JP2022020557A - Content management system, content management program, and content management method for guaranteeing access rights to access digital contents using blockchain - Google Patents

Abstract

To provide novel technology that eliminates centralized management of access rights and manages the access rights in a decentralized manner to guarantee them reliably in a service of distributing contents to users who have the access rights.SOLUTION: A content management system that manages access rights to electronic contents, includes a content distribution unit and a decentralized ledger processing unit. The decentralized ledger processing unit is configured to be able to record in a decentralized ledger database a content issuing ID that uniquely identifies access right information, content identification information, and the access right information including identification information of a user. The content distribution unit is configured to receive a content distribution request from the user, and if it is determined that the content can be distributed based on the access right information, to be able to distribute the content identified according to the content identification information in the access right information to the user.SELECTED DRAWING: Figure 1

Description

The present invention relates to a content management system, a content management program, and a content management method for guaranteeing access rights to digital contents utilizing a blockchain.

In recent years, various contents have become available electronically, and many digital content providing services distribute the contents via the Internet. Such electronic content is often provided in a form in which the right to access the content (right to use the content) is lent, rather than transferring the data itself.

For example, in Patent Document 1, a plurality of sales server devices that provide a digital content sales site and a digital content management server device are configured to be communicable, and content is distributed based on the purchase history of each sales site. The distribution system is described.

Further, Patent Document 2 discloses a technique for controlling whether or not the content can be reproduced based on the information registered in the blockchain in the secondary distribution system for easily transferring the right to use the content to another user. Has been done.

Japanese Unexamined Patent Publication No. 2018-106656 International Publication No. 2019/207655

Needless to say, in a system that gives users access rights to content as described above, it is important to manage access rights. Therefore, reliable management was required so that the recorded contents of the access right would not be tampered with or unintentionally lost.

In the conventional technology, the access right is centrally managed by each seller, and there is a problem that the access right is not guaranteed if a problem occurs or the service is terminated by the seller, for example. rice field.

Further, Patent Document 2 describes that information regarding the transaction of the right to use the content is registered in the blockchain, but the content cannot be distributed based on the registered information.

Therefore, it is an object of the present invention to provide a new technique for decentralized management of access rights and surely guaranteeing them in a service for distributing contents to users having access rights.

In order to solve the above problems, the present invention is a content management system that manages access rights to electronic content.
Equipped with a content distribution unit and a distributed ledger processing unit
The distributed ledger processing unit is configured to be able to record in the distributed ledger database the content issuing ID that uniquely identifies the access right information, the identification information of the content, and the access right information including the user identification information.
When the content distribution unit receives a distribution request for the content from the user and determines that the content can be distributed based on the access right information, the content distribution unit is specified by the identification information of the content in the access right information. The content can be distributed to the user.

With such a configuration, the access right is recorded in the distributed ledger database, and the content is distributed based on this, so that the access right can be managed jointly by multiple entities, and the access right is falsified. It is possible to realize more stable access right management by reducing risks such as.

In a preferred embodiment of the present invention, the content distribution unit can distribute the content specified by the access right information by referring to the distribution availability of each content preset in association with the identification information of the content. Judge whether or not.
With such a configuration, if you want to stop distribution after selling digital content, you can easily and immediately respond by simply changing the distribution availability for each content without changing all access right information. Will be.

In a preferred embodiment of the present invention, an access right processing reception unit is provided.
The access right processing reception unit receives a recording request for access right information based on user input, and passes the recording request to the distributed ledger processing unit.
The recording request includes identification information of the content for registering new access right information and identification information of the user, or information for identifying the recorded access right information.

In a preferred embodiment of the present invention, the access right processing receiving unit is configured to be communicable with a plurality of provided service processing devices that provide the content to the user, and the user is configured to be able to communicate with the provided service processing device. Receives a request for recording the access right to the content.
With such a configuration, it is possible to collectively manage access rights related to sales and the like in a plurality of provided services.

In a preferred embodiment of the present invention, the distributed ledger processing unit is configured to be recordable by adding distribution availability information indicating distribution availability to the access right.
The content distribution unit determines whether or not the content can be distributed based on the distribution availability information and the identification information of the user who made the distribution request.
With such a configuration, it is possible to appropriately distribute content according to various forms of use such as resale and download.

In a preferred embodiment of the present invention, the distributed ledger processing unit assigns the access right including a unique content issuing ID to the distributed ledger based on the recording request including the content identification information and the user identification information. By recording in the database, the access right to the content by the user is generated.
With such a configuration, new access rights can be generated and new contents can be transferred. Further, by recording a unique content issuing ID, individual access rights can be distinguished, and electronic content distribution that distinguishes each individual can be realized as in the distribution of tangible items.

In a preferred embodiment of the present invention, when the access right processing receiving unit receives a request for transfer of the access right from the user in which the access right to the content is recorded to another user, the access is said. With reference to the right, it is determined whether or not the access right can be transferred based on the identification information of the user who made the transfer request.
If the transfer is possible, the transfer request including the information specifying the access right and the identification information of the user at the transfer destination is passed to the distributed ledger processing unit.
The distributed ledger processing unit updates the access right recorded in the distributed ledger database based on the transfer request.
With such a configuration, the transfer of access rights can be recorded in the distributed ledger database, and content can be safely resold or rented.

In a preferred embodiment of the present invention, when the access right processing receiving unit receives the transfer request, the distributed ledger processing unit cannot deliver the content to the user who is the owner of the access right before the transfer. Information indicating that the above is recorded in the distributed ledger database.
With such a configuration, it is possible to prevent fraudulent use of the content continuously after the user who is the owner of the access right of the content makes a resale request.

In a preferred embodiment of the present invention, when the content distribution unit receives an offline use request as a distribution request for the content from the user having the access right, the content distribution unit downloads the content with an expiration date to the user's terminal. At the same time, the information specifying the access right and the distribution information including the expiration date are passed to the distributed ledger processing unit.
The distributed ledger processing unit is configured to be able to add transferability information indicating transferability / non-transferability of the access right to the access right based on the distribution information and record it.
The access right processing reception unit determines whether or not the access right can be transferred based on the transferability information.
With such a configuration, the user cannot resell the content during the period when the content can be used offline. This makes it possible to prevent the user from reselling or renting the content while downloading the content to the user's terminal and continuing to use it offline.

