JP4599899B2 - Information management apparatus and information management method - Google Patents

Description

  The present invention relates to an information management apparatus and an information management method for managing access to information stored in a relatively large memory area, and more particularly, to store electronic value information in a memory area for electronic settlement. The present invention relates to an information management apparatus and an information management method for exchanging secure information at the beginning.

  More specifically, the present invention relates to an information management apparatus and an information management method for allocating various files on a memory area and managing information for service operation. In particular, an authentication key is provided for each file. The present invention relates to an information management apparatus and an information management method for realizing secure file access by preventing cracking by a user.

  Non-contact / proximity communication systems represented by IC cards are widely used because of their ease of operation. A general method of using an IC card is performed by a user holding the IC card over a card reader / writer. The card reader / writer side always polls the IC card, and when an external IC card is found, the communication operation between the two starts. For example, by storing PIN code, other personal authentication information, value information such as electronic tickets in an IC card, visitors and passengers at cash dispensers, entrances to concert venues, ticket gates at stations, etc. Authentication processing can be performed.

  Recently, IC cards having a relatively large capacity memory have appeared along with improvements in miniaturization technology. According to an IC card with a large-capacity memory, a single IC card can be used for a plurality of purposes by developing a file system in the memory space and storing a plurality of applications simultaneously. For example, by storing a plurality of applications such as electronic money for electronic payment and electronic ticket for entering a specific concert venue on a single IC card, It can be applied to various uses. The electronic money and electronic ticket mentioned here refer to a mechanism in which payment (electronic payment) is made through electronic data issued according to funds provided by a user, or such electronic data itself.

  In addition to a wireless / contactless interface, an IC card or a card reader / writer (card reader / writer) includes a wired interface for connecting to an external device, such as a mobile phone, a PDA (Personal Digital Assistance), or a CE (Consumer). By being incorporated in each device such as an electronics device or a personal computer, these devices can be equipped with either or both of an IC card and a card reader / writer. In such a case, the IC card technology can be used as a versatile bidirectional proximity communication interface.

  For example, when a proximity communication system is configured between devices such as computers and information home appliances, non-contact communication using an IC card is performed one-to-one. In addition, it is possible for a certain device to communicate with a partner device other than a device such as a non-contact IC card. In this case, an application that performs one-to-many communication between one device and a plurality of cards is also conceivable.

  In addition, various applications using an IC card, such as electronic value information exchange with the outside such as electronic payment, can be executed on the information processing terminal. For example, user interaction with an IC card can be performed on the information processing terminal using a user interface such as a keyboard or display on the information processing terminal. Further, since the IC card is connected to the mobile phone, the contents stored in the IC card can be exchanged via the telephone network. Furthermore, it is possible to pay the usage fee with an IC card by connecting to the Internet from a mobile phone.

  In this way, a file system for a certain service provider company is allocated to the built-in memory of the IC card, and information (for example, user identification / authentication information of the user) for service operation by the company in this file system is allocated. And the remaining value information, usage history (log), etc.) to realize useful services based on contactless / proximity communication that replace conventional prepaid cards and service cards for each store. Can do.

  Conventionally, an IC card is issued for each service provider, and is used for the user. For this reason, the user has to prepare and carry IC cards for each service he / she wants to use. On the other hand, according to the IC card having a relatively large memory space, it is possible to ensure a sufficient capacity for recording information related to a plurality of services in the built-in memory of a single IC card (for example, (See Non-Patent Document 1).

  The memory in the IC card is generally divided into a plurality of areas, and access control is performed by providing different encryption keys for each area. The area referred to here corresponds to a file system obtained by dividing the memory space, or a directory or individual file in the file system.

  For example, when accessing a certain area in the IC card from the reader / writer, the reader / writer generates a random number and passes it to the IC card. On the IC card side, the random number is encrypted using the encryption key of the corresponding area and then returned to the reader / writer. Then, the reader / writer can verify the validity of the area depending on whether or not the original random number can be correctly restored with the cipher key of the returned ciphertext. When verifying the validity of the reader / writer that has accessed the area on the IC card side, the same procedure as described above may be performed in the reverse direction.

  When such mutual authentication processing is performed individually for each area, there is a problem that it is difficult to quickly access each area. For example, it is difficult for a reader / writer to access a predetermined area and read or write information in a relatively short time when a commuter passes a gate of a ticket gate.

  Therefore, it is possible to shorten the authentication time by degenerating a plurality of encryption keys to generate one degenerate key and verifying the validity of a plurality of areas at the same time (see, for example, Patent Document 1). ).

