JP2014171215A - Identifier issuing device, transmission device, and reception device - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide an identifier issuing device which issues a reception apparatus ID to a reception device which does not have a reception apparatus ID for identifying the reception device.SOLUTION: An identifier issuing device 2 comprises: device information storage means 21 which prestores a device ID stored in a reception device in association with a device key; reception apparatus ID request reception means 201 which receives an issue request of a reception apparatus ID via communication control means 23; authentication means 22 which performs apparatus authentication in units of device IDs by a common key encryption method using the device key; reception apparatus ID generation means 202 which generates a reception apparatus ID that is unique to each reception device; and reception apparatus ID transmission means 203 which transmits the reception apparatus ID generated by the reception apparatus ID generation means 202 to the authenticated reception device via the communication control means 23.

Description

  The present invention relates to an identifier issuing device and a transmitting device that issue an identifier for individually specifying a receiving device, and a receiving device that acquires the identifier.

In recent years, digital broadcasting such as terrestrial digital broadcasting, BS digital broadcasting, and CS digital broadcasting has become widespread, and it is possible to enjoy various services such as high-quality video / audio services, data broadcasting, and interactive services in general homes. It has become.
In such digital broadcasting, a message indicating that no contract has been made on the screen (video) of a receiving device that has not made a broadcast contract or a reception contract for pay broadcasting in order to restrict viewing of broadcast programs depending on the presence or absence of the contract. Is displayed. This message is erased when the viewer contacts the broadcaster's call center by telephone or the like and registers the receiving device.
The display control of this message is controlled for each identifier of the receiving device, for example, for each identifier (card ID) recorded on the IC card inserted in the receiving device.

However, when a receiving device that does not include an IC card is configured, the receiving device does not have an individual identifier, and thus there is a problem that message display control cannot be performed.
Thus, conventionally, a technique has been disclosed in which an individual identifier is generated by a random number on the receiving device side, notified to the broadcaster, and then transmitted from the transmitting device by broadcasting to a designated identifier assigned by the broadcaster. (See Patent Document 1 and Non-Patent Document 1).

JP 2010-44732 A

The Japan Radio Industry Association, “Access Control Method for Digital Broadcasting Standard ARIB STD-B25 6.2 Edition”, September 25, 2012, p. 409

By using the prior art disclosed in Patent Document 1 or the like, even if a receiving device does not have an individual identifier in advance, each receiving device is specified by an identifier specified by the broadcaster, and an individual message is displayed. Control can be performed.
However, in the prior art, since the identifier is generated by the random number on the receiving device side, there is a possibility that the random number matches and the identifier matches between the receiving devices. That is, the conventional technique has a problem that the receiving apparatus may not be completely specified.

  The present invention has been made in view of such a problem. Instead of generating an identifier at an unspecified number of receiving devices, the broadcasting company generates an identifier for each receiving device and assigns it to the receiving device. It is an object of the present invention to provide an identifier issuing device, a transmission device, and a receiving device that can acquire the identifier.

  In order to solve the above-mentioned problem, the identifier issuing device according to claim 1 is an identifier issuing device for issuing a receiver identification for individually identifying the receiving device to a digital broadcast receiving device, and device information storage means And a communication control means, a receiver identification request receiving means, an authenticating means, a receiver identification generating means, and a receiver identification transmitting means.

  In this configuration, the identifier issuing device associates a device identification (device ID) that identifies the device of the receiving device stored in the receiving device with a device key that is an encryption key, and stores them in advance in the device information storage unit. Keep it. The device identification and device key are stored in advance in the receiving device in units of devices such as the manufacturer and model of the receiving device.

  Then, the identifier issuing device receives a request for issuing a receiver identification (receiver ID) for individually identifying the receiving device from the receiving device via the communication control unit. Further, the identifier issuing device authenticates the device in units of device identification by the authentication unit with the receiving device by the common key encryption method using the device key. In this way, by performing authentication in device identification units, the identifier issuing device can determine whether or not at least the receiving device is a valid receiving device manufactured by an authorized manufacturer.

Then, the identifier issuing device generates a receiver identification with an identifier that does not overlap between the receiving devices, with respect to the receiving device that has been successfully authenticated, by the receiver identification generating means. For example, the receiver identification generating means generates receiver identifications in order by serial numbers. Then, the identifier issuing device transmits the generated receiver identification via the communication control unit to the receiving device that has requested the receiver identification by the receiver identification transmitting unit.
As a result, the identifier issuing device can give a receiver identification to a regular receiving device that does not have an individual identifier.

  The identifier issuing device according to claim 2 is the identifier issuing device according to claim 1, wherein the authentication unit includes a receiver authentication information receiving unit and a receiver authentication unit.

  In such a configuration, the identifier issuing device uses the receiver authentication information receiving unit of the authentication unit to generate a random number generated in the receiving device, encrypted information obtained by encrypting the random number with a device key, and device identification, Information is received via communication control means.

Then, the identifier issuing device decrypts the encrypted information with the device key stored in the device information storage unit corresponding to the device identification included in the receiver authentication information by the receiver authentication unit of the authentication unit, The receiving device is authenticated depending on whether or not it matches the random number included in the authentication information.
Thus, the identifier issuing device can authenticate whether or not the receiving device is valid, using the device key stored in common with the valid receiving device as a common key.

  Further, the identifier issuing device according to claim 3 is the identifier issuing device according to claim 2, wherein the authentication means includes an issuer authentication information generating means, an issuer authentication information transmitting means, and an issuer authentication result receiving means. And further comprising.

  In this configuration, the identifier issuing device generates a random number by the issuer authentication information generation unit of the authentication unit and stores the device key stored in the device information storage unit corresponding to the device identification included in the receiver authentication information Then, the random number is encrypted to generate encrypted information, and the random number and the encrypted information are generated as issuer authentication information.

Then, the identifier issuing device sends the issuer authentication information generated by the issuer authentication information generating means to the communication control means for the receiving device that has requested the receiver identification by the issuer authentication information transmitting means of the authentication means. Send through. As a result, the receiving device can authenticate whether the identifier issuing device is valid.
Furthermore, the identifier issuing device receives the authentication result based on the issuer authentication information by the issuer authentication result receiving unit of the authentication unit from the receiving device via the communication control unit.
Thereby, the identifier issuing device can grasp the authentication result between the devices.

  A transmitting device according to claim 4 is a transmitting device that multiplexes a broadcast stream and transmits a message to a receiving device, the identifier issuing device according to any one of claims 1 to 3, and a message. And an information generation means.

In such a configuration, the transmitting device performs device authentication using the device issuing and device key with the receiving device using the identifier issuing device, and issues a receiver identification.
Then, the transmitting device generates a message to be multiplexed in the broadcast stream by specifying the receiving device by the receiver identification by the message information generating means. As a result, the transmission device can control display of messages by specifying individual reception devices.

