JP2014042244A - Content transmission device and content transmission method - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a transmission and reception device and a content transmission method which are suitable for protecting copyright of a content such as video audio stored at home when a user transmits the content via a network.SOLUTION: A content transmission device 100 comprises: a communication processing unit 113 which performs transmission and reception of data with a content reception device via a network; an apparatus authentication processing unit 108 which authenticates the content reception device and transmits key information; and an encryption processing unit 112 which encrypts a content to be transmitted to the content reception device by using the key information. The apparatus authentication processing unit executes: first apparatus authentication processing for performing authentication of the content reception device on the basis of a first home verification method; and second apparatus authentication processing for performing authentication of the content reception device on the basis of a second home verification method for accepting access to the content from outside of the home.

Description

  The present invention relates to a transmission device and a content transmission method suitable for protecting the copyright of transmitted content when transmitting and receiving content such as video and audio via a network.

  When content is transmitted between digital AV devices, encryption is performed on the content transmission device side, and information for decryption is shared with the content reception device side, thereby being a transmission destination. Copy protection is implemented to prevent the creation of unlimited copies so that the content is not correctly received and decrypted by devices other than the content receiving device.

  As an example of such a copy protection method, there is a method described in Patent Document 1, for example, which is incorporated in a digital AV device. In the method described in Patent Document 1, contents are classified and managed as “Copy free”, “Copy one generation”, “No more copies”, “Copy never”, and only “Copy free” and “Copy one generation” contents are recorded on the recording device. After the “Copy one generation” content is recorded once, it is handled as “No more copies”, and on the bus, the “Copy free” content is excluded and transmission is performed on the transmission side. This prevents unlimited content copying. In addition, in content transmission over wired or wireless networks, it is determined that the content is a home network so that copyrighted content such as broadcast programs recorded at home is not distributed outside the home without limit. Techniques for doing so are disclosed.

JP 2005-269288 A

  Users who have devices used in mobile environments such as notebook PCs and portable terminals are highly demanded to use these devices to access home content from travel destinations, trains, etc. . On the other hand, the above-described conventional technology incorporates a function for confirming that the device on the transmission side and the device on the reception side are in the same house when the content subject to copyright protection is transmitted via a wired or wireless network. Yes. For this reason, it is not possible to access content that is subject to copyright protection from the outside.

  A content transmitting device transmits / receives data to / from the content receiving device via a network, a device authentication processing unit that authenticates the content receiving device and transmits key information, and the content using the key information An encryption processing unit for encrypting content to be transmitted to the receiving device, wherein the device authentication processing unit includes a first device authentication process for authenticating the content receiving device based on a first in-home confirmation method; Based on a second in-home confirmation method for access, a second device authentication process for authenticating the content receiving device is performed.

  If the device registration process for home access is executed in advance with the content transmission device in the house, and only the content reception device that has succeeded in these processes, the device authentication process dedicated to the home is executed from outside the home. Can be watched. Thereby, a legitimate user can view the contents in the house from outside the house without exceeding the range of personal use, and the convenience for the user is improved.

It is explanatory drawing which showed the example of 1 structure of the system. It is explanatory drawing which showed the example of 1 structure of the content transmission / reception apparatus. It is explanatory drawing which showed the example of 1 structure of the content receiver. It is explanatory drawing which showed the example of 1 structure of the apparatus information management part. It is explanatory drawing which showed the example of 1 structure of management information. It is explanatory drawing which showed an example of the apparatus authentication process sequence implemented between a content receiver and a content transmitter. It is explanatory drawing which showed an example of the apparatus registration process sequence for outside access implemented between a content receiver and a content transmitter. It is explanatory drawing which showed the example of 1 structure of the information table for remote access. It is explanatory drawing which showed an example of the apparatus authentication process sequence for the outside access implemented between a content receiver and a content transmitter. It is explanatory drawing which showed an example of the content viewing-and-listening processing sequence from the outside implemented between a content receiver and a content transmitter. It is explanatory drawing which showed an example of the apparatus registration process sequence for outside access implemented between a content receiver and a content transmitter. It is explanatory drawing which showed an example of the apparatus authentication process sequence for the outside access implemented between a content receiver and a content transmitter. It is explanatory drawing which showed an example of the content viewing-and-listening processing sequence from the outside implemented between a content receiver and a content transmitter. It is explanatory drawing which showed an example of the apparatus registration process sequence for outside access implemented between a content receiver and a content transmitter. It is explanatory drawing which showed the example of 1 structure of the management table. It is explanatory drawing which showed an example of the apparatus authentication process sequence for the outside access implemented between a content receiver and a content transmitter. It is explanatory drawing which showed the example of data in the case of transmitting a content using a HTTP protocol in the content viewing process from a house between a content receiver and a content transmitter.

  Embodiments will be described with reference to the drawings.

(Managed separately by performing RTT twice in the authentication procedure for outside registration)
FIG. 1 shows a system configuration example. In the user home 1, the content transmission device 100 and the content reception device 200 are connected to the network hub device 11 via a wired LAN cable, and the network hub device 11 is connected to the router 12. The router 12 is connected to the Internet 3 via a modem or a photoelectric converter.

  When the user is away (for example, a hotel or a company) 2, the user's portable terminal 300 can communicate with the wireless access point 22 and can be connected to the Internet 3 via the router 21. In addition, the content receiving device 400 installed outside the office is connected to the Internet 3 via the router 21.

  In the network, standard IP (Internet Protocol) is used as a network protocol, and TCP (Transmission Control Protocol) and UDP (User Datagram Protocol) are used as upper transport protocols. For transmission of content, higher-level application protocols such as RTP (Real-time Transport Protocol), HTTP (Hyper Text Transfer Protocol), FTP (File Transfer Protocol) and the like are used. Note that IP has IPv4 and IPv6 as the version differences, but is not limited to either.

  The content transmission device 200, the content transmission device 100, the content reception device 300, and the router 12 each have an IP address that identifies itself on the IP network. A 48-bit MAC (Media Access Control) address is given to the interface unit of each network communication processing circuit. For setting the IP address to each device, for example, the router 12 may be operated as a DHCP server by DHCP (Dynamic Host Configuration Protocol), and the IP address of each device may be assigned from here.

When IPv6 (Internet Protocol Version 6) is used, each device can determine its own IP address from the upper 64 bits of the IP address of the router 12 and the MAC address by a method called stateless automatic setting.
Here, in FIG. 1, each device in the user's home 1 is connected by a wired LAN, but a LAN using a wireless access point may be used. Alternatively, the hub 11 and the router 12 may be integrated.

FIG. 2 is a configuration example of the content transmission apparatus 100. The content receiving devices 300 and 400 have the same configuration.
The content transmission apparatus 100 includes a tuner 101, a descrambler 102, a demultiplexer 103, a decoder 104, a display unit / speaker 105, a digital terminal 106, an input processing unit 107, a device authentication processing unit 108, a device information management unit 109, and a recording / playback. The processing unit 110, the recording unit 111, the encryption / decryption processing unit 112, the communication processing unit 113, the digital input / output terminal 114, and the control unit 115 are configured.

The tuner 101 selects a desired channel from a plurality of channels received from the broadcasting station via the antenna 10, and demodulates the digitally modulated program.
The descrambler 102 de-scrambles the program that is being played in order to be able to receive only the channel contracted with the service provider.
The demultiplexer 103 extracts audio data and video data from the broadcast program.

The decoder 104 decodes the compressed audio data and video data received from the broadcast program and the digital input / output terminal 114, and expands them to the original audio signal and video signal.
The display unit / speaker 105 reproduces the output signal from the decoder 104 and the signal input from the digital terminal 106. It may be external rather than internal.
The digital terminal 106 inputs uncompressed digital data.
The input processing unit 107 operates the content transmission apparatus 100 by using a remote control or a touch panel by a user.

The device authentication processing unit 108 is a device that is properly certified with each other with a specific authentication protocol with another AV device in order to transfer the content subject to copyright protection via a wired or wireless IP network. Authenticates the existence of a key and shares the key used for content encryption / decryption.
The device information management unit 109 manages information related to the AV device that has been successfully authenticated by the device authentication processing unit 108.

The recording / playback processing unit 110 performs recording control for recording content in the recording unit 111 and playback control for playing back content recorded in the recording unit 111.
The recording unit 111 is a built-in memory that records a broadcast program. In addition, a removable HDD, an optical disk, a memory card, and a hybrid form combining these may be used.

  The encryption / decryption processing unit 112 encrypts or decrypts the content received via the digital input / output terminal 114 via the broadcast program or the network using the key shared by the device authentication processing unit 108.

  The communication processing unit 113 transmits and receives content and control commands to and from other AV devices connected via a network via the digital input / output terminal 114. Identification codes such as “Copy free”, “Copy one generation”, “No more copies”, and “Copy never” indicating how to handle the content are added to the content to be transmitted / received.

The digital input / output terminal 114 inputs / outputs contents and control commands via the network.
The control unit 115 comprehensively controls the operation of each unit in the content transmission apparatus 100.

