JP3931261B2 - Distance learning system - Google Patents

Description

[0001]
[Technical field to which the invention belongs]
The present invention relates to a distance education system using a communication satellite and a terrestrial network.
[0002]
[Prior art]
With the rapid development of the Internet in recent years, interactive video conference systems and distance education systems using the Internet have been proposed. However, even if the bandwidth used for data communication becomes wide, the possibility of a transmission time difference for each user cannot be excluded due to the nature of the information transmission method called the Internet.
[0003]
Therefore, a system that uses a communication satellite as a means for transmitting video and audio to all users at the same time and uses information transmission through the Internet network in order to obtain bidirectionality has also been proposed. A conventional distance learning system will be described with reference to the drawings. FIG. 8 is a diagram showing an overview of a distance learning system using a communication satellite and the Internet network. The distance education system includes a transmission center 1, a communication satellite 2, a classroom 3 and the Internet 4. The transmission center 1 has a transmission antenna 5, an information processing device 6, and a lecturer side camera 7, and the student classroom 3 has a reception antenna 8, an information processing device 9, and a student side camera 10. There are a plurality of student classrooms having the same configuration as the student classroom 3.
[0004]
The lecturer who is the facilitator of the lecture gives a lecture at the transmission center 1 toward the instructor-side camera 7, and the information processing device 6 connected to the instructor-side camera 7 takes lecture video information (sound is also recorded). Are transmitted from the transmission antenna 5 to the communication satellite 2. At this time, the lecture video information is encoded and encrypted as necessary to digitize the lecture video information, and modulated using digital phase data (QPSK: Quad Phase Shift Keying) and the like used by the computer. By doing so, digital information is transmitted by radio waves.
[0005]
The communication satellite 2 propagates the radio wave received from the transmission antenna 5 to the ground, the reception antenna 8 provided in each student classroom 3 receives the radio wave, and the information processing device 9 demodulates the phase modulation, thereby giving lecture video information. Or digital data. The extracted video information is displayed on the television screen, and the digital data is stored in the information processing device 9. When information transmission is performed on the transmission center 1 side, the information processing device 6 scrambles the video information and digital data, and the information processing device 9 on the student classroom 3 side releases the scramble so that only the contractor can Lecture video information and digital data can be received.
[0006]
In the student classroom 3, the student takes pictures of the student video information (including sound) by speaking in front of the student camera 10 while viewing the lecturer video information displayed on the TV screen. The student camera 10 and the information processing device 9 connected to the Internet 4 digitize the student video information and add digital data, and send the student video information and digital data via the Internet 4 to the information of the transmission center 1. Transmit to the processing device 6.
[0007]
The information processing device 6 of the transmission center 1 combines the video and audio captured by the instructor-side camera 7 with the student video information transmitted via the Internet 4 into lecture video information that can be displayed on one screen. The transmission antenna 5 can also transmit to the student classroom 3 via the communication satellite 2. Thereby, each student can view the lecture video information including the student video information, and a conversation between the students can be established.
[0008]
As described above, in the video conference system and the distance education system that have been proposed in the past, the student video information from each student classroom 3 is transmitted to the transmission center 1 via the Internet 4, and each student classroom 3 receives a lecture video. By receiving information as radio waves from the communication satellite 2, a bidirectional remote education system with simultaneity for students at a plurality of points has been established.
[0009]
However, in the above-described conventional video conference system and distance education system, video information and digital data from the transmission center 1 are scrambled and transmitted. However, video information and digital data from the student classroom 3 are not encrypted, and video information and digital data may be illegally intercepted by others due to the characteristics of information communication over the Internet.
It is necessary to improve the confidentiality of video information and digital data from the student classroom side to the transmission center side using some kind of encryption technology. However, when a common key encryption technique is used, it is necessary to prevent a third party from obtaining the key. In addition, when the public key encryption technique is used, there is a possibility that the secret key is not calculated from the public key, and there is a problem that the psychological anxiety of the user remains.
[0010]
Accordingly, it is required to take measures to make it impossible for a third party to obtain an encryption key used for encryption. However, there is a possibility that transmission / reception of encryption keys via the Internet will be intercepted by a third party. In addition, when the encryption key is recorded on a magnetic recording medium or the like and the recording medium is mailed, it is necessary for the user himself / herself to strictly manage the encryption key. Furthermore, if an encryption key is obtained by a third party, it is necessary to update the encryption key, and labor and time are spent on updating and managing the encryption key.
[0011]
[Problems to be solved by the invention]
The present invention has been made in view of the above-described conventional problems. In a remote education system using a communication satellite, it is unlikely that an encryption key will be obtained by a third party, and the user manages the key. It is an object of the present invention to provide a distance learning system with excellent confidentiality that can exchange an unnecessary encryption key.
[0012]
[Means for Solving the Problems]
  The distance learning system of the present invention for solving the above problems is a distance learning system that performs bidirectional information transmission between a transmission center and a plurality of student classrooms via a communication satellite and a terrestrial network.