  The receiving device according to claim 5 is a receiving device that receives a message multiplexed in a broadcast stream, and includes a device information storage unit, a communication control unit, a receiver identification request transmission unit, an authentication unit, A receiver identification receiving unit, a receiver identification storing unit, and a message receiving unit are provided.

In such a configuration, the receiving apparatus stores in advance in the device information storage unit the device identification for identifying the device of the receiving apparatus and the device key that is the encryption key in association with each other.
Then, the receiving device transmits a request for issuing the receiver identification for individually identifying the receiving device to the identifier issuing device via the communication control unit by the receiver identification request transmitting unit.

  Then, the receiving device uses the common key encryption method using the device key between the authentication unit and the identifier issuing device that stores the device identification and the device key stored in advance in association with each other. Device authentication is performed in units of device identification. In this way, by performing authentication in device identification units, the receiving apparatus can cause the identifier issuing apparatus to determine whether or not at least the receiving apparatus is a legitimate receiving apparatus manufactured by an authorized manufacturer.

Then, as a result of successful authentication by the receiver identification receiving means, the receiving apparatus receives the receiver identification transmitted from the identifier issuing apparatus via the communication control means, and stores it in the receiver identification storage means. Thereby, the receiving apparatus can acquire the receiver identification which identifies the said receiving apparatus separately.
In addition, the receiving device can receive a message corresponding to the receiver identification stored in the receiver identification storage unit from the message multiplexed in the broadcast stream by the message receiving unit.

  The receiving device according to claim 6 is the receiving device according to claim 5, wherein the authentication unit includes a receiver authentication information generating unit and a receiver authentication information transmitting unit.

  In such a configuration, the reception device generates a random number by the receiver authentication information generation unit of the authentication unit, encrypts the random number with the device key stored in the device information storage unit, and generates encrypted information. The random number, the encrypted information, and the device identification are generated as receiver authentication information.

  Then, the receiving apparatus transmits the receiver authentication information generated by the receiver authentication information generating means to the identifier issuing apparatus via the communication control means by the receiver authentication information transmitting means of the authenticating means. As a result, the identifier issuing device can authenticate whether or not the receiving device is valid.

  Further, in the receiving device according to claim 7, in the receiving device according to claim 6, the authentication unit further includes an issuer authentication information receiving unit, an issuer authentication information unit, and an issuer authentication information transmitting unit. It was set as the structure provided.

In such a configuration, the receiving device communicates, using the issuer authentication information receiving unit of the authentication unit, the random number generated in the identifier issuing device and the encrypted information obtained by encrypting the random number with the device key as the issuer authentication information. Receive via control means.
Then, the receiving device decrypts the encryption information included in the issuer authentication information with the device key stored in the device information storage unit by the issuer authentication unit of the authentication unit, and the random number included in the issuer authentication information The identifier issuing device is authenticated depending on whether or not it matches.
As a result, the receiving apparatus can authenticate whether the identifier issuing apparatus is valid by using the device key stored in common with the valid identifier issuing apparatus as a common key.

Then, the receiving device transmits the authentication result in the issuing source authenticating unit to the identifier issuing device via the communication control unit by the issuing source authentication information transmitting unit of the authenticating unit.
Thereby, the identifier issuing device can grasp the authentication result between the devices.

The present invention has the following excellent effects.
According to the first, fourth, and fifth aspects of the present invention, device authentication is performed by using the device identification and the device key even if the receiving device does not have a receiver identification for individually identifying the receiving device. Thus, the receiver identification can be surely given to the legitimate receiving device.
In addition, according to the first, fourth, and fifth aspects of the present invention, since the receiver identification is not generated by the receiving apparatus, it is possible to issue a receiver identification without duplication, and to specify the receiving apparatus individually and message Display control can be performed.

  According to the second and sixth aspects of the invention, it is possible to authenticate the validity of the receiving apparatus using the device key as a common key. As a result, the identifier issuing device can reliably give the receiver identification to the legitimate receiving device.

  According to the third and seventh aspects of the invention, it is possible to authenticate the validity of the identifier issuing device using the device key as a common key. This can prevent the receiving device from acquiring the receiver identification from the unauthorized identifier issuing device.

It is explanatory drawing for demonstrating the outline | summary of the message display system (digital broadcasting system) which concerns on embodiment of this invention. It is a block diagram which shows the structure of the transmission apparatus (an identifier issuing apparatus is included) which concerns on embodiment of this invention. It is a data structure figure which shows the example of the data structure of individual message information. It is a data structure figure which shows the example of the data structure of common message information. It is a block diagram which shows the structure of the receiver which concerns on embodiment of this invention. It is a flowchart which shows the operation | movement which issues receiver ID in the message display system (digital broadcasting system) which concerns on embodiment of this invention. 7 is a flowchart illustrating an operation of authentication processing between a transmission device and a reception device in an operation of issuing a receiver ID in FIG. 6. It is a flowchart which shows the message display operation | movement in the message display system (digital broadcasting system) which concerns on embodiment of this invention.

Embodiments of the present invention will be described below with reference to the drawings.
[Overview of message display system]
First, an outline of a message display system S by digital broadcasting according to an embodiment of the present invention will be described with reference to FIG.
The message display system S is composed of a digital broadcast transmission device 1 (including an identifier issuing device 2) possessed by a broadcaster and digital broadcast reception devices 3, 3,. The display of a message on the screen of the receiving device 3 is controlled depending on whether or not the receiving device 3 is registered according to a broadcast contract or a reception contract (hereinafter simply referred to as a contract).

Here, it is assumed that the receiving device 3 does not initially hold an identifier (hereinafter referred to as a receiver ID) for individually identifying the receiving device 3 that displays a message.
Then, after the receiver 3 acquires the receiver ID from the transmitter 1, the transmitter 1 specifies the receiver ID and the display of the message is controlled.

The outline of the operation in which the receiving device 3 acquires the receiver ID from the transmitting device 1 and controls the message that the transmitting device 1 displays on the individual receiving device 3 is as follows.
First, the receiving device 3 (here, the receiving device 3 ₃ ) requests the receiver ID from the transmitting device 1 by communication (step S1).
The transmission device 1, with the receiving apparatus _{3 3} performs authentication (device authentication) (step S2). The transmission apparatus 1, when the authentication is successful, generates a receiver ID (step S3), and the communication (here, ID3) generated receiver ID to the receiving apparatus _{3 3} (step S4 ). Then, the receiving apparatus _{3 3} holds the receiver ID received therein (step S5).

Thereafter, for example, when displaying a message on the non-contracted receiving device 3, the transmitting device 1 is set to the receiver ID (ID3 in this case) that identifies the non-contracted receiving device 3 and the message display is ON. An individual message, which is a message addressed to the individual receiving device 3 having the control information (here, ON) for controlling / OFF, is broadcast (step S6). This control information is held in the receiving device specified by the receiver ID (not shown as a step).
Then, the transmission device 1 broadcasts a common message that is a message common to the reception device 3 with the control information as the destination and the message text to be displayed as the content (step S7).
Then, the reception device 3 (in this case, the reception device 3 ₃ ) in which the control information of the common message matches the control information held inside displays the message (step S8).

