 cable 53, an MD drive 52, and a speaker 55. The distribution terminal computer 51 is connected to the network 2 to exchange information with the server 1, and is connected to the MD drive 52 via an IEEE 1394 cable 53 so as to exchange information. The MD drive 52 is mounted with the MD 54 and records content data and a license distributed from the server 1 on the MD 54 and reproduces the content recorded on the MD 54 under the control of the distribution terminal computer 51, and transmits the content to the speaker 55. A process of outputting the information necessary for the transfer of the license and reading the information from the MD 54 and outputting the information to the distribution terminal computer 51 is performed.
[0046]
FIG. 5 is a block diagram showing a configuration of the distribution terminal computer 51.
[0047]
The CPU 61 receives, for example, signals corresponding to various commands input by the user using the input unit 66 and signals input via the communication unit 69 via the input / output interface 65 and the internal bus 64, and receives those signals. Executes various processes based on the signal. The ROM 62 stores a program used by the CPU 61 and basically fixed data of calculation parameters. The RAM 63 stores a program used in the execution of the CPU 61 and parameters that change as appropriate in the execution. The CPU 61, the ROM 62, and the RAM 63 are interconnected by an internal bus 64.
[0048]
The internal bus 64 is also connected to an input / output interface 65. The input unit 66 includes, for example, a keyboard and a mouse, and is operated when various commands are input to the CPU 61. The display unit 67 is constituted by, for example, a CRT or the like, and displays various information as text or images. The recording unit 68 includes, for example, a hard disk or a semiconductor memory, and stores programs used by the CPU 61, data generated by processing the programs, and the like. The communication unit 69 is connected to the network 2, exchanges information with the server 1, and is connected to the MD drive 52 via the IEEE 1394 cable 53.
[0049]
As described above, the server 1 in FIG. 1 distributes the content to the personal computer 3 or the MMK 4, executes the authentication process, and sends the content to the personal computer 3 or the MMK 4 used by the correctly authenticated user. Download, renew, or return a downloaded license. Hereinafter, these processes will be described separately for client processes and server processes.
[0050]
FIG. 6 is a functional block diagram of the server 81 and the client 82 when executing processes of content distribution, license download, update, and return. 6, the server 81 corresponds to the function executed by the CPU 11 of the server 1 of FIG. 1, and the client 82 corresponds to the function executed by the CPU 31 of the personal computer 3 of FIG. 1 or the CPU 61 of the terminal distribution computer 51 of the MMK 4. Corresponding.
[0051]
The server 81 includes a content server 91, a content database 96, a locker server 92, a locker database 93, a license server 94, and a purchase server 95.
[0052]
The content server 91 receives a request from the locker client 101 of the client 82, and distributes the content recorded in the content database 96 to the locker client 101 via the communication path 111. The communication path 111 may be, for example, a wide area network such as the Internet. The content database 96 records the content to be delivered to the client. Content is distinguished by a content ID.
[0053]
The locker server 92 receives a request from the locker client 101 of the client 82, executes authentication processing, transmits a list of licenses recorded in the locker database 93, issues a transaction ID, issues a license, Alternatively, a license is returned together with a license return permission, or a license request or a license return request is received from the license server 94 to issue a license or perform a license return process. The locker server 92 updates the information registered in the locker database 93 with the above-described processing. Further, the locker server 92 communicates with the locker client 101 of the client 82 via the communication path 112. The communication path 112 may be the same communication path as the communication path 111, and may be, for example, a wide area network such as the Internet.
[0054]
The locker database 93 records user data that is user registration information and license data that is license information. FIG. 7 shows user registration information and license information recorded in the locker database 93.
[0055]
The locker database 93 records a login name and a password with the user ID as Primary Keyword (PK) as user registration information. User registration is performed in advance, and a login name and a password are registered corresponding to the user ID. Further, the locker database 93 records the user ID, the content ID, the temporary expiration date, the expiration date, the usage condition, and the like as the license information as the license ID as the Primary Keyword. The temporary period is a period during which the downloaded license is valid. When the temporary period has expired, the license is updated. The term is a term at which a license can be renewed, and a license whose term has expired cannot be renewed. The usage conditions are, for example, the number of times that the distributed content can be copied to another device or a recording medium, or for prohibiting copying the distributed content to another device or a recording medium. Information.
[0056]
The license server 94 receives the license request or the license return request from the license client 103, outputs the license request to the locker server 92, and transmits the issued license or the license return completion notification to the license client 103. The license server 94 communicates with the license client 103 of the client 82 via a communication path 113 which is a secure communication path. For example, a wide area network such as the Internet may be used for the communication path 113. In such a case, processing necessary for secure communication such as encryption is performed.
[0057]
Upon receiving a license purchase request from the purchase client 105, the purchase server 95 transmits a list of sales contents, issues a license ID based on the information of the purchase contents specified by the user, and issues a license ID to the purchase client 105. The transmitted license information is transmitted and added to the license information registered in the locker database 93. Further, the purchase server 95 communicates with the purchase client 105 of the client 82 via the communication path 114. The communication path 114 may be the same communication path as the communication path 111 or the communication path 112, and may be, for example, a wide area network such as the Internet.
[0058]
The client 82 includes a locker client 101, a content database 102, a license client 103, a license database 104, a purchase client 105, a recording / playback processing unit 106, a display control unit 107, and an operation input unit 108.
[0059]
The locker client 101 of the client 82 receives the distribution of the content from the content server 91 of the server 81 via the communication path 111 according to the user operation input from the operation input unit 108, and records the content in the content database 102, Upon receiving information such as a login name and a password required for authentication from the operation input unit 108, the locker server 92 issues a license list request, a license issuance permission request, or a license return permission request to the locker server 92 via the communication path 112. When the authentication is successfully completed, the license list, the license issuance permission notice and the transaction ID, or the license return permission notice and the transaction ID are received.
[0060]
The content database 102 records the content data received by the locker client 101 from the content server 91.
[0061]
The license client 103 transmits a license request or a license return request to the license server 94 via the communication path 113 which is a secure communication path, and transmits a license or a license return completion notification to the license server 94 via the secure communication path. It is received from the license server 94 via the path 113. The license client 103 stores the supplied license information in the license database 104. If the communication path 113 is, for example, a wide area network such as the Internet, the license request or the license return request is transmitted after being encrypted.
[0062]
FIG. 8 is a diagram illustrating an example of information registered in the license database 104. In the license information, a content ID, a temporary expiration date, an expiration date, and a use condition are described with the license ID as PK.
[0063]
The purchase client 105 exchanges information necessary for purchasing a license with the purchase server 95 in accordance with a user operation input input from the operation input unit 108.
