JP2017108237A - System, terminal device, control method and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a door system having improved safety at the preservation of an electronic key used for the lock/unlock of a door.SOLUTION: A user terminal 100 generates a public key and a secret key and transmits the public key to a home gateway 200. The home gateway 200 generates a common key, encrypt it using the public key of the user terminal 100, and transmits it to the user terminal 100. The user terminal 100 decrypts the received encrypted common key to acquire the common key. To a door lock/unlock request by the user terminal 100, the home gateway 200 generates a challenge and transmit it to the user terminal 100. The user terminal 100 encrypts the received challenge using the common key and transmit it to the home gateway 200 as a response. If a value obtained by decrypting the response using the common key is coincident with the transmitted challenge, the home gateway 200 generates an instruction to lock/unlock the door and transmit it to a door control device 300. The door control device 300, on receiving the instruction, executes to lock/unlock the door.SELECTED DRAWING: Figure 3

Description

  The present invention relates to a system, a terminal device, a control method, and a program.

  In recent years, a service for generating and managing a door electronic key by executing an application installed on a smartphone or a tablet is known (see, for example, Non-Patent Document 1).

“Akerun SMART LOCK ROBOT” [online], Photosynth Inc., [October 20, 2015 search], Internet <URL: http://akerun.com>

Many of the services described above store the door electronic key encrypted in an obfuscated application, so the security of the door electronic key is not clear. If an analyst of software having advanced technology performs reverse engineering, the electronic key of the door may be leaked.
Here, the electronic key of the door is shown as an example, but the same applies to the case where the electronic key is used to cause a terminal device such as a user terminal to execute a predetermined operation.

  The present invention has been made to solve the above problems, and an object of the present invention is to improve the security of an electronic key used to execute a predetermined operation.

(1) One aspect of the present invention is a system including a first terminal device that performs a predetermined operation and a second terminal device that requests the predetermined operation from the first terminal device, The first terminal device includes a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information, and a second subscriber identification unit identification associated with user identification information A first communication unit that communicates with the second terminal device comprising a second subscriber identification unit that stores information, the first subscriber identification unit comprising: a public key certificate; A first key storage unit that stores a first public key registered in the public key certificate that is paired with one private key, and the second terminal device is associated with user identification information A second subscriber identification unit for storing the second subscriber identification unit identification information, and user identification information A second communication unit that communicates with the first terminal device comprising a first subscriber identification unit that stores the associated first subscriber identification unit identification information, and the second subscription The person identification unit includes a second key storage unit that stores a public key certificate and a second public key registered in the public key certificate forming the second private key pair. The communication unit transmits the second public key stored in the second key storage unit to the first terminal device, and the first key storage unit transmits the second public key to the first terminal device. The first terminal device and the second terminal device are used in a common key cryptosystem by using the second public key. It is a system that shares a common key.

(2) In one aspect of the present invention, in the system of (1), the second terminal device generates a pair of a second public key and a second secret key, and the second public key and A second encryption processing unit for encrypting the second subscriber identification unit identification information; the second public key encrypted by the second encryption processing unit; and the second subscriber identification A second communication control unit that transmits a part identification information to the first terminal device, and a second common key that is transmitted by the first terminal device and is encrypted with the second public key. A second decryption processing unit for decrypting with a secret key, and the second key storage unit stores the common key in association with the first subscriber identification unit identification information, and stores the second key The encryption processing unit encrypts a value generated based on the second subscriber identification unit identification information, and the second communication control unit A second subscriber identification unit identification information, a value generated based on the encrypted second subscriber identification unit identification information, and the public key certificate are transmitted to the first terminal device; The decryption processing unit 2 decrypts the common key, which is transmitted by the first terminal device and is encrypted with the second public key, with the second secret key, and the first terminal device A first decryption processing unit for decrypting the encrypted second public key and the second subscriber identification unit identification information transmitted by the second terminal device, and a common for generating the common key A key generation unit; a first encryption processing unit that encrypts the common key with a second public key obtained by being decrypted by the first decryption processing unit; and the first encryption processing unit. The common terminal encrypted with the second public key by the second terminal device And a first communication control unit for transmitting a system.

(3) According to one aspect of the present invention, in the system of (2), the second terminal device includes a request unit that requests the first terminal device to perform a predetermined operation, and the second encryption device The encryption processing unit encrypts the information transmitted by the first terminal device with the common key in response to the request for the predetermined operation, and the second communication control unit transmits the information to the first terminal device. The information encrypted with the common key is transmitted, and the first terminal device includes an execution unit that generates information in response to the request for the predetermined operation and executes the predetermined operation, The communication control unit transmits the information to the second terminal device, and the first decryption processing unit encrypts the second terminal device using the common key transmitted to the second terminal device. The information is decrypted with the common key generated by the common key generation unit, and the execution unit And information obtained by the decoding by the decoding processing unit, depending on whether or not the generated information is matched by the execution unit, determines whether or not to perform the predetermined operation is a system.

(4) One aspect of the present invention is a terminal device that requests a predetermined operation from another terminal device that performs a predetermined operation, and includes second subscriber identification unit identification information associated with the user identification information. A second subscriber identification unit that stores the second subscriber unit that includes the first subscriber identification unit that stores the first subscriber identification unit identification information associated with the user identification information. The second subscriber identification unit includes a public key certificate and a second public key registered in the public key certificate paired with the second private key. A second key storage unit for storing the second public key, the second communication unit transmitting the second public key stored in the second key storage unit to the other terminal device; Used for a common key cryptosystem using the second public key stored in the second key storage unit with the device Share a common key that is a terminal device.

(5) One aspect of the present invention is a terminal device that performs a predetermined operation, and includes a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information, and a user A first communication unit that communicates with another terminal device that includes a second subscriber identification unit that stores second subscriber identification unit identification information associated with the identification information, the first subscription The person identification unit includes a first key storage unit that stores a public key certificate and a first public key registered in the public key certificate that is paired with the first secret key. 1 key storage unit stores the second public key transmitted by the other terminal device in association with the second subscriber identification unit identification information, and the other terminal device Using the second public key stored in the first key storage unit, the common key used for the common key cryptosystem is shared. It is a terminal device.

(6) One embodiment of the present invention is a control executed by a system including a first terminal device that performs a predetermined operation and a second terminal device that requests the first terminal device for the predetermined operation. In the method, the first terminal device includes a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information, and a second subscriber identifier associated with the user identification information. A first communication unit that communicates with the second terminal device including a second subscriber identification unit that stores the subscriber identification unit identification information of the first subscriber identification unit, and the first subscriber identification unit is disclosed to the public Executing a first key storage step of storing a key certificate and a first public key registered in the public key certificate paired with a first private key, and the second terminal The apparatus stores second subscriber identification unit identification information associated with the user identification information 2nd communication which communicates with said 1st terminal device provided with the 1st subscriber identification part which stores the 2nd subscriber identification part and the 1st subscriber identification part identification information linked | related with user identification information And the second subscriber identification unit stores a public key certificate and a second public key registered in the public key certificate paired with the second private key. Performing a second key storage step, and the second communication unit transmitting the second public key stored in the second key storage step to the first terminal device, and The first terminal device stores the second public key in association with the second subscriber identification unit identification information, and the first terminal device and the second terminal device are configured to store the second public key. Sharing the common key used for the common key cryptography with the public key of It is your way.

(7) According to one aspect of the present invention, a second subscriber identification unit that stores second subscriber identification unit identification information associated with user identification information, and a first subscriber associated with user identification information A terminal device that includes a communication unit that communicates with another terminal device including a first subscriber identification unit that stores identification unit identification information, and requests the other terminal device that performs a predetermined operation to perform the predetermined operation A public key certificate and a second public key registered in the public key certificate paired with the second private key, and store the second public key to the other terminal device A program for transmitting and sharing a common key used for a common key encryption method with the other terminal device using the second public key.

(8) According to one aspect of the present invention, a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information and a second subscriber associated with user identification information A communication unit that communicates with another terminal device that includes a second subscriber identification unit that stores identification unit identification information, and a public key certificate and a first private key A first public key registered in the public key certificate paired with the second public key certificate, and a second public key transmitted by the other terminal device and the second subscriber identification unit identification information A program that associates and stores and shares a common key used for a common key encryption method with the other terminal device by using the second public key.