  The transmission center has an information transmission function to the communication satellite and an information reception function from the terrestrial network.Instructor-side information processing deviceAnd saidInstructor-side information processing deviceConnect to and output predetermined video informationInstructor-side photography deviceAnd
  The student classroom has an information transmission function to the ground network and an information reception function from the communication satellite.Student side information processing deviceAnd saidStudent side information processing deviceConnect to and output predetermined video informationStudent side photographing deviceAnd
  SaidInstructor-side information processing deviceIs
  A student information database that records and manages attribute information, which is information including a key code assigned to each of the plurality of student classrooms and is predetermined information about the student classrooms, for each student classroom,
  Extraction means for extracting a predetermined student classroom from the plurality of student classrooms managed in the student information database;
  Student-side photographing device related to the extracted student classroomIs video information to be outputStudent video informationA key generation means for creating an encryption key for encrypting the encryption key and a decryption key corresponding to the encryption key;
  Student-side information processing apparatus related to the extracted student classroomAnd saidInstructor-side information processing deviceAn access key creating means for creating an access key including a password and a connection destination port number for establishing a connection with
  A storage unit that associates the created decryption key with the extracted student classroom and stores it in the student information database;
  An encryption method using a key code assigned to the extracted student classroomAnd means for encrypting the created encryption key and access key;
  Means for scrambling lecture video information, which is video information taken by the lecturer-side photographing device, and for scrambling the encrypted encryption key and access key when a student classroom is extracted by the extraction means When,
  Lecture video information subjected to the scramble for the student side information processing devices in the plurality of student classrooms via the communication satelliteSequentiallyShiWhen the student classroom is extracted by the extraction means,Lecture video information that has been scrambledWithThe scrambledEncrypted encryption key and access key at the same timeAnd means for transmitting connection termination instruction data for stopping transmission of the student video information when a connection disconnection instruction is issued.When,
  SaidStudent side information processing deviceIn response to a connection request fromStudent information processing deviceAfter confirming that the access key received from is the same as the created access key, via the terrestrial network,Student information processing deviceEstablish a connection with, Means for terminating the connection after transmitting the connection termination instruction dataWhen,
  ConnectedRelated to student information processing equipmentUsing the decryption key stored in the student information database corresponding to the student classroom,Student information processing deviceEncrypted received fromStudent video informationDecryptmeansWhen,
  SaidDecryptedStudent video informationWhenLecture video informationAnd synthesizemeansWhen,
  SaidComposite video informationScramble the synthesized video information, and the scrambled synthesized video informationThe plurality of student classroomsStudent side information processing deviceVia the communication satellitemeansWhen,
  And saidStudent side information processing deviceIs
  Along with the scrambled lecture video information, the scrambledEncrypted encryption key and access keyThe instructor side information processing apparatusFromVia the communication satelliteMeans for receiving;
  A decoder device for descrambling the received lecture video information, encryption key, and access key;
  A decryption method using the key code assigned to the student classroomSaidIn the encryption method and the corresponding decryption method,UnscrambledDecrypt encryption key and access keymeansWhen,
  On the condition that the encrypted encryption key and the access key are received at the same time, using the decrypted access key, via the terrestrial network, theInstructor-side information processing deviceEstablish a connection withmeansWhen,
  Using the decrypted encryption key,Student video informationEncryptmeansWhen,
  SaidInstructor-side information processing deviceWhen connection with is established,SaidEncryptedThe student video information is sent to the instructor side information processing device via the terrestrial network.SendmeansWhen,
  The key code is encrypted and decrypted, andInstructor-side information processing deviceAnd saidStudent side information processing deviceAre sequentially updated by the same method.
[0013]
  When transmitting the encryption key from the transmission center to the student classroom via the communication satellite, the information communication to the student classroom via the communication satellite is scrambled and transmitted, so the encryption key is secure and secure. Can be transmitted to the student classroom, and the information communication from the student classroom to the transmission center is made into encrypted digital data, thereby improving the confidentiality of the communication.
Since the key generation means of the information processing device provided in the transmission center creates a key pair of the encryption key and the decryption key, it is possible to manage the encryption key and the decryption key on the transmission center side. It is not necessary to manage the encryption key, and it is possible to reduce the labor associated with the management of the encryption key and reduce the possibility of information leakage.
In addition to the transmission of encryption keys and encryption programs via communication satellites, the use of target-limited distribution makes it impossible for third parties to receive encryption keys and encryption programs, thus making communication confidential. Rise.
[0014]
  In addition, a distance learning system according to the present invention for solving the above-mentioned problems is a distance learning system that performs bidirectional information transmission between a transmission center and a plurality of student classrooms via a communication satellite and a terrestrial network. In
  The transmission center has an information transmission function to the communication satellite and an information reception function from the terrestrial network.Instructor-side information processing deviceAnd saidInstructor-side information processing deviceConnect to and output predetermined video informationInstructor-side photography deviceAnd
  The student classroom has an information transmission function to the ground network and an information reception function from the communication satellite.Student side information processing deviceAnd saidStudent side information processing deviceConnect to and output predetermined video informationStudent side photographing deviceAnd
  SaidInstructor-side information processing deviceIs
  A student information database that records and manages attribute information, which is information including a key code assigned to each of the plurality of student classrooms and is predetermined information about the student classrooms, for each student classroom,
  Extraction means for extracting a predetermined student classroom from the plurality of student classrooms managed in the student information database;
  Student-side photographing device related to the extracted student classroomIs video information to be outputStudent video informationA key generation means for creating an encryption key for encrypting the encryption key and a decryption key corresponding to the encryption key;
  Student-side information processing apparatus related to the extracted student classroomAnd saidInstructor-side information processing deviceAn access key creating means for creating an access key including a password and a connection destination port number for establishing a connection with
  SaidAn algorithm database in which a plurality of encryption programs and decryption programs for performing encryption and decryption are recorded using the created encryption key and decryption key;
  When a student classroom is extracted by the extraction means, a predetermined encryption program is selected from a plurality of encryption programs recorded in the algorithm database.Selection meansWhen,
