JP4170670B2 - Usage rights management device - Google Patents

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to a usage right management apparatus, and more particularly to a usage right management apparatus that manages rights related to content data.
[0002]
[Prior art]
In recent years, content distribution systems are becoming familiar due to broadband network and always-on connection environments. Further, since the protection of rights related to content data is important for the spread of such content distribution systems, various rights management techniques have been researched and developed conventionally. Here, in the present specification, rights related to content data such as copyrights or sales rights are referred to as digital rights. Hereinafter, a content information distribution system incorporating a conventional rights management technique will be described.
[0003]
In a conventional content distribution system, a content distribution apparatus and a personal computer (hereinafter abbreviated as “PC”) are connected by a network represented by the Internet so that data communication is possible. The content distribution apparatus stores at least one set of content data, a content decryption key, and usage condition data. The content data is digital data representing content represented by music, for example, and is encrypted by a predetermined method. The content decryption key is a key for decrypting the encrypted content data. The use condition data is data representing a use condition (hereinafter referred to as a use condition) of the above-described content data. A typical usage condition is the number of times content data is used. The PC acquires the above-described content data from the content distribution apparatus, and further stores a computer program (hereinafter simply referred to as a program) necessary for using the acquired content data.
[0004]
In the above content distribution system, content data is distributed as follows. First, the PC executes a program stored in advance and requests the content distribution apparatus to distribute the content data. The request for content data is generally performed when the PC transmits content specifying information and terminal-specific information to a content distribution apparatus via a network. The content specifying information is information for uniquely specifying the content data described above. The terminal specific information is held in advance by the PC, and is information that can uniquely identify the PC that is the request source of the content data.
[0005]
In response to the request from the PC, the content distribution device encrypts the above-described content decryption key using the terminal-specific information received this time. Thereafter, the content distribution apparatus transmits the above-described encrypted content data, the content decryption key encrypted with the terminal specific information, and the use condition data to the PC. The PC receives the content data distributed by the content distribution device, the content decryption key, and the usage rule data, and stores them in a storage device provided therein.
[0006]
After the above storage, the PC user can output the content represented by decrypting the content data. Before the content is actually output, the user first instructs the PC to that effect. In response to this instruction, the PC operates as follows. The PC determines whether or not the current use matches the use condition represented by the use condition data in the storage device. The PC executes the following process only when the usage conditions are met. Next, since the content decryption key in the storage device is encrypted, the PC decrypts the content decryption key using terminal-specific information held by itself. Further, since the content data in the storage device is also encrypted as described above, the PC uses the decrypted content decryption key to decrypt the content data, and then reproduces and outputs the content represented by the content data. .
[0007]
In the above content distribution system, digital rights are protected by DRM (Digital Rights Management) as a rights management technique. Digital rights protection by DRM is realized by the following three technologies. In the first protection technique, the content distribution device transmits the encrypted content data and the content decryption key encrypted with the terminal specific information. Here, the content decryption key can be decrypted only by the PC that requested the content data. Therefore, even if the encrypted content data is transferred to another PC, the other PC cannot decrypt the content decryption key, and as a result, cannot reproduce the content data. . From the above, in DRM, it can be said that the content decryption key is tied to a single PC. This protects the digital rights.
[0008]
The second protection technique is a tamper resistant technique. That is, the PC needs a decryption program for decrypting each cipher, but the analysis of the decryption program is prevented by the above-described tamper resistance technique. This also protects the digital rights.
[0009]
Thirdly, as described above, in the conventional content distribution system, the content distribution apparatus transmits usage condition data to the PC. The PC manages the received use condition data. Each time the content data is used, the PC checks the usage conditions represented by the usage condition data managed by the PC. If the current usage does not match the usage conditions, the PC does not perform the subsequent processing. This also protects the digital rights.
[0010]
[Problems to be solved by the invention]
In recent years, network connection functions have also been added to consumer devices other than PCs typified by set-top boxes, television receivers, music players, and game devices. As a result, consumer devices can receive content data from the above-described content distribution apparatus, and moreover, data communication can be performed between a plurality of consumer devices. From the above, it is desirable that rights management technology be incorporated into consumer devices. However, it is not a good idea to incorporate rights management technology such as the above-mentioned DRM into consumer devices because the following problems can be assumed.
[0011]
First, since the content decryption key is tied to a single PC, even if the user of the PC and the other consumer device is the same, the other consumer device uses the content decryption key to There is a problem that it cannot be decrypted. Because of these problems, the user must use a PC that can use the content key when using the content data. Therefore, the conventional rights management technology is not convenient for the user. .
[0012]
Secondly, the above-described DRM incorporates a tamper-proof technology, and whether or not the content data can be used based on usage condition data stored therein before the PC reproduces the content data. Check. In this way, the tamper resistant technology imposes a large processing burden on the above-described PC. However, the PC is mounted with relatively high-performance hardware so that it can be used for general purposes such as video playback, audio playback, or game play. Therefore, even if DRM is incorporated into a PC, it does not matter so much. On the other hand, consumer devices are required to be low-priced, and consumer devices are generally used for applications specialized in video playback, audio playback, and game play. In view of the above, there is a problem in that consumer devices are not equipped with hardware as high as PCs, and it is difficult to incorporate DRM that requires a large processing load.
[0013]
Therefore, a first object of the present invention is to provide a rights management technique that allows a plurality of consumer devices to share a common digital rights.
A second object of the present invention is to provide a right management technique suitable for consumer devices.
[0014]
[Means for Solving the Problems and Effects of the Invention]
In order to achieve the first object, the first invention of the present application is a device for managing usage right information representing a right for a plurality of devices to use content data, and includes a plurality of devices. In response to an issuance request from each device, the issuance request is transmitted using the entitlement information included in the entitlement right database (hereinafter referred to as the entitlement DB). A usage right management unit that generates usage permission information indicating usage permission of content data for the device, a license information generation unit that generates license information including at least the usage permission information generated by the usage right management unit, and a license information generation unit A communication unit that transmits the license information generated in step 1 to the device that has transmitted the issue request.
[0015]
As described above, according to the first invention, since the usage right information is assigned to a plurality of devices, it is possible to provide a right protection technique that allows a plurality of devices to share common usage right information.
[0016]
  In order to achieve the second object, the second invention of the present application is a device that receives provision of license information from a usage right management apparatus connected through a transmission line, and the portable recording medium is a device that receives the license information. A media identifier uniquely specified is stored, and the device includes an interface for connecting the portable recording medium so that data communication is possible, an identifier extracting unit for extracting the media identifier from the portable recording medium connected to the interface, and an identifier extraction An issuance request generation unit that generates an issuance request necessary for receiving permission to use content data using the media identifier received from the copying unit, and the issuance request received from the issuance request generation unit through the transmission path to the usage right management device. SendRuAnd Nobube. Here, the usage right management apparatus manages the usage right information of the content data given to the portable recording medium, and the content in the device to which the portable recording medium is connected in response to an issuance request from the device. Generate and send license information to control data usage. The device further includes a license information processing unit that processes license information from the usage right management device and controls the use of content data.
[0017]
As described above, according to the second invention, since the usage right information of the content data is managed by the usage right management apparatus, it is not necessary to place a processing burden on the device for the usage right information. As a result, it is possible to provide a right protection technique suitable for a device having a relatively low processing capability.
[0018]
Further, according to the second invention, in the device, the identifier extraction unit extracts the media identifier from the portable recording medium connected to the device. Furthermore, the issuance request generation unit can generate an issuance request using the extracted media identifier. As a result, the user of the portable recording medium can use the content data on the device of another person using his / her usage right information.
[0019]
DETAILED DESCRIPTION OF THE INVENTION
“First Embodiment”
FIG. 1 is a block diagram showing the overall configuration of a license information management system Sa containing a usage right management apparatus 11 according to the first embodiment of the present invention. In FIG. 1, the license information management system Sa includes a usage right management device 11, two devices 21 a and 21 b as an example of a plurality of devices 21, and a transmission path 31. The usage right management apparatus 11 is installed on the business operator α side involved in content distribution. The devices 21a and 21b are typically used by a contractor β who receives content distribution based on a contract with the business operator α. The transmission line 31 is wired or wireless, and connects the usage right management apparatus 11 and the device 21a or the device 21b so that data communication is possible.
[0020]
Next, a detailed configuration of the usage right management apparatus 11 of FIG. 1 will be described with reference to FIG. 2, the usage right management apparatus 11 includes a content database 111, a decryption key database 112, a user information database 113, a usage right database 114, a communication unit 115, a user authentication unit 116, and a usage right management unit 117. A content management unit 118, a content encryption unit 119, a transmission data generation unit 120, a license information generation unit 121, a decryption key management unit 122, and a decryption key encryption unit 123. More specifically, the license information generation unit 121 includes a hash value generation unit 1211 and a license information assembly unit 1212 as shown in FIG.
[0021]
Next, the detailed configuration of the devices 21a and 21b in FIG. 1 will be described with reference to FIG. In FIG. 4, devices 21a and 21b are typically personal computers (hereinafter referred to as PCs), set-top boxes, music players, television receivers, and game machines. However, in the present embodiment, for convenience, it is assumed that the devices 21a and 21b are a PC and a music player each having a music playback function. Under this assumption, each of the devices 21a and 21b includes at least a device identifier storage unit 211, a setting request generation unit 212, a communication unit 213, a content management unit 214, a content storage unit 215, and an issue request generation unit 216. A license information processing unit 217, a content decrypting unit 218, and a content reproducing unit 219. More specifically, the license information processing unit 217 includes a falsification determination unit 2171, a hash value generation unit 2172, a use permission determination unit 2173, and a decryption key decryption unit 2174, as shown in FIG. .
[0022]
Next, preparations necessary for the contractor β to receive content distribution from the operator α in the license information management system Sa will be described. In this preparatory work, a content database (hereinafter referred to as a content DB) 111, a decryption key database (hereinafter referred to as a decryption key DB) 112, a user information database (hereinafter referred to as a user information DB) 113 shown in FIG. Is constructed by the operator α.
[0023]
First, the content DB 111 of FIG. 2 will be described in detail with reference to FIG. First, the business operator α creates the content data Dcnt distributed to the contractor β by itself or receives it from another content creator. Here, the content data Dcnt is data that can be used by both the devices 21a and 21b and represents, for example, a television program, a movie, a radio program, music, a book, or a printed material. The content data Dcnt may be a game program or application software. However, for convenience, in the present embodiment, it is assumed that the content data Dcnt is data representing music.
[0024]
The business operator α assigns a content identifier Icnt to each of the content data Dcnt obtained as described above. The content identifier Icnt is preferably information for uniquely specifying the content data Dcnt in the license information management system Sa. Furthermore, the content identifier Icnt is preferably also a locator indicating the storage location of the content data Dcnt. Further, the above content data Dcnt is distributed to the device 21a or 21b in an encrypted state on the usage right management device 11 side from the viewpoint of protecting digital rights. Therefore, the business operator α assigns a dedicated encryption key Ke to each content data Dcnt. The combination of the content identifier Icnt, the content data Dcnt, and the encryption key Ke is stored in the content DB 111. Therefore, as shown in FIG. 6A, the content DB 111 is a collection of combinations of the content identifier Icnt, the content data Dcnt, and the encryption key Ke. In the content DB 111, the content identifier Icnt specifically identifies the same set of content data Dcnt. The encryption key Ke is used to encrypt the same set of content data Dcnt.
[0025]
In the present embodiment, for the sake of simplicity of illustration, the content DB 111 is described as being composed of a content identifier Icnt, content data Dcnt, and an encryption key Ke, but a database for each content data Dcnt and encryption key Ke is constructed. May be. The content identifier Icnt is preferably a locator of the content data Dcnt. In such a case, the usage right management apparatus 11 can read the content data Dcnt from the content DB 111 by using the content identifier Icnt included in the setting request Drra of the device 21a or 21b, so that the content identifier Icnt is registered in the content DB 111. There is no necessity to keep it.
[0026]
Next, the decryption key DB 112 shown in FIG. 2 will be described in detail with reference to FIG. As described above, each content data Dcnt is transmitted to the device 21a or 21b while being encrypted with the encryption key Ke. Here, in the following description, the content data Dcnt encrypted with the encryption key Ke is referred to as encrypted content data Decnt. In order to decrypt the encrypted content data Decnt, a decryption key Kd corresponding to the encryption key Ke needs to be provided to the device 21a or 21b. From this necessity, the operator α prepares a decryption key Kd corresponding to each encryption key Ke in the content DB 111. Here, the decryption key Kd may consist of the same bit string as the encryption key Ke or may consist of a different bit string. The above decryption key Kd is registered in the decryption key DB 112 together with the content identifier Icnt described above. From the above, the decryption key DB 112 is a set of combinations of the content identifier Icnt and the decryption key Kd as shown in FIG. In the decryption key DB 112, the content identifier Icnt particularly specifies the content data Dcnt assigned to the same set of decryption keys Kd. The decryption key Kd is used to decrypt the encrypted content data Decnt specified by the same set of content identifiers Icnt.
[0027]
Next, the user information DB 113 shown in FIG. 2 will be described in detail with reference to FIG. As described above, the contractor β exchanges a contract related to content distribution with the business operator α. Here, regarding both contracts, the contractor β may perform with the business operator α through the transmission path 31 or may be performed in another form. Based on this contract, the operator α assigns a device identifier Idv to each of the plurality of devices 21 (that is, the devices 21a and 21b) owned by the contractor β. Here, as shown in FIG. 1, in the present embodiment, the devices 21a and 21b are exemplified, and the operator α assigns device identifiers Idva and Idvb as the respective device identifiers Idv. The device identifiers Idva and Idvb uniquely identify the devices 21a and 21b on the contractor β side in the license information management system Sa. The above device identifiers Idva and Idvb are registered in the user information DB 113. Further, the business operator α assigns the group identifier Igp to the contract with the contractor β so that the contractor β and the related parties can use the content data Dcnt regardless of which of the devices 21a and 21b is used. Here, the contractor β and its related parties are referred to as a user β so that they can be comprehensively described. Using the device identifiers Idva and Idvb and the group identifier Igp, the operator α constructs the user information DB 113.
[0028]
More specifically, the user information DB 113 is a collection of a plurality of contractor records Rcs as shown in FIG. The contractor record Rcs is created for each contract, and typically includes a group identifier Igp, a device identifier number Ndv, and a plurality of device identifiers Idv. The group identifier Igp specifies that a plurality of device identifiers Idv included in the contractor record Rcs belong to the same group. The device identifier number Ndv indicates the number of devices 21 belonging to the group specified by the group identifier Igp. Each device identifier Idv specifies each device 21 belonging to the group specified by the group identifier Igp. From the contractor record Rcs described above, the usage right management apparatus 11 can grasp that the plurality of devices 21 belong to the same group. If the contractor uses only one device 21, the contractor record Rcs only needs to include the device identifier Idv assigned thereto.
[0029]
Reference is now made again to FIG. The device identifiers Idva and Idvb assigned by the operator α are further set in the device identifier storage 211 in the devices 21a and 21b on the user β side. It should be noted here that both device identifiers Idva and Idvb seem to be stored in the device identifier storage unit 211 in FIG. 4, but instead, the device identifier storage unit 211 of the device 21a has a device identifier Idva. Is set, and the device identifier Idvb is set in the device identifier storage 211 of the device 21b. Further, regarding the setting of the above device identifiers Idva and Idvb, for example, the operator α operates and sets the device 21a or 21b on the user β side. In addition, the operator α side transmits the device identifier Idva or Idvb assigned to the contractor β to the device 21a or 21b through the transmission line 31, and the device identifier Idva or Idvb is transmitted to the device 21a or 21b, respectively. You may make it set to the apparatus identifier storage part 211 automatically. Further, the device identifiers Idva and Idvb described above may be set in the respective device identifier storage units 211 when the device 21a or 21b is shipped from the factory. In such a case, the contractor β notifies the service provider α of the device identifiers Idva and Idvb set in the devices 21a and 21b at the time of the contract. The business entity α constructs the user information DB 113 using the notified device identifiers Idva and Idvb.
[0030]
FIG. 7B shows a usage right database 114, which will be described later.
[0031]
When the above preparation is completed, one of the devices 21a and 21b can set the usage right of the content data Dcnt to the usage right management apparatus 11 or acquire the content data Dcnt according to the operation of the user β. It becomes possible. Hereinafter, with reference to FIG. 8, data communication between the device 21a and the usage right management apparatus 11 at the time of setting and obtaining the usage right of the content data Dcnt will be described. First, the user β operates the device 21a to access the usage right management apparatus 11, and specifies the content identifier Icnt of what he wants to acquire this time from the content data Dcnt in the content DB 111. In the following description, the content data Dcnt designated this time is referred to as acquisition target content data Dcnt. Furthermore, the user β designates a use condition Ccnt when using the acquisition target content data Dcnt.
[0032]
Hereinafter, the use condition Ccnt will be described in more detail. The usage condition Ccnt is information indicating under what conditions the device 21a requests the setting of the usage right of the content data Dcnt. When the content data Dcnt represents music, the usage period Ccnt is typically a valid period, number of reproductions, maximum continuous reproduction time, total reproduction time, or reproduction quality. The usage condition Ccnt may be a combination of two or more of the effective period, the number of reproductions, the maximum continuous reproduction time, the total reproduction time, and the reproduction quality. The effective period as the use condition Ccnt is set, for example, from June 1, 2001 to August 31, 2001, and the device 21a can reproduce the content data Dcnt only during the set period. The number of times of reproduction is set to, for example, five times, and the device 21a can reproduce the content data Dcnt only for the set number of times. The maximum continuous playback time is set to 10 seconds, for example, and the device 21a can play back the content data Dcnt as long as it is up to the time set in one playback. Such maximum continuous playback time is particularly effective for music promotion. The total playback time is set to 10 hours, for example, and the device 21a can freely play back the content data Dcnt within the set time range. The reproduction quality is set to, for example, the quality of a CD (Compact Disc), and the device 21a can reproduce the content data Dcnt with the set reproduction quality.
[0033]
In the above description, the use condition Ccnt that can be set when the content data Dcnt represents music has been described. However, not limited to the above, it is preferable that the use condition Ccnt is appropriately set according to the contents represented by the content data Dcnt. For the sake of convenience, in the present embodiment, the following description will be continued assuming that the usage condition Ccnt is the number of times the content data Dcnt has been reproduced.
[0034]
As described above, the user β operates the device 21a to specify the content identifier Icnt and the usage rule Ccnt. In response to this designation, the device 21a generates a setting request Drra shown in FIG. 9A and transmits it to the usage right management apparatus 11 (FIG. 8; step S11). The setting request Drra is information for requesting the usage right management apparatus 11 to set the usage right of the acquisition target content data Dcnt. In the present embodiment, the distribution of the acquisition target content data Dcnt is further transmitted to the usage right management apparatus 11. It is also information to request. Step S11 will be described more specifically. First, the setting request generation unit 212 (see FIG. 4) receives the content identifier Icnt and the usage rule Ccnt specified by the user β. In addition, the setting request generation unit 212 receives the device identifier Idva from the device identifier storage unit 211. After that, the setting request generation unit 212 generates a setting request Drra (see FIG. 9A) by adding a setting request identifier Irr held in advance to the device identifier Idva, the content identifier Icnt, and the usage condition Ccnt. . Here, the setting request identifier Irr is used for the usage right management apparatus 11 to specify the setting request Drra. The setting request generation unit 212 passes the above setting request Drra to the communication unit 213. The communication unit 213 transmits the received setting request Drra to the usage right management apparatus 11 through the transmission path 31.
[0035]
In the usage right management apparatus 11 (see FIG. 2), the communication unit 115 receives the setting request Drra transmitted through the transmission path 31 and passes it to the user authentication unit 116. Upon receiving the setting request Drra, the user authentication unit 116 performs user authentication processing for determining whether or not the transmission source device 21a belongs to the contract user β (FIG. 8; step S12). More specifically, the user authentication unit 116 accesses the above-described user information DB 113 (see FIG. 7A), and the one that matches the device identifier Idva in the received setting request Drra is stored in the user information DB 113. Check if it is registered. The user authentication unit 116 authenticates that the current setting request Drra is transmitted from the device 21a of the user β only when a matching item is registered in the user information DB 113. When the above user authentication is completed, the user authentication unit 116 passes the received setting request Drra to the usage right management unit 117.
[0036]
Note that if the setting request Drra from other than the contract user β is received, the user authentication unit 116 fails in user authentication. In this case, the user authentication unit 116 discards the reception setting request Drra without passing it to the usage right management unit 117.
[0037]
The usage right management unit 117 recognizes that the current reception information is the setting request Drra by determining the setting request identifier Irr set in the reception information from the user authentication unit 116. According to the recognition result, the usage right management unit 117 (see FIG. 2) accesses the usage right database (hereinafter referred to as the usage right DB) 114, and performs a usage right registration process in the usage right DB 114 (step S13). . More specifically, the usage right management unit 117 extracts the device identifier Idva and the content identifier Icnt from the reception setting request Drra, and the usage right record Rrgt including them is registered in the usage right DB 114 (see FIG. 7B). It is determined whether it has been performed (step S131). Assuming that the usage right record Rrgt as a target is not yet registered in the usage right DB 114, the usage right management unit 117 executes step S132. Since the operation when the usage right record Rrgt has been registered in step S131 will be described together with the operation of the device 21b, the description thereof is omitted here.
[0038]
In step S132, the usage right management unit 117 first extracts the device identifier Idva, the content identifier Icnt, and the usage rule Ccnt from the reception setting request Drra, and then accesses the user information DB 113 (see FIG. 7A). Then, the usage right management unit 117 extracts the group identifier Igp and all the device identifiers Idva and Idvb from the contractor record Rcs including the device identifier Idva extracted this time (step S132). Next, the usage right management unit 117 combines the combination of the device identifier Idva, the content identifier Icnt and the usage condition Ccnt extracted from the reception setting request Drra with the group identifier Igp and the device identifiers Idva and Idvb obtained from the user information DB 113. The usage right record Rrgt is registered in the usage right DB 114 (step S133). Here, the usage right management unit 117 considers that the device 21a requests the right to use the acquisition target content data Dcnt with the usage condition Ccnt in the setting request Drra. From the above, the usage right management unit 117 handles the usage condition Ccnt extracted from the setting request Drra as the usage right information Drgt. That is, the usage right information Drgt indicates the right for the device 21a to use the content data Dcnt under the conditions indicated by the usage conditions Ccnt.
[0039]
By the above registration process, the usage right DB 114 becomes a collection of usage right records Rrgt including the group identifier Igp, the device identifiers Idva and Idvb, the content identifier Icnt, and the usage right information Drgt as shown in FIG. 7B. Thereby, the usage right management unit 117 manages the usage right for each acquisition target content data Dcnt of the contractor β. Further, as one of the features of the present embodiment, by adding all the device identifiers Idva and Idvb obtained from the user information DB 113 to the usage right record Rrgt, the device 21a and the device 21a and 21b can share the right to use the content data Dcnt. When the above usage condition registration process ends, the usage right management unit 117 passes the setting request Drra received this time to the content management unit 118.
[0040]
Assuming that “reproduction m times” (m is a natural number) is set in the current setting request Drra as the usage condition Ccnt, as shown in FIG. 7B, the usage right record Rrgt newly registered this time. Includes usage right information Drgt in which the condition of “playing m times” is specified.
[0041]
  Although not related to the technical features of the license information management system Sa, in step S13, the usage right management unit 117Right to useFor each registration, the contractor β to which the device identifier Idva is assigned may be charged for the use of the content data Dcnt.
[0042]
When the content management unit 118 receives the setting request Drra, the content management unit 118 performs a process of reading the content data Dcnt and its dedicated encryption key Ke (step S14). More specifically, the content management unit 118 extracts the content identifier Icnt from the reception setting request Drra. Thereafter, the content management unit 118 accesses the content DB 111 and reads the content data Dcnt and the encryption key Ke to which the extracted content identifier Icnt is assigned. When the above read processing is completed, the content management unit 118 passes the read content data Dcnt and the encryption key Ke to the content encryption unit 119. Further, the content management unit 118 passes the received setting request Drra to the transmission data generation unit 120.
[0043]
The content encryption unit 119 performs encryption processing of the content data Dcnt (step S15). More specifically, the content encryption unit 119 encrypts the received content data Dcnt with the encryption key Ke received at the same time, and generates the above-described encrypted content data Decnt. When the above encryption processing is completed, the content encryption unit 119 passes the encrypted content data Decnt to the transmission data generation unit 120.