As described above, the message display system S displays the message by specifying the receiving device 3 by the receiver ID generated by the transmitting device 1 even when the receiving device 3 does not hold the receiver ID in advance. Can be controlled.
Hereinafter, the transmitter 1 and the receiver 3 according to the embodiment of the present invention will be described in detail.

[Configuration of transmitting device (identifier issuing device)]
First, referring to FIG. 2 (refer to FIG. 1 as appropriate), the configuration of the transmission device 1 including the identifier issuing device 2 according to the embodiment of the present invention will be described.

  The transmission device 1 transmits content (broadcast program) to the reception device 3 via the broadcast wave W. The transmission device 1 also has a function of transmitting a message to be displayed as an overlay on the video as a text character via the broadcast wave W and controlling the display. Further, the transmission device 1 has a function of issuing a receiver ID for individually specifying the reception device 3 via the communication line N.

  Here, the transmission apparatus 1 includes a content distribution unit 10, an individual message information generation unit 11, a common message information generation unit 12, a multiplexing unit 13, and an identifier issuing unit 2 (receiver ID issuing unit 20, device information). Storage means 21, authentication means 22, and communication control means 23).

The content distribution unit 10 distributes the input content to the receiving device 3. The content distribution unit 10 encodes a video signal, an audio signal, and the like constituting the input content and outputs the encoded video signal and audio signal to the multiplexing unit 13. For example, the content distribution unit 10 encodes the content using MPEG-2 TS or the like.
Note that the content distribution unit 10 may be configured to cryptographically distribute the content by a limited reception method in which the content is scrambled with a scramble key and transmitted together with related information of the scrambled key in order to limit access to the content.

  The individual message information generating means (message information generating means) 11 generates information (individual message information) to be individually distributed to each receiving device 3. Here, the individual message information generating means 11 generates individual message information having the identifier (receiver ID) of the receiving device 3 as the destination and the control information indicating the predetermined group type to which the receiving device 3 belongs as the content of the message. To do. The individual message information can be generated as an EMM individual message defined by ARIB STD-B25. Here, the individual message information generation unit 11 receives the receiver ID and control information from the outside, generates individual message information as an EMM individual message, and outputs the individual message information to the multiplexing unit 13.

Here, the receiver ID is an identifier that identifies the receiver 3 and is issued to each receiver 3 by the receiver ID issuing means 20 described later.
The control information is identification information (group type) for dividing the receiving device 3 into predetermined group units for performing message display control. This control information includes, for example, a value (for example, “0x0000”) indicating a group (unregistered receiving device group) of unregistered receiving devices 3 that has not made a receiving contract, and an already registered receiving device that has made a receiving contract. A value (for example, “0x0001”) indicating the group 3 (registered receiving device group) can be used.

  Note that the broadcaster determines in advance which group the receiver ID corresponds to control information indicating. For example, after a receiver ID is issued to the receiver 3 by the receiver ID issuing means 20, a user (viewer) of the receiver 3 receives a receiver ID from the broadcaster by telephone, the Internet, etc. Is notified, and the broadcaster associates the receiver ID with control information indicating the registered receiver group.

For example, as illustrated in FIG. 3A, the individual message information generation unit 11 generates individual message information by arranging the receiver ID in the header portion and the control information in the payload portion.
Further, for example, as shown in FIG. 3 (b), the individual message information generating means 11 adds a character string (code string) of a message text to be displayed individually for each receiving device 3 in addition to the structure of FIG. 3 (a). ) May be added to the payload portion.

  The common message information generating means (message information generating means) 12 generates information (common message information) to be distributed in common to the receiving devices 3, 3,. Here, the common message information generating means 12 uses the control information as a destination, and the common message information has the message text character string (text code) displayed on the receiving device 3 of the group specified by the control information as the message content. Is generated. Note that the common message information can be generated as an EMM common message defined in ARIB STD-B25. Here, the control information and the common message text are input from the outside to the common message information generation unit 12, the common message information is generated as an EMM common message, and is output to the multiplexing unit 13.

Here, the control information is information distributed individually to the receiving device 3 in advance by the individual message information generating unit 11.
The common message text is a message character string (code string), for example, a sentence indicating that no reception contract is made.

For example, as shown in FIG. 4A, the common message information generating unit 12 generates common message information by arranging control information in the header portion and common message text in the payload portion.
Further, for example, as shown in FIG. 4B, the common message information generating unit 12 may add a text display position to the payload portion in addition to the structure of FIG. 4A.
Here, the text display position is information indicating where the message is displayed on the display screen. For example, the position in the horizontal direction of the screen (left, middle, right), the position in the vertical direction of the screen (up, middle, lower) ) Are information indicated by predetermined bit values. Thereby, the display position of the message in the receiving device 3 can be designated from the transmitting device 1.

  Multiplexing means 13 has received the contents distributed by content distributing means 10, the individual message information generated by individual message information generating means 11, and the common message information generated by common message information generating means 12. Are multiplexed and transmitted as a broadcast stream.

Here, it is assumed that the multiplexing means 13 multiplexes each input information into a TS (transport stream) format (MPEG-2 TS) defined by MPEG-2 Systems. The multiplexed broadcast stream is transmitted to the receiving device 3 via the broadcast wave W. Here, the broadcast stream is transmitted via the broadcast wave W, but may be transmitted via the communication line N.
Although not shown here, the multiplexing unit 13 appropriately multiplexes the PSI (Program Specific Information) / SI (Service Information) information table as program arrangement information in addition to these pieces of information. Needless to say.

  The identifier issuing device 2 issues a receiver IID that individually identifies the receiving device 3 to the digital broadcast receiving device 3. Here, the identifier issuing device 2 includes a receiver ID issuing unit 20, a device information storage unit 21, an authentication unit 22, and a communication control unit 23.

  The receiver ID issuing means (receiver identification issuing means) 20 issues a receiver ID that is an identifier for individually identifying the receiving apparatus 3 to the receiving apparatus 3. Here, the receiver ID issuing unit 20 includes a receiver ID request receiving unit 201, a receiver ID generating unit 202, and a receiver ID transmitting unit 203.

A receiver ID request receiving unit (receiver identification request receiving unit) 201 performs communication control on a request (receiver ID request) to issue a receiver ID transmitted from the receiving device 3 via the communication line N. It is received via the means 23.
When the receiver ID request receiving unit 201 receives the receiver ID request, the receiver ID request receiving unit 201 sends the receiver ID request to the authentication unit 22 together with the address (for example, IP address) of the receiving device 3 that has transmitted the receiver ID request. Notify that it has been received. As a result, the authentication unit 22 executes an authentication process with the receiving device 3 that has received the receiver ID request.