FIG. 3 is a configuration example of the mobile terminal 200.
The mobile terminal 200 includes a tuner 201, a descrambler 202, a demultiplexer 203, a decoder 204, a display unit / speaker 205, a digital terminal 206, a camera imaging unit 207, a communication processing unit 208, an input processing unit 209, a device authentication processing unit 210, The device information management unit 211, the recording / playback processing unit 212, the recording unit 213, the encryption / decryption processing unit 214, the wireless encryption / decryption processing unit 215, the wireless communication processing unit 216, and the control unit 217 are configured.

The camera imaging unit 207 is a part that captures images with a camera.
The recording unit 213 is a non-volatile memory that stores moving images / still images captured by the camera imaging unit 207, programs received via the tuner 201, information such as personal information and an address book. A built-in or removable memory form is conceivable.

The wireless encryption / decryption processing unit 215 encrypts / receives the content received via the wireless network via the wireless communication processing unit 216 or the content output from the encryption / decryption processing unit 214 using an encryption algorithm for the wireless network. This is the part to be decrypted. The wireless communication processing unit 216 is a part that transmits / receives content and control commands to / from the wireless access point 22 and other AV devices connected via a wireless LAN.
The other portions are the same as those of the content transmission device 100 and the content reception device 300 or 400.

FIG. 4 is a configuration example of the device information management unit 109 (same for 211) in each device.
The device information management unit 109 includes a timer 1091, a device information update unit 1092, and a device information storage unit 1093.

The timer 1091 is used when the device authentication processing unit 108 (as well as 210) confirms whether or not the device to be authenticated exists in the home, or when the registration information stored in the device information storage unit 1093 described later is valid This is the part used to measure time when managing
The device information update unit 1092 is a part that manages the expiration date of registration information held in a device information storage unit 1093 described later and performs registration / update / deletion as necessary.
The device information storage unit 1093 is a part that holds information related to the authentication partner device when the device authentication processing unit 109 succeeds in device authentication.

FIG. 5 is a configuration example of device information 5000 stored in the device information storage unit 1093.
The device information 5000 includes a management table 5100 and a device information table 5200.
The management table 5100 includes a device authentication maximum number 5101, an out-of-home registration maximum number 5102, an in-home counter maximum value 5103, an out-of-home counter maximum value 5104, a simultaneous access maximum number 5105, and an out-of-home simultaneous access maximum number 5106.

The maximum device authentication maximum number 5101 indicates the maximum number that device authentication can be performed between the content transmission device and the reception device using the device authentication processing unit 108.
The maximum number of out-of-home registrations 5102 indicates the maximum number of out-of-home access devices that can be registered.
The home counter maximum value 5103 indicates the maximum value of the home counter set in the timer 1091.

The home counter maximum value 5104 indicates the maximum value of the home counter set in the timer 1091.
The simultaneous access maximum number 5105 indicates the maximum number that permits a content access request.
The maximum number of outside accesses 5106 indicates the maximum number that permits a content access request from outside the house.

On the other hand, the device information table 5200 includes an ID 5201, a device ID 5202, address information 5203, a home counter value 5204, a remote access key 5205, an access status 5206, and a remote counter value 5207.
ID5201 indicates the registration number of the table.

  The device ID 5202 indicates an identifier for uniquely identifying each device. The device ID 5202 is information unique to a device that is generated by a specific certification authority and is stored in advance in a nonvolatile memory when each device is manufactured, and has a unique value for each device. In addition, information such as a public key may be included.

Address information 5203 indicates the IP address, MAC address, and the like of each device on the network.
The home counter value 5204 indicates the current value of the home counter set in the timer 1081.

An out-of-home access key 5205 indicates key information used in authentication / encryption / decryption processing when content is transferred among the home, the content transmission device, and the content reception device outside the home.
The access status 716 indicates a transfer status (for example, stop / in-home / out-of-home) between the content transmission device and the reception device.
An out-of-home counter value 5207 indicates the current value of the out-of-home counter set in the timer 1081.

  The management table 5100 uses the home counter maximum value 5104 in addition to the home counter maximum value 5103, and uses the home counter 5205 in addition to the home counter 5204 in the device information table, so that the home access and the home Access is managed separately, and restrictions different from in-home access can be applied to out-of-home access.

  The home is an internal network of the user home 1 having the router 12 as an external boundary in the configuration of FIG. 1 or an internal network having the router 21 as an external boundary. The term “outside of the house” refers to a network on the Internet 3 side with the router 12 or 21 as a boundary with respect to the inside of the house.

  The in-home access is a connection between devices in the internal network in the configuration of FIG. 1, and is an access that does not pass through a router from the in-home device to the same in-home device. In addition, the outside access is a connection from outside the house to a device in the house, and means that the device outside the house passes the router via the Internet and accesses the device in the house.

  Further, by managing the out-of-home access key 5204 for each ID, it is possible to distribute the individual out-of-home access key to each device and perform access management. In addition, by setting the maximum simultaneous access number 5105 and the maximum remote access number 5106 in the management table 5100 and managing the access status for each ID in the device information table, the total number of accesses inside and outside the house, The number of accesses can be limited.

  FIG. 6 shows a device authentication processing procedure executed between the content transmitting device 100 and the content receiving device 300 in the home in the system configuration shown in FIG. 1 using each device and each information described above. . Here, TCP is used as a protocol for transmission / reception of information for device authentication processing. When various information such as an authentication request to the other device and an authentication response to the other device is transmitted, the reception confirmation is received from the other device. As a result, a communication path capable of detecting a transmission error is secured. In FIG. 6, data transmission / reception for establishing and discarding a connection by TCP is omitted.

  First, an authentication request is created from the content receiving device 300 side. The device authentication processing unit 108 of the content receiving device 300 attaches the device-specific information including the device ID to the authentication request and a certificate for the device-specific information to the content transmitting device 100 via the communication processing unit 111. Send (S601).

  When the device authentication processing unit 108 of the content transmission device 100 receives the authentication request via the communication processing unit 107 and sends a reception confirmation to the content reception device 300 (S602), the device authentication processing unit 108 of the content transmission device 100 is An authentication request is generated from the user side, and the unique information of the content transmitting apparatus 100 and its certificate are attached to the content receiving apparatus 300 as in the case of the content receiving apparatus (S603).

The device authentication processing unit 108 of the content receiving device 300 receives the authentication request and sends a reception confirmation to the content transmitting device 100 (S604).
Next, the device authentication processing unit 108 of the content transmitting apparatus 100 verifies each piece of information received in the authentication request, and sends an authentication response with parameters necessary for generating key information to the content receiving apparatus 300 (S605). .

  The device authentication processing unit 108 of the content receiving apparatus 300 receives the authentication response and sends the reception confirmation to the content transmitting apparatus 100 (S606), creates an authentication response from its own side, and is the same as in the case of the content transmitting apparatus. An authentication response with parameters necessary for generating key information is sent to the content transmitting apparatus 100 (S607), and an authentication key common to the content transmitting apparatus 100 is generated using the necessary parameters.

The device authentication processing unit 108 of the content transmitting apparatus 100 receives the authentication response and sends a reception confirmation to the content receiving apparatus 300 (S608). Similar to the content receiving apparatus, the device authentication processing unit 108 uses the necessary parameters in common with the content receiving apparatus 300. Generate an authentication key.
Through the procedure so far, the device authentication processing unit 108 of the content transmission device 100 and the device authentication processing unit 210 of the content reception device 200 generate and share a common authentication key.

Next, the content transmitting apparatus 100 transmits to the content receiving apparatus 300 that preparation for in-home confirmation is performed in order to confirm whether or not the content receiving apparatus 300 is a device existing in the house (S609).
When the device authentication processing unit 108 of the content receiving device 300 receives the notification of the in-home confirmation preparation and sends the reception confirmation to the content transmitting device 100 (S610), it creates the in-home confirmation preparation notification from its own side and transmits the content. The data is sent to the apparatus 100 (S611).

When the device authentication processing unit 108 of the content transmitting apparatus 100 receives the notification of the in-home confirmation preparation and sends the reception confirmation to the content receiving apparatus 300 (S612), it sends the in-home confirmation setting request with the information necessary for in-home confirmation to the content. The data is sent to the receiving apparatus 300 (S613).
The device authentication processing unit 108 of the content receiving device 300 receives the home confirmation setting request, performs message authentication code generation processing based on data included in the home confirmation setting request as preparation necessary for home confirmation, The data is sent to the transmission device 100 (S614).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 performs message authentication code generation processing based on the data transmitted to the content reception device 300 in S613, and starts the timer 1081 in the device information management unit 103. After that, in order to confirm whether the content receiving device 300 exists in the home, a home confirmation execution request including the message authentication code is sent to the content receiving device 300 (S615).

  The device authentication processing unit 108 of the content receiving apparatus 300 receives the in-home confirmation execution request and sends a reception confirmation including the message authentication code generated in S614 to the content transmitting apparatus 100 (S616).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmitting apparatus 100 stops the timer 1081, and a measured value (T1) from when the in-home confirmation execution request is issued until the reception confirmation is received is a predetermined value. Confirm that (T) is not exceeded. Further, it is confirmed whether or not the message authentication code included in the received reception confirmation is correct.

  If measurement value (T1) ≦ predetermined value (T) and the received message authentication code is correct, it is determined that content receiving device 300 is a device that exists in the house and is within the range of personal use. Then, the result is sent to the content receiving device 300 as a home confirmation result (S617).