[0064]
The recording / reproducing processing unit 106 performs a process of recording or reproducing content data stored in the content database 102 on a recording medium using a license stored in the license database 104, and outputting a sound. This corresponds to the drive 40 or the output unit 37 of the personal computer 3 or the MD drive 52 of the MMK4.
[0065]
The display control unit 107 controls the display of various types of information such as text or images, and controls the display of the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4.
[0066]
The operation input unit 108 receives an operation input from the user and outputs a signal indicating the user's operation input to the locker client 101, the license client 103, or the purchase client 105, and the input unit 36 of the personal computer 3. , Or the input unit 66 of the MMK4.
[0067]
Next, a license purchase process executed by the client 82 will be described with reference to the flowchart in FIG.
[0068]
In step S1, the purchase client 105 accesses the purchase server 95 of the server 81 based on an operation input by the user using the operation input unit 108 to start license purchase processing, and starts the purchase processing. Notice. The notification of the start of the purchase process is transmitted, for example, as a request for a list of contents corresponding to the license that can be sold.
[0069]
In step S2, the purchase client 105 receives the data indicating the list of sales contents, which the purchase server 95 transmits in step S22 of FIG. It is displayed on the output unit 37 or the display unit 67.
[0070]
In step S3, the purchase client 105 receives an operation input for designating content for which a license is desired to be purchased from the operation input unit 108, and in step S4, performs authentication processing such as a login name and a password from the operation input unit 108. The user receives information necessary for purchasing a license, such as information required for the license and a payment method for the license of the purchased content.
[0071]
In step S5, the purchase client 105 transmits information specifying the content and information necessary for purchasing a license to the purchase server 95.
[0072]
In step S6, the purchase client 105 receives the purchase processing result transmitted by the purchase server 95 in step S27 of FIG. 10 described later, and outputs the purchase processing result to the output unit 37 by the processing of the display control unit 107. Alternatively, the display is displayed on the display unit 67, and the process is terminated.
[0073]
The client 82 receives the distribution of the content data from the content server 91 before or after the license purchase processing is executed (at the latest, at the time of license download), or simultaneously with the license purchase processing. Shall be stored in Further, in the flowchart of FIG. 9, it has been described that the method of paying the content purchase fee is determined at the time of license acquisition when purchasing the content. However, the method of paying the content purchase fee may be determined at the time of content data distribution. good.
[0074]
Next, a license purchase process of the server 81, which is executed in parallel with the process described with reference to FIG. 9, will be described with reference to the flowchart in FIG.
[0075]
In step S21, the purchase server 95 receives the notification of the start of the purchase process transmitted by the purchase client 105 of the client 82 in step S1 in FIG. 9, and transmits data indicating a list of sales contents in step S22.
[0076]
In step S23, the purchase server 95 receives the information specifying the content transmitted by the purchase client 105 in step S5 of FIG. 9 and the information necessary for purchasing the license. The purchase server 95 refers to the user data registered in the locker database 93 based on the received data and inquires the user (performs an authentication process).
[0077]
In step S24, the purchase server 95 determines whether the user has been correctly inquired.
[0078]
If it is determined in step S24 that the user has been correctly queried, the purchase server 95 issues a license ID in step S25, and in step S26, the locker database 93 stores the new license, that is, the issued license ID. The corresponding content ID, time limit, and usage conditions are registered.
[0079]
If it is determined in step S24 that the user has not been correctly inquired, or after the processing in step S26 ends, in step S27, the purchase server 95 transmits the purchase processing result to the purchase client 105, and the processing ends. Is done. That is, if the user is not correctly inquired, a purchase processing failure is notified, and if the user is correctly inquired, the purchase processing end is notified.
[0080]
By the processing described with reference to FIGS. 9 and 10, the client 82 cannot record or reproduce the content data only by purchasing the license of the content from the server 81. The client 82 purchases a license for the content by the processing described with reference to FIGS. 9 and 10, so that the client 82 can download the license, which is executed by the processing described later. The client 82 can record or reproduce the content data by downloading the license.
[0081]
Next, with reference to the flowcharts of FIGS. 11 and 12, a description will be given of a client license download process for downloading a license of a content for which purchase processing has been completed.
[0082]
In step S41, the locker client 101 receives, from the operation input unit 108, authentication information required for a license list request, such as a login name and a password.
[0083]
In step S42, the locker client 101 stores the input authentication information, and sends a license list request for requesting a list of licenses purchased by the user using the client 82 together with the authentication information to the locker server of the server 81. 92.
[0084]
In step S43, the locker client 101 determines whether or not the license list information transmitted in step S73 of FIG. 13 described below has been received. If it is determined in step S43 that the license list information has not been received, the process proceeds to step S54.
[0085]
If it is determined in step S43 that the license list information has been received, in step S44, the locker client 101 outputs the license list information to the display control unit 107. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4 to display license list information. The license list information includes a license ID, a content name, a content ID, a use condition of the content, and the like corresponding to a license purchased by a user using the client 82.
[0086]
In step S45, the locker client 101 receives, from the operation input unit 108, an operation input specifying a license for which a license request is made, such as a license ID or a content name or a content ID.
[0087]
In step S46, the locker client 101 includes the information stored in step S42, such as, for example, a login name and a password necessary for authentication processing, and information (for example, a license ID) specifying a license to be issued. The license issuing permission request is sent to the locker server 92.
[0088]
In step S47, the locker client 101 determines whether the license issuance permission and the transaction ID transmitted in step S77 of FIG. 13 described below have been received. If it is determined in step S47 that the license issuance permission and the transaction ID have not been received, the process proceeds to step S54 described below.
[0089]
If it is determined in step S47 that the license issuance permission and the transaction ID have been received, in step S48, the locker client 101 notifies the license client 103 that the license issuance permission has been notified, and issues the issued transaction ID. Supply. The license client 103 transmits a license request including the transaction ID supplied from the locker client 101 to the license server 94 of the server 81 using the secure communication path 113.
[0090]
For example, when the user can set the temporary expiration date of the license, the temporary expiration date of the license may be notified to the license server 94 together with the license request. On the other hand, when the temporary expiration date of the license is predetermined by the server 81, or when the remaining time of the license is less than the set temporary expiration date, the usage conditions transmitted together with the issued license include the temporary expiration date. Is described to the client 82.
[0091]
When the communication path 113 is, for example, a wide area network such as the Internet, the transfer of information between the license server 94 and the license client 103 is protected by using, for example, encryption, and the sender of the information is correct. The sender is proved (to prevent spoofing by a malicious third party).
[0092]
The encryption method includes, for example, a common key encryption method and a public key encryption method. The public key method is the most widely used encryption method on the Internet. A user is provided with a public key and a secret key, and encryption and decryption are performed using a combination of the two. The public key is authenticated by a CA (Certificate Authority), which is a third-party credit institution, and is open to the public. Information encrypted with the public key can be decrypted with a private key held by a public key publisher. is there. The public key method can also be used for electronic signatures.
