JP2010061244A - Application storage device and control method - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To transmit/receive data for each of a plurality of applications with high secrecy. <P>SOLUTION: Each memory bank of an application storage part 203 includes: an ID storage part, a service specific key storage part, a service program storage part, and a service data storage part. An encryption processing part 201 constructs an encryption communication path with the service provision device by use of a service-specific public key, encrypts service data by use of shared common keys Rh, Rc, and transmits/receives them. A control part 202 searches the application storage part 203 based on a service ID received from a service provision device. When a memory bank including the ID storage part storing the service ID is detected, the control part 202 extracts the public key stored in the service specific key storage part of the memory bank, and provides it to the encryption processing part 201. When the encryption processing part 201 executes key exchange processing and constructs the encryption communication path with the service provision device, the control part 202 receives an application from the service program storage part of the corresponding memory bank and starts it. <P>COPYRIGHT: (C)2010,JPO&INPIT

Description

  The present invention relates to a protection technique for data transmitted and received between an application program (hereinafter referred to as an application) that realizes a specific service, a device that stores data for the application, and a device that controls the application.

In recent years, IC cards with high security (hereinafter also referred to as application storage devices) have become widespread. Some of such IC cards support a plurality of applications such as a prepaid function and an entrance / exit management function. The IC card realizes a desired service by verifying a certificate given to each application that realizes a function (hereinafter also referred to as a service) and allowing only an application whose validity is confirmed to be stored. You can add apps securely. (For example, Patent Document 1)
JP 2004-334542 A

  Among the applications stored in the IC card, for example, data unique to a service (such as an application control protocol) with a device that provides a service (hereinafter also referred to as a service providing device) such as updating of payment information in a prepaid function ( Some of them implement a specific service by transmitting and receiving data (hereinafter also referred to as service data). Since such service data requires high confidentiality, when storing multiple applications on a single IC card, not only is the legitimacy confirmed when storing the application, but also the service data transmitted / received by a single application is stored. It is preferable that it can be concealed and protected from other apps.

  This invention is made | formed in view of such a condition, and it aims at providing the control method which can implement | achieve transmission / reception of the service data for every some application with high confidentiality.

  One embodiment of the present invention is a storage device. The storage device is unique to the first service between the first identification information for identifying the first service among a plurality of services and the first service providing device for providing the first service. Grouping the first application program for realizing the first service by transmitting / receiving the first service data, the first encryption key unique to the first service, and the first service data, A storage unit that stores data in a first storage area selected from among a plurality of storage areas and a first service providing apparatus that uses the first encryption key and that is unique to the first service. A cryptographic processing unit configured to perform cryptographic processing on the first service data in order to construct one cryptographic communication channel and transmit / receive the first service data via the first cryptographic communication channel; Said When the activation of the first application program is requested from the service providing apparatus, the contents of the plurality of storage areas are determined based on the first identification information transmitted from the first service providing apparatus for the request. The first storage area is identified from the first storage area, the encryption processing unit is controlled to construct the first encryption communication path with the first encryption key stored in the first storage area, and the first When the first encryption communication path is constructed, the first application program is started, and control is performed so as to permit access of the first application program to the first service data stored in the first storage area. The gist is to include a control unit.

  Among the plurality of services, there is a second service that transmits the first service information including the first identification information, the first application program, and the first encryption key to the storage device. The storage unit includes a second application program that receives the first service information from a second service providing apparatus that provides the second service, and a second application program that is unique to the second service. 2 encryption keys are grouped and stored in a second storage area defined in advance among a plurality of storage areas, and the encryption processing unit provides the second service using the second encryption key. In order to construct a second encrypted communication path unique to the second service with the apparatus and to transmit / receive the first service information via the second encrypted communication path, the first service information When the second service program is requested to start the second application program, the control unit executes a cryptographic process on the service information, and performs a second storage from the plurality of storage areas. An area is specified, and the encryption processor is controlled to construct a second encryption communication path with the second encryption key stored in the second storage area, and the second encryption communication path is When constructed, the second application program is activated to receive the first service information from the second service providing apparatus, and the first service information is stored in the first storage area. It is desirable to control the storage unit.

  Another aspect of the present invention is a control method. This control method is specific to the first service between the first identification information for identifying the first service among a plurality of services and the first service providing apparatus that provides the first service. A first application program for transmitting and receiving the first service data to realize the first service, a first encryption key unique to the first service, and the first service data, Unique to the first service between the first step of storing in the first storage area selected from among the storage areas and the first service providing apparatus using the first encryption key A second step of constructing a first encryption communication path and performing encryption processing on the first service data in order to transmit and receive the first service data via the first encryption communication path; When the first service providing device requests activation of the first application program, the plurality of the plurality of the plurality of the plurality of the plurality of the plurality of the first application programs are requested based on the first identification information transmitted from the first service providing device for the request. A first storage area is specified from among the storage areas, and the encryption processing unit is controlled to construct the first encryption communication path with the first encryption key stored in the first storage area. At the same time, when the first encrypted communication path is constructed, the first application program is started, and access of the first application program to the first service data stored in the first storage area is permitted. The gist of the present invention is to include a third step of controlling to do so.

  Among the plurality of services, there is a second service that transmits the first service information including the first identification information, the first application program, and the first encryption key to the storage device. The first step includes a second application program that receives the first service information from a second service providing device that provides the second service, and is specific to the second service. The second encryption keys are grouped and stored in a predetermined second storage area among a plurality of storage areas, and the second step uses the second encryption key to store the second encryption key. A second encrypted communication path unique to the second service is established with the service providing apparatus, and the first service information is transmitted / received via the second encrypted communication path. Cryptographic processing is performed on the first service information. In the third step, when the second service providing apparatus requests activation of the second application program, the plurality of storage areas are stored. A second storage area is identified from the inside, and the second step is controlled to construct a second encrypted communication path with the second encryption key stored in the second storage area, and When the second encrypted communication path is established, the second application program is activated to receive the first service information from the second service providing apparatus, and the first storage area stores the first service information in the first storage area. Preferably, the first step is controlled to store service information.

  According to the present invention, transmission / reception of data for each of a plurality of applications can be realized with high confidentiality.

  The outline will be described before the present invention is specifically described. Since an embodiment of the present invention provides a specific service in cooperation with an application, a service providing apparatus that controls the application, and an application or a specific service that realizes a specific service in cooperation with the service providing apparatus. The present invention relates to an information system having an application storage device that stores unique service data.

  An application stored in the application storage device implements a specific service by transmitting and receiving predetermined service data to and from the service providing device. The application storage device can store applications and service data corresponding to a plurality of services, and the predetermined service data transmitted and received between the service providing devices corresponding to one service includes information unique to the user. Or money information. For this reason, high confidentiality is required not only for third parties not involved in transmission / reception of predetermined data, but also between a plurality of applications. Therefore, the application storage device and the service providing device in the embodiment of the present invention execute the following processing.