[0044]
When the setting request Drra from the content management unit 118 and the encrypted content data Decnt from the content encryption unit 119 are prepared, the transmission data generation unit 120 performs transmission data generation processing (step S16). More specifically, the transmission data generation unit 120 extracts the content identifier Icnt and the device identifier Idva from the reception setting request Drra. Further, the transmission data generation unit 120 adds the extracted device identifier Idva and content identifier Icnt to the received encrypted content data Decnt, and generates transmission data Dtrna as shown in FIG. 9B. When the transmission data generation process is completed, the transmission data generation unit 120 passes the transmission data Dtrna to the communication unit 115. The communication unit 115 transmits the received transmission data Dtrna to the device 21a via the transmission path 31 (step S17).
[0045]
In the device 21a (see FIG. 4), the communication unit 213 receives the transmission data Dtrna transmitted through the transmission path 31 (step S18). More specifically, the communication unit 213 recognizes that the transmission data Dtrna addressed to itself including the acquisition target content data Dcnt has been received from the device identifier Idva and the content identifier Icnt included therein. According to such a recognition result, the communication unit 213 passes the received data Dtrna to the content management unit 214.
[0046]
The content management unit 214 stores the content identifier Icnt and the encrypted content data Decnt in the received data Dtrna in the content storage unit 215 (step S19). That is, in the content storage unit 215, as shown in FIG. 10, several combinations of the content identifier Icnt and the encrypted content data Decnt requested using the above-described setting request Drra are stored.
[0047]
From the viewpoint of protecting digital rights, encrypted content data Decnt is distributed to the device 21a. Therefore, when using the content data Dcnt, the device 21a needs to decrypt the encrypted content data Decnt with the decryption key Kd provided by the usage right management apparatus 11. Here, in the license information management system Sa, the license information Dlca is used to provide the decryption key Kd to the device 21a. Hereinafter, the operations of the device 21a and the usage right management apparatus 11 at the time of obtaining the license information Dlca and decrypting the content data Dcnt will be described with reference to FIGS.
[0048]
First, the user β operates the device 21 a to specify what he / she wants to use from encrypted content data Decnt stored in the content storage unit 215. Here, in the following description, the encrypted content data Decnt designated this time is referred to as decryption target content data Decnt. In response to the designation by the user β, the device 21a generates an issuance request Dira as shown in FIG. 14A and transmits it to the usage right management apparatus 11 (FIG. 11; step S21). The issue request Dira is information for the device 21a to request the usage right management apparatus 11 to issue the license information Dlca. More specifically, the content management unit 214 (see FIG. 4) extracts the content identifier Icnt added to the decryption target content data Decnt specified by the contractor β from the content storage unit 215 and generates an issuance request. To part 216. The issue request generation unit 216 receives the content identifier Icnt extracted by the content management unit 214. Further, the issue request generation unit 216 extracts the device identifier Idva from the device identifier storage unit 211. Thereafter, the issue request generation unit 216 generates the issue request Dira (see FIG. 14A) by adding the issue request identifier Iir to the combination of the device identifier Idva and the content identifier Icnt. Here, the issue request identifier Iir is used by the usage right management device 11 to identify the issue request Dira. The issue request generation unit 216 passes the above issue request Dira to the communication unit 213. The communication unit 213 transmits the received issue request Dira to the usage right management apparatus 11 through the transmission path 31.
[0049]
In the usage right management apparatus 11, the communication unit 115 (see FIG. 2) receives the issue request Dira transmitted through the transmission path 31 and passes it to the user authentication unit 116. Upon receiving the issuance request Dira, the user authentication unit 116 performs user authentication processing (step S22). Since the user authentication in step S22 is the same as that in step S12, detailed description thereof is omitted. The user authentication unit 116 passes the reception issue request Dira to the usage right management unit 117 only when the user authentication is successful.
[0050]
The usage right management unit 117 confirms the issuance request identifier Iir set therein and recognizes that the issuance request Dira is passed from the user authentication unit 116. According to the recognition result, the usage right management unit 117 extracts the device identifier Idva and the content identifier Icnt from the received issuance request Dira (step S23). Next, the usage right management unit 117 determines whether or not a usage right record Rrgt including the same combination of the extracted device identifier Idva and content identifier Icnt is registered in the usage right DB 114 (see FIG. 7B). Is determined (step S24).
[0051]
If the usage right management unit 117 determines “Yes” in step S24, the usage right information Drgt included in the target usage right record Rrgt can be referred to and whether or not the device 21a can be used. That is, it is determined whether or not the right to use the content data Dcnt remains (step S25). If it is determined “Yes” in step S25, the usage right management unit 117 refers to the target usage right information Drgt and generates usage permission information Dlwa (step S26). The usage permission information Dlwa is information for giving the device 21a permission to decrypt the content data Decnt to be decrypted. Also, since the usage right information Drgt of the device 21a is used by generating the usage permission information Drwa, the usage right management unit 117, after step S26, uses the usage right information Drgt by the amount used in step S26. Is updated (step S27). When all the usage right information Drgt is used at the time of execution of step S27, the usage right record Rrgt that contains it may be deleted from the usage right DB 114.
[0052]
Here, the specific example of the process of the above steps S25-S27 is demonstrated. According to the above assumption, in the usage right record Rrgt that is the current target, the usage right information Drgt represents a usage right of “reproduction m times” as shown in FIG. Accordingly, in step S25, the usage right management unit 117 determines that the device 21a may be permitted to reproduce the decryption target content data Decnt. In accordance with this determination, the usage right management unit 117 creates the usage permission information Dlwa in step S26. As the usage permission information Dlwa generated at this time, for example, “reproduction n times” can be mentioned. Here, n is a natural number that does not exceed m, and is, for example, a value specified by the user β by operating the device 21a. In addition, n may be set on the usage right management unit 117 side according to the processing capability of the device 21a. In step S26, the device 21a uses the right to reproduce the decryption target content data Decnt n times. Therefore, in step S27, the usage right management unit 117 updates the usage right information Drgt from “reproduction m times” to “reproduction (mn) times”.
[0053]
In the above specific examples, the usage right information Drgt has been described as the number of times the content data Dcnt has been reproduced. Can be set. Therefore, the processing procedure from step S23 to S27 needs to be appropriately defined according to the usage right information Drgt.
[0054]
The usage right management unit 117 (see FIG. 2) passes the above usage permission information Dlwa to the license information generation unit 121 together with the issue request Dira. More specifically, the license information generation unit 121 includes a hash value generation unit 1211 and a license information assembly unit 1212 as shown in FIG. Only the usage permission information Dlwa is passed to the hash value generation unit 1211, and both the usage permission information Dlwa and the issue request Dira are passed to the license information assembly unit 1212.
[0055]
First, the hash value generation unit 1211 generates the hash value Vhsa for preventing the use permission information Dlwa from being falsified by substituting the received use permission information Dlwa for the hash function f (x) held in advance ( Step S28). That is, the hash value Vhsa is a solution obtained when the use permission information Dlwa is substituted into the generator polynomial f (x). The hash value generation unit 1211 passes the hash value Vhsa as described above to the license information assembly unit 1212.
[0056]
The license information assembling unit 1212 passes the received issuance request Dira to the decryption key management unit 122. The decryption key management unit 122 (see FIG. 2) manages the above-described decryption key DB 112 (see FIG. 6B). The decryption key management unit 122 extracts the content identifier Icnt and the device identifier Idva set in the received issuance request Dira. Further, the decryption key management unit 122 extracts the decryption key Kd having the same set as the content identifier Icnt from the decryption key DB 112 and passes it to the decryption key encryption unit 123 together with the device identifier Idva. The decryption key encryption unit 123 encrypts the received decryption key Kd using the device identifier Idva received at the same time (step S29), and generates an encrypted decryption key Keda. The encrypted decryption key Keda and device identifier Idva are passed to the license information assembling unit 1212.
[0057]
When all of the issuance request Dira, the usage permission information Dlwa, the hash value Vhsa, and the encrypted decryption key Keda are prepared, the license information assembling unit 1212 starts generating the license information Dlca shown in FIG. 14B (FIG. 12; Step S210). More specifically, the license information assembling unit 1212 extracts the content identifier Icnt and the device identifier Idva from the issuance request Dira, and adds them to the combination of the usage permission information Dlwa, the encrypted decryption key Keda, and the hash value Vhsa, respectively. To do. Further, the license information assembling unit 1212 generates license information Dlca by adding the license information identifier Ilc held in advance to the device identifier Idva. The above license information Dlca is information for controlling the use of the decryption target content data Decnt in the device 21a. The license information identifier Ilc is information for the device 21a to specify the license information Dlca. The above license information Dlca is transmitted to the device 21a through the communication unit 115 and the transmission path 31 (step S211).
[0058]
In the device 21a (see FIG. 4), the communication unit 213 receives the license information Dlca transmitted through the transmission path 31 (step S212). More specifically, the communication unit 213 determines that the information addressed to itself has arrived from the device identifier Idva included in the received information, and further determines the current license information Dlca from the license information identifier Ilc set therein. Recognize that you received it. According to such a recognition result, the communication unit 213 passes the received license information Dlca to the license information processing unit 217.
[0059]
As illustrated in FIG. 5, the license information processing unit 217 includes a falsification determination unit 2171, a hash value generation unit 2172, a use permission determination unit 2173, and a decryption key decryption unit 2174. The license information Dlca from the communication unit 213 is first passed to the falsification determination unit 2171. First, the falsification determination unit 2171 extracts the usage permission information Dlwa and the hash value Vhsa from the received license information Dlca (step S213), passes the extracted usage permission information Dlwa to the hash value generation unit 2172, and receives the hash value Vhsa. Keep it as it is. Here, in order to avoid confusion in the following description, from the viewpoint that the hash value Vhsa extracted in step S213 is generated outside the device 21a (that is, the usage right management device 11), the external hash Called the value Vehsa.
[0060]
The hash value generation unit 2172 holds the same hash function f (x) as the hash value generation unit 1211 (see FIG. 3) on the usage right management apparatus 11 side, and the received usage permission information Dlwa is stored in the hash function f (x ) To generate a hash value Vhsa (step S214). Here, the hash value Vhsa generated in step S214 is referred to as an internal hash value Vlhsa from the viewpoint of being generated inside the device 21a. The hash value generation unit 2172 returns the internal hash value Vlhsa to the falsification determination unit 2171.
[0061]
Upon receiving the internal hash value Vlhsa, the falsification determination unit 2171 determines whether or not the usage permission information Dlwa has been falsified (step S215). More specifically, the internal hash value Vlhsa described above matches the external hash value Vehsa on the condition that the usage permission information Dlwa in the license information Dlca has not been falsified. Therefore, in step S215, the falsification determination unit 2171 determines whether or not the received internal hash value Vlhsa matches the external hash value Vehsa. If the falsification determining unit 2171 determines “Yes”, the usage permission information Dlwa is not falsified, and the usage permission information Dlwa transmitted this time is considered to be valid, and the license information Dlca received this time. Is passed to the use permission determination unit 2173.
[0062]
The use permission determination unit 2173 refers to the received license information Dlca to determine whether or not the use of the decryption target content data Decnt is permitted (step S216). The use permission determination unit 2173 extracts the encrypted decryption key Keda from the received license information Dlca and passes it to the decryption key decryption unit 2174 only when it determines “Yes” in step S216.
[0063]
  Here, a specific example of the processing in step S216 will be described. According to the above assumption, the reproduction of the content data Dcnt is permitted n times by the use permission information Dlwa of the current license information Dlca. In such a case, in step S216, the use permission determination unit 2173 determines that the use of the decryption target content data Decnt is permitted if the number of times of reproduction set in the use permission information Dlwa is 1 or more. License information DlcaTo encrypted decryption key K eda Take outThe data is passed to the decryption key decryption unit 2174.
[0064]
In the above specific examples, the usage right information Drgt has been described as the number of times the content data Dcnt has been reproduced. Can be set. Therefore, the process of step S216 needs to be appropriately defined according to the usage right information Drgt.
[0065]
The decryption key decryption unit 2174 receives the encrypted decryption key Keda from the use permission determination unit 2173. Further, the decryption key decryption unit 2174 extracts the device identifier Idva from the device identifier storage unit 211. Thereafter, the decryption key decryption unit 2174 decrypts the encrypted decryption key Keda with the device identifier Idva (step S217), and passes the decryption key Kd to the content decryption unit 218.
[0066]
By the way, the content management unit 214 takes out the current decryption target content data Decnt from the content storage unit 215 after or before the above step S217 (an example immediately after step S217 is shown in FIG. 12). (Step S218). The extracted decryption target content data Decnt is passed to the content decryption unit 218. The content decryption unit 218 decrypts the content data Decnt to be decrypted with the decryption key Kd received from the decryption key decryption unit 2174 (step S219), and passes the content data Dcnt to the content reproduction unit 219. The content reproduction unit 219 reproduces the received content data Dcnt and outputs the sound (step S220). As a result, the contractor β can listen to the music represented by the content data Dcnt purchased from the business operator α.
[0067]
Here, reference is made to step S215 of FIG. In step S215, the falsification determination unit 2171 may determine that the usage permission information Dlwa has been falsified. In step S216, the use permission determination unit 2173 may determine that the use of the decryption target content data Decnt is not permitted. In such a case, the falsification determining unit 2171 and the use permission determining unit 2173 discard the license information Dlca received this time (FIG. 13; step S221). As is apparent from the above, in the license information management system Sa, decryption of the decryption target content data Decnt is permitted only when valid license information Dlca is received. This protects the digital rights described above.
[0068]
In step S24 in FIG. 11, the usage right management unit 117 may determine that the usage right record Rrgt is not registered in the usage right DB 114 (see FIG. 7B). Further, in step S25, the usage right management unit 117 may determine that usage permission cannot be given to the device 21a. In such a case, the usage right management unit 117 generates usage refusal information Drj (see FIG. 14C) indicating that the use of the decryption target content data Decnt is rejected and passes it to the communication unit 115. The communication unit 115 transmits the received use refusal information Drj to the device 21a via the transmission path 31 (FIG. 13; step S222).
[0069]
In the device 21a (see FIG. 4), the communication unit 213 receives the use refusal information Drj transmitted through the transmission path 31 (step S223). After the use refusal information Drj is received, no processing is performed in the device 21a. As is apparent from the above, in this license information management system Sa, when a valid usage right record Rrgt is not registered in the usage right DB 114, the usage rejection information Drj is the device 21a that is the transmission source of the issuance request Dira. Sent to. As a result, the decryption target content data Decnt is not decrypted on the device 21a side. This protects the digital rights described above.
[0070]
In step S24, after determining that the usage right record Rrgt is not registered in the usage right DB 114 (see FIG. 7B), the usage right management unit 117 newly generates the usage right record Rrgt, It may be registered in the usage right DB 114.
[0071]
Next, by registering the usage right record Rrgt, the data communication between the device 21b and the usage right management device 11 sharing the usage right of the content data Dcnt with the device 21a and the respective operations related thereto will be described. To do. Since the operation of the following device 21b is almost the same as the operation of the above-described device 21a, the description of the operation is simplified. First, the user β operates the device 21b to specify the content identifier Icnt and the usage rule Ccnt. In response to this designation, the device 21b generates a setting request Drrb and transmits it to the usage right management apparatus 11 (FIG. 8; step S11). Since the setting request Drrb is different from the setting request Drra only in that it includes a device identifier Idvb that uniquely identifies the device 21b instead of the device identifier Idva, detailed description thereof is omitted. The device 21b may generate a setting request Drrb that does not include the usage condition Ccnt when it is known in advance that the usage right record Rrgt that can be used by the device 21b is registered in the usage right DB 114.
[0072]
In the usage right management apparatus 11 (see FIG. 2), the user authentication unit 116 receives the setting request Drrb from the device 21b through the communication unit 115. Thereafter, the user authentication unit 116 performs user authentication processing for determining whether or not the device 21b is the contract user β (step S12). The user authentication unit 116 passes the received setting request Drrb to the usage right management unit 117 only when the user authentication process is successful.
[0073]
When the usage right management unit 117 recognizes that the current reception information is the setting request Drrb, the usage right management unit 117 performs step S13. In step S13, the usage right management unit 117 first determines whether or not the usage right record Rrgt including the device identifier Idvb and the content identifier Icnt in the reception setting request Drrb is registered in the usage right DB 114 (see FIG. 7B). Is determined (step S131). As described above, the usage right record Rrgt including the device identifier Idvb and the content identifier Icnt has already been registered in the usage right DB 114 due to the setting request Drra of the device 21a. In this case, the usage right management unit 117 passes the current setting request Drrb to the content management unit 118 without performing steps S132 to S133.
[0074]
After receiving the setting request Drrb, the content management unit 118 reads the content data Dcnt and the encryption key Ke (step S14) and passes them to the content encryption unit 119. Further, the content management unit 118 passes the reception setting request Drrb to the transmission data generation unit 120. The content encryption unit 119 performs encryption processing of the content data Dcnt (step S15). When the content encryption unit 119 completes the process, it passes the encrypted content data Decnt and the reception setting request Drrb to the transmission data generation unit 120.
[0075]
The transmission data generation unit 120 generates transmission data Dtrnb (see FIG. 9B) as described above (step S16). The transmission data Dtrnb is different from the transmission data Dtrna only in that it includes the device identifier Idvb instead of the device identifier Idva, and thus detailed description thereof is omitted. After step S16, the transmission data generation unit 120 passes the transmission data Dtrnb to the communication unit 115, and the communication unit 115 transmits the received transmission data Dtrnb to the device 21b as described above (step S17).
[0076]
In the device 21b (see FIG. 4), the communication unit 213 receives the transmission data Dtrnb (step S18), and then passes the reception data Dtrnb to the content management unit 214. The content management unit 214 stores the content identifier Icnt and the encrypted content data Decnt in the received data Dtrnb in the content storage unit 215 (step S19).
[0077]
From the viewpoint of protecting digital rights, the device 21b cannot use the content data Dcnt unless it receives the license information Dlcb from the usage right management device 11, as in the case of the device 21a. Hereinafter, the operations of the device 21b and the usage right management apparatus 11 when acquiring the license information Dlcb and decrypting the content data Dcnt will be described with reference to FIGS. The operation at this time is the same as the operation of the device 21a and the usage right management apparatus 11, and thus the description of the operation is simplified.
[0078]
First, the user β operates the device 21b to specify the decryption target content data Decnt from the content storage unit 215. In response to the designation of the user β, in the device 21b, the issue request generation unit 216 generates an issue request Dirb (see FIG. 14A) and transmits it to the usage right management apparatus 11 (FIG. 11; step S21). . The issue request Dirb is different from the issue request Dira only in that the device identifier Idva is replaced with the device identifier Idvb, and thus detailed description thereof is omitted. The issue request generation unit 216 passes the above issue request Dirb to the communication unit 213. The communication unit 213 transmits the reception issue request Dirb to the usage right management apparatus 11.
[0079]
In the usage right management apparatus 11, the user authentication unit 116 (see FIG. 2) receives the issue request Dirb transmitted by the device 21b through the communication unit 115, and then performs user authentication processing (step S22). The user authentication unit 116 passes the reception issue request Dirb to the usage right management unit 117 only when the user authentication process is successful. The usage right management unit 117 extracts the device identifier Idvb and the content identifier Icnt from the reception issuance request Dirb (step S23). Thereafter, the usage right record Rrgt including the same combination of the extracted device identifier Idvb and content identifier Icnt is stored. Then, it is determined whether or not it is registered in the usage right DB 114 (see FIG. 7B) (step S24).
[0080]
If the usage right management unit 117 determines “Yes” in step S24, the usage right information Drgt included in the target usage right record Rrgt can be referenced to determine whether or not the device 21b can be used. That is, it is determined whether or not the right to use the content data Dcnt remains (step S25). When it is determined “Yes” in step S25, the usage right management unit 117 generates the usage permission information Dlwb using the target usage right information Drgt (step S26). The usage permission information Dlwb differs from the usage permission information Dlwa only in that the device identifier Idva is replaced with the device identifier Idvb, and thus detailed description thereof is omitted. Following step S26, the usage right management unit 117 updates the usage right information Drgt by the amount used in step S26 (step S27).
[0081]
The usage right management unit 117 (see FIG. 2) passes the above usage permission information Dlwb to the license information generation unit 121 together with the issuance request Dirb. In the license information generation unit 121, the hash value generation unit 1211 (see FIG. 3) substitutes the received usage permission information Dlwb for the hash function f (x) held in advance to prevent falsification of the usage permission information Dlwb. To generate the hash value Vhsb (step S28), and passes it to the license information assembling unit 1212.
[0082]
The license information assembling unit 1212 passes the received issue request Dirb to the decryption key management unit 122. The decryption key management unit 122 (see FIG. 2) manages the above-described decryption key DB 112 (see FIG. 6B), and extracts the content identifier Icnt and the device identifier Idvb from the reception issue request Dirb. Further, the decryption key management unit 122 extracts the decryption key Kd having the same set as the content identifier Icnt from the decryption key DB 112 and passes it to the decryption key encryption unit 123 together with the device identifier Idvb. The decryption key encryption unit 123 encrypts the received decryption key Kd using the device identifier Idvb received at the same time (step S29), and generates an encrypted decryption key Kedb. The encrypted decryption key Kedb and device identifier Idvb are passed to the license information assembling unit 1212.
[0083]
The license information assembling unit 1212 generates the license information Dlcb (see FIG. 14B) when the issue request Dirb, the usage permission information Dlwb, the hash value Vhsb, and the encrypted decryption key Kedb are all prepared (FIG. 12; step). S210). When the license information Dlcb is compared with the license information Dlca, the device identifier Idva, the usage permission information Dlwa, the encrypted decryption key Keda and the hash value Vhsa are converted into the device identifier Idvb, the usage permission information Dlwb, the encrypted decryption key Kedb and the hash value Vhsb. Since only the differences are present, detailed description thereof is omitted. The above license information Dlcb is transmitted to the device 21b through the communication unit 115 and the transmission path 31 (step S211).
[0084]
In the device 21b (see FIG. 4), the communication unit 213 receives the license information Dlcb transmitted through the transmission path 31 (step S212), and passes it to the license information processing unit 217. In the license information processing unit 217, the falsification determining unit 2171 extracts the usage permission information Dlwb and the hash value Vhsb from the received license information Dlcb (step S213), and passes the extracted usage permission information Dlwb to the hash value generation unit 2172. The hash value Vhsb is held as the external hash value Vehsb. The hash value generation unit 2172 holds the same hash function f (x) as that on the usage right management apparatus 11 side, substitutes the received usage permission information Dlwb into the hash function f (x), and sets the internal hash value Vlhsb. It is generated (step S214) and returned to the falsification determination unit 2171.
[0085]
In the same manner as described above, when the internal hash value Vlhsb is received, the falsification determination unit 2171 determines whether or not it matches the external hash value Vehsb (step S215). The received license information Dlcb is passed to the usage permission determination unit 2173 assuming that the current usage permission information Dlwb is valid. In the same manner as described above, the use permission determination unit 2173 determines whether or not the use of the decryption target content data Decnt is permitted (step S216). Only when it is determined “Yes”, the received license information Dlcb is determined. Then, the encrypted decryption key Kedb is taken out and passed to the decryption key decryption unit 2174. The decryption key decryption unit 2174 receives the encrypted decryption key Kedb from the use permission determination unit 2173. Further, the decryption key decryption unit 2174 extracts the device identifier Idvb from the device identifier storage unit 211. Thereafter, the decryption key decryption unit 2174 decrypts the encrypted decryption key Kedb with the device identifier Idvb (step S217), and passes the resulting decryption key Kd to the content decryption unit 218.
[0086]
The content management unit 214 retrieves the current decryption target content data Decnt from the content storage unit 215 (step S218) and passes it to the content decryption unit 218. The content decryption unit 218 decrypts the content data Decnt to be decrypted with the decryption key Kd from the decryption key decryption unit 2174 (step S219), and passes the content data Dcnt to the content reproduction unit 219. The content reproduction unit 219 reproduces the received content data Dcnt and outputs the sound (step S220).
[0087]
As described above, according to the present embodiment, a plurality of device identifiers Idva and Idvb are recorded in the usage right record Rrgt. As a result, even when the issuance requests Dira and Dirb are transmitted from the different devices 21a and 21b, the usage right management device 11 is generated from the same usage right information Drgt by referring to the usage right record Rrgt. License information Dlca and Dlcb can be provided to them. According to the embodiment described above, it is possible to provide a rights management technique that allows a plurality of devices to share a common digital rights.
[0088]
In the above embodiment, the usage right record Rrgt includes the group identifier Igp. This is for clarifying that the devices 21a and 21b belong to the same group. That is, the group identifier Igp is not essential information for the usage right record Rrgt. Further, the usage right record Rrgt may specify the devices 21a and 21b belonging to the same group using only the group identifier Igp without including the device identifiers Idva and Idvb of the devices 21a and 21b.
