JP4142287B2 - Communication terminal, content use restriction method, and program execution restriction method - Google Patents

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to a communication terminal, a content use restriction method, and a program execution restriction method.
[0002]
[Prior art]
2. Description of the Related Art In recent years, for example, mobile phones that can be equipped with a user identification module (hereinafter abbreviated as UIM: User Identity Module) that stores information related to mobile phone service subscribers such as telephone numbers and memory dial information have been developed. Yes. By storing the above-mentioned information about the subscriber in the UIM instead of storing it in the memory of the mobile phone, the user can attach his / her UIM to the mobile phone body of another person so that the mobile phone of the other person can be viewed as his / her mobile phone. It can be used like a telephone.
[0003]
Thus, a mobile phone that can be equipped with a UIM and has a packet communication function can download various contents such as programs, image data, and music data from a server connected to the Internet.
[0004]
[Problems to be solved by the invention]
By the way, since the memory capacity of the UIM currently being studied for practical use is not yet sufficient, the main body data of the content downloaded to the mobile phone equipped with the UIM is stored in the memory of the mobile phone. Therefore, it is necessary to limit users who use the content stored in the memory of the mobile phone.
[0005]
This is because the UIM can be attached to any mobile phone as long as it is a mobile phone to which the UIM can be attached. For example, the UIM attached to the mobile phone owner and the mobile phone at the time of content download This is because the content provider, which is the content provider, basically permits only the UIM owner to provide and use the content. In such a case, it is necessary to limit the use of the content stored in the memory of the mobile phone to only the owner of the UIM attached to the mobile phone when the content is downloaded.
[0006]
On the other hand, even if the owner of the mobile phone is different from the owner of the UIM attached to the mobile phone at the time of downloading the content, the content provider can also provide other users other than the UIM owner. When the use is permitted, it is not necessary to restrict the use of the content as described above.
[0007]
The present invention has been made in view of the circumstances described above, and appropriately uses content in a communication terminal in which a data storage module or a storage medium for identifying a communication service subscription or subscriber is detachable. It is an object of the present invention to provide a communication terminal, a content use restriction method, and a program execution restriction method that can be restricted.
[0008]
[Means for Solving the Problems]
  In order to solve the above problems, the present invention provides:PredeterminedAcquired from the data storage module attached to the communication terminal when receiving the content by the receiving means for receiving the content in the communication terminal to which the data storage module storing the identification information is detachable. ShiKnowledgeStorage means for storing other information in association with the content in the memory of the communication terminal, and data storage attached to the communication terminal when the use of the content stored in the memory is instructed by the storage means Obtained from the moduleKnowledgeAnother information and stored in the memory in association with the content.KnowledgeCollating means for collating different information with the collating meansThe use of the content is permitted when the two identification information collated with each other matches.A communication terminal having a determination unit is provided.
[0009]
  In addition, this inventionPredeterminedA communication terminal in which a data storage module storing identification information is detachable receives a content, and when the communication terminal receives content in the reception process, the communication terminal is attached to the communication terminal. From the data storage moduleKnowledgeA storage process in which different information is associated with the content and stored in the memory of the communication terminal, and when the communication terminal is instructed to use the content stored in the memory in the storage process, the communication terminal Obtained from the installed data storage moduleKnowledgeAnother information and stored in the memory in association with the content.KnowledgeA collation process for collating different information, and the communication terminalThe use of the content is permitted when the two identification information collated with each other matches.A content usage restriction method including a determination process is provided.
[0010]
  According to the present invention, when the use of the content stored in the memory is instructed, the communication terminal is stored in the memory in association with the content.KnowledgeObtained from other information and the data storage module attached to the communication terminal.KnowledgeCollate with other information,The use of the content is permitted when the two pieces of collated identification information match.
[0011]
  In addition, this inventionPredeterminedAcquired from the data storage module attached to the communication terminal when receiving the content by the receiving means for receiving the content in the communication terminal to which the data storage module storing the identification information is detachable. ShiKnowledgeA storage means for associating different information with the content and storing it in the memory of the communication terminal, and from the content stored in the memory by the storage means from a data storage module attached to the communication terminal.KnowledgeProvided is a communication terminal having notifying means for notifying a user of content associated with different information as content permitted to be used.
[0012]
  In addition, this inventionPredeterminedA communication terminal in which a data storage module storing identification information is detachable receives a content, and when the communication terminal receives content in the reception process, the communication terminal is attached to the communication terminal. From the data storage moduleKnowledgeA storage process in which different information is associated with the content and stored in the memory of the communication terminal, and a data storage in which the communication terminal is attached to the communication terminal among the contents stored in the memory in the storage process Obtained from the moduleKnowledgeProvided is a content use restriction method including a notification process of notifying a user of content associated with different information as content permitted to be used.
[0013]
  According to the present invention, the communication terminal acquires content stored in the memory from the data storage module attached to the communication terminal.KnowledgeThe content associated with the different information is notified to the user as the content permitted to be used.
[0014]
  In addition, this inventionPredeterminedIn the communication terminal in which the data storage module storing the identification information is detachable, when receiving the content by the receiving means and the content received by the receiving means, the content is stored in the memory of the communication terminal, When the storage means for storing the content identification information for identifying the content in the data storage module attached to the communication terminal and the storage means instructed to use the content stored in the memory of the communication terminal, Determining means for determining whether or not the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal; and determination by the determining meansofresultWhen the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal, the use of the content is permitted.A communication terminal having a determination unit is provided.
[0015]
  In addition, this inventionPredeterminedA communication terminal in which a data storage module storing identification information is detachable receives a content, and when the communication terminal receives content in the reception process, the content is stored in the communication terminal. A storage process for storing content identification information for identifying the content in a data storage module attached to the communication terminal, and the communication terminal storing the content identification information in the memory of the communication terminal in the storage process A discriminating process for discriminating whether or not the content identification information of this content matches any of the content identification information acquired from the data storage module attached to the communication terminal when the use of the content is instructed; Discrimination by the discrimination process by the communication terminalofresultWhen the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal, the use of the content is permitted.A content usage restriction method including a determination process is provided.
[0016]
  According to the present invention, when the communication terminal is instructed to use the content stored in the memory, the content identification information of the content is stored in the content identification information acquired from the data storage module attached to the communication terminal. Determine whether it matches any of them, and determineofresultWhen the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal, the use of the content is permitted.
[0017]
  In addition, this inventionPredeterminedIn the communication terminal in which the data storage module storing the identification information is detachable, when receiving the content by the receiving means and the content received by the receiving means, the content is stored in the memory of the communication terminal, Storage means for storing content identification information for identifying the content in a data storage module attached to the communication terminal, and data storage attached to the communication terminal among the contents stored in the memory by the storage means Provided is a communication terminal having notifying means for notifying a user of content corresponding to any of content identification information acquired from a module as content permitted to be used.
[0018]
  In addition, this inventionPredeterminedA communication terminal in which a data storage module storing identification information is detachable receives a content, and when the communication terminal receives content in the reception process, the content is stored in the communication terminal. A storage process for storing content identification information for identifying the content in a data storage module attached to the communication terminal, and a communication process for storing the content stored in the memory in the storage process. Provided is a content usage restriction method including a notification process for notifying a user of content corresponding to any of content identification information acquired from a data storage module attached to the communication terminal as content permitted to be used. To do.
[0019]
According to this invention, the communication terminal permits the use of the content corresponding to any of the content identification information acquired from the data storage module attached to the communication terminal among the content stored in the memory. Inform the user as content.
[0020]
  According to the present invention, in a communication terminal in which a storage medium is removable, the storage medium stores storage medium identification information uniquely assigned to each storage medium, and receiving means for receiving content; An encryption means for encrypting content identification information for identifying the content using storage medium identification information acquired from a storage medium attached to the communication terminal when content is received by the reception means; The content received by the receiving means is stored in the memory of the communication terminal, the storage means for storing the content identification information encrypted by the encryption means in the storage medium, and the storage attached to the communication terminal One or more encrypted content identification information acquired from the medium is stored in the storage medium of the storage medium acquired from the storage medium. When the use of the content stored in the memory of the communication terminal is instructed by the storage unit, the content identification information of the content is decoded by the decoding unit. Determining means for determining whether or not the content identification information matches, and determination by the determining meansofresultWhen the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal, the use of the content is permitted.A communication terminal having a determination unit is provided.
[0021]
  In addition, the present invention provides a receiving process in which a communication terminal in which a storage medium storing storage medium identification information uniquely assigned to each storage medium is detachable receives content, and the communication terminal receives the receiving process. And encrypting the content identification information for identifying the content using the storage medium identification information acquired from the storage medium attached to the communication terminal when the content is received at the communication terminal, and the communication terminal Storing the content received in the receiving process in the memory of the communication terminal, storing the content identification information encrypted in the encryption process in the storage medium, and the communication terminal The one or more encrypted content identification information acquired from the storage medium attached to the communication terminal is stored in the storage medium acquired from the storage medium. Decryption process using the storage medium identification information and when the communication terminal is instructed to use the content stored in the memory in the storage process, the content identification information of the content is decoded. A discriminating process for discriminating whether any of the content identification information decrypted in the process is coincident with the discriminating process,ofresultWhen the content identification information of the content matches any of the content identification information decrypted in the decryption process, use of the content is permitted.A content usage restriction method including a determination process is provided.
[0022]
  According to this invention, when the communication terminal is instructed to use the content stored in the memory, the content identification information of the content is acquired from the storage medium attached to the communication terminal. Discriminate whether or not it matches any of the content identification information decrypted using the storage medium identification informationofresultWhen the content identification information of the content matches any of the content identification information decrypted in the decryption process, the use of the content is permitted.
[0023]
According to the present invention, in a communication terminal in which a storage medium is removable, the storage medium stores storage medium identification information uniquely assigned to each storage medium, and receiving means for receiving content; An encryption means for encrypting content identification information for identifying the content using storage medium identification information acquired from a storage medium attached to the communication terminal when content is received by the reception means; The content received by the receiving means is stored in the memory of the communication terminal, the storage means for storing the content identification information encrypted by the encryption means in the storage medium, and the storage attached to the communication terminal One or more encrypted content identification information acquired from the medium is stored in the storage medium of the storage medium acquired from the storage medium. Decryption means for decoding using information, and use of content corresponding to any of the content identification information decrypted by the decryption means among the contents stored in the memory by the storage means Provided is a communication terminal having notifying means for notifying a user as content.
[0024]
In addition, the present invention provides a receiving process in which a communication terminal in which a storage medium storing storage medium identification information uniquely assigned to each storage medium is detachable receives content, and the communication terminal receives the receiving process. And encrypting the content identification information for identifying the content using the storage medium identification information acquired from the storage medium attached to the communication terminal when the content is received at the communication terminal, and the communication terminal Storing the content received in the receiving process in the memory of the communication terminal, storing the content identification information encrypted in the encryption process in the storage medium, and the communication terminal The one or more encrypted content identification information acquired from the storage medium attached to the communication terminal is stored in the storage medium acquired from the storage medium. Any one of the decryption process of decrypting using the storage medium identification information and the content identification information decrypted in the decryption process among the contents stored in the memory by the communication terminal in the storage process The content use restriction method includes a notification process of notifying the user of the content corresponding to the above as content permitted to be used.
