JP4568933B2 - Information processing apparatus and method, and program storage medium - Google Patents

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to an information processing apparatus and method, and a program storage medium, and more particularly, to an information processing apparatus and method and a program storage medium that can appropriately limit content duplication, for example.
[0002]
[Prior art]
SCMS (Serial Copy Management System), CGMS (Copy Generation Management System), and the like have been proposed as methods for restricting copying of copyrighted AV content (for example, music and images).
[0003]
In these systems, as shown in FIG. 1, the content A1 (first generation) to which the copyright is set can be copied and the content A2 (second generation) can be obtained (recorded). The content A2 (second generation) itself cannot be further copied to obtain the content A3 (third generation).
[0004]
[Problems to be solved by the invention]
However, in this case, as shown in FIG. 1, there is a problem that a plurality of second generation contents A2 can be obtained by repeating copying of the contents A1, and the copyright of the contents A1 is not sufficiently protected.
[0005]
Therefore, UCS (Uni Copy System) has been proposed as a method that enables the content A1 to be copied only once. In this case, the user can only copy the content A1 once. There is a problem in that it cannot be duplicated and is disadvantageous to the user.
[0006]
The present invention has been made in view of such a situation, and makes it possible to substantially prohibit a large amount of duplication without greatly deteriorating the profit of the user.
[0007]
[Means for Solving the Problems]
  The present inventionThe information processing deviceDuplication means for duplicating the content recorded on the first recording medium and recording the resulting copy content on a second recording medium different from the first recording medium; and on the first recording medium Updating means for updating a time-limit database that stores time information when the content is copied in association with identification information for identifying the content each time the recorded content is copied by the copying unit; When the user instructs to copy the content recorded on the first recording medium, the copying is instructed.Acquisition means for acquiring content identification information;When the time information when the content corresponding to the acquired identification information was copied last time is read from the time limit database, and when the predetermined time has passed since the content instructed to be copied was last copied When the content is instructed to be copied and a predetermined time has not elapsed since the previous copy, the content is copied to the copy means. Copy control means to prohibitIncludingMu.
[0008]
  The information processing method according to the present invention includes a duplicating unit that duplicates content recorded on a first recording medium and records the resulting copy content on a second recording medium different from the first recording medium. In the information processing method of the information processing apparatus provided, each time the content recorded on the first recording medium is duplicated by the duplication unit, the time when the content is duplicated in the identification information for identifying the content An update step for updating a time limit database stored in association with information, and when the user instructs to copy the content recorded in the first recording medium, identification information of the content instructed to be copied An acquisition step of acquiring, and time information when the content corresponding to the acquired identification information was copied last time; When a predetermined time has passed since the content that was instructed to be copied and copied last time, the content is instructed to be copied by allowing the copying means to copy the content. A copy that prohibits the copy means from copying the content if a predetermined time has not passed since the last copySystemIncluding steps.
[0009]
  The program storage medium of the present invention includes a duplicating means for duplicating the content recorded on the first recording medium and recording the resulting copy content on a second recording medium different from the first recording medium. A program for controlling an information processing apparatus provided, wherein each time the content recorded on the first recording medium is duplicated by the duplication unit, the content is duplicated in identification information for identifying the content An update step for updating a time limit database that stores time information in association with each other and a copy of the content recorded on the first recording medium is instructed by the user. An acquisition step of acquiring identification information, and time information when the content corresponding to the acquired identification information was previously replicated. When a predetermined time has passed since the content instructed to be read and copied from the previous database has been copied last time, the copying means is allowed to copy the content, and the copy is instructed. Duplication that prohibits duplication of the content to the duplication means if a predetermined time has not passed since the content was last duplicatedSystemA program for causing a computer of the information processing apparatus to execute processing including control steps is stored.
[0010]
  The present inventionInEach time the content recorded on the first recording medium is duplicated by the duplicating means, the time limit database that stores the time information when the content is duplicated in association with the identification information that identifies the content is updated, When the user gives an instruction to copy the content recorded on the first recording medium, the user is instructed to copyContent identification information is obtained,When the time information when the content corresponding to the acquired identification information was copied last time is read from the time limit database, and when a predetermined time has passed since the content instructed to be copied was last copied, Content copying is permitted to the copying means. On the other hand, if a predetermined time has not elapsed since the content instructed to be copied has been copied last time, the copying means is prohibited from copying the content.
[0011]
DETAILED DESCRIPTION OF THE INVENTION
FIG. 2 is a diagram showing an embodiment of an audio data management system according to the present invention. The personal computer 1 is connected to a network 2 constituted by a local area network or the Internet. The personal computer 1 performs predetermined compression on music data (hereinafter referred to as content) received from EMD (Elecrical Music Distribution) servers 4-1 to 4-3 or read from a CD (Compact Disc) described later. The data is converted into a method (for example, ATRAC3 (trademark)) and encrypted by an encryption method such as DES (Data Encryption Standard).
[0012]
The personal computer 1 records use condition data indicating the use condition of the content in correspondence with the content that is encrypted and recorded. The usage condition data is, for example, a copy (portable device 6-6) in which content corresponding to the usage condition data can be used simultaneously by three portable devices (also referred to as PDs) 6-1 to 6-3. Even if the content is stored in 1 to 6-3, the content recorded in the personal computer 1 can be used, and the number of times the content can be stored in the portable devices 6-1 to 6-3 may be limited. In this case, the number of times does not increase.) Move to another personal computer (after storing the content in the portable devices 6-1 to 6-3, the personal computer 1 records it) The content that is being used cannot be used.) Details of the usage condition data will be described later.
[0013]
The personal computer 1 is connected to encrypted content recorded together with data related to the content (for example, song name or playback conditions) via a USB (Universal Sirial Bus) cable 7-1. In addition to being stored in the portable device 6-1, in response to the storage in the portable device 6-1, the usage condition data corresponding to the stored content is updated (hereinafter referred to as checkout). More specifically, when the data is checked out, the number of times that the personal computer 1 can check out the data of the usage conditions corresponding to the content recorded in the personal computer 1 is reduced by one. When the number of checkouts is 0, the corresponding content cannot be checked out.
[0014]
The personal computer 1 stores the encrypted content recorded together with the data related to the content in the portable device 6-2 connected via the USB cable 7-2, and the portable device 6-2. The usage condition data corresponding to the stored content is updated in response to the storage. The personal computer 1 stores the encrypted content recorded together with the data related to the content in the portable device 6-3 connected via the USB cable 7-3, and the portable device 6-3. The usage condition data corresponding to the stored content is updated in response to the storage.
[0015]
Also, the personal computer 1 can cause the portable device 6-1 to erase (or use) the content checked out by the personal computer 1 to the connected portable device 6-1 via the USB cable 7-1. The usage condition data corresponding to the erased content is updated (hereinafter referred to as check-in). More specifically, when the check-in is performed, the number of times that the data of the usage conditions of the corresponding content recorded in the personal computer 1 can be checked out is increased by one.
[0016]
The personal computer 1 causes the portable device 6-2 to erase (or disable) the content checked out by the personal computer 1 to the connected portable device 6-2 via the USB cable 7-2. And update the use condition data corresponding to the deleted content. The personal computer 1 causes the portable device 6-3 to erase the contents checked out by the personal computer 1 to the portable device 6-3 connected via the USB cable 7-3 (or disable the portable device 6-3). And update the use condition data corresponding to the deleted content.
[0017]
The personal computer 1 cannot check in the content checked out to the portable device 6-1 by another personal computer (not shown).
The personal computer 1 cannot check in content that has been checked out to the portable device 6-2 by another personal computer. The personal computer 1 cannot check in content that has been checked out to the portable device 6-3 by another personal computer.
[0018]
When the personal computer 1 starts acquiring content from the EMD servers 4-1 to 4-3, the EMD registration server 3 responds to the request from the personal computer 1 via the network 2 and the EMD server. An authentication key necessary for mutual authentication with 4-1 to 4-3 is transmitted to the personal computer 1, and a program for connecting to the EMD servers 4-1 to 4-3 is transmitted to the personal computer 1.
[0019]
In response to a request from the personal computer 1, the EMD server 4-1 supplies the content to the personal computer 1 along with data related to the content (for example, a song title or playback restriction) via the network 2. The EMD server 4-2 supplies the content to the personal computer 1 together with the data related to the content via the network 2 in response to the request of the personal computer 1. The EMD server 4-3 supplies the content to the personal computer 1 along with the data related to the content via the network 2 in response to the request of the personal computer 1.
[0020]
The content supplied by each of the EMD servers 4-1 to 4-3 is compressed by the same or different compression method. The content supplied by each of the EMD servers 4-1 to 4-3 is encrypted by the same or different encryption method.
[0021]
A WWW (World Wide Web) server 5-1 responds to a request from the personal computer 1, a CD (for example, a CD album name or a CD sales company) that has read the content via the network 2, and Data corresponding to the content read from the CD (for example, a song title or a composer name) is supplied to the personal computer 1. In response to a request from the personal computer 1, the WWW server 5-2 supplies the personal computer 1 with data corresponding to the CD read from the CD and the content read from the CD via the network 2.
[0022]
The portable device 6-1 stores the content supplied from the personal computer 1 (that is, the checked-out content) together with data related to the content (for example, a song title or playback restriction). The portable device 6-1 reproduces the stored content based on data related to the content, and outputs it to a headphone (not shown).
[0023]
For example, when the reproduction is attempted to exceed the number of reproductions as reproduction restrictions stored as data related to the content, the portable device 6-1 stops reproduction of the corresponding content. When playback is attempted after the playback deadline has passed as a playback limit stored as data related to the content, the portable device 6-1 stops playback of the corresponding content.
[0024]
The user can remove the portable device 6-1 storing the content from the personal computer 1, carry it around, reproduce the stored content, and listen to music corresponding to the content through headphones.
[0025]
The portable device 6-2 stores the content supplied from the personal computer 1 together with data related to the content. The portable device 6-2 plays back the stored content based on the data related to the content, and outputs it to headphones (not shown). The user can remove the portable device 6-2 storing the content from the personal computer 1, carry it around, reproduce the stored content, and listen to music corresponding to the content with headphones or the like.
[0026]
The portable device 6-3 stores the content supplied from the personal computer 1 together with data related to the content. The portable device 6-3 reproduces the stored content based on data related to the content, and outputs it to a headphone (not shown). The user can remove the portable device 6-3 storing the content from the personal computer 1, carry it around, reproduce the stored content, and listen to music corresponding to the content with headphones or the like.
[0027]
Hereinafter, when it is not necessary to individually distinguish the portable devices 6-1 to 6-3, they are simply referred to as portable devices 6.
[0028]
FIG. 3 is a diagram for explaining the configuration of the personal computer 1. A CPU (Central Processing Unit) 11 actually executes various application programs (details will be described later) and an OS (Operating System). A ROM (Read-only Memory) 12 generally stores basically fixed data out of programs used by the CPU 11 and calculation parameters. A RAM (Random-Access Memory) 13 stores programs used in the execution of the CPU 11 and parameters that change as appropriate during the execution. These are connected to each other by a host bus 14 composed of a CPU bus or the like.
[0029]
The host bus 14 is connected via a bridge 15 to an external bus 16 such as a PCI (Peripheral Component Interconnect / Interface) bus.
[0030]
The keyboard 18 is operated by the user when inputting various commands to the CPU 11. The mouse 19 is operated by the user when specifying or selecting a point on the screen of the display 20. The display 20 includes a liquid crystal display device, a CRT (Cathode Ray Tube), or the like, and displays various types of information as text and images. An HDD (Hard Disk Drive) 21 drives hard disks and causes them to record or play back programs and information executed by the CPU 11.