  The service is given a service ID for identifying the service, and is associated with a public key of the service-specific public encryption method and a corresponding service-specific secret key. The service providing apparatus stores a secret key unique to the service to be provided. The application storage device is associated with a public key and a secret key unique to the storage device. The application storage device stores a service ID and a service-specific public key of a service realized by the stored corresponding application. The service providing device transmits the service ID of the service to be provided to the application storage device, and the application storage device that has received the service ID identifies the corresponding service-specific public key and application based on the service ID. Then, using the specified service-specific public key and the storage device-specific public key and secret key, a key exchange is performed with the service providing apparatus by a public encryption method, and the common key is provided with the service providing apparatus. Share When the encrypted communication path is established with this common key, the application storage device activates the corresponding application. The service providing apparatus and the corresponding application transmit and receive predetermined service data via the previously established encrypted communication path in order to realize a specific service. The corresponding application stores the received service data, transmits the stored service data, or changes the stored service data based on the received service data.

  Through such processing, encrypted communication using a common key can be performed between the service providing apparatus and the corresponding application, and the confidentiality of data transmitted and received can be improved.

  FIG. 1 is a conceptual diagram showing a configuration of an information system 1 according to an embodiment of the present invention. The information system 1 includes a service providing device 10, an application storage device 20, and a service management server device 30.

  The service providing device 10 is, for example, a ticket gate, communicates with the application storage device 20 to exchange service data, and determines the boarding section and updates the balance of electronic money stored in the application storage device 20. To do. Further, it communicates with the service management server device 30 as necessary to upload internal accumulated data (for example, communication history with the application storage device 20 and billing data) to the service management server device 30 or illegally. Or download a revoke list for eliminating the app storage device 20.

  The application storage device 20 is, for example, an IC card, and stores service data such as data for confirming a boarding section or electronic money balance and an application for updating the service data in cooperation with the service providing device 10.

  The service management server device 30 is, for example, a billing server that manages electronic money prepaid by a user via a ticket gate.

  FIG. 2 is a conceptual diagram of a communication model showing a communication protocol executed by the application storage device 20 in a hierarchical structure. The communication partner is the service providing apparatus 10.

  In the following, for convenience of explanation, it is assumed that one service providing apparatus 10 controls one application to realize one service, and the service providing apparatuses corresponding to the applications a to c are service providing apparatuses 10a to 10c, respectively. The description will be made as 10c.

  The lowermost layer of the communication model is a physical layer, which executes a protocol for establishing a physical connection on a transmission medium. For example, when IEEE 802.11g, which is a wireless LAN (Local Area Network) standard, is applied as a transmission method, OFDM (Orthogonal Frequency Division Multiplexing) is executed.

  The upper layer of the physical layer is a data link layer, which executes a protocol for restricting access to the transmission medium. When applying the above-mentioned IEEE 802.11g, CSMA / CA (Carrier Sense Multiple Access with Collision Avoidance) is executed.

  In the above description, the wireless LAN is applied to the physical layer and the data link layer. However, the present invention is not limited to this, and IEEE 802.3, which is a standard for wired LAN, and other transmission media, for example, a transmission method using a human body as a transmission medium. You may apply.

  A secure protocol is executed in the upper layer of the data link layer. That is, the common key Rh generated by the service providing device 10 and the common key Rc generated by the application storage device 20 are exchanged by executing a predetermined key exchange process, and the common key is exchanged between the service providing device 10 and the corresponding application. Share Rh and Rc. The key exchange process will be described later.

  In a layer higher than the layer where the secure protocol is executed, a dedicated encryption communication path is established for each service. The service providing apparatus 10 that implements a specific service and the corresponding application execute an application control protocol via the encrypted communication path.

  Hereinafter, for convenience of explanation, the service providing apparatus 10 corresponding to the service i is referred to as a service providing apparatus 10i, and the service data corresponding to the service i is referred to as service data i.

  In FIG. 2, the application a corresponding to the service providing apparatus 10a that provides the service a executes a control protocol for transmitting and receiving the service data a to and from the service providing apparatus 10a, and manages the service data a. . The service data a is data held on the user side in providing the service a and varies depending on the type of service.

  In addition, the application b corresponding to the service providing apparatus 10b that provides the service b executes a control protocol for transmitting and receiving the service data b to and from the service providing apparatus 10b, and manages the service data b. Furthermore, an application c and service data c correspond to the service providing apparatus 10c that provides the service c.

  At this time, the service providing apparatus 10 compatible application encrypts and transmits / receives the service data using the shared common keys Rh and Rc.

  Here, the case where the application a of the application storage device 20 in FIG. 2 encrypts and transmits service data to and from the corresponding service providing device 10a will be specifically described. The service providing device 10a generates a common key Rh “a”, the application storage device 20 generates a common key Rc “a”, and the common key generated by the other party is shared by the secure protocol. Shall.

  The service providing apparatus 10a concatenates the service data Data to be transmitted and the common key Rc “a”, and uses the authenticator-added data Rh “a” || Data with the common key Rh “a” generated by itself. Generate. Then, the data with the authenticator is encrypted with the common key Rc “a” of the application “a” to generate encrypted data E (Rc “a”, Rh “a” || Data), and is transmitted to the application “a”. Here, the symbol “||” indicates concatenation of data. E indicates an encryption function, and E (Rc “a”, Rh “a” || Data) indicates that data Rh “a” || Data with an authenticator is encrypted with the common key Rc “a”. Indicates. For encryption of data with an authenticator, for example, a common key cryptosystem such as AES (Advanced Encryption Standard) is used.

  The application a decrypts the received encrypted data E (Rc “a”, Rh “a” || Data) with Rc “a” of its own common key, and the data Rh “a” || Data with the authenticator Take out. The application a extracts the authenticator from the data with the authenticator, compares it with the common key Rh “a” of the service providing apparatus 10a, and confirms the validity of the transmitted data Data.

  In this way, by adding the common key generated by the other party to the data to be transmitted as an authenticator, and encrypting and transmitting with the common key generated by itself, the confidentiality of the data is ensured and the validity of the data Can be confirmed.

  Further, when the application storage device 20 shares a common key with the service providing device 10 using a service-specific public key for each service, the application storage device 20 activates only the application corresponding to the service. If the application is not activated, the service data stored in the application storage device 20 to provide the service is not accessed. Thereby, when applications and service data corresponding to a plurality of services are stored in the application storage device 20, it is possible to prevent leakage of service data between applications.

  In the above description, one service providing apparatus 10 controls one application to realize one service. However, the service providing apparatus 10 may control a plurality of applications.

  Further, the above description is an example of the application storage device 20 corresponding to three services (application a, application b, and application c), but the number and types of applications in the application storage device 20 are not limited. Absent. Depending on the purpose, one or more arbitrary apps can be implemented.