The receiver ID generation means (receiver identification generation means) 202 generates a receiver ID. Here, the receiver ID generation unit 202 generates a receiver ID and outputs it to the receiver ID transmission unit 203 only when the authentication unit 22 notifies that the authentication is successful as an authentication result.
The receiver ID generation unit 202 outputs the generated receiver ID to the outside, and the broadcaster stores and manages the receiver ID in a storage unit (not shown). For example, when a broadcaster receives a receiver ID from a user (viewer) of the receiving device 3 by telephone, the Internet, etc. and makes a reception contract, the receiver ID and the presence / absence of the contract are identified. The control information indicating the group is managed in association with each other.

  Note that the receiver ID generation unit 202 may generate any receiver ID as long as the receiver ID is not generated redundantly. For example, the receiver ID generation unit 202 sequentially generates receiver IDs with serial numbers. In addition, for example, the receiver ID generation unit 202 generates a receiver ID with a random number, stores the receiver ID in a storage unit (not shown), and when the generated receiver ID already exists, It may be regenerated.

  The receiver ID transmitting means (receiver identification transmitting means) 203 transmits the receiver ID generated by the receiver ID generating means 202 to the receiving device 3 that has requested the receiver ID via the communication control means 23. Is.

The device information storage unit 21 stores device-specific information (device information) stored in advance in each receiving device 3, and is a general storage medium such as a semiconductor memory or a hard disk. .
In the device information storage unit 21, a plurality of device IDs (device identifications) and device keys (encryption keys) for specifying the devices of the receiving device 3 are stored in advance as device information.

  The authentication unit 22 performs device authentication with the receiving device 3 that has requested the receiver ID. This authentication means 22 authenticates whether or not the receiving device 3 that requested the receiver ID is a valid receiving device, and for the receiving device 3, the issuing source of the receiver ID (transmitting device 1) is a valid issue. Authenticate whether it is original or not.

  Here, the authentication unit 22 includes an authentication information request transmission unit 221, a receiver authentication information reception unit 222, a receiver authentication unit 223, an issuer authentication information generation unit 224, an issuer authentication information transmission unit 225, An issuer authentication result receiving unit 226 and an authentication result generating unit 227 are provided.

  The authentication information request transmission means 221 requests the receiving device 3 for information (receiver authentication information) for authenticating the receiving device 3. The authentication information request transmitting unit 221 is a receiving device that transmits a receiver ID request at a timing when the receiver ID issuing unit 20 (receiver ID request receiving unit 201) is notified that a receiver ID request has been received. 3, a request for receiver authentication information is transmitted via the communication control means 23.

  The receiver authentication information is information generated by the receiving device 3 and indicating that the receiving device 3 is a valid receiving device. The receiver authentication information includes a device ID stored in advance in the receiving device 3, a random number generated in the receiving device 3, and encrypted information obtained by encrypting the random number with a device key stored in the receiving device 3 in advance. This information includes

  The receiver authentication information receiving unit 222 receives the receiver authentication information generated by the receiving device 3 via the communication control unit 23. The receiver authentication information receiving unit 222 outputs the received receiver authentication information to the receiver authentication unit 223.

The receiver authentication unit 223 analyzes the receiver authentication information received by the receiver authentication information reception unit 222 and authenticates whether or not the receiving device 3 that has transmitted the receiver authentication information is a valid receiving device. is there.
Specifically, the receiver authentication unit 223 stores the encrypted information included in the receiver authentication information in the device information storage unit 21 corresponding to the device ID included in the receiver authentication information. Decrypt with the device key. Then, the receiver authentication unit 223 determines that the receiver 3 is a valid receiver when the value obtained by decrypting the encrypted information with the device key matches the random number included in the receiver authentication information. . On the other hand, if the value obtained by decrypting the encrypted information with the device key does not match the random number included in the receiver authentication information, the receiver authentication unit 223 determines that the receiver 3 is not a valid receiver. .
The receiver authentication unit 223 outputs the authentication result of the reception device 3 to the authentication result generation unit 227.

In addition, when the receiver authentication unit 223 determines that the reception device 3 is valid, the receiver authentication unit 223 outputs the device ID included in the receiver authentication information to the issuer authentication information generation unit 224.
When the receiver authentication unit 223 determines that the reception device 3 is not valid, the receiver authentication result transmission unit notifies the reception device 3 via the communication control unit 23 of that fact by a receiver authentication result transmission unit (not shown). This completes the authentication process.

The issuer authentication information generation unit 224 generates information (issuer authentication information) for authenticating the issuer of the receiver ID (here, the transmission device 1) by the reception device 3.
Specifically, the issuer authentication information generation unit 224 generates a random number after the receiver authentication unit 223 determines that the receiving apparatus 3 is valid, and sets the device ID notified from the receiver authentication unit 223. Encrypted information is generated by encrypting a random number with the corresponding device key stored in the device information storage unit 21. As an encryption method for generating encryption information, for example, an algorithm such as AES (Advanced Encryption Standard) of a common key encryption method can be used.
Then, the issuer authentication information generation unit 224 outputs the generated random number and encryption information to the issuer authentication information transmission unit 225 as issuer authentication information.

  The issuer authentication information transmission unit 225 transmits the issuer authentication information generated by the issuer authentication information generation unit 224 via the communication control unit 23 to the receiving device 3 that has transmitted the receiver ID request. . With this issuer authentication information, it is possible to determine whether or not the issuer that issues the receiver ID is valid in the receiving device 3.

  The issuer authentication result receiving unit 226 receives the authentication result of the issuer authenticated by the receiving device 3 via the communication control unit 23. The issuer authentication result receiving unit 226 outputs the received authentication result of the issuer to the authentication result generating unit 227.

The authentication result generation unit 227 generates the receiver ID issuer (transmission) from the authentication result of the reception device 3 authenticated by the receiver authentication unit 223 and the issuer authentication result received by the issuer authentication result reception unit 226. A mutual authentication result between the device 1) and the receiving device 3 is generated.
That is, the authentication result generation unit 227 generates an authentication result indicating that the authentication is successful only when both the authentication result of the receiving device 3 and the authentication result of the issuer are authorized. In other cases, an authentication result indicating that the authentication has failed is generated.
The authentication result generation unit 227 outputs the generated authentication result to the receiver ID issuing unit 20.

  The communication control unit 23 transmits / receives communication data to / from the receiving device 3 via the communication line N.

  By configuring the transmission device 1 as described above, the transmission device 1 can give a receiver ID to the reception device 3 even when the reception device 3 does not hold an individual identifier in advance. it can. In addition, the transmitter 1 performs device authentication with the receiver 3 using a device ID and a device key, so that the receiver 1 does not give a receiver ID to an unauthorized receiver, and can receive data correctly. Message display control can be performed on the device 3.