Japanese Patent Laid-Open No. 10-327142 “Business changes with sesame seed chips for all wireless IC tags” (pages 106-107, RFID Technology Editorial Department, Nikkei Business Publications, April 20, 2004)

  Here, the file arranged in the memory in the IC card includes a general file (hereinafter simply referred to as a normal file) used in normal operation by an IC card issuer (or a service provider using the IC card). It can be roughly divided into individual files that store data that is not used in such normal operation or that is individually used by a user who owns an IC card.

  In the general file, the IC card issuer sets a symmetric key common to all cards. Therefore, the encryption key is the same in each file format. However, the key and key version may be changed in each issued lot.

  On the other hand, in the individual file, the key is individually set by the user of the IC card. In other words, a different individual key is set for each IC card. Hereinafter, it is also simply referred to as “individual key file”.

  In the case of a general file, since a common key is set, if cracking is performed with a certain IC card, all IC cards issued by the same IC card issuer are damaged in the same way. It will be.

  For example, in a system using a degenerate key, if a key necessary for mutual authentication is used by combining a symmetric key of a general file and an individual key of an individual key file, the key becomes different for each IC card. The file can be secured. However, it cannot prevent cracking of general files.

  The present invention has been made in view of the technical problems as described above, and its main object is to store electronic value information in a memory area and to suitably exchange secure information including electronic payments. It is an object of the present invention to provide an excellent information management apparatus and information management method that can be performed.

  A further object of the present invention is to provide an excellent information management apparatus and information management method capable of allocating various files on a memory area and managing information for service operation.

  A further object of the present invention is to provide an excellent information management apparatus and information management method which can provide secure file access by providing an authentication key for each file and preventing cracking by a third party. is there.

  A further object of the present invention is to provide an excellent information management apparatus and information management method capable of suitably preventing cracking of a single file in which an authentication key is set.

The present invention has been made in consideration of the above problems, and is an information management device that manages access to files arranged in a memory space, and a key is set for each file.
A file linkage specifying means for specifying a combination of files to be mutually linked and authenticated simultaneously;
An authentication key generating means for generating an authentication key for accessing the file based on the file cooperation specification by the file cooperation specifying means;
Access control means for authenticating access to the file based on an authentication key;
It is an information management device characterized by comprising.

  The information management device mentioned here is the same as a wireless communication unit, a non-contact IC card containing an IC chip having a data transmission / reception function and a data processing unit, a contact IC card having a terminal on the surface, and a contact / non-contact IC card. It is a device in which an IC chip having a function is incorporated in an information communication terminal device such as a mobile phone, a PHS (Personal Handyphone System), or a PDA (Personal Digital Assistance). Hereinafter, these may be collectively referred to simply as an “IC card”.

  This information management apparatus has a memory area including a data storage memory such as an EEPROM and a data processing unit, and also has a data communication function. In the case of a mobile phone or the like, an external storage medium such as an IC card incorporating an IC chip may be detachable. Further, a SIM (Subscriber Identity Module) function that records subscriber information issued by a mobile phone company may be mounted on the IC chip. The information management device may perform data communication via an information communication network such as the Internet, or may directly perform data communication with an external terminal device in a wired or wireless manner.

  The present invention relates to the provision of a service that requires security including exchange of value information using tamper resistance and an authentication function of an IC card. The memory in the IC card is generally divided into a plurality of areas, and access control is performed by providing different encryption keys for each area. The area referred to here corresponds to a file system obtained by dividing the memory space, or a directory or individual file in the file system.

  Here, the files arranged in the memory in the IC card can be broadly classified into general files used in normal operation by the IC card issuer and individual key files not used in such normal operation. . The individual key file is individually set by the IC card user, whereas the general file has a problem that the IC card issuer sets a symmetric key that is common to all cards, and thus is easily damaged by cracking. is there.

  Therefore, in the present invention, a file linkage specifier is introduced so that a linkage relationship between two or more files arranged in the IC card can be set. Specifically, two or more files specified by the file linkage specifier must be opened at the same time, that is, a restriction is imposed that any file designated for linkage cannot be opened unless authentication is performed at the same time. .

  For example, by specifying a general file and an individual key file with a file linkage specifier, there is a restriction that both of them must be opened at the same time. In this case, cracking of a general file by a third party who does not know the individual key itself or its generation method can be made difficult, and the individual setting of the target key can be performed more effectively.

  According to the present invention, it is possible to provide an excellent information management apparatus and information management method capable of allocating various files on a memory area and managing information for service operation.

  In addition, according to the present invention, there is provided an excellent information management apparatus and information management method that can provide an authentication key for each file, prevent cracking by a third party, and realize secure file access. Can do.

