JP4161896B2 - Information processing apparatus, information recording medium, information processing method, and computer program - Google Patents

Description

  The present invention relates to an information processing apparatus, an information recording medium, an information processing method, and a computer program. More specifically, a physical index required for content reproduction in a configuration in which various types of content such as content that is subject to content usage management such as copy restrictions and content that is not subject to usage restrictions are stored and used in an information recording medium. Relates to an information processing apparatus, an information recording medium, an information processing method, and a computer program capable of efficiently determining whether or not reading is necessary and performing smooth content reproduction .

  Various software data such as audio data such as music, image data such as movies, game programs, and various application programs (hereinafter referred to as “Content”) are recorded on a recording medium such as a blue laser using a blue laser. -It can be stored as digital data on a ray disc, DVD (Digital Versatile Disc), MD (Mini Disc), or CD (Compact Disc). In particular, a Blu-ray disc using a blue laser is a disc capable of high-density recording, and can record a large volume of video content as high-quality data.

  Digital contents are stored in these various information recording media (recording media) and provided to users. A user plays back and uses content on a playback device such as a personal computer (PC) or disc player.

  Many contents, such as music data and image data, generally have distribution rights or the like held by the creator or seller. Therefore, when distributing these contents, it is common to adopt a configuration that restricts the use of the contents, that is, permits the use of the contents only to authorized users and prevents unauthorized copying or the like. It is the target.

  According to the digital recording device and the recording medium, for example, recording and reproduction can be repeated without deteriorating images and sound, and illegally copied content is distributed via the Internet, and the content is copied to a CD-R or the like. Problems such as the distribution of so-called pirated discs and the use of copy contents stored on hard disks such as PCs have become widespread.

  A large-capacity recording medium such as a DVD or a recording medium using a blue laser that has been developed in recent years can record a large amount of data, for example, one movie to several movies as digital information on one medium. Is possible. As video information and the like can be recorded as digital information in this way, it is an increasingly important issue to prevent unauthorized copying and to protect the copyright holder. In recent years, in order to prevent such illegal copying of digital data, various techniques for preventing illegal copying in digital recording devices and recording media have been put into practical use.

  For example, a DVD player employs a content scramble system. In a content scramble system, video data, audio data, etc. are encrypted and recorded on a DVD-ROM (Read Only Memory), and the key used to decrypt the encrypted data is licensed. To a DVD player. The license is given to a DVD player designed to comply with a predetermined operation rule such as not performing illegal copying. Therefore, a licensed DVD player can reproduce images and sounds from the DVD-ROM by decrypting the encrypted data recorded on the DVD-ROM using a given key.

  On the other hand, an unlicensed DVD player does not have a key for decrypting encrypted data, and therefore cannot decrypt encrypted data recorded on a DVD-ROM. As described above, in the content scramble system configuration, a DVD player that does not satisfy the conditions required at the time of license cannot reproduce a DVD-ROM on which digital data is recorded, so that unauthorized copying is prevented. It has become.

    However, the content scramble system employed in the DVD-ROM is intended for a recording medium in which data cannot be written by the user, and is considered for application to a recording medium in which data can be written by the user. Absent.

  In other words, even if the data recorded on the recording medium to which data can be written is encrypted, if all the encrypted data is copied as it is to the RAM medium, the licensed legitimate device You can create a so-called pirated disc that can be played with.

  In addition, software programs that break the CSS encryption, such as DeCSS software, are distributed on the Internet. By applying this program, it is possible to decrypt DVD Video encryption and write to a recordable DVD in plain text. It has become. The reason why DeCSS appeared was that the DVD player software designed without encrypting the key data for CSS decryption, which should originally be encrypted, was reverse engineered and the key data was decrypted. This is why the entire CSS algorithm was decrypted in a chain from the decrypted key data.

  When implementing a copyright protection technology execution program including key data in an application program executed on a PC, it is common to provide tamper resistance to prevent analysis of the copyright protection technology. an index indicating the intensity of tampering without therefore is how whether to respond to reverse engineering is fact is that the discretion and capability of the individual impressions mentor, when the CSS is breached as a result of As a result, a flood of illegal copy contents is caused.

  In addition to CSS, there are CPPM (Content Protection for Prerecorded Media) and CPRM (Content Protection for Recordable Media) as copyright protection technology (copy control technology) adopted in the DVD standard. CPPM is a copy control technology developed for playback-only media (Precoded Media), and CPRM is a copy control technology developed for recordable media (Recordable Media).

  These store key information called a media key block on the media (for example, a disk such as a CD or DVD), and on the other hand, store a device key on the device side such as a playback device, a PC, etc. It is possible to generate a key to be applied to decryption of encrypted content stored on media (for example, a disk) only by processing, and this configuration enables content playback by unauthorized devices and content playback based on pirated discs. In order to prevent this, copy / copy control is performed.

  However, even in such CPRM and CPPM, there is no proposal for a technique for fundamentally solving the problem of eliminating the risk of leakage of key information stored in a disk as a PC or a medium as a device. In CPRM and CPPM, there is always a risk that the copy control system will collapse due to key leakage.

  Various proposals have been made for techniques for preventing leakage of key information stored on a disk. For example, it is impossible to write data with a normal data writing processing algorithm, such as applying a wobble recording method that is a recording method using pit fluctuations instead of pit data as a normal data recording method. In addition, there has been proposed a method of recording key information by a method called a disc mark that can prevent copy processing.

  For example, a disc mark such as a wobble recording method is set as data that can be recorded only by a recording device such as a disc manufacturer who has received a predetermined license, and cannot be recorded by an unauthorized disc stamper. Further, it is physical recording data by a special method that can be read only by a playback device having a valid license and cannot be read by an unauthorized playback device. This is generally called a physical index.

  By recording key information (encryption key generation information) necessary for generating a key to be applied to decryption of encrypted content stored on the disk as such a physical index, the effect of preventing the leakage of key information is enhanced. It becomes possible.

  A playback device that receives a legitimate license for playing back a disk that stores a physical index stores a playback program that executes a playback process according to a predetermined sequence, and the playback process according to this program is executed. It will be. That is, a physical index reading process is executed, key information (encryption key generation information) is acquired from the read physical index, a preset encryption key generation sequence is executed based on the acquired key information, and the disk is read. This is a sequence for performing content reproduction by executing generation processing of a key to be applied to decryption of stored encrypted content and executing decryption of the encrypted content stored on the disc based on the generated encryption key.

  However, the content stored on the disc is not necessarily content with copy restrictions that are all subject to copyright management. For example, some discs store content that has no usage restrictions.

  There are a variety of current ROM standards, and various ROM disks such as a disk storing unencrypted data, a disk storing contents encrypted with content-specific local encryption, etc. Exists. Such a disc does not necessarily have a physical index such as the disc mark described above. However, a playback device having a playback processing program for reading a physical index executes a physical index reading process even for a disk on which no physical index exists.

  Performing such a physical index reading process on a disk that stores unencrypted data results in a wasteful process over time, which actually starts playback of content. This will result in delaying the time to reach.

  The present invention has been made in view of such a situation, and stores contents that require usage management such as copyright management and records key information as a physical index, and contents without usage restrictions. When playing back a disc that stores various types of content, such as a disc that does not have a physical index recorded on it, the physical index is read only when necessary, and unnecessary physical index reading processing is omitted. An object of the present invention is to provide an information processing apparatus, an information recording medium, an information processing method, and a computer program that realize efficient content reproduction.

The first aspect of the present invention is:
An information recording medium,
Having a configuration in which identification information indicating whether data to be applied to decryption processing when the content stored in the information recording medium is encrypted content is recorded as a physical index is recorded;
The identification information is
The information recording medium is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index.

  Furthermore, in one embodiment of the information recording medium of the present invention, the identification information is set to a different value depending on at least one of a content type stored in the information recording medium and a content encryption processing algorithm type. It is a physical index flag that has been processed.

  Furthermore, in one embodiment of the information recording medium of the present invention, the identification information is recorded in a lead-in area of the information recording medium.

  Furthermore, in one embodiment of the information recording medium of the present invention, the identification information is recorded in a first cluster in a lead-in area of the information recording medium.

  Furthermore, in an embodiment of the information recording medium of the present invention, the identification information is recorded as data having a tamper-proof configuration with a digital signature added thereto.