[0025]
According to the present invention, the communication terminal can identify the content that can be decrypted using the storage medium identification information of the storage medium acquired from the storage medium attached to the communication terminal among the contents stored in the memory. The content corresponding to any of the information is notified to the user as content permitted to be used.
[0026]
  In addition, this inventionPredeterminedIn a communication terminal to which a data storage module storing identification information is removable, receiving means for receiving a program, and when the program is received by the receiving means, acquired from the data storage module attached to the communication terminal ShiKnowledgeStorage means for associating other information with the program in the memory of the communication terminal, and data storage attached to the communication terminal when the storage means instructs execution of the program stored in the memory Obtained from the moduleKnowledgeAnother information and stored in the memory in association with the program.KnowledgeCollating means for collating different information with the collating meansThe use of the content is permitted when the two identification information collated with each other matches.A communication terminal having a determination unit is provided.
[0027]
  In addition, this inventionPredeterminedA communication terminal in which a data storage module storing identification information is detachable receives a program, and when the communication terminal receives a program in the reception process, the communication terminal is attached to the communication terminal. From the data storage moduleKnowledgeA storage process in which another information is associated with the program and stored in the memory of the communication terminal, and when the communication terminal is instructed to execute the program stored in the memory in the storage process, the communication terminal Obtained from the installed data storage moduleKnowledgeAnother information and stored in the memory in association with the program.KnowledgeA collation process for collating different information, and the communication terminalThe use of the content is permitted when the two identification information collated with each other matches.A method for restricting execution of a program having a determination process is provided.
[0028]
  According to the present invention, when the use of a program stored in the memory is instructed, the communication terminal is stored in the memory in association with the program.KnowledgeObtained from other information and the data storage module attached to the communication terminal.KnowledgeCollate with other information,The use of the program is permitted when the two pieces of collated identification information match.
[0029]
  In addition, this inventionPredeterminedIn a communication terminal to which a data storage module storing identification information is removable, receiving means for receiving a program, and when the program is received by the receiving means, acquired from the data storage module attached to the communication terminal ShiKnowledgeThe storage means for storing the different information in association with the program in the memory of the communication terminal, and the data stored in the memory by the storage means from the data storage module attached to the communication terminal.KnowledgeProvided is a communication terminal having notifying means for notifying a user of a program associated with different information as a program permitting execution.
[0030]
  In addition, this inventionPredeterminedA communication terminal in which a data storage module storing identification information is detachable receives a program, and when the communication terminal receives a program in the reception process, the communication terminal is attached to the communication terminal. From the data storage moduleKnowledgeA storage process in which other information is associated with the program and stored in the memory of the communication terminal, and a data storage in which the communication terminal is installed in the communication terminal among the programs stored in the memory in the storage process Obtained from the moduleKnowledgeProvided is a program execution restriction method including a notification process of notifying a user of a program associated with different information as a program permitting execution.
[0031]
  According to the present invention, the communication terminal acquires the program stored in the memory from the data storage module attached to the communication terminal.KnowledgeThe user is notified of the program associated with the different information as a program that permits execution.
[0032]
DETAILED DESCRIPTION OF THE INVENTION
Hereinafter, embodiments of the present invention will be described with reference to the drawings. In addition, the same code | symbol is attached | subjected to the common part in each figure. Moreover, this embodiment shows one aspect | mode of this invention, This invention is not limited, It can change arbitrarily in the scope of the present invention.
[0033]
[A. First Embodiment]
[A-1. Configuration of Embodiment]
<1. Configuration of communication system>
FIG. 1 is a block diagram illustrating the configuration of a communication system 1 according to the first embodiment of the invention. As shown in the figure, the communication system 1 includes a content server 10, the Internet 20, a mobile packet communication network 30, a mobile phone 40, and a UIM 50. In FIG. 1, in order to prevent the drawing from becoming complicated, a predetermined content server 10 constituting the communication system 1, a predetermined gateway server 31 and a predetermined base station 32 constituting the mobile packet communication network 30, and a mobile packet Only a predetermined mobile phone 40 accommodated in the communication network 30 and a predetermined UIM 50 that can be attached to the mobile phone 40 are shown.
[0034]
The content server 10 has a function of performing packet communication with the mobile phone 40 via the Internet 20 and the mobile packet communication network 30. The content server 10 stores various contents such as programs provided to the mobile phone 40, image data, and music data. These contents include a Java application program (hereinafter abbreviated as Java AP) that can be executed on the mobile phone 40. This Java AP is an application program written in the Java programming language, such as a Java applet or a Java application.
[0035]
The mobile packet communication network 30 is a communication network that provides a packet communication service to the mobile phone 40 accommodated in the mobile packet communication network 30, and includes a gateway server 31 and a base station 32. The communication system 1 has a mobile telephone network (not shown) in addition to the mobile packet communication network 30. This mobile telephone network provides a general mobile telephone call service to the mobile phone 40 accommodated in the mobile telephone network.
[0036]
The gateway server 31 is provided in a mobile packet gateway relay switching center (not shown) that interconnects the mobile packet communication network 30 and the Internet 20. This gateway server 31 is a mutual conversion between a communication protocol for the mobile packet communication network 30 and, for example, TCP / IP (Transmission Control Protocol / Internet Protocol) or HTTP (Hyper Text Transfer Protocol) used in the Internet 20. And relaying data exchange between the mobile packet communication network 30 and the Internet 20. A large number of base stations 32 are installed in the communication service area of the mobile packet communication network 30 and perform radio communication with the mobile phone 40 located in the radio cell covered by the own station 32.
[0037]
The mobile phone 40 is a mobile device that performs wireless communication with the base station 32 that covers the wireless cell in which the mobile device 40 is located and receives packet communication service and call service. The mobile phone 40 can perform packet communication with the content server 10 and download arbitrary content from the content server 10.
[0038]
The UIM 50 is a data storage module that stores information about the owner of the UIM 50 (hereinafter referred to as subscriber information). The UIM 50 is, for example, an IC card such as a Java card or a SIM (Subscriber Identity Module) card, and can perform various controls by executing a program with an internal microprocessor. Here, the subscriber information stored in the UIM 50 includes, for example, a subscriber ID such as a telephone number for identifying the UIM 50 owner, a credit card number of the UIM 50 owner, a bank account number, and an owner. History information and telephone directory information related to outgoing and incoming calls. Further, the UIM 50 stores a serial number (hereinafter referred to as UIMID) uniquely assigned to each UIM 50.
[0039]
<2. Configuration of mobile phone>
FIG. 2 is a block diagram illustrating a hardware configuration of the mobile phone 40 shown in FIG. As shown in the figure, the mobile phone 40 includes a wireless communication unit 401, an operation input unit 402, a call processing unit 403, a UIM interface 404, a liquid crystal display unit 405, a storage unit 406, a CPU (Central Processing Unit). Unit) 410, and these units are connected by a bus 411.
[0040]
The wireless communication unit 401 includes an antenna 401 a and controls wireless communication performed with the base station 32. Under the control of the CPU 410, for example, the wireless communication unit 401 generates a transmission signal by superimposing data relating to transmitted voice, data for packet communication, and the like on a carrier wave, and this signal is transmitted to the base station 32 via the antenna 401a. Send to. The wireless communication unit 401 receives a wireless signal transmitted from the base station 32 via the antenna 401a, demodulates this signal, and receives data related to the received voice addressed to the own device 40, data for packet communication, and the like. obtain.
[0041]
The operation input unit 402 includes a plurality of keys for inputting numbers, characters, operation instructions, and the like, and outputs operation signals corresponding to operations of these keys to the CPU 410. The call processing unit 403 includes, for example, a microphone, a speaker, a voice processing unit, and the like, and performs call processing including call connection / disconnection processing under the control of the CPU 410. The UIM interface 404 controls communication performed with the UIM 50 attached to the mobile phone 40. The liquid crystal display unit 405 includes a liquid crystal display panel and a drive circuit that performs display control of the liquid crystal display panel.
[0042]
The storage unit 406 includes a ROM (Read Only Memory) 407, a RAM (Random Access Memory) 408, and a nonvolatile memory 409 such as an SRAM (Static-RAM) or an EEPROM (Electrically Erasable Programmable-ROM).
[0043]
The ROM 407 stores various programs executed by the CPU 410. For example, the ROM 407 stores an operating system (hereinafter abbreviated as OS) for the mobile phone 40, a Web (World Wide Web) browser, software for constructing a Java execution environment, and the like. The RAM 408 is used as a work area for the CPU 410, and temporarily stores programs executed by the CPU 410 and various data.
[0044]
The nonvolatile memory 409 stores application programs for the mobile phone 40 and various data. As shown in FIG. 2, the non-volatile memory 409 includes a UIMID storage area 409a for storing the UIMID of the UIM 50 currently mounted on the mobile phone 40, and a content for storing content downloaded from the content server 10. And a storage area 409b.
[0045]
Here, in the UIMID storage area 409 a, the UIMID sent from the UIM 50 when the UIM 50 is attached to the mobile phone 40 is stored via the UIM interface 404. Further, as shown in FIG. 3, the content downloaded from the content server 10 is stored in the content storage area 409b in association with the UIM ID of the UIM 50 that is attached to the mobile phone 40 when the content is downloaded. . Note that FIG. 3 merely shows the concept of storing content and UIMD in association with each other. For example, a list describing the correspondence between content identification information and UIMD is stored in the nonvolatile memory 409. You may do it.
[0046]
Of the various contents stored in the content storage area 409b, JavaAP is a JAR (Java Archive) that combines JavaAP body programs and image files, audio files, and the like used in accordance with the execution of the body programs. ) File and an ADF (Application Descriptor File) in which various control information for controlling the installation and activation of the JAR file, network access, and the like are described.
[0047]
The CPU 410 controls various units connected via the bus 411 by executing various programs stored in the storage unit 406. As processing unique to this embodiment, the CPU 410 first downloads the content from the content server 10 to the mobile phone 40 at the time of downloading the UIID stored in the UIMD storage area 409a, that is, when the content is downloaded. The UIM ID of the mounted UIM 50 is stored in the content storage area 409b in association with the downloaded content.
[0048]
In addition, when the CPU 410 is instructed to use the downloaded content, for example, when execution of JavaAP is instructed or display of image data is instructed, the UIIM stored in the UIMD storage area 409a That is, the UIM 50 of the UIM 50 currently mounted on the mobile phone 40 is collated with the UIIM stored in the content storage area 409b in association with the content designated to be used. Based on this, it is determined whether or not to permit the use of this content.