  On the other hand, if measured value (T1)> predetermined value (T), or if the received message authentication code is invalid, content receiving device 300 may be located outside the home or is an unauthorized device. If it is determined that there is, the subsequent processing is interrupted and the device authentication processing is terminated. The device authentication processing unit 108 of the content receiving apparatus 300 that has received the in-home confirmation result confirms whether or not the message authentication code received in S615 is correct, and if it is determined to be correct, sends a reception confirmation to the content transmitting apparatus 100 (S618). ). S609 to S618 are in-home confirmation methods in normal authentication.

  On the other hand, if the received message authentication code is invalid, the subsequent processing is interrupted and the device authentication processing is terminated. Upon receipt of the receipt confirmation, the device authentication processing unit 108 of the content transmitting apparatus 100 generates an exchange key used when encrypting the content, encrypts the exchange key using the authentication key, and identifies the exchange key Along with the ID, it is sent to the content receiving apparatus 300 (S619).

The device authentication processing unit 108 of the content receiving device 300 decrypts the exchange key transmitted from the content transmitting device 100 using the authentication key, and sends a reception confirmation (S620).
Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmitting device 100 registers information related to the content receiving device 300 in the device information table 5200 in the device information management unit 109 (S621).

  For example, as shown in a record 5211 of ID 501 in the device information table 5101, the device ID of the content receiving apparatus 300 received in S 601 is set to the device ID 5202, and the IP address of the content receiving apparatus 300 on the network is address information. 5203, the home counter maximum value 5103 in the management table 700 is set as the home counter value 5204, and “stop” is set in the access status 5206.

  With the processing procedure shown in FIG. 6, the device authentication processing unit 108 of the content transmission device 100 and the device authentication processing unit 108 of the content reception device 300 can share a common exchange key. The exchange key is used to generate a common key for encrypting / decrypting the content. Further, the processes of S609 and S613 and the processes of S617 and S619 may be summarized.

The procedure in FIG. 6 has been described for home device authentication processing executed between the content transmission device 100 and the content reception device 300 when content transfer is performed in the home.
By performing the processing procedure shown in FIG. 6, it is possible to confirm that the devices are mutually authorized devices and share a key used for content encryption / decryption.

  FIG. 7 shows a device registration process procedure for remote access executed between the content transmitting apparatus 100 and the portable terminal 200 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is in the user's home 1 when executing this procedure.

First, the content transmitting apparatus 100 and the content receiving apparatus 200 implement the device authentication process 600 described with reference to FIG.
Thereafter, the device authentication processing unit 210 of the content receiving device 200 creates an out-of-home access device registration request and sends it to the content transmitting device 100 (S701). The remote access device registration request can include a random number generated using a predetermined calculation algorithm, information unique to the device, a password set by the user for remote access, and the like.

  When the device authentication processing unit 108 of the content transmission device 100 receives the request for registration of the outside access device and sends a reception confirmation to the content reception device 200 (S702), the content reception device 200 is connected to the access device outside the home by the content reception device 200. In order to confirm whether the device that has requested registration is a device existing in the home, the content receiving apparatus 200 is notified that preparation for in-home confirmation for registration of an out-of-home access device is performed (S703).

  When the device authentication processing unit 210 of the content receiving device 200 receives the notification of the in-home access device registration preparation for the out-of-home access device and sends the reception confirmation to the content transmitting device 100 (S704), the out-of-home access device from its own side A registration home confirmation preparation notification is created and sent to the content transmitting apparatus 100 (S705).

  When the device authentication processing unit 108 of the content transmitting apparatus 100 receives the notification of the in-home access device registration preparation for home confirmation and sends the reception confirmation to the content receiving device 200 (S706), the home authentication for out-of-home access device registration is performed. An in-home access device registration home confirmation setting request with necessary information attached is sent to the content receiving apparatus 200 (S707).

  The device authentication processing unit 210 of the content receiving device 200 receives the in-home access setting registration request for in-home access device registration, and based on the data included in the out-of-home access device registration in-home confirmation setting request as preparation necessary for in-home confirmation. A message authentication code generation process is performed, and reception confirmation is sent to the content transmitting apparatus 100 (S708).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 performs message authentication code generation processing based on the data transmitted to the content reception device 200 in S707 and starts the timer 1081 in the device information management unit 103. After that, in order to confirm whether or not the content receiving device 200 exists in the home, a home confirmation execution request including the message authentication code is sent to the content receiving device 200 (S709).

  The device authentication processing unit 208 of the content receiving device 200 receives the request for execution of in-home access device registration confirmation, and sends a reception confirmation including the message authentication code generated in S708 to the content transmitting device 100 (S710).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmitting apparatus 100 stops the timer 1081, and measures the measured value (from when the remote access device registration in-home confirmation execution request is issued until the reception confirmation is received) It is confirmed that T2) does not exceed a predetermined value (T ′). Further, it is confirmed whether or not the message authentication code included in the received reception confirmation is correct.

  If measurement value (T2) ≦ predetermined value (T ′) and the received message authentication code is correct, it is determined that content receiving apparatus 200 is in the house and is within the range of personal use. Then, the result is sent to the content receiving apparatus 200 as a result of in-home confirmation for registration of the outside access device (S711).

  On the other hand, if measured value (T2)> predetermined value (T ′), or if the received message authentication code is invalid, content receiving apparatus 200 may exist outside the house or an unauthorized device Is determined, the subsequent processing is interrupted, and the device authentication processing is terminated. The device authentication processing unit 210 of the content receiving apparatus 200 that has received the in-home confirmation result confirms whether or not the message authentication code received in S709 is correct, and if it is determined to be correct, sends a reception confirmation to the content transmitting apparatus 100 (S712). ). S703 to S712 are in-home confirmation methods for registering access devices outside the home.

  On the other hand, if the received message authentication code is invalid, the subsequent processing is interrupted and the device authentication processing is terminated. Upon receipt of the receipt confirmation, the device authentication processing unit 108 of the content transmitting apparatus 100 generates an out-of-home access key for use in device authentication processing and content encryption when using the content from outside the home. The remote access key is encrypted using the authentication key of the device authentication processing 600 and sent to the content receiving apparatus 200 (S713).

The device authentication processing unit 108 of the content receiving device 200 decrypts the remote access key transmitted from the content transmitting device 100 using the authentication key, and sends a reception confirmation (S714).
Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 registers information related to the content reception device 200 in the device information table 5200 in the device information management unit 109 (S715).

  For example, as shown in the record 5212 of ID 501 in the device information table 5101, the device ID of the content receiving apparatus 200 received in S601 is set to the device ID 5202, and the MAC address of the content receiving apparatus 200 on the network is address information. 5203, the home counter maximum value 5103 in the management table 700 is set as the home counter value 5204, and the remote access key generated in S713 is registered in the home access key 5205.

  Further, “stop” is set in the access status 5206, and the maximum counter value 5104 in the management table 700 is set in the counter value outside the house. On the other hand, the device authentication processing unit 208 of the content receiving device 200 generates or updates the remote access information table 6000 stored in the device management information unit 211 (S716).

  By performing the processing from S701 to S714 in addition to the device authentication processing 600, the device authentication processing unit 108 of the content transmitting device 100 and the device authentication processing unit 108 of the content receiving device 200 succeeded in device authentication for home access. For devices, in addition to a common exchange key, a common out-of-home access key can be shared only with devices that have been successfully verified in-home for registration of out-of-home access devices.

  Here, the exchange key is used to generate a common key for encrypting / decrypting content transmitted / received in the home. The outside access key is used for device authentication processing and content encryption when using content from outside the house. Further, by performing the process of S715, it is possible to register in the content transmitting apparatus 100 a device that has been successfully verified in the home for registration of the access device outside the home and can share the access key outside the home, and an unregistered device can be registered. Connection control can be performed when an access request is made from outside the house.

  The procedure in FIG. 7 is to share an outside access key between the content transmitting apparatus 100 and the content receiving apparatus 200 and register the content receiving apparatus 200 in the content transmitting apparatus 100 prior to transferring the content to an external device. The remote access device registration process executed for this purpose has been described.

FIG. 8 shows an example of the configuration of the remote access information management table 6000.
The remote access information management table 6000 includes an ID 6001, connection destination address information 6002, registration information 6003, and a remote access key 6004.

ID 6001 indicates a registration number of the table.
Address information 6002 indicates the IP address, MAC address, etc. of each device on the network.
Registration information 6003 indicates a user name and password necessary for the content receiving apparatus 200 to log in to the content transmitting apparatus 100 and the router 12 from outside the house.
The remote access key 6004 indicates the remote access key information received in S714.

  By performing the processing of the procedure shown in FIGS. 6 and 7, only devices that have been mutually authorized between the devices and devices that have been confirmed to be home devices can be accessed in the home. When the key used for encryption / decryption of the content to be used is shared, the remote access key used for device authentication processing and content encryption is shared at the time of access outside the home, and the content transmission device is accessed in the home and outside the home. Devices can be registered.

