JP2010009582A - Data providing device, operation device, data processor, operation system, and control program - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide an operation data capable of carrying out authentication, without impairing convenience for a user. <P>SOLUTION: A service providing device 400 includes a one-time PW generation processing part 435 for generating a one-time password (PW) used in authentication processing executed when accessed from a display processor 200, in every operation device 300, in response to a request from the operation device 300, and an image generation processing part 436 for generating an operating image data including the one-time password generated hereinbefore, and for transmitting it to the operation device 300. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to a data providing device that provides operation data for an operation device to operate a data processing device, a data processing device that executes processing according to the operation data, an operation device that transmits operation data to the data processing device, and the like. is there.

  In recent years, portable devices (such as mobile phones and digital cameras) that support high-speed infrared communication protocols such as IrSS (registered trademark) (hereinafter referred to as IrSS) have become widespread, and image data captured by the portable devices can be used as It is possible to directly transmit from a portable device to an operation target device such as various AV devices in the home (such as a TV and an HDD recorder) by short-range wireless communication. Thereby, for example, the portable device can be operated to store the image data in the HDD recorder, or to display the image data on the television.

  In addition, recently, it is possible to store command information for operating the operation target device in an EXIF area included in image data such as JPEG (Joint Photographic Experts Group) format. It can be used as operation data for operating the target device. Therefore, by transmitting the operation data to each operation target device from an operation device such as a portable device, the operation device can be used as a remote controller for each operation target device.

  For example, the operation data stored in the EXIF area as the command information is a set of a URL (Uniform Resource Locator) and a command for accessing the Web site specified by the URL. Suppose that it was sent to In this case, the television that has received the operation data displays content such as a Web site specified by the URL in accordance with the command information. In this way, the user can easily display desired content on the TV by transmitting operation data from the mobile device to the TV, thus realizing an operation system with high operability and convenience. It becomes possible to do.

  In the operation system described above, a use case is assumed in which only a user who is given a predetermined authority can view content. In this case, in order to authenticate that the user is an authorized user, for example, on the login screen, information necessary for authentication such as a user ID and a password is generally input by the user.

  For example, Patent Document 1 discloses a system in which a recording device can use various services via a network by remotely operating the recording device with a mobile phone. In this system, the mobile phone is authenticated by a user. By using this service, it is possible to limit the use of the service. More specifically, when the authentication with the mobile phone is successful, the user account is supplied to the mobile phone. The user can use the service on the recording device by registering the user account in the recording device using the remote controller of the recording device.

JP 2005-202536 A (publication date: July 28, 2005)

  When the technique of Patent Document 1 is applied to the use case of the operation system, the following problem occurs.

  In the above use case, the TV that has received the operation data from the mobile phone displays a login screen for confirming the authority of the user and displays the user ID and password before displaying the content. Will do. At this point, the user cannot browse the desired content. According to the technique of Patent Document 1, a user must manually register an account, a password, and the like supplied to a mobile phone using a television remote controller in order to view content.

  In other words, when viewing content with restricted access on the TV, the user transmits operation data to the TV using a mobile phone, and then uses the mobile phone as a TV remote control to register an account (password). There is a problem that it is forced to perform complicated operations. This also impairs the original advantage (convenience) of the operation system, in which the operation target device can be easily operated remotely simply by transmitting operation data from the portable device.

  In the technique of Patent Document 1, since the user account is supplied to the mobile phone as it is and displayed on the display unit of the mobile phone, it cannot be said that the user account is in a state of being securely transmitted on the communication path.

  The present invention has been made in view of the above problems, and an object of the present invention is to provide a user in an operation system that operates an operation target device with an operation device by using operation data for operating the operation target device. It is intended to provide a data providing device, an operating device, a data processing device, an operating system, and the like that provide operation data that enables authentication without impairing the convenience of the user.

  In order to solve the above-described problem, a data providing apparatus according to the present invention provides an operation apparatus that transmits the operation data to a data processing apparatus that executes a process according to operation data including process designation information that designates a process to be executed. On the other hand, it is a data providing device that provides the operation data, and when the access is made from the data processing device, the authentication information used in the authentication processing performed by the device itself is used as the authentication information acquisition request from the operation device. Operation information for generating the operation data including the authentication information generating means generated for each operating device according to the authentication information, the authentication information generated by the authentication information generating means, and the process specifying information specifying the authentication process Generating means and operation data transmitting means for transmitting the operation data generated by the operation data generating means to the operating device. It is a symptom.

  According to the above configuration, the data providing device uses the authentication information used in the authentication process performed by the data processing device when accessed from the data processing device in response to the authentication information acquisition request from the operating device. It can be generated for each device. In addition, the operation data including the generated authentication information and the process specifying information specifying the authentication process can be generated. The generated operation data can be transmitted to the operation device.

  Therefore, when the operation device that has received the generated operation data transmits the received operation data to the data processing device, the data processing device that has received the operation data receives authentication information included in the operation data. Based on the above, it is possible to perform an authentication process performed when accessing the data providing apparatus. Therefore, the user of the operating device that operates the data processing device does not need to directly input the authentication information, and only has to transmit the generated operation data to the data processing device.

  Therefore, the user of the operation device only needs to perform a simple operation of receiving and transmitting operation data instead of performing a complicated operation of directly inputting authentication information, so that the convenience of the user is not impaired. There is an effect that an authentication process performed when accessing the data providing apparatus can be performed.

  Furthermore, the data providing apparatus according to the present invention is such that the acquisition request includes service identification information for identifying a service to be provided to the data processing apparatus when the authentication process is successful. A service-related information storage unit that associates and stores identification information and service-related information related to the service identified by the service identification information, and the operation data generation means is further included in the acquisition request The service related information associated with the service identification information may be acquired from the service related information storage unit, and the operation data including the acquired service related information may be generated.

  According to the above configuration, the data providing apparatus further acquires the service related information associated with the service identification information included in the acquisition request from the service related information storage unit and acquires the service related information. The operation data including the service related information can be generated.

  Therefore, operation data including the authentication information generated in response to the acquisition request and the service-related information associated with the service identification information included in the acquisition request can be transmitted to the operation device. .

  Therefore, the user of the operation device can know which service the received operation data is for using based on the service related information included in the operation data received from the data providing device. Therefore, the user convenience is further improved.

  Further, in the data providing apparatus according to the present invention, the service related information may be an image related to the service.

  According to said structure, the image regarding the said service is further included in the said operation data as said service relevant information.

  Therefore, the operation data including the authentication information generated in response to the acquisition request and the image related to the service can be transmitted to the operation device.

  Therefore, the user of the operation device simply browses the image related to the service included in the operation data received from the data providing device on the operation device, which service the received operation data uses. Since it can be known whether it is a thing, there exists an effect that a user's convenience improves further.

  Furthermore, in the data providing apparatus according to the present invention, the acquisition request includes operating device identification information for identifying the operating device, and the operating device identification information and the operating device identification information are used for identification. A user-related information storage unit that stores user-related information related to the user of the operation device in association with each other, and the operation data generation unit is further associated with the operation device identification information included in the acquisition request. The user related information may be acquired from the user related information storage unit, and the operation data including the acquired user related information may be generated.

  According to the above configuration, the data providing apparatus further acquires the user related information associated with the operating device identification information included in the acquisition request from the user related information storage unit, and acquires the user related information. The operation data including the user-related information can be generated.

  Therefore, the operation data including the authentication information generated in response to the acquisition request and the user-related information associated with the operation device identification information included in the acquisition request may be transmitted to the operation device. it can.

  Therefore, the user of the operation device can know which user the operation data received is for use based on the user related information included in the operation data received from the data providing device. The user convenience is further improved.

  Furthermore, in the data providing apparatus according to the present invention, the user related information may be an image related to the user.

  According to said structure, the image regarding the said user is further included in the said operation data as said user relevant information.

  Therefore, the operation data including the authentication information generated in response to the acquisition request and the image related to the user can be transmitted to the operation device.

  Therefore, the user of the operation device simply browses the image related to the user included in the operation data received from the data providing device on the operation device, and which user uses the received operation data. Therefore, the convenience of the user is further improved.

  Further, the operating device according to the present invention provides data for generating authentication information used in authentication processing performed when accessed from a data processing device that executes processing according to operation data including processing specifying information specifying processing to be executed. An operation device that transmits the operation data provided from a device to the data processing device, wherein the generated authentication information and the processing designation information for which the authentication processing is designated are transmitted from the data providing device. The operation data receiving means for receiving the operation data including the operation data, and the operation data transmitting means for transmitting the operation data received by the operation data receiving means to the data processing device.

  According to said structure, the operating device can receive the operation data containing the produced | generated authentication information and the process designation information which designated the said authentication process from the data provision apparatus which produces | generates the said authentication information. . Further, the received operation data can be transmitted to the data processing device.

  Therefore, when the received operation data is transmitted to the data processing device, the data processing device that has received the operation data causes the data providing device to perform authentication processing using the authentication information included in the operation data. Can do. That is, the user of the operation device does not need to directly input the authentication information, and only needs to perform a simple operation of transmitting the received operation data to the data processing device.

  Therefore, it is possible to perform authentication when accessing the data providing apparatus by a simple operation of receiving and transmitting operation data without impairing user convenience.

  Furthermore, in the operation device according to the present invention, the operation data received by the operation data receiving unit from the data providing device includes an image and is included in the operation data received by the operation data receiving unit. It is good also as a structure further provided with the display control means to display an image on the display part of an own apparatus.

  According to said structure, the operating device can further display the image contained in the said operating data received from the said data provision apparatus on the display part of an own apparatus.

  Therefore, an image included in the received operation data can be presented to the user of the operation device.

  Therefore, for example, when the image included in the received operation data is an image indicating which service the received operation data is used for, the user of the operation device displays on the display unit. By simply browsing the displayed image, it is possible to know which service the received operation data is for. Further, for example, when the image included in the received operation data is an image indicating which user the received operation data is for use, the user of the operation device displays the image on the display unit. It is possible to know which user is using the received operation data simply by browsing the displayed image. Therefore, the user convenience is further improved.

  Furthermore, in the operating device according to the present invention, the display control unit further displays the first user interface for receiving an instruction from the user to transmit the operation data received by the operation data receiving unit to the data processing device. The operation data transmitting means transmits the operation data received by the operation data receiving means to the data processing device when receiving an instruction from the user through the first user interface. It is good also as composition to do.

  According to said structure, the operating device can further display the said 1st user interface on the said display part. Further, when an instruction is received from the user through the first user interface, the operation data received by the operation data receiving means can be transmitted to the data processing device.

  Therefore, the operation data can be transmitted to the data processing apparatus triggered by receiving an instruction from the user through the first user interface.

  Therefore, since the user of the operation device can determine the timing for transmitting the operation data to the data processing device, the user convenience is further improved.

  Furthermore, the operation device according to the present invention includes an operation data storage unit that stores the operation data including the process specification information that specifies the process for the data processing device to access the data providing device, and the operation data storage unit. The operation data transmitting means further includes a transmission instruction receiving means for displaying on the display section a second user interface for receiving an instruction to transmit the stored operation data to the data processing device from a user. When an instruction is received from a user through the second user interface, the operation data stored in the operation data storage unit may be transmitted to the data processing device.

  According to said structure, the operating device can further memorize | store the said operation data containing the said process designation | designated information which designated the process which the said data processing apparatus accesses the said data provision apparatus. And when the instruction | indication from a user is received in the said 2nd user interface, the said operation data memorize | stored in the said operation data memory | storage part can be transmitted to the said data processor. The data processing device that has received the operation data performs a process of accessing the data providing device based on the process designation information included in the operation data.

  Therefore, it is possible to cause the data processing apparatus to perform processing for accessing the data providing apparatus triggered by receiving an instruction from the user via the second user interface.

  Therefore, the user of the operating device can cause the data processing device to perform processing for accessing the data providing device by performing a simple operation, and transmits the operating data to the data processing device. Since the user of the operating device can determine the timing, the user convenience is further improved.

  Further, the data processing apparatus according to the present invention is a process that designates a process to be executed provided to an operating device from a data providing apparatus that generates authentication information used in an authentication process performed when accessed from the data processing apparatus. A data processing device that performs processing according to operation data including designation information, and receives operation data from the operation device that includes the authentication information and the operation data including the processing designation information that designates the authentication processing. Authentication information extracting means for extracting the authentication information from the operation data received by the operation data receiving means, and authentication information transmission for transmitting the authentication information extracted by the authentication information extracting means to the data providing apparatus. Means.

  According to said structure, the data processing apparatus can receive the said authentication information and the operation data containing the process designation information which designated the said authentication process from the said operation apparatus. Further, authentication information can be extracted from the received operation data. The extracted authentication information can be transmitted to the data providing apparatus.

  Therefore, the data processing device that has received the operation data from the operation device can cause the data providing device to perform authentication processing by transmitting authentication information included in the operation data to the data providing device. Therefore, the user of the operating device that operates the data processing device does not need to input authentication information directly, and only performs a simple operation of transmitting the generated operation data to the data processing device. Authentication by the providing device becomes possible.

  Therefore, the user of the operation device only needs to perform a simple operation of receiving and transmitting operation data instead of performing a complicated operation of directly inputting authentication information, so that the convenience of the user is not impaired. There is an effect that it is possible to perform authentication when accessing the data providing apparatus.

  An operation system according to the present invention includes the data providing device, the operation device, and the data processing device.

  According to the above configuration, first, in the data providing apparatus, the authentication information used in the authentication process performed by the own apparatus when accessed from the data processing apparatus is used as the authentication information acquisition request from the operating apparatus. Accordingly, it can be generated for each operating device. In addition, the operation data including the generated authentication information and the process specifying information specifying the authentication process can be generated. The generated operation data can be transmitted to the operation device.

  The operation device can receive operation data including the generated authentication information and process designation information designating the authentication process from the data providing apparatus. Further, the received operation data can be transmitted to the data processing device.

  In the data processing apparatus, operation data including the authentication information and process designation information designating the authentication process can be received from the operation apparatus. In addition, the authentication information can be extracted from the received operation data. The extracted authentication information can be transmitted to the data providing apparatus.

  Therefore, the user of the operation device can perform authentication processing in the data providing device by transmitting operation data including the authentication information generated by the data providing device to the data processing device.

  Therefore, in the operation system including the data providing device, the operation device, and the data processing device, the operation device receives a user's convenience by performing a simple operation of receiving and transmitting operation data. There is an effect that it is possible to perform authentication when accessing the data providing apparatus without loss.

  The data providing device, the operating device, and the data processing device may be realized by a computer. In this case, the data providing device, the operating device, In addition, the data providing device, the operation device, the control program for the data processing device, and the computer-readable recording medium on which the data processing device is implemented so that the data processing device is realized by a computer fall within the scope of the present invention.

  As described above, the data providing apparatus according to the present invention responds to the authentication information acquisition request from the operating device by using the authentication information used in the authentication process performed by the own apparatus when accessed from the data processing apparatus. Authentication information generating means for generating each operation device, authentication information generated by the authentication information generating means, and operation data generating means for generating the operation data including the process specifying information specifying the authentication process And operation data transmission means for transmitting the operation data generated by the operation data generation means to the operation device.

