JP2017169184A - Data processing device, data processing system, and program - Google Patents

Abstract

PROBLEM TO BE SOLVED: To make it possible to ensure authenticity of data even in the case of editing signature-added data to which a signature is added.SOLUTION: A data processing device (130) capable of reading signature-added data that includes a set of n (an integer of 2 or more) pieces of data individually acquired from each section of data in time series and parameter information calculated on the basis of each of the acquired n pieces of data, the parameter information satisfying a polynomial expression of predetermined degree and is associated with a security distribution protocol-based signature value calculated for each section includes: a degree acquisition unit (811) for acquiring the predetermined degree; and an editing unit (812) that extracts sets in number corresponding to the predetermined degree acquired by the degree acquisition unit (811), from the n sets included in each section to edit the signature-added data.SELECTED DRAWING: Figure 8

Description

  The present invention relates to a data processing device, a data processing system, and a program.

  Conventionally, a data distribution system that provides a distribution service for distributing time-series data such as moving image data to a terminal or the like is known. In the system, for example, the data processing apparatus can perform data editing (for example, frame processing) corresponding to the needs of the distribution destination (for example, processing capability of the terminal) so that the distribution destination terminal can continuously reproduce the data. Rate change) (see Patent Document 1 below).

  However, the distributed data may include signed data to which a signature for assuring authenticity is added. In such a case, since the authenticity of data cannot be guaranteed when the data processing device performs data editing, the data distribution system distributes data without performing data editing by the data processing device. For this reason, for signed data, there is a problem that a distribution service according to the needs of the distribution destination cannot be provided.

  The present invention has been made in view of the above problems, and an object of the present invention is to ensure the authenticity of data even when data with a signature to which a signature is added is edited.

The data processing apparatus according to each embodiment of the present invention has the following configuration, for example. That is,
A set of n pieces (two or more integers) of data acquired from each section of the time-series data and parameter information satisfying a polynomial of a predetermined degree calculated based on the acquired n pieces of data. A data processing apparatus capable of reading signed data associated with a signature value based on a secret sharing protocol calculated for each section,
Obtaining means for obtaining the predetermined order;
Editing means for editing the signed data by extracting a number of sets according to the predetermined degree acquired by the acquiring means from n sets included in each section. And

  According to each embodiment of the present invention, it is possible to guarantee the authenticity of data even when the signed data to which the signature is added is edited.

It is a figure which shows an example of the system configuration | structure of a data delivery system. It is a figure for demonstrating the protocol of secret sharing. It is a figure for demonstrating the protocol of secret sharing. It is a figure which shows the hardware constitutions of a data generation apparatus and a data processing apparatus. It is a figure which shows the function structure of the data generation apparatus in 1st Embodiment. It is the figure which showed typically the operation | movement of each part of a data generation apparatus. It is a flowchart which shows the flow of secret sharing data generation processing. It is a figure which shows the function structure of the data processor in 1st Embodiment. It is a figure for demonstrating the data stored in the data storage part. It is a flowchart which shows the flow of the verification process in a data processor. It is a flowchart which shows the flow of the delivery process in a data processor. It is a flowchart which shows the flow of the edit process in a data processor. It is the figure which showed the content of the edit process typically. It is a figure which shows an example of the data delivered in a data delivery system. It is a figure which shows an example of the data delivered in a data delivery system. It is a figure which shows an example of the data delivered in a data delivery system. It is a figure which shows an example of the data delivered in a data delivery system. It is a figure which shows an example of the data delivered in a data delivery system. It is a figure which shows an example of the data delivered in a data delivery system. It is a figure which shows the function structure of the data generation apparatus in 2nd Embodiment. It is a figure which shows the function structure of the data processor in 2nd Embodiment. It is a flowchart which shows the flow of the data division process by a data division determination part. It is a figure which shows the function structure of the data generation apparatus in 3rd Embodiment. It is another flowchart which shows the flow of the data division process by a data division determination part. It is a figure which shows another example of the data delivered in a data delivery system. It is a figure which shows another example of the data delivered in a data delivery system. It is a figure which shows another example of the data delivered in a data delivery system. It is a figure which shows another example of the data delivered in a data delivery system. It is a figure which shows another example of the data delivered in a data delivery system. It is a figure which shows another example of the data delivered in a data delivery system.

  Hereinafter, embodiments of the present invention will be described with reference to the accompanying drawings. In the description of the specification and drawings according to each embodiment, components having substantially the same functional configuration are denoted by the same reference numerals, and redundant description is omitted.

[First Embodiment]
<1. Configuration of data distribution system>
First, the overall configuration of a data distribution system to which the data processing apparatus according to the first embodiment is applied will be described. FIG. 1 is a diagram illustrating an example of a system configuration of a data distribution system.

  As illustrated in FIG. 1, the data distribution system 100 includes a data generation device 110, a data generation device 120, and a data processing device 130. In the first embodiment, the data generation device 110, the data generation device 120, and the data processing device 130 are communicably connected via a network 160. Further, the terminal 140 and the portable terminal 150 can be connected to the data processing device 130 via the network 160.

  The data generation device 110 is a device (for example, an imaging device) that generates time-series data (for example, moving image data). A secret shared data generation program is installed in the data generation device 110, and the data generation device 110 functions as the secret shared data generation unit 111 by executing the program.

  The secret sharing data generation unit 111 is an example of a generating unit, generates secret sharing data by associating parameter information based on the secret sharing protocol with the generated time-series data, and transmits the secret sharing data to the data processing device 130. The secret shared data generation unit 111 generates a signature value by adding a signature to the secret information used when the data processing device 130 or the like performs signature verification on the secret shared data, and transmits the signature value to the data processing device 130. Furthermore, the secret sharing data generation unit 111 transmits the order used when generating the secret sharing data to the data processing device 130. In the present embodiment, the data including the secret sharing data, the signature value, and the order transmitted by the data generation device 110 and associated with each other is referred to as “signed data”.

  The data generation device 120 is a device (for example, an imaging device) that generates time-series data (for example, moving image data). The data generation device 120 transmits the generated time series data to the data processing device 130. In the present embodiment, time-series data transmitted by the data generation device 120 is referred to as “signatureless data”.

  The data processing device 130 is a device that processes various data transmitted from the data generation device 110 and the data generation device 120. A verification program, a secret shared data generation program, and a distribution program are installed in the data processing device 130. By executing the program, the data processing device 130 includes a verification unit 131, a secret shared data generation unit 132, It functions as the distribution unit 133.

  The verification unit 131 receives signed data transmitted from the data generation device 110 or unsigned data transmitted from the data generation device 120 and stores the data in the data storage unit 134. In addition, the verification unit 131 performs signature verification on the secret sharing data included in the signed data stored in the data storage unit 134. This is because it is possible to deliver signed data that has been successfully verified (significance can be guaranteed).

  The secret sharing data generation unit 132 generates signed data for unsigned data (time-series data) transmitted from the data generation device 120 and stored in the data storage unit 134, and stores the data in association with unsigned data. Stored in the unit 134. The secret shared data generation unit 132 of the data processing device 130 has the same function as the secret shared data generation unit 111 of the data generation device 110. In this way, by providing the secret sharing data generation unit 132 also in the data processing apparatus 130, the data processing apparatus 130 can distribute signed data.

  The distribution unit 133 generates “basic data” and “edited data” for each signed data stored in the data storage unit 134. The basic data is an example of first data, and is data (including secret sharing data and a signature value) distributed to the terminal 140 in response to a distribution request from the terminal 140. The edited data is an example of second data, and is data (including secret sharing data and signature value) distributed to the mobile terminal 150 in response to a distribution request from the mobile terminal 150. However, it is assumed that the secret sharing data included in the edited data is edited, so that the data amount is reduced as compared with the secret sharing data included in the basic data.

  The distribution unit 133 reads the signed data stored in the data storage unit 134 and generates basic data by using the secret sharing data and the signature value. In addition, the distribution unit 133 reads the signed data stored in the data storage unit 134, edits by deleting a part of the secret sharing data and extracting the other secret sharing data according to the order. Generated data.

  Further, when receiving a distribution request from the terminal 140 or the mobile terminal 150, the distribution unit 133 selects and distributes either basic data or edited data by determining a distribution target.