(9) One aspect of the present invention is a system including a first terminal device that performs a predetermined operation, and a second terminal device that requests the predetermined operation from the first terminal device, The second terminal device includes a key generation unit that generates a pair of a public key and a secret key, and the public key generated by the key generation unit is transmitted to the first terminal device and a subscriber identification of the second terminal device A second communication control unit that transmits by a communication service having a function of notifying user identification information associated with subscriber identification unit identification information acquired by the unit, and the public key transmitted by the first terminal device The second decryption processing unit that decrypts the common key encrypted in step 1 with the secret key, and the subscriber identification unit of the first terminal device obtains the common key decrypted by the second decryption processing unit User identification information associated with the subscriber identification section identification information; and And a second storage unit for storing, the first terminal device, the common key generation unit for generating the common key, the public key transmitted by the second terminal device, A first storage that stores the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device, which is the source of the public key, and the common key in association with each other. An encryption processing unit that encrypts the common key with the public key stored in the first storage unit, and the public key encrypted with the public key by the encryption processing unit. And a first communication control unit that transmits to the second terminal device that is the transmission source of the public key associated with the key.

(10) According to one aspect of the present invention, in the system according to (9), the second terminal device includes a request unit that requests the first terminal device for a predetermined operation, and the predetermined operation. An encryption processing unit that encrypts the information transmitted by the first terminal device with a common key stored in the second storage unit in response to the request, and the second communication control unit includes: An execution unit that transmits the information encrypted with the common key to the first terminal device, wherein the first terminal device generates information in response to the request for the predetermined operation, and executes the predetermined operation And a common key associated with the transmission source of the information among the common keys stored in the first storage unit with the information encrypted with the common key transmitted by the second terminal device. A first decoding processing unit for decoding, and the first communication control unit transmits the information to a terminal Whether the execution unit performs the predetermined operation depending on whether the information obtained by decoding by the first decoding processing unit matches the information generated by the execution unit. It is a system that determines whether or not.

(11) One aspect of the present invention is a terminal device that requests the predetermined operation from another terminal device that performs a predetermined operation, the key generation unit generating a public / private key pair, and the key A communication service having a function of notifying the other terminal device of the public key generated by the generating unit to the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device A communication control unit transmitted by the other terminal device, a decryption processing unit that decrypts the common key encrypted with the public key, using the secret key, and a common key decrypted by the decryption processing unit. And a storage unit that stores the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the other terminal device.

(12) One aspect of the present invention is a terminal device that performs a predetermined operation in response to a request for a predetermined operation requested by another terminal device, and a common key generation unit that generates a common key; A public key transmitted by the other terminal device, user identification information associated with subscriber identification unit identification information acquired by a subscriber identification unit of the other terminal device that is the source of the public key, and A storage unit that associates and stores a common key, an encryption processing unit that encrypts the common key with the public key stored in the storage unit, and the encryption processing unit that is encrypted with the public key A communication control unit configured to transmit the common key to the other terminal device that is a transmission source of the public key associated with the public key.

(13) One aspect of the present invention is a control executed by a system including a first terminal device that performs a predetermined operation and a second terminal device that requests the first terminal device for the predetermined operation. In the method, the second terminal device generates a public key / private key pair, and the public key generated in the generating step is transmitted to the first terminal device. A step of transmitting by a communication service having a function of notifying user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit, and the public key transmitted by the first terminal device Decrypting the encrypted common key with the secret key, and associating the decrypted common key with the subscriber identification unit identification information acquired by the subscriber identification unit of the first terminal device The first terminal device generates the common key, the public key transmitted by the second terminal device, and the public key. Storing the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device, which is a key transmission source, in association with the common key; Encrypting the common key with the public key stored in the step, and encrypting the common key encrypted with the public key by the step of encrypting the public key associated with the public key. And a step of transmitting to the second terminal device that is a transmission source.

(14) According to one aspect of the present invention, a terminal device that requests a predetermined operation from another terminal device that performs a predetermined operation is caused to generate a pair of a public key and a secret key, and the public key is used as the other terminal. The device is transmitted by a communication service having a function of notifying user identification information associated with subscriber identification unit identification information acquired by a subscriber identification unit of the terminal device, and transmitted by the other terminal device, User identification information associated with subscriber identification unit identification information obtained by decrypting a common key encrypted with a public key with the secret key and acquiring the decrypted common key by a subscriber identification unit of the other terminal device It is a program that is linked and memorized.

(15) According to one aspect of the present invention, a common key is generated in another terminal device that performs a predetermined operation, the public key transmitted by the other terminal device, and the other key that is a source of the public key The user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the terminal device is stored in association with the common key, and the common key is encrypted with the stored public key. A program that causes the common key encrypted with the public key to be transmitted to the other terminal device that is the source of the public key associated with the public key.

  According to the embodiment of the present invention, it is possible to improve the security of an electronic key used for executing a predetermined operation.

It is a figure which shows the door system which concerns on this embodiment. It is a functional block diagram which shows the door system which concerns on this embodiment. It is a figure which shows operation | movement of the door system which concerns on this embodiment. It is a functional block diagram which shows the door system which concerns on this embodiment. It is a figure which shows operation | movement of the door system which concerns on this embodiment. It is a functional block diagram which shows the door system which concerns on this embodiment. It is a figure which shows operation | movement of the door system which concerns on this embodiment. It is a functional block diagram which shows the door system which concerns on this embodiment. It is a figure which shows operation | movement of the door system which concerns on this embodiment.

Next, modes for carrying out the present invention will be described with reference to the drawings. Embodiment described below is only an example and embodiment to which this invention is applied is not restricted to the following embodiment.
Note that components having the same function are denoted by the same reference symbols throughout the drawings for describing the embodiments, and the repetitive description will be omitted.

<First Embodiment>
FIG. 1 shows a door system according to this embodiment. The door system includes a user terminal 100, a home gateway 200, and a door control device 300. The user terminal 100 and the home gateway 200 are connected by wireless, and the home gateway 200 and the door control device 300 are connected by wire or wireless. In the present embodiment, the home gateway 200 and the door control device 300 are connected by radio.

  The user terminal 100 is configured by a terminal device such as a smartphone or a tablet, and the secure element 102 is incorporated therein. For example, the secure element 102 is configured by a SIM (Subscriber Identity Module), an eSIM (Embedded SIM), or the like, and has tamper resistance. By using the secure element 102, the electronic key of the door can be safely managed by a hardware protection measure. Therefore, the security of the electronic key of the door that is uneasy about the protection measure can be ensured only by obfuscation.

  The user terminal 100 requests the home gateway 200 to lock or unlock the door provided with the door control device 300. Specifically, the user terminal 100 generates a public key Kp1 and private key Ks1 pair inside the secure element 102. The user terminal 100 acquires the door key (common key) Kd1 transmitted by the home gateway 200 by transmitting the public key Kp1 to the home gateway 200. The user terminal 100 requests the home gateway 200 to lock or unlock the door provided in the door control device 300, and locks or unlocks the door using the door key Kd1.

  The home gateway 200 performs protocol conversion between the Internet and the home network. A secure element 202 is incorporated in the home gateway 200 according to the present embodiment. For example, the secure element 202 is configured by SIM or eSIM and has tamper resistance. The home gateway 200 stores the public key Kp1 transmitted by the user terminal 100 in the secure element 202 in association with information for identifying the user terminal 100. The home gateway 200 generates a door key (common key), encrypts it with the public key Kp1 stored in the secure element 202, and transmits it to the user terminal 100.

  Further, the home gateway 200 transmits a challenge to the locking or unlocking request transmitted by the user terminal 100, determines whether or not to lock or unlock based on the response to the challenge, and locks or unlocks. When permitting the lock, the door control device 300 transmits a command to lock or unlock the door. The door control device 300 locks or unlocks the door according to a command for locking or unlocking the door transmitted by the home gateway 200.

<User terminal>
FIG. 2 is a functional block diagram showing the door system according to the present embodiment. The user terminal 100 includes a wireless communication unit 110 that performs wireless communication between the secure element 102 and the home gateway 200, a central processing unit (CPU) that controls the operation of the entire user terminal 100, and the like. The control unit 112, the storage unit 118 that stores the program 120 and various data executed by the control unit 112, and each component of the user terminal 100 are electrically connected as shown in FIG. A bus line 122 such as an address bus or a data bus.
The wireless communication unit 110 creates a wireless signal and transmits it from the antenna. The secure element 102 includes a key generation unit 104, a key storage unit 106, an encryption / decryption processing unit 107, and a door key storage unit 108.

  The key generation unit 104 generates a pair of the public key Kp1 and the secret key Ks1, and inputs the secret key Ks1 to the key storage unit 106. By generating the public key Kp1 and the secret key Ks1 inside the secure element 102, it is possible to withstand analysis from the outside, and thus the security of the public key Kp1 and the secret key Ks1 can be ensured. The key generation unit 104 generates a pair of a public key Kp1 and a secret key Ks1 according to a public key cryptosystem such as RSA (Rivest Shamir Adleman) or ECC (Elliptic Curve Cryptosystem). The key storage unit 106 stores the secret key Ks1 input by the key generation unit 104.

