JP4761854B2 - Content data distribution server and content data distribution method - Google Patents

Description

  The present invention relates to a content data distribution server and a content data distribution method.

  In recent years, with the development of an information-oriented society, content distribution systems that distribute electronic content such as books, newspapers, music, or moving images to user terminals and enable browsing of the content have been widely used.

  However, digitized content (hereinafter simply referred to as “content”) can be easily duplicated, and illegal acts that ignore copyright are likely to occur. From the viewpoint of protecting content from such illegal activities, the content is normally recorded encrypted with an encryption key and decrypted during playback. This type of content protection technology includes CPRM (Content Protection for Prerecorded Media), for example, SD audio (SD-Audio), SD video (SD-video), SD e-publish (SD-ePublish). The standardized encryption key method is used (see, for example, Non-Patent Document 1). The encryption key method employed in Non-Patent Document 1 is an encryption single key method in which a title key is encrypted with a media unique key. On the other hand, an encrypted double key scheme in which a content key is double-encrypted with a user key and a media unique key is considered (for example, see Non-Patent Document 2). This type of encryption double key method is used in, for example, MQbic (registered trademark).

A content distribution system using such an encryption method is effective not only for devices that can directly access data distribution servers such as mobile phone terminals and personal computers, but also for playback devices such as DVD players that do not have such communication functions. Can be used. In order to send content data from such a content distribution system to such a playback device, it is necessary to transfer the content data via a mobile phone terminal or a personal computer having a communication function. If various operations at the time of transfer are simplified, a user-friendly system is obtained.
4C entity, LLC, [online], Internet <URL: http://www.4Centity.com/, retrieved on June 14, 2004> IT information site / ITmedia news [online], Internet <URL: http://www.itmedia.co.jp/news/0307/18/njbt_02.html, June 14, 2004 search>

  An object of the present invention is to provide a user-friendly content data distribution server and method that do not require the user to troubleshoot when transferring content key data or the like to a playback device that does not have such a communication function.

  A content data distribution method according to an aspect of the present invention includes a playback device configured to be able to decrypt and play back content data encrypted with content key data, and to hold a device ID for identifying itself. A mobile terminal configured to be capable of data communication with a playback device and holding a mobile terminal ID for identifying itself, and a server that distributes the content key data to the playback device via the mobile terminal A content data distribution method for distributing content data in a content data distribution system, wherein the portable terminal presents the device ID and the portable terminal ID to the server to request distribution of the content key data. And encrypting the content key data related to the request from the server to the portable terminal. A step of turned into transmission, characterized by comprising a step of transmitting said content key data encrypted to the reproduction apparatus.

  A content data distribution server according to an aspect of the present invention is a content data distribution server configured to be capable of data communication with a mobile terminal via a network, and is associated with the mobile terminal in response to a request from the mobile terminal A device ID transmitting means for giving a device ID for identifying a playback device configured to be able to decrypt and reproduce the content data encrypted by the key data to the playback device via the portable terminal; and the playback A database that stores a device ID assigned to a device in association with a mobile terminal ID for identifying the mobile terminal, and distribution of content key data accompanied by presentation of the device ID and the mobile terminal ID from the mobile terminal Transmission means for transmitting the content key data to the portable terminal in response to a request. To.

  According to the present invention, it is possible to provide an easy-to-use content data distribution system and method without causing the user to take trouble when transferring content key data or the like to a playback device having no communication function.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

  FIG. 1 is a schematic diagram showing a configuration of a content data distribution system according to the first embodiment of the present invention.

  The content data distribution system according to this embodiment enables communication between the distribution server 40 that distributes the content key data Kc and the like and the mobile terminal 60 via the network 30 including the mobile phone network, the Internet, and a combination thereof. It is composed. The mobile terminal 60 is configured to be able to communicate with the DVD player 70 owned by the user of the mobile terminal 60, for example, by infrared communication. The DVD player 70 is for playing back the DVD disc 100, and is configured so that audio or the like, which is playback data, can be output by the TV receiver 80. The DVD disc 100 is recorded with content data C (Enc (Kc: C)) encrypted by the content key data Kc. Note that the notation Enc (A: B) means data B encrypted with data A in this specification.

