JP2005309976A - Content management system and method, and individual authentication device - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To safely manage key information decrypting a content, in a method for encrypting the content to manage the content. <P>SOLUTION: A content decryption key obtained by license acquisition is stored in an IC card, and an IC card reading function is incorporated in a content recording/reproducing device. When reproducing the content, an encryption content is transmitted to the IC card from the content recording/reproducing device through a non-contact IC card interface. Inside the IC card, the encryption content is decrypted by use of the key information, is returned to the content recording/reproducing device through the non-contact IC card interface, and is reproduced and output. <P>COPYRIGHT: (C)2006,JPO&NCIPI

Description

  The present invention relates to a content management system and content management method for managing the use of digital content such as music data, image data, and electronic publications, and a personal authentication device, and in particular, based on some contract or usage condition such as a license. The present invention relates to a content management system, a content management method, and a personal authentication device that manage the use of content.

  More particularly, the present invention relates to a content management system and a content management method for protecting the content by controlling the use of the content by giving a license to the content user, and in particular, encrypting the content. The present invention relates to a content management system, a content management method, and a personal authentication device that securely manage key information for decrypting content in a method for managing content.

  With the spread of computer technology in recent years, various digital contents such as music data, image data, and electronic publications have been actively used. However, digital data can be copied and falsified relatively easily, and this is a major factor that hinders the profits of digital content vendors. As a result, the price of the content has to be increased, and a vicious circle of barriers to dissemination may occur.

  By using encryption technology, it is possible to protect content flowing on a communication path from a malicious third party. However, not only the content distribution process, but also illegal copying and unauthorized use performed after the content is provided to legitimate users is a serious problem.

  As a countermeasure against this type of problem related to digital contents, a method called a rights management method (DRM: Digital Rights Management) has recently been adopted.

  This DRM realizes a mechanism in which content cannot be used unless the user obtains permission (license) to use the content. Examples of such a system include a system called “Windows Media Right Manager” by Microsoft Corporation and “Electronic Media Management System (EMMS)” by IBM Corporation.

A DRM system is typically composed of a content provider, a license manager, and a user. The user possesses a content reproduction apparatus and uses the content by using it. The license manager issues a license to the user. The content provider provides content to the user. The content (Cont) is distributed by the content provider in the format E (K _c , Cont) encrypted with a different key (content key K _c ) for each content.

When using a certain content Cont, the user requests the license manager to issue a license. On the other hand, the license issuer issues a license after performing a charging process for the user. Issuance of the license referred to here is, in fact, is to give the content key K _c to the playback device of the user. For this reason, the license administrator shares a different encryption key _Ku with each playback device (the encryption key _Ku is shared at the time of license issuance or shared in advance). There are incorporated in the playback apparatus), it sends the content key K _c encrypted data E with the encryption key K _u (K _u, the playback apparatus as K _c). This data is called a “license token”.

Reproducing apparatus of the user who licensed may encryption key K _u and received license token E (K _u, K _c) the encrypted content E (K _c, Cont) by using, for reproducing content . First, the content key K _c is decrypted from the license token E (K _u , K _c ), and then the content Cont is decrypted from the encrypted content E (K _c , Cont) using the content key K _c and reproduced. Therefore, the content can be used only when the combination of the playback device, the license token, and the encrypted content is correct, that is, only the licensed user.

  For example, a proposal has been made regarding a DRM system that allows only authorized users to use content (see, for example, Patent Document 1).

JP 2002-359616 A

As described above, in the conventional content protection system represented by DRM, giving license content (use permission) to the user, by giving the reproduction apparatus inclusive license token that user content key K _c Realized.

  However, in this case, the management method after distributing the key information for decrypting the content becomes a problem. This is because even if the content itself can be protected by encryption, once the decryption key is leaked, the encryption processing has no meaning.

  The present invention takes into account the technical problems as described above, and its main purpose is to use digital contents such as music data, image data, electronic publications, etc. It is an object of the present invention to provide an excellent content management system, content management method, and personal authentication device that can be suitably managed based on the above.

  A further object of the present invention is to provide an excellent content management system, content management method, and personal authentication apparatus capable of controlling the use of content and protecting the content by giving a license to the content user. It is in.

  A further object of the present invention is to provide an excellent content management system, content management method, and personal authentication device capable of safely managing key information for decrypting content in a method for managing content by encrypting content. It is to provide.

