JP3895940B2 - Information terminal equipment - Google Patents

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to an information terminal device that retains a plurality of databases for managing content data, and retrieves the plurality of databases in response to a content data acquisition request to acquire content data.
[0002]
[Prior art]
In recent years, with the progress of digital information communication networks such as the Internet, it has become possible for each user to easily access network information using a personal terminal using a mobile phone or the like.
[0003]
In such a digital information communication network, information is transmitted by digital signals. Therefore, for example, even when each individual user copies music or video data transmitted in the information communication network as described above, the data is copied with almost no deterioration in sound quality and image quality due to such copying. It is possible.
[0004]
Therefore, when content such as music data or image data that has the copyright of the author is transmitted on such a digital information communication network, unless the appropriate copyright protection measures have been taken, The right of the right holder may be infringed.
[0005]
On the other hand, assuming that the purpose of copyright protection is given top priority and content data cannot be distributed via the rapidly expanding digital information communication network, basically a certain amount of Even for copyright holders who can collect royalty fees, it is disadvantageous.
[0006]
Here, instead of distribution through the digital information communication network as described above, taking a recording medium on which digital data is recorded as an example, a CD (compact disc) on which music data that is usually sold is recorded. In principle, music data can be copied from a CD to a magneto-optical disk (MD or the like) as long as the copied music is stopped for personal use. However, an individual user who performs digital recording or the like indirectly pays a certain amount of money for a digital recording device itself or a medium such as an MD as a deposit to the copyright holder.
[0007]
In addition, when music data, which is a digital signal, is copied from a CD to an MD, the music information is converted into digital data from a recordable MD to another MD in view of the fact that these pieces of information are digital data with almost no copy deterioration. Copying is not possible due to the configuration of the device for copyright protection.
[0008]
For these reasons as well, distribution of content data such as music data and image data to the public through the digital information communication network itself is an act that is restricted by the copyright holder's public transmission rights. Adequate measures for protection need to be taken.
[0009]
In this case, for content data such as music data and image data that are copyrighted works transmitted to the public through the digital information communication network, it is necessary to prevent the received content data from being further copied without permission. It becomes.
[0010]
Therefore, there is a data distribution system in which a distribution server holding encrypted content data obtained by encrypting content data distributes encrypted content data to a memory card attached to a terminal device such as a mobile phone via the terminal device. Proposed. In this data distribution system, a public encryption key of a memory card that has been authenticated in advance by a certificate authority and its certificate are transmitted to the distribution server when a distribution request for encrypted content data is made, and the certificate that the distribution server is authenticated is sent After confirming reception, the encrypted content data and a license key for decrypting the encrypted content data are transmitted to the memory card. When distributing encrypted content data and a license key, the distribution server and the memory card generate a different session key for each distribution, encrypt the public encryption key with the generated session key, Exchange keys between memory cards.
[0011]
Finally, the distribution server transmits the license encrypted with the public encryption key of each memory card and further encrypted with the session key and the encrypted content data to the memory card. Then, the memory card records the received license key and encrypted content data on the memory card.
[0012]
Then, when reproducing the encrypted content data recorded on the memory card, the memory card is attached to the mobile phone. In addition to the normal telephone function, the mobile phone has a dedicated circuit for decrypting encrypted content data from the memory card, reproducing it, and outputting it to the outside.
[0013]
As described above, each user receives the encrypted content data and license from the distribution server by his / her mobile phone, and records the received encrypted content data and license on his / her memory card.
[0014]
[Problems to be solved by the invention]
However, when each user wants to newly acquire encrypted content data, the encrypted content data may be recorded on the memory card of another user. In such a case, if each user receives the encrypted content data to be acquired from the distribution server, there is a problem that it takes a long time to receive the encrypted content data and the communication cost increases.
[0015]
Therefore, the present invention has been made to solve such a problem, and its purpose is to search the storage location of the encrypted content data that the user wants to acquire, and acquire the encrypted content data from the searched storage location. An information terminal device is provided.
[0016]
[Means for Solving the Problems]
According to the present invention, the information terminal device reproduces the encrypted content data and the encrypted content data by searching a plurality of beta bases created in the plurality of information terminal devices and managing the encrypted content data. An information terminal device for acquiring a license for use, a transmission / reception unit for exchanging data with the outside, a key operation unit for inputting instructions, and a storage unit for storing a plurality of databases and a list And each of the plurality of databases includes a plurality of pieces of content specifying information for specifying a plurality of pieces of encrypted content data, and a plurality of pieces of license information indicating presence / absence of a license corresponding to the encrypted content data, Identify multiple recording devices to identify data recording devices with encrypted content data and licenses recorded The list includes a plurality of database specifying information for specifying a plurality of beta bases and a plurality of terminal specifying information for specifying the information terminal device in which each of the plurality of databases is generated. In response to the purchase request for encrypted content data, the control unit transmits the purchase content search condition input via the key operation unit to the distribution server via the transmission / reception unit, and the content content that matches the search condition The specific information is received from the distribution server via the transmission / reception unit, and the license information and the terminal specific information corresponding to the content specific information that matches the content specific information that matches the received content specific information are obtained from a plurality of databases and lists. Search result data including the extracted content identification information, license information, and terminal identification information. To create the base.
[0017]
Preferably, the information terminal device further includes a display unit for giving various kinds of information to the user as visual information, and the control unit reads out the content specifying information, the license information, and the terminal specifying information from the search result database, and displays the display unit. When a selection of encrypted content data held by another information terminal device is input via the key operation unit, a request to copy the encrypted content data is transmitted to the other information terminal device via the transmission / reception unit. Then, when copying is permitted in the other information terminal device, the encrypted content data is received from the other information terminal device via the transmission / reception unit.
[0018]
Preferably, the control unit further receives a license corresponding to the encrypted content data copied from the distribution server when the license information corresponding to the encrypted content data requested to be acquired indicates no license.
[0019]
Preferably, the information terminal device further includes a display unit for giving various kinds of information to the user as visual information, and an interface for controlling the exchange between the data recording device, and the control unit includes the content specifying information, the license Information and terminal identification information are read from the search result database and displayed on the display unit, and the selection of the encrypted content data recorded in the data recording device with which the user exchanges is input and selected via the key operation unit. When the license information corresponding to the encrypted content data indicates that there is no license, a license transmission request is transmitted to the distribution server via the transmission / reception unit, and the license is received from the distribution server via the transmission / reception unit.
[0020]
Preferably, the information terminal device further includes a display unit for giving various kinds of information to the user as visual information, and an interface for controlling the exchange between the data recording device, and the control unit includes the content specifying information, the license Information and terminal identification information are read from the search result database and displayed on the display unit, and the encrypted content data selected when the selection of the encrypted content data held by the distribution server is input via the key operation unit and the selection A license transmission request corresponding to the encrypted content data is transmitted to the distribution server via the transmission / reception unit, and the encrypted content data and the license are received from the distribution server via the transmission / reception unit.
[0021]
Preferably, the control unit further receives a database held by another information terminal device from the other information terminal device via the transmission / reception unit in response to the database acquisition request, and stores the received database in the storage unit Update the list by adding the database stored with it.
[0022]
DETAILED DESCRIPTION OF THE INVENTION
Embodiments of the present invention will be described in detail with reference to the drawings. In the drawings, the same or corresponding parts are denoted by the same reference numerals and description thereof will not be repeated.
[0023]
FIG. 1 is a schematic diagram for conceptually explaining the overall configuration of a data distribution system in which an information terminal device according to the present invention acquires encrypted content data and a license for decrypting encrypted content data.
[0024]
In the following description, the configuration of a data distribution system that distributes music data to the memory cards 110 to 112 mounted on the user's mobile phone via the mobile phone network will be described as an example. As will be apparent from the following description. The present invention is not limited to such a case, but can be applied to the case of distributing content data as other copyrighted works such as image data, moving image data, news, and English conversation data. It is possible.
[0025]
Referring to FIG. 1, distribution carrier 20 relays a distribution request (distribution request) from a user obtained through its mobile phone network to distribution server 10. The distribution server 10 that manages content data such as music data has a memory card 110 (or 111, 112) attached to the cellular phone 100 (or 101, 102) of the cellular phone user who has accessed for data distribution. Whether or not it has legitimate authentication data, that is, whether or not it is a legitimate memory card, and in order to protect the copyright on the legitimate memory card, the content data is Encrypted content data as information necessary for reproducing such encrypted content data, additional information, and encrypted content data to a mobile phone company that is a distribution carrier 20 for distributing data after encryption. A license including a license key for decrypting is given.
[0026]
The distribution carrier 20 transmits the distribution request to the memory card 110 (or 111, 112) attached to the cellular phone 100 (or 101, 102) that has transmitted the distribution request through its own cellular phone network. Alternatively, the encrypted content data and the license are distributed via 101,02).
[0027]
In FIG. 1, for example, a removable memory card 110 (or 111, 112) is attached to a mobile phone 100 (or 101, 102) of a mobile phone user. The memory card 110 (or 111, 112) receives the encrypted content data received by the mobile phone 100 (or 101, 102), decrypts the encryption performed to protect the copyright, This is given to a music playback unit (not shown) in the telephone 100 (or 101, 102).
[0028]
Furthermore, for example, a mobile phone user can “play” and listen to such content data via the headphones 130 (or 131, 132) connected to the mobile phone 100 (or 101, 102). It is.