[0089]
In the above embodiment, two devices 21a and 21b are given as representative examples of the plurality of devices 21. However, the present invention is not limited to this, and the same usage right information Drgt is shared by three or more devices. You may make it do.
[0090]
In the above embodiment, for convenience of illustration, it has been described that the usage right management device 11 includes the content DB 111. However, the present invention is not limited to this, and the content data Dcnt may be distributed from another server to the devices 21a and 21b. good.
[0091]
In the above embodiment, the example in which the devices 21a and 21b registered at the time of contract in the user information DB 113 share the same usage right information Drgt has been described. However, the device 21 on the user β side does not necessarily receive content distribution by only the two devices 21a and 21b, and there are cases where it is desired to use the content data Dcnt using the newly acquired device 21. The usage right management apparatuses 11a to 11d described below are first to fourth modified examples of the above-described usage right management apparatus 11, and are provided to meet the above-described needs.
"First variant"
[0092]
FIG. 15 is a block diagram showing the overall configuration of the license information management system Sa1 that accommodates the usage right management apparatus 11a. Compared with the license information management system Sa of FIG. 1, the license information management system Sa1 of FIG. 15 includes a usage right management device 11a instead of the usage right management device 11, and further includes a device 21c. Is different. Since there is no difference between the license information management systems Sa and Sa1 other than that, in FIG. 15, the components corresponding to those in FIG. FIG. 15 shows the communication cable 32. Since this is a configuration used in the fourth modification, not only in this modification but also in the second and third modifications. Description of the cable 32 is omitted.
[0093]
The usage right management device 11a is installed on the above-mentioned business operator α side. As shown in FIG. 16, the usage right management device 11a includes a user information management unit 124 and a registration completion generation unit 125. Furthermore, it differs in the point provided. Other than that, there is no difference between the two usage right management apparatuses 11 and 11a. Therefore, in FIG. 16, the illustration and description of the configuration that is not related to the present modification among the components corresponding to the configuration of FIG. 2 are omitted.
[0094]
The device 21c is owned by the above-mentioned user β, but is currently unregistered in the user information DB 113 of the usage right management device 11a, and is compared with the device 21a or 21b of FIG. 4 as shown in FIG. As described above, the registration request generation unit 220 and the group identifier storage unit 221 are further provided. Other than that, there is no difference between the devices 21a and 21b and the device 21c. Therefore, in FIG. 17, the illustration and description of the configuration that is not related to the modified example among the components corresponding to the configuration of FIG. 4 are omitted. The device identifier storage unit 211 of the device 21c stores in advance a device identifier Idvc for uniquely identifying the device 21c, and the group information storage unit 221 stores the group identifier Igp assigned to the user β. Assume that it is stored.
[0095]
Next, operations of the device 21c and the usage right management apparatus 11a until the device 21c is registered in the user information DB 113 in the license information management system Sa1 having the above configuration will be described with reference to FIG. First, the device 21c stores in the group identifier storage unit 221 the group identifier Igp that the user β is notified from the operator α in accordance with the operation of the user β. Thereafter, the user β operates the device 21c to specify that the device 21c is registered in the user information DB 113. In response to this designation, in the device 21c, the registration request generator 220 generates a registration request Drsc shown in FIG. 19A and transmits it to the usage right management device 11a (FIG. 18; step S31). The registration request Drsc is information for requesting the usage right management apparatus 11a to register the device 21c in the user information DB 113. Step S31 will be described more specifically. First, the registration request generation unit 220 extracts the device identifier Idvc from the device identifier storage unit 211, further extracts the group identifier Igp from the group identifier storage unit 221, and then extracts the extracted group. A registration request identifier Irs held in advance is added to the combination of the identifier Igp and the device identifier Idvc to generate a registration request Drsc (see FIG. 19A). Here, the registration request identifier Irs is used by the usage right management device 11a to identify the registration request Drsc. The registration request generation unit 220 passes the above registration request Drsc to the communication unit 213. The communication unit 213 transmits the received registration request Drsc to the usage right management apparatus 11a through the transmission path 31.
[0096]
In the usage right management apparatus 11a (see FIG. 16), the communication unit 115 receives the information transmitted through the transmission path 31, and the current reception information is the registration request Drsc from the registration request identifier Irs included therein. Recognize In accordance with this recognition result, the communication unit 115 passes the reception registration request Drsc to the user information management unit 124. After retrieving the group identifier Igp from the reception registration request Drsc, the user information management unit 124 accesses the user information DB 113 and searches for a contractor record Rcs (see FIG. 7A) including the retrieved group identifier Igp. (Step S32). Further, the user information management unit 124 extracts the device identifier number Ndv from the retrieved contractor record Rcs (step S33).
[0097]
Next, the user information management unit 124 determines whether or not the extracted device identifier number Ndv is greater than or equal to a predetermined upper limit value Vul (step S34). Here, the upper limit value Vul is an upper limit value of the number of devices that the user β can register in the user information DB 113. If the user information management unit 124 determines in step S34 that the device identifier number Ndv is not equal to or greater than the upper limit value Vul, the user information management unit 124 extracts the device identifier Idvc from the reception registration request Drsc, and the extracted subscriber identifier Rcs is the target. (Step S35). Furthermore, the user information management unit 124 increments the device identifier number Ndv by 1 (step S36). As a result, the contractor record Rcs is updated from the one shown in FIG. 7A to the one shown in FIG. Thereafter, the user information management unit 124 notifies the registration completion generation unit 125 that the contractor record Rcs has been correctly updated, and further passes the device identifier Idvc in the reception registration request Drsc to the registration completion generation unit 125.
[0098]
Upon receiving notification from the user information management unit 124 that the update of the contractor record Drsc has been completed, the registration completion generation unit 125 generates a registration completion notification Dscc shown in FIG. 19B and transmits it to the device 21c ( Step S37). The registration completion notification Dscc is information for notifying the device 21c that the device 21c has been correctly registered in the user information DB 113. Step S37 will be described in more detail. First, the registration completion generation unit 125 adds a registration completion identifier Isc held in advance to the device identifier Idvc received from the user information management unit 124 to register a registration completion notification Dscc (FIG. 19 (b)). Here, the registration completion identifier Isc is used by the device 21c to identify the registration completion notification Dscc. The registration completion generation unit 125 passes the above registration completion notification Dscc to the communication unit 115. The communication unit 115 transmits the received registration completion notification Dscc to the device 21c through the transmission line 31.
[0099]
In the device 21c (see FIG. 17), the communication unit 213 receives information transmitted through the transmission path 31, and recognizes from the registration completion identifier Isc included therein that the current reception information is the registration completion notification Dscc. To do. In accordance with the recognition result, the communication unit 213 passes the reception registration completion notification Dscc to the setting request generation unit 212. The setting request generator 212 recognizes that the current registration completion notice Dscc has been received from the registration completion identifier Isc set in the reception information (step S38). According to the recognition result, the setting request generation unit 212 determines that step S11 in FIG. 8 can be executed, and thereafter, similarly to the device 21a or the device 21b described in the first embodiment, a usage right management device. Data communication with 11a is performed.
[0100]
As described above, according to this modification, the device identifier Idvc of the newly acquired device 21c can be registered in the user information DB 113 by the data communication between the usage right management device 11a and the device 21c. Thus, it becomes possible to provide a license information management system Sa1 that is easier to use.
[0101]
If it is determined in step S34 that the device identifier number Ndv is greater than or equal to the upper limit value Vul, the user information management unit 124 updates the contractor record Rcs without performing the processes in steps S35 to S36. The registration completion generator 125 is notified of the rejection, and the device identifier Idvc in the reception registration request Drsc is passed to the registration completion generator 125. When the update completion of the contractor record Drsc is notified, the registration completion generation unit 125 generates a registration rejection notification Dsrc shown in FIG. 19C and transmits it to the device 21c through the communication unit 213 and the transmission path 31 ( Step S39). The registration refusal notification Drsc is information for notifying the device 21c that the device 21c cannot be registered in the user information DB 113, and includes the device identifier Idvc received from the user information management unit 124 and the registration refusal identifier Isr held in advance. Including. In the device 21c (see FIG. 17), the setting request generation unit 212 receives the registration rejection notification Dsrc through the communication unit 213 (step S310), and the setting request generation unit 212 executes step S11 of FIG. 8 according to the notification. It is determined that this is not possible, and the process is terminated.
[0102]
In step S32, when the user information management unit 124 cannot find the contractor record Rcs (see FIG. 7A) including the extracted group identifier Igp, the user information management unit 124 performs the same process as in step S39. The registration of the device identifier Idvc in the user information DB 113 is preferably rejected.
[0103]
In the above first modification, the device identifier Idvc is registered in the user information DB 113 when the device 21c and the usage right management apparatus 11a perform data communication. However, the present invention is not limited to this, and the device identifier Idvc is registered in the user information DB 113 in cooperation with the device 21c and the other device 21a or device 21b as in the following second to fourth modifications. You may do it.
[0104]
"Second variant"
Next, the overall configuration of the license information management system Sa2 that accommodates the usage right management apparatus 11b according to the second modification will be described. Compared with the license information management system Sa in FIG. 1, the license information management system Sa2 further includes a usage right management device 11b in place of the usage right management device 11, as shown in FIG. It differs in that it has. Since there is no difference between the two license information management systems Sa and Sa2, the same reference numerals are assigned to the components corresponding to the configuration of FIG. 1 in FIG.
[0105]
The usage right management device 11b is installed on the above-mentioned business operator α side. As shown in FIG. 21, the usage right management device 11b and the registration completion generation unit 127 are compared with the usage right management device 11 shown in FIG. Furthermore, it differs in the point provided. Other than that, there is no difference between the two usage right management devices 11 and 11b. Therefore, in FIG. 21, the illustration and description of the configuration that is not related to the modified example among the components corresponding to the configuration of FIG. 2 are omitted.
[0106]
As described in the first embodiment, the device 21a or the device 21b is owned by the user β, and the device identifiers Idva and Idvb are already registered in the user information DB 113 of the usage right management apparatus 11b ( FIG. 7 (a)). Further, the device 21a or 21b is compared with FIG. 4 for registering the device identifier Idvc of the device 21c, as shown in FIG. 22, as shown in FIG. 22, the device identifier input unit 222, the temporary registration request generation unit 223, and the temporary registration. The difference is that it further includes a completion output unit 224. Other than that, there is no difference between the devices 21a and 21b according to the present modification and those according to the first embodiment. Therefore, in FIG. 22, the illustration and description of the configuration irrelevant to the present modification among the configurations corresponding to those in FIG. 4 are omitted.
[0107]
The device 21c is owned by the above-mentioned user β, but is currently unregistered in the user information DB 113 of the usage right management apparatus 11b and is compared with the device 21a or 21b of FIG. 4 as shown in FIG. As described above, the apparatus identifier input unit 225 and the main registration request generation unit 226 are further provided. Other than that, there is no difference between the devices 21a and 21b and the device 21c. Therefore, in FIG. 23, the illustration and description of the configuration irrelevant to the present modification among the components corresponding to the configuration of FIG. 4 are omitted.
[0108]
Next, referring to FIG. 24 and FIG. 25, in the license information management system Sa2 having the above-described configuration, the devices 21a, 21c and usage right management until the device identifier Idvc of the device 21c is registered in the user information DB 113. The operation of the device 11b will be described. The user β operates the device 21a to designate that the device identifier Idvc is provisionally registered in the user information DB 113. In association with this designation, the device identifier input unit 222 of the device 21a notifies the temporary registration request generation unit 223 of the device identifier Idvc of the device 21c input by the user β operating the device 21a (FIG. 24). Step S41). Here, in the following description, the device identifier Idvc of the device 21c is referred to as a registration target identifier Idvc. In response to the above notification, the temporary registration request generation unit 223 generates a temporary registration request Dprsc shown in FIG. 26A and transmits it to the usage right management apparatus 11b (step S42). The temporary registration request Dprsc is information for requesting the usage right management apparatus 11b to temporarily register the registration target identifier Idvc in the user information DB 113. Step S42 will be specifically described. First, the temporary registration request generation unit 223 extracts the device identifier Idva from the device identifier storage unit 211, and then handles the extracted device identifier Idva as the registered identifier Idva. Then, the temporary registration request generation unit 223 generates a temporary registration request Dprsc (see FIG. 26A) by adding the temporary registration request identifier Iprs held in advance to the combination of the registered identifier Idva and the registration target identifier Idvc. To do. Here, the temporary registration request identifier Iprs is used by the usage right management apparatus 11b to identify the temporary registration request Dprsc. The temporary registration request generation unit 223 passes the temporary registration request Dprsc described above to the communication unit 213. The communication unit 213 transmits the received temporary registration request Dprsc to the usage right management apparatus 11b through the transmission path 31.
[0109]
In the usage right management device 11b (see FIG. 21), the communication unit 115 recognizes that the temporary registration request Dprsc has been received this time because the temporary registration request identifier Iprs is included in the reception information from the transmission path 31. . According to this recognition result, the communication unit 115 passes the temporary reception registration request Dprsc to the user information management unit 126. After retrieving the registered identifier Idva from the reception temporary registration request Dprsc, the user information management unit 126 accesses the user information DB 113 and contractor record Rcs including the retrieved registered identifier Idva (see FIG. 7A). Is searched (step S43). Thereafter, the user information management unit 126 performs the same processing as steps S33 and S34 in FIG. 18 (steps S44 and S45), and when it is determined in step S45 that the device identifier number Ndv is not less than the upper limit value Vul. Then, the same processing as step S39 in FIG. 18 is performed (step S46). In this case, the device 21a performs the same process as step S310 in FIG. 18 (step S47).
[0110]
On the other hand, when it is determined in step S45 that the device identifier number Ndv is less than the upper limit value Vul, the registration target identifier Idvc is extracted from the reception provisional registration request Dprsc, and is temporarily registered. The temporary registration flag Fps indicating the device identifier Idvc is added to the target contractor record Rcs (step S48). The contractor record Rcs is updated from the one shown in FIG. 7A to the one shown in FIG. Thereafter, the user information management unit 126 notifies the registration completion generation unit 127 that the temporary registration of the registration target identifier Idvc has been completed, and further notifies the registration completion generation unit 127 of the registered identifier Idva in the reception temporary registration request Dprsc. hand over.
[0111]
Upon receiving notification from the user information management unit 126 that temporary registration has been completed, the registration completion generation unit 127 generates a temporary registration completion notification Dpscc shown in FIG. 26B and transmits it to the device 21a (step S49). . The temporary registration completion notification Dpscc is information for notifying the device 21a that the registration target identifier Idvc has been temporarily registered in the user information DB 113. The step S48 will be described more specifically. First, the registration completion generation unit 127 adds a temporary registration completion identifier Ipsc held in advance to the registered identifier Idva received from the user information management unit 126, and notifies the provisional registration completion notification. Dpscc (see FIG. 26B) is generated. Here, the temporary registration completion identifier Ipsc is used by the device 21a to specify the temporary registration completion notification Dpscc. The above temporary registration completion notification Dpscc is transmitted from the registration completion generation unit 127 to the device 21a through the communication unit 115 and the transmission path 31.
[0112]
In the device 21a (see FIG. 22), the communication unit 213 uses the temporary registration completion identifier Ipsc and the registered identifier Idva included in the reception information from the transmission line 31 to receive the current reception information as a temporary registration completion notification Dpscc addressed to itself. Recognize that there is. In accordance with the recognition result, the communication unit 213 passes the reception temporary registration completion notification Dpscc to the temporary registration completion output unit 224. In response to the reception temporary registration completion Dpscc, the temporary registration completion output unit 224 outputs that the temporary registration of the device identifier Idvc has been completed with an image or sound (step S410), and notifies the user β of this. Thereby, the processing on the device 21a side is completed.
[0113]
When recognizing the completion of provisional registration, the user β operates the device 21c to specify that the device identifier Idvc is to be fully registered in the user information DB 113. In connection with this designation, the device identifier input unit 225 of the device 21c sends the device identifier (registered identifier) Idva of the device 21a input by the user β operating the device 21c to the registration request generation unit 226. Notification is made (FIG. 25; step S51). In response to this notification, the main registration request generator 226 generates a main registration request Dcrsc shown in FIG. 28A and transmits it to the usage right management device 11b (step S52). The main registration request Dcrsc is information for requesting the usage right management apparatus 11b to perform main registration of the device identifier Idvc in the user information DB 113. Step S52 will be described in detail. First, the main registration request generation unit 226 extracts a device identifier (that is, a registration target identifier) Idvc from the device identifier storage unit 211, and is notified of the extracted registration target identifier Idvc. A main registration request identifier Icrs held in advance is added to the combination with the registered identifier Idva to generate a main registration request Dcrsc (see FIG. 28A). Here, the main registration request identifier Icrs is used by the usage right management apparatus 11b to identify the main registration request Dcrsc. The main registration request generation unit 226 transmits the main registration request Dcrsc described above to the usage right management apparatus 11b through the communication unit 213 and the transmission path 31.
[0114]
In the usage right management apparatus 11b (see FIG. 21), the communication unit 115 recognizes from the main registration request identifier Icrs included in the information received from the transmission path 31 that the current reception information is the main registration request Dcrsc. According to this recognition result, the received main registration request Dcrsc is passed to the user information management unit 126. The user information management unit 126 extracts both the device identifiers Idva and Idvc from the received main registration request Dcrsc, and then stores them in the user information DB 113. Access is made to search for a contractor record Rcs (see FIG. 27A) including both the taken-out device identifiers Idva and Idvc (step S53). Thereafter, the user information management unit 126 deletes the temporary registration flag Fps from the searched contractor record Rcs (step S54), and further increments the device identifier number Ndv included therein by 1 (step S55). As a result, the main registration of the device identifier Idvc is completed, and as a result, the contractor record Rcs is updated from the one shown in FIG. 27A to the one shown in FIG. Thereafter, the user information management unit 126 notifies the registration completion generation unit 127 that the main registration of the registration target identifier Idvc has been completed, and further notifies the registration completion generation unit 127 of the registration target identifier Idvc in the received main registration request Dcrsc. hand over.
[0115]
When the registration completion generation unit 127 is notified from the user information management unit 126 that the main registration is completed, the registration completion generation unit 127 generates a main registration completion notification Dcscc shown in FIG. 28B and transmits it to the device 21c (step S56). . The main registration completion notification Dcscc is information for notifying the device 21c that the main registration of the device identifier Idvc has been completed in the user information DB 113. Step S56 will be described more specifically. First, the registration completion generation unit 127 treats the registration target identifier Idvc received from the user information management unit 126 as a registered identifier Idvc, and stores this registration completion identifier Icsc in advance. Is added to generate a main registration completion notification Dcscc (see FIG. 28B). Here, the main registration completion identifier Icsc is used by the device 21c to specify the main registration completion notification Dcscc. The main registration completion notification Dcscc is transmitted to the device 21c through the communication unit 213 and the transmission path 31.
[0116]
In the device 21c (see FIG. 23), the communication unit 213 receives information transmitted through the transmission path 31, and the received information of this time is addressed to itself from the main registration completion identifier Icsc and the registration target identifier Idvc included therein. Recognize that the registration completion notification Dcscc. In accordance with this recognition result, the communication unit 213 passes the received main registration completion notification Dcscc to the setting request generation unit 212. The setting request generation unit 212 recognizes that the main registration completion notification Dcscc has been received this time from the main registration completion identifier Icsc set in the reception information (step S57). According to the recognition result, the setting request generation unit 212 determines that step S11 in FIG. 8 can be executed, and thereafter, similarly to the device 21a or the device 21b described in the first embodiment, a usage right management device. Data communication with 11b is performed.
[0117]
In the additional registration of the device identifier Idvc according to the first modification described above, the usage right management apparatus 11a does not determine whether or not the device 21c is really owned by the user β, and changes the device identifier Idvc to the user β. It was registered in the contractor record Rcs. However, in this modification, the registered identifier Idva and the registration target identifier Idvc are set in the temporary registration request Dprsc transmitted by the device 21a at the time of temporary registration, and the main registration request Dcrsc transmitted by the device 21c at the time of main registration. In addition, by setting the registered identifier Idva and the registration target identifier Idvc, it is possible to prove that there is a relationship between the devices 21a and 21c. Thereby, the usage right management apparatus 11b can determine that the device 21c is owned by the user β of the device 21a. As described above, in this modified example, it is possible to provide the license information management system Sa2 in which the device 21 that is not owned by the user β is difficult to be registered in the subscriber record Rcs of the user β and the device identifier can be additionally registered.
[0118]
In the above modification, the example in which the device 21a operates for the additional registration of the device identifier Idvc of the device 21c has been described. However, the present invention is not limited to this, and the device 21b can be involved in the additional registration of the device identifier Idvc by operating in the same manner as the device 21a.
[0119]
"Third variant"
Next, the overall configuration of the license information management system Sa3 that accommodates the usage right management apparatus 11c according to the third modification will be described. Compared with the license information management system Sa of FIG. 1, the license information management system Sa3 further includes a usage right management device 11c instead of the usage right management device 11, as shown in FIG. It differs in that it has. Since there is no difference between the two license information management systems Sa and Sa3, the same reference numerals are assigned to the components corresponding to the configuration of FIG. 1 in FIG.
[0120]
As shown in FIG. 29, the usage right management device 11c is installed on the above-described provider α side, and as shown in FIG. 29, a user information management unit 128, a password notification generation unit 129, The difference is that the registration completion generation unit 130 is further provided. Other than that, there is no difference between the two usage right management devices 11 and 11c. Therefore, in FIG. 29, the illustration and description of the configuration that is not related to this modified example among the components corresponding to the configuration of FIG. 2 are omitted.
[0121]
As described in the first embodiment, the device 21a or the device 21b is owned by the user β, and the device identifiers Idva and Idvb are registered in the user information DB 113 of the usage right management apparatus 11c ( FIG. 7 (a)). Further, the device 21a or 21b has a password input unit 227, a registration request generation unit 228, and a registration completion output unit as shown in FIG. 30 in order to register the device identifier Idvc of the device 21c, as shown in FIG. 229 is further provided. Other than that, there is no difference between the devices 21a and 21b according to the present modification and those according to the first embodiment. Therefore, in FIG. 30, the illustration and description of the configuration irrelevant to the present modification among the configurations corresponding to those in FIG. 4 are omitted.
[0122]
The device 21c is owned by the user β described above, but is currently unregistered in the user information DB 113 of the usage right management device 11c, and is compared with the device 21a or 21b of FIG. 4 as shown in FIG. As described above, the apparatus identifier input unit 230, the password request generation unit 231, and the password notification unit 232 are further provided. Other than that, there is no difference between the devices 21a and 21b and the device 21c. Therefore, in FIG. 31, the illustration and description of the configuration irrelevant to the present modification among the components corresponding to the configuration of FIG. 4 are omitted.
[0123]
Next, with reference to FIG. 32 and FIG. 33, in the license information management system Sa3 having the above configuration, the devices 21a, 21c and usage right management until the device identifier Idvc of the device 21c is registered in the user information DB 113. The operation of the device 11c will be described. The user β operates the device 21c to specify that the device identifier Idvc is provisionally registered in the user information DB 113. In relation to this designation, the device identifier input unit 230 of the device 21c generates a password request by generating a device identifier (hereinafter referred to as a registered identifier) Idva of the device 21a input by the user β operating the device 21c. This is notified to the unit 231 (FIG. 32; step S61). In response to the above notification, the password request generation unit 231 generates a password request Drps shown in FIG. 34A and transmits it to the usage right management apparatus 11c (step S62). The password request Drps is information for requesting the usage right management apparatus 11c to issue a password Wpss necessary for registering the registration target identifier Idvc in the user information DB 113. Step S62 will be specifically described. First, the password request generation unit 231 extracts the registration target identifier Idvc from the device identifier storage unit 211, and then uses the extracted registration target identifier Idvc and the notified registered identifier Idva. A password request identifier Irps held in advance is added to the set, and a password request Drps (see FIG. 34A) is generated. Here, the password request identifier Irps is used by the usage right management apparatus 11c to identify the password request Drps. The password request generation unit 231 transmits the above password request Drps to the communication unit 115 of the usage right management apparatus 11c through the communication unit 213 and the transmission path 31.
[0124]
In the usage right management device 11c (see FIG. 29), the communication unit 115 recognizes that the password request Drps is received this time from the password request identifier Irps in the received information. According to the recognition result, the communication unit 115 passes the received password request Drps to the user information management unit 128. The user information management unit 128 retrieves the registered identifier Idva from the received password request Drps, and then accesses the user information DB 113 to obtain the contractor record Rcs (see FIG. 7A) including the retrieved registered identifier Idva. Search is performed (step S63). Thereafter, the user information management unit 128 performs the same processing as steps S33 and S34 in FIG. 18 (steps S64 and S65), and when it is determined in step S65 that the device identifier number Ndv is equal to or greater than the upper limit value Vul. Performs the same process as step S39 of FIG. 18 (step S66). In this case, the device 21c performs the same process as step S310 in FIG. 18 (step S67).