  When the user desires to reproduce the encrypted content data C included in the DVD player 70, the user transmits a distribution key content Kc distribution request to the distribution server 40 using the portable terminal 60. Thereby, the content key data Kc is transmitted from the distribution server 40 to the portable terminal 60. The content key data Kc received by the portable terminal 60 is transferred and stored in the DVD player 70 using the infrared communication function. In this embodiment, the device ID for identifying the DVD player 70 and the user key for encrypting the content key data Kc in the initial registration operation executed prior to the content key data Kc distribution request. Data Ku is given from the distribution server 40 to the DVD player 70 via the portable terminal 60. However, the user key data Ku and the device ID may be given in advance at the time of manufacture, sales, etc., instead of being transmitted online.

  The distribution server 40 has a function of receiving a distribution request for content key data Kc and the like from the portable terminal 60 and distributing the content key data Kc and the like related to the request to the portable terminal 60 via the network 30.

  The distribution server 40 includes a portable terminal ID database 41, a device ID database 42, a user key database 43, a content key database 45, and a security module 51.

  The portable terminal ID database 41 holds the portable terminal ID (ID60) data of the portable terminal 60 in association with the device ID and user key data Kc of the DVD player 70 associated with the portable terminal 60 by an initial registration operation or the like. To do.

  The device ID database 42 holds data of issued device IDs. The user key database 43 is for storing user key data Ku that the DVD player 70 has. The content key database 45 holds content key data Kc that the DVD player 70 has.

  The security module 51 is a device that performs encryption / decryption processing of the user key data Ku and the content key data Kc, and includes a management key acquisition unit 52 and a key encryption management unit 53. The management key acquisition unit 52 holds the management key so that it can be read from the distribution server 40. The key encryption management unit 53 has a function for setting a management key from the distribution server 40, and the management encrypted user key data received from the distribution server 40 and the management encryption based on the management key. The function of decrypting the content key data to obtain the user key data Ku and the content key data Kc, the content key data Kc is encrypted with the user key data Ku, and the obtained encrypted content key data Enc (Ku: kc) is obtained. And a function of transmitting to the distribution server 40.

  The portable terminal 60 includes a control unit 601, a memory 602, a ROM 603, a RAM 604, a communication control unit 605, a display control unit 606, a display unit 607, a CCD camera 608, an interface 608A, a keyboard 609, an infrared port 611, a QR code analysis unit 612, and the like. Is included. The control unit 601 controls the mobile terminal 60 as a whole, and the memory 602 stores various data (device ID and the like) obtained by the initial setting operation and the like in addition to the communication application program. The ROM 603 stores a boot program that is activated when the power is turned on, and the RAM 604 temporarily stores various data at the time of program execution, for example.

  The communication control unit 605 is for controlling data transmission / reception to / from the distribution server 40 and the DVD player 70, for example. The display control unit 606 is for controlling the execution screen of the communication application and other output screens in the display unit 607. The infrared port 611 is for outputting various data converted into an infrared pulse signal by the communication control unit 605 to the outside, for example, the DVD player 70 as infrared rays. The QR code analysis unit 612 analyzes the QR code captured by the CCD camera 608 and reads data included in the code.

  The DVD player 70 includes an optical pickup 701 that reads a signal of the DVD disk 100, a signal processing unit 702 that processes an output signal of the optical pickup 701, a spindle motor 703 that rotates the DVD disk, a driver 704 that drives the spindle motor 703, and output control. A unit 705, a ROM 706, a RAM 707, a CPU 708, and the like. Since these are normal configurations of the DVD player 70, a detailed description is omitted. The DVD player 70 also includes a memory 709 for storing the above-described device ID (I70), user key data Kc, content key data Kc, and the like. In this embodiment, the memory 709 includes key management software.

  The DVD player 70 also includes an infrared port 711 for performing infrared communication with the portable terminal 60. The communication control unit 712 analyzes the infrared pulse signal received by the infrared port 711 and performs predetermined control.

  Further, the DVD player 70 includes a random number generation unit 713, a QR code generation unit 714, a sound wave generation unit 715, and an encryption / decryption unit 716 as means for outputting signals to the outside. The random number generation unit 713 generates a random number R2 for challenge / response authentication and session key generation using a common key encryption method. This enables secure communication between the DVD player 70 and the distribution server 40 via the portable terminal 60. The QR code generation unit 714 is for generating a QR code expressing this random number. The sound wave generator 715 converts the random number R2 and other information into an audio signal and outputs it from the TV receiver 80. The encryption / decryption unit 716 has a function of encrypting the random number R2 and other information according to a predetermined protocol and decrypting the encrypted data sent from the portable terminal 60.

