JP2014013977A - Content distribution system, content distribution method, program, and recording medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To realize a system which enables a user to use contents purchased from a plurality of dealer servers that provide different services, in an unified environment.SOLUTION: A dealer server receives a purchase instruction of a content from a terminal device, and transmits download start data including a download URL and purchase information to the terminal device (S2). Then, the terminal device accesses a content distribution server on the basis of the download URL, and requests an encrypted content file and an individualized ticket by specifying the purchase information (S7 and S14). The content distribution server transmits the individualized ticket to the terminal device if the specified purchase information matches purchase information stored in the dealer server having received the purchase instruction (S13).

Description

  The present invention relates to a system for distributing content such as an electronic book.

  Along with the development of Internet technology, services for distributing contents such as electronic books via a network are known.

  For example, Patent Literature 1 describes a content distribution method for distributing content to a user terminal via a mediation server. Specifically, the mediation server receives distribution information including user information for specifying a distribution requester of content and information regarding the content to be distributed. Then, the mediation server receives the content information provided from the server on the content sales side (the content distribution server in Patent Document 1) based on the distribution information, and distributes the content information to the user terminal.

JP 2003-50888 A (released on February 21, 2003)

  In the technology described in Patent Document 1, the content received from a plurality of servers is unified (single environment) by aggregating the selection receiving function of the content to be distributed and the content distribution function in the mediation server. (Decryption software, decryption key, content browsing software).

  However, this configuration has a problem that the processing load on the mediation server increases because the mediation server implements the user information registration and content selection reception function of the distribution requester. In addition, a content sales company that operates a server on the sales side that provides content to a mediation server, although the user information of the content purchaser is valuable information, the mediation server intervenes, It becomes difficult to independently manage the user information and the like.

  On the other hand, when the server on the sales side accepts the selection of content and independently distributes the content without going through the mediation server, the content sales operator can easily manage the user information of the content purchaser. However, in this case, there arises a problem that the environment in which the content is used is different for each server on the sales side. In other words, the content score that can be used in the same environment is poor for the user.

  The present invention has been made to solve the above-described problem, and a content distribution system and a content distribution method that can use content purchased from a plurality of dealer servers that provide different services in a unified environment. An object of the present invention is to provide a program and a recording medium.

  In order to solve the above problems, a content distribution system of the present invention includes a terminal device, a plurality of dealer servers that provide different content sales services, a content distribution server that distributes content to the terminal device, and a DRM. (1) The DRM server includes, for the terminal device, user identification information for identifying a user who uses the content distribution system and a user ID assigned to the user. A first key issuing unit that issues one key in association with each other, (2) each of the plurality of store servers includes a purchase instruction receiving unit that receives a content purchase instruction from the terminal device, and the purchase instruction. Purchase information in which content identification information for identifying the content to be purchased is associated with purchaser information for identifying the purchaser An information transmission unit for transmitting to the terminal device, a purchase information storage unit that stores information, access information that has the content distribution server as an access destination, the purchase information, and store identification information that identifies its own store server (3) The terminal device accesses the content distribution server based on the access information, and is issued by the purchase information and the store identification information transmitted by the information transmitting unit and the first key issuing unit. A request unit for transmitting a distribution request for an encrypted content file and an individualized ticket specifying the user identification information to the content distribution server. (4) The content distribution server includes an encrypted content file and a content distribution server for each content. A content information storage unit for storing a second key for decrypting the encrypted content file, and the distribution request User identification information specified in the distribution request when the specified purchase information matches the purchase information stored in the purchase information storage unit of the store server indicated by the store identification information specified in the distribution request The terminal device which acquired the individualized ticket which encrypted the 2nd key corresponding to the content shown by the content identification information of the said purchase information using the 1st key corresponding to the said personalized ticket, and transmitted the said distribution request to the said individualized ticket An individualized ticket providing unit that transmits to the terminal device that has transmitted the distribution request, and a content providing unit that transmits an encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request, (5) The terminal device decrypts the individualized ticket provided from the individualized ticket providing unit using the first key issued by the DRM server. And a content decrypting unit for decrypting the encrypted content file provided from the content providing unit using the decrypted individualized ticket.

  According to the above configuration, each of the plurality of dealer servers includes the purchase instruction receiving unit that receives a content purchase instruction from the terminal device. Thereby, since the store server can receive a purchase instruction directly from the user, the purchase information storage unit can be managed independently.

  Further, the terminal device acquires the content purchased at the store server from the content distribution server. At this time, when the purchase information specified in the content distribution request matches the purchase information stored in the purchase information storage unit of the store server indicated by the store identification information specified in the distribution request, the individualized ticket Is delivered. Since the dealer server indicated by the dealer identification information specified in the distribution request is a dealer server that has received a purchase instruction, an individualized ticket may be distributed to a third party who has made unauthorized access. Absent.

  Further, the individualized ticket is obtained by encrypting the second key corresponding to the content using the first key corresponding to the user identification information specified in the distribution request. In the terminal device, the individualized ticket is decrypted using the first key, and the encrypted content file is decrypted using the decrypted individualized ticket. The first key is issued from the DRM server. Therefore, if the first key is issued from the DRM server, a plurality of encrypted content files purchased from different store servers can be decrypted using the first key. That is, the terminal device can use a plurality of encrypted content files purchased from different dealer servers in the same environment without using a different decryption method for each dealer server.

  As described above, according to the present invention, content purchased from a plurality of dealer servers that provide different services can be used in a unified environment.

  Furthermore, in the content distribution system of the present invention, (1) the individualized ticket providing unit of the content distribution server is designated by the distribution request to the store server indicated by the store identification information specified by the distribution request. (2) The dealer server determines that the authentication is successful when the purchase information specified in the authentication request is registered in the purchase information storage unit, and registers the purchase request. If not, it is preferable to provide an authentication processing unit that determines that the authentication has failed and transmits the authentication result to the content distribution server.

  According to said structure, it can be confirmed easily whether delivery is a thing transmitted from the valid purchaser.

  Furthermore, in the content distribution system of the present invention, (1) the terminal device, when the decryption by the content decryption unit is completed, a download completion notification including purchase information and store identification information transmitted by the information transmission unit (2) The content distribution server is included in the download completion notification in the store server indicated by the store identification information included in the download completion notification. A transfer unit that transfers purchase information; and (3) the dealer server identifies purchase information that matches the purchase information transferred from the transfer unit from the purchase information storage unit, and associates the purchase information with the identified purchase information. It is preferable to provide a purchase information management unit that stores information related to downloading in the purchase information storage unit. .

  According to said structure, the store server can manage independently the information regarding the download from a content delivery server.