  Also, by using different in-home confirmation methods for normal authentication processing and out-of-home access device registration, for example, requesting a shorter in-home confirmation response time when registering out-of-home access devices, etc. Individual access restrictions can be made. In addition, by using the management table and the device information table shown in FIG. 5, it is possible to manage the home access and the outside access separately and perform individual access restrictions.

  Here, instead of the processing of S701 to S702, device authentication processing as in S601 to S608 is performed to share another authentication key, and the remote access key is encrypted using this to the content receiving device 200. There is also a way to send. Further, after the normal device authentication process 600 is completed, the content transmission device 100 provides a time during which the remote access authentication request can be accepted, and the content reception device 200 issues the remote access authentication request within a predetermined time. It may be necessary to do.

  Further, the processing of S701 to S712 may be performed immediately before S619 in the normal device authentication processing 600. In this case, S713 to S716 are executed after S620, or one processing of S619 and S713 is performed. You may put together.

  FIG. 9 shows a device authentication processing procedure for access outside the house executed between the content transmitting apparatus 100 and the portable terminal (content receiving apparatus) 200 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is outside the home when executing this procedure.

  First, the device authentication processing unit 208 of the content receiving device 200 creates an out-of-home authentication request. The remote authentication request is sent to the content transmitting apparatus 100 with the device-specific information including the device ID, the calculated value generated using the remote access key or key, and a certificate (S901).

  Upon receiving the out-of-home authentication request, the device authentication processing unit 108 of the content transmission device 100 registers the device ID of the content reception device 200 in the device information table 5200 managed in the device information management unit 109. Then, the reception confirmation is sent to the content receiving apparatus 200 (S902). If the device ID of the content receiving device 200 is not registered in the device information table 5200, the content transmitting device 100 interrupts the subsequent processing.

  Next, the device authentication processing unit 108 of the content transmitting apparatus 100 creates an out-of-home authentication request from its own side, and, as in the case of the content receiving apparatus 200, the unique information of the content transmitting apparatus 100 and the out-of-home access The key or a calculated value generated using the key and a certificate are attached to the content receiving apparatus 200 (S903).

The device authentication processing unit 208 of the content receiving apparatus 200 receives the out-of-home authentication request and sends a reception confirmation to the content transmitting apparatus 100 (S904).
Next, the device authentication processing unit 108 of the content transmitting apparatus 100 verifies each piece of information received in the outside authentication request, and generates the calculated value generated using the outside access key or key and the key information. An out-of-home authentication response with the necessary parameters is sent to the content receiving apparatus 200 (S905).

  The device authentication processing unit 208 of the content receiving apparatus 200 receives the out-of-home authentication response and sends the receipt confirmation to the content transmitting apparatus 100 (S906), then creates an out-of-home authentication response from its own side and transmits the content. As in the case of the apparatus, an out-of-home authentication response with parameters necessary for generating key information is sent to the content transmitting apparatus 100 (S907), and the out-of-house authentication key shared with the content transmitting apparatus 100 using the necessary parameters is sent. Is generated.

The device authentication processing unit 108 of the content transmitting apparatus 100 receives the outside authentication response and sends a reception confirmation to the content receiving apparatus 200. Similar to the content receiving apparatus, the device authentication processing unit 108 uses the necessary parameters in common with the content receiving apparatus 200. An authentication key is generated (S908).
Through the procedure so far, the device authentication processing unit 108 of the content transmission device 100 and the device authentication processing unit 210 of the content reception device 200 generate and share a common authentication key.

  Next, after confirming that the out-of-home counter value 5207 of the content receiving device 200 in the device information table 5200 is not 0 (S909), an out-of-home exchange key used for encrypting the content is generated. Then, the remote exchange key is encrypted using the remote authentication key and sent to the content receiving apparatus 200 together with the ID for identifying the remote exchange key (S910).

The device authentication processing unit 208 of the content receiving device 200 decrypts the remote exchange key transmitted from the content transmitting device 100 using the remote authentication key and sends a reception confirmation (S911).
Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 updates the information related to the content reception device 200 in the device information table 5200 in the device information management unit 109 (S912). Specifically, the access status 5206 is updated from “stop” to “outside home”.

The above procedure describes the device authentication process executed between the content transmission device 100 and the content reception device 200 when content is transferred outside the home.
By performing the above procedure, it is possible to confirm that the devices are mutually authorized devices, and share a key used for content encryption / decryption when transferring content outside the home it can.

  FIG. 10 shows a processing procedure when the portable terminal (content receiving device) 200 is taken out of the house and the content recorded in the recording unit 111 of the content transmitting device 100 is viewed from the outside location 2 in the system configuration shown in FIG. 1000.

  First, when a user instructs content viewing using the input processing unit 209 of the content receiving device 200, the control unit 217 of the content receiving device 200 displays a content transmitting device list on the display unit / speaker 205. In the content transmission device list, the content transmission device 100 which is a device registered in the remote access table 6000 is displayed (S1001).

  Here, as a method for detecting a content transmission apparatus existing on the network, for example, a UDP packet including a “request for detecting a device having a content transmission function” is multicast-transmitted to all apparatuses on the network. There is a method of recognizing a content transmission device by sending a reply only from a device equipped with.

  Next, when the user selects the content transmission device 100 from among the content transmission devices, the control unit 217 of the content reception device 200 refers to the address information of the content reception device 100 registered in the remote access information table 6000. Then, a content information acquisition request is sent from the wireless communication processing unit 216 to the content transmitting apparatus 100 of the user's home 1 via the Internet 3 via the wireless access point 22 and the router 21 (S1102).

  The control unit 115 of the content transmission device 100 sends a reception confirmation to the content reception device 200 via the communication processing unit 113 (S1103), and information about part or all of the content stored in the recording unit 111 (for example, title, Date, copy control information, recording time, etc.) are sent to the content receiving apparatus 200 (S1104).

The control unit 217 of the content receiving device 200 sends a reception confirmation to the content transmitting device 100 (S1105), and displays the received content information on the display unit / speaker 205 as a content list. When the user instructs the content to be viewed from the content list via the input processing unit 209 (S1106), the device authentication processing unit 210 of the content receiving device 200 communicates with the device authentication processing unit 108 of the content transmitting device 100 with the outside of the house. A device authentication process 900 for access is performed. (S1007)
Thereafter, the control unit 217 of the content receiving apparatus 200 sends a request for viewing desired content to the content transmitting apparatus 100 (S1008). At this time, an ID for identifying the remote exchange key received in the remote access device authentication processing 900 may be added to the viewing request.

  After starting the content transfer, the device authentication processing unit 210 of the content receiving apparatus 200 transmits a key confirmation request to the content transmitting apparatus 100 at an arbitrary timing (S1011). Upon receiving the key confirmation request, the device authentication processing unit 108 of the content transmitting apparatus 100 transmits a reception confirmation to the content receiving apparatus 200 according to the confirmation result (S1012).

  The control unit 115 of the content transmitting apparatus 100 sends a reception confirmation in response to the content viewing request (S1009), the device authentication processing unit 108 checks whether the identification ID of the remote exchange key is correct, and the device information update unit 1092 The timer 1091 in the device information management unit 109 is set to be notified periodically (for example, every 1 minute, every 10 minutes, etc.) and started. In addition, the device authentication processing unit 108 generates a common key for encrypting content using the remote exchange key, and sets the common key in the encryption / decryption processing unit 112.

  Then, the desired content read from the recording unit 111 is sent to the content receiving apparatus 200 in the format shown in FIG. 17 while being encrypted by the encryption / decryption processing unit 112 (S1010). Here, every time a notification is received from the timer 1091 during content transmission, the device information update unit 1092 updates the counter value 5207 for outside the house in the device information table 5000 (for example, the counter value is decremented).

  The device authentication processing unit 210 of the content receiving device 200 generates a common key for decrypting the content using the remote exchange key, and sets the common key in the encryption / decryption processing unit 214. Then, for the data received via the wireless communication processing unit 216 and the wireless encryption / decryption processing unit 215, the encryption / decryption processing unit 214 extracts and decrypts the encrypted content included in the payload from the format shown in FIG. The data is output to the display unit / speaker 205 while being decoded by the decoder 204.

  As described above, only when the device registration processing 700 for outside access is performed between the content transmitting device and the content receiving device in advance in the home and the content receiving device that has been successfully authenticated is taken out of the home. If the access authentication process 900 is executed successfully, the content can be transferred from the home content transmission device to the content reception device outside the home.

  FIG. 17 shows an example of data when content is transmitted using the HTTP protocol in the encrypted content transfer processing S1010 of the content viewing processing procedure 1000 from outside the house. Here, TCP is used as the transport layer protocol, but the TCP header is omitted.

Transmission data 1700 when content is transmitted using the HTTP protocol includes an HTTP header 1701 and a content transmission packet 1702.
The content transmission packet 1702 includes a header part 17021 and a payload part 17022.

  The header portion 17021 includes reserved areas (Reserved) 170211 and 170213, a remote access flag (RA) 170212, an encryption method (C_A) 170214, an encryption mode (E-EMI) 170215, an exchange key label (Exchange_Key_Label) 170216, a random value (Nc). ) 170217 and a payload size (Byte Length of Payload) 170218.