In a preferred embodiment of the invention, the transfer of access rights comprises a temporary transfer to realize the lending of the content.
The access right processing reception unit accepts a temporary transfer request including a loan deadline as the transfer request, and if the temporary transfer is possible, delivers the temporary transfer request to the distributed ledger processing unit.
The distributed ledger processing unit
Based on the temporary transfer request, the owner of the access right recorded in the distributed ledger database is updated to the user who is the partner of the temporary transfer, and the loan period is given to the access right. Record and
When the loan period expires, the owner of the access right is renewed to the user before the temporary transfer.
With such a configuration, it is possible to lend content with a specified time limit by temporarily transferring access rights.

In a preferred embodiment of the present invention, the access right recorded in the distributed ledger database includes a hash value as identification information of the user.
When the content distribution unit receives a distribution request for the content from the user, the content distribution unit refers to the access right and is configured to be able to distribute the content incorporating the hash value to the user.
With such a configuration, if the content is illegally distributed, it is possible to identify the user who illegally distributed the content.

In order to solve the above problems, the present invention is a content management program that manages access rights to electronic content.
Make the computer function as a content distribution unit and a distributed ledger processing unit,
The distributed ledger processing unit is configured to be able to record in the distributed ledger database the content issuing ID that uniquely identifies the access right information, the identification information of the content, and the access right information including the user identification information.
When the content distribution unit receives a distribution request for the content from the user and determines that the content can be distributed based on the access right information, the content distribution unit is specified by the identification information of the content in the access right information. The content can be distributed to the user.

In order to solve the above problems, the present invention is a content management method for managing access rights of electronic content, wherein a computer can be used.
In the distributed ledger database, the content issuance ID that uniquely identifies the access right information, the identification information of the content, and the access right information including the user identification information are recorded.
When the content distribution request from the user is received and it is determined that the content can be distributed based on the access right information, the content specified by the content identification information in the access right information is referred to as the content. Deliver to users.

According to the present invention, it is possible to provide a novel technique for decentralized management of access rights and reliable guarantee.

It is a block diagram of the content management system which concerns on one Embodiment of this invention. It is a functional block diagram of the content management server which concerns on one Embodiment of this invention. It is a figure which shows the data structure in one Embodiment of this invention. It is a figure explaining the content of the access right information in one Embodiment of this invention. It is a figure which shows the flow of the process at the time of content purchase in one Embodiment of this invention. It is a figure which shows the flow of the process at the time of content distribution in one Embodiment of this invention. It is a figure which shows the flow of the process at the time of the content resale request in one Embodiment of this invention. It is a figure which shows the flow of the process at the time of content resale in one Embodiment of this invention. It is a figure which shows the flow of the process at the time of content distribution in one Embodiment of this invention.

Hereinafter, an embodiment of the present invention will be described in detail with reference to the drawings. The content management system according to the present invention manages the information of the electronic content received from the creator of the content and the company that manages the content, and distributes the content to the user who has the access right to the content. .. In this embodiment, there are a plurality of digital content providing services (hereinafter, simply referred to as "provided services") on the Internet that sell contents (sell access rights to the contents) or transfer free provision to users. do. The content management system of the present embodiment records purchase (transfer) history and access rights in a plurality of provided services in a distributed ledger database realized by using a plurality of computers managed by each of the provided services and the like. , Access rights are jointly managed by multiple entities.

In the present embodiment, a content management system that handles electronic books as content is shown, but the present invention is not limited to this. For example, when handling music data as content, the providing service may be a music distribution site, and the content provider may be a music producer or a person in charge of a record company. Similarly, if the content is moving image data such as TV programs and movies, or static image data such as Treca, the provided service is a video / Treca distribution site, etc., and the content provider is the person in charge of the TV station or distribution company. It's okay. Furthermore, the distribution management of various contents such as application programs running on computer devices such as personal computers and smartphones and game software running on home-use game machines and personal computers by the content management system according to the present invention. It can be performed. Further, the configuration may be such that a plurality of the above-mentioned types are handled.

Further, in the present invention, the access right to the content recorded in the distributed ledger database includes at least the content and information identifying the user. This identifies the owner of the access right to each content. In the present embodiment, each transaction information on the distributed ledger database is configured by a time-series chain, and each transaction includes information on the hash value of the immediately preceding transaction. Therefore, if any transaction is tampered with, inconsistency will occur. It has a hash chain structure that can be detected by fraud. In addition, transaction records in the distributed ledger database are composed of multiple nodes, and the same data is stored between the nodes. Therefore, even if the data is tampered with on some nodes, the correct data remains on other nodes, which is safe. Sex is maintained. As a result, the security of the access right information is improved in the content management system of the present embodiment.

Further, in the present invention, "content is set to be distributable" means that at least the distributed ledger database contains information that identifies the content and further identifies the target user as the owner of the access right. It means that the access right including is recorded. Further, in the present embodiment, the access right is given distribution availability information including the status and the offline content expiration date, and "the content is set to be distributeable" further specifies the content and the user. It means that the access right including the information to be distributed is given a status that can be distributed, or that the content usage period is out of the offline period.

FIG. 1 shows the configuration of the content management system according to the present embodiment. The configurations of FIGS. 1 and 2 are examples, and the functions of various devices are distributed and provided in a plurality of computer devices, and the devices of the present embodiment are realized by the cooperation of the plurality of computer devices. You may. The content management system according to this embodiment is provided as a content management server 1 that manages digital contents provided to users, and as a contact point for new sales of contents to users and resale of contents from users. A plurality of provided service processing devices 2 from 21 to 2i that realize the service and a user terminal 3 from 31 to 3j used by the user are configured to be able to communicate with each other via a network.