  The reason why the distribution unit 133 can perform editing as described above is that secret shared data generated based on the secret sharing protocol has a characteristic of high resistance to data loss in signature verification. In other words, the secret sharing data generated based on the secret sharing protocol can guarantee the authenticity of the data even when editing is performed by deleting a part of the secret sharing data and extracting others.

<2. Explanation of secret sharing protocol>
Next, a secret sharing protocol used to generate secret sharing data that is highly resistant to data loss in signature verification will be briefly described with reference to FIGS. 2 and 3 are diagrams for explaining a secret sharing protocol.

(1) Outline In general, a (k-1) -order polynomial can be uniquely determined if there are k independent solutions, and (k-1) -order solutions are (k-1) -order. Cannot be uniquely determined. FIG. 2A uniquely defines a first-order polynomial (y = α ₁ x + α ₀ ) based on two independent solutions ((x ₁ , y ₁ ), (x ₂ , y ₂ )). It shows the state. FIG. 2B shows a second-order polynomial (y) based on three independent solutions ((x ₁ , y ₁ ), (x ₂ , y ₂ ), (x ₃ , y ₃ )). = Α ₂ x ² + α ₁ x + α ₀ ) is uniquely determined.

Further, FIG. 3A shows (k−) based on k independent solutions ((x ₁ , y ₁ ), (x ₂ , y ₂ ),... (X _k , y _k )). 1) A state in which the following polynomial (y = α _k-1 x ^k-1 + α _k-2 x ^k-2 +... Α ₁ x + α ₀ ) is uniquely determined is shown.

The secret sharing protocol uses such a relationship between a polynomial and its solution. As shown in FIG. 3B, when the secret sharing protocol is used, the data generator that generates the secret information converts the generated secret information into the 0th order term (α ₀ ) of the (k−1) th order polynomial. In addition to embedding, a plurality of (k−1) th order polynomial solutions are generated, and each solution is stored separately. Thereby, even if a part of the plurality of solutions leaks, it is possible to prevent the secret information (α ₀ ) from being restored. That is, the secret information (α ₀ ) generated based on the secret sharing protocol has a characteristic that it has a high resistance to the leakage of the solution (secret sharing data).

In addition, as shown in FIG. 3B, according to the secret sharing protocol, if the data user obtains k solutions out of a plurality of solutions from the data generator, the secret information (α ₀ ) Can be restored. This is because the (k−1) th order polynomial can be uniquely determined using k solutions. That is, the secret information generated based on the secret sharing protocol also has a characteristic that it has a high resistance to the loss of the solution (secret sharing data).

  The secret sharing data generation units 111 and 132 according to the first embodiment apply the secret sharing protocol to time-series data, focusing on the characteristic that resistance to loss of solutions (secret sharing data) is high. By doing so, secret sharing data is calculated and signed data is generated.

(2) Application of secret sharing protocol to time-series data The secret sharing data generation units 111 and 132 of the data generation device 110 and the data processing device 130 in the first embodiment perform secret sharing protocol for time-series data. Is applied to calculate secret sharing data, and editable signed data is generated. A specific description will be given with reference to FIG.

The secret sharing data generation units 111 and 132 first obtain n (n is an integer of 2 or more) unit data from time-series data. Here, “unit data” refers to data of a predetermined unit constituting time-series data. For example, when the time-series data is moving image data, each frame corresponds to data of a predetermined unit. Alternatively, a plurality of areas included in each frame can be used as a predetermined unit of data. In addition, when the time-series data includes moving image data and audio data, each frame and the audio data in the section corresponding to the frame can be set as predetermined unit data. In the following, of the n unit data, the i-th unit data is represented as “D _i ” (see the right side of FIG. 3C).

Subsequently, the secret sharing data generation units 111 and 132 generate n solutions of the (k−1) -order polynomial based on the n unit data (D _i ). At this time, a random number value is set as a parameter (α _k−1 , α _k−2 ,... Α ₀ ) of k (k-1) order polynomials (k is an integer greater than or equal to 1 and less than n). Use. In the present embodiment, it is assumed that a hash value is used when substituting n unit data (D _i ) into the variable x. The i-th value among the values of the n variables y calculated by substituting Hash (D _i ) is expressed as parameter information “W _i ”. W _i can be calculated based on the following equation.

このようにして、秘密分散データ生成部１１１、１３２では、ｎ個の単位データから、（ｋ−１）次の多項式（ｙ＝α_ｋ−１ｘ^ｋ−１＋α_ｋ−２ｘ^ｋ−２＋・・・α_１ｘ＋α_０）のｎ個の解（Ｄ_ｉ，Ｗ_ｉ）を算出する。本実施形態において、秘密分散データは、単位データと、該単位データに対応付けられたパラメータ情報との組となる。

In this way, the secret shared data generation units 111 and 132 calculate the (k−1) -order polynomial (y = α _k−1 x ^k−1 + α _k−2 x ^k−2 + from the n unit data. ... Α ₁ x + α ₀ ) n solutions (D _i , W _i ) are calculated. In the present embodiment, the secret sharing data is a set of unit data and parameter information associated with the unit data.

Also, the secret shared data generation units 111 and 132 use (k−1) -order polynomial parameters (α ₀ ) as secret information for guaranteeing the authenticity of the secret shared data, and add a signature to the secret information. Thus, the signature value (S) is calculated. The secret shared data generation units 111 and 132 calculate a signature value (S) by adding a signature to the secret information (α ₀ ) using a Sign algorithm as shown in the following equation.

なお、式２において、ｓｋ_ｃａｍとは、秘密分散データ生成部１１１において生成される署名鍵を指す（なお、秘密分散データ生成部１３２の場合には、例えば、ｓｋ_ｓｅｒｖが署名鍵となる）。

In Equation 2, sk _cam refers to a signature key generated in the secret _shared data generation unit 111 (in the case of the secret shared data generation unit 132, for example, sk _serv is the signature key).

  By associating the secret sharing data generated in this way with the signature value (S), any device that has received the secret sharing data uses the signature value to guarantee the authenticity of the secret sharing data. (See the center of FIG. 3C).

Specifically, the parameter (α ₀ ) calculated based on the k pieces of secret shared data included in the n pieces of secret shared data and the secret information (α ₀ ) calculated based on the signature value (S). And compare. And if both match, the authenticity of secret sharing data can be guaranteed.

Then, the secret shared data generation units 111 and 132 receive signed data including the secret shared data, the signature value (S), and the degree (k) of the polynomial used when calculating the parameter information (W _i ). Generate.

  The signed data generated in this way by the secret sharing data generation units 111 and 132 only needs to have k secret sharing data for signature verification. For this reason, for example, even if the data processing device 130 that has acquired the signed data extracts k secret shared data and performs editing to delete secret shared data other than k, the edited signed data is Still, it is data that can guarantee authenticity.

For the signed data even after the editing, as in the previous signed data editing, and secret information calculated from the k secret sharing data (α _0), secret information, which is calculated from the signature value (S) and (α ₀₎ This is because signature verification can be performed using (see the right side of FIG. 3C).

<3. Hardware configuration of data distribution system>
Next, the hardware configuration of the data generation device 110 and the data processing device 130 that constitute the data distribution system 100 will be described. FIG. 4 is a diagram illustrating a hardware configuration of the data generation device and the data processing device according to the first embodiment.

  As illustrated in FIG. 4A, the data generation device 110 includes a data generation sensor 401 and a CPU (Central Processing Unit) 402. The data generation device 110 includes a ROM (Read Only Memory) 403, a RAM (Random Access Memory) 404, and an I / F (Interface) 405. Note that the hardware constituting the data generation device 110 is connected to each other via a bus 406.

  The data generation sensor 401 is a sensor that generates data. For example, in the case of an imaging apparatus, the data generation sensor 401 is an imaging sensor that converts received light into an electrical signal and generates moving image data. The CPU 402 is a computer that executes various programs (for example, a secret shared data generation program) stored in the ROM 403.

  The ROM 403 stores various programs executed by the CPU 402, and stores other programs and data used when the CPU 402 executes various programs. The RAM 404 provides a work area when the CPU 402 executes various programs.

  The I / F 405 is connected to the network 160 and transmits / receives data to / from the data processing apparatus 130 via the network 160.

  As illustrated in FIG. 4B, the data processing device 130 includes a CPU 411, a ROM 412, a RAM 413, a storage device 414, and an I / F 415. Each hardware constituting the data processing device 130 is connected to each other via a bus 416.