The present invention has been made in view of the above problems, and is a content management system that manages content by encrypting content,
A content management device for managing content encryption keys;
An authentication processing unit that performs an authentication procedure; a memory that stores an encryption key of a user who has received a license for the content; a personal authentication device that includes a decryption device that decrypts the encrypted content using the encryption key;
A content use device that uses the licensed content,
The content management device registers an encryption key in the personal authentication device through an authentication procedure,
The personal authentication device decrypts and returns the encrypted content received from the content using device,
This is a content management system characterized by the above.

  However, “system” here refers to a logical collection of a plurality of devices (or functional modules that realize specific functions), and each device or functional module is in a single housing. It does not matter whether or not.

In digital content distribution services, content protection is an important issue. In a conventional content protection system represented by DRM, giving license content (use permission) to the user it is realized by giving a license including the content key K _c to the playback apparatus of the user. However, the management and distribution method of key information for decrypting content becomes a problem.

  Therefore, the present invention implements a content management system that prevents unauthorized use of content by using tamper resistance of an IC card and an encrypted transmission path established by a non-contact IC card interface. That is, the content decryption key is securely managed using the tamper resistance of the IC card. Further, the IC card has a built-in decryption device, and securely decrypts the encrypted content. Then, the IC card securely transmits the decrypted content to and from the IC card reader through a secure data transmission path using a non-contact IC card interface.

  The content management system according to the present invention is configured by storing a content decryption key obtained by acquiring a license in an IC card and incorporating an IC card reading function into the content recording / playback apparatus.

  At the time of content reproduction, the encrypted content is transmitted from the content recording / reproducing apparatus to the IC card via the non-contact IC card interface. Then, in the IC card, the encrypted content is decrypted using the key information, sent back to the content recording / playback device via the contactless IC card interface, and the decrypted content is played back and output in the content recording / playback device.

  Therefore, according to the present invention, the content can be safely decrypted and reproduced and output. In addition, by managing licenses using an IC card, it is possible to make it difficult to duplicate the rights to use content.

  According to the present invention, it is possible to provide an excellent content management system, content management method, and personal authentication device capable of controlling the use of content and protecting the content by giving a license to the content user. it can.

  Further, according to the present invention, an excellent content management system, content management method, and personal authentication device capable of safely managing key information for decrypting content in a method for managing content by encrypting content Can be provided.

  According to the present invention, high security is established by managing a content decryption key using an IC card, and encrypted content is decrypted safely, and a distributed decryption key is securely managed. Can do. By managing the license using the IC card, it is possible to make it difficult to copy the content use permission.

  Other objects, features, and advantages of the present invention will become apparent from more detailed description based on embodiments of the present invention described later and the accompanying drawings.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

  As described above, in a conventional content protection system represented by DRM, giving a content license (use permission) to a user is realized by giving the content key Kc to the playback device of the user. Here, the management and distribution method of the key information for decrypting the content becomes a problem. This is because even if the content itself can be protected by encryption, once the decryption key is leaked, the encryption processing has no meaning.

  The present invention proposes a content management system capable of managing a decryption key of a content by using an IC card, securely decrypting the encrypted content, and safely managing the distributed decryption key.

  The IC card can establish a safe data transmission path using a non-contact IC card interface with the IC card reader, and can hold data safely due to tamper resistance. In the present invention, an IC card reading function is incorporated in a content recording / playback apparatus that stores a content decryption key obtained by license acquisition in an IC card, accumulates the content, and plays it back. Then, using the key information in the IC card, the content is securely decrypted and reproduced and output.

  Here, prior to describing the present invention, a non-contact IC card communication system will be described. FIG. 1 schematically shows the configuration of a contactless IC card communication system to which the present invention can be applied.

  This contactless card system is composed of a card reader / writer 1, an IC card 2, and a controller 3. The card reader / writer 1 and the IC card 2 are contactless using electromagnetic waves, Data is transmitted and received. That is, the card reader / writer 1 transmits a predetermined command to the IC card 2, and the IC card 2 performs processing corresponding to the received command. Then, the IC card 2 transmits response data corresponding to the processing result to the card reader / writer 1.

  The card reader / writer 1 is connected to the controller 3 via a predetermined interface (for example, one that conforms to the RS-485A standard or the like). The controller 3 supplies a control signal to the card reader / writer 1 to perform a predetermined process.