  Therefore, when the operation device that has received the generated operation data transmits the received operation data to the data processing device, the data processing device that has received the operation data receives authentication information included in the operation data. Based on the above, it is possible to perform an authentication process performed when accessing the data providing apparatus. Therefore, the user of the operating device that operates the data processing device does not need to directly input the authentication information, and only has to transmit the generated operation data to the data processing device.

  Therefore, the user of the operation device only needs to perform a simple operation of receiving and transmitting operation data instead of performing a complicated operation of directly inputting authentication information, so that the convenience of the user is not impaired. There is an effect that an authentication process performed when accessing the data providing apparatus can be performed.

  Further, the operating device according to the present invention provides data for generating authentication information used in authentication processing performed when accessed from a data processing device that executes processing according to operation data including processing specifying information specifying processing to be executed. An operation device that transmits the operation data provided from a device to the data processing device, wherein the generated authentication information and the processing designation information for which the authentication processing is designated are transmitted from the data providing device. Operation data receiving means for receiving the operation data, and operation data transmission means for transmitting the operation data received by the operation data receiving means to the data processing device.

  Therefore, when the received operation data is transmitted to the data processing device, the data processing device that has received the operation data causes the data providing device to perform an authentication process using authentication information included in the operation data. Can do. That is, the user of the operation device does not need to directly input the authentication information, and only needs to perform a simple operation of transmitting the received operation data to the data processing device.

  Therefore, it is possible to perform authentication when accessing the data providing apparatus by a simple operation of receiving and transmitting operation data without impairing user convenience.

  Further, the data processing device according to the present invention provides the processing designation information that designates the processing to be executed provided from the data providing device that generates the authentication information used in the authentication processing performed when accessed from the outside to the operating device. A data processing device that executes processing according to operation data including the operation data receiving means for receiving the operation data including the authentication information and the processing designation information designating the authentication processing from the operation device; Authentication information extracting means for extracting the authentication information from the operation data received by the operation data receiving means; and authentication information transmitting means for transmitting the authentication information extracted by the authentication information extracting means to the data providing device. Prepare.

  Therefore, the data processing device that has received the operation data from the operation device can cause the data providing device to perform an authentication process by transmitting authentication information included in the operation data to the data providing device. Therefore, the user of the operating device that operates the data processing device does not need to input authentication information directly, and only performs a simple operation of transmitting the generated operation data to the data processing device. Authentication by the providing device becomes possible.

  Therefore, the user of the operation device only needs to perform a simple operation of receiving and transmitting operation data instead of performing a complicated operation of directly inputting authentication information, so that the convenience of the user is not impaired. There is an effect that it is possible to perform authentication when accessing the data providing apparatus.

It is a block diagram which shows the principal part structure of the operating device, the display processing apparatus, and service provision apparatus which are included in the operating system which concerns on one Embodiment of this invention. 1 is a block diagram illustrating a schematic configuration of an operation system according to an embodiment of the present invention. It is the schematic diagram which showed the outline of the data structure of the image data for operation handled with the operation system which concerns on one Embodiment of this invention. It is the schematic diagram which showed the outline of the data structure of the image data for operation handled with the operation system which concerns on one Embodiment of this invention. It is the schematic diagram which showed the outline of the data structure of the image data for operation handled with the operation system which concerns on one Embodiment of this invention. It is the schematic diagram which showed the outline of the data structure of the image data for operation handled with the operation system which concerns on one Embodiment of this invention. It is a block diagram which shows the principal part structure of the operation system which concerns on one Embodiment of this invention. It is a figure which shows the flow of a process which accesses the Web site of a service provision apparatus in the operation system which concerns on one Embodiment of this invention. It is a figure which shows the flow of a process which performs the authentication (login) in a website by transmitting the image data acquired from the service provision apparatus to a display processing apparatus in the operation system which concerns on one Embodiment of this invention. In the operation system according to an embodiment of the present invention, processing for performing authentication (login) at the same time as accessing a Web site by transmitting image data for site access with authentication information acquired from a service providing device to a display processing device. It is a figure which shows the flow of. In the operation system according to an embodiment of the present invention, the flow of processing for performing authentication (purchase) necessary for content purchase processing by transmitting purchase image data acquired from a service providing device to a display processing device. FIG. 6 is a flowchart illustrating processing in each device when accessing a Web site that does not require authentication (login) in the operation system according to the embodiment of the present invention. It is a schematic diagram which shows a mode that the list of the services which a user can select was displayed as a menu on the display part of the operating device which concerns on one Embodiment of this invention. It is a schematic diagram which shows a mode that the image which shows the outline | summary of a service was output to the display part of the operating device which concerns on one Embodiment of this invention. 6 is a flowchart illustrating processing in each device when the Web system that requires authentication (login) is first accessed in the operation system according to the embodiment of the present invention. It is a flowchart which shows the flow of the log-in authentication request process performed with the operating device which concerns on one Embodiment of this invention, and the image data generation process for authentication performed with the service provision apparatus which concerns on one Embodiment of this invention. It is a schematic diagram which shows a mode that the image was output to the display part based on the image information contained in the image data for authentication to the display part of the operating device which concerns on one Embodiment of this invention. In the operation system according to an embodiment of the present invention, after logging in once to a website that requires authentication (login), processing in each device when accessing again within a period in which authentication with a one-time password is valid is shown. It is a flowchart. It is a block diagram which shows the principal part structure of the operating device, the display processing apparatus, and service provision apparatus which are contained in the operating system which concerns on other one Embodiment of this invention. 10 is a flowchart showing processing in each device when accessing a Web site when a service providing device according to another embodiment of the present invention provides one piece of site access image data with authentication information. The flowchart which shows the process in each apparatus at the time of accessing a Web site, when the service provision apparatus which concerns on other one Embodiment of this invention provides the image data for authentication and two image data for site access. It is. It is a block diagram which shows the principal part structure of the operating device, the display processing apparatus, and service provision apparatus which are contained in the operating system which concerns on other one Embodiment of this invention. In the operation system according to another embodiment of the present invention, by transmitting purchase image data from the operation device to the display processing device, processing at each device when performing authentication at the time of content purchase in the service providing device is performed. The flow will be described. It is a flowchart which shows the flow of the terminal registration process and the registration / update process of user information in the operating device and service provision apparatus which concern on one Embodiment of this invention. It is a schematic diagram which shows a mode that the image data produced | generated according to the user was displayed on the display part of the operating device which concerns on one Embodiment of this invention. It is a schematic diagram which shows a mode that the other image data produced | generated according to the user was displayed on the display part of the operating device which concerns on one Embodiment of this invention. It is a schematic diagram which shows a mode that the other image data produced | generated according to the user was displayed on the display part of the operating device which concerns on one Embodiment of this invention.

  In the following embodiments, image data will be described as an example of operation data received by the data processing device from the operation device. The image data given as an example here has a general format such as JPEG format, but is data that can include processing specification information 5 that specifies processing to be executed by the data processing apparatus and data to be processed. It is assumed that it has a structure. In each embodiment, the image data including the processing designation information 5 is also particularly referred to as operation image data 3. Details of the data structure of the operation image data 3 and the processing designation information 5 will be described later.

  Further, as a data processing apparatus according to each embodiment, a display processing apparatus that receives image data as operation data and displays various data according to the image data will be described as an example.

[System overview]
A schematic configuration of the operation system 100 according to each embodiment will be described with reference to FIG. FIG. 2 is a block diagram illustrating a schematic configuration of the operation system 100. As illustrated, the operation system 100 includes at least a display processing device (data processing device) 200, an operation device 300, and a service providing device (data providing device) 400. The operation system 100 allows the user to operate the display processing device 200 using the operation device 300, and thereby transmit various data (contents such as Web pages) provided as a service by the service providing device 400 to the communication network 500. This is a system that can be obtained through the browser and viewed on the display processing device 200.

  The display processing device 200 is a device owned by a user who uses the operation system 100 and is a device that executes various processes according to image data transmitted from the operation device 300. Therefore, the display processing device 200 can receive image data transmitted from the operation device 300. When the received image data includes the processing designation information 5, the display processing device 200 extracts the processing designation information 5 included in the received image data and performs a process according to the extracted processing designation information 5. (E.g., accessing a website).

  The operation device 300 is a device owned by a user who uses the operation system 100 and is a device for operating the display processing device 200. Therefore, the operation device 300 can transmit image data to the display processing device 200 using a user operation or the like as a trigger.

  The service providing apparatus 400 is a server apparatus that provides various services to a user who uses the operation system 100, and is an apparatus owned by a service provider. And various data (contents, such as a web page) according to the request | requirement from the display processing apparatus 200 etc. are provided.

  The service providing apparatus 400 also uses authentication information (one-time password (hereinafter referred to as “one-time password”) used in authentication processing performed when the user logs into the operation system 100 and purchases the content provided by the service providing apparatus 400. The operation image data 3 in which the processing designation information 5 is embedded) is provided to the operation device 300. Since this is a feature of the present invention, details will be described later.

  In each embodiment, a mobile phone is assumed as the operation device 300. In addition, a television receiver is assumed as the display processing device 200. Further, it is assumed that the service providing apparatus 400 is a service providing server that provides content such as a Web page.

  The operation device 300 is connected to the communication network 500 via a mobile phone network (such as 3G or 3.5G) or a wireless communication network (such as a wireless LAN), and the display processing device 200 and the service providing device 400 are connected to the IP ( It is assumed that the communication network 500 is connected via the Internet Protocol) network. Further, the communication between the operation device 300 and the display processing device 200 is assumed to be infrared communication (IR) and short-range wireless communication (IrSS, Bluetooth (registered trademark) (hereinafter referred to as Bluetooth)). Yes. In particular, it is assumed that transmission / reception of image data between the operation device 300 and the display processing device 200 is performed using short-range wireless communication.

  The operation device 300 may be any device that can operate the display processing device 200 and is not limited to the above example. For example, it may be a PDA (Personal Digital Assistance), a PHS (Personal handy Phone System), a notebook personal computer, a portable game machine, or the like. Further, the display processing device 200 may be any device as long as it receives an operation signal transmitted from the operation device 300 and is controlled in operation, and may be a personal computer, a recording device, a music player, or the like.

  The various data provided by the service providing apparatus 400 may be text data, audio data, image data, video data, an application, or a combination thereof, and is limited to a specific format. is not.

(Operation image data 3)
The outline of the data structure of the operation image data 3 will be described with reference to FIGS. 3 to 6 are schematic diagrams showing an outline of the data structure of the operation image data 3. As shown in the figure, the operation image data 3 is roughly JPEG format image data including an image area 610 and an EXIF area 620.

  The image area 610 is an area in which an image such as a photograph is compressed and stored. On the other hand, the EXIF area 620 is an area that mainly stores meta information related to image information stored in the image area 610. The EXIF area 620 includes a maker note area 621 that can be freely used by a service provider that provides the operation image data 3 distribution service. In the maker note area 621, one or a plurality of processing designation information 5 can be stored. For example, in the example shown in FIG. 3, one process designation information 5 (process designation information 5A) is stored. In the example shown in FIG. 4, two pieces of process designation information 5 (process designation information 5A and 5B) are stored. Note that the area in the maker note area 621 in which the processing designation information 5 is stored is not particularly limited.

  The image area 610 may store an image representing the content of the process specified by the process specifying information 5 stored in the maker note area 621. As a result, by displaying the operation image data 3 on the display unit of the operation device 300, the user recognizes what processing is executed when the operation image data 3 is transmitted to the display processing device 200. Can be easy to do.

  Hereinafter, “image information stored in the image area 610 of the operation image data 3” is also expressed as “image information included in the operation image data 3”.

  Further, when the service provider provides the operation image data 3 to the user, the image stored in the image area 610 is set as an image for each user, rather than being an image common to each user. Is expected to improve. Examples of images for each user include the name of the user and an image (avatar) representing the user, the name of the service that the user can log in to, and an icon that can identify the service, and operations that the user can currently perform The contents are listed.

(Processing designation information 5)
The process designation information 5 is composed of a combination of a command name 6 that is a name of a command that designates a process to be executed by the display processing apparatus 200 and a parameter 7 that designates a command parameter and data to be processed. . Depending on the command, the parameter 7 may not be specified, or a plurality of parameters may be specified. Further, a code that can identify a command may be used instead of the command name 6. It is assumed that the command name 6 and the parameter 7 can be specified by being described by a predetermined tag or the like.

  The example of the operation image data 3 shown in FIG. 3 includes processing designation information 5A. In the processing designation information 5A, the command name 6 is “site access” and the parameter 7 is “URL: http: // www. .xxx.yyy ”. The process designation information 5A is for instructing to access the website indicated by the URL designated by the parameter 7 and obtain a web page. As in the example shown in FIG. 3, the operation image data 3 including the processing designation information in which the command name 6 is “site access” and the URL is designated in the parameter 7, in each embodiment, Also referred to as “site access image data 3A”.

  Next, the example of the operation image data 3 shown in FIG. 4 includes processing designation information 5B. The processing designation information 5B includes a command name 6 of “authentication” and a parameter 7 of “PW: 0123456789abcd”. is there. This process designation information 5B instructs to perform an authentication (login) process with the password designated by the parameter 7 (hereinafter also referred to as PW). As in the example shown in FIG. 4, the operation image data 3 including the processing designation information in which the command name 6 is “authentication” and the password is designated in the parameter 7 is expressed as “authentication” in each embodiment. Also referred to as “image data 3B”.

  As described above, a plurality of process designation information 5 can be stored in the maker note area 621. The example of the operation image data 3 shown in FIG. 5 is an example including two pieces of processing designation information, that is, processing designation information 5A and processing designation information 5B. As in the example illustrated in FIG. 5, the operation image data 3 including the process designation information whose command name 6 is “site access” and the process designation information whose command name 6 is “authentication” In particular, it is also referred to as “site access image data with authentication information 3C”.

  Further, the example of the operation image data 3 shown in FIG. 6 is an example including two pieces of processing designation information, that is, processing designation information 5A and processing designation information 5C. In the process designation information 5C, the command name 6 is “terminal ID” and the parameter 7 is “ID: 0001”. This processing designation information 5B means that the terminal ID has been sent with the ID designated by the parameter 7.

[System configuration]
With reference to FIG. 7, the configuration of the main part of each device constituting the operation system 100 will be described. FIG. 7 is a block diagram showing a main configuration of each device constituting the operation system 100.

(Configuration of display processing device)
The display processing device 200 includes a tuner 201, an audio output unit 202, a display processing device control unit 203, a display unit 204, an operation unit 205, a temporary storage unit 206, a display processing device storage unit 207, and an external communication unit 208, as illustrated. The display processing device first communication unit 209 and the display processing device second communication unit 210 are provided.