  Note that the hardware configuration of the data processing device 130 is substantially the same as the hardware configuration of the data generation device 110, and therefore only the differences will be described here. The difference from the hardware configuration of the data generation device 110 is that the data generation sensor 401 is not provided and the storage device 414 is provided.

  The storage device 414 stores a verification program, a secret shared data generation program, and a distribution program as programs executed by the CPU 411. In the case of the data processing device 130, the verification program, the secret sharing data generation program, and the distribution program are stored in the storage device 414. On the other hand, the ROM 412 stores other programs used when the CPU 411 executes the verification program, the secret shared data generation program, and the distribution program. In the present embodiment, the data storage unit 134 is realized by the storage device 414.

<4. Functional configuration of data generation device>
Next, a detailed functional configuration of the secret sharing data generation unit 111 realized by the data generation device 110 will be described. FIG. 5 is a diagram illustrating a functional configuration of the data generation device according to the first embodiment.

  As illustrated in FIG. 5, the secret sharing data generation unit 111 includes a data input unit 501, a compression unit 502, a data buffer unit 503, a data counter unit 504, and a signature parameter generation unit 505. The secret sharing data generation unit 111 includes a hash generation unit 506, a parameter information generation unit 507, a stream packet generation unit 508, a signature unit 509, and a data transmission unit 510.

  The data input unit 501 acquires time-series data generated by the data generation sensor 401. The compression unit 502 compresses the time-series data acquired by the data input unit 501 and generates unit data. In the compression unit 502, MPEG, H.264, and so on Unit data is generated by compressing time-series data in an arbitrary compression format such as H.264.

  The data buffer unit 503 temporarily stores the unit data generated by the compression unit 502. The data counter unit 504 counts the number of unit data accumulated in the data buffer unit 503, and notifies the signature parameter generation unit 505 and the signature unit 509 when the predetermined number (n) is reached.

The signature parameter generation unit 505 has a random number generator, and upon receiving notification from the data counter unit 504 that a predetermined number (n) has been counted, the k random numbers generated by the random number generator are parameterized. (Α _k-1 , α _k-2 ,... Α ₀ ). Further, the signature parameter generation unit 505 notifies the parameter information generation unit 507 of the acquired parameters (α _k−1 , α _k−2 ,... Α ₀ ). Furthermore, the signature parameter generation unit 505 notifies the signature unit 509 of the parameter (α ₀ ) as secret information.

The hash generation unit 506 sequentially acquires unit data (D _i ) from the unit data stored in the data buffer unit 503, and calculates a hash value (Hash (D _i )). Note that the hash value of the unit data (D _i ) is calculated by the hash generation unit 506 in order to reduce the processing load on the data generation device 110.

The parameter information generation unit 507 includes the hash value (Hash (D _i )) calculated by the hash generation unit 506 and the parameters (α _k−1 , α _k−2 ,...) Acquired by the signature parameter generation unit 505. α ₀ ). Further, the parameter information generation unit 507 calculates parameter information (W _i ) using Equation 1 based on the acquired hash value and parameter. Further, the parameter information generation unit 507 outputs the degree (k) of the polynomial for calculating the parameter information (W _i ) to the data transmission unit 510.

The stream packet generation unit 508 associates the unit data (D _i ) with the parameter information (W _i ) and acquires secret sharing data. The stream packet generation unit 508 packetizes the acquired secret sharing data (D _i , W _i ) and outputs the packetized data. The packet format for packetizing the secret sharing data is determined by the transmission format. When the transmission format is the network interface format, the packet format is the RTSP format or the UDP format. When the transmission format is the USB interface format, the packet format is an isochronous format.

When the signature unit 509 receives a notification from the data counter unit 504 that the predetermined number (n) has been counted, the signature unit 509 uses the secret information (α ₀ ) output from the signature parameter generation unit 505 to sign the signature value (S ) Is calculated. In the present embodiment, the signature value (S) is calculated using the Sign algorithm shown in Equation 2, but the signature algorithm used for calculating the signature value (S) is not limited to the Sign algorithm. . For example, the RSA algorithm, the RSASSA-PSS algorithm may be used, or the ElGamal algorithm may be used.

The data transmission unit 510 calculates the secret sharing data (D _i , W _i ) packetized in the stream packet generation unit 508, the degree (k) of the polynomial used in the parameter information generation unit 507, and the signature parameter generation unit 505 Sent signature value (S). The data transmission unit 510 performs streaming transmission of the packetized secret sharing data (D _i , W _i ) in a connectionless manner, and transmits the signature value (S) and the order (k) in a connection manner.

  FIG. 6 is a diagram schematically illustrating the operation of each unit (data buffer unit 503, hash generation unit 506, parameter information generation unit 507, and signature unit 509) of the data generation apparatus according to the first embodiment. In the example of FIG. 6, the predetermined number n is “10”.

As illustrated in FIG. 6, when the hash generation unit 506 acquires the unit data (D ₁ ) accumulated in the data buffer unit 503, the hash generation unit 506 calculates a hash value (Hash (D ₁ )).

Further, the parameter information generation unit 507 has the hash value (Hash (D ₁ )) calculated by the hash generation unit 506 and the parameters (α ₉ , α ₈ ,... Α ₀ output from the signature parameter generation unit 505. ) And get. Further, the parameter information generation unit 507 calculates and outputs parameter information (W ₁ ) based on the hash value (Hash (D ₁ )) and the parameters (α ₉ , α ₈ ,... Α ₀ ).

Similarly, other unit data (D ₂ , D ₃ ,... D ₁₀ ) stored in the data buffer unit 503 are also processed, so that the parameter information generation unit 507 receives parameter information (W ₂ , W ₃ ,... W ₁₀ ) are output.

Unit data (D ₁ , D ₂ ,... D ₁₀ ) accumulated in the data buffer unit 503, and parameter information (W ₁ , W ₂ ,... W ₁₀ ) output from the parameter information generation unit 507 Are associated by the stream packet generation unit 508. Thereby, the stream packet generation unit 508 acquires secret sharing data ((D ₁ , W ₁ ), (D ₂ , W ₂ ),... (D ₁₀ , W ₁₀ )).

  The parameter information generation unit 507 also outputs the degree (k) of the polynomial used when calculating the parameter information.

The signature unit 509 calculates and outputs a signature value (S) using the secret information (α ₀ ) output from the signature parameter generation unit 505.

  In this way, by operating each unit of the secret shared data generation unit 111, the secret shared data generation unit 111 outputs signed data (secret shared data, order, signature value) based on the generated time-series data. can do.

<5. Processing by Secret Sharing Data Generation Unit>
Next, the flow of secret shared data generation processing by the secret shared data generation unit 111 will be described. FIG. 7 is a flowchart showing the flow of secret shared data generation processing. When generation of time-series data by the data generation sensor 401 is started, the secret sharing data generation unit 111 executes the flowchart shown in FIG.

  In step S <b> 701, the data input unit 501 acquires time-series data generated by the data generation sensor 401. Further, the compression unit 502 compresses the acquired time-series data to generate unit data, and stores the unit data in the data buffer unit 503.

In step S702, the hash generation unit 506 acquires unit data (D _i ) from the data buffer unit 503, and calculates a hash value (Hash (D _i )).

  In step S <b> 703, the data counter unit 504 determines whether a predetermined number (n) of unit data is accumulated in the data buffer unit 503. If the predetermined number (n) of unit data is not accumulated in step S703, it is determined that the hash generation unit 506 has not calculated a hash value for the predetermined number (n) of unit data, and the process returns to step S701. . On the other hand, if the predetermined number (n) of unit data is accumulated in step S703, it is determined that the hash generation unit 506 has calculated the hash value for the predetermined number (n) of unit data, and the process proceeds to step S704.

In step S704, the signature parameter generation unit 505 acquires the _k random values generated by the random number generator as parameters (α _k−1 , α _k−2 ,... Α ₀ ).

In step S705, the parameter information generation unit 507 determines a predetermined number (n) of hash values (Hash (D _i )), k parameters (α _k−1 , α _k−2 ,... Α ₀ ). To get. Further, the parameter information generation unit 507 calculates n parameter information (W _i ) using the acquired predetermined number (n) of hash values and k parameters. Further, the parameter information generation unit 507 outputs the degree (k) of the polynomial used when n pieces of parameter information (W _i ) are calculated.

In step S706, the signature unit 509 acquires the parameter (α ₀ ) acquired by the signature parameter generation unit 505 as secret information, and adds a signature to the acquired secret information (α ₀ ). As a result, the signature unit 509 outputs a signature value (S) based on the acquired secret information (α ₀ ).