  Furthermore, in one embodiment of the information recording medium of the present invention, the information recording medium records identification information having a tamper-proof configuration with a digital signature added as the identification information, and further, a verification key for the digital signature or Further, the present invention is characterized in that information to be applied to generation of a digital signature verification key is recorded.

  Furthermore, in an embodiment of the information recording medium of the present invention, the digital signature verification key or the information applied to generate the digital signature verification key is stored in correspondence with an information processing apparatus that executes reproduction processing of the information recording medium. It is characterized in that the encryption key data that can be decrypted by the device key recorded is recorded as an integrated encryption key block data.

  Furthermore, in one embodiment of the information recording medium of the present invention, the digital signature verification key or the information applied to generate the digital signature verification key is recorded as a seed as information corresponding to the stored content of the information recording medium. It is characterized by being.

  Furthermore, in an embodiment of the information recording medium of the present invention, the digital signature verification key or the information applied to generate the digital signature verification key is recorded on a BCA (Burst Cutting Area) of the information recording medium. It is characterized by.

Furthermore, the second aspect of the present invention provides
An information processing apparatus that executes a reproduction process of content stored in an information recording medium,
The identification information indicating whether or not the data to be applied to the decryption process when the content recorded on the information recording medium is an encrypted content is recorded as a physical index is read, and the physical index is based on the identification information Has a configuration to execute or cancel the reading process of
The identification information is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index,
The information processing apparatus includes:
An information processing apparatus having a configuration for determining the presence or absence of a physical index flag and executing or canceling a physical index reading process based on the determination result.

  Furthermore, in one embodiment of the information processing apparatus of the present invention, the identification information is set to a different value depending on at least one of a content type stored in the information recording medium and a content encryption processing algorithm type. A physical index flag, and the information processing apparatus determines a value of the physical index flag, and executes or cancels the physical index reading process based on the determination result and determines a process to be executed after reading the physical index It is the structure which carries out.

  Furthermore, in an embodiment of the information processing apparatus of the present invention, the information processing apparatus is configured to execute a process of reading the identification information from a lead-in area of an information recording medium.

  Furthermore, in an embodiment of the information processing apparatus of the present invention, the information processing apparatus is configured to execute a process of reading the identification information from a first cluster in a lead-in area of an information recording medium.

  Furthermore, in one embodiment of the information processing apparatus of the present invention, the information processing apparatus performs verification processing of the digital signature added to the identification information, and confirms that there is no data falsification based on the signature verification. On the condition that the physical index reading process is executed or stopped based on the identification information.

  Furthermore, in an embodiment of the information processing device of the present invention, the information processing device is adapted to generate a signature verification key or a signature verification key for executing verification processing of a digital signature added to the identification information. Is obtained from the information recording medium, and the verification process of the digital signature added to the identification information is executed by applying the acquired information or a signature verification key generated based on the acquired information. .

  Furthermore, in an embodiment of the information processing apparatus of the present invention, the information processing apparatus uses the seed as information corresponding to the content stored in the information recording medium to generate the digital signature verification key or the digital signature verification key. It is the structure applied as information to apply, It is characterized by the above-mentioned.

  Furthermore, in an embodiment of the information processing apparatus of the present invention, the information processing apparatus reads encryption key block data from an information recording medium, and corresponds to the information processing apparatus encrypted data stored in the encryption key block data. And a process for acquiring the digital signature verification key or information applied to the generation of the digital signature verification key by decrypting the stored device key.

  Furthermore, in an embodiment of the information processing apparatus of the present invention, the information processing apparatus sends the digital signature verification key or information to be used for generating the digital signature verification key from a BCA (Burst Cutting Area) of an information recording medium. It is the structure which performs the process which reads.

Furthermore, the third aspect of the present invention provides
An information processing method for executing reproduction processing of content stored in an information recording medium,
An identification information acquisition step of reading identification information indicating whether data to be applied to decryption processing when the content recorded on the information recording medium is encrypted content is recorded as a physical index;
A process determining step for determining execution or cancellation of the physical index reading process based on the identification information,
The identification information is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index,
The identification information acquisition step includes
The information processing method is characterized in that it is a step of determining the presence or absence of a physical index flag.

  Furthermore, in an embodiment of the information processing method of the present invention, the identification information is set to a different value depending on at least one of a content type stored in the information recording medium and a content encryption processing algorithm type. A physical index flag, wherein the identification information acquisition step is a step of determining a value of the physical index flag, and the processing determination step executes or stops the reading process of the physical index based on the determination result; It is a step of determining a process to be executed after reading the physical index.

  Furthermore, in an embodiment of the information processing method of the present invention, the identification information acquisition step includes a step of executing identification information reading processing from a lead-in area of an information recording medium.

  Furthermore, in an embodiment of the information processing method of the present invention, the identification information acquisition step includes a step of executing a process of reading the identification information from the first cluster in the lead-in area of the information recording medium. .

  Furthermore, in an embodiment of the information processing method of the present invention, the information processing method further includes a step of executing a verification process of a digital signature added to the identification information, and no data alteration based on the signature verification The physical index reading process based on the identification information is executed or stopped on the condition that the above confirmation is made.

  Furthermore, in an embodiment of the information processing method of the present invention, the information processing method is further applied to generation of a signature verification key or a signature verification key for executing verification processing of a digital signature added to the identification information. Performing a verification process of the digital signature added to the identification information by applying the acquired information or a signature verification key generated based on the acquired information. Features.

  Furthermore, in an embodiment of the information processing method of the present invention, the information processing method reads a seed as information corresponding to content stored in an information recording medium, and uses the seed as the digital signature verification key or digital signature. It is characterized in that it is applied as information applied to generation of a verification key.

  Furthermore, in an embodiment of the information processing method of the present invention, the information processing method reads encryption key block data from an information recording medium, and corresponds the encrypted data stored in the encryption key block data to the information processing apparatus. The process of acquiring the digital signature verification key or the information applied to the generation of the digital signature verification key by executing decryption by applying the device key stored in this manner is performed.

  Furthermore, in an embodiment of the information processing method of the present invention, the information processing method uses the digital signature verification key or information applied to generate the digital signature verification key from a BCA (Burst Cutting Area) of an information recording medium. A reading process is executed.

Furthermore, the fourth aspect of the present invention provides
An information processing apparatus for performing data recording on an information recording medium,
Information recording in which identification information corresponding to whether or not information applied to reproduction of content stored in an information recording medium is recorded as a physical index is recorded only on an information recording medium having a physical index, and does not have a physical index An information processing apparatus having a configuration for executing control that is not recorded on a medium.

Furthermore, the fifth aspect of the present invention provides
An information processing method for performing data recording on an information recording medium,
Information recording in which identification information corresponding to whether or not information applied to reproduction of content stored in an information recording medium is recorded as a physical index is recorded only on an information recording medium having a physical index, and does not have a physical index The information processing method includes a step of executing control that is not recorded on the medium.

Furthermore, the sixth aspect of the present invention provides
A computer program for executing reproduction processing of content stored in an information recording medium,
An identification information acquisition step of reading identification information indicating whether data to be applied to decryption processing when the content recorded on the information recording medium is encrypted content is recorded as a physical index;
A process determining step for determining execution or cancellation of the physical index reading process based on the identification information,
The identification information is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index,
The identification information acquisition step includes
The computer program is a step of determining the presence or absence of a physical index flag.

  The computer program of the present invention is, for example, a storage medium or communication medium provided in a computer-readable format to a computer system capable of executing various program codes, such as a CD, FD, or MO. It is a computer program that can be provided by a recording medium or a communication medium such as a network. By providing such a program in a computer-readable format, processing corresponding to the program is realized on the computer system.

  Other objects, features, and advantages of the present invention will become apparent from a more detailed description based on embodiments of the present invention described later and the accompanying drawings. In this specification, the system is a logical set configuration of a plurality of devices, and is not limited to one in which the devices of each configuration are in the same casing.

  According to the configuration of the present invention, the identification information (physical index flag) indicating whether or not the data applied to the decryption process when the content stored in the information recording medium is encrypted content is recorded as a physical index. For example, an information recording medium that stores content that requires usage management such as copyright management and records key information as a physical index, or stores content that has no usage restrictions, It is possible to discriminate information recording media that do not exist based on the flag. Specifically, in an information processing apparatus that performs playback processing of an information recording medium storing various types of content, it is determined whether or not a physical index needs to be read based on a physical index flag, and only when necessary Since the physical index is read, useless physical index reading processing can be omitted, and efficient content reproduction is realized.