  Furthermore, according to the present invention, an excellent information management apparatus and information management method capable of suitably preventing cracking of a single file in which an authentication key is set by performing individual setting of a more effective symmetric key. Can be provided.

  Other objects, features, and advantages of the present invention will become apparent from more detailed description based on embodiments of the present invention described later and the accompanying drawings.

  Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.

A. Non-contact data communication system 1 by the IC card, and the applicable non-contact IC card communication system constituting the present invention is schematically shown.

  This contactless card system is composed of a card reader / writer 1, an IC card 2, and a controller 3. The card reader / writer 1 and the IC card 2 are contactless using electromagnetic waves, Data is transmitted and received. That is, the card reader / writer 1 transmits a predetermined command to the IC card 2, and the IC card 2 performs processing corresponding to the received command. Then, the IC card 2 transmits response data corresponding to the processing result to the card reader / writer 1.

  The card reader / writer 1 is connected to the controller 3 via a predetermined interface (for example, one that conforms to the RS-485A standard or the like). The controller 3 supplies a control signal to the card reader / writer 1 to perform a predetermined process.

B. File System FIG. 2 schematically shows the overall configuration of a service providing system that uses an IC card to operate electronic money, electronic tickets, and other value information.

  The illustrated system 100 includes, for example, an issuer communication device 111 used by the IC card issuer 121, an operator communication device 112 used by the card storage area operator 122, and a manufacturer used by the device manufacturer 123. Communication device 113, storage area dividing device 114 used by card storage area user 124, and operation file registration device 115.

  When the IC card issuer 121 issues the IC card 116 to the card holder 126, the file data related to the service provided by the card storage area user 124 is registered in the IC card 16 based on a predetermined condition. The card holder 126 can receive services of both the IC card issuer 121 and the card storage area user 124 by using a single IC card 116.

  As shown in FIG. 2, in the system 100, an issuer communication device 111, an operator communication device 112, a manufacturer communication device 113, a storage area dividing device 114, and an operation file registration device 115 are connected via a network 117. Connected.

  The IC card issuer 121 is a person who issues the IC card 116 and provides its own service using the IC card 116.

  In response to a request from the IC card issuer 121, the card storage area operator 122, among the storage areas configured in the storage unit (semiconductor memory) in the IC card 116 issued by the IC card issuer 121, is an IC card. A person who provides a service for lending a storage area not used by the issuer 121 to the card storage area user 124.

  The device manufacturer 123 is a person who receives a request from the card storage area operator 122, manufactures the storage area dividing device 114, and delivers it to the card storage area user 124.

  The card storage area user 124 makes a request to the card storage area operator 122 and provides his / her own service using the storage area of the IC card 116, and divides the memory area into a new file. -Corresponds to a service provider that creates a system (described above), and provides its own service using its own file system.

  The card holder 126 is a person who receives an IC card 116 issued from the IC card issuer 121 and receives a service provided by the IC card issuer 121. When the card holder 126 wishes to receive the service provided by the card storage area user 124 after the IC card 116 is issued, the card owner 126 uses the storage area dividing device 114 and the operation file registration device 115 to store the card. The file data related to the service of the area user 124 is stored in the IC card 116, and thereafter, the service of the card storage area user 124 can be received.

  The system 100 provides the services of the IC card issuer 121 and the card storage area user 124 when providing the service of the IC card issuer 121 and the service of the card storage area user 124 using the single IC card 116. It has a configuration that makes it difficult for an unauthorized person to write or rewrite data in a storage area for storing such file data.

  The IC card 116 may be a card-type data communication device, literally, or embodied as a mobile phone (or other mobile terminal or CE device) incorporating a semiconductor chip on which a so-called IC card function is mounted. Sometimes it is done.

  2 illustrates the case where there is a single IC card issuer 121, a card storage area user 124, and a card owner 126, respectively, these may be plural.

  By utilizing the tamper resistance and authentication function of the IC card, it is possible to provide a service requiring security including exchange of value information. Furthermore, in this embodiment, a file system for each service provider is allocated on a single memory area, a single IC card is shared by a plurality of providers, and a plurality of services are provided by a single IC card. Provided.

  In the initial state of the memory area in the IC card, the IC card issuer manages the entire memory area. When a service provider other than the IC card issuer divides a new file system from the memory area, both authority to divide the memory area and authentication to the IC card issuer are required.

  Once the memory area is divided, access to the file system requires authentication not to the original IC card issuer but to the service provider of the file system itself. Therefore, the boundary between the file systems functions as a firewall, and unauthorized access from other file systems can be suitably eliminated. In addition, it is possible for the user to ensure usability as if the IC card was issued by the operator when using each service. By repeating the division operation, the memory area in the IC card has a structure in which a plurality of file systems coexist. The division of the file system is the issue of a virtual IC card.