  In addition, the content distribution method of the present invention is a content distribution system including a terminal device, a plurality of dealer servers that provide different content sales services, a content distribution server that distributes content to the terminal device, and a DRM server. (1) The content distribution server stores, for each content, an encrypted content file and a second key for decrypting the encrypted content file, and (2) the above A first step in which the DRM server issues, to the terminal device, user identification information for identifying a user who uses the content distribution system and a first key assigned to the user in association with each other; 3) The store server receives a content purchase instruction from the terminal device, and purchase target A second step of storing, in the purchase information storage unit, purchase information in which content identification information for identifying content and purchaser information for identifying a purchaser are associated with each other; and (4) the store server sets the content distribution server to A third step of transmitting to the terminal device access information to be accessed, the purchase information, and store identification information identifying its own store server; and (5) the terminal device transmits the access information. The content distribution server is accessed based on the purchase information and the store identification information transmitted from the store server and the user identification information issued in the first step, and the encrypted content file and the individualized ticket are specified. A fourth step of transmitting the distribution request to the content distribution server, and (6) the purchase information specified in the distribution request is the distribution request When the content distribution server matches the purchase information stored in the purchase information storage unit of the store server indicated by the set store identification information, the content distribution server corresponds to the user identification information specified in the distribution request. The personalized ticket obtained by encrypting the second key corresponding to the content indicated by the content identification information of the purchase information is acquired using the first key, and the personalized ticket is transmitted to the terminal device that transmitted the distribution request. A fifth step, and (7) a sixth step in which the content distribution server transmits the encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request and the terminal device that has transmitted the distribution request. (8) The terminal device decrypts the decryption ticket provided in the fifth step using the first key issued in the first step, and decrypts it. And a seventh step of decrypting the encrypted content file provided in the sixth step using the individualized ticket.

  Also with the above configuration, content purchased from a plurality of dealer servers that provide different services can be used in a unified environment.

  The content distribution system of the present invention includes a terminal device, a plurality of dealer servers that provide different content sales services, a content distribution server that distributes content to the terminal device, and a DRM server. (1) The DRM server associates, to the terminal device, user identification information for identifying a user who uses the content distribution system and a first key assigned to the user. (2) each of the plurality of dealer servers includes a purchase instruction receiving unit that receives a content purchase instruction from the terminal device, and a purchase target content specified by the purchase instruction. Purchase information storage for storing purchase information in which content identification information for identifying a purchaser and purchaser information for identifying a purchaser are associated with each other An information transmission unit that transmits to the terminal device, the access information that has the content distribution server as an access destination, the purchase information, and the store identification information that identifies its own store server, The terminal device accesses the content distribution server based on the access information, and uses the purchase information and the store identification information transmitted by the information transmitting unit and the user identification information issued by the first key issuing unit. (4) The content distribution server includes a request unit that transmits the specified encrypted content file distribution request to the content distribution server, and the content distribution server stores the purchase information specified in the distribution request in the distribution request. When the purchase information stored in the purchase information storage unit of the store server indicated by the identification information matches the user identification information specified in the distribution request. A content providing unit that transmits an encrypted content file that is encrypted using the first key corresponding to the content and that corresponds to the content indicated by the purchase information specified in the distribution request to the terminal device that transmitted the distribution request (5) The terminal device may include a content decrypting unit that decrypts the encrypted content file provided from the content providing unit using the first key issued by the DRM server.

  Similarly, a content distribution method according to the present invention includes a terminal device, a plurality of dealer servers that provide different content sales services, a content distribution server that distributes content to the terminal device, and a DRM server. A content distribution method in the system, wherein (1) the DRM server identifies, to the terminal device, user identification information for identifying a user who uses the content distribution system, and a first key assigned to the user (2) The store server accepts a content purchase instruction from the terminal device and purchases the content identification information for identifying the content to be purchased and the purchaser who identifies the purchaser. A second step of storing purchase information in association with information in the purchase information storage unit; (3) the sales A third step in which the store server transmits to the terminal device access information for accessing the content distribution server, the purchase information, and store identification information for identifying its own store server; and (4) The terminal device accesses the content distribution server based on the access information, specifies the purchase information and the store identification information transmitted from the store server, and the user identification information issued in the first step. A fourth step of transmitting an encrypted content file distribution request to the content distribution server; and (5) a store server in which the purchase information specified in the distribution request is indicated by the store identification information specified in the distribution request. The first key corresponding to the user identification information specified in the distribution request when the purchase information matches the purchase information stored in the purchase information storage unit A fifth step of transmitting the encrypted encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request to the terminal device that transmitted the distribution request; and (6) the terminal device And a sixth step of decrypting the encrypted content file provided in the fifth step using the first key issued in the first step.

  Also with the above configuration, content purchased from a plurality of dealer servers that provide different services can be used in a unified environment.

  The content distribution system may be realized by a computer. In this case, a program for causing the content distribution system to be realized by the computer by causing the computer to operate as the above-described units, and a computer-readable program that records the program. Recording media also fall within the scope of the present invention.

  The present invention can realize a content distribution system that can use content purchased from a plurality of dealer servers that provide different services in a unified environment.

1 is a block diagram showing an overall configuration of a content distribution system according to an embodiment of the present invention. It is a figure which shows the exchange of data in a content delivery system. It is a block diagram which shows the internal structure of a DRM server. It is a figure which shows the example of a memory | storage in the XID memory | storage part of a DRM server. It is a block diagram which shows the internal structure of a store server. It is a figure which shows the example of 1 memory | storage in the merchandise information storage part of a store server. It is a figure which shows the example of 1 memory in the customer information storage part of a store server. It is a figure which shows the example of 1 memory | storage in the purchase information storage part of a store server. It is a figure which shows an example of download start data. It is a block diagram which shows the internal structure of a content delivery server. It is a figure which shows the example of 1 memory | storage in the content information storage part of a content delivery server. It is a figure which shows the example of a memory | storage in the store information storage part of a content delivery server. It is a figure which shows an example of download information. It is a block diagram which shows the internal structure of a terminal device. It is a figure which shows the process sequence in a content delivery system. It is a figure which shows an example of the screen displayed on the display part of a terminal device at the time of the purchase of content. It is a conceptual diagram which shows the production | generation process of an individualization ticket. It is a conceptual diagram which shows the decoding process of an encryption content file.

(Overall configuration of content distribution system)
FIG. 1 is a diagram showing an overall configuration of a content distribution system according to an embodiment of the present invention. As shown in the figure, the content distribution system 1 includes a DRM (Digital Rights Management) server 10, a plurality of dealer servers 30, at least one content distribution server 50, and a terminal device 70 owned by each user. ing. In the present embodiment, the content is described as an electronic book, but the content is not limited to the electronic book, and may be, for example, music data or moving image data.

  FIG. 2 is a diagram illustrating data exchange among the DRM server 10, the store server 30, the content distribution server 50, and the terminal device 70.

  The DRM server 10 is a server for realizing a function of protecting the copyright of content in the content distribution system 1. Due to the presence of the DRM server 10, only a user who has just purchased can confirm the content. The DRM server 10 issues a DRM key to a user who desires to use the content distribution system 1. Here, the DRM key is a key used when information is encrypted and decrypted.

  The plurality of store servers 30 are servers that provide different content sales services for content owned by the content distribution server 50. For example, the servers may be operated by different businesses, or the same business may operate a plurality of different store servers 30. Different content sales services mean that if the genre of the content being sold (for example, novels, magazines, sports, education, etc.) or publishers are different, the service given to the purchaser when purchasing the content (for example, points or In the case where the gifts are different from each other, various forms are conceivable, such as a case of an electronic content sales store belonging to a normal (not electronic content) book, CD, DVD, BD, or the like. Thereby, the user can select a server suitable for him from the plurality of dealer servers 30. For example, there is an effect that a user who likes a specific genre can easily find content desired by the user by using a content sales service specialized for the genre. Also, users who like a particular publisher can easily find the publisher's content by using a content sales service specialized for that publisher, and the publisher's services (points, prizes, etc.) ) Is easy to receive. In addition, there is an effect that a user who frequently uses a specific affiliated store can easily collect service points of the affiliated store by using the content sales service of the affiliated store.