  Furthermore, according to the configuration of the present invention, since the digital signature is set for the physical index flag, it is possible to prevent unauthorized use and unauthorized copy of the content due to alteration of the physical index flag, and legitimate use of the content Limits can be maintained.

  Furthermore, according to the configuration of the present invention, the physical index flag is set in association with the content mode and the value according to the encryption algorithm of the content. It is possible to immediately determine the process to be executed based on the value of the flag, and the content can be efficiently reproduced.

  Furthermore, according to the configuration of the present invention, since the physical index flag is stored in the lead-in area, reading is possible when the drive is mounted, and the processing mode is determined without waiting for processing such as application startup. It becomes possible.

  The details of the information processing apparatus, information recording medium, information processing method, and computer program of the present invention will be described below with reference to the drawings.

  First, the storage data structure of the information recording medium will be described. FIG. 1 shows two typical examples of information recording media in which content is stored. Here, an example of storing information on a ROM disk as a content stored disk is shown.

  The ROM disk 110 shown in FIG. 1 (a) is content to which content stored on the disk is encrypted and usage restrictions are added. In other words, the physical index storage key application content 112 is recorded on the disc 110 as shown in FIG. In the reproduction of the physical index storage key application content 112, the key information stored in the physical index 113 is acquired, and the encryption key to be applied to the decryption process of the encrypted content is generated by applying the acquired key information. The decryption process is executed based on the encryption key.

  The physical index 113 is recorded in a lead-in area 111 provided on the disk 110. The lead-in area 111 is an area set in the inner periphery of the disk as an area indicating the session start position of a disk such as a CD or DVD. For example, TOC (Table Of Contents) is written in the lead-in area 111 as content information corresponding to the content stored in the session of the data recording area.

  In the configuration of the present invention, a physical index flag 114 is further recorded in the lead-in area 111 for a disc having a configuration in which the physical index 113 storing key information in the lead-in area 111 is recorded.

  The physical index flag 114 is identification information indicating whether data to be applied to decryption processing when the content stored on the disc, which is an information recording medium, is encrypted content is recorded as the physical index 113. That is, it is identification information indicating whether or not the physical index 113 is recorded.

  An information processing apparatus such as a PC or a playback device that executes content playback processing executes detection processing of the physical index flag 114, and the physical recorded in the lead-in area 111 only when the physical index flag 114 is detected. The reading process of the index 113 is continuously executed.

  The disc 120 shown in FIG. 1B has the same structure as the disc shown in FIG. 1A, and has a lead-in area 121 and a data recording area around it. . However, in the disc 120 shown in FIG. 1B, content to which no usage restriction is applied, that is, the content 122 to which the physical index storage key is not applied is stored, as shown in the figure, in the data recording area.

  Even if this physical index storage key non-applied content 122 is unencrypted content or encrypted content, it can be decrypted with a key acquired by an encryption key acquisition sequence different from the rule shown in FIG. Content. Accordingly, the key information stored in the physical index is acquired and the encryption key generated based on the acquired key information is applied like the physical index storage key application content 112 stored in the disc shown in FIG. The content can be reproduced without performing the decryption process.

  The disc 120 shown in FIG. 1B is different from the disc 110 shown in FIG. 1A in that the physical index storing the key information is not recorded in the lead-in area 121 and the physical index is recorded. There is also no physical index flag indicating that it is present.

  An information processing apparatus such as a PC or a playback device that executes content playback processing first executes processing for detecting a physical index flag in the lead-in area 121, confirms that no physical index flag is detected, and reads the lead-in area. It is possible to shift to the reproduction process without waiting for the completion of the execution of the physical index reading process from 121.

  In the configuration example of FIG. 1, an example is given in which a physical index flag is recorded for a disk on which a physical index storing key information is recorded, and a physical index flag is not recorded for a disk on which no physical index is recorded. For example, as shown in FIG. 2, the physical index flag = 1 is set for a disk on which a physical index is recorded, and the physical index flag = 0 is set for a disk on which no physical index is recorded. It is good also as a structure which performs the distinction of doing.

  In FIG. 2A, the physical index storage key application content 112 is recorded on the disc 110 as in FIG. In the reproduction of the physical index storage key application content 112, the key information stored in the physical index 113 is acquired, and the encryption key to be applied to the decryption process of the encrypted content is generated by applying the acquired key information. The decryption process is executed based on the encryption key.

  In the physical index flag 114 recorded in the lead-in area 111, [1] is set as bit data. The physical index flag = 1 is identified by the information processing apparatus that executes the content reproduction process as a flag indicating that the physical index 113 is recorded.

  On the other hand, in FIG. 2B, similarly to FIG. 1B, the physical index storage key non-applied content 122 is stored, and the physical index storing the key information in the lead-in area 121 is not recorded.

  However, unlike the configuration of FIG. 1B, the physical index flag 123 is recorded in the lead-in area 121. However, the physical index flag 123 recorded in the lead-in area 121 is set to [0] as bit data. The physical index flag = 0 is identified by the information processing apparatus that executes the content reproduction process as a flag indicating that no physical index is recorded.

  1 and 2, an information processing apparatus that performs content playback needs to read a physical index in content playback based on the presence or absence of the physical index flag or the value of the physical index flag. It is possible to determine whether or not there is, and when it is not necessary, it is possible to skip reading processing of the physical index and shift to content reproduction.

  In addition, since the physical index flag is stored in the lead-in area, reading can be performed when the drive is mounted, and the processing mode can be determined without waiting for processing such as application startup.

  FIG. 3 shows a configuration example of recording data in the lead-in area. FIG. 3 is a configuration example of the recording data in the lead-in area in which the physical index 154 is recorded, that is, a configuration example of recording data in the lead-in area in the disc shown in FIG. 1 (a) or FIG. 2 (a).

  In the first sector of the first cluster (first cluster) of the recording data shown in FIG. 3, physical parameters 151 such as attribute information of the disk are stored. Further, a physical index flag 152 is recorded in the last sector. The seed information 153 necessary for generating the encryption key is recorded after the second sector, and further content information such as TOC is recorded.

  Both the seed information and the physical index are key information necessary for generating the decryption key for the encrypted content stored on the disc. The decryption key for the encrypted content is applied by applying both the seed information and the physical index. Can be generated.

  Content information such as the physical parameter 151, the physical index flag 152, the seed information 153, and the TOC shown in FIG. 3 is recorded with a normal data recording and reproduction method, that is, with a pit space and a mark length. On the other hand, the physical index 154 is recorded by applying an aspect different from the normal data writing method or reading method, for example, a wobble recording method.

  A recording process of a wobble signal will be described with reference to FIG. Content information such as the physical parameter 151, the physical index flag 152, the seed information 153, and the TOC shown in FIG. 3 is recorded with the space by the pit 201 and the length of the mark.

  On the other hand, the physical index is recorded by controlling wobble recording, that is, fluctuation of the pit sequence. The wobble recording signal 221 shown in FIG. 4A generates a shake (H → L) in which the pit series for recording the main data moves from the upper stage to the lower stage shown in the figure. This wobble recording signal 221 corresponds to the recording bit [1] of the key information as a physical index.

  In addition, the wobble recording signal 222 shown in FIG. 4B generates a shake (L → H) in which the pit series for recording the main data moves from the lower stage to the upper stage shown in the figure. This wobble recording signal 222 corresponds to the recording bit [0] of the key information as a physical index.

  Note that one bit in the wobble recording signal corresponds to the recording pit fluctuation state in the length of 68T (T is the length of one channel of the pit signal) of the main data recorded as the pit signal. That is, one bit of key information as a physical index is read for every 68T of main data recorded as pit information.

  As described above, main data including content information such as the physical parameter 151, the physical index flag 152, the seed information 153, and the TOC is recorded as pit information, and the key information as the physical index is recorded as a wobble recording signal. Thus, the main data and the encryption key can be superimposed and recorded on the disc.

  Note that recording and reproduction of a wobble recording signal requires application of processing different from normal data recording and reproduction processing.

  Here, the configuration in which the physical index is set as a wobble recording signal has been described as an example. However, the physical index is not limited to the wobble recording signal, and may be any physical recording signal different from the pit signal. It is possible to adopt recording methods in various modes. For example, a recording method based on a change in pit width that can be recorded only on a ROM disk, a change in the pit shape itself, or a change in groove depth may be applied.