  Storage means for associating the created decryption key, the selected encryption program, and the extracted student classroom, and storing them in the student information database;
  An encryption method using a key code assigned to the extracted student classroomAnd means for encrypting the created encryption key and access key and the selected encryption program;
  The lecture video information, which is video information taken by the lecturer-side imaging device, is scrambled, and when the student classroom is extracted by the extraction means, the encrypted encryption key, access key, and encryption program are Scramble means,
  Lecture video information subjected to the scramble for the student side information processing devices in the plurality of student classrooms via the communication satelliteSequentiallyShiWhen the student classroom is extracted by the extraction means,Lecture video information that has been scrambledWithThe scrambledEncrypted encryption key, access key and encryption program at the same timeAnd means for transmitting connection termination instruction data for stopping transmission of the student video information when a connection disconnection instruction is issued.When,
  SaidStudent side information processing deviceIn response to a connection request fromStudent information processing deviceAfter confirming that the access key received from is the same as the created access key, via the terrestrial network,Student information processing deviceEstablish a connection with, Means for terminating the connection after transmitting the connection termination instruction dataWhen,
  ConnectedRelated to student information processing equipmentA decryption program corresponding to the encryption program stored in the student information database corresponding to the student classroom is selected from the algorithm database.meansWhen,
  ConnectedRelated to student information processing equipmentUsing the decryption key stored in the student information database corresponding to the student classroom, executing the selected decryption program,Student information processing deviceEncrypted received fromStudent video informationDecryptmeansWhen,
  SaidDecryptedStudent video informationWhenLecture video informationAnd synthesizemeansWhen,
  SaidComposite video informationScramble the synthesized video information, and the scrambled synthesized video informationThe plurality of student classroomsStudent side information processing deviceVia the communication satellitemeansWhen,
  And saidStudent side information processing deviceIs
  Along with the scrambled lecture video information, the scrambledEncrypted encryption key, access key and encryption programThe instructor side information processing apparatusFromVia the communication satelliteReceivemeansWhen,
  A decoder device for canceling scrambling applied to the received lecture video information, encryption key, access key, and encryption program;
  A decryption method using the key code assigned to the student classroomSaidIn the encryption method and the corresponding decryption method,UnscrambledDecrypt the encryption key, access key, and encryption programmeansWhen,
  On the condition that the encrypted encryption key, the access key, and the encryption program are received simultaneously, the decrypted access key is used, via the terrestrial network,Instructor-side information processing deviceEstablish a connection withmeansWhen,
  Executing the decrypted encryption program using the decrypted encryption key;Student video informationEncryptmeansWhen,
  SaidInstructor-side information processing deviceWhen connection with is established,SaidEncryptedThe student video information is sent to the instructor side information processing device via the terrestrial network.SendmeansWhen,
  The key code is encrypted and decrypted, andInstructor-side information processing deviceAnd saidStudent side information processing deviceAre sequentially updated by the same method.
[0015]
When transmitting the encryption key and encryption program from the transmission center to the student classroom via the communication satellite, the information communication to the student classroom via the communication satellite is scrambled and transmitted. In addition, the encryption program can be securely and reliably transmitted to the student classroom, and the confidentiality of communication is enhanced by using encrypted digital data for information communication from the student classroom to the transmission center.
[0018]
  Further, the distance learning system of the present invention for solving the above-described problem is characterized in that the encryption key isOrThe encryption program is updated regularly or irregularly.
[0019]
By updating the encryption key and the encryption program, it is possible to reduce the possibility that a third party will know the encryption key and encryption algorithm that are currently in use, so the confidentiality of communication is increased.
[0022]
  Further, the distance learning system of the present invention for solving the above-mentioned problem is characterized in that the terrestrial network is a telephone line network, ISDN network, cable television network, optical fiber network, communication by mobile phone,Any of wireless communicationIt is characterized by being one or a combination thereof.
[0023]
Since highly confidential information communication can be performed regardless of the form of the terrestrial network, the range of selection is widened when the system is constructed, and it is possible to reduce the cost associated with the system construction and improve the communication quality.
[0024]
  Also, the aboveThe selection means may select the encryption program according to the type of the terrestrial network.
[0025]
By selecting an encryption program according to the communication environment used by the student classroom, it is possible to improve confidentiality even if it takes a long time for encryption and decryption in a communication environment where information leakage is likely to occur. In the case of a communication environment in which information leakage is difficult, it is possible to select to complete the processing in a short time even if the secrecy is relatively low, and it is possible to construct a flexible system.
[0027]
  Also, the present invention for solving the above problems is realized.When the information processing apparatus having the transmission center is executed, the encryption key can be transmitted to the student classroom without being intercepted by a third party.
[0029]
  Also, the present invention for solving the above problems is realized.The information processing device in the student classroom executes the program so that the encryption key transmitted from the transmission center is received without being intercepted by a third party, and the digital data is encrypted using the received encryption key. It becomes possible to transmit the encrypted digital data to the transmission center, and it is possible to perform highly confidential information communication even in information communication via the Internet.
[0031]
  Also, the present invention for solving the above problems is realized.When the information processing device in the transmission center executes the program, it becomes possible to decrypt the encrypted digital data encrypted by the student classroom into digital data, and also in information communication via the Internet It becomes possible to perform highly confidential information communication.
[0032]
Embodiment 1
A first embodiment, which is an example of the present invention, will be described below with reference to the drawings. FIG. 1 is a diagram showing the configuration of the remote education system according to the first embodiment, which includes a transmission center 1, a communication satellite 2, a classroom 3, and the Internet 4 as a terrestrial network. The terrestrial network means an information communication network capable of information communication between the transmission center 1 and the attending classroom 3, and is a telephone line network, ISDN network, cable TV network, or optical fiber network, and is physically connected. Communication by a mobile phone that is not performed, wireless communication, or satellite communication may be used. The Internet 4 is a network that uses TCP / IP (Transmission Control Protocol / Internet Protocol), but is merely an example of the present invention, and may be a network that uses other protocols. . The transmission center 1 has a transmission antenna 5, an information processing device 6, and a lecturer side camera 7, and the student classroom 3 has a reception antenna 8, an information processing device 9, and a student side camera 10. There are a plurality of student classrooms having the same configuration as the student classroom 3.