  Each store server 30 receives a purchase instruction for content to be distributed from the terminal device 70 and sends a URL (hereinafter, download URL) for downloading the content to the terminal device 70. The download URL is a URL for accessing the content distribution server 50 that owns (manages) the content to be distributed.

  The content distribution server 50 receives a content distribution request from the terminal device 70 and distributes the encrypted content file encrypted with the encryption key set for each content to the terminal device 70. At this time, the content distribution server 50 collates the purchase information with the store server 30 that has received the content purchase instruction, and distributes the encrypted content file only when the distribution request is from a valid user. . Further, the content distribution server 50 acquires the individualized ticket obtained by encrypting the decryption key for decrypting the encrypted content file with the DRM key from the DRM server 10 and distributes it to the terminal device 70.

  The terminal device 70 accesses the content distribution server 50 based on the download URL received from the store server 30, and makes a content distribution request. Then, the terminal device 70 acquires the encrypted content file and the individualized ticket. The terminal device 70 decrypts the individualized ticket into a decryption key using the DRM key issued in advance from the DRM server 10, and decrypts the encrypted content file using the decryption key.

  As shown in FIG. 2, the user uses the terminal device 70 to access the store server 30 and purchase desired content. However, the terminal device 70 downloads the encrypted content file not from the store server 30 but from the content distribution server 50 that owns the content to be distributed. At this time, the individualized ticket encrypted using the DRM key issued to the user in advance by the DRM server 10 is delivered to the terminal device 70 together with the encrypted content file.

Thereby, the business operator who operates the store server 30 can independently manage information (customer information) of a purchaser who purchased content, information (purchase information) indicating purchase history, and the like for each user. On the other hand, the content distribution server 50 distributes the individualized ticket encrypted using the DRM key distributed in advance by the DRM server 10 regardless of the store server 30 from which the user purchased the content. Thereby, the terminal device 70 can use a plurality of encrypted content files purchased at different store servers 30 in the same environment. That is, the terminal device 70 can use a plurality of contents purchased at different store servers 30 by using one electronic book application corresponding to the DRM server 10.
Below, the detail of each server 10, 30, 50 and the terminal device 70 is demonstrated.

(DRM server)
FIG. 3 is a block diagram showing an internal configuration of the DRM server 10. As illustrated, the DRM server 10 includes a communication unit 11, an XID registration unit (first key issuing unit) 12, an XID storage unit 13, and an individualized ticket generation unit 14.

  The communication unit 11 communicates with the terminal device 70 and the content distribution server 50 via a network. The communication method is not particularly limited, such as wireless or wired.

  The XID registration unit 12 registers a user who uses the content distribution system 1. Specifically, the XID registration unit 12 receives a request for issuing a user ID (hereinafter referred to as XID) that uniquely identifies a user who uses the content distribution system 1 from the terminal device 70 and issues an XID. XID is an identifier for identifying a user to whom a DRM right is granted. Then, the XID registration unit 12 stores the issued XID in the XID storage unit 13. At this time, the XID registration unit 12 stores a DRM key (first key), which is a key used when encrypting and decrypting information, in the XID storage unit 13 in association with the XID. The DRM key is assigned differently for each user.

  Further, the XID registration unit 12 can register a predetermined number (for example, three) or less of terminal devices 70 for each user. Upon receiving a DRM key transmission request designating an XID from the terminal device 70, the XID registration unit 12 acquires terminal identification information for identifying the terminal device 70, and associates the acquired terminal identification information with the designated XID. In addition, the data is stored in the XID storage unit 13. Further, the XID registration unit 12 transmits a DRM key corresponding to the terminal identification information to the terminal device 70.

  The XID storage unit 13 stores an XID, a DRM key, and terminal identification information in association with each user. FIG. 4 is a diagram illustrating an example of information stored in the XID storage unit 13. 4A shows a table in which XIDs are associated with DRM keys, and FIG. 4B shows a table in which XIDs are associated with terminal identification information. As the terminal identification information, for example, a serial number of the terminal device 70 or an international mobile equipment identifier (IMEI) may be used.

  When receiving the individualized ticket request from the content distribution server 50, the individualized ticket generating unit 14 reads out the DRM key corresponding to the XID specified in the request from the XID storage unit 13. The individualized ticket generation unit 14 generates an individualized ticket by encrypting the decryption key specified in the individualized ticket request using the read DRM key.

(Distributor server)
FIG. 5 is a block diagram showing an internal configuration of the store server 30. As illustrated, the store server 30 includes a communication unit 31, a product information storage unit 32, a customer information storage unit 33, a purchase information storage unit 34, and a screen generation unit (purchase instruction reception unit, information transmission unit). ) 35, a settlement processing unit (purchase information registration unit) 36, an authentication processing unit 37, and a purchase information management unit 38.

  The communication unit 31 communicates with the terminal device 70 and the content distribution server 50 via a network. The communication method is not particularly limited, such as wireless or wired.

  The product information storage unit 32 stores content information (product information) sold by the store server 30. FIG. 6 shows a storage example of the product information storage unit 32. As illustrated, the product information storage unit 32 includes, for example, a content ID (hereinafter referred to as CID) for identifying content, a title, a product description, thumbnail image data, a price, a publisher, a download URL, I remember the usage period. Here, the download URL is a URL whose access destination is the content distribution server 50 that owns the corresponding content, and is access information for accessing the content distribution server 50.

  Here, the content ID (CID) is an ID (CSID) that uniquely identifies the content distribution server 50 that distributes the content, an ID (SID) that uniquely identifies the store server 30, and content in the store server 30. It consists of an identifier that identifies For example, as shown in FIG. The first “1” is the CSID, the next “1” is the SID, and the last “18” is the content identifier in the store server 30.

  The customer information storage unit 33 stores information (customer information) related to the content purchaser. FIG. 7 shows a storage example of the customer information storage unit 33. As illustrated, the customer information storage unit 33, for example, for each purchaser, an ID that uniquely identifies the purchaser (hereinafter referred to as UID), a user name (alphabet), a name, a password, and a credit The card type, credit card number, and expiration date of the credit card are stored.

  The purchase information storage unit 34 stores information (purchase information) related to the purchased content. FIG. 8 shows a storage example of the purchase information storage unit 34. As illustrated, the purchase information storage unit 34 can download, for example, a CID indicating purchased content, a UID (purchaser information) indicating a purchaser, a purchase date and time, a price, a download date and time, and the like. The remaining number of times (download limit number), the downloadable expiration date (browsing expiration date), and the XID issued from the DRM server 10 to the purchaser are stored.

  The screen generation unit 35 is a block that operates according to software that provides the function of the Web server. Specifically, the screen generation unit 35 generates HTML data indicating a purchase screen that prompts the user to purchase content, including a list of content stored in the product information storage unit 32, and sends the HTML data to the terminal device 70. . The user can specify information indicating the purchase target content and the purchaser on the purchase screen displayed on the terminal device 70.

  In addition, when receiving a purchase instruction from the terminal device 70, the screen generation unit 35 generates HTML data (download start data) in which JavaScript (registered trademark) that causes the terminal device 70 to start downloading is embedded. Send. As a result, the terminal device 70 automatically starts downloading. The download start data includes the CID of the content to be purchased, the purchaser ID (hereinafter referred to as UID) for identifying the purchaser, the bookstore ID (hereinafter referred to as SID) for identifying its own store server 30, Download URL corresponding to the content.