[0049]
More specifically, the mobile phone 40 according to the present embodiment uses the content stored in the content storage area 409b only to the owner of the UIM 50 attached to the mobile phone 40 when the content is downloaded. Restricted. This is because if the owner of the mobile phone 40 is different from the owner of the UIM 50 attached to the mobile phone 40 when the content is downloaded, the content provider that is the content provider basically owns the UIM 50. This is because only the user is permitted to provide and use the content.
[0050]
Therefore, when the use of content is instructed, the CPU 410 is stored in the content storage area 409b in association with the UIIM stored in the UIMD storage area 409a and the content designated to be used. The UIMID is collated, and use of this content is permitted only when both the UIIMIDs match as a result of the collation. Here, as a result of the collation, when both UIMIDs match, the user who is currently using the mobile phone 40 is the owner of the UIM 50 that is attached to the mobile phone 40 when the content is downloaded. This indicates that the user is a user who is formally authorized to provide and use the content from the content provider.
[0051]
<3. Java execution environment>
FIG. 4 is a diagram for explaining a JavaAP execution environment in the mobile phone 40. Note that the mobile phone 40 according to the present embodiment includes KVM (K Virtual Machine) as software for constructing an execution environment of JavaAP and CLDC (Connected Limited Device Configuration) as a configuration and communicates as a profile. J2ME (Java 2 Micro Edition) equipped with an original Java extension profile originally developed by the operator is incorporated.
[0052]
In the figure, the native application is software that provides a telephone directory function, a browser function, a network communication function, and the like under the control of the OS. KVM is a Java Virtual Machine (JVM) redesigned for small electronic devices, and converts bytecodes, which are JavaAP executable file formats, into instruction codes that the CPU 410 can interpret / execute via the OS.
[0053]
The CLDC class library provides a class library for CLDC. The original Java extension library is a class library for providing functions specialized for mobile phones based on CLDC. The original Java extension library includes, for example, a user interface API (Application Program Interface), a networking API, a scratch pad API, and the like. In addition to the CLDC class library and the original Java extension library, the mobile phone 40 has a manufacturer-specific extension library. This manufacturer-specific extension library is a class library for each manufacturer that manufactures the mobile phone 40 to provide a unique function.
[0054]
Next, JAM (Java Application Manager) has a function of managing Java AP installed in the mobile phone 40 under the control of the OS. For example, the JAM has a function of displaying a list of JavaAPs stored in the mobile phone 40, a function of performing JavaAP execution management (startup, forced termination, etc.), a function of installing and updating JavaAP, and a mobile phone 40. Provides a function to delete JavaAP that has been added. Note that JAM is a native component independent of KVM, and cannot be controlled from Java AP.
[0055]
The JAR storage and the scratch pad are storage areas provided in the content storage area 409b. The JAR storage stores a JAR file of the Java AP for each Java AP installed in the mobile phone 40. Further, the scratch pad stores data used by the Java AP for each Java AP installed in the mobile phone 40. The data stored in the scratch pad is permanently retained even after execution of Java AP is completed. The Java AP is controlled by the JAM so that only the data for its own use among the data for each Java AP stored in the scratchpad can be accessed. In addition, the storage area for each Java AP in the JAR storage or scratch pad is allocated by JAM when Java AP is installed.
[0056]
<4. UIM Configuration>
FIG. 5 is a block diagram illustrating a hardware configuration of the UIM 50 shown in FIG. As shown in the figure, the UIM 50 includes an external interface 501, a ROM 502, a RAM 503, an EEPROM 504, and a CPU 505, and these units are connected by a bus 506.
[0057]
The external interface 501 controls communication performed with the mobile phone 40. Various programs executed by the CPU 505 are stored in the ROM 502. The RAM 503 is used as a work area for the CPU 505, and temporarily stores programs executed by the CPU 505 and various data.
[0058]
The EEPROM 504 has a mobile device ID storage area 504a, a content list 504b, a subscriber information storage area 504c, and a UIMID storage area 504d. Here, the mobile device ID storage area 504a stores the mobile device ID of the mobile phone 40 to which the UIM 50 is currently attached. The content list 504b is a list showing a list of contents downloaded by the owner of the UIM 50 using the mobile phone 40 equipped with the UIM 50. As shown in FIG. 6, the content list 504b is composed of content names such as file names of downloaded contents. Note that the content that has been downloaded is no longer necessary, and the content name deleted by the owner of the UIM 50 is deleted from the content list 504b. Further, as described above, the main data of the downloaded content is stored in the content storage area 409b of the mobile phone 40 to which the UIM 50 is attached at the time of downloading.
[0059]
The subscriber information storage area 504c stores, as subscriber information of the UIM 50 owner, a subscriber ID, a credit card number, a bank account number, history information relating to outgoing and incoming calls, telephone directory information, and the like. The The UIMID storage area 504d stores the UIMID assigned to the UIM 50. The subscriber ID such as a telephone number is assigned to the owner of the UIM 50 by the communication carrier in accordance with the communication service subscription contract by the UIM 50, and stored in the subscriber information storage area 504c. The UIMID is written in the UIMID storage area 504d when the UIM 50 is shipped from the factory or when the UIM 50 subscribes to a communication service.
[0060]
The CPU 505 controls each unit connected via the bus 506 by executing various programs stored in the ROM 502 and the EEPROM 504. For example, the CPU 505 controls communication with the mobile phone 40 to which the UIM 50 is attached. Further, the CPU 505 displays a password input screen on the liquid crystal display screen of the mobile phone 40 when the UIM 50 is mounted on the mobile phone 40 and the main power supply of the mobile phone 40 is switched on, Prompt for password. Then, the CPU 505 verifies whether the user is the owner of the UIM 50 by collating the password entered by the user with the password registered in the EEPROM 504 in advance, and stores the subscriber information according to the authentication result. Access from the cellular phone 40 to the subscriber information stored in the area 504c is restricted.
The above is the configuration of the communication system 1 according to the present embodiment.
[0061]
[A-2. Operation of First Embodiment]
Next, the operation of this embodiment will be described. In the following description of the operation, a case will be described in which Java AP is downloaded as content to the mobile phone 40 on which the UIM 50 is mounted, and the Java AP is executed in response to an operation input.
[0062]
<1. Download process>
FIG. 7 is a sequence chart illustrating operations of the content server 10, the mobile phone 40, and the UIM 50 when the mobile phone 40 downloads Java AP from the content server 10. First, the user attaches the UIM 50 to the mobile phone 40 and operates the operation input unit 402 of the mobile phone 40 to instruct to start a Web browser. Accordingly, the mobile phone 40 can display a WWW page provided from the content server 10 on the display screen. Then, when the user instructs to download Java AP by an operation input while browsing the WWW page provided from the content server 10, the download processing shown in FIG.
[0063]
First, the CPU 410 of the mobile phone 40 transmits a download request to the content server 10 via the wireless communication unit 401 (step S101). This download request includes a command for instructing download and information for specifying Java AP to be downloaded. This download request is transmitted to the content server 10 via the mobile packet communication network 30 and the Internet 20. When the content server 10 receives the download request from the mobile phone 40, the content server 10 reads the Java AP specified by the download request from the memory (step S102), and transmits the Java AP to the mobile phone 40 (step S103).
[0064]
Here, the Java AP downloaded to the mobile phone 40 will be described in detail. First, the Java AP ADF is transmitted from the content server 10 to the mobile phone 40. After confirming the contents of the received ADF, the CPU 410 of the mobile phone 40 transmits a JAR file download request based on the ADF. In response to this, a JavaAP JAR file is downloaded from the content server 10 to the mobile phone 40.
[0065]
Next, the CPU 410 of the mobile phone 40 acquires the UIMID stored in the UIMID storage area 409a, that is, the UIM 50 of the UIM 50 currently attached to the mobile phone 40 (step S104). Incidentally, the UIMID storage area 409a stores the UIMID of the UIM 50 attached when the UIM 50 is attached to the mobile phone 40. Then, the CPU 410 stores the UIM ID acquired in step S104 in the content storage area 409b in association with the downloaded Java AP (step S105).
[0066]
The processing executed by the CPU 410 in step S105 will be described in detail. First, the CPU 410 allocates a JavaAP storage area downloaded this time to each of the JAR storage and the scratch pad in the content storage area 409b according to JAM. Next, the CPU 410 installs the downloaded JavaAP JAR file in the JAR storage according to JAM, and stores the JavaAP ADF and UIMD in the content storage area 409b in association with the JAR file.
[0067]
Thereafter, the CPU 410 of the mobile phone 40 acquires the file name (content name) of the JAR file that identifies the downloaded Java AP, for example, and transmits the content name to the UIM 50 via the UIM interface 404 (step S106). . When receiving the content name from the mobile phone 40 via the external interface 501, the CPU 505 of the UIM 50 adds the content name to the content list 504b in the EEPROM 504 and updates the content list 504b (step S107). Then, the CPU 505 transmits an update completion notification indicating that the update of the content list 504b has been completed to the mobile phone 40 (step S108).
[0068]
<2. JavaAP execution processing>
Next, Java AP execution processing 1 executed by the CPU 410 in the mobile phone 40 will be described with reference to the flowchart shown in FIG. The Java AP execution process 1 is executed by the CPU 410 as a JAM function when an operation command for instructing execution of Java AP is input.
[0069]
First, the CPU 410 obtains the UIMID associated with the Java AP designated for execution from the content storage area 409b (step S201). As described above, the UIM ID acquired in step S201 is the UIM ID of the UIM 50 that is attached to the mobile phone 40 when the Java AP designated for execution is downloaded. Next, the CPU 410 obtains the UIMID stored in the UIMID storage area 409a, that is, the UIMID of the UIM 50 currently attached to the mobile phone 40 (step S202).
[0070]
Then, the CPU 410 collates the two UIMIDs acquired in steps S201 and S202 (step S203), and determines whether or not the two UIIDs match (step S204). That is, the CPU 410 collates the UIM 50 of the UIM 50 currently attached to the mobile phone 40 at this time with the UIM 50 of the UIM 50 attached to the mobile phone 40 when the execution-designated Java AP is downloaded. It is determined whether or not the user who has instructed execution of JavaAP using the mobile phone 40 is a user who has downloaded this JavaAP from the content server 10.
[0071]
As a result, when it is determined that the two UIIMs do not match (step S204: No), the execution of Java AP is canceled (step S205). Next, the CPU 410 cancels the execution of this Java AP and the reason thereof, and if it is desired to use this Java AP, it is formally downloaded from the content server 10 and guidance information for that is displayed on the display screen (step) S206), the Java AP execution process 1 is terminated.
[0072]
On the other hand, if the CPU 410 determines that the two UIIMs match (step S204: Yes), that is, the user who has instructed execution of JavaAP is the user who downloaded this JavaAP from the content server 10, and the content provider If it is determined that the user is officially authorized to provide and use the content, execution of Java AP is permitted (step S207). Then, the CPU 410 activates the Java AP designated for execution (step S208), and starts processing based on this program.