  As described above, the physical index flag 152 shown in FIG. 3 is information indicating whether or not the physical index is recorded. The example shown in FIG. 3 shows an example in which the physical index 154 is recorded. However, if the disc has the configuration shown in FIG. 1B, that is, if it does not have a physical index and a physical index flag, In the recording data, the physical index flag 152 and the physical index 154 shown in FIG. 3 are not recorded.

  In the case of a disc having the configuration of FIG. 2B, that is, a configuration having no physical index and having a physical index flag, the physical index flag 152 shown in FIG. 3 is set in the recording data in the lead-in area. In this case, the physical index flag 152 is set to a value (for example, 0) indicating that key information is not stored.

  An information processing apparatus that performs content playback reads the presence or value of a physical index flag based on data recorded by a normal data recording method, that is, pit data, and the presence of a physical index based on the read result. Only when it is confirmed, a special data reading process is continuously executed, and for example, necessary key information is acquired by reading a physical index recorded as a wobble signal.

  By recording the physical index flag in the lead-in area, an information processing apparatus that executes content reproduction can read the physical index flag only by processing in the disk drive without receiving an instruction from the reproduction application. Actually, if the physical index flag is recorded in the data area other than the lead-in area, the drive must receive the address and the like from the reproduction application at the time of reading. However, if the reading of the physical index flag is performed after a reproduction instruction is received, that is, after the reproduction application is started, an extra time is required until reproduction. Considering the above, it is preferable to read the physical index flag when the disc is inserted. Therefore, it is desirable to read the physical index flag only by the disk drive.

  In addition, since the drive reads sequentially from the first cluster, by recording the physical index flag in the first cluster in the lead-in area, the presence or absence of the physical index can be determined at an early stage, and the time of detection work Shortened.

  A processing sequence at the time of reading a physical index and a physical index flag in an information processing apparatus that executes content reproduction processing will be described with reference to a flowchart of FIG.

  The process shown in the flow of FIG. 5 is a process executed after a disc is inserted into a drive as a disc drive device built in or connected to an information processing device such as a PC that performs content reproduction processing. When the disc is inserted into the drive, a series of operations of physical index flag and physical index detection is started.

  First, in step S101, a timeout timer is activated. This timer is used to measure the time to prevent repeated reading until it is read, for example, when a physically recorded physical index becomes unreadable due to scratches on the disk. Will be launched. If the physical index is recorded on the disk set in the drive, but a read error occurs and the physical index is not successfully read within a certain time, the detection operation is terminated. The time until timeout is set in the playback device in advance.

  In step S102, reading of the first cluster in the lead-in area is started. As described above, in the area including the first cluster in the lead-in area, for example, a physical index is recorded as a wobble signal and a case where the physical index is not recorded may be recorded. However, since it is not possible to determine which type of disk, the reading process is started for the time being.

  In step S103, detection of presence / absence of a physical index flag or value confirmation processing is executed. 1A and 1B described above can be discriminated by detecting the presence or absence of the physical index flag, and FIGS. 2A and 2B described above by detecting the physical index flag value. The disc of type b) can be discriminated.

  In step S104, it is confirmed whether or not a physical index is recorded based on the presence / absence or value of the physical index flag. When there is no physical index flag, it is determined that this disc is a disc of the type shown in FIG. 1B, that is, a disc in which physical index storage key non-applicable content is stored in the data recording area.

  In this case, it is determined that it is not necessary to read the physical index, the process proceeds to step S107, and the physical index reading process is terminated.

  If the physical index flag is detected in step S104, but it is determined that the physical index is not recorded by the set value of the flag, this disc is a disc of the type shown in FIG. The disc is determined to be a disc in which the physical index storage key non-applied content is stored in the data recording area.

  Also in this case, it is determined that it is not necessary to read the physical index, the process proceeds to step S107, and the physical index reading process ends.

  If it is determined in step S104 that a physical index is recorded based on the presence or absence of the physical index flag or a value, the process proceeds to steps S105 and S106, and the physical index reading process is continued and executed.

  If the physical index read process ends before the timeout, the process ends. Even if the physical index reading process does not end before the timeout, it is determined that the physical index cannot be read, and the process ends.

  As described above, according to the configuration of the present invention, when content that does not require key acquisition from the physical index is recorded on the disc, the physical index reading process is performed by checking the presence or absence of the physical index flag or the index value. It is possible to end the process, and it is possible to omit a useless data (physical index) reading process, and it is possible to quickly reproduce such content.

  Next, a specific data configuration example of the physical index flag will be described with reference to FIGS.

  In the disc on which the physical index is recorded, the content encrypted by applying the encryption key generated based on the key information stored as the physical index, that is, the content to be copied is recorded in the data storage area of the disc. Therefore, if it is known that there is a physical index, it is possible to control the copying of the content recorded by the disk drive to another medium such as a hard disk.

  On the other hand, it is also assumed that content not subjected to copy control is recorded on a disc without using a physical index and without being encrypted (eg, magazine appendix).

  The above-described processing sequence of the present invention is configured to determine whether or not to execute reading of the physical index based on the presence / absence or value of the physical index flag. Therefore, for example, when a pirated disc is generated in which the physical index flag is erased or the value is changed by illegal processing, the correct processing sequence is not executed for copy control content that originally requires reading of the physical index, There is a possibility that illegal content is reproduced or copied.

  Therefore, a digital signature (hereinafter simply referred to as a signature) is attached in order to prevent falsification of the physical index flag. FIG. 6 shows the data structure near the last sector of the first cluster in the lead-in area. First, the length Length of the Data area in which data such as a physical index flag is recorded is recorded in 16 bytes. For example, data such as a physical index flag is recorded in the Length area as to how many blocks are 16 bytes.

  Next, data such as a physical index flag is recorded in the data part (Data area) 301 by the length declared in the Length area. Further, a signature 303 based on the configuration data of the data part 301 and the content key seed recording part 302 is recorded after the reserve area.

  For the signature 303, for example, a signature according to a public key cryptosystem is recorded in 128 bytes. Regarding the signing method, either a common key encryption method or a public key encryption method may be used. A typical common key cryptosystem uses AES (Advanced Encryption Standard). In this case, the signature size is 16 bytes.

  On the other hand, RSA signature is a typical public key cryptosystem. In this case, the signature size recommended for security is 128 bytes. FIG. 6 illustrates an example when an RSA signature is used. A public key used for signature verification is recorded in the playback device in advance. This is recorded in a form that cannot be altered by a third party. In addition, the signature is created by applying a secret key held by an organization that has formulated the standard of the encryption system or an organization commissioned by the organization. Since the private key for signature creation can be freely created by a person when it is passed to a third party, it must be handled with strictness.

  As shown in FIG. 6, a content key seed recording unit 302 is set after the second cluster. This size may be variable.

  As described above, the digital signature is set based on the configuration data of the data part including the physical index flag. When reading the physical index flag, the information processing apparatus that performs the content reproduction processing first performs signature verification, and performs the following processing on condition that it is confirmed that there is no data falsification due to the establishment of signature verification. Execute. If it is determined that there has been tampering, the processing is terminated without executing the subsequent processing, that is, processing such as content reading and reproduction.

  Further, since the content key seed is also signed, even if the lead-in area information is used as it is for the pirated disc, the content key seed is different from that of the pirated content and cannot be reproduced. Since there is no content key seed for an unencrypted disc, signature data based on the data stored in the Data area is generated and stored.

  In the case of the physical index flag having the configuration shown in FIG. 6, tampering of the physical index flag can be prevented, but since the signature check is a public key method, the amount of processing at the time of signature verification increases. FIG. 7 shows an example of a data configuration in which a signature of the common key cryptosystem having a smaller processing amount than that of the public key scheme is set.

  FIG. 7 shows a data structure near the last sector of the first cluster in the lead-in area. The difference from the configuration shown in FIG. 6 is that the data to be signed is only a data part (Data) 321 in which a physical index flag or the like is recorded.

For the signature verification key, a seed as key generation information used for generating a key (content key) applied to decrypting contents recorded in the second sector and thereafter is decrypted using, for example, a device key recorded in the device. Key generated by K = Dec (device key, content key seed)
Apply. Dec (A, B) indicates a decryption process of data B with key A.

The information processing apparatus that reads the physical index flag first acquires the seed of the content key recorded in the second sector and thereafter, and performs decryption processing using the device key stored in advance in the information processing apparatus.
K = Dec (device key, content key seed)
To generate the signature verification key K.

  The seed is information corresponding to the stored content, and is set as different data depending on the content.