The encryption / decryption processing unit 107 decrypts the door key Kd1 encrypted with the public key Kp1 transmitted by the home gateway 200 with the secret key Ks1 stored in the key storage unit 106, and transmits the door key Kd1. The information is stored in the door key storage unit 108 in association with the information for identifying the home gateway 200. Here, the encryption / decryption processing unit 107 decrypts the door key Kd1 encrypted by the public key Kp1 transmitted by the home gateway 200 with the secret key Ks1 stored in the key storage unit 106, and the door key It may be stored in the door key storage unit 108 in association with the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the home gateway 200 that has transmitted Kd1. An example of the subscriber identification unit is a SIM slot, an example of the subscriber identification unit identification information is information for identifying the SIM (SIM identification information), and an example of the user identification information (user identification information) is a telephone number.
The encryption / decryption processing unit 107 encrypts the challenge transmitted by the home gateway 200 with the door key Kd1 stored in the door key storage unit 108. The challenge encrypted with the door key Kd1 is transmitted from the wireless communication unit 110 to the home gateway 200 as a response. The door key storage unit 108 stores the door key Kd1 and information for identifying the home gateway 200 that has transmitted the door key Kd1 in association with each other.

  The control unit 112 functions as the communication control unit 114 and the locking / unlocking request unit 116 by executing the program 120 stored in the storage unit 118. The communication control unit 114 performs control to transmit the public key Kp1 generated by the key generation unit 104 from the wireless communication unit 110 to the home gateway 200. For example, the communication control unit 114 transmits a message attached with the public key Kp1 from the wireless communication unit 110 to the home gateway 200 by a communication service having a function of notifying a source such as a short message service (SMS). To do. Here, the communication service having a function of notifying the transmission source includes a communication service having a function of notifying user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the user terminal 100. . By transmitting a message accompanied by the public key Kp1 by SMS to the home gateway 200, SMS authentication is performed prior to the transmission, so that security can be improved. Further, the communication control unit 114 inputs the door key Kd1 encrypted with the public key Kp1 transmitted by the home gateway 200 to the encryption / decryption processing unit 107.

  The lock / unlock request unit 116 generates a request to lock or unlock the door to be transmitted to the home gateway 200, transmits the request to the home gateway 200 from the wireless communication unit 110, and responds to the lock / unlock request to the home gateway 200. The challenge (random number) transmitted by the above is input to the encryption / decryption processing unit 107. Then, the lock / unlock request unit 116 transmits the challenge (response) encrypted with the door key Kd1 input by the encryption / decryption processing unit 107 from the wireless communication unit 110 to the home gateway 200. The storage unit 118 stores a program 120 that causes the user terminal 100 to function as the communication control unit 114 and the locking / unlocking request unit 116.

<Home gateway>
The home gateway 200 includes a wireless communication unit 210 that performs wireless communication between the secure element 202 and the user terminal 100, a control unit 214 that includes a CPU that controls the operation of the entire home gateway 200, and the control unit 214. A bus line such as an address bus or a data bus for electrically connecting each component of the home gateway 200 to the storage unit 220 for storing the program 224 and various data executed in FIG. 226.

  The wireless communication unit 210 creates a wireless signal and transmits it from the antenna. The secure element 202 includes a key storage unit 204, a door key generation unit 206, a door key storage unit 208, and an encryption / decryption processing unit 209. The key storage unit 204 stores the public key Kp1 attached to the message transmitted by the SMS by the user terminal 100 in association with the information for identifying the user terminal 100 that has transmitted the message. An example of information for identifying the user terminal 100 is a telephone number of the user terminal 100.

  The door key generation unit 206 generates the door key Kd1 when receiving the message transmitted by the user terminal 100. For example, the door key generation unit 206 generates a common key shared between the user terminal 100 and the home gateway 200. The door key generation unit 206 generates the door key Kd1 according to a common key encryption method (secret key encryption method) such as DES (Data Encryption Standard) or IDEA (International Data Encryption Algorithm). The door key generation unit 206 inputs the generated door key Kd1 and information for identifying the user terminal 100 that has transmitted the message in association with each other to the door key storage unit 208. The door key storage unit 208 stores the door key Kd1 input by the door key generation unit 206 and information for identifying the user terminal 100 in association with each other. Here, the door key storage unit 208 includes the door key Kd1 input by the door key generation unit 206 and the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the user terminal 100. It is also possible to store them in association with each other.

  The encryption / decryption processing unit 209 uses the door key Kd1 stored in the door key storage unit 208 as information for identifying the user terminal 100 associated with the door key among the public keys stored in the key storage unit 204. Encryption is performed using the associated public key Kp1. The door key encrypted with the public key Kp1 is transmitted from the wireless communication unit 210 to the user terminal 100. In this case, the wireless communication unit 210 transmits the door key by any one of SMS, Internet line, and short-range wireless communication. The encryption / decryption processing unit 209 decrypts the response transmitted from the user terminal 100 with the door key associated with the information identifying the user terminal 100 that transmitted the response, out of the door keys stored in the door key storage unit 208. To the door locking / unlocking processing unit 218.

  The short-range wireless communication unit 212 is a short-range wireless device such as RFID (radio frequency identifier), FeliCa, MIFARE, Bluetooth (registered trademark), and IRDA (Infrared Data Association: IrDA). Wireless communication is performed with the door control device 300 by communication. For example, when wireless communication is performed between the short-range wireless communication unit 212 and the door control device 300 by Bluetooth (registered trademark), pairing is performed in advance. By performing the pairing, even if a communication device other than the home gateway 200 tries to transmit a door locking / unlocking command to the door control device 300, communication between the communication device and the door control device 300 is not performed. Since it is not established, it is possible to prevent a malicious person from locking or unlocking the door.

  The control unit 214 functions as a communication control unit 215, a registration processing unit 216, and a door locking / unlocking processing unit 218 by executing the program 224 stored in the storage unit 220. The communication control unit 215 receives the door key Kd1 encrypted with the public key Kp1 stored in the key storage unit 204 by the encryption / decryption processing unit 209 from the wireless communication unit 210, such as SMS, Internet line, near field communication, etc. Transmit by wireless communication. The registration processing unit 216 stores the public key Kp1 attached to the message transmitted by the user terminal 100 in the key storage unit 204 in association with information for identifying the user terminal 100 that has transmitted the message.

  The door locking / unlocking processing unit 218 generates a challenge (random number) when the wireless communication unit 210 receives a request for locking or unlocking the door transmitted by the user terminal 100, and wirelessly communicates the challenge. The data is transmitted from the unit 210 to the user terminal 100. Further, the door locking / unlocking processing unit 218 acquires a response transmitted from the user terminal 100 from the wireless communication unit 210 in response to the challenge. The door locking / unlocking processing unit 218 compares the challenge and the value obtained by decrypting the response with the door key by the encryption / decryption processing unit 209, and if they match, creates a signal for instructing locking or unlocking the door, Transmission is performed from the short-range wireless communication unit 212 to the door control device 300. The storage unit 220 stores a program 224 that causes the home gateway 200 to function as the communication control unit 215, the registration processing unit 216, and the door locking / unlocking processing unit 218.

<Door control device>
The door control device 300 is executed by a short-range wireless communication unit 302 that performs wireless communication with the home gateway 200, a control unit 304 that includes a CPU that controls the operation of the entire door control device 300, and the control unit 304. A program 310, a storage unit 308 for storing various data, and a bus line 312 such as an address bus and a data bus for electrically connecting each component of the door control device 300 as shown in FIG. Prepare.
The short-range wireless communication unit 302 performs wireless communication with the home gateway 200 by short-range wireless communication such as RFID, Felica, My Fair, Bluetooth (registered trademark), and IRA.

  For example, when communication is performed between the home gateway 200 and the short-range wireless communication unit 302 by Bluetooth (registered trademark), pairing is performed in advance. By performing the pairing, even if a communication device other than the home gateway 200 tries to transmit a door locking / unlocking command to the door control device 300, communication between the communication device and the door control device 300 is not performed. Since it is not established, it is possible to prevent a malicious person from locking or unlocking the door. The control unit 304 functions as the door locking / unlocking processing unit 306 by executing the program 310 stored in the storage unit 308. The door locking / unlocking processing unit 306 performs the locking / unlocking of the door according to a signal for instructing locking / unlocking of the door transmitted by the home gateway 200.