  The tuner 201 selects and receives a broadcast wave of a channel designated by the display processing device control unit 203, converts it into a predetermined signal, and outputs it. The display processing device 200 outputs video and audio of the received channel by performing processing such as decoding on this signal. The tuner 201 only needs to have a function of receiving a broadcast wave and converting the received broadcast wave into a predetermined signal. For example, a terrestrial digital tuner, a BS, a CS tuner, etc. Things can also be applied.

  The audio output unit 202 outputs audio to the outside of the display processing device 200 based on the output of the tuner 201 and the instruction of the display processing device control unit 203. The audio output unit 202 can be configured by a speaker, for example.

  The display processing device control unit 203 controls the operation of the display processing device 200 in an integrated manner, and can be configured by, for example, a CPU (Central Processing Unit). The display processing device control unit 203 operates using, for example, a temporary storage unit 206 configured by a RAM (Random Access Memory) or the like as a work area. The details of the processing performed by the display processing device control unit 203 will be described in detail later.

  The display unit 204 is a display device that displays an image based on an output from the tuner 201 and an instruction from the display processing device control unit 203. For example, an LC (Liquid Crystal) display panel, an EL (Electro Luminescence) display panel, a CRT (cathode-ray tube) display device, or the like can be used as the display unit 204. Although not shown, a configuration necessary for displaying an image such as a VDP (Video Display Processor) and a VRAM (Video RAM) is appropriately provided between the display processing device control unit 203 and the display unit 204. It has been.

  The operation unit 205 is for the user to perform an input operation on the display processing device 200. The operation unit 205 is not particularly limited as long as the user can perform a desired input operation. Here, it is assumed that operation keys corresponding to various operation inputs are provided as the operation unit 205. Specifically, it is assumed that operation keys for input operations such as channel change, volume increase / decrease, and power on / off of the display processing device 200 are provided.

  The display processing device storage unit 207 stores programs and data as illustrated. The display processing device 200 executes a predetermined operation by causing the display processing device control unit 203 to read the program stored in the display processing device storage unit 207 into the temporary storage unit 206 and execute it.

  The external communication unit 208, the display processing device first communication unit 209, and the display processing device second communication unit 210 are for the display processing device 200 to communicate with external devices. The external communication unit 208 is configured to be connectable to a communication network 500 such as a public communication line. Although not shown, a LAN (Local Area Network) or the like is provided between the external communication unit 208 and the communication network 500. A configuration necessary for communication by a router or the like is appropriately provided.

  The display processing device first communication unit 209 and the display processing device second communication unit 210 are configured to be able to communicate with the operation device first communication unit 309 and the operation device second communication unit 310 of the operation device 300, respectively. Details of the display processing device first communication unit 209 and the display processing device second communication unit 210 will be described later.

  As described above, the display processing apparatus 200 is assumed to be a television receiver. Therefore, in addition to the above functions, the television receiver generally has functions (channel change, volume adjustment, screen brightness). Etc.).

(Configuration of operation device)
As illustrated, the operation device 300 includes a telephone / web communication unit 301, an audio input unit 302, an operation device control unit 303, a display unit 304, an operation unit 305, a temporary storage unit 306, an operation device storage unit 307, and an audio output unit. 308, an operating device first communication unit 309, and an operating device second communication unit 310.

  The telephone / web communication unit 301 makes a call with another mobile phone or a general phone via a mobile phone network such as 3G or 3.5G, or connects to the Internet to connect to an external device (here, a service providing device) 400). Therefore, the telephone / web communication unit 301 is configured to be connectable to the communication network 500. These functions are realized by a telephone network communication unit and a mobile line unit (not shown).

  The voice input unit 302 is for inputting a voice signal to the controller device 300 during a call, for example. The voice output unit 308 is based on a voice signal received by the telephone / web communication unit 301 during a call or the like. To output sound. The voice output unit 308 also outputs voice or the like indicating an incoming call or mail.

  The operation device control unit 303 controls the operation of the operation device 300 in an integrated manner, and can be configured by a CPU or the like, for example. The operating device control unit 303 operates using, for example, a temporary storage unit 306 configured by a RAM or the like as a work area. Details of the processing performed by the controller device control unit 303 will be described in detail later.

  The display unit 304 displays an image in accordance with an instruction from the operation device control unit 303. Although not shown, an image such as a VDP and a VRAM is displayed between the operation device control unit 303 and the display unit 304. The structure necessary for this is provided as appropriate. The display unit 304 can be configured by, for example, an LC display panel or an EL display panel.

  The operation unit 305 is for a user of the operation device 300 to perform an operation input to the operation device 300, and is not particularly limited as long as the user can perform a desired operation input. Here, it is assumed that the operation unit 305 is an operation key provided on the surface of the main body of the operation device 300. Specifically, as operation keys, various menu keys for displaying a menu screen related to website connection or the like on the display unit 304, and up / down / left / right direction keys for selecting items displayed on the display unit 304 are selected. It is assumed that a plurality of operation keys including a determination key for determining an item and a character input key for inputting numbers and characters are provided.

  The controller storage unit 307 stores programs and data as shown in the figure. The operation device 300 executes a predetermined operation by causing the operation device control unit 303 to read the program stored in the operation device storage unit 307 into the temporary storage unit 306 and execute the program. In addition, for example, HTML data received by the telephone / web communication unit 301 and data input by the user of the operation device 300 are stored in the operation device storage unit 307.

  The operation device first communication unit 309 and the operation device second communication unit 310 are for the operation device 300 to communicate with an external device. The operation device first communication unit 309 and the operation device second communication unit 310 are configured to be able to communicate with the display processing device first communication unit 209 and the display processing device second communication unit 210 of the display processing device 200, respectively. Details of the operation device first communication unit 309 and the operation device second communication unit 310 will be described later.

(Configuration of service providing device)
The service providing apparatus 400 includes an audio output unit 402, a service providing apparatus control unit 403, a display unit 404, an operation unit 405, a temporary storage unit 406, a service providing device storage unit 407, and an external communication unit 408, as illustrated. ing.

  The voice output unit 402 outputs voice to the outside of the service providing apparatus 400 based on an instruction from the service providing apparatus control unit 403. The audio output unit 402 can be configured by a speaker, for example.

  The service providing apparatus control unit 403 controls the operation of the service providing apparatus 400 in an integrated manner, and can be configured by a CPU or the like, for example. The service providing apparatus control unit 403 operates using, for example, a temporary storage unit 406 configured by a RAM or the like as a work area. Details of processing performed by the service providing apparatus control unit 403 will be described in detail later.

  The display unit 404 is a display device that displays a service setting screen or the like based on an instruction from the service providing device control unit 403. For example, an LC display panel, an EL display panel, a CRT display device, or the like can be used as the display unit 404.

  The operation unit 405 is used by the user to input an operation to the service providing apparatus 400. The operation unit 405 is not particularly limited as long as the user can perform a desired operation input. Here, a keyboard is assumed as the operation unit 405 in order to perform complicated operations such as setting of various services provided by the service providing apparatus 400 and maintenance of contents.

  The service providing device storage unit 407 stores programs and data as illustrated. The service providing apparatus 400 executes a predetermined operation by causing the service providing apparatus control unit 403 to read the program stored in the service providing apparatus storage unit 407 into the temporary storage unit 406 and execute it.

  The external communication unit 408 is for the service providing apparatus 400 to communicate with external devices (here, the display processing apparatus 200 and the operation apparatus 300). The external communication unit 408 is configured to be connectable to the communication network 500 and is not shown, but is necessary for communication between the external communication unit 408 and the communication network 500 such as a LAN or a router. Configurations are provided as appropriate.

(Communication between the display processing device 200 and the operation device 300)
As described above, the controller device first communication unit 309 is configured to be able to communicate with the display processing device first communication unit 209. The operation device second communication unit 310 is configured to be able to communicate with the display processing device second communication unit 210. That is, the operation device 300 and the display processing device 200 are configured such that the first communication path formed by the operation device first communication unit 309 and the display processing device first communication unit 209, the operation device second communication unit 310, and the display processing. Communication can be performed using a second communication path formed by the device second communication unit 210.

  The first communication path is used to transmit a signal (hereinafter also referred to as a remote control signal) instructing an operation from the operation device 300 to the display processing device 200. Here, it is assumed that infrared communication (IR) is applied to the first communication path. Therefore, it is assumed that the operating device first communication unit 309 is an infrared light emitting unit, and the display processing device first communication unit 209 is an infrared light receiving unit.

  The second communication path is used for transmitting and receiving image data between the controller device 300 and the display processing device 200. Here, it is assumed that short-range wireless communication using IrSS or Bluetooth is applied to the second communication path. That is, the controller device second communication unit 310 and the display processing device second communication unit 210 are communication units capable of transmitting and receiving signals through short-range wireless communication. The second communication path only needs to be able to transmit and receive data, and IEEE802.11 radio such as a wireless LAN, ZigBee (registered trademark), or the like can also be applied.

(Communication between display processing device 200 and service providing device 400)
As described above, the external communication unit 208 of the display processing device 200 is configured to be able to communicate with the communication network 500. Similarly, the external communication unit 408 of the service providing apparatus 400 is configured to be able to communicate with the communication network 500. That is, the display processing device 200 and the service providing device 400 can communicate using a communication path formed via the communication network 500. It is assumed that the display processing apparatus 200 and the service providing apparatus 400 are connected to the communication network 500 via, for example, an IP network.

(Communication between operation device 300 and service providing device 400)
As described above, the telephone / Web communication unit 301 of the controller device 300 is configured to be able to communicate with the communication network 500. That is, the controller device 300 and the service providing device 400 can communicate using a communication path formed via the communication network 500. It is assumed that the operation device 300 is connected to the communication network 500 via a mobile phone network such as 3G or 3.5G.

[Key points of the invention]
As described above, the operation system 100 allows the user to access the service providing apparatus 400 by operating the display processing apparatus 200 using the operation apparatus 300, and various services provided as services by the service providing apparatus 400. It is assumed that the system is capable of acquiring data (content such as a web page) and browsing it with the display processing apparatus 200. As described in the background section, some services provided in the operation system 100 require authentication (login). In a general method of inputting an ID and password, The operability and convenience may be impaired.

  Accordingly, the main feature of the present invention is that the operation image data 3 including information used for authentication (login) acquired from the service providing apparatus 400 by the user who operates the display processing apparatus 200 using the operation apparatus 300 is used. It is a point that authentication (login) when using the service provided by the service providing apparatus 400 is possible only by transmitting to the display processing apparatus 200. In addition, although the password is assumed as information used for authentication (login), it is not limited to this.

  Hereinafter, three examples of transmitting operation image data 3 including information used for authentication (login) acquired from the service providing apparatus 400 to the display processing apparatus 200 will be described. Here, a case where the service provided by the service providing apparatus 400 is a Web site that provides a predetermined Web page will be described as an example. Here, only the outline of the process will be described, and details will be described later.

(Example 1)
Referring to FIGS. 8 and 9, after the user recognizes that authentication (login) is required from the accessed website, the authentication image data 3B is acquired from the service providing apparatus 400, An example of performing authentication (login) on the accessed website by transmitting the acquired authentication image data 3B to the display processing device 200 will be described.

  First, as shown in FIG. 8, by transmitting the site access image data 3A from the operation device 300 to the display processing device 200 (A1), the display processing device 200 analyzes the site access image data 3A. Then, an attempt is made to access the Web site of the service providing apparatus 400 specified by the URL included in the process specifying information 5 (A2). Then, as a response, display data that is content such as a Web page is transmitted from the service providing apparatus 400 (A3). Here, it is assumed that the display data transmitted in the flow A3 is information indicating that authentication (login) is necessary.

  In this case, the Web site of the service providing apparatus 400 cannot be accessed without authentication (login). Then, as shown in FIG. 9, subsequently, the user transmits a “login authentication request” requesting acquisition of information for authentication (login) from the operation device 300 to the service providing device 400 (B1). . The login authentication request is transmitted including the terminal ID (operation device identification information) of the operation device 300. The service providing apparatus 400 that has received the login authentication request first performs terminal authentication using the terminal ID included in the login authentication request (B2), and when the terminal authentication is successful, at the time of authentication (login) on the Web site A one-time password to be used is generated (B3). Then, authentication image data 3B including the generated one-time password is generated (B4), and the generated authentication image data 3B is transmitted to the controller device 300 (B5).

  Subsequently, by transmitting the authentication image data 3B from the operation device 300 that has received the authentication image data 3B to the display processing device 200 (B6), the display processing device 200 analyzes the authentication image data 3B. Then, the one-time password included in the process designation information 5 is transmitted to the service providing apparatus 400 (B7).

  Then, the service providing apparatus 400 performs authentication (login) using the received one-time password (B8), and when the authentication (login) is successful, transmits an authentication result (B9).

  As described above, according to the present invention, authentication (login) on the Web site of the service providing apparatus 400 can be performed by transmitting the authentication image data 3B from the operation apparatus 300 to the display processing apparatus 200.

(Example 2)
Next, referring to FIG. 10, the URL for accessing the website acquired from the service providing apparatus 400, and the site access with authentication information including the one-time password used at the time of authentication (login) on the website. An example in which authentication (login) is performed at the same time as accessing the Web site by transmitting the image data 3C to the display processing device 200 will be described.

  First, as shown in FIG. 10, a “service start request” for requesting acquisition of information for accessing the Web site is transmitted from the operation device 300 to the service providing device 400 (C1). The service start request is transmitted including the terminal ID of the operation device 300 and the service ID (service identification information) for identifying the Web site to be accessed. The service providing apparatus 400 that has received the service start request first performs terminal authentication using the terminal ID included in the service start request (C2), and if the authentication is successful, the service ID included in the service start request. A one-time password used at the time of authentication (login) at the Web site specified by (1) is generated (C3), and the generated one-time password and a URL for accessing the Web site specified by the service ID are generated. The image data 3C for site access with authentication information is generated (C4). Then, the generated image data for site access 3C with authentication information is transmitted to the controller device 300 (C5).

  Then, by transmitting the site access image data 3C with authentication information to the display processing device 200 from the operation device 300 that has received the site access image data 3C with authentication information (C6), the display processing device 200 The site access image data 3C with authentication information is analyzed, and the Web site specified by the URL included in the process specifying information 5 is accessed, and the one-time password included in the process specifying information 5 is transmitted. (C7).

  Then, the service providing apparatus 400 performs authentication (login) using the received one-time password (C8), and when the authentication (login) is successful, it transmits display data to the display processing apparatus 200 (C9).

  As described above, according to the present invention, by transmitting the site access image data 3C with authentication information from the operation device 300 to the display processing device 200, authentication is performed simultaneously with the access to the Web site of the service providing device 400 ( Login).

  In the above description, the example in which the one-time password and the URL data for accessing the Web site specified by the service ID are transmitted / received including the URL for accessing the Web site specified by the service ID has been described. It is also possible to transmit and receive two pieces of image data: site access image data 3A including a URL for accessing a designated Web site and authentication image data 3B including a one-time password.

(Example 3)
Next, referring to FIG. 11, when purchasing content on the website, the content is transmitted in the service providing apparatus 400 by transmitting purchase image data 3D (described later) from the operation apparatus 300 to the display processing apparatus 200. An example of performing the authentication (purchase) necessary for the purchase process will be described.