  Next, based on the signature verification key K, a common key encryption process or a hash value calculation is performed on the data unit 321, and a verification process is performed to determine whether the calculation result matches the data of the digital signature 322. If they match, it is determined that the data in the data portion 321 has not been falsified, that is, the physical index flag has not been falsified. If they do not match, it is determined that the data in the data portion 321 has been falsified, that is, the physical index flag has been falsified, and the subsequent processing is stopped. Note that the signature verification key generation method may be a function using a content key seed as an argument.

  In this way, since the signature for the physical index flag is set, the alteration of the physical index flag is prevented, and only when the content key seed and the correct physical index flag are recorded as a pair of data, Since the key to be applied to the content composition can be generated, even if the illegally set physical index flag is set in association with the content of the pirated disc, the key to be applied to the decryption of the content can be generated. Therefore, it is possible to prevent illegal content reproduction and copying.

  For example, the signature verification key may be stored in an EKB (Enabling Key Block) distributed by a key distribution system to which a tree structure is applied, and the EKB may be recorded on a disk and provided to each device.

  As shown in FIG. 8, the EKB (Enable Key Block) includes tag information 331 and an encryption key data storage unit 332. The encryption key data storage unit 332 is a device key stored in a device (device) holding a valid license, that is, a device key including a key set of keys set corresponding to nodes and leaves included in the tree structure. Is one or more encrypted data subjected to encryption that can be decrypted only by a process to which the above is applied. The tree structure is, for example, a two-branch tree structure having a vertex node as a root, and each device is associated with one leaf at the lowest layer. Each device is provided with a corresponding key of a node on the path from the leaf to the root as a device key.

  The encryption key data storage unit 332 stores transmission data encrypted using various node keys. Devices that can be decrypted can be freely set according to the applied node key.

  The tag information 331 indicates the order of one or more encrypted data (key bundle) included in the encryption key data storage unit 332, and is data applied to select encrypted data that can be decrypted by each device. By storing the signature verification key in the encryption key block EKB, recording it on a disk and providing it to each device, only the device (device) holding a valid license acquires the signature verification key and performs signature verification processing. Can be executed.

  FIG. 9 shows an example in which various encrypted data including an encrypted signature verification key is stored in the encryption key data storage unit 332 (see FIG. 8).

  As shown in FIG. 9A, the encryption key data storage unit stores a record type, a media key record length, a signature verification key record length, a media key record, and a signature verification key record.

  The record type is information indicating a record stored in the EKB, that is, a key type. The media key record length and the signature verification key record length are data indicating the media key stored in the EKB and the record length of the signature verification key, respectively.

  The media key record is a set (key bundle) of data obtained by encrypting the media key, and is composed of a plurality of records as shown in FIG. 9B. The media key is key information necessary for content decryption processing.

  Each of the media key records 0 to n is a device key stored in a device (device) holding a valid license, that is, a key set of keys set corresponding to nodes and leaves included in the tree structure. Can be decrypted only by processing using the device key, and each device (information processing apparatus that performs content playback) can decrypt using the device key stored in the own device based on the tag information (see FIG. 8). One record is selected from the media key records 0 to n, and decrypted with the device key to obtain the media key.

  Furthermore, the signature verification key record is a set (key bundle) of data obtained by encrypting the signature verification key, and is composed of a plurality of records as shown in FIG. The signature verification key is a key applied for verifying tampering of data including the above-described physical index flag. The bit length of the signature verification key varies depending on the encryption algorithm to be applied, for example, an algorithm such as RSA or AES, and is, for example, 128 bytes for RSA and 16 bytes for AES.

  Each of the signature verification key records 0 to n is a device key stored in a device (device) holding a valid license, that is, a key set of keys set corresponding to nodes and leaves included in the tree structure. Can be decrypted only by processing using the device key, and each device (information processing apparatus that performs content playback) can decrypt using the device key stored in the own device based on the tag information (see FIG. 8). One record is selected from the signature verification key records 0 to n, and the signature verification key is obtained by decrypting the record with the device key.

  A configuration in which the media key is used as the signature verification key is also possible. In this case, the key stored in the EKB can be only the media key.

  Refer to the flowchart of FIG. 10 for the processing sequence when reading the physical index flag in the information processing apparatus that executes the content reproduction processing of the disc on which the data with the signature added for preventing falsification of the physical index flag is recorded. To explain.

  The process shown in the flow of FIG. 10 is a process executed after a disc is inserted into a drive as a disc drive device built in or connected to an information processing device such as a PC that performs content reproduction processing. When the disc is inserted into the drive, a series of operations of physical index flag and physical index detection is started.

  First, in step S201, a timeout timer is activated. This timer is used to measure the time to prevent repeated reading until it is read, for example, when a physically recorded physical index becomes unreadable due to scratches on the disk. Will be launched. If the physical index is recorded on the disk set in the drive, but a read error occurs and the physical index is not successfully read within a certain time, the detection operation is terminated. The time until timeout is set in the playback device in advance.

  In step S202, reading of the first cluster in the lead-in area is started. As described above, in the area including the first cluster in the lead-in area, for example, a physical index is recorded as a wobble signal and a case where the physical index is not recorded may be recorded. However, since it is not possible to determine which type of disk, the reading process is started for the time being.

  In step S203, detection of a physical index flag is executed. If there is no physical index flag (step S204: No), it is determined that reading of the physical index is unnecessary, the process proceeds to step S208, and the physical index reading process is terminated.

  If a physical index flag is detected in step S204, signature verification processing is executed in step S205 to determine whether data has been tampered with. If it is confirmed that the signature verification is valid and the data is a legitimate physical index flag without data alteration, the process proceeds to step S206 and step S207, and the physical index reading process is continued and executed.

  In the signature verification process in step S205, if the signature verification is not established, there is a possibility that the data has been falsified. Therefore, in step S209, the subsequent process, that is, the process such as the content reproduction is stopped and the process ends. To do.

  As described above, according to the configuration of the present invention, based on the signature set for the physical index flag, it becomes possible to read the legitimate physical index flag without falsification, and based on the legitimate physical index flag without falsification. Control becomes possible.

  A signature verification processing sequence involving acquisition of a signature verification key from the EKB when the signature verification key is stored in the EKB described with reference to FIGS. 8 and 9 will be described with reference to the flow of FIG. .

  First, in step S301, the EKB is read from the disk. In step S302, the ID of the own device is acquired. The own device ID is an identifier set for each device under the management of a specific management center that executes content management based on an EKB distribution system in which a tree structure is applied to each device (information processing apparatus that executes content reproduction) in advance. And is recorded in the memory of the device as data that cannot be easily rewritten.

  In step S303, the device that intends to reproduce the content uses the device key stored in the self-device from the signature verification key records 0 to n stored in the EKB based on the device ID and the tag information of the EKB. Extract records that can be decrypted.

  When a record that can be decrypted is not extracted (step S304: No), it is set as an excluded device that has been determined by the management center that the device is a revoke, that is, an unauthorized device, and reproduction of content has been stopped. Then, the subsequent processing, that is, the reproduction and use of the content are stopped.

  If a record that can be decrypted is extracted (step S304: Yes), the own device is a valid device, and the process proceeds to step S305, in which one record of the signature verification key records 0 to n acquired from the EKB is stored in the own device. Decrypt using the stored device key to obtain the signature verification key.

  In step S306, the signature verification process is performed on the data including the physical index flag by applying the acquired signature verification key to determine whether the data has been tampered with. If the signature verification is not established (step S307: No), it is determined that the data has been tampered with, and the process proceeds to step S310, where subsequent processing, that is, reproduction and use of the content are stopped.

  If the signature verification is successful (step S307: Yes), it is determined that the data has not been tampered with, the process proceeds to step S308, the physical index flag is read, and the process is executed according to the read information.

  In the data structure with the signature described above with reference to FIGS. 6 and 7, the seed of the content key is entangled with the signature target or signature verification key in order to prevent the diversion of the physical index flag. However, not all distributed ROM disks store encrypted content and record seeds as key generation information. In fact, it is highly possible that ROM disks such as PC software and magazine appendices are not encrypted. In that case, the content key seed cannot be entangled with the signature target or signature verification key as in the configuration of FIGS.