[0125]
On the other hand, if it is determined in step S65 that the device identifier number Ndv is not greater than or equal to the upper limit value Vul, the user information management unit 128 performs step S68, and first generates the password Wpss described above. Typically, the password Wpss is preferably a combination of characters or symbols randomly selected by the user information management unit 128. Further, after extracting the registration target identifier Idvc from the received password request Drps, the user information management unit 128 adds the extracted one and the generated password Wpss to the contractor record Rcs searched in step S63, and registers them. Temporary registration of the target identifier Idvc is performed (step S68). As a result, the contractor record Rcs is updated from the one shown in FIG. 7A to the one shown in FIG. Thereafter, the user information management unit 128 notifies the password notification generation unit 129 that the temporary registration of the registration target identifier Idvc has been completed, and further, the registration target identifier Idvc in the received password request Drps and the password Wpss generated in step S68. Is passed to the password notification generation unit 129.
[0126]
When notified by the user information management unit 128 that provisional registration has been completed, the password notification generation unit 129 generates a password notification Dpss shown in FIG. 34B and transmits it to the device 21c (step S69). The password notification Dpss is information for notifying the device 21c of the password Wpss generated for registration of the registration target identifier Idvc. Step S69 will be described in more detail. First, the password notification generation unit 129 adds a previously held password notification identifier Ipss to the combination of the registration target identifier Idvc and the password Wpss received from the user information management unit 126, and A password notification Dpss (see FIG. 34B) is generated. Here, the password notification identifier Ipss is used by the device 21c to identify the password notification Dpss. The password notification Dpss is transmitted from the password notification generation unit 129 to the communication unit 213 of the device 21c through the communication unit 115 and the transmission path 31.
[0127]
In the device 21c (see FIG. 31), the communication unit 213 recognizes from the password notification identifier Ipss and the registration target identifier Idvc in the received signal that the current reception information is the password notification Dpss addressed to itself. In accordance with this recognition result, the communication unit 213 passes the received password notification Dpss to the password notification unit 232. The password notification unit 232 notifies the user β of the password Wpss included in the password notification Dpss by outputting an image or a sound (step S610). Thereby, the processing on the device 21c side is completed. In step S610, in addition to the notification of the password Wpss, the password notification unit 232 may notify the user β by image or sound that the temporary registration of the registration target identifier Idvc has been completed.
[0128]
When recognizing the completion of provisional registration, the user β operates the device 21a to specify that the device identifier Idvc is to be fully registered in the user information DB 113. In relation to this designation, the password input unit 227 of the device 21a notifies the registration request generation unit 228 of the password Wpss input by the user β operating the device 21a (FIG. 33; step S71). In response to this notification, the registration request generator 228 generates a registration request Drsc shown in FIG. 36A and transmits it to the usage right management apparatus 11c (step S72). The registration request Drsc is information for requesting the usage right management apparatus 11c to perform main registration of the registration target identifier Idvc in the user information DB 113. Step S72 will be described in detail. First, the registration request generation unit 228 extracts the device identifier (that is, registered identifier) Idva from the device identifier storage unit 211, and then extracts the extracted one and the notified password Wpss and the like. A registration request identifier Irs (see FIG. 36A) is generated by adding a registration request identifier Irs held in advance. Here, the registration request identifier Irs is used by the usage right management apparatus 11c to identify the registration request Drsc. The registration request generation unit 228 transmits the above registration request Drsc to the usage right management apparatus 11c through the communication unit 213 and the transmission path 31.
[0129]
In the usage right management apparatus 11c (see FIG. 29), the communication unit 115 recognizes from the registration request identifier Irs included in the received information that the current received information is the registration request Drsc. According to this recognition result, the reception registration request Drsc is passed to the user information management unit 128. The user information management unit 128 extracts both the registered identifier Idva and the password Wpss from the reception registration request Drsc, and then stores them in the user information DB 113. Access is made to search for a contractor record Rcs (see FIG. 35A) including the retrieved registered identifier Idva and password Wpss (step S73). Thereafter, the user information management unit 128 deletes the password Wpss from the searched contractor record Rcs (step S74), and further increments the device identifier number Ndv included therein by 1 (step S75). Thus, the main registration of the device identifier Idvc is completed, and as a result, the contractor record Rcs is updated from the one shown in FIG. 35A to the one shown in FIG. Thereafter, the user information management unit 128 notifies the registration completion generation unit 130 that the main registration of the registration target identifier Idvc has been completed, and further passes the registered identifier Idva in the reception registration request Drsc to the registration completion generation unit 130. .
[0130]
When notified that the main registration is completed from the user information management unit 128, the registration completion generation unit 130 generates a registration completion notification Dscc shown in FIG. 36B and transmits it to the device 21a (step S76). The registration completion notification Dscc is information for notifying the device 21a that the main registration of the device identifier Idvc has been completed in the user information DB 113. Step S76 will be described in more detail. First, the registration completion generation unit 130 adds a registration completion identifier Isc that is held in advance to the registered identifier Idva received from the user information management unit 128 to register the registration completion notification Dscc ( 36 (b)) is generated. Here, the registration completion identifier Isc is used by the device 21a to identify the main registration completion notification Dscc. The above registration completion notification Dscc is transmitted to the communication unit 213 of the device 21a through the communication unit 115 and the transmission path 31.
[0131]
In the device 21a (see FIG. 30), the communication unit 213 recognizes from the registration completion identifier Isc and the registered identifier Idva included in the reception information that the current reception information is the registration completion notification Dscc addressed to itself. In accordance with the recognition result, the communication unit 213 passes the received main registration completion notification Dscc to the registration completion output unit 229. The registration completion output unit 229 recognizes that the current registration completion notification Dscc has been received from the registration completion identifier Isc in the received information, and outputs an image or sound output indicating that the main registration of the registration target identifier Idvc has been completed ( In step S77), the fact is notified to the user β. As a result, the device 21c becomes ready to execute step S11 of FIG. The device 21c performs the same processing as the device 21a or the device 21b described in the first embodiment and uses the content data Dcnt as necessary.
[0132]
According to the third modified example described above, the device 21a registered in the user information DB 113 of the usage right management apparatus 11c is involved in the registration of the device identifier Idvc of the unregistered device 21c. Similarly, it becomes possible to provide the license information management system Sa3 in which the device 21 that is not owned by the user β is difficult to be registered in the contract record Rcs of the user β and the device identifier can be additionally registered.
[0133]
In the above modification, the example in which the device 21a operates for the additional registration of the device identifier Idvc of the device 21c has been described. However, the present invention is not limited to this, and the device 21b can be involved in the additional registration of the device identifier Idvc by operating in the same manner as the device 21a.
[0134]
"Fourth variant"
Next, the overall configuration of the license information management system Sa4 that accommodates the usage right management apparatus 11d according to the fourth modification will be described. Compared with the license information management system Sa in FIG. 1, the license information management system Sa4 further includes a usage right management device 11d in place of the usage right management device 11, as shown in FIG. The difference is that the devices 21 a and 21 c are communicably connected via the communication cable 32. Since there is no difference between the two license information management systems Sa and Sa4 other than that, in FIG. 15, the same reference numerals are assigned to the components corresponding to the configuration in FIG.
[0135]
As shown in FIG. 37, the usage right management device 11d is installed on the above-mentioned provider α side, and compared with the usage right management device 11 in FIG. 2, a user information management unit 131 and a registration completion generation unit 132 are provided. Furthermore, it differs in the point provided. Other than that, there is no difference between the two usage right management devices 11 and 11d. Therefore, in FIG. 37, the illustration and description of the configuration that is not related to the present modification among the components corresponding to the configuration of FIG. 2 are omitted.
[0136]
As described in the first embodiment, the device 21a or 21b is owned by the user β, and the device identifiers Idva and Idvb are registered in the user information DB 113 of the usage right management apparatus 11d (see FIG. 7 (a)). Further, the device 21a or 21b is compared with FIG. 4 for registering the device identifier Idvc of the device 21c, as shown in FIG. 38, as shown in FIG. 38, the communication unit 228, the registration request generation unit 229, and the registration completion notification unit 230. Are different in that they are further provided. Other than that, there is no difference between the devices 21a and 21b according to the present modification and those according to the first embodiment. Therefore, in FIG. 38, the illustration and description of the configuration irrelevant to the present modification among the configurations corresponding to those in FIG. 4 are omitted.
[0137]
The device 21c is owned by the above-mentioned user β, but at present, the device identifier Idvc assigned to itself is not registered in the user information DB 113 of the usage right management device 11d, and the device 21a or 21b in FIG. In comparison, as shown in FIG. 39, the registration request generation unit 231 and the communication unit 232 are further provided. Other than that, there is no difference between the devices 21a and 21b in FIG. 4 and the device 21c. Therefore, in FIG. 39, the illustration and description of the configuration irrelevant to the present modification among the components corresponding to the configuration of FIG. 4 are omitted.
[0138]
Next, with reference to FIG. 40, in the license information management system Sa4 having the above-described configuration, the devices 21a, 21c and the usage right management device 11d until the device identifier Idvc of the device 21c is registered in the user information DB 113 are described. The operation will be described. The user β operates the device 21c to specify that the device identifier Idvc is registered in the user information DB 113. In response to this designation, the registration request generator 231 of the device 21c generates the first registration request Drsc1 shown in FIG. 41A and transmits it to the device 21a through the communication cable 32 (FIG. 40; step S81). ). The first registration request Drsc1 is information for requesting the device 21a instead of the device 21c to register the registration target identifier Idvc in the user information DB 113. Step S81 will be described in detail. First, the registration request generation unit 231 extracts a device identifier (hereinafter referred to as a registration target identifier) Idvc from the device identifier storage unit 211, and then stores it in advance on the extracted registration target identifier Idvc. The first registration request identifier Irs1 to be held is added to generate the first registration request Drsc1 (see FIG. 41A). Here, the first registration request identifier Irs1 is used by the device 21a to identify the first registration request Drsc1. The registration request generation unit 231 transmits the first registration request Drsc1 described above to the device 21a through the communication unit 232 and the communication cable 32.
[0139]
In the device 21a (see FIG. 38), the communication unit 228 recognizes that the first registration request Drsc1 has been received this time from the first registration request identifier Irs1 in the received information (step S82). In accordance with the recognition result, the communication unit 228 passes the received first registration request Drsc1 to the registration request generation unit 229. In response to this, the registration request generator 229 generates a second registration request Drsc2 shown in FIG. 41B and transmits it to the usage right management apparatus 11d through the transmission line 31 (step S83). The second registration request Drsc2 is information for requesting the usage right management apparatus 11d to register the registration target identifier Idvc in the user information DB 113. Step S83 will be specifically described. First, the registration request generation unit 229 extracts a device identifier (hereinafter referred to as a registered identifier) Idva from the device identifier storage unit 211, and then uses the extracted registered identifier Idva as the current time. In addition to the received first registration request Drsc1, a second registration request Drsc2 (see FIG. 41B) is generated. Here, in the second registration request Drsc2, the first registration request identifier Irs1 is used by the usage right management device 11d to identify the second registration request Drsc2. The registration request generation unit 229 transmits the above-described second registration request Drsc2 to the usage right management apparatus 11d (see FIG. 37) through the communication unit 213 and the transmission path 31.
[0140]
In the usage right management apparatus 11d, the communication unit 115 recognizes that the second registration request Drsc2 has been received this time from the first registration request identifier Irs1 in the reception information from the transmission line 31. According to the recognition result, the communication unit 115 passes the received second registration request Drsc2 to the user information management unit 131. In response to this, the user information management unit 131 extracts the registered identifier Idva from the received second registration request Drsc2, accesses the user information DB 113, and then performs the same processing as steps S63 to S65 in FIG. Steps S84 to S86). If the user information management unit 131 determines in step S86 that the device identifier number Ndv is not greater than or equal to the upper limit value Vul, the user information management unit 131 extracts the registration target identifier Idvc from the received second registration request Drsc2, and then extracts the extracted identifier. In addition, the registration target identifier Idvc is registered in addition to the contractor record Rcs searched in step S84 (step S87). As a result, the contractor record Rcs is updated from the one shown in FIG. 7A to the one shown in FIG. Thereafter, the user information management unit 131 notifies the registration completion generation unit 132 that the registration of the registration target identifier Idvc is completed, and further generates the registered identifier Idva in the received second registration request Drsc2. To part 132.
[0141]
When the registration completion generation unit 132 is notified of registration completion from the user information management unit 131, the registration completion generation unit 132 generates a registration completion notification Dscc shown in FIG. 41 (c) and transmits it to the device 21a (step S88). The registration completion notification Dscc is information for notifying the device 21a that registration of the registration target identifier Idvc in the user information DB 113 is completed. Step S88 will be described in more detail. First, the registration completion generation unit 132 adds a registration completion identifier Isc held in advance to the registered identifier Idva received from the user information management unit 131 to register the registration completion notification Dscc ( 41C) is generated. Here, the registration completion identifier Isc is used by the device 21a to identify the registration completion notification Dscc. The above registration completion notification Dscc is transmitted from the registration completion generation unit 132 to the communication unit 213 of the device 21a through the communication unit 115 and the transmission path 31.
[0142]
  In the device 21a (see FIG. 38), the communication unit 213 recognizes from the registration completion identifier Isc and the registered identifier Idva in the received signal that the current reception information is the registration completion notification Dscc addressed to itself. According to the recognition result, the communication unit 213 passes the reception registration completion notification Dscc to the registration completion notification unit 230. Accordingly, registration completion notificationPart230 outputs an image output or a sound output indicating that the registration of the registration target identifier Idvc is completed, thereby notifying the user β (step S).89). As a result, the user β recognizes that the device identifier Idvc of the device 21c has been registered, and the device 21c becomes ready to execute step S11 in FIG. The device 21c performs the same processing as the device 21a or the device 21b described in the first embodiment and uses the content data Dcnt as necessary.
[0143]
If it is determined in step S86 that the device identifier number Ndv is equal to or greater than the upper limit value Vul, a registration rejection notification Drsc is transmitted from the usage right management device 11d to the device 21a as in the previous embodiment ( Steps S810 and S811).
[0144]
According to the above-described fourth modified example, the device 21a registered in the user information DB 113 of the usage right management apparatus 11d is involved in the registration of the device identifier Idvc of the unregistered device 21c, so that the second modified example. Similarly, it becomes possible to provide the license information management system Sa4 in which the device 21 that is not owned by the user β is difficult to be registered in the contract record Rcs of the user β and the device identifier can be additionally registered. Furthermore, in this modified example, as can be understood by comparing the combination of FIG. 32 and FIG. 33 with FIG. 40, the devices 21a and 21c are communicably connected by the cable 32, so that the device identifier Idvc is registered. The necessary processing can be reduced.
[0145]
In the above modification, the example in which the device 21a operates for the additional registration of the device identifier Idvc of the device 21c has been described. However, the present invention is not limited to this, and the device 21b can be involved in the additional registration of the device identifier Idvc by operating in the same manner as the device 21a.
[0146]
In the above modification, the communication cable 32 is used to connect the devices 21a and 21c so that they can communicate with each other. However, the present invention is not limited to this, and the devices 21a and 21c may perform wireless communication. In addition, the devices 21 a and 21 c may communicate via the transmission path 31.
[0147]
Further, in the above variation, the registration completion notification Dscc is transmitted from the usage right management device 11d to the device 21a. However, the present invention is not limited to this, and it may be transmitted from the usage right management device 11d to the device 21c. The registration completion notification Dscc transmitted to the device 21a may be transferred to the device 21c. In this case, the completion of registration is notified to the user β from the device 21c by voice or image.
[0148]
In the above second to fourth modification examples, the processing for additionally registering the device identifier Idvc of the single device 21c in the user information DB 113 has been described. However, the device identifiers Idv of two or more devices 21 are changed. Also in the case of adding, the second to fourth modification examples can be easily applied.
[0149]
Further, in the above second to fourth modification examples, it has been described that the device 21a or the device 21b may be involved in the additional registration of the device identifier Idvc. However, the present invention is not limited to this, and one of the devices 21a and 21b is given authority to participate in the additional registration of the device identifier Idv so that only the authorized device 21 can participate in the additional registration of the device identifier Idv. good.
[0150]
In the above first to fourth modified examples, in addition to the information shown in FIG. 7A, user information related to the user β is further registered in the user information DB 113, and the device 21a or 21c is registered. Transmits the user information input by the user β when accessing the usage right management devices 11a to 11d. The usage right management apparatuses 11a to 11d may check whether the device 21c is owned by the same user β as the device 21a by checking the received user information with the user information stored in advance. good.
[0151]
In the first embodiment, the example in which the devices 21a and 21b registered in the user information DB 113 at the time of contract share the same usage right information Drgt has been described. However, the user β may want to delete the device identifier Idvb of the already registered device 21b from the user information DB 113 or the usage right DB 114. The usage right management device 11e described below is a fifth modification of the above-described usage right management device 11, and is provided to meet the above-described needs.
[0152]
"Fifth variant"
FIG. 42 is a block diagram showing the overall configuration of the license information management system Sa5 that accommodates the usage right management device 11e. The license information management system Sa5 is different from the license information management system Sa of FIG. 1 only in that the usage right management device 11 is replaced with the usage right management device 11e. Other than that, there is no difference between both license information management systems Sa and Sa5. Therefore, in FIG. 42, components corresponding to the configuration of FIG.
[0153]
The usage right management device 11e is installed on the above-described provider α side, and further includes a device identifier deletion unit 133 and a deletion completion creation unit 134 as shown in FIG. 43 as compared with the usage right management device 11 of FIG. It is different in point. Other than that, there is no difference between the two usage right management apparatuses 11 and 11e. Therefore, in FIG. 43, the illustration and description of the configuration that is not related to the present modified example among the components corresponding to the configuration of FIG. 2 are omitted.
[0154]
As described in the first embodiment, the device 21a or 21b is owned by the user β, and the device identifiers Idva and Idvb are registered in the user information DB 113 of the usage right management apparatus 11e (FIG. 7 (a)). Furthermore, the devices 21a and 21b share the usage right record Rrgt registered in the usage right DB 114 of the usage right management apparatus 11e (see FIG. 7B). Also, the device 21b differs from the device identifier Idvb in that the device 21b further includes a deletion request generation unit 233 and a deletion completion notification unit 234 as shown in FIG. Other than that, there is no difference between the device 21b according to the present modification and the device according to the first embodiment. Therefore, in FIG. 44, the illustration and description of the configuration irrelevant to the present modification among the components corresponding to the configuration of FIG. 4 are omitted.
[0155]
Next, referring to FIG. 45, in the license information management system Sa5 having the above configuration, the device 21b and the usage right management device 11e until the device identifier Idvb of the device 21b is deleted from the user information DB 113 and the usage right DB 114. Will be described. The user β operates the device 21b to specify that the device identifier Idvb is deleted from the user information DB 113 and the usage right DB 114. In response to this designation, in the device 21b, the deletion request generator 233 generates a deletion request Drwb shown in FIG. 46A and transmits it to the usage right management device 11e (FIG. 45; step S91). The deletion request Drwb is information for requesting the usage right management apparatus 11e to delete the device 21b from the user information DB 113 and the usage right DB 114. The step S91 will be described more specifically. First, the deletion request generation unit 233 extracts the device identifier Idvb from the device identifier storage unit 211, and then deletes the device identifier Idvb as a deletion target identifier Idvb. Is added to generate a deletion request Drwb (see FIG. 46A). Here, the deletion request identifier Irw is used by the usage right management device 11e to identify the deletion request Drwb. The deletion request Drwb is transmitted from the deletion request generation unit 233 to the usage right management apparatus 11e through the communication unit 213 and the transmission path 31.
[0156]
In the usage right management device 11e (see FIG. 43), the communication unit 115 recognizes from the deletion request identifier Irw included in the reception information from the transmission path 31 that the current reception information is the deletion request Drwb. In accordance with this recognition result, the communication unit 115 passes the reception deletion request Drwb to the device identifier deletion unit 133. After retrieving the deletion target identifier Idvb from the reception deletion request Drwb, the device identifier deletion unit 133 searches the contractor record Rcs (see FIG. 7A) in the user information DB 113 for the extracted deletion target identifier Idvb. Delete (step S92). Further, the device identifier deletion unit 133 decrements the device identifier number Ndv included in the contractor record Rcs searched in step S92 by 1 (step S93). As a result, the contractor record Rcs is updated from the one shown in FIG. 7A to the one shown in FIG.
[0157]
Furthermore, the device identifier deletion unit 133 searches and deletes the deletion target identifier Idvb extracted from the reception deletion request Irwb from the usage right record Rrgt in the usage right DB 114 (step S94). As a result, the usage right record Rrgt is updated from the one shown in FIG. 7B to the one shown in FIG. Thereafter, the device identifier deletion unit 133 notifies the deletion completion generation unit 134 of the fact that the contractor record Rcs and the usage right record Rrgt have been correctly updated and the deletion target identifier Idvb in the reception registration request Drsc.
[0158]
When notified that the deletion of the deletion target identifier Idvb is completed, the deletion completion generation unit 134 generates a deletion completion notification Dswb shown in FIG. 46B and transmits it to the device 21b (step S95). The deletion completion notification Dswb is information for notifying the device 21b that the deletion target identifier Idvb has been deleted. Step S95 will be described in more detail. First, the deletion completion generation unit 134 adds a deletion completion identifier Isw that is held in advance to the received deletion target identifier Idvb, and delete deletion notification Dswb (see FIG. 46B). ) Is generated. Here, the deletion completion identifier Isw is used by the device 21b to identify the deletion completion notification Dswb. The above deletion completion notification Dswb is transmitted to the device 21b through the communication unit 115 and the transmission path 31.
[0159]
In the device 21b (see FIG. 43), the communication unit 213 recognizes from the deletion completion identifier Isw included in the reception information from the transmission path 31 that the current reception information is the deletion completion notification Dswb. In accordance with this recognition result, the communication unit 213 passes the reception deletion completion notification Dswb to the deletion completion notification unit 234. The deletion completion notification unit 234 receives the deletion completion notification Dswb (step S96), and then outputs an image or sound indicating that the device identifier Idvb has been deleted normally and notifies the user β to that effect.
[0160]
As described above, according to this modification, the device identifier Idvb of the device 21b that is no longer needed by the user β is deleted from the user information DB 113 and the usage right DB 114 by data communication between the usage right management device 11e and the device 21b. This makes it possible to provide a license information management system Sa5 that is more convenient to use.
[0161]
In the above modification, the device 21b itself generates a deletion request Drwb for the device identifier Idvb and transmits it to the usage right management device 11e. However, the device 21a is not limited to the device 21b. Alternatively, the deletion request Drwb may be generated and transmitted to the usage right management apparatus 11e. Further, the authority to generate the deletion request Drwb may be given to one of the devices 21a and 21b, and only the device 21a or 21b to which the authority is given can transmit the deletion request Drwb to the usage right management apparatus 11e.
[0162]
In the above modification, the deletion request Drwb has been described as having one deletion target identifier Idvb. However, the present invention is not limited to this, and a plurality of device identifiers Idv may be set. Further, when the deletion request Drwb includes the group identifier Igp described in the first embodiment, the usage right management apparatus 11e deletes the contractor record Rcs including the group identifier Igp from the user information DB 113. Furthermore, all of the usage right records Rrgt including the group identifier Igp may be deleted from the usage right DB 114.
[0163]
“Second Embodiment”
FIG. 48 is a block diagram showing the overall configuration of the license information management system Sb that accommodates the usage right management apparatus 41 according to the second embodiment of the present invention. In FIG. 48, the license information management system Sb includes, in addition to the usage right management device 41, two devices 51a and 51b as an example of a plurality of devices 51, and a transmission path 61. The usage right management apparatus 41 is installed on the business operator α side involved in content distribution. The devices 51a and 51b are typically used by a contractor β who receives content distribution based on a contract with the business operator α. The transmission path 61 is wired or wireless, and connects the usage right management device 41 and the device 51a or the device 51b so that data communication is possible.
[0164]
Next, a detailed configuration of the usage right management apparatus 41 in FIG. 48 will be described with reference to FIG. Compared with the usage right management device 11 of FIG. 2, the usage right management device 41 of FIG. 49 replaces the usage right database 114 and the usage right management unit 117 with a usage right database (hereinafter referred to as usage right DB) 411 and The difference is that a usage right management unit 412 is provided. Other than that, there is no structural difference between the two usage right management apparatuses 11 and 41. Therefore, in FIG. 49, components corresponding to the configuration of the usage right management apparatus 11 in FIG. 2 are denoted by the same reference numerals, the description thereof is omitted, and the configuration that does not need to be described in the present embodiment is illustrated. Is omitted.