  Here, the operation mode of the memory area in the IC card will be described with reference to FIGS.

  FIG. 3 shows the state of the memory area in which the original card issuer manages only its own file system. The system code SC1 of the original card issuer is given by the system code management mechanism. When the external device or program accesses the file system of the card issuer, SC1 is set as an identification code (that is, an argument of the request command).

  FIG. 4 shows that the card issuer can permit a certain range of memory to be lent (or transferred) to the area manager within the free area of his file system. At this stage, the file system in the memory area is not yet divided. The card issuer can permit a plurality of area managers to lend memory as long as there is a free area in his file system. For example, in an implementation in which a file system is identified by a 4-bit system code, a maximum of 16 divisions (up to 15 divisions) can be performed.

  FIG. 5 shows a state where another service provider has divided the memory area in the area permitted by the card issuer and created a new file system. The new file system is assigned the system code SC2 from the system code management mechanism. When the external device or program accesses the file system operated by the memory area manager (service provider), SC2 is used as an identification code (request command argument).

  FIG. 6 shows a state where the common area manager divides the memory with the system code SC0 of the common area in the area permitted by the card issuer. When an external device or program accesses the file system which is the operation area of the common area manager, the system code SC0 is used as an identification code (request command argument).

  The memory area of the IC card has a structure in which a plurality of file systems coexist as shown in FIG. 7 by repeating the dividing operation. The original card issuer and the service provider that has acquired its own file system on the IC card with the permission of the card issuer, use their own file system to arrange areas and services. (Described later), can be used for own business development.

  Here, an operation mode in one file system will be described. Basically, the same operation is realized in any file system.

  In the file system, one or more files for realizing an application such as electronic value information exchange with the outside such as electronic payment are arranged. A memory area allocated to an application is called a “service memory area”. The use of an application, that is, a processing operation for accessing a corresponding service / memory area is referred to as a “service”. Services include read access to memory, write access, value addition and subtraction for value information such as electronic money.

  In order to limit the use of the application, that is, the activation of the service depending on whether the user has the access right or not, a password or PIN is assigned to the application, and a PIN verification process is performed when the service is executed. Access to the service memory area is appropriately encrypted according to the security level of the application.

  In this embodiment, a hierarchical structure similar to a “directory” is introduced for each file system set in the memory area in the IC card. Each application assigned to the memory area can be registered in an “area” of a desired hierarchy.

  For example, multiple applications used for a series of transactions or applications that are closely related are registered as service memory areas in the same area (and areas that are closely related are registered in the same parent area). As a result, the applications of the memory area and the arrangement of the areas are orderly, and the classification and organization of the applications is efficient for the user.

  In addition, in order to hierarchically control access rights to the file system, in addition to setting a PIN for each application, a PIN can be set for each area. For example, by inputting a PIN corresponding to a certain area, it is possible to give access rights to all applications (and subareas) in the area through verification processing and mutual authentication processing. Therefore, since the access right of all applications used in a series of transactions can be obtained by performing only one PIN input for the corresponding area, access control is made efficient and the usability of the device is improved. .

  Further, it is allowed that the access authority for a certain service memory area is not single, and a password can be set for each access authority, that is, for each service content to be executed in the service memory area. For example, different PINs are set for services “read” and “read and write” to be activated for the same service memory area. Separate PINs are set for “increase” and “decrease” for electronic money and other value information. In addition, PIN input is not required for reading from a certain memory area, but PIN input can be required for writing.

  FIG. 8 schematically shows an example of the data structure in the file system. In the illustrated example, a hierarchical structure similar to a “directory” is introduced into the storage space of the file system. That is, each application assigned to the memory area can be registered as a service memory area in a desired hierarchical area. For example, applications that are closely related such as applications used in a series of transactions can be registered in the same area (and areas that are closely related are registered in the same parent area).

  In addition, an application (that is, a service memory area) and an area allocated in the file system include a code definition block. Therefore, a PIN can be set for each application or for each area. Further, the access right to the file system can be performed in units of applications and in units of areas.

  Further, the access authority for a certain service memory area is not single, and a PIN can be set for each service content to be executed. For example, when the services activated for the same service memory area are “read” and “read and write”, different PINs are set, and “increase” and “decrease” for electronic money and other value information , Different PINs are set.

  The verification unit, for example, a PIN code sent via a protocol interface such as non-contact data communication using an IC card in the area assigned to each application or directory or the service memory area. And access to the matching memory area is permitted. The memory area to which access is permitted can be read and written via the protocol interface.