  FIG. 2 shows a configuration example of the card reader / writer 1 shown in FIG.

  The IC chip module 21 includes a data processing unit (DPU) 31 that processes data, a signal processing unit (SPU) 32 that processes transmission signals to the IC card 2 and reception signals from the IC card 2, and a controller. A memory including an SCC (Serial Communication Controller) 33 that communicates with the CPU 3, a ROM unit 41 that stores information necessary for data processing in advance, and a RAM unit 42 that temporarily stores work data being processed These functional modules are interconnected via a bus. A flash memory 22 for storing predetermined data is also connected to this bus.

  The DPU 31 outputs a transmission command to the IC card 2 to the SPU 32, receives response data received from the IC card 2 from the SPU 32, and performs predetermined data processing.

  The SPU 32 performs a modulation process such as BPSK (BiPhase Shift Keying) on the transmission command to the IC card 2, and then outputs it to the modulation circuit 23 and receives response data from the IC card 2 from the demodulation circuit 25. Then, predetermined demodulation processing such as BPSK is performed on the data.

  The modulation circuit 23 performs ASK (Amplitude Shift Keying) modulation of a carrier wave having a predetermined frequency (for example, 13.56 MHz) supplied from the oscillator 26 with data supplied from the SPU 32, and generates a modulated wave from the antenna 27 as an electromagnetic wave. Is output to the IC card 2 as follows. At this time, the modulation circuit 23 performs ASK modulation with the degree of modulation less than 1. That is, the maximum amplitude of the modulated wave is prevented from becoming zero even when the data is at a low level.

  The demodulation circuit 25 demodulates the modulated wave (ASK modulated wave) received via the antenna 27 and outputs the demodulated data to the SPU 32.

  FIG. 3 shows a configuration example of the IC card 2 shown in FIG. This IC card includes an IC chip module 51 and an antenna 53 on a loop.

  The IC chip module 51 receives the modulated wave transmitted from the card reader / writer 1 via the antenna 53. The capacitor 52 constitutes an LC circuit together with the antenna 53, and is tuned (resonated) with an electromagnetic wave having a predetermined frequency (carrier frequency).

  The IC chip module 51 includes an RF interface unit 61, a calculation unit 64, and the like. The RF interface unit 61 includes an ASK demodulation unit 81, a voltage regulator 82, an oscillation circuit 83, and an ASK modulation unit 84. The ASK demodulator 81 detects and demodulates the modulated wave (ASK modulated wave) received via the antenna 53, and outputs the demodulated data to a BPSK demodulator circuit 62 and a PLL (Phase Locked Loop) 63. The voltage regulator 82 stabilizes the signal detected by the ASK demodulator 81 and supplies it to each circuit as DC power.

  Further, the RF interface unit 61 oscillates a signal having the same frequency as the data clock frequency by the oscillation circuit 83 and outputs the signal to the PLL unit 63. Then, the ASK modulation unit 84 changes the load of the antenna 53 as the power source of the IC card 2 corresponding to the data supplied from the calculation unit 64 (for example, turns on / off a predetermined switching element corresponding to the data) And a predetermined load is connected in parallel to the antenna 53 only when the switching element is in an ON state), whereby the modulated wave received through the antenna 53 is ASK-modulated, and the modulation component is transmitted through the antenna 53. To the card reader / writer 1. When transmitting data from the IC card 2, the card reader / writer 1 keeps the maximum amplitude of the modulated wave output from the card reader / writer 1, and this modulated wave is ASK-modulated by fluctuations in the load of the antenna 53. . Further, the terminal voltage of the antenna 27 of the card reader / writer 1 varies with the data transmission.

  The PLL unit 63 generates a clock signal synchronized with the data from the data supplied from the ASK demodulation unit 81 and outputs the clock signal to the BPSK demodulation circuit 62 and the BPSK modulation circuit 68.

  When the data demodulated by the ASK demodulator 81 is BPSK modulated, the BPSK demodulator circuit 62 demodulates the data in accordance with the clock signal supplied from the PLL unit 63 and outputs the demodulated data to the arithmetic unit 64. To do.

  When the data supplied from the BPSK demodulation circuit 62 is encrypted, the arithmetic unit 64 decrypts the data with the encryption / decryption unit 92 and then processes the data with the sequencer 91. If the data is not encrypted, the data supplied from the BPSK demodulation circuit 62 is directly supplied to the sequencer 91 without going through the encryption / decryption unit 92.

