JP2017055159A - Data delivery medium by two-dimensional code, data encryption method of two-dimensional code, data decryption method of two-dimensional code, program and recording medium - Google Patents

Abstract

PROBLEM TO BE SOLVED: To allow for delivery of protection information, which only a specific receiver can see by using two-dimensional codes, without requiring key input of a password, or the like.SOLUTION: On a first data reading medium for data delivery, two-dimensional codes 40 of partially encrypted delivery information, including partially encrypted delivery information 20 created by replacing the protection information 12 part of original delivery information 10 with encrypted protection information 22 obtained by encrypting the protection information 12 by using a predetermined encryption key, and converted readably by a data restoration device 200 are recorded. On a second data reading medium for data delivery, the two-dimensional code 50 of decrypted key information, obtained by converting the two-dimensional code 50 of a decrypted key corresponding to the encrypted key of the partially encrypted delivery information 20 readably by the data restoration device 200 is recorded, for decrypting the partially encrypted delivery information 20 included in the first data reading medium.SELECTED DRAWING: Figure 2

Description

  The present invention relates to a data delivery medium using a two-dimensional code suitable for delivery of information including protected information that can be seen only by a specific information recipient in the delivery of information between the information provider and the information recipient. The present invention relates to a data encryption method, a two-dimensional code data decryption method, a program, and a recording medium.

  Conventionally, as one of methods for transferring information, there is a method for transferring information using a two-dimensional code. In the delivery of information using a two-dimensional code, the information provider converts the information to be delivered into a two-dimensional code form and provides it by printing or displaying it on paper or a display medium. Information is delivered by reading a two-dimensional code printed or displayed on a display medium with a reader.

  Information delivery using this two-dimensional code often provides the same information to an unspecified number of people, but on the other hand, information that differs for each information recipient is included in each information recipient. A print control system and a print control method suitable for transferring different information for each information recipient from the information provider by generating the two-dimensional code are disclosed (for example, see Patent Document 1).

  The technology disclosed in Patent Document 1 is a voice reading for assisting easy voice reading, including information for each information recipient included in the delivery information with respect to the delivery information passed from the information provider to the information recipient. A two-dimensional code to be passed to the information recipient is generated with the control information added, and the information recipient reads the two-dimensional code and reads out the delivery information received from the information provider according to the voice reading control information. By doing so, it is possible to read out a voice that is easy for the information recipient to hear.

  Note that an e-mail encryption system and an e-mail encryption program have been disclosed as means for restricting reading of delivery information only to specific information recipients (see, for example, Patent Document 2).

  In the disclosed technique of Patent Document 2, the information provider encrypts the delivery information, notifies the information recipient of a password for decrypting the encrypted delivery information, and stores the encrypted delivery information. When the information recipient reads it, the password notified by the information provider is input, so that only the specific information recipient can restore the original delivery information.

  Further, as means for restricting reading of delivery information only to specific information recipients, an encrypted information storage method and information processing apparatus (for example, refer to Patent Document 3) using a two-dimensional code, or a two-dimensional barcode generation apparatus. A two-dimensional barcode decoding apparatus, a two-dimensional barcode generation method, a two-dimensional barcode decoding method, and a program (for example, see Patent Document 4) are disclosed.

  The disclosed techniques of Patent Document 3 and Patent Document 4 cannot restore the entire original two-dimensional code unless another two-dimensional code is used in order to prevent the entire original two-dimensional code from being read. In this way, two-dimensionally encoded data to be encrypted and password data are subjected to logical operation processing at the image level to generate encrypted data and decryption key data. Therefore, since the encrypted data cannot be restored without the decryption key data, it becomes possible to limit the reading of the delivery information to only a specific information recipient.

Japanese Patent No. 4856333 JP 2009-171542 A JP 2001-188469 A International Publication No. 2004/090804

  However, in the technology disclosed in Patent Document 1 described in the background art, it is possible to pass different information for each information recipient between the information provider and the information recipient using a two-dimensional code. When passing protection information that can only be seen by a specific information recipient, such as personal information, the information recipient can receive a two-dimensional code of the delivery information in a form that can be seen only by the specific information recipient by means of a confidential e-mail, etc. If the other person can see the printed matter or display medium of the 2D code, the protection information for the specific information recipient can be read by the 2D code reader. There was the difficulty that it was seen by others.

  Further, in the disclosed technique of Patent Document 1, when the disclosed technique of Patent Document 2 is applied in combination, the delivery information is encrypted and delivered to the information recipient, and the encrypted delivery information is sent to the information recipient side. It is possible to solve this difficulty by entering a decryption key and password for decryption, but it is difficult for the elderly and visually impaired to enter the decryption key and password directly. In addition, people other than the elderly and visually impaired people may not be able to memorize various decryption keys and passwords correctly, so forget the decryption key and password and view the delivery information. There was a difficulty that it was impossible.

  Further, in the disclosed technique of Patent Document 3 and the disclosed technique of Patent Document 4, encrypted data and decryption key data are generated by subjecting two-dimensionally encoded data to be encrypted and password data to logical operation processing at the image level. As a result, the entire original two-dimensional code cannot be read. Therefore, the data to be encrypted cannot be mixed with protected information that must be encrypted and non-protected information that does not need to be encrypted.

  Furthermore, since the disclosed technique of Patent Document 3 and the disclosed technique of Patent Document 4 simply perform logical operation processing on the two-dimensionally encoded data to be encrypted and password data at the image level, an error at the image level will occur. Correction becomes difficult, and there is a possibility that the reading accuracy is greatly lowered. This is because there is a possibility that the two-dimensional code cannot normally be printed or read accurately, so that it can be read while being corrected by adding an error correction code.

  In all of the disclosed technologies described above, when information is delivered to a plurality of information recipients, each time the information provider delivers information, the information provider provides a two-dimensional code of information corresponding to each information recipient. It was necessary to individually generate the generated two-dimensional codes and individually pass them to the corresponding information recipients.

  An object of the present invention is to provide data in a two-dimensional code including a protection information that can be seen only by a specific information recipient on a data delivery medium using the two-dimensional code. Even if the delivery medium is handed over to others, the protection information included in the data delivery medium is to be restored only by a specific information recipient.

  Moreover, when restoring the protection information part, it does not require difficult operations for the elderly or visually impaired, such as directly entering the decryption key or password, and forgetting the decryption key or password. The problem is that the protection information part cannot be viewed.

  In addition, the object of the present invention is to provide information delivery to a plurality of information recipients, even if the information provider provides the same data delivery medium to the plurality of information recipients. In other words, it is possible to read only the information permitted to the information recipients, and to pass different information for each information recipient.

  The data delivery medium using the two-dimensional code according to the first aspect of the present invention that achieves the above-described object is generated only by a specific information recipient in the delivery information that is generated by the data generation device and passed from the information provider to the information recipient. The two-dimensional code coded in a state in which the protection information to be displayed is included is restored by being read by the data restoration device.

  This two-dimensional code data delivery medium is a partially encrypted delivery information generated by replacing the protection information part of the delivery information with the encrypted protection information obtained by encrypting the protection information using a predetermined encryption key. A first data reading medium in which the two-dimensional code including the data is converted so as to be readable by the data restoration device, and the partial encryption in order to decrypt the partially encrypted delivery information included in the first data reading medium It comprises a second data reading medium in which a two-dimensional code of the decryption key corresponding to the encrypted delivery information encryption key is converted so as to be readable by the data restoration device.

  In addition, the data delivery medium using the two-dimensional code according to the second aspect of the present invention is generated by the data generation device in the same manner as the data delivery medium using the two-dimensional code according to the first aspect. The two-dimensional code that is encoded in a state in which the protection information for showing only to a specific information recipient is included in the delivery information to be transferred to is restored by reading it with the data restoration device.

  This two-dimensional code data delivery medium is encrypted protection information obtained by encrypting two or more protection information included in the delivery information using a predetermined encryption key for each protection information. Included in the first data reading medium and the first data reading medium in which the two-dimensional code including the partially encrypted delivery information generated by replacing the above protection information is converted to be readable by the data restoration device Among the two or more pieces of encrypted protection information of the partially encrypted delivery information, the encryption protection information for decrypting the encrypted protection information to be shown only to a specific information recipient is decrypted. Includes encryption key information having encryption key identification information for identifying the encryption key, and a decryption key corresponding to the encryption key identification information of the encryption key information is copied with the encryption key identification information. 2-dimensional code decoding key information included in is made of a second data read medium that is readable converted by the data restoration apparatus.

  According to a third aspect of the present invention, in the data delivery medium using the two-dimensional code according to the second aspect, the partially encrypted delivery information of the first data reading medium includes each encryption protection information The application condition information in which the application condition of the decryption key information corresponding to the encryption key identified by the encryption key identification information included in the protection information is defined, and the decryption key information does not match the application condition. Decryption key update information for invoking the acquisition of decryption key information matching the application conditions or automatic acquisition is added, and the second data reading medium includes the decryption key information and the encryption key identification information. Application determination target for determining whether or not the decryption key information can be used for decryption of the encryption protection information as compared with the application condition information included in the encryption protection information with the same One in which distribution has been added.

  According to a fourth aspect of the present invention, in the data delivery medium using a two-dimensional code which is any one of the first to third aspects, the first data reading medium and the second data reading medium are individually provided. In addition, a print medium for displaying the two-dimensional code data so as to be visible, an image display medium for displaying the two-dimensional code data so as to be visible, a storage medium for storing the two-dimensional code data, and a data generation apparatus and data for storing the two-dimensional code data Any one of the communication media that can communicate with each other between the restoration devices is selected.

  Further, in the data encryption method for a two-dimensional code according to the fifth aspect of the present invention, the protection information for showing only to a specific information recipient is included in the delivery information passed from the information provider to the information recipient. A two-dimensional code coded in a state is generated by a data generation device.

  In this two-dimensional code data encryption method, the data generation device replaces the protection information portion of the original delivery information with encrypted protection information obtained by encrypting the protection information using a predetermined encryption key. A first process for generating encrypted delivery information and a decryption corresponding to the encryption key of the partially encrypted delivery information in order to decrypt the partially encrypted delivery information generated in the first process A second process for generating a key and a third process for converting the partially encrypted transfer information and the decryption key into two-dimensional code data individually imaged are executed.

  Further, the two-dimensional code data encryption method according to the sixth aspect of the present invention is similar to the two-dimensional code data encryption method according to the fifth aspect in passing information passed from the information provider to the information recipient. The data generation device generates a two-dimensional code that is encoded in a state in which protection information for showing only to a specific information recipient is included.

  This two-dimensional code data encryption method uses encrypted protection information in which a data generation apparatus encrypts two or more pieces of protection information included in delivery information using a predetermined encryption key for each piece of protection information. A first process of generating two pieces of partially encrypted transfer information by replacing two or more pieces of protection information of the transfer information, and two or more encryption protections of the partially encrypted transfer information generated in the first process In order to decrypt the encryption protection information to be shown only to a specific information recipient among the information, the encryption protection information for decryption includes encryption key identification information for identifying the encryption key. Second processing for generating decryption key information including a pair of encryption key identification information and encryption key identification information of the encryption key information corresponding to the encryption key identification information. , Partially encrypted A third process of converting information and decryption key of the two-dimensional code data imaged individually and is intended to run.

  In a first process executed by the data generation apparatus of the two-dimensional code data encryption method according to the sixth aspect of the seventh aspect of the present invention, each encryption protection information is included in the encryption protection information. The application condition information in which the application condition of the decryption key information corresponding to the encryption key identified by the encryption key identification information is defined, and the application condition matches when the decryption key information does not match the application condition. In the second process executed by the data generation device, the partially encrypted delivery information is generated by adding the decryption key update information for performing the acquisition of the decryption key information to be performed or the automatic acquisition. Whether the decryption key information can be used for decryption of the encryption protection information as compared with the application condition information included in the encryption protection information whose encryption key identification information matches the key information Application determination object information for determining whether is intended to be produced is added.

  According to an eighth aspect of the present invention, in the two-dimensional code data encryption method according to any one of the fifth to seventh aspects, the two data reading media individually receive the two-dimensional code data. A print medium for displaying the two-dimensional code data, a screen display medium for displaying the two-dimensional code data in a visible manner, a storage medium for storing the two-dimensional code data, and the two-dimensional code data can be communicated with each other between the data generating device and the data restoring device. One of the various communication media is selected ".

A program according to a ninth aspect of the present invention causes a data generation apparatus to execute each process of the two-dimensional code data encryption method according to any one of the fifth to eighth aspects. is there.
The recording medium according to the tenth aspect of the present invention is a computer-readable medium on which the program according to the ninth aspect is recorded.

  In addition, the two-dimensional code data restoration method according to the eleventh aspect of the present invention is performed by using a data restoration device from a data reading medium encrypted by the two-dimensional code data encryption method according to the fifth aspect. The delivery information is restored.

  In this two-dimensional code data restoration method, when the data restoration device reads the data reading medium having the two-dimensional code data of the partially encrypted delivery information provided by the information provider, the data is restored to the partially encrypted delivery information. The first process, the second process for obtaining the decryption key when the data reading medium having the two-dimensional code data of the decryption key information provided by the information provider is read, and the first process And third processing for decrypting the encrypted protection information included in the encrypted partial encrypted transfer information using the decryption key acquired in the second processing.

  Further, the two-dimensional code data decryption method according to the twelfth aspect of the present invention is similar to the two-dimensional code data decryption method according to the eleventh aspect. The original delivery information is restored by the data restoration device from the data reading medium encrypted by the encryption method.

  In this two-dimensional code data restoration method, when the data restoration device reads the data reading medium having the two-dimensional code data of the partially encrypted delivery information provided from the information provider, the data restoration device decrypts the partially encrypted delivery information. A first process for obtaining the decryption key information when the data reading medium having the two-dimensional code data of the decryption key information provided by the information provider is read, and the first process Each piece of encryption protection information included in the partially encrypted delivery information decrypted in step 2 is decrypted by the encryption key identification information included in the encryption key information included in the encryption protection information acquired in the second process. If the encryption key identification information included in the encryption key information matches, a third process of decrypting the corresponding encryption protection information using the decryption key paired with the encryption key identification information is executed. It is intended to.

  Furthermore, a two-dimensional code data decryption method according to a thirteenth aspect of the present invention is obtained by using a data restoration device from a data reading medium encrypted by the two-dimensional code data encryption method according to the seventh aspect. The delivery information is restored.

  This two-dimensional code data restoration method is included in the encryption key information included in the encryption protection information in the third process executed by the data restoration apparatus of the two-dimensional code data decryption method according to the twelfth aspect. When the encryption key identification information matches the encryption key identification information included in the decryption key information acquired in the second process, the application condition information added to the partially encrypted delivery information and the decryption When the application determination target information added to the encryption key information is collated and the application determination target information matches the application condition information and it is determined that the decryption key information is applicable, the encryption key identification information When the corresponding encryption protection information is decrypted using the pair of decryption keys, and the decryption key information is determined not to be applicable because the applicable determination target information does not match the applicable condition information, the decryption key is determined. It is intended to apply the update information.

  In the third process of the two-dimensional code data decryption method according to the thirteenth aspect of the thirteenth aspect of the present invention, when the decryption key update information matching the application condition information is obtained, the encryption key If the corresponding encryption protection information is decrypted using the decryption key paired with the identification information, and the decryption key update information matching the application condition information cannot be obtained, the corresponding encryption protection information is decrypted. It stops and ends.

  According to a fifteenth aspect of the present invention, in the second process of the two-dimensional code data decoding method according to any one of the twelfth aspect to the fourteenth aspect, the information receiver receives a part from the information provider. In addition to the data reading medium having the two-dimensional code data of the decryption key information received together with the data reading medium having the two-dimensional code data of the encrypted delivery information, the two-dimensional code of the decryption key information different from the decryption key When a plurality of pre-acquired data reading media having data are read by the data restoration device, the decryption key information of each data reading medium is obtained, and the partial encryption decrypted in the first processing in the third processing Each encryption protection information included in the completed delivery information includes each decryption key information acquired by the encryption key identification information included in the encryption key information included in the encryption protection information in the second process. When the encryption key identification information included in any one of the decryption key information matches, the corresponding encryption protection information is decrypted using the decryption key paired with the encryption key identification information, In addition, when none of the decryption key information acquired in the second process matches the encryption key identification information included in the decryption key information, the decryption of each encryption protection information is stopped. .