[0031]
The drive 22 reads the data or program recorded in the magnetic disk 41, the optical disk 42 (including the CD), the magneto-optical disk 43, or the semiconductor memory 44 that is loaded, and the data or program is read from the interface 17, The data is supplied to the RAM 13 connected via the external bus 16, the bridge 15, and the host bus 14.
[0032]
The portable device 6-1 is connected to the USB port 23-1 via the USB cable 7-1. The USB port 23-1 receives data (for example, contents or commands of the portable device 6-1) supplied from the HDD 21, the CPU 11, or the RAM 13 via the interface 17, the external bus 16, the bridge 15, or the host bus 14. Output) to the portable device 6-1.
[0033]
The portable device 6-2 is connected to the USB port 23-2 via the USB cable 7-2. The USB port 23-2 receives data (for example, content or commands of the portable device 6-2) supplied from the HDD 21, the CPU 11, or the RAM 13 via the interface 17, the external bus 16, the bridge 15, or the host bus 14. Output) to the portable device 6-2.
[0034]
The portable device 6-3 is connected to the USB port 23-3 via the USB cable 7-3. The USB port 23-3 receives data (for example, contents or commands of the portable device 6-3) supplied from the HDD 21, the CPU 11, or the RAM 13 via the interface 17, the external bus 16, the bridge 15, or the host bus 14. Output) to the portable device 6-3.
[0035]
An audio input / output interface 24 having an IEC (Internationl Electrotechnical Commission) 60958 terminal executes digital audio input / output or analog audio input / output interface processing. The speaker 45 outputs a predetermined sound corresponding to the content based on the sound signal supplied from the sound input / output interface 24.
[0036]
The keyboard 18 to the voice input / output interface 24 are connected to the interface 17, and the interface 17 is connected to the CPU 11 via the external bus 16, the bridge 15, and the host bus 14.
[0037]
The communication unit 25 is connected to the network 2, stores data (for example, a registration request or a content transmission request) supplied from the CPU 11 or the HDD 21 in a packet of a predetermined method, and transmits the data via the network 2. The data (for example, an authentication key or content) stored in the received packet is output to the CPU 11, RAM 13, or HDD 21 via the network 2.
[0038]
The CPU 32 of the adapter 26 that is integrally formed as a semiconductor IC and is attached to the personal computer 1 cooperates with the CPU 11 of the personal computer 1 via the external bus 16, the bridge 15, and the host bus 14 to perform various processing. Execute. The RAM 33 stores data and programs necessary for the CPU 32 to execute various processes. The nonvolatile memory 34 stores data that needs to be retained even after the personal computer 1 is powered off. The ROM 36 stores a program for decrypting an encrypted program transferred from the personal computer 1. An RTC (Real Time Clock) 35 performs a timekeeping operation and provides time information.
[0039]
The communication unit 25 and the adapter 26 are connected to the CPU 11 via the external bus 16, the bridge 15, and the host bus 14.
[0040]
Hereinafter, when it is not necessary to individually distinguish the USB ports 23-1 to 23-3, they are simply referred to as the USB port 23. Hereinafter, when it is not necessary to distinguish the USB cables 7-1 to 7-3, they are simply referred to as a USB cable 7.
[0041]
Next, the configuration of the portable device 6 will be described with reference to FIG. The power supply circuit 52 drives the entire portable device 6 by converting the power supply voltage supplied from the dry battery 51 into internal power of a predetermined voltage and supplying it to the CPU 53 through the display unit 67.
[0042]
When the USB controller 57 is connected to the personal computer 1 via the USB connector 56 via the USB cable 7, the USB controller 57 supplies the content transferred from the personal computer 1 to the CPU 53 via the internal bus 58.
[0043]
The content is composed of 64 bytes of data per packet, and is transferred from the personal computer 1 at a transfer rate of 12 Mbit / sec.
[0044]
The content transferred to the portable device 6 is composed of a header and audio data (data corresponding to the audio signal which is the content entity), and the header includes a file name, a header size, a content key, a file size, and a codec ID. In addition to file information and the like, reproduction restriction data necessary for the reproduction restriction process, start date and time, end date and time, number of times, and reproduction number counter are stored. The audio data is data corresponding to an audio signal of a predetermined music that is encoded and encoded by an encoding method such as ATRAC3.
[0045]
The header size represents the data length of the header (for example, 33 bytes), and the file size represents the data length of the audio data (for example, 33,636, 138 bytes).
[0046]
The content key is a key for decrypting the encrypted audio data, and is encrypted based on the session key (temporary key) generated by the mutual authentication process between the personal computer 1 and the portable device 6. In this state, the data is transmitted from the personal computer 1 to the portable device 6.
[0047]
When the portable device 6 is connected to the USB port 23 of the personal computer 1 via the USB cable 7, the portable device 6 and the personal computer 1 execute a mutual authentication process. This mutual authentication processing is, for example, challenge-response authentication processing. Incidentally, the DSP 59 of the portable device 6 executes decryption (decryption) processing when performing challenge-response authentication processing.
[0048]
The challenge response method is, for example, responding to a certain value (challenge) generated by the personal computer 1 with a value (response) generated by the portable device 6 using a secret key shared with the personal computer 1. It is a method. In the challenge-response mutual authentication process, the value generated by the personal computer 1 changes every time the authentication process is performed. For example, the value generated by using the secret key output from the portable device 6 is read. Even if a so-called impersonation attack is issued, the personal computer 1 can detect fraud because the values used for mutual authentication differ in the next mutual authentication process.
[0049]
The codec ID is an ID corresponding to the encoding method of the audio data. For example, the codec ID “1” corresponds to ATRAC3, and the codec ID “0” is MP3 (MPEG (Moving Picture Experts Group) Audio Layer- Corresponds to 3).
[0050]
The file name is data obtained by converting a content file (described later) recorded by the personal computer 1 corresponding to the content into an ASCII (American National Standard Code for Information Interchange) code, and the file information is a song name corresponding to the content. , Artist name, songwriter name, composer name, etc., converted into ASCII code.
[0051]
The reproduction restriction data is data indicating whether a period during which content can be reproduced (that is, start date and time or end date and time) or number of times (restriction of the number of times of reproduction) is set. When the number limit is set, “1” is assigned to the reproduction limit data. When the period during which reproduction is possible is set, “2” is assigned, and the number limit and period during which reproduction is possible are set. When neither is set (so-called purchase by purchase), “0” is assigned.
[0052]
The start date and time and end date and time are data indicating the range of the reproducible period when the reproduction restriction data is “2”. For example, when the start date and time is “00040F” and the end date and time is “0000000F”, the corresponding content can be played back from April 15, 2000 to July 15, 2000.
[0053]
Similarly, when the reproduction restriction data is “1” or “2”, the number restriction and the reproduction number counter are the number of reproductions set in advance corresponding to the content, and the reproduction number counter Indicates the number of times the content is reproduced, which is updated by the CPU 53 when the content reproduction process is executed. For example, when the number limit is “02”, the number of times that the content can be reproduced is two, and when the number of reproduction counter is “01”, the number of times that the content is reproduced is one.
[0054]
For example, when the playback restriction data is “2”, the start date / time is “0000000F”, the end date / time is “0000000F”, and the playback restriction data is “2”, the portable device 6 displays the corresponding content. In the period from April 15, 2000 to July 15, 2000, reproduction can be performed twice a day.
[0055]
For example, when the reproduction restriction data is “1”, the start date and time is “000000”, the end date and time is “000000”, the reproduction restriction data is “0a”, and the reproduction number counter is “05”. The corresponding content has no limitation on the reproducible period, the reproducible frequency is 10 times, and the reproducible frequency is 5 times.
[0056]
When the portable device 6 receives a content write command together with content from the personal computer 1, the CPU 53 that executes the main program read from the ROM 55 to the RAM 54 receives the write command and controls the flash memory controller 60 to control the personal computer. The content received from 1 is written into the flash memory 61.
[0057]
The flash memory 61 has a storage capacity of about 64 MByte, and stores content (audio data). The flash memory 61 stores in advance a reproduction code for decompressing audio data compressed by a predetermined compression method.
[0058]
Note that the flash memory 61 can be attached to and detached from the portable device 6.
[0059]
When a playback command corresponding to a pressing operation of a playback / stop button (not shown) by the user is supplied to the CPU 53 via the operation key controller 62, the CPU 53 sends the flash memory controller 60 to the playback memory 61 for playback. The code and audio data are read out and transferred to the DSP 59.
[0060]
The DSP 59 performs error detection on the audio data based on the reproduction code transferred from the flash memory 61 using the CRC (Cyclic Redundancy Check) method, reproduces the reproduced data, and indicates the reproduced data (indicated by D1 in FIG. 4). The digital / analog conversion circuit 63 is supplied.
[0061]
The DSP 59 is configured integrally with a transmitter circuit (not shown) provided inside, reproduces audio data based on a master clock MCLK from a transmitter 59A made of an external crystal, and also reproduces the master clock MCLK, master An operation clock LRCLK including a bit clock BCLK having a predetermined frequency generated by an internal oscillation circuit based on the clock MCLK and an L channel clock LCLK and an R channel clock RCLK for each frame is supplied to the digital / analog conversion circuit 63.
[0062]
The DSP 59 supplies the above-mentioned operation clock to the digital-analog conversion circuit 63 according to the reproduction code when reproducing the audio data, and stops supplying the operation clock according to the reproduction code when not reproducing the audio data. The analog conversion circuit 63 is stopped to reduce the power consumption of the entire portable device 6.
[0063]
Similarly, an oscillator 53A or 57A made of crystal is externally attached to the CPU 53 and the USB controller 57, respectively, and predetermined processing is executed based on the master clock MCLK supplied from the oscillator 53A or 57A, respectively.
[0064]
With this configuration, the portable device 6 eliminates the need for a clock generation module for supplying clocks to the circuit blocks such as the CPU 53, DSP 59, USB controller 57, and the like, simplifying the circuit configuration and reducing the size. can do.
[0065]
The digital-analog conversion circuit 63 converts the reproduced audio data into an analog audio signal and supplies it to the amplifier circuit 64. The amplifier circuit 64 amplifies the audio signal and supplies the audio signal to a headphone (not shown) via the headphone jack 65.
[0066]
As described above, the portable device 6 plays back the audio data stored in the flash memory 61 based on the control of the CPU 53 when a play / stop button (not shown) is pressed, and plays / stops during playback. When the button is pressed, playback of audio data is stopped.
[0067]
When the playback / stop button is pressed again after stopping, the portable device 6 resumes playback of the audio data from the position where it was stopped based on the control of the CPU 53. When a playback / stop button stops playback by a pressing operation and a few seconds have passed without any operation, the portable device 6 automatically turns off the power to reduce power consumption.
[0068]
Incidentally, when the play / stop button is pressed after the power is turned off, the portable device 6 does not play the audio data from the previous stop position, and starts playing from the first song.
[0069]
Further, the CPU 53 of the portable device 6 controls the LCD controller 68 so that the display unit 67 corresponds to the playback mode state (for example, repeat playback, intro playback, etc.) and equalizer adjustment (that is, the frequency band of the audio signal). (Adjustment of gain), music number, performance time, playback, stop, fast forward, fast reverse, and other information, volume, and remaining battery 51 information are displayed.
[0070]
Further, the portable device 6 has a so-called FAT (File) such as the number of contents written in the flash memory 80 in the EEPROM 68, the block position of the flash memory 61 in which each content is written, and other various memory storage information. Store Allocation Table).
[0071]
Incidentally, in this embodiment, the audio data is handled as 64 KByte as one block, and the block position corresponding to the content of one song is stored in the FAT.
[0072]
When the FAT is stored in the flash memory 61, for example, when the content of the first song is written to the flash memory 61 under the control of the CPU 53, the block position corresponding to the content of the first song is written to the flash memory 61 as FAT, and the next When the content of the second song is written to the flash memory 61, the block position corresponding to the content of the second song is written as FAT in the flash memory 61 (the same area as the first song).
