JP2011135401A - Program, electronic equipment, server system and information providing system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a program, electronic equipment, a server system and an information providing system, which can prevent content, which is not encrypted, from appearing in each node when differentiating pieces of information in reception and in transmission. <P>SOLUTION: The program makes a computer function as: a receiving part 112 which receives first double encrypted information from a transmission source node; a decryption part 118 which decrypts the first double encrypted information by a unique key of the transmission source node to obtain content unique encrypted information; an encryption part 116 which encrypts the content unique encrypted information by a unique key of itself to generate second double encrypted information; and a storage part 140 which stores the second double encrypted information. The content unique encrypted information is information obtained by encrypting content information by a content unique key corresponding to the content, and the first double encrypted information is information obtained by encrypting the content unique encrypted information by the unique key of the transmission source node. <P>COPYRIGHT: (C)2011,JPO&INPIT

Description

  The present invention relates to a program, an electronic device, a server system, an information providing system, and the like.

  Conventionally, when digital data is distributed, unauthorized use is suppressed by encrypting information. For example, in Patent Document 1, transfer over three generations (information is transferred from a game machine equipped with an information storage medium to another game machine, and transferred from the transferred game machine to another game machine) is possible. The technology to do is shown. However, in communication using P2P (Peer to Peer), the received information is transmitted as it is, and the same information is distributed in large quantities on the network. For this reason, it has been pointed out that the code may be decrypted by unauthorized users.

  The above problem can also be solved by decrypting the received information once and encrypting it again using another key, but in this case, unencrypted content is generated at each node on the network. Therefore, there is a problem that it becomes possible to store and use the content even on a third party PC or the like that does not have the right to use the content.

JP 2006-323451 A

  According to some aspects of the present invention, a program, an electronic device, a server system, and a program that can prevent unencrypted content from appearing in each node after differentiating information between reception and transmission An information provision system can be provided.

  One aspect of the present invention includes a receiving unit that receives first double-encrypted information from a source node, and decrypts the first double-encrypted information with a unique key of the source node, A decryption unit for obtaining encrypted information; an encryption unit for encrypting the content-specific encryption information with its own unique key to generate second double-encrypted information; and the second double-encryption A computer functions as a storage unit for storing information, and the content-specific encrypted information is information obtained by encrypting content information with a content-specific key corresponding to content, and the first double-encrypted information is The content-specific encryption information is related to a program that is information obtained by encrypting the content-specific encryption information with a unique key of the source node.

  In one aspect of the present invention, first double encryption information is received from a source node. Then, after the first double encryption information is decrypted with the unique key of the transmission source node, it is encrypted again with its own unique key, and the obtained second double encryption information is stored in the storage unit. The As a result, for example, information can be made different at the time of reception and at the time of storage, and it becomes possible to make it difficult for an unauthorized user to decipher the code. Further, since the double encrypted information is decrypted only once, for example, it is possible to suppress the appearance of unencrypted content at each node.

  In one embodiment of the present invention, the computer may function as a transmission unit that reads the second double-encrypted information from the storage unit and transmits the read information to a transmission destination node.

  In this way, it is possible to transmit information different from that at the time of reception to the destination node without performing encryption processing at the time of transmission.

  In one aspect of the present invention, the decryption unit reads the second double-encrypted information from the storage unit when using the content information, decrypts the second double-encrypted information with the unique key, and decrypts the content-specific information. The content information may be acquired by acquiring encryption information and decrypting the acquired content-specific encryption information with the content-specific key.

  In this way, it is possible to decrypt the information with its own unique key and content unique key, obtain unencrypted information, and use it as content information.

  Also, in one aspect of the present invention, the content-specific encryption information includes additional information that is not encrypted with respect to the content body encryption information obtained by encrypting the content information with the content-specific key. The information acquired by adding may be sufficient.

  In this way, information obtained by adding additional information to the content body encryption information can be handled as content-specific encryption information.

  In the aspect of the invention, the first double-encrypted information may include the content-specific encrypted information, which is information obtained by adding the additional information to the encrypted content information, and a unique key of a transmission source node. The second double-encrypted information is obtained by encrypting the content-specific encrypted information, which is information obtained by adding the additional information to the encrypted content information, using its own unique key. The information may be converted into information.

  In this way, information obtained by encrypting information obtained by adding additional information to the content body encrypted information is handled as the first double encrypted information and the second double encrypted information. Is possible.

  In one aspect of the present invention, the computer may function as an arithmetic unit that extracts the additional information from the content-specific encrypted information and determines the validity of the information.

  In this way, it is possible to determine the validity of the information from the additional information in the content-specific encrypted information, and for example, it is possible to detect tampering in bit units, replacement in block units, and the like. At this time, the validity can be verified without acquiring the content unique key. Therefore, unencrypted information does not appear at each node, and the confidentiality of the information can be improved.

  In the aspect of the invention, the additional information may include first additional information, and the first additional information may be content specifying information and block specifying information in the content.

  In this way, the content specifying information and the block specifying information in the content can be handled as the first additional information which is one of the additional information.

  In the aspect of the invention, the additional information includes second additional information, and the encryption unit adds the first additional information to the content body encrypted information. On the other hand, the second additional information may be obtained by performing a predetermined calculation.

  In this way, the second additional information can be obtained by performing a predetermined operation such as obtaining a hash value on the information obtained by adding the first additional information to the content body encrypted information. become.

  According to another aspect of the present invention, a receiving unit that receives first double encryption information from a transmission source node, the first double encryption information is decrypted with a unique key of the transmission source node, A decryption unit that acquires content-specific encryption information; an encryption unit that encrypts the content-specific encryption information with its own unique key to generate second double-encrypted information; and the second duplex A storage unit for storing encryption information, wherein the unique encryption information is information obtained by encrypting content information with a content unique key corresponding to content, and the first double encryption information is The present invention relates to an electronic device that is information obtained by encrypting the content-specific encrypted information with a unique key of the transmission source node.

  According to another aspect of the present invention, the electronic device receives the first double encryption information from the transmission source node. Then, after the first double encryption information is decrypted with the unique key of the source node, it is encrypted again with its own unique key, and the obtained second double encryption information is stored in the storage unit. As a result, for example, information can be made different at the time of reception and at the time of storage, and it becomes possible to make it difficult for an unauthorized user to decipher the code. Further, since the double encrypted information is decrypted only once, for example, it is possible to suppress the appearance of unencrypted information in each electronic device.