  In the above description, the application stored in the application storage device 20 is activated, the service data corresponding to the application is transmitted and received, and the service data is updated. However, the service-specific public key is updated, and the application itself May be updated. In other words, the application recording device 20 stores the application specified by the service ID in the memory bank (details will be described later) in the application storage unit that stores the application specified by the service ID via the encrypted communication path established by the service specific public key specified by the service ID. These can be updated by transmitting and receiving all the data stored in.

  FIG. 3 is a conceptual diagram showing a correspondence relationship between a service assigned with “i” as a service ID, a public key KPsv “i” of a public key cryptosystem assigned to the service, and a secret key Kpsv “i” corresponding thereto. It is. As shown in FIG. 3, the public key KPsv “i” is stored in the application storage device 20, and the corresponding secret key Kpsv “i” is stored in the service providing server device 10. The public key KPsv “i” stored in the application storage device 20 is digitally signed with the private key Kpr of the certificate authority, which is a third party organization, in order to confirm the validity. As the electronic signature, for example, DSA (Digital Signature Algorithm) is used. The application storage device 20 that stores the public key KPsv “i” also stores the public key KPr of the certificate authority in order to verify its validity with an electronic signature.

  FIG. 4 is a conceptual diagram showing the configuration of the service providing apparatus 10. The service providing apparatus 10 includes an interface unit 100, an encryption processing unit 101, a control unit 102, a data storage unit 103, and a communication module unit 104. The interface unit 100 controls data transmission / reception with the service management server device 30.

  The cryptographic processing unit 101 performs cryptographic processing necessary for executing a secure protocol with the application storage device 20 and a control protocol via a cryptographic communication path. The control unit 102 controls the entire service providing apparatus 10 in order to realize a specific service.

  The data storage unit 103 sequentially stores service data and communication history transmitted / received via the communication module unit 104. The stored data is transferred to the service management server device 30 at a specific timing (for example, 8:00 am every day). The communication module unit 104 transmits / receives data to / from the application storage device 20.

  FIG. 5 is a conceptual diagram showing the configuration of the cryptographic processing unit 101. The cryptographic processing unit 101 includes a storage unit 1010, a key exchange processing unit 1011, a data processing unit 1012, a random number generation unit 1013, and a certificate verification unit 1014.

  The storage unit 1010 includes a certificate authority public key storage unit 10100 that stores a certificate authority public key KPr for verifying a certificate digitally signed by the certificate authority, and a private key Kpsv unique to the service “i” realized by the service providing apparatus 10. A service unique key storage unit 10101 for storing “i” is included.

  The key exchange processing unit 1011 includes a first encryption unit 10110, a second encryption unit 10111, and a first decryption unit 10112, and executes a key exchange process combining a common key encryption method and a public encryption method. For example, RSA is used as a public encryption method for key exchange. As a common key encryption method for key exchange, for example, AES is used.

  The first encryption unit 10110 encrypts the second common key Rh received from the random number generation unit 1013 with the unique public key KPc of the application storage device 20 received from the certificate verification unit 1014, and generates the second encrypted information Ep ( KPc, Rh). Then, the generated second encryption information is output to the second encryption unit 10111. Here, Ep indicates that the encryption function is based on RSA.

  The second encryption unit 10111 encrypts the first common key Rc received from the second decryption unit with the second common key Rh received from the random number generation unit 1013, and generates the third encrypted information Es (Rh, Rc). To do. Here, Es indicates a common key encryption function, and specifically indicates that it is based on AES.

  The second encryption unit 10111 receives the second encryption information from the first encryption unit 10110, concatenates it with the third encryption information, and sets the second challenge information Ep (KPc, Rh) || Es (Rh, Rc) Is generated.

  The first decryption unit 10112 retrieves the first encrypted information from the first challenge information, decrypts it with the private key Kpsv “i” unique to the service “i” retrieved from the service unique key storage unit 10101, and the first common key Rc Take out. Then, the extracted first common key Rc is output to the second encryption unit 10111 and the data processing unit 1012.

  The data processing unit 1012 includes a data encryption unit 10120 and a data decryption unit 10121, and executes data processing necessary for encrypted communication based on the common key encryption method. For example, AES is used as a common key encryption method for data processing.

  The data encryption unit 10120 concatenates the second data Data to be transmitted and the second common key Rh received from the random number generation unit 1013, and uses the second common key Rh as the second authenticator, and data Rh | Generate Data. Then, the data with the second authenticator is encrypted with the first common key Rc received from the first decryption unit 10112 to generate second encrypted data Es (Rc, Rh || Data).

  The data decryption unit 10121 decrypts the first encrypted data with the first common key Rh received from the random number generation unit 1013, and extracts the first data with authenticator Rc || Data. Then, the first authenticator Rc and the first data Data are separated from the data with the first authenticator, and the first authenticator Rc and the first common key Rc received from the first decryption unit 10112 are compared, The validity of one data Data is confirmed.

  The random number generation unit 1013 generates a random number using a predetermined random number algorithm, generates a second common key Rc from the generated random number, and outputs the second common key Rc to the key exchange processing unit 1011 and the data processing unit 1012.

  The certificate verification unit 1014 confirms the validity of the storage device specific public key certificate extracted from the first challenge information with the certificate authority public key KPr. If the validity is confirmed, the unique public key KPc of the application storage device 20 is extracted from the storage device unique public key certificate and output to the key exchange processing unit 1011.

  FIG. 6 is a conceptual diagram showing the configuration of the application storage device 20. The application storage device 20 includes a communication module unit 200, an encryption processing unit 201, a control unit 202, and an application storage unit 203. The communication module unit 200 transmits / receives data to / from the communication module unit 104 of the service providing apparatus 10.

  The cryptographic processing unit 201 performs cryptographic processing necessary for executing a secure protocol with the service providing apparatus 10 and a control protocol via a cryptographic communication path. The control unit 202 reads the corresponding application from the application storage unit 203 and executes it in order to realize a specific service. The application storage unit 203 stores a plurality of applications.

  FIG. 7 is a conceptual diagram showing the configuration of the cryptographic processing unit 201. The cryptographic processing unit 201 includes a storage unit 2010, a key exchange processing unit 2011, a data processing unit 2012, and a random number generation unit 2013.

  The storage unit 2010 includes a storage device-specific public key certificate storage unit 20100 that stores a certificate digitally signed by the certificate authority with respect to the certificate body including the unique public key KPc of the application storage device 20, and a public key KPc. A storage device unique key storage unit 20101 that stores a secret key Kpc to be paired is included.

  The key exchange processing unit 2011 includes a first decryption unit 20110, a second decryption unit 20111, and a first encryption unit 20112.

  The first decryption unit 20110 extracts the second encrypted information from the second challenge information, and decrypts the second encrypted information with the unique secret key Kpc of the application storage device 20 extracted from the storage device unique key storage unit 20101. The second common key Rh is taken out. Then, the extracted second common key Rh is output to the second decryption unit 20111 and the data processing unit 2012.

