JP2004252848A - Output apparatus of user, server, contents distribution system, contents distribution method, and program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an output apparatus for a user, a server, and a contents distribution system for preventing unauthorized copy and use of contents and properly charging a fee while securing convenience of the user. <P>SOLUTION: This output apparatus 120 of the user requests decoding information for decoding the encrypted contents from a key creation server 201 and receives the decoding information from the key creation server 201. On the basis of the decoding information, decoding is carried out by a decoder 121a. When output of the decoded data is finished, the decoding information received from the server 201 is deleted. The key creation server 201 receives a transmission request of the decoding information from the output apparatus 120 of the user and creates the decoding information to transmit it to the output apparatus 120 of the user. <P>COPYRIGHT: (C)2004,JPO&NCIPI

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention relates to the use of various types of data based on electronic information (digital information), such as moving image data, still image data, music data, and character data (in the present specification, these data are also referred to simply as “contents”). Regarding the user's output device, server, content distribution system, and program related to prevention and billing, in particular, while ensuring user convenience, at the same time, preventing unauthorized copying and use of content, The present invention relates to a user output device, a server, a content distribution system, and a program that enable charging.
[0002]
[Prior art]
Advances in network technology have made it easier for a wide range of digital information (content) to be exchanged over networks. This greatly improves user convenience. On the other hand, since digital content is not degraded by duplication, there are situations in which illegal and illegal duplicates are released in large quantities on networks.
[0003]
Such a situation is considered to be disadvantageous for copyright owners and illegal users in the short term, but if measures to prevent such unauthorized use are strengthened more than necessary, legitimate There is a possibility that the convenience of the user may be reduced and the number of content users may be reduced. In such a situation, the creative activity is also stagnated, which leads to disadvantages for both the copyright owner and the user.
Therefore, it has been desired to provide a system that can prevent the illegal copying and use of contents while ensuring the convenience of the user, and at the same time, enable appropriate charging.
[0004]
Prior arts for solving such problems include the following.
For example, the invention disclosed in Patent Document 1 (Japanese Unexamined Patent Application Publication No. H8-6784, “System for Preventing Unauthorized Duplication of Software / Work” and Method for Preventing Unauthorized Duplication Use ”) is shown in FIG. As shown in FIG. 7, the contents are protected by the contents unlocking / reusing processing means and the use key given thereto. When the content is used for the first time, or when the use key expires, the external management apparatus is requested to issue a use key, and a new use key is acquired. At this time, a billing process is performed.
[0005]
The invention disclosed in Patent Document 2 (Japanese Patent Application Laid-Open No. 11-85504, entitled “Digital Content Distribution System Device”) is disclosed in FIG. 26 and FIG. 27 (FIGS. 2 and 11 of Patent Document 2). Is self-extracting, thereby protecting the contents. For example, when the contents are distributed, the contents are in a decompressed format that allows only the preview. To release this restriction, the user requests the copyright transfer center to issue a content rewriting process. The user can use the content whose restriction has been released by rewriting the content using the issued rewriting process. Billing is performed when this rewriting process is issued. In this conventional example, the content is always in a self-extracting format, and it is not necessary to lose the key or manage the correspondence between the key and the data. In addition, the content in the self-extracting format can be used alone to check its use environment when used.
[0006]
Also, the invention disclosed in Patent Document 3 (Japanese Patent Application Laid-Open No. 2000-90039, “Music distribution method, transmitting apparatus and method, and reproducing apparatus and method”) uses a unique ID of a device and a public key cryptosystem. The content is protected by processing. As shown in the processing of FIG. 7 of Patent Document 3, a public key and a secret key based on a unique ID of a device are generated, and the public key is registered in an authentication server. The server encrypts the content using the public key. Since the encrypted content can be decrypted only by the device having the secret key, the recipient of the content can be specified, and the content is charged.
[0007]
Also, the invention disclosed in Patent Document 4 (Japanese Patent Application Laid-Open No. 2000-187935, “Digital data recording device and method, and computer-readable recording medium recording the program”) is unique to the secondary storage medium. The content is protected using the ID. As shown in FIG. 1 of Patent Document 4, the encrypted and distributed content is once decrypted. Thereafter, the content is encrypted and recorded again using the ID unique to the secondary storage medium. Therefore, even if the encrypted content is copied to another secondary storage medium, that is, a medium having another ID, the encryption cannot be decrypted. Charging is basically performed when data is received.
[0008]
[Patent Document 1]
JP-A-8-6784
[Patent Document 2]
JP-A-11-85504
[Patent Document 3]
JP 2000-90039 A
[Patent Document 4]
JP 2000-187935 A
[0009]
[Problems to be solved by the invention]
However, in the invention disclosed in Patent Document 1, as the restriction on the use of the content, only the restriction on the reproduction period can be dealt with. For example, it is not possible to cope with restrictions on the number of times of reproduction. Further, since the use key is always present on the user side, the use key may be analyzed by a malicious user and may be abused.
Also, in the invention disclosed in Patent Document 2, the digital content distribution system device is a self-extracting type process, and therefore, can have some kind of checking function when decompressing. However, for example, if a content whose number of times of reproduction is limited is copied, each of the copies can be reproduced a predetermined number of times. That is, the number of times of reproduction cannot be substantially restricted. In addition, since processing necessary for decryption including self-decompression processing always exists on the user side, the processing may be analyzed by a malicious user and abused.
Further, in the invention disclosed in Patent Literature 3, only the function of specifying the distribution destination of the content is performed, and the restriction of the reproduction period, the number of times of reproduction, and the like cannot be performed. Further, in the invention disclosed in Patent Literature 4, only the function of specifying the secondary storage medium is performed, and it is not possible to limit the reproduction period and the number of times of reproduction.
[0010]
The present invention has been made to solve such a problem. In the present invention, it is possible to easily browse (preview) content before purchasing it. Also, at the time of purchasing the content, it is possible to limit the number of times of reproduction, the period of reproduction, the limit of the reproduction device, and the reproduction accuracy as necessary. In addition, appropriate charging based on those restrictions is enabled. In addition, the copyright holder is provided with a function of suppressing illegal copying by a malicious user, and is also capable of appropriately charging for the use of a legitimate user, the output device of the user, a server, a content distribution system, It is an object to provide a content distribution method and a program.
[0011]
[Means for Solving the Problems]
The present invention has been made to solve the above problems, and a user output device of the present invention includes: a user output device that decodes and outputs encoded content; and a decoding device that decodes the encoded content. An output device of the user in a content distribution system including a server that transmits decoding processing information for executing processing to the output device of the user via a communication network, and obtains information of encoded content. Data obtaining means for decoding, decoding processing information requesting means for requesting the server for decoding processing information of the coded content, decoding processing information receiving means for receiving decoding processing information from the server, and decoding Decoding processing means for decoding the encoded content based on the processing information; and after completion of output of the decoded content, Characterized by comprising a decoding information erasing means for erasing the decoding information received from the server.
With such a configuration, when the encoded (encrypted) data (content) is decoded and reproduced by the user's output device (for example, a printer or a projector), the encoded data is decoded by the server. A request for transmission of “decryption processing information (information for executing the decryption processing itself)” is given by designating the information of the content. Then, it receives the “decoding processing information” from the server, decodes the encoded data, and outputs (eg, prints). When the output of the decrypted data is completed, the “decoding processing information” received from the server is deleted.