[0029]
By adopting such a configuration, first, unless the memory card 110 (or 111, 112) is used, it becomes difficult to receive the content data from the distribution server 10 and reproduce the music.
[0030]
Moreover, the distribution carrier 20 distributes the copyright fee generated each time the mobile phone user receives (downloads) the content data by counting the frequency each time content data for one song is distributed, for example. If the carrier 20 collects the call charge for the mobile phone, the copyright holder can easily secure the copyright charge.
[0031]
Therefore, in the data distribution system shown in FIG. 1, the memory card 110 (or 111, 112) attached to the cellular phone 100 (or 101, 102) is encrypted content data from the distribution server 10 via the cellular phone network. Additional information and licenses can be received and stored.
[0032]
In the configuration as shown in FIG. 1, in order to make it possible for the user of the mobile phone to reproduce the content data that is encrypted and distributed, the system requires firstly a license for communication. This is a method for distribution, and secondly, the method of encrypting the content data itself, and thirdly, the copyright protection for preventing such unauthorized copying of the content data is realized. It is the structure to do.
[0033]
Each of the mobile phones 100 to 102 creates a database for managing the encrypted content data stored in the attached memory cards 110 to 112 by a method described later, and holds the created beta base. Further, the cellular phone 100 receives a database for managing the encrypted content data stored in the memory cards 111 and 112 from the cellular phones 101 and 102, and manages the encrypted content data stored in the memory card 110. Keep with the database for. That is, the user of the mobile phone 100 receives from the mobile phone 101, 102 a database for managing the encrypted content data stored in the memory cards 111, 112 owned by the user of the mobile phone 101, 102 that is a friend. Hold. In this way, a friend obtains a database for managing encrypted content data received from the distribution server 10 and stored in his / her own memory cards 111 and 112 and holds it in the mobile phone 100, as will be described later. When the user of the mobile phone 100 wants to acquire new encrypted content data, if the new encrypted content data has already been distributed to the memory cards 111 and 112, the new encrypted content data Content data can be acquired from the memory cards 111 and 112 via the mobile phones 101 and 102. Communication between the mobile phone 100 and the mobile phones 101 and 102 may be performed via a USB (Universal Series Bus) cable 65 or may be performed by wireless communication.
[0034]
Then, the mobile phone 100 receives a license for decrypting and reproducing the encrypted content data received from the mobile phones 101 and 102 from the distribution server 10 via the mobile phone network. Since the distribution server 10 charges for the distribution of the license, the license is acquired from the distribution server 10 in principle.
[0035]
In the embodiment of the present invention, particularly at the time of each processing of distribution and reproduction, the authentication and check functions for the destination of the content data are enhanced, and an unauthenticated recording device and information terminal device (encryption) A configuration for enhancing copyright protection of content data by preventing output of the content data to a playback terminal that can also decrypt and play back the encrypted content data is also referred to as a mobile phone.
[0036]
In the following description, the process of transmitting encrypted content data, additional information, and a license from the distribution server 10 to each mobile phone is referred to as “distribution”.
[0037]
FIG. 2 is a diagram for explaining characteristics of data, information, etc. for communication used in the data distribution system shown in FIG.
[0038]
First, data distributed from the distribution server 10 will be described. Dc is content data such as music data. The content data Dc is encrypted so that it can be decrypted with the license key Kc. Encrypted content data {Dc} Kc that has been decrypted by the license key Kc is distributed in this format from the distribution server 10 to the user of the mobile phone.
[0039]
In the following, the notation {Y} X indicates that the data Y has been encrypted with the decryption key X.
[0040]
Further, the distribution server 10 distributes additional information Dc-inf as plain text information such as copyrights related to the content data or server access, along with the encrypted content data.
[0041]
Further, as a license, a license key Kc and a license ID that is a management code for specifying distribution of a license key or the like from the distribution server 10 are distributed between the distribution server 10 and the mobile phone 100 (or 101, 102). Exchanged. Further, the license is generated based on a license purchase condition AC including information such as a content ID, which is a code for identifying the content data Dc, and the number of licenses and function limitations determined by designation from the user side. In addition, there are access control information ACm that is information related to restrictions on access to the license in the recording device (memory card), reproduction control information ACp that is control information related to reproduction in the information terminal device, and the like. Specifically, the access control information ACm is control information for outputting a license or a license key from the memory card to the outside, and can be reproduced (number of license keys to be output for reproduction), license Restriction information on moving / duplicating files. The reproduction control information ACp is information for restricting reproduction after the content reproduction circuit receives the license key to reproduce the content data, and includes reproduction time limit, reproduction speed change restriction, reproduction range designation (partial license), and the like. .
[0042]
Hereinafter, the license ID, the content ID, the license key Kc, the access control information ACm, and the reproduction control information ACp are collectively referred to as a license.
[0043]
FIG. 3 is a diagram for explaining the characteristics of data, information, etc. for authentication used in the data distribution system shown in FIG.
[0044]
The content playback device in the information terminal device and the memory card are provided with unique public encryption keys KPpy and KPmw, respectively. The public encryption keys KPpy and KPmw are unique to the content playback device, the private decryption key Kpy and the memory card. The secret decryption key Kmw can be used for decryption. These public encryption key and secret decryption key have different values for each type of memory card. These public encryption keys and secret decryption keys are collectively referred to as class keys, these public encryption keys are referred to as class public encryption keys, secret decryption keys are referred to as class secret decryption keys, and units sharing the class keys are referred to as classes. Classes differ depending on the manufacturer, product type, production lot, and the like.
[0045]
Also, Cpy is provided as the class certificate for the content playback device, and Cmw is provided as the class certificate for the memory card. These class certificates have different information for each content playback device and memory card class.
[0046]
The class public encryption key and class certificate of these content reproduction devices are in the format of authentication data {KPpy // Cpy} KPa, and the class public encryption key and class certificate of the memory card are authentication data {KPmw // Cmw}. The data is recorded on the data reproduction device and the memory card at the time of shipment in the KPa format. As will be described in detail later, KPa is a public authentication key common to the entire distribution system.
[0047]
In addition, as a key for managing data processing in the memory card 110, a public encryption key KPmcx set for each medium called a memory card and data encrypted with the public encryption key KPmcx can be decrypted. There exists a secret decryption key Kmcx unique to the. The public encryption key and secret decryption key set for each memory card are collectively referred to as individual keys, the public encryption key KPmcx is referred to as an individual public encryption key, and the secret decryption key Kmcx is referred to as an individual secret decryption key.
[0048]
Common keys Ks1 to Ks3 generated in distribution server 10, cellular phones 100 to 102, and memory cards 110 to 112 each time licenses are distributed and reproduced.
[0049]
Here, the common keys Ks1 to Ks3 are unique common keys generated for each “session” that is a unit of communication or access between the distribution server, the content reproduction device, or the memory card. The keys Ks1 to Ks3 are also called “session keys”.
[0050]
These session keys Ks1 to Ks3 are managed by the distribution server, the content reproduction device, and the memory card by having a unique value for each session. Specifically, the session key Ks1 is generated for each distribution session by the distribution server. The session key Ks2 is generated for each distribution session and reproduction session by the memory card, and the session key Ks3 is generated for each reproduction session in the content reproduction device. In each session, these session keys are exchanged, the session keys generated by other devices are received, the encryption with this session key is performed, and then the license key etc. is transmitted to ensure the security strength in the session. Can be improved.
[0051]
FIG. 4 is a schematic block diagram showing the configuration of the distribution server 10 shown in FIG.
The distribution server 10 includes an information database 304 for storing distribution information such as data obtained by encrypting content data according to a predetermined method and content ID, and charging according to the start of access to the content data for each user of the mobile phone A charging database 302 for holding information, a menu database 307 for holding a menu of content data held in the information database 304, and a distribution of a license ID or the like generated for each license distribution and specifying a license Data for receiving a distribution record database 308 holding logs, information database 304, accounting database 302, menu database 307, and distribution record database 308 via bus BS1 and performing predetermined processing It includes a processing section 310, via the communication network, a communication device 350 for performing data transfer between the delivery carrier 20 and the data processing unit 310.
[0052]
The data processing unit 310 is controlled by the distribution control unit 315 for controlling the operation of the data processing unit 310 and the distribution control unit 315 according to the data on the bus BS1, and generates a session key Ks1 during the distribution session. Session key generation unit 316 for authentication, authentication key holding unit 313 that holds a public authentication key KPa for decrypting authentication data {KPmw // Cmw} KPa sent from the memory card, and a memory card Decryption processing unit that receives the authentication data {KPmw // Cmw} KPa sent from the communication device 350 and the bus BS1 and performs decryption processing using the public authentication key KPa from the authentication key holding unit 313 312; a session key generator 316 that generates a session key Ks1 for each distribution session; The session key Ks1 generated by the key generation unit 316 is encrypted using the class public encryption key KPmw obtained by the decryption processing unit 312 and output to the bus BS1, and the session key Ks1 is encrypted by the session key Ks1 And a decoding processing unit 320 that receives the data transmitted after being converted from the bus BS1 and performs a decoding process.