<Operation of door system>
FIG. 3 shows the operation of the door system according to the present embodiment.
In step S102, the key generation unit 104 of the user terminal 100 generates a public key Kp1 and a secret key Ks1 inside the secure element 102. In S 104, the key generation unit 104 stores the secret key Ks 1 in the key storage unit 106. In step S106, the communication control unit 114 of the user terminal 100 performs SMS authentication based on the telephone number with the communication control unit 215 of the home gateway 200, and when the SMS authentication is successful, the SMS communicates with the wireless communication unit 110. Transmits a message accompanied by the public key Kp1 to the home gateway 200.

  In step S108, the registration processing unit 216 of the home gateway 200 associates the public key Kp1 transmitted by SMS by the user terminal 100 with the telephone number of the user terminal 100 that transmitted the public key Kp1 as a key, and stores the key storage unit. It stores in 204 and manages. Here, the registration processing unit 216 of the home gateway 200 associates the public key Kp1 transmitted by SMS by the user terminal 100 with information for identifying the user terminal 100 that transmitted the public key Kp1 as a key storage unit. 204 may be stored and managed. In step S110, the door key generation unit 206 generates the door key Kd1 inside the secure element 202 of the home gateway 200. In step S112, the door key generation unit 206 stores the door key Kd1 in the door key storage unit 208 in association with the telephone number of the user terminal 100 that is the transmission destination of the door key Kd1.

  In step S114, the encryption / decryption processing unit 209 encrypts the door key Kd1 with the public key Kp1 associated with the telephone number of the user terminal 100 associated with the door key Kd1 in the key storage unit 204. . Here, the encryption / decryption processing unit 209 encrypts the door key Kd1 with the public key Kp1 associated with the information for identifying the user terminal 100 associated with the door key Kd1 in the key storage unit 204. You may do it. In step S116, the communication control unit 215 transmits a message accompanying the door key Kd1 encrypted with the public key Kp1 to the user terminal 100. In step S118, the encryption / decryption processing unit 107 of the user terminal 100 decrypts the door key Kd1 encrypted with the public key Kp1 transmitted by the home gateway 200 with the secret key Ks1 stored in the key storage unit 106.

  In step S120, the encryption / decryption processing unit 107 stores the door key Kd1 and the telephone number of the home gateway 200 in association with each other and stores them in the door key storage unit 108 for management. In step S122, the locking / unlocking request unit 116 creates a request to lock or unlock the door. In step S <b> 124, the communication control unit 114 transmits a request for locking or unlocking the door created by the locking / unlocking request unit 116 to the home gateway 200. In step S126, the door locking / unlocking processing unit 218 generates a challenge (random number) in response to a request for locking or unlocking the door transmitted by the user terminal 100. In step S128, the communication control unit 215 transmits the challenge (random number) created by the door locking / unlocking processing unit 218 to the user terminal 100. In step S130, the encryption / decryption processing unit 107 encrypts the challenge transmitted by the home gateway 200 with the door key Kd1 associated with the telephone number of the home gateway 200 stored in the door key storage unit 108.

  In step S132, the locking / unlocking request unit 116 transmits a challenge (response) encrypted with the door key Kd1 from the wireless communication unit 110 to the home gateway 200. In step S134, the encryption / decryption processing unit 209 decrypts the response transmitted by the user terminal 100 with the door key Kd1 associated with the telephone number of the user terminal 100 stored in the door key storage unit 208.

  In step S136, the door locking / unlocking processing unit 218 compares the value obtained by decrypting with the door key Kd1 in step S134 with the challenge transmitted in step S128, and determines whether or not they match. In step S138, the door locking / unlocking processing unit 218 transmits a command for locking or unlocking to the door control device 300 from the short-range wireless communication unit 212 if they match. In step S140, the locking / unlocking command transmitted by the home gateway 200 is received by the short-range wireless communication unit 302 of the door control device 300, and the door locking / unlocking processing unit 306 performs a process of locking or unlocking the door. Execute.

In the door system according to the present embodiment, the door control device 300 may be provided inside the home gateway 200. That is, the home gateway 200 and the door control device 300 do not have to be separate devices, and may be provided as a single unit.
According to the door system according to the present embodiment, the home gateway 200 generates a door key inside the secure element 202, encrypts the door key with the public key acquired from the user terminal 100, and notifies the user terminal 100 of it. To do. Accordingly, the door key generated inside the secure element 202 can withstand analysis from the outside, and thus safety can be ensured.

  In this embodiment, the case where the user terminal 100 requests the home gateway 200 to lock or unlock the door has been described as an example. However, the present embodiment is not limited to this example. For example, the present invention can also be applied to a case where a predetermined operation is executed from a second terminal device such as a user terminal to a first terminal device such as a user terminal. In this case, the operation of the home gateway 200 can be applied to the first terminal device, and the operation of the user terminal 100 can be applied to the second terminal device.

<Second Embodiment>
FIG. 4 is a functional block diagram showing a door system according to the second embodiment. The door system according to the present embodiment includes a user terminal 400, a home gateway 500, and a door control device 300. FIG. 1 can be applied to the door system according to the present embodiment.

<User terminal>
The user terminal 400 stores a secure element 402, a wireless communication unit 410, a control unit 412 configured by a CPU that controls the operation of the entire user terminal 400, a program 420 executed by the control unit 412 and various data. And a bus line 422 such as an address bus and a data bus for electrically connecting the components of the user terminal 400 as shown in FIG. The wireless communication unit 410 can apply the wireless communication unit 110 of the user terminal 100 described above.

  The secure element 402 includes a key generation unit 404, a key storage unit 406, an encryption / decryption processing unit 407, a door key storage unit 408, and a certificate storage unit 409. In the user terminal 400 according to the present embodiment, the certificate storage unit 409 is stored in the secure element 402 in the user terminal 100 described with reference to FIG. As the key generation unit 404, the key storage unit 406, and the door key storage unit 408, the key generation unit 104, the key storage unit 106, and the door key storage unit 108 of the user terminal 100 described above can be applied.

  The certificate storage unit 409 holds a certificate authority certificate Cert_KRp and a certificate authority private key Ksr. The certificate authority certificate Cert_KRp includes a root certificate. The certificate authority certificate is also called a public key certificate. The certificate authority certificate Cert_KRp is a public key certificate. The public key certified by the certificate authority certificate Cert_KRp is the certificate authority public key Kpr. The certificate authority private key Ksr is a secret key paired with the certificate authority public key Kpr. The certificate authority certificate Cert_KRp and the certificate authority private key are written in the secure element 402 in advance. The certificate authority certificate Cert_KRp and the certificate authority secret key Ksr are preferably managed and kept secret so that they are not output from the secure element 402 in plain text. By writing the certificate authority certificate Cert_KRp in the secure element in advance, it is possible to prove the validity of the certificate authority public key Kpr.

  The encryption / decryption processing unit 407 signs the public key Kp1 generated by the key generation unit 404 and information for identifying the user terminal 400 with the certificate authority private key Ksr, and issues an S public key certificate Cert_KSp. The communication control unit 414 performs control to transmit the S public key certificate Cert_KSp from the wireless communication unit 410 to the home gateway 500. The control unit 412 functions as the communication control unit 414 and the locking / unlocking request unit 416 by executing the program 420 stored in the storage unit 418. The communication control unit 414 performs control to transmit the S public key certificate Cert_KSp generated by the encryption / decryption processing unit 407 from the wireless communication unit 410 to the home gateway 500. For example, the communication control unit 414 transmits by wireless communication such as SMS, Internet line, or short-range wireless communication.

  The locking / unlocking request unit 416 can apply the locking / unlocking requesting unit 116 of the user terminal 100 described above. The storage unit 418 stores a program 120 that causes the user terminal 400 to function as the communication control unit 414 and the locking / unlocking request unit 416.

<Home gateway 500>
The home gateway 500 includes a control unit 514 configured by a wireless communication unit 510 that performs wireless communication between the secure element 502 and the user terminal 400, a CPU that controls the operation of the entire home gateway 500, and the control unit 514. The storage unit 524 for storing the program 520 and various data executed in the above and a bus line such as an address bus and a data bus for electrically connecting each component of the home gateway 500 as shown in FIG. 526.

  As the wireless communication unit 510, the wireless communication unit 210 of the home gateway 200 described above can be applied. The secure element 502 includes a key storage unit 504, a door key generation unit 506, a door key storage unit 508, an encryption / decryption processing unit 509, and a certificate storage unit 511. In the home gateway 500 according to the present embodiment, the certificate storage unit 511 is stored in the secure element 502 in the home gateway 200 described with reference to FIG. As the key storage unit 504, the door key generation unit 506, and the door key storage unit 508, the key storage unit 204, the door key generation unit 206, and the door key storage unit 208 of the home gateway 200 described above can be applied.