Further, the content management server 1 is connected to the distributed ledger network system BC, and makes an access right registration request, an inquiry of the registered access right, and the like. In this embodiment, the distributed ledger database is realized by the distributed ledger network system BC using the blockchain technology. Here, in the present embodiment, a plurality of computers including the provided service processing device 2 function as nodes of the distributed ledger network system BC, but the computers participating in the distributed ledger network system BC may be arbitrarily changed. The content management server 1 is managed by a manager or the like who manages the distribution of the content by using a terminal device (not shown). Although not described in the drawings, the content management server 1 is also connected to a terminal device used by a content provider such as a content creator or a person in charge of a management company, and can send and receive information related to content registration. Is preferable.

In this embodiment, a system that handles electronic books is exemplified as content.
That is, the provided service provided by the provided service processing device 2 is a website called an electronic book providing service or an electronic bookstore that sells electronic books or the like according to access from a user. Alternatively, the user terminal 3 may be configured to receive access using a dedicated application and sell an electronic book or the like. The provided service processing device 2 is managed by the administrator of each provided service using a terminal device (not shown). The content provider may be the author of the book, or may be the person in charge of the publisher who collectively manages the copyrights of the plurality of authors.

The content management server 1 includes a computing device such as a CPU (Central Processing Unit) and a GPU (Graphics Processing Unit), a main storage device such as a RAM (Random Access Memory), an HDD (Hard Disk Drive), and an SSD (Sold Drive). A general computer device such as a server device provided with an auxiliary storage device such as a flash memory, a provided service processing device 2, a user terminal 3, and various input / output devices including a means for connecting to a distributed ledger network system BC. Can be used. The computer device functions as the content management server 1 in the present embodiment by the arithmetic unit executing the processing of each processing unit described later.

Similarly, a general computer device such as a server device can be used for the nodes constituting the distributed ledger network system BC including the provided service processing device 2.

The user terminal 3 is an arbitrary computer device such as a smartphone or a tablet terminal provided with various input / output devices including a calculation device, a storage device, a provided service processing device 2, and a connection means to the content management server 1. Can be used. In addition, a PC (Personal Computer) may be used as the user terminal 3. A dedicated application for inputting and transmitting / receiving various information to / from the provided service processing device 2 and the content management server 1, a browser application for accessing the provided service (website), and the like are stored in the storage device. When the arithmetic unit executes various processes, any computer device functions as the user terminal 3 of the present invention.

FIG. 2 is a functional block diagram of the content management server 1 of the present embodiment. The content management server 1 includes an access right processing reception unit 100, a content distribution unit 103, a distributed ledger processing unit 104, a user registration unit 105, a content master storage unit 106, a content data storage unit 107, and a purchase history. It includes a storage unit 108, a provided service information storage unit 109, and a user information storage unit 110. In the present application, the storage unit is a storage unit that stores various types of information including the content master storage unit 106, the content data storage unit 107, the purchase history storage unit 108, the provided service information storage unit 109, and the user information storage unit 110. It is a general term for departments.

The access right processing reception unit 100 includes a generation processing unit 101 that performs processing related to the generation of a new access right, and a transfer processing unit 102 that performs processing related to the transfer of access rights. Here, in the present invention, the request for recording an access right is a concept including a request for generating a new access right and a request for updating the recorded access right.

The generation processing unit 101 receives the generation request of the access right based on the user's input, and passes the generation request to the distributed ledger processing unit 104. More specifically, when the information for identifying the target content and the user is received from the provided service processing device 2, the purchase information is passed to the distributed ledger processing unit to record the access right. The generation of the access right is a process corresponding to the new sale of the content or the free provision of the content from the provided service to the user. That is, it means that a new content issuing ID is issued to generate a new access right.

When the transfer processing unit 102 receives a request to transfer the access right from the user in which the access right to the content is recorded to another user, the information specifying the access right and the user to whom the access right is transferred are transferred. The transfer request including the identification information of is passed to the distributed ledger processing unit 104.

In this embodiment, the content is resold and rented as the transfer of the access right. In resale, the transfer processing unit 102 accepts the resale request from the user on the selling side and the purchase request for resale from the user on the purchasing side via the provided service processing device 2, respectively, and with the selling side. Resale will be performed when the matching on the purchase side is established. Then, when resale is performed, the access right is transferred by resale by passing the resale information to the distributed ledger processing unit 104 and updating the access right recorded in the distributed ledger network system BC as described above. Will be done. In addition to resale with the transfer of money and points, access rights may be transferred by free transfer.

Further, in lending, the transfer processing unit 102 accepts a temporary transfer request including identification information of each user on the lending side and the user on the borrowing side and the lending deadline. Here, the same matching as resale may be performed in lending, or a temporary transfer request including identification information of both may be transmitted from the user terminal 3 after negotiation between the users. Then, the transfer processing unit 102 passes the lending request to the distributed ledger processing unit 104 and updates the access right recorded in the distributed ledger network system BC, so that the access right is temporarily transferred by lending. At this time, the lending deadline is recorded in the distributed ledger network system BC together with the identification information of the user at the relocation destination.

When the transfer processing unit 102 of the present embodiment receives the transfer request from the user, the transfer processing unit 102 refers to the access right to the content that the user wishes to transfer, and the user is the owner of the legitimate access right. It is judged that the access right can be transferred when the above is confirmed. Further, in the present embodiment, the transfer processing unit 102 further confirms the transferability information of the access right, registers the resale request when the access right can be transferred, and the status when the resale request is registered. Is set to non-delivery. Here, in the present embodiment, the status given to the access right as the transferability information, the offline usage deadline, and the lending deadline are referred to. It should be noted that the information for specifying the transferability may be recorded as the status, and the transferability may be determined by the status alone as the transferability information.

When the content distribution unit 103 receives a content distribution request from the user, the content distribution unit 103 refers to the access right recorded in the distributed ledger network system BC, and if the content is set to be distributable, the content is provided to the user. The content stored in the data storage unit 107 is distributed. Specifically, based on the distribution request, is the access right including the information that identifies the content and the information that identifies the user as the owner of the access right recorded, that is, the user Check if you have the legitimate access right to the content, and if the legitimate access right is recorded, distribute the content to the user.

Here, in the present embodiment, the content distribution unit 103 further confirms the distribution availability information of the access right, and distributes the content to the user when the distribution is possible. In this embodiment, the status given to the access right is referred to as the distribution availability information. In addition, the loan deadline may be used as delivery availability information.