[0033]
Further, as shown in FIG. 2, the information processing apparatus 6 of the transmission center 1 includes a CPU unit 21, a student information database 22, a key generation unit 23, an information storage unit 24, and an input unit 25.
The CPU unit 21 performs all arithmetic processing and control of video information and digital data in the information processing apparatus 6, and includes a memory, video processing means, communication means, and the like (not shown).
The student information database 22 records and manages student attribute information such as the name, address, number of viewers, number of utterances, test results, and group of each student classroom.
The key generation unit 23 creates a key pair of the encryption key 41 and the decryption key 42. The relationship between the encryption key 41 and the decryption key 42 is that data encrypted with a predetermined algorithm using the encryption key 41 can be decrypted only with the predetermined algorithm using the decryption key 42. Although it is good, it is desirable that it is difficult to derive the decryption key 42 from the encryption key 41 even when another person obtains the encryption key 41.
The information storage means 24 is a device for recording data such as student video information, lecture video information, and digital data, and is a recording medium such as a magnetic disk, magneto-optical disk, CD-ROM, etc., and lecture video information. Are stored in a browsable format such as MPEG1 or MPEG2.
The input unit 25 is a device such as a keyboard, a mouse, a touch panel, or a voice recognition device, and the lecturer inputs a command to the information processing device 6.
[0034]
As shown in FIG. 3, the information processing means 9 in the student classroom 3 has a CPU unit 31, a video information connection means 32, and an information storage means 33.
The CPU unit 31 performs arithmetic processing and control of video information and digital data in the information processing apparatus 9, and includes a memory, video processing means, communication means, and the like (not shown).
The video information connection means 32 is means for transmitting the student video information to the transmission center 1 via the Internet 4 and transmits the student video information only when receiving a call instruction from the transmission center 1. .
The information storage means 33 is a device for recording data such as student video information, lecture video information, and digital data, and is a recording medium such as a magnetic disk, magneto-optical disk, CD-ROM, etc., and lecture video information. Are stored in a browsable format such as MPEG1 or MPEG2.
[0035]
Next, the operation of the distance learning system according to the first embodiment will be described with reference to the drawings. FIG. 4 is a flowchart showing the operation of encrypting information communication via the Internet 4 from the student classroom 3 side to the transmission center 1 side in the distance learning system of the first embodiment. The information transmission operation of the communication satellite 2 and the Internet 4 is omitted because there is no difference from the operation in the conventional example. Accordingly, only the description of the operation of the transmission center 1 and the student classroom 3 is provided, but the transmission of lecture video information and digital data from the transmission center 1 to the student classroom 3 is transmitted from the student classroom 3 via the communication satellite 2. Transmission of student video information and the like to the transmission center 1 is realized by the respective protocols via the Internet 4.
[0036]
<Step 1> At the transmission center 1, the information processing means 6 extracts the target student classroom 3a from the student information database 22 and activates the key generation means 23.
<Step 2> The key generation unit 23 creates a pair of the encryption key 41 and the decryption key 42, and stores the decryption key 42 in the student information database 22 as one of the attribute information of the student classroom 3a.
<Step 3> An access key including a password and a connection destination port number for establishing connection between the transmission center 1 and the student faculty 3 to enable transmission of the student video information to the transmission center 1 21 creates.
<Step 4> Subject distribution is performed to the student classroom selected in Step 2 together with the lecture video information and the encryption key 41 and the access key (the target limitation distribution will be described later).
<Step 5> The student classroom 3a receives the encryption key 41 and the access key by subject limited distribution.
<Step 6> The video information connection means 32 makes a connection request with the transmission center 1 using the access key received at the same time.
<Step 7> The CPU unit 21 of the transmission center 1 receives the connection request from the student classroom 3a, and when the access key of the connection request is the same as the access key created in Step 3, the connection port number is set. Open the port and establish a connection with the student classroom 3a.
<Step 8> In the student classroom 3a, the student's video is taken by the student's camera 10, and the information processing apparatus 9 encodes the student's video as student video information, and further uses the encryption key 41. To the transmission center 1 as encrypted student video information.
<Step 9> The information processing means 6 decrypts the encrypted student video information by using the decryption key 42 belonging to the student classroom 3a recorded in the student information database 22 to obtain the student video information. And
<Step 10> The transmission center 1 creates lecture video information by synthesizing the student video information from each student classroom 3a selected in Step 2 and the video of the lecture taken by the lecturer side camera 7. Then, it is distributed to all student classrooms from the transmission antenna 5 via the communication satellite 2.
<Step 11> When the lecturer inputs a disconnection instruction from the input unit 25 of the information processing apparatus 6 after the lecture is finished, the information processing unit 6 updates the number of utterances of the student attribute information in the student information database 22 Then, the CPU 21 is instructed to disconnect the connection.
<Step 12> The CPU unit 21 transmits connection end instruction data to all the student classrooms, and then closes the port that has received the student video information.
<Step 13> When the connection end instruction data is received in the student classroom 3, the CPU unit 31 instructs the video information connection means 32 to end the connection and stops the transmission of the student video information.
[0037]
As described above, a method may be used in which the key generation means 23 creates a key pair of the encryption key 41 and the decryption key 42 for each communication, and steps 1 to 10 are repeated regularly or irregularly in one communication. Thus, a method of updating the key pair may be used.