  The sequencer 91 performs processing corresponding to data as a command supplied thereto. For example, the sequencer 91 performs processing such as writing and reading of data with respect to an EEPROM (Electrically Erasable & Programmable ROM) 66.

  The parity calculation unit 93 of the calculation unit 64 calculates a Reed-Solomon code as parity from the data stored in the EEPROM 66 or the data stored in the EEPROM 66. Further, the arithmetic unit 64 performs predetermined processing by the sequencer 91 and then outputs response data (data to be transmitted to the card reader / writer 1) corresponding to the processing to the BPSK modulation circuit 68.

  The BPSK modulation circuit 68 performs BPSK modulation on the data supplied from the calculation unit 64, and outputs the modulated data to the ASK modulation unit 84 of the RF interface unit 61.

  The ROM 65 permanently stores a processing program to be executed by the sequencer 91 and other necessary data. The RAM 67 temporarily stores work data when the sequencer 91 performs processing.

  The EEPROM 66 is a non-volatile memory for storing a large number of applications such as electronic money for making an electronic payment on the IC card 2 and an electronic ticket for entering a specific concert venue. Used. Since the IC card 2 itself does not basically have a driving power source such as a battery, the IC card 2 retains data even after the communication with the card reader / writer 1 is terminated and the power supply is stopped or no power is supplied. A non-volatile memory such as EEPROM 66 that can continue is used.

  Next, data transmission / reception processing between the card reader / writer 1 and the IC card 2 will be described.

  The card reader / writer 1 emits a predetermined electromagnetic wave from the antenna 27, monitors the load state of the antenna 27, and waits until a change in the load state due to the approach of the IC card 2 is detected. Note that the card reader / writer 1 emits an ASK-modulated electromagnetic wave with a predetermined short pattern of data, and repeats a call to the IC card 2 until a response from the IC card 2 is obtained within a predetermined time. (Polling) may be performed.

  When the approach of the IC card 2 is detected in the card reader / writer 1, the SPU 32 of the R / W 1 uses the rectangular wave of a predetermined frequency (for example, a frequency twice as high as the data clock frequency) as a carrier wave. BPSK modulation is performed using data to be transmitted to 2 (commands corresponding to processing to be executed by the IC card 2 or data to be written to the IC card 2), and the generated modulated wave (BPSK modulation signal) is output to the modulation circuit 23.

  In BPSK modulation, data can be made to correspond to a change in the phase of the modulated wave by using differential conversion. In this case, even if the BPSK modulation signal is inverted, it is demodulated to the original data, so that it is not necessary to consider the polarity of the modulated wave when demodulating.

  The modulation circuit 23 performs ASK modulation on a predetermined carrier wave with an input BPSK modulation signal with a modulation factor of less than 1 (for example, 0.1) (= maximum amplitude of data signal / maximum amplitude of carrier wave), and generated modulation A wave (ASK modulated wave) is transmitted to the IC card 2 via the antenna 27.

  When transmission is not performed, the modulation circuit 23 generates a modulated wave at a high level, for example, of two levels (high level and low level) of the digital signal.

  In the IC card 2, in the LC circuit composed of the antenna 53 and the capacitor 52, a part of the electromagnetic wave radiated by the antenna 27 of the card reader / writer 1 is converted into an electric signal, and the electric signal (modulated wave) is converted into an IC. It is output to the RF interface 61 of the chip module 51. Then, the ASK demodulator 81 of the RF interface 61 performs envelope detection by rectifying and smoothing the modulated wave, and supplies the generated signal to the voltage regulator 82 and suppresses the DC component of the signal. The data signal is extracted, and the data signal is output to the BPSK demodulation circuit 62 and the PLL unit 63.

  The voltage regulator 82 stabilizes the signal supplied from the ASK demodulator 81, generates DC power, and supplies it to each circuit.

At this time, the terminal voltage V ₀ of the antenna 53 is, for example, as follows.

V ₀ = V ₁₀ (1 + k × V _s (t)) cos (ωt)

However, V ₁₀ cos (ωt) represents a carrier wave, k represents a modulation degree, and V _s (t) represents data output from the SPU 32.

The low level value V _LR of the voltage V ₁ after rectification by the ASK demodulator 81 is, for example, as follows.