[0073]
As described above, according to the present embodiment, the mobile phone 40 restricts the use of the Java AP downloaded from the content server 10 to only the owner of the UIM 50 attached to the mobile phone 40 when the Java AP is downloaded. be able to.
[0074]
[B. Second Embodiment]
In the first embodiment, the case where the use of the Java AP downloaded to the mobile phone 40 is limited to only the owner of the UIM 50 attached to the mobile phone 40 when the Java AP is downloaded has been described. In the present embodiment, a configuration will be described in which a content provider can specify whether or not to restrict users of JavaAP. In the present embodiment, the same reference numerals are used for portions common to the first embodiment. Further, the description of the parts common to the first embodiment will be omitted.
[0075]
FIG. 9 is a diagram illustrating a data configuration of the Java AP ADF used in the present embodiment. The ADF is a text file in which various control information for controlling installation and activation of a JAR file, network access, and the like is described. In the figure, the “item name” column describes the name of the control information, and the “required / optional” column indicates whether the corresponding control information is mandatory control information for the ADF, or is not mandatory but optional. It is shown whether the control information is included in the ADF.
[0076]
Here, each control information will be briefly described. “AppName” is the name of JavaAP, “AppVer” is the version of JavaAP, and “PackageURL” is a URL (Uniform Resource Locator) indicating the download source of the JAR file. “AppSize” is the size (data amount) of the JAR file, and “Spsize” is the size of the scratch pad used by Java AP.
[0077]
“AppUser” is control information that specifies whether or not to restrict the use of JavaAP to only the owner of the UIM 50 attached to the mobile phone 40 when the JavaAP is downloaded. “0” is stored. In this specification, setting the value of AppUser to “1” indicates that the use of JavaAP is restricted to only the owner of the UIM 50 attached to the mobile phone 40 when the JavaAP is downloaded. Also, setting the value of AppUser to “0” does not limit the use of JavaAP to only the owner of UIM 50 attached to the mobile phone 40 at the time of downloading this JavaAP, ie, for any user The use of this Java AP is permitted.
[0078]
The value of AppUser is set by a content provider that provides Java AP. That is, the content provider can set the use restriction of the Java AP provided by the content provider by the AppUser in the ADF. For example, a content provider may set AppUser of the ADF to “0” for JavaAP that a wide variety of people want to use for free, while JavaAP that wants to collect usage fees from each user. For example, the AppUser of the ADF may be set to “1”.
[0079]
As described above, in the present embodiment, the first point described above is that the AppUser that specifies whether or not to restrict the user of JavaAP is included in the ADF, and whether or not JavaAP can be executed according to this AppUser and UIMD. Different from the embodiment.
[0080]
FIG. 10 is a flowchart for explaining the operation of the Java AP execution process 2 executed by the CPU 410 in the mobile phone 40 according to the present embodiment. This Java AP execution process 2 is executed by the CPU 410 as a JAM function when an operation command for instructing execution of Java AP is input, as in the Java AP execution process 1 in the first embodiment described above.
[0081]
As shown in the figure, the CPU 410 first reads the Java AP ADF designated for execution from the content storage area 409b, and acquires the value of AppUser from the ADF (step S301). Next, the CPU 410 determines whether or not the value of AppUser is “1”, that is, whether or not to restrict the JavaAP users who are designated to execute (step S302).
[0082]
As a result, the value of AppUser is “1”, and the CPU 410 is specified to restrict the use of the JavaAP specified to be executed to only the owner of the UIM 50 attached to the mobile phone 40 when the JavaAP is downloaded. If yes (step S302: Yes), the processing shown in steps S303 to S310 is executed. Since the processes in steps S303 to S310 are the same as the processes in steps S201 to S208 of the Java AP execution process 1 (see FIG. 8) in the first embodiment described above, a detailed description thereof will be omitted. Street.
[0083]
That is, the CPU 410 collates the UIM stored in the content storage area 409b in association with the execution-designated Java AP with the UIM stored in the UIIM storage area 409a, so that the mobile phone 40 is currently It is determined whether or not the user who has instructed execution of JavaAP is a user who has downloaded this JavaAP from the content server 10, and determines whether or not JavaAP can be executed according to the determination result.
[0084]
On the other hand, in step S302, the CPU 410 does not restrict the use of the JavaAP specified to be executed to the owner of the UIM 50 attached to the mobile phone 40 when the Java AP is downloaded. If it is specified (step S302: No), since the use of this Java AP may be permitted for any user, the UIM ID is not checked and the process proceeds to step S309. Then, the CPU 410 permits execution of Java AP (step S309), activates this Java AP (step S310), and starts processing based on this program.
[0085]
As shown in FIG. 9, since AppUser is an option in the ADF, when the CPU 410 acquires the value of AppUser from the ADF in step S301, there may be a case where there is no AppUser in the ADF. For existing content (Java AP), AppUser does not exist in the ADF unless the ADF is rewritten. When it is detected that AppUser is not included in the ADF in this way, the CPU 410 considers that the value of AppUser is “1” from the viewpoint of protecting the right relating to the JavaAP use permission, and the processing after step S303. To do. In other words, when there is no AppUser in the ADF, the JavaAP user is limited to only the owner of the UIM 50 that is attached to the mobile phone 40 when the JavaAP is downloaded, so that the rights related to the JavaAP license are protected. To work.
[0086]
As described above, according to the present embodiment, the mobile phone 40 restricts the use of JavaAP downloaded from the content server 10 to only the owner of the UIM 50 attached to the mobile phone 40 when the JavaAP is downloaded. Whether or not is determined based on the value of AppUser in the ADF. Therefore, the content provider can easily set the use restriction of the Java AP provided by the content provider.
[0087]
[C. Third Embodiment]
In the first and second embodiments described above, the user who is using the mobile phone 40 with the UIM 50 installed can use any Java AP that can be used for each Java AP downloaded to the mobile phone 40. I don't know if there is anything to do by instructing execution through operation input. Therefore, in the present embodiment, a mobile phone 40 that allows a user to recognize a Java AP that the user can use even when the execution is not instructed will be described. Note that the hardware configurations of the mobile phone 40 and the UIM 50 according to the present embodiment are the same as those of the mobile phone 40 and the UIM 50 in the first embodiment described above, and thus the description thereof is omitted.
[0088]
When one of the JavaAPs downloaded to the mobile phone 40 is to be used, the user displays a JavaAP selection screen on the display screen by an operation input. In response to the input of a command for instructing the display of the Java AP selection screen, the CPU 410 of the mobile phone 40 executes the selection screen display processing 1 shown in FIG.
As shown in the figure, first, the CPU 410 of the mobile phone 40 specifies each Java AP stored in the content storage area 409b (step S401), and also specifies a content name (for example, a JAR file) for each specified Java AP. File name). Next, the CPU 410 obtains the UIMID stored in the UIMID storage area 409a, that is, the UIMID of the UIM 50 currently mounted on the mobile phone 40 (step S402).
[0089]
Then, for each Java AP identified in step S401, the CPU 410 collates the UIM ID associated with the Java AP and stored in the content storage area 409b with the UIM ID acquired in step S402 (step S403). ). From this collation result, the CPU 410 can determine, for each Java AP, whether or not the user currently using the mobile phone 40 is a user who downloaded this Java AP from the content server 10.
[0090]
Next, the CPU 410 acquires the value of AppUser in the ADF of the Java AP for each Java AP identified in step S401 (step S404). Based on the value of AppUser, the CPU 410 determines, for each Java AP, whether or not the use of the Java AP is restricted to only the owner of the UIM 50 that was attached to the mobile phone 40 when the Java AP was downloaded. can do.
[0091]
Thereafter, the CPU 410 determines whether or not each Java AP can be used for the user using the mobile phone 40 based on the UIM ID collation result in step S403 and the AppUser value acquired in step S404 (step S403). S405). Specifically, the CPU 410 sets the Java AP in which the UIIM associated with the Java AP matches the UIID acquired in the step S402 from among the Java APs identified in the step S401, and the value of AppUser is “0”. The set JavaAP is a JavaAP that can be used by a user who uses the mobile phone 40, and a JavaAP that does not allow other JavaAPs to be used.
[0092]
In this way, the CPU 410 sorts each Java AP stored in the content storage area 409b into a Java AP that is allowed to be used by a user who uses the mobile phone 40 and a Java AP that is not allowed to be used. As shown in FIG. 12, the JavaAP content name that is permitted to be used and the JavaAP content name that is not permitted to be used are displayed on the display screen in different display forms (step S406).
[0093]
Here, in the screen display example shown in FIG. 12, the content name (program name) of the Java AP that is permitted to be used is shown in a larger and bold font than the content name of the Java AP that is not permitted to be used. For example, it is preferable to display the content name of the Java AP that is permitted to be used and the content name of the Java AP that is not permitted to be used, for example, by changing the display color of the content name and the background color thereof. In addition, the method of changing the display form may be, for example, a form of displaying a mark indicating that the content can be used beside the content name permitted to be used. Moreover, the form which displays only the content name of JavaAP which permits use may be sufficient, and the form which alert | reports only the content name of JavaAP which permits use to an audio | voice message may be sufficient.
[0094]
In the selection screen shown in FIG. 12, when the user selects a JavaAP content name permitted to be used by an operation input, the CPU 410 activates the selected JavaAP and starts processing based on this program. . On the other hand, when a JavaAP content name that is not permitted to be used is selected by an operation input on the selection screen shown in FIG. 12, the CPU 410 does not execute the selected JavaAP, and the use of this JavaAP is not permitted. If the user wishes to use this Java AP, a message indicating that the Java AP is officially downloaded from the content server 10 is displayed on the display screen. Of course, for JavaAP that is not permitted to be used by the user, the user cannot instruct execution of this JavaAP, but if the owner of the mobile phone 40, the JavaAP is deleted from the content storage area 409b. (Uninstall) is designed to give instructions.
[0095]
As described above, according to the present embodiment, for each Java AP downloaded to the mobile phone 40 to which the UIM 50 is detachable, the user knows the Java AP that the user can use at a stage where the execution is not instructed. be able to.
[0096]
In the selection screen display process 1 shown in FIG. 11, the UIMID and AppUser are used to determine whether or not JavaAP can be used, but instead of the UIMD, the content list 504b stored in the UIM 50 is used. You may make it use. Hereinafter, with reference to FIG. 13, an operation when determining whether or not to use Java AP using the content list 504 b will be described. Note that the description of the portion that performs the same process as the selection screen display process 1 shown in FIG. 11 will be simplified.
[0097]
First, the CPU 410 of the mobile phone 40 identifies each Java AP stored in the content storage area 409b (step S501), and acquires a content name for each identified Java AP. Next, the CPU 410 communicates with the UIM 50 via the UIM interface 404, and acquires the content list 504b from the UIM 50 (step S502). As described in the first embodiment, the content list 504b is a list showing a list of contents downloaded by the owner of the UIM 50 using the mobile phone 40 equipped with the UIM 50.