  The second decryption unit 20111 decrypts the third encrypted information extracted from the second challenge information with the second common key Rh received from the first decryption unit, and extracts the first common key Rc. Then, the validity of the second common key Rh received from the first decryption unit is confirmed by comparing with the first common key Rc received from the random number generation unit 2013. Thereby, it is authenticated that the transmission source of the second challenge information is the service providing apparatus 10 corresponding to the predetermined service.

  The first encryption unit 20112 takes out the certificate C (kr, KPc) from the storage device specific public key certificate storage unit 20100. Here, C is an electronic signature function, and C (Kr, KPc) is a private key Kr of the certificate authority, and indicates that the certificate body including the unique public key KPc of the application storage device 20 is electronically signed. . For example, DSA is used as the electronic signature.

  The first encryption unit 20112 receives the provision of the service “i” specific public key KPsv “i” from the application storage unit 203, encrypts the first common key Rc received from the random number generation unit 2013, and generates the first encryption information Ep (KPsv “i”, Rc) is generated. Then, the certificate C (kr, KPc) and the first encrypted information are concatenated to generate first challenge information C (kr, KPc) || Ep (KPsv “i”, Rc).

  The data processing unit 2012 includes a data encryption unit 20120 and a data decryption unit 20121, and executes data processing necessary for encrypted communication based on the common key encryption method.

  The data encryption unit 20120 concatenates the first data Data to be transmitted and the first common key Rc received from the random number generation unit 2013, and uses the first common key Rc as the first authenticator data Rc | Generate Data. Then, the data with the first authenticator is encrypted with the second common key Rh received from the first decryption unit 20110 to generate the first encrypted data Es (Rh, Rc || Data).

  The data decryption unit 20121 decrypts the second encrypted data with the first common key Rc received from the random number generation unit 2013, and extracts the second data with authenticator Rh || Data. Then, the second authenticator Rh and the second data Data are separated from the data with the second authenticator, and the second authenticator Rh is compared with the second common key Rh received from the first decryption unit 20110. (2) Check the validity of the data Data.

  The random number generation unit 2013 generates a random number using a predetermined random number algorithm, generates a first common key Rc from the generated random number, and outputs the first common key Rc to the key exchange processing unit 2011 and the data processing unit 2012.

  FIG. 8 is a conceptual diagram showing a configuration of the application application storage unit 203 that can mount the three applications (application a, application b, and application c) shown in FIG. The application storage unit 203 includes memory banks corresponding to the number of applications that can be installed. In FIG. 8, the number of applications that can be installed is 3, which includes three memory banks 2030, 2031, and 2032.

  The application storage unit 203 assigns one application to one memory bank. Here, it is assumed that app a is assigned to memory bank 2030, app b is assigned to memory bank 2031, and app c is assigned to memory bank 2032. And an application memorize | stores the service data transmitted / received between the service provision apparatuses 10 in the memory bank to which self was allocated. Furthermore, the application storage unit 203 performs control so that an application assigned to a certain memory bank cannot access another memory bank. Thereby, leakage of service data between applications can be prevented.

  The memory bank 2030 includes an ID storage unit 20300 that stores a service ID of the service “a” to which the application a corresponds, a service unique key storage unit 20301 that stores a public key KPsv “a” unique to the service “a”, and the application a itself. Includes a service program storage unit 20302 for storing service data, and a service data storage unit 20303 for storing service data a transmitted to and received from the data providing apparatus 10 in order to provide services such as billing data. Similarly, the memory bank 2031 includes an ID storage unit 20310, a service unique key storage unit 20311, a service program storage unit 20312, and a service data storage unit 20313. The memory bank 2032 includes an ID storage unit 20320 and a service unique key storage unit 20321. A service program storage unit 20322 and a service data storage unit 20323.

  Next, a method for starting the application i corresponding to the service i will be briefly described. When the control unit 202 receives the service ID “i” from the service providing apparatus 10 i via the communication module unit 200, the control unit 202 searches the application storage 203. Specifically, the ID storage unit of each memory bank is confirmed, and it is confirmed whether or not there is a memory bank in which the received service ID “i” is stored. When the memory bank storing the service ID “i” exists, the public key KPsv “i” unique to the service “i” stored in the service unique key storage unit of the memory bank is provided to the encryption processing unit 201. If it does not exist, the service providing apparatus 10i that has transmitted the service ID cannot respond to the service i provided, and the process is terminated.

  When the encryption processing unit 201 executes key exchange processing and constructs an encryption communication path with the service providing apparatus 10i, the control unit 202 receives the application i from the service program storage unit of the corresponding memory bank and starts it. When the encryption communication path cannot be established with the service providing apparatus 10i, the control unit 202 ends the process.

  The application i activated by the control unit 202 encrypts and transmits the service data i to and from the service providing apparatus 10i via the communication module 200 and the encryption processing unit 201 in order to realize the service i. At this time, the control unit 202 transmits the service data i read from the service data storage unit of the corresponding memory bank to the service providing apparatus 10i, and the service data i received from the service providing apparatus 10i is the service of the corresponding memory bank. Store in the data storage.

  The operation of the information system 1 having the above configuration will be described. 9 and 10 are flowcharts showing the procedure of the key exchange process.

  The control unit 102 of the service providing apparatus 10 transmits the service ID “i” of the service to be realized to the application storage device 20 (S100). The control unit 202 of the application storage device 20 that has received the service ID “i” (S101) searches the memory bank of the application storage unit 203 based on the service ID “i”, and stores the service ID “i”. It is confirmed whether or not there is a memory bank including (S102). If there is no memory bank including the ID storage unit storing the service ID “i” (N in S102), the control unit 102 cannot cope with the service, and thus terminates the process abnormally. If it exists (Y in S102), the service-specific public key KPsv “i” corresponding to the service ID “i” stored in the service-specific key storage unit of the memory bank is extracted (S103), and the cryptographic processing unit 201 And instructing the generation of the first challenge information. The cryptographic processing unit 201 generates the first common key Rc (S104), the storage device-specific public key certificate unique to each application storage device 20, and the service-specific public key KPsv “i” received from the control unit 202. Is used to generate first challenge information (S105) and output it to the control unit 202. The control unit 202 that has received the first challenge information transmits the first challenge information to the service providing apparatus 10 (S106).

  The control unit 102 of the service providing apparatus 10 that has received the first challenge information outputs the first challenge information to the cryptographic processing unit 101 and instructs the generation of the second challenge information (S107). The cryptographic processor 101 extracts the storage device specific public key certificate from the first challenge information, and verifies the certificate with the public key of the certificate authority (S108). At this time, if the revocation list received from the service management server device 30 is stored in the data storage unit 203 of the service providing device 10, it is also checked whether or not the certificate has been revoked. If the certificate is invalid or revoked (N in S108), a verification error is notified to the control unit 102, and the key exchange process is terminated abnormally. If the certificate is valid and not revoked (Y in S108), the first challenge information is decrypted with the service-specific private key (S109), and the first shared key Rc is extracted and shared (S110). Next, a second common key Rh is generated (S111), second challenge information is generated (S112), and output to the control unit 102. The control unit 102 that has received the second challenge information transmits the second challenge information to the application storage device 20 (S113).