V _LR = V ₁₀ (1 + k × (−1)) − V _f

Here, V _f indicates a voltage drop in a diode constituting a rectifier circuit for performing rectification and smoothing in the ASK demodulator 81, and is generally about 0.7 volts.

  When the voltage regulator 82 receives the signal rectified and smoothed by the ASK demodulator 81, the voltage regulator 82 stabilizes the signal and supplies it as DC power to each circuit including the arithmetic unit 64. Since the modulation degree k of the modulated wave is less than 1, the voltage fluctuation after rectification (difference between high level and low level) is small. Therefore, DC power can be easily generated in the voltage regulator 82.

For example, when a modulated wave having a modulation degree k of 5% is received so that V ₁₀ is 3 volts or more, the low level voltage V _LR after rectification is 2.15 (= 3 × (1-0.05). ) −0.7) volts or more, and the voltage regulator 82 can supply each circuit with a voltage sufficient as a power source. In this case, the amplitude 2 × k × V ₁₀ (Peak-to-Peak value) of the AC component (data component) of the rectified voltage V ₁ becomes 0.3 (= 20.05 × 3) volts or more, and ASK The demodulator 81 can demodulate data with a sufficiently high S / N ratio.

  In this way, by using an ASK modulated wave having a modulation degree k of less than 1, communication is performed with a low error rate (in a high S / N ratio), and a sufficient DC voltage as a power source is applied to the IC card 2. Supplied.

  When receiving the data signal (BPSK modulated signal) from the ASK demodulator 81, the BPSK demodulator 62 demodulates the data signal in accordance with the clock signal supplied from the PLL unit 63, and outputs the demodulated data to the calculator 64. .

  When the data supplied from the BPSK demodulation circuit 62 is encrypted, the arithmetic unit 64 decrypts the data with the encryption / decryption unit 92 and then supplies the data (command) to the sequencer 91 for processing. It should be noted that the card reader / writer 1 is on standby while transmitting data having a value of 1 after the data is transmitted to the IC card 2 until a response is received. Therefore, during this period, the IC card 2 receives a modulated wave having a constant maximum amplitude.

  When the processing is completed, the sequencer 91 outputs data to be transmitted to the card reader / writer 1 to the BPSK modulation circuit 68. The BPSK modulation circuit 68 BPSK-modulates the data, like the SPU 32 on the card reader / writer 1 side, and then outputs the data to the ASK modulation unit 84 of the RF interface unit 61.

  The ASK modulation unit 84 can vary the load connected to both ends of the antenna 53 using a switching element. That is, by changing the load in accordance with the data from the BPSK modulation circuit 68, the received modulated wave is ASK modulated in accordance with the data to be transmitted, whereby the terminal voltage of the antenna 27 of the card reader / writer 1 is changed. The data is changed and transmitted to the card reader / writer 1.

  On the other hand, the modulation circuit 23 on the card reader / writer 1 side continues to transmit data having a value of 1 (high level) when receiving data from the IC card 2. Then, in the demodulation circuit 25, the data transmitted by the IC card 2 from the minute fluctuation (for example, several tens of microvolts) of the terminal voltage of the antenna 27 electromagnetically coupled to the antenna 53 of the IC card 2 is obtained. Detected.

  Further, in the demodulation circuit 25, the detected signal (ASK modulated wave) is amplified and demodulated by a high gain amplifier, and the resulting digital data is output to the SPU 32. The SPU 32 demodulates the data (BPSK modulation signal) and outputs it to the DPU 31. The DPU 31 processes the data from the SPU 32 and determines whether or not to end the communication according to the processing result.

  If it is determined that communication is to be performed again, communication is performed between the card reader / writer 1 and the IC card 2 in the same manner as described above. On the other hand, if it is determined that the communication is to be terminated, the card reader / writer 1 terminates the communication process with the IC card 2.

  As described above, the card reader / writer 1 transmits data to the IC card 2 by using the ASK modulation whose modulation degree k is less than 1. The IC card 2 receives the data, performs processing corresponding to the data, and returns data corresponding to the processing result to the card reader / writer 1.

  FIG. 4 schematically shows the control system configuration of the memory area in the IC card according to the present embodiment. As shown in the figure, this control system is basically implemented as a subsystem in the operating system, and is composed of a protocol interface part, an OS central part, and a file system.