  FIG. 9 shows the basic configuration of the file system. As already described with reference to FIG. 8, a hierarchical structure similar to “directory” is introduced to the file system, and a service memory area allocated to the application is registered in an area of a desired hierarchy. be able to. In the example shown in FIG. 9, one service memory area is registered in the area 0000 defined by the area 0000 definition block.

  The illustrated service memory area is composed of one or more user blocks. A user block is a minimum data unit for which an access operation is guaranteed. For this service memory area, one service defined in the service 0108 definition block, that is, the service 0108 can be applied.

  In addition to restricting access in area units and application units, a security code can be set for each service type to restrict access in service units. The code setting information regarding the service subject to the access restriction is defined as a service dedicated to the code (that is, “code service”). In the example shown in FIG. 9, the code related to the service 0108 is defined as a code code service 0128 definition block. The contents of the password service are stored in the password service data block.

  If the security code service for service 0108 is enabled, the security code must be verified using security code service 0128 before activating service 0108 and performing a read or write operation on that user block. Become. Specifically, when a read / write command with encryption is used, a password, that is, a PIN is checked against the service 0108 before mutual authentication.

  In addition, the service memory area allocated to the application can be registered in an area of a desired hierarchy, and the areas can be hierarchized (areas that are closely related are registered in the same parent area). In this case, by setting a PIN for each area, the area can be used as an access restriction unit. FIG. 10 shows a state in which areas are hierarchized in the memory space of the IC card. In the example shown in the figure, another area 1000 defined by the area 1000 definition block is registered in the area 0000 defined by the area 0000 definition block.

  In the example shown in FIG. 10, two service memory areas are further registered in the area 1000. The service 1108 defined in the service 1108 definition block and the service 110B defined in the service 110B definition block can be applied to one service memory area. In this specification, defining a plurality of services having different service contents for one service memory area is referred to as “overlap service” in this specification. In the overlap service, different services are applied to the same service area according to the entered PIN. The service 110C defined in the service 110C definition block can be applied to the other service memory area.

  A service set in each service memory area can be activated to perform a read or write operation on the user block. Of course, as described with reference to FIG. 9, a code code service can be defined for each service. In this case, when the personal identification code service for the service is valid, the service is permitted to be activated after collating the PIN using the personal identification code service.

  When a common PIN is set for a plurality of services, an area including these services can be created, and a common password service can be applied to this area.

  In the example shown in FIG. 10, the personal identification code for the area 1000 is defined as a personal identification code service 1020 definition block. The contents of the password service are stored in the password service data block.

  If the password service for the area 1000 is valid (described later), after verifying the password using the password service 1020, each service in the area 1000 is activated and the user block is activated. A read or write operation can be performed.

  FIG. 11 schematically shows a functional configuration of firmware in an IC card in which a plurality of file systems can be provided in the internal memory.

  The interface control unit is a protocol such as communication with a card reader / writer via a contactless IC card interface, communication as a card reader / writer, communication via a wired interface, communication via other I / O interfaces, etc. Take control.

  The command control unit performs processing of commands received from the outside via the interface control unit, issuance of commands to the outside, inspection of commands, and the like.

  The security control unit realizes security processing such as authentication processing when accessing a memory area or each file system in the memory area, and PIN verification when using a directory or service in the file system.

  The file system control unit performs file system management such as division (and cancellation of division) from the memory area to the file system as described above, and management of the directory structure in the file system.

  The mode management unit manages the modes of all file systems and individual file systems. The mode mentioned here includes states such as suspension of use and resumption of use of the file system.

  In addition, firmware for hardware control in the IC card such as start control, ROM management, parameter management, nonvolatile memory management, patch control, and the like is also included.

C. Files linked to files in the specified IC card memory include general files used in normal operations by IC card issuers (or service providers that use IC cards), and such normal files. Can be broadly classified into individual key files that store data that is not used in the above operation or that is individually used by users who own IC cards (described above).

  In the general file, the IC card issuer sets a symmetric key common to all cards. Therefore, the encryption key is the same in each file format. However, the key and key version may be changed in each issued lot.

  On the other hand, the individual key file is individually set by the IC card user. In other words, a different individual key is set for each IC card.

  Here, in the individual key file, an authentication key (individual key) is individually set for the IC card user, whereas in the general file, the IC card issuer sets a symmetric key common to all cards. There is a problem that it is easily damaged by cracking. In the case of a general file, since a common key is set, if cracking is performed with a certain IC card, all IC cards issued by the same IC card issuer are damaged in the same way. It will be.