[0093]
On the other hand, in the common key method, the same key is used for encryption and decryption. That is, the sender and receiver of the information must have a common encryption key at the same time. The sender of the information encrypts the document using the secret key, and the recipient of the information decrypts the data using the same secret key. For example, a simple DES (Data Encryption Standard) encryption key may be used as the common key.
[0094]
In step S49, the license client 103 determines whether the license and the use condition transmitted in step S81 of FIG. 14 described below have been received. If it is determined in step S49 that the license has not been issued, the process proceeds to step S54 described below.
[0095]
If it is determined in step S49 that the license and the use condition have been received, the license client 103 stores the received license and use condition in the license database 104 in step S50.
[0096]
Here, the license is data for enabling reproduction of content data that cannot be reproduced alone. For example, when the content data is encrypted, an encryption key for decryption is used. May be supplied to the client 82 as a license, or control information or the like necessary for reproducing content data may be supplied to the client 82 as a license.
[0097]
If the content data corresponding to the license stored in step S50 has not been acquired, the locker client 101 acquires the content data from the content server 91 of the server 81 and stores it in the content database 102 in step S51. Acquisition of content data may be performed before acquisition of a license.
[0098]
In step S52, the license client 103 outputs a message notifying that the license download has been completed to the display control unit 107 and the locker client 101. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4 to display a message notifying that the license download has been completed.
[0099]
In step S53, the locker client 101 sets a timer for executing a license update process described later based on the temporary expiration date of the newly downloaded license, and the process ends.
[0100]
If it is determined in step S43 that the license list information has not been received, if it has been determined in step S47 that the license issuance permission and the transaction ID have not been received, or if the license has not been issued in step S49. If it is determined that the locker client 101 has received the error message from the locker server 92 in step S54, the locker client 101 outputs the error message to the display control unit 107. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4, displays an error message, and ends the processing.
[0101]
Next, with reference to the flowcharts of FIGS. 13 and 14, a description will be given of the license download processing of the server, which is executed in parallel with the processing described with reference to the flowcharts of FIGS.
[0102]
In step S71, the locker server 92 receives the license list request including the necessary authentication information transmitted by the locker client 101 in step S42 in FIG.
[0103]
In step S72, the locker server 92 refers to the user data registered in the locker database 93, and determines whether the authentication information transmitted with the license list request is correct. If it is determined in step S72 that the authentication information is incorrect, the process proceeds to step S83 described below.
[0104]
If it is determined in step S72 that the authentication information is correct, in step S73, the locker server 92 refers to the license data registered in the locker database 93, and the user who transmitted the license list request has purchased the license information. License list information, which is a list of licenses, is generated and transmitted to the locker client 101.
[0105]
In step S74, the locker server 92 receives the license issuance permission request transmitted by the locker client 101 in step S46 in FIG.
[0106]
In step S75, a transaction ID issuance process described later with reference to FIG. 15 or FIG. 17 is executed.
[0107]
In step S76, the locker server 92 determines whether or not a transaction ID has been issued as a result of the transaction ID issuance processing in step S75. If it is determined in step S76 that the transaction ID has not been issued, the process proceeds to step S83 described below.
[0108]
If it is determined in step S76 that the transaction ID has been issued, in step S77, the locker server 92 transmits the license issuance permission and the transaction ID to the locker client 101.
[0109]
In step S78, the license server 94 receives the license request transmitted by the license client 103 in step S48 in FIG. 12 via the secure communication path 113. As described above, when the communication path 113 is, for example, a wide area network such as the Internet, the license request is transmitted after being encrypted.
[0110]
In step S79, a license issuance permission process described later with reference to FIG. 16 or FIG. 18 is executed.
[0111]
In step S80, the locker server 92 determines whether the license issuance has been permitted as a result of the license issuance permission process in step S79. If it is determined in step S80 that the issuance of the license is not permitted, the process proceeds to step S83 described below.
[0112]
If it is determined in step S80 that the issuance of the license is permitted, in step S81, the locker server 92 notifies the license server 94 that the issuance of the license is permitted. The license server 94 issues the license, and transmits the license ID and the use condition to the license client 103 via the secure communication path 113.
[0113]
In step S82, the locker server 92 sets the DL (downloaded) flag of the license data of the corresponding license in the locker database 93 to ON (a state indicating that the corresponding license has been downloaded), and the process ends. .
[0114]
When it is determined in step S72 that the authentication information is incorrect, when it is determined in step S76 that the transaction ID has not been issued, or when it is determined in step S80 that the issuance of the license is not permitted In step S83, the locker server 92 transmits an error message to the locker client 101, and the process ends.
[0115]
The license is downloaded from the server 81 to the client 82 by the processing described with reference to FIGS. When the license is stored in the license database 104 of the client 82, the recording / reproduction processing unit 106 can record the content data stored in the content database 102 on a predetermined recording medium or reproduce and output the content data. .
[0116]
Next, the transaction ID issuance process 1 executed in step S75 in FIG. 13 will be described with reference to the flowchart in FIG.
[0117]
The locker server 92 refers to the user data registered in the locker database 93 based on the login name supplied from the locker client 101 in step S101, and the password supplied from the locker client 101 is correct in step S102. It is determined whether or not.
[0118]
If it is determined in step S102 that the password is correct, the locker server 92 generates a transaction ID by generating a random number in step S103. In step S104, the locker server 92 generates a transaction ID, a license ID, a user ID, and a license. The transaction data including the information of the temporary expiration date is stored in the locker database 93. The transaction ID is an ID for identifying a unique transaction executed by the server 81.
[0119]
In step S105, the locker server 92 allows the transaction ID and the license issuance permission notification to be returned to the locker client 101, and the process proceeds to step S76 in FIG.
[0120]
If it is determined in step S102 that the password is incorrect, in step S106, the locker server 92 determines that the transaction ID cannot be issued, and the process proceeds to step S76 in FIG.
[0121]
Next, with reference to the flowchart of FIG. 16, when the transaction ID issuance process 1 described with reference to FIG. 15 is executed in step S75 of FIG. 13, the license issuance permission process executed in step S79 of FIG. 1 will be described.
[0122]
The locker server 92 refers to the transaction data based on the transaction ID in step S111, and refers to the license data using the license ID included in the transaction data as a search key in step S112.
[0123]
In step S113, the locker server 92 determines whether the DL completion flag of the license data is OFF (that is, the license has not been downloaded). If it is determined in step S113 that the DL flag of the license data is not OFF, the process proceeds to step S118 described below.
[0124]
When it is determined in step S113 that the DL flag of the license data is OFF, in step S114, the locker server 92 determines whether or not the license has expired. If it is determined in step S114 that the license is not expired, the process proceeds to step S118 described below.