[0165]
Next, the detailed configuration of the devices 51a and 51b in FIG. 48 will be described with reference to FIG. The devices 51a and 51b in FIG. 50 are different from the devices 21a and 21b in FIG. 4 in that a setting request generation unit 511 is provided instead of the setting request generation unit 212. In addition, there is no structural difference between the devices 51a and 51b and the devices 21a and 21b. Therefore, in FIG. 50, the components corresponding to the configuration of the device 21a or 21b in FIG. 4 are denoted by the same reference numerals, the description thereof will be omitted, and the configuration that will not be described in the present embodiment is illustrated. Omitted.
[0166]
Next, also in the license information management system Sb, as in the case of the license information management system Sa described above, the contractor β makes preparations necessary for receiving content distribution from the business operator α. In this preparation work, the content DB 111, the decryption key DB 112, and the user information DB 113 shown in FIGS. 6A, 6B, and 7A are constructed. Since these details have already been described in detail in the first embodiment, a description thereof will be omitted in this embodiment.
[0167]
Further, in the above preparatory work, the business operator α may assign device identifiers Idva and Idvb for uniquely identifying the devices 51a and 51b. The above device identifier Idva is set in the device identifier storage unit 211 of the device 51a shown in FIG. 50, and the device identifier Idvb is set in the device identifier storage unit 211 of the device 51b. The device identifiers Idva and Idvb may be set in each device identifier storage unit 211 at the time of factory shipment.
[0168]
When the above preparation is completed, one of the devices 51a and 51b can acquire the content data Dcnt from the usage right management device 41 in accordance with the operation of the user β. Hereinafter, data communication between the device 51a and the usage right management apparatus 41 at the time of acquisition of the content data Dcnt and respective operations related thereto will be described with reference to the flowchart of FIG. Note that the data communication between the device 51b and the usage right management apparatus 41 at the time of acquisition of the content data Dcnt and the respective operations related thereto are the same as those of the device 51a, and thus the description thereof is omitted. Here, FIG. 51 is different from FIG. 8 in that step S101 and step S103 are further included and step S102 is included instead of step S13. Since there is no difference between the two flowcharts other than that, in FIG. 51, the steps corresponding to the steps in FIG.
[0169]
The user β operates the device 51a to access the usage right management apparatus 41, and designates the content identifier Icnt of what he wants to acquire this time from the content data Dcnt in the content DB 111. In the following description, the content data Dcnt designated this time is referred to as acquisition target content data Dcnt. Furthermore, the user β designates a use condition Ccnt (see the first embodiment) when using the acquisition target content data Dcnt.
[0170]
In response to this designation, the setting request generation unit 511 of the device 51a determines whether or not the sharing target identifier Idv is included in the current designation (step S101). Here, the sharing target identifier Idv is the device identifier Idv of the device 51 other than the device 51 that executes this step S101, and the device identifier Idv of the device 51 registered in the usage right record Rrgta to be shared. It is. As is clear from the above, since the sharing target identifier Idv is not included in what is specified this time, the setting request generation unit 511 receives the first setting request Drra () having the same format as in FIG. Is generated and transmitted to the usage right management apparatus 41 through the transmission path 61 (step S11). In the present embodiment, the setting request identifier Irr included in the first setting request Drra specifies that the usage right management device 41 indicates that the received information is one of the first setting request Drra and the second setting request Drr2b. Used to do.
[0171]
  In the usage right management device 41 (see FIG. 49), the user authentication unit 116 performs authentication processing in response to the reception of the first setting request Drra from the transmission path 61 (step S12), and then receives the received first 1 setting request Drra is passed to the usage right management unit 412. Based on the setting request identifier Irr in the reception information from the user authentication unit 116, the usage right management unit 412 confirms that the current reception information is either the first setting request Drra or the second setting request Drr2b. recognize. In accordance with the recognition result, the usage right management unit 412 performs a usage right registration process in the usage right database (hereinafter referred to as the usage right DB) 114 (step S102). In step S102, more specifically, the usage right management unit 412 determines whether or not the first setting request Drra has been received this time (step S1021). Here, in step S1021, the received information does not include the sharing target identifier Idvb.AbsentIn this case, the usage right management unit 412 determines that the first setting request Drra has been received. On the other hand, it does not include the sharing target identifier IdvbRuIn this case, the usage right management unit 412 determines that a second setting request Drr2b described later has been received. In this case, since the usage right management unit 412 determines that the first setting request Drra has been received, step S1022 is performed.
[0172]
  In step S1022, the usage right management unit 412 extracts the device identifier Idva, the content identifier Icnt, and the usage condition Ccnt from the received first setting request Drra. Furthermore, the usage right management unit 412, TakeAs a usage right record RrgtaIn usage rights DB114Registration is performed (step S1022). Here, as in the first embodiment, the usage rule Ccnt is used as usage right information Drgt. By the above step S1022, the usage right DB 114 becomes a collection of usage right records Rrgta including the device identifier Idva and / or the device identifier Idvb, the content identifier Icnt, and the usage right information Drgt as shown in FIG. By the way, in the first embodiment, as described in steps S132 and S133 in FIG. 8, the usage right management unit 117 belongs to the same group from the user information DB 113 in response to receiving the setting request Drra of the device 21a. All device identifiers Idva and Idvb were taken out and all of them were registered in the usage right record Rrgt. On the other hand, in the second embodiment, the usage right management unit 412 registers only the device identifier Idva that is the transmission source of the first setting request Drra in the usage right record Rrgt at the time of step S1022. In this respect, the first and second embodiments are significantly different.
[0173]
When the above step S1022 is completed, the usage right management unit 412 passes the first setting request Drra received this time to the content management unit 118. Thereafter, the usage right management apparatus 41 executes steps S14 to S17 in the same manner as the usage right management apparatus 11, and then the device 51a executes steps S18 to S19 in the same manner as the device 21a. As a result, the device 51a receives the transmission data Dtrna having the format shown in FIG. 9B from the usage right management device 41. Also in the license information management system Sb, the device 51a receives the license information Dlca (see the first embodiment) from the usage right management device 41 in order to decrypt the encrypted content data Decnt. Since the operation is the same as that of the first embodiment (see FIGS. 11 and 12), the description thereof is omitted.
[0174]
Further, when the device 51b requests the usage right management device 41 to newly register the usage right record Rrgt, the same operation as the data communication performed between the device 51a and the usage right management device 41 is performed. Description thereof will be omitted.
[0175]
The user β may want to use the usage right information Drgt generated for the device 51b using the device 51a. In such a case, the user β operates the device 51a to specify the content identifier Icnt, and further specifies the device identifier Idvb as the sharing target identifier Idv. It should be noted here that since the device 51a shares the usage right information Drgt already set by the device 51b, the user β does not need to specify the usage condition Ccnt. In response to the above specification, the setting request generation unit 511 of the device 51a determines whether or not the sharing target identifier Idv is included in the current specification (step S101). As is apparent from the above, since the device identifier Idvb as the sharing target identifier Idv is included in what is specified this time, the setting request generation unit 511 generates the second setting request Drr2a shown in FIG. The data is transmitted to the usage right management device 41 through the transmission path 61 (step S103). The second setting request Drr2a is also information for requesting the usage right management apparatus 41 to share the usage right information Drgt registered for the other device 51b. In the present embodiment, the acquisition target content data This is information for requesting the usage right management device 41 to distribute Dcnt. Step S103 will be described more specifically. First, the setting request generation unit 511 receives a device identifier Idva from the device identifier storage unit 211. The setting request generation unit 511 adds the extracted device identifier Idva and the setting request identifier Irr held in advance to the content identifier Icnt and the sharing target identifier Idvb specified by the user β, and generates a second setting request Drr2a (FIG. 53). The second setting request Drr2a is transmitted from the setting request generation unit 511 to the usage right management apparatus 41 through the communication unit 213 and the transmission path 61.
[0176]
In the usage right management device 41 (see FIG. 49), the user authentication unit 116 performs authentication processing in response to the reception of the second setting request Drr2a from the transmission path 61 (step S12), and then receives the received first 2 is sent to the usage right management unit 412. In response to receiving the second setting request Drr2a from the user authentication unit 116, the usage right management unit 412 performs usage right registration processing in the usage right DB 114 (step S102). In step S102, the usage right management unit 412 determines whether or not the first setting request Drra has been received this time (step S1021). Here, since the sharing target identifier Idvb is included in the second setting request Drr2a, the usage right management unit 412 determines that the first setting request Drra has not been received, and thus performs step S1023. .
[0177]
In step S1023, the usage right management unit 412 extracts the sharing target identifier Idvb and the content identifier Icnt from the received second setting request Drr2a. Thereafter, the usage right management unit 412 accesses the usage right DB 411 and searches for a usage right record Rrgta including both the extracted sharing target identifier Idvb and the content identifier Icnt. Further, the usage right management unit 412 extracts the device identifier Idva from the received second setting request Drr2a, and additionally registers it in the searched usage right record Rrgta (step S1024). Through the above step S1024, the usage right record Rrgta is updated in the usage right DB 114 to include the device identifiers Idva and Idvb, the content identifier Icnt, and the usage right information Drgt, as shown in FIG. This indicates that the usage right information Drgta of the content data Dcnt is shared by the subgroup consisting of the devices 51a and 51b. When the above step S1025 is completed, the usage right management unit 412 passes the second setting request Drr2a received this time to the content management unit 118. Thereafter, the usage right management device 41 executes steps S14 to S17, and then the device 51b executes steps S18 to S19. Also in the license information management system Sb, the device 51a receives the license information Dlcb (see the first embodiment) from the usage right management device 41 in order to decrypt the encrypted content data Decnt. At this time, in the device 51a and the usage right management device 41, the processing shown in FIGS. 11 and 12 is performed in the same manner as the processing performed by the device 21b and the usage right management device 11 in the first embodiment.
[0178]
As described above, according to the present embodiment, a plurality of device identifiers Idva and Idvb are recorded in the usage right record Rrgta. As a result, the usage right management device 41 is generated from the same usage right information Drgt by referring to the usage right record Rrgta even if the issuance requests Dira and Dirb are transmitted from different devices 51a and 51b. License information Dlca and Dlcb can be provided to them. According to the embodiment described above, it is possible to provide a rights management technique that allows a plurality of devices to share a common digital rights.
[0179]
Furthermore, in the first embodiment, if one of the plurality of devices 21 owned by the user β transmits the setting request Drr to the usage right management device 11, the usage right management device 11 will be all the devices owned by the user β. The device identifier Idv of the device 21 is collectively registered in the right record Rrgt. On the other hand, in the present embodiment, unless the device 51 transmits the second setting request Drr2, the usage right management device 41 does not register the device identifier Idv of the transmission source in the right record Rrgta. As a result, sharing of the usage right information Drgt can be controlled more strictly.
[0180]
Note that the license information management system Sb according to the second embodiment described above also uses processes such as the above-described second to fifth modifications, similarly to the license information management system Sa according to the first embodiment. By incorporating them into the right management device 41 and the devices 51a and 51b, the device identifiers Idva and / or Idvb can be added or deleted.
[0181]
“Third Embodiment”
FIG. 54 is a block diagram showing the overall configuration of the license information management system Sc according to the third embodiment. 54, the license information management system Sc includes at least one usage right management device 71, at least one device 81, and a transmission path 91. The usage right management device 71 is installed on the side of the business operator α related to content distribution. The device 81 is installed on the side of the contractor β who receives content distribution based on a contract with the business operator α. The transmission path 91 is a wired transmission path or a wireless transmission path, and connects the usage right management device 71 and the device 81 so that data communication is possible.
[0182]
Next, specific configurations of the usage right management apparatus 71 and the device 81 in FIG. 54 will be described with reference to FIGS.
FIG. 55 is a functional block diagram showing a detailed configuration of the usage right management apparatus 71 of FIG. 55, the usage right management apparatus 71 includes a content database 711, a decryption key database 712, a user information database 713, a usage right database 714, a communication unit 715, a user authentication unit 716, and a usage right management unit 717. A content management unit 718, a content encryption unit 719, a transmission data generation unit 720, a license information generation unit 721, a decryption key management unit 722, and a decryption key encryption unit 723.
[0183]
FIG. 56 is a diagram showing a detailed configuration of the license information generation unit 721 in FIG. In FIG. 56, the license information generation unit 721 includes a hash value generation unit 7211 and a license information assembly unit 7212.
[0184]
FIG. 57 is a functional block diagram showing a detailed configuration of the device 81 shown in FIG. In FIG. 57, the device 81 is a consumer device similar to the previous embodiment. However, in this embodiment, for the sake of convenience, the following description will be continued assuming that it is a music player. Under the above assumptions, the device 81 includes a device identifier storage unit 811, a setting request generation unit 812, a communication unit 813, a content management unit 814, a content storage unit 815, an issue request generation unit 816, and license information. A processing unit 817, a content decoding unit 818, and a content reproduction unit 819 are provided.
[0185]
FIG. 58 is a functional block diagram showing a detailed configuration of the license information processing unit 817 in FIG. In FIG. 58, the license information processing unit 817 includes a falsification determination unit 8171, a hash value generation unit 8172, a use permission determination unit 8173, and a decryption key decryption unit 8174.
[0186]
Next, preparations necessary for the contractor β to receive content distribution from the provider α in the license information management system Sc will be described. 55 is constructed by a content database (hereinafter referred to as a content DB) 711, a decryption key database (hereinafter referred to as a decryption key DB) 712, and a user information database (hereinafter referred to as a user information DB) 713 in FIG. Is done.
[0187]
First, the content DB 711 of FIG. 55 will be described in detail with reference to FIG. The business operator α constructs a content DB 711 as shown in FIG. More specifically, the business operator α creates content data Dcnt to be provided to the contractor β by itself or receives it from another content creator. Here, the content data Dcnt is data that can be used by the device 81 and represents, for example, a television program, a movie, a radio program, music, a book, or a printed material. The content data Dcnt may be a game program or an application program. However, for the sake of convenience, in the present embodiment, the following description will be continued assuming that the content data Dcnt is data representing music.
[0188]
The business operator α assigns a content identifier Icnt to each of the content data Dcnt obtained as described above. The content identifier Icnt uniquely identifies the content data Dcnt in the license information management system Sc. Further, the above content data Dcnt is distributed to the device 81 after being encrypted on the usage right management device 71 side from the viewpoint of protecting digital rights. Therefore, the business operator α assigns a dedicated encryption key Ke to each content data Dcnt. The combination of the content identifier Icnt, the content data Dcnt, and the encryption key Ke is stored in the content DB 711. Therefore, as shown in FIG. 59A, the content DB 711 is a collection of combinations of the content identifier Icnt, the content data Dcnt, and the encryption key Ke. In the content DB 711, the content identifier Icnt particularly uniquely specifies the same set of content data Dcnt. The encryption key Ke is used to encrypt the same set of content data Dcnt.
[0189]
For convenience of the following description, it is assumed that “a” as a unique content identifier Icnt is assigned to one piece of content data Dcnt shown in FIG. Further, it is assumed that “b” as the dedicated encryption key Ke is registered in the same set as “a” as the content identifier Icnt.
[0190]
In the present embodiment, the content DB 711 is composed of a content identifier Icnt, content data Dcnt, and an encryption key Ke, but a database for each content data Dcnt and encryption key Ke may be constructed. Further, the content identifier Icnt may specify the storage location of the content data Dcnt in the content DB 711. In such a case, there is no need to register the content identifier Icnt in the content DB 711. That is, the content identifier Icnt is not an essential component in the content DB 711.
[0191]
Next, the decryption key DB 712 in FIG. 55 will be described in detail with reference to FIG. As described above, each content data Dcnt is transmitted to the device 81 in a state encrypted with the dedicated encryption key Ke. Here, in the following description, the encrypted content data Dcnt is referred to as encrypted content data Decnt. In order to decrypt the encrypted content data Decnt, the device 81 needs to be provided with a decryption key Kd corresponding to the encryption key Ke. Therefore, the operator α prepares a decryption key Kd corresponding to each encryption key Ke in the content DB 711. Here, the decryption key Kd may consist of the same bit string as the encryption key Ke or may consist of a different bit string. The above decryption key Kd is stored in the decryption key DB 712 together with the above-described content identifier Icnt. From the above, the decryption key DB 712 is a collection of combinations of the content identifier Icnt and the decryption key Kd as shown in FIG. 59 (b). In the decryption key DB 712, the content identifier Icnt particularly specifies the content data Dcnt assigned to the same set of decryption keys Kd. The decryption key Kd is used to decrypt the encrypted content data Decnt specified by the same set of content identifiers Icnt.
[0192]
For convenience of the following description, it is assumed that “c” is registered as the decryption key Kd in the same set as “a” as the content identifier Icnt in FIG. 59B. As is apparent from the above, “c” as the decryption key Kd is used for decrypting the encrypted content data Decnt using “b” as the encryption key Ke.
[0193]
Next, the user information DB 713 in FIG. 55 will be described in detail with reference to FIG. The contractor β described above makes a contract to receive content distribution from the business operator α. Here, regarding both contracts, the contractor β may perform with the business operator α through the transmission path 91, or may be performed in another form. Based on this contract, the business operator α assigns a device identifier Idv to the contractor β. The device identifier Idv uniquely identifies the device 81 of the contractor β in the license information management system Sc. The above device identifier Idv is registered in the user information DB 713. From the above, as shown in FIG. 60A, the user information DB 713 is a collection of device identifiers Idv.
[0194]
Here, FIG. 57 is referred again. As shown in FIG. 57, the device identifier Idv assigned by the operator α is further set in the device identifier storage unit 811 in the device 81 on the contractor β side. Regarding the setting of the device identifier Idv, typically, the operator α is set by operating the device 81 managed on the contractor β side. In addition, the provider α side transmits the device identifier Idv assigned to the contractor β through the transmission path 91, and the device 81 automatically registers the received device identifier Idv in the device identifier storage unit 811. You may do it.
[0195]
Note that the above device identifier Idv may be set in the device identifier storage unit 811 in advance when the device 81 is shipped from the factory. In such a case, the contractor β notifies the operator α of the device identifier Idv set in the device 81 when subscribing to the content distribution of the operator α. The business operator α registers the notified device identifier Idv in the user information DB 713.
[0196]
For convenience of the following description, it is assumed that “x1” is registered as one device identifier Idv in the user information DB 713 as shown in FIG. As shown in FIG. 57, it is assumed that “x1” is set as the device identifier Idv in the device identifier storage unit 811.
[0197]
Here, FIG. 60B shows a usage right database 714, which will be described later.
[0198]
When the above preparation is completed, the device 81 can acquire the content data Dcnt from the usage right management device 71 in accordance with the operation of the contractor β.
Hereinafter, with reference to FIG. 61, the operations of the device 81 and the usage right management apparatus 71 when acquiring the content data Dcnt will be described. First, the contractor β operates the device 81 to access the right-of-use management apparatus 71 and specifies the content identifier Icnt to be acquired this time from the content data Dcnt stored in the content DB 711. In the following description, the content data Dcnt designated this time is referred to as acquisition target content data Dcnt. Further, the contractor β designates a use condition Ccnt when using the acquisition target content data Dcnt.
[0199]
Hereinafter, the use condition Ccnt will be described in more detail. The usage condition Ccnt is information indicating under what conditions the device 81 requests the setting of the usage right of the content data Dcnt. When the content data Dcnt represents music, the usage period Ccnt is typically a valid period, number of reproductions, maximum continuous reproduction time, total reproduction time, or reproduction quality. The usage condition Ccnt may be a combination of two or more of the effective period, the number of reproductions, the maximum continuous reproduction time, the total reproduction time, and the reproduction quality. The valid period as the use condition Ccnt is set, for example, from June 1, 2001 to August 31, 2001, and the device 81 can reproduce the content data Dcnt only during the set period. The number of times of reproduction is set to, for example, five times, and the device 81 can reproduce the content data Dcnt only for the set number of times. The maximum continuous playback time is set to 10 seconds, for example, and the device 81 can play back the content data Dcnt as long as it is up to the time set in one playback. Such maximum continuous playback time is particularly effective for music promotion. For example, the total reproduction time is set to 10 hours, and the device 81 can freely reproduce the content data Dcnt within the set time range. The reproduction quality is set to, for example, the quality of a CD (Compact Disc), and the device 81 can reproduce the content data Dcnt with the set reproduction quality.
[0200]
In the above description, the use condition Ccnt that can be set when the content data Dcnt represents music has been described. However, not limited to the above, it is preferable that the use condition Ccnt is appropriately set according to the contents represented by the content data Dcnt.
For the sake of convenience, in the present embodiment, the following description will be continued assuming that the usage condition Ccnt is the number of times the content data Dcnt has been reproduced.
[0201]
As described above, the contractor β operates the device 81 to specify the content identifier Icnt and the usage rule Ccnt. In response to such designation, the device 81 generates a setting request Drr shown in FIG. 62A and transmits it to the usage right management device 71 (FIG. 61; step S201). The setting request Drr is information for requesting the usage right management device 71 to set the usage right of the acquisition target content data Dcnt. In the present embodiment, the distribution of the acquisition target content data Dcnt is further transmitted to the usage right management device 71. It is also information to request. Step S201 will be described more specifically. First, the setting request generation unit 812 (see FIG. 57) receives the content identifier Icnt and the usage rule Ccnt designated by the contractor β. In addition, the setting request generation unit 812 receives the device identifier Idv from the device identifier storage unit 811. Thereafter, the setting request generation unit 812 generates a setting request Drr (see FIG. 62A) by adding the setting request identifier Irr held in advance to the device identifier Idv, content identifier Icnt, and usage condition Ccnt. . Here, the setting request identifier Irr is used by the usage right management device 71 to identify the setting request Drr. The setting request generation unit 812 passes the above setting request Drr to the communication unit 813. The communication unit 813 transmits the received setting request Drr to the usage right management apparatus 71 through the transmission path 91.
[0202]
In the usage right management device 71 (see FIG. 55), the communication unit 715 receives the setting request Drr transmitted through the transmission path 91 and passes it to the user authentication unit 716. Upon receiving the setting request Drr, the user authentication unit 716 performs user authentication processing (FIG. 61; step S202). More specifically, the user authentication unit 716 manages the above-described user information DB 713 (see FIG. 60A), and the one that matches the device identifier Idv set in the received setting request Drr is It is confirmed whether or not the user information DB 713 is registered. The user authentication unit 716 determines that the current setting request Drr has been transmitted from the device 81 of the contractor β only when a match with the user information DB 713 is registered. When the above user authentication is completed, the user authentication unit 716 passes the received setting request Drr to the usage right management unit 717.
[0203]
Note that when the setting request Drr from a party other than the regular contractor β is received, the user authentication unit 716 fails in user authentication. In such a case, the user authentication unit 716 discards the setting request Drr without passing the setting request Drr to the usage right management unit 717.
[0204]
A usage right management unit 717 (see FIG. 55) manages a usage right database (hereinafter referred to as a usage right DB) 714. Also, the usage right management unit 717 recognizes that the setting request Drr has been passed from the user authentication unit 716 based on the setting request identifier Irr set therein. According to such a recognition result, the usage right management unit 717 performs usage right registration processing in the usage right DB 714 (step S203). More specifically, the usage right management unit 717 extracts the device identifier Idv, the content identifier Icnt, and the usage condition Ccnt from the setting request Drr, and registers these combinations in the usage right DB 714. Here, the usage right management unit 717 considers that the device 81 requests the right to use the acquisition target content data Dcnt with the usage condition Ccnt set in the setting request Drr. In other words, when viewed from the usage right management unit 717, the usage condition Ccnt indicates a right that the device 81 can use the acquisition target content data Dcnt. From the above viewpoint, the usage right management unit 717 handles the usage condition Ccnt extracted from the setting request Drr as the usage right information Drgt requested by the device 81 for setting. That is, the usage right DB 714 is a collection of combinations of the device identifier Idv, the content identifier Icnt, and the usage right information Drgt, as shown in FIG. Accordingly, the usage right management unit 717 manages the usage right of the acquisition target content data Dcnt for each contractor β. When the above usage condition registration processing is completed, the usage right management unit 717 passes the setting request Drr received this time to the content management unit 718.