As a result, “decoding processing information (information for executing the decoding processing itself)” paired with the encoded data can be used as a key. Thus, even if the encoding method is illegally decoded, only the data or only the data encoded by the same method is decrypted. In the future, if technology advances, it is possible to easily shift to a higher quality or more difficult to decode coding system. Further, since the signal transmitted from the user PC (personal computer) to the output device remains encoded, the security against eavesdropping is high. In addition, since the output device of the user temporarily acquires the “decoding processing information” by using the communication means by himself / herself, it is unlikely that the information will be analyzed and used illegally. Also, the user device is free to back up or copy data. There is no problem even if the copied data leaks to the outside.
[0012]
In addition, the output device of the user of the present invention may further include: a decoding condition specifying unit that specifies a decoding condition of the encoded content; and a decoding condition that is specified by the decoding condition specifying unit. Requesting decryption processing information requesting means.
With such a configuration, the user can specify the decoding condition of the encoded content by the decoding processing condition specifying means.
This allows unlimited use of coded data, use with a limited number of uses, use with a time limit, use with a limited hardware for decoding, use with a limited data accuracy and data amount, use with a limited user, The content can be used according to the user's convenience, such as use in post-processing.
[0013]
In addition, in the output device of the user of the present invention, when a charging server holding the charging information of the user is further connected to the content distribution system via a communication network, and the decoding process is performed by the decoding process information, The apparatus further comprises means for acquiring billing information from the billing server and restricting a range of a decoding process according to the billing information.
With such a configuration, when the output device of the user performs the decoding process using the “decoding process information”, the user obtains the “billing information” of the user from the charging server, and obtains the “charging information” of the user. To limit the range of the decoding process.
Thus, when the decoding process is started, the output device of the user communicates with the charging server, and the range of the decoding process can be limited according to the user's own "charging information". In addition, since important information related to billing is located outside the user's output device, there is a low possibility that the information is forged.
[0014]
Further, in the output device of the user of the present invention, when a time server for providing time information to the user is further connected to the content distribution system via a communication network, and a decoding process is performed by the decoding process information, And a means for acquiring time information from the time server and determining a decoding limitation period based on the time information.
With such a configuration, when the user's output device performs a decryption process using the “decryption process information” and there is a time (period) restriction on the use of the content, the user's output device will In addition, the reproduction is restricted by itself based on the time of the time server. Thus, the user's output device acquires the time information from the external time server, so that the time information is not forged.
[0015]
In addition, the server of the present invention transmits a communication network to an output device of a user that decodes and outputs encoded content and decoding processing information that executes a decoding process of the encoded content to the output device of the user. The server in the content distribution system configured to transmit the decryption processing information request from the user's output device; and the decryption processing It is characterized by comprising decoding processing information generating means for generating information, and decoding processing information transmitting means for transmitting the decoding processing information to an output device of the user.
With such a configuration, the server receives the content designation information from the user's output device and a transmission request for “decoding processing information (information for executing the decoding processing itself)”, and outputs the “decoding processing information”. Is generated and transmitted to the user's output device.
As a result, decoding process information (information for executing the decoding process itself) paired with the encoded data can be used as a key. Thus, even if the encoding method is illegally decoded, only the data or only the data encoded by the same method is decrypted. In the future, if technology advances, it is possible to easily shift to a higher quality or more difficult to decode coding system. Further, since the signal transmitted from the user PC (personal computer) to the output device remains encoded, the security against eavesdropping is high. In addition, since the output device of the user temporarily acquires the “decoding processing information” by using the communication means by himself / herself, it is unlikely that the information will be analyzed and used illegally. Also, the user device is free to back up or copy data. There is no problem even if the copied data leaks to the outside.
[0016]
Further, the server according to the present invention is characterized in that the decryption processing information is generated according to a decryption condition received from an output device of a user.
With such a configuration, the server generates “decoding processing information” based on the decoding condition specified by the user.
This allows unlimited use of coded data, use with a limited number of uses, use with a time limit, use with a limited hardware for decoding, use with a limited data accuracy and data amount, use with a limited user, The content can be used according to the user's convenience, such as use in post-processing.
[0017]
In addition, the server of the present invention is further characterized in that the content distribution system further includes a charging server holding charging information of the user connected via a communication network, and a transmission request of decoding processing information from an output device of the user. Is characterized by comprising: means for acquiring billing information from the billing server; and means for generating the decryption processing information in accordance with the billing information of the user.
With such a configuration, when the server generates the “decoding process information”, the range of the decoding process can be limited according to the user's billing information.
Thereby, the range of the decoding process can be determined according to the user's own billing information. In addition, since important information related to billing is located outside the user's output device, there is a low possibility that the information is forged.
[0018]
Further, in the server of the present invention, a time server for providing time information is further connected to the content distribution system via a communication network, and when generating the decryption processing information, the time information is transmitted from the time server. It is characterized by further comprising means for acquiring and determining a decoding limitation period based on the time information.
With such a configuration, when there is a time (period) restriction on the use of the content when the server generates the “decoding process information”, the “decoding process information” is set based on the time of the time server. Determines whether to generate.
As a result, the time information can be obtained from the time server, and the playback time limit can be determined. Further, since the time information is outside the output device of the user, it is not forged.
[0019]
Further, the content distribution system of the present invention communicates, to the user's output device, an output device of the user that decodes and outputs the encoded content, and decoding processing information that executes a decoding process of the encoded content. In a content distribution system including a server transmitting the content via a network, the output device of the user includes an encoded data acquisition unit for acquiring encoded content information, Decoding processing information requesting means for requesting decoding processing information from the server, decoding processing information receiving means for receiving decoding processing information from the server, and decoding of the encoded content based on the decoding processing information. Decryption processing means for performing, and after the output of the decrypted content is completed, erasing the decryption processing information received from the server A decryption process information erasing unit, wherein the server generates a decryption process information request unit for receiving a transmission request of the decryption process information from an output device of the user, and generates the decryption process information. And a decoding process information transmitting unit for transmitting the decoding process information to the output device of the user.
With such a configuration, the output device of the user requests the server for “decoding processing information (information for executing the decoding processing itself)” for decoding the encoded content, and the server outputs “decoding processing information”. Is received. Then, based on the decoding processing information, the encoded content is decoded. Then, after the output of the decrypted data is completed, the “decoding processing information” received from the server is deleted. In addition, the server receives a transmission request for “decoding process information” from the user's output device, generates “decoding process information”, and transmits the generated “decoding process information” to the user's output device.
As a result, decoding process information (information for executing the decoding process itself) paired with the encoded data can be used as a key. Thus, even if the encoding method is illegally decoded, only the data or only the data encoded by the same method is decrypted. In the future, if technology advances, it is possible to easily shift to a higher quality or more difficult to decode coding system. Further, since the signal transmitted from the user PC (personal computer) to the output device remains encoded, the security against eavesdropping is high. In addition, since the output device of the user temporarily acquires the “decoding processing information” by using the communication means by himself / herself, it is unlikely that the information will be analyzed and used illegally. Also, the user device is free to back up or copy data. There is no problem even if the copied data leaks to the outside.
[0020]
Further, the content distribution method of the present invention communicates, to the user's output device, a user's output device that decodes and outputs encoded content, and decoding process information that executes a decoding process of the encoded content. A content distribution method in a content distribution system including a server transmitting the content via a network, wherein the output device of the user obtains encoded data for acquiring encoded content information, A decoding processing information requesting procedure for requesting the server for decoding processing information of the encoded content, a decoding processing information receiving procedure for receiving decoding processing information from the server, and, based on the decoding processing information, A decryption process for decrypting the decrypted content, and receiving from the server after the output of the decrypted content is completed. And a decryption process information erasing procedure for erasing the decryption process information performed by the server. The server performs a decryption process information request receiving procedure for receiving a decryption process information transmission request from the user's output device. A decoding processing information generating procedure for generating processing information and a decoding processing information transmitting procedure for transmitting the decoding processing information to the output device of the user are performed.