[0125]
If it is determined in step S114 that the license has not expired, in step S115, the locker server 92 creates license issuance permission information including the license expiration date, temporary expiration date, usage conditions, and the like.
[0126]
Here, the temporary expiration date of the license may be set by the user or may be set in advance by the server 81. However, the remainder of the license expiration date is set by the user or by the server 81. May also be short. Therefore, the temporary period of the license described in the license issuance permission information is the shortest of the remaining period of the license, the setting by the user, and the setting by the server 81.
[0127]
Further, the upper limit of the temporary period may be set in advance. The upper limit of the temporary expiration date may be set for each user, for example, may be registered in user data, or may be set in advance by the server 81. By setting the upper limit of the temporary period to be longer, the communication cost for license update processing described later can be reduced. However, the personal computer 3 or the like storing the license is lost or unexpectedly broken, or If the theft occurs, it may take a long time before the license is returned to the correct user.
[0128]
In step S116, the locker server 92 updates the license data registered in the locker database 93 as necessary. In step S117, the license issuance permission is returned to the license server 94. Proceed to step S80.
[0129]
If it is determined in step S113 that the DL flag of the license data has not been turned OFF, or if it is determined in step S114 that the license has not expired, the locker server 92 determines in step S118 that the license server The process proceeds to step S80 in FIG.
[0130]
Further, in place of the transaction ID issuing process 1 described with reference to FIG. 15, in step S75 of FIG. 13, a transaction ID issuing process 2 described with reference to FIG. 17 may be executed.
[0131]
In steps S131 and S132, the same processing as in steps S101 and S102 in FIG. 15 is performed. That is, the locker server 92 refers to the user data based on the login name and determines whether the password is correct. If it is determined in step S132 that the password is incorrect, the process proceeds to step S140 described below.
[0132]
If it is determined in step S132 that the password is correct, the same processing as in steps S112 to S115 of FIG. 16 is performed in steps S133 to S136. That is, the license data is referred to, and if the DL completion flag is OFF and the license is within the license period, license issuance permission information is created.
[0133]
If it is determined in step S134 that the DL completed flag is not OFF, or if it is determined in step S135 that the license is not expired, the process proceeds to step S140 described below.
[0134]
In steps S137 to S139, the same processing as in steps S103 to S105 in FIG. 15 is performed. That is, a transaction ID is generated, the generated transaction data is stored, and it is determined that the transaction ID and the license issuance permission notification can be returned, and the process proceeds to step S76 in FIG.
[0135]
If it is determined in step S132 that the password is incorrect, if it is determined in step S134 that the DL completed flag is not OFF, or if it is determined in step S135 that the license has not expired, the process proceeds to step S140. As in the case of the processing of step S106 in FIG. 15, the transaction ID cannot be issued, and the processing proceeds to step S76 in FIG.
[0136]
Next, referring to the flowchart of FIG. 18, when the transaction ID issuing process 2 described with reference to FIG. 17 is executed in step S75 of FIG. 13, the license issuance permission process executed in step S79 of FIG. 2 will be described.
[0137]
In steps S151 to S153, the same processing as steps S111, S116, and S117 in FIG. 16 is performed, and the process proceeds to step S80 in FIG.
[0138]
That is, when the transaction ID issuance process 2 described with reference to FIG. 17 is performed in step S75 in FIG. 13, the DL completed flag and the license expiration date have already been confirmed, and the license issuance permission information has already been created. Only the processing for updating the license data with reference to the transaction data and for allowing the license issuance permission to be returned to the license server 94 is executed.
[0139]
When the license expires after the license is downloaded to the client 82 after downloading the license to the client 82, the server 81 must turn off the downloaded flag of the license in preparation for the license update processing from the client 82. The license expiration processing of the server 81 will be described with reference to the flowchart of FIG.
[0140]
In step S161, the locker server 92 sequentially acquires license data registered in the locker database 93.
[0141]
In step S162, the locker server 92 determines whether or not the license of the acquired license data has been downloaded or updated before the temporary expiration date. If it is determined in step S162 that it is within the temporary expiration date, the process returns to step S161, and the subsequent processes are repeated.
[0142]
If it is determined in step S162 that the time is not within the temporary expiration date, in step S163, the locker server 92 turns off the downloaded flag of the license data.
[0143]
In step S164, the locker server 92 determines whether the processing has been completed for all license data. If it is determined in step S164 that the processing has not been completed for all license data, the processing returns to step S161, and the subsequent processing is repeated. If it is determined in step S164 that the processing has been completed for all license data, the processing ends.
[0144]
Since the downloaded flag corresponding to the license whose temporary period has elapsed after being downloaded or updated by the processing described with reference to FIG. 19 is changed from ON to OFF, the license is stored in the server 81 in the server 81. Is recognized as not being downloaded to the client 82.
[0145]
On the other hand, the client 82 requests the server 81 again for the license without receiving a user's operation input every time the license expires, and executes processing for updating the stored license. For example, even if the user has stolen the personal computer 3 used as the client 82, the server 81 can execute processing for changing the login name, password, and the like by the next temporary expiration date. The malicious third party will not be able to continue exercising the license for the content.
[0146]
Next, the license update processing executed by the client 82 will be described with reference to the flowchart in FIG.
[0147]
In step S171, the locker client 101 uses the operation input unit 108 to determine whether the license of the content whose reproduction has been instructed by the user has expired.
[0148]
If it is determined in step S171 that the license of the content has not expired, in step S172, the locker client 101 sets the timer set in step S53 in FIG. 12 for one of the licenses stored in the license database 104. Is valid, that is, whether there is a license whose temporary period has expired. If it is determined in step S172 that the timer has not been activated, the process returns to step S171, and the subsequent processes are repeated.
[0149]
If it is determined in step S171 that the license for the content has expired, or if it is determined in step S172 that the timer for any license has been activated, then in steps S173 to S176, the processes shown in FIGS. The same processing as in steps S46 to S49 is performed. That is, when a license issuance request for a content whose license has expired or a license whose license has expired is transmitted and a license issuance permission and a transaction ID are received, the secure communication path 113 is used. Then, a license request is transmitted, and it is determined whether or not a license has been issued. If it is determined that the license issuance permission and the transaction ID have not been received, or if it has been determined that the license has not been issued, the process proceeds to step S179 described later.
[0150]
If it is determined in step S176 that the license has been issued, the license client 103 overwrites the issued license in the license database 104 in step S177, and in step S178, the locker client 101 The timer is set, and the process ends.
[0151]
If it is determined in step S174 that the license issuance permission and the transaction ID have not been received, or if it is determined in step S176 that the license has not been issued, in step S179, the license client 103 issues an error message. Upon receiving, an error message is output to the display control unit 107. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4, displays an error message, and ends the processing.