The distributed ledger processing unit 104 requests the distributed ledger network system BC to record the access right based on the recording request received from the access right processing reception unit 100. Further, the distributed ledger processing unit 104 of the present embodiment requests the distributed ledger network system BC to update to change the owner of the access right when the transfer request is delivered. Further, the distributed ledger processing unit 104 requests to change the status of the access right and the lending deadline recorded in the distributed ledger network system BC in accordance with the reception of the generation request and the transfer request.

The user registration unit 105 registers a user by receiving user information including at least user identification information from the provided service processing device 2 and storing it in the user information storage unit 110.
In the present embodiment, the user information includes the identification information of the provided service indicating which provided service the user is.

FIG. 3 is an ER diagram (Entity-Relationship Diagram) showing a data structure relating to new sales of contents. This schematically shows the information that the content management server 1, the provided service processing device 2, and the distributed ledger network system BC each have for each record, and the relationship between the information.

First, the content master storage unit 106 has master information (content master) regarding the content to be sold, such as a content ID for uniquely identifying the content, a title of the content, information of a right holder such as an author and a publisher, and the like. In addition, it may have information that specifies the number of times that redistribution is permitted after the first issuance.

Further, the content data storage unit 107 has various information related to the content data such as a file ID for uniquely identifying the file, a content ID indicating which content the file is related to, a file name, and the like. Further, the content data storage unit 107 also stores the content data main body, and the content distribution unit 103 distributes the information stored in the content data storage unit 107 to provide the content to the user.

Here, the content master and the content data have a one-to-other relationship in which a plurality of content data can be associated with one content. With such a configuration, it is possible to handle one content composed of a plurality of files, content in which a file format can be selected from among a plurality of file formats based on the user's wishes, and the like.

The content master and the content file are provided to and registered in the content management server 1 by any means such as e-mail from a terminal device used by the content provider or delivery via a file server (not shown). In this way, the digital contents provided by the plurality of content providers are aggregated in the content master storage unit 106 and the content data storage unit 107.

The purchase history storage unit 108 has a purchase ID for uniquely identifying the purchase history, a content ID indicating the purchased content, a provision service ID indicating the provided service in which the purchase was made, and the use of the user who made the purchase. Stores a record of purchase history, including information such as person ID hash value, purchase amount, currency and purchase date and time. This is treated as information linked to the provided service, and since multiple users purchase multiple contents from one provided service, multiple purchase histories are associated with one provided service. Has been done. In addition to the purchase, the transfer of access rights and the issuance history of free access rights may be further managed.

The provided service information storage unit 109 stores the provided service information including the provided service ID that uniquely identifies the provided service and basic information such as the provided service name and URL (Uniform Resource Locator).

The user information storage unit 110 stores a user ID hash value and a provided service ID that can uniquely identify a user within the same provided service as information about a user who uses the provided service. Here, personal information such as a user's e-mail address and payment information is not stored, and such information is managed by the provided service processing device 2. The user ID hash value can uniquely identify the user by the combination of the provided service ID and the user ID hash value even when it overlaps with the user of another provided service, but other It may not overlap with the user of the provided service. Here, the user ID hash value is used as the user identification information, and in the server including the content management server 1 which does not have the mapping information between the user ID and the user ID hash value, the user ID hash value is used. It is not possible to identify the user.

Further, the provided service processing device 2 stores a record of the purchase history related to the provided service managed by the provided service processing device 2 among the information stored in the purchase history storage unit 108 of the content management server 1.

Further, the provided service processing device 2 stores a record of user information regarding a user of the provided service managed by the provided service processing device 2 among the information stored in the user information storage unit 110 of the content management server 1. do. The user information is registered in the provided service processing device 2 via the user terminal 3, and a part or all of the user information is transmitted to the content management server 1 and registered in the user information storage unit 110. It is shared between the management server 1 and the provided service processing device 2.

The provided service processing device 2 manages personal information such as an e-mail address, payment information, and login password in addition to the user ID and the provided service ID as user information. Further, the provided service processing device 2 further holds mapping information indicating the correspondence between the user ID and the user ID hash value for the user managed by itself. Thereby, the user of the own service can be specified from the owner ID hash value stored in the access right information. When a certain provided service processing device 2 terminates the provided service, it is preferable to transfer the mapping information to another provided service processing device 2 or a content management server 1 that constitutes the distributed ledger network system BC. .. As a result, even if the provided service is terminated, the access right can be continuously guaranteed.

Further, the provided service processing device 2 holds information on the content provided to the user by the provided service as the content information. This is information registered based on the information of the content master storage unit 106 and the like for each content for which distribution is permitted in each provided service.

Then, in the distributed ledger network system BC, the access right is recorded in the block. The access right information includes a unique content issue ID issued for each access right, a content ID as identification information for identifying the content, a serial number unique within the same content ID, an access right issue date and time, and status. Information on the user ID hash value, offline expiration date, and lending expiration date of the user who owns the access right is included. Since a plurality of access rights are issued for one type of content, a plurality of access rights are associated with each content.

FIG. 4 is a table for explaining the contents of the information stored as the access right. As shown in the figure, the content issuance ID is a unique ID issued each time an access right is issued, and has a value that does not overlap with each other in all access rights. In the present embodiment, the transaction number issued by the distributed ledger network system BC side when recording a new access right is used as the content issue ID. In addition, the UUID can be issued by any method and used as the content issuing ID of the present invention.

Further, the content ID is an ID determined for each content, and the same content has the same ID. For example, volumes 1 and 2 of the book A, and for example, the A publisher version and the B publisher version of the same title are given different content IDs, but if there are multiple access rights to the same content, that The content ID is the same for all. On the other hand, the serial number is a character string unique to the same content ID, and when a plurality of access rights exist for the same content, different serial numbers are assigned to all of them.

As the issue date and time, the first issue date and time of the access right is recorded. For example, in the present embodiment, the content can be resold, but when the content is resold, the owner ID of the access right is updated, but the issue date and time is not changed as it was. In addition to the issue date and time, the date and time when the latest update was made may be recorded as the update date and time each time some information such as the owner ID, status, and offline expiration date is updated. In the distributed ledger network system BC, all access right change histories are permanently managed.