  According to a sixteenth aspect of the present invention, in the two-dimensional code data decoding method according to any one of the eleventh to fifteenth aspects, the two data reading media individually receive the two-dimensional code data. A print medium for displaying the two-dimensional code data, a screen display medium for displaying the two-dimensional code data in a visible manner, a storage medium for storing the two-dimensional code data, and the two-dimensional code data can be communicated with each other between the data generating device and the data restoring device. Any one of the various communication media is selected.

A program according to a seventeenth aspect of the present invention causes a data generation apparatus to execute each process of the two-dimensional code data decoding method according to any one of the eleventh to sixteenth aspects. is there.
The recording medium according to the eighteenth aspect of the present invention is a computer-readable medium on which the program according to the seventeenth aspect is recorded.

  According to the first aspect, the fifth aspect, and the eleventh aspect of the present invention, the two-dimensional code of the partially encrypted delivery information passed from the information provider to the information recipient is the original protection information. Since the part is encrypted as encrypted protection information, even if only the two-dimensional code of the partially encrypted delivery information is read by the information recipient, the encrypted protection information part remains encrypted and information is provided. Unless the two-dimensional code of the decryption key information provided separately from the user is obtained, the contents of the original protection information portion cannot be restored.

  That is, even if another person obtains a data reading medium based on the two-dimensional code of the partially encrypted delivery information, the contents of the original protected information part are restored unless the data reading medium based on the two-dimensional code of the decryption key information is also obtained. Therefore, in the delivery of information using the two-dimensional code, the protection information that can be seen only by a specific information recipient is delivered to the data reading medium based on the two-dimensional code of the partially encrypted delivery information. Even if the data reading medium is handed over to another person, the protection information included in the data passing medium can be prevented from being restored.

  In addition, designation on the information recipient side of the decryption key information for decrypting the encryption protection information does not require complicated operations such as manually entering the decryption key, and partial encryption Since the two-dimensional code of the decryption key information can be designated by the same operation as the reading of the data reading medium by the two-dimensional code of the completed delivery information, the decryption key or It does not require difficult operations for the elderly or visually impaired persons such as directly entering a password, and the protected information portion can be viewed even if the decryption key or password is forgotten.

  Further, according to the second aspect, the sixth aspect, and the twelfth aspect of the present invention, as in the first aspect, the fifth aspect, and the eleventh aspect, the information receiver receives the information. The two-dimensional code of the partially encrypted delivery information passed to the data is a data reading medium using the two-dimensional code of the encrypted delivery information since the encrypted protection information part included in the partially encrypted delivery information is encrypted Even if only the information recipient reads it, the encrypted protection information part remains encrypted, and a data reading medium using a two-dimensional code of the decryption key information for each information recipient separately provided from the information provider is obtained. Otherwise, the contents of the encrypted protection information part cannot be decrypted.

  In addition, the data reading medium based on the two-dimensional code of the decryption key information for each information receiver separately obtained by each information receiver can decrypt the part of the encryption protection information permitted to be decrypted by the information receiver. Since only the encryption key is included, each information recipient can decrypt only the part of the encryption protection information for which the information receiver is permitted, and the part of the encryption protection information for which the decryption is not permitted. The corresponding original encryption information cannot be seen.

  That is, the information provider does not generate a data delivery medium based on a two-dimensional code of separate delivery information corresponding to each information recipient and hand it over to each information recipient. To each information recipient by providing a common two-dimensional code and providing a data delivery medium with a two-dimensional code of the decryption key information for each information recipient corresponding to each information recipient, Only the protection information permitted for each of the plurality of information recipients can be selectively shown.

  According to the third aspect, the seventh aspect, the thirteenth aspect, and the fourteenth aspect of the present invention, the application condition information of the decryption key information and the decryption key update information are added to the encryption protection information. Therefore, the conditions for applying the decryption key information can be limited by conditions such as the expiration date, and even if the decryption key information falls outside the applicable conditions, the user matches the applicable conditions. The acquisition of the two-dimensional code of the decryption key information can be stimulated or automatically acquired.

  According to the fifteenth aspect of the present invention, the information receiver can read the data reading medium using the two-dimensional code of the decryption key information of the decryption key corresponding to the encryption key of the encryption protection information included in the delivery information. Even if it is not known, the delivery information including the encryption protection information for the information recipient can be restored only by reading all of the data reading medium based on the two-dimensional code of the plurality of obtained decryption key information with the data restoration device. Will be able to.

  Further, according to the fourth aspect, the eighth aspect and the sixteenth aspect of the present invention, on the basis of the type of the data reading medium, the transfer of the transfer information between the information provider and the information receiver as described below Will be able to do.

  When the data reading medium is a print medium, the information provider once prints the two-dimensional code of the partially encrypted delivery information generated by the data generation device on the print medium, and the information receiver prints the print medium on the print medium. The captured two-dimensional code of the partially encrypted delivery information is imaged and read by a camera included in the data restoration device, and the two-dimensional code of the partially encrypted delivery information read by the camera using the data restoration device, separately Since the original delivery information can be restored from the two-dimensional code of the decryption key information generated by the data generation device obtained from the information provider, the delivery information between the information provider and the information receiver Can be delivered.

  When the data reading medium is an image display medium, the information provider temporarily displays the two-dimensional code of the partially encrypted delivery information generated by the data generation device on the display medium, and the information receiver displays the information on the display medium. The displayed two-dimensional code of the partially encrypted delivery information is captured and read by a camera included in the data restoration device, and the two-dimensional code of the partially encrypted delivery information read by the camera is read by the data restoration device; Since the original delivery information can be restored from the two-dimensional code of the decryption key information generated by the data generation device separately obtained from the information provider, the delivery information between the information provider and the information receiver Can be delivered.

  When the data reading medium is a storage medium, the information provider stores the two-dimensional code of the partially encrypted delivery information generated by the data generation device in the storage medium as electronic image data. The partial encryption acquired from the storage medium by the data restoration device is read by acquiring the electronic image data of the two-dimensional code of the partial encrypted delivery information stored in the storage medium by the data restoration device. Since the original delivery information can be restored from the two-dimensional code of the digitized delivery information and the two-dimensional code of the decryption key information generated by the data generation device separately obtained from the information provider, the information provider And information recipients can exchange information.

  When the data reading medium is a communication medium, the information provider transmits the two-dimensional code of the partially encrypted delivery information generated by the data generation device to the information recipient via the communication medium as electronic image data. Then, the information receiver reads the electronic image data of the two-dimensional code of the partially encrypted delivery information transmitted from the information provider by receiving it with the data restoration device via the communication medium, From the two-dimensional code of the partially encrypted delivery information acquired via the communication medium in the data restoration device and the two-dimensional code of the decryption key information generated by the data generation device separately obtained from the information provider Since the original delivery information can be restored, the delivery information can be exchanged between the information provider and the information recipient.

  In addition, the reading here refers not only to reading the imaged two-dimensional code data used in the delivery of information of the present invention on a medium such as paper or signboard with a camera, but also to a display. What is displayed on the apparatus may be read by a camera or the like, or may be received as it is as electronic image data of a two-dimensional code via a storage medium or a communication medium.

  Further, in each aspect described above, the encryption key and the decryption key are distinguished, but when the encryption key and the decryption key are paired like the public encryption key, the encryption key and Although the decryption keys are different, when the same encryption method is used for the encryption key and the decryption key, both are the same.

  Further, the decryption key included in the two-dimensional code of the decryption key information does not mention a specific expression format, but any format can be used as long as it can be finally converted into the decryption key. For example, the decryption key data itself may be encrypted, or the decryption key may be encrypted with another encryption key defined in advance by a reader.

  In addition, the encryption key identification information included in each encryption protection information and decryption key information of the partially encrypted delivery information may be any information as long as the correspondence relationship between them is obtained. For example, the identification information of each corresponding protection information may be substituted.

  Furthermore, the decryption key information does not need to be a two-dimensional code composed only of the decryption key information. For example, application destination information of the decryption key information and supplementary information for managing the decryption key information May be included in the form of including the decryption key information in the two-dimensional code of another partially encrypted delivery information.

  According to the two-dimensional code data delivery medium, the two-dimensional code data encryption method, the two-dimensional code data decryption method, the program, and the recording medium according to the present invention, in the information delivery using the two-dimensional code, the 2 In the case of delivery including the protection information that can be seen only by a specific information recipient on the data delivery medium using the dimension code, even if the data delivery medium is handed over to another person, the protection information contained in the data delivery medium is not However, it is possible to make it impossible for anyone other than a specific information recipient to restore, and when restoring the protection information part, it is difficult for elderly people or visually impaired people to directly enter a decryption key, password, etc. You don't need it, and you forget the decryption key or password, so you can't see the protection information part It is possible to resolve the difficulties say.

  In addition, according to the two-dimensional code data delivery medium, the two-dimensional code data encryption method, the two-dimensional code data decryption method, the program, and the recording medium according to the present invention, information is delivered to a plurality of information recipients. In this case, even if the information provider provides the same data delivery medium to a plurality of information recipients, the information recipient side can read only the information permitted for each information recipient, Different information can be delivered to each information recipient.

(A) is a block diagram showing a data generation apparatus for executing the two-dimensional code data encryption method of the present invention, and (B) is a data restoration for executing the two-dimensional code data decryption method of the present invention. It is a block diagram which shows an apparatus. FIG. 3 is a processing sequence diagram illustrating a preferred embodiment of a two-dimensional code data encryption method and a two-dimensional code data decryption method according to the present invention. It is a block diagram which shows the specific example of the original delivery information described in FIG. It is a block diagram which shows the specific example of the partially encrypted delivery information produced | generated by the encryption process of the protection information described in FIG. It is a block diagram which shows the specific example of the encryption key information described in FIG. 2 which described the encryption key for encrypting the protection information in the original delivery information described in FIG. It is a block diagram which shows the specific example of the decoding key information for decoding the encryption protection information in the partially encrypted delivery information described in FIG. FIG. 3 is a flowchart showing an example of the protection information encryption process described in FIG. 2. FIG. 3 is a flowchart showing one embodiment of a decryption key information generation process described in FIG. 2. FIG. 3 is a flowchart showing an embodiment of the protection information decryption process described in FIG. 2. FIG. 5 is a processing sequence diagram showing an embodiment for transferring transfer information to a first data reading medium that is a component of the data transfer medium of the present invention using a print medium. FIG. 10 is a processing sequence diagram illustrating an embodiment for transferring transfer information to a first data reading medium that is a component of the data transfer medium of the present invention using an image display medium. FIG. 6 is a processing sequence diagram showing an embodiment for transferring transfer information to a first data reading medium that is a component of the data transfer medium of the present invention using a storage medium. It is a processing sequence figure which shows one Example for performing delivery information delivery to the 1st data reading medium which is a component of the data delivery medium of this invention using a communication medium. It is a process sequence diagram which shows the preferable example of embodiment of the other data encryption method of the two-dimensional code of this invention, and the other data decoding method of a two-dimensional code. It is a block diagram which shows the specific example of the original delivery information described in FIG. It is a block diagram which shows the specific example of the partially encrypted delivery information produced | generated by the encryption process classified by protection information described in FIG. The block diagram which shows the specific example of the encryption key information for the encryption described in FIG. 14 which described the encryption key for encrypting each protection information in the original delivery information described in FIG. is there. A specific example of the decryption key information for each information recipient described in FIG. 14 describing a decryption key for decrypting the encryption protection information in the partially encrypted delivery information described in FIG. FIG. FIG. 15 is a configuration diagram illustrating a specific example of delivery information for each information receiver obtained on the information receiver side as a result of the decryption by the selective decryption process of the protection information on the information receiver side described in FIG. 14. . FIG. 15 is a configuration diagram illustrating an example of information recipient selection information used as an input when selecting decryption key information to be passed to each information recipient in the decryption key information selection generation process described in FIG. 14. . It is a flowchart figure which shows one Example of the encryption process classified by protection information described in FIG. It is a flowchart figure which shows one Example of the decoding key information selection production | generation process described in FIG. It is a flowchart figure which shows one Example of the decryption key information generation process for each information recipient described in FIG. It is a flowchart figure which shows one Example of the selective decoding process of the protection information described in FIG. It is a block diagram which shows the other specific example of the partial encryption completed delivery information produced | generated by the encryption process classified by protection information described in FIG. Configuration showing another specific example of encryption key information for encryption described in FIG. 14 describing an encryption key for encrypting each protection information in the original delivery information described in FIG. FIG. Other decryption key information for each information recipient described in FIG. 14 describing a decryption key for decrypting the encryption protection information in the partially encrypted delivery information described in FIG. It is a block diagram which shows a specific example. It is a flowchart figure which shows the other Example of the encryption process classified by protection information described in FIG. It is a flowchart figure which shows the other Example of the decryption key information generation process for each information receiver described in FIG. It is a flowchart figure which shows the other Example of the selective decoding process of the protection information described in FIG. FIG. 10 is a processing sequence diagram illustrating an embodiment for transferring transfer information to a first data reading medium that is a component of another data transfer medium of the present invention using a print medium. FIG. 10 is a processing sequence diagram illustrating an embodiment for transferring transfer information to a first data reading medium that is a component of another data transfer medium of the present invention using an image display medium. It is a processing sequence figure which shows one Example for performing delivery information transfer to the 1st data reading medium which is a component of the other data delivery medium of this invention using a storage medium. It is a processing sequence figure which shows one Example for delivering and receiving delivery information to the 1st data reading medium which is a component of the other data delivery medium of this invention using a communication medium. It is a processing sequence figure which shows the example of preferable embodiment of the other data decoding method of the two-dimensional code of this invention. It is a flowchart figure which shows one Example of the selective decoding process of the protection information described in FIG.

  DESCRIPTION OF THE PREFERRED EMBODIMENTS Embodiments for implementing a data delivery medium using a two-dimensional code, a data encryption method for a two-dimensional code, a data decoding method for a two-dimensional code, a program, and a recording medium according to the present invention will be described below with reference to the drawings.

  The two-dimensional code data delivery medium, the two-dimensional code data encryption method, the two-dimensional code data decryption method, the program, and the recording medium of the present invention are delivered from the information provider to the information recipient as shown in FIG. A data generation device 70 (FIG. 1A) that generates a two-dimensional code that is encoded in a state in which protection information to be shown only to a specific information recipient is included in the delivery information; The present invention is applied to the data restoration device 80 (FIG. 1B) that restores the original delivery information from the two-dimensional code generated by the generation device 70.

  The data generation apparatus 70 possessed by the information provider is configured as a general information processing apparatus, and the two-dimensional code data encryption method of the present invention is realized as a data generation processing program 71 executed on the information processing apparatus. The

  Specifically, the data generation device 70 includes a storage device 72 that stores a data generation processing program 71, a RAM (Random Access Memory) 73 that stores programs and data, a processor 74 that executes a program on the RAM 73, A two-dimensional code output interface 75 that outputs two-dimensional code data of partially encrypted transfer information, which will be described later, generated by the data generation processing program 71 and two-dimensional code data of decryption key information to a data transfer medium, a storage device 72, The RAM 73, the processor 74, and the bus 76 for transferring data and programs between the two-dimensional code output interface 75.

  The data generation processing program 71 stored in the storage device 72 is read from the storage device 72 via the bus 76 and stored on the RAM 73 at startup, and the data generation processing program 71 stored on the RAM 73 is stored on the bus 73. It is executed by the processor 74 via 76.

  As a result of executing the data generation processing program 71, the two-dimensional code data of the partially encrypted transfer information and the two-dimensional code data of the decryption key information generated on the RAM 73 are transmitted via the bus 76 to the two-dimensional code output interface 75. And output to a data reading medium as an output medium.

  The two-dimensional code output interface 75 differs depending on the output data reading medium. For example, a USB interface connected to a printer for output to a print medium, an image display device interface for an image display medium, a CD / DVD / memory For example, a CD / DVD / memory control interface is employed for a storage medium, and a communication interface is employed for a communication medium.

  On the other hand, the data restoration apparatus 80 possessed by the information recipient is configured as a general information processing apparatus, and the two-dimensional code data decoding method of the present invention is used as a data restoration processing program 81 executed on the information processing apparatus. Realized.

  Specifically, the data restoration device 80 includes a storage device 82 that stores a data restoration processing program 81, a RAM 83 that stores programs and data, a processor 84 that executes programs on the RAM 83, and a data restoration processing program 81. A two-dimensional code input interface 85 for inputting a two-dimensional code of partially encrypted delivery information and a two-dimensional code of decryption key information to be input via a data delivery medium, a storage device 82, a RAM 83, a processor 84, The bus 86 is used to exchange data and programs between the dimension code input interfaces 85.