[0073]
In this way, the FAT is rewritten every time content is written to the flash memory 61, and the same data is written twice for reservation in order to protect the data.
[0074]
When the FAT is written in the flash memory 61, the same area of the flash memory 61 is rewritten twice in correspondence with one content write. As a result, the flash memory 61 cannot be rewritten.
[0075]
Therefore, the portable device 6 stores the FAT in the EEPROM 68 to reduce the frequency of rewriting of the flash memory 61 corresponding to one content writing.
[0076]
By storing the FAT with a large number of rewrites in the EEPROM 68, the portable device 6 can increase the number of times the content can be written to several tens of times as compared with the case where the FAT is stored in the flash memory 61. Further, since the CPU 53 causes the EEPROM 68 to write the FAT so as to be additionally written, the frequency of rewriting the same area of the EEPROM 68 is reduced to prevent the EEPROM 68 from becoming unrewritable in a short period of time.
[0077]
When the portable device 6 is connected to the personal computer 1 via the USB cable 7 (hereinafter referred to as “USB connection”), the portable device 6 confirms that the USB connection has been established based on the interrupt signal supplied from the USB controller 57 to the CPU 53. recognize.
[0078]
When the portable device 6 recognizes that it is connected to the USB, it receives external power of a specified current value from the personal computer 1 via the USB cable 7 and controls the power supply circuit 52 to supply power from the dry battery 51. Stop supplying.
[0079]
When the CPU 53 is connected to the USB, it stops the audio data reproduction process of the DSP 59. Thereby, the CPU 53 prevents the external power supplied from the personal computer 1 from exceeding the specified current value, and performs control so that the external power having the specified current value can be always received.
[0080]
As described above, when the CPU 53 is connected to the USB, the power supplied from the dry battery 51 is switched to the power supplied from the personal computer 1, so that the external power from the personal computer 1 with a low power unit price is used, and the power unit price is reduced. The power consumption of the high dry battery 51 is reduced, and thus the life of the dry battery 51 can be extended.
[0081]
The CPU 53 reduces the radiation from the DSP 59 by stopping the reproduction processing of the DSP 59 when external power is supplied from the personal computer 1 via the USB cable 7, and as a result, the CPU 53 includes the personal computer 1. The radiation of the entire system is further reduced.
[0082]
FIG. 5 is a block diagram illustrating a functional configuration of the personal computer 1 realized by execution of a predetermined program of the CPU 11. The content management program 111 includes an EMD selection program 131, a check-in / check-out management program 132, an encryption method conversion program 133, a compression method conversion program 134, an encryption program 135, a use condition conversion program 136, a signature management program 137, and an authentication program. 138, a decryption program 139, a PD driver 140, a purchase driver 141, a purchase driver 142, and the like.
[0083]
The content management program 111 is described by, for example, shuffled instructions or encrypted instructions, and the processing contents are concealed from the outside, so that the reading of the processing contents becomes difficult (for example, a user) However, even if the content management program 111 is directly read out, the instruction cannot be specified).
[0084]
The EMD selection program 131 is not included in the content management program 111 when the content management program 111 is installed in the personal computer 1, and is received from the EMD registration server 3 via the network 2 in the EMD registration process described later. Is done. The EMD selection program 131 selects a connection with any of the EMD servers 4-1 to 4-3, and sends any of the EMD servers 4-1 to 4-3 to the purchase application 115 or the purchase driver 141 or 142. Communication with the heel (for example, download of content when purchasing content) is executed.
[0085]
The check-in / check-out management program 132 sets the content files 161-1 to 161-N based on the check-in or check-out settings and the use condition files 162-1 to 162-N recorded in the content database 114. The content stored in the portable device 6-1 to 6-3 is checked out, or the content stored in the portable device 6-1 to 6-3 is checked in.
[0086]
The check-in / check-out management program 132 stores the usage rule data stored in the usage rule files 162-1 to 162-N recorded in the content database 114 in correspondence with the check-in or check-out process. Update.
[0087]
The encryption method conversion program 133 is a method for encrypting the content received by the purchase application program 115 from the EMD server 4-1 via the network 2, and the encryption of the content received by the purchase driver 141 from the EMD server 4-2. The content stored in the content files 161-1 to 161-N recorded in the content database 114, and the encryption method of the content received by the purchase driver 142 from the EMD server 4-3. Convert to the same encryption method.
[0088]
Also, when checking out content to the portable device 6-1 or 6-3, the encryption method conversion program 133 converts the content to be checked out into an encryption method that can be used by the portable device 6-1 or 6-3. To do.
[0089]
The compression method conversion program 134 compresses the content received by the purchase application program 115 from the EMD server 4-1 via the network 2, and compresses the content received by the purchase driver 141 from the EMD server 4-2. The same compression method as the content stored in the content files 161-1 to 161-N recorded in the content database 114, or the compression method of the content received by the purchase driver 142 from the EMD server 4-3 Convert to this method.
[0090]
The compression method conversion program 134 is stored in the content files 161-1 to 161-N recorded in the content database 114, for example, the content (uncompressed) read from the CD and supplied from the recording program 113. Encoding is performed using the same encoding method as that of the existing content.
[0091]
Further, when the content is checked out to the portable device 6-1 or 6-3, the compression method conversion program 134 converts the content to be checked out into a compression method that can be used by the portable device 6-1 or 6-3. To do.
[0092]
For example, the encryption program 135 is read from a CD and stored in the content files 161-1 to 161-N recorded in the content database 114, and the content (not encrypted) supplied from the recording program 113 is stored. Encrypt using the same encryption method as the existing content.
[0093]
The use condition conversion program 136 is data (so-called Usage Rule) indicating the use conditions of the content received by the purchase application program 115 from the EMD server 4-1 via the network 2, and the purchase driver 141 is the EMD server 4- The usage condition files 162-1 to 162-2, in which the content database 114 records data indicating the usage conditions of the content received from 2 or data indicating the usage conditions of the content received by the purchase driver 142 from the EMD server 4-3. The usage condition data stored in 162-N is converted into the same format.
[0094]
In addition, when the content is checked out to the portable device 6-1 or 6-3, the usage condition conversion program 136 uses the data on the usage conditions corresponding to the content to be checked out by the portable device 6-1 or 6-3. Convert to data with possible usage conditions.
[0095]
The signature management program 137 is included in the usage rule data stored in the usage rule files 162-1 to 162-N recorded in the content database 114 before executing the check-in or check-out process. The tampering of usage condition data is detected based on the signature (described later). The signature management program 137 corresponds to the update of the use condition data stored in the use condition files 162-1 to 162-N recorded in the content database 114 in accordance with the check-in or check-out process. Update the signature included in the usage conditions data.
[0096]
The authentication program 138 executes mutual authentication processing between the content management program 111 and the purchase application program 115 and mutual authentication processing between the content management program 111 and the purchase driver 141. The authentication program 138 also performs mutual authentication between the EMD server 4-1 and the purchase application program 115, mutual authentication between the EMD server 4-2 and the purchase driver 141, and purchase with the EMD server 4-3. The authentication key used in the mutual authentication process with the driver 142 is stored.
[0097]
The authentication key used by the authentication program 138 for mutual authentication processing is not stored in the authentication program 138 when the content management program 111 is installed in the personal computer 1, and registration processing by the display operation instruction program 112 is normal. Is executed from the EMD registration server 3 and stored in the authentication program 138.
[0098]
The decryption program 139 decrypts the content when the personal computer 1 reproduces the content stored in the content files 161-1 to 161-N recorded in the content database 114.
[0099]
When the PD driver 140 checks out predetermined content to the portable device 6-2 or checks in predetermined content from the portable device 6-2, the PD driver 140 stores the content or portable device 6-2 in the portable device 6-2. A command for executing a predetermined process is supplied.
[0100]
When the PD driver 140 checks out predetermined content to the portable device 6-1, or checks in predetermined content from the portable device 6-1, the PD driver 140 stores the content in the device driver 116-1 or the device driver 116-. 1 is supplied with a command for executing a predetermined process.
[0101]
When the PD driver 140 checks out a predetermined content from the portable device 6-3 or checks in a predetermined content from the portable device 6-3, the PD driver 140 sends the content to the device driver 116-2 or the device driver 116- 2 is supplied with a command for executing a predetermined process.
[0102]
The purchase driver 141 is a so-called plug-in program, which is installed together with the content management program 111 and is supplied from the EMD registration server 3 via the network 2 or is recorded on a predetermined CD and supplied. When the purchase driver 141 is installed in the personal computer 1, it transmits and receives data to and from the content management program 111 via an interface in a predetermined format that the content management program 111 has.
[0103]
The purchase driver 141 requests the EMD server 4-2 to transmit predetermined content via the network 2, and receives the content from the EMD server 4-2. Further, the purchase driver 141 executes billing processing when receiving the content from the EMD server 4-2.
[0104]
The purchase driver 142 is a program that is installed together with the content management program 111, requests the EMD server 4-3 to transmit predetermined content via the network 2, and receives the content from the EMD server 4-3. . Further, the purchase driver 142 executes billing processing when receiving content from the EMD server 4-3.
[0105]
The display operation instruction program 112 displays an image of a predetermined window on the display 20 based on the filtering data file 181, the display data file 182, the image files 183-1 to 183-K, or the history data file 184, and the keyboard 18 Alternatively, based on an operation on the mouse 19, the content management program 111 is instructed to execute processing such as check-in or check-out.
[0106]
The filtering data file 181 stores data for weighting each content stored in the content files 161-1 to 161-N recorded in the content database 114, and is recorded in the HDD 21.
[0107]
The display data file 182 stores data corresponding to the content stored in the content files 161-1 to 161 -N recorded in the content database 114 and is recorded in the HDD 21.
[0108]
The image files 183-1 to 183-K store images corresponding to the content files 161-1 to 161-N recorded in the content database 114 or images corresponding to packages described later, and are recorded on the HDD 21. ing.
[0109]
Hereinafter, when it is not necessary to individually distinguish the image files 183-1 to 183-K, they are simply referred to as an image file 183.
[0110]
The history data file 184 stores history data such as the number of times the content stored in the content files 161-1 to 161-N recorded in the content database 114 is checked out, the number of times the content is checked in, and the date. Then, it is recorded on the HDD 21.
[0111]
During the registration process, the display operation instruction program 112 transmits the ID of the content management program 111 stored in advance to the EMD registration server 3 via the network 2, and from the EMD registration server 3, the authentication key and The EMD selection program 131 is received, and the authentication key and EMD selection program 131 are supplied to the content management program 111.
[0112]
The recording program 113 displays an image of a predetermined window, and reads data such as a recording time of content from a CD that is the optical disk 42 mounted on the drive 22 based on an operation on the keyboard 18 or the mouse 19.
[0113]
The recording program 113 stores data corresponding to the CD (for example, album name or artist name) to the WWW server 5-1 or 5-2 via the network 2 based on the recording time of the content recorded on the CD. Etc.) or data corresponding to the content recorded on the CD (for example, song name) is requested, and the data corresponding to the CD or the content recorded on the CD from the WWW server 5-1 or 5-2 Data corresponding to is received.
[0114]
The recording program 113 supplies the display operation instruction program 112 with data corresponding to the received CD or data corresponding to the content recorded on the CD.
[0115]
When a recording instruction is input, the recording program 113 reads the content from the CD that is the optical disk 42 mounted on the drive 22 and outputs the content to the content management program 111.
[0116]
The content database 114 stores the content compressed by the predetermined method supplied from the content management program 111 and encrypted by the predetermined method in any of the content files 161-1 to 161-N (in the HDD 21). Record). The content database 114 uses the usage condition data corresponding to the contents stored in the content files 161-1 to 161-N, respectively, and uses the data corresponding to the content files 161-1 to 161-N in which the contents are stored. It is stored in any one of the condition files 162-1 to 162-N (recorded in the HDD 21).