[0205]
Here, a specific example of the usage right information Drgt registered in the above usage right DB 714 will be described. As already described, in the present embodiment, the use condition Ccnt is assumed to be the number of uses. Furthermore, it is assumed that “x1” is set as the device identifier Idv, “a” is set as the content identifier Icnt, and “reproduction m times” (m is a natural number) is set as the usage condition Ccnt in the current setting request Drr. Under the above assumption, as shown in FIG. 60B, a combination of “x1” as the device identifier Idv, “a” as the content identifier Icnt, and “m times of reproduction” as the usage right information Drgt is set. The
[0206]
Although not related to the technical features of the license information management system Sc, in step S203, the usage right management unit 717 assigns the contractor β to which the device identifier Idv is assigned for each registration of the usage right information Drgt. You may charge for it.
[0207]
When the content management unit 718 receives the setting request Drr, the content management unit 718 reads out the content data Dcnt (step S204). More specifically, the content management unit 718 extracts the content identifier Icnt from the received setting request Drr. Thereafter, the content management unit 718 accesses the content DB 711 and reads the content data Dcnt and the encryption key Ke to which the extracted content identifier Icnt is assigned. When the above read processing is completed, the content management unit 718 passes the read content data Dcnt and the encryption key Ke to the content encryption unit 719. Further, the content management unit 718 passes the received setting request Drr to the transmission data generation unit 720.
[0208]
The content encryption unit 719 performs encryption processing of the content data Dcnt (step S205). More specifically, the content encryption unit 719 encrypts the received content data Dcnt with the encryption key Ke received at the same time, and generates the above-mentioned encrypted content data Decnt. When the above encryption processing ends, the content encryption unit 719 passes the encrypted content data Decnt to the transmission data generation unit 720.
[0209]
When the setting request Drr from the content management unit 718 and the encrypted content data Decnt from the content encryption unit 719 are ready, the transmission data generation unit 720 performs transmission data generation processing (step S206). More specifically, the transmission data generation unit 720 extracts the content identifier Icnt from the received setting request Drr. Further, the transmission data generation unit 720 adds the extracted content identifier Icnt to the received encrypted content data Decnt to generate transmission data Dtrn as shown in FIG. The transmission data generation unit 720 passes the transmission data Dtrn to the communication unit 715 when the above transmission data generation processing ends. The communication unit 715 transmits the received transmission data Dtrn to the device 81 via the transmission path 91 (step S207).
[0210]
In the device 81 (see FIG. 57), the communication unit 813 receives the transmission data Dtrn transmitted through the transmission path 91 (step S208). More specifically, the communication unit 813 recognizes that the transmission data Dtrn has been received this time from the content identifier Icnt included therein. According to such a recognition result, the communication unit 813 passes the received data Dtrn to the content management unit 814.
[0211]
The content management unit 814 stores the content identifier Icnt and the encrypted content data Decnt in the received data Dtrn in the content storage unit 815 (step S209). That is, the content storage unit 815 stores several combinations of the content identifier Icnt and the encrypted content data Decnt requested by the setting request Drr as shown in FIG.
[0212]
From the viewpoint of protecting digital rights, encrypted content data Decnt is distributed to the device 81. Therefore, when using the content data Dcnt, the device 81 needs to decrypt the encrypted content data Decnt using the decryption key Kd provided by the usage right management device 71. Here, in the license information management system Sc, license information Dlc, which will be described in detail later, is used to provide the device 81 with the decryption key Kd. Hereinafter, the operations of the device 81 and the usage right management apparatus 71 at the time of obtaining the license information Dlc and decrypting the content data Dcnt will be described with reference to FIGS.
[0213]
First, the contractor β operates the device 81 to access the content storage unit 815, and specifies what is desired to be used this time from among the encrypted content data Decnt stored therein. Here, in the following description, the encrypted content data Decnt designated this time is referred to as decryption target content data Decnt.
[0214]
In response to the designation by the contractor β, the device 81 generates an issuance request Dir as shown in FIG. 67A and transmits it to the usage right management device 71 (FIG. 64; step S301). The issue request Dir is information for requesting the usage right management apparatus 71 to provide the license information Dlc, that is, receiving permission to use the content data Decnt to be decrypted. More specifically, step S301 will be described. The content management unit 814 (see FIG. 57) manages the content storage unit 815, and the content identifier added to the decryption target content data Decnt specified by the contractor β. Icnt is extracted from the content storage unit 815. The issue request generation unit 816 receives the content identifier Icnt extracted by the content management unit 814. Further, the issue request generation unit 816 receives the device identifier Idv from the device identifier storage unit 811. Thereafter, the issue request generation unit 816 adds the issue request identifier Iir to the device identifier Idv and the content identifier Icnt to generate an issue request Dir (see FIG. 67A). Here, the issue request identifier Iir is used by the usage right management device 71 to identify the issue request Dir. The issue request generation unit 816 passes the above issue request Dir to the communication unit 813. The communication unit 813 transmits the received issuance request Di to the usage right management apparatus 71 through the transmission path 91.
[0215]
In the usage right management device 71, the communication unit 715 (see FIG. 55) receives the issue request Dir transmitted through the transmission path 91 and passes it to the user authentication unit 716.
[0216]
Upon receiving the issuance request Dir, the user authentication unit 716 performs user authentication processing (step S302). More specifically, the user authentication unit 716 extracts the device identifier Idv from the received issue request Dir. Thereafter, the user authentication unit 716 performs authentication processing on the current issue request Dir in the same manner as in step S202 (see FIG. 61), and then passes the issue request Dir to the usage right management unit 717.
[0217]
The usage right management unit 717 recognizes that the issuance request Dir has been passed from the user authentication unit 716 this time based on the issuance request identifier Iir set therein. According to the recognition result, the usage right management unit 717 extracts the device identifier Idv and the content identifier Icnt from the received issuance request Dir (step S303). Next, the usage right management unit 717 determines whether or not the combination of the extracted device identifier Idv and content identifier Icnt is registered in the usage right DB 714 (see FIG. 60B) (step S304).
[0218]
If the usage right management unit 717 determines “Yes” in step S304, the usage right management unit 717 refers to the same usage rights information Drgt as those sets to determine whether or not the device 81 can be used (step S104). S305). If “Yes” is determined in step S305, the usage right management unit 717 extracts part or all of the usage right information Drgt (step S306). Here, in order to avoid confusion in the following description, a part or all of the usage right information Drgt extracted in step S306 is transferred to the device 81 specified by the current issue request Dir in the content data Dcnt. From the viewpoint of being information for permitting use, it is referred to as use permission information Dlw. That is, in step S306, usage permission information Dlw is generated.
[0219]
By generating the usage permission information Dlw, part or all of the usage right information Drgt registered for the device 81 is used. Therefore, after step S306, the usage right management unit 717 updates the usage right information Drgt extracted in part or all in step S306 (step S307).
[0220]
Here, a specific example of the processing of the above steps S303 to S307 will be described. Now, in the usage right DB 714, as shown in FIG. 60B, there is a set of “x1” as the device identifier Idv, “a” as the content identifier Icnt, and “playing m times” as the usage right information Drgt. Assume that it is registered. Further, it is assumed that the device 81 transmits an issue request Dir in which “x1” as the device identifier Idv and “a” as the content identifier Icnt are set this time.
[0221]
Under the above assumption, in step S303, “x1” as the device identifier Idv and “a” as the content identifier Icnt are extracted from the issue request Dir. In step S304, it is determined that the combination of “x1” as the device identifier Idv and “a” as the content identifier Icnt is registered in the usage right DB 714. If it is determined in this way, it is determined in step S305 that the usage permission information Drgt of the same set is set to “reproduce m times”, so that the usage permission of the device 81 may be given. If determined in this way, use permission information Dlw is generated in step S306. As the usage permission information Dlw generated at this time, for example, “reproduction n times” can be mentioned. Here, n is a natural number that does not exceed m, and is more preferably set according to the processing capability of the device 81. For example, if the device 81 is equipped with relatively low-performance hardware, n is set to a minimum value that the device 81 can use the decryption target content data Decnt, such as “1”. It is preferably set.
[0222]
Through the above steps S303 to S306, the device 81 (device identifier Idv “x1”) uses the right to reproduce the content data Dcnt (content identifier Icnt “a”) n times. For this reason, in step S307, the usage right information Drgt is updated from “reproduction m times” to “reproduction (mn) times”.
[0223]
In the above specific example, the usage right information Drgt has been described as the number of times of reproduction of the content data Dcnt. However, as described above, in the license information management system Sc, various usage right information Drgt (that is, the usage conditions Ccnt) is set. Can be set. Therefore, the processing procedure from step S303 to S307 needs to be appropriately defined according to the usage right information Drgt.
[0224]
The usage right management unit 717 (see FIG. 55) passes the usage permission information Dlw generated as described above to the license information generation unit 721 together with the issue request Dir. More specifically, the license information generation unit 721 includes a hash value generation unit 7211 and a license information assembly unit 7212 as shown in FIG. Only the usage permission information Dlw is passed to the hash value generation unit 7211, and both the usage permission information Dlw and the issue request Dir are passed to the license information assembling unit 7212.
[0225]
First, the hash value generation unit 7211 generates the hash value Vhs for preventing falsification of the usage permission information Dlw by substituting the received usage permission information Dlw for the hash function f (x) held in advance ( Step S308). That is, the hash value Vhs is a solution obtained when the use permission information Dlw is substituted into the generator polynomial f (x). The hash value generation unit 7211 passes the hash value Vhs as described above to the license information assembly unit 7212.
[0226]
The license information assembling unit 7212 passes the received issuance request Di to the decryption key management unit 722. The decryption key management unit 722 (see FIG. 55) manages the above-described decryption key DB 712 (see FIG. 59 (b)). The decryption key management unit 722 extracts the content identifier Icnt and device identifier Idv set in the received issue request Dir. Further, the decryption key management unit 722 extracts the decryption key Kd having the same set as the content identifier Icnt from the decryption key DB 712 and passes it to the decryption key encryption unit 723 together with the device identifier Idv. The decryption key encryption unit 723 encrypts the received decryption key Kd with the device identifier Idv received at the same time (step S309), and generates an encrypted decryption key Ked. The above encrypted decryption key Ked is transferred to the license information assembling unit 7212.
[0227]
When all of the issuance request Dir, use permission information Dlw, hash value Vhs, and encrypted decryption key Ked are prepared, the license information assembling unit 7212 starts generating the license information Dlc shown in FIG. 67B (FIG. 65; Step S3010). More specifically, the license information assembling unit 7212 extracts the content identifier Icnt from the issuance request Dir and adds it to the use permission information Dlw, the encrypted decryption key Ked, and the hash value Vhs. Further, the license information assembling unit 7212 adds the license information identifier Ilc held in advance to the content identifier Icnt to generate license information Dlc. The above license information Dlc is information for controlling use of the decryption target content data Decnt in the device 81. The license information identifier Ilc is information for the device 81 to specify the license information Dlc. Further, the above license information Dlc is passed to the communication unit 715. The data is transmitted from the communication unit 715 to the device 81 through the transmission path 91 (step S3011).
[0228]
In the device 81 (see FIG. 57), the communication unit 813 receives the license information Dlc transmitted through the transmission path 91 (step S3012). More specifically, the communication unit 813 recognizes that the license information Dlc has been received this time from the license information identifier Ilc set therein. In accordance with the recognition result, the communication unit 813 passes the received license information Dlc to the license information processing unit 817.
[0229]
As shown in FIG. 58, the license information processing unit 817 includes a falsification determination unit 8171, a hash value generation unit 8172, a use permission determination unit 8173, and a decryption key decryption unit 8174. The license information Dlc from the communication unit 813 is first passed to the falsification determination unit 8171. First, the falsification determination unit 8171 extracts the usage permission information Dlw and the hash value Vhs from the received license information Dlc (step S3013), passes the extracted usage permission information Dlw to the hash value generation unit 8172, and the hash value Vhs is obtained. Keep it as it is. Here, in order to avoid confusion in the following description, from the viewpoint that the hash value Vhs extracted in step S3013 is generated outside the device 81 (that is, the usage right management device 71), the external hash Called the value Vehs.
[0230]
The hash value generation unit 8172 holds the same hash function f (x) as the hash value generation unit 7211 (see FIG. 3) on the usage right management device 71 side, and uses the received usage permission information Dlw as the hash function f (x ) To generate a hash value Vhs (step S3014). Here, the hash value Vhs generated in step S3014 is referred to as an internal hash value Vlhs from the viewpoint that it is generated inside the device 81. The hash value generation unit 8172 returns the internal hash value Vlhs to the falsification determination unit 8171.
[0231]
Upon receiving the internal hash value Vlhs, the falsification determination unit 8171 determines whether the usage permission information Dlw has been falsified (step S3015). More specifically, the internal hash value Vlhs described above matches the external hash value Vehs on the condition that the usage permission information Dlw in the license information Dlc has not been tampered with. Therefore, in step S3015, the falsification determination unit 8171 determines whether or not the received internal hash value Vlhs matches the external hash value Vehs. If the falsification determination unit 8171 determines “Yes”, the usage permission information Dlw is not falsified and the usage permission information Dlw transmitted this time is considered to be valid, and the license information Dlc received this time. Is passed to the use permission determination unit 8173.
[0232]
The use permission determination unit 8173 refers to the received license information Dlc and determines whether or not the use of the decryption target content data Decnt is permitted (step S3016). The use permission determination unit 8173 extracts the encrypted decryption key Ked from the received license information Dlc and passes it to the decryption key decryption unit 8174 only when “Yes” is determined in step S3016.
[0233]
Here, a specific example of the processing in step S3016 will be described. According to the above assumption, the reproduction of the content data Dcnt is permitted n times by the use permission information Dlw of the current license information Dlc. In such a case, the use permission determination unit 8173 determines in step S3016 that the use of the decryption target content data Decnt is permitted if the number of times of reproduction set in the use permission information Dlw is 1 or more. The encrypted decryption key Ked is extracted from the license information Dlc and transferred to the decryption key decryption unit 8174.
[0234]
In the above specific example, the usage right information Drgt has been described as the number of times of reproduction of the content data Dcnt. However, as described above, in the license information management system Sc, various usage right information Drgt (that is, the usage conditions Ccnt) is set. Can be set. Therefore, the process of step S3016 needs to be appropriately defined according to the usage right information Drgt.
[0235]
The decryption key decryption unit 8174 receives the encrypted decryption key Ked from the use permission determination unit 8173. Further, the decryption key decryption unit 8174 receives the device identifier Idv from the device identifier storage unit 811. Thereafter, the decryption key decryption unit 8174 decrypts the encrypted decryption key Ked with the device identifier Idv (step S3017), and passes the decryption key Kd to the content decryption unit 818.
[0236]
Incidentally, in step S301, the content management unit 814 extracts not only the content identifier Icnt but also the above-described decryption target content data Decnt. The extracted decryption target content data Decnt is passed to the content decryption unit 818. The content decryption unit 818 decrypts the content data Decnt to be decrypted with the decryption key Kd received from the decryption key decryption unit 8174 (step S3018), and passes the content data Dcnt to the content reproduction unit 819. The content reproduction unit 819 reproduces the received content data Dcnt and outputs the sound (step S3019). As a result, the contractor β can listen to the music represented by the content data Dcnt purchased from the business operator α.
[0237]
Here, reference is made to step S3015 of FIG. In step S3015, the falsification determination unit 8171 may determine that the usage permission information Dlw has been falsified. In step S3016, the use permission determination unit 8173 may determine that the use of the decryption target content data Decnt is not permitted. In such a case, the falsification determining unit 8171 and the use permission determining unit 8173 discard the license information Dlc received this time (FIG. 66; step S3020). As is clear from the above, in the license information management system Sc, decryption of the decryption target content data Decnt is permitted only when valid license information Dlc is received. This protects the digital rights described above.
[0238]
Here, in step S304 in FIG. 64, the usage right management unit 717 may determine that the combination of the device identifier Idv and the content identifier Icnt is not registered in the usage right DB 714 (see FIG. 60B). . Further, in step S 305, the usage right management unit 717 may determine that the use permission is not given to the device 81. In such a case, the usage right management unit 717 generates usage refusal information Drj (see FIG. 67C) indicating that the use of the decryption target content data Decnt is rejected, and passes it to the communication unit 715. The communication unit 715 transmits the received use refusal information Drj to the device 81 via the transmission path 91 (FIG. 66; step S3021).
[0239]
In the device 81 (see FIG. 57), the communication unit 813 receives the use refusal information Drj transmitted through the transmission path 91 (step S3022). No processing is performed in the device 81 after the use refusal information Drj is received. As is clear from the above, in the license information management system Sc, if the combination of valid device identifier Idv, content identifier Icnt and usage right information Drgt is not registered in the usage right DB 714, the usage refusal information Drj is set as the device rejection information Drj. 81. As a result, the content data Decnt to be decrypted is not decrypted on the device 81 side. This protects the digital rights described above.
[0240]
In step S304, when the usage right management unit 717 determines that the combination of the device identifier Idv and the content identifier Icnt is not registered in the usage right DB 714 (see FIG. 60B), the device identifier Idv, content A new combination of the identifier Icnt and the usage right information Drgt may be generated and registered in the usage right DB 714.
[0241]
As described above, in the license information management system Sc, the usage right information Drgt representing the right for the device 81 to use each content data Dcnt can be managed centrally on the usage right management apparatus 71 side. Therefore, it is not necessary to place a processing burden on the device 81 for managing the usage right information Drgt as described above. As a result, according to the license information management system Sc, it is possible to provide a right protection technique suitable for a consumer device having a low processing capability.
[0242]
In the above embodiment, the usage right management apparatus 71 managed by the same operator α performs both the process in FIG. 61 and the processes in FIGS. 64 to 66. However, different usage right management apparatuses may perform the processing of FIG. 61 and the processing of FIGS. In other words, the license information is managed so that the usage right management device managed by a certain provider is responsible for the distribution of the content data Dcnt, and the usage right management device managed by another provider is responsible for providing the license information Dlc. The management system Sc may be configured. Further, for convenience of explanation, in the present embodiment, the content data Dcnt is first acquired (the process of FIG. 61), and then the license information Dlc is acquired (the processes of FIGS. 64 to 66). It was broken. However, the license information Dlc may be acquired first, and then the content data Dcnt may be acquired. Further, the acquisition of the content data Dcnt and the acquisition of the license information Dlc may be performed in parallel.
[0243]
In the above embodiment, the content DB 114 is a collection of unencrypted content data Dcnt and encryption key Ke. The usage right management apparatus 71 encrypts the content data Dcnt with the encryption key Ke immediately before the generation of the transmission data Dtrn (see step S205). However, in order to reduce the processing time required for encrypting the content data Dcnt, the content DB 114 may be a collection of the above-described encrypted content data Decnt. In this case, the usage right management device 71 generates transmission data Dtrn by adding the content identifier Icnt to the encrypted content data Decnt indicated by the content identifier Icnt set in the setting request Drr.
[0244]
In the above embodiment, in the license information generation unit 721, the hash value generation unit 7211 generates the hash value Vhs only from the usage permission information Dlw. However, the present invention is not limited to this, and the hash value Vhs may be generated as follows. First, the license information assembling unit 7212 uses one or more of the license information identifier Ilc, the content identifier Icnt, the usage permission information Dlw, and the encrypted decryption key Ked, which are components of the license information Dlc, as a hash value. The data is passed to the generation unit 7211. The hash value generation unit 7211 generates the hash value Vhs by substituting the one received from the license information assembly unit 7212 into the above hash function f (x).
[0245]
In the above embodiment, the license information Dlc includes the encrypted decryption key Ked. However, the present invention is not limited to this, and the license information Dlc may include the decryption key Kd. In this case, since there is a risk that the decryption key Kd is stolen by a third party on the transmission path 91, transmission is performed from the usage right management device 71 to the device 81 using a technique typified by SSL (Secure Socket Layer). It is preferable to protect the license information Dlc. Further, only with SSL, the license information Dlc is held in the device 81 as it is. In such a situation, if the license information Dlc is transferred from the device 81 to another device, the other device can use the license information Dlc, which is not preferable from the viewpoint of protecting digital rights. Therefore, it is more preferable that an algorithm for encrypting the license information Dlc with the device identifier Idv stored in the device identifier storage unit 811 is incorporated in the device 81. As a result, the license information Dlc can be used only by the device 81, so that the digital rights can be protected.
[0246]
In the above embodiment, for convenience of explanation, it has been described that only the device identifier Idv is registered in the user information DB 713. However, other user information (for example, an address and a telephone number) that can uniquely identify the contractor β may be registered in the user information DB 713. Further, the decryption key Kd may be encrypted with the complicated user information as described above. As a result, the encryption strength of the decryption key Kd is increased, so that it is possible to provide a license information management system Sc that can protect digital rights more preferably.
[0247]
In the above embodiment, the content data Dcnt is described as music data for convenience of explanation. Therefore, it has been described that the device 81 includes the content reproduction unit 819, and the content reproduction unit 819 reproduces the decrypted content data Dcnt and outputs sound. However, as described above, the content data Dcnt may be data that can be used by the device 81, and the content data Dcnt represents a television program, a movie, a radio program, a book, a printed material, a game program, or an application program. And so on. Therefore, the content playback unit 819 is not limited to the unit that outputs sound, but can output a television program, a movie, a book, a printed matter, and game content according to the type of the content data Dcnt, and can output a radio program as a sound. May be substituted. Furthermore, the device 81 replaces the content playback unit 819 with the content data Dcnt that has been decrypted with an external device (a television receiver, a radio receiver, a music player, an electronic book reader, a game device, A PC, an information portable terminal, a mobile phone, an external storage device, etc.) may be provided.
[0248]
By the way, in the above license information management system Sc, the business operator α provides content distribution to the contractor β. However, in the above-described license information management system Sc, since the device identifier Idv is fixedly set in the device 81, the contractor β has his / her usage right information at the accommodation facility that has the contract with the same business operator α. There is a problem that the content data Dcnt cannot be used by the device 81 installed in the accommodation facility using Drgt. For the same reason, there is a problem that a contractor β cannot use the content data Dcnt by using his / her usage right information Drgt at an acquaintance's house contracted with the same operator α. It was. The license information management system Sc1 according to the following sixth modification is intended to solve the above-described problems and realize more convenient content distribution.
[0249]
"Sixth variant"
FIG. 68 is a block diagram showing the overall configuration of the license information management system Sc1. The license information management system Sc1 of FIG. 68 differs from the license information management system Sc of FIG. 54 in that it further includes a portable recording medium 101 and a device 201. Other than this point, there is no difference in configuration between the two systems Sc and Sc1, and therefore, in FIG. 68, the same reference numerals are assigned to the components corresponding to the license information management system Sc in FIG. Simplify. That is, in the following, when the usage right management device 71 and the device 81 are described, FIGS.
[0250]
The portable recording medium 101 is typically a type of recording medium that can be carried by the contractor β, such as an SD card or smart media (both are trademarks), and as shown in FIG. A uniquely specified media identifier Imd is stored in a predetermined recording area. Here, in this embodiment, for the sake of convenience, the following description will be continued assuming that the media identifier Imd is “x2” as shown in FIG. The portable recording medium 101 described above is managed by the same contractor β as the device 81 described above.
[0251]
The device 201 is installed on the contractor γ side that receives content distribution based on a contract with the business operator α. Here, in this embodiment, the contractor γ owns the accommodation facility as described above, and the device 201 is installed in the accommodation facility. Hereinafter, a detailed configuration of the device 201 will be described.
[0252]
Here, FIG. 70 is a functional block diagram showing a detailed configuration of the device 201 of FIG. In FIG. 70, the device 201 is typically a consumer device similar to the device 81, but in the present embodiment, for the sake of convenience, the following description will be continued assuming that it is a music player. Under the above assumption, the device 201 is configured to be capable of mounting the above-described portable recording medium 101, and is further provided with an interface 2021 and an identifier extraction unit 2022 as compared with the device 81 shown in FIG. Is different. Other than this point, there is no difference in configuration between the two devices 201 and 81. Therefore, in the device 201 of FIG. 70, the same reference numerals are given to the components corresponding to the device 81 of FIG. Simplify.
[0253]
Next, in the license information management system Sc1, the contractor β receives content distribution from the provider α on the device 201 on the other party (that is, contractor γ) side using his / her usage right information Drgt. The preparations required for this will be described. In this preparatory work, as in the above-described embodiment, first, the content database (hereinafter referred to as content DB) 711, the decryption key database (hereinafter referred to as decryption key DB) 712 of FIG. Hereinafter, user information DB) 713 is constructed. Note that the content DB 711 and the decryption key DB 712 are as described above with reference to FIGS. 59A and 59B, and thus description thereof is omitted in this modification.