  Receiving the second challenge information, the control unit 202 of the application storage device 20 outputs the second challenge information to the encryption processing unit 201 and instructs to decrypt the first common key (S114). Receiving the second challenge information, the cryptographic processing unit 201 decrypts the second challenge information with the private key unique to the storage device (S115), and extracts the second common key. Further, the first common key is extracted from the second challenge information (S116), and compared with the first common key generated by itself, the validity of the extracted second common key Rh is verified. As a result of the comparison, if the two do not match, it is determined that the extracted second common key is not valid (N in S117), a verification error is notified to the control unit 202, and the key exchange process ends abnormally. If they match, it is determined that the extracted second common key is valid (Y in S117), the second common key Rh is shared (S118), and the key exchange process is terminated. Through such key exchange processing, a dedicated encryption communication path is established between the service providing apparatus 10 and the application storage apparatus 20 for each service.

  Next, a first modification of the present invention will be described. The first modification of the present invention also relates to an information system that performs dedicated encrypted communication for each service. In the description so far, two common keys Rc and Rh are shared between the service providing apparatus 10 and the application storage apparatus 20 by using a service specific public key and a service specific secret key assigned for each service. In the first modification of the present invention, two common keys Rc and Rh are shared by assigning a service-specific common key to the service providing apparatus 10 and the application storage apparatus 20. For this purpose, both the service providing apparatus 10 and the application storage apparatus 20 store the common key Ksv “i” unique to the service “i” realized by the application. At this time, the first challenge information is C (kr, KPc) || Es (Ksv “i”, Rc), and the first encrypted data is Es (Ksv “i”, Rc). As a result, since the opportunity for calculation in the public key cryptosystem is reduced, the time required for the entire key exchange process can be shortened.

  Since the cryptographic processing unit 101 of the information system 1 according to the first modification of the present invention is of the same type as the cryptographic processing unit 101 shown in FIG.

  The storage unit 1010 includes a certificate authority public key storage unit 10100 and a service unique key storage unit 10101 for storing a certificate authority public key KPr for verifying a certificate digitally signed by the certificate authority. The service unique key storage unit 10101 stores a common key Ksv “i” unique to the service “i” provided by the service providing apparatus 10.

  The key exchange processing unit 1011 includes a first encryption unit 10110, a second encryption unit 10111, and a first decryption unit 10112. The first decryption unit 10112 extracts the first encrypted information Es (Ksv “i”, Rc) from the first challenge information C (kr, KPc) || Es (Ksv “i”, Rc), and stores the service unique key Decrypted with the common key Ksv “i” unique to the service “i” extracted from the unit 10101 to extract the first common key Rc. Then, the extracted first common key Rc is output to the second encryption unit 10111 and the data processing unit 1012.

  The second encryption unit 10111 encrypts the first common key Rc included in the first challenge information with the second common key Rh received from the random number generation unit 1013, and generates the third encrypted information Ec (Rh, Rc). To do.

  The data processing unit 1012 includes a data encryption unit 10120, and executes data encryption processing necessary for encrypted communication based on the common key encryption method.

The configuration of the cryptographic processing unit 201 of the information system 1 according to the first modification of the present invention is the same type as the cryptographic processing unit 201 shown in FIG.
The first encryption unit 20112 extracts the certificate C (kr, KPc) from the storage device unique public key certificate storage unit 20100 and receives the provision of the common key Ksv “i” unique to the service “i” from the application storage unit 203. The first common key Rc received from the random number generation unit 2013 is encrypted to generate first encryption information Ep (KPsv “i”, Rc). Then, the certificate C (kr, KPc) and the first encrypted information are concatenated to generate first challenge information C (kr, KPc) || Ep (KPsv “i”, Rc).

  The application storage unit 203 of the information system 1 according to the first modification of the present invention is the same type as the application storage unit 203 shown in FIG. The service unique key storage units 20310, 20311, and 20312 in the three memory banks 2030, 2031, and 2032 are replaced with the service “i” unique public key KPsv “i” realized by the application. The service-specific common key Ksv “i” is stored.

  Since the procedure of the key exchange process related to the information system according to the modified example having the above configuration is the same as the flowchart showing the key exchange procedure of the information system 1, the description is omitted. In addition to the above description, both the service-specific public key KPsv “i” and the service-specific secret key Kpsv “i” may be replaced with the service-specific common key Ksv “i”.

  As described above, in the information system 1 according to the first modified example of the present invention, the public key encryption process is replaced with the common key encryption, and the first common key Rc is encrypted with the common key assigned for each service and transmitted. Therefore, it is possible to shorten the time required for the key exchange process while ensuring the security strength.

  Next, a second modification of the present invention will be described. The second modification of the present invention also relates to an information system that performs dedicated cryptographic communication for each service. In the description so far, RSA is used as a public encryption method for key exchange processing. In the second modification of the present invention, ECDH (Elliptic Curve Diffie-Hellman) is used as a public encryption method for key exchange processing. ECDH can achieve the same level of security strength with a shorter key length than RSA. In general, since the computation time of the public key cryptosystem depends on the key length, the time required for the entire key exchange process can be shortened by using ECDH.

  The encryption processing unit 101 of the information system 1 according to the second modification of the present invention is the same type as the encryption processing unit 101 shown in FIG.

  The key exchange processing unit 1011 includes a first encryption unit 10110, a second encryption unit 10111, and a first decryption unit 10112, and executes a key exchange process combining a common key encryption method and a public encryption method. ECDH is used as a public encryption method for key exchange.

  The first encryption unit 10110 multiplies the base point G on the elliptic curve by the second random number Rh ′ received from the random number generation unit 1013 on the elliptic curve, and the second encryption information Ep (KPc, Rh) = Rh ′. * G is generated. Further, the unique public key KPc of the application storage device 20 received from the second certificate verification unit 1014 and the second random number Rh ′ are multiplied on an elliptic curve to generate a second common key Rh = Rh ′ * KPc. . Then, the generated second encryption information and the second common key are output to the second encryption unit 10111. Here, Ep indicates that the encryption function is based on ECDH. In addition, multiplication on the elliptic curve is indicated by “*”.