Reserved areas (Reserved) 170211 and 170213 are reserved areas, each of which is set to 0.
A remote access flag (RA) 170212 indicates whether or not the payload part can be accessed from outside the house, and is set to 1 when access is possible and set to 0 when access is not allowed.
The encryption method (C_A) 170214 indicates the encryption method of the payload part. For example, it is clearly indicated that encryption is performed with AES having a key length of 128 bits.

The encryption mode (E-EMI) 170215 indicates the encryption mode of the payload portion, and is used for calculating the content key together with the random value (SNc) 17018.
The exchange key label (Exchange_Key_Label) 170216 sets a label for identifying the key exchanged in the authentication procedure 600.

  Copy control information (PCP-UR) 17017 indicates copy control information of the payload part, a copy control information mode (UR Mode) indicating the type of the copy control information, a content type (Content Type) indicating the type of the payload part, analog It is composed of an APS for limiting output and ICT for limiting resolution.

  The payload size (Byte Length of Content) 170219 sets the size of the payload portion 1702 of the content transmission packet 1700. The payload portion 17022 is composed of encrypted content.

  By adding a remote access flag (RA) to the content transmission packet 1702, it is possible to transmit whether or not the content to be transmitted is content that can be accessed outside the home. Further, by adding a remote access flag (RA) 170212 to the header portion 17021, it is possible to determine whether or not access outside the home is possible before decoding.

  For example, when content is transmitted using the RTP protocol, the content can be transmitted with the same configuration as in FIG. 17 by replacing the HTTP header 1701 with the RTP header. Alternatively, if both the RTP header and the content transmission packet 1700 are stored for each RTP packet, the copy control information including the remote access flag 170212 can be reliably transmitted.

When the content transfer is completed, the content transmission device stops the timer 1091, discards the remote exchange key, and performs a dedicated authentication process outside the home again even if the content reception device continuously issues another content viewing request. You may make it not transmit unless it performs.
In addition, the content transmitting apparatus can limit the number of content receiving apparatuses that can be accessed from outside the house at the same time by using the maximum outside access number 5106 in the management table 5100.

  In S1008, the content transmission apparatus 100 has received a “view request” for the content. However, if other requests such as “copy request” or “move request” are received from outside the house, the content is illegally used. You may make it refuse to avoid as much as possible. Here, the protocol used for transmitting content from the content transmitting apparatus 100 to the content receiving apparatus 200 is not limited to a specific protocol, and it is possible to use FTP or the like in addition to HTTP and RTP.

  By using the device information shown in FIG. 5 and using the procedure shown in FIG. 7, the content receiving device that accesses the home device from outside the home can perform normal device authentication processing with the content transmitting device in the home beforehand. Performs device authentication processing for remote access, shares the remote access key only with devices that have been successfully verified in the home, which is different from normal device authentication processing, and registers information related to the content reception device in the device information table of the content transmission device do that for me.

  As a result, the content receiving apparatus can be regarded as a personally owned device, and even if it is taken out of the house, it can be safely viewed without exceeding the range of personal use of the content according to the procedure shown in FIGS. can do.

(External registration processing is for outdoor use only)
In the first embodiment described above, device registration processing for outside access is performed simultaneously with device authentication processing for home use. In the present embodiment, a case will be described in which in-home confirmation different from in-home authentication is performed and only device registration processing for outside access is performed in order to shorten the device authentication processing time.

  FIG. 11 shows a device registration process procedure 1100 for outside access that is executed in advance between the content transmitting apparatus 100 and the mobile terminal 200 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is in the user home 1 when this procedure is executed.

  First, an authentication request for registering an external access device is created from the content receiving device 200 side. The device authentication processing unit 210 of the content receiving device 200 attaches the device-specific information including the device ID described above to the authentication request and a certificate for the information, and sends the information to the content transmitting device 100 via the communication processing unit 211 (S1101). ).

  When the device authentication processing unit 108 of the content transmission device 100 receives the authentication request for registration outside the home device via the communication processing unit 107 and sends a reception confirmation to the content reception device 200 (S1102), the device of the content transmission device 100 The authentication processing unit 108 creates an authentication request for registering an external access device from its own side, and sends it to the content receiving apparatus 200 with the unique information of the content transmitting apparatus 100 and its certificate as in the case of the content receiving apparatus. (S1103).

The device authentication processing unit 210 of the content receiving device 200 receives the remote access device registration authentication request, and sends a reception confirmation to the content transmitting device 100 (S1104).
Next, the device authentication processing unit 108 of the content transmitting apparatus 100 verifies each piece of information received in the authentication request, and sends an authentication response with parameters necessary for generating key information to the content receiving apparatus 200 (S1105). .

  The device authentication processing unit 210 of the content receiving apparatus 200 receives the authentication response and sends the reception confirmation to the content transmitting apparatus 100 (S1106), creates an authentication response from its own side, and is the same as in the case of the content transmitting apparatus. Is sent to the content transmitting apparatus 100 with a parameter necessary for generating key information (S1107), and an authentication key common to the content transmitting apparatus 100 is generated using the necessary parameter.

  The device authentication processing unit 108 of the content transmission device 100 receives the authentication response and sends a reception confirmation to the content reception device 200 (S1108). Similar to the content reception device, the device authentication processing unit 108 uses the necessary parameters in common with the content reception device 200. Generate an authentication key.

  Through the procedure so far, the device authentication processing unit 108 of the content transmission device 100 and the device authentication processing unit 210 of the content reception device 200 generate and share a common authentication key. Next, in order to confirm that the content receiving device 200 exists in the home, the content transmitting device 100 transmits to the content receiving device 200 that preparation for in-home confirmation for external access device registration is made (S1109).

  When the device authentication processing unit 210 of the content receiving device 200 receives the notification of the in-home access device registration preparation for the remote access device registration and sends the reception confirmation to the content transmitting device 100 (S1110), the external access device from its own side A registration home confirmation preparation notification is created and sent to the content transmitting apparatus 100 (S1111).

  When the device authentication processing unit 108 of the content transmitting apparatus 100 receives the notification of the preparation for in-home confirmation for registration of the out-of-home access device and sends the reception confirmation to the content receiving device 200 (S1112), the information necessary for the in-home confirmation is attached. An in-home confirmation setting request for registration outside the home device is sent to the content receiving apparatus 200 (S1113).

  The device authentication processing unit 210 of the content receiving device 200 receives the in-home access setting registration request for in-home access device registration, and based on the data included in the out-of-home access device registration in-home confirmation setting request as preparation necessary for in-home confirmation. Message authentication code generation processing is performed, and reception confirmation is sent to the content transmission apparatus 100 (S1114).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 performs message authentication code generation processing based on the data transmitted to the content reception device 200 in S1113, and starts the timer 1091 in the device information management unit 109. After that, in order to confirm whether or not the content receiving device 200 exists in the home, a home confirmation execution request including the message authentication code is sent to the content receiving device 200 (S1115).

  The device authentication processing unit 210 of the content receiving device 200 receives the request for execution of in-home access device registration confirmation, and sends a reception confirmation including the message authentication code generated in S1114 to the content transmitting device 100 (S1116).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmitting apparatus 100 stops the timer 1091 and issues a measurement value (from the issuance of the in-home access device registration in-house confirmation execution request to the reception confirmation being received). It is confirmed that T2) does not exceed a predetermined value (T ′). Further, it is confirmed whether or not the message authentication code included in the received reception confirmation is correct.

  If measurement value (T2) ≦ predetermined value (T ′) and the received message authentication code is correct, it is determined that content receiving apparatus 200 is in the house and is within the range of personal use. Then, the result is sent to the content receiving device 200 as a home confirmation result (S1117).

On the other hand, if measured value (T2)> predetermined value (T ′), or if the received message authentication code is invalid, content receiving apparatus 200 may exist outside the house or an unauthorized device Is determined, the subsequent processing is interrupted, and the device authentication processing is terminated.
The device authentication processing unit 210 of the content receiving apparatus 200 that has received the in-home confirmation result confirms whether or not the message authentication code received in S1115 is correct, and if it is determined to be correct, sends a reception confirmation to the content transmitting apparatus 100 (S1118). ). S1109 to S1118 are in-home confirmation methods for registering access devices outside the home.

  On the other hand, if the received message authentication code is invalid, the subsequent processing is interrupted and the device authentication processing is terminated. Upon receipt of the reception confirmation, the device authentication processing unit 108 of the content transmitting apparatus 100 generates an out-of-home access key used for device authentication processing and content encryption when using content from outside the home, and uses the authentication key as the authentication key. Using this, the access key outside the house is encrypted and sent to the content receiving apparatus 200 (S1119).

The device authentication processing unit 210 of the content receiving device 200 decrypts the remote access key transmitted from the content transmitting device 100 using the authentication key, and sends a reception confirmation (S1120).
Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 registers information related to the content reception device 200 in the device information table 5200 in the device information management unit 109 (S1121).

  For example, as shown in the record 5213 in which the ID 5201 in the device information table 5101 is 3, the device ID of the content receiving apparatus 200 received in S1101 is set to the device ID 5202, and the MAC address of the content receiving apparatus 200 on the network is set. The address information 5203 is set, and the outside access key generated in S1119 is registered in the inside access key 5205.