[0254]
However, a combination of information different from that in the above-described embodiment is registered in the user information DB 713. Next, the user information DB 713 in FIG. 55 will be described in detail with reference to FIG. The contractor β described above makes a contract to receive content distribution from the business operator α. Based on this contract, the business operator α assigns the user identifier Iusr to the contractor β. Here, the user identifier Iusr uniquely identifies the contractor β. Further, the business operator α assigns the same device identifier Idv to the device 81 managed by the contractor β. As described in the above embodiment, the contractor β may notify the operator α of the device identifier Idv set in advance in the device 81. The device identifier Idv uniquely identifies the device 81 of the contractor β in the license information management system Sc1. Further, the business operator α is notified of the media identifier Imd recorded on the portable recording medium 101 of the contractor β. The combination of the device identifier Idv and the media identifier Imd is registered in the user information DB 713 together with the user identifier Iusr for the contractor β. From the above, as shown in FIG. 71A, the user information DB 713 is a set of combinations of the device identifier Idv and the media identifier Imd registered for each user identifier Iusr.
[0255]
Further, as described in the above-described embodiment, the device identifier Idv assigned by the operator α is further set in the device identifier storage unit 811 in the device 81 on the contractor β side (see FIG. 57).
[0256]
In addition, the above-mentioned contractor γ also makes a contract to receive content distribution from the business operator α. Here, for convenience of explanation, it is assumed that the contractor γ does not own the portable recording medium 101 unlike the contractor β. Based on the above contract, the business operator α assigns a unique user identifier Iusr to the contractor γ. Further, the business operator α assigns a unique device identifier Idv to the device 201 of the contractor γ in the license information management system Sc1. The above device identifier Idv is registered together with the user identifier Iusr in the user information DB 713 for the contractor γ. From the above, as shown in FIG. 71A, the user information DB 713 is a collection of device identifiers Idv registered for each user identifier Iusr.
[0257]
Further, as shown in FIG. 70, the device identifier Idv assigned to the device 201 by the operator α is set in the device identifier storage unit 811 in the device 201 on the contractor γ side.
[0258]
For the convenience of the following description, as shown in FIG. 71A, the user information DB 713 contains a device identifier Idv corresponding to “y1” as the user identifier Iusr for the contractor β. It is assumed that “x2” is registered as “x1” and the media identifier Imd. Under this assumption, as shown in FIG. 57, “x1” is set as the device identifier Idv in the device identifier storage unit 811 on the device 81 side.
Furthermore, it is assumed that “x3” is registered as the device identifier Idv in the user information DB 713 corresponding to “y2” as the user identifier Iusr for the contractor γ. Under this assumption, as shown in FIG. 70, “x3” is set as the device identifier Idv in the device identifier storage unit 811 on the device 201 side.
[0259]
Here, FIG. 71 (b) shows a usage right database 714, which will be described later.
[0260]
When the above preparation is completed, the device 81 can acquire the content data Dcnt and the license information Dlc from the usage right management device 71 as described in the above embodiment (FIGS. 61 and 64 to FIG. 64). (See FIG. 66). Further, as shown in FIG. 68, the characteristic point of this modification is that the contractor β brings the portable recording medium 101 to the contractor γ side, and uses the device 201 on the contractor γ side, The provision of the content data Dcnt and the license information Dlc can be received from the usage right management device 71.
[0261]
Hereinafter, with reference to FIGS. 72 and 73, operations of the device 201 and the usage right management apparatus 71 when the contractor β acquires the content data Dcnt using the device 201 will be described. First, the contractor β attaches his portable recording medium 101 to the device 201 on the contractor γ side. Accordingly, the portable recording medium 101 is connected to the identifier extraction unit 2022 through the interface 2021 (see FIG. 70) so as to be able to perform data communication. Thereafter, the contractor β operates the device 201 to access the usage right management apparatus 71, and specifies the content identifier Icnt of what is desired to be acquired from the content data Dcnt stored in the content DB 711. In the following description, the content data Dcnt designated this time is referred to as acquisition target content data Dcnt. Further, the contractor β designates a use condition Ccnt when using the acquisition target content data Dcnt. Here, since the use condition Ccnt has been described in detail in the above-described embodiment, the description thereof is omitted here. Also in this modification, for convenience, it is assumed that the use condition Ccnt is the number of times the content data Dcnt is reproduced.
[0262]
As described above, the contractor β operates the device 201 to specify the content identifier Icnt and the usage rule Ccnt. The setting request generation unit 812 (see FIG. 70) receives the content identifier Icnt and the usage rule Ccnt designated by the contractor β (step S401).
[0263]
Next, the setting request generation unit 812 instructs the identifier extraction unit 2022 to select either the device identifier Idv or the media identifier Imd and return it to itself. By the way, when the portable recording medium 101 is mounted on the device 201, the device 201 includes a device identifier Idv stored in the device identifier storage unit 811 and a media identifier stored in the portable recording medium 101. Imd exists. Therefore, when the portable recording medium 101 is loaded in response to an instruction from the setting request generation unit 812, the identifier extraction unit 2022 is a medium stored in the portable recording medium 101 through the interface 2021. The identifier Imd is taken out. The setting request generation unit 812 receives the media identifier Imd extracted by the identifier extraction unit 2022 (step S402).
[0264]
Here, when the portable recording medium 101 is not attached to the device 201, the identifier extraction unit 2022 extracts the device identifier Idv from the device identifier storage unit 811 and passes it to the setting request generation unit 812. However, in this case, the contractor γ uses the device 201 to acquire the content data Dcnt. In such a case, regardless of the purpose of this modification, the operation of the device 201 when the identifier extraction unit 2022 extracts the device identifier Idv is apparent from the description of the above-described embodiment. Therefore, the description is omitted.
[0265]
The setting request generation unit 812 generates a setting request Drr (see FIG. 74A) by adding the setting request identifier Irr held in advance to the media identifier Imd, the content identifier Icnt, and the use condition Ccnt. S403). The setting request Drr is information for requesting the usage right management apparatus 11 to set the usage right of the acquisition target content data Dcnt. In the present embodiment, the distribution of the acquisition target content data Dcnt is further transmitted to the usage right management apparatus 71. Information to request. The setting request identifier Irr is used by the usage right management device 71 to identify the setting request Drr. The setting request generation unit 812 passes the above setting request Drr to the communication unit 813. The communication unit 813 transmits the received setting request Drr to the usage right management apparatus 71 through the transmission path 91 (step S404).
[0266]
In the usage right management device 71 (see FIG. 55), the communication unit 715 receives the setting request Drr transmitted through the transmission path 91 and passes it to the user authentication unit 716. The user authentication unit 716 performs user authentication processing on the setting request Drr (step S405). More specifically, the user authentication unit 716 manages the above-described user information DB 713 (see FIG. 71A), and the one that matches the media identifier Imd set in the received setting request Drr is It is confirmed whether or not the user information DB 713 is registered. The user authenticating unit 716 determines that the current setting request Drr is from the contractor β only when an item that matches the user information DB 713 is registered. Further, according to such a determination result, the user authentication unit 716 extracts the user identifier Iusr corresponding to the current media identifier Imd from the user information DB 713 and passes it to the usage right management unit 717 together with the received setting request Drr.
[0267]
A usage right management unit 717 (see FIG. 55) manages a usage right database (hereinafter referred to as a usage right DB) 714. Also, the usage right management unit 717 recognizes that the setting request Drr has been passed from the user authentication unit 716 based on the setting request identifier Irr set therein. According to such a recognition result, the usage right management unit 717 performs usage right registration processing in the usage right DB 714 (step S406). More specifically, the usage right management unit 717 extracts the content identifier Icnt and the usage condition Ccnt from the setting request Drr, and registers the combination of the content identifier Icnt and the received user identifier Iusr in the usage right DB 714. Here, the usage right management unit 717 considers that the contractor β requests the setting of the right to use the acquisition target content data Dcnt with the usage condition Ccnt set in the setting request Drr. That is, when viewed from the usage right management unit 717, the usage condition Ccnt indicates the right that the contractor β can use the acquisition target content data Dcnt. From the above viewpoint, the usage right management unit 717 handles the usage condition Ccnt extracted from the setting request Drr as the usage right information Drgt. That is, the usage right DB 714 is a set of combinations of the user identifier Iusr, the content identifier Icnt, and the usage right information Drgt, as shown in FIG. 71 (b). Accordingly, the usage right management unit 717 manages the usage right of the acquisition target content data Dcnt of the contractor β. When the above usage condition registration processing is completed, the usage right management unit 717 passes the setting request Drr received this time to the content management unit 718.
[0268]
Here, a specific example of the usage right information Drgt registered in the above usage right DB 714 is registered. As already described, in the present embodiment, the use condition Ccnt is assumed to be the number of uses. Further, it is assumed that “x1” is set as the media identifier Imd, “a” is set as the content identifier Icnt, and “reproduction m times” (m is a natural number) is set as the use condition Ccnt in the current setting request Drr. Under the above assumption, the user authentication unit 716 extracts “y1” as the user identifier Iusr from the user information DB 713 and passes it to the usage right management unit 717 in the user authentication process of step S405. Accordingly, in step S406, as shown in FIG. 71 (b), one usage condition information Dcrt includes “y1” as the user identifier Iusr, “a” as the content identifier Icnt, and “a” as the usage right information Drgt. "Play m times" is set.
[0269]
Although not related to the technical features of the license information management system Sc1, in step S406, the usage right management unit 717 assigns the contractor β to which the user identifier Iusr is assigned for each registration of the usage condition information Dcrt. You may charge for it.
[0270]
Upon receiving the setting request Drr, the content management unit 718 performs a reading process similar to step S204 in FIG. 61 (step S407). Thereafter, the content encryption unit 719 performs encryption processing similar to that in step S205 (step S408). Further, the transmission data generation unit 720 performs transmission data generation processing similar to step S206 (step S409). As a result, similarly to step S206, transmission data Dtrn (see FIG. 62B) is transmitted to the device 201 via the transmission path 91 (step S4010).
[0271]
In the device 201 (see FIG. 70), the communication unit 813 performs a reception process similar to step S208 in FIG. 61 (FIG. 73; step S4011). The content management unit 814 performs accumulation processing similar to that in step S209 (step S4012). As a result, as described with reference to FIG. 63, the content storage unit 815 stores several combinations of the content identifier Icnt and the encrypted content data Decnt.
[0272]
Similar to the description in the above embodiment, the encrypted content data Decnt is distributed to the device 201. Therefore, when using the content data Dcnt, the device 201 needs to decrypt the encrypted content data Decnt with the decryption key Kd provided by the usage right management device 71. Here, in the license information management system Sc1, license information Dlc, which will be described in detail later, is used to provide the decryption key Kd to the device 201 being operated by the contractor β. Hereinafter, the operations of the device 201 and the usage right management apparatus 71 at the time of obtaining the license information Dlc and decrypting the content data Dcnt will be described with reference to FIGS.
[0273]
First, the contractor β operates the device 201 to access the content storage unit 815, and specifies what is desired to be used from the encrypted content data Decnt stored therein. Here, in the following description, the encrypted content data Decnt designated this time is referred to as decryption target content data Decnt.
[0274]
The content management unit 814 (see FIG. 70) manages the content storage unit 815, and extracts from the content storage unit 815 the content identifier Icnt added to the decryption target content data Decnt specified by the contractor β. . The issue request generation unit 816 receives the content identifier Icnt extracted by the content management unit 814 (step S501).
[0275]
Next, the issue request generation unit 816 instructs the identifier extraction unit 2022 to select either the device identifier Idv or the media identifier Imd and return it to itself. When the portable recording medium 101 is loaded in response to an instruction from the issue request generation unit 816, the identifier extraction unit 2022 receives the media identifier Imd stored in the portable recording medium 101 through the interface 2021. Take out. The issue request generation unit 816 receives the media identifier Imd extracted by the identifier extraction unit 2022 (step S502).
[0276]
Here, as described above, when the portable recording medium 101 is not loaded in the device 201, the identifier extraction unit 2022 extracts the device identifier Idv from the device identifier storage unit 811 and passes it to the setting request generation unit 812. . However, in this case, the contractor γ uses the device 201 to receive the license information Dlc. In such a case, regardless of the purpose of this modification, the operation of the device 201 when the identifier extraction unit 2022 extracts the device identifier Idv is apparent from the description of the above-described embodiment. Therefore, the description is omitted.
[0277]
Thereafter, the issue request generation unit 816 adds the issue request identifier Iir to the media identifier Imd and the content identifier Icnt to generate an issue request Dir (see FIG. 74B) (step S503). Here, the issue request Dir is information for requesting the usage right management apparatus 71 to provide the license information Dlc. The issue request identifier Iir is used by the usage right management device 71 to identify the issue request Dir. The issue request generation unit 816 passes the above issue request Dir to the communication unit 813. The communication unit 813 transmits the received issuance request Dir to the usage right management apparatus 71 through the transmission path 91 (step S504).
[0278]
In the usage right management device 71, the communication unit 715 (see FIG. 55) receives the issue request Dir transmitted through the transmission path 91 and passes it to the user authentication unit 716. When the user authentication unit 716 receives the issuance request Dir, the user authentication unit 716 performs user authentication processing on the issuance request Dir (step S505). More specifically, the user authentication unit 716 determines whether or not an item that matches the media identifier Imd set in the received issue request Dir is registered in the user information DB 713 (see FIG. 71A). Check. The user authentication unit 716 determines that the current issuance request Dir is from the contractor β only when an item that matches the user information DB 713 is registered. Further, according to such a determination result, the user authentication unit 716 extracts the user identifier Iusr corresponding to the current media identifier Imd from the user information DB 713 and passes it to the usage right management unit 717 together with the received issue request Dir.
[0279]
Based on the issue request identifier Iir set in the issue request Dir, the usage right management unit 717 recognizes that the issue request Dir has been passed from the user authentication unit 716 this time. According to such a recognition result, the usage right management unit 717 extracts the content identifier Icnt from the received issuance request Dir (step S506). Next, the usage right management unit 717 determines whether the combination of the received user identifier Iusr and the extracted content identifier Icnt is registered in the usage right DB 714 (see FIG. 71B) (step S507). .
[0280]
If the usage right management unit 717 determines “Yes” in step S507, the usage right information Drgt of the same set can be referred to and the contractor β can grant usage permission to the device 201 being operated. It is determined whether or not (step S508). If “Yes” is determined in step S508, the usage right management unit 717 extracts part or all of the usage right information Drgt (step S509). Here, in order to avoid confusion in the following description, some or all of the usage right information Drgt extracted in step S509 is transferred to the device 201 of the contractor β specified by the current issue request Dir. From the viewpoint of being information for permitting use of the content data Dcnt, it is referred to as use permission information Dlw. That is, in step S509, usage permission information Dlw is generated.
[0281]
By generating the usage permission information Dlw, part or all of the usage right information Drgt registered for the contractor β is used. Therefore, after step S509, the usage right management unit 717 updates the usage right information Drgt extracted in part or all in step S509 (FIG. 75; step S5010).
[0282]
Here, a specific example of the processing of steps S506 to S5010 is registered. Now, in the usage right DB 714, as shown in FIG. 71 (b), there is a set of “y1” as the user identifier Iusr, “a” as the content identifier Icnt, and “replay m times” as the usage right information Drgt. Assume that it is registered. In addition, it is assumed that the device 201 transmits an issue request Dir in which “x2” as the media identifier Imd and “a” as the content identifier Icnt are set this time.
[0283]
Under the above assumption, in step S506, the usage right management unit 717 receives “y1” as the user identifier Iusr, and further extracts “a” as the content identifier Icnt from the issue request Dir. In step S507, it is determined that the combination of “y1” as the user identifier Iusr and “a” as the content identifier Icnt is registered in the usage right DB 714. If determined in this way, in step S508, the same set of usage right information Drgt is set to “play m times”, so even if the contractor β gives permission to use the device 201 being operated. Judged to be good. If it judges in this way, use permission information Dlw will be generated in Step S509. As the usage permission information Dlw generated at this time, for example, “reproduction n times” can be mentioned. Here, n is a natural number that does not exceed m, and is more preferably set according to the processing capability of the device 201. For example, if the device 201 is equipped with hardware with relatively low performance, n is set to a minimum value that the device 201 can use the decryption target content data Decnt, such as “1”. It is preferably set.
[0284]
Through the above steps S506 to S509, the portable recording medium 101 (media identifier Imd is “x2”) mounted on the device 201 uses the right to reproduce the content data Dcnt (content identifier Icnt “a”) n times. Become. Therefore, in step S5010, the usage right information Drgt of the contractor β is updated from “reproduction m times” to “reproduction (mn) times”.
[0285]
The usage right management unit 717 (see FIG. 55) passes the usage permission information Dlw generated as described above to the license information generation unit 721 together with the issue request Dir. More specifically, the license information generation unit 721 includes a hash value generation unit 7211 and a license information assembly unit 7212 as shown in FIG. Only the usage permission information Dlw is passed to the hash value generation unit 7211, and both the usage permission information Dlw and the issue request Dir are passed to the license information assembling unit 7212.
[0286]
First, the hash value generation unit 7211 generates a hash value Vhs (step S5011) in the same manner as in step S308 of FIG. 64, and passes the generated hash value Vhs to the license information assembly unit 7212. The license information assembling unit 7212 passes the received issuance request Di to the decryption key management unit 722. The decryption key management unit 722 (see FIG. 55) manages the above-described decryption key DB 712 (see FIG. 59 (b)). The decryption key management unit 722 extracts the content identifier Icnt and the media identifier Imd set in the received issue request Dir. Further, the decryption key management unit 722 extracts the decryption key Kd having the same set as the content identifier Icnt from the decryption key DB 712 and passes it to the decryption key encryption unit 723 together with the media identifier Imd. The decryption key encryption unit 723 encrypts the received decryption key Kd with the media identifier Imd received at the same time (step S5012), and generates an encrypted decryption key Ked. The above encrypted decryption key Ked is transferred to the license information assembling unit 7212.
[0287]
When all of the issuance request Dir, use permission information Dlw, hash value Vhs, and encrypted decryption key Ked are obtained, the license information assembling unit 7212 performs the license information shown in FIG. Dlc is generated (step S5013). The above license information Dlc is passed to the communication unit 715. The data is transmitted from the communication unit 715 to the device 201 through the transmission path 91 (step S5014).
[0288]
In the device 201 (see FIG. 70), the communication unit 813 receives the license information Dlc transmitted through the transmission path 91 in the same manner as in step S3012 (step S5015), and passes it to the license information processing unit 817.
[0289]
As shown in FIG. 58, the license information processing unit 817 includes a falsification determination unit 8171, a hash value generation unit 8172, a use permission determination unit 8173, and a decryption key decryption unit 8174. The license information Dlc from the communication unit 813 is first passed to the falsification determination unit 8171. First, similarly to step S3013, the falsification determining unit 8171 extracts the usage permission information Dlw from the received license information Dlc, further extracts the hash value Vhs as the external hash value Vehs (step S5016), and the extracted usage permission information. Dlw is passed to the hash value generation unit 8172, and the external hash value Vehs is held as it is.
[0290]
The hash value generation unit 8172 generates the internal hash value Vlhs in the same manner as in step S3014 (step S5017), and returns it to the falsification determination unit 8171.
[0291]
Upon receiving the internal hash value Vlhs, the falsification determination unit 8171 determines whether or not the usage permission information Dlw has been falsified in the same manner as in step S3015 (step S5018). Passes the license information Dlc received this time to the use permission determination unit 8173.
[0292]
The use permission determination unit 8173 refers to the received license information Dlc and determines whether or not the use of the decryption target content data Decnt is permitted in the same manner as in step S3016 (step S5019). The use permission determination unit 8173 extracts the encrypted decryption key Ked from the received license information Dlc and passes it to the decryption key decryption unit 8174 only when “Yes” is determined in step S5019.
[0293]
Here, a specific example of the processing in step S5019 will be described. According to the above assumption, the reproduction of the content data Dcnt is permitted n times by the use permission information Dlw of the current license information Dlc. In such a case, the use permission determination unit 8173 determines in step S5019 that the use of the decryption target content data Decnt is permitted if the number of times of reproduction set in the use permission information Dlw is 1 or more. The encrypted decryption key Ked is extracted from the license information Dlc and transferred to the decryption key decryption unit 8174.
[0294]
The decryption key decryption unit 8174 receives the encrypted decryption key Ked from the use permission determination unit 8173. Further, the decryption key decryption unit 8174 instructs the identifier extraction unit 2022 to select one of the device identifier Idv and the media identifier Imd and return it to itself. When the portable recording medium 101 is loaded in response to an instruction from the decryption key decryption unit 8174, the identifier extraction unit 2022 receives the media identifier Imd stored in the portable recording medium 101 through the interface 2021. Take out. The decryption key decryption unit 8174 receives the media identifier Imd extracted by the identifier extraction unit 2022.
[0295]
Here, when the portable recording medium 101 is not attached to the device 201, the identifier extraction unit 2022 extracts the device identifier Idv from the device identifier storage unit 811 and passes it to the decryption key decryption unit 8174. In such a case, regardless of the purpose of this modification, the operation in the device 201 when the identifier extraction unit 2022 extracts the device identifier Idv is the same as that in the above-described embodiment. The description is omitted.
[0296]
When the media identifier Imd is received as described above, the decryption key decryption unit 8174 decrypts the encrypted decryption key Ked with the media identifier Imd (FIG. 77; step S5020), and the decryption key Kd is the content decryption unit 818. To pass.
[0297]
Incidentally, in step S501, the content management unit 814 extracts not only the content identifier Icnt but also the above-described decryption target content data Decnt. The extracted decryption target content data Decnt is passed to the content decryption unit 818. The content decryption unit 818 decrypts the content data Decnt to be decrypted with the decryption key Kd received from the decryption key decryption unit 8174 (step S5021), and passes the content data Dcnt to the content reproduction unit 819. The content reproduction unit 819 reproduces the received content data Dcnt and outputs the sound (step S5022). As a result, the contractor β can listen to the music represented by the content data Dcnt purchased from the business operator α. As described above, according to the license information management system Sc1, the contractor β uses the content data Dcnt with the device 201 managed by another contractor γ using the usage right information Drgt obtained by the contractor β. It becomes possible to do. This makes it possible to provide a license information management system Sc1 that is easier to use.
[0298]
Here, in step S5018 of FIG. 76, the falsification determination unit 8171 may determine that the usage permission information Dlw has been falsified. In step S5019, the use permission determination unit 8173 may determine that the use of the decryption target content data Decnt is not permitted. In such a case, the falsification determination unit 8171 and the usage permission determination unit 8173 execute step S3020 of FIG. 66 and discard the license information Dlc received this time.
[0299]
In step S507 in FIG. 75, the usage right management unit 717 may determine that the combination of the user identifier Iusr and the content identifier Icnt is not registered in the usage right DB 714 (see FIG. 71B). Further, in step S508, the usage right management unit 717 may determine that the contractor β does not grant usage permission to the device 201 being operated. In such a case, the usage right management unit 717 executes step S3021 in FIG. 66 to generate usage refusal information Drj and passes it to the communication unit 715. The communication unit 715 transmits the received use refusal information Drj to the device 201 via the transmission path 91. As a result, as in the above-described embodiment, the device 201 can be prevented from decrypting the decryption target content data Decnt.
[0300]
In step S507, when the usage right management unit 717 determines that the combination of the user identifier Iusr and the content identifier Icnt is not registered in the usage right DB 714 (see FIG. 71B), the user identifier Iusr, The content identifier Icnt and the usage right information Drgt may be generated and registered in the usage right DB 714.
[0301]
In the above modification, the device 81 described in the above embodiment is installed on the contractor β side. However, the present invention is not limited to this, and the device 201 described above may be installed.
[0302]
In the above modification, the device 201 has been described as including the device identifier storage unit 811. However, if the contractor γ itself does not receive the content data Dcnt and the license information Dlc from the usage right management apparatus 71 using the device 201, the device 201 does not need to include the device identifier storage unit 811.
[0303]
Also in the above-described modified example, similar to the above-described embodiment, different usage right management apparatuses may perform the processes in FIGS. 72 and 73 and the processes in FIGS. 75 to 77. Further, also in this modification, the license information Dlc may be acquired first, and then the content data Dcnt may be acquired. Further, the acquisition of the content data Dcnt and the acquisition of the license information Dlc may be performed in parallel.
[0304]
Further, in the above modification, for convenience of explanation, it has been described that the user identifier Iusr, the device identifier Idv, and / or the media identifier Imd are registered in the user information DB 713. However, similarly to the above-described embodiment, other user information (for example, an address and a telephone number) that can uniquely identify the contractor β may be registered in the user information DB 713.
[0305]
Further, in the above modification example, the content playback unit 819 in the device 201 can output a TV program, a movie, a book, a printed matter, and a game content according to the type of the content data Dcnt, as in the above-described embodiment. The radio program may be replaced with one capable of outputting sound. Further, the device 201 replaces the decrypted content data Dcnt with an external device (television receiver, radio receiver, music player, electronic book reader, game device, A PC, an information portable terminal, a mobile phone, an external storage device, etc.) may be provided.