  In another aspect of the present invention, the content-specific encryption information includes additional information that is not encrypted with respect to the content body encryption information obtained by encrypting the content information with the content-specific key. And may include an arithmetic unit that extracts the additional information from the content-specific encryption information and determines the validity of the information.

  In this way, additional information can be handled. Further, it is possible to determine the validity of the information without acquiring the content unique key. Furthermore, information that is not encrypted does not appear in each electronic device, and the confidentiality of the information can be improved.

  In another aspect of the present invention, content-specific encrypted information is generated by encrypting content information with a content-specific key corresponding to the content, and the generated content-specific encrypted information is encrypted with its own unique key. An encryption unit that generates server double encryption information by storing, a storage unit that stores the server double encryption information, and reads the server double encryption information from the storage unit, And a transmission unit that transmits to the server system.

  According to another aspect of the present invention, the server system encrypts the content information with the content unique key, and then encrypts the content information with its own unique key to obtain server double encrypted information. The acquired server double encryption information is stored in the storage unit. This makes it possible to prepare information that has been double-encrypted as distribution information.

  In another aspect of the present invention, the encryption unit encrypts the content information with the content unique key to acquire content body encryption information, and encrypts the acquired content body encryption information. The content-specific encryption information may be acquired by adding additional information that has not been added.

  In this way, information obtained by adding additional information to the content body encryption information can be handled as content-specific encryption information.

  In another aspect of the present invention, the server double encryption information encrypts the content-specific encryption information, which is information obtained by adding the additional information to the encrypted content information, with its own unique key. May be the information.

  In this way, it is possible to handle information obtained by encrypting information obtained by adding additional information to the content main body encryption information as server double encryption information.

  Another aspect of the present invention includes first to Nth electronic devices (N is an integer of 2 or more) and a server system, and each electronic device of the first to Nth electronic devices transmits A receiving unit that receives first double-encrypted information from the source node, and decryption that decrypts the first double-encrypted information with the unique key of the source node and obtains content-specific encrypted information An encryption unit that encrypts the content-specific encrypted information with its own unique key to generate second double-encrypted information, and a storage unit that stores the second double-encrypted information, The first double encryption information is information obtained by encrypting the content-specific encryption information with a unique key of a transmission source node, and the server system converts the content information into content-specific information corresponding to the content. Content-specific encryption by encrypting with a key An encryption unit that generates server double encryption information by generating information and encrypting the generated content-specific encryption information with its own unique key, and a storage unit that stores the server double encryption information And a transmission unit that reads out the server double encryption information from the storage unit and transmits the server double encryption information to a transmission destination node.

  According to another aspect of the present invention, the information providing system includes first to Nth electronic devices and a server system. In each of the first to Nth electronic devices, the first double encryption information is received from the transmission source node. The received first double-encrypted information is decrypted with the unique key of the transmission source node and then encrypted again with its own unique key, and the obtained second double-encrypted information is stored in the storage unit Is done. As a result, for example, information can be made different at the time of reception and at the time of storage, and it becomes possible to make it difficult for an unauthorized user to decipher the code. In addition, since the double encrypted information is decrypted only once, for example, it is possible to prevent unencrypted information from appearing in each node.

  Further, the server system encrypts the content information with the content unique key, and then encrypts the content information with its own unique key to obtain server double encrypted information. The acquired server double encryption information is stored in the storage unit. This makes it possible to prepare information that has been double-encrypted as distribution information.

  In another aspect of the present invention, each of the first to Nth electronic devices reads the second double-encrypted information from the storage unit and transmits the read information to a destination node. Part may be included.

  In this way, it is possible to transmit information different from that at the time of reception without performing encryption processing at the time of transmission.

  In another aspect of the present invention, the content-specific encryption information includes additional information that is not encrypted with respect to the content body encryption information obtained by encrypting the content information with the content-specific key. And the electronic devices of the first to Nth electronic devices extract the additional information from the content-specific encryption information and determine the validity of the information. An arithmetic unit may be included.

  In this way, additional information can be handled. Further, it is possible to determine the validity of the information without acquiring the content unique key. In addition, unencrypted information does not appear at each node, and the confidentiality of the information can be improved.

  In another aspect of the present invention, the transmission unit of the server system reads the server double encryption information from the storage unit of the server system, and the first of the first to Nth electronic devices. You may transmit with respect to the electronic device of i (1 <= i <= N).

  If it does in this way, it will become possible for a server system to transmit server double encryption information to arbitrary electronic equipment among electronic equipment which constitutes an information service system.

  In another aspect of the present invention, the reception unit included in the i-th electronic device receives the server double encryption information from the server system, and the decryption unit included in the i-th electronic device includes: The server double encryption information is decrypted with a unique key of a server system to obtain the content specific encryption information, and an encryption unit included in the i-th electronic device stores the content specific encryption information in its own The i-th double encryption information may be generated by encryption with a unique key, and the storage unit included in the i-th electronic device may store the i-th double encryption information.

  In this way, any electronic device that has received the server double encryption information decrypts the server double encryption information with the unique key of the server system, and further encrypts it with its own unique key. i's double encryption information can be acquired. And it becomes possible to memorize | store the acquired double encryption information in a memory | storage part.

  In another aspect of the invention, the transmission unit included in the i-th electronic device reads the i-th double-encrypted information from the storage unit, and includes the first to N-th electronic devices. You may transmit to the jth (j ≠ i) electronic device.

  In this way, it is possible to transmit encrypted information different from that at the time of transmission to electronic devices other than itself among the electronic devices constituting the information providing system without performing encryption processing at the time of transmission. Become.

Client system configuration example. A system configuration example of a server system. Explanatory drawing of the flow of information. Explanatory drawing of the flow of information. Explanatory drawing of the flow of information. Explanatory drawing of the data transfer between a server system and a client. An example of processing in the server system. Example of processing when receiving at the client. Explanatory drawing of the data transfer between clients. Example of processing when receiving at the client. Explanatory drawing of the data transfer at the time of content use. An example of processing when using content. The flowchart of the data transmission in a server system. The flowchart of the data reception in a client. The flowchart of data utilization with a client.