[0038]
Next, the target limited delivery performed in step 4 of FIG. 4 will be described. Distribution of lecture video information and digital data by radio waves via the communication satellite 2 has the feature that information can be distributed without delay to a large number of distribution destinations. This means that the same information is distributed to the antenna 8 at the same time. In order to distribute specific information only to a specific student classroom, it is necessary to scramble the information. In the case of the distance learning system of the present invention, lecture video information needs to be received and browsed by all student classrooms, and separately, it is necessary to limit receiving targets such as calling instruction data.
[0039]
For the information received in all student classrooms, a transmission method that can be viewed only by members by descrambling by a conventional decoder device is used, but encryption is separately performed for limited information transmission Send the information you give so that only the target student classroom can get the information.
[0040]
Next, the encryption procedure for target-limited distribution will be described with an example. However, the encryption method for target-limited distribution may be arbitrary, and should be used in situations where real-time encryption and decryption of video information is required. If possible, it need not be exemplified here.
[0041]
A key code unique to each student classroom 3 is determined in advance as a base key and stored in the student information database 22 as one piece of student attribute information. The data to be transmitted is divided into packets and sent sequentially, but the first packet is encrypted using the base key and is sent to all student classrooms via the communication satellite. Is decrypted using the base key, so that only the receiving student classroom can obtain the packet.
On the transmission center side, one byte is extracted from the packet sent immediately before, and encryption processing is performed with the key code to update the key code. Similarly, on the student classroom side, one byte is extracted from the packet acquired immediately before, and the same encryption processing as that on the transmission center side is performed between the key code and the key code is updated.
After that, the packet is encrypted and decrypted with the sequentially updated key code, and the key code is also updated in sequence, so that all packets are encrypted and transmitted, and all packets are sent only in the classroom for transmission. Will be received.
[0042]
The base key for encrypting and decrypting the first packet is the same on the transmission center side and the student classroom side, and the 1-byte extraction algorithm extracted from the previous packet in the subsequent key code update is the same, and the key code By performing the same encryption process at the sending center and the student classroom, the updated key code is the same every time on the sending center side and the student classroom side. Even if the encrypted information is received in the classroom, the decryption can be performed only for the target set in the transmission center, and as a result, the target limited distribution can be performed.
[0043]
By using the method of the first embodiment of the present invention described above, a radio wave from a communication satellite is received, descrambling is performed by a decoder device, and information communication using target limited distribution is targeted. Confidentiality is enhanced in three stages: making the encryption key available only to the student classroom and encrypting information with the encryption key. For this reason, if a third party intercepts information communication via the Internet from the student classroom to the transmission center and attempts to eavesdrop on the contents, the secret key must be obtained from the public key of the public key encryption technology. Even if it can be decrypted, since it is difficult to obtain the encryption key, the secrecy is greatly increased.
Moreover, since the encryption key can be transmitted from the transmission center side to the student classroom side, the key generation means generates the encryption key and the decryption key periodically or irregularly, and the encryption key is It is possible to further enhance confidentiality by updating the key pair by sending it to the student classroom.
[0044]
Embodiment 2
Next, a second embodiment which is an example of the present invention will be described with reference to the drawings. The configuration of the remote education system according to the second embodiment is shown in FIG. 5 as in the first embodiment, and includes a transmission center 1, a communication satellite 2, a classroom 3, and the Internet 4 as a terrestrial network. The terrestrial network means an information communication network capable of information communication between the transmission center 1 and the attending classroom 3, and is a telephone line network, ISDN network, cable TV network, or optical fiber network, and is physically connected. Communication by a mobile phone that is not performed, wireless communication, or satellite communication may be used. The Internet 4 is a network that uses TCP / IP (Transmission Control Protocol / Internet Protocol), but is merely an example of the present invention, and may be a network that uses other protocols. . The transmission center 1 has a transmission antenna 5, an information processing device 6, and a lecturer side camera 7, and the student classroom 3 has a reception antenna 8, an information processing device 9, and a student side camera 10. There are a plurality of student classrooms having the same configuration as the student classroom 3.
[0045]
Further, the information processing apparatus 6 of the transmission center 1 is shown in FIG. 6, and has a CPU unit 21, student information database 22, key generation means 23, information storage means 24, input means 25, and algorithm database 26.
The CPU unit 21 performs all arithmetic processing and control of video information and digital data in the information processing apparatus 6, and includes a memory, video processing means, communication means, and the like (not shown).
The student information database 22 records and manages student attribute information such as the name, address, number of viewers, number of utterances, test results, and group of each student classroom.
The key generation unit 23 creates a key pair of the encryption key 41 and the decryption key 42. The relationship between the encryption key 41 and the decryption key 42 is that data encrypted with a predetermined algorithm using the encryption key 41 can be decrypted only with the predetermined algorithm using the decryption key 42. Although it is good, it is desirable that it is difficult to derive the decryption key 42 from the encryption key 41 even when another person obtains the encryption key 41.
The information storage means 24 is a device for recording data such as student video information, lecture video information, and digital data, and is a recording medium such as a magnetic disk, magneto-optical disk, CD-ROM, etc., and lecture video information. Are stored in a browsable format such as MPEG1 or MPEG2.
The input unit 25 is a device such as a keyboard, a mouse, a touch panel, or a voice recognition device, and the lecturer inputs a command to the information processing device 6.
The algorithm database 26 is a database in which a plurality of encryption and decryption algorithms are recorded, and is used to execute encryption and decryption using the encryption key 41 and the decryption key 42 created by the key generation unit 23. A plurality of encryption programs 43 and decryption programs 44 are recorded.