  The data restoration processing program 81 stored in the storage device 82 is read from the storage device 82 via the bus 86 and stored on the RAM 83 at startup, and the data restoration processing program 81 stored on the RAM 83 is stored on the bus 83. It is executed by the processor 84 via 86.

  The executed data restoration processing program 81 inputs the two-dimensional code data of the partially encrypted delivery information and the two-dimensional code data of the decryption key information stored in the data delivery medium via the two-dimensional code input interface 85. Further, the data is stored on the RAM 83 via the bus 86, and processing by a data decoding method for a two-dimensional code according to the present invention described later is executed.

  The two-dimensional code input interface 85 differs depending on the data reading medium that is an input medium. For example, if the input is from a print medium or an image display medium, the two-dimensional code input interface 85 may be a storage medium such as a camera interface connected to a camera or a CD / DVD / memory. For example, a CD / DVD / memory control interface and a communication interface are employed for a communication medium.

  Next, an embodiment of the two-dimensional code data encryption method of the present invention applied to the data generation device 70 and the two-dimensional code data decryption method of the present invention applied to the data restoration device 80 will be described. explain.

  First, a first embodiment of a data encryption method and a data decryption method of a two-dimensional code according to the present invention will be described with reference to FIGS. FIG. 2 shows an embodiment of the data encryption method of the two-dimensional code of the present invention in the data generation process 100 of the information provider, and the two-dimensional code of the present invention is included in the data recovery process 200 of the information recipient. An embodiment of a data decoding method is shown.

  As shown in FIG. 2, the data generation processing 100 executed by the data generation device 70 of the information provider converts the original delivery information 10 to be passed from the information provider to the information recipient and actually passes it to the information recipient. This is processing on the information provider side that generates the two-dimensional code.

  The data generation processing 100 corresponding to the two-dimensional code data encryption method of the present invention encrypts the protection information 12 portion included in the original delivery information 10 to be passed to the information recipient, and the original delivery information 10 The protection information encryption processing 110 for generating the partially encrypted delivery information 20 in which the protection information 12 portion of the encrypted information is replaced with the encrypted protection information 22, and the partial encryption generated by the protection information encryption processing 110 2D code generation processing 120 for partially encrypted delivery information that converts the completed delivery information 20 into a 2D code 40, and decryption key information 35 for decrypting the encrypted protection information 22 portion on the information recipient side. The decryption key information generation process 130 for generating the decryption key information and the decryption key information 35 generated by the decryption key information generation process 130 are converted into a two-dimensional code 50. And a 2-dimensional code generation process 140 of the decryption key information.

  That is, the data generation process 100 receives the original delivery information 10 to be passed to the information recipient and the encryption key information 30 for encrypting the protection information 12 included in the original delivery information 10. The two-dimensional code 40 of the partially encrypted delivery information 20 obtained by replacing the protection information 12 portion of the delivery information 10 of the received information 10 with the encrypted encryption protection information 22 and the encrypted protection information 22 portion are decrypted by the information recipient. The two-dimensional code 50 of the decryption key information including the decryption key information 35 is generated. Note that the original delivery information 10 input by the data generation processing 100 includes unprotected information 11 that can be seen by all information recipients and protected information 12 that can be seen only by a specific information recipient.

  Also, the protection information encryption processing 110 of the data generation processing 100 includes the original delivery information 10 to be transferred to the information recipient and an encryption key for encrypting the protection information 12 portion included in the original delivery information 10. Using the information 30 as an input, the protected information 12 portion of the original delivery information 10 is encrypted with the encryption key obtained from the encryption key information 30, and the unprotected information 11 portion of the delivery information 10 is copied as it is and is not protected. As the information 21, the partially encrypted delivery information 20 is generated by replacing the protection information 12 part with the encrypted protection information 22 as a result of encrypting the protection information 12 part.

  The partially encrypted delivery information 20 generated by the protection information encryption process 110 is further passed to the two-dimensional code generation process 120 of the partially encrypted delivery information 20, and the two-dimensional code generation process 120 performs image processing. Is converted into converted two-dimensional code data, and a two-dimensional code 40 of the partially encrypted delivery information, which is one of the outputs of the data generation processing 100, is generated.

  On the other hand, the encryption key information 30 used when encrypting the protection information 12 portion of the original delivery information 10 is also passed to the decryption key information generation process 130. In the decryption key information generation process 130, The encryption key included in the encryption key information 30 is replaced with a decryption key corresponding to the encryption key, and the encrypted protection information 22 encrypted using the encryption key information 30 is transferred to the information recipient side. The decryption key information 35 for decryption is generated.

  The decryption key information 35 generated in the decryption key information generation process 130 is further passed to the two-dimensional code generation process 140 for the decryption key information, and the two-dimensional code generation process 140 for the decryption key information performs image processing. The data generation processing 100 generates a two-dimensional code 50 of decryption key information, which is another output.

  The data transfer of the two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information is performed by transferring the two-dimensional code 40 of the partially encrypted delivery information from the information provider to the information recipient. In addition to handing over, the information provider also provides the two-dimensional code 50 of the decryption key information to the information recipient separately.

  The data restoration process 200 executed by the data restoration device 80 of the information receiver provided with the two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information is obtained from the information provider. The two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information obtained separately from the information provider are input and read by the data restoration process 200, and the partial encryption is performed. The encrypted protection information 22 portion included in the two-dimensional code 40 of the completed delivery information is decrypted into the original protection information 12 by using the decryption key information 35 obtained from the two-dimensional code 50 of the decryption key information. This is a process for restoring the delivery information 10.

  The data restoration process 200 corresponding to the two-dimensional code data decryption method of the present invention is a partially encrypted delivery information reading process for reading the two-dimensional code 40 of the partially encrypted delivery information obtained from the information provider. 210, a decryption key information acquisition process 220 for reading the two-dimensional code 50 of the decryption key information acquired separately from the information provider, a partially encrypted delivery information reading process 210 and a decryption key information acquisition process 220 to be read. Based on the result of the above, the encrypted protection information 22 part of the partially encrypted delivery information 20 obtained by the partially encrypted delivery information reading process 210 is converted into the decryption key information 35 obtained by the decryption key information acquisition process 220. And the protection information decrypting process 230 for restoring the original delivery information 10.

  That is, the data restoration process 200 first reads the two-dimensional code 40 of the partially encrypted delivery information provided from the information provider by the partially encrypted delivery information reading process 210, before the two-dimensional coding. The data is converted into data, and the partially encrypted delivery information 20 in the form of encrypted protection information 22 in which the protection information portion 12 of the original delivery information 10 is encrypted is restored from the two-dimensional code 40.

  Further, the data restoration process 200 reads the decryption key information two-dimensional code 50 acquired from another information provider, which is another input, by the decryption key information acquisition process 220 and reads the data before the two-dimensional encoding. The decryption key information 35 for decrypting the encrypted protection information 22 portion of the partially encrypted delivery information 20 is restored from the two-dimensional code 50.

  The partially encrypted delivery information 20 restored in the partially encrypted delivery information reading process 210 and the decryption key information 35 restored in the decryption key information acquisition process 220 are decryption of the protection information. The encrypted protection information 22 included in the partially encrypted delivery information 20 in the protection information decryption process 230 is transferred to the process 230 and converted into the original protection information 12 using the decryption key information 35. It decrypts and restores the original delivery information 10 that the information provider is trying to provide.

  Next, specific configuration examples of the original delivery information 10, the partially encrypted delivery information 20, the encryption key information 30, and the decryption key information 35 will be described.

  As shown in FIG. 3, the original delivery information 10 includes, for example, the non-protected information 11 and the protected information 12 in the XML format so that the information constituting the original delivery information 10 can be distinguished from each other in <data> </ data> XML tags enclosed in XML tags, and in <data-type> </ data-type>, type information indicating the type of the information, and <data-body> </ data-body> Describes the data of the information.

  For example, the unprotected information 11 describes the information “unprotected-data” in the <data-type> tag 11a and the <data-body> tag 11b so that the information is known to be unprotected information. Describes the data of unprotected information.

  Similarly, the protection information 12 describes the information “protected-data” in the <data-type> tag 12a and the <data-body> tag 12b so that it can be understood that the information is protection information. , Write protection information data.

  As shown in FIG. 4, the partially encrypted delivery information 20 is described in the XML format in the same way as the original delivery information 10 in FIG. In order to understand that it is unprotected information, information "unprotected-data" is described in the <data-type> tag 21a, data of unprotected information is described in the <data-body> tag 21b, The encrypted protection information 22 describes information “encrypted-data” in the <data-type> tag 22a so that the information is encrypted protection information, and the <data-body> tag The encrypted protection data is described in 22b.

  As shown in FIG. 5, the encryption key information 30 is described in the XML format in the same manner as the original delivery information 10 in FIG. 3 and the partially encrypted delivery information 20 in FIG. In order to understand that the encryption key information 30 is information describing an encryption key, information “encrypt-key” is described in the <data-type> tag 30a, and the <data-body> tag 30b. Write the actual encryption key.

  As shown in FIG. 6, the decryption key information 35 is similar to the original delivery information 10 in FIG. 3, the partially encrypted delivery information 20 in FIG. 4, and the decryption key information 30 in FIG. 35 is also described in the XML format, and information “decrypt-key” is described in the <data-type> tag 35a so that the decryption key information 35 is information describing the decryption key, and < The actual decryption key is described in the data-body> tag 35b.

  Based on the original delivery information 10 (FIG. 3), the partially encrypted delivery information 20 (FIG. 4), the encryption key information 30 (FIG. 5), and the decryption key information 35 (FIG. 6) thus configured, An example of the protection information encryption process 110, the decryption key information generation process 130, and the protection information decryption process 230 shown in FIG. 2 will be described with reference to FIGS. 7, 8, and 9, respectively.

  As shown in FIG. 7, the protection information encryption processing 110 first acquires <data> tag information surrounded by <data> </ data> from the original delivery information 10 (processing 1100). If all the <data> tag information has already been acquired in the process 1100, the protection information encryption process 110 ends.

  If there is unprocessed <data> tag information, the type information enclosed in <data-type> </ data-type> in the <data> tag is acquired, and the relevant <data> The type of data described in the tag is determined (processing 1101).

  If the type information described in the <data-type> tag is not “protected-data”, the information described in the <data> tag is not the protected information 12; The entire <data> tag information between </ data> is copied and output to the partially encrypted delivery information 20 as it is, and the processing returns to processing 1100 (processing 1102). By processing 1102, the unprotected data 11 and the like are copied from the original delivery information 10 to the partially encrypted delivery information 20 as it is.

  If the type information described in the <data-type> tag is "protected-data", the information described in the <data> tag is the protection information 12, so first output from now on. The <data> start tag indicating the start of the encryption protection information 22 to be output is output to the partially encrypted delivery information 20 (process 1103).

  Next, in order to indicate that the information to be output is the encryption protection information 22, “encrypted-data” that is the type information of the encryption protection information 22 is enclosed in <data-type> </ data-type>. The data is output to the partially encrypted delivery information 20 (process 1104).

  After outputting the <data-type> tag, next, using the encryption key in the <data-body> tag 30b of the encryption key information 30, the <data-body> <of the protection information 12 in the delivery information 10 The protected data enclosed in / data-body> 12b is encrypted (process 1105).

  The encrypted protected data obtained in the processing 1105 is enclosed in <data-body> </ data-body> tags, and the partially encrypted delivery information is used as the encrypted protected data portion 22b of the encrypted protected information 22. 20 (processing 1106).

  Finally, a </ data> end tag indicating the end of the encryption protection information 22 is output to the partially encrypted delivery information 20, and the process returns to the process 1100 to return the unprocessed <data> tag to the original delivery information 10. Until the information disappears, the conversion from the original delivery information 10 to the partially encrypted delivery information 20 is repeated (processing 1107).

  By the encryption processing 110 of the protection information, the protection information 12 portion of the original delivery information 10 is encrypted using the encryption key described in the encryption key information 30, and the protection information 12 portion of the original delivery information 10 is obtained. The partially encrypted delivery information 20 is generated by replacing the encrypted protection information 22 encrypted with.

  As shown in FIG. 8, the decryption key information generation process 130 corresponds to the encryption key information 30 used for encrypting the protection information 12 portion of the original delivery information 10 and corresponds to the partially encrypted delivery information 20 in FIG. This is for generating decryption key information 35 for decrypting the included encryption protection information 22.

  As shown in FIG. 8, the decryption key information generation process 130 receives as input the encryption key information 30 used for encrypting the protection information 12 portion of the original delivery information 10. , <Data> </ data>, <data> tag information is acquired (process 1300). If all the <data> tag information has already been acquired in this process 1300, the decryption key information generation process 130 ends.

  If there is unprocessed <data> tag information in this processing 1300, the type information enclosed in <data-type> </ data-type> in the <data> tag is acquired, and the type Based on the information, the type of data described in the <data> tag is determined (process 1301).

  If the type information described in the <data-type> tag is not “encrypt-key”, the information described in the <data> tag is not the encryption key information 30. The entire <data> tag information between data> to </ data> is copied and output to the decryption key information 35 as it is, and the processing returns to processing 1300 (processing 1302). That is, when the encryption key information 30 includes information of a type other than the encryption key information 30, the information is copied to the decryption key information 35 as it is.

  When the type information described in the <data-type> tag is “encrypt-key”, the information described in the <data> tag is the encryption key information 30. A <data> start tag indicating the start of the decryption key information 35 to be output is output to the decryption key information 35 (process 1303).

  Next, in order to indicate that the information to be output is the decryption key information 35, the type information “decrypt-key” of the decryption key information 35 is enclosed in <data-type> </ data-type>. The data is output to the decryption key information 35 (process 1304).

  After outputting the <data-type> tag to the decryption key information 35, next, the encryption key in the <data-body> tag 30b of the encryption key information 30 is changed to a decryption key corresponding to the encryption key. The data is replaced and output in the <data-body> </ data-body> 35b of the decryption key information 35 (process 1305). In the processing 1305, when the encryption method to be used is an encryption method in which the encryption key and the decryption key are paired like the public encryption method, the replacement from the encryption key to the decryption key is performed. The process replaces the pair of decryption keys corresponding to the encryption key. However, if the encryption key and decryption key are the same encryption method, the replacement does not actually occur and the encryption key As a decryption key.

  Finally, a </ data> end tag indicating the end of the decryption key information 35 is output to the decryption key information 35, and the process returns to the processing 1300, and the unprocessed <data> tag information is included in the encryption key information 30. The conversion from the encryption key information 30 to the decryption key information 35 is repeated until there is no more (process 1306).

  The decryption key information generation process 130 encrypts the protection information 12 included in the partially encrypted delivery information 20 from the encryption key information 30 used to encrypt the protection information 12 of the original delivery information 10. The decryption key information 35 for decrypting the encrypted encryption protection information 22 is generated.

  As shown in FIG. 9, the protection information decryption process 230 first acquires <data> tag information surrounded by <data> </ data> from the partially encrypted delivery information 20 (process 2300). If all the <data> tag information has already been acquired in the process 2300, the protection information decryption process ends.

  If there is unprocessed <data> tag information, the type information enclosed in <data-type> </ data-type> within the <data> tag is acquired, and the relevant < The contents of data described in the data> tag are discriminated (process 2301).

If the type information described in the <data-type> tag is not “encrypted-data”, the information described in the <data> tag is not the encryption protection information 22, and therefore The entire <data> tag information is directly copied and output to the original delivery information 10 that is an intermediate state during the restoration process, and the process returns to the process 2300 (process 2302). That is, the processing 2302 copies the unprotected data 21 and the like from the partially encrypted delivery information 20 to the original delivery information 10 that is an intermediate state during the restoration process.
When the type information described in the <data-type> tag is “encrypted-data”, since the information described in the <data> tag is the encryption protection information 22, first, A <data> start tag indicating the start of the protection information 12 to be output is output to the original delivery information 10 which is an intermediate state during the restoration process (process 2303).

  Next, in order to indicate that the information to be output is the protection information 12, the type information of the protection information 12 "protected-data" is enclosed in <data-type> </ data-type>. The original delivery information 10 that is in an intermediate state is output (process 2304).

  After outputting the <data-type> tag to the original delivery information 10 that is in an intermediate state during the restoration process, the decryption key in the <data-body> tag 35b of the decryption key information 35 is then used to The encrypted protection data enclosed in <data-body> </ data-body> 22b of the encryption protection information 22 in the encrypted delivery information 20 is decrypted to restore the original protection data (processing 2305). .

  The restored protection data obtained in the processing 2305 is surrounded by <data-body> </ data-body> tags, and the original data that is an intermediate state during the restoration processing is provided as the protection data portion 12b of the protection information 12 It outputs to the information 10 (process 2306).