[0053]
The data processing unit 310 further encrypts the license key Kc and the access control information ACm given from the distribution control unit 315 with the individual public encryption key KPmcx for each memory card obtained by the decryption processing unit 320. Unit 326 and an encryption processing unit 328 for further encrypting the output of encryption processing unit 326 with session key Ks2 provided from decryption processing unit 320 and outputting the result to bus BS1.
[0054]
The operation in the distribution session of the distribution server 10 will be described in detail later using a flowchart.
[0055]
FIG. 5 is a schematic block diagram for explaining the configuration of the mobile phones 100 to 102 shown in FIG.
[0056]
The cellular phones 100 to 102 receive the bus BS2 for exchanging data of each part of the cellular phones 100 to 102, the antenna 1101 for receiving signals wirelessly transmitted through the cellular phone network, and the signals from the antenna 1101. A transmission / reception unit 1102 for converting into a baseband signal or modulating data from each unit of the cellular phones 100 to 102 and supplying the data to the antenna 1101.
[0057]
The cellular phones 100 to 102 further include a RAM 1103 that stores a database for managing encrypted content data created based on the content management information stored in the memory cards 110 to 112 together with the encrypted content data. Note that the RAM 1103 also stores a database acquired from another mobile phone.
[0058]
The cellular phones 100 to 102 further include a controller 1106 for controlling the operation of the cellular phones 100 to 102 via the bus BS2, a key operation unit 1108 for giving instructions from the outside to the cellular phones 100 to 102, And a display panel 1110 for giving information output from the controller 1106 and the like as visual information to the user.
[0059]
The cellular phones 100 to 102 further store removable data cards 110 to 112 for storing content data (music data) from the distribution server 10 or other cellular phones and perform a decoding process, and the memory card 110. ˜112 and a memory card interface 1200 for controlling data exchange between the bus BS2.
[0060]
The cellular phones 100 to 112 further store the authentication data {KPp1 // Cp1} KPa encrypted in a state where the authenticity can be authenticated by decrypting the class public encryption key KPp1 and the class certificate Cp1 with the public authentication key KPa. An authentication data holding unit 1500 is held. Here, it is assumed that the class y of the mobile phones 100 to 102 is y = 1.
[0061]
The cellular phones 100 to 102 further decrypt the data received from the bus BS2 with the Kp1 holding unit 1502 that holds Kp1 that is a class-specific decryption key, and the session key Ks2 generated by the memory cards 110 to 112. And a decoding processing unit 1504 for obtaining.
[0062]
The cellular phones 100 to 102 further encrypt data exchanged on the bus BS2 with the memory cards 110 to 112 in a reproduction session for reproducing the content data stored in the memory cards 110 to 112. Generated by the session key generation unit 1508 that generates the session key Ks3 by a random number or the like, and the session key generation unit 1508 when receiving the license key Kc and the reproduction control information ACp from the memory cards 110 to 112 in the reproduction session of the encrypted content data The encrypted session key Ks3 is encrypted with the session key Ks2 obtained by the decryption processing unit 1504, and is output to the bus BS2.
[0063]
The cellular phones 100 to 102 further decrypt the data on the bus BS2 with the session key Ks3 and output the license key Kc and the reproduction control information ACp, and the encrypted content data {Dc} from the bus BS2. A decryption processing unit 1516 that receives the Kc, decrypts the encrypted content data {Dc} Kc with the license key Kc from the decryption processing unit 1510, and outputs the content data Dc to the music playback unit 1518.
[0064]
The cellular phones 100 to 102 further include a music playback unit 1518 for receiving the output from the decoding processing unit 1516 and playing back the content data, and a DA converter for converting the output of the music playback unit 1518 from a digital signal to an analog signal. 1519 and a terminal 1530 for outputting the output of the DA converter 1519 to an external output device (not shown) such as a headphone.
[0065]
The mobile phones 100 to 102 further have a USB interface 1112 for controlling data exchange between the bus BS2 and the terminal 1114 when receiving content data, additional information, and a license from another mobile phone, and a USB cable 65. And a terminal 1114 for connecting.
[0066]
In FIG. 5, the area surrounded by a dotted line constitutes a content reproduction device 1550 that decrypts encrypted content data and reproduces music data.
[0067]
Further, in FIG. 5, a voice codec that performs modulation and decoding of voice data necessary for a normal call function, a microphone, and the like are omitted.
[0068]
The operation of each component of the mobile phones 100 to 102 in each session will be described in detail later using a flowchart.
[0069]
FIG. 6 is a schematic block diagram for explaining the configuration of the memory cards 110 to 112 shown in FIG.
[0070]
As already described, KPmw and Kmw are provided as the class public encryption key and class secret decryption key of the memory card, and the memory card class certificate Cmw is provided. In the memory card 110, the natural number w = 3. Shall be represented. Further, the natural number x for identifying the memory card is represented by x = 4 for the memory card 110.
[0071]
Therefore, the memory card 110 has an authentication data holding unit 1400 that holds authentication data {KPm3 // Cm3} KPa, and a Kmc holding unit that holds an individual secret decryption key Kmc4 that is a unique decryption key set for each memory card. 1402, a Km holding unit 1421 that holds the class secret decryption key Km3, and a KPmc holding unit 1416 that holds the public encryption key KPmc4 that can be decrypted by the individual secret decryption key Kmc4.
[0072]
As described above, by providing an encryption key for a recording device called a memory card, management of distributed content data and encrypted license keys can be executed in units of memory cards, as will be apparent from the following description. It becomes possible.
[0073]
The memory card 110 is further supplied from the interface 1424 to the interface 1424 that exchanges signals with the memory card interface 1200 via the terminal 1426, the bus BS3 that exchanges signals with the interface 1424, and the bus BS3. From the data, the class secret decryption key Km3 is received from the Km holding unit 1421, the decryption processing unit 1422 that outputs the session key Ks1 generated by the distribution server 10 in the distribution session to the contact Pa, and the public authentication key KPa from the KPa holding unit 1414. In response, the decryption processing of the data given to the bus BS3 is executed by the public authentication key KPa, and the decryption result and the obtained class certificate are output to the controller 1420, and the obtained class public key is output to the encryption processing unit 1410. Decoding processing unit 1408 and switching An encryption processing unit 1406 that encrypts data selectively provided by the changeover switch 1446 using a key selectively provided by the switch 1442 and outputs the encrypted data to the bus BS4.
[0074]
The memory card 110 further includes a session key generation unit 1418 that generates a session key Ks2 in each of the distribution and reproduction sessions, and a class public encryption that is obtained by the decryption processing unit 1408 from the session key Ks2 output by the session key generation unit 1418. An encryption processing unit 1410 that encrypts the data with the key KPpy or KPmw and outputs it to the bus BS3, and a decryption process that receives the data encrypted with the session key Ks2 from the bus BS3 and decrypts it with the session key Ks2 obtained from the session key generation unit 1418 Individual disclosure of the memory key 110 and the license key Kc and the reproduction control information ACp read from the memory 1415 in the reproduction session of the unit 1412 and the encrypted content data in the decryption processing unit 1412 No. and a cryptographic processing unit 1417 to encrypt the key KPmcx (x ≠ 4).
[0075]
The memory card 110 further communicates between the decryption processing unit 1404 for decrypting the data on the bus BS3 with the individual secret decryption key Kmc4 of the memory card 110 paired with the individual public encryption key KPmc4 and the distribution server 10. Log for storing the history, encrypted content data {Dc} Kc, license (Kc, ACp, ACm, license ID, content ID) for reproducing the encrypted content data {Dc} Kc, and additional information Dc -Inf, a reproduction list of encrypted content data, and a memory 1415 for receiving and storing a license management file for managing licenses from the bus BS3. The memory 1415 is configured by a semiconductor memory, for example. The memory 1415 includes a log area 1415A, a license area 1415B, and a data area 1415C. The log area 1415A is an area for recording a log. The log area 1415A includes a reception log recorded when a license is input to the memory card 110 and stored.
[0076]
The license area 1415B is an area for recording a license. The license area 1415B stores a license (license key Kc, reproduction control information ACp, access restriction information ACm, license ID, content ID). The license is stored in the license area 1415B corresponding to the entry number. When accessing the license, the license is stored, or the entry for which the license is to be recorded is designated by the entry number. It has become.
[0077]
The data area 1415C includes encrypted content data {Dc} Kc, additional information Dc-inf of the encrypted content data, a license management file that records information necessary for managing the license for each encrypted content, and a memory card. This is an area for recording a reproduction list for recording basic information for accessing recorded encrypted content data and licenses. The data area 1415C can be directly accessed from the outside.
[0078]
The memory card 110 further includes a controller 1420 for exchanging data with the outside via the bus BS3, receiving playback information and the like with the bus BS3, and controlling the operation of the memory card 110.
[0079]
All configurations except the data region 1415C are configured in a tamper resistant module region.
[0080]
The memory cards 111 and 112 have the same configuration as the memory card 110. In this case, the natural number x for identifying the memory card is a natural number other than “4”.
[0081]
The operation of each session in the data distribution system shown in FIG. 1 will be described below.
[0082]
[Delivery]
First, an operation of distributing encrypted content data and a license from the distribution server 10 to the memory card 110 of the mobile phone 100 in the data distribution system shown in FIG. 1 will be described.