[0152]
Next, the license update process of the server 81, which is executed in parallel with the process described with reference to the flowchart in FIG. 20, will be described with reference to the flowchart in FIG.
[0153]
In the license update process of the server 81, in steps S191 to S200, the same processes as those in steps S74 to S83 of FIGS. 13 and 14 are executed, and the process ends.
[0154]
That is, upon receiving the license issuance permission request, transaction ID issuance processing is executed. When the transaction ID is issued, the license issuance permission and the transaction ID are transmitted, and the license request is received via the secure communication path 113. When the issuance of the license is permitted in the license issuance permission process, the license and the use condition are transmitted, the DL completed flag changed to OFF in step S163 in FIG. 19 is turned ON, and the process ends. If the transaction ID has not been issued or the license has not been issued, an error message is transmitted, and the process ends.
[0155]
The processing described with reference to FIGS. 20 and 21 enables the user to re-execute the license even when the personal computer 3 or the like used as the client 82 breaks down, is lost, or is stolen. Therefore, despite the provision of a temporary expiration date for the license, the license whose temporary expiration has elapsed since it was downloaded to the client 82 is updated in the background without causing the user to perform complicated operations.
[0156]
Further, the user using the client 82 can return the license to the server 81 in a state where the license is stored, for example, when the user wants to use the license on another device.
[0157]
Next, the license return process of the client 82 will be described with reference to the flowchart of FIG.
[0158]
In steps S211 to S214, the same processing as in steps S41 to S44 of FIG. 11 is performed. That is, it receives the authentication information from the user, stores it, transmits the authentication processing information and the license list request to the server 81, and determines whether the license list information has been received. When the license list information is received, the received license list information is displayed so that a downloaded license can be distinguished from a license that has not been downloaded (stored in the server 81). If the license list information has not been received, the process proceeds to step S211 described below.
[0159]
In step S215, the locker client 101 receives, from the operation input unit 108, an operation input specifying a license to be returned, such as a license ID, a content name, or a content ID.
[0160]
In step S216, the locker client 101 includes the information stored in step S212, such as, for example, a login name and a password necessary for authentication processing, and information (for example, a license ID or the like) specifying a license to be returned. The license return permission request is sent to the locker server 92.
[0161]
In step S217, the locker client 101 determines whether the license return permission and the transaction ID transmitted in step S237 of FIG. 24 described below have been received. If it is determined in step S217 that the license return permission and the transaction ID have not been received, the process proceeds to step S221 described below.
[0162]
If it is determined in step S217 that the license return permission and the transaction ID have been received, in step S218, the locker client 101 notifies the license client 103 that the license return permission has been notified, and issues the issued transaction ID. Supply. The license client 103 transmits a license return request including the transaction ID supplied from the locker client 101 to the license server 94 of the server 81 using the secure communication path 113.
[0163]
In step S219, the license client 103 determines whether a license return completion notification transmitted from the license server 94 has been received in step S241 of FIG. 24 described below.
[0164]
If it is determined in step S219 that the license return completion notification has been received, the license client 103 outputs to the display control unit 107 that the license return has been completed in step S220. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4 to display a message notifying that the license return has been completed, and the process ends.
[0165]
In step S213, when it is determined that the license list information has not been received, in step S217, it is determined that the license return permission and the transaction ID have not been received, or in step S219, a license return completion notification has been received. If it is determined, in step S221, the license client 103 outputs an error message received from the license server 94 to the display control unit 107. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4, displays an error message, and ends the processing.
[0166]
Next, with reference to the flowcharts of FIGS. 23 and 24, a server license return process executed in parallel with the process described with reference to FIG. 22 will be described.
[0167]
In steps S231 to S233, the same processing as in steps S71 to S73 of FIG. 13 is performed. That is, upon receiving the license list request, it is determined whether the authentication information is correct. If it is determined that the authentication information is correct, the license list information is transmitted to the client 82. If it is determined that the authentication information is incorrect, the process proceeds to step S242 described below.
[0168]
In step S234, the locker server 92 receives the license return permission request transmitted by the locker client 101 in step S216 in FIG.
[0169]
In step S235, a return transaction ID issuance process described later with reference to FIG. 25 or FIG. 27 is executed.
[0170]
In step S236, the locker server 92 determines whether or not the transaction ID has been issued as a result of the return transaction ID issuing process in step S235. If it is determined in step S236 that the transaction ID has not been issued, the process proceeds to step S242 described below.
[0171]
If it is determined in step S236 that the transaction ID has been issued, the locker server 92 transmits the license return permission and the transaction ID to the locker client 101 in step S237.
[0172]
In step S238, the license server 94 receives, via the secure communication path 113, the license return request transmitted by the license client 103 in step S128 in FIG. As described above, when the communication path 113 is, for example, a wide area network such as the Internet, the license return request is transmitted after being encrypted.
[0173]
In step S239, a license return permission process described later with reference to FIG. 26 or FIG. 28 is executed.
[0174]
In step S240, the locker server 92 determines whether the return of the license has been permitted as a result of the license return permission process in step S79.
[0175]
If it is determined in step S240 that the return of the license has been permitted, in step S241, the locker server 92 sets the DL completed flag of the license data of the corresponding license in the locker database 93 to OFF, and notifies the license server 94 of the license. Notify that return is allowed. The license server 94 transmits a message indicating that the license return has been completed to the license client 103 via the secure communication path 113, and the process ends.
[0176]
When it is determined in step S232 that the authentication information is incorrect, when it is determined in step S236 that the transaction ID has not been issued, or when it is determined in step S240 that the return of the license is not permitted In step S242, the locker server 92 transmits an error message to the locker client 101, and the process ends.
[0177]
By the processing described with reference to FIGS. 22 to 24, the license stored in the client 82 is returned to the server 81. The license returned to the server 81 is downloaded again to the client 82 by the above-described download processing within the license period.
[0178]
Next, with reference to the flowchart of FIG. 25, the return transaction ID issuance process 1 executed in step S235 of FIG. 23 will be described.
[0179]
In steps S251 to S254, the same processing as in steps S101 to S104 in FIG. 15 is performed. That is, it is determined whether or not the password of the user data referred to based on the login name is equal to the input password. If the password is correct, a transaction ID is generated and recorded.
[0180]
In step S255, the locker server 92 allows the transaction ID and the license return permission notification to be returned to the locker client 101, and the process proceeds to step S236 in FIG.
[0181]
If it is determined in step S252 that the password is incorrect, in step S256, the locker server 92 determines that the transaction ID cannot be issued, and the process proceeds to step S236 in FIG.
[0182]
Next, referring to the flowchart of FIG. 26, when the transaction ID issuing process 1 described with reference to FIG. 25 is executed in step S235 of FIG. 23, the license return permission process executed in step S239 of FIG. 1 will be described.