  The protocol interface unit handles an access request to the file system from an external device via an external device interface such as UART 48, or an access request to the file system from a card read / write device via a non-contact IC card interface. To do.

  The central part of the OS performs decoding / encoding of data exchanged with the file system, error correction by CRC, etc., management of the number of rewrites for each block of the EEPROM 43, PIN verification, mutual authentication, and the like.

  Further, the OS central part includes several APIs (Application Programming Interfaces) to the file system such as PIN verification and mutual authentication at the time of file access, and file read / write.

  The file system has physical access to the EEPROM 43 as a file system entity. Since the physical access operation itself to a memory device such as an EEPROM is well known in the art, its description is omitted here.

  The memory area developed on the EEPROM 43 is composed of one or more file systems. In the initial state, the memory area is managed by a single file system managed by the original IC card issuer. When a service provider other than the IC card issuer divides a new file system from the memory area, both the authority to divide the memory area and authentication of the original IC card issuer are required. Once divided, access to the file system requires authentication not to the original IC card issuer but to the service provider of the file system itself. The division of the file system is the issue of a virtual IC card.

The OS manages a division authority key _Kd for permitting division. Also, for each file system, issuer and issuer key K _I of (original IC card issuer, or file divided carrier), and the system code, the area ID for identifying a file area is managed .

  Access to the file system is performed through an area ID request by polling and a procedure of mutual authentication. The file system issuer (card issuer in the case of the original file system, service provider that uses the divided file system) first takes the system code that it knows as an argument. By polling the file system, the area ID on the memory area of the corresponding file system can be acquired. Next, mutual authentication is performed using this area ID and issuer key KI. When the mutual authentication is successful, access to the file system is permitted. Since access to the file system is performed by encrypted communication using the issuer key KI unique to the issuer and the corresponding file system, other file systems can take in irrelevant data, or other than the issuer Cannot read from or write to the file system without permission.

  Next, operations related to content decryption key management and content reproduction processing using the IC card according to the present invention will be described.

  In the content management system according to the present invention, the tamper resistance of the IC card and the encrypted transmission path established by the contactless IC card interface are preferably used to prevent unauthorized use of content and duplication of the content decryption key. doing. That is, the content decryption key is securely managed using the tamper resistance of the IC card. Further, the IC card has a built-in decryption device, and securely decrypts the encrypted content. Then, the IC card securely transmits the decrypted content to and from the IC card reader through a secure data transmission path using a non-contact IC card interface.

  FIG. 5 schematically shows the configuration of a content management system according to an embodiment of the present invention. The illustrated system includes a content management device that manages content by a method such as DRM, and an IC card that holds a license issued to a content user, that is, an encryption key. The IC card includes a decryption device that stores a content decryption key obtained by acquiring a license and decrypts the encrypted content using the decryption key. An IC card reading function is incorporated in a content recording / playback apparatus for using content.

  In the illustrated content management system, the IC card provides three functions: an encryption key distribution function, an encryption key management function, and an encryption processing function.

  As a first operation procedure of the illustrated content management system, a content encryption key is distributed from the content management device to the IC card. In this procedure, the encryption key on the communication path is encrypted by the encryption key distribution function in the IC card, and the encryption key is securely distributed from the content management device to the IC card.

  In the IC card, it is possible to manage the encryption keys of a plurality of contents by the encryption key management function.

  As a subsequent operation procedure, the content is encrypted and distributed. After the activation command is transmitted to the IC card, the content is decrypted by the cryptographic processing function.

  The encrypted content can include a processing instruction for the IC card, thereby enabling the content reference history to be described in the IC card. The activation command enables encryption processing and specifies a content encryption key to be used.

  As a modification of the above-described operation procedure, a part of an application may be encrypted and an IC card may be used as an activation key. Further, by using the encryption function of the IC card for data transfer between terminals, highly confidential communication can be realized.

  FIG. 6 shows an example of a content management sequence in the content management system according to the present invention. However, it is assumed that the media player is equipped with an encrypted medium or a removable memory. Media encryption is performed for all or part of the content. The IC card also includes a decryption key for decrypting encrypted content and a decryption device for decrypting.

  The media player first issues an IC card activation command in the operation procedure (1). In this activation command, when a predetermined authentication process is performed and the authentication is successful, a data transmission path via the non-contact interface is established with the IC card. Then, the IC card returns response information.