With such a procedure, the user's output device requests the server for “decoding process information (information for executing the decoding process itself)” for decoding the encoded content, and the server outputs “decoding process information”. Is received. Then, the encoded content is decoded based on the “decoding processing information”. Then, after the output of the decrypted data is completed, the “decoding processing information” received from the server is deleted. Further, the server receives a transmission request for the decoding process information from the user's output device, generates the decoding process information, and transmits the decoding process information to the user's output device.
As a result, “decoding processing information (information for executing the decoding processing itself)” paired with the encoded data can be used as a key. Thus, even if the encoding method is illegally decoded, only the data or only the data encoded by the same method is decrypted. In the future, if technology advances, it is possible to easily shift to a higher quality or more difficult to decode coding system. Further, since the signal transmitted from the user PC (personal computer) to the output device remains encoded, the security against eavesdropping is high. In addition, since the output device of the user temporarily acquires the “decoding processing information” by using the communication means by himself / herself, it is unlikely that the information will be analyzed and used illegally. Also, the user device is free to back up or copy data. There is no problem even if the copied data leaks to the outside.
[0021]
Also, the computer program of the present invention provides a user output device for decoding and outputting encoded content, and decoding processing information for executing decoding processing of the encoded content to a communication network for the user output device. A computer in the user's output device in a content distribution system configured with a server that transmits the encoded content via a server, and an encoded data acquisition procedure for acquiring encoded content information; and the encoded content. A decoding process information requesting procedure for requesting the server for decoding process information, a decoding process information receiving procedure for receiving decoding process information from the server, and decoding the encoded content based on the decoding process information. A decryption process to be performed, and a decryption process received from the server after the output of the decrypted content is completed. Is a program for executing a decoding process information erase procedure to erase the information.
[0022]
Also, the computer program of the present invention provides a user output device for decoding and outputting encoded content, and decoding processing information for executing decoding processing of the encoded content to a communication network for the user output device. A server in the content distribution system configured with a server that transmits the decryption processing information request from the user's output device, for receiving a decryption processing information transmission request; It is a program for executing a decoding process information generating procedure for generating decoding process information and a decoding process information transmitting procedure for transmitting the decoding process information to the output device of the user.
[0023]
BEST MODE FOR CARRYING OUT THE INVENTION
Next, embodiments of the present invention will be described with reference to the drawings.
[0024]
[Overview of the present invention]
FIG. 1 is a diagram for explaining an outline of a content distribution system according to the present invention. A user device 100 that decodes and uses encoded (encrypted) content and a server group 200 are used as components of the system. I have.
The server group 200 includes a key generation server 201 having a decryption process information generation unit 210 for generating “decryption process information (information such as a decode program for executing the decryption process itself)” serving as a key; The system includes a charging server 301 having a charging control unit 310 for providing information, and a time server 401 having a time obtaining unit 410 for providing time information (judgment information of a reproduction time limit).
[0025]
The user device 100 includes a user PC 110 such as a personal computer and an output device 120 having a network communication function. The output device 120 is, for example, a printer or a projector. The encoded (encrypted) content 111 in the user PC 110 is recorded on the content received by the user PC 110 via a communication network such as the Internet, or on a CD-ROM or DVD-ROM distributed by a magazine appendix. This is the read content. This content is composed of "encoded data (encoded content data)" and "server designation information" for specifying a server to be accessed.
The preview decoder 112 is a preview decoder (decoding program) accompanying the encoded content 111, and is for previewing the content 111 on the user PC 110.
[0026]
The decoder 121 a in the storage device 121 in the user's output device 120 records the decode information (decryption processing information) received from the key generation server 201. Then, it receives the encoded (encrypted) content 111 from the user PC 110, performs a decoding process by the decoder 121 a, and outputs the decoded data to the output device 122. The decoder 121a is not a fixed one, but is constituted by, for example, software means. The decoder 121a transmits decode information (decoding processing information), billing information, reproduction restriction information, and time information from the server group 200. Obtain and perform decoding processing according to each information.
When printing or the like is completed by the output device 122, the completion of data output is detected by the output end detection unit 123, and the decoding information (decoding processing information) is deleted by the memory deletion unit 124.
[0027]
The content distribution system of the present invention described above has the following features.
The first point of the content distribution system according to the present invention is to distribute the encoded (encrypted) content 111 by communication or to distribute it through a magazine appendix or the like. The “decoding information (decoding processing information)” corresponding thereto is a program (or code) that executes the decoding processing itself, and this is used as a key for using the encoded data. Keys that can only be previewed are distributed free of charge or at low prices. This preview enables content trial and editing operations. That is, the low definition image 113 is used in the editing stage, and the high definition image 114 is used in the printing stage. At this stage of the preview, the key itself may not be required.
[0028]
The second point of the content distribution system of the present invention is that, when the user needs edited data or higher-precision data, a key (decryption processing information) by which the output device 120 can decrypt high-definition data. ) Is requested from the server group 200. The point is that the server group 200 distributes the key (decryption processing information) to the output device 120 together with charging. The key (decryption processing information) may be deleted after the output is completed. This is similar to the conventional example 2, but the present invention does not adopt a self-extracting format integrated with the contents. Thereby, the confidentiality of the key can be enhanced. At the same time, if the billing information is registered in the billing server 301, the existence of the key itself can be made invisible to the user.
[0029]
With such a configuration, the user can arbitrarily copy and backup data. In addition, since information relating to charging, for example, the number of times of reproduction, the reproduction period, and the like can be stored not on the user side but on the charging control unit 310 side, forgery of these can be made impossible.
In this content distribution system, decoding information (decoding processing information) for executing the decoding processing itself is dynamically generated, and the decoding information (decoding processing information) is distributed to the output device 120 as a key. Therefore, the encoding (encryption) algorithm can be updated every time as the technology advances. Further, the communication protocol, the communication destination, and the like can be easily changed. For this reason, there is no need for a copyright agency center as in the second conventional example. That is, even with the same distribution means, the copyright holder can operate its own charging control means for each content. Further, since there can be a plurality of communication protocols and communication destinations, it becomes difficult for a malicious user to forge communication data.
In addition, for a legitimate user, such communication is performed in a part that is not conscious of the user, so that the convenience is not reduced.
[0030]
In actual operation, for example, it is conceivable that a key (decryption processing information) capable of only previewing data is freely distributed. For example, if the key is moving image data or music data, there is a restriction that the viewable range is limited. In the case of still image data, restrictions are imposed on the image size, resolution, and the like. Alternatively, a preview may be displayed on the main part of the image.
Taking a still image as an example, the user can create his own document using the preview data. That is, the size and position can be determined using the still image preview.
[0031]
When the user judges from the preview and the data including the preview and decides to purchase the data, the user sends the data to the output device 120. The output device 120 uses the communication destination information (server designation information) included in the encoded content 111 to provide the decryption processing information generation unit 210 in the key generation server 201 with an environment in which the user decrypts the data. The user transmits a condition or the like for using the data, and requests the user to generate customized decryption processing information for using the data on the output device 120.
[0032]
In addition, the decryption processing information generation unit 210 in the key generation server 201 requests the permission to generate the customized decryption process by communicating with the charging control unit 310 in the charging server 301. At the same time, it is also possible to request “time information” from the time acquisition means 410 in the time server 401. When the generation of the decryption processing information is permitted based on the “charging information” and the “time information”, the decryption processing information generation unit 210 generates “decoding processing information” and transmits the “decoding processing information” to the output device 120. On the other hand, the billing control means 310 records billing information corresponding thereto.
[0033]
As the charging control information (reproduction restriction information) held by the charging control means 310 in the charging server 301 described above, for example, the following patterns can be considered.