  FIG. 9 is a diagram illustrating an example of download start data. In FIG. 9, part a is a line indicating the CID, UID, SID, and download URL of the content to be purchased, and part b is a line indicating an instruction to start downloading to the electronic book application of the terminal device 70. is there.

  Note that the screen generation unit 35 specifies the UID based on the information stored in the customer information storage unit 33. Further, the screen generation unit 35 stores in advance a SID for identifying its own store server 30.

  The settlement processing unit 36 (a) processing for registering information (customer information) of the purchaser of the content in the customer information storage unit 33, (b) settlement processing using a credit card, and (c) information regarding purchased content (purchasing Information) is registered in the purchase information storage unit 34.

  The settlement processing unit 36 determines whether or not information (user name (or name) and password) indicating the purchaser specified by the purchase instruction has been registered in the customer information storage unit 33. If registered, the settlement determination unit performs a settlement process based on information on the registered credit card.

  On the other hand, if it is not registered, that is, if it is a new customer, the payment processing unit 36 causes the screen generation unit 35 to generate a screen (payment screen) that prompts the input of the credit card type, number, and expiration date, The data is transmitted to the terminal device 70. Based on the information input on the payment screen, the payment processing unit 36 generates new customer information and registers it in the customer information storage unit 33. At this time, the settlement processing unit 36 assigns a UID different from that of other customers. Then, the settlement determination unit performs settlement processing based on the generated customer information.

  Further, the settlement processing unit 36 registers information related to the content designated by the purchase instruction in the purchase information storage unit 34. Since the download has not yet been performed at the timing when the purchase instruction is input, the settlement processing unit 36 selects a row of purchase information in which the content CID, the purchaser CID, the purchase date and time, and the price are associated ( Record) is additionally registered in the purchase information storage unit 34.

  The authentication processing unit 37 receives an authentication request from the content distribution server 50, performs an authentication process, and sends the result to the content distribution server 50. Specifically, the authentication processing unit 37 receives an authentication request including XID, UID, and CID from the content distribution server 50. The authentication processing unit 37 identifies a row (record) that matches the XID, UID, and CID included in the authentication information from the purchase information storage unit 34. Note that it is determined that the XIDs match for the rows in which the XID is not recorded in the purchase information storage unit 34. Further, the authentication processing unit 37 confirms whether or not the download limit count included in the specified row is 0, and confirms whether or not the expiration date is before the current time. If the download limit count is not set in the specified row, it is determined that the download limit count is greater than zero. If no expiration date is set for the specified line, it is determined that the expiration date is later than the current time.

  The authentication processing unit 37 (a) When a row (record) that matches the XID, UID, and CID included in the authentication information is not registered in the purchase information storage unit 34, (b) When the download limit count is 0 Or (c) If the expiration date is before the current time, it is determined that the authentication has failed. On the other hand, in the authentication processing unit 37, (a) a row (record) that matches the XID, UID, and CID included in the authentication information is registered in the purchase information storage unit 34, and (b) the download limit count is 0. And (c) the authentication is determined to be successful if the expiration date is after the current time.

  The purchase information management unit 38 updates the purchase information stored in the purchase information storage unit 34 based on the first download completion notification received from the content distribution server 50.

  Specifically, the purchase information management unit 38 receives a first download completion notification including XID, UID, and CID from the content distribution server 50. The purchase information management unit 38 specifies a row (record) that matches the XID, UID, and CID included in the first download completion notification from the purchase information storage unit 34. As with the authentication processing unit 37, it is determined that the XIDs match for the lines where no XID is recorded.

And when XID is not memorize | stored in the specified line, the purchase information management part 38 performs the following processes (a) to (d) in the said line.
(A) The XID included in the first download completion notification is written in the XID column.
(B) Write the current date and time in the download date and time column.
(C) Write a predetermined number of times (for example, three times) in the download limit number column.
(D) For example, the date and time after the elapse of a predetermined period (for example, one month) from the current date and time is written in the expiration date column.

  In addition, when the XID is stored in the specified row, the purchase information management unit 38 reduces the download limit number of the row by 1.

(Content distribution server)
FIG. 10 is a block diagram showing an internal configuration of the content distribution server 50. As illustrated, the content distribution server 50 includes a communication unit 51, a content information storage unit 52, a store information storage unit 53, a download information providing unit 54, an individualized ticket providing unit 55, and a content providing unit. 56, a bibliographic information providing unit 57, and a download completion processing unit (transfer unit) 58.

  The communication unit 51 communicates with the terminal device 70, the store server 30, and the DRM server 10 via a network. The communication method is not particularly limited, such as wireless or wired.

  The content information storage unit 52 stores various types of information related to content. FIG. 11 is a diagram illustrating a storage example of the content information storage unit 52. As shown in FIG. 11, the content information storage unit 52 includes, for each content, an ID (CID) for identifying the content, bibliographic information, an encrypted content file that is an encrypted content file, and an encrypted content. A decryption key (second key) for decrypting the file and a cover image are stored. Here, the bibliographic information includes, for example, information such as a title, author name, genre, content description, publisher, and category.

  For each dealer server 30, the dealer information storage unit 53 accesses an ID (SID) that uniquely identifies the dealer server 30, the name of the dealer that operates the dealer server 30, and the dealer server 30. Stores store information associated with the URL (store URL). FIG. 12 shows a storage example of the store information storage unit 53.

  Upon receiving a download information request from the terminal device 70, the download information providing unit 54 generates download information and provides it to the terminal device 70. Specifically, the download information providing unit 54 receives a download information request specifying CID, SID, UID, and XID, and generates download information corresponding to the CID specified in the download information request. FIG. 13 is a diagram showing an example of download information. As shown in FIG. 13, the download information includes a title (title_url) for acquiring an individualized ticket, an encrypted content file, and a title, category, and CID of the content corresponding to the specified CID. URL (content_url), MD5 hash value (checksum) for verifying whether the encrypted content file is broken, URL (thumbnail_url) for acquiring a cover image, URL (bookinfo_url) for acquiring bibliographic information, and It includes a URL (ack_url) for notification of download completion. The download information provision part 54 should just produce | generate download information about the content shown by designated CID based on the information stored in the content information storage part 52. FIG.

  When the individualized ticket providing unit 55 receives the individualized ticket request designating the CID, SID, UID, and XID from the terminal device 70, the individualized ticket providing unit 55 sends an authentication request to the store server 30. The acquisition ticket is acquired from the DRM server 10 and transmitted to the terminal device 70.

  Specifically, when receiving the individualized ticket request, the individualized ticket providing unit 55 reads the store URL corresponding to the SID specified in the individualized ticket request from the store information storage unit 53. Then, the individualized ticket providing unit 55 sends an authentication request including the XID, UID, and CID specified in the individualized ticket request to the store server 30 via the communication unit 51 based on the read store URL. .

  If the result of the authentication request is failure, the personalized ticket providing unit 55 sends an error notification to the terminal device 70. On the other hand, if the authentication result is successful, the individualized ticket providing unit 55 reads the decryption key corresponding to the CID specified in the individualized ticket request from the content information storage unit 52. Then, the individualized ticket providing unit 55 sends a request for generating an individualized ticket including the read decryption key and the XID specified by the individualized ticket request to the DRM server 10, and acquires the individualized ticket. The individualized ticket providing unit 55 transmits the acquired individualized ticket to the terminal device 70 via the communication unit 51.