  Finally, a </ data> end tag indicating the end of the generation process of the protection information 12 is output to the restored delivery information 10, and the process returns to the process 2300, and unprocessed <data> is included in the partially encrypted delivery information 20. Until the tag information disappears, the restoration from the partially encrypted delivery information 20 to the original delivery information 10 is repeated (processing 2307).

  By the decryption processing 230 of the protection information, the encrypted protection information 22 portion of the partially encrypted delivery information 20 is decrypted using the decryption key described in the decryption key information 35, and the partially encrypted delivery information is obtained. The original delivery information 10 can be restored from 20.

  The data generation processing program 71 and the data recovery processing executed by the processor 74 of the data generation device 70 and the processor 84 of the data recovery device 80 are the data generation processing 100 and the data recovery processing 200 which are data processing procedures of the first embodiment. The processing program 81 can be used by a plurality of data generation devices 70 and data restoration devices 80 by recording a computer-readable CD, DVD, or the like.

  According to the data encryption method and data decryption method of the two-dimensional code of the present invention described in the first embodiment, the partially encrypted delivery information passed between the information provider and the information recipient In the two-dimensional code 40, the protection information 12 portion of the original delivery information 10 is included in the form of encrypted protection information 22 that has been encrypted by the protection information encryption processing 110. A legitimate information recipient who has obtained both the two-dimensional code 40 of the delivery information and the two-dimensional code 50 of the decryption key information containing the decryption key information of the encrypted protection information 22 part from the information provider is The information recipient's data restoration process 200 can also restore the encrypted protection information 22 part to the original protection information 12. However, in the unlikely event, the two-dimensional code 40 of the partial encrypted delivery information is Even if the two-dimensional code 40 is read by someone other than the information recipient, the two-dimensional code of the decryption key information containing the decryption key information 35 of the encrypted protection information 22 portion of the partial encrypted delivery information 20 If 50 cannot be obtained, an unauthorized information recipient cannot decrypt the encrypted protection information 22 part and cannot restore the original protection information 12.

  For this reason, the two-dimensional code 50 of the decryption key information can be passed only to the legitimate information recipient without touching the eyes of others in a confidential or the like, so the original protection information 12 portion is encrypted. The two-dimensional code 40 of the partially encrypted delivery information that is the encrypted protection information 22 can also be delivered to the information recipient in a form that can be seen by others.

  In addition, once the two-dimensional code 50 of the decryption key information can be delivered to a legitimate information recipient without touching other people's eyes, thereafter, the other delivery information 10 also uses the same encryption key. If the part of the protection information 12 is encrypted and the two-dimensional code 40 of the partially encrypted delivery information corresponding to the delivery information 10 is generated, the two-dimensional code 40 of the partly encrypted delivery information is similarly viewed by others. Can be handed over to the information recipient.

  In addition, since the decryption key designation for decrypting the encryption protection information is performed using the two-dimensional code 50 of the decryption key information, the information receiver manually inputs the decryption key directly. Even for elderly people or visually impaired persons who do not need to perform an operation and difficult to perform a complicated operation, the two-dimensional code 50 of the decryption key information is obtained by the same operation as the reading of the two-dimensional code 40 of the partially encrypted delivery information. A decryption key for decrypting the encrypted protection information can be designated and easily designated in the data restoration device 80.

  In addition, by managing the two-dimensional code 50 of the decryption key information in the data restoration device 80, the decryption protection information 22 can be decrypted because many decryption keys cannot be remembered and forgotten. It can be prevented from disappearing.

  Furthermore, according to the first embodiment shown in FIGS. 3 to 9, the non-protected information, the protected information, the encryption key information, and the decryption key information can all be described in the same format and can be two-dimensionally encoded. By combining protection information, protection information, encryption key information, and decryption key information in an arbitrary pattern, supplementary non-protection information can be put together with the two-dimensional code 50 of the decryption key information, or partially encrypted. The decryption key information 35 for decrypting the encryption protection information 22 of another partially encrypted delivery information two-dimensional code 40 is put in the delivery information two-dimensional code 40 and delivered to the information recipient. It is also possible.

  Further, according to the first embodiment shown in FIGS. 3 to 9, since the decryption key information 35 is provided to the information recipient in the form of the two-dimensional code 50, the decryption key itself is not apparent from the appearance. On the contrary, by adding supplementary information for managing the decryption key information 35, such as what the decryption key is, into the two-dimensional code 50 together, the data restoration device 80 performs the decryption. It is also possible to display supplementary information of the encryption key information 35, or to add a function for automatically managing the decryption key information 35 using the supplementary information to the data restoration device 80. It is easy to manage the obtained decryption key information 35.

  Further, for example, in a service such as a series subscription, the encrypted protection information portion of the two-dimensional code 40 of the partial encrypted delivery information of the next issue is decrypted into the two-dimensional code 40 of the partial encrypted delivery information of the current issue. Information received by holding the two-dimensional code 40 of the partially encrypted delivery information of the previous issue by providing the information recipient with the decryption key information 35 to be converted into information. Only the user can restore and view the encrypted protection information 22 of the next issue as the original protection information 12.

  In the first embodiment shown in FIG. 3 to FIG. 9, as an example, an example is described in which each information is described using XML notation as a data description language. Any data description language may be used.

  Further, the two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information applied to the data encryption method and data decryption method of the two-dimensional code of the present invention described in the first embodiment. Specifically, the partial encryption generated by replacing the protection information 12 portion of the original delivery information 10 with the encryption protection information 22 obtained by encrypting the protection information 12 using a predetermined encryption key. The first data reading medium in which the two-dimensional code 40 including the completed delivery information 20 is converted so as to be readable by the data restoration device 200, and the partially encrypted delivery information 20 included in the first data reading medium is decrypted Therefore, the second data reading medium in which the two-dimensional code 50 of the decryption key corresponding to the encryption key of the partially encrypted delivery information 20 is converted so as to be readable by the data restoration device 200 Data transfer medium comprising a are used.

  The first data reading medium and the second data reading medium are individually a print medium that displays the two-dimensional code data in a visually recognizable manner, an image display medium that displays the two-dimensional code data in a visible manner, and the two-dimensional code data. Any one of a storage medium to be stored and a communication medium capable of communicating two-dimensional code data between the data generation apparatus 100 and the data restoration apparatus 200 is selected.

  When the first data reading medium is a print medium, as shown in FIG. 2, in the data generation process 100 executed by the data generation apparatus 70, the two-dimensional code generation process 120 of the partially encrypted delivery information is imaged. The two-dimensional code data is output to a printer driver 5 (see FIG. 10) for converting the data into a readable data reading medium.

  When the first data reading medium is a print medium, as shown in FIG. 10, the data generation device 70 generates the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation processing 100 of the information provider. Through the printer driver 5, the printer once prints a print image 40 p of the two-dimensional code 40 on the print medium 1 such as paper or a signboard, and the print image 40 p of the two-dimensional code 40 printed on the print medium 1 is obtained. The information recipient's camera 6 reads the information, restores it to the electronic two-dimensional code 40 by the data restoration device 80, and uses the decryption key information two-dimensional code 50 obtained separately from the information provider, and uses the information recipient's data. In the data restoration process 200 executed by the restoration device 80, the encrypted encrypted protection information 22 included in the two-dimensional code 40 is used as the original protection information. Decodes the 2, to restore the original delivery information 10.

  In this case, the two-dimensional code 50 of the decryption key information is separately provided to the information recipient, and the same encryption key information 30 is also used when a plurality of delivery information 10 is delivered from the information provider to the information recipient. And encrypting the protection information 12 portion of each original delivery information 10 to generate a two-dimensional code 40 of each partially encrypted delivery information, and printing each two-dimensional code 40 on each print medium 1. Can be passed to the information recipient.

  Therefore, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the print medium 1, via a postal mail, a distributed material, a signboard, etc. Information can be easily exchanged in an offline environment. Here, the offline environment means an environment where communication is not possible, such as a mountain, sea, or underground, or a situation where communication is not possible due to a disaster or the like.

  In addition, since a plurality of pieces of delivery information 10 can be encrypted and delivered using the same encryption key, only the two-dimensional code 50 of the decryption key information is received in advance in a confidential manner without touching others' eyes. The print medium 1 on which the two-dimensional code 40 of the partially encrypted delivery information corresponding to each delivery information 10 is printed can be delivered to the information recipient in a form that is visible to others. .

  Further, if the two-dimensional code 40 of the partially encrypted delivery information is printed on a signboard or the like, the information can be transmitted to an unspecified number of people, and the two-dimensional code 50 of the decryption key information is preliminarily given to a specific information recipient. By providing this information, it becomes possible to convey additional information only to a specific information recipient using the encryption protection information 22 of the partially encrypted delivery information 20.

  When the first data reading medium is an image display medium, it is the same as the print medium. As shown in FIG. 2, in the data generation processing 100 executed by the data generation device 70 of the information provider, the partially encrypted delivery information The two-dimensional code generation process 120 is output to the image display driver 7 (see FIG. 11) for converting the imaged two-dimensional code data into a readable data reading medium.

  When the first data reading medium is an image display medium, the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation process 100 of the information provider is used as the data generation process 100 as shown in FIG. Is temporarily displayed as a display image 40 d of the two-dimensional code 40 on the image display medium 2 such as a display device, and the display image of the two-dimensional code 40 displayed on the image display medium 2. 40d is read by the information recipient's camera 6, restored to the electronic two-dimensional code 40 by the data restoration device 80, and received using the two-dimensional code 50 of the decryption key information separately obtained from the information provider. In the data restoration processing 200 executed by the person's data restoration device 80, the encrypted protection information 22 included in the two-dimensional code 40 is converted into the original protection information 1 Decoded in, to restore the original delivery information 10.

  In this case, as in the case where the first data reading medium described above is a print medium, the two-dimensional code 50 of the decryption key information is separately provided to the information receiver, and a plurality of pieces of delivery information 10 are received from the information provider. Is also transmitted to the information recipient, the same encryption key information 30 is used to encrypt the protection information 12 portion of each original delivery information 10 and generate a two-dimensional code 40 of each partially encrypted delivery information Each two-dimensional code 40 can be displayed on the display medium 2 and given to the information recipient.

  In addition, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the image display medium 2, information via the print medium 1 is used. As in the case of delivery of information, it is possible not only to provide in an offline environment, to provide a plurality of information in an environment that can be viewed by others, and to transmit to an unspecified number of people, but also to display 2 on the image display medium 2 Information according to the information recipient can be transferred while dynamically changing the dimension code 40 under various conditions such as time and information recipient information.

  When the first data reading medium is a storage medium, it is the same as the print medium. As shown in FIG. 2, in the data generation processing 100 executed by the data generation apparatus 70 of the information provider, the partially encrypted delivery information 2 The dimension code generation processing 120 outputs the imaged two-dimensional code data to the storage medium driver 8 (see FIG. 12) for converting it into a readable data reading medium.

  When the first data reading medium is a storage medium, as shown in FIG. 12, the data generation process 100 uses the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation process 100 of the information provider. The electronic image data 40b of the two-dimensional code 40 is temporarily stored in the storage medium 3 such as a USB memory, an SD card, a CD, or a DVD via the storage medium driver 8 that is stored in the storage medium 3. The electronic image data 40b of the two-dimensional code 40 is extracted as an electronic two-dimensional code 40 on the information receiver side via the storage medium driver 8 included in the data receiver 80 of the information receiver, and separately provided by an information provider. In the data reading process 200 executed by the data recovery device 80 of the information recipient using the two-dimensional code 50 of the decryption key information obtained from The ciphering information 22 included in the two-dimensional code 40 is decoded into the original protection information 12, to restore the original delivery information 10.

  In this case, as in the case where the first data reading medium described above is a print medium, the two-dimensional code 50 of the decryption key information is separately provided to the information receiver, and a plurality of pieces of delivery information 10 are received from the information provider. Is also transmitted to the information recipient, the same encryption key information 30 is used to encrypt the protection information 12 portion of each original delivery information 10 and generate a two-dimensional code 40 of each partially encrypted delivery information Each two-dimensional code 40 can be stored in the storage medium 3 and passed to the information recipient.

  In addition, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the storage medium 3, the information via the print medium 1 is transferred. As with delivery, not only can it be provided in an offline environment, multiple information can be viewed in an environment that can be viewed by others, and communicated to an unspecified number of people, along with programs and data, etc. The two-dimensional code 40 of the encrypted delivery information can be put in the storage medium 3 and passed to the information recipient, and additional information special to the particular information recipient can be provided as additional information of the program and data contained together. Can be passed.

  When the first data reading medium is a communication medium, it is the same as the print medium. As shown in FIG. 2, in the data generation process 100 executed by the data generation device 70 of the information provider, the partially encrypted delivery information 2 The dimension code generation process 120 outputs the imaged two-dimensional code data to the communication driver 8 (see FIG. 13) for converting it into a readable data reading medium.

  When the first data reading medium is a communication medium, as shown in FIG. 13, the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation process 100 executed by the data generation device 70 of the information provider. Is transmitted from the information provider through the communication medium 4 such as wired / wireless as the electronic image data 40b of the two-dimensional code 40 through the communication driver 9 included in the data generation device 70, thereby providing the information. The electronic image data 40b transmitted from the user is received as the electronic two-dimensional code 40 via the communication driver 9 included in the data receiver 80 of the information recipient, and the decryption obtained separately from the information provider Using the two-dimensional code 50 of the key information, it is included in the two-dimensional code 40 in the data restoration processing 200 executed by the data restoration device 80 of the information recipient. The issue of protection information 22 decoded into the original protection information 12, to restore the original delivery information 10.

  In this case, as in the case where the first data reading medium described above is a print medium, the two-dimensional code 50 of the decryption key information is separately provided to the information receiver, and a plurality of pieces of delivery information 10 are received from the information provider. Is also transmitted to the information recipient, the same encryption key information 30 is used to encrypt the protection information 12 portion of each original delivery information 10 and generate a two-dimensional code 40 of each partially encrypted delivery information Each two-dimensional code 40 can be passed to the information recipient via the communication medium 4.

  In addition, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the communication medium 4, Similar to delivery, multiple delivery information can be provided in an environment that can be viewed by others, and it can be transmitted to unspecified number of people as well as immediately upon request from the information recipient or at a specified time. Information protected by the two-dimensional code 40 of the encrypted delivery information can be delivered to the information recipient.

  In the embodiment based on FIGS. 10 to 13 described above, a specific example of a delivery medium is shown only for the two-dimensional code 40 of the partially encrypted delivery information that is the first data reading medium. Regarding the delivery medium for the decryption key information two-dimensional code 50 which is a data reading medium, a specific medium is not specified. However, the two-dimensional code 50 for the decryption key information also includes the partially encrypted delivery information. In the same manner as the two-dimensional code 40, it is possible to exchange information between the information provider and the information receiver via various media.

  As described above, in the first embodiment described above, when the protection information to be displayed is different for each information recipient, original delivery information 10 corresponding to each information recipient is prepared, and each of the correspondence information corresponding to each original delivery information 10 is prepared. The two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information are generated, and the two-dimensional code 40 of the partially encrypted delivery information corresponding to the information recipient and the decryption key information 2 Although it is necessary to pass the dimension code 50 from the information provider to each information receiver, the present invention is not limited to this, and the two-dimensional code 40 of the partially encrypted delivery information 20 generated from the same delivery information 10 The information may be shared in common with the information recipient, and partially different information may be delivered for each information recipient.

  Embodiments of the two-dimensional code data encryption method and data decryption method of the present invention that can perform such data transfer will be described with reference to FIGS. FIG. 14 shows an embodiment of the data encryption method of the two-dimensional code according to the present invention in the data generation process 100 of the information provider, and FIG. 14 shows the present invention in the data recovery process 200 of the information recipient. An embodiment of the data decoding method of the two-dimensional code is shown.

In the second embodiment, the original delivery information 10 delivered to the information recipient includes two or more protection information 12.
The data generation processing 100 executed by the data generation device 70 possessed by the information provider encrypts each protection information 12 portion of the original delivery information 10 with the encryption key for each protection information 12 as information to be passed to the information recipient. The two-dimensional code 40 of the partially encrypted delivery information 20 to be shared with each information recipient and the encryption protection information 22 that permits decryption according to each information recipient, This is a process for generating, for each information recipient, a two-dimensional code 50 of the decryption key information 32 for each information recipient that collects the decryption key information 35 of the encryption protection information 22 selected for each recipient. .