[0098]
Next, the CPU 410 collates the content name of each Java AP specified in step S501 with each content name in the content list 504b acquired in step S502 (step S503). Thereby, CPU410 can discriminate | determine whether the user using the mobile telephone 40 is a user who downloaded this JavaAP from the content server 10 for every JavaAP.
[0099]
Next, the CPU 410 acquires the value of AppUser in the ADF of the Java AP for each Java AP identified in step S501 (step S504). Thereafter, the CPU 410 determines whether or not each Java AP can be used for the user using the mobile phone 40, based on the collation result with the content list 504b in step S503 and the value of AppUser acquired in step S504. (Step S505). Specifically, the CPU 410, among the JavaAPs identified in step S501, the JavaAP whose JavaAP content name matches one of the content names in the content list 504b acquired in step S502, and the value of AppUser The Java AP in which “1” is set to “0” is a Java AP that may be allowed to be used by a user who uses the mobile phone 40, and other Java APs that are not allowed to be used.
[0100]
In this way, the CPU 410 sorts each Java AP stored in the content storage area 409b into a Java AP that is allowed to be used by a user who uses the mobile phone 40 and a Java AP that is not allowed to be used. As shown in the above, the content name of the Java AP that is permitted to be used and the content name of the Java AP that is not permitted to be used are displayed on the display screen in different display forms (step S506). As described above, whether to use Java AP may be determined using the content list 504b stored in the UIM 50 instead of the UIM ID.
[0101]
[D. Fourth Embodiment]
In the first to third embodiments described above, UIIM is used to limit the users of JavaAP downloaded to the mobile phone 40. In this case, for example, if the user's UIM 50 is exchanged for a new UIM 50 due to malfunction or replacement, it becomes impossible to appropriately limit the users of JavaAP (content). Therefore, in the present embodiment, a description will be given of the mobile phone 40 that can appropriately limit the content user even when the user replaces the UIM 50. Note that the hardware configurations of the mobile phone 40 and the UIM 50 according to the present embodiment are the same as those of the mobile phone 40 and the UIM 50 in the first embodiment described above, and thus the description thereof is omitted.
[0102]
When a user using the UIM 50 replaces the UIM 50 owned by a malfunction or replacement by purchase with a new UIM 50, the user first goes to a service shop and asks a clerk to replace the UIM 50. The sales clerk prepares a replacement UIM 50 after signing a contract for the replacement of the UIM 50 with the user. In addition, the user gives the mobile phone 40 and UIM 50 used by the user to the store clerk. In the following description, the UIM 50 before replacement is referred to as “old UIM 50”, and the UIM 50 after replacement is referred to as “new UIM 50”.
[0103]
When the store clerk receives the mobile phone 40 and the old UIM 50 from the user, the store clerk first attaches the old UIM 50 to the mobile phone 40. Next, the store clerk operates the mobile phone 40 to shift to the maintenance mode, and instructs execution of UIM exchange processing for performing processing related to UIM 50 exchange.
[0104]
FIG. 14 is a flowchart for explaining the operation of UIM exchange processing executed by the CPU 410 in the mobile phone 40 according to the present embodiment. As shown in the figure, first, the CPU 410 acquires the UIMID stored in the UIMID storage area 409a, that is, the UIMID of the old UIM 50 currently attached to the mobile phone 40, and stores the UIIMD in the nonvolatile memory. It memorize | stores in 409 (step S601). In addition, the CPU 410 acquires the content list 504b and the subscriber information stored in the subscriber information area 504c from the old UIM 50 and stores them in the nonvolatile memory 409 (step S602).
[0105]
Next, the CPU 410 temporarily turns off the power of the mobile phone 40 and replaces the old UIM 50 with the new UIM 50, and then displays a message prompting to turn on the power again on the display screen (step S603). When the store clerk turns off the power of the mobile phone 40 according to this message and replaces the old UIM 50 with the new UIM 50 and then turns on again, the CPU 410 stores the UIID stored in the UIMD storage area 409a, that is, replaced. The UIM ID of the new UIM 50 is acquired (step S604).
[0106]
Thereafter, the CPU 410 reads the UIM ID of the old UIM 50 stored in the nonvolatile memory 409 in the above step S501 (step S605). Then, for example, the CPU 410 rewrites the UIM ID of the old UIM 50 with the UIM ID of the new UIM 50 among the UIM IDs associated with the content and stored in the content storage area 409b (step S606).
[0107]
Further, the CPU 410 reads out the content list 504b of the old UIM 50 and the subscriber information stored in the nonvolatile memory 409 in the above step S602, and transmits them to the new UIM 50 via the UIM interface 404 (step S607). When the CPU 505 of the new UIM 50 receives the content list 504 b and the subscriber information of the old UIM 50 from the mobile phone 40, the CPU 505 stores the content list 504 b and the subscriber information in the EEPROM 504, and then transmits a storage completion notification to the mobile phone 40. After completing the UIM exchange process described above, the store clerk returns the mobile phone 40 and the new UIM 50 to the user.
[0108]
As described above, according to the present embodiment, the mobile phone 40 writes the UIM associated with the content downloaded from the content server 10 from the UIIM of the old UIM 50 to the UIM of the new UIM 50 in accordance with the exchange of the UIM 50. Change. Therefore, even if the user replaces the UIM 50 due to malfunction or replacement, the content downloaded to the mobile phone 40 using the old UIM 50 can be continuously used in the new UIM 50. In the present embodiment, for example, from the viewpoint of preventing an illegal act such as a malicious user copying a content list 504b stored in another person's UIM 50 or subscriber information to another UIM 50, the UIM exchange process is performed. The work is performed by a clerk of the service shop, not the user. However, it may be configured such that the user himself can perform work related to UIM exchange processing by incorporating a personal authentication function or the like.
[0109]
The UIM exchange process may be started as described below. First, in the service shop, a clerk prepares a replacement UIM 50 after making a contract with the user regarding the replacement of the UIM 50. Further, the user gives the mobile phone 40 and UIM 50 used by the user to the store clerk. Thereafter, the store clerk receives the contract information regarding the exchange of the UIM 50 including the UIM ID of the old UIM 50 and the UIM 50 of the new UIM 50 from the communication terminal installed in the service shop of the communication carrier operating the mobile packet communication network 40. Transmit to a service management center (not shown). Further, the store clerk attaches the old UIM 50 to the mobile phone 40.
[0110]
In the service management center, after confirming the contents of the contract sent from the service shop, an activation command instructing activation of the UIM exchange processing is transmitted to the mobile phone 40 to which the old UIM 50 is attached via the mobile packet communication network 40. . The activation command is transmitted as a radio signal from the base station 32 in the mobile packet communication network 40 to the mobile phone 40. When the CPU 410 of the mobile phone 40 receives the activation command via the wireless communication unit 401, the activation command is transmitted according to the activation command. Start the UIM exchange process. Thus, if the UIM exchange process in the mobile phone 40 is not activated unless the activation command is received from the service management center, execution of the UIM exchange process for an unauthorized purpose can be prevented as much as possible.
[0111]
[E. Fifth Embodiment]
In the present embodiment as well, following the fourth embodiment described above, a description will be given of a mobile phone 40 that can appropriately restrict the use of content even when the user replaces the UIM 50.
[0112]
In the UIM 50 according to the present embodiment, the UIMID storage area 504d provided in the EEPROM 504 is exchanged with the area 504d1 for storing the UIMID assigned to the UIM 50, as shown in FIG. In some cases, it has a takeover area 504d2 capable of storing a plurality of UIMIDs of the old UIM 50 before replacement.
[0113]
Here, the UIM ID of the UIM 50 is written in the area 504d1 when the UIM 50 is shipped from the factory or when the UIM 50 subscribes to a communication service. Further, in the takeover area 504d2, for example, as described in the fourth embodiment described above, when the user exchanges the UIM 50 at the service shop, the content list 504b stored in the old UIM 50 and the subscriber information are stored. Simultaneously with the process of writing to the new UIM 50, the UIIM stored in the UIMID storage area 504d of the old UIM 50 is written. When the user exchanges the UIM 50 a plurality of times, the UIM IDs of a plurality of old UIMs 50 owned by the user in the past are written in the takeover area 504d2 of the UIM 50 currently owned by the user. .
[0114]
When the UIM 50 according to the present embodiment is mounted on the mobile phone 40, the UIM ID storage area 409a of the mobile phone 40 includes one or more UIM IDs of the UIM 50 stored in the UIM ID storage area 504d of the UIM 50 and one or more before replacement. UIIMID of the old UIM 50 is written. When the mobile phone 40 according to the present embodiment performs the download process (see FIG. 7) described in the first embodiment, the CPU 410 of the mobile phone 40 stores the content downloaded from the content server 10 in the UIMID storage area. Of the plurality of UIMIDs before and after exchange stored in 409a, for example, the UIM 50 of the UIM 50 after exchange is stored in the content storage area 409b in association with it.
[0115]
Further, when the mobile phone 40 according to the present embodiment performs the Java AP execution process (see FIG. 8) described in the first embodiment, the CPU 410 of the mobile phone 40 is associated with the Java AP designated for execution, and the content Whether or not this Java AP can be used is determined by checking whether or not the UIMID stored in the storage area 409b matches any of the plurality of UIIMIDs stored in the UIMID storage area 409a.
[0116]
When the mobile phone 40 according to the present embodiment performs the selection screen display process 1 (see FIG. 11) described in the third embodiment, the CPU 410 of the mobile phone 40 is stored in the content storage area 409b. For each JavaAP, it is checked whether the UIMD associated with the JavaAP matches one of the plurality of UIIDs stored in the UIMD storage area 409a, and the AppUser in the JavaAP ADF Whether to use this Java AP is determined based on the value.
[0117]
Accordingly, in the present embodiment, similarly to the above-described fourth embodiment, even if the user replaces the UIM 50 due to malfunction or replacement, the content downloaded to the mobile phone 40 using the old UIM 50 is replaced with the new UIM 50. But you can continue to use it.
[0118]
[F. Modified example]
As mentioned above, although embodiment of this invention was described, this embodiment is an illustration to the last, and various deformation | transformation are possible in the range which does not deviate from the meaning of this invention. As modifications, for example, the following can be considered.
[0119]
<Modification 1>
In each of the above-described embodiments, the UIMID is used to limit the users of the downloaded content. However, instead of the UIMID, for example, a subscriber ID stored in the subscriber information storage area 504c of the UIM 50 may be used. In this case, even if the user replaces the UIM 50 owned by the user with a new UIM 50 due to malfunction or replacement by purchase, the subscriber ID is handed over from the UIM 50 before replacement to the UIM 50 after replacement in accordance with the replacement of the UIM 50. Therefore, it is not necessary to perform the UIMID rewriting process as described in the fourth and fifth embodiments.