  The certificate storage unit 511 holds a certificate authority certificate Cert_KRp and a certificate authority private key Ksr. The certificate authority certificate Cert_KRp and the certificate authority private key Ksr held in the certificate storage unit 511 are the same as the certificate authority certificate Cert_KRp and the certificate authority private key Ksr stored in the certificate storage unit 409 of the user terminal 400. Is. The certificate authority certificate Cert_KRp and the certificate authority private key Ksr are written in the secure element 502 in advance. By writing the certificate authority certificate Cert_KRp in the secure element in advance, it is possible to prove the validity of the certificate authority public key Kpr.

  The encryption / decryption processing unit 509 verifies the S public key certificate Cert_KSp transmitted by the user terminal 400 with the certification authority public key Kpr registered in the certification authority certificate Cert_KRp held in the certificate storage unit 511. . When the encryption / decryption processing unit 509 verifies the S public key certificate Cert_KSp, the registration processing unit 516 inputs the public key Kp1 to the key storage unit 504 using information for identifying the user terminal 400 as a key. The key storage unit 504 stores information for identifying the user terminal 400 and the public key Kp1 in association with each other. An example of information for identifying the user terminal 400 is the telephone number of the user terminal 400.

  The encryption / decryption processing unit 509 associates the door key Kd1 stored in the door key storage unit 508 with the telephone number associated with the door key Kd1 among the public keys Kp1 stored in the key storage unit 504. It is encrypted with the public key Kp 1 and transmitted from the wireless communication unit 510 to the user terminal 400. In this case, the wireless communication unit 510 transmits the door key by any one of SMS, Internet line, and short-range wireless communication. Furthermore, the encryption / decryption processing unit 509 includes a door key associated with the telephone number of the user terminal 400 that transmitted the response, out of the door key Kd1 that stores the response transmitted by the user terminal 400 in the door key storage unit 508. Decrypt with Kd1 and input to door locking / unlocking processing unit 518.

  The short-range wireless communication unit 512 can apply the short-range wireless communication unit 212 of the home gateway 200 described above. The control unit 514 functions as a communication control unit 515, a registration processing unit 516, and a door locking / unlocking processing unit 518 by executing the program 520 stored in the storage unit 524. The communication control unit 515 and the door locking / unlocking processing unit 518 can apply the communication control unit 215 and the door locking / unlocking processing unit 218 of the home gateway 200. The registration processing unit 516 associates the public key Kp1 obtained by decrypting the public key certificate Cert_KSp transmitted by the user terminal 400 with information for identifying the user terminal 400 that transmits the message, Stored in 504. The storage unit 524 stores a program 520 that causes the home gateway 500 to function as the communication control unit 515, the registration processing unit 516, and the door locking / unlocking processing unit 518.

<Operation of door system>
FIG. 5 shows the operation of the door system according to the present embodiment. In the door system according to the present embodiment, a similar certificate authority certificate Cert_KRp and a certificate authority private key Ksr are stored in advance in the user terminal 400 and the home gateway 500.
In step S502, the key generation unit 404 of the user terminal 400 generates a public key Kp1 and a secret key Ks1 inside the secure element 402. In step S504, the key generation unit 404 stores the secret key Ks1 in the key storage unit 406. In step S506, the encryption / decryption processing unit 407 signs the public key Kp1 generated by the key generation unit 404 and the information identifying the user terminal 400 by encrypting them with the certificate authority private key Ksr, and the S public key certificate Issue Cert_KSp. In step S508, the communication control unit 414 of the user terminal 400 transmits the S public key certificate Cert_KSp from the wireless communication unit 410 to the home gateway 500.

  In step S510, the encryption / decryption processing unit 509 of the home gateway 500 authenticates the S public key certificate Cert_KSp transmitted by the user terminal 400 in the certificate authority certificate Cert_KRp stored in the certificate storage unit 511. Verify with the local public key Kpr. In step S512, when the encryption / decryption processing unit 509 verifies the S public key certificate Cert_KSp, the registration processing unit 516 uses the information for identifying the user terminal 400 as a key and the public key Kp1 obtained by the decryption. Input to the key storage unit 504. The key storage unit 504 stores information for identifying the user terminal 400 and the public key Kp1 in association with each other. Steps S <b> 514 to S <b> 544 can apply steps S <b> 110 to S <b> 140 described with reference to FIG. 3.

In the door system according to the present embodiment, the door control device 300 may be provided inside the home gateway 500.
According to the door system according to the present embodiment, in addition to the effects obtained by the first embodiment, the certificate authority certificate Cert_KRp and the certificate authority private key are added to the secure element 402 of the user terminal 400 and the secure element 502 of the home gateway 500. Since the validity of the certificate authority public key Kpr can be proved by writing in advance, the security can be further improved. Further, communication between the user terminal 400 and the home gateway 500 is not limited to SMS, and any communication method such as an Internet line or near field communication can be applied.

  In this embodiment, the case where the user terminal 400 requests the home gateway 500 to lock or unlock the door has been described as an example. However, the present embodiment is not limited to this example. For example, the present invention can also be applied to a case where a predetermined operation is executed from a second terminal device such as a user terminal to a first terminal device such as a user terminal. In this case, the operation of the home gateway 500 can be applied to the first terminal device, and the operation of the user terminal 400 can be applied to the second terminal device.

<Third Embodiment>
FIG. 6 is a functional block diagram showing a door system according to the third embodiment. The door system according to the present embodiment includes a user terminal 600, a home gateway 700, and a door control device 300. FIG. 1 can be applied to the door system according to the present embodiment.

<User terminal>
The user terminal 600 stores a secure element 602, a wireless communication unit 610, a control unit 612 configured by a CPU that controls the operation of the entire user terminal 600, a program 620 executed by the control unit 612, and various data. And a bus line 622 such as an address bus and a data bus for electrically connecting the components of the user terminal 600 as shown in FIG. The wireless communication unit 610 can apply the wireless communication unit 110 of the user terminal 100. The secure element 602 includes an encryption / decryption processing unit 607, a door key storage unit 608, and a certificate storage unit 609. The door key storage unit 608 and the certificate storage unit 609 can apply the door key storage unit 408 and the certificate storage unit 409 of the user terminal 400 described above.

  The encryption / decryption processing unit 607 calculates a hash value of information for identifying the user terminal 600 and creates a digital signature by encrypting the hash value with the certificate authority private key Ksr. For example, the encryption / decryption processing unit 607 obtains a hash value of information for identifying the user terminal 600 by using a hash function such as Message Digest Algorithm 5 (MD5). The communication control unit 614 performs control to transmit information for identifying the user terminal 600, a digital signature, and a certificate authority certificate Cert_KRp. For example, the communication control unit 614 transmits information for identifying the user terminal 600, a digital signature, and a certificate authority certificate Cert_KRp to the home gateway 700 by any one of SMS, Internet line, and short-range wireless communication.

  The control unit 612 functions as the communication control unit 614 and the locking / unlocking request unit 616 by executing the program 620 stored in the storage unit 618. The communication control unit 614 performs control to transmit the information for identifying the user terminal 600 generated by the encryption / decryption processing unit 607, the digital signature, and the certificate authority certificate Cert_KRp from the wireless communication unit 610 to the home gateway 700. The locking / unlocking request unit 616 can apply the locking / unlocking requesting unit 416 of the user terminal 400. The storage unit 618 stores a program 620 that causes the user terminal 600 to function as the communication control unit 614 and the locking / unlocking request unit 616.

<Home gateway>
The home gateway 700 includes a wireless communication unit 710 that performs wireless communication between the secure element 702 and the user terminal 600, a control unit 714 that includes a CPU that controls the operation of the entire home gateway 700, and the control unit 714. A storage unit 724 for storing the program 720 executed in the above and various data, and a bus line such as an address bus and a data bus for electrically connecting each component of the home gateway 700 as shown in FIG. 726.

  The wireless communication unit 710 can apply the wireless communication unit 510 of the home gateway 500 described above. The secure element 702 includes a key storage unit 704, a door key generation unit 706, a door key storage unit 708, an encryption / decryption processing unit 709, and a certificate storage unit 711. The key storage unit 704, door key generation unit 706, door key storage unit 708, and certificate storage unit 711 are the key storage unit 504, door key generation unit 506, door key storage unit 508, and certificate of the home gateway 500 described above. The book storage unit 511 can be applied.