  Therefore, in this embodiment, a file linkage specifier is introduced so that a linkage relationship between two or more files arranged in the IC card can be set. Specifically, there is a restriction that two or more files specified by the file linkage specifier must be opened at the same time, that is, any file designated for linkage cannot be opened unless authentication is performed at the same time. The

  For example, when one or more general files and one or more individual key files are specified by the file linkage specifier, neither file can be opened unless both of them can be authenticated at the time of authentication. In this case, a third party who does not know the individual key itself or its generation method can see through the symmetric key of the general file, but it becomes difficult to crack the general file. Individual settings can be performed more effectively.

  FIG. 12 schematically shows a basic configuration in a file system in which file linkage is designated. In the illustrated example, the file linkage specifier that designates simultaneous authentication of two or more files is configured in a file format like other files in the file system, such as general files and individual key files. However, the file linkage specifier may be defined in another form.

  In the illustrated example, files 1 to 3 as general files and individual key files 1 to 2 are arranged in the file system. In each of the files 1 and 2, symmetric keys common to all cards are set by the IC card issuer. In the individual key files 1 and 2, individual keys are set for the IC card user.

  In the illustrated example, the file linkage designation file 1 and the file linkage designation file 2 are arranged. These are special files that designate combinations of files that can be authenticated at the same time. The combination specification itself is set in the file linkage specification file with a symmetric key. The file linkage specification file itself is set so that the IC card issuer authenticates with a symmetric key common to all the IC cards, like the general file.

  The file linkage specification file 1 defines the linkage between the file 2 and the individual key file 1, that is, the file 2 must be opened simultaneously with the individual key file 1.

  Further, the file linkage specification file 2 stipulates that the files 2, 3 and the individual key file 2 are linked, that is, the files 2 and 3 must be opened simultaneously with the individual key file 1.

  In the following, it is assumed that an authentication key necessary for opening a file is obtained by calculating a combination of keys specified for the file with a predetermined function f.

File 1 is not defined by any file linkage specifier. Therefore, if mutual authentication is performed only with the symmetric key K _s1 set in the file 1 itself, the file can be opened. The authentication key in this case is as follows.

Authentication key K _AUTH = f (symmetric key K _{s1 of} file 1)

The file 2 cannot be mutually authenticated with the symmetric key set in the file 2 and must be mutually authenticated simultaneously with the individual key file 1 in accordance with the setting of the file linkage designation file 1. The mutual authentication key used at this time is an individual key because a result obtained by combining the symmetric key K _s2 of the file 2 and the individual key K _p1 of the individual key file 1 is used.

Authentication key K _AUTH = f (symmetric key K _{s2 of} file 2, individual key K _p1 of individual key file 1)

Further, the file 3 cannot be mutually authenticated with the symmetric key set in the file 3, and must be mutually authenticated simultaneously with the file 2 and the individual key file 2 according to the setting of the file linkage designation file 2. Mutual authentication key used in this case, a symmetric key K _s2 file 2, a symmetric key K _s2 file 3, because it utilizes the result of combining the individual key K _p2 of individual key file 2, the individual key .

Authentication key = f (symmetric key K _s2 of file 2, symmetric key K _{s3 of} file 3, individual key K _p2 of individual key file 2)

  According to such a mechanism, even if the symmetric key of the general file itself can be cracked, it is possible to make it difficult to crack the general file with meaning by a third party who does not know the individual key itself or its generation method.

  As described above, the directory structure can be introduced into the file system developed in the memory area in the IC card. In this case, the file linkage specification mechanism can be applied to the directory. FIG. 13 schematically shows a configuration in a file system in which a directory and an individual key file are linked.

  Below the directory 1, a file 1-1, a file 1-2, a file 1-3, an individual key file 1, and a file linkage designation file 1 are arranged.

  In the file 1-1, the file 1-2, and the file 1-3, a symmetric key that is common to all cards by the IC card issuer is set. In the individual key file 1, an individual key is set for the IC card user. Similarly to the general file, the file linkage designation file 1 is set so that the IC card issuer authenticates with a symmetric key common to all IC cards.

  The file linkage designation file 1 is a special file that designates a combination of files that can be authenticated at the same time. Here, the linkage between the file 1-1 and the individual key file 1, that is, the file 1-1 is simultaneously with the individual key file 1. It stipulates that it must be opened.

Therefore, the file 1-2 and the file 1-3 can be independently authenticated using only the respective symmetric keys, whereas the file 1-1 cannot be independently authenticated, and the individual key file 1-1. At the same time, mutual authentication must be performed. The mutual authentication key used at this time is an individual key because a result obtained by combining the symmetric key K _s1-1 of the file 1-1 and the individual key K _p1 of the individual key file 1 is used.