[0083]
7 and 8 show encrypted content data {Dc} Kc and additional information Dc-inf to the memory card 110 attached to the mobile phone 100 generated when the encrypted content data is purchased in the data distribution system shown in FIG. FIG. 5 is a first and second flowchart for explaining a license distribution operation (hereinafter also referred to as a distribution session).
[0084]
Prior to the processing in FIG. 7, it is assumed that the user of the mobile phone 100 has connected to the distribution server 10 via the mobile phone network and has acquired the content ID for the content desired to be purchased.
[0085]
Referring to FIG. 7, a distribution request is made by the user of mobile phone 100 by designating a content ID via key operation unit 1108 (step S100). Then, the user is instructed to input the purchase condition AC for purchasing the license of the encrypted content data via the key operation unit 1108, and the purchase condition AC is input (step S102). That is, in order to purchase the license key Kc for decrypting the selected encrypted content data, the access control information ACm and the reproduction control information ACp for the encrypted content data are set and the purchase condition AC is input.
[0086]
When the purchase condition AC for encrypted content data is input, the controller 1106 gives an instruction to output authentication data to the memory card 110 via the bus BS2 and the memory card interface 1200 (step S104). The controller 1420 of the memory card 110 receives the authentication data transmission request via the terminal 1426, the interface 1424, and the bus BS3 (step S106). Controller 1420 reads authentication data {KPm3 // Cm3} KPa from authentication data holding unit 1400 via bus BS3 and outputs {KPm3 // Cm3} KPa via bus BS3, interface 1424 and terminal 1426. (Step S108).
[0087]
In addition to the authentication data {KPm3 // Cm3} KPa from the memory card 110, the controller 1106 of the mobile phone 100 transmits a content ID, license purchase condition data AC, and a distribution request to the distribution server 10 (step S110).
[0088]
The distribution server 10 receives the distribution request, content ID, authentication data {KPm3 // Cm3} KPa, and license purchase condition data AC from the mobile phone 100 (step S112), and outputs them from the memory card 110 in the decryption processing unit 312. The decrypted processing is performed on the authentication data with the public authentication key KPa (step S114).
[0089]
The distribution control unit 315 performs an authentication process for determining whether or not the authentication data encrypted for verifying its legitimacy has been received from the decryption processing result in the decryption processing unit 312 (Step S312). S116). If it is determined that the authentication data is valid, the distribution control unit 315 approves and accepts the class public encryption key KPm3 and the class certificate Cm3. Then, the process proceeds to the next process (step S118). If it is not valid authentication data, it is rejected, and the distribution session is terminated without accepting the class public encryption key KPm3 and the class certificate Cm3 (step S184).
[0090]
As a result of authentication, when it is confirmed that the access is from a mobile phone equipped with a memory card having legitimate authentication data, in the distribution server 10, the session key generation unit 316 generates a session key Ks1 for distribution. (Step S118). Session key Ks1 is encrypted by encryption processing unit 318 using class public encryption key KPm3 corresponding to memory card 110 obtained by decryption processing unit 312 (step S120).
[0091]
The distribution control unit 315 generates a license ID (step S122), and outputs the license ID and the encrypted session key Ks1 to the outside as the license ID // {Ks1} Km3 via the bus BS1 and the communication device 350. (Step S124).
[0092]
When the mobile phone 100 receives the license ID // {Ks1} Km3, the controller 1106 inputs the license ID // {Ks1} Km3 into the memory card 110 (step S126). Then, in memory card 110, controller 1420 receives license ID // {Ks1} Km3 via terminal 1426 and interface 1424 (step S128). Then, the controller 1420 initializes the reception log recorded in the log area 1415A of the memory 1415 via the bus BS3, and stores the received license ID in the log area 1415A (step S130). At this time, the reception state in the reception log is set to OFF. Thereafter, the controller 1420 gives {Ks1} Km3 to the decryption processing unit 1422 via the bus BS3, and the decryption processing unit 1422 uses the class secret decryption key Km3 unique to the memory card 110 held in the Km holding unit 1421. By decrypting Ks1} Km3, session key Ks1 is decrypted, and session key Ks1 is accepted (step S132).
[0093]
When the controller 1420 confirms acceptance of the session key Ks1 generated by the distribution server 10, the controller 1420 instructs the session key generation unit 1418 to generate the session key Ks2 generated during the distribution operation in the memory card 110. Then, the session key generation unit 1418 generates a session key Ks2 (step S134). The controller 1420 receives the generated session key Ks2 via the bus BS3, stores the received session key Ks2 in the log area 1415A of the memory 1415, and turns on the reception state (step S136).
[0094]
The encryption processing unit 1406 receives the session key Ks2 and the individual public encryption key KPmc4 which are given by sequentially switching the contacts of the changeover switch 1446 with the session key Ks1 given from the decryption processing unit 1422 via the contact Pa of the changeover switch 1442. The data is encrypted as one data string, and {Ks2 // KPmc4} Ks1 is output to the bus BS3. The encrypted data {Ks2 // KPmc4} Ks1 output to the bus BS3 is output from the bus BS3 to the mobile phone 100 via the interface 1424 and the terminal 1426 (step S138), and transmitted from the mobile phone 100 to the distribution server 10. (Step S140).
[0095]
Referring to FIG. 8, distribution server 10 receives {Ks2 // KPmc4} Ks1, executes decryption processing with session key Ks1 in decryption processing unit 320, and generates session keys Ks2, Then, the individual public encryption key KPmc4 of the memory card 110 is received (step S142).
[0096]
The distribution control unit 315 acquires the license key Kc from the information database 304 according to the content ID acquired at step S112 (step S144), and the access control information ACm and the reproduction control information according to the license purchase condition data AC acquired at step S112. ACp is determined (step S146).
[0097]
The distribution control unit 315 gives the generated license, that is, the license ID, the content ID, the license key Kc, the reproduction control information ACp, and the access control information ACm to the encryption processing unit 326. The encryption processing unit 326 encrypts the license with the individual public encryption key KPmc4 of the memory card 110 obtained by the decryption processing unit 320, and encrypts the data {license ID // content ID // Kc // ACm // ACp} Kmc4. Is generated (step S148). Then, the encryption processing unit 328 encrypts the encrypted data {license ID // content ID // Kc // ACm // ACp} Kmc4 from the encryption processing unit 326 with the session key Ks2 from the decryption processing unit 320, The encrypted data {{license ID // content ID // Kc // ACm // ACp} Kmc4} Ks2 is output. Distribution control unit 315 transmits encrypted data {{license ID // content ID // Kc // ACm // ACp} Kmc4} Ks2 to mobile phone 100 via bus BS1 and communication device 350 (step S150). .
[0098]
The cellular phone 100 receives the transmitted encrypted data {{license ID // content ID // Kc // ACm // ACp} Kmc4} Ks2 and inputs it to the memory card 110 via the bus BS2 (step S152). ). In the memory card 110, the decoding processing unit 1412 decodes the received data given to the bus BS3 via the terminal 1426 and the interface 1424. Decryption processing unit 1412 decrypts the received data on bus BS3 using session key Ks2 given from session key generation unit 1418, and outputs the decrypted data to bus BS3 (step S154).
[0099]
At this stage, an encrypted license {license ID // content ID // Kc // ACm // ACp} Kmc4 that can be decrypted with the individual secret decryption key Kmc4 held in the Kmc holding unit 1402 is output to the bus BS3. (Step S154).
[0100]
In accordance with an instruction from the controller 1420, the encrypted license {license ID // content ID // Kc // ACm // ACp} Kmc4 is decrypted by the individual secret decryption key Kmc4 in the decryption processing unit 1404, and the license (license key Kc, License ID, content ID, access control information ACm and reproduction control information ACp) are accepted (step S156). At this stage, an entry number for storing a license is input from the controller 1106 of the mobile phone 100 via the terminal 1426 and the interface 1424.
[0101]
Then, controller 1420 stores the received license (license key Kc, license ID, content ID, access control information ACm, and reproduction control information ACp) in license area 1415B of memory 1415 according to the received entry number (step S158). Then, the controller 1420 turns off the reception state recorded in the reception log of the log area 1415A of the memory 1415 via the bus BS3 (step S160). When the writing of the license is completed, the controller 1106 of the mobile phone 100 updates the license management information, and inputs the updated license management information to the memory card 110 (step S162). The controller 1420 of the memory card 110 writes the input license management information in the data area 1415C of the memory 1415 (step S164).
[0102]
After the license distribution is completed, the controller 1106 of the mobile phone 100 transmits a distribution request for encrypted content data to the distribution server 10 (step S166), and the distribution server 10 receives the distribution request for encrypted content data. (Step S168). Then, the distribution control unit 315 of the distribution server 10 acquires the encrypted content data {Dc} Kc and the additional information Dc-inf from the information database 304, and outputs these data via the bus BS1 and the communication device 350. (Step S170).
[0103]
The mobile phone 100 receives {Dc} Kc // Dc-inf and accepts the encrypted content data {Dc} Kc and the additional information Dc-inf (step S172). Then, controller 1106 inputs encrypted content data {Dc} Kc and additional information Dc-inf to memory card 110 via bus BS2 and memory card interface 1200 (step S174).
[0104]
The controller 1420 of the memory card 110 receives the encrypted content data {Dc} Kc and the additional information Dc-inf via the terminal 1426, the interface 1424, and the bus BS3, and receives the received encrypted content data {Dc} Kc and the additional information. Information Dc-inf is recorded in the data area 1415C of the memory 1415 (step S176). Then, the controller 1420 adds the received content information to the reproduction list in the data area 1415C (step S178).