(1) Unlimited use of encoded content data (probably the most expensive)
Each time the decoding process is started, the input data is checked, and if it is the corresponding data, the decoding process is performed unconditionally.
(2) Use with a limited number of uses
Each time the decoding process is started, communication with the accounting control unit 310 is performed by using information in itself, and the decoding process is performed until the permissible number obtained from the communication is reached. If the number exceeds the permitted number, the charging control unit 310 inquires of the output device 120 of the user whether to reject the decryption or to accept the additional charging. At this time, since the permissible number data is in the charging control means 310, the user cannot forge it.
Further, since the communication protocol, communication data encoding, communication destination, and the like can be changed for each customized decoding process, it is difficult to forge communication data of a malicious user.
Further, in this pattern, the user does not consider the charging control unit 310 or the like until the number of times exceeds the allowable number.
[0034]
(3) Time-limited use
Each time the decryption process is started, the decryption process communicates with the accounting control unit 310 based on information in itself and acquires an allowed time limit. After that, it communicates with the time acquisition unit 410 using the information in itself and obtains the time information. The decoding process is performed by comparing the time information with the time limit information obtained from the charging control unit 310. If the time is an unacceptable value, the user is asked whether to reject the decryption or to accept additional charges. At this time, the time limit data is in the charging control means 310 and the current time is in the time acquisition means 410, so that the user cannot forge it.
Further, in this pattern, the user does not have to be conscious of the charging control unit 310, the time acquisition unit 410, and the like until the time exceeds the permitted time.
[0035]
(4) Use with limited hardware for decryption
Each time the decryption process is activated, it can determine whether the hardware on which the device itself has been activated is legitimate by using information of hardware in the device in advance. For this, a network address, a MAC address of network hardware, an ID of a CPU, or a name or ID of other hardware, or a combination thereof can be used.
Conversely, without this restriction, a legitimate user can execute the copy of the decoding process and the copy of the encoded data with any hardware within other restrictions.
[0036]
(5) Use with limited data accuracy and data volume
Although it is similar to the above-described hardware limitation, for example, a certain still image can be used up to the permitted resolution and size. In the case of a moving image, there may be further restrictions on a playback section.
(6) Restricted use for users
In the decryption process, every time the decryption process is started, the user is requested to present some authentication means, and it is determined whether or not the user is a legitimate user by using information in the user in advance.
(7) Use in post-processing
If use is not permitted in any of the above uses, for example, the user's output device 120 can communicate only with the decryption processing information generating means 210, and cannot communicate with the billing control means 310 and the time acquisition means 410 In some cases, depending on the reliability of the legitimate owner of the decryption means or the prepaid billing information, a pattern of permitting temporary use may be considered.
[0037]
FIG. 2 is a diagram showing an example in which a decoding module is used, and shows an example in which a decoding processing function is provided outside as a decoding module 120a independently of an output device 126 such as a printer. The decoding module 120a decodes the encoded content, and transmits the decoded data (content) to an output device 126 connected to the output unit 125. In this way, if the decoding module 120a is used, a general-purpose printer, projector, or the like can be used as the output device 126.
[0038]
[Comparison with conventional example]
It is to be noted that the content and the key are different from the conventional example 1 (Patent Literature 1). However, in the first conventional example, the key does not have a communication function or a decryption function, and at the extreme, is merely for indicating the expiration date. Therefore, it is impossible to limit the number of times of reproduction, and the date limit can be easily forged.
The second conventional example (Patent Document 2) is the same in that the decryption process is used as a key. However, in Conventional Example 2, the key and the content are integrated and executed as a self-decompression process. Therefore, the limit on the number of times of reproduction can be easily broken. Also, deadlines can easily be forged.
Further, by saying that the key and the content are integrated, for example, it cannot be said that a group of contents is given a collective key.
In Conventional Examples 3 and 4 (Patent Documents 3 and 4), it is not possible to impose fine restrictions on the use of content.
[0039]
As a whole, the present invention is characterized in that the output device 120 of the user acquires the key (decryption processing information) by himself and deletes it when the completion of the output is detected. As a result, only the encoded data always exists in the output device 120 of the user who requests the output, and the decoded data is closed only in the output device. That is, it is impossible to obtain unauthorized data by eavesdropping on the communication path between the user PC 110 and the output device 120. Further, since the key (decryption processing information) is also deleted after the output is completed, it is difficult to illegally use the key by analyzing the key.
[0040]
[Explanation of specific example]
FIG. 3 is a diagram showing a configuration example of the means of the output device 120 in the content distribution system of the present invention, and shows a configuration example of means directly related to the present invention.
(1) Encoded data acquisition means 131
This is a means for acquiring various electronic information to be handled, for example, moving image data, still image data, music data, and character data (encoded content) via the user PC 110 or the like. More specifically, the data is backed up to a network communication means via a network, to a fixed storage medium reading means if the form is distributed on a CD-ROM or DVD-ROM in a magazine appendix, and similarly to a magnetic storage medium. If it is data or copied data, it is a means for reading them. In the case of streaming data such as Internet broadcasts, it is the receiving means.
[0041]
(2) Decryption processing information requesting unit 132
A “decryption process information generation request” corresponding to the encoded content described above is transmitted to the decryption process information generation unit 210 in the key generation server 201. At this time, one or more of the following information is added to the transmission data as a “decoding processing generation condition”. The designation of the decryption processing generation condition may be performed by the user PC 110 or may be performed by the output device 120 of the user.
Information on the output device 120 of the user who is the client, for example, information identifying itself such as a network address, a MAC address of network hardware, etc.
Information related to the content data to be decrypted, for example, information such as a file name or a data identifier;
Information on decoding conditions, such as time-limited decoding, number-limited decoding, resolution limitation, and display device limitation
Information related to the user, for example, information such as the user ID of a registered member, etc.
[0042]
The "decoding processing information generation means 210" to which the data of the "decoding processing information generation request" is transmitted may be in the same server as the "charging control means 310", or may be in another server. It may be provided. At this time, the decryption processing information generating means 210 permits the requesting client (the output device 120 of the user) to generate the requested data and the “decoding processing information” under the requested conditions. It is possible to inquire of the "charging control means 310" whether or not to do so.
When the accounting control unit 310 denies generation of the “decryption processing information”, the accounting control unit 310 notifies the output device 120 of the client user. When the charging control unit 310 permits the generation of the “decoding process information”, the charging control unit 310 notifies the “charging control unit 310” that the “decoding process information” for the permitted condition has been generated. At the same time, the “decoding processing information” is transmitted to the client (the output device 120 of the user). In the generated “decoding process information”, in addition to the above-described decoding process information generation conditions, a communication method to the charging control unit 310, a communication method to the time acquisition unit 410, and the like are encoded (encrypted). Is added.
[0043]
(3) Decryption processing information receiving means 133
The “decoding processing information” generated by the decoding processing information generating means 210 is received. When the decryption processing information generation unit 210 refuses to generate the “decryption processing information”, the user is notified of the fact to the output device 120.
(4) Decryption processing information storage means 134
One or more “decoding process information” generated by the decoding process information generating means 210 is stored. The “decoding process information” is information (for example, a decoder program) for executing the decoding process itself, and the “decoding process 134a” stored and executed in the decoding process information storage unit 134 decodes the corresponding encoded data. It is a key and has at least one of the following functions.