  The two-dimensional code 40 of the partially encrypted delivery information 20 generated in the data generation process 100 is shared with each information recipient, and the decryption for each information recipient generated in the data generation process 100 is performed. The two-dimensional code 50 of the encryption key information 32 is separated from the two-dimensional code 40 of the partially encrypted delivery information 20, and the two-dimensional code of the decryption key information 32 for each information recipient corresponding to each information recipient. The code 50 is individually given to each information recipient.

  The data generation processing 100 corresponding to the data encryption method of the two-dimensional code of the present invention uses two or more pieces of protection information 12 included in the original delivery information 10 with an encryption key for each protection information 12. The encryption processing 111 for each protection information for generating the partially encrypted delivery information 20 included in the form replaced with the encrypted encryption protection information 22 and the partially encrypted delivery generated by the encryption processing 111 for each protection information. The part generated by the two-dimensional code generation process 120 of the partially encrypted transfer information for converting the information 20 into a two-dimensional code and generating the two-dimensional code 40 of the partially encrypted transfer information and the protection information-specific encryption process 111 Of the two or more protection information 12 of the encrypted delivery information 20, this decryption is performed in order to decrypt the encryption protection information 22 to be shown only to a specific information recipient. The encryption protection information 22 for encryption includes encryption key information 30 having encryption key identification information for identifying the encryption key, and decryption corresponding to the encryption key identification information of the encryption key information 30 The decryption key information selection generation process 131 in which the encryption key is included in a pair with the encryption key identification information, and the decryption key information 32 for each information recipient generated by the decryption key information selection generation process 131 are individually And a two-dimensional code generation process 140 for decryption key information for generating a two-dimensional code 50 for decryption key information for each information recipient.

  The encryption processing by protection information 111 is used for encryption in which the original delivery information 10 and the encryption key information 30 indicating the encryption key for each protection information 12 in the original delivery information 10 are listed in order of the protection information 12. Using the encryption key information 31 (hereinafter referred to as “encryption key information 31 for encryption”) as an input, each protection information 12 portion of the original delivery information 10 is encrypted with the corresponding encryption key, The partially encrypted delivery information 20 is generated by replacing each protection information 12 with the encrypted protection information 22 obtained as a result of the conversion.

  The partially encrypted delivery information 20 generated by the protection information-specific encryption process 111 is further passed to the two-dimensional code generation process 120 of the partially encrypted delivery information 20, and the two-dimensional code generation process 120 receives 2 A two-dimensional code 40 of the partially encrypted delivery information, which is one of the outputs of the data generation processing 100, is generated by dimensional coding.

  On the other hand, each encryption key information 30 used when encrypting each protection information 12 portion of the original delivery information 10 is also passed to the decryption key information selection generation process 131, and the decryption key information selection generation process is performed. In 131, whether or not to permit decryption of the encryption key information 31 for encryption and each encryption protection information 22 of the partially encrypted delivery information 20 corresponding to each information recipient is determined. The received information recipient selection information 33 is input, the encryption protection information 22 that allows decryption is selected according to each information recipient, and the decryption key information of the encryption protection information 22 selected for each information recipient. 35 is generated from the corresponding encryption key information 30 included in the encryption key information 31 for encryption, and the decryption key information 35 selected for each information recipient is collected for each information recipient, Decryption key information for the information recipient To generate two.

  The decryption key information 32 for each information recipient generated in the decryption key information selection generation process 131 is further passed to the two-dimensional code generation process 140 of the decryption key information, and the two-dimensional code of the decryption key information is displayed. In the code generation process 140, the decryption key information 35 for each information recipient is converted into a two-dimensional code, and the data generation process 100 receives the two-dimensional code 50 of the decryption key information as another output. Generate for each person.

  A data restoration process 200 executed by the data restoration device 80 of each information recipient provided with the two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information 35 for each information recipient. Is the encrypted protection information 22 in which each protection information 12 portion of the original delivery information 10 is encrypted with an individual encryption key from the two-dimensional code 40 of the partially encrypted delivery information 20 acquired from the information provider. And the information obtained by reading the two-dimensional code 50 of the decryption key information 32 for the information receiver provided to the information receiver separately. Using the decryption key information 32 for the recipient, the encryption protection information 22 of the partially encrypted delivery information 20 is the decryption key information 32 for the information recipient. Decrypts only the encrypted protection information 22 decoded key information 35 is provided for issue, a process for restoring the delivery information 60 of the information recipient's.

  The data restoration processing 200 corresponding to the two-dimensional code data restoration method of the present invention reads the partially encrypted delivery information when the two-dimensional code 40 of the partially encrypted delivery information provided by the information provider is read. When the partially encrypted delivery information reading process 210 restored to 20 and the two-dimensional code 50 of the decryption key information for the information receiver provided separately from the information provider are read, the decryption key information 35 is obtained. Each encryption protection information 22 included in the partially encrypted delivery information 20 decrypted by the decryption key information acquisition process 220 and the partially encrypted delivery information reading process 210 is encrypted by the encryption protection information 22. The encryption key identification information included in the encryption key information 30 is included in the decryption key information 35 acquired in the decryption key information acquisition process 220. If it matches the information, the corresponding encryption protection information 22 is decrypted using the encryption key identification information and a pair of decryption keys, and the protection information is selectively decrypted to restore the delivery information 60 for the information recipient. Processing 231.

  That is, the data restoration process 200 first reads the two-dimensional code 40 of the partially encrypted delivery information provided from the information provider by the partially encrypted delivery information reading process 210, before the two-dimensional coding. The partially encrypted delivery information 20 in the form of encrypted protection information 22 in which each protection information portion 12 part of the original delivery information 10 is encrypted with an encryption key for each protection information is converted into data. Restore from the two-dimensional code 40.

  Further, the data restoration process 200 reads the two-dimensional code 50 of the decryption key information for the information receiver obtained from another information provider, which is another input data, by the decryption key information acquisition process 220, Of the encryption protection information 22 included in the partially encrypted delivery information 20, the information selectively including only the decryption key information 35 of the encryption protection information 22 permitted to be decrypted by the information recipient. The decryption key information 32 for the recipient is restored from the two-dimensional code 50.

  The partially encrypted delivery information 20 restored in the partially encrypted delivery information reading process 210 and the decryption key information 32 for the information recipient restored in the decryption key information acquisition process 220 are protected information. And the encrypted protection information 22 included in the partially encrypted delivery information 20 is converted into the decryption key for the information recipient. Using the decryption key information 35 included in the information 32, the encryption protection information 22 permitted to be decrypted by the information recipient is selectively decrypted, and the delivery information 60 for the information recipient is restored.

  Next, specific configuration examples of the original delivery information 10, the partially encrypted delivery information 20, the encryption key information 31 for encryption, and the decryption key information 32 for each information recipient will be described.

  As shown in FIG. 15, the original delivery information 10 is similar to the original delivery information 10 of FIG. 3 of the first embodiment, so that the information constituting the original delivery information 10 can be distinguished from each other, for example, unprotected information 11 and protection information 12 are described in XML format, enclosed in XML tags of <data> </ data>, and type information indicating the type of the information is included in <data-type> </ data-type>. Describe and describe the data of the information in <data-body> </ data-body>. The only difference between the configuration example of the original delivery information 10 in FIG. 3 and this configuration example is that in this configuration example, not only one protection information 12 but also a plurality of protection information 12 may be described. .

  As shown in FIG. 16, the partially encrypted delivery information 20 is also described in the XML format in the same way as the original delivery information 10 in FIG. 4 is similar to the configuration example of the partially encrypted delivery information 20 in FIG. 4 in FIG. 1, and the difference between the configuration example of the partially encrypted delivery information 20 in FIG. In the configuration example, similarly to the original delivery information 10 in FIG. 15, not only one encryption protection information 22 but also a plurality of descriptions can be described corresponding to the number of protection information 12 in FIG. The encryption key identification information for uniquely identifying the encryption key information 30 used when encrypting the encryption protection information 22 in the encryption protection information 22 is <key-id> </ key-id>. The only difference is that a <key-id> tag 22c described in a circle is added.

  As shown in FIG. 17, the encryption key information 31 for encryption is a configuration example in which an encryption key used when encrypting each protection information 12 is described. The encryption key information 31 for encryption is encryption key information 30 that describes an encryption key used when encrypting each protection information 12 of the original delivery information 10 in FIG. Each encryption key information 30 includes encryption key identification information for uniquely identifying each encryption key information 30 in the encryption key information 30 <key-id>. </ key-id> is the same as the configuration of the encryption key information 30 in FIG. 5 of the first embodiment except that a <key-id> tag 30c described in the configuration example is added in this configuration example.

  As shown in FIG. 18, the decryption key information 32 for each information recipient includes decryption key information 35 describing a decryption key corresponding to the encryption protection information 22 permitted to be decrypted for each information recipient. It is in a side-by-side form.

  In this configuration example, similarly to the configuration example of the original delivery information 10, the partially encrypted delivery information 20 and the encryption key information 31 for encryption, the decryption key information 35 uses the XML format, Each decryption key information 35 is described enclosed in <data> </ data>, and a <data-type> tag is provided so that the decryption key information 35 is information describing the decryption key. The information “decrypt-key” is described in 35a, and the corresponding encryption key information 30 is identified in the <key-id> tag 35c so that the corresponding encryption key information 30 can be identified. The encryption key identification information of the encryption key information 30 is described, and the actual decryption key is described in the <data-body> tag 35b.

  Note that the difference between the configuration example of the decryption key information 35 in FIG. 6 of the first embodiment and this configuration example is that in this configuration example, the encryption protection information 22 is encrypted in each encryption protection information 22. <Key-id> tag 35c describing encryption key identification information for uniquely identifying the used encryption key information 30 enclosed in <key-id> </ key-id> is added Only.

  Next, as a result of the decryption by the selective decryption processing 231 (FIG. 14) of the protection information executed by the data restoration device 80 possessed by the information recipient, one piece of the delivery information 60 for each information recipient obtained by the information recipient. As shown in FIG. 19, the configuration example includes unprotected information 11 obtained by copying the unprotected information 21 as it is in the partially encrypted delivery information 20 provided by the information provider by the protected information selective decryption process 231. In the encrypted protection information 22 part, since the protection information 12 obtained by decrypting only the encrypted protection information 22 permitted to be decrypted by the information recipient is output, the delivery information 60 for each information recipient is: The protection information 12 portion is the same as the configuration example of the original delivery information 10 of the information provider in FIG. 15 except that only the protection information 12 that is permitted to be decrypted by the information recipient is output. That is, it is described in the XML format.

  Information used as an input when selecting the decryption key information 35 to be passed to each information recipient in the decryption key information selection generation process 131 (FIG. 14) executed by the data restoration device 80 possessed by the information recipient. As a configuration example of the recipient selection information 33, a table as shown in FIG. 20 is used. This table uniquely identifies the information recipient information in the row direction and the encryption key information 30 used when generating each encryption protection information 22 included in the partial encrypted delivery information 20 in the column direction. The encryption key identification information to be used is a key, and the respective encrypted protection information 22 encrypted with the encryption key corresponding to the encryption key identification information is decrypted into the original protection information 12 for each information recipient. Is a table in which selection information entries 331 for each information recipient indicating whether or not the information can be permitted are arranged for the number of information recipients.

  The original delivery information 10 thus configured (FIG. 15), partially encrypted delivery information 20 (FIG. 16), encryption key information 31 for encryption (FIG. 17), and decryption for each information recipient 14 based on the encryption key information 32 (FIG. 18), the information recipient selection information 33 (FIG. 20), and the delivery information 60 (FIG. 19) for each information recipient, An example of the decryption key information selection generation process 131 and the protection information selection decryption process 231 will be described with reference to FIGS. 21, 22, 23, and 24, respectively.

  As shown in FIG. 21, the protection information-specific encryption processing 111 first acquires <data> tag information surrounded by <data> </ data> from the original delivery information 10 (processing 1110). If all the <data> tag information has already been acquired in the process 1110, the protection information-specific encryption process 111 is terminated.

  If there is unprocessed <data> tag information, the type information enclosed in <data-type> </ data-type> in the <data> tag is acquired, and the relevant <data> The type of data described in the tag is determined (process 1111).

  If the type information described in the <data-type> tag is not “protected-data”, the information described in the <data> tag is not the protected information 12 and is acquired in the process 1110. The entire <data> tag information from <data> to </ data> is copied and output to the partially encrypted delivery information 20 as it is, and the processing returns to processing 1110 (processing 1112). Through the processing 1112, the unprotected data 11 and the like are copied from the original delivery information 10 to the partially encrypted delivery information 20 as they are.

  If the type information described in the <data-type> tag is "protected-data", the information described in the <data> tag is the protection information 12, so first output from now on. The <data> start tag indicating the start of the encrypted protection information 22 is output to the partially encrypted delivery information 20 (process 1113).

  Next, in order to indicate that the information to be output is the encryption protection information 22, “encrypted-data” that is the type information of the encryption protection information 22 is enclosed in <data-type> </ data-type>. The data is output to the partially encrypted delivery information 20 (process 1114).

  After outputting the <data-type> tag, next, all the encryption key information 30 surrounded by <data> </ data> is acquired from the encryption key information 31 for encryption (processing 1115).

  The encryption key identification information 30c between <key-id> to </ key-id> described in the acquired encryption key information 30 is directly used as the encryption key identification information 22c, and the partially encrypted delivery information 20 (Process 1116).

  Using the encryption key in the <data-body> tag 30b of the acquired encryption key information 30, it is enclosed in <data-body> </ data-body> 12b of the protection information 12 in the original delivery information 10 The protected data is encrypted (process 1117).

  The encrypted protected data obtained in the processing 1117 is enclosed in <data-body> </ data-body> tags, and the partially encrypted delivery information is used as the encrypted protected data portion 22b of the encrypted protected information 22. 20 (processing 1118).

  Finally, a </ data> end tag indicating the end of the encryption protection information 22 is output to the partially encrypted delivery information 20, and the process returns to the processing 1110, and the unprocessed <data> tag is added to the original delivery information 10. Until the information disappears, the conversion from the original delivery information 10 to the partially encrypted delivery information 20 is repeated (processing 1119).

  The protection information-specific encryption processing 111 encrypts the protection information 12 portion of the original delivery information 10 using the encryption key described in the encryption key information 30 corresponding to each protection information, and passes the original delivery information. Partially encrypted delivery information 20 is generated by replacing the protection information 12 portion of the information 10 with the encryption protection information 22 encrypted with the encryption key for each protection information.

  As shown in FIG. 22, the decryption key information selection generation process 131 first obtains an unprocessed information recipient selection information entry 331 (FIG. 20) from the information recipient selection information 33 (process 132). If all selection information entries 331 have already been processed in the process 132, the decryption key information selection generation process 131 ends.

  If there is an unprocessed selection information entry 331, the information receiving party decryption key information 32 corresponding to the information receiver of the selection information entry 331 is generated using the selection information entry 331 information (processing) 133). In the process 133, the process returns to the process 132 until there is no unprocessed selection information entry 331, and the generation of the decryption key information 32 for each information recipient is repeated.

  Next, the decryption key information generation process 133 (FIG. 23) for generating the decryption key information 32 for each information recipient will be described. The decryption key information generation process 133 is the process 133 of the decryption key information selection generation process 131 shown in FIG.

  As shown in FIG. 23, the decryption key information generation process 133 first obtains unprocessed <data> tag information surrounded by <data> </ data> from the encryption key information 31 for encryption. (Process 1330). If all the <data> tag information has already been acquired in the process 1330, the decryption key information generation process 133 ends.

  If there is unprocessed <data> tag information, the type information enclosed in <data-type> </ data-type> in the <data> tag is acquired, and the relevant <data> The type of data described in the tag is determined (process 1331).

  If the type information described in the <data-type> tag is not “encrypt-key”, the information described in the <data> tag is not the encryption key information 30, and therefore processing is performed. The entire <data> tag information from <data> to </ data> acquired in 1330 is copied and output to the decryption key information 32 for the information recipient as it is, and the processing returns to processing 1330 (processing 1332). ).

  If the type information described in the <data-type> tag is “encrypt-key”, the selection information entry 331 for the information recipient passed as an input to the decryption key information generation process 133 is displayed. With reference to the information in the selection information entry 331 in the column corresponding to the encryption key identification information indicated in the <key-id> tag of the encryption key information 30 acquired in the processing 1330, the encryption key information 30 It is determined whether or not it is possible to provide the information recipient with the decryption key information 35 for decrypting the corresponding encrypted protection information 22 in the partially encrypted delivery information 20 encrypted by using (Step 1333). .