[0046]
As shown in FIG. 3, the information processing means 9 in the student classroom 3 has a CPU unit 31, a video information connection means 32, and an information storage means 33.
The CPU unit 31 performs arithmetic processing and control of video information and digital data in the information processing apparatus 9, and includes a memory, video processing means, communication means, and the like (not shown).
The video information connection means 32 is means for transmitting the student video information to the transmission center 1 via the Internet 4 and transmits the student video information only when receiving a call instruction from the transmission center 1. .
The information storage means 33 is a device for recording data such as student video information, lecture video information, and digital data, and is a recording medium such as a magnetic disk, magneto-optical disk, CD-ROM, etc., and lecture video information. Are stored in a browsable format such as MPEG1 or MPEG2.
[0047]
  Next, the operation of the distance learning system according to the second embodiment will be described with reference to the drawings. FIG.Embodiment 2It is the flowchart which showed the operation | movement of the encryption of the information communication via the internet 4 from the student classroom 3 side to the transmission center 1 side in the remote education system. The information transmission operation of the communication satellite 2 and the Internet 4 is omitted because there is no difference from the operation in the conventional example. Accordingly, only the description of the operation of the transmission center 1 and the student classroom 3 is provided, but the transmission of lecture video information and digital data from the transmission center 1 to the student classroom 3 is transmitted from the student classroom 3 via the communication satellite 2. Transmission of student video information and the like to the transmission center 1 is realized by the respective protocols via the Internet 4.
[0048]
<Step 1> In the transmission center 1, the information processing means 6 extracts the target student classroom 3a from the student information database 22, activates the key generation means 23, and selects the encryption program 43 from the algorithm database 26. The information of the encryption program 43 selected as one of the attribute information of the student classroom 3a is recorded in the student information database 22.
<Step 2> The key generation unit 23 creates a pair of the encryption key 41 and the decryption key 42, and stores the decryption key 42 in the student information database 22 as one of the attribute information of the student classroom 3a.
<Step 3> An access key including a password and a connection destination port number for establishing connection between the transmission center 1 and the student faculty 3 to enable transmission of the student video information to the transmission center 1 21 creates.
<Step 4> Along with the lecture video information, the encryption key 41, the encryption program 43, and the access key are subject-distributed to the student classroom selected in Step 2.
<Step 5> The student classroom 3a receives the encryption key 41, the encryption program 43, and the access key by subject limited distribution.
<Step 6> The video information connection means 32 makes a connection request with the transmission center 1 using the access key received at the same time.
<Step 7> The CPU unit 21 of the transmission center 1 receives the connection request from the student classroom 3a, and when the access key of the connection request is the same as the access key created in Step 3, the connection port number is set. Open the port and establish a connection with the student classroom 3a.
<Step 8> In the student classroom 3a, the student's video is taken by the student's camera 10, and the information processing apparatus 9 encodes the student's video as student video information, and further uses the encryption key 41. The encryption program 43 is executed and transmitted to the transmission center 1 as encrypted student video information.
<Step 9> The information processing means 6 selects a decryption program 44 corresponding to the encryption program 43 belonging to the student classroom 3a recorded in the student information database 22 from the algorithm database 26, and selects the decryption key 42. Using this, the decryption program 44 is executed to decrypt the encrypted student video information to obtain student video information.
<Step 10> The transmission center 1 creates lecture video information by synthesizing the student video information from each student classroom 3a selected in Step 2 and the video of the lecture taken by the lecturer side camera 7. Then, it is distributed to all student classrooms from the transmission antenna 5 via the communication satellite 2.
<Step 11> When the lecturer inputs a disconnection instruction from the input unit 25 of the information processing apparatus 6 after the lecture is finished, the information processing unit 6 updates the number of utterances of the student attribute information in the student information database 22 Then, the CPU 21 is instructed to disconnect the connection.
<Step 12> The CPU unit 21 transmits connection end instruction data to all the student classrooms, and then closes the port that has received the student video information.
<Step 13> When the connection end instruction data is received in the student classroom 3, the CPU unit 31 instructs the video information connection means 32 to end the connection and stops the transmission of the student video information.
[0049]
As described above, a method may be used in which the encryption program 43 is selected and transmitted for each communication, and the key generation means 23 creates a key pair of the encryption key 41 and the decryption key 42. Alternatively, a method may be used in which the encryption program 43 and the key pair are updated by repeating Step 1 to Step 10 in which the encryption program 43 is selected and transmitted irregularly. Further, it is not necessary to update the encryption program 43 and the key pair at the same time, and only one of them may be updated.
[0050]
  According to the second embodiment of the present invention described above, the encryption program 43 selected on the transmission center 1 side can be distributed in a limited manner to the student classroom 3a. Therefore, the encryption program 43 for each communication or during the communication period. The key pair can be updated, and as in the first embodiment, radio waves from the communication satellite are received and descrambling is released by the decoder device, and the target class is subject to information communication using target limited distribution. Confidentiality is enhanced in three stages: making the encryption key available only to the classroom, and encrypting information with the encryption key, and further adding an element of updating the encryption program. For this reason, if a third party intercepts information communication via the Internet from the student classroom to the transmission center and attempts to eavesdrop on the contents, the secret key must be obtained from the public key of the public key encryption technology. Even if it can be decrypted, it is difficult to obtain the encryption key, and it is also possible to know the algorithm of the encryption program.DifficultTherefore, confidentiality is dramatically increased.
  Moreover, since the encryption key can be transmitted from the transmission center side to the student classroom side, the key generation means generates the encryption key and the decryption key periodically or irregularly, and the encryption key is It is possible to further enhance confidentiality by updating the key pair by sending it to the student classroom.