[0306]
Also in the above-described modification, the license information Dlc may include the unencrypted decryption key Kd as it is under the condition that a protection technology such as SSL is applied, as in the above-described embodiment. In order to protect digital rights, it is more preferable that the device 201 incorporates an algorithm for encrypting the license information Dlc with the media identifier Imd stored in the portable recording medium 101.
[0307]
Further, the interface 2021 and the identifier extraction unit 2022 according to the sixth modified example described above may be incorporated in the device 51 according to the second embodiment. As described above, when both the interface 2021 and the identifier extraction unit 2022 are incorporated in the device 51a or 51b, the identifier extraction unit 2022 is set in the device identifier storage unit 211 of the device 51a or 51b in accordance with the user's specification. Using either the device identifier Idva or Idvb or the media identifier Imd stored in the portable recording medium 101, the setting request Drr is generated and transmitted to the usage right management apparatus 41. As a result, the user can use the content data Dcnt by using either the device 51a or 51b or the portable recording medium 101. Therefore, the user-friendly license information management system Sb can be realized.
[Brief description of the drawings]
FIG. 1 is a block diagram showing an overall configuration of a license information management system Sa accommodating a usage right management apparatus 11 according to a first embodiment of the present invention.
2 is a block diagram showing a detailed configuration of a usage right management apparatus 11 in FIG. 1;
3 is a block diagram showing a detailed configuration of a license information generation unit 121 in FIG.
4 is a block diagram showing a detailed configuration of the devices 21a and 21b in FIG. 1. FIG.
5 is a block diagram showing a detailed configuration of a license information processing unit 217 in FIG.
6 is a schematic diagram showing the content DB 111 of FIG. 2 and the decryption key DB 112 of FIG.
7 is a schematic diagram showing a user information DB 113 in FIG. 2 and a usage right DB 114 in FIG. 2;
FIG. 8 is a flowchart showing operations of the device 21a and the usage right management apparatus 11 when setting and acquiring the usage right of the content data Dcnt.
9 is a schematic diagram showing a format of a setting request Drr and transmission data Dtrn transmitted and received in the course of the process shown in FIG.
10 is a schematic diagram showing data stored in the content storage unit 215 of FIG. 4. FIG.
FIG. 11 is a first flowchart showing operations of the device 21a and the usage right management apparatus 11 when acquiring license information Dlca and decrypting content data Dcnt.
FIG. 12 is a second flowchart showing the operations of the device 21a and the usage right management apparatus 11 when obtaining the license information Dlca and decrypting the content data Dcnt.
FIG. 13 is a third flowchart showing the operations of the device 21a and the usage right management apparatus 11 when obtaining the license information Dlca and decrypting the content data Dcnt.
14 is a schematic diagram showing a format of an issuance request Dir, license information Dlc, and use refusal information Drj transmitted and received in the process of FIGS. 12 to 13; FIG.
15 is a block diagram showing an overall configuration of a license information management system Sa1 that accommodates a usage right management apparatus 11a according to a first modification of the usage right management apparatus 11 of FIG. 1;
16 is a block diagram showing a detailed configuration of a usage right management apparatus 11a shown in FIG.
17 is a block diagram showing a detailed configuration of a device 21c shown in FIG.
18 is a flowchart showing operations of the device 21c and the usage right management apparatus 11a until the device 21c of FIG. 15 is registered in the user information DB 113. FIG.
FIG. 19 is a schematic diagram showing a format of a registration request Drsc, a registration completion notification Dscc, and a registration rejection notification Dsrc transmitted and received in the process of FIG.
20 is a schematic diagram showing a user information DB 113 updated by the process of FIG.
21 is a block diagram showing a detailed configuration of a usage right management apparatus 11b according to a second modification of the usage right management apparatus 11 of FIG.
FIG. 22 is a block diagram showing a detailed configuration of a device 21a or 21b according to a second modification.
FIG. 23 is a block diagram showing a detailed configuration of a device 21c according to a second modification.
24 is a flowchart showing operations of the device 21a and the usage right management apparatus 11b when registering the device identifier Idvc of the device 21c in the user information DB 113. FIG.
FIG. 25 is a flowchart showing operations of the device 21c and the usage right management apparatus 11b when registering the device identifier Idvc of the device 21c in the user information DB 113;
26 is a schematic diagram showing a format of a temporary registration request Dprsc and a temporary registration completion notification Dpscc transmitted / received in the process of FIG. 24.
FIG. 27 is a schematic diagram showing a user information DB 113 updated by the processes of FIGS. 24 and 25. FIG.
28 is a schematic diagram showing a format of a main registration request Dcrsc and a main registration completion notification Dcscc transmitted and received in the process of FIG.
29 is a block diagram showing a detailed configuration of a usage right management apparatus 11c according to a third modification of the usage right management apparatus 11 of FIG. 1. FIG.
FIG. 30 is a block diagram showing a detailed configuration of a device 21a or 21b according to a third modification.
FIG. 31 is a block diagram showing a detailed configuration of a device 21c according to a third modification.
32 is a flowchart showing operations of the device 21c and the usage right management apparatus 11c when registering the device identifier Idvc of the device 21c in the user information DB 113. FIG.
33 is a flowchart showing operations of the device 21a and the usage right management apparatus 11c when registering the device identifier Idvc of the device 21c in the user information DB 113. FIG.
34 is a schematic diagram showing a format of a password request Drps and a password notification Dpss transmitted / received in the process of FIG. 32. FIG.
35 is a schematic diagram showing a user information DB 113 updated by the processes of FIGS. 32 and 33. FIG.
36 is a schematic diagram showing a format of a registration request Drsc and a registration completion notification Dscc transmitted / received in the process of FIG. 33. FIG.
FIG. 37 is a block diagram showing a detailed configuration of a usage right management apparatus 11d according to a fourth modification of the usage right management apparatus 11 in FIG. 1;
FIG. 38 is a block diagram showing a detailed configuration of a device 21a or 21b according to a fourth modification.
FIG. 39 is a block diagram showing a detailed configuration of a device 21c according to a fourth modification.
40 is a flowchart showing the operations of the device 21a, the device 21c, and the usage right management apparatus 11d until the device identifier Idvc of the device 21c is registered in the user information DB 113. FIG.
41 is a diagram showing a format of a first registration request Drsc1, a second registration request Drsc and a registration completion notification Dscc transmitted and received in the process of FIG. 40. FIG.
42 is a block diagram showing an overall configuration of a license information management system Sa5 that accommodates a usage right management apparatus 11e according to a fifth modification of the usage right management apparatus 11 of FIG. 1;
43 is a block diagram showing a detailed configuration of a usage right management apparatus 11e shown in FIG. 42. FIG.
44 is a block diagram showing a detailed configuration of the device 21b shown in FIG. 42. FIG.
45 is a flowchart showing operations of the device 21b and the usage right management apparatus 11e until the device identifier Idvb of the device 21b is deleted from the user information DB 113 and the usage right DB 114. FIG.
46 is a schematic diagram showing a format of a deletion request Drwb and a deletion completion notification Dswb transmitted and received in the process of FIG. 45.
47 is a schematic diagram showing the user information DB 113 updated by the process of FIG. 45. FIG.
FIG. 48 is a block diagram showing an overall configuration of a license information management system Sb accommodating a usage right management apparatus 41 according to the second embodiment of the present invention.
49 is a block diagram showing a detailed configuration of a usage right management apparatus 41 in FIG. 48. FIG.
50 is a block diagram showing a detailed configuration of devices 51a and 51b in FIG. 48. FIG.
FIG. 51 is a flowchart showing operations of the device 51a and the usage right management apparatus 41 when acquiring content data Dcnt.
52 is a schematic diagram showing a usage right DB 114 of FIG. 49. FIG.
53 is a diagram showing a format of a second setting request Drr2b transmitted and received in the process of FIG. 51. FIG.
FIG. 54 is a block diagram showing an overall configuration of a license information management system Sc according to a third embodiment of the present invention.
55 is a functional block diagram showing a detailed configuration of a usage right management device 71 in FIG. 54. FIG.
56 is a diagram showing a detailed configuration of a license information generation unit 721 in FIG. 55. FIG.
57 is a functional block diagram showing a detailed configuration of the device 81 in FIG. 54. FIG.
58 is a functional block diagram showing a detailed configuration of a license information processing unit 817 in FIG. 57. FIG.
59 is a schematic diagram showing the content DB 711 of FIG. 55 and the decryption key DB 712 of FIG. 55. FIG.
60 is a schematic diagram showing a user information DB 713 and a usage right DB 714 in FIG. 55. FIG.
FIG. 61 is a flowchart showing operations of the device 81 and the usage right management apparatus 71 when acquiring content data Dcnt.
62 is a schematic diagram showing a format of a setting request Drr and transmission data Dtrn transmitted and received in the process of FIG. 61. FIG.
63 is a schematic diagram showing data stored in the content storage unit 815 of FIG. 58. FIG.
FIG. 64 is a first flowchart showing operations of the device 81 and the usage right management apparatus 71 when acquiring license information Dlc and decrypting content data Dcnt.
FIG. 65 is a second flowchart showing the operations of the device 81 and the usage right management apparatus 71 when acquiring the license information Dlc and decrypting the content data Dcnt.
FIG. 66 is a third flowchart showing the operations of the device 81 and the usage right management apparatus 71 when obtaining the license information Dlc and decrypting the content data Dcnt.
67 is a schematic diagram showing a format of an issue request Dir, license information Dlc, and usage refusal information Drj sent and received in the process of FIGS. 64 to 66. FIG.
68 is a block diagram showing an overall configuration of a license information management system Sc1 according to a variation of the license information management system Sc of FIG. 54. FIG.
69 is a schematic diagram showing a configuration of the portable recording medium 101 in FIG. 68. FIG.
70 is a functional block diagram showing a detailed configuration of the device 201 in FIG. 68. FIG.
71 is a schematic diagram showing a user information DB 713 and a usage right DB 714 in FIG. 68. FIG.
FIG. 72 is a first flowchart showing the operation of the device 201 and the usage right management apparatus 71 when the contractor β acquires the content data Dcnt using the device 201.
FIG. 73 is a second flowchart showing the operations of the device 201 and the usage right management apparatus 71 when the contractor β uses the device 201 to acquire the content data Dcnt.
74 is a schematic diagram showing a format of a setting request Drr and an issue request Dir that are transmitted and received in the course of the processing of FIGS. 72 and 73. FIG.
FIG. 75 is a first flowchart showing operations of the device 201 and the usage right management apparatus 71 when acquiring license information Dlc and decrypting content data Dcnt.
FIG. 76 is a second flowchart showing the operations of the device 201 and the usage right management apparatus 71 when acquiring the license information Dlc and decrypting the content data Dcnt.
77 is a third flowchart showing the operations of the device 201 and the usage right management apparatus 71 when obtaining the license information Dlc and decrypting the content data Dcnt. FIG.
[Explanation of symbols]
Sa, Sa1 to Sa5, Sb, Sc, Sc1... License information management system
11, 11a to 11e, 41, 71 ... Usage right management device
21a-21c, 51a, 51b, 81, 201 ... equipment
101: Portable recording medium

Claims (12)

A device for managing usage right information representing a right for a plurality of devices to use the same content data,
A user information database (hereinafter referred to as user information DB) in which device identifiers for uniquely identifying each of the plurality of devices belonging to a predetermined group are registered;
A usage right database (hereinafter referred to as a usage right DB) in which the usage right information in which content identifiers uniquely specifying content data and device identifiers of the plurality of devices are associated is registered for each content data;
An issuance request including the content identifier of the content data to be used and its own device identifier is received from the device, and authentication is performed as to whether or not the device identifier included in the received issuance request is registered in the user information DB. A user authentication unit to
The usage right DB is searched for the usage right information associated with the content identifier and the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit. Use permission information indicating use permission for the content data to be used identified by the content identifier associated with the right information, and the use permission range is within the right range represented by the searched use right information A usage right management unit for generating permission information;
A license information generating unit that generates license information including at least the usage permission information generated by the usage right management unit;
Based on the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit, the device that has transmitted the issuance request is identified. A communication unit that transmits the license information generated by the license information generation unit;
Input from a device whose device identifier is registered in the user information DB by a user who operates a registered identifier that is his / her device identifier and a device identifier that is unregistered in the user information DB When a temporary registration request including a registration target identifier is received , a temporary registration flag indicating that the registration target identifier is temporarily registered based on the registered identifier and the registration target identifier included in the received temporary registration request And registering the registration target identifier in association with the registered identifier in the user information DB, temporarily registering the registration target identifier, and after temporary registration, from a device whose device identifier is not registered in the user information DB, A registration target identifier included in the temporary registration request and a registered identifier included in the temporary registration request and not registered. If the user operating the equipment has received the registration request including the registered identifier input, based on the registered identifier and registration target identifier included in the registration request the received, the registration in the user information DB A user information management unit for performing main registration of the registration target identifier temporarily registered in association with the registered identifier in the user information DB by deleting the temporary registration flag registered in association with the completed identifier. , Usage right management device. A device for managing usage right information representing a right for a plurality of devices to use the same content data,
A user information database (hereinafter referred to as user information DB) in which device identifiers for uniquely identifying each of the plurality of devices belonging to a predetermined group are registered;
A usage right database (hereinafter referred to as a usage right DB) in which the usage right information in which content identifiers uniquely specifying content data and device identifiers of the plurality of devices are associated is registered for each content data;
An issuance request including the content identifier of the content data to be used and its own device identifier is received from the device, and authentication is performed as to whether or not the device identifier included in the received issuance request is registered in the user information DB. A user authentication unit to
The usage right DB is searched for the usage right information associated with the content identifier and the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit. Use permission information indicating use permission for the content data to be used identified by the content identifier associated with the right information, and the use permission range is within the right range represented by the searched use right information A usage right management unit for generating permission information;
A license information generating unit that generates license information including at least the usage permission information generated by the usage right management unit;
Based on the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit, the device that has transmitted the issuance request is identified. A communication unit that transmits the license information generated by the license information generation unit;
From a device whose device identifier is not registered in the user information DB, a registration target identifier which is its own device identifier, and a user who operates the unregistered device which is a device identifier registered in the user information DB When a password request including a registered identifier is received, a password for the unregistered device is generated based on the registered identifier and the registration target identifier included in the received password request, and the password is not registered. Notifying the device and registering the password and the registration target identifier in association with the registered identifier in the user information DB to temporarily register the registration target identifier, and after temporary registration, register the device in the user information DB The registered identifier included in the password request from the registered device is its own device identifier. When a registration request is received that includes a password notified to the unregistered device and entered by a user operating the registered device, the registered identifier and password included in the received registration request The registration target identifier temporarily registered in association with the registered identifier and password in the user information DB is deleted by deleting the password registered in association with the registration target identifier in the user information DB. A right-of-use management apparatus comprising a user information management unit for main registration. A device for managing usage right information representing a right for a plurality of devices to use the same content data,
A user information database (hereinafter referred to as user information DB) in which device identifiers for uniquely identifying each of the plurality of devices belonging to a predetermined group are registered;
A usage right database (hereinafter referred to as a usage right DB) in which the usage right information in which content identifiers uniquely specifying content data and device identifiers of the plurality of devices are associated is registered for each content data;
An issuance request including the content identifier of the content data to be used and its own device identifier is received from the device, and authentication is performed as to whether or not the device identifier included in the received issuance request is registered in the user information DB. A user authentication unit to
The usage right DB is searched for the usage right information associated with the content identifier and the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit. Use permission information indicating use permission for the content data to be used identified by the content identifier associated with the right information, and the use permission range is within the right range represented by the searched use right information A usage right management unit for generating permission information;
A license information generating unit that generates license information including at least the usage permission information generated by the usage right management unit;
Based on the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit, the device that has transmitted the issuance request is identified. A communication unit that transmits the license information generated by the license information generation unit;
After a first registration request including a registration target identifier, which is its own device identifier, is transmitted from a device whose device identifier is not registered in the user information DB to a device whose device identifier is registered in the user information DB, When the second registration request including the registered identifier that is the device identifier of itself and the registration target identifier included in the first registration request is received from the registered device, the received second registration A usage right management apparatus comprising: a user information management unit that registers a registration target identifier in association with a registered identifier in the user information DB based on a registered identifier and a registration target identifier included in the request . The device transmits a setting request including a content identifier of content data, a use condition of the content data, and its own device identifier,
The user authentication unit further receives the setting request, and authenticates whether a device identifier included in the received setting request is registered in the user information DB,
The usage right management unit uses, as the usage right information, a usage condition included in a setting request authenticated as registered in the user information DB by the user authentication unit, and a content identifier and a device identifier included in the setting request. The usage right management apparatus according to claim 1, wherein the usage right management device is registered in the usage right DB in association with the usage right DB . A content database (hereinafter referred to as a content DB) for storing content data to be distributed in association with a content identifier of the content data;
A content management unit that reads from the content DB content data associated with a content identifier included in a setting request that is authenticated as being registered in the user information DB by the user authentication unit;
A content encryption unit for encrypting content data read by the content management unit;
A transmission data generation unit that generates transmission data including content data encrypted by the content encryption unit;
The communication unit further identifies the device that has transmitted the setting request based on a device identifier included in the setting request that is authenticated as being registered in the user information DB by the user authentication unit, and the identified The usage right management apparatus according to claim 4 , wherein the transmission data generated by the transmission data generation unit is transmitted to a device. A decryption key database (hereinafter referred to as a decryption key DB) for storing a decryption key for decrypting the content data encrypted by the content encryption unit in association with a content identifier of the content data to be decrypted;
The license information generating unit further includes license information further including a decryption key in the decryption key DB associated with a content identifier included in the issue request authenticated as being registered in the user information DB by the user authentication unit. The usage right management apparatus according to claim 5 , which is generated . The decryption key in the decryption key DB associated with the content identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit is encrypted with the device identifier included in the issuance request A decryption key encryption unit
The usage right management apparatus according to claim 6 , wherein the license information generation unit generates license information further including a decryption key encrypted by the decryption key encryption unit. The license information generation unit
A hash value generation unit that generates a hash value for preventing falsification of license information based on the usage permission information generated by the usage right management unit;
The license information assembling unit for assembling the license information by adding the hash value generated by the hash value generating unit to the usage permission information generated by the usage right managing unit . The usage right management apparatus according to any one of the preceding claims. In the case where the usage right management unit cannot generate usage permission information for the device specified by the device identifier included in the issuance request authenticated as being registered in the user information DB by the user authentication unit. , Generate denial information,
The communication unit further identifies the device that has transmitted the issuance request based on a device identifier included in the issuance request that is authenticated as being registered in the user information DB by the user authentication unit, and the identified The usage right management device according to any one of claims 1 to 3 , wherein the usage refusal information generated by the usage right management unit is transmitted to a device. A usage right management method applied to a device for managing usage right information representing a right for a plurality of devices to use the same content data,
The device is
A user information database (hereinafter referred to as user information DB) in which device identifiers for uniquely identifying each of the plurality of devices belonging to a predetermined group are registered;
The usage right information in which content identifiers uniquely specifying content data and device identifiers of the plurality of devices are associated has a usage right database (hereinafter referred to as a usage right DB) registered for each content data. And
The usage right management method is:
An issuance request including the content identifier of the content data to be used and its own device identifier is received from the device, and authentication is performed as to whether or not the device identifier included in the received issuance request is registered in the user information DB. A user authentication step to perform,
The usage right information associated with the content identifier and the device identifier included in the issuance request authenticated as registered in the user information DB in the user authentication step is searched in the usage right DB, and the searched use Use permission information indicating use permission for the content data to be used identified by the content identifier associated with the right information, and the use permission range is within the right range represented by the searched use right information A usage right management step for generating permission information;
A license information generation step for generating license information including at least the usage permission information generated in the usage right management step;
Identify the device that has transmitted the issue request based on the device identifier included in the issued request that is authenticated as registered in the user information DB in the user authentication step, and for the identified device, A communication step for transmitting the license information generated in the license information generation step;
Input from a device whose device identifier is registered in the user information DB by a user who operates a registered identifier that is his / her device identifier and a device identifier that is unregistered in the user information DB When a temporary registration request including a registration target identifier is received , a temporary registration flag indicating that the registration target identifier is temporarily registered based on the registered identifier and the registration target identifier included in the received temporary registration request And registering the registration target identifier in association with the registered identifier in the user information DB, temporarily registering the registration target identifier, and after temporary registration, from a device whose device identifier is not registered in the user information DB, A registration target identifier included in the temporary registration request and a registered identifier included in the temporary registration request and not registered. If the user operating the equipment has received the registration request including the registered identifier input, based on the registered identifier and registration target identifier included in the registration request the received, the registration in the user information DB A user information management step of permanently registering the registration target identifier temporarily registered in association with the registered identifier in the user information DB by deleting the temporary registration flag registered in association with the completed identifier. , Usage rights management method. A usage right management method applied to a device for managing usage right information representing a right for a plurality of devices to use the same content data,
The device is
A user information database (hereinafter referred to as user information DB) in which device identifiers for uniquely identifying each of the plurality of devices belonging to a predetermined group are registered;
The usage right information in which content identifiers uniquely specifying content data and device identifiers of the plurality of devices are associated has a usage right database (hereinafter referred to as a usage right DB) registered for each content data. And
The usage right management method is:
An issuance request including the content identifier of the content data to be used and its own device identifier is received from the device, and authentication is performed as to whether or not the device identifier included in the received issuance request is registered in the user information DB. A user authentication step to perform,
The usage right information associated with the content identifier and the device identifier included in the issuance request authenticated as registered in the user information DB in the user authentication step is searched in the usage right DB, and the searched use Use permission information indicating use permission for the content data to be used identified by the content identifier associated with the right information, and the use permission range is within the right range represented by the searched use right information A usage right management step for generating permission information;
A license information generation step for generating license information including at least the usage permission information generated in the usage right management step;
Identify the device that has transmitted the issue request based on the device identifier included in the issued request that is authenticated as registered in the user information DB in the user authentication step, and for the identified device, A communication step for transmitting the license information generated in the license information generation step;
From a device whose device identifier is not registered in the user information DB, a registration target identifier which is its own device identifier, and a user who operates the unregistered device which is a device identifier registered in the user information DB When a password request including a registered identifier is received, a password for the unregistered device is generated based on the registered identifier and the registration target identifier included in the received password request, and the password is not registered. Notifying the device and registering the password and the registration target identifier in association with the registered identifier in the user information DB to temporarily register the registration target identifier, and after temporary registration, register the device in the user information DB The registered identifier included in the password request from the registered device is its own device identifier. When a registration request is received that includes a password notified to the unregistered device and entered by a user operating the registered device, the registered identifier and password included in the received registration request The registration target identifier temporarily registered in association with the registered identifier and password in the user information DB is deleted by deleting the password registered in association with the registration target identifier in the user information DB. A usage right management method including a user information management step of main registration. A usage right management method applied to a device for managing usage right information representing a right for a plurality of devices to use the same content data,
The device is
A user information database (hereinafter referred to as user information DB) in which device identifiers for uniquely identifying each of the plurality of devices belonging to a predetermined group are registered;
The usage right information in which content identifiers uniquely specifying content data and device identifiers of the plurality of devices are associated has a usage right database (hereinafter referred to as a usage right DB) registered for each content data. And
The usage right management method is:
An issuance request including the content identifier of the content data to be used and its own device identifier is received from the device, and authentication is performed as to whether or not the device identifier included in the received issuance request is registered in the user information DB. A user authentication step to perform,
The usage right information associated with the content identifier and the device identifier included in the issuance request authenticated as registered in the user information DB in the user authentication step is searched in the usage right DB, and the searched use Use permission information indicating use permission for the content data to be used identified by the content identifier associated with the right information, and the use permission range is within the right range represented by the searched use right information A usage right management step for generating permission information;
A license information generation step for generating license information including at least the usage permission information generated in the usage right management step;
Identify the device that has transmitted the issue request based on the device identifier included in the issued request that is authenticated as registered in the user information DB in the user authentication step, and for the identified device, A communication step for transmitting the license information generated in the license information generation step;
After a first registration request including a registration target identifier, which is its own device identifier, is transmitted from a device whose device identifier is not registered in the user information DB to a device whose device identifier is registered in the user information DB, When the second registration request including the registered identifier that is the device identifier of itself and the registration target identifier included in the first registration request is received from the registered device, the received second registration based on the registered identifier and registration target identifier contained in the request, the registration target identifier, wherein and a user information managing step of registering in association with registered identifier in the user information DB, utilization for rights management method.

Images