  In such a disc having no seed, only a data portion in which a physical index flag or the like is recorded is signed. On the other hand, in order to prevent the diversion of the physical index flag, it is necessary to use a title-specific key such as a content key seed for the signature verification key. Therefore, as shown in FIG. 12, a signature verification key unique to a title is recorded in a BCA (Burst Cutting Area) 352 formed in the lead-in area 351 of the disc 350, and an information processing apparatus that reproduces content includes: The signature verification key recorded in the BCA 352 is acquired, and signature verification of data in which a physical index flag or the like is recorded is executed.

  The size of the signature verification key is 128 bytes for the RSA signature and 16 bytes for the AES, and either method may be used. Incidentally, in the case of the physical standard of DVD-ROM, the specification is such that a maximum of 188 bytes of data can be recorded in the BCA. By this method, even if an attempt is made to divert the physical index flag to another pirated disk, it is impossible to record predetermined data in the BCA unless it is a legitimate disk factory, so that the creation of a pirated version can be prevented.

  In the embodiment described above, the configuration has been described in which it is possible to determine only whether or not a physical index is recorded depending on the presence or absence of the physical index flag or the flag value [1] or [0]. Hereinafter, a description will be given of an example of an extended configuration of the physical index flag in which the physical index flag is configured in multiple bits so that the type of content data recorded on the disc and the encryption method can be distinguished.

  For example, in the DVD standard, there are encryption methods CSS and CPPM formulated in the copy protection standard. The copyrights of movie contents and the like released on DVD are protected by these encryption methods. Specifically, the reproduction permission only by the licensed player and the prohibition of copying to another medium are realized. On the other hand, DVDs attached to magazine appendices are often not encrypted, and copying to another medium is not restricted. However, the playback device needs to handle this disc as a legitimate disc. In this way, it is necessary to identify various types of content and control playback and copying accordingly.

  In order to enable processing according to various types of content, the type of content can be identified by the value of the physical index flag as shown in FIG.

Type 1 (Type 1) is a disc that stores content obtained by encrypting AV data such as movies using a standard-compliant AV data encryption method CPS1. Type 2 (Type 2) is a standard for data other than AV data such as games and audio data. The disc type 3 (Type 3) storing content encrypted by the encryption method CPS2 other than the compliant AV data is defined as a disc storing content obtained by encrypting data other than the AV data by another encryption method.

  CPS1 and CPS2 are methods for encrypting content stored on a disc by applying an encryption key (CPS unit key) set for each content management unit (CPS unit). Therefore, this is an encryption method that requires cryptographic processing combining a physical index and a seed. Both CPS 1 and CPS 2 require generation of an encryption key in accordance with a predetermined processing sequence and content decryption based on the generated encryption key.

  When an information processing apparatus that sets a disc and executes content reproduction reads a physical index flag and detects type 1 (Type 1), it detects a physical index by a method defined by the encryption method CPS1, An encryption key (content key) to be applied to decryption is generated. In Type 1 (Type 1), since AV data is recorded, MPEG2 is decoded and reproduced. Copy control is also performed according to CCI (Copy Control Information) defined by the standard.

  When the information processing apparatus reads the physical index flag and detects type 2 (Type 2), it detects the physical index by the method defined in CPS2 and generates a content key as in the case of type 1 (Type 1). , Play the game or audio in a way that corresponds to each. Copy control is also performed in accordance with CCI and the like, similar to Type1.

  Further, when the information processing apparatus reads the physical index flag and detects type 3 (Type 3), content outside the CPS1 and CPS2 standards is recorded, so that the playback method, copy control, and the like differ depending on the content. For example, a moving image having a format other than that defined in the standard is played back by a dedicated playback application or a general-purpose PC application. Further, when a still image such as JPEG or an application for PC is recorded, it is handled on the PC as simple data. Copy control is also controlled by a dedicated playback application or the like, or not. Therefore, when the physical index flag read by the information processing apparatus is type 3 (Type 3), the physical index is not detected.

  As described above, by identifying the content type by the physical index flag, it becomes possible to perform reproduction and copy control by a method according to the type. On the other hand, expanding the meaning of the flag in this way raises concerns about unauthorized copying. For example, although Type 1 and 2 are copy-controlled, there is a possibility that Type 3 may not be copy-controlled, and therefore, there is a possibility that Type 1 and 2 are rewritten to Type 3 and copied illegally. However, since the physical index flag has a signature and is always played after the signature check, if the physical index flag is tampered with, the signature check will fail, so playback may be prohibited. it can.

  FIG. 14 is a flowchart for explaining the processing sequence of the information processing apparatus that executes the reproduction processing of the disc having the physical index flag that enables the above-described three types of contents to be distinguished. The process shown in the flow of FIG. 14 is a process that is executed after a disc is inserted into a drive as a disc drive device built in or connected to an information processing device such as a PC that performs content reproduction processing. When the disc is inserted into the drive, a series of operations of physical index flag and physical index detection is started.

  First, in step S401, a timeout timer is activated. As described above, this timer is a timer for ending the reading of the permanent physical index within a predetermined time.

  In step S402, reading of the first cluster in the lead-in area is started. As described above, in the area including the first cluster in the lead-in area, for example, a physical index is recorded as a wobble signal and a case where the physical index is not recorded may be recorded. However, since it is not possible to determine which type of disk, the reading process is started for the time being.

  In step S403, detection of a physical index flag is executed. In step S404, signature verification processing is executed to determine whether data has been tampered with. If the signature verification is not established, there is a possibility that the data has been falsified. Therefore, in step S411, the subsequent processing, that is, the processing such as content reproduction is stopped and the processing is terminated.

  In step S404, when signature verification is established and it is confirmed that the physical index flag is a legitimate physical index flag without data alteration, the value of the physical index flag is determined in step S405.

  When the value of the physical index flag is type 1 or 2, in step S406 and step S407, reading of the physical index is executed until the maximum timeout, key information is acquired from the physical index, and acquisition information is acquired in step S408. Based on the above, a content key is generated and played by a method corresponding to each, such as a game or audio.

  If it is determined in step S405 that the value of the physical index flag is 3, content outside the CPS1 and CPS2 standards that do not require the physical index key information is recorded. In step S409, the physical index is read. In step S410, a content reproduction process according to each rule is executed.

  Next, with reference to FIG. 15, a process for manufacturing a disk having or not having the above-described physical index and physical index flag will be described.

  The disc manufacturing process shown in FIG. 15 is a disc manufacturing process executed by a disc manufacturer having a valid license, and shows a processing sequence for manufacturing the content storage discs by the above-described types 1 to 3 of content types. Yes.

  In a disc manufacturing factory, content is often received from a content provider after being edited (authored) into a format for recording on a disc. The received disc factory first checks the content type (S501).

  Here, it is classified into Type 1 (AV data), Type 2 (other data), and Type 3 (data without a physical index) described with reference to FIG. 13 (S502 to S504). If the content does not apply to any type, that is, content that is not recognized as disc storage content, disc production is stopped for that content. The pirated version applies to this.

  If it is determined in step S502 that the content is type 1 content, the process proceeds to step S511, and a physical index including key information unique to the content is recorded. As described above, for example, a wobble recording method is applied to the recording of the physical index.

  After that, in step S512, encryption is performed with the type 1, that is, the encryption method CPS1 compliant with the standard for AV data, and the process proceeds to step S531, where a disk is stamped and a predetermined number of disks are manufactured.

  On the other hand, as a result of the determination in steps S502 and S503, if it is determined that the content is of type 2, the process proceeds to step S521, and a physical index including key information unique to the content is recorded. As described above, for example, a wobble recording method is applied to the recording of the physical index.

  Thereafter, in step S522, encryption is performed by the type 2, that is, the encryption method CPS2 compliant with the standard other than AV data, and the process proceeds to step S531, where a disk is stamped and a predetermined number of disks are manufactured.

  Further, if it is determined that the content is of type 3 as a result of the determination in steps S502, S503, and S504, the process proceeds to step S531 without recording the physical index including the key information, and the disc is stamped and a predetermined number of contents are recorded. Manufacture discs.

  Note that in the case of a disc on which type 1 and type 2 contents are recorded, a predetermined physical index flag and a signature corresponding thereto are always stamped in the lead-in area during the stamping process in step S531. The signature received at the disc factory is a stamp created by the organization that established the standard of the encryption system or the organization commissioned by the organization. Further, since the contents of type 1 and type 2 are encrypted in accordance with the standard, the seed of the content key is also stamped and stored in the lead-in area as necessary.

  Next, a configuration example of an information processing apparatus that performs content reproduction processing or recording processing will be described with reference to FIG.