  First, when the user performs an operation of purchasing content using the operation device 300 while the content is displayed on the display processing device 200 in a purchaseable state, the display processing device 200 causes the service providing device 400 to perform the operation. Then, a “purchase request” that is a request to purchase content is transmitted (D1). Upon receiving the purchase request, the service providing apparatus 400 generates a one-term password used in the authentication (purchase) process at the time of content purchase (D2), and generates operation image data 3 including the generated one-time password. (D3) The generated image data is transmitted to the controller device 300 (D4). The generated operation image data 3 may further include a URL of an authentication destination server device or the like. The operation image data 3 generated at this time is also referred to as “purchase image data 3D” below.

  Then, the controller device 300 that has received the purchase image data 3D stores its own terminal ID in the processing designation information 5 of the purchase image data 3D (D5), and the purchase image data after storing the terminal ID. 3D is transmitted to the display processing apparatus 200 (D6).

  Then, the display processing device 200 analyzes the purchase image data 3D and transmits the terminal ID and the one-time password included in the processing designation information 5 to the service providing device 400 (D7). Then, the service providing apparatus 400 performs authentication (purchase) using the received terminal ID and one-time password (D8), and if the authentication (purchase) is successful, the result of the content purchase process is transmitted to the display processing apparatus 200. (D9).

  As described above, according to the present invention, authentication (purchase) at the time of purchase of content can be performed by transmitting purchase image data 3D from the operation device 300 to the display processing device 200.

  Example 1, Example 2, and Example 3 described above will be described in detail in Embodiments 1, 2, and 3, respectively.

[Embodiment 1]
In the present embodiment, when a web site provided by the service providing apparatus 400 is accessed, when it is notified that login is necessary, (1) in response to a request from the operation apparatus 300 By transmitting the authentication image data 3B including the one-time password from the providing device 400 to the operation device 300, and (2) transmitting the authentication image data 3B from the operation device 300 to the display processing device 200, the above Web site is obtained. A mode in which the user can log in will be described.

  An embodiment of the present invention will be described below with reference to FIGS. 1 and 12 to 18.

(Detailed configuration of each device)
A more detailed configuration of the display processing device 200, the operation device 300, and the service providing device 400 according to the present embodiment will be described with reference to FIG. FIG. 1 is a block diagram illustrating a main configuration of a display processing device 200, an operation device 300, and a service providing device 400 according to the present embodiment.

(More detailed configuration of the operating device)
First, a more detailed configuration of the operation device 300 will be described. As illustrated, the controller device storage unit 307 includes a service information storage unit 371, a terminal ID storage unit 372, a command storage unit 373, and an image data storage unit (operation data storage unit) 374. The controller control unit 303 includes a terminal / user information registration processing unit 331, a service display processing unit (transmission instruction receiving unit) 332, a command transmission processing unit 333, a login authentication request processing unit 334, an image data reception processing unit (operation Data receiving means, display control means) 335, and an image data transmission processing unit (operation data transmission means) 336 are included.

  The service information storage unit 371 stores information related to services that can be enjoyed by the user (service name, service icon, etc.) in association with information (service ID) that can identify the service in a readable state. Is. Information relating to the service stored in the service information storage unit 371 is used by the service display processing unit 332 as data used when a menu or the like for the user to select a service is displayed.

  Next, the terminal ID memory | storage part 372 memorize | stores terminal ID which can identify an own apparatus.

  Next, the command storage unit 373 stores, in a readable state, a command name corresponding to a key operation on an application program (hereinafter referred to as an application) serving as a user interface for operating the display processing device 200. Is. The command name stored in the command storage unit 373 is used by the command transmission processing unit 333 as data to be included in the remote control signal transmitted to the display processing device 200.

  Next, the image data storage unit 374 stores the image data in a readable state. Examples of the image data stored in the image data storage unit 374 include image data including an image indicating the outline of the service, and operation image data 3 such as site access image data 3A and authentication image data 3B. .

  The image data stored in the image data storage unit 374 may be registered in advance when the operation device 300 is shipped from the factory, or received by the image data reception processing unit 335 from an external device. It may be registered by the user of the operation device 300.

  Next, the terminal / user information registration processing unit 331 requests the service providing apparatus 400 to register the terminal ID of the operation apparatus 300 using a user operation as a trigger (terminal registration request). At that time, the terminal ID of the operation device 300 acquired from the terminal ID storage unit 372 is included in the terminal registration request and transmitted to the service providing device 400.

  Further, the terminal / user information registration processing unit 331 receives a temporary registration notification including a temporary user name, which is notified from the service providing apparatus 400 as a result of registering the terminal ID of the operation apparatus 300 in the service providing apparatus 400. Are displayed on the display unit 304, and an input for updating the temporary user name to another user name is accepted. When there is a user operation for updating the temporary user name, a request for updating (user information update request) is transmitted to the service providing apparatus 400, and the response is transmitted from the service providing apparatus 400 as a response. A notification of accepting an update request (user information update request acceptance notification) is received. The user information update request is transmitted including the terminal ID.

  Upon receiving the update request acceptance notification, the service providing apparatus accepts the user input of a new user name and updates the provisional user name held in the service providing apparatus 400 in order to update the provisional user name. 400. When a notification (update registration completion notification) indicating that the update has been made is transmitted from the service providing apparatus 400, the fact is displayed on the display unit 304.

  Next, the service display processing unit 332 reads information on the service stored in the service information storage unit 371 when the application is activated, and displays the information on the display unit 304 so that the user can select it. Further, image data including an image indicating an outline of the service selected by the user operation is read from the image data storage unit 374, and the image is output to the display unit 304 based on the image information included in the image data.

  In addition, the service display processing unit 332 outputs the image to the display unit 304, and at the same time receives a user operation for transmitting the site access image data 3A including the image output to the display unit 304 to the display processing device 200 (first GUI). 2 user interface) is displayed on the display unit 304. When a user operation is received through the displayed GUI, an image data transmission processing unit 336 described later transmits site access image data 3A including an image output to the display unit 304 to the display processing device 200. . The GUI is, for example, a button or the like.

  In addition to the GUI for transmitting the site access image data 3A to the display processing device 200, the service display processing unit 332 may display a GUI for accepting other operations on the display unit 304. For example, a button for accepting an instruction to transition to a menu screen, a button for accepting an instruction to transmit a remote control signal to turn on the display processing apparatus 200 to the display processing apparatus 200, and an instruction for displaying an application on the display unit 304 are accepted. Examples include buttons. That is, the service display processing unit 332 may display a GUI as a menu (operation menu) that receives various operations of the user of the operation device 300.

  A state in which the service display processing unit 332 displays an image and a GUI showing an overview of the service on the display unit 304 will be described later with reference to FIG.

  Next, the command transmission processing unit 333 generates a remote control signal corresponding to the key operation on the application. Then, the generated remote control signal is transmitted to the display processing device 200 via the operation device first communication unit 309.

  Next, the login authentication request processing unit 334 transmits a login authentication request to the service providing apparatus 400 via the telephone / Web communication unit 301 in response to a login start operation from the user. The login authentication request requests the service providing apparatus 400 to transmit the authentication image data 3B including the one-time password used when authenticating (logging in) the Web site of the service providing apparatus 400. The login authentication request is transmitted including the terminal ID. The terminal ID is acquired from the terminal ID storage unit 372.

  Next, the image data reception processing unit 335 receives image data transmitted from an external device, and stores the received image data in the image data storage unit 374. Further, an image is output to the display unit 304 based on the image information included in the received image data. Examples of the image data transmitted from the external apparatus include authentication image data 3B transmitted from the service providing apparatus 400.

  At the same time when the image is output to the display unit 304, the image data reception processing unit 335 displays a GUI (first user interface) that receives a user operation for transmitting the received image data to the display processing device 200. To display. When an instruction from the user is received through the displayed GUI, the image data transmission processing unit 336 displays image data including the image output by the image data reception processing unit 335 to the display unit 304 (that is, the image data reception processing unit). 335 transmits image data received from the external apparatus) to the display processing apparatus 200. The GUI is, for example, a button or the like.

  Further, the image data reception processing unit 335 may display a GUI for accepting other operations on the display unit 304 in addition to a GUI for accepting a user operation for transmitting image data to the display processing device 200. For example, there are a button for receiving an instruction to transition to the previous screen, a button for receiving an instruction to display an application on the display unit 304, and the like. That is, the image data reception processing unit 335 may display a GUI as a menu (operation menu) for receiving various operations of the user of the operation device 300.

  A state in which the image data reception processing unit 335 displays the image and the GUI on the display unit 304 will be described later with reference to FIG.

  Next, the image data transmission processing unit 336 uses, as a trigger, image data transmission operation from the user, among the image data stored in the image data storage unit 374, using the operation of transmitting image data from the user as a trigger. The data is transmitted to the display processing device 200 via the second communication unit 310.

  More specifically, when an instruction from the user is received through the GUI displayed on the display unit 304 by the image data reception processing unit 335, the image data transmission processing unit 336 displays the image data reception processing unit 335 on the display unit 304. Image data including the output image is transmitted to the display processing device 200. When the service display processing unit 332 receives an instruction from the user via the GUI displayed on the display unit 304, the image data transmission processing unit 336 displays the image data for site access including the image output on the display unit 304. 3A is transmitted to the display processing device 200.

(Detailed configuration of display processing device)
Next, a more detailed configuration of the display processing device 200 will be described. As illustrated, the display processing device storage unit 207 includes an image data storage unit 271 and a designation processing information storage unit 272. The display processing device control unit 203 includes a command reception processing unit 231, a power management unit 232, an image data reception processing unit (operation data receiving unit) 233, a process designation information extraction processing unit (authentication information extraction unit) 234, and a process execution. Section 235 and a login instruction reception processing section 236.

  The image data storage unit 271 stores the image data transmitted from the controller device 300 in a readable state.

  Next, the designation processing information storage unit 272 stores the processing designation information 5 included in the image data transmitted from the controller device 300.

  Next, the command reception processing unit 231 receives a remote control signal transmitted from the operation device 300 via the display processing device first communication unit 209. Then, an instruction corresponding to the command name included in the received remote control signal is given to each unit of the display processing device control unit 203. For example, when the received remote control signal includes a command to turn on or off the power, the command reception processing unit 231 gives an instruction to that effect to the power management unit 232.

  Next, in response to an instruction from the command reception processing unit 231, the power management unit 232 supplies power to each unit included in the display processing device 200 (that is, turns on the power) or supplies the power described above. Switch between not to perform (that is, to enter a standby state). It is assumed that display processing apparatus 200 can receive a remote control signal including at least a command to turn on the power even in a standby state.

  Next, the image data reception processing unit 233 receives the image data transmitted from the operation device 300 via the display processing device second communication unit 210. Then, the image data reception processing unit 233 stores the received image data in the image data storage unit 271. In addition, an image included in the image area 610 of the received image data is output to the display unit 204.

  Next, the processing designation information extraction processing unit 234 is triggered by the image data reception processing unit 233 storing the image data in the image data storage unit 271, and the processing designation information 5 is included in the stored image data. If the process designation information 5 is included, the process designation information 5 is extracted. Then, the extracted process designation information 5 is stored in the designation process information storage unit 272.

  Next, the process execution unit 235 executes various processes based on the process designation information 5 stored in the designation process information storage unit 272, triggered by the completion of the process of the process designation information extraction processing unit 234. . For this purpose, the processing execution unit 235 includes an external access processing unit 2351 and a login request processing unit (authentication information transmitting means) 2352.

  When the process designation information 5 whose command name 6 is “site access” is stored in the designation process information storage unit 272, the external access processor 2351 receives the process designation information 5 via the external communication unit 208. An access request to the Web site indicated by the URL designated by parameter 7 is made. When display data such as HTML data or content is received as a response to the access request, the received display data is output to the display unit 204.

  When the process designation information 5 having the command name 6 of “authentication” is stored in the designation process information storage unit 272, the login request processing unit 2352 passes the external communication unit 208 via the external communication unit 208. , A login request to a predetermined website (for example, a website being displayed on the display unit 204) is transmitted. The login request is transmitted including the one-time password designated by the parameter 7 of the processing designation information 5. If a URL is further specified in the parameter 7 of the process specifying information 5, a login request may be transmitted to the Web site specified by the URL. When an authentication result is received, the received authentication result is output to the display unit 204.

  The login instruction reception processing unit 236 receives login instruction information transmitted from the service providing apparatus 400 via the external communication unit 208, and outputs information included in the received login instruction information to the display unit 204.

(Detailed configuration of service providing device)
Next, a more detailed configuration of the service providing apparatus 400 will be described. As illustrated, the service providing device storage unit 407 includes an image data storage unit 471, an authentication information storage unit 472, a provided content storage unit 473, a terminal / user information storage unit 474, and a user related information storage unit 478. . In addition, the service providing apparatus control unit 403 includes a terminal / user information registration processing unit 431, an access request reception processing unit 432, a login instruction transmission processing unit 433, an authentication request reception processing unit 434, and a one-time PW generation processing unit (authentication information generation). Means) 435, an image data generation processing unit (operation data generation unit, operation data transmission unit) 436, and a login request reception processing unit 437.

  The image data storage unit 471 stores a template of the operation image data 3. The template of the operation image data 3 is image data in a state where the processing designation information 5 and image information are not stored, and can be used as a template. In particular, the image data storage unit 471 stores a template of the operation image data 3 generated by the image data generation processing unit 436.

  In order to enable the image data generation processing unit 436 to generate the operation image data 3 according to the user, the template stored in the image data storage unit 471 is associated with the user name for each user. May be stored.

  Next, the authentication information storage unit 472 stores the one-time password generated by the one-time PW generation processing unit 435 for each operation device 300 in a state in which the one-time password is associated with the terminal ID of the operation device 300.

  Next, the provided content storage unit 473 stores various display data (HTML data, video content, etc.) to be transmitted to the display processing device 200 in response to a site access request from the display processing device 200.

  Next, the terminal / user information storage unit 474 issues the terminal ID of the operation device 300, the name of the user of the operation device 300, the last date and time when the user accessed the content, and the last one-time password for authentication to the user. Store at least a set of dates and times. The terminal / user information storage unit 474 may have a data structure shown in Table 1, for example.

  In the example shown in Table 1, for example, it is stored that the user name of the user of the operation device 300 whose terminal ID is “0001” is “Taro”. It is stored that the user last accessed “content A” and the date and time is “2008/5/27 12:18”. Further, it is stored that the date and time when the one-time password used at the time of authentication (login) was last issued to the user is “2008/5/27 12:10”.

  Next, the user related information storage unit 478 stores information about the user (hereinafter also referred to as user related information) in association with the terminal ID for each operation device. Here, the user-related information is character information related to the user (hereinafter also referred to as user character information) and image information related to the user (hereinafter also referred to as user image information).