  Further, “stop” is set in the access status 5206, and the maximum counter value 5104 in the management table 700 is set in the counter value outside the house. On the other hand, the device authentication processing unit 210 of the content receiving device 200 generates or updates the remote access information table 6000 stored in the device management information unit 211 (S1122).

  In-home confirmation for out-of-home access device registration when T2 in the in-home confirmation success / failure determination S1117 of the out-of-home access device registration processing 1100 is equal to or less than T1 in in-home confirmation success / failure determination S617 in the normal home access device authentication processing 600 The successful confirmation in S1117 may be successful in-house confirmation for both in-home authentication and out-of-home access device registration authentication. At this time, the home exchange key is shared with the outside access key.

  In the device information table update processing S1121, the device ID of the content receiving apparatus 200 received in S601 is set to the device ID 5202 as shown in the record 521 of the ID 501 in the device information table 5101, and the content on the network The MAC address of the receiving device 200 is set in the address information 5203, the home counter maximum value 5103 in the management table 700 is set in the home counter value 5204, and the remote access key generated in S713 is registered in the home access key 5205 To do.

  Further, “stop” is set in the access status 5206, and the maximum counter value 5104 in the management table 700 is set in the counter value outside the house.

  From the above, the device authentication processing unit 108 of the content transmitting apparatus 100 and the device authentication processing unit 108 of the content receiving apparatus 200 share a common outside access key. The remote access key is used for device authentication processing and content encryption when using content from outside the home.

  In addition to the normal device authentication and key exchange shown in FIG. 6, by performing the device authentication and registration processing of the remote access device in the procedure of S1101 to S1120, the device authentication processing for normal access and the normal authentication are performed. A common remote access key can be shared only with a device that has been successfully verified in the home for registration of a remote access device that is different from the remote access device.

  Further, by performing only the out-of-home access device registration processing, the time required for the out-of-home access device registration processing can be shortened. By performing the processing of S1121, it is possible to register in the content transmitting apparatus 100 a device that has been successfully confirmed in the home for registering the access device outside the home and can share the access key outside the home. It is possible to perform connection control when an access request is received from the network.

  Further, when T2 in the in-home confirmation success / failure determination S1117 of the authentication process for in-home access device registration 1100 is equal to or less than T1 in in-home confirmation success / failure determination S617 in the device authentication process 600 for normal in-home access, for in-home access device registration With the successful confirmation in the in-house confirmation S1117, the in-home confirmation and the out-of-home access device registration authentication are both successful, so that the normal device authentication process and the out-of-home access device registration authentication process are performed once. The authentication processing time can be shortened.

  Only when the device registration processing 1100 for outside access is performed between the content transmitting device and the content receiving device in advance at home in accordance with the procedure of FIG. 11 and the content receiving device that has been successfully authenticated is taken out of the home. If the authentication processing 900 for remote access is executed successfully, the content is transferred from the content transmitting device in the home to the content receiving device outside the home according to the procedure of the content viewing processing procedure 1000 from outside the home shown in FIG. Can do.

  When the content transfer is completed, the content transmission device stops the timer 1091, discards the remote exchange key, and performs a dedicated authentication process outside the home again even if the content reception device continuously issues another content viewing request. You may make it not transmit unless it performs.

  In addition, the content transmitting apparatus can limit the number of content receiving apparatuses that can be accessed from outside the house at the same time by using the maximum outside access number 5106 in the management table 5100.

  A content receiving device that accesses a home device from outside the home in accordance with the procedure of FIG. 11 performs device authentication processing for home access with the content transmitting device in the home in advance and shares the access key at the same time as the content. Have the information about the content receiving device registered in the device information table of the transmitting device. Thereby, the content receiving apparatus can be regarded as a personally owned device, and even when taken out of the house, it can be safely viewed without exceeding the range of personal use of the content.

(Pass the access key outside the home with the bridge device)
In the above-described embodiment, the device that receives the content by accessing outside the home performs the outside access registration in advance in the user's home. In the present embodiment, a description will be given of a procedure in which a device that receives content without viewing the content in advance is registered in the user's home in advance.

  FIG. 12 shows an out-of-home access device authentication and out-of-home access key exchange processing procedure 1200 executed between the mobile terminal 200 and the content receiving device 400 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is in the place 2 when executing this procedure.

  The content receiving apparatus 200 performs an out-of-home access device registration process 700 or an out-of-home access device registration authentication process 1100 with the content transmission apparatus 100 in advance, and the out-of-home access key is transmitted from the source content transmission apparatus. Is acquired (S1201).

  First, an authentication request for outside access is created from the content receiving device 400 side. The device authentication processing unit 108 of the content receiving device 400 attaches the device-specific information including the device ID described above to the authentication request and a certificate for the device-specific information to the content receiving device 400 via the communication processing unit 113. Send (S1202).

  When the device authentication processing unit 210 of the content receiving device 200 receives the authentication request for access outside the home via the communication processing unit 208 and sends the reception confirmation to the content receiving device 400 (S1203), the device authentication processing of the content receiving device 200 The unit 210 creates a remote access authentication request from its own side, attaches the unique information of the content receiving device 200 and its certificate, and sends it to the content receiving device 400 as in the case of the content receiving device 400 (S1204). .

The device authentication processing unit 108 of the content receiving apparatus 400 receives the remote access authentication request and sends a reception confirmation to the content receiving apparatus 200 (S1205).
Next, the device authentication processing unit 210 of the content receiving device 200 verifies each piece of information received in the authentication request, and sends an authentication response with parameters necessary for generating key information to the content receiving device 400 (S1206). .

  The device authentication processing unit 108 of the content receiving device 400 receives the authentication response and sends the reception confirmation to the content receiving device 200 (S1207), and then creates an authentication response from its own side, as in the case of the content transmitting device. Is sent to the content receiving apparatus 200 (S1208), and an authentication key common to the content receiving apparatus 200 is generated using the necessary parameters.

The device authentication processing unit 210 of the content receiving device 200 receives the authentication response and sends a reception confirmation to the content receiving device 400 (S1209). Generate an authentication key.
Through the procedure so far, the device authentication processing unit 210 of the content receiving device 200 and the device authentication processing unit 108 of the content receiving device 400 generate and share a common authentication key.

Next, in order to confirm that the content receiving device 400 exists in the home, the content receiving device 200 transmits to the content receiving device 400 that preparation for home check for outside access is made (S1210).
When the device authentication processing unit 108 of the content receiving device 400 receives the notification of the in-home access preparation for in-home access and sends the reception confirmation to the content receiving device 200 (S1211), the in-home access for in-home access confirmation from the own side A preparation notification is created and sent to the content receiving apparatus 200 (S1212).

  When the device authentication processing unit 210 of the content receiving device 200 receives the notification of preparation for in-home confirmation for out-of-home access and sends the reception confirmation to the content receiving device 400 (S1213), the device authentication processing unit 210 adds information necessary for in-home confirmation. An access home confirmation setting request is sent to the content receiving apparatus 400 (S1214).

  The device authentication processing unit 108 of the content receiving apparatus 400 receives the in-home access setting request for in-home access, and performs message authentication based on data included in the in-home access device registration in-home confirmation setting request as preparation necessary for in-home confirmation. A code generation process is performed, and a reception confirmation is sent to the content receiving apparatus 200 (S1215).

  Upon receiving the reception confirmation, the device authentication processing unit 210 of the content receiving device 200 performs message authentication code generation processing based on the data transmitted to the content receiving device 400 in S1214, and starts the timer 1091 in the device information management unit 109. After that, in order to confirm whether or not the content receiving device 400 exists in the home, a home check execution request including the message authentication code is sent to the content receiving device 400 (S1216).

  The device authentication processing unit 108 of the content receiving device 400 receives the in-home confirmation execution request and sends a reception confirmation including the message authentication code generated in S1215 to the content receiving device 200 (S1217).

  Upon receipt of the reception confirmation, the device authentication processing unit 210 of the content receiving device 200 stops the timer 1091 and measures the measured value (T2) from when the in-home access execution confirmation request is issued until the reception confirmation is received. Is not exceeding a predetermined value (T ′). Further, it is confirmed whether or not the message authentication code included in the received reception confirmation is correct.

  If measurement value (T2) ≦ predetermined value (T ′) and the received message authentication code is correct, it is determined that content receiving device 400 is a device that exists in the house and is within the range of personal use. Then, the result is sent to the content receiving apparatus 400 as a home confirmation result (S1218).

  On the other hand, if measured value (T2)> predetermined value (T ′), or if the received message authentication code is invalid, content receiving apparatus 400 may exist outside the house or an unauthorized device Is determined, the subsequent processing is interrupted, and the device authentication processing is terminated.

  The device authentication processing unit 108 of the content receiving apparatus 400 that has received the in-home confirmation result confirms whether or not the message authentication code received in S1216 is correct, and if it is determined to be correct, sends a reception confirmation to the content receiving apparatus 200 (S1219). ). S1210 to S1219 are in-home confirmation methods for outside access.

On the other hand, if the received message authentication code is invalid, the subsequent processing is interrupted and the device authentication processing is terminated. Upon receiving the reception confirmation, the device authentication processing unit 210 of the content receiving device 200 encrypts the outside access key acquired in S1201 using the authentication key, and sends it to the content receiving device 400 (S1220).
The device authentication processing unit 108 of the content receiving device 400 decrypts the remote access key transmitted from the content receiving device 200 using the authentication key, and sends a reception confirmation (S1221).