  The content providing unit 56 receives an encrypted content file transmission request (first transmission request) in which CID, SID, UID, and XID are specified. The content providing unit 56 reads out the encrypted content file corresponding to the CID specified in the first transmission request from the content information storage unit 52 and transmits the encrypted content file to the terminal device 70 via the communication unit 51.

  Further, the content providing unit 56 receives a cover image transmission request (second transmission request) in which CID, SID, UID, and XID are specified. The content providing unit 56 reads a cover image corresponding to the CID specified in the second transmission request from the content information storage unit 52 and transmits the cover image to the terminal device 70 via the communication unit 51.

  The bibliographic information providing unit 57 accepts a bibliographic information transmission request (third transmission request) specifying CID, SID, UID, and XID. The bibliographic information providing unit 57 reads the bibliographic information corresponding to the CID specified by the third transmission request from the content information storage unit 52 and transmits the bibliographic information to the terminal device 70 via the communication unit 51.

  The download completion processing unit 58 receives from the terminal device 70 a second download completion notification designating CID, SID, UID, and XID. The download completion processing unit 58 reads the store URL corresponding to the SID designated by the second download completion notification from the store information storage unit 53. Then, the download completion processing unit 58 sends a first download completion notification including the XID, UID, and CID designated by the second download completion notification based on the read store URL to the store server 30 via the communication unit 51. Send to.

(Terminal device)
FIG. 14 is a block diagram showing an internal configuration of the terminal device 70. As illustrated in FIG. 14, the terminal device 70 includes a communication unit 71, a display unit 72, a browser unit 73, and an electronic book application unit 74.

  The communication unit 71 communicates with the DRM server 10, the store server 30, and the content distribution server 50 via a network. The communication method is not particularly limited, such as wireless or wired.

  The display unit 72 is, for example, a liquid crystal display, a plasma display, an organic EL display, or the like.

  The browser unit 73 is a block that performs an operation in accordance with software for browsing a Web page. In the present embodiment, the browser unit 73 accesses the store server 30 desired by the user, acquires a content purchase screen from the store server 30, and displays it on the display unit 72. In addition, the browser unit 73 transmits the information input on the purchase screen to the store server 30. When a content purchase instruction is input, the browser unit 73 sends the purchase instruction to the store server 30 and receives download start data as shown in FIG. 9 as a response. Upon receiving the download start data, the browser unit 73 activates the electronic book application unit 74 in accordance with JavaScript (registered trademark) embedded in the download start data. Further, the browser unit 73 sends the CID, UID, SID and download URL included in the download start data to the electronic book application unit 74.

  The electronic book application unit 74 performs an operation according to the electronic book application. The electronic book application unit 74 is activated in response to an activation instruction from the browser unit 73, and the content distribution server 50 that owns the content to be purchased based on the CID, UID, SID, and download URL received from the browser unit 73. Downloads content from.

  As shown in FIG. 14, the electronic book application unit 74 includes a DRM information registration unit 75, a DRM information storage unit 76, a download information acquisition unit (request unit) 77, a content acquisition unit (request unit) 78, An individualized ticket acquisition unit (request unit) 79, a bibliographic information acquisition unit 80, a content decryption unit 81, a content storage unit 82, a download completion notification unit 83, and a content display unit 84 are provided.

  The DRM information registration unit 75 performs processing for acquiring the DRM key from the DRM server 10 and storing the DRM key in the DRM information storage unit 76.

  First, the DRM information registration unit 75 acquires a user ID (XID) that identifies a user who uses the content distribution system 1. When the user has already acquired the XID from the DRM server 10 in the other terminal device 70, the DRM information registration unit 75 may acquire the XID according to the user input and store it in the DRM information storage unit 76. If the user has not yet acquired the XID, the DRM information registration unit 75 sends an XID issuance request to the DRM server 10 according to the user input, acquires the XID issued by the DRM server 10, and acquires the DRM information storage unit 76. To store.

  The DRM information registration unit 75 sends a DRM key transmission request designating the XID stored in the DRM information storage unit 76 to the DRM server 10 and stores the DRM key received as a response in the DRM information storage unit 76. The DRM information registration unit 75 also sends the terminal identification information identified by the terminal device 70 when sending the DRM key transmission request to the DRM server 10.

  The DRM information storage unit 76 stores the XID and DRM key issued by the DRM server 10. The DRM information storage unit 76 stores the DRM key in a format that is not read from the outside of the electronic book application unit 74.

  The download information acquisition unit 77 accesses the content distribution server 50 indicated by the download URL received from the browser unit 73, and the CID, UID and SID received from the browser unit 73, and the XID stored in the DRM information storage unit 76 Send download information request specifying. Then, the download information acquisition unit 77 acquires download information as shown in FIG. 13 as a response to the download information request. As described above, the download information includes a URL (ticket_url) for acquiring an individualized ticket, a URL (content_url) for acquiring an encrypted content file, an MD5 hash value (checksum), and a cover image. URL (thumbnail_url), URL (bookinfo_url) for obtaining bibliographic information, and URL (ack_url) for notifying download completion are included. These URLs are for accessing the content distribution server 50 that owns the content to be purchased.

  The content acquisition unit 78 accesses the content distribution server 50 according to content_url in the download information acquired by the download information. Then, the content acquisition unit 78 sends to the content distribution server 50 the first transmission request for the encrypted content file that specifies the CID, UID, and SID received from the browser unit 73 and the XID stored in the DRM information storage unit 76. send. The content acquisition unit 78 acquires the encrypted content file as a response to the first transmission request, and stores the encrypted content file in the content storage unit 82 in association with the CID received from the browser unit 73.

  Further, the content acquisition unit 78 accesses the content distribution server 50 according to the thumbnail_url in the download information acquired by the download information. The content acquisition unit 78 then sends a cover image second transmission request specifying the CID, UID, and SID received from the browser unit 73 and the XID stored in the DRM information storage unit 76 to the content distribution server 50. The content acquisition unit 78 acquires a cover image as a response to the second transmission request, and stores the cover image in the content storage unit 82 in association with the CID received from the browser unit 73.

  The individualized ticket acquisition unit 79 accesses the content distribution server 50 according to ticket_url in the download information acquired by the download information. The personalized ticket acquisition unit 79 then sends a personalized ticket request designating the CID, UID, and SID received from the browser unit 73 and the XID stored in the DRM information storage unit 76 to the content distribution server 50. The individualized ticket acquisition unit 79 acquires an individualized ticket as a response to the individualized ticket request, and stores the individualized ticket in the content storage unit 82 in association with the CID received from the browser unit 73.

  The bibliographic information acquisition unit 80 accesses the content distribution server 50 according to bookinfo_url in the download information acquired by the download information. Then, the bibliographic information acquisition unit 80 sends a third bibliographic information transmission request designating the CID, UID, and SID received from the browser unit 73 and the XID stored in the DRM information storage unit 76 to the content distribution server 50. . The bibliographic information acquisition unit 80 acquires bibliographic information as a response to the third transmission request, and stores the bibliographic information in the content storage unit 82 in association with the CID received from the browser unit 73.

  For each CID received from the browser unit 73, the content decryption unit 81 generates a decryption key by decrypting the individualized ticket acquired by the individualized ticket acquisition unit 79 with the DRM key stored in the DRM information storage unit 76. . Then, the content decryption unit 81 decrypts the encrypted content file corresponding to the same CID using the generated decryption key, and generates an unencrypted content file. The content decryption unit 81 stores the generated content file in the content storage unit 82 in association with the CID.