[0051]
Embodiment 3
In the second embodiment, the telephone line network, ISDN network, cable television network, optical fiber network, mobile phone communication, wireless communication, and satellite communication are illustrated as the terrestrial network. However, the illustrated communication method is used alone. Alternatively, a plurality may be used in combination.
[0052]
When the distance learning system described above is constructed by combining a plurality of communication methods, the connection method and communication method of each of the student classrooms 3 are stored in the student information database 22 included in the information processing means 6 of the transmission center 1. Is selected from the algorithm database 26 and the operation is performed in the same manner as in step 1 and subsequent steps of the second embodiment.
[0053]
By selecting the encryption program 43 according to the communication environment used by the student classroom 3, in the case of a communication environment in which information is likely to leak, confidentiality can be maintained even if a long time is required for encryption and decryption. In the case of a communication environment that is difficult to increase or leak information, it is possible to select to complete the processing in a short time even if the secrecy is relatively low, and it becomes possible to construct a flexible system.
[0054]
【The invention's effect】
  Sending the encryption key and encryption program from the transmission center to the student classroom via the communication satellite securely and securely sending the encryption key and encryption program for encrypting the digital data to the student classroom. Communication confidentiality is enhanced by using encrypted digital data for information communication from the student classroom to the transmission center. In addition, since the key generation means of the information processing device provided in the transmission center creates a key pair of the encryption key and the decryption key, it is possible to manage the encryption key and the decryption key on the transmission center side, On the side, there is no need to manage encryption keys.Reduce laborIt is also possible to reduce the possibility of information leakage.
[0055]
By updating the encryption key and encryption program, it is possible to reduce the possibility of third parties to know the encryption key and encryption algorithm that is currently in use. In addition to the transmission of the key and the encryption program, by using the target limited delivery, it becomes impossible for a third party to receive the encryption key and the encryption program, thereby improving the confidentiality of communication. In addition, since highly confidential information communication can be performed regardless of the form of the terrestrial network, the range of choices can be expanded during system construction, which can reduce the costs associated with system construction and improve communication quality. Become.
[Brief description of the drawings]
FIG. 1 is a diagram showing a configuration of a distance learning system according to a first embodiment.
FIG. 2 shows the configuration of the information processing apparatus on the transmission center side according to the first embodiment.
FIG. 3 shows the configuration of the information processing apparatus on the student classroom side according to the first and second embodiments.
FIG. 4 is a flowchart showing the operation of the first embodiment.
FIG. 5 is a diagram showing a configuration of a distance learning system according to a second embodiment
FIG. 6 shows a configuration of an information processing apparatus on the transmission center side according to the second embodiment.
FIG. 7 is a flowchart showing the operation of the second embodiment.
FIG. 8 is a diagram showing the configuration of a conventional distance learning system
[Explanation of symbols]
1 …… Sending Center
2. Communication satellite
3 …… Classroom for students
4 …… Internet
5 …… Transmitting antenna
6, 9 Information processing equipment
7 ... Lecturer side camera
8 …… Receiving antenna
10: Student camera
21, 31 ... CPU section
22 …… Student information database
23 …… Key generation means
24, 33 ... Information storage means
25 …… Input means
26 …… Algorithm database
32 …… Video information connection means
41 …… Encryption key
42 …… Decryption key
43 …… Encryption program
44 …… Decryption program

Claims (6)

In a distance education system that performs two-way information transmission between a transmission center and multiple student classrooms via a communication satellite and a terrestrial network,
The transmission center, and instructors information processing apparatus having an information receiving function from the information transmission function and the terrestrial network to the communications satellite, it is connected to the instructor-side information processing apparatus, lecturer for outputting a predetermined video information and an imaging apparatus,
The student classroom is connected to the student side information processing apparatus having the function of transmitting information to the ground network and the function of receiving information from the communication satellite, and outputs predetermined video information. A student-side imaging device
The instructor side information processing device
A student information database that records and manages attribute information, which is information including a key code assigned to each of the plurality of student classrooms and is predetermined information about the student classrooms, for each student classroom,
Extraction means for extracting a predetermined student classroom from the plurality of student classrooms managed in the student information database;
Key generation means for creating an encryption key for encrypting student video information, which is video information output by the student-side imaging device related to the extracted student classroom, and a decryption key corresponding to the encryption key;
An access key creating means for creating an access key including a password and a connection destination port number for establishing a connection between the student side information processing apparatus and the lecturer side information processing apparatus related to the extracted student classroom ;
A storage unit that associates the created decryption key with the extracted student classroom and stores it in the student information database;
Means for encrypting the created encryption key and access key in an encryption method using a key code assigned to the extracted student classroom ;
Means for scrambling lecture video information, which is video information taken by the lecturer-side photographing device, and for scrambling the encrypted encryption key and access key when a student classroom is extracted by the extraction means When,
To the plurality of student classroom student information processing apparatus via the communication satellite, said sequentially transmit the lecture video information scrambled and student classroom are extracted by the extraction means, A connection that simultaneously transmits the scrambled and encrypted encryption key and the access key together with the scrambled lecture video information , and stops the transmission of the student video information when a disconnection instruction is issued. Means for transmitting end instruction data ;
To the connection request from the student information processing apparatus, after the access key received from the student information processing apparatus was confirmed to be identical to the access key created in the above, via the terrestrial network Establishing a connection with the student side information processing apparatus, and terminating the connection after transmitting the connection termination instruction data ;
Using the decryption key stored in correspondence with the student classroom according to the connected student information processing apparatus to the student information database, the encrypted received from the student information processing apparatus attendance Means for decoding the person video information ;
And means for combining said lecture video information and the decoded student image information,
Scrambling applied to the synthesized composite video information is video information, and means for transmitting the composite image information in which the scrambled via the communication satellite to the student information processing apparatus of said plurality of student classroom ,
And the student side information processing device comprises:
A means for receiving the scrambled lecture video information together with the scrambled and encrypted encryption key and access key from the instructor-side information processing apparatus via the communication satellite ;
A decoder device for descrambling the received lecture video information, encryption key, and access key;
In the decoding method of a decoding method using a key code that is given to its students classroom corresponding to the encryption method, means for decoding the encryption key and the access key to release the scramble ,
On the condition that the encrypted encryption key and the access key are received at the same time, the decrypted access key is used to establish a connection with the instructor-side information processing device via the terrestrial network. and means,
Means for encrypting the student video information using the decrypted encryption key;
When the connection between the instructor information processing apparatus is established, and means for transmitting the student image information the encrypted via the terrestrial network to the instructor side information processing apparatus,
The key code is sequentially updated by the same method in the instructor side information processing apparatus and the student side information processing apparatus after performing the encryption process and the decryption process. Distance education system. In a distance education system that performs two-way information transmission between a transmission center and a plurality of student classrooms via a communication satellite and a terrestrial network,
The transmission center, and instructors information processing apparatus having an information receiving function from the information transmission function and the terrestrial network to the communications satellite, it is connected to the instructor-side information processing apparatus, lecturer for outputting a predetermined video information and an imaging apparatus,
The student classroom is connected to the student side information processing apparatus having the function of transmitting information to the ground network and the function of receiving information from the communication satellite, and outputs predetermined video information. A student-side imaging device
The instructor side information processing device
A student information database that records and manages attribute information, which is information including a key code assigned to each of the plurality of student classrooms and is predetermined information about the student classrooms, for each student classroom,
Extraction means for extracting a predetermined student classroom from the plurality of student classrooms managed in the student information database;
Key generation means for creating an encryption key for encrypting student video information, which is video information output by the student-side imaging device related to the extracted student classroom, and a decryption key corresponding to the encryption key;
An access key creating means for creating an access key including a password and a connection destination port number for establishing a connection between the student side information processing apparatus and the lecturer side information processing apparatus related to the extracted student classroom ;
Using the decryption key and the encryption key created in the above, and algorithms database encryption program for executing the encryption and decryption and decryption program is a plurality of recording,
When a student classroom is extracted by the extraction means , a selection means for selecting a predetermined encryption program from among a plurality of encryption programs recorded in the algorithm database;
Storage means for associating the created decryption key, the selected encryption program, and the extracted student classroom, and storing them in the student information database;
Means for encrypting the created encryption key and access key and the selected encryption program in an encryption method using a key code assigned to the extracted student classroom ;
The lecture video information, which is video information taken by the lecturer-side imaging device, is scrambled, and when the student classroom is extracted by the extraction means, the encrypted encryption key, access key, and encryption program are Scramble means,
To the plurality of student classroom student information processing apparatus via the communication satellite, said sequentially transmit the lecture video information scrambled and student classroom are extracted by the extraction means, When the scrambled lecture video information is transmitted together with the scrambled and encrypted encryption key, the access key, and the encryption program, when the disconnection instruction is issued, the student video information is transmitted. and means to transmit a connection termination instruction data to stop,
To the connection request from the student information processing apparatus, after the access key received from the student information processing apparatus was confirmed to be identical to the access key created in the above, via the terrestrial network Establishing a connection with the student side information processing apparatus, and terminating the connection after transmitting the connection termination instruction data ;
Means for selecting, from the algorithm database, a decryption program corresponding to the encryption program stored in the student information database corresponding to the student classroom related to the connected student side information processing device ;
Using the decryption key stored in the student information database corresponding to the student classroom related to the connected student side information processing apparatus, the selected decryption program is executed, and the student means for decoding student image information encrypted received from the side information processing apparatus,
And means for combining said lecture video information and the decoded student image information,
Scrambling applied to the synthesized composite video information is video information, and means for transmitting the composite image information in which the scrambled via the communication satellite to the student information processing apparatus of said plurality of student classroom ,
And the student side information processing device comprises:
Means for receiving the scrambled lecture video information together with the scrambled and encrypted encryption key, the access key and the encryption program from the instructor side information processing apparatus via the communication satellite ;
A decoder device for canceling scrambling applied to the received lecture video information, encryption key, access key, and encryption program;
In the decoding method of a decoding method using a key code that is given to its students classroom corresponding to the encryption method, decodes the encryption key and the access key and the encrypted program releasing the scramble Means to
On the condition that the encrypted encryption key, the access key, and the encryption program are received at the same time, the decryption access key is used, and the instructor side information processing apparatus is connected with the instructor side information processing apparatus via the ground network. Means for establishing a connection;
Means for executing the decrypted encryption program using the decrypted encryption key and encrypting the student video information ;
When the connection between the instructor information processing apparatus is established, and means for transmitting the student image information the encrypted via the terrestrial network to the instructor side information processing apparatus,
The key code is sequentially updated by the same method in the instructor side information processing apparatus and the student side information processing apparatus after performing the encryption process and the decryption process. Distance education system. The distance learning system according to claim 2, wherein the selection unit selects the encryption program according to a type of the terrestrial network. Any said terrestrial network is the telephone network, ISDN network, cable TV network, fiber optic network, a cellular phone by the communication, according to claim 1 to claim 3, characterized in that it is any one or a combination of these wireless communication The distance education system according to claim 1.   The distance learning system according to claim 1, wherein the encryption key is updated regularly or irregularly.   The distance learning system according to claim 2, wherein the encryption program is updated regularly or irregularly.

Images