The offline usage period is the period during which the content can be used offline, which is set when the user requests the content to be used offline. Therefore, if the user specified by the owner ID of the access right does not request offline use, the offline usage period is not set. This expiration date is the same as the expiration date of the content downloaded to the user terminal 3. In this embodiment, the offline usage period can be extended but not shortened by the user's application.

The lending deadline is the deadline for transferring access rights, which is set when a user temporarily transfers access rights to another user. That is, the owner ID hash value of the access right is temporarily rewritten to that of the user of the transfer destination due to the temporary transfer, but when the lending period expires, the owner ID hash value is changed again and the original user's Become a thing. Like the offline usage deadline, the lending deadline is not set if there is no temporary transfer request. Further, in the state within the lending deadline, the owner (user on the borrowing side) at that time can use offline, but at this time, the deadline within the lending deadline is applied as the offline usage deadline.

Next, the states of various access rights in the present embodiment will be described. The status set in this embodiment is "online use" in which the content is used online without storing the content in the user terminal 3, and the content is downloaded to the user terminal 3 for a predetermined period (the period until the offline usage deadline). ) There are three types: "offline use" that is saved and used, and "on sale" that requests resale of the content.

In the present embodiment, it is determined whether or not the content can be distributed and whether or not the access right can be transferred based on the setting contents of the status, the offline usage deadline, and the lending deadline. More specifically, in the present embodiment, the delivery availability information is a concept including a status, and the transfer availability information is a concept including a status, an offline usage deadline, and a lending deadline. Specifically, as shown in Fig. 4, when both the offline usage period and the loan period are out of date or unregistered, both content distribution and access right transfer are possible, and when the status is on sale. It is not possible to distribute content or transfer access rights. In addition, if it is within the offline usage period or if it is within the lending period, the content can be distributed to the owner of the access right at that time, but the access right cannot be transferred.

It should be noted that, without referring to the offline usage deadline and the lending deadline, whether or not the content can be distributed and the access right can be transferred may be set in each status, and whether or not the content can be delivered and whether or not the access right can be transferred may be determined only by the status. Specifically, for example, in the case of online use, both content distribution and access right transfer are possible, in the case of offline use, or in the case of lending, content distribution is possible, access right transfer is not possible, and it is on sale. In that case, both content distribution and access right transfer may be impossible. In the present embodiment, in the case of lending, neither temporary transfer by lending nor transfer by resale is possible, but even in the case of lending, temporary transfer to another user within the range of the lending deadline, That is, so-called lending may be permitted.

The transfer processing unit 102 and the content distribution unit 103 determine whether or not the access right can be transferred and the content can be distributed, respectively, based on such transfer availability information and distribution availability information. This makes it possible to prevent the transfer of the access right while the content is stored in the user terminal 3 and the continuation of the use of the content after the transfer of the access right. In the initial state, the status of "online use" is set, and then it is changed according to the offline use and access right transfer processing described later.

Next, the process related to the new purchase of the content by the user will be described. FIG. 5 is a diagram showing a flow of processing when a new content is purchased. First, in step S11, the user terminal 3 receives an input of a purchase request specifying the content from the user, and transmits a request for generating a new access right to the provided service processing device 2. At this time, the login to the provided service is performed, and the content ID as the identification information for identifying the content and the user ID as the identification information for identifying the user are transmitted. In step S12, the provided service processing device 2 performs payment processing based on the user's information.

Then, in step S13, the generation request is further transmitted to the content management server 1 based on the generation request received by the providing service processing device 2. The information transmitted here is information in which the user ID transmitted in step S11 is replaced with a user ID hash value by the mapping information held by the provided service processing device 2. In the content management server 1, the generation processing unit 101 receives the generation request.

In the content management server 1, in step S14, the generation processing unit 101 issues a serial number based on the generation request. In this embodiment, the serial number is managed as a serial number for each content ID. Then, in step S15, the generation request is passed to the distributed ledger processing unit 104, and the distributed ledger processing unit 104 transmits a user's request for registration of the access right to the content to the distributed ledger network system BC based on the generation request. ..
The generation request includes a user ID hash value which is identification information of a user who is a purchaser, and a content ID which is identification information of the content for which an access right is issued.

When the distributed ledger network system BC receives the access right registration request together with the purchase information, it issues a content issue ID in step S16 and records the new access right in the blockchain. The content issuance ID is issued as a UUID (Universally Unique Identifier), and is a unique value for each access right.
That is, unique content issuance IDs that do not overlap are issued by the nodes that make up the distributed ledger network system BC.

Recording to the distributed ledger is performed via a "chain code" executed on the distributed ledger network system BC. In this embodiment, when the distributed ledger processing unit 104 sends an access right registration request, each node on the distributed ledger network system BC executes a chain code, verifies the processing results with each other, and when the results are approved, the distributed ledger is distributed. Writing to the ledger is performed.
Each transaction is composed of a hash chain and is managed in a form that is difficult to tamper with.

Then, in step S17, the distributed ledger network system BC transmits the registration result, and the content management server 1 receives it. Here, although not shown, the purchase history is recorded in the purchase history storage unit 108 based on the received registration result.

Further, in step S18, the registration result is transmitted from the content management server 1 to the provided service processing device 2. Here, as in step S17, the purchase history for each provided service is also recorded in the provided service processing device 2.

Then, in step S19, the provided service processing device 2 notifies the user terminal 3 that the purchase processing of the content desired by the user is completed, and ends the processing. The above process is an example, and the detailed recording procedure in the distributed ledger network system BC and the procedure for recording the purchase history in the content management server 1 and the provided service processing device 2 can be arbitrarily changed. A person skilled in the art may arbitrarily determine the processing procedure and the like as long as the method can obtain the result that the access right is recorded in the distributed ledger network system BC.