[0117]
The content database 114 may record the content files 161-1 to 161-N or the use condition files 162-1 to 162-N as records.
[0118]
For example, the usage rule data corresponding to the content stored in the content file 161-1 is stored in the usage rule file 162-1. The usage rule data corresponding to the content stored in the content file 161-N is stored in the usage rule file 162-N.
[0119]
Note that the data recorded in the use condition files 162-1 to 162-N corresponds to data recorded in a term database, which will be described later, or data recorded in a song database. That is, the content database 114 is configured to include a time limit database and a song database, which will be described later.
[0120]
Hereinafter, when it is not necessary to individually distinguish the content files 161-1 to 161 -N, they are simply referred to as the content file 161. Hereinafter, when it is not necessary to individually distinguish the usage rule files 162-1 to 162-N, they are simply referred to as usage rule files 162.
[0121]
The application program for purchase 115 is supplied from the EMD registration server 3 via the network 2 or is recorded on a predetermined CD and supplied. The purchase application program 115 requests the EMD server 4-1 to transmit predetermined content via the network 2, receives the content from the EMD server 4-1, and supplies it to the content management program 111. Further, the purchase application program 115 executes a billing process when receiving the content from the EMD server 4-1.
[0122]
Next, the association between the data stored in the display data file 82 and the content files 161-1 to 161-N stored in the content database will be described.
[0123]
The content stored in any of the content files 161-1 to 161-N belongs to a predetermined package. More specifically, the package is either an original package, a My Select package, or a filtering package.
[0124]
One or more contents belong to the original package, and correspond to a classification of contents (for example, corresponding to a so-called album) in the EMD servers 4-1 to 4-3, or one CD. The content belongs to one of the original packages and cannot belong to a plurality of original packages. Also, the original package to which the content belongs cannot be changed. The user can edit a part of information corresponding to the original package (addition of information or change of added information).
[0125]
One or more contents arbitrarily selected by the user belong to the My Select package. The user can arbitrarily edit which content belongs to the My Select package. Content can belong to one or more My Select packages at the same time. Further, the content does not have to belong to any My Select package.
[0126]
The content selected based on the filtering data stored in the filtering data file 181 belongs to the filtering package. The filtering data is supplied from the EMD servers 4-1 to 4-3 or the WWW server 5-1 or 5-2 through the network 2, or is recorded on a predetermined CD and supplied. The user can edit the filtering data stored in the filtering data file 181.
[0127]
The filtering data is a reference for selecting a predetermined content or calculating a weight corresponding to the content. For example, if filtering data corresponding to this week's J-POP (Japanese pops) best ten is used, the personal computer 1 identifies the content of the Japanese pops this week or the content of the 10th Japanese pops this week. can do.
[0128]
The filtering data file 181 includes, for example, filtering data that selects content in the order of the longest check-out period in the past month, filtering data that selects content that has been checked out frequently in the past half year, or a song title. It includes filtering data that selects content that includes the word “love”.
[0129]
As described above, the content of the filtering package is selected by associating the filtering data with the display data 221 for content corresponding to the content (including the data set by the user in the display data 221 for content) or the history data 184. Is done.
[0130]
FIG. 6 is a diagram for explaining a window that the recording program 113 displays on the display 20 when CD information is received from the WWW server 5-2. Based on the CD information received from the WWW server 5-2, the recording program 113 displays a CD title such as “Asynchronized” in the field 201, for example. Based on the CD information received from the WWW server 5-2, the recording program 113 displays an artist name such as “Kwai” in the field 202.
[0131]
Based on the CD information received from the WWW server 5-2, the recording program 113 displays a song name such as “Heat”, “Planet”, “Black”, “Soul”, etc. Is displayed. Similarly, the recording program 113 displays an artist name such as “Kwai” in the field 203 for displaying the artist.
[0132]
After the recording program 113 receives the predetermined CD information, the recording program 113 stores the CD information in a predetermined directory of the HDD 21.
[0133]
When the button 204 or the like is clicked and a CD information acquisition instruction is received, the recording program 113 first searches a predetermined directory in the HDD 21. When the CD information is stored in the directory, the recording program 113 displays a dialog box (not shown) and allows the user to select whether or not to use the CD information stored in the directory.
[0134]
When the button 206 for instructing the start of recording of the content arranged in the window displayed by the recording program 113 is clicked, the recording program 113 reads the content from the CD stored in the drive 22 and reads from the CD. The content is supplied to the content management program 111 together with the CD information. The compression method conversion program 134 of the content management program 111 compresses the content supplied from the recording program 113 by a predetermined compression method, and the encryption program 135 encrypts the compressed content. Further, the use condition conversion program 136 generates use condition data corresponding to the compressed and encrypted content.
[0135]
The content management program 111 supplies the compressed and encrypted content together with usage rule data to the content database 114.
[0136]
The content database 114 generates a content file 161 and a usage rule file 162 corresponding to the content received from the content management program 111, stores the content in the content file 161, and stores usage rule data in the usage rule file 162. To do.
[0137]
When the content database 114 stores content and usage condition data corresponding to the content, the content management program 111 supplies the display operation instruction program 112 with the CD information and usage condition data received from the recording program 113.
[0138]
The display operation instruction program 112 generates original package display data 201 and content display data 221 based on usage condition data and CD information corresponding to the content stored in the content database 114 in the recording process.
[0139]
In the window displayed by the recording program 113, when the content read from the CD is recorded in the content database 114, the content read from the CD is automatically checked to one of the portable devices 6-1 to 6-3. A button 205 for setting whether or not to be out is arranged.
[0140]
For example, when the button 205 is clicked, the recording program 113 displays a pull-down menu showing a list of portable devices 6-1 to 6-3. When the user selects any of the portable devices 6-1 to 6-3 from the pull-down menu, the personal computer 1 automatically selects any of the selected portable devices 6-1 to 6-3. Check out the content recorded from the CD. When the user selects “Do not check out” from the pull-down menu, the personal computer 1 does not check out when recording content from a CD.
[0141]
Next, with reference to the flowchart of FIG. 7, a process when the CPU 11 executing the recording program 113 transfers music data reproduced from a CD loaded in the drive 22 to the HDD 21 and copies it will be described. A user operates the keyboard 18 or mouse 19 to input a command to transfer and copy music data reproduced from a CD (not shown) mounted on the drive 22 to the HDD 11 to the CPU 11 via the interface 17. Then, in step S11, the CPU 11 displays a GUI (Graphical User Interface) for selecting a song to be copied to the display 20 via the interface 17.
[0142]
Specifically, for example, the CPU 11 reads a TOC (Table Of Contents) of a CD loaded in the drive 22, obtains information on a song included in the CD, and displays it on the display 20. Alternatively, the CPU 11 reads out ISRC (International Standard Recording Code) for each song included in the CD, obtains information on the song, and displays it on the display 20. Alternatively, the CPU 11 accesses the WWW server 5-1 or 5-2 via the network 2, obtains information on the music of the CD using the TOC, and displays the corresponding GUI on the display 20. The user operates the keyboard 18 or the mouse 19 using the GUI of the display 20 to select a song to be copied.
[0143]
Next, in step S12, the CPU 11 checks a time limit database stored in the HDD 21 (corresponding to the usage condition files 162-1 to 162-N of the content database 114 shown in FIG. 5). Details of this time limit database check process are shown in the flowchart of FIG.
[0144]
In step S31, the CPU 11 cooperates with the CPU 32 of the adapter 26 to calculate the hash value of the entire term database, and in step S32, compares the calculated value with the hash value stored last time.
[0145]
Note that when no data is recorded in the term database, the CPU 11 does not calculate a hash value.
[0146]
That is, a time limit database is formed in the HDD 21, and the time limit database has been recorded in the past as management information for managing music data (contents) recorded in the HDD 21, as shown in FIG. The corresponding ISRC and copy date / time of a song are stored. In this example, the ISRC and the copy date and time are stored for the three items 1 to 3. As will be described later, the hash value of the entire term database based on the ISRC and copy date and time recorded in this term database is calculated by the CPU 32 of the adapter 26 and stored in the nonvolatile memory 34 as will be described later. Has been. The hash value is a value obtained by applying a hash function to data. The hash function is generally a one-way function that maps long data with a variable length to a short value with a fixed length, and has a property that collision between hash values hardly occurs. Examples of hash functions include SHA (Secure Hash Algorithm) and MD (Message Digest) 5. In step S31, the CPU 11 calculates a hash value in the same manner as executed by the CPU 32. In step S32, the CPU 11 requests the CPU 32 to read out the hash value stored in the non-volatile memory 34, and the hash value received by the CPU 11 in step S31. Compare
[0147]
In step S33, the CPU 11 determines whether or not the hash value just calculated in step S31 matches the hash value of the previous time limit database stored in the nonvolatile memory 34. The CPU 11 determines that the time limit database has been tampered with, and in step S34, the CPU 11 generates a message such as “copying is not possible because the time limit database has been tampered with” and outputs it to the display 20 via the interface 17, After that, the process is terminated. That is, in this case, the process of reproducing the music data recorded on the CD and copying it to the HDD 21 is prohibited.
[0148]
If the hash value calculated in step S31 matches the previous hash value, the process proceeds to step S35, and the CPU 11 selects the ISRC of the song (selected song) selected as the song to be copied designated in step S11. Obtain from CD. When the ISRC is not recorded on the CD, the CPU 11 reads the TOC data of the CD, applies a hash function to the data, and obtains data of an appropriate length such as 58 bits, for example, Use this instead of ISRC.
[0149]
In step S36, the CPU 11 determines whether or not the ISRC (that is, the selected song) acquired in step S35 is registered in the time limit database (FIG. 9). If the ISRC is not registered in the due date database, the song has not been recorded in the HDD 21 yet, so the process proceeds to step S37, and the CPU 11 registers the ISRC of the song and the current date and time in the due date database. To do. The CPU 11 uses the value output from the RTC 35 of the adapter 26 that has been transferred from the CPU 32 as the current date and time. In step S <b> 38, the CPU 11 reads the data in the time limit database at that time and transfers it to the CPU 32 of the adapter 26. The CPU 32 calculates a hash value of the transferred data and stores it in the nonvolatile memory 34. As described above, the hash value stored in this manner is used as the previously stored hash value in step S32.
[0150]
Next, in step S39, the CPU 11 sets an unregistered flag indicating that the selected song is not registered in the term database. This flag is used when determining whether or not the selected song is registered in the term database in step S13 of FIG.
[0151]
If it is determined in step S36 that the ISRC of the selected song is registered in the time limit database, the selected song is a song that has been registered in the HDD 21 at least once. Therefore, in this case, the process proceeds to step S40, and the CPU 11 passes the current date and time (the current date and time output by the RTC 35 of the adapter 26) from the registration date and time of the selected song registered in the time limit database for 48 hours or more. It is determined whether or not. If the current time has already passed 48 hours or more from the registration date and time, it has been recorded on the HDD 21 at least once, but since it has already passed 48 hours, the song is Even if it is copied, there is not much harm, so in this case, copying to the HDD 21 is allowed. In step S41, the CPU 11 changes the date and time in the time limit database from the past registration date and time to the current date and time (the date and time output by the RTC 35). Then, returning to step S38, the CPU 11 again causes the CPU 32 to calculate the hash value of the entire term database and save it in the nonvolatile memory 34, and sets an unregistered flag for the song in step S39.
[0152]
On the other hand, if it is determined in step S40 that the current time has not yet passed 48 hours from the registration date and time, copying the selected song to the HDD 21 is prohibited. In this case, the process proceeds to step S42, and the CPU 11 sets a registered flag corresponding to the selected song.
[0153]
As described above, a flag indicating whether or not the selected song is registered in the HDD 21 is set by the time limit database check process.