[0105]
Then, controller 1106 of mobile phone 100 transmits distribution acceptance of encrypted content data {Dc} Kc and additional information Dc-inf to distribution server 10 (step S180), and distribution server 10 receives the distribution acceptance. The distribution control unit 315 performs the accounting process by writing into the accounting database 302 via the bus BS1 (step S182). Then, the distribution operation ends (step S184).
[0106]
In this way, the memory card 110 attached to the mobile phone 100 is a device that holds regular authentication data, and at the same time, the public encryption key KPm3 that can be encrypted and transmitted together with the class certificate Cm3 is valid. The content data can be distributed after confirming the above, and the distribution of the content data to an unauthorized memory card can be prohibited.
[0107]
Distribution of encrypted content data, additional information, and licenses to the memory cards 111 and 112 attached to the cellular phones 101 and 102 is also performed according to the flowcharts shown in FIGS.
[0108]
FIG. 9 shows a license area 1415B and a data area 1415C in the memory 1415 of the memory card 110. In the data area 1415C, a reproduction list file 160, entry management information 165, a card ID 166, content files 1611 to 161n, and license management files 1621 to 162n are recorded. The content files 1611 to 161n record the received encrypted content data {Dc} Kc and additional information Dc-inf as one file. The license management files 1621 to 162n are recorded corresponding to the content files 1611 to 161n, respectively, and a license for decrypting and reproducing the encrypted content data recorded in the corresponding content files 1611 to 161n is stored. Entry number.
[0109]
The license area 1415B stores a license and a valid flag in an area designated by the entry number. Therefore, if the entry number is read from the license management file 1621 to 162n, the license for decrypting the encrypted content data recorded in the content file 1611 to 161n corresponding to the license management file 1621 to 162n by the read entry number. Can be read from the license area 1415B. The valid flag indicates whether or not the license can be issued from the memory card 110. When the license is stored in the memory card 110, it is recorded as “valid”, and the license is described later. When the license is moved out of the memory card 110 by movement, “invalid” is recorded.
[0110]
When the memory card 110 receives the encrypted content data and the license from the distribution server 10, the memory card 110 records the encrypted content data and the license in the memory 1415.
[0111]
The license management file 1622 is indicated by a dotted line, but indicates that it is not actually recorded. Although the content file 1612 exists but does not have a license and cannot be reproduced, this corresponds to, for example, a case where the mobile phone receives only encrypted content data from another mobile phone.
[0112]
FIG. 10 is a conceptual diagram showing the relationship between the encrypted content data {Dc} Kc and additional information Dc-inf recorded in the content files 1611 to 161n shown in FIG. FIG. 10 shows a case where the number of contents is ten. The content data 1631 to 1640 are encrypted content data recorded in the content files 1611 to 1620, respectively. The content management information 163 includes management information 1651 to 1660, and the management information 1651 to 1660 includes a content ID, a title name, an artist name, and a content type. The management information 1651 to 1660 is management information for managing the content data 1631 to 1640, respectively. Therefore, the management information 1651 to 1660 constitutes the content management information 163 in association with the content data 1631 to 1640, respectively.
[0113]
[Regeneration]
The reproduction operation of the encrypted content data received from the distribution server 10 by the memory card 110 attached to the mobile phone 100 will be described.
[0114]
FIG. 11 is a flowchart for explaining the reproduction operation of the content data received by the memory card 110 in the mobile phone 100. Prior to the processing in FIG. 11, the user of the mobile phone 100 determines the content (music) to be played according to the play list recorded in the data area 1415C of the memory card 100, specifies the content file, and manages the license. It is assumed that the file has been acquired.
[0115]
Referring to FIG. 11, along with the start of the playback operation, a playback request is input to mobile phone 100 via key operation unit 1108 from the user of mobile phone 100 (step S700). Then, the controller 1106 makes an authentication data output request to the content reproduction device 1550 via the bus BS2 (step S702), and the content reproduction device 1550 receives the authentication data output request (step S704). Then, authentication data holding unit 1500 outputs authentication data {KPp1 // Cp1} KPa (step S706), and controller 1106 sends authentication data {KPp1 // Cp1} KPa to memory card 110 via memory card interface 1200. Is input (step S708).
[0116]
Then, the memory card 110 receives the authentication data {KPp1 // Cp1} KPa, and the decryption processing unit 1408 receives the received authentication data {KPp1 // Cp1} KPa in the public authentication key held in the KPa holding unit 1414. Decryption is performed using KPa (step S710), and the controller 1420 performs authentication processing based on the decryption processing result in the decryption processing unit 1408. That is, an authentication process for determining whether or not the authentication data {KPp1 // Cp1} KPa is regular authentication data is performed (step S712). If decryption has failed, the process proceeds to step S746, and the reproduction operation ends. If the authentication data can be decrypted, the controller 1420 controls the session key generation unit 1418, and the session key generation unit 1418 generates a session key Ks2 for the reproduction session (step S713). Then, encryption processing unit 1410 outputs {Ks2} Kp1 obtained by encrypting session key Ks2 from session key generation unit 1418 using public encryption key KPp1 decrypted by decryption processing unit 1408 to bus BS3. Then, controller 1420 outputs {Ks2} Kp1 to memory card interface 1200 via interface 1424 and terminal 1426 (step S714). The controller 1106 of the mobile phone 100 acquires {Ks2} Kp1 through the memory card interface 1200. Then, the controller 1106 gives {Ks2} Kp1 to the decryption processing unit 1504 of the content reproduction device 1550 via the bus BS2 (step S716), and the decryption processing unit 1504 outputs the public encryption key output from the Kp1 holding unit 1502 {Ks2} Kp1 is decrypted with the secret decryption key Kp1 paired with KPp1, and the session key Ks2 is output to the encryption processing unit 1506 (step S718). Then, session key generation unit 1508 generates session key Ks3 for the reproduction session, and outputs session key Ks3 to encryption processing unit 1506 (step S720). The encryption processing unit 1506 encrypts the session key Ks3 from the session key generation unit 1508 with the session key Ks2 from the decryption processing unit 1504 and outputs {Ks3} Ks2 (step S722), and the controller 1106 includes the bus BS2 and the memory {Ks3} Ks2 is output to the memory card 110 via the card interface 1200 (step S724).
[0117]
Then, the decryption processing unit 1412 of the memory card 110 inputs {Ks3} Ks2 via the terminal 1426, the interface 1424, and the bus BS3. Decryption processing unit 1412 decrypts {Ks3} Ks2 using session key Ks2 generated by session key generation unit 1418, and accepts session key Ks3 generated by mobile phone 100 (step S726).
[0118]
The controller 1106 of the cellular phone 100 acquires the entry number stored in the license from the license management file of the playback request song acquired in advance from the memory card 110 (step S728), and acquires the acquired entry number and the playback permission request. Is output to the memory card 110 via the memory card interface 1200 (step S730).
[0119]
The controller 1420 of the memory card 110 receives the entry number and the reproduction permission request, and acquires the license and the valid flag stored in the area designated by the entry number (step S732). Then, the controller 1420 confirms the valid flag (step S733). If the validity flag is “none” in step S733, the license does not exist in the specified entry, and the reproduction operation is terminated (step S746). In step S733, if the valid flag is “valid”, the license exists in the designated entry, so the process proceeds to the next step S734.
[0120]
Then, the controller 1420 confirms the access restriction information ACm (step S734).
[0121]
In step S734, by confirming the access restriction information ACm, which is information relating to restrictions on memory access, specifically, by confirming the number of times of reproduction, if the reproduction is already impossible, the reproduction operation is performed. If the number of reproductions of access restriction information is limited, the number of reproductions of access restriction information ACm is changed (step S736), and the process proceeds to the next step (step S738). On the other hand, if the reproduction is not restricted by the number of reproductions of the access restriction information ACm, step S736 is skipped, and the process proceeds to the next step (step S738) without changing the number of reproductions of the access restriction information ACm. Is done.
[0122]
If it is determined in step S734 that playback is possible in the playback operation, the license key Kc and playback control information ACp of the playback request song recorded in the license area 1415B of the memory 1415 are output onto the bus BS3. (Step S738).
[0123]
The obtained license key Kc and reproduction control information ACp are sent to the encryption processing unit 1406 via the contact Pf of the changeover switch 1446. The encryption processing unit 1406 encrypts the license key Kc received via the changeover switch 1446 and the reproduction control information ACp using the session key Ks3 received from the decryption processing unit 1412 via the contact Pb of the changeover switch 1442, and {Kc / / ACp} Ks3 is output to bus BS3 (step S738).
[0124]
The encrypted data output to the bus BS3 is transmitted to the mobile phone 100 via the interface 1424, the terminal 1426, and the memory card interface 1200.
[0125]
In the cellular phone 100, the encrypted data {Kc // ACp} Ks3 transmitted to the bus BS2 via the memory card interface 1200 is decrypted by the decryption processing unit 1510, and the license key Kc and the reproduction control information ACp are received. (Steps S740 and S742). Decryption processing unit 1510 transmits license key Kc to decryption processing unit 1516 and outputs reproduction control information ACp to bus BS2.