Authentication key K _AUTH = f (symmetric key K _{s1-1 of} file 1-1, individual key K _p1 of individual key file 1)

  On the other hand, in the directory 2 or lower, a file 2-1, a file 2-2, a file 2-3, an individual key file 2, and a file linkage designation file 2 are arranged.

  In the file 2-1, the file 2-2, and the file 2-3, a symmetric key that is common to all cards by the IC card issuer is set. In the individual key file 1, an individual key is set for the IC card user. Similarly to the general file, the file linkage designation file 2 is set so that the IC card issuer authenticates with a symmetric key common to all IC cards.

  The file linkage designation file 2 is a special file that designates a combination of files that can be authenticated at the same time. Here, the linkage between the directory 2 and the individual key file 2, that is, the directory 2 must be opened simultaneously with the individual key file 2. It stipulates that it must not be.

  Therefore, all the general files under the directory 2 cannot be independently authenticated, and the directory 2 must be mutually authenticated simultaneously with the individual key file 2.

  FIG. 14 illustrates a mechanism for controlling access in the file system in the IC card. In the example shown in the figure, a file linkage designation mechanism can be introduced to perform single authentication of general files and simultaneous authentication with individual key files.

  In the general file, an IC card issuer sets a symmetric key common to all cards. In the individual key file, an individual key is set for the user of the IC card. In addition, the file linkage designation file is set so that the IC card issuer authenticates with a symmetric key common to all the IC cards, like the general file.

The authentication key generation unit generates an authentication key K _AUTH by applying a predetermined function f to the keys set in each file.

  When performing an authentication key generation process for a general file, the authentication key generation unit scans the file linkage specification file and confirms whether the linkage specification of the general file is defined. If linkage is specified, the authentication key of the general file includes the symmetric key of the general file, the symmetric keys of all the general files specified to be linked to this, and the individual key of the individual key file. A predetermined function f is applied to the combination of and an authentication key is generated. The authentication key in this case is an individual key because a result obtained by combining a symmetric key and an individual key is used.

When an access to the file in the IC card is performed from the outside, the access control unit checks the authentication key K _AUTH managed by the access control unit against the authentication key K _AUTH 'input from the access request source, and is requested. Determine whether the file can be accessed.

  If the general file is not specified for file linkage, the authentication key is generated only with the symmetric key set in this general file, so the access control unit can authenticate the general file alone. It becomes possible.

  On the other hand, when a general file is specified for file linkage, the authentication key is generated using a combination of a symmetric key and an individual key. Will be authenticated at the same time.

  FIG. 15 shows a modification of the access control mechanism shown in FIG.

  In the example shown in FIG. 14, a file linkage designation file that is a special file for designating a combination of files that can be authenticated at the same time is arranged in the file system (or in the directory). In the example shown in FIG. In addition to this, a counter file, which is a special file for managing the number of accesses to each file, is arranged.

  In the counter file, an upper limit value of the number of access times of each file in the file system (or in the directory) is described.

  The access control unit decrements the counter value of the corresponding file in the counter file each time the file is accessed through single authentication or simultaneous authentication as described above. Then, regarding a file whose counter value has disappeared, access is rejected even if single authentication or simultaneous authentication based on linkage designation is successful.

  Here, in the file linkage specification file, by specifying the linkage with the counter file for the file whose access count is to be controlled, the counter file is opened at the same time each time the file whose access count is to be controlled is opened. Therefore, the counter value can be updated smoothly along with the access to the file.

  The present invention has been described in detail above with reference to specific embodiments. However, it is obvious that those skilled in the art can make modifications and substitutions of the embodiment without departing from the gist of the present invention.

  In this specification, taking a file space developed on a memory built in an IC card or an IC chip as an example, the individual setting of a symmetric key used for authentication can be made more effective by specifying the linkage of a plurality of files. Although the embodiment to be performed has been described, the gist of the present invention is not limited to this. For example, when performing access management to the same type of file system on a memory device other than an IC card or IC chip, the present invention can be applied to obtain the same operation and effect.

  In short, the present invention has been disclosed in the form of exemplification, and the description of the present specification should not be interpreted in a limited manner. In order to determine the gist of the present invention, the claims section described at the beginning should be considered.