  Specific examples of the user character information include a user name, a user ID, a service name that the user can log in, and an operation content that the user can perform. However, the user character information is not limited to these, and may be any information as long as it is character information about the user.

  Specific examples of the user image information include an image representing the name of the user, an image of an avatar representing the user, an image representing the name of a service to which the user can log in, an image of an icon of the service, An image showing possible operation content is listed. However, the user image information is not limited to these, and may be any information as long as it is image information related to the user.

  Note that the number of user-related information stored in the user-related information storage unit 478 may be one or more for each user.

  The user-related information can be registered in the user-related information storage unit 478 by a method generally used from the operation device 300, but details thereof are omitted here.

  Next, when receiving the terminal registration request from the controller device 300, the terminal / user information registration processing unit 431 searches the terminal / user information storage unit 474 based on the terminal ID included in the received terminal registration request. It is checked whether or not the terminal ID has already been registered. If the terminal / user information registration processing unit 431 knows that the terminal has not been registered, the terminal / user information registration processing unit 431 generates a temporary user name, associates the temporary user name with the terminal ID, and stores the terminal / user information storage unit 474. Are stored (newly registered), and a temporary registration notification indicating that temporary registration has been performed is transmitted to the controller device 300. The provisional registration notification includes the provisional user name.

  Thereafter, when the user information update request transmitted from the operation device 300 is received, after confirming that the user is a registered user, a user information update request acceptance notification indicating that the user information update request has been accepted is sent to the operation device 300. Send. Thereafter, the user name stored in the terminal / user information storage unit 474 is updated with the user name transmitted from the controller device 300. Thereafter, an update registration completion notification indicating that the update has been completed is transmitted to the controller device 300.

  Next, the access request reception processing unit 432 checks whether or not authentication (login) has been completed in response to an access request from the external access processing unit 2351 of the display processing device 200. The instruction transmission processing unit 433 causes the display processing device 200 to transmit login instruction information including that login is necessary. On the other hand, if the user has logged in, the data to be provided is acquired from the provided content storage unit 473 and transmitted to the display processing device 200. If the accessed Web site does not require authentication (login), data to be provided is acquired from the provided content storage unit 473 without checking whether the login has been completed, and the display processing device 200. Send to.

  Next, the login instruction transmission processing unit 433 transmits login instruction information to the display processing device 200 in response to an instruction from the access request reception processing unit 432.

  Next, the authentication request reception processing unit 434 receives the login authentication request from the login authentication request processing unit 334 of the controller device 300. First, the terminal ID included in the received login authentication request is the terminal / user information storage unit. The terminal authentication is performed by checking whether it is registered in 474 or not. When the terminal authentication is successful, the one-time PW generation processing unit 435 generates a one-time password for authentication (login) and the image data generation processing unit 436 generates the authentication image data 3B. Each time the one-time PW generation processing unit 435 generates a one-time password, the date / time when the one-time PW generation processing unit 435 generates the one-time password is the final date and time when the one-time password is issued. The information is stored in the information storage unit 474.

  Next, the one-time PW generation processing unit 435 generates a one-time password for authentication (login) in response to an instruction from the authentication request reception processing unit 434. The generated one-time password is given a validity period (for example, 2 minutes), and a one-time password that has passed the validity period cannot be used to log in. The one-time PW generation processing unit 435 associates the generated one-time password with the terminal ID included in the login authentication request received by the authentication request reception processing unit 434, and the validity period of the one-time password is The information is stored in the authentication information storage unit 472 in a state where it can be referred to. The one-time password that has passed the validity period may be deleted from the authentication information storage unit 472.

  Next, the image data generation processing unit 436 generates authentication image data 3B in which the one-time password generated by the one-time PW generation processing unit 435 is stored. For the generation, a template stored in the image data storage unit 471 is used. That is, the authentication image data 3B is generated in which the processing specification information 5 including the one-time password generated by the one-time PW generation processing unit 435 is stored in the template stored in the image data storage unit 471.

  When a template is stored for each user in the image data storage unit 471, the image data generation processing unit 436 uses a template corresponding to the user corresponding to the operation device 300 that transmitted the login authentication request. The authentication image data 3B is generated. Note that the user corresponding to the operation device 300 that transmitted the login authentication request uses the user ID obtained by searching the terminal / user information storage unit 474 using the terminal ID of the operation device 300 included in the login authentication request as a key. Can be identified based on. Therefore, the authentication image data 3B is generated using the template stored in the image data storage unit 471 in association with the obtained user name.

  In addition, the image data generation processing unit 436 includes the user-related information stored in the user-related information storage unit 478 in the generated authentication image data 3B, so that the generated authentication image data 3B is displayed for each user. May be generated. An image included in the authentication image data 3B may be generated for each user using the user related information. For example, the name of the user or an image (avatar) representing the user, the name of the service that the user is logging in or logging in, an icon that can identify the service, the operation content that the user can currently perform, etc. An image may be generated.

  Specifically, the image data generation processing unit 436 acquires user-related information stored in the user-related information storage unit 478 in association with the terminal ID included in the login authentication request. Then, the acquired image including the user related information is stored in the image area 610 of the authentication image data 3B.

  Here, an example of “image including user related information” is shown. When the user character information can be acquired as the user related information, the “image including the user related information” is, for example, an image in which the acquired user character information is superimposed on a predetermined area of the predetermined image.

  Further, when user image information can be acquired as user-related information, the “image including user-related information” may be, for example, an image displayed based on the acquired user image information, An image in which an image displayed based on the acquired user image information is superimposed and displayed on a predetermined area of the predetermined image may be used. Note that the predetermined image and the predetermined area may be determined in advance or may be registered by the user in the service providing apparatus 400.

  When a plurality of pieces of user related information are obtained from the user related information storage unit 478, an image including any of them may be generated, or an image including all of the plurality of user related information may be generated.

  Note that the image data generation processing unit 436 may further include a URL for designating the Web site of the service providing apparatus 400 in the processing designation information 5 of the authentication image data 3B.

  Then, the image data generation processing unit 436 transmits the generated authentication image data 3B to the operation device 300 via the external communication unit 408.

  Next, the login request reception processing unit 437 receives the login request transmitted from the login request processing unit 2352 of the display processing device 200, and determines whether or not the one-time password included in the received login request is valid. Investigate. Specifically, whether or not the one-time password included in the received login request matches the one-time password stored in the authentication information storage unit 472 and whether or not the valid period has passed. Investigate.

  If it is valid (if the one-time password is correct and the valid period has not passed), authentication (login) processing is executed. If necessary, the access request reception processing unit 432 may acquire data to be provided from the provided content storage unit 473 and transmit the data to the display processing device 200. Each time content is transmitted, the date / time when the content is transmitted is stored in the terminal / user information storage unit 474 as the last date / time when the content was accessed.

  On the other hand, if it is not valid (if the one-time password is incorrect or the valid period has passed), the authentication (login) process is not executed.

  Note that the authentication (login) result may be transmitted to the display processing device 200 regardless of whether the authentication (login) process is executed or not.

(Process flow)
Next, with reference to FIG. 12, the flow of processing in each device when the user accesses the website in the operation system 100 will be described. Here, the flow of processing will be described for each of (1) access to a website that does not require authentication (login) and (2) access to a website that requires authentication (login).

(Processing flow 1: Access to a website that does not require authentication (login))
FIG. 12 is a flowchart illustrating processing in each device when the user accesses a Web site that does not require authentication (login) in the operation system 100. Here, a description will be given assuming that the user registration process is completed. First, the description will be made assuming that the power of the display processing device 200 is in an off state (standby state).

  First, in order to use a service provided on the website of the service providing apparatus 400, the user activates an application on the operation apparatus 300 (S101).

  When the application is activated, the service display processing unit 332 of the controller device 300 displays a list of available services on the display unit 304 as a menu (S102). When the user selects one of the services displayed in the list (S103), an image showing an outline of the selected service is displayed on the display unit 304 (S104). That is, image data including an image indicating the outline of the selected service is read from the image data storage unit 374 and an image is output to the display unit 304 based on the image information included in the image data. At this time, the service display processing unit 332 displays a GUI (button or the like) that accepts various operations from the user on the display unit 304. In particular, a GUI (for example, “TV power” button) that accepts an operation for turning on the power of the display processing apparatus 200 and a GUI (for example, “ "Send to TV" button).

  Here, since the power of the display processing device 200 is currently turned off, the “TV power source” displayed on the display unit 304 by the user for the purpose of turning on the power of the display processing device 200 in advance. When the button is pressed (S105), the command transmission processing unit 333 of the operation device 300 transmits a remote control signal for turning on the power to the display processing device 200 (S106). When the command reception processing unit 231 of the display processing device 200 receives the remote control signal (S107), the power management unit 232 turns on the power (S108).

  Next, the site access including the image displayed on the display unit 304 in step S104 for the purpose of accessing the Web site of the service providing apparatus 400 in order to use the service selected in step S103. When an operation to transmit the image data 3A for display to the display processing device 200 (pressing the “Send to TV” button) is performed (S109), the image data transmission processing unit 336 performs display processing of the site access image data 3A. It transmits to the apparatus 200 (S110). It is assumed that “site access” is specified as the command name 6 and the URL indicating the Web site of the service providing apparatus 400 is specified as the parameter 7 in the image data 3A for site access.

  Then, when the image data reception processing unit 233 of the display processing device 200 receives the site access image data 3A (S111), the processing designation information extraction processing unit 234 subsequently receives the received site access image data 3A. Is analyzed (S112). Specifically, the processing designation information 5 included in the received site access image data 3A is extracted. In this case, “site access” is extracted as the command name 6 and the URL is extracted as the parameter 7.

  Then, for the purpose of making the user confirm the received site access image data 3A, an image is output to the display unit 204 based on the image information included in the received site access image data 3A (S113). ) Since the command name 6 of the extracted processing designation information 5 is “site access”, the external access processing unit 2351 requests access to the Web site indicated by the extracted URL (S114).

  When the access request reception processing unit 432 of the service providing apparatus 400 receives the access request (S115), display data (for example, a web page) to be displayed on the display unit 204 of the display processing apparatus 200 as a response thereto Are transmitted (HTML data, video content, etc.) (S116).

  Then, when the external access processing unit 2351 of the display processing device 200 receives the display data (S117), it outputs the received display data to the display unit 204 (S118).

(Screen example)
Here, an example of a screen displayed on the display unit 304 of the controller device 300 will be described with reference to FIGS. 13 and 14.

  FIG. 13 is a schematic diagram showing a state where a list of services that can be selected by the user is displayed as a menu on the display unit 304 of the controller device 300. This screen is an example of the screen in the process of step S102 described above. In this example, the user can select any one of “portal site (top)”, “photo sharing service”, “moving picture distribution service”, “communication board”, and “shopping”. Here, for example, when “portal site (top)” is selected in step S103, the image shown in FIG. 14 is displayed on the display unit 304 in step S104.

  FIG. 14 is a schematic diagram illustrating a state in which an image indicating an overview of the service selected in step S104 is output to the display unit 304 of the controller device 300. An image M2 is an image showing an outline of the selected service. Here, the image M2 is an image showing an outline of the top page of the general search site. Therefore, when the site access image data 3A is transmitted to the display processing device 200, processing for accessing the top page of the general search site is performed.

  When the “Send to TV” button M 3 is operated, the image data for site access 3 A is sent to the display processing device 200. This corresponds to the operation in step S109 described above. When the “TV power” button M4 is operated, a remote control signal for turning on the power is transmitted to the display processing device 200. This corresponds to the operation in step S105 described above.

  The buttons M3 and M4 are GUIs displayed on the display unit 304 by the service display processing unit 332.

  Further, in FIG. 14, the service display processing unit 332 further displays a button M7 that receives an instruction to transition to the menu screen shown in FIG. 13 and a button M8 that receives an instruction to display an application.

  Note that the position of the focus can be switched to one of the buttons M3 and M4 with the direction key of the operation unit 305, and the focused button can be pressed with the determination key of the operation unit 305. It shall be possible. It is assumed that the buttons M7 and M8 can be pressed by pressing a predetermined key of the operation unit 305.

(Processing flow 2: Access to a website that requires authentication (login))
Next, the flow of processing when a user accesses a website that requires authentication (login) will be described. Here, further, (2-1) a case where a website requiring authentication (login) is accessed first, and (2-2) a one-time password after logging in once to a website requiring authentication (login) Each of the cases where access is made again within the period during which the authentication by is valid is described.

(Processing flow 2-1: First access)
First, FIG. 15 is a flowchart showing processing in each device when the user first accesses a Web site that requires authentication (login) in the operation system 100.

  Here, a description will be given assuming that the application of the controller device 300 has already been activated. Further, the description will be made assuming that the power of the display processing device 200 is on.

  In addition, the processing up to step S115 and the processing after step S116 are the same processing as described above, and thus description thereof is omitted here.

  After receiving the access request in step S115, the access request reception processing unit 432 of the service providing apparatus 400 checks whether the operating device 300 has been authenticated (logged in) (S201). (NO in S202), the login instruction transmission processing unit 433 transmits login instruction information including that login is necessary to use the Web site to the display processing apparatus 200 (S203).

  When the login instruction reception processing unit 236 of the display processing apparatus 200 receives the login instruction information (S204), the received login instruction information is displayed on the display unit 204 (S205).

  When the user who visually recognizes the login instruction information displayed on the display unit 204 performs an operation to start the login process on the operation device 300 for the purpose of starting the login process (S206), the login authentication request process is performed. Is started (S207). Details of the login authentication process will be described later. When the login authentication process is performed, a login authentication request is transmitted from the operation device 300 to the service providing device 400.

  Upon receiving the login authentication request, the service providing apparatus 400 performs authentication image data generation processing (S208). When the authentication image data generation process is performed, a one-time password that allows the user of the operation apparatus 300 to log in to the service providing apparatus 400 is generated, and the generated one-time password is used as the processing designation information 5. The authentication image data 3B is transmitted to the controller device 300. Details of the authentication image data generation processing will be described later.

  Here, it is assumed that “authentication” is specified as the command name 6 and the one-time password for logging in to the Web site of the service providing apparatus 400 is specified as the parameter 7 in the authentication image data 3B. Further, a URL indicating the Web site of the service providing apparatus 400 may be designated.

  When the authentication image data 3B is received, the image data reception processing unit 335 of the controller device 300 displays an image on the display unit 304 based on the image information included in the received authentication image data 3B (S209). ). At this time, the image data reception processing unit 335 according to the present embodiment displays a GUI (button) for receiving various operations from the user on the display unit 304. In particular, a button for accepting an operation of transmitting the authentication image data 3B to the display processing device 200 is displayed.

  Then, an operation for transmitting the authentication image data 3B including the image displayed on the display unit 304 in step S209 to the display processing device 200 for the purpose of logging in to the Web site of the service providing device 400. When the button is pressed (S210), the image data transmission processing unit 336 of the operation device 300 transmits the authentication image data 3B to the display processing device 200 (S211).