In step S <b> 707, the stream packet generation unit 508 associates the unit data (D _i ) accumulated in the data buffer unit 503 with the parameter information (W _i ) output from the parameter information generation unit 507, so that the secret sharing data To get. Further, the stream packet generation unit 508 packetizes the acquired secret sharing data and outputs it. Further, the data transmission unit 510 transmits the secret sharing data output from the parameter information generation unit 507 to the data processing device 130 via the network 160.

  In step S708, the data transmission unit 510 sends the signature value (S) output from the signature unit 509 and the order (k) output from the parameter information generation unit 507 to the data processing device 130 via the network 160. Send.

  In step S709, the data input unit 501 determines whether to end the secret shared data generation process. If the input of time-series data generated by the data generation sensor 401 continues, the process returns to step S701 without terminating the secret shared data generation process. On the other hand, if it is determined that the input of time-series data has stopped, the secret shared data generation process is terminated.

<6. Functional configuration of data processing apparatus>
Next, detailed functional configurations of the verification unit 131 and the distribution unit 133 realized by the data processing device 130 will be described (the function of the secret shared data generation unit 132 is the same as the function of the secret shared data generation unit 111). Therefore, the description is omitted here). FIG. 8 is a diagram illustrating a functional configuration of the data processing apparatus.

(1) Functional Configuration of Verification Unit As illustrated in FIG. 8, the verification unit 131 includes a data reception unit 801, a storage processing unit 802, a signature value calculation unit 803, and a signature value verification unit 804.

  The data receiving unit 801 receives signed data (secret sharing data, order, signature value) transmitted from the data generation device 110. The data receiving unit 801 receives unsigned data (time-series data) transmitted from the data generation device 120.

  The storage processing unit 802 stores the signed data (secret sharing data, degree, signature value) and unsigned data (time-series data) received by the data receiving unit 801 in the data storage unit 134.

  When the storage processing unit 802 newly stores signed data in the data storage unit 134, the signature value calculation unit 803 determines whether or not there are k or more secret shared data included in each section of the signed data. Signature verification is performed. The signature value calculation unit 803 determines that the signature verification has failed when it is determined that the number of secret shared data included in each section is less than k.

When the signature value calculation unit 803 determines that there are k or more pieces of secret sharing data in each section, the signature value calculation unit 803 reads k pieces of secret sharing data for each section from the data storage unit 134. The signature value calculation unit 803 calculates secret information (α ₀ ) using the following equation based on the read k pieces of secret shared data.

署名値検証部８０４は、データ格納部１３４に格納された署名値（Ｓ）を読み出し、ｖｒｆｙアルゴリズム（下式）を用いて、検証鍵ｖｋ_ｃａｍに基づき秘密情報（α_０）を算出する。ただし、データ格納部１３４に格納された署名値（Ｓ）が、秘密分散データ生成部１３２により生成された場合にあっては、下式において、検証鍵ｖｋ_ｃａｍの代わりに、ｖｋ_ｓｅｒｖが用いられることになる。

The signature value verification unit 804 reads the signature value (S) stored in the data storage unit 134 and calculates secret information (α ₀ ) based on the verification key vk _cam using the vrfy algorithm (the following formula). However, when the signature value (S) stored in the data storage unit 134 is generated by the secret sharing data generation unit 132, vk _serv is used instead of the verification key vk _cam in the following equation. It will be.

なお、署名値検証部８０４は、署名値演算部８０３において算出された秘密情報（α_０）と、署名値（Ｓ）に基づいてｖｒｆｙアルゴリズムを用いて算出した秘密情報（α_０）とを比較することで署名検証を行う。比較の結果、両者が一致していれば、署名値検証部８０４では、署名検証に成功したと判定する。一方、両者が一致していなければ、署名値検証部８０４では、署名検証に失敗したと判定する。

Note that the signature value verification unit 804 compares the secret information calculated in the signature value calculating section 803 (alpha _0), the signature value and the secret information (alpha ₀₎ was calculated using the vrfy algorithm based on (S) To verify the signature. As a result of the comparison, if both match, the signature value verification unit 804 determines that the signature verification is successful. On the other hand, if the two do not match, the signature value verification unit 804 determines that signature verification has failed.

  Note that the result of signature verification by the signature value calculation unit 803 or the signature value verification unit 804 is stored in the data storage unit 134 in association with signed data.

(2) Functional Configuration of Distribution Unit As illustrated in FIG. 8, the distribution unit 133 includes a data generation unit 810, a distribution request reception unit 820, and a data distribution unit 830.

  The data generation unit 810 further includes an order acquisition unit 811 and an editing unit 812. The order acquisition unit 811 is an example of an acquisition unit, and when the signed data is newly stored in the data storage unit 134, acquires the order (k) included in the signed data.

  The editing unit 812 is an example of an editing unit and a storage unit, reads secret shared data and signature values included in signed data newly stored in the data storage unit 134, generates basic data, and generates a data storage unit 134. To store. In addition, the editing unit 812 reads the secret sharing data and the signature value included in the signed data newly stored in the data storage unit 134, generates edited data based on the order (k), and generates the data storage unit 134.

  The distribution request receiving unit 820 receives a distribution request from the terminal 140 or the mobile terminal 150. The distribution request receiving unit 820 determines a distribution target based on the received distribution request.

  The data distribution unit 830 is an example of a distribution unit, and selects either basic data or edited data based on the distribution target determined by the distribution request reception unit 820, and reads the selected data from the data storage unit 134. And deliver.

<7. Explanation of data stored in data storage unit>
Next, data stored in the data storage unit 134 will be described. FIG. 9 is a diagram illustrating an example of data stored in the data storage unit.

  Among these, FIG. 9A shows signed data storage information in which signed data transmitted from the data generation device 110 is stored. As shown in FIG. 9A, the signed data storage information 910 includes “signed data”, “signature verification result”, “basic data”, and “edited data” as information items.

  The “signed data” stores signed data (secret sharing data, order, signature value) transmitted from the data generation device 110 and received by the data receiving unit 801.

  In the “signature verification result”, the result of the signature verification performed by the signature value calculation unit 803 and the signature value verification unit 804 on the signed data received by the data reception unit 801 is stored.

  In the “basic data”, basic data generated by the editing unit 812 using the secret sharing data and the signature value for the signed data stored in the data storage unit 134 is stored.

  In the “edited data”, the editing unit 812 deletes a part of the secret sharing data according to the degree of the signed data stored in the data storage unit 134 and extracts the other secret sharing data. The edited data generated by performing is stored.

  FIG. 9B shows unsigned data storage information in which unsigned data transmitted from the data generation device 120 is stored. As shown in FIG. 9B, the unsigned data storage information 920 includes “unsigned data”, “signed data”, “basic data”, and “edited data” as information items.

  “Unsigned data” stores unsigned data (time-series data) transmitted from the data generation device 120 and received by the data receiving unit 801.

  The “signed data” stores signed data (secret shared data, order, signature value) generated by the secret shared data generation unit 132 reading the unsigned data and executing the secret shared data generation process. Is done.

  In the “basic data”, basic data generated by the editing unit 812 using the secret sharing data and the signature value for the signed data stored in the data storage unit 134 is stored.

  In the “edited data”, the editing unit 812 deletes a part of the secret sharing data according to the degree of the signed data stored in the data storage unit 134 and extracts the other secret sharing data. The edited data generated by performing is stored.

<8. Processing executed by each unit of data processing device>
Next, processing executed by each unit of the data processing device 130 (verification processing executed by the verification unit 131, distribution processing executed by the distribution unit 133) will be described. Note that the secret shared data generation process executed by the secret shared data generation unit 132 is the same as the secret shared data generation process of FIG.

(1) Verification Process Performed by Verification Unit 131 FIG. 10 is a flowchart showing the flow of the verification process. The data processing device 130 is connected to the data generation device 110 and the data generation device 120 in a communicable manner, whereby the flowchart shown in FIG. 10 is executed.

  In step S <b> 1001, the data reception unit 801 determines whether data with a signature transmitted from the data generation device 110 has been received. If it is determined in step S1001 that signed data has not been received, the process proceeds to step S1002.

  In step S <b> 1002, the data receiving unit 801 determines whether or not unsigned data transmitted from the data generating device 120 has been received. If it is determined in step S1002 that unsigned data has been received, the process proceeds to step S1003.