  The first decryption unit 10112 extracts the first encrypted information Ep (KPsv “i”, Rc) = Rc ′ * G from the first challenge information, and the private key unique to the service “i” extracted from the service specific key storage unit Multiplying Kpsv “i” on the elliptic curve, the first common key Rc = F (Kpsv “i” * Rc ′ * G) = F (Rc ′ * (Kpsv “i” * G)) = F (Rc ′ * KPsv “i”) is taken out. Here, F is a derivation function for deriving a scalar (one-dimensional value) from two-dimensional coordinates on an ellipse. Then, the extracted first common key Rc is output to the second encryption unit 10111 and the data processing unit 1012. Here, there is a relational expression of KPsv “i” = Kpsv “i” * G between the secret key Kpsv “i” unique to the service “i” and the public key KPsv “i” unique to the service “i”. The last formula modification of the first common key Rc uses this relational expression.

  The encryption processing unit 201 of the information system 1 according to the second modification of the present invention is the same type as the encryption processing unit 201 shown in FIG.

  The first decryption unit 20110 extracts the second encrypted information Ep (KPc, Rh) = Rh ′ * G from the second challenge information, and the unique secret of the application storage device 20 extracted from the storage device unique secret key storage unit 20101 The key Kpc is multiplied on the elliptic curve to generate the second common key Rh = F (Kpc * Rc ′ * G) = F (Rc ′ * (Kpc * G)) = F (Rc ′ * KPc). Then, the generated second common key Rh is output to the second decryption unit 20111 and the data processing unit 2012. Here, there is a relational expression of KPc = Kpc * G between the private key Kpc unique to the application storage device 20 and the public key KPc unique to the application storage device 20, and the last expression of the second common key Rh. The transformation uses this relational expression.

  The second decryption unit 20111 decrypts the third encrypted information extracted from the second challenge information with the second common key Rh received from the first decryption unit, and extracts the first common key Rc. Then, the validity of the second common key Rh received from the first decryption unit is confirmed by comparing with the first common key Rc received from the first encryption unit 20112. As a result, the service providing apparatus 10 that is the transmission source of the second challenge information is authenticated.

  The first encryption unit 20112 takes out the certificate C (kr, KPc) from the storage device specific public key certificate storage unit 20100. Here, C is an electronic signature function, and C (Kr, KPc) is a private key Kr of the certificate authority, and indicates that the certificate body including the unique public key KPc of the application storage device 20 is electronically signed. . For example, ECDSA (Elliptic Curve DSA) is used as the electronic signature.

  The first encryption unit 20112 multiplies the base point G on the elliptic curve by the first random number Rc ′ received from the random number generation unit 2013 on the elliptic curve, and first encryption information Ep (KPsv “i”, Rc) = Rc '* G is generated. Further, the public key KPsv “i” unique to the service “i” is extracted from the application storage unit 203 and multiplied by the first random number Rc ′ on the elliptic curve to obtain the first common key Rc = F (Rc ′ * KPsv “i”. ) Is generated. Then, the first common key is output to the second decryption unit 20111 and the data processing unit 2012.

  The data processing unit 2012 includes a data encryption unit 20120 and a data decryption unit 20121, and executes data processing necessary for encrypted communication based on the common key encryption method.

  The data encryption unit 20120 concatenates the first data Data to be transmitted and the first common key Rc received from the first encryption unit 20112, and uses the first common key Rc as the first authenticator data Rc. || Data is generated. Then, the data with the first authenticator is encrypted with the second common key Rh received from the first decryption unit 20110 to generate the first encrypted data Es (Rh, Rc || Data).

  The data decryption unit 20121 decrypts the second encrypted data using the first common key Rc received from the first encryption unit 20112, and takes out the second authenticator-added data Rh || Data. Then, the second authenticator Rh and the second data Data are separated from the data with the second authenticator, the second authenticator Rh is compared with the second common key Rh received from the first decryption unit, and the second Check the validity of the data Data.

The application storage unit 203 of the information system 1 according to the second modification of the present invention is the same as the application storage unit 203 shown in FIG. 8, and thus the description thereof is omitted. As described above, according to the second modification of the present invention. Since the information system 1 uses ECDH as the public encryption method for the key exchange process, the key length can be shortened while maintaining the security strength, and the time required for the entire key exchange process can be shortened.

  In the information system 1 according to the second modification of the present invention, the derivation function F is described as being unique to the system, but at least one of the derivation functions F in the two ECDH processes is derived as derivation specific to the service service. The function F “i” may be used. In this case, the service-specific derivation function F “i” is stored in the memory bank corresponding to the service “i”, and is provided to the cryptographic processing unit 101 in the same manner as the service-specific public key KPsv “i”. That's fine.

  Further, in all the information systems 1 described above, an authenticator and an encryption key are determined for each transmission and reception of data. That is, when the service data is transmitted from the service providing device 10 to the application storage device 20, the second common key Rh is used as an authenticator, the data with the authenticator is encrypted using the first common key Rc, and the service is transferred from the application storage device 20 to the service. When receiving data, the first common key Rc was used as an authenticator, and the data with an authenticator was encrypted using the second common key Rh. However, the method of using the two common keys is not limited to this. In any case, data with an authenticator obtained by concatenating the authenticator and data with one common key can be encrypted with the other common key.

  Next, a third modification of the present invention will be described. The third modification of the present invention also relates to an information system that performs dedicated encrypted communication for each service. The second challenge information in the information system 1 according to the second modification of the present invention is obtained by concatenating the second encrypted information Ep (KPc, Rh) and the third encrypted information Es (Rh, Rc). Met. In the third modification of the present invention using ECDH, it is assumed that the second challenge information is composed only of the second encrypted information. Then, it is assumed that the validity is determined by comparing the third encrypted information with the first common key Rc generated by the application storage device 20 at the first service data communication. In this case, in service data communication, the first common key Rc is used as an authenticator, and the second common key Rh is used as a data encryption key.

  FIG. 11 is a conceptual diagram showing the configuration of the encryption processing unit 101 of the service providing apparatus 10 of the information system 1 according to the third modification of the present invention. Since the type is the same as that of the cryptographic processing unit 101 shown in FIG. 5, the same number is assigned to the same structure in the figure, and the description is omitted as necessary.

  The key exchange processing unit 1011 includes a first encryption processing unit 10110 and a first decryption processing unit 10112. Although the operation of each component is the same as that of the component shown in FIG. 5, the first common key Rc extracted by the first decryption unit 10112 is output only to the data processing unit 1012.

  The data processing unit 1012 includes a data encryption unit 10120 and a data decryption unit 10121, and executes data processing necessary for encrypted communication based on the common key encryption method.

  The data encryption unit 10120 generates second authentication data Rc || Data using the second data Data to be transmitted and the first common key Rc received from the first decryption unit 10112 as an authentication code. Then, the data with the second authenticator is encrypted with the second common key Rh received from the random number generation unit 1013 to generate second encrypted data Es (Rh, Rc || Data).

  The data decryption unit 10121 decrypts the first encrypted data with the first common key Rh received from the random number generation unit 1013, and extracts the first data with authenticator Rc || Data. Then, the authenticator Rc and the first data Data are separated from the data with the first authenticator, and the first authenticator Rc and the first common key Rc received from the first decryption unit 10112 are compared, and the first data Check the validity of Data.