・ Decryption permission condition storage function
The identifier of the data to be decoded, the number of times, the time limit, the accuracy limit, the machine limit, the user limit, the identifier of the charging control unit 310 to communicate with, the identifier of the time acquisition unit 410 to communicate with, and conditions for post-processing permission
Communication function with charging control means 310
Communication function with time acquisition means 410
・ Decryption history storage function
For example, the decryption history storage unit cooperates with the decryption permission condition storage unit to enable a plurality of times of reproduction, a plurality of copies of printing, and the like. That is, it is possible to suppress the operation of the decryption processing information erasing means within the range of the permission condition.
[0044]
(5) Output means 135
This is a means for outputting data decrypted by the decryption processing, and a means for printing or displaying a screen.
(6) Output end detecting means 136
This is a unit for detecting the completion of the output of the decrypted data to the output unit 135 (the end of the output).
(7) Decryption processing information erasing means 137
This is a means for deleting “decoding processing information” upon detection of output completion.
(8) Charging information requesting means 138
This is a unit for requesting the charging control unit 310 in the charging server 301 to transmit “charging information” when executing the decoding processing of the encoded content.
(9) Billing information receiving means 139
This is a unit for receiving “billing information” from the billing control unit 310 in the billing server 301 when decoding the encoded content.
(10) Time information requesting means 140
This is a unit for requesting the time acquisition unit 410 in the time server 401 to transmit “time information” when decoding the encoded content.
(11) Time information receiving means 141
This is a unit for receiving “time information” from the time acquisition unit 410 in the time server 401 when performing the decoding processing of the encoded content.
[0045]
FIG. 4 is a diagram showing a first processing example of the decryption process. The data processing unit 150 in the user's output device 120, the decryption process information generation unit 210 in the key generation server 201, and the accounting server 301 FIG. 3 is a diagram for explaining an interaction between a charging control unit 310 and a time acquisition unit 410 in a time server 401. In the processing example shown in FIG. 4, there is a limitation on the reproduction period in the decoding processing parameter, and the data processing unit 150 in the user's output device 120 transmits “time information” from the time acquisition unit 410 in the time server 401. This is an example of acquiring. Further, the inquiry to the charging control unit 310 is an example in the case where the decoding processing information generation unit 210 makes an inquiry. Note that the decryption processing information generation unit 210, the charging control unit 310, and the time acquisition unit 410 may be in the same server, or may be separately provided in a plurality of servers.
(1) Step S101: The data processing means 150 in the user's output device 120 transmits a decryption processing parameter (see FIG. 13) to the decryption processing information generating means 210 in the key generation server 201.
(2) Step S102: The decryption processing information generating means 210 receives the "decryption processing parameter" from the output device 120 of the user.
(3) Step S103: The decryption processing information generation means 210 inquires of the charging control means 310 about permission / non-permission of “generation of decryption processing information”.
(4) Step S104: The charging control unit 310 determines whether or not “generation of decryption processing information” is permitted or not.
(5) Step S105: When "generation of decoding process information" is permitted by the charging control unit 310, the decoding process information generating unit 210 generates "decoding process information" and transmits it to the output device 120.
(6) Step S106: The decryption processing information generating means 210 notifies the billing control means 310 that "decoding processing information" has been generated.
(7) Step S107: The charging control means 310 records the charging information based on the "decoding processing information" received from the decoding processing information generating means 210.
(8) Step S108: The data processing unit 150 in the output device 120 receives and stores “decoding processing information”.
[0046]
(9) Step S109: In the data processing unit 150 in the output device 120, if there is a limit on the reproduction time limit when performing the decoding process, the data processing unit 150 Is requested.
(10) Step S110: The time acquisition unit 410 in the time server 401 generates “time information” and transmits the “time information” to the output device 120 of the user.
(11) Step S111: The output device 120 of the user receives “time information” from the time acquisition unit 410.
(12) Step S112: The data processing unit 150 in the user's output device 120 determines whether decoding of the encoded content is permitted based on the “time information” acquired from the time acquisition unit 410. .
(13) Step S113: If decoding is permitted, the user's output device 120 starts decoding encoded content.
(14) Step S114: The data processing means 150 in the user's output device 120 outputs the decrypted content to the output device 122, and deletes the stored "decoding process information" when printing or the like is completed. .
[0047]
FIG. 5 is a diagram showing a second processing example of the decryption process. The data processing unit 150 in the user's output device 120, the decryption process information generation unit 210 in the key generation server 201, and the charging server 301 FIG. 7 is a diagram for explaining the interaction between the charging control unit 310 in the server and the time acquisition unit 410 in the time server 401. In the processing example shown in FIG. 5, there is a limit on the reproduction time limit in the decryption processing information parameter, and the charging control unit 310 in the charging server 301 obtains “time information” from the time obtaining unit 410 in the time server 401. This is an example of the case. Also, this is an example of a case where the decryption processing information generating unit 210 makes an inquiry to the charging control unit 310. Note that the charging control unit 310 and the time acquisition unit 410 may be provided in the same server, or may be separately provided in a plurality of servers.
(1) Step S201: The "decryption processing parameter" is transmitted to the decryption processing information generation means 210 in the key generation server 201 by the data processing means 150 in the user's output device 120.
(2) Step S202: The decryption processing information generation means 210 in the key generation server 201 receives the "decryption processing parameter" from the data processing means 150 in the output device 120 of the user.
(3) Step S203: The decryption processing information generation means 210 in the key generation server 201 inquires of the charging control means 310 in the charging server 301 whether or not "generation of decryption processing information" is permitted.
(4) Step S204: The charging control unit 310 in the charging server 301 requests the time acquisition unit 410 in the time server 401 to transmit "time information" when the decoding processing parameter has a reproduction time limit.
(5) Step S205: The time acquisition unit 410 in the time server 401 transmits “time information” to the charging control unit 310 in the charging server 301.
(6) Step S206: The billing control unit 310 in the billing server 301 receives “time information” from the time acquisition unit 410 in the time server 401.
(7) Step S207: The charging control means 310 in the charging server 301 confirms whether or not the reproduction time limit has expired based on the "time information", and judges whether or not the decryption processing is permitted.
(8) Step S208: If decryption processing is permitted, the decryption processing information generation means 210 in the key generation server 201 generates “decryption processing information” and transmits it to the output device 120 of the user.
(9) Step S209: The decryption processing information generation means 210 in the key generation server 201 notifies the accounting control means 310 in the accounting server 301 that "decryption processing information" has been generated.
(10) Step S210: The billing control means 310 in the billing server 301 records "billing information".
(11) Step S211: The data processing unit 150 in the user's output device 120 receives and stores “decryption processing information” from the decryption processing information generation unit 210 in the key generation server 201.
(12) Step S212: The output device 120 of the user starts the decoding process.
(13) Step S213: The data processing means 150 in the user's output device 120 outputs the decrypted content to the output device 122, and when the printing or the like is completed, deletes the stored "decoding process information". .
[0048]
FIG. 6 is a flowchart illustrating an example of the flow of the decoding process illustrated in FIG. 5, and illustrates an example of a process in a case where there is a limitation on a reproduction period in a decoding process information parameter.
(1) Step S301: The user's output device 120 activates the decryption processing information generation means 210 in the key generation server 201 with the decryption processing parameter attached.
(2) Step S302: The decryption processing information generation means 210 in the key generation server 201 inquires of the charging control means 310 in the charging server 301 about "permission / non-permission of decryption".
(3) Step S303: If the inquiry to the accounting control means 310 in the accounting server 301 is successful, the process proceeds to step S304. If the inquiry to the accounting control means 310 is unsuccessful, the decoding process ends.
(4) Step S304: The charging control unit 310 in the charging server 301 inquires of the time obtaining unit 410 in the time server 401 about “time information”.
(5) Step S305: When the inquiry to the time acquisition unit 410 in the time server 401 is successful, the process proceeds to step S306, and when the inquiry to the time acquisition unit 410 is unsuccessful, the decoding process ends.