  Next, the operation procedure of the content data distribution system will be described with reference to FIGS. In this content data distribution system, an initial registration operation for receiving distribution of device data and user key data Ku of the DVD player 70 from the distribution server 40 is first performed. Following this initial registration operation, a key purchase operation is performed in which the content key data Kc is purchased from the distribution server 40 and stored in the DVD player 70.

  First, a first example of the operation procedure of the initial registration operation will be described with reference to FIG. When starting the initial registration operation, the user activates the communication application of the portable terminal 60 (S1). Subsequently, an application for initial registration operation is selected in the menu of this application (S2). Next, the user presents the portable terminal ID (I60), and requests to give a device ID to the DVD player 70 that the user has (S3). In response to this request, the distribution server 40 generates a device ID (I70) and user key data Ku, and the device ID (I70) data, as well as the device ID (I70) data and user key data Ku using the MAC key. The encrypted data Enc (MAC: (I70, Ku)) is transmitted to the portable terminal 60 (S4). The transmitted device ID (I70) and user key data Ku data are stored in the portable terminal ID database 41 in association with the presented portable terminal ID (I60).

  The portable terminal 60 stores the device ID (I70) in its own memory 602 (S5), and transfers the encrypted data Enc (MAC: (I70, Ku)) from the infrared port 611 to the DVD 70 (S6). The DVD player 70 decrypts the device ID (I70) data and the user key data Ku using the MAC key and stores them in the memory 709 (S7). This completes the initial registration operation. The completion of the initial registration operation is displayed on the TV receiver 80, and the user can confirm the end of the initial registration operation by confirming this.

Next, a second example of the operation procedure of the initialization registration operation will be described with reference to FIG.
When S1 to S3 are performed in the same manner as in FIG. 2, the distribution server 40 generates a random number R1 for challenge-response authentication and session key generation using the common key encryption method, and encrypts this with the MAC key. The converted data Enc (MAC: R1) is transmitted to the portable terminal 60 (S4). The portable terminal 60 transfers this data Enc (MAC: R1) to the DVD player 70 via the infrared port 611 (S5). After decrypting the random number R1 using the MAC key, the DVD player 70 generates a random number R2 different from the random number R1 in the random number generation unit 713 (S6). Then, the data Enc (MAC: R2) obtained by encrypting the random number R2 with the MAC key is converted into a 4-digit × 4-pair = 16-character number string based on a predetermined protocol and displayed on the TV receiver 80 ( S7). Note that the random number R2 can be expressed with a smaller number of characters by displaying characters with a large number of characters such as hiragana, katakana, kanji, and alphabet instead of a numeric string. Since a mobile phone or the like is based on hiragana input, a hiragana character string eliminates the need for input mode conversion work and reduces the number of input characters, which is convenient for the user.

  The user inputs the displayed 4-digit × 4-digit number string using the keyboard 609 of the portable terminal 60, and transmits it to the distribution server 40 (S8). The distribution server 40 inversely converts the received 4 digit × 4 sets of numeric strings based on the protocol described above, and obtains encrypted data Enc (MAC: R2). This encrypted data is further decrypted using the MAC key to obtain a random number R2. The distribution server 40 and the DVD recorder 70 generate the session key Ks using the random numbers R1 and R2 and the secret information K1 and K2 of the common key encryption method obtained by both of them (S10 and S11). Subsequently, the distribution server 40 receives the device ID (I70) data and the data Enc (Ks: (Ku, I70)) obtained by encrypting the user key Ku and the device ID (I70) using the session key Ks. (S12). The portable terminal 60 stores the device ID (I70) in its own memory 602 (S13), and transfers the encrypted data Enc (Ks: (I70, Ku)) from the infrared port 611 to the DVD 70 (S14). Thereafter, S15 to S17 which are the same procedures as S7 to S9 in FIG. 2 are executed, and the initial registration operation is completed. In the case of the second example, authentication by a challenge / response using a common key encryption method and generation of a session key are performed, so that communication security is improved as compared with the first example.