[0154]
Returning to FIG. 7, in step S <b> 13, the CPU 11 determines from the above-described flag whether or not the selected song has been registered in the term database. If the selected song has been registered, the process proceeds to step S14, and the CPU 11 displays on the display 20, for example, “This song has not been copied for 48 hours since it has been copied once and cannot be copied”. A message like this is displayed. Thereby, the user can know the reason why the song cannot be copied to the HDD 21.
[0155]
If it is determined in step S13 that the selected song is not registered in the time limit database, the process proceeds to step S15, and the CPU 11 controls the drive 22 to read music data from the CD loaded therein. In this music data, a watermark code is inserted at a predetermined position as shown in FIG.
In step S16, the CPU 11 extracts a watermark code included in the music data, and determines in step S17 whether or not the watermark code indicates copy prohibition. If the watermark code indicates that copying is prohibited, the process proceeds to step S18, and the CPU 11 causes the display 20 to display a message such as “copying is prohibited” via the interface 17 to copy. End the process.
[0156]
On the other hand, if it is determined in step S17 that the watermark does not indicate copy prohibition, the process proceeds to step S19, and the CPU 11 converts the music data into, for example, ATRAC (Adaptive Transform Acoustic Coding) 3 (trademark) or the like. This is compressed by software processing. In step S20, the CPU 11 uses the encryption key that is set in advance and stored in the memory 13, for example, to store the music data by an encryption method such as DES (Data Encryption Standard) method or FEAL (Fast Encripherment Algotithm) method. Is encrypted. In addition, for example, a cryptographic key generated based on a random number generated by software or a random number generated by the CPU 32 of the adapter 26 can be used. In this way, not only the personal computer 1 but also the CPU 32 of the adapter 26 as hardware attached to the personal computer 1 works together to execute the encryption process, making decryption more difficult. Encryption can be performed.
[0157]
Next, in step S21, the CPU 11 transfers the encrypted data to the HDD 21 and saves it with a file name as one file (as the content file 161). Alternatively, as a part of one file, position information (for example, the number of bytes from the head) of the file name may be given and stored.
[0158]
This storage process and the above-described compression encoding process and encryption process may be performed separately or in parallel.
[0159]
Further, in step S22, the CPU 11 uses the storage key stored in the predetermined RAM 13 (stored so that it is difficult to read by unauthorized reading), and the DES method, FEAL described above. The encryption key obtained by encrypting the music data is encrypted by a method such as a method, and is stored in the song database of the HDD 21 (corresponding to the use condition files 162-1 to 162-N of the content database 114 shown in FIG. 5).
[0160]
In step S23, the CPU 11 registers the saved file information, the encrypted encryption key, the song information, and the song name information entered by the user via the GUI in the song database of the HDD 21. . In step S24, the CPU 11 causes the CPU 32 to calculate the hash value of the entire music database and store it in the nonvolatile memory 34.
[0161]
In this way, for example, a song database as shown in FIG. 11 is registered on the HDD 21. In this example, the file names of items 1 to 3, encrypted encryption keys, song names, lengths, playback conditions (start date / time, end date / time, number limit), playback count counter, playback billing conditions, copy conditions (Number of times), copy number counter, and copy condition (SCMS) are recorded.
[0162]
When a certain period of time has passed since the copy, the copy can be made again, so that the copy can be performed several times, which is within the range of personal use of the user. On the other hand, exceeding the range of personal use, for example, when trying to replicate in large quantities, enormous time is required, making it practically impossible. Further, for example, even when the personal computer 1 breaks down and the content recorded in the HDD 21 is erased, the erased content can be copied again and recorded in the HDD 21 after a certain period of time.
[0163]
Further, for example, the contents of the term database recorded in the HDD 21 can be shared via the network 2.
[0164]
In the above description, the case where the date and time copied according to ISRC is stored is described as an example. However, as long as the information identifies the content or CD, other information (for example, song name, album name, and their names) Combination) can also be used.
[0165]
Next, referring to the flowcharts of FIGS. 12 to 14, the CPU 21 that executes the content management program 111 and the CPU 53 that executes the main program from the HDD 21 to the flash memory 61 (for example, Memory Stick (trademark)) of the portable device 6. The process of moving music data will be described. In step S51, the CPU 11 calculates a hash value of the entire music database, and in step S52, compares the hash value stored in the nonvolatile memory 34 with the CPU 32 calculating the previous time. If they do not match, the CPU 11 proceeds to step S53, and displays a message such as “There is a possibility that the song database has been tampered” on the display 20, and then terminates the processing. The processing in this case is similar to the processing in steps S31 to S34 in FIG. In this case, the music data is not transferred from the HDD 21 to the portable device 6.
[0166]
Next, in step S54, the CPU 11 reads the information of the music registered in the music database formed in the HDD 21, and displays it on the display 20 as a GUI for selection. The user operates the keyboard 18 or the mouse 19 to select a song to be moved from the HDD 21 to the portable device 6 based on the GUI for this selection. Next, in step S55, the CPU 11 checks the reproduction condition, copy condition, reproduction-time charging condition, etc. of the selected song selected in step S54. Details of this processing will be described later with reference to the flowchart of FIG.
[0167]
Next, in step S56, mutual authentication processing is performed between the CPU 11 of the personal computer 1 and the CPU 53 of the portable device 6, and the communication key is shared.
[0168]
For example, the master key KM is stored in advance in the flash memory 61 (or EEPROM 68) of the portable device 6, and the individual key KP and ID are stored in the RAM 13 (or a predetermined file in the HDD 21) of the personal computer 1. Assume that it is stored in advance. The CPU 53 receives the ID stored in advance in the RAM 13 from the CPU 11, applies a hash function to the ID and the master key KM owned by itself, and the individual key of the personal computer 1 stored in the RAM 13. Generate the same key. By doing so, a common individual key is shared by both the personal computer 1 and the portable device 6. Furthermore, a temporary communication key can be generated using this individual key.
[0169]
Alternatively, the ID and master key KMP are stored in advance in the RAM 13 of the personal computer 1, and the ID and master key KMM of the portable device 6 are also stored in the flash memory 61 of the portable device 6. Then, by transmitting each ID and master key to each other, the other applies a hash function to the ID and master key transmitted from one to generate the other individual key.
Then, a temporary communication key is further generated from the individual key.
[0170]
As an authentication method, for example, IOS (International Organization for Standardization) 9798-2 can be used.
[0171]
When the mutual authentication is not correctly performed, the process is terminated. When the mutual authentication is correctly performed, in step S57, the CPU 11 reads out the file name of the selected song from the song database, and the music data of the file name ( For example, it is read from the HDD 21 (encrypted in the process of step S20 in FIG. 7). In step S58, the CPU 11 performs processing for converting the compression encoding method (processing in step S19), encryption method (processing in step S20), format, and the like of the digital music data read out in step S57 into those of the portable device 6. Execute.
Details of this conversion processing will be described later with reference to the flowchart of FIG.
[0172]
In step S <b> 59, the CPU 11 encrypts the music data converted in step S <b> 58 with the communication key shared by the mutual authentication process in step S <b> 56 and transfers it to the portable device 6 through the USB port 23. In step S <b> 60, when the CPU 53 of the portable device 6 receives the transmitted music data via the USB connector 56, the music data is stored in the flash memory 61 as it is.
[0173]
In step S <b> 61, the CPU 11 further converts the playback conditions (start date / time, end date / time, number limit, etc.) of the selected song registered in the song database into a format managed by the portable device 6. In step S <b> 62, the CPU 11 further converts the SCMS information in the copy condition registered in the song database of the selected song into a format managed by the portable device 6. In step S63, the CPU 11 transfers the reproduction condition converted in step S61 and the SCMS information converted in step S62 to the portable device 6. The CPU 53 of the portable device 6 saves the transferred playback condition and SCMS information in the flash memory 61.
[0174]
In step S64, the CPU 11 also transfers the playback conditions, charging conditions for playback, copy conditions, etc. registered in the song database of the selected song to the portable device 6 in the format handled by the CPU 11 in the song database. And stored in the flash memory 61.
[0175]
In step S65, the CPU 11 reads the encrypted encryption key of the selected song from the song database, and in step S66, decrypts the encryption key with the storage key stored in the RAM 13 and encrypts it with the communication key. To do. Then, the CPU 11 transfers the encryption key encrypted with the communication key to the portable device 6.
[0176]
In step S67, the CPU 53 of the portable device 6 decrypts the encryption key transferred from the personal computer 1 using the communication key shared by the mutual authentication process, encrypts it using its own storage key, The data is stored in the flash memory 61 in association with the stored data.
[0177]
When the storage of the encryption key is completed, the CPU 53 notifies the personal computer 1 that the encryption key has been stored in step S68. Upon receiving this notification from the portable device 6, the CPU 11 of the personal computer 1 deletes the music data file from the HDD 21 and deletes the set of elements of the music from the music database in step S 69. In other words, not a copy but a move is performed. In step S <b> 70, the CPU 11 transfers the music database data to the CPU 32 of the adapter 26, calculates the entire hash value, and stores the calculated hash value in the nonvolatile memory 34. This hash value is used as the previously stored hash value in step S52 described above.
[0178]
Next, a description will be given of a check process such as the playback condition of the selected tune in step S55 of FIG. 12 by the CPU 11 that executes the content management program 111. In step S81, the CPU 11 reads various conditions from the song database. In step S82, the CPU 11 determines whether or not the number of copies has already exceeded the copy limit number among the various conditions read in step S81. If the copy count has already exceeded the copy limit count, it is not possible to allow further copy, so the process proceeds to step S83, and the CPU 11, for example, “The copy count has already reached the copy limit count. "Is displayed on the display 20, and the process is terminated. If it is determined in step S82 that the number of copies has not exceeded the copy limit number, the process proceeds to step S84, where it is determined whether the current date has passed the reproduction end date. As the current date and time, those output from the RTC 35 of the adapter 26 are used. This prevents the user from using the personal computer 1 whose current time is intentionally corrected to a past value. The CPU 11 receives this current date and time from the CPU 32 and makes the determination of step S84 itself, or supplies the playback conditions read from the song database to the CPU 32 of the adapter 26 in step S81, and sends the CPU 32 to the CPU 32 in step S84. The determination process is executed.
[0179]
When the current date and time has passed the playback end date and time, the process proceeds to step S85, and the CPU 11 deletes the selected song from the HDD 21 and deletes the information of the selected song from the song database. In step S <b> 86, the CPU 11 causes the CPU 32 to calculate the hash value of the music database and store it in the nonvolatile memory 34. Thereafter, the process is terminated. Therefore, in this case, the music data is not moved.
[0180]
If it is determined in step S84 that the current date / time is not past the playback end date / time, the process proceeds to step S87, and the CPU 11 determines that the charging condition (for example, fee per playback) of the selected song is the song database. It is determined whether or not it is registered. If the charging condition for reproduction is registered, the CPU 11 communicates with the portable device 6 in step S88 and determines whether or not the portable device 6 has a charging function. If the portable device 6 does not have a billing function, the selected song cannot be transferred to the portable device 6. Therefore, in step S89, the CPU 11, for example, “The transfer destination does not have a billing function. Is displayed on the display 20, and the music data movement process is terminated.
[0181]
If it is determined in step S87 that the charging condition for playback is not registered, or if it is determined in step S88 that the portable device 6 has a charging function, the process proceeds to step S90, and the CPU 11 For example, it is determined whether or not other reproduction conditions such as the reproduction limit number are registered.
If other playback conditions are registered, the process proceeds to step S91, and the CPU 11 determines whether or not the portable device 6 has a function for keeping the playback conditions. If the portable device 6 does not have a function for keeping the playback conditions, the process proceeds to step S92, and the CPU 11 reads, for example, “The transfer destination device does not have a function for keeping the playback conditions”. Such a message is displayed on the display 20, and the process is terminated.