  The information processing apparatus 400 includes an output I / F (Interface) 402, an MPEG (Moving Picture Experts Group) decoder 403, an input / output I / F (Interface) 404 including a D / A converter 405, an encryption / decryption processing unit 407, A ROM (Read Only Memory) 408, a CPU (Central Processing Unit) 409, a memory 410, a drive 411 of a recording medium 412, and a transport stream processing means (TS processing means) 406 are connected to each other by a bus 401. Has been.

  The output I / F 402 receives a digital signal on the bus 401 and outputs it to the outside. The MPEG decoder 403 performs MPEG decoding on the MPEG encoded data supplied via the bus 401 and outputs the decoded data to the output I / F 404. The output I / F 404 includes a D / A converter 405. The output I / F 404 outputs a digital signal from the MPEG decoder 403 to the outside as an analog signal by D / A (Digital Analog) conversion by the D / A converter 405.

  The encryption / decryption processing means 407 is composed of, for example, a one-chip LSI (Large Scale Integrated Circuit), encrypts or decrypts a digital signal as content supplied via the bus 401, and outputs the encrypted digital signal onto the bus 401. Has a configuration. The encryption / decryption processing unit 407 is not limited to a one-chip LSI, and can be realized by a configuration in which various types of software or hardware are combined. The encryption / decryption processing unit 407 also functions as a signature verification processing unit that executes verification processing of a signature attached to a physical index flag recorded on the recording medium 412, for example.

  For example, in the case of an information processing apparatus that executes reproduction processing, the ROM 408 is a device key that is unique to each information processing apparatus or unique to each group of a plurality of information processing apparatuses, and authentication required for mutual authentication. I remember the key. The mutual authentication is applied at the time of device authentication executed with, for example, a removable drive or a connected portable device. The CPU 409 controls the MPEG decoder 403, the decoding processing unit 407, and the like by executing the program stored in the memory 410. The memory 410 is a non-volatile memory, for example, and stores a program executed by the CPU 409 and data necessary for the operation of the CPU 409.

  The drive 411 drives the recording medium 412 that can record digital data, thereby reading (reproducing) the digital data from the recording medium 412 and outputting it on the bus 401. Also, the physically recorded data such as the physical index and BCA is read by the drive 411 and output onto the bus 401. The program may be stored in the ROM 408, and the device key and authentication key may be stored in the memory 410.

  The recording medium 412 is a medium capable of storing digital data, such as a DVD, a CD, or a Blu-ray disc, and is configured to be detachable from the drive 411 in this embodiment.

  The transport stream processing means (TS processing means) 406 controls the appearance timing of the transport stream when decrypting the encrypted content from the recording medium 412. In the transport stream, ATS (Arrival Time Stamp) as appearance timing information of each transport packet is set, and timing control is executed by ATS at the time of decoding by the MPEG2 decoder.

  In the case of an information processing apparatus that performs playback processing, for example, playback of encrypted content configured by the above-described transport stream is executed. Note that the decoding processing unit 407 and the TS processing unit 406 shown in FIG. 16 are shown as separate blocks for easy understanding, but may be configured as one single-chip LSI that executes both functions. Also, a configuration in which both functions are realized by a combination of software or hardware may be adopted. Furthermore, all the blocks except the drive 411 and the recording medium 412 may be configured as a one-chip LSI, or these functions may be realized by a configuration combining software or hardware, thereby enabling information The robustness against the invalidation of the security function due to the modification of the processing device 400 can be improved.

  In the case of an information processing apparatus that executes recording processing, a physical index recording unit such as a wobble signal recording unit (not shown) is configured in the information processing device, and performs physical index recording processing. An information processing apparatus that executes a recording process records identification information according to whether or not information to be applied to reproduction of content stored in an information recording medium is recorded as a physical index only on an information recording medium having the physical index. Then, control is performed not to record on the information recording medium having no physical index. Note that the reproduction processing apparatus has a configuration capable of reading a physical index recorded by a wobble signal or the like.

  A program for executing the reproduction process and the recording process is stored in the ROM 660, and the memory 410 is used as a parameter and data storage and work area as needed during the program execution process.

  The present invention has been described in detail above with reference to specific embodiments. However, it is obvious that those skilled in the art can make modifications and substitutions of the embodiments without departing from the gist of the present invention. In other words, the present invention has been disclosed in the form of exemplification, and should not be interpreted in a limited manner. In order to determine the gist of the present invention, the claims section described at the beginning should be considered.

  The series of processes described in the specification can be executed by hardware, software, or a combined configuration of both. When executing processing by software, the program recording the processing sequence is installed in a memory in a computer incorporated in dedicated hardware and executed, or the program is executed on a general-purpose computer capable of executing various processing. It can be installed and run.

  For example, the program can be recorded in advance on a hard disk or ROM (Read Only Memory) as a recording medium. Alternatively, the program is temporarily or permanently stored on a removable recording medium such as a flexible disk, CD-ROM (Compact Disc Read Only Memory), MO (Magneto optical) disk, DVD (Digital Versatile Disc), magnetic disk, and semiconductor memory. It can be stored (recorded). Such a removable recording medium can be provided as so-called package software.

  The program is installed on the computer from the removable recording medium as described above, or is wirelessly transferred from the download site to the computer, or is wired to the computer via a network such as a LAN (Local Area Network) or the Internet. The computer can receive the program transferred in this manner and install it on a recording medium such as a built-in hard disk.

  Note that the various processes described in the specification are not only executed in time series according to the description, but may be executed in parallel or individually according to the processing capability of the apparatus that executes the processes or as necessary. Further, in this specification, the system is a logical set configuration of a plurality of devices, and the devices of each configuration are not limited to being in the same casing.

  As described above, according to the configuration of the present invention, whether or not the data applied to the decryption process when the content stored in the information recording medium is encrypted content is recorded as a physical index is indicated. Since the configuration is such that identification information (physical index flag) is recorded, for example, there is no information recording medium that stores content that requires usage management such as copyright management and records key information as a physical index, or has no usage restrictions An information recording medium that stores content and does not have a physical index can be determined based on the flag. Specifically, in an information processing apparatus that performs playback processing of an information recording medium storing various types of content, it is determined whether or not a physical index needs to be read based on a physical index flag, and only when necessary Since the physical index is read, useless physical index reading processing can be omitted, and efficient content reproduction is realized. Therefore, the present invention is applied to an information recording medium that stores content and an information processing apparatus that performs reproduction and recording processing of the information recording medium, thereby realizing efficient processing.

  Furthermore, according to the configuration of the present invention, since the digital signature is set for the physical index flag, it is possible to prevent unauthorized use and unauthorized copy of the content due to alteration of the physical index flag, and legitimate use of the content Limits can be maintained.

  Furthermore, according to the configuration of the present invention, the physical index flag is set in association with the content mode and the value according to the encryption algorithm of the content. It is possible to immediately determine the process to be executed based on the value of the flag, and the content can be efficiently reproduced.

  Furthermore, according to the configuration of the present invention, since the physical index flag is stored in the lead-in area, reading is possible when the drive is mounted, and the processing mode is determined without waiting for processing such as application startup. It becomes possible.

It is FIG. (1) explaining the storage data structure of an information recording medium. It is FIG. (2) explaining the storage data structure of an information recording medium. It is a figure explaining the data recording structure in the lead-in area of an information recording medium. It is a figure explaining the wobble recording system as an example of the recording system of the physical index recorded on an information recording medium. It is a flowchart explaining the reading sequence of the physical index and the physical index flag in the information processing apparatus of the present invention. It is a figure explaining the data structure which added the digital signature with respect to the physical index flag. It is a figure explaining the data structure which added the digital signature with respect to the physical index flag. It is a figure explaining the structure of EKB which can provide data, such as an encryption key, only to the device which has a license. It is a figure explaining a data structure at the time of storing a signature verification key in EKB. It is a flowchart explaining the read sequence of a physical index and a physical index flag of a disk having data with a digital signature added to the physical index flag. It is a flowchart explaining the acquisition process of a signature verification key from EKB, and a title verification process sequence. It is a figure which shows the example of a disk structure which stored the signature verification key in BCA. It is a figure explaining the example which enabled identification of the some content type with the physical index flag. It is a flowchart explaining the reproduction | regeneration processing sequence of the disc which recorded the physical index flag which enabled identification of several content types. It is a flowchart explaining the manufacturing process sequence of the disc which recorded the physical index flag which enabled identification of several content types. It is a figure explaining the structural example of the information processing apparatus which reproduces | regenerates or records an information recording medium.