  When the information in the selection information entry 331 in the column corresponding to the encryption key identification information is “non-permitted”, the decryption key information 35 corresponding to the encryption key information 30 acquired in the process 1330 is Without outputting the decryption key information 32 for the information recipient, the encryption key information 30 is skipped, and the process returns to the process 1330 (process 1334).

  If the information in the selection information entry 331 in the column corresponding to the encryption key identification information is “permitted”, the “in the <data-type> tag 30a of the encryption key information 30 acquired in the processing 1330” Replace "encrypt-key" with "decrypt-key", replace the encryption key in the <data-body> tag 30b with the decryption key corresponding to the encryption key, and correspond to the encryption key information 30 The decryption key information 35 is output to the decryption key information 32 for the information recipient, and the process returns to the processing 1330 to decrypt the decryption key information 35 permitted for the information recipient for the information receiver. The output to the key information 32 is repeated (processing 1335).

  In the processing 1335, the replacement processing of the encryption key in the <data-body> tag 30b of the encryption key information 30 with the decryption key in the <data-body> tag 35b is replaced with the encryption to be used. If the encryption method is an encryption method in which an encryption key and a decryption key are paired, such as a public encryption method, it is a process of replacing with a pair of decryption keys corresponding to the encryption key. If the encryption key and the decryption key are the same encryption method, no replacement actually occurs, and the encryption key is used as a decryption key and copied as it is.

  As shown in FIG. 24, the protection information selective decryption processing 231 first acquires <data> tag information surrounded by <data> </ data> from the partially encrypted delivery information 20 (processing 2310). . If all the <data> tag information has already been acquired in the process 2310, the protection information selective decoding process 231 ends.

  If there is unprocessed <data> tag information, the type information enclosed in <data-type> </ data-type> within the <data> tag is acquired, and the relevant < The contents of the data described in the data> tag are discriminated (process 2311).

  If the type information described in the <data-type> tag is not “encrypted-data”, the information described in the <data> tag acquired in the processing 2310 is not encrypted information 22. Therefore, the entire <data> tag information is directly copied and output to the delivery information 60 for the information recipient, and the process returns to the process 2310 (process 2312). That is, the processing 2312 copies the unprotected data 21 and the like from the partially encrypted delivery information 20 to the delivery information 60 for the information recipient as it is.

  When the type information described in the <data-type> tag is “encrypted-data”, to decrypt the encryption protection information 22 described in the <data> tag acquired in the processing 2310 Then, the decryption key information 32 for the information receiver obtained in the decryption key information acquisition process 220 is referred to, and the decryption key information 32 for the information receiver is selected from the decryption key information 32 for the information receiver. An attempt is made to acquire the decryption key information 35 in which the encryption key identification information described in the <key-id> tag matches the encryption key identification information (process 2313).

  If the corresponding decryption key information 35 for decrypting the encryption protection information 22 is not found in the decryption key information 32 for the information receiver in the process 2313, the information receiver It is determined that the decryption of the encryption protection information 22 is not permitted, and the encryption protection information 22 acquired in the process 2310 is skipped without being output to the delivery information 60 for the information recipient. The processing returns to processing 2310 (processing 2314).

  On the other hand, when the corresponding decryption key information 35 for decrypting the encrypted protection information 22 is found in the decryption key information 32 for the information recipient in the process 2313, the protection information 12 to be output from now on. <Data> start tag indicating the start of the information is output to the delivery information 60 for the information recipient (process 2315).

  Next, in order to indicate that the information to be output is protection information 12, the type of protection information 12 "protected-data" is enclosed in <data-type> </ data-type>, and the information recipient To the delivery information 60 for the destination (process 2316).

  After outputting the <data-type> tag, next, using the decryption key in the <data-body> tag 35b of the decryption key information 35 acquired in processing 2313, the encryption in the partially encrypted delivery information 20 The encrypted protected data enclosed in <data-body> </ data-body> 22b of the encryption protection information 22 is decrypted (process 2317).

  The restored protection data obtained in the processing 2317 is enclosed in <data-body> </ data-body> tags and output to the delivery information 60 for the information recipient as the protection data portion 12b of the protection information 12 (Process 2318).

  Finally, a </ data> end tag indicating the end of the protection information 12 is output to the delivery information 60 for the information recipient, and the processing returns to the processing 2310 to store the unprocessed <data > Replication of the partially encrypted delivery information 20 to the delivery information 60 for the information recipient is repeated until the tag information disappears (process 2319).

  As a result of the selective decryption processing 231 of the protection information, only the encrypted protection information 22 that is permitted to be decrypted by the information recipient is obtained for the unprotected information 21 and the encrypted protection information 22 of the partially encrypted delivery information 20. Can be selectively decrypted, and the delivery information 60 for the information recipient can be restored.

  According to the data encryption method and data decryption method of the two-dimensional code of the present invention described in the second embodiment, the partially encrypted delivery information passed between the information provider and the information recipient Even if the two-dimensional code 40 is handed over to all information recipients in common, each encrypted protection information 22 included in the two-dimensional code 40 of the partially encrypted delivery information is Each information that is encrypted with the encryption key and each information recipient selectively includes only the decryption key information 35 of the encryption protection information 22 permitted to be decrypted by the information recipient. Since the two-dimensional code 50 of the decryption key information for the recipient is separately provided to each information recipient, each information recipient can decrypt the unprotected information 11 that can be viewed by anyone and the information recipient. Encryption protection Protection information 11 corresponding to the information 22 can only be seen.

  Therefore, even if the information provider passes the two-dimensional code 40 of the same partially encrypted delivery information to all the information recipients, the information provider separately provides the two-dimensional code 50 of the decryption key information for each information recipient separately. If the information is distributed to the recipients, the information provider can show different information for each information recipient.

  In the second embodiment described above, when the partially encrypted delivery information 20 and the decryption key information 32 for each information recipient are generated, except for the protection information 12 and the encryption key information 30 of the original delivery information 10 Since it is directly copied to the partially encrypted delivery information 20 and the decryption key information 32 for each information recipient, supplementary information is added to the decryption key information 32 for each information recipient as in the first embodiment. The decryption key information 35 for another delivery information 10 can be inserted into the partially encrypted delivery information 20 and delivered to the information recipient.

  Furthermore, in the second embodiment described above, the encryption protection information 22 and the decryption key information 35 can be associated with each other by the encryption key identification information 22c and 35c. For example, the decryption key acquired by the information recipient A two-dimensional code 50 of information is managed by a data restoration device 80 or the like which is a two-dimensional code reader, and the two-dimensional code 50 of decryption key information managed by the data restoration device 80 is automatically selected. It is also possible to find the decryption key information 35 corresponding to the encryption protection information 22 to be decrypted.

  In the second embodiment described above, the encryption key identification information included in the encryption key information included in the encryption protection information 22 in the protection information selective decryption process 231 is further converted into the decryption key information acquisition process 220. If it matches the encryption key identification information included in the obtained decryption key information 35, the application condition information 22 d (FIG. 25) added to the partially encrypted delivery information 20 and the decryption key information 35 are further added. When the added application determination target information 35d (FIG. 27) is collated and the application determination target information 35d matches the application condition information 22d and it is determined that the decryption key information 35 is applicable, the encryption is performed. The corresponding encryption protection information 22 is decrypted using the decryption key paired with the key identification information, and the application determination target information 35d is restored without matching the application condition information 22d. Of If the key information 35 is determined to not applicable, may be applied a decryption key update information 22e.

  Embodiments of the two-dimensional code data encryption method and data decryption method of the present invention capable of such data exchange will be described with reference to FIGS.

  As shown in FIG. 25, the partially encrypted delivery information 20 to which the application condition information 22d is added includes each encrypted protection information in addition to the configuration example of the partially encrypted delivery information 20 shown in FIG. 16 of the second embodiment. 22, if the application condition information 22d for applying the decryption key information 35 corresponding to the encryption protection information 22 does not match the condition indicated by the application condition information 22d, the condition of the application condition information 22d Are additionally included in the decryption key update information 22e for invoking and automatically acquiring the decryption key information 35 that matches the above.

  In the configuration example shown in FIG. 25, the application condition information 22d is described by being surrounded by <key-cond> </ key-cond>, and the expiration date information of the decryption key information 35 to be applied is described as an application condition example. An example is shown. The decryption key update information 22e is described by being surrounded by <key-update> </ key-update>, and the access URL information for updating the decryption key information 35 is described as the decryption key update information. An example is shown.

  Also, the encryption key information 31 for encryption shown in FIG. 17 of the second embodiment describing the encryption key used when encrypting each protection information 12 of the original delivery information 10 is as shown in FIG. In addition to the configuration example of the encryption key information 31 for encryption, each encryption key information 30 includes application condition information 22d and decryption key update of the encryption protection information 22 shown in the configuration example of FIG. The application condition information 30d corresponding to the information 22e and the decryption key update information 30e are additionally included. In the present configuration example, as in the example shown in FIG. 25, the application condition information 30d is described by being surrounded by <key-cond> </ key-cond>, and the decryption key information 35 to be applied as an application condition example. An example in which the expiration date information is described is shown. Similarly, the decryption key update information 30e is described by being enclosed in <key-update> </ key-update>, and access URL information for updating the decryption key information 35 is used as the decryption key update information. The described example is shown.

  Note that the application condition information 30d and the decryption key update information 30e added to each encryption key information 30 are partially encrypted delivery information 20 in the protection information-by-protection-information encryption processing 111 of the second embodiment to be described later. Are copied as they are as the application condition information 22d and the decryption key update information 22e of the corresponding encrypted protection information 22 part.

  The decryption key information 35 to which the application determination target information 35d is added includes, as shown in FIG. 27, each decryption key information 32 in addition to the configuration example of the decryption key information 32 for each information receiver shown in FIG. Compared to the application condition information 22d in the encryption protection information 22 shown in the configuration example of FIG. 25 in the encryption key information 35, an application determination target for determining whether or not the decryption key information 35 is within the application conditions Information 35d is additionally included.

  In this configuration example, the application determination target information 35d is described by being enclosed in <key-attr> </ key-attr> and is used as information to be compared with the application condition information 22d in the encryption protection information 22. The example which described the production | generation date information of the information 35 is shown.

  For example, in the case of the second embodiment, the generation date / time information described in the application determination target information 35d of each decryption key information 35 corresponds to the corresponding encryption key identification information in the partially encrypted delivery information 20 that matches. It is compared with the application condition information 22d in the activation protection information 22 and the generation date / time information described in the application determination target information 35d is within the expiration date described in the application condition information 22d. Is applicable for decryption of the encryption protection information 22.

  Next, together with the original delivery information 10 (FIG. 15), information recipient selection information 33 (FIG. 20), and delivery information 60 for each information recipient (FIG. 19), application condition information 22d and decryption key update information 22e. Partially-encrypted delivery information 20 (FIG. 25) to which is added, encryption condition key information 31 (FIG. 26) for encryption to which application condition information 30d and decryption key update information 30e are added, and application determination target Based on the decryption key information 32 (FIG. 27) for each information recipient to which the information 35d is added, the protection information-specific encryption processing 111, the decryption key information selection generation processing 131, and the protection information of the protection information described in FIG. An embodiment of the selective decoding process 231 will be described with reference to FIGS. 28, 29, and 30, respectively.

  As shown in FIG. 28, the encryption processing by protection information 111 is almost the same as the encryption processing by protection information 111 shown in FIG. 21 of the second embodiment. In order to output the application condition information 22d and the decryption key update information 22e added in step 3 to the encryption protection information 22, between the processing 1116 and the processing 1117, the encryption key information 30 acquired in the processing 1115 < key-cond>-</ key-cond> decryption key information application condition information 30d portion and <key-update>-</ key-update> decryption key update information 30e portion. The only difference is that the processing 11161 for outputting to the encryption protection information 22 as it is as the application condition information 22d of the decryption key information and the decryption key update information 22e in the encryption protection information 22 is added. Encryption processing by protection information shown in FIG. 111 is different.

  As shown in FIG. 29, the decryption key information generation process 133 which is the process 133 of the decryption key information selection generation process 131 (FIG. 22) is almost the same as the decryption key information generation process 133 shown in FIG. In the same manner, when the selected decryption key information 35 is output to the decryption key information 32 for each information recipient in the process 1335 of FIG. 23, the <data-type> tag 30a of the corresponding encryption key information 30 is output. <Encrypt-key> is replaced with "decrypt-key" and output as <data-type> tag 35a representing the data type information of the decryption key information, and <key-id describing the encryption key identification information The tag 30c is copied and output as it is as a <key-id> tag 35c, and the <key-cond> tag 30d and <key-update> tag 30e of the encryption key information 30 are deleted and replaced. In addition, the application determination target information 3 of the added decryption key information 35 is added. As d, information such as generation date / time information of the decryption key information 32 is output enclosed in <key-attr> </ key-attr>, and the decryption corresponding to the encryption key in the <data-body> tag 30b is output. The decryption key information generation processing 133 shown in FIG. 23 of the second embodiment is only replaced with the processing 13351 of FIG. 23 in the processing 13351 that is output as the <data-body> tag 35b. Is different.

  As shown in FIG. 30, the protection information selective decryption process 231 is almost the same as the protection information selective decryption process 231 shown in FIG. 24 of the second embodiment, and decrypts the encrypted protection information 22 acquired in the process 2310. When the information is output to the delivery information 60 for the information recipient, the corresponding decryption key information 35 is applied using the application condition information 22d and the application determination target information 35d added in the third embodiment. If it is determined that decryption is acceptable and the application is not possible, the decryption key update information 22e added in the third embodiment is used to obtain the decryption key information 35 that matches the application condition information 22d. The only difference from the protection information selective decryption process 231 shown in FIG. 24 of the second embodiment is that a process for arousing or automatic acquisition is added.

  Specifically, when the decryption key information 35 corresponding to the encryption protection information 22 acquired in the process 2310 is in the decryption key information 32 for the information recipient in the process 2313 of FIG. The third embodiment is different from the protection information selective decryption processing 231 shown in FIG. 24 of the second embodiment in that processing 23131 and processing 23132 are added later.

  In this processing 23131, the <key-attr> tag application determination target information 35 d included in the corresponding decryption key information 35 acquired in the processing 2313 and the <data> tag encryption protection information 22 acquired in the processing 2310. The application condition information 22d described by the included <key-cond> tag is compared, and it is determined whether or not the decryption key information 35 can be applied to the decryption of the encryption protection information 22.

  For example, the expiration date information for applying the decryption key information 35 is included in the application condition information 22d in the form shown in the configuration examples of FIGS. 25 and 27, and the decryption key is included in the application determination target information 35d. If the generation date / time information of the information is included, it is determined that the generation date / time information of the application determination target information 35d is applicable if it is within the expiration date of the application condition information 22d. to decide.

  As a result of the process 23131, when it is determined that the decryption key information 35 is applicable, the process after the process 2315 is executed in the same way as the protection information selective decryption process 231 shown in FIG. Using the decryption key information 35, the encrypted protection information 22 is decrypted and output to the delivery information 60 for the information recipient.

  If it is determined as a result of the processing 23131 that the decryption key information 35 is not applicable, the decryption key update described by the <key-update> tag included in the encryption protection information 22 is performed in the processing 23132. Using the information 22e, the information recipient is prompted to acquire the decryption key information 35 that matches the application condition information 22d, or the decryption key information 35 that matches the application condition information 22d is automatically acquired.

  For example, in the form shown in the configuration example of FIG. 25, when the decryption key update information 22e contains URL information for acquiring the decryption key information 35 that matches the application condition 22d, the URL information is received. Displayed to the user and prompts the information recipient to acquire the decryption key information 35 that matches the application condition 22d, or automatically acquires the decryption key information 35 that matches the application condition 22d using the URL information. .

  If the decryption key information 35 matching the application condition information 22d is automatically acquired as a result of the process 23132, the process after the process 2315 is executed using the automatically acquired decryption key information 35, and the encryption protection is performed. The information 22 is decrypted and output to the delivery information 60 for the information recipient. If the decryption key information 35 that matches the application condition information 22d cannot be acquired automatically as a result of the process 23132, the protection information selective decryption process 231 is stopped and terminated.

  According to the two-dimensional code data encryption method and data recovery method of the present invention described in the third embodiment, the decryption key information for each information recipient held by each information recipient is stored. The application conditions of the decryption key information 35 included in the two-dimensional code 50 can be limited. For example, by inserting expiration date information as the application condition information 22d, the two-dimensional code 50 of the decryption key information for the authorized information recipient Even if the information is held, it is possible to limit the period during which the encrypted protection information 22 in the partially encrypted delivery information 20 obtained by the information recipient can be restored to the original protection information 12 and viewed.