[0126]
The controller 1106 receives the reproduction control information ACp via the bus BS2 and confirms whether reproduction is possible (step S744).
[0127]
In step S744, when it is determined that reproduction is not possible based on reproduction control information ACp, the reproduction operation is terminated.
[0128]
If it is determined in step S744 that playback is possible, the controller 1106 requests the encrypted content data {Dc} Kc from the memory card 110 via the bus BS2 and the memory card interface 1200. Then, the controller 1420 of the memory card 110 acquires the encrypted content data {Dc} Kc from the memory 1415, and outputs it to the memory card interface 1200 via the bus BS3, the interface 1424, and the terminal 1426.
[0129]
The controller 1106 of the mobile phone 100 acquires the encrypted content data {Dc} Kc via the memory card interface 1200 and the bus BS2, and provides the encrypted content data {Dc} Kc to the content playback device 1550 via the bus BS2. .
[0130]
Then, the decryption processing unit 1516 of the content reproduction device 1550 decrypts the encrypted content data {Dc} Kc with the license key Kc output from the decryption processing unit 1510 to obtain the content data Dc.
[0131]
The decrypted content data Dc is output to the music playback unit 1518. The music playback unit 1518 plays back the content data {Dc} Kc, and the DA converter 1519 converts the digital signal into an analog signal and sends it to the terminal 1530. Output. The music data is output from the terminal 1530 to the headphones 130 via an external output device and reproduced. As a result, the reproduction operation ends (step S746).
[0132]
The reproduction operation of the encrypted content data recorded in the memory cards 111 and 112 on the mobile phones 101 and 102 is also performed according to the flowchart shown in FIG.
[0133]
When the mobile phones 100 to 102 are respectively installed with the memory cards 110 to 112, they create a database for managing the encrypted content data recorded in the memory cards 110 to 112, and store the created database in the RAM 1103. Store. With reference to FIG. 12, creation of a database in mobile phones 100 to 102 will be described.
[0134]
Referring to FIG. 12, database 150 includes content No. 1531, content ID 1532, title name 1533, artist name 1534, content type 1535, presence / absence of license 1536, and storage card ID 1537. When the memory card 110 is inserted, the controller 1106 of the mobile phone 100 receives the additional information Dc-inf, the entry number, and the card ID from the data area 1415C of the memory 1415 of the memory card 110 via the bus BS2 and the memory card interface 1200. Read. Then, the content ID, title name, artist name, and content type included in the read additional information Dc-inf are set as content No 1531, content ID 1532, title name 1533, artist name 1534, and content type 1535 of the database 150, respectively. Store. Further, the controller 1106 stores the presence / absence of the license of the corresponding content data in the license presence / absence 1536 based on the read entry number. That is, the controller 1106 recognizes that there is a license if the entry number can be read from the memory card 110, and recognizes that there is no license if the entry number cannot be read. Further, the controller 1106 stores the card ID read from the memory card 110 in the storage card ID 1537.
[0135]
When a plurality of memory cards are sequentially attached to the mobile phone 100, the controller 1106 creates a database of encrypted content data stored in all the memory cards. Therefore. In FIG. 12, a plurality of card IDs are shown in the storage card ID 1537, and the contents Nos. 1531 to 1-N are stored in different memory cards. Then, the controller 1106 stores the created database 150 in the RAM 1103.
[0136]
The cellular phones 101 and 102 also create a database for managing the encrypted content data stored in the memory card mounted in the same manner as the cellular phone 100, and store the created database in the RAM 1103.
[0137]
Referring to FIG. 13 and FIG. 14, a database for recording encrypted content data and a license received by mobile phone 100 from distribution server 10 on memory card 110 and managing the encrypted content data recorded on memory card 110. An operation that can be performed by the user of the mobile phone 100 at the stage of creating the mobile phone 100 will be described. At this stage, a screen 170 shown in FIG. 13 is displayed on the display panel 1110 of the mobile phone 100.
[0138]
The user of the mobile phone 100 can send a database stored in the RAM 1103 of the mobile phone 101 or 102 from the user of the mobile phone 101 or 102 who is a friend.
[0139]
Referring to FIG. 13, when the user of mobile phone 100 views screen 170 on display panel 1110, selects “Obtain Owned Song Information” and presses “OK”, screen 171 is displayed on display panel 1110. Is displayed. The screen 171 is a screen for asking the user of the mobile phone 100 about a communication method when sending a database from the mobile phones 101 and 102. The user of the mobile phone 100 selects, for example, “cable connection” and presses “decision”. Then, on the display panel 1110, a comment screen 172 “Connect the cable and press“ Start ”” is displayed. The user of the mobile phone 100 connects his / her mobile phone 100 to the mobile phones 101 and 102 via a cable and presses “Start”.
[0140]
Then, on the display panel 1110, a screen 173 showing a message “acquiring ...” is displayed. When the acquisition of the owned music information is completed, a screen 174 indicating a message indicating that the acquisition is completed is displayed on the display panel 1110. In this way, the user of the mobile phone 100 receives the database from the mobile phones 101 and 102. Then, the controller 1106 of the mobile phone 100 stores the received beta base in the RAM 1103. Therefore, the RAM 1103 stores a plurality of databases as shown in FIG. When a plurality of databases are stored in the RAM 1103, the controller 1106 of the mobile phone 100 creates a list 155 for managing the plurality of databases as shown in FIG. 15 and stores it in the RAM 1103.
[0141]
The list 155 includes a database No 1551, a content database 1552, a content number 1553, a terminal ID 1554, and an owner name 1555. Database No 1551 is a reference number assigned to each database. Note that “1” indicates that the database is stored in its own mobile phone. The content database 1552 is information for identifying a plurality of databases. The number of contents 1553 indicates the number of contents included in each database. The terminal ID 1554 is information for specifying a mobile phone that holds each database. As the terminal ID, for example, a telephone number of a mobile phone can be considered. The owner name 1555 represents the owner of each database.
[0142]
As described above, when the controller 1106 of the mobile phone 100 receives the database from the mobile phones 101 and 102, it creates a list 155 and stores the created list 155 in the RAM 1103.
[0143]
Referring to FIG. 13 again, when the user of mobile phone 100 selects “Purchase song” on screen 170 and presses “OK”, screen 175 is displayed on display panel 1110. That is, a screen for asking the user of the mobile phone 100 how to search for a song to be newly purchased is displayed. When the user of the mobile phone 100 selects “Artist name” and presses “Enter”, a screen 176 that prompts the user to input an artist name to be searched is displayed on the display panel 1110.
[0144]
The user of the mobile phone 100 inputs “Artist A” and presses “Start Search”. The input “Artist A” is transmitted from the mobile phone 100 to the distribution server 10. Then, the distribution server 10 searches the content ID and title name of the music data composed by the artist A using “artist A” received from the mobile phone 100, and transmits the search result to the mobile phone 100.
[0145]
Then, in mobile phone 100, the search result is received from distribution server 10, the title name of the song composed by artist A, the person who owns the song, and the location where the song license stores the song Is displayed on the display panel 1110 as a screen 177.
[0146]
When the screen 177 is displayed on the display panel 1110 and the user of the mobile phone 100 selects the song “title 4”, the screen 178 is displayed on the display panel 1110. The song "Title 4" is owned by Mr. B and has no license, so the encrypted content data stored in Mr. B's memory card is copied (duplicated) via Mr. B's mobile phone. Become. Then, next, a screen 178 for inquiring about a communication method for copying encrypted content data from Mr. B's mobile phone is displayed on the display panel 1110. When the user of the mobile phone 100 selects “cable connection” on the screen 178 and presses “decision”, the user presses “start” when the cable is ready to connect. Is displayed (screen 179). The user of the mobile phone 100 connects his mobile phone 100 to Mr. B's mobile phone with a cable and presses “Start”.
[0147]
Referring to FIG. 14, a message “Copying permission inquiry” is displayed on display panel 1110 (screen 180). When Mr. B attaches a memory card storing the title 4 content and permits copying, the message “Copying is permitted and title 4 content is being copied” and the copy progress status are displayed on the display panel. It is displayed on 1110 (screen 181). When the copy of the encrypted content data from Mr. B's memory card is completed, a message indicating that “Title 4” has been successfully acquired is displayed, and “When acquiring a license,“ Acquiring the license ” The message “Please press” is displayed (screen 182). When the user of the mobile phone 100 presses “Acquire License”, the screen shifts to the screen 183.
[0148]
When “title 3” is selected on the screen 177 shown in FIG. 13, the content of “title 3” is held by the user of the mobile phone 100 and there is no license, so the screen shifts to the screen 183 shown in FIG.
[0149]
On the screen 183, a message “Connecting to the distribution server 10 and acquiring the license for“ title n ”” is displayed on the display panel 1110 (screen 183). When the license acquisition is completed, a message “The license for“ title n ”has been acquired” is displayed on the display panel 1110 (screen 184). If the user of mobile phone 100 selects “title 2” on screen 177 shown in FIG. 13, the content and license of “title 2” are held by the user of mobile phone 100, so encrypted content Data copy or license reception from the distribution server 10 is not performed. Further, when encrypted content data not distributed to the memory cards 110 to 112 attached to the mobile phones 100 to 102 is selected on the screen 177, the encrypted content data and the license are displayed according to the flowcharts shown in FIGS. The delivery operation is executed.