Explanation of symbols

110 Disk 111 Lead-in area 112 Physical index storage key application content 113 Physical index 114 Physical index flag 120 Disk 121 Lead-in area 122 Physical index storage key non-applicable content 123 Physical index flag 151 Physical parameter 152 Physical index flag 153 Content key seed 154 Physical index 221 Wobble recording signal 222 Wobble recording signal 301 Data part 302 Content key seed 303 Digital signature 321 Data part 322 Digital signature 331 Tag information 332 Encryption key data 350 Disc 351 Lead-in area 352 BCA
400 Information processing device 401 Bus 402 Input / output I / F
403 MPEG codec 404 Input / output I / F
405 A / D, D / A converter 406 TS / PS processing means 407 Encryption / decryption processing means 408 ROM
409 CPU
410 Memory 411 Drive 412 Information recording medium

Claims (30)

An information recording medium,
Having a configuration in which identification information indicating whether data to be applied to decryption processing when the content stored in the information recording medium is encrypted content is recorded as a physical index is recorded;
The identification information is
An information recording medium which is a physical index flag recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index. The identification information is
2. The information recording according to claim 1, wherein the physical index flag is set to a different value in accordance with at least one of a type of content stored in the information recording medium and a type of content encryption processing algorithm. Medium. The identification information is
The information recording medium according to claim 1, wherein the information recording medium is recorded in a lead-in area of the information recording medium. The identification information is
The information recording medium according to claim 1, wherein the information recording medium is recorded in a first cluster in a lead-in area of the information recording medium.   The information recording medium according to claim 1, wherein the identification information is recorded as data having a tamper-proof configuration with a digital signature added. The information recording medium is
As the identification information, identification information having a tamper-proof configuration with a digital signature added is recorded, and further, a verification key for the digital signature or information applied to generation of a digital signature verification key is recorded. The information recording medium according to claim 1.   The digital signature verification key or the information applied to the generation of the digital signature verification key is a collection of encryption key data that can be decrypted by a device key stored in correspondence with an information processing apparatus that executes reproduction processing of an information recording medium The information recording medium according to claim 6, wherein the information recording medium is recorded as encryption key block data.   7. The information recording according to claim 6, wherein the digital signature verification key or the information applied to generate the digital signature verification key is recorded as a seed as information corresponding to the stored content of the information recording medium. Medium.   7. The information recording medium according to claim 6, wherein the digital signature verification key or the information applied to generate the digital signature verification key is recorded on a BCA (Burst Cutting Area) of the information recording medium. An information processing apparatus that executes a reproduction process of content stored in an information recording medium,
The identification information indicating whether or not the data to be applied to the decryption process when the content recorded on the information recording medium is an encrypted content is recorded as a physical index is read, and the physical index is based on the identification information Has a configuration to execute or cancel the reading process of
The identification information is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index,
The information processing apparatus includes:
An information processing apparatus having a configuration for determining the presence or absence of a physical index flag and executing or canceling a physical index reading process based on the determination result. The identification information is a physical index flag in which different values are set according to at least one of the type of content stored in the information recording medium and the type of content encryption processing algorithm,
The information processing apparatus includes:
11. The configuration of determining a value of a physical index flag, executing or canceling a physical index reading process based on the determination result, and determining a process to be executed after reading the physical index. The information processing apparatus described in 1. The information processing apparatus includes:
The information processing apparatus according to claim 10, wherein the information processing apparatus is configured to execute a process of reading the identification information from a lead-in area of an information recording medium. The information processing apparatus includes:
The information processing apparatus according to claim 10, wherein the information processing apparatus is configured to execute a process of reading the identification information from a first cluster in a lead-in area of an information recording medium. The information processing apparatus includes:
The verification process of the digital signature added to the identification information is executed, and the physical index reading process based on the identification information is executed or stopped on the condition that the data has not been altered based on the signature verification. The information processing apparatus according to claim 10, wherein the information processing apparatus is configured. The information processing apparatus includes:
Information to be applied to generation of a signature verification key or signature verification key for executing verification processing of a digital signature added to the identification information is acquired from an information recording medium, and generated based on the acquired information or the acquired information The information processing apparatus according to claim 10, wherein the information processing apparatus is configured to execute a verification process of a digital signature added to the identification information by applying a signature verification key. The information processing apparatus includes:
16. The configuration according to claim 15, wherein a seed as information corresponding to content stored in an information recording medium is applied as information applied to the generation of the digital signature verification key or the digital signature verification key. Information processing device. The information processing apparatus includes:
By reading the encryption key block data from the information recording medium and decrypting the encrypted data stored in the encryption key block data by applying a device key stored corresponding to the information processing apparatus, the digital signature verification key The information processing apparatus according to claim 15, wherein the information processing apparatus is configured to execute processing for acquiring information applied to generation of a digital signature verification key. The information processing apparatus includes:
The information according to claim 15, wherein the digital signature verification key or information applied to generation of the digital signature verification key is read from a BCA (Burst Cutting Area) of an information recording medium. Processing equipment. An information processing method for executing reproduction processing of content stored in an information recording medium,
An identification information acquisition step of reading identification information indicating whether data to be applied to decryption processing when the content recorded on the information recording medium is encrypted content is recorded as a physical index;
A process determining step for determining execution or cancellation of the physical index reading process based on the identification information,
The identification information is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index,
The identification information acquisition step includes
An information processing method comprising the step of determining the presence or absence of a physical index flag. The identification information is a physical index flag in which different values are set according to at least one of the type of content stored in the information recording medium and the type of content encryption processing algorithm,
The identification information acquisition step includes
Determining the value of the physical index flag,
The process determining step includes:
20. The information processing method according to claim 19, wherein the physical index reading process is executed or stopped based on the determination result, and a process to be executed after the physical index reading is determined. The identification information acquisition step includes
20. The information processing method according to claim 19, further comprising a step of executing identification information reading processing from the lead-in area of the information recording medium. The identification information acquisition step includes
20. The information processing method according to claim 19, further comprising a step of executing a process of reading identification information from the first cluster in the lead-in area of the information recording medium. The information processing method further includes:
A step of executing a verification process of the digital signature added to the identification information, and executing or canceling the physical index reading process based on the identification information on the condition that the data is not falsified based on the signature verification. The information processing method according to claim 19. The information processing method further includes:
Obtaining a signature verification key for executing a verification process of a digital signature added to the identification information or information applied to generation of a signature verification key from an information recording medium,
20. The information processing method according to claim 19, wherein verification processing of the digital signature added to the identification information is executed by applying the acquired information or a signature verification key generated based on the acquired information. The information processing method includes:
25. A seed as information corresponding to content stored in an information recording medium is read, and the seed is applied as information applied to generation of the digital signature verification key or digital signature verification key. The information processing method described. The information processing method includes:
By reading the encryption key block data from the information recording medium and decrypting the encrypted data stored in the encryption key block data by applying a device key stored corresponding to the information processing apparatus, the digital signature verification key 25. The information processing method according to claim 24, further comprising executing processing for acquiring information applied to generation of a digital signature verification key. The information processing method includes:
25. The information processing method according to claim 24, wherein a process of reading the digital signature verification key or information applied to generation of the digital signature verification key from a BCA (Burst Cutting Area) of an information recording medium is executed. An information processing apparatus for performing data recording on an information recording medium,
Information recording in which identification information corresponding to whether or not information applied to reproduction of content stored in an information recording medium is recorded as a physical index is recorded only on an information recording medium having a physical index, and does not have a physical index An information processing apparatus having a configuration for executing control that is not recorded on a medium. An information processing method for performing data recording on an information recording medium,
Information recording in which identification information corresponding to whether or not information applied to reproduction of content stored in an information recording medium is recorded as a physical index is recorded only on an information recording medium having a physical index, and does not have a physical index An information processing method comprising a step of executing control not recorded on a medium. A computer program for executing reproduction processing of content stored in an information recording medium,
An identification information acquisition step of reading identification information indicating whether data to be applied to decryption processing when the content recorded on the information recording medium is encrypted content is recorded as a physical index;
A process determining step for determining execution or cancellation of the physical index reading process based on the identification information,
The identification information is a physical index flag that is recorded only on an information recording medium having a physical index and not recorded on an information recording medium having no physical index,
The identification information acquisition step includes
A computer program which is a step of determining the presence or absence of a physical index flag.

Images