  In step S1003, the storage processing unit 802 stores the unsigned data (time-series data) received by the data receiving unit 801 in the unsigned data storage information 920 of the data storage unit 134, and then proceeds to step S1012. On the other hand, if it is determined in step S1002 that unsigned data has not been received, the process directly proceeds to step S1012.

  If it is determined in step S1001 that signed data has been received, the process advances to step S1004. In step S <b> 1004, the storage processing unit 802 stores the signed data (secret sharing data, degree, signature value) received by the data receiving unit 801 in the signed data storage information 910 of the data storage unit 134.

  In step S1005, the data reception unit 801 determines whether a predetermined time has elapsed. If it is determined in step S1005 that the predetermined time has not elapsed, the process waits until the predetermined time elapses.

  On the other hand, if it is determined in step S1005 that the predetermined time has elapsed, the process proceeds to step S1006. In step S1006, the signature value calculation unit 803 determines whether or not k or more pieces of secret sharing data are included in each section of the signed data stored in the data storage unit 134.

  If it is determined in step S1006 that k or more pieces of secret sharing data are not included, the process proceeds to step S1010. In step S1010, the signature value calculation unit 803 determines that the signature verification has failed, and stores the signature verification result in the signed data storage information 910.

On the other hand, if it is determined in step S1006 that k or more pieces of secret sharing data are included, the process proceeds to step S1007. In step S1007, the signature value calculation unit 803 reads k pieces of secret shared data for each section from the data storage unit 134, and calculates secret information (α ₀ ) using Equation 3.

In step S1008, the signature value verification unit 804 reads the signature value (S) stored in the data storage unit 134 for each section, and calculates secret information (α ₀ ) based on the verification key using the vrfy algorithm.

In step S1009, the signature value verification unit 804, for each section, the secret information (α ₀ ) calculated by the signature value calculation unit 803 and the secret information calculated using the vrfy algorithm based on the signature value (S) ( (α ₀ ). As a result of comparison, if the two do not match, the process proceeds to step S1010. In step S1010, the signature value calculation unit 803 determines that the signature verification has failed, and stores the signature verification result in the signed data storage information 910.

  On the other hand, if the result of comparison in step S1009 is that they match, the process proceeds to step S1011. In step S1011, the signature value calculation unit 803 determines that the signature verification is successful, and stores the signature verification result in the signed data storage information 910.

  In step S1012, the data reception unit 801 determines whether or not communication with the data generation device 110 and the data generation device 120 is continued. If it is determined that communication is continued, the process returns to step S1001. . On the other hand, if it is determined that the communication has been disconnected, the signature value calculation unit 803 or the signature value verification unit 804 applies signatures to unprocessed signed data among the signed data already stored in the data storage unit 134. After performing the verification, the verification process is terminated.

(2) Distribution Processing by Distribution Unit 133 FIG. 11 is a flowchart showing the flow of distribution processing. When the data processing device 130 starts the distribution service, the flowchart shown in FIG. 11 is executed.

  In step S <b> 1101, the data generation unit 810 determines whether the signed data is newly stored in the data storage unit 134 by the storage processing unit 802 or the secret sharing data generation unit 132. If it is determined that the signed data is not newly stored in the data storage unit 134, the process advances to step S1104. Further, the signed data is newly stored in the data storage unit 134 by the storage processing unit 802, but the signature verification result for the signed data is “failed” by the signature value calculation unit 803 or the signature value verification unit 804. If it is determined that there is, the process proceeds to step S1104.

  On the other hand, the signed data is newly stored in the data storage unit 134 by the storage processing unit 802, and the signature verification result for the signed data is “successful” by the signature value calculation unit 803 or the signature value verification unit 804. If it is determined that there is, the process proceeds to step S1102. If the secret shared data generation unit 132 determines that the signed data is newly stored in the data storage unit 134, the process advances to step S1102.

  In step S1102, the order acquisition unit 811 refers to the signed data storage information 910 or the unsigned data storage information 920, and acquires the order (k) included in the signed data.

  In step S1103, the editing unit 812 performs editing processing on the signed data, and generates basic data and edited data. Details of the editing process by the editing unit 812 will be described later.

  In step S <b> 1104, the distribution request receiving unit 820 determines whether a distribution request has been received from the terminal 140 or the portable terminal 150. If it is determined in step S1104 that a distribution request has not been received, the process advances to step S1109.

  On the other hand, if it is determined in step S1104 that a distribution request has been received, the process proceeds to step S1105. In step S1105, the distribution request receiving unit 820 determines the distribution target by identifying the request source of the distribution request.

  In step S1106, the data distribution unit 830 determines whether to distribute basic data to the distribution target determined in step S1105. If it is determined that the distribution target is the terminal 140 (for example, the processing capability is equal to or greater than a predetermined value), it is determined that basic data is to be distributed, and the process proceeds to step S1108.

  In step S1108, the data distribution unit 830 reads basic data from the data storage unit 134 and distributes the basic data to the terminal 140 that is the distribution target. However, if the basic data is not generated because the result of signature verification is “failure”, the distribution is not performed.

  On the other hand, if it is determined in step S1105 that the distribution target is the mobile terminal 150 (for example, the processing capability is less than a predetermined value), it is determined in step S1106 that the edited data is distributed, and the process proceeds to step S1107. move on.

  In step S1107, the data distribution unit 830 reads the edited data from the data storage unit 134 and distributes the edited data to the mobile terminal 150 that is the distribution target. However, if the edited data is not generated because the signature verification result is “failure”, the distribution is not performed.

  In step S1109, the distribution unit 133 determines whether to continue the distribution service. If it is determined to continue, the distribution unit 133 returns to step S1101. On the other hand, if it is determined not to continue, the distribution process ends.

(3) Details of Editing Process by Editing Unit 812 Next, details of the editing process (step S1103) by the editing unit 812 will be described. FIG. 12 is a flowchart showing the flow of the editing process. In step S <b> 1201, the editing unit 812 reads the newly stored signed data from the data storage unit 134.

  In step S <b> 1202, the editing unit 812 generates basic data based on the secret sharing data and the signature value included in the read signed data, and stores the basic data in the data storage unit 134.

  In step S1203, the editing unit 812 reads the regulation information corresponding to the degree (k). “Regulation information” refers to the secret sharing data included in each section of the signed data. It is a table which specified extraction object and deletion object.

  In step S1204, the editing unit 812 deletes a part of the secret sharing data in each section of the signed data and performs editing to extract other secret sharing data based on the regulation information read in step S1203. Generate edited data with.

  In step S1205, the editing unit 812 stores the edited data generated in step S1204 in association with the basic data stored in step S1202.

FIG. 13 is a diagram showing an overview of editing processing by the editing unit 812. The example of FIG. 13 illustrates a case where “S-Data 101” is read as signed data. As shown in FIG. 13, the signed data “S-Data101” includes the degree (k101) and is formed from m sections. Further, each section of the signed data “S-Data 101” includes a predetermined number (n) of secret sharing data (for example, (D _1-1 , W _1-1 ) in the case of the first section) to ( D1 _-n , W1 _-n )). Further, each section of the signed data “S-Data 101” includes a signature value calculated for each section (for example, S _{1 in} the case of the _first section), and the secret sharing data included in each section. Is associated.

  The editing unit 812 generates basic data “S-Data101H” based on the secret sharing data and the signature value included in the read signed data “S-Data101”.

  In addition, the editing unit 812 reads the definition information 1300 corresponding to the degree (k101), and in each section of the signed data “S-Data101”, the secret sharing data having a number corresponding to the number in which “true” is specified. To extract. Further, in each section of the signed data “S-Data 101”, the secret sharing data having a number corresponding to the number for which “false” is defined is deleted.

  Thereby, the editing unit 812 generates edited data “S-Data 101L”. In the example of FIG. 13, by reading the regulation information 1300 when the order = “3”, three pieces of secret sharing data are extracted in each section, and the editing for deleting the remaining secret sharing data is performed. It shows how it was done.

<9. Application example>
Next, an example of data distributed in the data distribution system 100 will be described.

(1) First Application Example FIG. 14 is a diagram illustrating an example of data distributed in the data distribution system. The example of FIG. 14 shows a case where time-series data is moving image data and unit data is a frame.