[0150]
When the cellular phone 100 copies the encrypted content data from another cellular phone and receives the license of the copied encrypted content data from the distribution server 10, the cellular phone 100 records the encrypted content data and the license on the memory card 110. Then, the database for managing the encrypted content data stored in the memory card 110 is updated.
[0151]
With reference to FIG. 16 and FIG. 17, operations in screens 175 to 177 shown in FIG. 13 will be described in detail. FIG. 16 is a flowchart for explaining the search operation of the encrypted content data in the distribution server 10. FIG. 17 is a flowchart for explaining an operation in which the mobile phone 100 that has received the search result in the distribution server 10 searches the encrypted content data described in the search result based on a database held by itself. .
[0152]
Referring to FIG. 16, when the search operation is started, the user of mobile phone 100 inputs artist A from key operation unit 1108 and inquires distribution server 10 for content search (step S200). The distribution server 10 receives the artist A from the mobile phone 100, and the distribution control unit 315 performs the content of the artist A based on the additional information Dc-inf of the encrypted content data stored in the information database 304 via the bus BS1. And the search result is transmitted to the mobile phone 100 via the bus BS1 and the communication device 350. In this case, the distribution server 10 transmits a list of content numbers S, content IDs, and title names as shown in FIG. 18 to the mobile phone 100 as a search result.
[0153]
Then, the controller 1106 of the mobile phone 100 receives the search result via the antenna 1101 and the transmission / reception unit 1102, acquires the content number S detected by the distribution server 10, and sets the content number of the search result to S ( Step S202). Then, the controller 1106 creates a search result database (step S204). That is, the controller 1106 creates a search result database in which the number of contents searched in the distribution server 10 is set to S as shown in FIG.
[0154]
After that, the controller 1106 acquires the content ID and title name of the search result (see FIG. 18) received from the distribution server 10, and respectively enters the content ID column and title name column of the search result database shown in FIG. The acquired content ID and title name are stored (step S206). Then, the controller 1106 initializes all the owned terminal number and owned terminal ID fields in the search result database (see FIG. 19) to “0” (step S208). Further, the controller 1106 initializes all the license presence / absence columns in the search result database to “0” (step S210), and the content search operation is completed.
[0155]
Thereafter, the flowchart shown in FIG. 17 is executed. Refer to the database stored in the RAM 1103 of the mobile phone 100 for the content specified by the content ID (1) to the content ID (S) included in the search result (see FIG. 18) received from the distribution server 10 by the mobile phone 100. When the search operation is started, m = 1 is set (step S300), n = 1 is set (step S302), and s = 1 is set (step S304). Here, m represents the number of databases stored in the RAM 1103, n represents the number of contents included in each database, and s represents the number of contents included in the search result database (see FIG. 19).
[0156]
After step S304, the controller 1106 of the mobile phone 100 determines whether or not the content ID (1) in the search result database matches the content ID included in the database (1) stored in the RAM 1103 (step S306). . When it is determined in step S306 that the content ID (1) in the search result database matches the content ID included in the database (1), the controller 1106 stores the terminal ID holding the database (1) in the RAM 1103. Reading from the list 155 (see FIG. 15), the read terminal ID is stored in the owned terminal ID column of the search result database (step S308). Further, the controller 1106 reads the presence / absence of a license corresponding to the content ID (1) from the database (1) (see FIG. 12), and stores the read license presence / absence in the license presence / absence column of the search result database (step S310). . Thereafter, the process proceeds to step S312.
[0157]
If it is determined in step S306 that the content ID (1) in the search result database does not match the content ID included in the database (1), the process proceeds to step S312. In step S312, s = s + 1 is set (step S312), and the controller 1106 determines whether or not s = S (step S314). Here, S is the total number of contents searched in the distribution server 10 (see FIG. 19). When it is determined in step S314 that s = S, the process proceeds to step S316. If it is determined in step S314 that s = S is not satisfied, steps S306 to S314 are repeated. That is, steps S306 to S314 determine whether or not the content ID (1) to content ID (S) included in the search result database matches the content ID (1) included in the database (1). For example, a database (see FIG. 12) and a list (see FIG. 15) stored in the RAM 1103 indicating the presence / absence of a license corresponding to the matched content ID (1) and the terminal ID holding the database including the content ID (1). ) And stored in the search result database.
[0158]
When it is determined in step S314 that s = S, n = n + 1 is set, and the controller 1106 determines whether n = N (m) is satisfied (step S318). When it is determined in step S318 that n = N (m) is not satisfied, steps S304 to S318 are repeated. In this case, all the content IDs (1) to content IDs (N (m)) in the database (1) stored in the RAM 1103 match the content IDs (1) to content IDs (S) in the search result database. Whether or not is determined.
[0159]
When it is determined in step S318 that n = N (m), m = m + 1 is set (step S320), and the controller 1106 determines whether m = M (step S322). ). Here, M represents the total number of databases stored in the RAM 1103. When it is determined in step S322 that m = M is not satisfied, steps S302 to S322 are repeated. That is, it is determined whether or not the content ID (1) to content ID (S) of the search result database are included in the M databases stored in the RAM 1103. When it is determined in step S322 that m = M, the database search operation ends (step S324). As a result, data is stored in the columns of owned terminal IDs 1, 2,... And the license presence / absence column of the search result database shown in FIG. Then, the controller 1106 stores the number of terminal IDs that hold a database including each content ID in the number of owned terminals column. In FIG. 19, the number of owned terminals corresponding to the content ID (6) is “2”, which indicates that the database including the content ID (6) is held in two terminals. Note that the owned terminal IDs 1, 2,... Indicate the order in which the terminals holding the database including the content ID (1) to the content ID (S) are found. Therefore, the terminal ID determined first is stored in the column of owned terminal ID1. In the same manner, the terminal IDs determined as second, third,... Are stored in the owned terminal ID2, ID3,.
[0160]
Thus, when the controller 1106 of the mobile phone 100 receives the search result from the distribution server 10, it creates a search result database. Then, the controller 1106 extracts the title name, the owning terminal ID, and the license presence / absence from the created search result database, and displays the title identifiable from the owning terminal ID and the presence / absence of the license on the display panel 1110 on the screen 177 ( (See FIG. 13).
[0161]
Further, the copy (duplication) of the encrypted content data from the cellular phones 101 and 102 represented by the screens 178 and 179 in FIG. 13 and the screens 180 to 182 in FIG. 14 is performed according to the flowchart shown in FIG. When copying the encrypted content data from the memory cards 111 and 112 attached to the mobile phones 101 and 102 to the memory card 110 attached to the mobile phone 100, the controller 1106 of the mobile phones 101 and 102 and the controller 1106 of the mobile phone 100. FIG. 20 shows one controller for the sake of convenience of explanation, and the one controller is a function of the controller 1106 of the mobile phones 101 and 102 and a function of the controller 1106 of the mobile phone 100. And to fulfill. Before entering the processing shown in FIG. 20, the user of the mobile phone 101 or 102 on the transmission side attaches the memory card 111 or 112 to the mobile phone 101 or 102, and the encrypted content from the user of the mobile phone 100. It is assumed that permission is given for a data copy request.
[0162]
Referring to FIG. 20, when a replication request is instructed by the user (step S400), controller 1106 of mobile phone 100 sends a request for transmitting authentication data to memory card 110 to memory card 110 via memory card interface 1200. Transmit (step S402). Then, the controller 1420 of the memory card 110 receives the authentication data transmission request via the terminal 1426, the interface 1424, and the bus BS3 (step S404).
[0163]
Upon receiving the authentication data transmission request, the controller 1420 of the memory card 110 reads the authentication data {KPm3 // Cm3} KPa from the authentication data holding unit 1400 via the bus BS3, and the read authentication data {KPm3 // Cm3 } KPa is output to the memory card interface 1200 via the bus BS3, the interface 1424, and the terminal 1426 (step S406). Then, the controller 1106 of the mobile phone 100 receives the authentication data {KPm3 // Cm3} KPa via the memory card interface 1200, and sends the authentication data of the memory card 110 to the mobile phones 101 and 102 via the transmission / reception unit 1102 and the antenna 1101. {KPm3 // Cm3} KPa is transmitted (step S408).
[0164]
Then, the controller 1106 of the mobile phones 101 and 102 receives the authentication data {KPm3 // Cm3} KPa via the antenna 1101 and the transmission / reception unit 1102, and sends it to the memory cards 111 and 112 via the bus BS2 and the memory card interface 1200. Authentication data {KPm3 // Cm3} KPa is input (step S408). The controller 1420 of the memory cards 111 and 112 receives the authentication data {KPm3 // Cm3} KPa via the terminal 1426 and the interface 1424, and decrypts the received authentication data {KPm3 // Cm3} KPa via the bus BS3. This is given to the processing unit 1408. Then, the decryption processing unit 1408 executes the decryption process of the authentication data {KPm3 // Cm3} KPa using the authentication key KPa from the KPa holding unit 1414 (step S410). The controller 1420 determines whether or not the processing has been normally performed based on the result of the decryption processing in the decryption processing unit 1408, that is, the memory card 110 is a regular memory card, and the legitimacy of the memory card 110 is verified by a regular institution. Authentication processing is performed to determine whether or not authentication data subjected to encryption for certification has been received (step S412). If it is determined that the authentication data is valid, the controller 1420 approves and accepts the class public encryption key KPm3 and the class certificate Cm3 acquired from the authentication data. Then, the process proceeds to the next process (step S414). If it is not valid authentication data, it is rejected and the process is terminated without accepting the class public encryption key KPm3 and the class certificate Cm3 (step S420).