  The content decryption unit 81 verifies the encrypted content file using the MD5 hash value included in the download information before starting the decryption process of the encrypted content file. The decryption process is started only when the verification is successful.

  The content storage unit 82 stores the CID, the encrypted content file, the individualized ticket, the decrypted content file, the cover image, and the bibliographic information in association with each content.

  When the decryption processing of the encrypted content file by the content decryption unit 81 is completed, the download completion notification unit 83 accesses the content distribution server 50 according to ack_url in the download information acquired by the download information. Then, the download completion notification unit 83 sends a second download completion notification specifying the CID, UID, and SID received from the browser unit 73 and the XID stored in the DRM information storage unit 76 to the content distribution server 50.

  The content display unit 84 causes the display unit 72 to display the content indicated by the content file stored in the content storage unit 82 in accordance with a user operation. Further, the content display unit 84 may display the bibliographic information and the display image stored in the content storage unit 82 on the display unit 72 according to a user operation.

(Processing example of content distribution system)
Next, the processing flow of the content distribution system 1 will be described with reference to FIG. FIG. 15 is a diagram showing a processing sequence in the content distribution system 1.

  Here, it is assumed that the terminal device 70 acquires the XID “aaaa” and the DRM key “XXXX” from the DRM server 10 in advance, and stores the acquired XID and DRM key in the DRM information storage unit 76.

  First, the user selects a favorite store server 30 from among a plurality of store servers 30, and operates the terminal device 70 so that the browser unit 73 accesses the store server 30. Here, the case where the store server 30 with the store name “A bookstore” is accessed will be described. It should be noted that the user has previously purchased content at the store server 30 of “A bookstore”, and the user name “satoh” and password “xxxxxxxxx” are registered in the purchase information storage unit 34 of the store server 30. (First line in FIG. 7). Therefore, the terminal device 70 acquires and displays the purchase screen after logging in using the user name “satoh” and the password “xxxxxxxxx” when accessing the store server 30.

  The terminal device 70 displays, for example, a purchase screen as shown in FIG. Here, as illustrated in FIG. 16B, it is assumed that the user selects the content of the title “Nine stories” as a purchase target and a purchase instruction is input. At this time, the browser unit 73 of the terminal device 70 transmits a purchase instruction for designating the selected content to be purchased to the store server 30 (see S1 in FIG. 15).

  In the store server 30 that has received the purchase instruction, the payment processing unit 36 performs the payment processing and processing for registering the purchase information in the purchase information storage unit 34, and the screen generation unit 35 generates download start data. Here, the screen generation unit 35 sends the CID “1-1-18” and the download URL “http://intermediary.com/” corresponding to the content designated by the purchase instruction to the product information storage unit 32 (FIG. 6). ). In addition, the screen generation unit 35 specifies the UID “1” corresponding to the name of the logged-in user from the customer information storage unit 33 (see FIG. 7). The screen generation unit 35 generates download start data (see FIG. 9) including the CID, UID, download URL and SID “1” stored in advance. The download start data shown in FIG. 9 includes purchase completion screen data. Then, the communication unit 31 of the store server 30 sends the download start data (including the purchase completion screen) generated by the screen generation unit 35 to the browser unit 73 (S2).

  Upon receiving the download start data, the browser unit 73 displays a purchase completion screen according to the data (S3). FIG. 16C shows an example of a purchase completion screen.

  In addition, the browser unit 73 activates the electronic book application unit 74 in accordance with JavaScript (registered trademark) embedded in the download start data, and the CID, UID, SID and download URL included in the download start data are displayed in the electronic book application unit. 74 (S4).

  Next, in the electronic book application unit 74 that has received the download start instruction, the download information acquisition unit 77 accesses the content distribution server 50 indicated by the download URL, and the CID, UID, and SID, and the DRM information storage unit 76. Transmits a download information request designating the XID stored in (S5).

  The download information providing unit 54 of the content distribution server 50 returns download information regarding the content indicated by the designated CID as shown in FIG. 13 to the electronic book application unit 74 (S6).

  In the electronic book application unit 74 that has received the download information, the personalized ticket acquisition unit 79 accesses the content distribution server 50 according to the ticket_url of the download information. Then, the personalized ticket acquisition unit 79 sends a personalized ticket request designating the CID, UID and SID received in S4 and the XID issued in advance to the content distribution server 50 (S7).

  The individualized ticket providing unit 55 of the content distribution server 50 identifies the store URL corresponding to the SID designated in S7 from the store information storage unit 53 (see FIG. 12) (S8). Then, the personalized ticket providing unit 55 sends an authentication request including the XID, UID, and CID specified in S7 to the store server 30 in accordance with the store URL specified in S8 (S9). Here, the SID specified in S7 is the SID included in the download start data transmitted in S2. Therefore, the individualized ticket providing unit 55 can make an authentication request to the store server 30 on which the content purchase processing has been performed in S1 and S2.

  In the store server 30 that has received the authentication request, the authentication processing unit 37 performs an authentication process, and returns the result to the content distribution server 50 (S10). At this time, the authentication processing unit 37 may read the expiration date (content browsing time limit) corresponding to the CID included in the authentication request from the purchase information storage unit 34 and transmit it to the content distribution server 50.

  Here, in the case of an individualized ticket request from the terminal device 70 of a legitimate purchaser, the authentication processing unit 37 determines that the line (record) that matches the CID, UID, and XID specified in S9 is the purchase information storage unit 34. Since it is stored in (see FIG. 8), it is determined that the authentication is successful.

  If an unauthorized person makes an individualized ticket request (S7), the authentication processing unit 37 determines that the line (record) that matches the CID, UID, and XID specified in S9 is the purchase information storage unit 34 (see FIG. 8). ) Is not stored, the authentication failure is determined, and the result is returned to the content distribution server 50. In this case, the content distribution server 50 notifies the terminal device 70 of an error.

  In the content distribution server 50 that has received the result of the authentication success, the individualized ticket providing unit 55 reads the decryption key corresponding to the CID designated in S7 from the content information storage unit 52 (see FIG. 11). Then, the individualized ticket providing unit 55 sends an individualized ticket request including the read decryption key and the XID designated in S7 to the DRM server 10 (S11).

  When the individualized ticket generation unit 14 of the DRM server 10 receives the individualized ticket request, the individualized ticket generation unit 14 uses the DRM key (see FIG. 4A) corresponding to the XID specified in the request to generate the individualized ticket request. Generate a personalized ticket by encrypting the specified decryption key. The DRM server 10 responds to the content distribution server 50 with the generated individualized ticket (S12). Then, the content distribution server 50 transfers the individualized ticket to the electronic book application unit 74 as a response to S7 (S13). At this time, when the expiration date (content browsing expiration date) is received from the store server 30 in S10, the expiration date may also be transmitted to the terminal device 70. Thereby, the user who operates the terminal device 70 can confirm the expiration date.

  FIG. 17 is a conceptual diagram illustrating the individualized ticket generation process. As shown in FIG. 17, the content distribution server 50 has in advance an encrypted content file and a decryption key for decrypting the encrypted content file. Then, the DRM server 10 generates the individualized ticket by encrypting the decryption key using the DRM key corresponding to the XID.