When the access right is recorded in the distributed ledger network system BC in this way, a new access right is generated. The transaction history recorded in the distributed ledger network system BC is permanently managed, but in the present embodiment, the access right can be destroyed by the same procedure as the access right generation process. Specifically, the access right processing reception unit 100 receives a request for destroying the access right based on the user's input and delivers it to the distributed ledger processing unit 104, and the distributed ledger processing unit 104 accesses the distributed ledger network system BC. Send a request to record the waiver of rights. Here, the request for destroying the access right transmitted from the user includes at least the identification information of the user, and the request for recording the destruction of the access right transmitted by the distributed ledger processing unit 104 contains information for specifying the access right. Includes. The access right for which the history of destruction is recorded is recognized as no longer existing. By making it possible to revoke access rights in this way, users can "discard" content that they do not want to possess in the same way as tangible items, and this will reduce the number of distributions and improve the market value. Expected to do.

Next, the process when the user uses the content after the access right is registered will be described with reference to FIG. First, in step S21, the user terminal 3 requests the content management server 1 to distribute the content in response to the user's input. At this time, the registered user ID as the user identification information and the content ID as the content identification information are transmitted. The information transmitted here may be any information that can uniquely identify the access right.

At this time, the user selects online use or offline use of the content, and in step S21, a distribution request regarding the selected form of use is transmitted to the user. Here, a case of offline use, that is, a case where the content data is downloaded to the user terminal 3 and stored for a certain period of time to use the content will be described. The input here is performed on a web page provided by the provided service processing device 2 or a dedicated application used while logged in to the provided service processing device 2. Although the description of the provided service processing device 2 is omitted in FIG. 6, the distribution request may be transmitted to the content management server 1 via the provided service processing device 2.

In the content management server 1, when the content distribution unit 103 receives the distribution request in step S21, the received information is passed to the distributed ledger processing unit 104, and the distributed ledger processing unit 104 requests the distributed ledger network system BC to inquire about the access right. do.

When the distributed ledger processing unit 104 sends an access right inquiry request, in step S23, each node on the distributed ledger network system BC executes a chain code to verify the processing results with each other, and when the results are approved, access is performed. The right query is executed. Then, in step S24, the access right inquiry result is returned to the content management server 1 as the execution result.

Here, it is confirmed that the user owns the access right to the content (access right information whose owner ID hash value matches the user ID hash value is recorded in the distributed ledger network system BC). Then, the access right information for offline use is updated.

Specifically, when the distribution request received in step S21 is an offline use request for offline use, the content distribution unit 103 distributes distribution information including content identification information and the expiration date of the content to be distributed to the user. Hand over to the ledger processing unit 104. Based on the received distribution information, the distributed ledger processing unit 104 requests the distributed ledger network system BC to set an offline expiration date that is the same as the expiration date (step S25). At this time, if the status of the access right is not "offline use", the distributed ledger processing unit 104 may request the status to be updated to "offline use". If the access right has already been set to the offline expiration date in the access right inquiry result received in step S24 and the offline expiration date has not yet been set at that time, the offline expiration date is updated. do not have.

In step S26, the distributed ledger network system BC configures a transaction for setting or updating the offline expiration date, and the block including the transaction is determined, so that the offline expiration date in the access right is updated.

When the update of the offline expiration date is completed, the execution result is transmitted to the content management server 1 in step S27. Then, in the content management server 1, in step S28, the content distribution unit 103 generates content data incorporating the owner ID hash value included in the access right.

Then, the content data of step S28 to which the same expiration date as the offline usage period included in the execution result transmitted in step S27 is given is delivered to the user terminal 3 (step S29). The user terminal 3 stores the received content data and uses the content on a dedicated application or a browser application.

Since the expiration date is set for the downloaded content, the downloaded content cannot be used, such as the content data being deleted when the expiration date expires. When the expiration date has expired in this way, the process of FIG. 6 is executed again, and in steps S25 to S28, a new offline expiration date is set in response to a request from the user, so that the offline expiration date is set again. Content can be used.

Here, in the present embodiment, since the offline usage period is included as the transferability information, it is not necessary to set the offline usage period or update the status due to the expiration, but when the offline usage period has passed, the distributed ledger network system BC The access right status in may be changed to "online use". Specifically, for example, the storage unit of the content management server 1 stores the offline usage deadline together with the information specifying the access right such as the serial number and the specific ID, and when the offline usage deadline expires, the distributed ledger processing unit 104 By requesting the distributed ledger network system BC to update the access right, the access right recorded in the distributed ledger database can be updated when the offline usage period has expired. In addition, the offline expiration date is monitored on the other distributed ledger network system BC side, and when the offline expiration date has passed, the status of the access right is automatically changed to "online use" and the change result is sent to the content management server 1. You may notify.

Although the offline use accompanied by the storage of the content data in the user terminal 3 has been described here, steps S25 to S27 are unnecessary in the case of online use. In this case, in step S29, the content distribution unit 103 distributes the content data for viewing on the browser application. In online use, it is preferable to periodically communicate between the user terminal 3 and the content management server 1 while using the content, and execute steps S21 to S24 each time to confirm the access right. ..

Next, the transfer of access rights will be described. In the present embodiment, the transfer of the access right is accepted when the user is not using the loan offline and the loan is not within the loan deadline (not being rented). Here, the case of resale will be described in detail, but the change of the owner ID hash value of the access right is the same in the case of lending (temporary transfer of the access right).

In the present embodiment, the transfer processing unit 102 receives the resale request and the resale purchase request, respectively, and when these matchings are established, the distributed ledger processing unit 104 requests the distributed ledger network system BC to record the transfer of access rights. do. The present invention is not limited to this, for example, the provided service purchases the content at the time of receiving the resale request, the owner of the access right is renewed at that time, and then the provided service to other users. It may be resold in the same format as a traditional used bookstore that sells content.

FIG. 7 is a diagram showing a flow of processing related to registration of resale request. When the user wishes to resell the content for which the user has the access right to another user, the user terminal 3 first sends a resale request to the provided service processing device 2 in step S31. At this time, the registered user ID as the identification information of the user to be resold and the content ID as the identification information of the content are transmitted. The information transmitted here may be any information that can uniquely identify the access right.