[0165]
As a result of authentication, when it is confirmed that the encrypted content data is copied to a memory card having valid authentication data, the controller 1420 in the memory cards 111 and 112, the data area of the memory 1415 via the bus BS3. The encrypted content data {Dc} Kc and additional information Dc-inf are read from 1415C, and {Dc} Kc // Dc-inf is output via bus BS3, interface 1424, and terminal 1426 (step S414). The controller 1106 of the cellular phones 101 and 102 receives {Dc} Kc // Dc-inf via the memory card interface 1200 and the bus BS2, and {Dc} Kc // Dc− via the transceiver 1102 and the antenna 1101. Inf is transmitted to the mobile phone 100 (step S416).
[0166]
The controller 1106 of the cellular phone 100 receives {Dc} Kc // Dc-inf via the antenna 1101 and the transmission / reception unit 1102 and receives {Dc} Kc // Dc-inf via the bus BS2 and the memory card interface 1200. The data is input to the memory card 110, and the controller 1420 of the memory card 110 receives {Dc} Kc // Dc-inf via the terminal 1426 and the interface 1424. Then, the controller 1420 stores {Dc} Kc // Dc-inf in the data area 1415C of the memory 1415 via the bus BS3 (step S418), and the encrypted content data duplication operation ends (step S420). .
[0167]
After the copy of the encrypted content data is completed, the user of the mobile phone 100 issues a license distribution request for decrypting and reproducing the copied encrypted content data according to the flowcharts shown in FIGS. 7 and 8. The license is received from the distribution server 10 and stored in the memory card 110.
[0168]
As described above, when the user of the mobile phone 100 confirms that the song to be newly purchased is stored in the memory cards 111 and 112 attached to the mobile phones 101 and 102, the encrypted content is transmitted from the mobile phones 101 and 102. The data is copied, and the license of the copied encrypted content data is received from the distribution server 10.
[0169]
According to the embodiment of the present invention, after the user of the mobile phone searches where the newly purchased song is stored, the user copies the encrypted content data from the memory card storing the encrypted content data. Therefore, it does not require a long time to receive a song to be purchased, and communication costs for that can be saved.
[0170]
The embodiment disclosed this time should be considered as illustrative in all points and not restrictive. The scope of the present invention is shown not by the above description of the embodiments but by the scope of claims for patent, and is intended to include meanings equivalent to the scope of claims for patent and all modifications within the scope.
[0171]
【The invention's effect】
According to the present invention, the user of the mobile phone searches the location where the song to be newly purchased is stored, and then copies the encrypted content data from the memory card storing the encrypted content data. You don't need a long time to receive the song you want, and you can save the communication cost.
[Brief description of the drawings]
FIG. 1 is a schematic diagram conceptually illustrating a data distribution system.
2 is a diagram showing characteristics of data, information, etc. for communication in the data distribution system shown in FIG.
3 is a diagram showing characteristics of data, information, etc. for communication in the data distribution system shown in FIG.
4 is a schematic block diagram showing a configuration of a distribution server in the data distribution system shown in FIG.
5 is a schematic block diagram showing a configuration of a mobile phone in the data distribution system shown in FIG.
6 is a schematic block diagram showing a configuration of a memory card in the data distribution system shown in FIG. 1. FIG.
FIG. 7 is a first flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;
FIG. 8 is a second flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;
FIG. 9 is a diagram illustrating a configuration of a playlist file in a memory card.
10 is a conceptual diagram showing a relationship between encrypted content data recorded in the content file shown in FIG. 9 and additional information.
FIG. 11 is a flowchart for explaining a reproduction operation in the mobile phone.
FIG. 12 is a conceptual diagram of a database for managing encrypted content data.
FIG. 13 is a diagram showing a screen displayed on the display panel during each operation of the mobile phone.
FIG. 14 is a diagram showing a screen displayed on the display panel during each operation of the mobile phone.
FIG. 15 is a conceptual diagram of a list for managing a plurality of databases.
FIG. 16 is a flowchart for explaining a search operation in a distribution server for a song to be purchased.
FIG. 17 is a flowchart for explaining a search operation in a mobile phone of encrypted content data included in a search result received from a distribution server.
FIG. 18 is an example of a search result transmitted from a distribution server.
FIG. 19 is a conceptual diagram of a database showing search results in a mobile phone.
FIG. 20 is a flowchart for explaining an operation of copying encrypted content data from another mobile phone.
[Explanation of symbols]
10 distribution server, 20 distribution carrier, 65 dedicated cable, 100-102 mobile phone, 110-112 memory card, 130-132 headphones, 150 database, 155 list, 160 playlist file, 163 content management information, 165 entry management Information, 166 Card ID, 170-184 screen, 302 Billing database, 304 Information database, 307 Menu database, 308 Distribution record database, 310 Data processing unit, 312, 320, 1404, 1408, 1412, 1422, 1504, 1510, 1516 Decryption processing unit, 313 authentication key holding unit, 315 distribution control unit, 316, 1418, 1508 session key generation unit, 318, 326, 328, 1406, 1410, 1417, 1506 Signal processing unit, 350 communication device, 1101 antenna, 1102 transmission / reception unit, 1103 RAM, 1106, 1420 controller, 1112 USB interface, 1114, 1426, 1530 terminal, 1108 key operation unit, 1110 display panel, 1200 memory card interface, 1400, 1500 authentication data holding unit, 1402 Kmc holding unit, 1414 KPa holding unit, 1415 memory, 1415A log area, 1415B license area, 1415C data area, 1416 KPmc holding part, 1421 Km holding part, 1424 interface, 1442, 1446 changeover switch, 1502 Kp1 holding unit, 1518 music playback unit, 1519 DA converter, 1531 content No., 1532 content ID, 1533 title name, 15 34 Artist name, 1535 Content type, 1536 License presence, 1537 Storage card ID, 1550 Content playback device, 1551 Database No., 1552 Database, 1553 Number of contents, 1554 Terminal ID, 1555 Owner name, 1621-162n License management file, 1611 ~ 161n Content file, 1631 to 1640 Content data, 1651 to 1660 Management information.

Claims (6)

It created in the plurality of information terminals, and information for acquiring the license to play the encrypted content data and the encrypted content data to search multiple databases for managing encrypted content data A terminal device,
A transmission / reception unit for exchanging data with the outside;
A key operation unit for inputting instructions;
A storage unit for storing the plurality of databases and a list;
A control unit ;
A display unit for giving various types of information as visual information to the user,
Each of the plurality of databases includes a plurality of pieces of content specifying information for specifying a plurality of pieces of encrypted content data, a plurality of pieces of license information indicating presence / absence of licenses corresponding to the pieces of encrypted content data, and the pieces of encrypted content data And a plurality of recording device specifying information for specifying the data recording device in which the license is recorded,
The list may include a plurality of databases identification information for identifying said plurality of data base and a plurality of terminal identification information for identifying the information terminal device each being generated in said plurality of databases,
In response to a purchase request for the encrypted content data, the control unit transmits a purchase content search condition input via the key operation unit to the distribution server via the transmission / reception unit, and matches the search condition. Content specification information of content to be received from the distribution server via the transmission / reception unit, content specification information that matches the received content specification information, and license information and terminal specification information corresponding to the matched content specification information Extracting from the plurality of databases and the list, creating a search result database including the extracted content specifying information, license information and terminal specifying information , content specifying information, license information indicating presence / absence of license, and terminal specifying information Is read from the search result database and displayed. To display, the information terminal device. Wherein, when the front Symbol selection of encrypted content data by another information terminal device is held via the key operation unit is input, a copy request for the encrypted content data to said another information terminal device the 2. The transmission according to claim 1, wherein the encrypted content data is transmitted from the other information terminal device via the transmission / reception unit when the duplication is permitted in the other information terminal device. Information terminal device.   The control unit further receives a license corresponding to the copied encrypted content data from the distribution server when the license information corresponding to the encrypted content data requested to be acquired indicates no license. Item 3. The information terminal device according to Item 2. Further comprising a interface for controlling the interaction between the data recording device,
Wherein the control unit, self-selection of the encrypted content data recorded in the data recording device for exchanging is input through the key operation unit, the license information corresponding to the selected encrypted content data licensed The information terminal device according to claim 1, wherein when it represents the absence of a license, the license transmission request is transmitted to the distribution server via the transmission / reception unit, and the license is received from the distribution server via the transmission / reception unit. Further comprising a interface for controlling the interaction between the data recording device,
Wherein, prior Symbol delivery server selects the encrypted content data corresponding to the selected encrypted content data and the selected encrypted content data when entered via the key operating unit for holding The information terminal device according to claim 1, wherein a transmission request for a license is transmitted to the distribution server via the transmission / reception unit, and the encrypted content data and a license are received from the distribution server via the transmission / reception unit.   The control unit further receives a database held by another information terminal device in response to a database acquisition request from the other information terminal device via the transmission / reception unit, and stores the received database in the storage unit The information terminal apparatus according to claim 1, wherein the list is updated by adding the stored database.

Images