  FIG. 12 is a conceptual diagram showing a configuration of the encryption processing unit 201 of the application storage device 20 of the information system 1 according to the third modification of the present invention. Since the type is the same as that of the cryptographic processing unit 201 shown in FIG.

  The key exchange processing unit 2011 includes a first decryption processing unit 201110 and a first encryption processing unit 20112.

  The data processing unit 2012 includes a data encryption unit 20120 and a data decryption unit 20121, and executes data processing necessary for encrypted communication based on the common key encryption method.

  The data encryption unit 20120 concatenates the first data Data to be transmitted and the first common key Rc received from the random number generation unit 2013, and uses the first common key Rc as the first authenticator data Rc | Generate Data. Then, the data with the first authenticator is encrypted with the second common key Rh received from the first decryption unit 20110 to generate the first encrypted data Es (Rh, Rc || Data).

  The data decryption unit 20121 decrypts the second encrypted data with the second common key Rh received from the first decryption unit 20110, and extracts the second data with the authenticator Rc || Data. Then, the authenticator Rc and the second data Data are separated from the data with the second authenticator, and the authenticator Rc is compared with the first common key Rc received from the first decryption unit to verify the validity of the second data Data. Check sex. The data processing unit 2012 determines that the service providing apparatus 10 is not reliable when the validity is not confirmed in the first data communication, and notifies the control unit 202 to stop the subsequent processing.

  The key exchange processing procedure related to the information system having the above configuration is the same as the key exchange processing procedure shown in FIGS. 9 and 10 except that step S116 and step S117 are omitted. .

  As described above, in the information system 1 according to the third modified example of the present invention, the second challenge information does not include the third encrypted information, so that it is possible to reduce the cryptographic operation that requires the key exchange process. Time can be shortened.

  This modification can be applied to all the information systems 1 described above, and the mutual authentication by key exchange is completed after waiting for the first data communication from the service providing device 20 to the application storage device 10. . Therefore, the first data communication needs to be data communication from the service providing device 20 to the application storage device 10. However, this does not apply to data communications that do not require protection.

  Next, a fourth modification of the present invention will be described. The fourth modification of the present invention also relates to an information system that performs dedicated encrypted communication for each service. In the above description, it is assumed that an application is stored in each memory bank of the application storage unit 203 of the application storage device 20. In the fourth modified example of the present invention, an application writing function is provided in the memory bank. Thereby, for example, when the application storage device 20 is incorporated in a mobile phone, the application can be rewritten via the mobile phone network. In addition, it is possible to provide a user with no service, that is, without storing an application. The fourth modification of the present invention provides a function for rewriting an application assuming such a case. Therefore, the application storage device 20 of the information system 1 according to the fourth modified example of the present invention rewrites the application with the service providing device 10A for rewriting the application via the mobile phone network in addition to the configuration shown in FIG. A connection unit 204 for constructing an encryption communication path dedicated to the service is provided.

  FIG. 13 is a conceptual diagram showing a configuration of the application storage 203 of the information system 1 according to the fourth modification example of the present invention. In the figure, since it is the same type as the application storage unit 201 shown in FIG. 8, parts having the same structure are given the same numbers, and description thereof will be omitted as necessary.

  The application storage unit 203 includes memory banks 2030, 2031, 2032, and 2033.

  The memory bank 2033 is a memory bank for storing an application corresponding to a special service that provides a function of rewriting the application, and the service ID of the rewriting service corresponds to “A”. The memory bank 2033 includes a service unique key storage unit 20331 for storing the public key KPsv “A” unique to the application rewriting service and a service program storage unit 20332 for storing the application for application rewriting service.

  The service rewriting service application has a service ID “i”, a service-specific public key KPsv “i”, and an application “i” for the ID storage unit, service unique key storage unit, and service program storage unit of another memory bank, respectively. "Is a program to write. Further, the service rewriting application erases the contents of the service data storage unit included in the memory bank to be rewritten, and also initializes the service data storage unit.

  Next, the application rewriting operation will be briefly described. When the control unit 202 receives the service ID “A” from the service providing apparatus 10 A for application rewriting via the connection unit 204, the control unit 202 stores the service “A” unique stored in the service unique key storage unit 20331 of the memory bank 2033. The public key KPsv “A” is provided to the encryption processing unit 201.

  When the key exchange process by the encryption processing unit 201 is completed and the encryption communication path is established with the service providing apparatus 10A, the control unit 202 receives the application for the application rewriting service from the service program storage unit 20332 of the memory bank 2033. to start. If the encrypted communication path cannot be constructed, the process ends.

  The application for the application rewriting service activated by the control unit 202 transmits / receives encrypted service data to / from the service providing apparatus 10A via the connection unit 204 and the encryption processing unit 201, and the application rewriting service. Is realized. Specifically, the application for the application rewriting service includes the memory bank number to be rewritten from the service providing apparatus 10A, the service ID “i” of the new service i to be written to the memory bank, and the service-specific public key KPsv. The “i” and the application “i” are received and updated by overwriting the ID storage unit, service unique key storage unit, and service program storage unit in the memory bank to be targeted. Next, the contents of the service data storage unit are erased. When the service data “i” is received at this time, the received service data “i” is written in the service data storage unit included in the memory bank to be processed.

  As described above, in the information system 1 according to the fourth modified example of the present invention, when an application storage device is incorporated in a communication device typified by a mobile phone, the application can be rewritten via the communication network. An application corresponding to the selected service can be written in the application storage device, and the convenience for the user is improved.

  In the above description, the application storage device 20 includes the connection unit 204 as an interface dedicated for application rewriting. However, the application module may be rewritten by the communication module unit 200, and conversely, via the connection unit 204. You may make it start another application.

  The application rewriting function according to the fourth modification of the present invention can be applied to all the information systems 1 described above.

  According to such an embodiment of the present invention, the following operational effects can be enjoyed.

  (1) The application storage unit 203 has a plurality of memory banks, and each memory bank stores an ID storage unit that stores a service ID, a service unique key storage unit that stores a service-specific public key, and an application itself. The encryption processing unit 201 includes a service program storage unit and a service data storage unit that stores service data transmitted to and received from the service providing device 10 that provides a service. An encryption communication path is established between the service keys, and the service data is encrypted using the shared common keys Rh and Rc. The control unit 202 searches the application storage unit 203 based on the service ID received from the service providing apparatus. If there is a memory bank including an ID storage unit that stores a service ID, the service unique key of that memory bank is stored. When the cryptographic communication path is established with the service providing apparatus by executing the key exchange process in the cryptographic processing unit 201 and extracting the public key stored in the cryptographic processing unit 201, the service of the corresponding memory bank Receive the app from the program storage and launch it. For this reason, since a dedicated encryption communication path can be established with the corresponding service providing apparatus 10 for each application, security related to data to be transmitted / received among a plurality of applications stored in the same application storage device 20 Strength can be increased.