  Then, when the image data reception processing unit 233 of the display processing device 200 receives the authentication image data 3B (S212), the processing designation information extraction processing unit 234 analyzes the received authentication image data 3B. (S213). Specifically, the processing designation information 5 included in the received authentication image data 3B is extracted. In this case, “authentication” is extracted as the command name 6, and the one-time password is extracted as the parameter 7.

  For the purpose of making the user confirm the received authentication image data 3B, an image is output to the display unit 204 based on the image information included in the received authentication image data 3B (S214). Since the command name 6 of the extracted processing designation information 5 is “authentication”, the login request processing unit 2352 requests login to the Web site being displayed (S215). At this time, the extracted one-time password is also transmitted.

  When the login request reception processing unit 437 of the service providing apparatus 400 receives the login request (S216), authentication (login) is performed based on the one-time password transmitted together with the login request (S217). ). If the authentication is successful (YES in S218), display data for display on the display unit 204 of the display processing device 200 (for example, HTML data constituting a Web page, video content, etc.) is transmitted (S116). ).

(Login authentication request processing and authentication image data generation processing)
Next, the flow of the login authentication request process in step S207 and the authentication image data generation process in step S208 will be described. FIG. 16 is a flowchart showing the flow of the login authentication request process and the authentication image data generation process.

  In step S206, when the user performs an operation for starting the login process on the operation device 300, the login authentication request processing unit 334 displays on the display unit 304 that the login process is being performed (S301). . Then, login authentication is requested to the service providing apparatus 400 (S302). At this time, the terminal ID of the controller device 300 is also transmitted.

  When the authentication request reception processing unit 434 of the service providing apparatus 400 receives the login authentication request (S303), the terminal ID transmitted together with the login authentication request is registered in the terminal / user information storage unit 474. Terminal authentication is performed by checking whether or not it is completed (S304).

  If the terminal authentication is successful (YES in S305), the one-time PW generation processing unit 435 generates a one-time password (S306). Subsequently, the image data generation processing unit 436 generates authentication image data 3B including an image corresponding to the user of the operation device 300 that has transmitted the login authentication request (S307). That is, the image data generation processing unit 436 generates the authentication image data 3B using a template corresponding to the user corresponding to the operating device 300 that transmitted the login authentication request. Further, user-related information stored in the user-related information storage unit 478 is acquired in association with the terminal ID included in the login authentication request, and an image including the acquired user-related information is obtained as an image of the authentication image data 3B. Store in area 610.

  Then, “authentication” and the generated one-time password are stored in each of the command name 6 and the parameter 7 of the processing designation information 5 of the generated authentication image data 3B (S308). Further, the URL of the Web site of the service providing apparatus 400 may be stored in the parameter 7.

  Then, the image data generation processing unit 436 transmits the stored authentication image data 3B to the operation device 300 (S309), and the transmitted authentication image data 3B is transmitted to the image data reception processing unit of the operation device 300. 335 receives (S310).

  Through the above flow, the operation device 300 obtains the one-time password issued by the service providing device 400 and necessary for logging in to the Web site of the service providing device 400 in a state included in the authentication image data 3B. be able to.

(Screen example)
Here, an example of a screen displayed on the display unit 304 of the controller device 300 will be described with reference to FIG. FIG. 17 is a schematic diagram illustrating a state in which an image is output to the display unit 304 based on the image information included in the authentication image data 3B. The image M5 is an image output to the display unit 304 based on the image information included in the authentication image data 3B. Here, the image M5 is an image indicating that login is possible by transmitting the image data to the display processing device 200.

  The image M5 is user image information acquired from the user related information storage unit 478 of the service providing apparatus 400, and when the image data generation processing unit 436 of the service providing apparatus 400 generates the authentication image data 3B. The image is read from the user related information storage unit 478 and output to the display unit 304 based on the user image information stored in the image area 610 of the authentication image data 3B.

  When the “Send to TV” button M6 is operated, the authentication image data 3B is sent to the display processing device 200. This corresponds to the operation in step S210 described above. The button M6 is a GUI displayed on the display unit 304 by the image data reception processing unit 335.

  In FIG. 17, the image data reception processing unit 335 further displays a button M9 that receives an instruction to transition to the previous screen and a button M8 that receives an instruction to display an application.

  It is assumed that the focus position can be applied to the button M6 with the direction key of the operation unit 305, and the focused button can be pressed with the determination key of the operation unit 305. Further, it is assumed that the buttons M8 and M9 can be pressed by pressing a predetermined key of the operation unit 305.

(Processing flow 2-2: Accessing again within the period when the authentication is valid)
Next, FIG. 18 shows the operation system 100 in each apparatus when a user logs in once to a website that requires authentication (login) and then accesses again within a period in which authentication by a one-time password is valid. It is a flowchart which shows a process.

  Here, a description will be given assuming that the application of the controller device 300 has already been activated. Further, the description will be made assuming that the power of the display processing device 200 is on.

  Further, the processing up to step S206 and the processing after step S210 are the same processing as described above, and therefore the description thereof is omitted here.

  In step S206, when the user performs an operation to start the login process with the operation device 300, the valid period (for example, 2 minutes) of the one-time password included in the authentication image data 3B used at the previous login is set. If it has not expired, the login authentication request processing is not started as in step S207, and an image is displayed on the display unit 304 based on the image information included in the authentication image data 3B received last time (S209). Thereafter, the user logs in to the Web site of the service providing apparatus 400 in the same flow as the flowchart shown in FIG. If authentication based on the one-time password fails in step S217 (that is, if the validity period of the one-time password has expired), login to the website cannot be performed. In this case, the login authentication request process is performed again, the authentication image data 3B including the new one-time password is acquired from the service providing apparatus 400, and login is performed.

[Embodiment 2]
In the present embodiment, a mode in which login is performed simultaneously with access to a Web site provided by service providing apparatus 400 will be described.

  One embodiment of the present invention will be described below with reference to FIGS. Note that a description of the same contents as those in Embodiment 1 is omitted.

(Detailed configuration of each device)
A more detailed configuration of the display processing device 200, the operation device 300, and the service providing device 400 according to the present embodiment will be described with reference to FIG. FIG. 19 is a block diagram showing the main configuration of display processing apparatus 200, operation apparatus 300, and service providing apparatus 400 according to the present embodiment. Note that the display processing apparatus 200 according to the present embodiment has the same configuration as the display processing apparatus 200 according to the first embodiment, and thus description thereof is omitted here.

(More detailed configuration of the operating device)
The operating device 300 according to the present embodiment has substantially the same configuration as the operating device 300 according to the first embodiment. However, the operation device control unit 303 is different from the login authentication request processing unit 334 in that a service start request processing unit 337 is provided.

  The service start request processing unit 337 transmits a service start request to the service providing apparatus 400 via the telephone / Web communication unit 301 in response to a service start operation from the user. The service start request is a site access with authentication information including a URL for accessing the service providing apparatus 400 to a website corresponding to the service and a one-time password required for authentication (login) at the time of access. The transmission of the image data 3C for use is requested. The service start request is transmitted including the terminal ID and information for identifying the service (service ID). The terminal ID is acquired from the terminal ID storage unit 372. The service ID is acquired from the service information storage unit 371.

(Detailed configuration of service providing device)
Service providing apparatus 400 according to the present embodiment has substantially the same configuration as service providing apparatus 400 according to the first embodiment. However, the service providing device storage unit 407 further includes a service related information storage unit 479, and the service providing device control unit 403 replaces the authentication request reception processing unit 434 with a service start request reception processing unit. The difference is that 438 is provided.

  The service related information storage unit 479 stores information related to the service provided by the service providing apparatus 400 (hereinafter also referred to as service related information) for each service in association with the service ID. Here, the service-related information is character information related to a service (hereinafter also referred to as service character information) and image information related to a service (hereinafter also referred to as service image information).

  Specific examples of the service character information include a service name, a service outline, and the like. However, the service character information is not limited to these, and may be any information as long as it is character information related to the service.

  Specific examples of the service image information include an image representing the name of the service, an image representing the service logo, an image representing the outline of the service, and an icon image for identifying the service. However, the service image information is not limited to these, and may be any information as long as it is image information related to the service.

  Note that the number of pieces of related information in the service stored in the service related information storage unit 479 may be one or plural for each service.

  Further, it is assumed that the service related information is registered in the service related information storage unit 479 in advance by a service provider who owns the service providing apparatus 400.

  Next, the service start request reception processing unit 438 receives the service start request from the service start request processing unit 337 of the controller device 300. First, the terminal ID included in the received service start request is stored in the terminal / user information storage. Terminal authentication is performed by checking whether or not it has been registered in the unit 474. If the terminal authentication is successful, the one-time PW generation processing unit 435 generates a one-time password for authentication (login), and the image data generation processing unit 436 receives the image data 3C for site access with authentication information. Generate.

  Note that the one-time PW generation processing unit 435 according to the present embodiment generates a one-time password for authentication (login) in response to an instruction from the service start request reception processing unit 438.

  Further, the image data generation processing unit 436 according to the present embodiment generates site information image data 3C with authentication information in which the one-time password generated by the one-time PW generation processing unit 435 is stored. For the generation, a template stored in the image data storage unit 471 is used. That is, the image data 3C for site access with authentication information in which the processing specification information 5C including the one-time password generated by the one-time PW generation processing unit 435 is generated in the template stored in the image data storage unit 471 is generated. .

  Further, as in the first embodiment, when the template is stored for each user in the image data storage unit 471, the image data generation processing unit 436 according to the present embodiment performs the operation that transmitted the service start request. Using the template corresponding to the user corresponding to the device 300, the site access image data 3C with authentication information is generated. Note that the user corresponding to the operation device 300 that transmitted the service start request uses the user ID obtained by searching the terminal / user information storage unit 474 using the terminal ID of the operation device 300 included in the service start request as a key. Can be identified based on. Therefore, the site access image data with authentication information 3C is generated using the template stored in the image data storage unit 471 in association with the obtained user name.

  The image data generation processing unit 436 includes the service-related information stored in the user-related information and service-related information storage unit 479 stored in the user-related information storage unit 478 in the generated site access image data 3C with authentication information. By including information, the generated image data for site access with authentication information 3C may be customized for each user. For example, an image included in the site access image data 3C with authentication information may be generated for each user. For example, the name of the user or an image (avatar) representing the user, the name of the service that the user is logging in or logging in, an icon that can identify the service, the operation content that the user can currently perform, etc. An image may be generated.

  Specifically, as in the first embodiment, the image data generation processing unit 436 according to the present embodiment is stored in the user-related information storage unit 478 in association with the terminal ID included in the service start request. Get user related information. Then, the acquired user related information is stored in the image area 610 of the image data for site access 3C with authentication information.

  Here, an example of “an image including user-related information” is the same as in the first embodiment. That is, when user character information can be acquired as user-related information, the “image including user-related information” is, for example, an image in which the acquired user character information is superimposed and displayed on a predetermined area of the predetermined image. .

  Further, when user image information can be acquired as user-related information, the “image including user-related information” may be, for example, an image displayed based on the acquired user image information, An image in which an image displayed based on the acquired user image information is superimposed on a predetermined area of the predetermined image may be used. Note that the predetermined image and the predetermined area may be determined in advance or may be registered by the user in the service providing apparatus 400.

  Furthermore, in order to use the service related information stored in the service related information storage unit 479, the image data generation processing unit 436 according to the present embodiment associates the service related information with the service ID included in the service start request. Service related information stored in the storage unit 479 is acquired. Then, the acquired image including the service related information is stored in the image area 610 of the image data 3C for site access with authentication information.

  Here, an example of “image including service related information” is shown. When the service character information can be acquired as the service related information, the “image including the service related information” is, for example, an image in a state where the acquired service character information is superimposed and displayed on a predetermined area of the predetermined image. .

  Further, when the service image information can be acquired as the service related information, the “image including the service related information” may be, for example, an image itself displayed based on the acquired service image information, It may be an image in which an image displayed based on the acquired service image information is superimposed and displayed on a predetermined area of the predetermined image. Note that the predetermined image and the predetermined area may be determined in advance or may be registered by the user in the service providing apparatus 400.

  When a plurality of pieces of service related information are obtained from the service related information storage unit 479, an image including any of them may be generated, or an image including all of the plurality of service related information may be generated.

Then, the image data generation processing unit 436 according to the present embodiment transmits the generated site access image data 3C with authentication information to the operation device 300 via the external communication unit 408.
(Process flow)
Next, with reference to FIG. 20 and FIG. 21, the flow of processing in each device when the user accesses a Web site in the operation system 100 according to the present embodiment will be described. Here, in response to a service start request from the operation apparatus 300, the service providing apparatus 400 provides (1) one piece of site access image data 3C with authentication information, and (2) authentication image data 3B. The flow of processing will be described for each of the cases where two pieces of site access image data 3A are provided.

(Processing flow 1: When the service providing apparatus 400 provides one piece of site access image data 3C with authentication information)
FIG. 20 shows a case where each service access device 400 accesses a Web site when the service providing device 400 provides one piece of authentication-attached site access image data 3C in response to a service start request from the operation device 300. It is a flowchart which shows a process.

  Here, a description will be given assuming that the user registration process is completed. Further, the description will be made assuming that the power of the display processing device 200 is on. Further, the processing up to step S103 is as described in the first embodiment.

  In order to access the service selected in step S103, the service start request processing unit 337 transmits a service start request to the service providing apparatus 400 (S401). At this time, the terminal ID of the controller device 300 and information (service ID) for identifying the selected service are transmitted together.

  The service start request reception processing unit 438 that has received the service start request checks whether or not the terminal ID transmitted together with the service start request has been registered in the terminal / user information storage unit 474. (S403).

  If the terminal authentication is successful (YES in S404), the one-time PW generation processing unit 435 generates a one-time password (S405). Subsequently, the image data generation processing unit 436 generates an image according to the user of the operation device 300 that has transmitted the service start request (S406), (1) the generated image, (2) the command name 6 and Parameter 7 is “site access” and processing specification information 5 which is the URL of the Web site, respectively. (3) Command name 6 and parameter 7 are “authentication” and the generated one-time password, respectively. The site access image data 3C with authentication information including the processing designation information 5 is generated (S407). Then, the generated image data for site access with authentication information 3C is transmitted to the controller device 300 (S408).

  In step S406, the image data generation processing unit 436 acquires user-related information stored in the user-related information storage unit 478 in association with the terminal ID included in the service start request, and is included in the service start request. Service-related information stored in the service-related information storage unit 479 in association with the service ID to be acquired, and an image including the acquired user-related information and service-related information is stored in the image data 3C for site access with authentication information. Store in the image area 610.

  When the controller device 300 receives the image data 3C for site access with authentication information (S409), the image data reception processing unit 335 according to the present embodiment includes the image information included in the image data 3C for site access with authentication information. Based on the above, an image is output to the display unit 304 (S410). At this time, the image data reception processing unit 335 according to the present embodiment displays a GUI (button or the like) that accepts various operations from the user on the display unit 304. In particular, a GUI (button or the like) that accepts an operation of transmitting the site access image data 3C with authentication information to the display processing device 200 is displayed on the display unit 304.