[0120]
However, the fact that information that can be identified at a glance as the user's personal information, such as a telephone number, is stored in the memory of another person's mobile phone 40 instead of the UIMD from the viewpoint of leakage of personal information. This is not preferable. Therefore, the subscriber ID used in place of the UIMID is, for example, an ID other than the telephone number unique to the subscriber assigned by the communication carrier of the mobile packet communication network 40 to the subscriber of the communication service using the UIM50. It is preferable that the user's personal information is excluded.
[0121]
<Modification 2>
In each of the above-described embodiments, the UIMID is used to limit the users of the downloaded content. Further, in the first modification described above, a subscriber ID is used instead of the UIMID. However, it can be seen that these UIMIDs and subscriber IDs cannot appropriately limit the users of the downloaded content, for example, considering the following cases.
[0122]
That is, when Mr. A owns two UIMs 50 (hereinafter referred to as UIM 50a and UIM 50b in order to distinguish the UIMs 50), the UIM 50a UIIM 50 and the UIM 50b UIID are different. Also, the subscriber ID assigned to the UIM 50a and the subscriber ID assigned to the UIM 50b at the time of a communication service subscription contract are different. That is, these UIMID and subscriber ID are only identification information for identifying a subscription contract for a communication service using the UIM 50. Therefore, for example, when the content downloaded by Mr. A using the UIM 50a is to be used using the UIM 50b, the use is restricted even though the user is the same user, and the use of the content is prohibited.
[0123]
Therefore, when Mr. A owns two UIMs 50a and 50b, the UIM of the other UIM 50a and 50b is stored in the takeover area 504d2 of each UIM 50a and 50b, and the UIM storage area 504d A configuration may be adopted in which the use of content is restricted using a plurality of UIMIDs stored in the area 504d1 and the takeover area 504d2 as in the fifth embodiment described above. In addition to the subscriber ID, a user ID indicating that the UIM 50a and the UIM 50b are used by the same user is prepared, and the user ID is stored in each UIM 50a and 50b. It may be configured to use content to be restricted. In this way, the users of the downloaded content can be appropriately restricted on a user basis.
[0124]
<Modification 3>
In each of the above-described embodiments, the case where the UIM 50 of the UIM 50 is stored in the UIMID storage area 409a of the mobile phone 40 when the UIM 50 is mounted on the mobile phone 40 has been described. However, the mobile phone 40 does not have the UIMID storage area 409a, and whenever the UIMID is necessary, the UIM 50 attached to the mobile phone 40 is accessed via the UIM interface 404 to acquire the UIMID. It may be controlled.
[0125]
<Modification 4>
In the Java AP execution process 1 (see FIG. 8) of the first embodiment described above, the UIMID is used to determine whether or not the Java AP can be used. However, the content list 504b stored in the UIM 50 is used instead of the UIMID. May be used.
[0126]
FIG. 16 is a flowchart for explaining the operation of the mobile phone 40 when determining whether or not JavaAP can be used using the content list 504b. The Java AP execution process 3 shown in the figure is executed by the CPU 410 as a JAM function when an operation command for instructing the execution of Java AP is input, similarly to the Java AP execution process 1 in the first embodiment described above. The
[0127]
First, the CPU 410 acquires the content name (for example, the file name of the JAR file) of JavaAP that is designated for execution from the content storage area 409b (step S701). Next, the CPU 410 communicates with the UIM 50 via the UIM interface 404, and acquires the content list 504b from the UIM 50 (step S702).
[0128]
Then, the CPU 410 collates the content name of the Java AP acquired in step S701 above with each content name in the content list 504b (step S703), and the content name of the Java AP designated for execution is any of the content list 504b. It is determined whether or not it matches the content name (step S704). Based on this determination result, it is possible to determine whether or not the user who is currently instructing to execute Java AP using the mobile phone 40 is the user who downloaded this Java AP from the content server 10.
[0129]
As a result, if the CPU 410 determines that the content name of the JavaAP designated to be executed does not match any content name in the content list 504b (step S704: No), the CPU 410 cancels the execution of JavaAP (step S705). After displaying the message accompanying the cancellation of Java AP execution on the display screen (step S706), the Java AP execution process 3 is terminated.
[0130]
On the other hand, when the CPU 410 determines that the content name of the JavaAP designated to be executed matches any content name in the content list 504b (step S704: Yes), the user instructing execution of this JavaAP It is determined that the user who downloaded this Java AP from the content server 10 is a user who is formally authorized to provide and use the content from the content provider, and permits the execution of Java AP (step S707). The designated Java AP is activated (step S708), and processing based on this program is started.
[0131]
As described above, whether to use Java AP may be determined using the content list 504b stored in the UIM 50 instead of the UIM ID. Further, whether to use Java AP may be determined by combining UIMID and content list 504b.
[0132]
<Modification 5>
In each of the above-described embodiments, the JavaAP (program) is mainly exemplified as the content provided to the mobile phone 40, but the content is not limited to the program. For example, image data or music data Of course, it may be. Further, in each of the above-described embodiments, the case where content is downloaded has been described, but the present invention can also be applied to the case where content is distributed.
[0133]
<Modification 6>
In each embodiment described above, the content server 10 is configured to be connected to the Internet 20. However, the content server 10 may be configured to be directly connected to the gateway server 31 of the mobile packet communication network 30 via a dedicated line. Further, the gateway server 31 may be configured to have the function of the content server 10. Furthermore, the content server 10 may be provided in the mobile packet communication network 30.
[0134]
<Modification 7>
In each of the above-described embodiments, as shown by hatching in FIG. 17, KVM and J2ME having CLDC as a configuration and J2ME having an original Java extended profile as a configuration are incorporated as JavaAP execution environment software. The case where the present invention is applied to the mobile phone 40 has been described. However, the Java execution environment to which the present invention can be applied is not limited to the combination of KVM and J2ME described above. A communication terminal to which the present invention is applicable is not limited to a mobile phone.
[0135]
For example, as shown in the figure, instead of the above-mentioned original Java extended profile, MIDP (Mobile Information Device Profile), which is a profile for mobile phones formulated by JCP (Java Community Process), is used as the J2ME profile. The structure provided may be sufficient. Further, as shown in the figure, a JVM is provided instead of the KVM, a CDC (Connected Device Configuration) is used instead of the CLDC as a J2ME configuration, and a profile for a liquid crystal telephone, for example, is used as a J2ME profile. , A Java execution environment including a TV profile, a car navigation profile, and the like. Furthermore, a Java execution environment including HotSpot and J2SE (Java 2 Standard Edition) or J2EE (Java 2 Enterprise Edition) may be used.
[0136]
Further, as can be seen from the above-described modifications of the Java execution environment, the present invention is a communication system such as a PHS (Personal Handyphone System: registered trademark) terminal, a PDA (Personal Digital Assistant), a car navigation device, a personal computer, etc. The present invention can be applied to various electronic devices having functions. Further, in each of the above-described embodiments, the case where Java AP described in the Java programming language is used has been described. Of course, the programming language is not limited to Java.
[0137]
<Modification 8>
In each of the embodiments described above, the UIM 50 may be a contactless IC card that transmits and receives data to and from the mobile phone 40 by wireless communication. Further, the UIM 50 is not limited to an IC card, and may of course be a storage medium such as a memory card, an optical disk, or a magnetic disk.
[0138]
<Modification 9>
When a storage medium is used instead of the UIM 50, for example, a malicious third party may illegally obtain data stored in another person's storage medium by duplicating the storage contents of the storage medium. There is. Therefore, for example, a unique serial number for each storage medium is stored in the storage medium so that it cannot be copied, and this serial number is associated with the downloaded content in the content storage area of the mobile phone 40 It is preferable that the data is stored in 409b.
[0139]
Further, the control described below may be performed. FIG. 18 is a block diagram illustrating a hardware configuration of the mobile phone 41 according to this variation. As shown in the figure, the mobile phone 41 includes a memory card interface 421 instead of the UIM interface 404 as compared with the mobile phone 40 shown in FIG. The difference is that a card ID storage area 409c is provided instead of the storage area 409a.
[0140]
The memory card interface 421 controls writing and reading of data to and from the memory card 60 attached to the memory card interface 421. In addition, a card ID (for example, a manufacturing number) uniquely assigned to each memory card 60 is stored in advance in the memory card 60 attached to the memory card interface 421. In addition, the memory card 60 stores a content list indicating a list of contents downloaded from the content server 10 by the mobile phone 41 in which the memory card 60 is mounted. Further, the card ID storage area 409 c in the nonvolatile memory 409 stores the card ID read from the memory card 60 mounted on the mobile phone 41 via the memory card interface 421.
[0141]
FIG. 19 is a sequence chart illustrating the operation of the content server 10 and the mobile phone 41 when the mobile phone 41 with the memory card 60 attached downloads content from the content server 10. First, the CPU 410 of the mobile phone 41 transmits a download request to the content server 10 via the wireless communication unit 401 (step S801). This download request includes a command for instructing download and information for specifying content to be downloaded. When the content server 10 receives the download request from the mobile phone 41, the content server 10 reads the content designated by the download request from the memory (step S802) and transmits the content to the mobile phone 41 (step S803).
[0142]
Next, the CPU 410 of the mobile phone 41 acquires the card ID stored in the card ID storage area 409c, that is, the card ID of the memory card 60 currently installed in the mobile phone 41 (step S804). Then, the CPU 410 stores the card ID acquired in step S804 in the content storage area 409b in association with the downloaded content (step S805).
[0143]
Thereafter, the CPU 410 of the mobile phone 41 identifies the downloaded content, for example, acquires the file name (content name) of this content. Then, the CPU 410 encrypts the content name using the card ID stored in the card ID storage area 409c as a key (step S806), and stores the encrypted content name in the memory card 60 via the memory card interface 421. Store (step S807). As a result, the content name sent from the mobile phone 41 and encrypted by the card ID is added to the content list stored in the memory card 60.
[0144]
FIG. 20 is a flowchart for explaining the operation of content use restriction processing executed by the CPU 410 in the mobile phone 41. The content use restriction process shown in the figure is executed by the CPU 410 when the content stored in the content storage area 409b is designated by an operation input and the use is instructed.
[0145]
First, the CPU 410 acquires a content name (for example, a file name) of content designated to be used from the content storage area 409b (step S901). Next, the CPU 410 acquires an encrypted content list from the memory card 60 via the memory card interface 421 (step S902). In addition, the CPU 410 acquires a card ID stored in the card ID storage area 409c (step S903). Then, the CPU 410 decrypts each content name constituting the content list acquired from the memory card 60 using the card ID as a key (step S904), and stores the decrypted content list in the RAM 408.
[0146]
Next, the CPU 410 collates the content name acquired in step S901 with each content name in the content list stored in the RAM 408 (step S905), and the content name of the content designated to be used is in the content list. It is determined whether or not the content name matches any of the content names (step S906). Based on the determination result, it is possible to determine whether or not the user who is currently instructing to use the content using the mobile phone 41 is the user who downloaded the content.