(6) Step S306: The accounting control means 310 in the accounting server 301 determines whether decryption is permitted or not. Also, information on permission / non-permission of the decryption processing is notified to the decryption processing information generation unit 210 in the key generation server 201.
(7) Step S307: When the decryption processing information generating means 210 in the key generation server 201 receives the notification of the decryption permission from the charging control means 310 in the charging server 301, it generates "decryption processing information". Transmit to the output device 120.
(8) Step S308: The user's output device 120 receives the "decryption processing information" from the decryption processing information generation means 210 in the key generation server 201, and starts the decoding processing of the encoded content.
[0049]
FIG. 7 is a diagram for explaining the preview and the resolution limitation, and is a binarized image of a certain flower for explanation.
[0050]
FIG. 8 is a diagram outlining JPEG2000 processing as an example for explanation. In JPEG2000, the spatial frequency of an image is divided into a high frequency side and a low frequency side in each of the horizontal direction and the vertical direction. By further dividing this low frequency side, the frequency components of the image are recursively decomposed. As a result, an image of a low frequency component or a reduced image is obtained at the upper left of FIG. 8, and the high frequency component of the image is shown toward the lower right.
[0051]
FIG. 9 is a diagram illustrating an example of data in the frequency domain. FIG. 9A shows, by way of example, the data on the lowest frequency side among the three levels of decomposition. FIG. 9B shows the subsequent intermediate frequency region, and FIG. 9C shows the data in the highest frequency region.
[0052]
FIG. 10 is a diagram schematically illustrating the effect of the frequency component on the image, which is not a picture of a flower. FIG. 10 shows, for example, an image decoded using only the lowest frequency data. Thus, an image having a low spatial resolution is obtained. Alternatively, if the spatial resolution is increased, a small image is obtained.
[0053]
FIG. 11 is a diagram illustrating an example of an image decoded using all of the frequency data. Thus, a finer image is decoded as compared with FIG. Using such a property, it is assumed that the image shown in FIG. 10 is provided free of charge as a preview image, and that a user who requests a finer image as shown in FIG. 11 is charged.
[0054]
FIG. 12 is a diagram for explaining a method of changing the definition of an image using different frequency components. For example, it is assumed that data for each frequency component as shown in FIGS. 9A, 9B, and 9C is encoded by the same encoding method. In other words, assuming that the image shown in FIG. 9A permitted in the preview and the other data are encoded by the same encoding method, a malicious user may use There is a possibility that processing information for decoding FIGS. 9B and 9C may be created. In the present invention, since it is assumed that all encoded data is distributed to the user, if such processing information is created, “decoding processing information” is used as a key for content protection. You lose functionality.
[0055]
In order to prevent such a situation, in the present invention, for example, as shown in FIG. 12, encoding can be performed using a different encoding method for each frequency component. That is, data encoding process a is performed on the low-resolution data, and encoded data 0 is generated. The high resolution difference data 1 is subjected to a data encoding process b to generate encoded data 1. The high resolution difference data 2 is subjected to a data encoding process c to generate encoded data 2. Data encoding processing d is performed on the high-resolution difference data N to generate encoded data N. Then, at the time of these data encoding processes, encoding is performed using different encoding methods. For this encoding process, a method such as using different encoding algorithms and different encoding parameters can be used. As a result, the “decoding processing information” of the preview image (low-resolution data) does not include information relating to the decoding processing of the high-frequency side data (high-resolution encoded data), so that the content is more effectively used. Can be protected.
[0056]
FIG. 13 is a diagram for explaining information (decoding processing parameters) related to various reproduction restrictions and its encoding. First, some limitations are described.
Condition A is based on the assumption that the user whose user ID is “1234” purchases 1 of the content under conditions that allow unlimited use. At this time, the limit of the number of times of reproduction and the limit of reproduction period are described as “none” in the parameter.
Condition B is, for example, as an advertisement for a magazine or the like, with a limitation on the number of playbacks, a limitation on the playback period, and a limitation on the amount of playback of contents 2 to 8, for example. It is an example.
Condition C is, for example, an example of realizing a membership-based member of a site that distributes a certain content. At this time, the content that can be played is unlimited, but the user is limited and the playback time limit is also limited. Further, in this example, the parameter is an example in which post-payment of accounting is also permitted according to the credit of the member.
These conditions are encoded by parameter encoding processing, and are incorporated into decoding processing information as parameters (decoding processing parameters) for encoding.
[0057]
FIG. 14 is a diagram collectively showing functions and elements required for the decryption processing 160. The “decryption processing 160” that is the key to content protection according to the present invention can include the elements shown in FIG.
(1) Charging control means communication function 161
The billing control unit communication function 161 is a communication function with the billing control unit 310 in the billing server 301. A plurality of communication functions may be prepared or may be different for each charging control unit 310 to be communicated with so as not to be modified by a malicious user.
(2) Time acquisition unit communication function 162
The time acquisition unit communication function 162 is a communication function with the time acquisition unit 410 in the time server 401. A plurality of communication functions may be prepared, or may be different for each time acquisition unit 410 that is a communication partner so as not to be modified by a malicious user.
(3) Encoding parameter 163
The encoding parameter 163 is the parameter illustrated in FIG.
(4) Content information acquisition means 164
The content information acquisition unit 164 is for checking whether the data described in the encoding parameter 163 matches the content to be actually decoded. For example, it may be a means for reading an identifier as a part of the content, or a calculating means for calculating a checksum of the content.
[0058]
(5) Hardware information acquisition means 165
The hardware information acquisition unit 165 is for checking whether the data described in the encoding parameter 163 matches the hardware to be actually decoded. For example, it may be a means for reading the MAC address of the network hardware, or an identifier calculating means for quantifying the configuration of the entire hardware.
(6) User information acquisition means 166
The user information acquisition unit 166 is for checking whether the data described in the encoding parameter 163 matches the user. For example, a password may be requested from the user, or personal authentication means using biometric characteristics (biological information) may be used.
(7) Data decryption processing 167
This is a process of decoding the encoded content, and only the necessary content needs to be included. For example, when only a preview is permitted, only a decoding process for the preview is included.
[0059]
FIG. 15 is a diagram illustrating an example of a preview using a still image as an example. For example, as shown in FIG. 15A, information “Preview” indicating that the data is a preview is added to data having a low resolution and displayed. Alternatively, as shown in FIG. 15B, it is conceivable to superimpose and display information that deteriorates the content on high-resolution data to be charged.
[0060]
FIG. 16 is a diagram illustrating a display example in a case where the output device 120 of the user cannot communicate with the server and post-charging processing is permitted. The screen display may be performed by the user PC 100 or the output device 120.
[0061]
FIGS. 17 to 21 show display examples in a case where the situation to be decoded exceeds some limit.
The screen shown in FIG. 17 is a diagram showing an example of a screen displayed when the expiration date of the content (expiration date of the reproduction permission) has passed. If the user is approved for the additional charge, the content can be reproduced again.
-The screen shown in FIG. 18 is a view showing an example of a screen displayed when an attempt is made to reproduce the content by an unauthorized device. When the user is approved for the additional charge, the content can be reproduced.
-The screen shown in FIG. 19 is a view showing an example of a screen when the reproduction of the content at a high resolution is not permitted. By accepting that an additional charge will be made, the content can be reproduced with high accuracy.
-The screen shown in FIG. 20 is a diagram showing an example of a screen displayed when the usage limit of the content is exceeded. When the user is approved for the additional charge, the content can be reproduced.
The screen shown in FIG. 21 is a diagram showing an example of a screen for asking the user to input a password when the user is limited as the decryption restriction.