  Then, in order for the user to access the Web site of the service providing apparatus 400, the image data 3C for site access with authentication information including the image displayed on the display unit 304 in step S410 is displayed on the display processing apparatus 200. When an operation for transmitting (pressing a button or the like) is performed (S411), the image data transmission processing unit 336 transmits the image data for site access 3C with authentication information to the display processing device 200 (S412).

  When the image data reception processing unit 233 of the display processing device 200 receives the above-mentioned site access image data 3C with authentication information (S413), the received site access image data 3C with authentication information is analyzed (S414). . Specifically, the processing designation information 5 included in the site access image data 3C with authentication information is extracted. In this case, in this case, the process designation information 5 in which the command name 6 is “site access” and the parameter 7 is a URL, and the process designation information in which the command name 6 is “authentication” and the parameter 7 is a one-time password. 5 are extracted.

  Then, for the purpose of allowing the user to confirm the received site access image data 3C with authentication information, an image is displayed on the display unit 304 based on the image information included in the received site access image data 3C with authentication information. (S415), and since the command name 6 of the extracted processing designation information 5 is “site access”, the external access processing unit 2351 requests access to the Web site indicated by the extracted URL. (S416). At this time, in order to log in simultaneously with the access to the Web site, the extracted one-time password is also transmitted. The subsequent processing is the same as steps S216 to S218 and S116 to S118 described in the first embodiment.

Through the above flow, the user of the operation device 300 can log in at the same time as accessing the Web site.
(Processing flow 2: When the service providing apparatus 400 provides the authentication image data 3B and the two site access image data 3A)
FIG. 21 shows a case where the service providing apparatus 400 accesses the Web site when the service providing apparatus 400 provides the authentication image data 3B and the two site access image data 3A in response to a service start request from the operation apparatus 300. It is a flowchart which shows the process in each apparatus.

  Here, a description will be given assuming that the user registration process is completed. Further, the description will be made assuming that the power of the display processing device 200 is on. The processing up to step S405 is the same as described above.

  In step S405, when the one-time PW generation processing unit 435 generates a one-time password, the image data generation processing unit 436 first generates authentication image data 3B storing the generated one-time password (S501). . Further, two pieces of site access image data 3A corresponding to the user are generated (S502). Here, it is assumed that site access image data 3A storing the URL of the top page of the site and site access image data 3A storing the URL of the subpage of the site are generated. Then, the generated image is transmitted to the controller device 300 (S503).

  When the controller device 300 receives the transmitted image data (S504), first, based on the image information included in the site access image data 3A storing the URL of the top page of the site, an image ( Hereinafter, a top page image) is output, and an image (hereinafter referred to as a subpage image) is output to the display unit 304 based on image information included in the site access image data 3A storing the URL of the subpage of the site. (S505). At this time, the image data reception processing unit 335 according to the present embodiment displays a GUI (button) for receiving various operations from the user on the display unit 304. In particular, a button (BT) for transmitting the site access image data 3A storing the URL of the top page of the site to the display processing apparatus 200 and the site access image data 3A storing the URL of the subpage of the site are displayed. A button (referred to as BS) to be transmitted to the display processing device 200 is displayed.

  Then, for the purpose of allowing the user to access the top page of the website of the service providing apparatus 400, the display processing apparatus displays the site access image data 3A including the top page image displayed on the display unit 304 in step S505. When an operation to transmit to 200 (pressing the button BT) is performed (S506), the image data for site access 3A and the image data for authentication 3B are transmitted to the display processing device 200 (S507).

  Upon receiving the site access image data 3A and the authentication image data 3B (S508), the display processing apparatus 200 first analyzes the received site access image data 3A (S509). Specifically, the processing designation information 5 included in the received site access image data 3A is extracted. In this case, the URL of the top page of the site is obtained.

  Further, the received authentication image data 3B is analyzed (S510). Specifically, the processing designation information 5 included in the received authentication image data 3B is extracted. In this case, a one-time password is obtained.

  Then, for the purpose of making the user confirm the received site access image data 3A, an image is output to the display unit 204 based on the image information included in the received site access image data 3A (S511). ), The external access processing unit 2351 requests access to the Web site indicated by the extracted URL (S512). At this time, in order to log in at the same time, the extracted one-time password is also transmitted. The subsequent processing is the same as steps S216 to S218 and S116 to S118 described in the first embodiment.

  On the other hand, for the purpose of allowing the user to access the subpage of the Web site of the service providing apparatus 400, the display processing apparatus displays the site access image data 3A including the subpage image displayed on the display unit 304 in step S505. When an operation to transmit to 200 (pressing the button BS) is performed (S513), the image data 3A for site access and the image data 3B for authentication are transmitted to the display processing device 200 (S514).

  Upon receiving the site access image data 3A and the authentication image data 3B (S515), the display processing apparatus 200 first analyzes the received site access image data 3A (S516). Specifically, the processing designation information 5 included in the received site access image data 3A is extracted. In this case, the URL of the subpage of the site is obtained.

  Further, the received authentication image data 3B is analyzed (S517). Specifically, the processing designation information 5 included in the received authentication image data 3B is extracted. In this case, a one-time password is obtained.

  Then, for the purpose of making the user confirm the received site access image data 3A, an image is output to the display unit 204 based on the image information included in the received site access image data 3A (S518). ), The external access processing unit 2351 requests access to the Web site indicated by the extracted URL (S519). At this time, in order to log in at the same time, the extracted one-time password is also transmitted. The subsequent processing is the same as steps S216 to S218 and S116 to S118 described in the first embodiment.

  Through the above flow, the user of the operation device 300 can log in at the same time as accessing the Web site.

[Embodiment 3]
In the present embodiment, a description will be given of a mode in which authentication is performed in the service providing apparatus 400 by transmitting image data from the operation apparatus 300 to the display processing apparatus 200 when purchasing content on a Web site.

  One embodiment of the present invention will be described below with reference to FIGS. Note that the description of the same contents as in the first and second embodiments is omitted.

(Detailed configuration of each device)
With reference to FIG. 22, more detailed configurations of the display processing device 200, the operation device 300, and the service providing device 400 according to the present embodiment will be described. FIG. 22 is a block diagram showing a main configuration of display processing apparatus 200, operation apparatus 300, and service providing apparatus 400 according to the present embodiment. Since operation device 300 according to the present embodiment has the same configuration as operation device 300 according to the first embodiment, the description thereof is omitted here.

(Detailed configuration of display processing device)
The display processing device 200 according to the present embodiment has substantially the same configuration as the display processing device 200 according to the first embodiment. However, the display processing device control unit 203 is further provided with a charging request processing unit 237, and the processing execution unit 235 is further provided with a charging authentication request processing unit 2353.

  When the remote control signal received by the command reception processing unit 231 is a signal to purchase content, the charging request processing unit 237 sends a request to the service providing apparatus 400 in response to an instruction from the command reception processing unit 231. Then, a request to purchase content (purchase request) is transmitted.

  The billing authentication request processing unit 2353 uses the one-time password and the terminal ID of the operation device 300 extracted from the processing designation information 5 of the purchase image data 3D by the processing designation information extraction processing unit 234 as authentication data at the time of content purchase. It transmits to the service providing apparatus 400. When the URL is further extracted from the processing designation information 5 of the purchase image data 3D, the one-time password and the terminal ID of the operation device 300 are transmitted to the server device designated by the URL.

(Detailed configuration of service providing device)
Service providing apparatus 400 according to the present embodiment has substantially the same configuration as service providing apparatus 400 according to the first embodiment. However, the service providing apparatus control unit 403 further includes a billing processing unit 439, and the service providing apparatus storage unit 407 includes a terminal / user information storage unit 475 instead of the terminal / user information storage unit 474. Is different.

  The terminal / user information storage unit 475 is an extension of the data structure of the terminal / user information storage unit 474, and the data stored in the terminal / user information storage unit 474 (the terminal ID of the operation device 300, the operation device 300). In addition to the user's name, the last date and time when the user accessed the content, and the last date and time when the user issued a one-time password for authentication (login), authentication (purchase) for purchasing content The last date and time when the one-time password was issued to the user and the amount available for the user are stored. The terminal / user information storage unit 475 can have a data structure shown in Table 2, for example.

  In the example shown in Table 2, for example, it is stored that the user name of the user of the operation device 300 whose terminal ID is “0001” is “Taro”. It is stored that the user last accessed “content A” and the date and time is “2008/5/27 12:18”. Further, it is stored that the date and time when the one-time password used at the time of authentication (login) was last issued to the user is “2008/5/27 12:10”. Furthermore, it is stored that the date and time when the one-time password used at the time of authentication (purchase) was last issued to the user is “2008/5/27 12:12”. Furthermore, it is stored that the amount of money that the user can use when purchasing the content is “1200 yen”.

  The billing processing unit 439 receives the purchase request from the display processing device 200 and checks the available amount of the user who has requested the purchase. If the purchase is within the range of the available amount, a settlement process is performed. In addition, the one-time PW generation processing unit 435 generates a one-time password for authentication at the time of purchase, and the image data generation processing unit 436 generates the purchase image data 3D.

  Further, the image data generation processing unit 436 according to the present embodiment generates purchase image data 3D storing the one-time password generated by the one-time PW generation processing unit 435. Then, the generated purchase image data 3D is transmitted to the controller device 300 via the external communication unit 408.

  Note that the image data generation processing unit 436 according to the present embodiment converts the image including the user related information stored in the user related information storage unit 478 in association with the terminal ID included in the purchase request into the purchase image data. It may be stored in the 3D image area 610.

  Further, when a one-time password and a terminal ID are transmitted from the display processing device 200, the login request reception processing unit 437 according to the present embodiment performs an authentication process using the one-time password and the terminal ID. If the authentication is successful, the content purchase process is performed, and the purchased content information is transmitted to the display processing device 200.

(Process flow)
Next, referring to FIG. 23, in the operation system 100 according to the present embodiment, when content is purchased at a site, the purchase image data 3D is transmitted from the operation device 300 to the display processing device 200, thereby providing a service. A flow of processing in each device when authentication (purchase) at the time of content purchase in the providing device 400 is described.

  FIG. 23 is a flowchart showing a flow of authentication (purchase) processing performed when content is purchased at a site in operation system 100 according to the present embodiment.

  Here, it is assumed that the application is activated in the operation device 300. Further, it is assumed that the authentication of the user A of the operation device 300 has been completed and the user is logged in.

  First, in step S601, it is assumed that content information and information related to a purchase operation are transmitted from the service providing apparatus 400 as display data to the display processing apparatus 200 (S601). Upon receiving the display data (S602), the display processing device 200 outputs the display data to the display unit 204 (S603).

  While viewing the display data displayed on the display unit 204, the user A performs an operation of selecting a service on the operation device 300 (S604), and operates an operation key (up / down / left / right key or determination key) on the application. By doing so, it is assumed that a remote control signal for purchasing content is transmitted to the display processing device (S605).

  When the display processing device 200 receives the remote control signal (S606), the display processing device 200 analyzes the content of the display data determined by the remote control signal and determines that the operation is a content purchase operation (S607). In response to this, a request to purchase content (purchase request) is transmitted (S608). At this time, the purchase request is transmitted including information for identifying the content (content ID) and the terminal ID of the operation device 300.

  When the service providing apparatus 400 receives the purchase request (S609), the service providing apparatus 400 determines that the user A using the terminal ID has requested purchase of the content (S610), refers to the terminal / user information storage unit 475, and the user Check the available amount of A. Then, settlement processing is performed based on the available amount (S611).

  Thereafter, the one-time PW generation processing unit 435 generates a one-time password (S612). Subsequently, the image data generation processing unit 436 generates an image corresponding to the user A of the operation device 300 that has transmitted the content purchase request, and (1) the generated image, (2) the command name 6 and the parameter. 7 generates image data 3D for purchase including “authentication” and the processing designation information 5 which is the generated one-time password (S613). Note that the URL of the authentication destination server device may be further stored as the process designation information 5. Then, the generated purchase image data 3D is transmitted to the controller device 300 (S614).

  Then, the image data reception processing unit 335 of the controller device 300 receives the purchase image data 3D (S615), and when the user performs an operation to display an image included in the purchase image data 3D ( In step S616, the image included in the purchase image data 3D is displayed on the display unit 304 (step S617). At this time, the image data reception processing unit 335 according to the present embodiment displays a GUI (button or the like) that accepts various operations from the user on the display unit 304. In particular, a GUI (button or the like) that accepts an operation of transmitting the purchase image data 3D to the display processing device 200 is displayed on the display unit 304.

  Thereafter, when the user performs an operation (such as pressing a button) to transmit the purchase image data 3D to the display processing device 200 (S618), the processing designation information 5 of the purchase image data 3D is further updated. The terminal ID is stored (S619) and transmitted to the display processing device 200 by e-mail or the like (S620).

  When the display processing apparatus 200 receives the purchase image data 3D (S621), the process designation information extraction processing unit 234 analyzes the received purchase image data 3D (S622). Specifically, the processing designation information 5 included in the received purchase image data 3D is extracted. In this case, whether or not the URL is included and whether or not the one-time password and the terminal ID are included are analyzed and extracted. Then, the extracted one-time password and terminal ID are transmitted to the service providing apparatus 400 (S623). In the above analysis, if a URL is extracted, the extracted one-time password and terminal ID are transmitted to the service providing apparatus 400 to a server device or the like specified by the URL.

  Upon receiving the one-time password and terminal ID (S624), the service providing apparatus 400 performs authentication (purchase) based on the received one-time password and terminal ID (S625). Specifically, it is confirmed whether or not the received one-time password is valid and the received terminal ID is the terminal ID of the operation device 300 used by the user who issued the one-time password. . If authentication (purchase) is successful (YES in S625), purchase processing is performed (S626), and the purchased content is transmitted to display processing device 200 (S627).

  When receiving the purchased content (S628), the display processing device 200 displays the purchased content on the display unit 204 (S629).

  Through the above flow, the user can perform authentication (purchase) at the time of content purchase by transmitting the purchase image data 3D acquired from the service providing apparatus 400 to the display processing apparatus 200.

[Additional notes]
(Terminal registration process and user information registration / update process flow)
In each of the above-described embodiments, the terminal registration process and the user information registration / update process in the operation apparatus 300 and the service providing apparatus 400 have been described as having been completed. Hereinafter, a flow of terminal registration processing and user information registration / update processing in the operation device 300 and the service providing device 400 will be described.

  FIG. 24 is a flowchart showing the flow of terminal registration processing and user information registration / update processing in the operation device 300 and the service providing device 400. The processing up to step S102 is as described above.

  When the user instructs registration processing (S701), the terminal / user information registration processing unit 331 of the operating device 300 transmits a terminal registration request for the operating device 300 to the service providing device 400 (S702). At that time, the terminal ID of the operation device 300 acquired from the terminal ID storage unit 372 is included in the terminal registration request and transmitted to the service providing device 400.