  Hereinafter, this embodiment will be described. In addition, this embodiment demonstrated below does not unduly limit the content of this invention described in the claim. In addition, all the configurations described in the present embodiment are not necessarily essential configuration requirements of the present invention.

1. First, the outline of the method according to the present embodiment will be described with reference to FIGS. 3, 4, and 5.

  3, 4, and 5 show the flow of information. As shown in FIG. 3, information is transferred from a server system (server) that stores content (distribution target information) to a computer (computer program product) serving as a client (PC in a narrow sense). This information (data) is double-encrypted content using two different keys, decrypted by the client's CPU or the like (becomes encrypted only once), and re-encrypted ( After being double-encrypted again, it is stored in the client storage device (HDD in a narrow sense).

  Here, the contents are multimedia contents such as video contents and music contents distributed from a server system, for example. Alternatively, it may be TV or radio broadcast content or game device game content. The game content is game data such as a game program, item data, character data, and map data.

  Encryption is the conversion of data according to a predetermined rule in order to prevent eavesdropping and tampering when digital data is transmitted and received through a network. In this embodiment, as a specific encryption method, a common key encryption method such as DES (Data Encryption Standard) or FEAL (the Fast Data Encipherment Algorithm) is used.

  In the present embodiment, since communication is assumed to be based on a P2P (Peer to Peer) relay system (bucket relay system, cache and tos system), information is transferred between clients as shown in FIG. Is called. In this case, the transmission side transmits the information read from the HDD (hard disk drive) as it is. As described above, when the data is stored in the HDD, since it has been double-encrypted by re-encryption, it can be transmitted as it is. The receiving side performs decryption / re-encryption processing, and then saves it in the HDD.

  FIG. 5 shows a case where content is used in the client. Here, it is assumed that the content is video content and is displayed on a display device (display). As described above, the transferred information is always stored in the HDD in a double encrypted state. Therefore, as shown in FIG. 5, information is read from the HDD, decrypted twice using two different keys, and transferred to the display.

  As shown in the above information flow, there is no difference from a normal P2P network in terms of transfer from a server system to a client, transfer between clients, and use of content at the client. However, the present embodiment is characterized in that when information is received, it is decrypted and then encrypted again using a key different from the key used for decryption.

  As a result, the received information and information stored in the HDD (that is, information that may be transmitted to the network) are different. Therefore, since it is possible to prevent the same information from being distributed on the network, it becomes possible to make the decryption of the code very difficult.

  Another feature is that after double encryption, decryption is performed only once except during use.

  Thus, it is possible to prevent unencrypted content from being generated in each client, while realizing different information at the time of reception and transmission.

  Hereinafter, the details of the embodiment will be described. Here, a P2P network including a server system and a client is taken as an example. That is, the first encryption (encryption with a content unique key described later) in the double encryption is performed by the server system. However, the encryption with the content unique key is not limited to the server system, and those skilled in the art can easily understand that any node that is the content distribution source may be used.

2. System Configuration FIG. 1 shows a system configuration example of a client according to the present embodiment, and FIG. 2 shows a configuration example of a server system according to the present embodiment. The information providing system of this embodiment is realized by a plurality of clients 100 (electronic devices in a broad sense), a server system 200, and the like. The client 100 and the server system 200 are connected to the network 10 by a communication unit 160 and a communication unit 260. The client 100, the server system 200, etc. are not limited to the configurations shown in FIGS. 1 and 2, and various modifications such as omitting some of these components or adding other components are possible. It is.

  The network 10 can include a public network such as a mobile communication network and the Internet network, or a fixed telephone network. The mobile communication network for communication connection with the client 100 is a mobile telephone network such as a CDMA (Code division multiple Access) method or a PDC (Personal Digital Cellular) method, a PDC-P (PDC-Packet) method, or the like. A mobile data network may be included. The network 10 can be realized by a WAN (Wide Area Network), a LAN (Local Area Network), or the like, regardless of wired or wireless.

  The client 100 is an electronic device having a communication function. Specifically, it is a PC, a workstation, a consumer game machine having a communication function, and the like, and has a function of communicating with other clients 100 and the server system 200 via the network 10.

  The server system 200 has a function of communicating with a plurality of clients 100 via the network 10. The server system 200 may be composed of a plurality of servers. Specifically, a database server, a node management server, a machine unique key management server, and the like can be considered.

  The client 100 includes a processing unit 110, an operation unit 130, a storage unit 140, a display unit 150, a communication unit 160, and an information storage medium 170. Various modifications such as omission of some of these components and addition of other components are possible.

  The processing unit 110 of the client 100 performs various processes based on operation information from the operation unit 130 and information received by the communication unit 160. The function of the processing unit 110 can be realized by hardware such as various processors (CPU and the like), ASIC (gate array and the like), a program, and the like.

  The operation unit 130 is used by the user to perform various operations of the client 100, and can be realized by various buttons, a GUI, and the like.

  The storage unit 140 serves as a work area for the processing unit 110, the communication unit 160, and the like, and its functions can be realized by a memory such as a RAM or an HDD (hard disk drive).

  The display unit 150 is for displaying various display screens and can be realized by, for example, a liquid crystal display or an organic EL display.

  The communication unit 160 communicates with other clients 100, the server system 200, and the like via the network 10.

  The information storage medium 170 (computer-readable medium) stores programs, data, and the like, and functions thereof by an optical disk (CD, DVD), HDD (hard disk drive), memory (ROM, etc.), and the like. realizable. The processing unit 100 performs various processes of the present embodiment based on a program (data) stored in the information storage medium. That is, the information storage medium includes a program (a program for causing a computer to execute the processing of each unit) for causing a computer (an apparatus including an operation unit, a processing unit, a storage unit, and an output unit) to function as each unit of the present embodiment. Remembered.

  Note that a program (data) for causing a computer to function as each unit of the present embodiment is transferred from the information storage medium (storage device) included in the server system 200 to the client 100 (electronic device) via the network 10 and the communication units 160 and 260. You may distribute. Use of an information storage medium by such a server system 200 (host device) can also be included in the scope of the present invention.

  The processing unit 110 of the client 100 includes a reception unit 112, a transmission unit 114, an encryption unit 116, a decryption unit 118, and a calculation unit 120.

  The receiving unit 112 performs a process for receiving information, and the transmitting unit 114 performs a process for transmitting information.