  As shown in FIG. 14, the data processing device 130 distributes basic data to the terminal 140 with high processing capability, and distributes edited data to the mobile terminal 150 with low processing capability.

  Here, when the unit data is a frame, the editing unit 812 deletes a part of n secret sharing data generated based on the frame and extracts k secret sharing data in each section. Then, the edited data is generated. At this time, the editing unit 812 can generate edited data for a low rate by thinning out n pieces of secret sharing data equally.

  As a result, as shown in FIG. 14, the data processing apparatus 130 can distribute low-rate edited data to the mobile terminal 150.

(2) Second Application Example FIG. 15 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 15 shows a case where time-series data is moving image data and unit data is a frame.

  As shown in FIG. 15, the data processing device 130 delivers basic data to a terminal 140 that is authorized to view moving image data, and to a terminal 1400 that is not authorized to view moving image data. Distribute edited data.

  Here, when the unit data is a frame, the editing unit 812 deletes a part of n secret sharing data generated based on the frame and extracts k secret sharing data in each section. Then, the edited data is generated. At this time, by extracting k pieces of secret sharing data based on a predetermined frame from n pieces of secret sharing data, the editing unit 812 can generate edited data including a digest video.

  As a result, as shown in FIG. 15, the data processing apparatus 130 can distribute the edited data including the digest video to the terminal 1400.

(3) Third Application Example FIG. 16 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 16 shows a case where time-series data is moving image data and unit data is a frame. However, FIG. 16 shows a case where one image is formed by a plurality of frames.

  As shown in FIG. 16, the data processing device 130 distributes basic data to the terminal 140 with high processing capability, and distributes edited data to the portable terminal 150 with low processing capability.

  Here, when the unit data is a frame and one image is formed of a plurality of frames, the editing unit 812 deletes a predetermined frame from each image, and k pieces of n pieces of secret sharing data are deleted. Edited secret data is extracted to generate edited data. In FIG. 16, the shaded frame indicates a frame deleted by the editing unit 812. As a result, the editing unit 812 can generate edited data maintaining the frame rate.

  As a result, as shown in FIG. 16, the data processing apparatus 130 can distribute edited data having the same frame rate as the terminal 140 to the mobile terminal 150.

(4) Fourth Application Example FIG. 17 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 17 shows a case where time-series data is moving image data and unit data is each region in one frame.

  As shown in FIG. 17, the data processing device 130 distributes basic data to the terminal 140 with high processing capability, and distributes edited data to the mobile terminal 150 with low processing capability.

  Here, when the unit data is each area of the frame, the editing unit 812 deletes the secret shared data corresponding to the predetermined area in each frame, and obtains k secret shared data from the n secret shared data. Extracted data is generated by extraction. As a result, the editing unit 812 can generate edited data including a black image with a small amount of data.

  As a result, as shown in FIG. 17, the data processing apparatus 130 can distribute edited data including a black image to the mobile terminal 150.

(5) Fifth Application Example FIG. 18 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 18 shows a case where the time-series data includes moving image data and audio data, and the unit data is a frame of moving image data and audio data of a section corresponding to the frame.

  As shown in FIG. 18, the data processing device 130 distributes basic data to the terminal 140 with high processing capability, and distributes edited data to the mobile terminal 150 with low processing capability.

  Here, when the unit data is a frame of moving image data and audio data of a section corresponding to the frame, the editing unit 812 deletes secret shared data corresponding to the audio data and extracts k pieces of secret shared data. By doing so, edited data can be generated. As a result, the editing unit 812 can generate edited data including moving image data from which audio data has been deleted.

  As a result, as shown in FIG. 18, the data processing device 130 can distribute edited data including moving image data from which audio data has been deleted to the mobile terminal 150.

  If the unit data is audio data for each sound range of the frame of moving image data and the section corresponding to the frame, the editing unit 812 deletes secret sharing data corresponding to the sound data of a predetermined sound range. By doing so, edited data can be generated. Thereby, the editing unit 812 can generate edited data including, for example, audio data and moving image data from which a high frequency range is deleted.

  As a result, the data processing device 130 can distribute edited data including audio data and moving image data from which the predetermined sound range has been deleted to the mobile terminal 150.

(6) Sixth Application Example FIG. 19 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 19 shows a case where time-series data is moving image data and unit data is a frame.

  As shown in FIG. 19, the data processing device 130 distributes basic data to the terminal 140 with high processing capability, and distributes edited data to the mobile terminal 150 with low processing capability.

  Here, when the unit data is a frame, the editing unit 812 deletes a part of n secret sharing data generated based on the frame and extracts k secret sharing data in each section. Then, the edited data is generated. At this time, the editing unit 812 extracts k secret sharing data as a snapshot image.

  As a result, as shown in FIG. 19, the data processing apparatus 130 can distribute the snapshot image to the mobile terminal 150.

<10. Summary>
As is clear from the above description, in the data distribution system to which the data processing apparatus according to this embodiment is applied,
The secret sharing data generation unit acquires n unit data from each section of the time-series data, and includes k random numbers based on the acquired n unit data (k−1). Parameter information that satisfies the following polynomial is calculated. Further, the secret shared data generation unit generates signed data including a pair of unit data and parameter information (secret shared data), a signature value, and a degree (k) generated by the secret shared data generation unit. To do.
The data storage unit stores the signed data generated by the secret sharing data generation unit in a readable manner.
In editing the signed data stored in the data storage unit, the order acquisition unit acquires the order included in the signed data.
The editing unit generates basic data using n pieces of secret sharing data and signature values included in each section of signed data. The editing unit edits the signed data by extracting the number of secret shared data corresponding to the order from the n secret shared data included in each section of the signed data, and generates edited data. .

  Thus, in the present embodiment, the signed data generated using the secret sharing protocol is edited based on the order. Thus, according to the present embodiment, it is possible to guarantee the authenticity of the data even when the signed data with the signature added is edited.

In the data distribution system to which the data processing apparatus according to the present embodiment is applied,
The distribution request receiving unit determines a distribution target based on the distribution request.
The data distribution unit selects and distributes either basic data or edited data according to the distribution target.

  As a result, according to the present embodiment, it is possible to provide a distribution service according to the needs of the distribution destination for signed data.

[Second Embodiment]
In the first embodiment, the case has been described in which the secret sharing data generation units 111 and 132 perform processing with a predetermined unit being fixed when generating unit data. On the other hand, in 2nd Embodiment, the classification | category of the unit data produced | generated from time series data is changed by switching a predetermined unit according to a delivery request | requirement. Hereinafter, the second embodiment will be described focusing on differences from the first embodiment.

<1. Functional configuration of data generation device>
First, a detailed functional configuration of the secret sharing data generation unit 111 realized by the data generation device 110 according to the second embodiment will be described. FIG. 20 is a diagram illustrating a functional configuration of the data generation device according to the second embodiment. In FIG. 20, the same components as those in FIG. The difference from FIG. 5 is that the functional configuration shown in FIG. 20 includes a data partition setting unit 2001 and a data partition control unit 2002.

The data partition setting unit 2001 sets a data partition in the data partition control unit 2002 based on the instruction regarding the data partition transmitted from the data processing device 130. In the present embodiment, the instruction regarding the data classification transmitted from the data processing device 130 includes, for example, the following instruction.
・ Instruction to divide time-series data so that the frame becomes unit data ・ Instruction to divide time-series data so that multiple areas included in the frame become unit data ・ Frame and the section corresponding to the frame The instruction data division control unit 2002 for dividing the time series data so that the audio data becomes unit data, respectively, based on the data division set by the data division setting unit 2001. The data division control unit 2002 inputs the divided time series data to the compression unit 502. Note that the compression unit 502 compresses the time-series data segmented by the data segmentation control unit 2002 to generate unit data.

<2. Functional configuration of data processing apparatus>
Next, a functional configuration of the data processing device 130 in the second embodiment will be described. FIG. 21 is a diagram illustrating a functional configuration of the data processing device according to the second embodiment. In FIG. 21, the same components as those in FIG. The difference from FIG. 21 is that the functional configuration shown in FIG.

  The data division determination unit 2101 is an example of a determination unit, and the distribution request reception unit 820 relates to the data division to the secret sharing data generation unit 111 or 132 based on the distribution request received from the terminal 140 or the portable terminal 150. Give instructions.

  For example, in the data classification determination unit 2101, when the request source of the distribution request is the mobile terminal 150 and it is determined to perform distribution at a low rate, the time-series data is classified so that the frame becomes unit data. The instructions are given.