  By performing the procedure shown in S1202 to S1221 in FIG. 12, the content receiving device 400 does not perform the authentication process in the user home 1, and the remote access key shared by the content receiving device 200 with the content transmitting device 100 is obtained. Can be shared. In addition, the content receiving device 200 can share the remote access key shared with the content transmitting device 100 only by a device that has been successfully verified in the home for remote access by performing the processing from S1210 to S1219.

  The above procedure describes the device authentication and remote access key exchange processing for remote access executed between the content receiving device 200 and the content receiving device 400 prior to transferring the content to the remote device.

  FIG. 13 shows that the content recorded in the recording unit 111 of the content transmitting device 100 from the content receiving device 400 of the outing destination 2 is taken out from the content receiving device 400 of the outing destination 2 in the system configuration shown in FIG. This is a processing procedure 1300 for viewing.

  The user previously executes a device registration process 700 for access outside the home between the content transmission device 100 and the portable terminal (content reception device) 200 at the user home 1 and shares the access key outside the home between the two. .

  When the user takes out the mobile terminal (content receiving device) 200 to the outside location 2 and views the content of the content transmitting device 100 in the user home 1 from the content receiving device 400 at the outside location 2, first, from S1001 in FIG. Acquisition of content information and device authentication processing 900 for access outside the home are executed between the content transmission device 100 and the content reception device 200 in the same procedure as in S1007.

  After succeeding in the device authentication process for exclusive use outside the home and sharing the exchange key for home use and the identification ID of the exchange key between them, the control unit 217 of the content receiving device (controller) 200, for example, transmits to all devices on the network. On the other hand, it is detected whether there is another content playback device on the network, such as multicast transmission of a UDP packet including a “detection request for a device with a playback function”, and only a device with the playback function returns. If it exists, the content reproduction device list is displayed on the display unit / speaker 205.

  When the user selects a content reproduction device (in this case, content reception device 400) from the list via the input processing unit 209, the control unit 217 sends a content viewing issue request to the content reception device 400 (S1301). The content viewing issuance request includes information regarding the content to be viewed and the address information 6002 of the content transmitting apparatus 100 registered in the remote access information table 1000, and registration information 6003 may be attached depending on the case.

  The content receiving apparatus 400 that has received the content viewing issue request sends a reception confirmation to the controller 200 (S1302), and implements a device authentication process 1200 for remote access with the controller 200 (S1303). At this time, the device authentication processing unit 210 of the controller 200 uses the remote access key shared with the content transmission device 100 in S1303 as the remote access key sent to the content receiving device 400 in S1220. As a result, the same out-of-home access key can be shared among the content transmitting apparatus 100, the controller 400, and the content receiving apparatus 400.

  After that, the content receiving device 400 executes a device authentication process 900 for access outside the home with the content transmission device 100 using the access key, and acquires the home exchange key and its identification ID (S1304). ). At this time, in the device information table update process of S912, the device information of the content receiving device 400 is newly registered. That is, when receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 registers information related to the content reception device 200 in the device information table 5200 in the device information management unit 109 (S1222).

  For example, as shown in the record 5214 in which the ID 5201 in the device information table 5200 is 4, the device ID of the content receiving apparatus 200 received in S901 is set to the device ID 5202, and the MAC address of the content receiving apparatus 200 on the network is set. The address information 5203 is set, and the outside access key transmitted to the content receiving device 200 is registered in the inside access key 5205. Further, “stop” is set in the access status 5206, and the maximum counter value 5104 in the management table 700 is set in the counter value outside the house.

  Thereafter, the content receiving device 400 sends a content viewing request to the content transmitting device 100 (S1305). The identification ID of the outside exchange key is added to the content viewing request. In addition, in order to have the content transmission apparatus 100 perform format conversion or image quality conversion as necessary and transmit the content, a data format that can be played back by the content reception apparatus 400 (for example, MPEG2-TS or H.264). Etc.) and image quality (HD, SD, 760p, 1080i, etc.) information can be included in the content viewing request. It may be issued by a request different from the content viewing request.

  When receiving the content viewing request, the control unit 115 of the content transmitting apparatus 100 sends a reception confirmation to the content receiving apparatus 400 (S1306). Then, the device authentication processing unit 108 checks that the identification ID of the outside exchange key is correct, the device information update unit 109 sets the timer 1091 in the device information management unit 109 so that a notification is periodically received, to start.

  In addition, the device authentication processing unit 108 generates a common key for encrypting content using the remote exchange key, and sets the common key in the encryption / decryption processing unit 112. Then, the desired content read from the recording unit 111 is sent to the content receiving apparatus 400 in the format shown in FIG. 17 while being encrypted by the encryption / decryption processing unit 112 (S1307). Here, every time a notification is received from the timer 1091 during content transmission, the device information update unit 1092 updates the counter value 5207 for outside the house in the device information table 5200.

  The content receiving device 400 generates a common key for decrypting the content using the remote exchange key, and sets the common key in the encryption / decryption processing unit 112. Then, the content received via the router 21 and the communication processing unit 113 is extracted by the encryption / decryption processing unit 112 from the format shown in FIG. Unit / speaker 105.

  After starting the content transfer, the device authentication processing unit 108 of the content receiving device 400 transmits a key confirmation request to the content transmitting device 100 at an arbitrary timing (S1308). Upon receiving the key confirmation request, the device authentication processing unit 108 of the content transmitting apparatus 100 transmits a reception confirmation to the content receiving apparatus 400 according to the confirmation result (S1309).

  By carrying out the device authentication and remote access key exchange processing 1200 for remote access in S1303, when the controller 200 sharing the remote access key with the content transmitting apparatus in advance at home is taken out of the home Only when the remote access key can be shared between the content transmitting device and the controller, the controller can pass the remote exchange key to the remote content receiving device that has been successfully authenticated.

  As a result, the content in the home can be safely viewed by the content receiving device outside the home without exceeding the range of personal use of the content and without bringing the content receiving device to the user home 1.

  In the embodiment described above, the device registration process for access outside the home is performed in the user home 1 in advance. In the present embodiment, a device registration processing procedure 1200 when the device registration processing for access outside the home is performed from outside the home will be described.

  FIG. 14 shows an out-of-home access device registration processing procedure executed in advance between the content transmitting apparatus 100 and the mobile terminal 200 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is in the place 2 when executing this procedure.

  First, when a user issues a password setting instruction for access outside the home to the content transmission apparatus 100 via the input processing unit 107 at the user home 1, the device information management unit 109 of the content transmission apparatus 100 displays the management table shown in FIG. The remote access password requested to be set is set in the remote access password 5107 of 5300 (S1401). The description of FIG. 15 will be described later.

  Next, when the user inputs a password to the content receiving device 200 taken out to the destination 2 via the input processing unit 209 (S1402) and instructs to start authentication, the device authentication processing unit 210 of the content receiving device 200 moves outside the home. Create an access device registration authentication request. The device authentication processing unit 210 of the content receiving device 200 attaches the device-specific information including the device ID described above to the authentication request and a certificate for the device-specific information to the content transmitting device 100 via the communication processing unit 211. Send (S1403).

  When the device authentication processing unit 108 of the content transmission device 100 receives the authentication request for registration outside the home device via the communication processing unit 107 and sends the reception confirmation to the content reception device 200 (S1404), the device of the content transmission device 100 The authentication processing unit 108 creates an authentication request for registering an external access device from its own side, and sends it to the content receiving apparatus 200 with the unique information of the content transmitting apparatus 100 and its certificate as in the case of the content receiving apparatus. (S1405).

The device authentication processing unit 210 of the content receiving device 200 receives the remote access device registration authentication request and sends a reception confirmation to the content transmitting device 100 (S1406).
Next, the device authentication processing unit 108 of the content transmitting apparatus 100 verifies each piece of information received in the authentication request, and sends an authentication response with parameters necessary for generating key information to the content receiving apparatus 200 (S1407). .

  The device authentication processing unit 210 of the content receiving apparatus 200 receives the authentication response and sends the reception confirmation to the content transmitting apparatus 100 (S1408), and then creates an authentication response from its own side, as in the case of the content transmitting apparatus. Is sent to the content transmitting apparatus 100 with a parameter necessary for generating key information (S1409), and an authentication key common to the content transmitting apparatus 100 is generated using the necessary parameter.

  The device authentication processing unit 108 of the content transmission device 100 receives the authentication response and sends a reception confirmation to the content reception device 200 (S1410). Similar to the content reception device, the device authentication processing unit 108 shares the same with the content reception device 200 using necessary parameters. Generate an authentication key.

  Through the procedure so far, the device authentication processing unit 108 of the content transmission device 100 and the device authentication processing unit 210 of the content reception device 200 generate and share a common authentication key. Next, the content transmitting apparatus 100 sends an out-of-home access user confirmation request to the content receiving apparatus 200 in order to confirm that the request from the content receiving apparatus 200 is from the user (S1411).