  When the terminal / user information registration processing unit 431 of the service providing apparatus 400 receives the terminal registration request from the operation apparatus 300 (S703), the terminal / user is based on the terminal ID included in the received terminal registration request. The information storage units 474 and 475 are searched to check whether or not the terminal ID has already been registered (S704). If the terminal / user information registration processing unit 431 knows that it has not been registered, the terminal / user information registration processing unit 431 generates a temporary user name (S705), associates the temporary user name with the terminal ID, and stores the terminal / user information. In addition to storing (new registration) in the registration processing unit 431 (S706), a temporary registration notification indicating that temporary registration has been performed is transmitted to the controller device 300 (S707). The provisional registration notification includes the provisional user name.

  Then, the terminal / user information registration processing unit 331 of the operation device 300 receives the temporary registration notification notified from the service providing device 400 (S708), displays the notification on the display unit 304 (S709), and the temporary user name. Accept input to update to another username. If there is a user operation for updating the temporary user name (S710), a request for updating (user information update request) is transmitted to the service providing apparatus 400 (S711).

  Upon receiving the user information update request transmitted from the operation device 300 (S712), the terminal / user information registration processing unit 431 of the service providing device 400 confirms that it is a registered user (S713), and then the user An information update request acceptance notification is transmitted to the controller device 300 (S714).

  When the terminal / user information registration processing unit 331 of the operation device 300 receives the update request acceptance notification transmitted from the service providing device 400 (S715), the received update request acceptance notification is displayed on the display unit 304 ( S716). When a user input of a new user name is received (S717), the received new user name is transmitted to the service providing apparatus 400 in order to update the temporary user name held in the service providing apparatus 400. (S718).

  When the terminal / user information registration processing unit 431 of the service providing apparatus 400 receives the new user name transmitted from the operation device 300 (S719), the user stored in the terminal / user information storage units 474 and 475 is received. The name is updated (S720). Thereafter, an update registration completion notification indicating that the update has been completed is transmitted to the controller device 300 (S721).

  Finally, when receiving the update registration completion notification, the terminal / user information registration processing unit 331 of the controller device 300 displays that fact on the display unit 304 (S722).

(Screen example that displays images according to the user)
In each of the above-described embodiments, generation of image data including an image corresponding to a user has been described. Hereinafter, an example of a screen when image data including an image corresponding to a user is displayed on the display unit 304 of the controller device 300 will be described with reference to FIGS. 25 to 27.

  FIG. 25 is a schematic diagram illustrating a state in which the image N1 is displayed on the display unit 304 of the controller device 300 based on the image information included in the authentication image data 3B generated according to the user. As illustrated, an image N1 represents a user name L1, an image (avatar) L2 representing the user, a service name L3 that the user can log in to, an icon L4 that can identify the service, and an operation content that the user can perform. The image L5 is included. Therefore, it can be easily understood that the user viewing the image (“Taro”) can log in to the service by sending the authentication image data 3B to the television.

  Note that the name L1, the image L2, the name L3, the icon L4, and the image L5 are user-related information acquired from the user-related information storage unit 478. Then, when the image data generation processing unit 436 according to Embodiment 1 generates the authentication image data 3B, the name L1, the image L2, the name L3, the icon L4, and the image L5 acquired from the user related information storage unit 478. Is stored in the image area 610 of the authentication image data 3B. Therefore, the image data reception processing unit 335 displays the image N1 on the display unit 304 based on the image information stored in the image area 610 of the authentication image data 3B received from the service providing apparatus 400.

  In FIG. 25, a “Send to TV” button M11 for accepting an operation of transmitting the authentication image data 3B to the display processing device 200 is displayed.

  FIG. 26 is a schematic diagram illustrating a state in which the image N2 is displayed on the display unit 304 of the controller device 300 based on the image information included in the site access image data with authentication information 3C generated according to the user. As illustrated, the image N2 represents a user name L1, an image (avatar) L2 representing the user, a service name L3 that the user can log in, an icon L4 that can identify the service, and an operation content that the user can perform. The image L6 is included. Therefore, it can be easily understood that the user viewing the image (“Taro”) can view the content A of the service by sending the site access image data 3C with authentication information to the television.

  Here, the name L1, the image L2, and the image L6 are stored in the user related information storage unit 478, and the name L3 and the icon L4 are stored in the service related information storage unit 479. To do. Then, when the image data generation processing unit 436 according to the second embodiment generates the image data 3C for site access with authentication information, the name L1, the image L2, the image L6, and the information acquired from the user related information storage unit 478, and It is assumed that the image N2 including the name L3 and the icon L4 acquired from the service related information storage unit 479 is stored in the image area 610 of the image data 3C for site access with authentication information. Therefore, the image data reception processing unit 335 displays the image N2 on the display unit 304 based on the image information stored in the image area 610 of the site access image data with authentication information 3C received from the service providing apparatus 400. ing.

  Also, in FIG. 26, a “Send to TV” button M12 that accepts an operation of sending the image data for site access 3C with authentication information to the display processing device 200 and an operation of turning on the power of the display processing device 200 are accepted. The “TV power” button M13 is displayed.

  FIG. 27 is a schematic diagram illustrating a state in which the image N3 is displayed on the display unit 304 of the controller device 300 based on the image information included in the purchase image data 3D generated according to the user. As illustrated, the image N3 represents a user name L1, an image (avatar) L2 representing the user, a service name L3 that the user can log in, an icon L4 that can identify the service, and an operation content that the user can perform. The image L7 is included. Therefore, it can be easily understood that the user (“Taro”) who is viewing this image can purchase the content A of the service by sending this image data to the television.

  Note that the name L1, the image L2, the name L3, the icon L4, and the image L7 are user-related information acquired from the user-related information storage unit 478. Then, when the image data generation processing unit 436 according to the third embodiment generates the purchase image data 3D, the name L1, the image L2, the name L3, the icon L4, and the image L7 acquired from the user related information storage unit 478. Is stored in the image area 610 of the purchase image data 3D. Therefore, the image data reception processing unit 335 displays the image N3 on the display unit 304 based on the image information stored in the image area 610 of the purchase image data 3D received from the service providing apparatus 400.

  In FIG. 27, a “Send to TV” button M14 for accepting an operation of transmitting the purchase image data 3D to the display processing device 200 is displayed.

[Additional Notes]
In each of the embodiments described above, the image data is assumed to be in the JPEG format. However, the image data may be image data in a format that can store the manufacturer note area 621. For example, the image data in the TIFF format may be configured by embedding data corresponding to the maker note area 621. Further, a text chunk of PNG (Portable Network Graphics) format image data may be configured by embedding a text chunk corresponding to the manufacturer note area 621. Further, it may be image data in a GIF (Graphics Interchange Format) format.

  In each of the above embodiments, the image data may include signature information for the purpose of preventing falsification of the image data. Here, it is assumed that the signature information proves that the processing designation information 5 included in the image data has not been falsified. Then, the display processing apparatus 200 refers to the signature information and processes the image data only when it is found that the image data is distributed from a reliable provider and has not been tampered with. Good. Further, when the image data is not distributed from a reliable provider, or when the signature information is not included in the image data, the user may be confirmed whether or not the image data is to be processed.

  The data processing device according to the present invention provides the operation data to the operation device that transmits the operation data to the data processing device that executes the processing according to the operation data including the processing specification information that specifies the processing to be executed. An authentication information generating means for generating authentication information for use in authentication processing performed when accessed from the data processing device for each operating device in response to a request from the operating device; Operation data generation means for generating the operation data including the processing specification information that includes the authentication information generated by the authentication information generation means and that specifies the processing for the data processing device to access the device itself, and the operation data generation Operation data transmission means for transmitting operation data generated by the means to the operation device may be provided.

  Finally, the control units (service providing device control unit 403, display processing device control unit 203, and operation device control unit 303) may be realized by software using a CPU or may be configured by hardware logic. . When realized by software, the service providing device 400, the display processing device 200, and the operation device 300 are configured such that a CPU that executes instructions of a control program that realizes each function, a ROM that stores the program, a RAM that expands the program, A storage device (recording medium) such as a memory for storing the program and various data is provided. An object of the present invention is to provide program codes (execution format program, intermediate code program, source program) of control programs for the service providing apparatus 400, the display processing apparatus 200, and the operation apparatus 300, which are software for realizing the functions described above. The readable recording medium is supplied to the service providing device 400, the display processing device 200, and the operation device 300, and the service providing device 400, the display processing device 200, and the computer in the operation device 300 (or CPU or MPU (Micro This can also be achieved by the processing unit)) reading and executing the program code recorded on the recording medium.

  Examples of the recording medium include tapes such as magnetic tapes and cassette tapes, magnetic disks such as floppy (registered trademark) disks / hard disks, and disks including optical disks such as CD-ROM / MO / MD / DVD / CD-R. Card system such as IC card, IC card (including memory card) / optical card, or semiconductor memory system such as mask ROM / EPROM / EEPROM / flash ROM.

  Further, the service providing device 400, the display processing device 200, and the operation device 300 may be configured to be connectable to a communication network, and the program code may be supplied via the communication network. The communication network is not particularly limited. For example, the Internet, intranet, extranet, LAN, ISDN, VAN, CATV communication network, virtual private network, telephone line network, mobile communication network, satellite communication. A net or the like is available. Also, the transmission medium constituting the communication network is not particularly limited, and for example, an infrared ray such as IrDA, Bluetooth (Bluetooth) (IEEE1394 cable, USB cable, power line carrier, cable TV line, telephone line, ADSL line, etc.) (Registered trademark), IEEE802.11 radio, HDR, mobile phone network, satellite line, terrestrial digital network, and the like can also be used. The present invention can also be realized in the form of a computer data signal embedded in a carrier wave in which the program code is embodied by electronic transmission.

  The present invention is not limited to the above-described embodiments, and various modifications are possible within the scope shown in the claims, and embodiments obtained by appropriately combining technical means disclosed in different embodiments. Is also included in the technical scope of the present invention.

  The present invention relates to an operation system including a data processing device that executes processing according to operation data, an operation device that transmits operation data to the data processing device, and a data providing device that provides the operation data to the operation device. Can be applied. In particular, the data processing apparatus can be applied to a television receiver or a recording device that is remotely operated by a remote controller or the like. Further, the operation device can be applied to a remote controller or a mobile phone that can remotely control the device.

3 Operation image data (operation data)
3B Authentication image data (operation data)
3C Site access image data with authentication information (operation data)
5 Processing designation information 100 Operation system 200 Display processing device (data processing device)
233 Image data reception processing unit (operation data receiving means)
234 Process designation information extraction processing unit (authentication information extraction means)
235 Process execution unit 2352 Login request processing unit (authentication information transmitting means)
300 Operating device 304 Display unit 332 Service display processing unit (transmission instruction receiving means)
334 Login authentication request processing unit 335 Image data reception processing unit (operation data receiving means, display control means)
336 Image data transmission processing unit (operation data transmission means)
337 Service start request processing unit 374 Image data storage unit (operation data storage unit)
400 Service providing device (data providing device)
432 Access request reception processing unit 433 Login instruction transmission processing unit 434 Authentication request reception processing unit 435 One-time PW generation processing unit (authentication information generation means)
436 Image data generation processing unit (operation data generation means, operation data transmission means)
437 Login request reception processing unit 438 Service start request reception processing unit 478 User related information storage unit 479 Service related information storage unit

Claims (14)

A data providing apparatus that provides the operation data to an operation device that transmits the operation data to a data processing device that executes the process according to operation data including process specification information that specifies a process to be executed.
Authentication information generating means for generating, for each operating device, authentication information to be used in authentication processing performed by the own device when accessed from the data processing device, in response to an acquisition request for the authentication information from the operating device;
Operation data generating means for generating the operation data including the authentication information generated by the authentication information generating means and the process specifying information specifying the authentication process;
A data providing apparatus comprising: operation data transmitting means for transmitting operation data generated by the operation data generating means to the operation apparatus. The acquisition request includes service identification information for identifying a service to be provided to the data processing device when the authentication process is successful.
A service related information storage unit that stores the service identification information and the service related information related to the service identified by the service identification information in association with each other;
The operation data generation means further acquires the service related information associated with the service identification information included in the acquisition request from the service related information storage unit, and acquires the acquired service related information. The data providing apparatus according to claim 1, wherein the operation data is generated.   The data providing apparatus according to claim 2, wherein the service related information is an image related to the service. The acquisition request includes operating device identification information for identifying the operating device,
A user-related information storage unit that stores the operation device identification information and user-related information related to the user of the operation device identified by the operation device identification information in association with each other;
The operation data generation means further acquires the user related information associated with the operating device identification information included in the acquisition request from the user related information storage unit, and the acquired user related information The data providing apparatus according to claim 1, wherein the operation data including: is generated.   The data providing apparatus according to claim 4, wherein the user related information is an image related to the user. The operation data provided from the data providing apparatus that generates authentication information used in the authentication process performed when accessed from the data processing apparatus that executes the process according to the operation data including the process specifying information that specifies the process to be executed. An operating device for transmitting to the data processing device,
Operation data receiving means for receiving the operation data including the generated authentication information and the process designation information for which the authentication process is designated, from the data providing device;
An operation apparatus comprising: operation data transmission means for transmitting the operation data received by the operation data reception means to the data processing apparatus. The operation data received by the operation data receiving means from the data providing device includes an image,
The operation device according to claim 6, further comprising display control means for displaying an image included in the operation data received by the operation data receiving means on a display unit of the own apparatus. The display control means further displays, on the display section, a first user interface that receives an instruction from the user to transmit the operation data received by the operation data receiving means to the data processing device.
8. The operation data transmitting unit transmits the operation data received by the operation data receiving unit to the data processing device when receiving an instruction from a user through the first user interface. The operating device according to 1. An operation data storage unit that stores the operation data including the process designation information that designates a process in which the data processing apparatus accesses the data providing apparatus;
A transmission instruction receiving means for displaying on the display unit a second user interface for receiving an instruction to transmit the operation data stored in the operation data storage unit from the user to the data processing device;
The operation data transmission means further transmits the operation data stored in the operation data storage unit to the data processing device when receiving an instruction from a user through the second user interface. The operating device according to claim 7 or 8. A process is executed from a data providing apparatus that generates authentication information used in an authentication process performed when accessed from the data processing apparatus, according to operation data including process designation information provided to the operation apparatus and designating a process to be executed. A data processing device,
Operation data receiving means for receiving from the operating device the operation data including the authentication information and the process specifying information specifying the authentication process;
Authentication information extracting means for extracting the authentication information from the operation data received by the operation data receiving means;
A data processing apparatus comprising: authentication information transmitting means for transmitting the authentication information extracted by the authentication information extracting means to the data providing apparatus.   An operation system comprising the data providing device according to claim 1, the operation device according to claim 6, and the data processing device according to claim 10.   A control program for operating a computer included in the data providing apparatus according to claim 1, wherein the control function causes the computer to function as each of the above-described means.   A control program for operating a computer included in the operating device according to any one of claims 6 to 9, wherein the control program causes the computer to function as each of the means.   A control program for operating a computer included in the data processing apparatus according to claim 10, wherein the control program causes the computer to function as each of the means.

Images