  Next, a third example of the operation procedure of the initialization registration operation will be described with reference to FIG. The third example is different from the second example in the procedures of S7 and S8. That is, in the second example, the encrypted data of the random number R2 is converted into a numeric string or the like and displayed on the TV receiver 80, which is input by the user through the portable terminal 60 and transmitted to the distribution server 40. In this third example, instead of this, a QR code indicating the encrypted data of the random number R2 is generated by the QR code generating unit 714, and this QR code is displayed on the TV receiver 80 (S7). Then, the image of the displayed QR code is taken by the CCD camera 608 of the portable terminal 60, and Enc (Mac: R2) data obtained by analyzing this image is transmitted to the distribution server 40. Other procedures are the same as in the second example. In the case of this third example, the user only needs to photograph the QR code with a mobile phone, and the operation becomes easier than in the second example.

  Next, a fourth example of the operation procedure of this initialization registration operation will be described with reference to FIG. Similar to the third example, the fourth example differs from the second example in the procedures of S7 and S8. In the fourth example, in S7 and S8, the encrypted data of the random number R2 is converted into an audio signal, the audio signal is output as a sound wave from the TV receiver 80, and the sound wave is received by the portable terminal 60. The received sound wave is converted into an electric signal and transmitted to the distribution server 40. Other procedures are the same as in the second example. In the case of the third example, the user only needs to perform an operation of receiving a sound wave based on the audio signal in the portable terminal 60, and the operation is simpler than that of the second example. Note that an error correction signal can be included in the audio signal so that erroneous recognition can be avoided even when noise is superimposed on the audio signal.

  Next, a first example of an operation procedure when purchasing the content key data Kc after acquiring the user key data Ku and the device ID (I70) will be described with reference to FIG. After starting the communication application of the portable terminal 60 (S21), the user requests the DVD player 70 to display a list of encrypted content data C stored in the DVD disc 100 using this application. (S22). This request is transmitted using the infrared port 611. Upon receiving this request, the DVD player 70 reads the DVD disc 100, and stores the content number of the content data C stored (displayed as a number string of about 4 digits × 2 sets, or a QR code) or the content data C Is displayed on the TV receiver 80 (S23).

  The user sees this list and selects the content number of the content data C to be reproduced (S24). When the content number is a 4 digit × 2 set numeric string, the numeric string is input from the keyboard 609. In addition, when displayed as a QR code, the QR code is imaged by a CCD camera.

  The data of the selected content number and device ID (I70) is transmitted from the portable terminal 60 to the DVD player 70 via the infrared port 611 (S25). The DVD player 70 confirms the content number and confirms whether or not the transmitted device ID data matches the device ID (I70) held by the DVD player 70. If they match, it is confirmed that the initial registration has been completed in the distribution server 40 (S26), and then the content data C relating to the selected content number is displayed on the TV receiver 80 and the purchase intention is confirmed. Confirmation is requested from the user (S27). When the user operates the keyboard 609 of the portable terminal to transmit a signal indicating purchase intention to the DVD player 70 and the distribution server 40, a message indicating that the purchase has been completed is displayed on the TV receiver 80 ( S29). The signal indicating the purchase intention transmitted to the distribution server 40 includes the content number, the device ID (I70), and the portable terminal ID (I60) (S30). The distribution server 40 checks whether or not the combination data of the transmitted device ID (I70) and portable terminal ID (I60) exists in the portable terminal ID database 41, and if confirmed, the portable terminal ID (I60). Based on the above, the payment settlement of the amount corresponding to the content number is performed (S31). Thereafter, the content ID corresponding to the content number and the data Enc (Ku: Kc) obtained by encrypting the content key data Kc corresponding to the selected content data with the user key Ku are transmitted from the distribution server 40 via the portable terminal 60 to the DVD. Transmit to the player 70. As the DVD data, the received encrypted data Enc (Ku: Kc) is stored in the memory 709. Thereby, the purchase procedure of the content key data Kc is completed. The content key data Kc is obtained by decrypting the encrypted data Enc (Ku: Kc) in the memory 709 with the user key data Ku, and the content data C stored on the DVD disc is decrypted with the content key data Kc. Data C can be reproduced.