  When the device authentication processing unit 210 of the content receiving apparatus 200 receives the remote access user confirmation request and sends the reception confirmation to the content transmitting apparatus 100 (S1412), the external access password input by the user in S1402 is used. An out-of-home access user confirmation response including information encrypted with the common authentication key is created and sent to the content transmitting apparatus 100 (S1413).

  Upon receiving the remote access user confirmation response, the device authentication processing unit 108 of the content transmitting apparatus 100 checks the management table 5300. If the password included in the transmitted information is equal to the password set in S1401, A reception confirmation is sent to the content receiving apparatus 200 (S1414).

  The device authentication processing unit 108 of the content transmitting apparatus 100 generates an out-of-home access key for use in device authentication processing and content encryption when using content from outside the home, and uses the authentication key to provide an out-of-home access key Is encrypted and sent to the content receiving apparatus 200 (S1415).

If the password included in the transmitted information is different from the password set in S1401, the process is interrupted and the device authentication process is terminated.
The device authentication processing unit 210 of the content receiving device 200 decrypts the remote access key transmitted from the content transmitting device 100 using the authentication key, and sends a reception confirmation (S1416).

  Upon receiving the reception confirmation, the device authentication processing unit 108 of the content transmission device 100 registers information related to the content reception device 200 in the device information table 5200 in the device information management unit 109 (S1417).

  For example, as shown in the record 5213 in which the ID 5201 in the device information table 5101 is 3, the device ID of the content receiving apparatus 200 received in S1101 is set to the device ID 5202, and the MAC address of the content receiving apparatus 200 on the network is set. The address information 5203 is set, and the outside access key generated in S1119 is registered in the inside access key 5205.

  Further, “stop” is set in the access status 5206, and the maximum counter value 5104 in the management table 700 is set in the counter value outside the house. On the other hand, the device authentication processing unit 210 of the content receiving device 200 generates or updates the remote access information table 6000 stored in the device management information unit 211 (S1418).

  By executing the processing from S1401 to S1418 in the device registration dedicated processing 1400 for access outside the home, the device authentication processing unit 108 of the content transmitting device 100 and the device authentication processing unit 210 of the content receiving device 200 are mutually connected. Only when it is confirmed that the devices are properly certified and the passwords managed by the devices match each other, they can share a common access key outside the home.

  The remote access key is used for device authentication processing and content encryption when using content from outside the home. The processes of S1412 and S1413 or the processes of S1414 and S1415 may be combined into one. In addition, by using the management table and the device information table shown in FIG. 5, it is possible to manage the home access and the outside access separately and perform individual access restrictions.

Further, the password used in the content transmission device 100 and the content reception device 200 may be a value generated randomly by the content transmission device 100 instead of being set by the user. The out-of-home access password may be common to all out-of-home access devices, or may be an individual value for each out-of-home access device.
The above procedure explained the remote access device registration process executed between the content transmission device 100 and the content reception device 200 prior to transferring the content to the remote device.

  After performing the device registration dedicated processing 1400 for outside access in FIG. 14, according to the content viewing processing procedure 1000 from outside the home described in FIG. 10, the recording of the content transmitting device 100 from the content receiving device 200 at the outside location 2 is performed. The content stored in the unit 111 can be viewed.

FIG. 15 shows a configuration example of the management table 5300 used in the device registration processing procedure from outside the house stored in the device information storage unit 1093.
The management table 5300 includes a device authentication maximum number 5101, an out-of-home registration maximum number 5102, an in-home counter maximum value 5103, an out-of-home counter maximum value 5104, a simultaneous access maximum number 5105, an out-of-home simultaneous access maximum number 5106, and an out-of-home access password. 5107. The outside access password 5107 indicates a password that the user uses when accessing from outside the house.

Other components are the same as those of the management table 5100.
Here, an example in which the out-of-home access password is common to all out-of-home access devices has been shown, but an individual value may be used for each out-of-home access device. When the out-of-home access password is an individual value for each out-of-home access device, each value may be registered in the device information table.

Only when it is possible to confirm that the devices are mutually authorized between the devices by the processing of S1411 to S1414 in FIG. 14 and that the passwords managed by each device match and share the outside access key, If the authentication process 900 for access is executed successfully, the content can be transferred from the content transmitting device in the home to the content receiving device outside the home according to the procedure of the content viewing processing procedure 1000 from outside the home shown in FIG. it can.
As a result, the content in the house can be safely viewed by the content receiving apparatus outside the house without exceeding the range of personal use of the content.

  In the above-described embodiment, device registration processing for access outside the home is performed in advance. In the present embodiment, a procedure will be described in the case where viewing from outside the home is performed only by device authentication and key exchange for outside access without performing the device registration processing for outside access.

  FIG. 16 shows a device authentication processing procedure 1600 for outside access executed between the content transmitting apparatus 100 and the portable terminal (content receiving apparatus) 200 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is in the place 2 when executing this procedure.

  First, when a user issues a password setting instruction for access outside the home to the content transmission apparatus 100 via the input processing unit 107 at the user home 1, the device information management unit 109 of the content transmission apparatus 100 displays the management table shown in FIG. The remote access password requested to be set is set in the remote access password 5107 of 5300 (S1601).

  FIG. 16 shows a device authentication processing procedure for access outside the house executed between the content transmitting apparatus 100 and the portable terminal (content receiving apparatus) 200 in the system configuration shown in FIG. It is assumed that the portable terminal (content receiving device) 200 is in the place 2 when executing this procedure.

  Next, when the user inputs a password to the content receiving device 200 taken out to the destination 2 via the input processing unit 209 (S1602) and instructs the start of authentication, the device authentication processing unit 210 of the content receiving device 200 moves outside the home. An authentication request is created and transmitted to the content transmission apparatus 100 via the communication processing unit 216 (S901). The procedure from S902 to S908 is the same as that in FIG.

Through the procedure so far, the device authentication processing unit 108 of the content transmission device 100 and the device authentication processing unit 210 of the content reception device 200 generate and share a common authentication key.
Next, the content transmitting apparatus 100 sends an out-of-home access user confirmation request to the content receiving apparatus 200 in order to confirm that the request from the content receiving apparatus 200 is from the user (S1603).

  When the device authentication processing unit 210 of the content receiving apparatus 200 receives the remote access user confirmation request and sends the reception confirmation to the content transmitting apparatus 100 (S1604), the remote access password input by the user in S1402 is used as the password. An out-of-home access user confirmation response including information encrypted with the common authentication key is created and sent to the content transmission apparatus 100 (S1605).

  Upon receiving the remote access user confirmation response, the device authentication processing unit 108 of the content transmission apparatus 100 checks the management table 5300. If the password included in the transmitted information is equal to the password set in S1601, 9, the same processing as S910 to S912 is performed. If the password included in the transmitted information is different from the password set in S1401, the process is interrupted and the device authentication process is terminated.

  The above procedure describes the device authentication process for outside access executed between the content transmitting device 100 and the content receiving device 200 before transferring the content to the device outside the home.

  In the content viewing processing procedure 1000 from outside the house described with reference to FIG. 10, if the above-mentioned device authentication processing 1600 for outside access is used instead of the device authentication processing 900 for outside access, device registration is not performed in advance. It is possible to view the content stored in the recording unit 111 of the content transmission device 100 from the content reception device 200 at the outside location 2.

The processing from S1601 to S1606 of the content viewing processing procedure 1000 from outside the house shown in FIG. 10 is executed, and it is confirmed that the devices are mutually authorized devices and the passwords managed by each device match. Only when the exchange key is successfully shared, the content can be transferred from the home content transmission device to the content reception device outside the home.
As a result, the content in the house can be safely viewed by the content receiving apparatus outside the house without exceeding the range of personal use of the content.

1 User's house 1
2 ... Where to go 2
100 ... content transmitting devices 200, 300, 400 ... content receiving devices 107, 209 ... input processing units 108, 210 ... device authentication processing units 109, 211 ... device information management units 110, 212 ... Recording / reproduction processing units 111, 213 ... Recording units 112, 214 ... Encryption / decryption processing unit 113 ... Communication processing unit 215 ... Wireless encryption / decryption processing unit 216 ... Wireless communication Processing unit 1091 ... Timer 1092 ... Device information update unit 1093 ... Device information storage unit 5100, 5300 ... Management table 5200 ... Device information table

Claims (2)

In a content transmission device that transmits content to a content reception device connected via a network,
A communication processing unit that transmits and receives data to and from the content receiving device via the network;
A device authentication processing unit for authenticating the content receiving device and transmitting key information;
An encryption processing unit that encrypts content to be transmitted to the content receiving device using the key information,
The device authentication processing unit receives the content based on a first device authentication process for authenticating the content receiving device based on a first home confirmation method and a second home confirmation method for outside access. A content transmission device that performs a second device authentication process for authenticating a device. In a content receiving device that receives content from a content transmitting device connected via a network,
A communication processing unit that transmits and receives data to and from the content transmission device via the network;
A device authentication processing unit that performs authentication with the content transmission device and receives key information transmitted from the content transmission device;
An encryption / decryption processing unit that decrypts the encrypted content received from the content transmission device using the key information,
The device authentication processing unit receives the content based on a first device authentication process for authenticating the content receiving device based on a first home confirmation method and a second home confirmation method for outside access. A content receiving apparatus that performs a second device authentication process for authenticating a device.

Images