[0182]
If it is determined in step S90 that the playback condition is not registered, or if it is determined in step S91 that the portable device 6 has a function for protecting the playback condition, the check process for the playback condition and the like is terminated. Return to step S56 in FIG.
[0183]
FIG. 16 shows an example of playback conditions managed (protectable) by the portable device 6. In this example, the playback start date and time and the playback end date and time are registered for each of the items 1 to 3, but the playback count is registered only for item 2 and registered for item 1 and item 3. It has not been. Therefore, when the song of item 2 is the selected song, the playback condition of the number of playbacks can be observed, but when the song of item 1 or item 3 is the selected song, the condition of the number of playbacks must be observed. Will not be able to.
[0184]
Next, details of the format conversion process in step S58 in FIG. 12 by the CPU 11 executing the content management program 111 will be described with reference to the flowchart in FIG. In step S101, the CPU 11 checks the format (reproduction condition, use condition, copy condition, etc.) of the selected song recorded on the HDD 21. In step S102, the CPU 11 checks the conditions that can be set for the counterpart device (in this case, the portable device 6). That is, the CPU 11 inquires about conditions that can be set to the CPU 53 of the portable device 6 and obtains an answer to the conditions. In step S103, the CPU 11 determines a condition that can be set in the counterpart device among the conditions of the format registered in the music database based on the condition checked in step S102.
[0185]
In step S104, the CPU 11 determines whether there is a settable condition. If there is no settable condition, the CPU 11 proceeds to step S105 and prohibits the process of moving the music data to the portable device 6. . That is, in this case, since the portable device 6 cannot keep the conditions registered in the song database, it is prohibited to move music data to such a portable device 6.
[0186]
If it is determined in step S104 that there is a settable condition, the process proceeds to step S106, and the CPU 11 converts the condition into a function format condition of the counterpart. In step S107, the converted condition is set in the counterpart device. As a result, the portable device 6 can reproduce music data in accordance with the set conditions (observing the conditions).
[0187]
Next, processing when music data is copied from the HDD 21 to the portable device 6 by the CPU 11 that executes the content management program 111 and the CPU 53 that executes the main program will be described with reference to the flowcharts of FIGS. The processing from step S111 to step S127 in FIGS. 18 to 20 is the same as the processing from step S51 to step S67 when moving music data from the HDD 21 to the portable device 6 in FIGS. That is, also in this case, after checking the alteration of the song database, a check process with the reproduction condition of the selected song is performed. Further, after mutual authentication processing between the portable device 6 and the personal computer 1, the music data is transferred from the HDD 21 of the personal computer 1 to the flash memory 61 of the portable device 6 and stored. Thereafter, in step S128, the CPU 11 of the personal computer 1 increments the copy number counter of the music database by one. In step S 129, the CPU 11 causes the CPU 32 to calculate the hash value of the entire music database, and stores the value in the nonvolatile memory 34.
[0188]
Next, a process of moving music data from the portable device 6 to the HDD 21 by the CPU 11 that executes the content management program 111 and the CPU 53 that executes the main program will be described with reference to the flowchart of FIG. In step S <b> 161, the CPU 11 of the personal computer 1 requests the CPU 53 of the portable device 6 to read the song information stored in the flash memory 61. In response to this request, the CPU 53 transmits the music information stored in the flash memory 61 to the personal computer 1. Based on this information, the CPU 11 of the personal computer 1 causes the display 20 to display a GUI for selecting a song stored in the flash memory 61. The user operates the keyboard 18 or the mouse 19 to designate a song to be moved from the portable device 6 to the HDD 21 based on the GUI.
[0189]
In step S162, the CPU 11 performs mutual authentication processing with the CPU 53 and shares a communication key. This process is the same as that in step S56 of FIG.
[0190]
Next, in step S <b> 163, the CPU 53 reads the encrypted music data of the selected song stored in the flash memory 61 and transfers it to the personal computer 1. In step S164, the CPU 11 of the personal computer 1 stores the music data transferred from the portable device 6 in the HDD 21 with a file name as one file. This storage can be performed, for example, by giving position information (for example, the number of bytes from the beginning) of the file name as a part of one file.
[0191]
In step S165, the CPU 53 reads the encrypted encryption key of the selected song stored in the flash memory 61, decrypts it with its own storage key, and further encrypts it with the communication key. Transfer to personal computer 1. This encryption key has been stored in the flash memory 61 in the process of step S67 of FIG. 14, for example.
[0192]
In step S166, upon receiving the transfer of the encryption key from the portable device 6, the CPU 11 of the personal computer 1 decrypts it with the communication key and encrypts it with its own storage key. In step S167, the CPU 11 stores the file name of the music data file saved in step S164, the song name input by the user via the GUI, the encryption key encrypted in step S166, etc. Register in the database. In step S168, the CPU 11 causes the CPU 32 to calculate the hash value of the entire music database and store it in the nonvolatile memory 34.
[0193]
In step S169, the CPU 11 of the personal computer 1 notifies the portable device 6 that the encryption key has been saved, and requests deletion of the music data of the song. When the personal computer 1 requests deletion of the music data of the song, the CPU 53 deletes the music data of the song stored in the flash memory 61 in step S170.
[0194]
Next, processing when music data is copied from the portable device 6 to the HDD 21 by the CPU 11 that executes the content management program 111 and the CPU 53 that executes the main program will be described with reference to the flowchart of FIG. The processing from step S181 to step S188 shown in FIG. 22 is the same as the processing from step S161 to step S168 in the processing when moving music data from the portable device 6 to the HDD 21 in FIG. That is, in the case of the copy process, the process is basically the same as the process in the case of moving except that the processes in steps S169 and S170 in FIG.
[0195]
Next, a process of copying music data transferred from the EMD server 4 to the HDD 21 by the CPU 11 executing the EMD server 4 and the content management program 111 will be described with reference to a flowchart of FIG. In step S <b> 201, the CPU 11 controls the communication unit 25 to access the EMD server 4 via the network 2 when an instruction to access the EMD server 4 is issued from the user via the keyboard 18 or the mouse 19. In response to this access, the EMD server 4 transfers information such as the song number, song name, and information held by itself to the personal computer 1 via the network 2. When the CPU 11 of the personal computer 1 acquires this information via the communication unit 25, it displays it on the display 20 via the interface 17. Using the GUI displayed on the display 20, the user designates a song that he / she wishes to copy in step S202. This designation information is transferred to the EMD server 4 via the network 2. In step S <b> 203, the CPU 11 performs mutual authentication processing with the EMD server 4 via the network 2 and shares a communication key.
[0196]
The mutual authentication process performed between the personal computer 1 and the EMD server 4 can be performed using, for example, a public key and a secret key defined in ISO 9798-3. In this case, the personal computer 1 has its own secret key and the public key of the EMD server 4 in advance, and the EMD server 4 has its own secret key, and mutual authentication processing is performed. The public key of the personal computer 1 is transferred from the EMD server 4 or a certificate (certificate) distributed in advance to the personal computer 1 is transferred from the personal computer 1 to the EMD server 4, and the certificate is transferred to the EMD server 4. May confirm and obtain a public key. Furthermore, in step S <b> 204, the CPU 11 executes processing related to charging with the EMD server 4. Details of the accounting process will be described later with reference to the flowchart of FIG.
[0197]
Next, in step S205, the EMD server 4 transfers the encrypted music data of the song designated in step S202 to the personal computer 1 via the network 2 to the personal computer 1. At this time, time information is also appropriately transferred. In step S206, the CPU 11 saves the transferred music data as a single file in the HDD 21 with a file name. In step S207, the EMD server 4 further encrypts the encryption key of the song using the communication key shared with the personal computer 1 in step S203, and transfers it to the personal computer 1.
[0198]
In step S208, the CPU 11 decrypts the encryption key transferred from the EMD server 4 alone or in cooperation with the CPU 32 of the adapter 26 using the communication key, and decrypts the encryption key obtained by itself. Encrypt with the storage key. In step S209, the CPU 11 registers the file name of the song, the song information, the song name input by the user, and the encrypted encryption key in the song database of the HDD 21. Further, in step S210, the CPU 11 causes the CPU 32 to calculate the hash value of the entire music database and store it in the nonvolatile memory 34.
[0199]
In step S205, the EMD server 4 transmits time data to the personal computer 1 together with the music data. This time data is transferred from the personal computer 1 to the adapter 26. When receiving the time data transferred from the personal computer 1, the CPU 32 of the adapter 26 corrects the time of the RTC 35 in step S211. In this way, the time information of the RTC 35 of the adapter 26 is corrected based on the time information obtained from the external device recognized as the correct device as a result of mutual authentication. Information can be held.
[0200]
Next, with reference to the flowchart of FIG. 24, the details of the processing related to charging in step S204 of FIG. 23 by the CPU 11 that executes the EMD server 4 and the content management program 111 will be described. In step S221, the CPU 11 of the personal computer 1 reads the price information of the selected song designated in step S202 from the price information transmitted from the EMD server 4 in step S201, and stores this in the billing log on the HDD 21. Write. FIG. 25 shows an example of such a charge log. In this example, the user has copied items 1 to 3 from the EMD server 4, the area of item 1 and item 2 is 50 yen, and the charge of item 3 is 60 yen. The hash value of the billing log at that time is also calculated by the CPU 32 and registered in the nonvolatile memory 34.
[0201]
Next, in step S <b> 222, the CPU 11 of the personal computer 1 reads the billing log written in step S <b> 221 from the HDD 21 and transfers it to the EMD server 4 via the network 2. In step S223, the EMD server 4 executes billing calculation processing based on the billing log transferred from the personal computer 1. That is, the EMD server 4 additionally updates the charging log transmitted from the user of the personal computer 1 to the built-in database. In step S224, the EMD server 4 determines whether or not to immediately approve the billing log. If so, the process proceeds to step S225. Are transferred to an approval server (not shown). In step S226, the approval server executes an approval process for the user of the personal computer 1. If it is determined in step S224 that the decision is not made immediately, the processes in steps S225 and S226 are skipped. That is, this process is periodically executed thereafter, for example, once a month.
[0202]
Next, referring to the flowcharts of FIGS. 26 and 27, the music data reproduced from the CD player or the like (not shown) input from the IEC60958 terminal of the audio input / output interface 24 by the CPU 11 executing the content management program 111 is shown. A process for copying to the HDD 21 will be described. In step S <b> 241, the user connects the IEC60958 output terminal of the CD player to the IEC60958 terminal of the audio input / output interface 24 of the personal computer 1. In step S242, the user operates the keyboard 18 or the mouse 19 to input the name of the song to be copied from the CD player (or a number corresponding to the song). In step S243, the user operates a button on the CD player to start playback on the CD player. When a line for transmitting and receiving control signals is connected between the CD player and the personal computer 1, a playback start command is input via the keyboard 18 or the mouse 19 of the personal computer 1, whereby the CD player It is also possible to start playback.
[0203]
When CD playback is started in the CD player, the music data output from the CD player is transferred to the personal computer 1 via the IEC60958 terminal in step S244. In step S245, the CPU 11 reads SCMS (Serial Copy Management System) data from data input via the IEC60958 terminal. This SCMS data includes copy information such as copy prohibition, one copy only, and copy free. Therefore, in step S246, the CPU 11 determines whether or not the SCMS data indicates copy prohibition. If the copy prohibition is indicated, the CPU 11 proceeds to step S247, and the CPU 11 displays, for example, “Copy”. Message is displayed and the copy process is terminated. That is, in this case, copying to the HDD 21 is prohibited.