  The encryption unit 116 performs a process of encrypting information using the unique key of the client 100 itself. The decryption unit 118 decrypts information received using a machine unique key (specifically, a server unique key or a client unique key), or decrypts content-specific encrypted information described later using a content-specific key. Process to acquire content.

  The calculation unit 120 performs various calculations. Specifically, for example, processing for verifying the validity of the information is performed using additional information described later.

  The server system 200 includes a processing unit 210, a storage unit 240, and a communication unit 260. Various modifications such as omission of some of these components and addition of other components are possible.

  The processing unit 210 of the server system 200 performs various processes based on information received by the communication unit 260. The function of the processing unit 210 can be realized by hardware such as various processors (CPU and the like), ASIC (gate array and the like), a program, and the like.

  The storage unit 240 serves as a work area for the processing unit 210, the communication unit 260, and the like, and its functions can be realized by a memory such as a RAM, an HDD (hard disk drive), or the like.

  The communication unit 260 communicates with a plurality of clients 100 via the network 10.

  The processing unit 210 of the server system 200 includes a reception unit 212, a transmission unit 214, an encryption unit 216, a decryption unit 218, a node management unit 220, a machine unique key management unit 222, and a content unique key management unit 224.

  The receiving unit 212 performs processing for receiving information, and the transmitting unit 214 performs processing for transmitting information.

  The encryption unit 216 performs a process of double-encrypting the content using the content unique key and the server system's own unique key. The decryption unit 218 is not involved in the content transmission of the present embodiment, but performs a process of decrypting the encrypted information when transmitting / receiving the content unique key and the unique key of the server system itself.

  The node management unit 220 manages nodes. Specifically, for example, when information is requested from a certain client 100, processing for introducing another client holding the target information is performed.

  The machine unique key management unit 222 manages machine unique keys (specifically, server system unique keys and client unique keys). Specifically, when introducing another client described above, a process of transmitting the machine unique key of the client to the requesting client is performed.

  The content unique key management unit 224 manages a content unique key that is a unique key corresponding to the content. Specifically, based on user information stored in a user information storage unit 244 described later, it is determined whether or not the user has the right to use the content, and the content unique key is transmitted to the user who has the right to use Perform the process.

  The storage unit 240 of the server system 200 includes a content storage unit 242 and a user information storage unit 244.

  The content storage unit 242 stores a plurality of contents. The user information storage unit 244 stores information about the user, and is used to determine whether or not the user has a right to use the content.

  In the present embodiment described above, the reception unit 112 of the program operating on each node acquires the first double encryption information from the transmission source node. The decryption unit 118 decrypts the first double-encrypted information with the unique key of the transmission source node, and acquires content-specific encrypted information. Then, the encryption unit 116 encrypts the content-specific encrypted information with its own unique key, and acquires second double-encrypted information. The storage unit 140 stores the second double encryption information.

  Here, the content-specific encrypted information is information obtained by encrypting the content information with a content-specific key associated with the content, and corresponds to 310 in FIG. However, although additional information 1 and additional information 2 are added in FIG. 9A, information to which additional information is not added in a broad sense is also included in the content-specific encryption information.

  The first double-encrypted information is information obtained by encrypting the content-specific encrypted information with the unique key of the transmission source node, and corresponds to the double-encrypted information 330 in FIG. 9A. The second double encryption information is information obtained by encrypting the content specific encryption information with the unique key of the receiving node itself, and corresponds to the double encryption information 340 in FIG.

  Thereby, the first double encrypted information (received information) and the second double encrypted information (information stored in the storage unit 140) can be made different. Therefore, even when the second double-encrypted information is transmitted to the network, it is possible to suppress a situation in which the same information as the information at the time of reception is transmitted. Decoding can be difficult.

  In addition, in order to obtain the above effect, it is once decrypted, but the information obtained at that time is also encrypted (content-specific encrypted information encrypted with a content-specific key is obtained). A situation in which unencrypted information appears in each node can be suppressed.

  Also, the transmission unit 114 reads the second double encryption information from the storage unit 140 and transmits it to the transmission destination node.

  As a result, after double encryption, the information stored in the storage unit 140 (double encryption information 340 in FIG. 9B) is transmitted to the destination node (client 3 in FIG. 9B). It becomes possible to do. In addition, since encryption processing is performed at the time of reception in FIG. 9A, transmission can be performed without performing encryption processing at the time of transmission in FIG. 9B. Therefore, the consumption of machine power during transmission can be suppressed.

  Further, when using the content information, the decryption unit 118 reads the second double-encrypted information from the storage unit 140, decrypts it with its own unique key, and acquires the content-specific encrypted information. Then, the content-specific encrypted information is decrypted with the content-specific key, and unencrypted content information is acquired.

  As a result, when the content information is used, it is possible to perform decryption twice using its own unique key and the content unique key, and to obtain unencrypted content information. A specific data format is as shown in FIG.

  The content-specific encryption information may be information acquired by adding additional information that is not encrypted to the content body encryption information.

  Here, the content body encrypted information is information obtained by encrypting the content information with the content unique key, and corresponds to 308 in FIG. As described above, the content main body encryption information 308 is also included in the content-specific encryption information in a broad sense, but in a narrow sense, as shown in FIG. 7, information 310 added with additional information 1 and additional information 2 is added as content. It may be called unique encryption information.

  This makes it possible to handle information with additional information (specifically, ID1 that is content specifying information, ID2 that is block specifying information in the content, and a hash value HS) as content-specific encryption information.

  The first double-encrypted information may be information obtained by encrypting information obtained by adding additional information to the content body encrypted information (content-specific encrypted information in a narrow sense) with the unique key of the transmission source node. Good. The second double-encrypted information may be information obtained by encrypting information obtained by adding additional information to the content body encrypted information (content-specific encrypted information in a narrow sense) with the unique key of the receiving node itself. Good.

  This makes it possible to handle information obtained by encrypting content-specific encrypted information in a narrow sense with a machine-specific key as first double-encrypted information and second double-encrypted information. 6 to 12, all the information written as double encryption information is in a format including additional information.

  Further, the arithmetic unit 120 may extract additional information from the content-specific encryption information (content-specific encryption information in a narrow sense) and determine the validity of the information.