  A second example of the operation procedure when purchasing the content key data Kc will be described with reference to FIG. When S21 to S26 are executed in the same manner as in the first example, the DVD player 70 converts the data of the content ID and the device ID (I70) into an audio signal and outputs the sound signal from the TV receiver 80 as a sound wave. The voice is received by the portable terminal 60, converted into an electrical signal, and transmitted to the distribution server 40 (S28). At this time, portable terminal ID (I60) data is added to the transmitted signal.

The distribution server 40 decrypts the data of the content ID and the device ID (I70), and returns this to the DVD player 70 via the portable terminal 60 for confirmation (S29). After confirming the identity of the device ID (I70), the DVD player 70 displays the contents of the content data C relating to the selected content ID on the TV receiver 80, and prompts the user to confirm the purchase intention (S30). . When the user inputs an input signal indicating purchase intention through the keyboard 609 or the like (S31), this signal is transmitted to the distribution server 40 together with the portable terminal ID (I60), and the distribution server 40 charges based on the portable terminal ID (I60). Settlement is performed (S32). Thereafter, the data Enc (Ku: Kc) obtained by encrypting the content key data Kc with the user key Ku is transmitted to the DVD player 70 via the portable terminal 60 (S33), and the DVD player stores the data to complete the operation procedure. (S34)
Note that the present invention is not limited to the above-described embodiments as they are, and can be embodied by modifying the constituent elements without departing from the scope of the invention in the implementation stage. In addition, various inventions can be formed by appropriately combining a plurality of components disclosed in the embodiment. For example, some components may be deleted from all the components shown in the embodiment. Furthermore, constituent elements over different embodiments may be appropriately combined.

  For example, in the above embodiment, the DVD player 70 is illustrated as an example of a playback device, but any device having a function of decrypting and playing back encrypted content data may be used. For example, a hard disk type recording and playback device The present invention can also be applied to personal computers and the like. In the above-described embodiment, the communication between the DVD player 70 and the portable terminal 60 has been described as being performed by infrared communication using the infrared ports 611 and 711. However, data by other interfaces such as USB, IEEE1394, etc. Communication is also possible.

  In the above embodiment, the DVD player 70 is a means for outputting a signal to the outside. The random number generation unit 713, the QR code generation unit 714, the sound wave generation unit 715, and the encryption / decryption Although the example provided with the part 716 was demonstrated, it is not necessary to provide all these. For example, when the random number R2 is expressed by a numeric string or the like and displayed on the TV receiver 80, for example, the QR code generation unit 714 and the sound wave generation unit 715 can be omitted.

  Also, for example, in the above embodiment, the encryption duplexing scheme adopted in MQbic (registered trademark) can be applied, and the above user key data Ku and content key data are applied to an SD card compatible with MQbic. It is also possible to store Kc. FIG. 8 is a schematic diagram showing a configuration of an SD card and a user terminal corresponding to the encryption double key method adopted in the MQbic. Here, the SD card SDq is an example of a secure storage medium that securely stores data, and includes a system area (SySem Area) 1, a hidden area (Hidden Area) 2, a protected area (Protected Area) 3, a user data area ( User Data Area) 4 and encryption / decryption unit 5, and data is stored in each of the areas 1 to 4.

  Specifically, in such an SD card SDq, the system area 1 stores key management information MKB (Media Key Block) and a media identifier IDm, the secret area 2 stores a media unique key Kmu, and a protection area. 3 stores an encrypted user key Enc (Kmu: Ku), and the user data area 4 stores an encrypted content key Enc (Ku: Kc). Note that the notation Enc (A: B) means data B encrypted with data A in this specification. Here, the user key Ku is an encryption / decryption key for the content key Kc, and is commonly used for a plurality of encrypted content keys Enc (Ku: Kc1), Enc (Ku: Kc2),. Can be done. The subscript q of the SD card SDq indicates that it corresponds to MQbic (registered trademark).

  Here, the system area 1 is an area that is read-only and accessible from the outside of the SD card. The secret area 2 is a read-only area that is referred to by the SD card itself, and cannot be accessed from outside. The protected area 3 is an area that can be read / written from the outside of the SD card when authentication is successful. The user data area 4 is an area that can be freely read / written from the outside of the SD card. The encryption / decryption unit 5 performs authentication, key exchange, and encryption communication between the protection area 3 and the outside of the SD card, and has an encryption / decryption function.