[0204]
If the CPU 11 determines in step S246 that the SCMS information read in step S245 does not indicate copy prohibition, the CPU 11 proceeds to step S248, reads a watermark code, and determines whether or not the watermark indicates copy prohibition. The determination is made in step S249. If the watermark code indicates copy prohibition, the process proceeds to step S247, a predetermined message is displayed, and the copy process is terminated as in the case described above.
[0205]
If it is determined in step S249 that the watermark does not indicate copy prohibition, the process proceeds to step S250, and a time limit database check process is performed. If the selected music piece has already been registered as a result of the time limit database check, the process ends in steps S251 and S252. This process is the same as the process of steps S13 and S14 in FIG.
[0206]
If the selected song is not yet registered in the HDD 21, the registration process is executed in steps S253 to S258. The processing from step S253 to step S258 is the same as the processing from step S19 to step S24 in FIG. 7 except that the SCMS information supplied from the IEC60958 terminal is also registered in the song database in step S257. Therefore, the description is omitted.
[0207]
Next, processing when the music data is output (reproduced) from the HDD 21 to the IEC60958 terminal by the CPU 11 that executes the content management program 111 will be described with reference to the flowcharts of FIGS. In steps S271 through S273, as in the case of steps S111 through S113 in FIG. 18, the hash value of the entire music database is calculated, and it is determined whether or not it matches the previously stored hash value. The tampering check process is performed. If it is determined that the song database has not been tampered with, the process proceeds to step S274, where the CPU 11 accesses the song database in the HDD 21, reads out information on the songs registered therein, and causes the display 20 to display the information. The user sees the display and appropriately operates the keyboard 18 or mouse 19 to select a song to be reproduced and output. In step S275, the CPU 11 executes a check process such as a playback condition for the selected song. Details of this reproduction condition check process will be described later with reference to the flowchart of FIG.
[0208]
Next, in step S276, the CPU 11 reads the encryption key of the song selected in step S274 from the song database and decrypts it with the storage key. In step S277, the CPU 11 reads the SCMS information of the selected song from the song database, and determines the SCMS information to be output from the IEC60958 terminal according to the rules of the SCMS system. For example, when the number of reproductions is limited, the number of reproductions is incremented by 1, and new SCMS information is obtained. In step S278, the CPU 11 further reads out the ISRC of the selected song from the song database.
[0209]
In step S279, the CPU 11 reads the selected song file name from the song database, and reads the music data from the HDD 21 based on the file name. The CPU 11 further reads out the encryption key corresponding to the music data from the music database, decrypts it with the storage key, and decrypts the encrypted music data using the decrypted encryption key. The CPU 11 further decodes the compression code of the music data. In step S280, the CPU 11 outputs the decoded digital music data in step S279 from the IEC60958 terminal in accordance with the IEC60958 terminal together with the SCMS information determined in step S277 and the ISRC information read in step S278. Furthermore, the digital music data is converted to analog and output from the analog output terminal of the audio input / output interface 24.
[0210]
In step S281, the CPU 11 increments the value of the reproduction number counter in the song database by one. In step S282, it is determined whether or not a charging condition is added to the selected song. If the charge condition at the time of reproduction is added, the process proceeds to step S283, and the CPU 11 writes the corresponding charge in the charge log, and in step S284, causes the CPU 32 to calculate the hash value of the entire music database, and the nonvolatile memory 34 Remember me. If it is determined in step S282 that the charge condition for reproduction is not added to the selected song, the processes in steps S283 and S284 are skipped.
[0211]
Next, with reference to the flowchart of FIG. 30, the details of the checking process such as the reproduction condition in step S275 of FIG. 28 by the CPU 11 executing the content management program 111 will be described. In step S301, the CPU 11 reads out various conditions of the song database. In step S302, the CPU 11 determines whether or not the number of reproductions exceeds the limit number among the read conditions, and if so, the process proceeds to step S303 to delete the selected song from the HDD 21 and the song database. Delete the selected song information from. In step S <b> 304, the CPU 11 further causes the CPU 32 to calculate a new hash value of the music database and stores the hash value in the nonvolatile memory 34. In this case, reproduction output is prohibited.
[0212]
If it is determined in step S302 that the number of reproductions has not exceeded the limit number, the process proceeds to step S305, and the CPU 11 determines whether or not the reproduction end date has passed the current date and time. If the playback end date / time has passed the current date / time, the selected song is deleted from the HDD 21 and also deleted from the song database in step S303 as in the case described above. In step S304, the hash value of the new music database is calculated and stored. Also in this case, reproduction output is prohibited.
[0213]
If it is determined in step S305 that the playback end date / time has not passed the current date / time, the process proceeds to step S306, and the CPU 32 determines whether or not a playback charging condition is added to the selected song. If the playback charging condition is added, the process proceeds to step S307, and the CPU 11 causes the display 20 to display a message and a charge indicating that the playback charging condition is added. If it is determined in step S306 that the charging condition for playback is not added, the process in step S307 is skipped.
[0214]
Next, referring to the flowcharts of FIG. 31 and FIG. 32, processing when music data is output (played back) from the HDD 21 via the portable device 6 by the CPU 11 that executes the content management program 111 and the CPU 53 that executes the main program. Will be described. In steps S321 to S325, a tampering check of the music database, selection of the selected music, check processing of the playback conditions of the selected music, and the like are performed. Since the process is the same as the process of steps S271 to S275 in FIG. 28, the description thereof is omitted.
[0215]
In step S326, a mutual authentication process is executed between the portable device 6 and the personal computer 1, and a communication key is shared between them. In step S327, the CPU 11 of the personal computer 1 instructs the portable device 6 to reproduce the encrypted audio data to be sent. In step S328, the CPU 11 reads the file name of the selected song designated in step S324 from the song database, and reads the music data of that file name from the HDD 21. In step S329, the CPU 11 executes processing for converting the compression / encoding method, encryption method, format, etc., of the music data into that of the portable device 6. In step S330, the CPU 11 encrypts the music data converted in step S329 with a communication key and transfers the encrypted music data to the portable device 6.
[0216]
In step S331, in response to the command transferred from the personal computer 1 in step S327, the CPU 53 of the portable device 6 decrypts each transferred data with the communication key, and reproduces and outputs it. In step S332, the CPU 11 increments the reproduction count of the music database by one. Further, in step S333, the CPU 11 determines whether or not a charging condition for reproduction is added to the selected song. If it is added, the charge is written in the charging log in step S334, and in step S335. The CPU 32 newly calculates and stores the hash value of the entire music database. When the charge condition at the time of reproduction is not added to the selected music piece, the processes in steps S334 and S335 are skipped.
[0217]
In the present invention, various ideas have been devised in order to prevent illegal duplication of music data. For example, the program for operating the CPU 11 is so-called tamper resistant software whose execution order changes every time.
[0218]
Furthermore, as described above, a part of the function of the CPU 11 is shared by the adapter 26 as hardware, and the two cooperate to execute various processes. Thereby, it is possible to further improve safety.
[0219]
For example, as described above, the hash value of the music database is not stored in the music database itself, but is stored in the nonvolatile memory 34 of the adapter 26.
That is, in the comparison process with the previously stored hash value such as steps S32 and S33 in FIG. 8, the past hash value to be compared is stored in the nonvolatile memory 34. Thus, for example, before the music data stored in the HDD 21 is copied or moved to another recording medium, the recorded content of the HDD 21 is backed up, and the music data stored there is transferred from the HDD 21 to other data. After the data has been copied or moved to the recording medium, the data backed up on the HDD 21 is restored again, so that copying or moving can be prevented without substantial reproduction.
[0220]
For example, as shown in FIG. 33, when songs A and B are stored in the HDD 21, hash values corresponding to the information of the songs A and B are stored in the nonvolatile memory 34. In this state, it is assumed that the recording data of the HDD 21 is backed up to another recording medium 251. After that, when the song A is moved to another recording medium 252 among the songs A and B stored in the HDD 21, the song recorded in the HDD 21 at that time is only the song B. The hash value of the nonvolatile memory 34 is also changed to a hash value corresponding to the music piece B.
[0221]
Therefore, even if the contents of the HDD 21 backed up in the recording medium 251 are restored to the HDD 21 and the songs A and B are stored again in the HDD 21, the information on the song B is stored in the nonvolatile memory 34. The hash value calculated from the information of music A and music B is not stored. Thereby, at that time, the hash value based on the music A and the music B stored in the HDD 21 does not match the past hash value stored in the nonvolatile memory 34, and the music database has been falsified. It is detected. As a result, the use of the music A and the music B stored in the HDD 21 is restricted thereafter.
[0222]
Further, as described above, the adapter 26 includes the RTC 35, and the value of the RTC 35 is based on time data transferred from another device (for example, the EMD server 4) from which a correct authentication result is obtained. To correct the time information. The current date and time is not managed by the personal computer 1 but is output from the RTC 35. Therefore, the user cannot intentionally correct the current time of the personal computer 1 to a past time and escape the determination of the reproduction end date and time as a reproduction condition.
[0223]
Further, the adapter 26 is configured to decrypt and execute an encrypted program transferred in accordance with a program stored in the ROM 36 in advance, thereby further improving safety. Next, this point will be described with reference to the flowchart of FIG.
[0224]
That is, when the personal computer 1 wants the adapter 26 to execute a predetermined process, in step S351, the personal computer 1 encrypts the program to be executed by the adapter 26 using the encryption key stored in the RAM 13 in advance. 26. The ROM 36 of the adapter 26 stores in advance a program for decrypting and executing the encrypted program transferred from the personal computer 1. The CPU 32 decrypts the encrypted program transferred from the personal computer 1 in step S352 according to the program stored in the ROM 36. In step S313, the CPU 32 develops the decrypted program in the RAM 33, and in step S354, executes the program.
[0225]
For example, as described above, when the CPU 11 of the personal computer 1 causes the adapter 26 to calculate the hash value of the music database of the HDD 21, the data of the music database is encrypted with the encryption key and transferred to the CPU 32 of the adapter 26. The CPU 32 applies a hash function to the transferred music database data and calculates a hash value. Then, the calculated hash value is stored in the nonvolatile memory 34. Alternatively, the CPU 32 compares the hash value with a past hash value stored in advance, and transfers the comparison result to the CPU 11 of the personal computer 1.
[0226]
FIG. 35 shows a more specific configuration inside the adapter 26. The adapter 26 is formed as a semiconductor IC. In addition to the interface 31, CPU 32, RAM 33, nonvolatile memory 34, RTC 35, and ROM 36 shown in FIG. 3, the adapter 26 has a RAM controller 261 that controls writing to and reading from the RAM 33, and a logic circuit 262. The logic circuit 262 is used, for example, for processing in a case where decrypted data is directly output from the adapter 26 after decrypting the encrypted music data.
[0227]
The interface 31 to ROM 36, the RAM controller 261, and the logic circuit 262 are integrally incorporated in the semiconductor IC and configured so as not to be disassembled from the outside.
[0228]
The crystal oscillator 271 is used when the adapter 26 generates a reference clock for executing various processes. The oscillation circuit 272 is an oscillation circuit for operating the RTC 35. The battery 273 supplies power for backup to the oscillation circuit 272, the nonvolatile memory 34, and the RTC 35. The other circuit of the adapter 26 is supplied with power from the power supply circuit 281 of the personal computer 1.
[0229]
The nonvolatile memory 34 can be composed of a ROM that can be written to and erased. However, when it is composed of a RAM backed up by a backup power source from the battery 273, for example, as shown in FIG. A protective aluminum layer 291 is formed on the memory 34, and a power supply pattern 292 for supplying power from the battery 273 to the nonvolatile memory 34 is formed so as to be flush with the protective aluminum layer 291. can do. In this case, for example, if the protective aluminum layer 291 is deleted in order to falsify the nonvolatile memory 34, the power supply pattern 292 on the same plane is also deleted, and the power supply to the nonvolatile memory 34 is cut off. The data stored inside is erased. By comprising in this way, tamper resist property can be improved more.