  As a result, when an attack such as tampering or replacement is received, it is possible to detect the attack. Therefore, it is possible to report to the administrator that an attack has been received, and to request reacquisition of information. Note that a content unique key is not required for the verification work of validity. In addition, since decryption using the content unique key is not performed, unencrypted content does not appear in each node, and the confidentiality of the content can be maintained. Specifically, it is recognized by the content unique key management server that there is an authority to use the content, and the content that has not been encrypted cannot be obtained except by the node that has obtained the content unique key.

  Of the additional information, the first additional information may be content specifying information and block specifying information in the content.

  As a result, it is possible to verify the validity using the content specifying information (ID1) and the block specifying information (ID2) in the content. As a result, it is possible to detect that unintended information has been sent due to a network failure, or to detect that information is exchanged in units of blocks in response to a third party attack.

  In addition, the encryption unit 116 performs a predetermined calculation on the information acquired by adding the first additional information (ID1 and ID2) to the content body encryption information, thereby obtaining the second additional information. You may ask for it.

  As a result, the second additional information can be used. Specifically, a hash value HS can be considered as the second additional information. The node that has received the information calculates the hash value HS ′ again, and can determine the validity based on whether HS and HS ′ match. At this time, since the hash value is obtained after ID1 and ID2 are assigned, it is possible to detect not only the content main body encrypted information part but also the bit-by-bit alteration of the first additional information.

  In the present embodiment, the receiving unit 112 of the electronic device (the client 100 in a narrow sense) acquires the first double encryption information from the transmission source node. The decryption unit 118 decrypts the first double-encrypted information with the unique key of the transmission source node, and acquires content-specific encrypted information. Then, the encryption unit 116 encrypts the content-specific encrypted information with its own unique key, and acquires second double-encrypted information. The storage unit 140 stores the second double encryption information.

  Thereby, the first double encryption (received information) and the second double encryption information (information stored in the storage unit 140) can be made different. Therefore, even when the second double-encrypted information is transmitted to the network, it is possible to suppress a situation in which the same information as the information at the time of reception is transmitted. Decoding can be difficult.

  The content-specific encryption information may be information acquired by adding additional information that is not encrypted to the content body encryption information. Then, the calculation unit 120 of the electronic device may extract additional information from the content-specific encryption information (content-specific encryption information in a narrow sense) and determine the validity of the information.

  This makes it possible to handle additional information. When an attack such as tampering or replacement is received, it is possible to detect the attack. Note that a content unique key is not required for the verification work of validity.

  In addition, in order to obtain the above effect, it is once decrypted, but the information obtained at that time is also encrypted (content-specific encrypted information encrypted with a content-specific key is obtained). A situation in which unencrypted information appears in each node (electronic device) can be suppressed.

  In this embodiment, the encryption unit 216 of the server system generates content-specific encrypted information (310 in FIG. 7) by encrypting the content information (300 in FIG. 7) with the content-specific key, and the content-specific encryption The server double encryption information (320 in FIG. 7) is obtained by encrypting the encryption information with the unique key of the server system. The storage unit 240 stores the server double encryption information, and the transmission unit 214 transmits the information to the transmission destination node.

  As a result, the server system accumulates information double-encrypted with different keys in the storage unit, and can transmit it to the destination node when requested.

  The encryption unit 216 may acquire content-specific encryption information by adding additional information that is not encrypted to the content body encryption information. Here, the content body encryption information is as described above.

  This makes it possible to handle information with additional information (specifically, ID1 that is content specifying information, ID2 that is block specifying information in the content, and a hash value HS) as content-specific encryption information.

  Further, the server double encryption information may be information obtained by encrypting information obtained by adding additional information to the content body encryption information (content-specific encryption information in a narrow sense) with a unique key of the server system.

  This makes it possible to handle information obtained by encrypting content-specific encrypted information in a narrow sense with a machine-specific key as server double-encrypted information.

  In this embodiment, the information providing system includes first to Nth electronic devices (first to Nth clients) and a server system. Here, the receiving unit 112 of each of the first to Nth electronic devices acquires the first double encryption information from the transmission source node. The decryption unit 118 decrypts the first double-encrypted information with the unique key of the transmission source node, and acquires content-specific encrypted information. Then, the encryption unit 116 encrypts the content-specific encrypted information with its own unique key, and acquires second double-encrypted information. The storage unit 140 stores the second double encryption information.

  The encryption unit 216 of the server system generates content-specific encrypted information (310 in FIG. 7) by encrypting the content information (300 in FIG. 7) with the content-specific key, and generates the content-specific encrypted information as unique to the server system. Server double encryption information (320 in FIG. 7) is obtained by encryption with a key. The storage unit 240 stores the server double encryption information, and the transmission unit 214 transmits the information to the transmission destination node.

  As a result, it is possible to configure an information providing system including a plurality of electronic devices having the above-described functions and a server system.

  In addition, the transmission unit 114 of each electronic device constituting the information providing system reads the second double encryption information from the storage unit 140 and transmits the second double encryption information to the transmission destination node.

  Thus, as described above, encryption processing is not performed at the time of transmission, and information can be transmitted in a state where consumption of machine power is suppressed.

  The content-specific encryption information may be information acquired by adding additional information that is not encrypted to the content body encryption information. Then, the arithmetic unit 120 included in each of the first to Nth electronic devices extracts additional information from the content-specific encryption information (content-specific encryption information in a narrow sense) and determines the validity of the information. May be.

  This makes it possible to handle additional information. When an attack such as tampering or replacement is received, it is possible to detect the attack. Note that a content unique key is not required for the verification work of validity.

  In addition, the transmission unit 214 of the server system 200 configuring the information providing system reads the server double encryption information from the storage unit 240 and transmits the server double encryption to any electronic device among the plurality of electronic devices. Send information.

  As a result, the server system becomes the information distribution source, and it becomes possible to transmit the server double encryption information to any electronic device constituting the information providing system.

  In addition, the decryption unit 118 included in the electronic device (referred to as the i-th electronic device) that has received the server double encryption information from the server system by the reception unit 112 uses the server system unique key. The content-specific encryption information is acquired by decrypting the encryption information. Then, the encryption unit 116 encrypts the content-specific encryption information with its own unique key, acquires the i-th double encryption information (double encryption information different from the server double encryption information), and stores it in the storage unit 140. Remember.