In parallel with the processes of S7 to S13, the processes of S14 to S19 are also executed.
That is, the content acquisition unit 78 acquires the encrypted content file from the content distribution server 50 through S14 and S17. Further, the content acquisition unit 78 acquires a cover image from the content distribution server 50 through S15 and S18. Further, the bibliographic information acquisition unit 80 acquires the bibliographic information from the content distribution server 50 through S16 and S19. In S14 to S16, the terminal device 70 accesses the content distribution server 50 based on the download information received in S6, and specifies the CID, UID, and SID received in S4 and the XID stored in the DRM information storage unit 76. Request transmission of various information. In S17 to S19, the encrypted content file, the cover image, and the bibliographic information corresponding to the designated CID are read from the content information storage unit 52 (see FIG. 11) and distributed to the terminal device 70.

  Next, the content decryption unit 81 of the terminal device 70 decrypts the individualized ticket received in S13 using the DRM key stored in the DRM information storage unit 76, as shown in FIG. Is generated. Then, the content decryption unit 81 decrypts the encrypted content file received in S17 using the generated decryption key (S20).

  When the decryption of the encrypted content file is completed, the download completion notification unit 83 accesses the content distribution server 50 according to the ack_url of the download information, and the CID, UID and SID received in S4, and the XID stored in the DRM information storage unit 76 Is sent to the content distribution server 50 (S21).

  In the content distribution server 50 that has received the second download completion notification, the download completion processing unit 58 specifies the store URL (see FIG. 12) corresponding to the SID specified in the second download completion notification (S22). Then, the download completion processing unit 58 sends a first download completion notification including the CID, UID, and XID specified in the second download completion notification to the store server 30 of the specified store URL (S23). Thereby, in the store server 30, the purchase information management part 38 can update purchase information, and can manage purchase information uniquely.

(Summary)
As described above, in the present embodiment, each of the plurality of dealer servers 30 includes the screen generation unit (purchase instruction reception unit) 35 that receives a content purchase instruction from the terminal device 70. Thereby, since the store server 30 can receive a purchase instruction directly from the user, the purchase information storage unit 34 can be managed independently.

  Further, the terminal device 70 accesses the content distribution server 50 based on the download URL (access information). Then, the terminal device 70 includes a CID (content identification information), a UID (purchaser information), an SID (sales store identification information), and an XID registration unit (first key issuance) included in the download start data received from the store server 30. (Part)) XID (user identification information) issued by 12 is specified, and an encrypted content file and an individualized ticket are requested to the content distribution server 50. At this time, the individualized ticket is distributed when the designated CID and UID match the CID and UID stored in the purchase information storage unit 34 of the store server 30 corresponding to the designated SID. Since the dealer server 30 indicated by the SID is the dealer server 30 that has received the purchase instruction, the individualized ticket is not distributed to a third party who has made unauthorized access.

  Further, the individualized ticket is obtained by encrypting the decryption key (second key) corresponding to the content indicated by the CID using the DRM key (first key) corresponding to the designated XID. In the terminal device 70, the individualized ticket is decrypted using the DRM key, and the encrypted content file is decrypted using the decrypted individualized ticket. The DRM key is issued from the DRM server 10. Therefore, if a DRM key is issued from the DRM server 10, a plurality of encrypted content files purchased from different store servers 30 can be decrypted using the DRM key. That is, the terminal device 70 can use a plurality of encrypted content files purchased from different dealer servers 30 in the same environment without using different decryption methods for each dealer server 30.

  In the present embodiment, the decryption key (second key) corresponding to the content is encrypted by using the DRM key (first key) corresponding to the designated XID, and the terminal device 70 The decryption key corresponding to the content is decrypted using the DRM key to decrypt the content. However, the DRM server 10 may directly encrypt the content body using the DRM key. In this case, the content providing unit 56 of the content distribution server 50 distributes the encrypted content file encrypted using the DRM key to the terminal device 70. The content decryption unit 81 of the terminal device 70 directly decrypts the encrypted content file using the DRM key.

(Other)
Finally, each of the servers 10, 30, 50 and the terminal device 70 of the content distribution system 1 may be realized in hardware by a logic circuit formed on an integrated circuit (IC chip) or may be a CPU (Central Processing). Unit) may be implemented in software.

  In the latter case, each of the servers 10, 30, 50 and the terminal device 70 includes a CPU that executes instructions of a program that realizes each function, a ROM (Read Only Memory) that stores the program, and a RAM (Random that expands the program). Access Memory), a storage device (recording medium) such as a memory for storing the program and various data, and the like. The object of the present invention is to read the program codes (execution format program, intermediate code program, source program) of the control programs of the servers 10, 30, 50 and the terminal device 70, which are software for realizing the functions described above, with a computer. The recording medium recorded as possible is supplied to each of the servers 10, 30, 50 and the terminal device 70, and the computer (or CPU or MPU) reads out and executes the program code recorded in the recording medium. Achievable.

  Examples of the recording medium include non-transitory tangible medium, such as magnetic tape and cassette tape, magnetic disk such as floppy (registered trademark) disk / hard disk, and CD-ROM / MO. Discs including optical discs such as / MD / DVD / CD-R, cards such as IC cards (including memory cards) / optical cards, semiconductor memories such as mask ROM / EPROM / EEPROM (registered trademark) / flash ROM Alternatively, logic circuits such as PLD (Programmable Logic Device) and FPGA (Field Programmable Gate Array) can be used.

  The servers 10, 30, 50 and the terminal device 70 may be configured to be connectable to a communication network, and the program code may be supplied via the communication network. The communication network is not particularly limited as long as it can transmit the program code. For example, the Internet, intranet, extranet, LAN, ISDN, VAN, CATV communication network, virtual private network, telephone line network, mobile communication network, satellite communication network, and the like can be used. The transmission medium constituting the communication network may be any medium that can transmit the program code, and is not limited to a specific configuration or type. For example, even with wired lines such as IEEE 1394, USB, power line carrier, cable TV line, telephone line, ADSL (Asymmetric Digital Subscriber Line) line, infrared rays such as IrDA and remote control, Bluetooth (registered trademark), IEEE 802.11 wireless, HDR ( It can also be used by radio such as High Data Rate (NFC), Near Field Communication (NFC), Digital Living Network Alliance (DLNA), mobile phone network, satellite line, and digital terrestrial network. The present invention can also be realized in the form of a computer data signal embedded in a carrier wave in which the program code is embodied by electronic transmission.

  The present invention can be applied to a content distribution system that distributes contents such as electronic books via a network.