[0230]
Further, as shown in FIG. 37, wirings 301-1 to 301-3 for writing or reading data to / from the nonvolatile memory 34 are formed at corresponding positions so as to overlap in the vertical (depth) direction. ing. Thus, in order to read data from the lower wiring 301-3, the upper wirings 301-1 and 101-2 must be removed, and a plurality of wirings 301-1, 301-2, and 301-3 are removed. Cannot read data simultaneously. Furthermore, if the wirings 301-1 to 301-3 are formed redundantly and directly probed, it is possible to make it difficult to analyze the contents due to the additional capacitance.
[0231]
In the above description, the case where the portable device 6 is used as the recording medium has been described as an example. However, the present invention can also be applied to a case where data is transferred or copied to another recording medium.
[0232]
In addition to music data, the data can be image data or other data.
[0233]
As described above, according to the present invention, the following effects can be obtained.
[0234]
(1) The data is encrypted and recorded on the HDD 21 and the encryption key is encrypted with the storage key and then recorded on the HDD 21. Even if the music data recorded on the HDD 21 is copied, this Can not be decrypted, so that a large number of copies can be prevented from being distributed.
[0235]
(2) When a given song is copied once, the song and recording date and time are stored in the song database so that the song cannot be copied for a certain period of time (48 hours in the above example). Since registration is performed, the number of times of copying can be limited, and distribution of a large number of copies can be prevented.
[0236]
Further, since the hash value of the data is calculated and stored every time the database is updated, it becomes easy to prevent falsification of the database.
[0237]
(3) Since the music data on the HDD 21 is erased when the music data is transferred to an external device, the original digital music data does not remain in the HDD 21 and a large number of copies thereof are prevented from being distributed. .
[0238]
(4) Since the song database is provided in the HDD 21 and the entire hash value is checked every time, the contents of the HDD 21 are backed up immediately before the move, and the backed up data immediately after the move is restored to the HDD 21. However, it is possible to securely delete the data of the sending source.
[0239]
(5) Since the personal computer 1 performs the mutual authentication process before transferring data to an external device, it is possible to prevent data from being transferred to an unauthorized device.
[0240]
(6) Before the data is transferred from the external device to the personal computer 1, whether or not the software of the personal computer 1 is valid is confirmed by mutual authentication. It is prevented that music data is passed.
[0241]
(7) When ISRC is used to determine the identity of a song and the ISRC cannot be obtained, the TOC is used. Therefore, even if the ISRC cannot be obtained, the identity of the song can be judged.
[0242]
(8) Of the software functions in the personal computer 1, a predetermined portion is borne by the adapter 26 externally attached to the personal computer 1. Since it is not known whether it is a process, it becomes difficult to tamper with the software and to have the intended function.
[0243]
The processing executed by the adapter 26 may be executed by the CPU 11 with a secure program. In this case, the personal computer 1 downloads the current time data from a specific server (for example, the EMD registration server 3) connected to the network 2 instead of the current time supplied by the RTC 35 of the adapter 26, Based on the current time, a determination process is executed. In this case, the personal computer 1 stores the current time at a predetermined time interval, displays an error when a time before the stored time is set, and does not accept the time setting. You may do it.
[0244]
The series of processes described above can be executed by hardware, but can also be executed by software. When a series of processing is executed by software, a program constituting the software may execute various functions by installing a computer incorporated in dedicated hardware or various programs. For example, it is installed from a program storage medium in a general-purpose personal computer or the like.
[0245]
As shown in FIG. 3, a program storage medium that stores a program that is installed in a computer and can be executed by the computer includes a magnetic disk 41 (including a floppy disk), an optical disk 42 (CD-ROM (Compact Disc- Package media including a read-only memory (DVD) (including a digital versatile disc (DVD)), a magneto-optical disk 43 (including an MD (mini-disc)), or a semiconductor memory 44, or a program temporarily or permanently. The ROM 12 is stored, and the HDD 21 is used. The program is stored in the program storage medium using a wired or wireless communication medium such as a local area network or the network 2 such as the Internet or digital satellite broadcasting via an interface such as the communication unit 25 as necessary. Is called.
[0246]
In the present specification, the step of describing the program stored in the program storage medium is not limited to the processing performed in time series according to the described order, but is not necessarily performed in time series. Or the process performed separately is also included.
[0247]
Further, in this specification, the system represents the entire apparatus constituted by a plurality of apparatuses.
[0248]
【The invention's effect】
  The present inventionAccording toYu-It will be possible to effectively ban a large amount of duplication without significantly degrading the profit of the user.
[Brief description of the drawings]
FIG. 1 is a diagram for explaining SCMS and CGMS.
FIG. 2 is a diagram showing an embodiment of an audio data management system according to the present invention.
FIG. 3 is a diagram illustrating a configuration of a personal computer 1;
4 is a diagram illustrating a configuration of a portable device 6. FIG.
FIG. 5 is a block diagram illustrating a functional configuration of a personal computer 1;
6 is a diagram illustrating an example of a window displayed on the display 20 by the recording program 113. FIG.
FIG. 7 is a flowchart for explaining processing when copying from a compact disc to the HDD 21;
FIG. 8 is a flowchart for explaining a time limit database check process in step S12 of FIG.
FIG. 9 is a diagram illustrating an example of a time limit database.
FIG. 10 is a diagram illustrating a watermark.
FIG. 11 is a diagram showing an example of a music database.
FIG. 12 is a flowchart for explaining the operation of moving data from the HDD 21 to the portable device 6;
FIG. 13 is a flowchart for explaining the operation of moving data from the HDD 21 to the portable device 6;
FIG. 14 is a flowchart illustrating an operation of moving data from the HDD 21 to the portable device 6;
FIG. 15 is a flowchart illustrating a check process such as a playback condition for a selected song in step S55 of FIG.
FIG. 16 is a diagram for explaining playback conditions managed by the portable device 6;
FIG. 17 is a flowchart illustrating details of the format conversion process in step S58 of FIG.
FIG. 18 is a flowchart for explaining an operation when data is copied from the HDD 21 to the portable device 6;
FIG. 19 is a flowchart for explaining an operation when data is copied from the HDD 21 to the portable device 6;
FIG. 20 is a flowchart for explaining an operation when data is copied from the HDD 21 to the portable device 6;
FIG. 21 is a flowchart illustrating an operation when data is moved from the portable device 6 to the HDD 21;
FIG. 22 is a flowchart illustrating an operation when data is copied from the portable device 6 to the HDD 21;
FIG. 23 is a flowchart for explaining processing when data is copied from the EMD server 4 to the HDD 21;
FIG. 24 is a flowchart illustrating details of processing related to charging in step S204 of FIG.
FIG. 25 is a diagram illustrating a billing log.
26 is a flowchart illustrating two processes for copying data from the IEC60958 terminal of the personal computer 1 of FIG. 3 to the HDD 21. FIG.
27 is a flowchart for explaining processing when data is copied from the IEC60958 terminal of the personal computer 1 of FIG. 3 to the HDD 21. FIG.
FIG. 28 is a flowchart for explaining the operation when data is output from the HDD 21 to the IEC60958 terminal.
FIG. 29 is a flowchart for explaining the operation when data is output from the HDD 21 to the IEC60958 terminal.
30 is a flowchart for describing a check process such as a reproduction condition in step S275 in FIG.
FIG. 31 is a flowchart for explaining the operation when data is output from the HDD 21 via the portable device 6;
32 is a flowchart for explaining the operation when data is output from the HDD 21 via the portable device 6. FIG.
33 is a diagram illustrating the function of a nonvolatile memory 34. FIG.
34 is a flowchart illustrating the operation of the adapter 26. FIG.
35 is a diagram showing an internal configuration of the adapter 26. FIG.
36 is a diagram showing an example of the internal configuration of a nonvolatile memory 34. FIG.
37 is a diagram showing an example of the internal configuration of a nonvolatile memory 34. FIG.
[Explanation of symbols]
1 Personal computer, 2 Network, 3 EMD registration server, 11 CPU, 12 ROM, 13 RAM, 21 HDD, 24 Audio input / output interface, 26 Adapter, 32 CPU, 33 RAM, 34 Non-volatile memory, 35 RTC, 36 ROM, 41 magnetic disk, 42 optical disk, 43 magneto-optical disk, 44 semiconductor memory, 53 CPU, 54 RAM, 55 ROM, 59 DSP, 61 flash memory, 111 content management program, 112 display operation instruction program, 113 recording program, 114 content database 131 EMD selection program, 132 Check-in / check-out management program, 133 Encryption method conversion program, 134 Compression method conversion program, 135 Encryption program 136, use condition conversion program, 137 signature management program, 138 authentication program, 139 decryption program, 140 PD driver, 141 purchase driver, 142 purchase driver, 181 filtering data file, 182 display data file, 183 image file, 184 History data file

Claims (7)

Duplicating means for duplicating the content recorded on the first recording medium and recording the resulting copy content on a second recording medium different from the first recording medium;
Each time the content recorded on the first recording medium is duplicated by the duplicating means, a time limit for storing the identification information for identifying the content in association with time information when the content is duplicated Update means for updating the database;
An acquisition unit configured to acquire identification information of the content instructed to be copied when the user instructs to copy the content recorded in the first recording medium;
Read time information when the content corresponding to the acquired identification information was last copied from the time limit database,
When a predetermined time has elapsed since the content that was instructed to be replicated was previously replicated, the replication means is permitted to replicate the content,
An information processing apparatus comprising: a copy control unit that prohibits the copy unit from copying the content when a predetermined time has not passed since the content instructed to be copied was previously copied. The information processing apparatus according to claim 1, wherein the identification information is ISRC (International Standard Recording Code). The information processing apparatus according to claim 1, wherein the identification information is a table of contents (TOC). The acquisition means reads the ISRC, which is identification information of the content, from the first recording medium in which the content is stored, and when the ISRC is not recorded in the first recording medium, The information processing apparatus according to claim 1, wherein TOC is used as content identification information. A detection unit for detecting falsification of the deadline database using a hash function;
The information processing apparatus according to claim 1, wherein the duplication control unit prohibits the duplication unit from duplicating the content even when falsification of the time limit database is detected. Information processing method of information processing apparatus provided with duplicating means for duplicating the content recorded on the first recording medium and recording the resulting copy content on a second recording medium different from the first recording medium In
Each time the content recorded on the first recording medium is duplicated by the duplication unit, the time limit when the content is duplicated and stored in association with identification information for identifying the content An update step to update the database;
An acquisition step of acquiring identification information of the content instructed to be copied when the user instructs to copy the content recorded in the first recording medium;
Read time information when the content corresponding to the acquired identification information was last copied from the time limit database,
When a predetermined time has elapsed since the content that was instructed to be replicated was previously replicated, the replication means is permitted to replicate the content,
If the replication is the content that is instructed not a predetermined time elapses since the replicated last time, information processing method and a replication control step of prohibiting the duplication of the content to the duplication unit. For controlling an information processing apparatus provided with duplication means for duplicating content recorded on a first recording medium and recording copy content obtained as a result on a second recording medium different from the first recording medium A program,
Each time the content recorded on the first recording medium is duplicated by the duplication unit, the time limit when the content is duplicated and stored in association with identification information for identifying the content An update step to update the database;
An acquisition step of acquiring identification information of the content instructed to be copied when the user instructs to copy the content recorded in the first recording medium;
Read time information when the content corresponding to the acquired identification information was last copied from the time limit database,
When a predetermined time has elapsed since the content that was instructed to be replicated was previously replicated, the replication means is permitted to replicate the content,
If the replication is the content that is instructed not a predetermined time elapses since the replicated last time, the information processing apparatus a process that includes a replication control step of prohibiting the duplication of the content to the duplication unit A program storage medium storing a program to be executed by a computer.

Images