  As the next operation procedure (2), the media player transfers the encrypted content to the IC card via the non-contact interface. On the IC card side, the encrypted content is decrypted and sent back via a contactless interface. The media player can reproduce and output the received decrypted content.

  When the entire content is encrypted, the content is reproduced according to the above-described sequence. If only a part of the content is encrypted, only the encrypted part may be processed in this sequence.

  FIG. 7 shows another example of the content management sequence in the content management system according to the present invention. However, it is assumed that the media player is equipped with an encrypted medium or a removable memory. Media encryption is performed for all or part of the content. In the illustrated example, unlike the example illustrated in FIG. 6, a device that distributes encrypted content and a device that reproduces content after decryption are configured by different devices. The IC card also includes a decryption key for decrypting encrypted content and a decryption device for decrypting.

  First, in operation procedure (1), the media distributor issues an IC card activation command. In this activation command, when a predetermined authentication process is performed and the authentication is successful, a data transmission path via the non-contact interface is established with the IC card. Then, the IC card returns response information.

  As the next operation procedure (2), the media distributor transfers the encrypted content to the IC card via the non-contact interface. On the IC card side, the encrypted content is decrypted and sent back via a contactless interface. The media player can reproduce and output the received decrypted content.

  The present invention has been described in detail above with reference to specific embodiments. However, it is obvious that those skilled in the art can make modifications and substitutions of the embodiment without departing from the gist of the present invention. That is, the present invention has been disclosed in the form of exemplification, and the contents described in the present specification should not be interpreted in a limited manner. In order to determine the gist of the present invention, the claims section described at the beginning should be considered.

FIG. 1 is a diagram schematically showing a configuration of a contactless IC card communication system to which the present invention can be applied. FIG. 2 is a diagram showing a configuration example of the card reader / writer 1. FIG. 3 is a diagram illustrating a configuration example of the IC card 2. FIG. 4 is a diagram schematically showing the control system configuration of the memory area in the IC card according to the present invention. FIG. 5 is a diagram schematically showing a configuration of a content management system according to an embodiment of the present invention. FIG. 6 is a diagram showing an example of a content management sequence in the content management system according to the present invention. FIG. 7 is a diagram showing another example of the content management sequence in the content management system according to the present invention.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 ... Card reader / writer 2 ... IC card 3 ... Controller 21 ... IC chip module 23 ... Modulation circuit 25 ... Demodulation circuit 27 ... Antenna 51 ... IC chip module 52 ... Capacitor 53 ... Antenna 61 ... RF interface part 62 ... BPSK demodulating circuit 63 ... PLL section 64 ... computing section 65 ... ROM
66… EEPROM
67 ... RAM
68 ... BPSK modulation circuit 81 ... ASK demodulation unit 82 ... Voltage regulator 83 ... oscillation circuit 84 ... ASK modulation unit 91 ... sequencer 92 ... encryption / decryption unit 93 ... parity calculation unit

Claims (6)

A content management system that manages content by encrypting content,
A content management device for managing content encryption keys;
An authentication processing unit that performs an authentication procedure; a memory that stores an encryption key of a user who has received a license for the content; a personal authentication device that includes a decryption device that decrypts the encrypted content using the encryption key;
A content use device that uses the licensed content,
The content management device registers an encryption key in the personal authentication device through an authentication procedure,
The personal authentication device decrypts and returns the encrypted content received from the content using device,
A content management system characterized by that. The personal authentication device is composed of an IC card, and communicates between the content management device and the content using device using an encrypted transmission path using a non-contact IC card interface.
The content management system according to claim 1. A content management method for managing content by encrypting content,
Registering an encryption key in a personal authentication device of a user who has received a content license through an authentication procedure;
The personal authentication device receiving encrypted content;
The personal authentication device decrypting the encrypted content;
Transmitting the content decrypted by the personal authentication device;
A content management method comprising: The personal authentication device is composed of an IC card and communicates using an encrypted transmission path using a non-contact IC card interface.
The content management system according to claim 3. A personal authentication device used for content management,
Data communication means for communicating data;
A memory for storing the encryption key of the licensed user;
A decryption device that decrypts the encrypted content using the encryption key,
Register the encryption key in the memory through the authentication procedure,
Decrypt the encrypted content received from an external device and send it back
A personal authentication device. The data communication means performs data communication using an encrypted data transmission path using a contactless interface.
The personal authentication device according to claim 5.

Images