[Receiver configuration]
Next, the configuration of the receiving device 3 according to the embodiment of the present invention will be described with reference to FIG.

  The receiving device 3 receives content (broadcast program) via the broadcast wave W. In addition, the receiving device 3 has a function of overlaying text characters on the video by a signal transmitted via the broadcast wave W. Further, the receiving device 3 has a function of acquiring a receiver ID for individually specifying the receiving device 3 via the communication line N.

  Here, the receiving device 3 includes a separating unit 30, a content receiving unit 31, an individual message information processing unit 32, a common message information processing unit 33, a control information storage unit 34, a combining unit 35, and a communication control unit. 40, receiver ID acquisition means 41, receiver ID storage means 42, receiver ID display means 43, authentication means 44, and device information storage means 45.

  The separation means 30 separates the broadcast stream (multiplexed signal; MPEG-2 TS) transmitted from the transmission apparatus 1. The separation means 30 separates content, individual message information, and common message information from the MPEG-2 TS.

The content receiving unit 31 receives the content separated and extracted by the separating unit 30. The content receiving unit 31 decodes the received content encoded by MPEG-2 or the like and outputs the decoded content to the synthesizing unit 35.
The content receiving means 31 may receive the content scrambled with the scramble key and the related information of the scrambled key, and decrypt the content by the limited reception method.

The individual message information processing means (message receiving means) 32 receives the information (individual message information) distributed to the receiving device 3 that is separated and extracted by the separating means 30. More specifically, the individual message information processing means 32 receives information addressed to its own receiving device 3 from an EMM individual message including a plurality of individual message information.
This individual message information is information generated by the individual message information generating means 11 (see FIG. 2) of the transmission apparatus 1 and is information in which control information is associated with the receiver ID (see FIG. 3A). ).

  The individual message information processing unit 32 extracts individual message information corresponding to the receiver ID stored in the receiver ID storage unit 42 from the EMM individual message, and includes control information included in the extracted individual message information. Is written and stored in the control information storage means 34. When individual message text is included in the individual message information (see FIG. 3B), the individual message information processing means 32 writes and stores the individual message text in the control information storage means 34 together with the control information.

  The receiver ID storage means 42 does not store the receiver ID in advance, and after the receiver ID is written by the receiver ID acquisition means 41 described later, the individual message information processing means 32 Receive message information.

The common message information processing means (message receiving means) 33 receives information (common message information) distributed to the receiving devices 3, 3,... Separated and extracted by the separating means 30. More specifically, the common message information processing means 33 receives common message information as an EMM common message.
This common message information is information generated by the common message information generation means 12 (see FIG. 2) of the transmission apparatus 1, and is information in which the message text is associated with the control information (see FIG. 4 (a)). .

  The common message information processing unit 33 is configured to display the message text included in the common message information only when the control information included in the common message information matches the control information stored in the control information storage unit 34. (Common message text) is output to the combining means 35. When the text display position is included in the common message information (see FIG. 4B), the common message information processing means 33 outputs the text display position to the synthesis means 35 together with the message text.

Further, when the individual message text is stored in the control information storage unit 34, the common message information processing unit 33 may output the individual message text together with the common message text to the synthesizing unit 35.
If the control information stored in the control information storage means 34 is a predetermined value (for example, 0x0000) indicating message deletion, the common message information processing means 33 sends a message text to the synthesis means 35. Is not output.

  The control information storage unit 34 stores the control information received by the individual message information processing unit 32. For example, the control information storage means 34 can be configured by a general storage medium such as a semiconductor memory. The control information stored in the control information storage unit 34 is referred to by the common message information processing unit 33.

The synthesizing unit 35 synthesizes the message text with the content and displays the message in an overlay on the video of the content. Here, the synthesizing unit 35 appropriately synthesizes the message text output from the common message information processing unit 33 at a predetermined position on the video of the content received by the content receiving unit 31. When the text display position is designated by the common message information, the synthesizing unit 35 displays the message text in an overlay display at the designated display position.
As described above, when the message text is input when the content is output to a display device (not shown), the combining unit 35 combines the message text with the content and outputs the content to the display device.

  The communication control means 40 transmits / receives communication data to / from the transmission device 1 via the communication line N.

  The receiver ID acquisition unit (receiver identification acquisition unit) 41 acquires a receiver ID from the transmission device 1. Here, the receiver ID acquisition unit 41 includes a receiver ID request transmission unit 411 and a receiver ID reception unit 412.

The receiver ID request transmission unit (receiver identification request transmission unit) 411 transmits a receiver ID request (receiver ID request) to the transmission device 1 via the communication control unit 40.
The receiver ID request transmission unit 411 detects whether or not the receiver ID is stored in the receiver ID storage unit 42, and transmits the receiver ID request to the transmission device 1 when the receiver ID is not stored. To do. Here, the timing at which the receiver ID request transmission unit 411 operates is, for example, when the receiving device 3 is activated (when the power is turned on). Note that, when communication is not possible, such as not being connected to the communication line N, the receiver ID request transmission means 411 transmits a receiver ID request at the timing when communication connection is possible.

The receiver ID receiving unit (receiver identification receiving unit) 412 receives the receiver ID from the transmission device 1 via the communication control unit 40. The receiver ID receiving unit 412 writes the received receiver ID in the receiver ID storage unit 42.
Note that the receiver ID receiving unit 412 receives the receiver ID when the transmitter 1 is not authenticated by the authenticating unit 44 to be described later as a valid receiver ID issuer. Writing to the ID storage means 42 is not performed.

The receiver ID storage means (receiver identification storage means) 42 stores a receiver ID that is an identifier for individually identifying the receiving device 3. For example, the receiver ID storage means 42 can be configured by a general storage medium such as a semiconductor memory.
The receiver ID storage means 42 does not initially store the receiver ID (at the time of manufacture), and is written after the receiver ID acquisition means 41 acquires the receiver ID.

The receiver ID display means (receiver identification display means) 43 displays the receiver ID stored in the receiver ID storage means 42 on the display screen. The receiver ID display means 43 reads out the receiver ID from the receiver ID storage means 42 when instructed to display an initial setting screen by an input means (not shown) such as a remote control device, for example. The value of the receiver ID is displayed as text data (a character string expressed by decimal numbers) in a predetermined area in the setting screen.
The receiver ID displayed on this screen is notified to the broadcaster together with personal information such as a name by the viewer by telephone or the Internet. As a result, a reception contract or the like is made between the broadcaster and the viewer.

  The authentication unit 44 performs device authentication with an issuer (transmitting apparatus 1) that issues a receiver ID. This authenticating means 44 authenticates the issuer because the receiving device 3 is a valid receiving device, and authenticates whether the issuer of the receiver ID is a valid issuer.

  Here, the authentication unit 44 includes an authentication information request reception unit 441, a receiver authentication information generation unit 442, a receiver authentication information transmission unit 443, an issuer authentication information reception unit 444, an issuer authentication unit 445, Issuer authentication result transmission means 446.