  The encryption / decryption processing unit 709 decrypts the digital signature transmitted by the user terminal 600 with the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp held in the certificate storage unit 711. Further, the encryption / decryption processing unit 709 calculates a hash value of information for identifying the user terminal 600 transmitted by the user terminal 600, and a value included in the digital signature decrypted with the hash value and the certificate authority public key Kpr. Whether or not matches is determined. For example, the encryption / decryption processing unit 709 obtains a hash value of information for identifying the user terminal 600 by using a hash function such as MD5. Here, the hash function used is the same as the hash function used in the encryption / decryption processing unit 607 of the user terminal 600. If they match, the encryption / decryption processing unit 709 associates the information for identifying the user terminal 600 with the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp and inputs the information to the key storage unit 704. The key storage unit 704 stores information for identifying the user terminal 600 and the certificate authority public key Kpr in association with each other. An example of information for identifying the user terminal 600 is a telephone number of the user terminal 600.

  The encryption / decryption processing unit 709 associates the door key Kd1 stored in the door key storage unit 708 with the telephone number associated with the door key Kd1 in the certification authority public key Kpr stored in the key storage unit 704. It is encrypted with the certificate authority public key Kpr and transmitted from the wireless communication unit 710 to the user terminal 400. In this case, the wireless communication unit 710 transmits the door key Kd1 encrypted with the certificate authority public key Kpr by any one of SMS, Internet line, and short-range wireless communication. The encryption / decryption processing unit 709 decrypts the response transmitted by the user terminal 600 with the door key Kd1 associated with the telephone number of the user terminal 600 that transmitted the response, out of the door keys stored in the door key storage unit 708. To the door locking / unlocking processing unit 718.

  The short-range wireless communication unit 712 can apply the short-range wireless communication unit 212 of the home gateway 200 described above. The control unit 714 functions as a communication control unit 715, a registration processing unit 716, and a door locking / unlocking processing unit 718 by executing a program 720 stored in the storage unit 724. The communication control unit 715 and the door locking / unlocking processing unit 718 can apply the communication control unit 215 and the door locking / unlocking processing unit 218 of the home gateway 200 described above. The registration processing unit 716 associates the certification authority public key Kpr registered in the certification authority certificate Cert_KRp transmitted by the user terminal 600 with information for identifying the user terminal 600 that transmits the message, and stores the key storage unit 704. To store. The storage unit 724 stores a program 720 that causes the home gateway 700 to function as the communication control unit 715, the registration processing unit 716, and the door locking / unlocking processing unit 718.

<Operation of door system>
FIG. 7 shows the operation of the door system according to the present embodiment. In the door system according to the present embodiment, the certificate authority certificate Cert_KRp and the certificate authority private key Ksr are stored in advance in the user terminal 600 and the home gateway 700.
In step S702, the encryption / decryption processing unit 607 calculates a hash value of the telephone number of the user terminal 600, and creates a digital signature by encrypting the hash value with the certificate authority private key Ksr. In step S704, the communication control unit 414 of the user terminal 400 transmits the telephone number of the user terminal 600, the digital signature, and the certificate authority certificate Cert_KRp from the wireless communication unit 410 to the home gateway 500. In step S706, the encryption / decryption processing unit 709 of the home gateway 700 decrypts the digital signature with the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp transmitted by the user terminal 600. Further, the encryption / decryption processing unit 709 calculates a hash value of information for identifying the user terminal 100 transmitted by the user terminal 400, and the hash value and the hash value obtained by decrypting the digital signature match. Judge whether to do.

  In step S708, the encryption / decryption processing unit 709 inputs the certification authority public key Kpr registered in the certification authority certificate Cert_KRp to the key storage unit 704 using the telephone number of the user terminal 400 as a key when they match. The key storage unit 704 stores the telephone number of the user terminal 400 and the certificate authority public key Kpr in association with each other. Steps S710 to S740 can apply steps S514 to S544 described with reference to FIG.

In the door system according to the present embodiment, the door control device 300 may be provided inside the home gateway 700.
According to the door system according to the present embodiment, in addition to the effects obtained by the above-described embodiment, the user terminal 600 transmits the user terminal 600 telephone number, digital signature, and certificate authority certificate to the home gateway 700. Thus, the home gateway 700 can confirm the safety and validity of the telephone number transmitted by the user terminal 600 (the telephone number transmitted by the user terminal 600 and not tampered in the middle).

  In this embodiment, the case where the user terminal 600 requests the home gateway 700 to lock or unlock the door has been described as an example. However, the present embodiment is not limited to this example. For example, the present invention can also be applied to a case where a predetermined operation is executed from a second terminal device such as a user terminal to a first terminal device such as a user terminal. In this case, the operation of the home gateway 700 can be applied to the first terminal device, and the operation of the user terminal 600 can be applied to the second terminal device.

<Fourth Embodiment>
FIG. 8 is a functional block diagram showing a door system according to the fourth embodiment. The door system according to the present embodiment includes a user terminal 800, a home gateway 900, and a door control device 300. FIG. 1 can be applied to the door system according to the present embodiment.

<User terminal>
The user terminal 800 stores a secure element 802, a wireless communication unit 810, a control unit 812 configured by a CPU that controls the operation of the entire user terminal 800, a program 820 executed by the control unit 812, and various data. And a bus line 822 such as an address bus or a data bus for electrically connecting the components of the user terminal 800 as shown in FIG. As the wireless communication unit 810, the wireless communication unit 110 of the user terminal 100 can be applied.

  The secure element 802 includes a certificate authority 803, an encryption / decryption processing unit 807, a door key storage unit 808, and a certificate storage unit 809. The encryption / decryption processing unit 807, the door key storage unit 808, and the certificate storage unit 809 can apply the encryption / decryption processing unit 607, the door key storage unit 608, and the certificate storage unit 609 of the user terminal 600 described above.

  The certificate authority 803 issues a certificate authority certificate Cert_KRp. The certificate authority public key Kpr is registered in the certificate authority certificate Cert_KRp. The certificate authority 803 stores the certificate authority private key Ksr, which is a pair of the certificate authority certificate Cert_KRp and the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp, in the certificate storage unit 809. Thereby, when the user terminal 100 itself becomes the certificate authority 803, information such as information for identifying the user terminal 100 can be proved. The control unit 812 functions as the communication control unit 814 and the locking / unlocking request unit 816 by executing the program 820 stored in the storage unit 818. The communication control unit 814 and the lock / unlock request unit 816 can apply the communication control unit 614 and the lock / unlock request unit 616 of the user terminal 600. The storage unit 818 stores a program 820 that causes the user terminal 800 to function as the communication control unit 814 and the locking / unlocking request unit 816.

<Home gateway>
The home gateway 900 includes a wireless communication unit 910 that performs wireless communication between the secure element 902 and the user terminal 800, a control unit 914 that includes a CPU that controls the operation of the entire home gateway 900, and the control unit 914. The storage unit 924 for storing the program 920 and various data executed in the above and a bus line such as an address bus and a data bus for electrically connecting each component of the home gateway 900 as shown in FIG. 926.

  As the wireless communication unit 910, the wireless communication unit 510 of the home gateway 500 can be applied. The secure element 902 includes a certificate authority 903, a key storage unit 904, a door key generation unit 906, a door key storage unit 908, an encryption / decryption processing unit 909, and a certificate storage unit 911. The key storage unit 904, the door key generation unit 906, the door key storage unit 908, and the certificate storage unit 911 are the key storage unit 704, the door key generation unit 706, the door key storage unit 708, and the certificate of the home gateway 700 described above. The book storage unit 711 can be applied. The key storage unit 904, the door key generation unit 906, the door key storage unit 908, the encryption / decryption processing unit 909, and the certificate storage unit 911 are the key storage unit 704, the door key generation unit 706, and the door of the home gateway 700 described above. A key storage unit 708, an encryption / decryption processing unit 709, and a certificate storage unit 711 can be applied.

  The certificate authority 903 issues a certificate authority certificate Cert_KRp. The certificate authority public key Kpr is registered in the certificate authority certificate Cert_KRp. The certificate authority 903 stores in the certificate storage unit 911 a certificate authority private key Ksr that is a pair of the certificate authority certificate Cert_KRp and the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp. Here, the certification authority private key Ksr, which is a pair of the certification authority certificate Cert_KRp and the certification authority public key Kpr registered in the certification authority certificate Cert_KRp, is issued at the user terminal 800 by the certification authority certificate Cert_KRp, and This is the same as the certificate authority private key Ksr that is a pair of the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp.