[0183]
In steps S271 and S272, the same processing as in steps S111 and S112 in FIG. 16 is performed. That is, the transaction data is referred to based on the transaction ID, and the corresponding license data is referred to.
[0184]
In step S273, the locker server 92 determines whether the DL flag of the license data is ON. If it is determined in step S273 that the DL flag of the license data is not ON, the process proceeds to step S277 described below.
[0185]
If it is determined in step S273 that the DL flag of the license data is ON, in step S274, the locker server 92 determines whether or not the license has expired. If it is determined in step S274 that the license is not expired, the process proceeds to step S277 described below.
[0186]
If it is determined in step S274 that the license period has expired, the locker server 92 updates the license data registered in the locker database 93 in step S275, and in step S276, issues a license return permission to the license server 94. The process proceeds to step S240 in FIG. 24 assuming that a reply is possible.
[0187]
If it is determined in step S273 that the DL flag of the license data is not ON, or if it is determined in step S274 that the license is not expired, the locker server 92 determines in step S277 that the license server The license is not issued is output to 94, and the process proceeds to step S240 in FIG.
[0188]
Further, instead of the transaction ID issuing process 1 at the time of return described with reference to FIG. 25, in step S235 of FIG. 23, the transaction ID issuing process 2 at the time of return described with reference to FIG. 27 may be executed. .
[0189]
In steps S291 and S292, processing similar to that in steps S251 and S252 described with reference to FIG. 25 is performed. That is, the locker server 92 refers to the user data based on the login name and determines whether the password is correct. If it is determined in step S292 that the password is incorrect, the process proceeds to step S299 described below.
[0190]
In steps S293 to S295, the same processing as steps S272 to S274 described with reference to FIG. 26 is performed. That is, if the password is correct, the license data is referred to, and if the DL completed flag of the license data is ON, it is determined whether or not the license is within the license period. If it is determined in step S294 that the DL flag of the license data is not ON, or if it is determined in step S295 that the license is not expired, the process proceeds to step S299 described below.
[0191]
If it is determined in step S295 that it is within the license expiration date, the same processing as steps S253 to S255 described with reference to FIG. 25 is performed in steps S296 to S298. That is, a transaction ID is generated and stored, and it is determined that the transaction ID and the license issuance permission notification can be returned, and the process proceeds to step S236 in FIG.
[0192]
If it is determined in step S292 that the password is incorrect, if it is determined in step S294 that the DL completed flag is not ON, or if it is determined in step S295 that the license is not expired, step S299 is performed. In, it is determined that the transaction ID cannot be issued, and the process proceeds to step S236 in FIG.
[0193]
Next, referring to the flowchart of FIG. 28, if the transaction ID issuing process 2 described with reference to FIG. 27 is executed in step S235 of FIG. 23, the license return permission process executed in step S239 of FIG. 2 will be described.
[0194]
In steps S331 to S333, the same processes as those in steps S271, S275, and S276 in FIG. 26 are performed, and the process proceeds to step S240 in FIG. That is, when the transaction ID issuance process 2 described with reference to FIG. 27 is performed in step S235 in FIG. 23, the DL completion flag and the license expiration date have already been confirmed, and the license return permission information has already been created. With reference to the transaction data, the license data is updated, and only the process of determining that the license return permission can be returned to the license server 94 is executed.
[0195]
Next, with reference to a flowchart of FIG. 29, a process in which the client 82 reproduces content will be described.
[0196]
In step S321, the operation input unit 108 receives an operation input for designating content to be reproduced.
[0197]
In step S322, the license client 103 refers to the license database 104 and determines whether the license of the content whose reproduction has been instructed has expired. If it is determined in step S322 that the license of the content whose reproduction has been instructed has not expired, the process proceeds to step S329 described below.
[0198]
If it is determined in step S322 that the license of the content whose reproduction has been instructed has expired, the same processing as steps 173 to S178 in FIG. 20 is executed in steps S323 to S328. That is, when the license of the content for which reproduction has been instructed has expired, a process of updating the license of the content is executed.
[0199]
If it is determined in step S322 that the license of the content whose reproduction has been instructed has not expired, or after the process of step S328 is completed, in step S329, the recording / reproducing processing unit 106 stores the license in the content database 102. The content designated by the user is reproduced using the license stored in the license database 104, and the process is terminated.
[0200]
If it is determined in step S324 that the license issuance permission and the transaction ID have not been received, or if it is determined in step S326 that the license has not been issued, in step S330, the license client 103 or the locker client 101 is determined. Receives the error message, and outputs the error message to the display control unit 107. The display control unit 107 controls the output unit 37 of the personal computer 3 or the display unit 67 of the MMK 4, displays an error message, and ends the processing.
[0201]
By the process described with reference to FIG. 29, the content data is reproduced in a state where the license has been downloaded.
[0202]
In the processing described above, content data is transmitted and received through a normal communication path. Also, a request for license issuance, update, and return is first transmitted from the client 82 to the server 81 via a normal communication path, and the server 81 issues a transaction ID, and Send to
[0203]
Then, the client 82 transmits the transaction ID to the server 81 via a secure communication path instead of a normal communication path, or transmits the transaction ID by encrypting it, and even when issuing a license, the server 81 The data is transmitted to the client via a secure communication path, or the license and the usage conditions are transmitted after being encrypted.
[0204]
By doing so, spoofing by a malicious third party can be prevented, and the rights of the user who has purchased the license can be protected.
[0205]
In the above description, the license is supplied using the personal computer 3 or the MMK 4. However, for example, a PDA (Personal Digital (Data) Assistants) or a portable telephone may be used as the client 82. Needless to say.
[0206]
By applying the present invention to the problem that has occurred in the conventional content distribution system, even if the user loses the license downloaded from the server 81, the license is restored to the server 81 after the set temporary expiration date has passed. Therefore, for example, a user who knows authentication information such as a login name and a password can download the license to the client 82 such as a new personal computer 3 again.
[0207]
This eliminates the need for a license backup unit, and can reduce the cost of system construction and system operation. Also, even if the license is illegally downloaded, by changing the registered contents of the authentication information such as the password in the server 81, the license can be prevented from being updated next time by a malicious third party, and the rights of the regular user can be prevented. Can be protected. Further, since there is no need to permit license duplication as in a general backup function, it is possible to suppress the occurrence of illegal copying of licenses.
[0208]
The series of processes described above can also be executed by software. The software is a computer in which a program constituting the software is built in dedicated hardware, or a general-purpose personal computer that can execute various functions by installing various programs. For example, it is installed from a recording medium.