  The authentication information request receiving unit 441 receives a request for information (receiver authentication information) for authenticating the receiving device 3 from the transmitting device 1 via the communication control unit 40. The authentication information request receiving unit 441 notifies the receiver authentication information generating unit 442 that the request has been received.

The receiver authentication information generating unit 442 generates information (receiver authentication information) for authenticating the receiver 3 with the receiver ID issuer (transmitter 1).
Specifically, the receiver authentication information generation unit 442 generates a random number after being notified from the authentication information request reception unit 441 that a request for receiver authentication information has been received, and stores the random number in the device information storage unit 45. Encrypted information is generated by encrypting random numbers with the device key. As an encryption method for generating encryption information, for example, an algorithm such as AES of a common key encryption method can be used.
Then, the receiver authentication information generation unit 442 outputs the device ID stored in the device information storage unit 45 and the generated random number and encryption information to the receiver authentication information transmission unit 443 as receiver authentication information. To do.

  The receiver authentication information transmission unit 443 transmits the receiver authentication information generated by the receiver authentication information generation unit 442 to the transmission device 1 via the communication control unit 40. Thereby, in the transmission device 1, it is possible to determine whether or not the reception device 3 is a valid reception device.

  The issuer authentication information receiving unit 444 receives information (issuer authentication information) generated by the transmission apparatus 1 for authenticating the issuer of the receiver ID via the communication control unit 40. The issuer authentication information receiving unit 444 outputs the received issuer authentication information to the issuer authentication unit 445.

The issuer authentication unit 445 analyzes the issuer authentication information received by the issuer authentication information reception unit 444, and determines whether or not the transmission apparatus 1 that has transmitted the issuer authentication information is an issuer of a valid receiver ID. It is to authenticate.
Specifically, the issuer authentication unit 445 decrypts the encrypted information included in the issuer authentication information with the device key stored in the device information storage unit 45. If the value obtained by decrypting the encrypted information with the device key matches the random number included in the issuer authentication information, the issuer authentication unit 445 determines that the transmission device 1 is a valid issuer. . On the other hand, if the value obtained by decrypting the encrypted information with the device key does not match the random number included in the issuer authentication information, the issuer authentication unit 445 determines that the transmission device 1 is not a valid issuer. .
The issuer authentication unit 445 outputs the issuer authentication result to the issuer authentication result transmission unit 446 and also outputs it to the receiver ID acquisition unit 41.

  The issuer authentication result transmission unit 446 transmits the authentication result of the issuer authenticated by the issuer authentication unit 445 via the communication control unit 40.

  The device information storage unit 45 stores device-specific information (device information) of the receiving device 3 and is a general storage medium such as a semiconductor memory or a hard disk. In the device information storage unit 45, a device ID (device identification) for specifying the device of the receiving device 3 and a device key (encryption key) are stored in advance as device information.

  Here, the device ID refers to an identifier that is identified (managed) by a predetermined category (device) such as each manufacturer, model, or manufacturing lot of the receiving device 3. That is, the device ID is not an identifier for each receiving device 3, but an identifier indicating a certain category such as a manufacturer. The device key is an encryption key specified by the device ID, and is information common to certain categories such as a manufacturer, like the device ID.

  By configuring the receiving device 3 as described above, the receiver ID can be acquired from the transmitting device 1 even when the receiving device 3 does not hold an individual identifier in advance. In addition, the receiving device 3 performs device authentication with the transmitting device 1 using a device ID and a device key, thereby acquiring a receiver ID from the legitimate transmitting device 1 and performing message display control. be able to.

  The receiving device 3 can be operated by a program (digital broadcast receiving program) for causing a computer to function as each of the means described above. This digital broadcast receiving program can be operated on, for example, a PC (personal computer).

[Message display system operation]
Next, the operation of the message display system S will be described with reference to FIGS. Since the content transmission / reception operation is a general operation, the description thereof is omitted here.

[Receiver ID issuing operation]
First, referring to FIG. 6 (refer to FIGS. 1, 2, and 5 as appropriate), an operation for issuing a receiver ID from the transmission device 1 to the reception device 3 will be described.
First, when the receiver ID is not stored in the receiver ID storage unit 42, the receiver 3 transmits the transmission device via the communication control unit 40 by the receiver ID request transmission unit 411 of the receiver ID acquisition unit 41. 1, a receiver ID request (receiver ID request) is transmitted (step S10).

On the other hand, the transmitting apparatus 1 receives the receiver ID request via the communication control means 23 by the receiver ID request receiving means 201 of the receiver ID issuing means 20 (step S11).
Thereafter, the transmission device 1 and the reception device 3 perform authentication processing by the authentication unit 22 and the authentication unit 44 (steps S12 and S13).

The operation of this authentication process will be described in detail with reference to FIG.
As illustrated in FIG. 7, first, the transmission device 1 transmits a request for receiver authentication information (authentication information request) to the reception device 3 by the authentication information request transmission unit 221 of the authentication unit 22 (step S20). The receiving device 3 receives the authentication information request by the authentication information request receiving unit 441 of the authentication unit 44 (step S21).

Thereafter, the receiver 3 generates receiver authentication information by the receiver authentication information generation unit 442 (step S22). That is, the receiver authentication information generation unit 442 generates a random number (random number A) and encrypts the random number A with the device key stored in the device information storage unit 45. Then, the receiver authentication information generation unit 442 generates receiver authentication information including the device ID stored in the device information storage unit 45, the generated random number A, and the encrypted information.
And the receiver 3 transmits the receiver authentication information produced | generated by step S22 to the transmitter 1 by the receiver authentication information transmission means 443 (step S23).

On the other hand, the transmitter 1 receives the receiver authentication information transmitted from the receiver 3 by the receiver authentication information receiver 222 of the authenticator 22 (step S24).
Thereafter, the transmitter 1 uses the receiver authentication unit 223 to store the encrypted information included in the receiver authentication information in the device information storage unit 21 in correspondence with the device ID included in the receiver authentication information. Decryption is performed using the stored device key (step S25).

Then, the receiver authentication unit 223 determines whether or not the value decrypted in step S25 matches the random number (random number A) included in the receiver authentication information (step S26).
If the decrypted value matches the random number A (Yes in step S26), the receiver authentication unit 223 recognizes the receiving device 3 as a valid receiving device (step S27). On the other hand, if the decrypted value does not match the random number A (No in step S26), the receiver authentication unit 223 recognizes the receiving device 3 as an invalid receiving device (step S28).
Here, although the operation is continued after step S28, when the receiving device 3 is recognized as an illegal receiving device, the transmitting device 1 notifies the receiving device 3 to that effect, thereby performing the authentication process. Will be terminated.