  That is, for example, expiration date information is included in the decryption key application condition information 22d included in each encryption protection information 22 of the two-dimensional code 40 of the partially encrypted delivery information, and the decryption key for each information recipient is received. For example, generation date / time information of the decryption key information 35 is entered in the application determination target information 35d included in each decryption key information 35 of the two-dimensional code 50 of the information, and the application determination target information 35d of the decryption key information 35 By determining whether or not the decryption key information 35 is applicable based on whether the described generation date / time information is within the expiration date described in the application condition information 22d of the encryption protection information 22, each decryption is performed according to the expiration date or the like. The application condition of the activation key information can be limited.

  If the application condition information 22d is not applicable, the decryption key update information 22e is used to alert the information recipient to update the decryption key information 35 held by the information recipient, or Can be automatically acquired, and can be used as license management and license update means for viewing the protection information 12.

  Therefore, even with the same type of protection information 12, for example, the encryption key is updated every period, the protection information for the new period is encrypted with the new encryption key, and the encryption result of the protection information 12 is encrypted. By updating the expiration date information described in the application condition information 22d of the encryption protection information 22, the information recipient who has read using the two-dimensional code 50 of the decryption key information corresponding to the old encryption key May use the decryption key update information 22e included in the encryption protection information 22 to trigger acquisition or automatic acquisition of the two-dimensional code 50 of decryption key information corresponding to the new period, outside the expiration date. it can.

  That is, the information recipient uses the two-dimensional code 40 of the partially encrypted delivery information acquired within the license period, using the two-dimensional code 50 of the decryption key information acquired for the license period, in an offline environment. In the state, the encrypted protection information 22 permitted by the license can be decrypted and the original protection information 12 can be viewed, but the two-dimensional code 40 of the partially encrypted delivery information outside the license period is obtained. When the old two-dimensional code 50 of the old decryption key information is read, a license update prompt message is output. Therefore, the license is renewed manually or automatically, and the new two-dimensional decryption key information is displayed. If the code 50 is not acquired, the encryption protection information 22 for the new license period cannot be decrypted. It becomes possible way.

  In the second embodiment shown in FIG. 15 to FIG. 19 and the third embodiment shown in FIG. 25 to FIG. 27, as in the first embodiment, as an example, each information is expressed using XML notation as a data description language. Although an example of description is shown, the present invention is not limited to this, and any data description language may be used as long as each information can be distinguished.

  Further, the two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information applied to the data encryption method and data decryption method of the two-dimensional code of the present invention described in the second embodiment. Specifically, two or more pieces of protection information 12 included in the original delivery information 10 are encrypted protection information 22 encrypted using a predetermined encryption key for each protection information, and the original delivery information is sent. A first data reading medium in which a two-dimensional code 40 including partially encrypted delivery information 20 generated by replacing two or more protection information 12 of information 10 is converted to be readable by the data restoration device 200; Decrypting the encryption protection information 22 to be shown only to a specific information recipient among the two or more encryption protection information 22 of the partially encrypted delivery information 20 included in the first data reading medium The encryption protection information 22 for decryption includes encryption key information 30 having encryption key identification information for identifying the encryption key, and includes encryption key identification information of the encryption key information 30 and A data delivery medium comprising a second data reading medium in which a two-dimensional code 50 of decryption key information in which a corresponding decryption key is included in a pair with the encryption key identification information is converted to be readable by the data restoration device 200 Is used.

  Further, the two-dimensional code 40 of the partially encrypted delivery information and the two-dimensional code 50 of the decryption key information applied to the data encryption method and data decryption method of the two-dimensional code of the present invention described in the third embodiment. Specifically, other information is added to the first data reading medium and the second data reading medium of the data delivery medium used in the second embodiment.

  In the partially encrypted delivery information 20 of the first data reading medium, each encryption protection information 22 corresponds to the encryption key identified by the encryption key identification information included in the encryption protection information 22. The application condition information 22d in which the application condition of the decryption key information 35 is defined, and when the decryption key information 35 does not match the application condition, acquisition of the decryption key information that matches the application condition or automatic acquisition is performed. And the decryption key update information 22e is added to the second data reading medium, and the application condition information 22d included in the encryption protection information 22 in which the encryption key identification information matches the decryption key information 35. Compared to, application determination target information 35d for determining whether or not the decryption key information 35 can be used for decryption of the encryption protection information 22 is added.

  The first data reading medium and the second data reading medium are individually a print medium that displays the two-dimensional code data in a visually recognizable manner, an image display medium that displays the two-dimensional code data in a visible manner, and the two-dimensional code data. Any one of a storage medium to be stored and a communication medium capable of communicating two-dimensional code data between the data generation apparatus 100 and the data restoration apparatus 200 is selected.

  When the first data reading medium is a print medium, as shown in FIG. 14, in the data generation process 100 executed by the data generation apparatus 70, the two-dimensional code generation process 120 of the partially encrypted delivery information is imaged. The two-dimensional code data is output to a printer driver 5 (see FIG. 31) for converting the data into a readable data reading medium.

  When the first data reading medium is a print medium, as shown in FIG. 31, the data generation apparatus 70 generates the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation processing 100 of the information provider. Through the printer driver 5, the printer once prints a print image 40 p of the two-dimensional code 40 on the print medium 1 such as paper or a signboard, and the print image 40 p of the two-dimensional code 40 printed on the print medium 1 is obtained. The information recipient's camera 6 reads the information, restores it to the electronic two-dimensional code 40 by the data restoration device 80, and uses the decryption key information two-dimensional code 50 obtained separately from the information provider, and uses the information recipient's data. In the data restoration process 200 executed by the restoration device 80, the encrypted encrypted protection information 22 included in the two-dimensional code 40 is selectively restored to the original data. Mamoru decodes the information 12, and unprotected information 11 can be viewed by anyone, to restore the delivery information 60 of the information recipient for containing and protecting information 12 that has been permitted by the information recipient to see.

  In this case, the information provider uses the data generation device 70 to generate the two-dimensional code 40 of the partially encrypted transfer information common to the plurality of information receivers from the original transfer information 10 and the generated 2 The two-dimensional code 50 which prints the dimension code 40 on the print medium 1 as the print image 40p, passes it to a plurality of information recipients, and contains the decryption key information 32 for each information recipient is stored in the data generation device. 70 is generated for each information recipient, and the generated two-dimensional code 50 for each information recipient is individually delivered to each information recipient.

  Therefore, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the print medium 1, via a postal mail, a distributed material, a signboard, etc. Information can be easily exchanged in an offline environment.

  In addition, if the two-dimensional code 50 of the decryption key information for each information recipient is separately provided for each information recipient, the same partially encrypted delivery information generated in common for a plurality of information recipients The two-dimensional code 40 is printed on the print medium 1 as a print image 40p and can be delivered to a plurality of information recipients, and the information can be restored to the original delivery information 10 for each information recipient. As a result, it is possible to distribute the same data to a large number of information recipients at a time and deliver different information to each information recipient.

  In addition, when a printed material distributed to a signboard or an unspecified number is used as a medium, for example, it is possible to realize a service in which additional information is shown to a specific information recipient according to the license level of the information recipient. .

  When the first data reading medium is an image display medium, it is the same as the print medium. As shown in FIG. 14, in the data generation processing 100 executed by the data generation apparatus 70 of the information provider, the partially encrypted delivery information is transferred. The two-dimensional code generation process 120 is output to the image display driver 7 (see FIG. 32) for converting the imaged two-dimensional code data into a readable data reading medium.

  When the first data reading medium is an image display medium, as shown in FIG. 32, the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation process 100 of the information provider is used as the data generation process 100. Is temporarily displayed as a display image 40 d of the two-dimensional code 40 on the image display medium 2 such as a display device, and the display image of the two-dimensional code 40 displayed on the image display medium 2. 40d is read by the information recipient's camera 6, restored to the electronic two-dimensional code 40 by the data restoration device 80, and received using the two-dimensional code 50 of the decryption key information separately obtained from the information provider. In the data restoration process 200 executed by the person's data restoration device 80, the encrypted protection information 22 included in the two-dimensional code 40 is selectively stored in the original data. Decodes the information 12, and unprotected information 11 can be viewed by anyone, to restore the delivery information 60 of the information recipient for containing and protecting information 12 that has been permitted by the information recipient to see. The original delivery information 10 is restored.

  In this case, the information provider uses the data generation device 70 to generate the two-dimensional code 40 of the partially encrypted transfer information common to the plurality of information receivers from the original transfer information 10 and the generated 2 The two-dimensional code 50 which prints the dimension code 40 on the image display medium 2 as an image display image 40d and passes it to a plurality of information recipients and which contains the decryption key information 32 for each information recipient includes the data The information is generated for each information recipient using the generation device 70, and the generated two-dimensional code 50 for each information recipient is individually delivered to each information recipient.

  In addition, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the image display medium 2, information via the print medium 1 is used. As in the case of delivery of information, it is possible not only to provide in an offline environment, to provide a plurality of information in an environment that can be viewed by others, and to transmit to an unspecified number of people, but also to display 2 on the image display medium 2 Information according to the information recipient can be transferred while dynamically changing the dimension code 40 under various conditions such as time and information recipient information.

  When the first data reading medium is a storage medium, it is the same as the print medium. As shown in FIG. 14, in the data generation processing 100 executed by the data generation apparatus 70 of the information provider, the partially encrypted delivery information 2 The dimension code generation process 120 outputs the imaged two-dimensional code data to the storage medium driver 8 (see FIG. 33) for converting it into a readable data reading medium.

  When the first data reading medium is a storage medium, as shown in FIG. 33, the data generation process 100 generates the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation process 100 of the information provider. The electronic image data 40b of the two-dimensional code 40 is temporarily stored in the storage medium 3 such as a USB memory, an SD card, a CD, or a DVD via the storage medium driver 8 that is stored in the storage medium 3. The electronic image data 40b of the two-dimensional code 40 is extracted as an electronic two-dimensional code 40 on the information receiver side via the storage medium driver 8 included in the data receiver 80 of the information receiver, and separately provided by an information provider. In the data reading process 200 executed by the data recovery device 80 of the information recipient using the two-dimensional code 50 of the decryption key information obtained from The encrypted protection information 22 included in the two-dimensional code 40 is selectively decrypted into the original protection information 12, and unprotected information 11 that can be viewed by anyone, and protection that the information recipient is permitted to view. The delivery information 60 for the information recipient including the information 12 is restored. The original delivery information 10 is restored.

  In this case, the information provider uses the data generation device 70 to generate the two-dimensional code 40 of the partially encrypted transfer information common to the plurality of information receivers from the original transfer information 10 and the generated 2 The two-dimensional code 50 storing the dimensional code 40 in the storage medium 3 as electronic image data 40b and passing it to a plurality of information recipients, and including the decryption key information 32 for each information recipient, It is generated for each information recipient using the data generation device 70, and the generated two-dimensional code 50 for each information recipient is individually delivered to each information recipient.

  In addition, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the storage medium 3, the information via the print medium 1 is transferred. As with delivery, not only can it be provided in an offline environment, multiple information can be viewed in an environment that can be viewed by others, and communicated to an unspecified number of people, along with programs and data, etc. The two-dimensional code 40 of the encrypted delivery information can be put in the storage medium 3 and passed to the information recipient, and additional information special to the particular information recipient can be provided as additional information of the program and data contained together. Can be passed.

  When the first data reading medium is a communication medium, it is the same as the print medium. As shown in FIG. 14, in the data generation process 100 executed by the data generation device 70 of the information provider, the partially encrypted delivery information 2 The dimension code generation process 120 outputs the imaged two-dimensional code data to the communication driver 8 (see FIG. 34) for converting the imaged two-dimensional code data into a readable data reading medium.

  When the first data reading medium is a communication medium, as shown in FIG. 34, the two-dimensional code 40 of the partially encrypted delivery information generated by the data generation process 100 executed by the data generation device 70 of the information provider. Is transmitted from the information provider through the communication medium 4 such as wired / wireless as the electronic image data 40b of the two-dimensional code 40 through the communication driver 9 included in the data generation device 70, thereby providing the information. The electronic image data 40b transmitted from the user is received as the electronic two-dimensional code 40 via the communication driver 9 included in the data receiver 80 of the information recipient, and the decryption obtained separately from the information provider Using the two-dimensional code 50 of the key information, it is included in the two-dimensional code 40 in the data restoration processing 200 executed by the data restoration device 80 of the information recipient. The received information including the unprotected information 11 that can be viewed by anyone, and the protected information 12 that the information recipient is permitted to view, selectively decrypting the encrypted protected information 22 into the original protected information 12 The delivery information 60 for the person is restored.

  In this case, the information provider uses the data generation device 70 to generate the two-dimensional code 40 of the partially encrypted transfer information common to the plurality of information receivers from the original transfer information 10 and the generated 2 The two-dimensional code 50 containing the decryption key information 32 for each information recipient is transmitted to the information receivers via the communication medium 4 as the electronic image data 40b. The information is generated for each information recipient using the generation device 70, and the generated two-dimensional code 50 for each information recipient is individually delivered to each information recipient.

  In addition, in order to deliver the two-dimensional code 40 of the partially encrypted delivery information of the present invention between the information provider and the information recipient via the communication medium 4, Similar to delivery, multiple delivery information can be provided in an environment that can be viewed by others, and it can be transmitted to unspecified number of people as well as immediately upon request from the information recipient or at a specified time. Information protected by the two-dimensional code 40 of the encrypted delivery information can be delivered to the information recipient.

  In the embodiment based on FIGS. 31 to 34 described above, a specific delivery medium example is shown only for the two-dimensional code 40 of the partially encrypted delivery information that is the first data reading medium, Regarding the delivery medium for the decryption key information two-dimensional code 50 which is a data reading medium, a specific medium is not specified. However, the two-dimensional code 50 for the decryption key information also includes the partially encrypted delivery information. In the same manner as the two-dimensional code 40, it is possible to exchange information between the information provider and the information receiver via various media.

  According to the second and third embodiments, the original delivery information 10 includes one or more pieces of protection information 12, and each piece of protection information 12 is obtained by encrypting with the encryption key for each piece of protection information. The decryption key information 35 that creates the two-dimensional code 40 of the partially encrypted delivery information including the encryption protection information 22 and can decrypt only the encryption protection information 22 necessary for each information recipient, Since the two-dimensional code 50 of the decryption key information for each information recipient corresponding to the information recipient can be separately distributed to each information recipient, the information provider includes one or more encryption protection information 22 A partially encrypted two-dimensional code 40 of delivery information is created, and the created two-dimensional code 40 can be distributed or viewed in common to a plurality of information recipients. Separately distributed decryption The 2-dimensional code 50 of the key information, by limiting the ciphering information 22 to decode each information recipient, can change the information that can be seen for each information recipient.

  Therefore, if only the two-dimensional code 50 of the decryption key information for each information recipient corresponding to each information recipient is distributed to the necessary information recipient, the two-dimensional partially encrypted delivery information Even if the code 40 is placed on a printed matter or a sign that can be seen by an unspecified number of people, or distributed at the same time, the encrypted protection information 22 included in the two-dimensional code 40 of the partially encrypted delivery information. For the portion, only the information receiver who has obtained the two-dimensional code 50 of the decryption key information for the information receiver from the information provider can decrypt the two-dimensional code of the decryption key information for the information receiver. According to the code 50, only the specific encryption protection information 22 permitted to be decrypted by the information recipient can be selectively decrypted and the original protection information 10 can be viewed. information So that it is subjected to the service.

  In the second and third embodiments described above, in the data generation process 100 executed by the data restoration device 80 possessed by the information recipient, the two-dimensional code 40 of the partially encrypted delivery information is used for the information recipient. Although an example in which only one two-dimensional code 50 of decryption key information is designated has been shown, the present invention is not limited to this, and the two-dimensional code of another decryption key information obtained in advance by the data restoration device 80 of the information recipient. The code may be specified together.

  As shown in FIG. 35, the two-dimensional code data decryption method according to the present invention includes the decryption key information acquisition process 220 and the protection information of the information recipient data restoration process 200 shown in FIG. 14 of the second embodiment. Only the processing method of the selective decoding processing 231 is different.

  The decryption key information acquisition process 220 of the fourth embodiment is the same as the decryption key information acquisition process 220 of FIG. 14, together with a data reading medium in which the information receiver has two-dimensional code data of partially encrypted delivery information from the information provider. In addition to the received data reading medium having the two-dimensional code data of the decryption key information, the data restoration device 200 converts a previously obtained data reading medium having the two-dimensional code data of the decryption key information different from the decryption key by the data restoration device 200. When a plurality of data are read, the decryption key information 50 of each data reading medium is acquired.