FIG. 1 is a diagram schematically showing a configuration of a contactless IC card communication system to which the present invention can be applied. FIG. 2 is a diagram schematically showing the overall configuration of a service providing system that uses electronic money, electronic tickets, and other value information realized using an IC card. FIG. 3 is a diagram showing the state of the memory area in which the original card issuer manages only its own file system. FIG. 4 is a diagram showing that the card issuer can permit a certain range of memory to be lent (or transferred) to the area manager within the free area of his file system. FIG. 5 is a diagram showing a state in which another service provider company divides the memory area in the area permitted by the card issuer and generates a new file system. FIG. 6 is a diagram showing a state where the memory is divided by the common area system code SC0 in the area permitted by the card issuer by the common area manager. FIG. 7 is a diagram showing a structure in which a plurality of file systems coexist in the memory area of the IC card. FIG. 8 is a diagram schematically showing an example of the data structure in the file system. FIG. 9 is a diagram showing a basic configuration of the file system. FIG. 10 is a diagram showing a state in which areas are hierarchized in the memory space of the IC card. FIG. 11 is a diagram schematically illustrating a functional configuration of firmware in the IC card. FIG. 12 is a diagram schematically showing a basic configuration in a file system in which file linkage is designated. FIG. 13 is a diagram schematically showing a configuration in a file system in which a directory and an individual key file are linked. FIG. 14 is a diagram showing a mechanism for controlling access in the file system in the IC card. FIG. 15 is a diagram showing a modification of the access control mechanism shown in FIG.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 ... Card reader / writer 2 ... IC card 3 ... Controller 111 ... Issuer communication apparatus 112 ... Operator communication apparatus 113 ... Manufacturer communication apparatus 114 ... Storage area division registration apparatus 115 ... Operation file registration apparatus 116 ... IC card 117 ... network 121 ... card issuer 122 ... card storage area operator 123 ... device manufacturer 124 ... card storage area user

Claims (12)

An information management device that manages access to files placed in a memory space, and a key is set for each file,
A file linkage specifying means for specifying a combination of files to be mutually linked and authenticated simultaneously;
For files that are not specified for linkage, only the key set in the file is used as an argument, and for files that are specified for linkage, all keys set for each file for which linkage is specified are used as arguments. Applying a predetermined function to the argument to generate an authentication key for accessing an unspecified file and an authentication key for accessing each file for which the link is specified Means,
Access control for checking whether or not the requested file can be accessed by comparing the authentication key input from the file access request source with the authentication key generated by the authentication key generating unit for the requested file Means,
An information management apparatus comprising: The files in the memory space include a general file in which a common symmetric key is set in each information management device and an individual key file in which a different individual key is set for each information management device.
The information management apparatus according to claim 1. The file linkage specifying means specifies linkage between a general file and an individual key file,
The authentication key generation means generates an authentication key for a general file as an individual key using a combination of a symmetric key and an individual key.
The information management apparatus according to claim 2. The file linkage specifying means is arranged in the memory space in a file format.
The information management apparatus according to claim 1 . It further comprises a counting means for managing the number of accesses to each file,
The access control means updates the count value in the counter means every time a file is accessed.
The information management apparatus according to claim 1. The counting means is arranged in the memory space as a counter file,
The file linkage designation means designates linkage between a file to be managed for the number of accesses and the counter file.
The information management apparatus according to claim 5 . An information management method for managing access to a file arranged in a memory space on a computer, wherein a key is set for each file,
A file linkage designation step in which the file linkage designation means included in the computer designates a combination of files that are linked together and should be authenticated at the same time;
The authentication key generation means included in the computer uses only the key set in the file as an argument for a file for which linkage is not specified, and for each file for which linkage is specified for a file for which linkage is specified. Using all the set keys as arguments, applying a predetermined function to the arguments, accessing the authentication keys for accessing files that are not specified for linkage, and each file for which linkage is specified Generating an authentication key for generating an authentication key;
The access control means provided in the computer compares the authentication key input from the file access request source with the authentication key generated for the file requested to be accessed by the authentication key generation means, to the requested file. An access control step for determining whether or not access is possible,
An information management method characterized by comprising: The files in the memory space include a general file in which a common symmetric key is set in each information management device and an individual key file in which a different individual key is set for each information management device.
The information management method according to claim 7 . In the file linkage specifying step, the linkage between the general file and the individual key file is specified,
In the authentication key generation step, the general file authentication key is generated as an individual key using a combination of a symmetric key and an individual key.
The information management method according to claim 8. In the file linkage designation step, reading from the file linkage designation file arranged in the memory space reads a description relating to a combination of files that are linked together and should be authenticated at the same time.
The information management method according to claim 7 . It further comprises an access management step for managing the number of accesses to each file.
A count value is updated each time a file is accessed in the access control step ;
The information management method according to claim 7 . In the file linkage designation step, designation of linkage between a file to be managed for access count and a counter file describing a count value of access count is specified.
The information management method according to claim 11 .

Images