  As a result, any electronic device constituting the information providing system can receive the server double encryption information from the server system, decrypt the encrypted information with its own key, and obtain the double encryption information. It becomes possible. The obtained double encryption information is stored in the storage unit 140. That is, any electronic device constituting the information providing system can perform the reception process specific to the present embodiment described above.

  In addition, the transmission unit 114 included in the i-th electronic device (i-th client) performs the i-th duplex for the j-th (j ≠ i) electronic device among the first to N-th electronic devices. Send encrypted information.

  Thereby, any electronic device constituting the information providing system can transmit the i-th double-encrypted information stored in its own storage unit 140 to any electronic device other than itself. become.

3. Operation First, information transfer from the server system to the client will be described. The outline is as described above with reference to FIG. In the server system, the content is double-encrypted with two different keys and transmitted to the client. The received client performs decryption once and then encrypts it again with another key and stores it in the storage unit. This will be described in detail below with reference to FIGS.

  FIG. 6 shows an outline of the data format in the transfer from the server system to the client. The server system stores unencrypted content information 300. First, as shown at A1, the server system encrypts the content using the content unique key associated with the content, and acquires the content unique encryption information 310. Here, additional information 1 and additional information 2 are added to the content-specific encryption information 310. As described above, the content specifying information ID1, the block specifying information ID2 in the content, and the hash value HS can be considered as the additional information. Thereafter, as shown in A2, the content-specific encrypted information 310 is encrypted using the unique key of the server system, and the double-encrypted information 320 is obtained. Then, the obtained double encryption information 320 is transmitted to the client.

  The client receives the double encryption information 320, decrypts it using the unique key of the server system, and obtains the content-specific encryption information 310, as shown at A3. Here, it is conceivable that the unique key of the server system is received from the server system (specifically, for example, a machine unique key management unit). Thereafter, the validity of the information is verified using the additional information 2 added to the content-specific encrypted information 310. Then, as shown in A4, encryption is performed using the client's own unique key, and the double encryption information 330 is stored in the HDD.

  Here, the double-encrypted information 320 and the double-encrypted information 330 are different information, and even if the double-encrypted information 330 is transmitted to the network, the situation where the same information is distributed on the network can be suppressed. . Further, since the content-specific encrypted information 310, which is information decrypted by the client, is encrypted with the content-specific key, it can be prevented from being used by a person who does not have the right to use the content.

  Next, details of processing on the server system side will be described with reference to FIG. The figure on the right side of FIG. 7 shows the correspondence with the information in FIG. Further, the same numbers as those in FIG. 6 are assigned to the parts representing the same information as in FIG.

  The server system holds content information 300. First, as shown in B1, the content is encrypted with the content unique key. This is content-specific encryption information to which no additional information is added, and corresponds to the content body encryption information 308. ID1 and ID2 as additional information 1 are added to the content body encryption information 308 to obtain information corresponding to 309 (B2). ID1 is content specifying information, and ID2 is block specifying information in the content. For example, when representing the 30th block in the content with content number 80, ID1 = 80 and ID2 = 30.

  The hash value HS is calculated using the information 309 (B3), and the content-specific encryption information 310 is acquired by adding the calculated hash value to the information 309 (B4). At this time, ID1, ID2, and HS are not encrypted, and can be used as they are for verification of validity. Further, as shown in B5, the content-specific encrypted information 310 is encrypted using the unique key of the server system, and the double-encrypted information 320 is acquired.

  Although the additional information is added here to verify the validity, the additional information is not necessary if it is only for transferring information. Therefore, the content body encryption information 308 may be content-specific encryption information.

  Next, details of processing on the client side will be described with reference to FIG.

  The client receives the double encryption information 320, decrypts it using the unique key of the server system, and obtains the content-specific encryption information 310 as shown in B6. Since the information to which ID1, ID2, and HS are assigned is obtained here, the validity can be verified.

  As shown in B8, the validity is verified by calculating the hash value HS ′ again from the portion excluding the hash value HS (corresponding to the information 309) and comparing whether the values of HS and HS ′ are the same. . In FIG. 7, since HS is calculated after ID1 and ID2 are added, it is possible to detect not only the part corresponding to the content but also the case where ID1 and ID2 have been tampered with.

  Further, as shown in B7, the double encrypted information 330 is acquired by encrypting the content specific encrypted information 310 with the unique key of the client and stored in the storage unit.

  Next, data transfer between clients will be described. The outline is as described above with reference to FIG. The transmitting side transmits the information read from the HDD as it is, and the receiving side decrypts it using the unique key of the client 1, then re-encrypts it with its own unique key, and stores it in the HDD.

  FIG. 9A shows an outline of a data format in transfer from the client 1 to the client 2. The client 1 transmits the double encryption information 330 stored in the HDD as it is. Since encryption processing is not necessary here, machine power consumption can be reduced compared to encryption. Since the time of transmission means a time when information is requested from an arbitrary client, the timing cannot be managed by the transmission source client itself. For this reason, there is a possibility that other work that consumes machine power during transmission is being performed. Therefore, it can be said that there is a great advantage in the method of this embodiment that does not need to perform encryption processing at the time of transmission. Instead, it is necessary to perform encryption processing at the time of reception as will be described later. However, since the reception timing can be managed by the reception client itself, it is easy to deal with such cases as reception when the machine power is sufficient. The above points are particularly effective in distributing game programs and the like.

  As shown in C1, the client 2 receives the double encryption information 330, decrypts it using the unique key of the client 1, and obtains the content-specific encryption information 310. Here, it is conceivable that the unique key of the client 1 is acquired from the server system. Further, the client 2 verifies the validity using the additional information 2, and further encrypts the content-specific encrypted information 310 with its own key as shown in C2, thereby obtaining the double-encrypted information 340. . Since the double encryption information 330 and the double encryption information 340 are different information, it is possible to prevent the same information from being distributed on the network.

  Then, the client 2 transfers information to the client 3 as shown in FIG. In that case, the double encryption information 340 stored in the HDD is transmitted as it is. The reception process on the client 3 side is the same as the reception process of the client 2 described above.

  FIG. 10 shows details of the processing on the client 2 side, but processing similar to that in FIG. 8 is performed, and thus detailed description thereof is omitted. The only difference is that the double encryption information received is 330 and the double encryption information stored in the HDD is 340. Of course, verification of legitimacy is performed in the same manner.