[0147]
As a result, if the CPU 410 determines that the content name of the content designated to be used does not match any content name in the content list (step S906: No), the use of this content is not permitted. (Step S907) After a message indicating that the content cannot be used is displayed on the display screen (Step S908), the content use restriction process is terminated.
[0148]
On the other hand, if the CPU 410 determines that the content name of the content designated to be used matches one of the content names in the content list (step S906: Yes), the CPU 410 instructs the use of this content. The user determines that the user has downloaded this content from the content server 10 and is a user who has been formally authorized to provide and use the content from the content provider, and permits the use of the content (step S909). Then, the content use restriction process ends. Thereafter, for example, when the content is a program, the CPU 410 activates the program and starts processing based on the program. Further, when the content is an image file, the CPU 410 appropriately executes a process according to the use of the content, such as displaying an image based on the data of the image file on the liquid crystal display screen.
[0149]
As described above, in the present modification, the content identification information stored in the memory card 60 is encrypted using the card ID of the memory card 60 as a key, and the encrypted content read from the memory card 60 is also read. The identification information is decrypted using the card ID of the memory card 60 as a key. With such a configuration, a certain level of security can be ensured even if the UIM 50 itself includes a microprocessor and the UIM 50 itself does not restrict access. Of course, the memory card 60 may be a storage medium such as a smart card, floppy disk (Floppy Disc), CD-ROM (Compact Disc-ROM), or DVD (Digital Versatile Disc).
[0150]
【The invention's effect】
As described above, according to the present invention, the use of content can be appropriately restricted in a communication terminal in which a data storage module or storage medium for identifying a communication service subscription or subscriber is detachable.
[Brief description of the drawings]
FIG. 1 is a block diagram illustrating a configuration of a communication system according to a first embodiment of the present invention.
FIG. 2 is a block diagram illustrating a hardware configuration of the mobile phone according to the embodiment;
FIG. 3 is a diagram illustrating a data configuration of a content storage area in a nonvolatile memory in the mobile phone according to the embodiment;
FIG. 4 is a diagram for explaining a JavaAP execution environment in the mobile phone according to the embodiment;
FIG. 5 is a block diagram illustrating a hardware configuration of a UIM according to the embodiment;
6 is a diagram illustrating a data configuration of a content list in an EEPROM in the UIM according to the embodiment; FIG.
FIG. 7 is a sequence chart illustrating operations of the content server, the mobile phone, and the UIM when the mobile phone according to the embodiment downloads Java AP from the content server.
FIG. 8 is a flowchart illustrating an operation of Java AP execution processing 1 executed by a CPU in the mobile phone according to the embodiment.
FIG. 9 is a diagram illustrating a data configuration of an ADF of JavaAP used in the second embodiment of the present invention.
FIG. 10 is a flowchart for explaining the operation of Java AP execution processing 2 executed by the CPU in the mobile phone according to the embodiment;
FIG. 11 is a flowchart illustrating an operation of a selection screen display process 1 executed by a CPU in a mobile phone according to a third embodiment of the present invention.
FIG. 12 is a diagram showing a screen display example displayed by the selection screen display processing 1 shown in FIG. 11 in the mobile phone according to the third embodiment of the present invention.
FIG. 13 is a flowchart illustrating an operation of a selection screen display process 2 executed by a CPU in a mobile phone according to a third embodiment of the present invention.
FIG. 14 is a flowchart illustrating an operation of UIM exchange processing executed by a CPU in a mobile phone according to a fourth embodiment of the present invention.
FIG. 15 is a diagram illustrating a configuration of a UIMID storage area in a UIM according to a fifth embodiment of the invention.
FIG. 16 is a flowchart for explaining the operation of Java AP execution processing 3 executed by a CPU in a mobile phone according to Modification 4 of the present invention.
FIG. 17 is a diagram for explaining a modification of the Java execution environment according to the modification 7 of the present invention.
FIG. 18 is a block diagram illustrating a hardware configuration of a mobile phone according to a ninth modification of the present invention.
FIG. 19 is a sequence chart illustrating an operation of the content server and the mobile phone when the mobile phone according to the modification downloads content from the content server.
FIG. 20 is a flowchart illustrating an operation of content use restriction processing executed by a CPU in a mobile phone according to the modification.
[Explanation of symbols]
DESCRIPTION OF SYMBOLS 1 ... Communication system, 10 ... Content server, 20 ... Internet, 30 ... Mobile packet communication network, 31 ... Gateway server, 32 ... Base station, 40, 41 ... Mobile phone, 50 ... UIM, 60 …… Memory card, 401 …… Wireless communication unit, 401a …… Antenna, 402 …… Operation input unit, 403 …… Call processing unit, 404 …… UIM interface, 405 …… LCD display unit, 406 …… Storage unit , 407... ROM, 408... RAM, 409... Nonvolatile memory, 409 a... UIMID storage area, 409 b. ... Card ID storage area, 501 ... External interface, 502 ... ROM, 503 ... RAM, 50 ... EEPROM, 504a ... Mobile device ID storage area, 504b ... Content list, 504c ... Subscriber information storage area, 504d ... UIID storage area, 504d1 ... Area, 504d2 ... Takeover area, 505 ... CPU 506 ... Bus.

Claims (41)

In a communication terminal in which a data storage module storing predetermined identification information is removable,
Receiving means for receiving content;
When receiving the content by the receiving means, storage means for storing the identification information acquired from the data storage module mounted on the communication terminal in association with the content in a memory of the communication terminal,
If the use of the content stored in the memory is instructed by the storage means, and identification information acquired from the data storage module mounted on the communication terminal, stored in the memory in association with the content and collation means for collating the Tei Ru identification information,
Wherein when two of the identification information Ri are collated by the collating means matches the communication terminal; and a determination means for permitting use of the content. The content is given usage restriction information that specifies whether to restrict the user of the content,
The storage means associates the use restriction information given to the content received by the receiving means with the content, and further stores it in the memory,
The determination means is designated not to restrict the user of the content to which the use restriction information is given by the use restriction information stored in the memory in association with the content instructed to use. 2. The communication terminal according to claim 1, wherein use of the content is permitted regardless of a collation result by the collation unit . The content is given usage restriction information that specifies whether to restrict the user of the content,
The storage means associates the usage restriction information given to the content received by the receiving means with the content, and further stores it in the memory,
The determination means is designated to restrict users of the content to which the use restriction information is assigned by using the use restriction information stored in the memory in association with the content instructed to use. case, the communication terminal according to claim 1 in which two identification information collated by the collating means if they match, and permits the use of the content. The content can be given use restriction information that specifies whether to restrict the user of the content,
The storage means, when the use restriction information is given to the content received by the receiving means, further stores the use restriction information in association with the content in the memory,
When the determination unit detects that the use restriction information is not stored in the memory in association with the content instructed to be used, and when the two pieces of identification information collated by the collation unit match The communication terminal according to claim 1 , wherein use of the content is permitted . The content can be given usage restriction information that specifies whether to restrict the user of the content,
The storage means, when the use restriction information is given to the content received by the receiving means, further stores the use restriction information in association with the content in the memory,
The determining means detects that the use restriction information is stored in the memory in association with the content instructed to be used, and the content of the content to which the use restriction information is given by the use restriction information. a case to limit the user is specified, and, if the two identification information is verified by the verification means matches, to claim 1, characterized in that to permit use of the content The communication terminal described. The communication terminal according to any one of claims 2 to 5, wherein the use restriction information is given by a content provider who provides content to the communication terminal. In a communication terminal in which a data storage module storing predetermined identification information is removable,
Receiving means for receiving content;
When receiving the content by the receiving means, storage means for storing the identification information acquired from the data storage module mounted on the communication terminal in association with the content in a memory of the communication terminal,
Of the stored content in the memory by said memory means, for notifying the content identification information acquired from the data storage module mounted on the communication terminal is associated, to the user as contents to be allowed to use A communication terminal comprising: a notification unit. The communication terminal according to claim 7 , wherein the notification unit displays information related to content permitted to be used by a user. Based on the identification information acquired each content stored in the memory by said memory means from the data storage module mounted on the communication terminal, a content to permit use for the user, the content is not allowed to use 8. The communication terminal according to claim 7 , wherein information relating to content permitted to be used and information relating to content not permitted to be used are displayed in different display forms. The content is given usage restriction information that specifies whether to restrict the user of the content,
The storage means associates the use restriction information given to the content received by the receiving means with the content, and further stores it in the memory,
The notification means further includes, among the contents stored in the memory by the storage means, contents designated not to restrict the user of the contents according to the use restriction information as contents permitted to be used. The communication terminal according to claim 7 , wherein notification is performed. The predetermined identification information is module identification information uniquely assigned to each data storage module,
When the user replaces the data storage module owned by the user with a new data storage module, the module identification information of the data storage module before replacement stored in the memory in association with the content by the storage means is used as the data after replacement. communication terminal according to claim 1 or 7, characterized by further comprising a rewriting means for rewriting the module identification information of the storage module. And a permission unit that permits rewriting of the module identification information by the rewriting unit when a signal for permitting rewriting of the module identification information is received from a service management device that manages a communication service provided to the communication terminal. The communication terminal according to claim 11 . The predetermined identification information is module identification information uniquely assigned to each data storage module,
When the user replaces the data storage module owned by the user with a new data storage module, the module identification information of the data storage module and the module identification information of the data storage module before the replacement are stored in the replaced data storage module. And
The collating unit is configured to identify the module before and after replacement obtained from the data storage module attached to the communication terminal when the storage unit instructs the use of the content stored in the memory of the communication terminal. Information and module identification information associated with the content and stored in the memory,
Said determination unit, when the one and the module identification information associated with the contents of the module identification information after replacement before and exchanged by the verification means matches, and determines the use of the content The communication terminal according to claim 1. The predetermined identification information is module identification information uniquely assigned to each data storage module,
When the user replaces the data storage module owned by the user with a new data storage module, the module identification information of the data storage module and the module identification information of the data storage module before the replacement are stored in the replaced data storage module. And
The notification means corresponds to any of the module identification information before and after replacement acquired from the data storage module attached to the communication terminal among the contents stored in the memory of the communication terminal by the storage means. The communication terminal according to claim 7 , wherein the attached content is notified to a user as content permitted to be used. The predetermined identification information is module identification information uniquely assigned to each data storage module,
When a user owns a plurality of data storage modules, one data storage module owned by the user includes module identification information of the data storage module and one or more remaining data storages owned by the user. Module identification information of the module is stored,
The collation means, when the use of content stored in the memory of the communication terminal is instructed by the storage means, a plurality of module identification information acquired from a data storage module attached to the communication terminal, Check the module identification information associated with the content and stored in the memory,
The determination unit determines whether the content matches when any one of the plurality of module identification information acquired from the data storage module attached to the communication terminal by the verification unit matches the module identification information associated with the content. The communication terminal according to claim 1, wherein use of the communication terminal is permitted . The predetermined identification information is module identification information uniquely assigned to each data storage module,
When a user owns a plurality of data storage modules, one data storage module owned by the user includes module identification information of the data storage module and one or more remaining data storages owned by the user. Module identification information of the module is stored,
The notification means is a content associated with any one of a plurality of module identification information acquired from a data storage module attached to the communication terminal among the contents stored in the memory of the communication terminal by the storage means The communication terminal according to claim 7 , wherein the user is notified as content permitted to be used. In a communication terminal in which a data storage module storing predetermined identification information is removable,
Receiving means for receiving the program;
Storage means when receiving a program, which stores identification information acquired from the data storage module mounted on the communication terminal in association with the program in the memory of the communication terminal by the receiving means,