Next, in step S32, the provided service processing device 2 transmits a resale request to the content management server 1 based on the information received in step S31. In the content management server 1, the transfer processing unit 102 passes the resale request to the distributed ledger processing unit 104, and the distributed ledger processing unit 104 makes an access right inquiry request to the distributed ledger network system BC based on the resale request. (Step S33).

In steps S34 to S37, each node on the distributed ledger network system BC executes the chain code, confirms the access right (step S34), determines whether resale is possible (step S35), resells registration (step S36), and updates the access right. (Step S37), the processes of (step S37) are sequentially executed.

Specifically, the user ID hash value of the user who made the resale request is recorded as the owner ID hash value, and the access right of the content that can be resold based on the transferability information is the distributed ledger. If it is recorded in the network system BC, it is determined that the resale is possible (step S35). If the number of redistributions after the first issue is specified in the content master information, the number of times the access right has been transferred in the past is confirmed, and if the number does not exceed the number specified in the content master information. Judge that resale is possible.

If it is determined that resale is possible, resale registration is performed in step S36. This makes it possible to match resale and purchase wishes. The resale management may be performed by the provided service processing device 2 or other services, and in that case, a resale registration request is transmitted to the device that manages the resale.

Then, in step S37, the access right status is changed to "for sale". The distributed ledger network system BC records access right updates on the blockchain. The specific procedure for recording on the blockchain is the same as step S26 in FIG. Here, in the case of the status of being on sale, the content cannot be distributed. Therefore, in the present embodiment, the information indicating the status of this "on sale" is "the distribution of the content to the user who is the owner before the transfer". It is treated as "information indicating that it is not possible".

When the resale is registered in this way, the transfer of the access right, that is, the owner ID hash value in the access right recorded in the distributed ledger network system BC when the matching with the purchase request of the resale is established. Changes are made.

FIG. 8 is a diagram showing a processing flow in the transfer of access rights by resale. When there is a resale or a purchase request for resale with the content ID specified, the transfer processing unit 102 performs matching in step S41. Matching may be performed by any method, and may be in a format such as a flea market in which the purchaser confirms and selects the contents of resale, or may be in the order of registration.

When the matching is established, the transfer processing unit 102 passes the resale information to the distributed ledger processing unit 104. Here, the resale information is information for uniquely specifying the access right and information for specifying the user on the purchasing side. In the present embodiment, the user ID hash value on the selling side, the content ID, and the content ID, and the information are used. It is a combination of user ID hash values on the purchasing side. However, the contents of the resale information may be arbitrarily changed by those skilled in the art.

Next, the distributed ledger processing unit 104 requests the distributed ledger network system BC to update the access right based on the resale information (step S42). In the case of temporary transfer by lending instead of resale, the lending deadline is sent here as a renewal request.

The distributed ledger network system BC changes the owner ID hash value of the access right to the user ID hash value of the purchase side (transfer destination) in step S43, and updates the status to "online use" in the blockchain. Record in.

In step S44, the distributed ledger processing unit 104 receives the access right update result, and further sends the resale result to the providing service processing device 2 in step S45. The provided service processing device 2 performs a settlement process in which the user on the purchasing side pays the content price to the user on the selling side (step S46), and the resale result is sent to the user terminal 3 on both the selling side and the purchasing side. Notification (step S47) is given to the user, and the process ends.

As described above, by recording the transfer of access rights in the distributed ledger database, resale of content can be safely realized. In the case of temporary transfer, the owner ID hash value of the access right is temporarily rewritten to that of the user of the transfer destination by the process of FIG. 8, but when the loan period expires, the owner ID hash value is changed again. It will be changed to that of the original user, and the original owner will be able to use the content again.

According to the content management system of the present embodiment, information on contents sold by a plurality of provided services can be collectively managed, and access rights given to the purchaser can be distributed and safely managed by a plurality of entities. As a result, even if the provided service is closed, the access right of the user who purchased the content by the provided service is guaranteed based on the information recorded in the distributed ledger database.

Further, by recording the status of the access right in the distributed ledger database, it is possible to prevent the user from reselling the access right with the content data stored in the user terminal 3.

The access right information recorded in the distributed ledger database may be provided to the outside. For example, it is conceivable to provide information on the owner of the access right to the outside via an API (Application Programming Interface) that returns a list of users who have the right to access the specific content. This makes it possible, for example, to hold a reader-only event for a specific book, or to provide benefits such as a handshake ticket to the owner of the right to access the content by an external third party.

<Content distribution>
In the present invention, not only the inquiry of the access right information is performed, but also the content data is distributed based on the result. Here, after the content is released, it may be desired to cancel the distribution due to, for example, a copyright problem. Therefore, in the present embodiment, the content master storage unit 106 further stores the distribution possibility associated with the content identification information as the content master, and the content is distributed based on this. Hereinafter, the distribution of the content data will be described in detail with reference to FIG.

FIG. 9 is a sequence diagram showing a flow from receiving a distribution request from the user terminal 3 in the present embodiment, specifying the target content, and distributing the content. Although the process is the same as that in FIG. 6, since the update of the offline expiration date has already been described, the description thereof is omitted here.

First, in steps S51 to S53, a distribution request is transmitted from the user terminal 3 to the content management server 1 in the same manner as in steps S21 to S23, and the access right is confirmed in the distributed ledger network system BC based on the distribution request. Next, in step S54, as an access right response, whether or not the access right information whose owner ID hash value matches the user ID hash value is recorded is returned, and the access right information is recorded in the distributed ledger network system BC. If so, the content management server receives the content ID included in the access right information.

Then, the content distribution unit 103 identifies the content corresponding to the content ID received in step S54 based on the content master in order to distribute the content. Further, in step S55, the content master of the content confirms whether or not the content can be distributed (delivery is possible for each content) set in association with the content ID, and if it is possible to distribute, it is determined that the content can be distributed and the step is taken. Proceed to S56. On the other hand, if delivery is not possible, information indicating that fact is transmitted to the user terminal 3 to end the process.

In step S56, the content to which the unauthorized distribution prevention information is added is generated based on the content data of the content specified in step S55. Here, the unauthorized distribution prevention information refers to any information for preventing unauthorized distribution of the content, including the owner ID hash value included in the access right and the expiration date of the downloaded content.