[0062]
FIG. 22 is a schematic diagram showing that the user's output device 120 is connected to the server group 200 via the communication network 1. The key generation server 201a to the key generation server 201n are provided with decryption processing information generation means 1 (210a) to decryption processing information generation means N (210n), respectively. The charging servers 301a to 301n are provided with charging control means 1 (310a) to charging control means N (310n), respectively. The time servers 401a to 401n are provided with time obtaining means 1 (410a) to time obtaining means N (410n), respectively. That is, it is a feature of the content distribution system of the present invention that the respective units of the decryption processing information generation unit, the charging control unit, and the time acquisition unit can exist in a plurality of places (servers).
[0063]
FIG. 23 is a block diagram showing a configuration example of the output device 120 of the user in the content distribution system of the present invention, and shows a configuration directly related to the present invention. In FIG. 23, the user's output device 120 includes a communication interface 171 for connecting the user's output device 120 and the communication network 1, a control unit 172 for controlling the entirety of the user's output device 120, and communication with the user PC. A PC interface 173 serving as an interface, a storage unit 174, and a processing program unit 180 are provided.
[0064]
Further, the processing program unit 180 includes the following processing units.
-Encoded data acquisition processing unit 181
A processing unit for acquiring various electronic information to be handled, for example, moving image data, still image data, music data, character data (encoded content), and the like via the user PC 110. Note that the encoded data (encoded content data) is recorded in the storage unit 174.
-Decryption processing information request processing unit 182
This is a processing unit for transmitting a “decryption process information generation request” corresponding to the encoded content described above to the decryption process information generation unit 210 in the key generation server 201. In addition, the designation information of the “decoding process generation condition” is also added to the “decoding process information generation request”.
[0065]
-Decryption processing information reception processing unit 183
This is a processing unit for receiving the “decoding process information” generated by the decoding process information generating unit 210. If the decryption processing information generating means 210 refuses to generate decryption processing information, the user is notified to the output device 120 of that fact.
-Decryption processing information storage processing unit 184
This is a processing unit for storing one or more “decoding process information” generated by the decoding process information generating unit 210. The “decoding process information” is information (for example, a decoder program) for executing the decoding process itself, and is stored in the storage unit 174.
[0066]
・ Output processing unit 185
A processing unit for outputting data decoded by the decoding process.
-Output end detection processing unit 186
This is a processing unit for detecting the output completion (output end) of the decrypted data by the output device 122.
-Decryption processing information deletion processing unit 187
This is a processing unit for deleting “decoding processing information” upon detection of output completion.
・ Charging information request processing unit 188
This is a processing unit for requesting the transmission of “charging information” to the charging control unit 310 in the charging server 301 when performing the decoding processing of the encoded content.
-Charging information reception processing 189
This is a processing unit for receiving “charging information” from the charging control unit 310 in the charging server 301 when performing the decoding processing of the encoded content.
-Time information request processing unit 190
This is a processing unit for requesting the time acquisition unit 410 in the time server 401 to transmit “time information” when performing the decoding processing of the encoded content.
-Time information reception processing unit 191
This is a processing unit for receiving “time information” from the time acquisition unit 410 in the time server 401 when performing the decoding processing of the encoded content.
[0067]
The processing program section 180 of the output device 120 of the user may be realized by dedicated hardware, and the processing program section is implemented by a general-purpose information processing device such as a memory and a CPU (central processing unit). The function may be realized by loading a program (not shown) for realizing the function of the processing unit into a memory and executing the program.
[0068]
FIG. 24 is a block diagram showing an example of the configuration of a server in the content distribution system of the present invention, which directly relates to the present invention. In the configuration example shown in FIG. 24, an example is shown in which the decryption processing information generation unit 210a, the accounting control unit 310a, and the time acquisition unit 410a shown in FIG. 22 are provided in one server. May be installed separately. 24, the server 500 includes a communication interface 501 for connecting the server 500 and the communication network 1, a control unit 502 for controlling the entire server 500, and a processing program unit 510. Further, the processing program unit 510 includes a decryption processing information generation processing unit 520, a charging control processing unit 530, and a time acquisition processing unit 540.
The decoding processing information generation processing unit 520 includes the following processing units.
The decryption processing information request reception processing unit 521 is a processing unit for receiving a transmission request of “decoding processing information” from the output device 120 of the user.
The decoding processing information generation processing unit 522 is a processing unit for generating “decoding processing information” for decoding the encoded content.
The decoding processing information transmission processing unit 523 is a processing unit for transmitting “decoding processing information” to the output device 120 of the user.
[0069]
Further, the charging control processing unit 530 includes the following processing units.
The decryption permission / non-permission determination processing unit 531 refers to the charging information in the charging information DB 570, and determines permission / non-permission for generating “decoding processing information” based on the charging information of the corresponding user. Is a processing unit for performing.
The permission condition transmission processing unit 532 is a processing unit for transmitting the decryption permission condition to the user's output device 120 or the decryption processing information generation processing unit 520.
The decryption history update processing unit 533 is a processing unit for recording decryption history information in the billing information DB 570.
[0070]
In addition, the time acquisition processing unit 540 includes the following processing units.
The time information request reception processing unit 541 is a processing unit for receiving a “time information request” from the output device 120 of the user, the decryption processing information generation processing unit 520, or the charging control processing unit 530.
The time information generation processing unit 542 is a processing unit for generating time information.
The time information transmission processing unit 543 is a processing unit for transmitting “time information” to the output device 120, the decryption processing information generation processing unit 520, or the charging control processing unit 530 of the user.
[0071]
The user information database (DB) 550 records personal information of members registered in the content distribution system, member IDs, password information, and the like. Further, the generated decoding processing information is recorded in the decoding processing information DB 560. Further, the charging information DB 570 records user charging information, content reproduction restriction information determined according to the charging information, and decoding history information (decoding history).
[0072]
The processing program unit 510 of the server 500 may be realized by dedicated hardware, and the processing program unit includes a general-purpose information processing device such as a memory and a CPU (central processing unit). A program (not shown) for realizing the function of the processing unit may be loaded into a memory and executed to realize the function. It is assumed that an input device, a display device, and the like (neither is shown) are connected to or built into the server 500 as peripheral devices. Here, the input device refers to an input device such as a keyboard and a mouse. The display device refers to a CRT (Cathode Ray Tube), a liquid crystal display device, or the like.
[0073]
Also, a program for realizing the functions of the processing program unit 180 in the user output device 120 shown in FIG. 23 and the processing program unit 510 in the server 500 shown in FIG. 24 is recorded on a computer-readable recording medium. By causing the computer system to read and execute the program recorded on the recording medium, the processing program unit 180 in the user output device 120 shown in FIG. 23 and the processing program unit 510 in the server 500 shown in FIG. May be performed. Here, the “computer system” includes an OS and hardware such as peripheral devices.
[0074]
The “computer-readable recording medium” refers to a portable medium such as a flexible disk, a magneto-optical disk, a ROM, and a CD-ROM, and a storage device such as a hard disk built in a computer system.
Further, the “computer-readable recording medium” refers to a communication line for transmitting a program via a network such as the Internet or a communication line such as a telephone line, which dynamically holds the program for a short time. In this case, a medium holding a program for a certain period of time, such as a volatile memory in a computer system serving as a server or a client in that case, is also included.
Further, the above-mentioned program may be for realizing a part of the above-mentioned functions, and may be a program for realizing the above-mentioned functions in combination with a program already recorded in the computer system, that is, a so-called difference file (difference file) Program).
[0075]
The embodiments of the present invention have been described above. However, the user's output device, server, and content distribution system of the present invention are not limited to only the above-described illustrated examples, and are within the scope of the present invention. It goes without saying that various changes can be made in.