  The short-range wireless communication unit 912 can apply the short-range wireless communication unit 212 of the home gateway 200 described above. The control unit 914 functions as a communication control unit 915, a registration processing unit 916, and a door locking / unlocking processing unit 918 by executing the program 920 stored in the storage unit 924. The communication control unit 915, registration processing unit 916, and door locking / unlocking processing unit 918 can apply the communication control unit 715, registration processing unit 716, and door locking / unlocking processing unit 718 of the home gateway 700 described above. The storage unit 924 stores a program 920 that causes the home gateway 900 to function as the communication control unit 915, the registration processing unit 916, and the door locking / unlocking processing unit 918.

<Operation of door system>
FIG. 9 shows the operation of the door system according to the present embodiment.
In step S902, the certificate authority 803 issues a certificate authority certificate Cert_KRp. The certificate authority 803 stores the certificate authority private key Ksr, which is a pair of the certificate authority certificate Cert_KRp and the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp, in the certificate storage unit 809. In step S904, the certificate authority 903 issues a certificate authority certificate Cert_KRp. The certificate authority 903 stores in the certificate storage unit 911 a certificate authority private key Ksr that is a pair of the certificate authority certificate Cert_KRp and the certificate authority public key Kpr registered in the certificate authority certificate Cert_KRp. For steps S906 to S944, steps S702 to S740 described with reference to FIG. 7 can be applied.

In the door system according to the present embodiment, the door control device 300 may be provided inside the home gateway 900.
According to the door system according to the present embodiment, in addition to the effects obtained by the above-described embodiments, the user terminal 100 proves information such as information for identifying the user terminal 100 by becoming the certificate authority 803 by itself. Can do.

  In this embodiment, the case where the user terminal 800 requests the home gateway 900 to lock or unlock the door has been described as an example. However, the present embodiment is not limited to this example. For example, the present invention can also be applied to a case where a predetermined operation is executed from a second terminal device such as a user terminal to a first terminal device such as a user terminal. In this case, the operation of the home gateway 900 can be applied to the first terminal device, and the operation of the user terminal 800 can be applied to the second terminal device.

  As mentioned above, although embodiment of this invention was explained in full detail with reference to drawings, the specific structure is not restricted to this embodiment, The design change etc. of the range which does not deviate from the summary of this invention are included. For example, as the secure element, for example, a tamper-resistant cryptographic processing chip may be used. As tamper-resistant cryptographic processing chips, for example, cryptographic processing chips called HSM (Hardware Security Module) and TPM (Trusted Platform Module) are known. For example, HSM or TPM may be used for the secure element of the user terminal and the secure element of the home gateway. Further, the program executed by the above-described user terminal, home gateway, or door control device is recorded on a computer-readable recording medium, and the program recorded on the recording medium is read into a computer system and executed. Also good. Here, the “computer system” may include an OS and hardware such as peripheral devices.

  “Computer-readable recording medium” refers to a flexible disk, a magneto-optical disk, a ROM, a writable nonvolatile memory such as a flash memory, a portable medium such as a DVD (Digital Versatile Disk), and a built-in computer system. A storage device such as a hard disk. Further, the “computer-readable recording medium” means a volatile memory (for example, DRAM (Dynamic DRAM) in a computer system that becomes a server or a client when a program is transmitted through a network such as the Internet or a communication line such as a telephone line. Random Access Memory)), etc. that hold a program for a certain period of time.

  The program may be transmitted from a computer system storing the program in a storage device or the like to another computer system via a transmission medium or by a transmission wave in the transmission medium. Here, the “transmission medium” for transmitting the program refers to a medium having a function of transmitting information, such as a network (communication network) such as the Internet or a communication line (communication line) such as a telephone line. The program may be for realizing a part of the functions described above. Furthermore, what can implement | achieve the function mentioned above in combination with the program already recorded on the computer system, and what is called a difference file (difference program) may be sufficient.

In the embodiment described above, the home gateway is an example of a first terminal device, and the user terminal is an example of a second terminal device. The secure elements 202, 502, 702, and 902 are examples of a first subscriber identification unit, and the secure elements 102, 402, 602, and 802 are examples of a second subscriber identification unit. Locking or unlocking the door is an example of a predetermined operation, the wireless communication units 210, 510, 710, and 910 are examples of the first communication unit, and the wireless communication units 110, 410, 610, and 810 are the first operations. It is an example of 2 communication parts.
Moreover, there may be a plurality of terminal devices corresponding to the second terminal device with respect to the first terminal device instead of the one-to-one relationship between the first terminal device and the second terminal device, There may be a plurality of terminal devices corresponding to the first terminal device with respect to the second terminal device.
In addition, for example, when the secret key or the common key is lost or leaked, generation and storage of the key in both or one of the first terminal device and the second terminal device is performed not only once but multiple times. May be. When a new key is generated, the old key may be deleted or overwritten on the old key.

100, 400, 600, 800 ... User terminal 102, 402, 602, 802 ... Secure element 104, 404 ... Key generation unit 106, 406 ... Key storage unit 108, 408, 608, 808 ... Door key storage unit 110, 410, 610, 810 ... Wireless communication unit 112, 412, 612, 812 ... Control unit 114, 414, 614, 814 ... Communication control unit 116, 416, 616, 816 ... Locking / unlocking request unit 118, 418, 618, 818 ... Storage unit 120, 420, 620, 820 ... Program 122, 422, 622, 822 ... Bus line 407, 807 ... Encryption / decryption processing unit 409, 609, 809 ... Certificate storage unit 803 ... Certificate authority 200, 500, 700, 900 ... Home gateway 202, 502, 702, 902 ... Secure element 04, 504, 704, 904 ... key storage unit 206, 506, 706, 906 ... door key generation unit 208, 508, 708, 908 ... door key storage unit 209, 509, 709, 909 ... encryption / decryption processing unit 210, 510, 710, 910 ... Wireless communication unit 212, 512, 712, 912 ... Short-range wireless communication unit 214, 514, 714, 914 ... Control unit 215, 515, 715, 915 ... Communication control unit 216, 516, 716, 916 Registration processing unit 218, 518, 718, 918 ... Door locking / unlocking processing unit 220, 520, 720, 920 ... Storage unit 224, 524, 724, 924 ... Program 226, 526, 726, 926 ... Bus line 509, 709, 909 ... Encryption / decryption processing unit 511, 711, 911 ... Certificate storage unit 300 ... Door control device 3 2 ... wireless communication unit 304 ... control unit 306 ... door locking-unlocking unit 308 ... storage unit 310 ... program 312 ... bus line

Claims (15)