Then, the transmission apparatus 1 generates issuer authentication information by the issuer authentication information generation unit 224 (step S29). That is, the issuer authentication information generation means 224 generates a random number (random number B) and is stored in the device information storage means 21 corresponding to the device ID included in the receiver authentication information received in step S24. The random number B is encrypted with the existing device key. Then, the issuer authentication information generation unit 224 generates issuer authentication information including the generated random number B and the encrypted information.
Then, the transmission apparatus 1 transmits the issuer authentication information generated in step S29 to the reception apparatus 3 by the issuer authentication information transmission unit 225 (step S30).

On the other hand, the receiving device 3 receives the issuer authentication information transmitted from the transmitting device 1 by the issuer authentication information receiving unit 444 of the authentication unit 44 (step S31).
Thereafter, the receiving device 3 uses the issuer authentication unit 445 to decrypt the encrypted information included in the issuer authentication information with the device key stored in the device information storage unit 45 (step S32).

Then, the issuer authentication unit 445 determines whether or not the value decrypted in step S32 matches the random number (random number B) included in the issuer authentication information (step S33).
Here, when the decrypted value matches the random number B (Yes in step S33), the issuer authentication unit 445 recognizes the transmission device 1 as a valid issuer (step S34). On the other hand, when the decrypted value and the random number B do not match (No in step S33), the issuer authentication unit 445 recognizes the transmission device 1 as an invalid issuer (step S35).
Then, the receiving device 3 transmits the authentication result of the issuing source to the transmitting device 1 by the issuing source authentication result transmitting unit 446 (step S36).

Then, the transmission apparatus 1 receives the authentication result of the issuer from the reception apparatus 3 by the issuer authentication result reception unit 226 (step S37). Then, both the issuer (transmitting device 1) and the receiving device 3 are valid by the authentication result generation unit 227 of the authentication unit 22 based on the authentication result determined in step S26 and the authentication result received in step S37. If it is recognized that there is an authentication result, an authentication result indicating that the authentication is successful is generated (not shown as a step).
The device authentication of the transmission device 1 and the reception device 3 is completed by the series of operations described above.
Returning to FIG. 6, the description of the receiver ID issuing operation will be continued.

  After performing the authentication process (steps S12 and S13), the transmitting apparatus 1 receives the reception by the receiver ID generation unit 202 of the receiver ID issuing unit 20 when the authentication in the authentication unit 22 is successful (Yes in step S14). A machine ID is generated (step S15). Then, the transmitter 1 transmits the receiver ID generated in step S15 to the receiver 3 by the receiver ID transmitter 203 (step S16). If the authentication in the authentication unit 22 fails (No in step S14), the transmission device 1 ends the process without issuing the receiver ID.

On the other hand, the receiver 3 receives the receiver ID transmitted from the transmitter 1 in step S16 by the receiver ID receiver 412 of the receiver ID acquisition unit 41 (step S17), and receives the received receiver ID. It is written and stored in the machine ID storage means 42 (step S18).
In addition, although illustration is abbreviate | omitted here, the receiving apparatus 3 does not receive receiver ID, when it recognizes that an issuer (transmission apparatus 1) is not valid in the authentication process in step S13. Will be terminated.
With the above operation, the transmission device 1 can safely issue a receiver ID to the reception device 3 that does not have an identifier for individually identifying the reception device 3.

[Message display operation]
Next, a message display operation for displaying a message from the transmission apparatus 1 to the reception apparatus 3 will be described with reference to FIG. 8 (refer to FIGS. 1, 2, and 5 as appropriate).
It is assumed that the receiver ID issued by the receiver ID issuing operation described in FIG. 6 is managed in advance by the broadcaster. For example, a broadcaster receives a receiver ID from a user (viewer) of the receiving device 3 by telephone, the Internet, or the like, and associates the receiver ID with control information indicating a group for identifying the presence or absence of a contract. It is assumed that they are managed. Here, as an example of the operation, an operation of displaying a message on the receiving device 3 that has not made a contract will be described.

  First, the transmitting device 1 uses the individual message information generating means 11 to set a receiver ID as a destination for each individual receiving device 3 and a predetermined group to which the receiving device 3 belongs (here, a group for which no contract is made). Is generated as an EMM individual message (step S40). Then, the transmission device 1 multiplexes the individual message information (EMM individual message) generated in step S40 by the multiplexing means 13 and transmits it to the broadcast stream (step S41).

  On the other hand, the receiving device 3 separates the broadcast stream by the separating means 30 and the individual message information corresponding to the receiver ID stored in the receiver ID storage means 42 from the EMM individual message by the individual message information processing means 32. Is received (step S42). The receiving device 3 writes the control information included in the individual message information in the control information storage unit 34 by the individual message information processing unit 32 (step S43). As a result, the individual receiving devices 3 are grouped according to the values specified by the control information.

  Next, the transmitting device 1 uses the common message information generating means 12 as a message to be distributed to each receiving device 3 in common, and sets the control information indicating the group in which the message is to be displayed as the destination, and the message text to be displayed. Common message information having a character string (text code) as a message content is generated as an EMM common message (step S44). Then, the transmission device 1 multiplexes the common message information (EMM common message) generated in step S44 with the multiplexing unit 13 and transmits it in the broadcast stream (step S45).

  On the other hand, the receiving device 3 separates the broadcast stream by the separating unit 30, and the common message information processing unit 33 receives the common message information as an EMM common message (step S46). Then, the reception device 3 determines whether or not the control information included in the common message information matches the control information stored in the control information storage unit 34 by the common message information processing unit 33 ( Step S47).

Here, when the control information matches (Yes in step S47), the receiving device 3 receives the message text (common message text) included in the common message information received in step S46 by the combining unit 35 as content reception. The content received by the means 31 is synthesized (step S48).
On the other hand, if the control information does not match (No in step S47), the synthesizing unit 35 outputs the content as it is without synthesizing the message text with the content.
With the above operation, the transmission device 1 can control the message display for each group specified by the control information.

  As described above, the message display system S uses the device unit information such as the device ID and the device key even if the receiving device 3 does not have an identifier for identifying each receiving device 3. By performing authentication, a safe receiver ID without duplication can be given to the receiving device 3 from the transmitting device 1.

Although the embodiment of the present invention has been described above, the present invention is not limited to this embodiment.
For example, here, the identifier issuing device 2 is provided in the transmitting device 1, but the identifier issuing device 2 may be configured as an identifier issuing server separately from the transmitting device 1.

In addition, here, the transmission apparatus 1 performs device authentication with the reception apparatus 3 and issues a receiver ID when both authentications are successful. However, the transmission device 1 may have a simple configuration that issues the receiver ID only by authenticating the validity of the reception device 3.
In that case, the issuer authentication information generation means 224, the issuer authentication information transmission means 225 and the issuer authentication result reception means 226 in the authentication means 22 of the transmission apparatus 1 in FIG. 2, and the authentication means 44 in the reception apparatus 3 in FIG. The issuer authentication information receiving unit 444, the issuer authentication unit 445, and the issuer authentication result transmitting unit 446 can be omitted from the respective configurations.