[0209]
As shown in FIG. 2 or FIG. 3, this recording medium is a magnetic disk 21 (including a flexible disk) on which the program is recorded and an optical disk 22 which are distributed to provide the program to the user separately from the computer. (Including CD-ROM (Compact Disk-Read Only Memory), DVD (Digital Versatile Disk)), a magneto-optical disk 23 (including MD (Mini-Disk) (trademark)), or a package medium including a semiconductor memory 24 or the like. It is composed of
[0210]
In this specification, the step of describing a program to be recorded on a recording medium may be performed in a chronological order in the order described, but is not necessarily performed in a chronological order. This also includes processes executed individually.
[0211]
In the present specification, the system represents the entire device including a plurality of devices.
[0212]
【The invention's effect】
As described above, according to the present invention, information necessary for reproducing or recording content data can be transmitted and received.
In particular, the information necessary to play or record content data can be reproduced or recorded only for a temporary period shorter than a predetermined period during which a user is allowed to play or record content. Information.
According to another aspect of the present invention, information necessary for reproducing or recording content data can be transmitted and received. In addition, a temporary period shorter than a predetermined period in which a user is permitted to reproduce or record content is provided. If the time limit has passed, information can be requested again.
[Brief description of the drawings]
FIG. 1 is a diagram for describing a content distribution system to which the present invention has been applied.
FIG. 2 is a block diagram illustrating a configuration of a server in FIG. 1;
FIG. 3 is a block diagram showing a configuration of the personal computer of FIG.
FIG. 4 is a block diagram illustrating a configuration of the MMK of FIG. 1;
FIG. 5 is a block diagram illustrating a configuration of a distribution terminal computer of FIG. 4;
FIG. 6 is a functional block diagram of a content distribution system to which the present invention has been applied.
FIG. 7 is a diagram illustrating data recorded in a locker database of FIG. 6;
FIG. 8 is a diagram illustrating data recorded in a license database of FIG. 6;
FIG. 9 is a flowchart illustrating a license purchase process of a client.
FIG. 10 is a flowchart illustrating a license purchase process of a server.
FIG. 11 is a flowchart illustrating a license download process of a client.
FIG. 12 is a flowchart illustrating a license download process of a client.
FIG. 13 is a flowchart illustrating a license download process of a server.
FIG. 14 is a flowchart illustrating a license download process of a server.
FIG. 15 is a flowchart illustrating transaction ID issuance processing 1;
FIG. 16 is a flowchart illustrating license issuance permission processing 1;
FIG. 17 is a flowchart illustrating transaction ID issuance processing 2;
FIG. 18 is a flowchart illustrating license issue permission processing 2;
FIG. 19 is a flowchart illustrating a license expiration process of the server.
FIG. 20 is a flowchart illustrating a license update process of a client.
FIG. 21 is a flowchart illustrating a license update process of the server.
FIG. 22 is a flowchart illustrating a license return process of a client.
FIG. 23 is a flowchart illustrating a license return process of the server.
FIG. 24 is a flowchart illustrating a license return process of the server.
FIG. 25 is a flowchart illustrating a transaction ID issuing process 1 upon return.
FIG. 26 is a flowchart illustrating license return permission processing 1;
FIG. 27 is a flowchart illustrating a transaction ID issue process 2 upon return.
FIG. 28 is a flowchart illustrating license return permission processing 2;
FIG. 29 is a flowchart illustrating a content reproduction process of a client.
[Explanation of symbols]
1 server, 3 personal computer, 4 MMK, 91 content server, 92 locker server, 93 locker database, 94 license server, 95 purchase server, 96 content database, 101 locker client, 102 content database, 103 license client, 104 license database, 105 purchase client, 106 recording / playback processing unit, 107 display control unit, 108 operation input unit, 113 communication path

Claims (18)

In another information processing apparatus, an information processing apparatus that exchanges first information necessary for reproducing or recording predetermined content data,
Information transfer means for transferring information to and from the other information processing device;
Recording means for recording second information relating to distribution of the first information;
Distribution control means for controlling distribution of the first information to the other information processing device by the information exchange means,
The information exchange means,
From the other information processing device, receiving a signal requesting distribution of the first information,
Distributing the first information to the other information processing device based on the control by the distribution control means,
Receiving the first information from the other information processing device,
The first information includes causing the user to reproduce or record the predetermined content data for a period indicated by a temporary term shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. Is possible information,
The second information recorded by the recording means includes third information indicating the temporary term of the first information, which is distributed to the other information processing apparatus. apparatus. 2. The information processing apparatus according to claim 1, wherein at least a part of the information exchange by the information exchange unit is exchanged via a secure communication path. 2. The information processing apparatus according to claim 1, wherein at least a part of the information exchange by the information exchange unit is encrypted before being exchanged. Further comprising an authentication processing execution means for executing the authentication processing,
The distribution control means controls the information exchange means so as to distribute the first information to the other information processing device only when the authentication processing by the authentication processing execution means is correctly completed. The information processing apparatus according to claim 1, wherein: Further comprising information generating means for generating fourth information which is random information,
The information exchange means transmits the fourth information to the other information processing device,
The distribution control unit controls the information exchange unit such that the first information is distributed to the other information processing device only when the fourth information is received from the other information processing device. The information processing apparatus according to claim 1, wherein: Further comprising information recording control means for controlling a change of recording of the second information recorded by the recording means,
The second information further includes fourth information indicating whether the first information is distributed to the other information processing device,
The information recording control means,
When the first information is distributed to the other information processing device by the information transfer unit, the fourth information included in the second information recorded by the recording unit is The first information is updated to information distributed to the other information processing device,
After the first information is distributed to the other information processing device by the information exchange means, if the temporary expiration date has passed, or the information exchange means may transmit the first information from the other information processing apparatus to the other information processing apparatus. Receiving the information of (a), the fourth information included in the second information recorded by the recording means is the one in which the first information is not distributed to the other information processing apparatus. The information processing apparatus according to claim 1, wherein the information is updated. In another information processing apparatus, an information processing method of an information processing apparatus for transmitting and receiving first information necessary for reproducing or recording predetermined content data,
A recording control step of controlling recording of second information relating to distribution of the first information;
A first reception control step of controlling reception of a signal requesting distribution of the first information from the other information processing apparatus;
A transmission control step of controlling transmission of the first information to the other information processing apparatus;
A second reception control step of controlling reception of the first information from the other information processing apparatus,
The first information includes causing the user to reproduce or record the predetermined content data for a period indicated by a temporary term shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. Is possible information,
The second information whose recording is controlled by the process of the recording control step includes third information indicating the temporary term of the first information, which is distributed to the other information processing apparatus. Characteristic information processing method. A program for causing a computer to execute a process of transmitting and receiving first information necessary for reproducing or recording predetermined content data with another information processing device, wherein A first reception control step of controlling reception of a signal requesting distribution of information;
A transmission control step of controlling transmission of the first information to the other information processing apparatus;
A second reception control step of controlling reception of the first information from the other information processing apparatus,
The first information includes causing the user to reproduce or record the predetermined content data for a period indicated by a temporary term shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. A recording medium on which a computer-readable program is recorded, the information being capable of being read. A program for causing a computer to execute a process of transmitting and receiving first information necessary for reproducing or recording predetermined content data with another information processing apparatus,
A first reception control step of controlling reception of a signal requesting distribution of the first information from the other information processing apparatus;