1 Content distribution system 10 DRM server 11 Communication unit 12 XID registration unit (first key issuing unit)
13 XID storage unit 14 Individualized ticket generation unit 30 Dealer server 31 Communication unit 32 Product information storage unit 33 Customer information storage unit 34 Purchase information storage unit 35 Screen generation unit (purchase instruction reception unit, information transmission unit)
36 Settlement Processing Department (Purchase Information Registration Department)
37 authentication processing unit 38 purchase information management unit 50 content distribution server 51 communication unit 52 content information storage unit 53 store information storage unit 54 download information providing unit 55 individualized ticket providing unit 56 content providing unit 57 bibliographic information providing unit 58 download completed Processing unit (transfer unit)
70 terminal device 71 communication unit 72 display unit 73 browser unit 74 electronic book application unit 75 DRM information registration unit 76 DRM information storage unit 77 download information acquisition unit (request unit)
78 Content acquisition part (request part)
79 Individualized ticket acquisition part (request part)
80 Bibliographic Information Acquisition Unit 81 Content Decoding Unit 82 Content Storage Unit 83 Download Completion Notification Unit 84 Content Display Unit

Claims (8)

A terminal device;
Multiple dealer servers providing different content sales services;
A content distribution server for distributing content to the terminal device;
A content distribution system including a DRM server,
The DRM server is
A first key issuing unit that issues user identification information for identifying a user who uses the content distribution system and a first key assigned to the user in association with the terminal device;
Each of the plurality of dealer servers is
A purchase instruction receiving unit for receiving a content purchase instruction from the terminal device;
A purchase information storage unit that stores purchase information in which content identification information that identifies content to be purchased specified in the purchase instruction is associated with purchaser information that identifies a purchaser;
An information transmitting unit for transmitting to the terminal device access information for accessing the content distribution server, the purchase information, and store identification information for identifying its own store server;
The terminal device is
Encrypted content that accesses the content distribution server based on the access information and specifies the purchase information and the store identification information transmitted by the information transmission unit and the user identification information issued by the first key issuing unit A request unit for transmitting a file and individualized ticket distribution request to a content distribution server;
The content distribution server
A content information storage unit that stores an encrypted content file and a second key for decrypting the encrypted content file for each content;
When the purchase information specified in the distribution request matches the purchase information stored in the purchase information storage unit of the store server indicated by the store identification information specified in the distribution request, it is specified in the distribution request. The personalized ticket obtained by encrypting the second key corresponding to the content indicated by the content identification information of the purchase information is acquired using the first key corresponding to the user identification information, and the distribution request is sent to the personalized ticket. An individualized ticket providing unit that transmits to the terminal device that has transmitted,
A content providing unit that transmits an encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request to the terminal device that transmitted the distribution request;
The terminal device is
The personalized ticket provided from the personalized ticket providing unit is decrypted using the first key issued by the DRM server, and the encryption provided from the content providing unit using the decrypted personalized ticket A content distribution system comprising a content decrypting unit for decrypting a content file. The individualized ticket providing unit of the content distribution server transmits an authentication request specifying the purchase information specified in the distribution request to the store server indicated by the store identification information specified in the distribution request,
The dealer server determines that the authentication is successful when the purchase information specified in the authentication request is registered in the purchase information storage unit, and determines that the authentication is failed when the purchase information is not registered. The content distribution system according to claim 1, further comprising an authentication processing unit that transmits to the content distribution server. A terminal device;
Multiple dealer servers providing different content sales services;
A content distribution server for distributing content to the terminal device;
A content distribution system including a DRM server,
The DRM server is
A first key issuing unit that issues user identification information for identifying a user who uses the content distribution system and a first key assigned to the user in association with the terminal device;
Each of the plurality of dealer servers is
A purchase instruction receiving unit for receiving a content purchase instruction from the terminal device;
A purchase information storage unit that stores purchase information in which content identification information that identifies content to be purchased specified in the purchase instruction is associated with purchaser information that identifies a purchaser;
An information transmitting unit for transmitting to the terminal device access information for accessing the content distribution server, the purchase information, and store identification information for identifying its own store server;
The terminal device is
Encrypted content that accesses the content distribution server based on the access information and specifies the purchase information and the store identification information transmitted by the information transmission unit and the user identification information issued by the first key issuing unit A request unit for transmitting a file distribution request to a content distribution server;
The content distribution server
When the purchase information specified in the distribution request matches the purchase information stored in the purchase information storage unit of the store server indicated by the store identification information specified in the distribution request, it is specified in the distribution request. The encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request encrypted using the first key corresponding to the user identification information is transmitted to the terminal device that transmitted the distribution request. A content provider that
The terminal device is
A content distribution system comprising: a content decrypting unit that decrypts the encrypted content file provided from the content providing unit using the first key issued by the DRM server. The terminal device is
A download completion notification unit that transmits a download completion notification including purchase information and store identification information transmitted by the information transmission unit to the content distribution server when decoding by the content decryption unit is completed;
The content distribution server
A transfer unit that transfers the purchase information included in the download completion notification to the store server indicated by the store identification information included in the download completion notification;
The above dealer server
A purchase information management unit that specifies purchase information that matches the purchase information transferred from the transfer unit from the purchase information storage unit, and stores information related to download in the purchase information storage unit in association with the specified purchase information. The content distribution system according to any one of claims 1 to 3, wherein A terminal device;
Multiple dealer servers providing different content sales services;
A content distribution server for distributing content to the terminal device;
A content distribution method in a content distribution system including a DRM server,
The content distribution server stores an encrypted content file and a second key for decrypting the encrypted content file for each content,
A first step in which the DRM server issues, to the terminal device, user identification information for identifying a user who uses the content distribution system in association with a first key assigned to the user;
The store server receives a content purchase instruction from the terminal device, and stores purchase information in which the content identification information for identifying the purchase target content and the purchaser information for identifying the purchaser are associated with each other in the purchase information storage unit A second step to
A third step in which the store server transmits to the terminal device access information for accessing the content distribution server, the purchase information, and store identification information for identifying its own store server;
The terminal device accesses the content distribution server based on the access information, specifies the purchase information and the store identification information transmitted from the store server, and the user identification information issued in the first step. A fourth step of transmitting a distribution request for the encrypted content file and the individualized ticket to the content distribution server;
When the purchase information specified in the distribution request matches the purchase information stored in the purchase information storage unit of the store server indicated by the store identification information specified in the distribution request, the content distribution server The personalized ticket obtained by encrypting the second key corresponding to the content indicated by the content identification information of the purchase information using the first key corresponding to the user identification information specified in the distribution request is obtained. A fifth step of transmitting an authentication ticket to the terminal device that has transmitted the distribution request;
A sixth step in which the content distribution server transmits an encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request, to the terminal device that transmitted the distribution request;
The terminal device uses the first key issued in the first step to decrypt the personalized ticket provided in the fifth step, and uses the decrypted personalized ticket to provide the encryption provided in the sixth step. And a seventh step of decrypting the encrypted content file. A terminal device;
Multiple dealer servers providing different content sales services;
A content distribution server for distributing content to the terminal device;
A content distribution method in a content distribution system including a DRM server,
A first step in which the DRM server issues, to the terminal device, user identification information for identifying a user who uses the content distribution system in association with a first key assigned to the user;
The store server receives a content purchase instruction from the terminal device, and stores purchase information in which the content identification information for identifying the purchase target content and the purchaser information for identifying the purchaser are associated with each other in the purchase information storage unit A second step to
A third step in which the store server transmits to the terminal device access information for accessing the content distribution server, the purchase information, and store identification information for identifying its own store server;
The terminal device accesses the content distribution server based on the access information, specifies the purchase information and the store identification information transmitted from the store server, and the user identification information issued in the first step. A fourth step of transmitting an encrypted content file distribution request to the content distribution server;
Specified in the distribution request when the purchase information specified in the distribution request matches the purchase information stored in the purchase information storage unit of the store server indicated by the store identification information specified in the distribution request The encrypted content file corresponding to the content indicated by the purchase information specified in the distribution request, encrypted using the first key corresponding to the user identification information, is sent to the terminal device that has transmitted the distribution request. A fifth step of transmitting;
A content distribution method comprising: a sixth step in which the terminal device decrypts the encrypted content file provided in the fifth step using the first key issued in the first step.   The program for operating the content delivery system of any one of Claim 1 to 4, Comprising: The program for functioning a computer as said each part.   A computer-readable recording medium on which the program according to claim 7 is recorded.

Images