A system comprising: a first terminal device that performs a predetermined operation; and a second terminal device that requests the first terminal device for the predetermined operation,
The first terminal device is:
A first subscriber identification unit for storing first subscriber identification unit identification information associated with the user identification information;
A first communication unit that communicates with the second terminal device including a second subscriber identification unit that stores second subscriber identification unit identification information associated with the user identification information;
The first subscriber identification unit is a first key storage unit that stores a public key certificate and a first public key registered in the public key certificate paired with the first secret key. With
The second terminal device is:
A second subscriber identification unit for storing second subscriber identification unit identification information associated with the user identification information;
A second communication unit that communicates with the first terminal device including a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information;
The second subscriber identification unit includes a second key storage unit that stores a public key certificate and a second public key registered in the public key certificate forming a second private key pair. Prepared,
The second communication unit transmits the second public key stored in the second key storage unit to the first terminal device,
The first key storage unit stores the second public key in association with the second subscriber identification unit identification information;
A system in which the first terminal device and the second terminal device share a common key used for a common key cryptosystem by using the second public key. The second terminal device is:
A second encryption processing unit that generates a pair of a second public key and a second secret key, and encrypts the second public key and the second subscriber identification unit identification information;
A second communication control unit for transmitting the second public key encrypted by the second encryption processing unit and the second subscriber identification unit identification information to the first terminal device;
A second decryption processing unit for decrypting a common key encrypted with the second public key, transmitted by the first terminal device, with the second secret key;
The second key storage unit stores the common key in association with the first subscriber identification unit identification information;
The second encryption processing unit encrypts a value generated based on the second subscriber identification unit identification information,
The second communication control unit receives the second subscriber identification unit identification information, a value generated based on the encrypted second subscriber identification unit identification information, and the public key certificate. 1 to the terminal device,
The second decryption processing unit decrypts the common key, which is transmitted by the first terminal device and is encrypted with the second public key, with the second secret key,
The first terminal device is:
A first decryption processing unit for decrypting the encrypted second public key and the second subscriber identification unit identification information transmitted by the second terminal device;
A common key generation unit for generating the common key;
A first encryption processing unit that encrypts the common key with a second public key obtained by being decrypted by the first decryption processing unit;
2. The system according to claim 1, further comprising: a first communication control unit that transmits the common key encrypted with the second public key by the first encryption processing unit to the second terminal device. . The second terminal device is:
A request unit that requests a predetermined operation from the first terminal device;
The second encryption processing unit encrypts information transmitted by the first terminal device with the common key in response to the request for the predetermined operation,
The second communication control unit transmits the information encrypted with the common key to the first terminal device,
The first terminal device is:
Generating information in response to a request for the predetermined operation, and executing the predetermined operation;
The first communication control unit transmits the information to the second terminal device,
The first decryption processing unit decrypts the information encrypted by the second terminal device using the common key transmitted to the second terminal device, using the common key generated by the common key generation unit. ,
The execution unit determines whether or not to perform the predetermined operation based on whether information obtained by decoding by the first decoding processing unit matches information generated by the execution unit. The system according to claim 2. A terminal device that requests the predetermined operation from another terminal device that performs the predetermined operation;
A second subscriber identification unit for storing second subscriber identification unit identification information associated with the user identification information;
A second communication unit that communicates with the other terminal device including a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information;
The second subscriber identification unit is a second key storage unit that stores a public key certificate and a second public key registered in the public key certificate paired with the second secret key. With
The second communication unit transmits the second public key stored in the second key storage unit to the other terminal device,
A terminal device that shares a common key used for a common key encryption method with the other terminal device using the second public key stored in the second key storage unit. A terminal device that performs a predetermined operation,
A first subscriber identification unit for storing first subscriber identification unit identification information associated with the user identification information;
A first communication unit that communicates with another terminal device including a second subscriber identification unit that stores second subscriber identification unit identification information associated with the user identification information;
The first subscriber identification unit is a first key storage unit that stores a public key certificate and a first public key registered in the public key certificate paired with the first secret key. With
The first key storage unit stores a second public key transmitted by the other terminal device in association with the second subscriber identification unit identification information,
A terminal device that shares a common key used for a common key encryption method with the other terminal device using a second public key stored in the first key storage unit. A control method executed by a system including a first terminal device that performs a predetermined operation and a second terminal device that requests the predetermined operation from the first terminal device,
The first terminal device is:
A first subscriber identification unit for storing first subscriber identification unit identification information associated with the user identification information;
A first communication unit that communicates with the second terminal device including a second subscriber identification unit that stores second subscriber identification unit identification information associated with the user identification information;
A first key storage step in which the first subscriber identification unit stores a public key certificate and a first public key registered in the public key certificate paired with the first private key; When,
Run
The second terminal device is:
A second subscriber identification unit for storing second subscriber identification unit identification information associated with the user identification information;
A second communication unit that communicates with the first terminal device including a first subscriber identification unit that stores first subscriber identification unit identification information associated with user identification information;
A second key storage step in which the second subscriber identification unit stores a public key certificate and a second public key registered in the public key certificate paired with a second private key; When,
The second communication unit transmits the second public key stored in the second key storage step to the first terminal device; and
The first terminal device stores the second public key in association with the second subscriber identification unit identification information,
The first terminal apparatus and the second terminal apparatus use the second public key to share a common key used for a common key encryption method. A second subscriber identification unit for storing second subscriber identification unit identification information associated with the user identification information; and a first subscriber identification unit identification information associated with the user identification information. A communication unit that communicates with another terminal device including a subscriber identification unit, and a terminal device that requests the predetermined operation from the other terminal device that performs a predetermined operation;
Storing a public key certificate and a second public key registered in the public key certificate paired with a second private key;
Sending the second public key to the other terminal device;
A program for sharing a common key used for a common key encryption method with the other terminal device using the second public key. A first subscriber identification unit for storing first subscriber identification unit identification information associated with the user identification information, and a second subscriber identification unit identification information associated with the user identification information A communication unit that communicates with another terminal device including a subscriber identification unit, and a terminal device that performs a predetermined operation;
Storing the public key certificate and the first public key registered in the public key certificate paired with the first private key;
Storing the second public key transmitted by the other terminal device in association with the second subscriber identification unit identification information;
A program for sharing a common key used for a common key cryptosystem with the other terminal device using the second public key. A system comprising: a first terminal device that performs a predetermined operation; and a second terminal device that requests the first terminal device for the predetermined operation,
The second terminal device is:
A key generation unit that generates a public key and private key pair;
A function of notifying the first terminal device of the public key generated by the key generation unit to the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device; A second communication control unit for transmitting by a communication service having;
A second decryption processing unit, which is transmitted by the first terminal device, decrypts a common key encrypted with the public key with the secret key;
A second key for storing the common key decrypted by the second decryption processing unit in association with the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the first terminal device; A storage unit, and
The first terminal device is:
A common key generation unit for generating the common key;
User identification information associated with the public key transmitted by the second terminal device and the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device that is the source of the public key And a first storage unit for storing the common key in association with each other,
An encryption processing unit that encrypts the common key with the public key stored in the first storage unit;
A first communication control unit that transmits the common key encrypted with the public key by the encryption processing unit to the second terminal device that is a source of the public key associated with the public key And a system. The second terminal device is:
A requesting unit that requests a predetermined operation from the first terminal device;
An encryption processing unit that encrypts information transmitted by the first terminal device with a common key stored in the second storage unit in response to a request for the predetermined operation;
The second communication control unit transmits the information encrypted with the common key to the first terminal device,
The first terminal device is:
An execution unit that generates information in response to the request for the predetermined operation and executes the predetermined operation;
The information encrypted with the common key transmitted by the second terminal device is decrypted with the common key associated with the transmission source of the information among the common keys stored in the first storage unit. A first decryption processing unit, and
The first communication control unit transmits the information to the terminal device,
The execution unit determines whether or not to perform the predetermined operation based on whether information obtained by decoding by the first decoding processing unit matches information generated by the execution unit. The system according to claim 9. A terminal device that requests the predetermined operation from another terminal device that performs the predetermined operation;
A key generation unit that generates a public key and private key pair;
A function of notifying the other terminal device of the public key generated by the key generation unit to the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device; A communication control unit for transmitting by a communication service;
A decryption processing unit that is transmitted by the other terminal device and decrypts the common key encrypted with the public key with the secret key;
A storage unit that stores the common key decrypted by the decryption processing unit in association with user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the other terminal device. apparatus. A terminal device that performs a predetermined operation in response to a request for a predetermined operation requested by another terminal device;
A common key generation unit for generating a common key;
A public key transmitted by the other terminal device, user identification information associated with subscriber identification unit identification information acquired by a subscriber identification unit of the other terminal device that is the source of the public key, and A storage unit that associates and stores a common key;
An encryption processing unit that encrypts the common key with the public key stored in the storage unit;
A communication control unit that transmits the common key encrypted with the public key by the encryption processing unit to the other terminal device that is a source of the public key associated with the public key. Terminal device. A control method executed by a system including a first terminal device that performs a predetermined operation and a second terminal device that requests the predetermined operation from the first terminal device,
The second terminal device is:
Generating a public / private key pair;
A function of notifying the first terminal device of the public key generated in the generating step to the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device; Transmitting by a communication service comprising:
Decrypting with the secret key a common key encrypted with the public key transmitted by the first terminal device;
Executing the step of storing the common key decrypted in the decrypting step in association with the user identification information associated with the subscriber identification unit identification information acquired by the subscriber identification unit of the first terminal device;
The first terminal device is:
Generating the common key;
User identification information associated with the public key transmitted by the second terminal device and the subscriber identification unit identification information acquired by the subscriber identification unit of the second terminal device that is the source of the public key And linking and storing the common key;
Encrypting the common key with the public key stored in the storing step;
Performing the step of transmitting the common key encrypted with the public key to the second terminal device that is the transmission source of the public key associated with the public key by the step of encrypting. Control method. To a terminal device that requests the predetermined operation from another terminal device that performs the predetermined operation,
Generate a public / private key pair,
The public key is transmitted to the other terminal device by a communication service having a function of notifying user identification information associated with subscriber identification unit identification information acquired by a subscriber identification unit of the terminal device,
A secret key encrypted by the public key transmitted by the other terminal device is decrypted by the secret key;
A program for storing the decrypted common key in association with user identification information associated with subscriber identification unit identification information acquired by a subscriber identification unit of the other terminal device. To other terminal devices that perform predetermined operations,
Generate a common key,
A public key transmitted by another terminal device, user identification information associated with subscriber identification unit identification information acquired by a subscriber identification unit of the other terminal device that is the source of the public key, and the common The key is linked and memorized,
Encrypting the common key with the stored public key;
A program that causes the common key encrypted with the public key to be transmitted to the other terminal device that is a transmission source of the public key associated with the public key.

Images