  In addition, in the data classification determination unit 2101, for example, even when it is determined to distribute the digest video, the data classification determination unit 2101 gives an instruction to classify the time series data so that the frame becomes unit data.

  In addition, in the data classification determination unit 2101, for example, even when a distribution request is received for moving image data in which one image is formed by a plurality of frames, the time series data is set so that the frame becomes unit data. Give instructions to classify.

  Further, the data classification determination unit 2101 gives an instruction to classify the time series data so that the frame becomes unit data even when a snapshot distribution request is received.

  On the other hand, in the data classification determination unit 2101, for example, when it is determined to distribute with a reduced amount of communication by painting a partial area of the frame, the time is set so that each area of the frame becomes unit data. An instruction is given to classify the series data.

  Further, when the data classification determining unit 2101 determines, for example, that only the moving image data is distributed without distributing the audio data, the frame of the moving image data and the audio data in the section corresponding to the frame are unit data. An instruction is given to classify the time series data so that

  FIG. 22 is a flowchart showing the flow of data classification processing by the data classification determination unit. When the data processing apparatus 130 starts the distribution service, the flowchart shown in FIG. 22 is executed.

  In step S2201, the data classification determination unit 2101 determines whether a distribution request that requires a data classification change is received based on the content of the distribution request received by the distribution request reception unit 820.

  If it is determined that a distribution request that requires a data classification change has not been received, the data classification determination unit 2101 waits until a distribution request that requires a data classification change is received. On the other hand, if a distribution request that requires data segment change is received, the data segment determination unit 2101 proceeds to step S2202.

  The distribution request that needs to change the data classification is, for example, a case in which a distribution request that allows a part of the frame to be painted black is received in a state where the frame is set as unit data. It is done. Another example is a case where a distribution request for only moving image data is received in a state where a frame is set as unit data.

  In step S2202, the data segment determination unit 2101 determines a data segment based on the content of the distribution request.

  In step S2203, the data partition determination unit 2101 determines the setting destination of the determined data partition. When the target data to be distributed is already stored in the data storage unit 134 of the data processing device 130, the data partition determination unit 2101 determines that the determined data partition setting destination is the secret sharing data of the data processing device 130. The generation unit 132 is determined. On the other hand, if the target data that is the target of the distribution request is not stored in the data storage unit 134 of the data processing device 130, the data segment determination unit 2101 determines that the determined data segment setting destination is the secret sharing of the data generation device 110. The data generation unit 111 is determined.

  In step S2204, the data segment determination unit 2101 transmits information indicating the data segment determined in step S2202 to the setting destination determined in step S2203.

  In step S2205, the data segment determination unit 2101 determines whether to end the data segment determination process. When the distribution unit 133 continues the distribution service, the data segment determination unit 2101 does not end the data segment determination process and returns to step S2201.

  On the other hand, when the distribution unit 133 does not continue the distribution service, the data classification determination unit 2101 ends the data classification determination process.

<3. Summary>
As is clear from the above description, in the data distribution system to which the data processing apparatus according to this embodiment is applied, the unit data generated from the time-series data is classified by switching the predetermined unit according to the distribution request. change.

  As a result, according to the present embodiment, it is possible to distribute edited data edited by an editing method according to a distribution request.

[Third Embodiment]
In the second embodiment, the case has been described in which the unit data generated from the time-series data is changed by switching the predetermined unit according to the distribution request. On the other hand, in the third embodiment, by switching a predetermined unit according to a distribution request, the time-series data division is changed and the size of the divided time-series data is changed. Hereinafter, the third embodiment will be described focusing on differences from the second embodiment.

<1. Functional configuration of data generation device>
First, a detailed functional configuration of the secret sharing data generation unit 111 realized by the data generation device 110 according to the third embodiment will be described. FIG. 23 is a diagram illustrating a functional configuration of the data generation device according to the third embodiment. In FIG. 23, the same components as those in FIG. The difference from FIG. 20 is that the functional configuration shown in FIG. 23 includes a size changing unit 2301.

  In FIG. 23, the data partition setting unit 2001 receives an instruction regarding the data size from the data processing device 130 in addition to the command regarding the data partition, and sets them in the data partition control unit 2002 and the size changing unit 2301, respectively. To do.

  The size changing unit 2301 changes the size of the time-series data divided by the data division control unit 2002 based on the data size set by the data division setting unit 2001. The size changing unit 2301 inputs time-series data whose size has been changed to the compression unit 502. Note that the compression unit 502 generates unit data by compressing time-series data that has been classified by the data classification control unit 2002 and whose size has been changed by the size changing unit 2301.

<2. Data classification determination processing by the data classification determination unit>
Next, the flow of data segment determination processing by the data segment determination unit 2101 of the data processing apparatus 130 in the third embodiment will be described. FIG. 24 is a flowchart showing the flow of data classification processing by the data classification determination unit. The difference from the flowchart shown in FIG. 22 is Steps S2401 to S2404.

  In step S2401, the data classification determination unit 2101 determines whether a distribution request that requires a change in data classification and data size has been received based on the content of the distribution request received by the distribution request reception unit 820.

  If it is determined that a distribution request that requires a change in data classification and data size has not been received, the data classification determination unit 2101 waits until a distribution request that requires a change in data classification and data size is received. On the other hand, if a distribution request that requires a change in data classification and data size is received, the data classification determination unit 2101 proceeds to step S2402.

  A distribution request that requires a change in data classification and data size is a distribution request that requires a change in data classification, and even if the data classification is changed, it still exceeds the predetermined amount of communication. Delivery request that needs to be changed.

  In step S2402, the data segment determination unit 2101 determines the data segment and the data size based on the content of the distribution request.

  In step S2403, the data classification determination unit 2101 determines the setting destination of the determined data classification. When the target data that is the target of the distribution request is already stored in the data storage unit 134 of the data processing device 130, the data partition determination unit 2101 determines that the determined data partition and data size setting destination is that of the data processing device 130. The secret sharing data generation unit 132 is determined. On the other hand, when the data to be distributed is not stored in the data storage unit 134 of the data processing device 130, the data segment determination unit 2101 determines that the determined data segment and the data size setting destination are those of the data generation device 110. The secret sharing data generation unit 111 is determined.

  In step S2204, the data segment determination unit 2101 transmits information indicating the data segment and data size determined in step S2202 to the setting destination determined in step S2203.

<3. Application example>
Next, an example of data distributed in the data distribution system 100 will be described. The first to sixth application examples described below correspond to the first to sixth application examples described in the first embodiment (FIGS. 14 to 19). For this reason, below, it demonstrates centering around difference with the 1st-6th application example demonstrated in the said 1st Embodiment.

(1) First Application Example FIG. 25 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 25 shows a case where time-series data is moving image data, a frame is set as unit data, and an instruction to reduce the data size is given.

  As illustrated in FIG. 25, the data generation device 110 transmits signed data generated based on a frame with a reduced data size to the data processing device 130. As a result, the data processing apparatus 130 can distribute the edited data at a low rate with the data size of one frame reduced to the mobile terminal 150.

(2) Second Application Example FIG. 26 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 26 shows a case where time-series data is moving image data, a frame is set as unit data, and an instruction to reduce the data size is given.

  As shown in FIG. 26, the data generation device 110 transmits signed data generated based on a frame with a reduced data size to the data processing device 130. As a result, the data processing apparatus 130 can distribute edited data including a digest video in which the data size of one frame is reduced to the mobile terminal 150.

(3) Third Application Example FIG. 27 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 27 shows a case where time-series data is moving image data, a frame is set as unit data, and an instruction to reduce the data size is given. However, FIG. 27 shows a case where one image is formed by a plurality of frames.

  As illustrated in FIG. 27, the data generation device 110 transmits signed data generated based on a frame with a reduced data size to the data processing device 130. As a result, the data processing apparatus 130 can distribute edited data in which a predetermined frame is reduced and the size of a frame other than the predetermined frame is reduced to the mobile terminal 150.

(4) Fourth Application Example FIG. 28 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 28 shows a case where time-series data is moving image data, each area in one frame is set as unit data, and an instruction to reduce the data size is given.

  As illustrated in FIG. 28, the data generation device 110 transmits signed data generated based on each area of the frame with the reduced data size to the data processing device 130. As a result, the data processing apparatus 130 can distribute edited data including frames with black areas and reduced data sizes to the mobile terminal 150.