  Next, the use of content on the client will be described. The outline is as described above with reference to FIG. The transferred information is always stored in the HDD in a double-encrypted state. Therefore, information is read from the HDD, decrypted twice, and transferred to, for example, a display.

  FIG. 11 shows an outline of a data format in content use at the client. The client reads the double encryption information 340 stored in the HDD, decrypts it with its own unique key, and obtains the content-specific encryption information 310 as indicated by E1. The validity is verified using ID1, ID2 and HS of the acquired content-specific encryption information 310. Further, as shown in E2, the content-specific encryption information 310 (more precisely, the content body encryption information 308 in the narrowly-defined content-specific encryption information 310) is decrypted with the content-specific key to obtain the content 300, For example, it is transmitted to the display for playback.

  Next, details of content use at the client will be described with reference to FIG. The double-encrypted information 340 stored in the HDD is read out and decrypted with the client's own unique key as indicated by F1, thereby obtaining the content-specific encrypted information 310 to which the additional information is added. Validity is verified using the additional information ID1, ID2, and HS.

  As described above, the validity is verified by calculating the hash value HS ′ again from the portion (information 309) excluding the hash value HS and comparing whether the values of HS and HS ′ are the same. Also, it is verified whether the information received using ID1 and ID2 is information scheduled to be received. The verification using ID1 and ID2 makes it possible to detect that an attack that replaces information in units of blocks is received.

  Further, as shown in F2, the content information 300 is obtained by decrypting the content-specific encryption information 310, which is obtained by removing the additional information ID1, ID2, and HS (corresponding to the content body encryption information 308) with the content-specific key. get. If the obtained content information 300 is video data, for example, it is used for reproduction. The content unique key can be obtained from the server system. The server system checks whether the user has the right to use the content based on the content unique key management unit and the user information storage unit, and transmits the content unique key only to the user who has the right to use.

4). Details of Processing Next, a detailed processing example of this embodiment will be described with reference to the flowcharts of FIGS.

FIG. 13 shows an example of a processing procedure in the server system 200. When the processing is started, first, reads the content information (hereinafter referred to as appropriate _{I 0)} from the content storage unit 242 of the storage unit 240 (S501). Further content-specific key management unit 224 reads the content-specific keys corresponding to the content information (hereinafter appropriately _{K 1} and denoted) (S502). The read I ₀ is encrypted with K ₁ (S503), and content-specific encryption information (hereinafter referred to as I ₁ as appropriate) is acquired (S504).

Next, the machine unique key management unit 222 reads the server system unique key (hereinafter referred to as K _{2 — 0} as appropriate) (S 505), encrypts I ₁ with K _{2 — 0} (S 506), and server double encryption information (hereinafter referred to as appropriate). ( _Denoted as I _{2 — 0} ) is acquired (S507). The acquired I _{2_0} is transmitted to the client.

  Next, an example of a reception processing procedure by the client 100 will be described with reference to FIG. When this process is started, first, content information is requested from a server system (specifically, for example, a node management server) (S601). The connection destination differs depending on whether or not there is a client that already holds double encrypted information corresponding to the requested content information (S602). If there is no owned client, the connection is made to the content server (S603). If there is, it connects to the client (S607).

First, the case of connecting to a content server will be described. In this case, the server system unique key (K _{2 — 0} ) is acquired from the machine key management server (S604). Then, server double encryption information (I _{2 — 0} ) is received from the content server (S605), I _{2 — 0} is decrypted with K _{2 — 0} (S606), and content-specific encryption information I ₁ is acquired (S611).

The same applies to the case of connecting to the owned client, and when connecting to the client P (S607), the unique key _{K2_P} of the client P is acquired from the machine key management server (S608). Then, the double encryption information I _{2_P} is obtained from the client P, I _{2_P} is _decrypted with K _{2_P} (S610), and the content specific encryption information I ₁ is obtained (S611). The subsequent processing is the same as when connected to the content server.

After obtaining the I ₁ reads the additional information 2 (HS) from _{I 1} (S612), and calculates a hash value HS 'from _{I 1} (S613, strictly in the portion corresponding to the information 309 of the _{I 1} Calculated based on). Then, HS and HS ′ are compared (S614). If they are different from each other, it is assumed that alteration has been performed, and the process returns to S601 to acquire information again. If they are the same, the process proceeds to the next process on the assumption that the validity is confirmed.

Next, the client's own unique key (K _{2_Q} ) is read (S615), I ₁ is encrypted with K _{2_Q} (S616), and double encrypted information I _{2_Q} is obtained ( _S617 ). Then, I _{2_Q} is stored in the storage unit 140.

Next, an example of a content use procedure in the client 100 will be described with reference to FIG. When the processing is started, first, it obtains a content-specific key K ₁ from the content-specific key management server (S701). Then, I _{2_R} , which is double encryption information encrypted with its own unique key, and its own unique key K _{2_R} are read from the storage unit 140 (S702, S703). I _{2_R} is _decrypted with K _{2_R} to obtain content-specific encryption information I ₁ (S704, S705).

  Then, just like S612 to S614, the validity is verified using the additional information 1 (S706 to S708). Further, the additional information 1 (ID1, ID2) is read and the validity is verified (S709, S710).

When the validity is confirmed, I ₁ is decrypted with K ₁ and content information I ₀ is acquired (S711, S712). For example, in the case of video content, the acquired content information is transmitted to the display and played back (S713).

  If tampering in bit units is detected in S708 and if block unit replacement is detected in S710, it is assumed that the information could not be acquired properly, and double-encrypted information is acquired again (S714).

  Although the present embodiment has been described in detail as described above, it will be easily understood by those skilled in the art that many modifications can be made without departing from the novel matters and effects of the present invention. Accordingly, all such modifications are intended to be included in the scope of the present invention. For example, a term (distribution target information, etc.) described with a broader or synonymous different term (content, etc.) at least once in the specification or drawing is replaced with the different term anywhere in the specification or drawing. be able to. Further, the configurations and operations of the electronic device and the server system are not limited to those described in this embodiment, and various modifications can be made.