  Further, the protection information selective decryption process 231 according to the fourth embodiment is the partially encrypted delivery information 20 decrypted by the partially encrypted delivery information reading process 210 in the protection information selective decryption process 231 of FIG. Each encryption protection information 22 included in the encryption key identification information included in the encryption key information included in the encryption protection information 22 is obtained by the decryption key information acquisition process 220 according to the fourth embodiment. If the encryption key identification information included in any one of the key information 35 is included in the decryption key information 35, the corresponding encryption protection information using the decryption key paired with the encryption key identification information. 22 and each of the decryption key information 35 acquired in the decryption key information acquisition processing 220 of the fourth embodiment is identical to the encryption key identification information included in the decryption key information 35. If there is adapted to stop the decoding of the encrypted protected information 22.

  That is, in the data reading process 200 according to the fourth embodiment, the two-dimensional code 40 of the partially encrypted delivery information and the decryption key for the information recipient corresponding to the two-dimensional code 40 of the partially encrypted delivery information. In addition to the two-dimensional code 50 of information, a two-dimensional code 50 of another decryption key information already obtained by the information recipient is specified together, and the two-dimensional code 50 of a plurality of decryption key information is read by the data reading process 200. As input.

  The two-dimensional code 50 of the plurality of designated decryption key information is read by the decryption key information acquisition processing 220 and decrypted into the corresponding decryption key information 32 for the information recipient.

  The plurality of decryption key information 32 for the information recipient obtained in the decryption key information acquisition process 220 are transferred to the protection information selective decryption process 231 and decrypted by the partially encrypted delivery information reading process 210. This is used for decrypting the encrypted protection information 22 portion of the encrypted partial encrypted delivery information 20.

  Unlike the second and third embodiments, this protection information selective decryption processing 231 is not input as the decryption key information 32 for the information recipient obtained in the decryption key information acquisition processing 220 but as an input. Search for a plurality of designated decryption key information 32 for the information recipient, selectively decrypt the encrypted protection information 22 permitted to be decrypted by the information recipient, and deliver to the information recipient Information 60 is restored.

An example of such protection information selective decryption processing 231 will be described with reference to FIG.
36 is almost the same as the selective decryption process 231 for protected information shown in FIG. 24 of the second embodiment, and the process 2313 in the selective decryption process 231 for protected information shown in FIG. In the process 23132 of the fourth embodiment, all of the inputted input obtained in the decryption key information acquisition process 220 was searched for the decryption key information 32 for the one information recipient. The decryption key information 32 for the information recipient is searched, and the encryption key identification information described in the <key-id> tag in the encryption protection information 22 matches the encryption key identification information. The only difference is that it tries to acquire the decryption key information 35. That is, the processing 2313 in the protection information selective decryption processing 231 shown in FIG. 24 of the second embodiment is simply replaced with the processing 23132 of the fourth embodiment.

  In the above-described fourth embodiment, a modification example of the protection information selective decoding process 231 illustrated in FIG. 24 according to the second embodiment has been described. However, the present invention is not limited thereto, and the protection illustrated in FIG. 30 according to the third embodiment. By simply replacing the process 2313 in the information selective decryption process 231 with the process 23132 of the fourth embodiment, the decryption for all the input information recipients obtained in the decryption key information acquisition process 220 is performed. The encryption key information 32 is retrieved, and the encryption key identification information described in the <key-id> tag in the encryption protection information 22 and the decryption key information 35 whose encryption key identification information matches are obtained. Can try.

  According to the fourth embodiment as described above, the information receiver can select 2 of the partially encrypted delivery information to be decrypted from the two-dimensional code 50 of the decryption key information for the information receiver that has been separately obtained. There is no need to selectively designate the two-dimensional code 50 of the decryption key information for the information recipient corresponding to the dimension code 40, and the two-dimensional decryption key information for all the information recipients already obtained If the code 50 is designated to the data reading process 200, the corresponding two-dimensional code 50 of the decryption key information for the information recipient is automatically retrieved, and the delivery information 60 for the information recipient can be restored.

  That is, even if the information recipient does not store the corresponding decryption key, if the two-dimensional code 50 of the already obtained decryption key information for the information recipient is specified, the information recipient The delivery information 60 can be restored.

  A data generation processing program in which the data generation processing 100 and the data restoration processing 200 as the data processing procedures of the second, third, and fourth embodiments are executed by the processor 74 of the data generation device 70 and the processor 84 of the data restoration device 80. 71 and the data restoration processing program 81 can be used by a plurality of data generation apparatuses 70 and data restoration apparatuses 80 by recording a computer-readable CD, DVD, or the like.

  In the first to fourth embodiments described above, since the protection information of the delivery information 10 is encrypted before the two-dimensional encoding, the protection information that must be encrypted in the delivery information and the encryption Unprotected information that does not need to be mixed can be mixed.

In the first to fourth embodiments described above, the two-dimensional code of the corresponding decryption key information is separately obtained for the two-dimensional code including the partially encrypted delivery information passed from the information provider to the information receiver. In addition to the protected information that can be restored only by the completed information recipient, non-protected information that can be restored by all the information recipients who received the former two-dimensional code is included.
Therefore, in the first to fourth embodiments described above, Patent Document 3 and Patent Document 4 described in the background art in which another two-dimensional code is necessarily required to restore all the information included in the two-dimensional code. Unlike the disclosed technology, all information recipients must restore the unprotected information included in the two-dimensional code including the partially encrypted delivery information, even if the two-dimensional code of the decryption key information is not obtained. Can do.
Further, in the disclosure techniques disclosed in Patent Document 3 and Patent Document 4 described in the background art, two-dimensionally encoded data to be encrypted and password data are simply subjected to logical operation processing at the image level, and the encrypted data and the decryption key. Since data is generated, error correction at the image level becomes difficult and reading accuracy is greatly reduced. In contrast, in the above-described first to fourth embodiments, partial encryption is performed. Since the two-dimensional code of the completed delivery information and the two-dimensional code of the decryption key information are both ordinary two-dimensional codes, the error correction function as a two-dimensional code can be used as it is, and the reading accuracy is reduced. Can be prevented.

  According to the two-dimensional code data delivery medium, the two-dimensional code data encryption method, the two-dimensional code data decryption method, the program, and the recording medium according to the present invention, the elderly person who is not good at complicated key operations can be provided. It can be applied not only to information delivery but also to information delivery to people with visual disabilities by combining a two-dimensional code speech reading device. That is, when the information is restored by the data receiver 80 of the information recipient, the information can be read out by the two-dimensional code speech reader.

DESCRIPTION OF SYMBOLS 1 ... Print medium 2 ... Screen display medium 3 ... Storage medium 4 ... Communication medium 10 ... Original delivery information 12 ... Delivery information protection information 20 ... Partially encrypted delivery information 22 ... Partial encryption Encrypted protection information of encrypted delivery information 22c …… Encryption key identification information 22d …… Application condition information of decryption key information 30 …… Encryption key information 30c …… Encryption key identification information 30d …… Decryption key information Application condition information 30e …… Decryption key update information 35 …… Decryption key information 35b …… Decryption key 35c …… Encryption key identification information 35d …… Application determination target information 40 …… Partial encrypted transfer information Two-dimensional code 50 ... Two-dimensional code of decryption key information 70 ... Data generation device 80 ... Data restoration device

Claims (18)

A two-dimensional code that is encoded in a state in which protection information to be shown only to a specific information recipient is included in the transfer information that is generated by the data generation device and passed from the information provider to the information recipient is a data restoration device A data delivery medium with a two-dimensional code restored by reading with
A two-dimensional code including partially encrypted delivery information generated by replacing the protection information part of the delivery information with encrypted protection information obtained by encrypting the protection information using a predetermined encryption key, A first data reading medium converted to be readable by the data restoration device;
In order to decrypt the partially encrypted delivery information included in the first data reading medium, a two-dimensional code of a decryption key corresponding to the encryption key of the partially encrypted delivery information is the data A data delivery medium using a two-dimensional code, comprising: a second data reading medium converted so as to be readable by a restoration device. A two-dimensional code that is encoded in a state in which protection information to be shown only to a specific information recipient is included in the transfer information that is generated by the data generation device and passed from the information provider to the information recipient is a data restoration device A data delivery medium with a two-dimensional code restored by reading with
The two or more protection information included in the delivery information is replaced with the encryption protection information obtained by encrypting the protection information using a predetermined encryption key for each protection information. A first data reading medium in which the two-dimensional code including the partially encrypted delivery information generated in this way is converted so as to be readable by the data restoration device;
Decrypting the encryption protection information to be shown only to the specific information recipient among the two or more encryption protection information of the partially encrypted delivery information included in the first data reading medium Therefore, the encryption protection information for decryption includes encryption key information having encryption key identification information for identifying the encryption key, and the encryption key information of the encryption key information The decryption key corresponding to the identification information includes a second data reading medium in which the two-dimensional code of the decryption key information included in a pair with the encryption key identification information is converted so as to be readable by the data restoration device. A data delivery medium using a two-dimensional code characterized by the above. In the partially encrypted delivery information of the first data reading medium, the encryption key identified by the encryption key identification information included in the encryption protection information is included in each encryption protection information. Applicable condition information in which the application condition of the corresponding decryption key information is defined, and when the decryption key information does not match the application condition, acquisition of the decryption key information that matches the application condition, or automatic acquisition And decryption key update information for
In the second data reading medium, the decryption key information is compared with the application condition information included in the encryption protection information in which the encryption key identification information matches the decryption key information. 3. The data delivery medium using a two-dimensional code according to claim 2, further comprising application determination target information for determining whether or not the encrypted protection information can be used for decryption.   The first data reading medium and the second data reading medium are individually a print medium for displaying the two-dimensional code data so as to be visible, a screen display medium for displaying the two-dimensional code data so as to be visible, and the 2 The storage medium for storing the dimensional code data and the communication medium capable of communicating the two-dimensional code data between the data generation apparatus and the data restoration apparatus are selected. A data delivery medium using a two-dimensional code according to any one of claims 1 to 3. Data of a two-dimensional code that is generated by a data generation device with a two-dimensional code that is encoded in a state in which protection information for showing only to a specific information receiver is included in the delivery information passed from the information provider to the information receiver An encryption method,
The data generating device is
A first process of generating partially encrypted delivery information by replacing the protection information part of the delivery information with encrypted protection information obtained by encrypting the protection information using a predetermined encryption key;
A second process for generating a decryption key corresponding to the encryption key of the partially encrypted delivery information in order to decrypt the partially encrypted delivery information generated in the first process;
A data encryption method for a two-dimensional code, comprising: performing a third process of converting the partially encrypted delivery information and the decryption key into two-dimensional code data individually imaged. Data of a two-dimensional code that is generated by a data generation device with a two-dimensional code that is encoded in a state in which protection information for showing only to a specific information receiver is included in the delivery information passed from the information provider to the information receiver An encryption method,
The data generating device is
Replacing the two or more protection information in the delivery information with encrypted protection information obtained by encrypting two or more of the protection information included in the delivery information using a predetermined encryption key for each protection information A first process for generating partially encrypted delivery information;
For decrypting the encryption protection information to be shown only to the specific information recipient among the two or more encryption protection information of the partially encrypted delivery information generated in the first process The encryption protection information for decryption includes encryption key information having encryption key identification information for identifying the encryption key, and the encryption key identification information of the encryption key information and A second process of generating decryption key information in which a corresponding decryption key is included in a pair with the encryption key identification information;
And a third process for converting the partially encrypted delivery information and the decryption key information into individually imaged two-dimensional code data, respectively. . In the first process executed by the data generation device, the decryption corresponding to the encryption key identified by the encryption key identification information included in the encryption protection information for each of the encryption protection information Application condition information in which the application condition of the encryption key information is defined, and when the decryption key information does not match the application condition, acquisition of the decryption key information that matches the application condition, or automatic acquisition Decryption key update information is added to generate the partially encrypted delivery information,
In the second process executed by the data generation device, the decryption key information is compared with the application condition information included in the encryption protection information in which the encryption key identification information matches the decryption key information. 7. The data of the two-dimensional code according to claim 6, wherein the application determination target information for determining whether or not the key information can be used for decrypting the encryption protection information is added and generated. Encryption method.   The two data reading media are individually a print medium that displays the two-dimensional code data so as to be visible, a screen display medium that displays the two-dimensional code data so as to be visible, a storage medium that stores the two-dimensional code data, And any one of communication media capable of communicating the two-dimensional code data with each other between the data generating device and the data restoring device is selected. 2. A data encryption method for a two-dimensional code according to item 1.   9. A program that causes the data generation apparatus to execute the processes of the two-dimensional code data encryption method according to claim 5.   A computer-readable recording medium on which the program according to claim 9 is recorded. A two-dimensional code data decoding method for restoring the delivery information by a data restoration device from the data reading medium encrypted by the two-dimensional code data encryption method according to claim 5,
The data restoration device is
When reading a data reading medium having two-dimensional code data of the partially encrypted delivery information provided from the information provider, a first process for restoring the partially encrypted delivery information;
A second process of obtaining the decryption key by reading a data reading medium having two-dimensional code data of the decryption key information provided by the information provider;
Third processing for decrypting the encryption protection information included in the partially encrypted delivery information decrypted in the first processing using the decryption key acquired in the second processing And a data decoding method for a two-dimensional code. A data decoding method for a two-dimensional code for restoring the delivery information by a data restoration device from the data reading medium encrypted by the data encryption method for the two-dimensional code according to claim 6,
The data restoration device is
When reading a data reading medium having two-dimensional code data of the partially encrypted delivery information provided from the information provider, a first process for decrypting the partially encrypted delivery information;
A second process of obtaining the decryption key information by reading a data reading medium having two-dimensional code data of the decryption key information provided by the information provider;
Each encryption protection information included in the partially encrypted delivery information decrypted in the first process includes the encryption key identification information included in the encryption key information included in the encryption protection information. If the encryption key identification information included in the decryption key information acquired in the second process matches, the corresponding encryption protection information using the decryption key paired with the encryption key identification information And a third process for decoding the two-dimensional code data decoding method. A data decoding method for a two-dimensional code for restoring the delivery information by the data restoration device from the data reading medium encrypted by the data encryption method for the two-dimensional code according to claim 7,
In the third process executed by the data restoration device, the encryption key identification information included in the encryption key information included in the encryption protection information is the decryption key information acquired in the second process. The application condition information added to the partially encrypted delivery information and the application determination target information added to the decryption key information. If it is verified that the application determination target information matches the application condition information and the decryption key information is applicable, the corresponding encryption is performed using the decryption key paired with the encryption key identification information. If the decryption protection information is decrypted and the decryption key update information is determined to be inapplicable when the decryption key information is determined to be unapplicable because the applicability determination target information does not match the applicable condition information. 2-dimensional code data decoding method of claim 12, wherein.   In the third process, when the decryption key update information matching the application condition information is obtained, the encryption protection information corresponding to the encryption key identification information and the decryption key paired with The decryption of the corresponding encryption protection information is terminated and terminated when the decryption key update information that is decrypted and matches the application condition information cannot be obtained. A data decoding method for a two-dimensional code. In the second process, the data having the two-dimensional code data of the decryption key information received by the information receiver together with the data reading medium having the two-dimensional code data of the partially encrypted delivery information from the information provider In addition to the reading medium, when a plurality of previously obtained data reading media having two-dimensional code data of decoding key information different from the decoding key are read by the data restoration device, the decoding key of each data reading medium Get information,
In the third process, each encryption protection information included in the partially encrypted delivery information decrypted in the first process is included in the encryption key information included in the encryption protection information. If the encryption key identification information matches the encryption key identification information included in any one of the decryption key information obtained in the second process, the encryption key The corresponding encryption protection information is decrypted using the decryption key paired with the decryption key identification information, and each of the decryption key information acquired in the second process is included in the decryption key information. The two-dimensional code data according to any one of claims 12 to 14, wherein if the encryption key identification information does not match, the decryption of each encryption protection information is stopped. Decryption method.   The two data reading media are individually a print medium that displays the two-dimensional code data so as to be visible, a screen display medium that displays the two-dimensional code data so as to be visible, a storage medium that stores the two-dimensional code data, Further, any one of communication media capable of communicating the two-dimensional code data with each other between the data generation device and the data restoration device is selected. 2. The data decoding method according to item 1.   The program which makes the said data processing part of the said data decompression | restoration apparatus perform each said process of the data decoding method of any one of Claim 11 thru | or 16.   The computer-readable recording medium which recorded the program of Claim 17.

Images