(5) Fifth Application Example FIG. 29 is a diagram illustrating another example of data distributed in the data distribution system. In the example of FIG. 29, the time-series data includes moving image data and audio data, and a frame of a moving image and audio data of a section corresponding to the frame are set as unit data, and an instruction is given to reduce the data size. Shows the case.

  As shown in FIG. 29, the data generation device 110 generates a signed data generated based on a frame having a reduced data size and audio data in a section corresponding to the frame, the audio data having a reduced data size. The data is transmitted to the data processing device 130.

  As a result, the data processing device 130 can distribute edited data including a frame in which the audio data is deleted and the data size is reduced, to the mobile terminal 150.

(6) Sixth Application Example FIG. 30 is a diagram illustrating another example of data distributed in the data distribution system. The example of FIG. 30 shows a case where time-series data is a moving image, a frame is set as unit data, and an instruction to reduce the data size is given.

  As illustrated in FIG. 30, the data generation device 110 transmits signed data generated based on a frame with a reduced data size to the data processing device 130. As a result, the data processing apparatus 130 can distribute edited data including a snapshot image with a reduced data size to the mobile terminal 150.

<4. Summary>
As is clear from the above description, in the data distribution system to which the data processing apparatus according to the present embodiment is applied, the time series data classification is changed and the classification is changed by switching the predetermined unit according to the distribution request. Change the size of the time series data.

  As a result, according to the present embodiment, it is possible to edit edited data according to a distribution request and distribute edited data having a small data size.

[Other Embodiments]
In the first embodiment, the data counter unit 504 is arranged, and the signature value is calculated with a predetermined number (n) of unit data (D _i ) as one section. However, the timing for calculating the signature value may not be every predetermined number (n) of unit data (D _i ). For example, the signature value may be calculated using unit data (D _i ) for a predetermined time as one section.

In the first embodiment, the hash generation unit 506 calculates the hash value of the unit data (D _i ), and the parameter information generation unit 507 calculates the parameter based on the hash value calculated by the hash generation unit 506. The information (W _i ) is calculated. However, the parameter information generation unit 507 may be configured to directly calculate the parameter information (W _i ) based on the unit data (D _i ).

  In the first embodiment, the editing unit 812 generates edited data by extracting k pieces of secret shared data. However, the number of secret shared data to be extracted is not limited to k. In the first embodiment, the edited data is generated by the editing unit 812 referring to the regulation information 1300. However, the regulation information 1300 may not be referred to. Moreover, although it has been described that both the extraction target and the deletion target are defined in the regulation information 1300, only one of them may be defined.

  In the first embodiment described above, the distribution request receiving unit 820 determines a distribution target, and the data distribution unit 830 selects either basic data or edited data according to the distribution target. However, when information specifying any data is included in the distribution request, the selection may be made based on the information.

  In the first embodiment, the secret sharing data generation unit is realized by the CPU 402 executing the secret sharing data generation program. However, the secret sharing data generation unit may be realized using, for example, a GPU (Graphics Processing Unit).

  In the first embodiment, the data processing device 130 has been described as realizing the verification unit 131, the secret sharing data generation unit 132, the distribution unit 133, and the data storage unit 134. However, the verification unit 131, the secret sharing data generation unit 132, the distribution unit 133, and the data storage unit 134 may be realized using different devices. In this case, the same function as the data processing device 130 is realized in the data processing system including each device.

  It should be noted that the present invention is not limited to the configuration shown here, such as a combination with other elements in the configuration described in the above embodiment. These points can be changed without departing from the spirit of the present invention, and can be appropriately determined according to the application form.

100: Data distribution system 110: Data generation device 111: Secret sharing data generation unit 120: Data generation device 130: Data processing device 131: Verification unit 132: Secret sharing data generation unit 133: Distribution unit 134: Data storage unit 140: Terminal 150: mobile terminal 501: data input unit 502: compression unit 503: data buffer unit 504: data counter unit 505: signature parameter generation unit 506: hash generation unit 507: parameter information generation unit 508: stream packet generation unit 509: signature unit 510: Data transmission unit 801: Data reception unit 802: Storage processing unit 803: Signature value calculation unit 804: Signature value verification unit 810: Data generation unit 811: Degree acquisition unit 812: Editing unit 820: Distribution request reception unit 830: Data Distribution unit 910: signed data case Payment information 920: Unsigned data storage information 1300: Regulation information 2001: Data partition setting unit 2002: Data partition control unit 2101: Data partition determination unit 2301: Size change unit

JP 2013-126189 A

Claims (10)

A set of n pieces (two or more integers) of data acquired from each section of the time-series data and parameter information satisfying a polynomial of a predetermined degree calculated based on the acquired n pieces of data. A data processing apparatus capable of reading signed data associated with a signature value based on a secret sharing protocol calculated for each section,
Obtaining means for obtaining the predetermined order;
Editing means for editing the signed data by extracting a number of sets according to the predetermined order acquired by the acquiring means from the n sets included in each section. A data processing device. A set of n pieces (two or more integers) of data acquired from each section of the time-series data and parameter information satisfying a polynomial of a predetermined degree calculated based on the acquired n pieces of data. A data processing system capable of reading signed data associated with a signature value based on a secret sharing protocol calculated for each section,
Obtaining means for obtaining the predetermined order;
Editing means for editing the signed data by extracting a number of sets according to the predetermined order acquired by the acquiring means from the n sets included in each section. Data processing system.   The signature value is calculated by adding a signature to secret information based on a secret sharing protocol, which is calculated based on a set of numbers corresponding to the predetermined order. Data processing system.   4. The data processing according to claim 2, wherein the editing unit extracts a number of sets corresponding to the predetermined order based on definition information that defines a set to be extracted in each section. 5. system. Storage means for storing first data including n sets in each section, and second data including a number of sets corresponding to the predetermined order in each section;
The distribution unit according to any one of claims 2 to 4, further comprising: a distribution unit that selects and distributes either the first data or the second data in response to a distribution request. Data processing system. A set of n pieces (two or more integers) of data acquired from each section of the time-series data and parameter information satisfying a polynomial of a predetermined degree calculated based on the acquired n pieces of data. A computer that reads and processes signed data associated with a signature value based on a secret sharing protocol calculated for each section,
An obtaining step for obtaining the predetermined order;
An editing step for editing the signed data by extracting a number of sets according to the predetermined order acquired in the acquisition step from the n sets included in each section. program. A determination means for determining a classification of data when acquiring data from each section of the time series data;
From each section of the time-series data, n (integer greater than or equal to 2) data respectively acquired according to the determined section, and a polynomial of a predetermined order calculated based on the acquired n data. Generating means for generating signed data associated with a signature value based on a secret sharing protocol calculated for each section, including a set of parameter information that satisfies
Obtaining means for obtaining the predetermined order;
Editing means for editing the signed data by extracting a number of sets according to the predetermined order acquired by the acquiring means from the n sets included in each section. A data processing device. A determination means for determining a classification of data when acquiring data from each section of the time series data;
From each section of the time-series data, n (integer greater than or equal to 2) data respectively acquired according to the determined section, and a polynomial of a predetermined order calculated based on the acquired n data. Generating means for generating signed data associated with a signature value based on a secret sharing protocol calculated for each section, including a set of parameter information that satisfies
Obtaining means for obtaining the predetermined order;
Editing means for editing the signed data by extracting a number of sets according to the predetermined order acquired by the acquiring means from the n sets included in each section. Data processing system. The determining means further determines a size when acquiring data from each section of the time series data,
The generation means is calculated based on n pieces of data (integer greater than or equal to 2) respectively acquired according to the determined section and the size from each section of time-series data and the acquired n pieces of data. A signed data including a set of parameter information satisfying a polynomial of a predetermined order and associated with a signature value based on a secret sharing protocol calculated for each section is generated. 9. The data processing system according to 8. On the computer,
A determination step of determining a data division when acquiring data from each section of time-series data;
From each section of the time-series data, n (integer greater than or equal to 2) data respectively acquired according to the determined section, and a polynomial of a predetermined order calculated based on the acquired n data. A generating step for generating signed data associated with a signature value based on a secret sharing protocol calculated for each section, including a set of parameter information to be satisfied;
An obtaining step for obtaining the predetermined order;
An editing step for editing the signed data by extracting a number of sets according to the predetermined order acquired in the acquisition step from the n sets included in each section. program.

Images