100 clients, 110 processing units, 112 receiving units, 114 transmitting units,
116 encryption unit, 118 decryption unit, 120 calculation unit, 130 operation unit,
140 storage unit, 150 display unit, 160 communication unit, 200 server system,
210 processing unit, 212 reception unit, 214 transmission unit, 216 encryption unit,
218 decryption unit, 220 node management unit, 222 machine unique key management unit,
224 content unique key management unit, 240 storage unit, 242 content storage unit,
244 user information storage unit, 260 communication unit,
300 content information, 308 content body encryption information,
309 information, 310 content-specific encryption information, 320 double encryption information,
330 Double encryption information, 340 Double encryption information

Claims (19)

A receiving unit that receives the first double-encrypted information from the source node;
A decryption unit that decrypts the first double-encrypted information with the unique key of the source node and obtains content-specific encrypted information;
An encryption unit that encrypts the content-specific encrypted information with its own unique key and generates second double-encrypted information;
As a storage unit for storing the second double encryption information,
Make the computer work,
The content-specific encryption information is
Content information encrypted with a content unique key corresponding to the content,
The first double encryption information is:
A program characterized in that it is information obtained by encrypting the content-specific encrypted information with a unique key of the source node. In claim 1,
As a transmission unit that reads out the second double encryption information from the storage unit and transmits it to the transmission destination node.
A program characterized by causing a computer to function. In claim 1 or 2,
The decoding unit
When using the content information, the second double-encrypted information is read from the storage unit, decrypted with the own unique key to obtain the content-specific encrypted information, and the obtained content-specific encrypted A program for obtaining the content information by decrypting information with the content unique key. In any one of Claims 1 thru | or 3,
The content-specific encryption information is
A program characterized in that it is information obtained by adding unencrypted additional information to content body encrypted information obtained by encrypting the content information with the content unique key. . In claim 4,
The first double encryption information is:
Information obtained by encrypting the content-specific encrypted information, which is information obtained by adding the additional information to the encrypted content information, with a unique key of a transmission source node;
The second double encryption information is:
A program characterized in that it is information obtained by encrypting the content-specific encrypted information, which is information obtained by adding the additional information to the encrypted content information, with its own unique key. In claim 4 or 5,
As the calculation unit that extracts the additional information from the content-specific encryption information and determines the validity of the information,
A program characterized by causing a computer to function. In any one of Claims 4 thru | or 6.
The additional information is
Including first additional information,
The first additional information is
A program characterized by content identification information and block identification information in the content. In claim 7,
The additional information is
Including second additional information,
The encryption unit is
A program characterized in that the second additional information is obtained by performing a predetermined calculation on the information acquired by adding the first additional information to the content body encrypted information. A receiving unit that receives the first double-encrypted information from the source node;
A decryption unit that decrypts the first double-encrypted information with the unique key of the source node and obtains content-specific encrypted information;
An encryption unit that encrypts the content-specific encrypted information with its own unique key and generates second double-encrypted information;
A storage unit for storing the second double encryption information;
Including
The unique encryption information is
Content information encrypted with a content unique key corresponding to the content,
The first double encryption information is:
An electronic apparatus, wherein the content-specific encrypted information is information obtained by encrypting the content-specific encrypted information with a unique key of the transmission source node. In claim 9,
The content-specific encryption information is
Information acquired by adding additional information that is not encrypted to the content body encrypted information acquired by encrypting the content information with the content unique key,
An electronic apparatus comprising: an arithmetic unit that extracts the additional information from the content-specific encryption information and determines the validity of the information. Content-specific encryption information is generated by encrypting the content information with a content-specific key corresponding to the content, and server double encryption is performed by encrypting the generated content-specific encryption information with its own unique key. An encryption unit for generating information;
A storage unit for storing the server double encryption information;
A transmission unit that reads the server double encryption information from the storage unit and transmits the information to a destination node;
A server system comprising: In claim 11,
The encryption unit is
The content-specific encryption is obtained by encrypting the content information with the content-specific key to obtain content-body-encrypted information, and adding the unencrypted additional information to the acquired content-body-encrypted information A server system characterized by acquiring information. In claim 12,
The server double encryption information is:
A server system, wherein the content-specific encrypted information, which is information obtained by adding the additional information to the encrypted content information, is information encrypted with its own unique key. First to Nth electronic devices (N is an integer of 2 or more);
A server system;
Including
Each of the first to Nth electronic devices is
A receiving unit that receives the first double-encrypted information from the source node;
A decryption unit that decrypts the first double-encrypted information with the unique key of the source node and obtains content-specific encrypted information;
An encryption unit that encrypts the content-specific encrypted information with its own unique key and generates second double-encrypted information;
A storage unit for storing the second double encryption information;
Including
The first double encryption information is:
The content-specific encrypted information is information obtained by encrypting with the unique key of the source node,
The server system is
The content-specific encryption information is generated by encrypting the content information with a content-specific key corresponding to the content, and the generated server-specific encryption is performed by encrypting the generated content-specific encryption information with its own unique key. An encryption unit for generating encryption information;
A storage unit for storing the server double encryption information;
A transmission unit that reads the server double encryption information from the storage unit and transmits the information to a destination node;
An information providing system comprising: In claim 14,
Each of the first to Nth electronic devices is
An information providing system comprising: a transmission unit that reads the second double-encrypted information from the storage unit and transmits the read information to a transmission destination node. In claim 14 or 15,
The content-specific encryption information is
Information acquired by adding additional information that is not encrypted to the content body encrypted information acquired by encrypting the content information with the content unique key,
Each of the first to Nth electronic devices is
An information providing system comprising: an arithmetic unit that extracts the additional information from the content-specific encrypted information and determines the validity of the information. In any of claims 14 to 16,
The transmission unit of the server system includes:
Reading the server double encryption information from the storage unit of the server system and transmitting the read information to the i-th (1 ≦ i ≦ N) electronic device among the first to N-th electronic devices. A characteristic information provision system. In claim 17,
The receiver included in the i-th electronic device includes:
Receiving the server double encryption information from the server system;
The decryption unit included in the i-th electronic device is:
Decrypting the server double encryption information with a unique key of the server system to obtain the content specific encryption information;
The encryption unit included in the i-th electronic device is:
Encrypting the content-specific encrypted information with its own unique key to generate i-th double-encrypted information;
A storage unit included in the i-th electronic device stores the i-th double encryption information. In claim 18,
The transmission unit included in the i-th electronic device includes:
The i-th double encryption information is read from the storage unit and transmitted to the j-th (j ≠ i) electronic device among the first to N-th electronic devices. Offer system.

Images