If the execution of the program stored in the memory is instructed by the storage means, and identification information acquired from the data storage module mounted on the communication terminal, stored in the memory in association with the program and collation means for collating the Tei Ru identification information,
Communication terminal, characterized in that if the two identification information are matched Ri by said matching means match, and a determination means for permitting the use of the program. In a communication terminal in which a data storage module storing predetermined identification information is removable,
Receiving means for receiving the program;
Storage means when receiving a program, which stores identification information acquired from the data storage module mounted on the communication terminal in association with the program in the memory of the communication terminal by the receiving means,
Of the program stored in the memory by said memory means, to notify the program identification information acquired from the data storage module mounted on the communication terminal is associated, to the user as a program to allow execution A communication terminal comprising: a notification unit. In a communication terminal in which a data storage module storing predetermined identification information is removable,
Receiving means for receiving content;
Storage means for storing content in the memory of the communication terminal and storing content identification information for identifying the content in a data storage module attached to the communication terminal when the content is received by the receiving means; ,
When the use of the content stored in the memory of the communication terminal is instructed by the storage means, the content identification information of the content is any one of the content identification information acquired from the data storage module attached to the communication terminal. A discriminating means for discriminating whether or not they match,
As a result of determination by the determination means, if the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal, a determination means for permitting use of the content ; A communication terminal comprising: In a communication terminal in which a data storage module storing predetermined identification information is removable,
Receiving means for receiving content;
Storage means for storing content in the memory of the communication terminal and storing content identification information for identifying the content in a data storage module attached to the communication terminal when the content is received by the receiving means; ,
Notification that informs the user of content stored in the memory by the storage means that corresponds to any of the content identification information acquired from the data storage module attached to the communication terminal as content permitted to be used And a communication terminal. The predetermined identification information, according to claim according to claim 1, 7, 17 or 1 to 20, characterized in that a subscription identification information assigned uniquely to each subscription of the communication services Communication terminal. The predetermined identification information, the communication terminal according to claim 1, 7, 17 any one of claims to 20, characterized in that the module identification information uniquely assigned to each data storage module. The predetermined identification information, according to claim according to claim 1, 7, 17 or 1 to 20, characterized in that a subscriber identification information assigned uniquely to each subscriber of the communication service Communication terminal. The data storage module includes:
An authentication means for authenticating an owner of the data storage module when the data storage module is attached to the communication terminal;
Claim 1, characterized in that it comprises a determination means for determining whether access from said communication terminal to the data stored in the data storage module according to the authentication result by the authentication unit, 7, 17 ~ The communication terminal according to any one of claims 20 . The communication terminal according to any one of claims 1, 7 , and 17 to 20 , wherein the data storage module is an IC card. The communication terminal according to any one of claims 1, 7 , and 17 to 20 , wherein the data storage module is a storage medium. In communication terminals with removable storage media,
The storage medium stores storage medium identification information uniquely assigned to each storage medium,
Receiving means for receiving content;
Encryption means for encrypting content identification information for identifying the content using storage medium identification information acquired from the storage medium attached to the communication terminal when content is received by the reception means;
Storage means for storing the content received by the receiving means in the memory of the communication terminal, and storing the content identification information encrypted by the encryption means in the storage medium;
Decryption means for decrypting one or more encrypted content identification information acquired from the storage medium attached to the communication terminal using the storage medium identification information of the storage medium acquired from the storage medium;
Whether or not the content identification information of the content matches any of the content identification information decrypted by the decryption means when the storage means instructs the use of the content stored in the memory of the communication terminal Discriminating means for discriminating;
As a result of determination by the determination means, if the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal, a determination means for permitting use of the content ; A communication terminal comprising: In communication terminals with removable storage media,
The storage medium stores storage medium identification information uniquely assigned to each storage medium,
Receiving means for receiving content;
Encryption means for encrypting content identification information for identifying the content using storage medium identification information acquired from the storage medium attached to the communication terminal when content is received by the reception means;
Storage means for storing the content received by the receiving means in the memory of the communication terminal, and storing the content identification information encrypted by the encryption means in the storage medium;
Decryption means for decrypting one or more encrypted content identification information acquired from the storage medium attached to the communication terminal using the storage medium identification information of the storage medium acquired from the storage medium;
Informing means for informing the user of the content corresponding to any of the content identification information decrypted by the decrypting means among the contents stored in the memory by the storage means as content permitted to be used. A communication terminal characterized by. The communication terminal according to any one of claims 1, 7 , 17 to 20 , 27 , and 28 , wherein the communication terminal is a mobile phone having a packet communication function. A reception process in which a communication terminal to which a data storage module storing predetermined identification information is detachable receives content;
Wherein the communication terminal, when receiving the content at the receiving step, storing the identification information acquired from the data storage module mounted on the communication terminal in association with the content in a memory of the communication terminal Memory process,
Wherein the communication terminal, when the use of the content stored in the memory by the memory process is instructed, and the identification information acquired from the data storage module mounted on the communication terminal, corresponding with the content collating step of collating the identification information that has been stored in the memory is,
Wherein the communication terminal, if the two identification information are matched Ri by the verification process are matched usage limit of the content, characterized in that it comprises a determination step of permitting use of the content. A reception process in which a communication terminal to which a data storage module storing predetermined identification information is detachable receives content;
Wherein the communication terminal, when receiving the content at the receiving step, storing the identification information acquired from the data storage module mounted on the communication terminal in association with the content in a memory of the communication terminal Memory process,
It said communication terminal, among the content stored in the memory at the storage step, the content identification information acquired from the data storage module mounted on the communication terminal is associated, to allow the use A content usage restriction method comprising: a notification process for notifying a user as content. A reception process in which a communication terminal to which a data storage module storing predetermined identification information is detachable receives content;
When the communication terminal receives content in the reception process, the content storage information is stored in the memory of the communication terminal and content identification information for identifying the content is attached to the communication terminal. The memory process to be memorized,
When the communication terminal is instructed to use the content stored in the memory of the communication terminal in the storage process, the content identification information of the content is acquired from the data storage module attached to the communication terminal. A discriminating process for discriminating whether or not it matches any of the content identification information;
The communication terminal permits use of the content when the content identification information of the content matches any of the content identification information acquired from the data storage module attached to the communication terminal as a result of the determination by the determination process. A content use restriction method comprising: a determination process for: A reception process in which a communication terminal to which a data storage module storing predetermined identification information is detachable receives content;
When the communication terminal receives content in the reception process, the content storage information is stored in the memory of the communication terminal and content identification information for identifying the content is attached to the communication terminal. The memory process to be memorized,
Content that allows the communication terminal to use content corresponding to any of the content identification information acquired from the data storage module attached to the communication terminal among the content stored in the memory in the storage process A content use restriction method comprising: a notification process of notifying a user as: The predetermined identification information, restrictions on the use of content according to any one of claims 30 to 33, characterized in that a subscription identification information assigned uniquely to each subscription of the communication services Method. The content usage restriction method according to any one of claims 30 to 33 , wherein the predetermined identification information is module identification information uniquely assigned to each data storage module. The content usage restriction according to any one of claims 30 to 33 , wherein the predetermined identification information is subscriber identification information uniquely assigned to each subscriber of the communication service. Method. The content use restriction method according to any one of claims 30 to 33 , wherein the data storage module is a storage medium. A receiving process in which a communication terminal that is detachable from a storage medium storing storage medium identification information uniquely assigned to each storage medium receives content;
When the communication terminal receives content in the reception process, the content identification information for identifying the content is encrypted using the storage medium identification information acquired from the storage medium attached to the communication terminal. The encryption process,
A storage process in which the communication terminal stores the content received in the reception process in a memory of the communication terminal, and stores the content identification information encrypted in the encryption process in the storage medium;
Decoding in which the communication terminal decrypts one or more encrypted content identification information acquired from the storage medium attached to the communication terminal using the storage medium identification information of the storage medium acquired from the storage medium Process
When the communication terminal is instructed to use the content stored in the memory in the storage process, the content identification information of the content matches any of the content identification information decrypted in the decryption process A determination process for determining whether or not,
A determination step of permitting use of the content when the content identification information of the content matches any of the content identification information decrypted in the decryption process as a result of the determination in the determination step; A method for restricting use of content, comprising: A receiving process in which a communication terminal that is detachable from a storage medium storing storage medium identification information uniquely assigned to each storage medium receives content;
When the communication terminal receives content in the reception process, the content identification information for identifying the content is encrypted using the storage medium identification information acquired from the storage medium attached to the communication terminal. The encryption process,
A storage process in which the communication terminal stores the content received in the reception process in a memory of the communication terminal, and stores the content identification information encrypted in the encryption process in the storage medium;
Decoding in which the communication terminal decrypts one or more encrypted content identification information acquired from the storage medium attached to the communication terminal using the storage medium identification information of the storage medium acquired from the storage medium Process
The communication terminal notifies the user of the content corresponding to any of the content identification information decrypted in the decryption process among the content stored in the memory in the storage process as the content permitted to be used. A content use restriction method comprising: a notification process for performing content. A communication process in which a data storage module that stores predetermined identification information is detachable, receives a program, and
Wherein the communication terminal, when receiving the program at the receiving step, storing the identification information acquired from the data storage module mounted on the communication terminal in association with the program in the memory of the communication terminal Memory process,
Wherein the communication terminal, when the execution of the program stored in the memory by the memory process is instructed, and the identification information acquired from the data storage module mounted on the communication terminal, corresponding with the said program collating step of collating the identification information that has been stored in the memory is,
Wherein the communication terminal, if the two identification information said collated Ri by the matching process are matched, execution restriction process of a program characterized in that it comprises a decision process to allow use of the program. A communication process in which a data storage module that stores predetermined identification information is detachable, receives a program, and
Wherein the communication terminal, when receiving the program at the receiving step, storing the identification information acquired from the data storage module mounted on the communication terminal in association with the program in the memory of the communication terminal Memory process,
Said communication terminal, among the programs stored in the memory at the storage process, the program identification information acquired from the data storage module mounted on the communication terminal is associated, allowed to run A program execution restriction method comprising: a notifying process for notifying a user as a program.

Images