  (2) The application storage unit 203 includes a memory bank including a service program storage unit that stores an application for an application rewriting service and a service unique key storage unit that stores a public key unique to the application rewriting service. When the service ID is received from the service providing apparatus 10A for rewriting, the public key stored in the service unique key storage unit of the corresponding memory bank is provided to the cryptographic processing unit 201, and the cryptographic processing unit 201 executes key exchange processing. Then, when the encryption communication path is established with the service providing apparatus 10A, the application rewriting service application is received from the service program storage unit of the corresponding memory bank and activated, the memory bank to be rewritten is specified, and the encryption communication is performed. New service received from the service providing apparatus 10A via the road Service ID, etc., to update the contents of the specified memory bank. For this reason, since the application can be rewritten via the communication network, the application corresponding to the service selected by the user can be written in the application storage device, and the convenience for the user is improved.

  Although the best mode for carrying out the present invention has been described above, the present invention is not limited to the configuration of this embodiment, and the scope of application of the present invention defined in the claims. As long as the functions of the configuration of the above-described embodiment can be achieved, various modifications are possible.

The conceptual diagram which shows the structure of the information system 1 in embodiment of this invention Conceptual diagram of application model Conceptual diagram showing the correspondence between the public key assigned to each service and the corresponding private key Conceptual diagram showing the configuration of the service providing apparatus 10 Conceptual diagram showing the configuration of the cryptographic processing unit 101 Conceptual diagram showing the configuration of the application storage device 20 Conceptual diagram showing the configuration of the encryption processing unit 201 Conceptual diagram of the configuration of the application storage unit 202 Flow chart showing the procedure of key exchange processing Flow chart showing the procedure of key exchange processing The conceptual diagram which shows the structure of the encryption processing part 101 which concerns on a 3rd modification. The conceptual diagram which shows the structure of the encryption processing part 201 which concerns on a 3rd modification. The conceptual diagram which shows the structure of the application storage 203 which concerns on a 4th modification.

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 Service provision apparatus 20 Application storage apparatus 30 Service provision server apparatus 100 Communication module part 101 Cryptographic process part 102 Control part 1010 Storage part 1011 Key exchange process part 1012 Data processing part 1013 Random number generation part 1014 Certificate verification part 10100 Certificate authority public key Storage unit 10101 Service unique key storage unit 10110 First encryption unit 10111 Second encryption unit 10112 First decryption unit 10120 Data encryption unit 10121 Data decryption unit 200 Communication module unit 201 Encryption processing unit 203 Application storage unit 2030, 2031, 2032, 2033 Memory bank 20100 Storage device unique public key certificate storage unit 20101 Storage device unique key storage unit 20111 First decryption unit 20111 Second decryption unit 20112 First encryption unit 20120 Data encryption unit 2 121 data decoding unit 20300,20310,20320 ID storage unit 20301,20311,20321,20331 service unique key storage unit 20302,20312,20322,20332 service program (application) storage 20303,20313,20323 service data storage unit

Claims (4)

A first service unique to the first service between first identification information for identifying the first service from among a plurality of services and a first service providing apparatus that provides the first service A first application program that realizes the first service by transmitting and receiving data, a first encryption key that is unique to the first service, and the first service data are grouped and stored in a plurality of storage areas. A storage unit for storing the first storage area selected from the inside,
The first cryptographic communication path unique to the first service is established with the first service providing apparatus using the first cryptographic key, and the first cryptographic communication path is used to configure the first cryptographic communication path. An encryption processing unit that performs encryption processing on the first service data in order to transmit and receive the first service data;
When the activation of the first application program is requested from the first service providing apparatus, the plurality of storages are based on the first identification information transmitted from the first service providing apparatus for the request. A first storage area is identified from among the areas, and the encryption processing unit is controlled to construct the first encryption communication path with the first encryption key stored in the first storage area. When the first encrypted communication path is established, the first application program is started, and access of the first application program to the first service data stored in the first storage area is permitted. A control unit for controlling
A storage device comprising: The plurality of services include a second service that transmits the first identification information, the first application program, and first service information including the first encryption key to the storage device. And
The storage unit includes a second application program that receives the first service information from a second service providing apparatus that provides the second service, and a second encryption key that is unique to the second service. Grouped into a plurality of storage areas and stored in a predetermined second storage area;
The encryption processing unit establishes a second encryption communication path unique to the second service with the second service providing apparatus using the second encryption key, and also uses the second encryption key. In order to send and receive the first service information via a communication path, an encryption process is performed on the first service information,
When the second service providing apparatus requests activation of the second application program, the control unit specifies a second storage area from the plurality of storage areas, and the second storage area The encryption processing unit is controlled to construct a second encryption communication path with the second encryption key stored in the second encryption key, and when the second encryption communication path is constructed, the second application program is Start and receive the first service information from the second service providing apparatus, and control the storage unit to store the first service information in the first storage area,
The storage device according to claim 1. A first service unique to the first service between first identification information for identifying the first service from among a plurality of services and a first service providing apparatus that provides the first service A first application program that realizes the first service by transmitting and receiving data, a first encryption key unique to the first service, and the first service data are grouped and stored in a plurality of storage areas. A first step of storing in a first storage area selected from:
The first cryptographic communication path unique to the first service is established with the first service providing apparatus using the first cryptographic key, and the first cryptographic communication path is used to configure the first cryptographic communication path. A second step of performing cryptographic processing on the first service data to send and receive first service data;
When the activation of the first application program is requested from the first service providing apparatus, the plurality of storages are based on the first identification information transmitted from the first service providing apparatus for the request. A first storage area is identified from among the areas, and the encryption processing unit is controlled to construct the first encryption communication path with the first encryption key stored in the first storage area. When the first encrypted communication path is established, the first application program is started, and access of the first application program to the first service data stored in the first storage area is permitted. A third step of controlling
The control method characterized by including. The plurality of services include a second service that transmits the first identification information, the first application program, and first service information including the first encryption key to the storage device. And
The first step includes: a second application program that receives the first service information from a second service providing apparatus that provides the second service; and a second encryption unique to the second service. Keys are grouped and stored in a second predetermined storage area among a plurality of storage areas;
In the second step, a second encrypted communication path unique to the second service is established with the second service providing apparatus using the second encryption key, and the second encryption key is used. In order to send and receive the first service information via an encrypted communication path, cryptographic processing is performed on the first service information,
In the third step, when activation of the second application program is requested from the second service providing apparatus, a second storage area is specified from the plurality of storage areas, and the second step The second step is controlled so as to construct a second cryptographic communication path with the second cryptographic key stored in the storage area, and when the second cryptographic communication path is constructed, the second cryptographic communication path is constructed. Start the application program, receive the first service information from the second service providing apparatus, and control the first step to store the first service information in the first storage area ,
The control method according to claim 3.

Images