[Brief description of the drawings]
FIG. 1 is a diagram for explaining an outline of a content distribution system according to the present invention.
FIG. 2 is a diagram showing an example of using a decoding module.
FIG. 3 is a diagram illustrating a configuration example of a unit included in an output device of a user.
FIG. 4 is a diagram showing a first processing example of a decoding process.
FIG. 5 is a diagram showing a second processing example of a decoding process.
FIG. 6 is a flowchart showing the flow of the decoding process shown in FIG. 5;
FIG. 7 is a view for explaining preview and resolution restriction.
FIG. 8 is a diagram for outlining JPEG2000 processing.
FIG. 9 is a diagram showing an example of data in a frequency domain.
FIG. 10 is a diagram schematically illustrating an influence of a frequency component on an image.
FIG. 11 is a diagram showing an example of an image decoded using all frequency data.
FIG. 12 is an explanatory diagram of a method of changing definition with different frequency components.
FIG. 13 is a view for explaining information related to reproduction restriction and encoding.
FIG. 14 is a view collectively showing functions and elements necessary for a decoding process.
FIG. 15 is a diagram showing an example of a preview using a still image as an example.
FIG. 16 is a diagram showing a display example when post-charging processing is permitted.
FIG. 17 is a view showing an example of a screen displayed when the expiration date has passed.
FIG. 18 is a view showing an example of a screen in the case of reproducing by a device which is not permitted.
FIG. 19 is a diagram showing an example of a screen when reproduction at high resolution is not permitted.
FIG. 20 is a view showing an example of a screen displayed when a usage count limit is exceeded.
FIG. 21 is a view showing an example of a screen for requesting a password from a user.
FIG. 22 is a schematic view showing that a user's output device and a server group are connected.
FIG. 23 is a block diagram showing a configuration example of an output device of a user.
FIG. 24 is a block diagram illustrating a configuration example of a server.
FIG. 25 is a diagram showing FIG. 1 of Patent Document 1.
FIG. 26 is a diagram showing FIG. 2 of Patent Document 2;
FIG. 27 is a diagram showing FIG. 11 of Patent Document 2;
[Explanation of symbols]
100 user devices, 111 contents
120 output device, 131 encoded data acquisition means
132 decoding processing information requesting means, 133 decoding processing information receiving means
134 decoding processing information storage means, 134a decoding processing, 135 output means
136 output end detecting means, 137 decryption processing information erasing means
138 charging information requesting means, 139 charging information receiving means
140 time information requesting means, 141 time information receiving means
150 Data processing means
201 key generation server, 210 decryption processing information generation means
301 billing server, 310 billing control means
401 time server, 410 time acquisition means

Claims (12)

A user output device that decodes and outputs the encoded content, and a server that transmits decoding processing information for executing the decoding process of the encoded content to the user output device via a communication network. Output device of the user in the content distribution system to be performed,
Encoded data acquiring means for acquiring encoded content information,
Decoding processing information requesting means for requesting the server for decoding processing information of the encoded content;
Decoding processing information receiving means for receiving decoding processing information from the server;
Decoding processing means for decoding the encoded content based on the decoding processing information;
An output device for a user, comprising: decryption processing information erasing means for erasing decryption processing information received from the server after output of the decrypted content is completed. Decoding condition specifying means for specifying a decoding condition of the encoded content;
2. The user output device according to claim 1, further comprising: decryption processing information requesting means for designating decryption conditions by said decryption condition specifying means and requesting said server for said decryption processing information. The content distribution system is further connected to a charging server that holds charging information of the user via a communication network,
2. The apparatus according to claim 1, further comprising a step of acquiring billing information from the billing server when executing the decryption processing based on the decryption processing information, and limiting a range of the decryption processing according to the billing information. Or a user output device according to claim 2. A time server that further provides time information to the user is connected to the content distribution system via a communication network,
The method according to claim 1, further comprising, when performing a decoding process based on the decoding process information, obtaining time information from the time server and determining a decoding limitation period based on the time information. 3. The user's output device according to any one of 3. A user output device that decodes and outputs the encoded content, and a server that transmits decoding processing information for executing the decoding process of the encoded content to the user output device via a communication network. Said server in the content distribution system to be performed,
From the output device of the user, decoding processing information request receiving means for receiving a transmission request of the decoding processing information,
Decoding processing information generating means for generating the decoding processing information;
A decoding processing information transmitting unit configured to transmit the decoding processing information to an output device of the user. The server according to claim 5, wherein the decryption processing information is generated according to a decryption condition received from an output device of a user. The content distribution system is further connected to a charging server that holds charging information of the user via a communication network,
Means for acquiring billing information from the billing server when there is a transmission request for decryption processing information from the user's output device;
7. The server according to claim 5, further comprising: a unit configured to generate the decryption processing information according to billing information of a user. A time server that provides time information is further connected to the content distribution system via a communication network,
8. The method according to claim 5, further comprising, when generating the decryption processing information, obtaining time information from the time server and determining a decryption restriction period based on the time information. The server described in Crab. A user output device that decodes and outputs the encoded content, and a server that transmits decoding processing information for executing the decoding process of the encoded content to the user output device via a communication network. Content distribution system,
In the output device of the user,
Encoded data acquiring means for acquiring encoded content information,
Decoding processing information requesting means for requesting the server for decoding processing information of the encoded content;
Decoding processing information receiving means for receiving decoding processing information from the server;
Decoding processing means for decoding the encoded content based on the decoding processing information;
After the output of the decrypted content is completed, the decryption processing information erasing means for erasing the decryption processing information received from the server,
In the server,
From the output device of the user, decoding processing information request receiving means for receiving a transmission request of the decoding processing information,
Decoding processing information generating means for generating the decoding processing information;
A content distribution system comprising: decryption processing information transmitting means for transmitting the decryption processing information to an output device of the user. A user output device that decodes and outputs the encoded content, and a server that transmits decoding processing information for executing the decoding process of the encoded content to the user output device via a communication network. Content distribution method in the content distribution system to be performed,
By the output device of the user,
Encoded data acquisition procedure for acquiring encoded content information,
Decoding processing information requesting procedure for requesting the server for decoding processing information of the encoded content,
A decryption process information receiving procedure for receiving decryption process information from the server;
A decoding processing procedure for decoding the encoded content based on the decoding processing information;
After the output of the decrypted content is completed, a decryption process information erasing procedure for erasing the decryption process information received from the server is performed.
With the server,
From the output device of the user, decoding process information request receiving procedure for receiving a transmission request of the decoding process information,
A decoding process information generating procedure for generating the decoding process information;
Transmitting a decryption process information to the output device of the user. A user output device that decodes and outputs the encoded content, and a server that transmits decoding processing information for executing the decoding process of the encoded content to the user output device via a communication network. Computer in the output device of the user in the content distribution system to be
Encoded data acquisition procedure for acquiring encoded content information,
Decoding processing information requesting procedure for requesting the server for decoding processing information of the encoded content,
A decryption process information receiving procedure for receiving decryption process information from the server;
A decoding processing procedure for decoding the encoded content based on the decoding processing information;
And a decryption information erasing procedure for erasing decryption information received from the server after the output of the decrypted content is completed. A user output device that decodes and outputs the encoded content, and a server that transmits decoding processing information for executing the decoding process of the encoded content to the user output device via a communication network. Computer in the server in the content distribution system to be
From the output device of the user, decoding process information request receiving procedure for receiving a transmission request of the decoding process information,
A decoding process information generating procedure for generating the decoding process information;
A decoding process information transmitting procedure for transmitting the decoding process information to the user's output device.

Images