A transmission control step of controlling transmission of the first information to the other information processing apparatus;
A second reception control step of controlling reception of the first information from the other information processing apparatus,
The first information includes causing the user to reproduce or record the predetermined content data for a period indicated by a temporary term shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. A program characterized in that the information is possible. In another information processing apparatus, an information processing apparatus that exchanges first information necessary for reproducing or recording content data,
Information transfer means for transferring information to and from the other information processing device;
Request signal transmission control means for controlling transmission of a signal requesting transmission of the first information corresponding to the predetermined content data, based on a user operation input,
Recording means for recording the first information received by the information exchange means, and second information relating to the use of the first information,
The information exchange means receives the first information from the other information processing device, and transmits the first information to the other information processing device based on an operation input of the user;
The first information may cause the predetermined content data to be reproduced or recorded for a period indicated by a temporary period shorter than a predetermined period during which the user is permitted to reproduce or record the predetermined content data. Possible information,
The second information recorded by the recording unit includes third information indicating the temporary term of the first information,
The request signal transmission control means, based on an operation input of a user, or after receiving the first information from the other information processing device, if the temporary period has elapsed, the information transfer means, An information processing apparatus for controlling transmission of a signal requesting transmission of one piece of information. The information processing apparatus according to claim 10, wherein at least a part of the signal requesting transmission of the first information is transmitted and received via a secure communication path. 11. The information processing apparatus according to claim 10, wherein at least a part of the signal requesting transmission of the first information is encrypted and transmitted / received. Further comprising an acquisition unit for acquiring information necessary for the authentication process,
The information processing apparatus according to claim 10, wherein the information transfer unit transmits information necessary for the authentication processing to the other information processing apparatus. The information processing apparatus according to claim 10, further comprising a content data processing unit that records or reproduces the content data using the first information. In another information processing apparatus, an information processing method of an information processing apparatus for transmitting and receiving first information necessary for reproducing or recording content data,
A first request signal transmission control step of controlling transmission of a signal requesting transmission of the first information corresponding to the predetermined content data, based on a user operation input;
A reception control step of controlling reception of the first information from the other information processing device and second information relating to use of the first information;
A recording control step of controlling recording of the first information received by the processing of the receiving step, and the second information;
After receiving the first information from the other information processing device, based on the third information included in the second information and indicating the temporary expiration date of the first information, the temporary expiration date becomes A second request signal transmission control step of controlling transmission of a signal requesting transmission of the first information when the time has elapsed;
A transmission control step of controlling transmission of the first information to the other information processing apparatus based on the operation input of the user,
The first information includes causing the user to reproduce or record the predetermined content data only during a period indicated by the temporary expiration date that is shorter than a predetermined period during which reproduction or recording of predetermined content data is permitted. An information processing method characterized in that the information is capable of being processed. A program for causing a computer to execute a process of giving and receiving first information necessary for reproducing or recording content data with another information processing device,
A first request signal transmission control step of controlling transmission of a signal requesting transmission of the first information corresponding to the predetermined content data, based on a user operation input;
A reception control step of controlling reception of the first information from the other information processing device and second information relating to use of the first information;
A recording control step of controlling recording of the first information received by the processing of the receiving step, and the second information;
After receiving the first information from the other information processing device, based on the third information included in the second information and indicating the temporary expiration date of the first information, the temporary expiration date becomes A second request signal transmission control step of controlling transmission of a signal requesting transmission of the first information when the time has elapsed;
A transmission control step of controlling transmission of the first information to the other information processing apparatus based on the operation input of the user,
The first information includes causing the user to reproduce or record the predetermined content data only for a period indicated by the temporary expiration date that is shorter than a predetermined period during which reproduction or recording of predetermined content data is permitted. A recording medium on which a computer-readable program is recorded, the information being capable of being read. A program for causing a computer to execute a process of giving and receiving first information necessary for reproducing or recording content data with another information processing device,
A first request signal transmission control step of controlling transmission of a signal requesting transmission of the first information corresponding to the predetermined content data, based on a user operation input;
A reception control step of controlling reception of the first information from the other information processing device and second information relating to use of the first information;
A recording control step of controlling recording of the first information received by the processing of the receiving step, and the second information;
After receiving the first information from the other information processing device, based on the third information included in the second information and indicating the temporary expiration date of the first information, the temporary expiration date becomes A second request signal transmission control step of controlling transmission of a signal requesting transmission of the first information when the time has elapsed;
A transmission control step of controlling transmission of the first information to the other information processing apparatus based on the operation input of the user,
The first information includes causing the user to reproduce or record the predetermined content data only for a period indicated by the temporary expiration date that is shorter than a predetermined period during which reproduction or recording of predetermined content data is permitted. A program characterized in that the information is possible. A first information processing device that manages first information necessary for reproducing or recording content data,
In a content distribution system including the first information processing device and a second information processing device that transmits and receives the first information,
The first information processing device includes:
First information exchange means for exchanging information with the second information processing device;
First recording means for recording second information relating to distribution of the first information;
Distribution control means for controlling distribution of the first information by the first information transfer means to the second information processing apparatus,
The first information transfer means is:
Receiving a signal requesting distribution of the first information from the second information processing device;
Distributing the first information to the second information processing device based on control by the distribution control means;
Receiving the first information from the second information processing device;
The second information recorded by the first recording unit includes third information indicating the temporary term of the first information, which is distributed to the second information processing device,
The second information processing device includes:
Second information exchange means for exchanging information with the first information processing device;
Request signal transmission control means for controlling transmission of a signal requesting transmission of the first information corresponding to the predetermined content data, based on the operation input of the user,
A second recording unit that records the first information received by the second information transfer unit and the second information related to the use of the first information,
The second information transfer unit receives the first information from the first information processing device and transmits the first information to the first information processing device based on an operation input of the user. Send,
The second information recorded by the second recording means includes the third information,
The request signal transmission control means, based on a user's operation input, or, after receiving the first information from the first information processing device, if the temporary period has elapsed, the information transfer means, Controlling a signal requesting transmission of the first information to be transmitted;
The first information includes causing the user to reproduce or record the predetermined content data only for a period indicated by a temporary term shorter than a predetermined period permitted to reproduce or record the predetermined content data. A content distribution system characterized in that the information is capable of being transmitted.

Images