In addition, here, the transmission device 1 requests authentication information (receiver authentication information) from the reception device 3 at the timing of receiving the receiver ID request from the reception device 3. However, when the receiver 3 requests the receiver ID, the receiver authentication information may be notified together.
In that case, the transmitting apparatus 1 omits the authentication information request transmitting means 221 and the receiver authentication information receiving means 222 from the configuration in the authenticating means 22 of the transmitting apparatus 1 in FIG. The receiver authentication information received together with the receiver ID request may be output to the receiver authentication means 223. In this case, the receiving apparatus 3 omits the authentication information request receiving means 441 and the receiver authentication information transmitting means 443 from the configuration in the authenticating means 44 of the receiving apparatus 3 in FIG. 5, and receives the receiver ID request transmitting means 411. However, when the receiver authentication information generation unit 442 is instructed to generate the receiver authentication information and the receiver ID request is transmitted, the receiver authentication information may be transmitted together.

DESCRIPTION OF SYMBOLS 1 Transmission apparatus 10 Content distribution means 11 Individual message information generation means (message information generation means)
12 Common message information generation means (message information generation means)
13 Multiplexing means 2 Identifier issuing device (identifier issuing server)
20 Receiver ID issuing means (receiver identification issuing means)
201 Receiver ID request receiving means (receiver identification request receiving means)
202 Receiver ID generation means (receiver identification generation means)
203 Receiver ID transmission means (receiver identification transmission means)
DESCRIPTION OF SYMBOLS 21 Device information storage means 22 Authentication means 221 Authentication information request transmission means 222 Receiver authentication information reception means 223 Receiver authentication means 224 Issuer authentication information generation means 225 Issuer authentication information transmission means 226 Issuer authentication result reception means 23 Communication control Means 3 Receiving device 30 Separating means 31 Content receiving means 32 Individual message information processing means (message receiving means)
33 Common message information processing means (message receiving means)
34 control information storage means 35 combining means 40 communication control means 41 receiver ID acquisition means (receiver identification acquisition means)
411 Receiver ID request transmission means (receiver identification request transmission means)
412 Receiver ID receiving means (receiver identification receiving means)
42 Receiver ID storage means (receiver identification storage means)
43 Receiver ID display means (receiver identification display means)
44 Authentication means 441 Authentication information request reception means 442 Receiver authentication information generation means 443 Receiver authentication information transmission means 444 Issuer authentication information reception means 445 Issuer authentication information transmission means 446 Issuer authentication result transmission means 45 Device information storage means

Claims (7)

An identifier issuing device that issues a receiver identification for individually identifying the receiving device to a digital broadcast receiving device,
A device information storage unit that stores in advance a device identification that identifies a device of the receiving device stored in the receiving device and a device key that is an encryption key;
Communication control means for transmitting and receiving data via a communication line;
A receiver identification request receiving means for receiving the receiver identification issue request from the receiving device via the communication control means;
Authentication means for performing device authentication in units of the device identification by a common key cryptosystem using the device key with the receiving device;
Receiver identification generating means for generating the receiver identification with an identifier that is not duplicated between the receiving apparatuses, with respect to the receiving apparatus successfully authenticated by the authenticating means,
A receiver identification transmitting means for transmitting the receiver identification generated by the receiver identification generating means to the receiving apparatus that has requested the receiver identification via the communication control means;
An identifier issuing device comprising: The authentication means includes
A receiver authentication information receiving means for receiving, as receiver authentication information, a random number generated in the receiver, encrypted information obtained by encrypting the random number with a device key, and device identification as the receiver authentication information; ,
Whether the encrypted information is decrypted with the device key stored in the device information storage unit corresponding to the device identification included in the receiver authentication information, and matches the random number included in the receiver authentication information Receiver authentication means for authenticating the receiving device;
The identifier issuing device according to claim 1, further comprising: The authentication means includes
A random number is generated and encrypted information is generated by encrypting the random number with a device key stored in the device information storage unit corresponding to the device identification included in the receiver authentication information. Issuer authentication information generating means for generating encrypted information as issuer authentication information;
Issuer authentication information transmitting means for transmitting the issuer authentication information generated by the issuer authentication information generating means to the receiving apparatus that has requested the receiver identification via the communication control means;
An issuer authentication result receiving means for receiving an authentication result by the issuer authentication information from the receiving device via the communication control means;
3. The apparatus according to claim 2, wherein the authentication unit determines that the device authentication is successful when both of the authentication result of the receiver authentication unit and the authentication result transmitted from the receiving device are successfully authenticated. The identifier issuing device described. In a transmission device that multiplexes a broadcast stream and transmits a message to a reception device,
The identifier issuing device according to any one of claims 1 to 3,
Message information generating means for generating the message to be multiplexed with the broadcast stream by identifying the receiver by the receiver identification issued by the identifier issuing device;
A transmission device comprising: In a receiving device that receives a message multiplexed in a broadcast stream,
Device information storage means for storing in advance a device identification that identifies a device of the receiving apparatus and a device key that is an encryption key;
Communication control means for transmitting and receiving data via a communication line;
A receiver identification request transmitting means for transmitting a request for issuing a receiver identification for individually identifying the receiving apparatus to the identifier issuing apparatus for issuing the receiver identification via the communication control means;
Authentication means for performing device authentication in units of device identification by the common key cryptosystem using the device key with the identifier issuing device that stores the device identification and the device key in association with each other in advance When,
Receiver identification receiving means for receiving the receiver identification transmitted from the identifier issuing device via the communication control means;
Receiver identification storage means for storing the receiver identification received by the receiver identification receiving means;
Message receiving means for receiving a message corresponding to the receiver identification stored in the receiver identification storage means from the message multiplexed in the broadcast stream;
A receiving apparatus comprising: The authentication means includes
A random number is generated, and the random number is encrypted with a device key stored in the device information storage unit to generate encrypted information, and the random number, the encrypted information, and the device identification are received as receiver authentication information. Receiver authentication information generating means to generate as
Receiver authentication information transmitting means for transmitting the receiver authentication information generated by the receiver authentication information generating means to the identifier issuing device via the communication control means;
The receiving apparatus according to claim 5, further comprising: The authentication means includes
An issuer authentication information receiving means for receiving, as issuer authentication information, a random number generated in the identifier issuing device and encrypted information obtained by encrypting the random number with a device key, via the communication control means;
The identifier issuing device determines whether or not the encrypted information included in the issuer authentication information is decrypted with a device key stored in the device information storage means and matches the random number included in the issuer authentication information. Issuer authentication means for authenticating
An issuer authentication information transmitting means for transmitting an authentication result in the issuer authenticating means to the identifier issuing device via the communication control means;
The receiving apparatus according to claim 6, further comprising:

Images