Then, by transmitting the generated data to the user terminal 3 in step S57, the content specified by the content ID in the access right information can be distributed to the user terminal 3.

As described above, in the present invention, the target content can be specified based on the access right information and distributed to the user terminal 3. It is not always necessary to refer to the record of the distributed ledger network system BC every time when checking the latest access right status, and a database updated based on the information of the distributed ledger network system BC may be used separately. For example, a database that separately stores the latest information such as the content ID, serial number, status, owner ID hash value, and offline expiration date in association with the content issuance ID is provided, and the database is the distributed ledger network system BC. It may be in a form updated by recording. In this case, the processing in steps S53 to S56 of FIG. 9 is performed based on the latest information stored in the database.

1: Content management server 2: Provided service processing device 3: User terminal 100: Access right processing reception unit 101: Generation processing unit 102: Transfer processing unit 103: Content distribution unit 104: Distributed ledger processing unit 105: User registration unit 106: Content master storage unit 107: Content data storage unit 108: Purchase history storage unit 109: Provided service information storage unit 110: User information storage unit BC: Distributed ledger network system

Claims (12)

A content management system that manages access rights to electronic content.
Equipped with a content distribution unit and a distributed ledger processing unit
The distributed ledger processing unit is configured to be able to record in the distributed ledger database the content issuing ID that uniquely identifies the access right information, the identification information of the content, and the access right information including the user identification information.
When the content distribution unit receives a distribution request for the content from the user and determines that the content can be distributed based on the access right information, the content distribution unit is specified by the identification information of the content in the access right information. A content management system configured to be able to deliver the above-mentioned contents to the above-mentioned users. The content distribution unit makes a request to determine whether or not the content specified by the access right information can be distributed by referring to the distribution availability of each content preset in association with the identification information of the content. Item 1. The content management system according to item 1. The content management system includes an access right processing reception unit.
The access right processing reception unit receives a recording request for access right information based on user input, and passes the recording request to the distributed ledger processing unit.
The recording request includes identification information of the content for registering new access right information and identification information of the user, or information for identifying the recorded access right information.
The content management system according to claim 1 or 2. The access right processing receiving unit is configured to be communicable with a plurality of provided service processing devices that provide the content to the user, and the user can provide the content to the content via the provided service processing device. Accepts requests to record access right information,
The user identification information in the access right information recorded in the distributed ledger database is a user ID hash value.
The provided service processing device is
For the user managed by itself, it holds mapping information indicating the correspondence between the user ID and the user ID hash value.
The user ID is received based on the input of the user, and the user ID hash value corresponding to the user ID is specified by the mapping information as the identification information of the user in the recording request. Send to the access right processing reception section,
The content management system according to claim 3. The distributed ledger processing unit is configured to be recordable by adding distribution availability information indicating distribution availability to the access right information.
The content management system according to claim 3 or 4, wherein the content distribution unit determines whether or not the content can be distributed based on the distribution availability information and the identification information of the user who made the distribution request. When the access right processing reception unit receives a request for transfer of the access right from the user in which the access right information to the content is recorded to another user, the access right processing reception unit refers to the access right information. Based on the identification information of the user who made the transfer request, it is determined whether or not the access right can be transferred.
When the transfer is possible, the transfer request including the information for specifying the access right information and the identification information of the user at the transfer destination is passed to the distributed ledger processing unit.
The content management system according to any one of claims 3 to 5, wherein the distributed ledger processing unit updates the access right information recorded in the distributed ledger database based on the transfer request. When the access right processing reception unit receives the transfer request, the distributed ledger processing unit provides information indicating that the content cannot be delivered to the user who is the owner of the access right before the transfer. The content management system according to claim 6, which is recorded in the distributed ledger database. When the content distribution unit receives an offline use request as a distribution request for the content from the user having the access right, the content distribution unit causes the user's terminal to download the content with an expiration date and the access right information. And the distribution information including the expiration date are passed to the distributed ledger processing unit.
The distributed ledger processing unit is configured to be recordable by adding transferability information indicating whether or not the access right can be transferred to the access right information based on the distribution information.
The content management system according to claim 6 or 7, wherein the access right processing reception unit determines that the transfer of the access right is not possible if the transfer is within the expiration date, based on the transfer possibility information. The transfer of access rights includes a temporary transfer to realize the lending of the content.
The access right processing reception unit accepts a temporary transfer request including a loan deadline as the transfer request, and if the temporary transfer is possible, delivers the temporary transfer request to the distributed ledger processing unit.
The distributed ledger processing unit
Based on the temporary transfer request, the owner of the access right recorded in the distributed ledger database is updated to the user who is the partner of the temporary transfer, and the lending deadline is given to the access right information. Record and record
The content management system according to any one of claims 6 to 8, wherein the owner of the access right is renewed to the user before the temporary transfer when the loan period has expired. The access right information recorded in the distributed ledger database includes a user ID hash value as identification information of the user, and includes the user ID hash value.
When the content distribution unit receives a distribution request for the content from the user, the content distribution unit refers to the access right information and is configured to be able to distribute the content incorporating the user ID hash value to the user. The content management system according to any one of claims 1 to 9. A content management program that manages access rights to electronic content.
Make the computer function as a content distribution unit and a distributed ledger processing unit,
The distributed ledger processing unit is configured to be able to record in the distributed ledger database the content issuing ID that uniquely identifies the access right information, the identification information of the content, and the access right information including the user identification information.
When the content distribution unit receives a distribution request for the content from the user and determines that the content can be distributed based on the access right information, the content distribution unit is specified by the identification information of the content in the access right information. A content management program configured to be able to deliver the above-mentioned contents to the above-mentioned users. A content management method that manages the access rights of electronic content, and the computer
In the distributed ledger database, the content issuance ID that uniquely identifies the access right information, the identification information of the content, and the access right information including the user identification information are recorded.
When the content distribution request from the user is received and it is determined that the content can be distributed based on the access right information, the content specified by the content identification information in the access right information is referred to as the content. Content management method to deliver to users.

Images