  For such an SD card SDq, the user terminal 10q for reproduction operates logically as follows. That is, in the user terminal 10q, the key management information MKB read from the system area 1 of the SD card SDq is subjected to MKB processing with a preset device key Kd (ST1) to obtain a media key Km. Next, the user terminal 10q performs a hash process on the media key Km and the media identifier IDm read from the system area 1 of the SD card SDq (ST2) to obtain a media unique key Kmu.

  Thereafter, the user terminal 10q performs authentication and key exchange (AKE: Authentication Key Exchange) processing with the encryption / decryption unit 5 of the SD card SDq based on the media unique key Kmu (ST3), and the SD card. The session key Ks is shared with SDq. Note that the authentication and key exchange processing in step S3 succeeds when the media unique key Kmu in the secret area 2 referred to by the encryption / decryption unit 5 matches the media unique key Kmu generated in the user terminal 10a. The session key Ks is shared.

  Subsequently, when the user terminal 10q reads the encrypted user key Enc (Kmu: Ku) from the protected area 3 through encrypted communication using the session key Ks (ST4), the encrypted user key Enc (Kmu: Ku) is read out. ) Using the media unique key Kmu (ST5) to obtain the user key Ku.

  Finally, when the user terminal 20q reads the encrypted content key Enc (Ku: Kc) from the user data area 4 of the SD card SDq, the user terminal 20q decrypts the encrypted content key Enc (Ku: Kc) with the user key Ku. (S5q) to obtain the content key Kc. Finally, when the user terminal 10a reads the encrypted content Enc (Kc: C) from the memory 11q, the encrypted content Enc (Kc: C) is decrypted with the content key Kc (ST6). The content C is reproduced. In the above example, the encrypted content is stored in the memory 11q in the user terminal 20q. However, the encrypted content may be stored in an external storage medium.

  Since the encrypted double key method as described above holds the encrypted content key in the user data area 4 having a larger storage capacity than the protected area 3, a larger amount of encrypted content key is stored than the encrypted single key method. There are advantages you can do. In addition, since the encrypted double key method can hold the encrypted content outside the SD card, it is expected to promote the distribution of the encrypted content.

  Further, in the encryption double key method, each SD card is given a media identifier as an identifier, and a unique user key (media unique key) is issued for each media identifier. The user key is encrypted with this media unique key and stored in a protected area (protected area) of the SD card. User key encryption depends on the media identifier and can only be decrypted by a legitimate player. For this reason, even if the infringer illegally copies only the content key from the user data area, the content cannot be acquired. The present invention can also be applied to a case where such a user terminal is a playback device and content key data or the like is supplied to such a user terminal by a portable terminal. Further, the encrypted content key data is not stored and is transmitted from the distribution server 40 whenever necessary, so that it is impossible to continue to use the content data illegally even after the expiration date.

It is a schematic diagram which shows the structure of the content data delivery system which concerns on the 1st Embodiment of this invention. 2 is a flowchart showing a first example of an operation procedure of an initial registration operation for a DVD player 70 in the system of FIG. 1. 7 is a flowchart showing a second example of the operation procedure of the initial registration operation for the DVD player 70 in the system of FIG. 7 is a flowchart showing a third example of the operation procedure of the initial registration operation for the DVD player 70 in the system of FIG. 1. 7 is a flowchart showing a fourth example of the operation procedure of the initial registration operation for the DVD player 70 in the system of FIG. 1. It is a flowchart explaining the 1st example of the operation | movement procedure in the case of purchasing content key data Kc after acquiring user key data Ku and apparatus ID. 12 is a flowchart for explaining a second example of an operation procedure when purchasing content key data Kc after acquiring user key data Ku and device ID. It is a schematic diagram which shows the structure of the SD card and user terminal corresponding to the encryption double key system employ | adopted in MQbic (trademark).

Explanation of symbols

  DESCRIPTION OF SYMBOLS 30 ... Network, 40 ... Distribution server, 41 ... Portable terminal ID database, 42 ... Equipment ID database, 43 ... User key database, 45 ... Content key database, 51 ... Security module 52... Management key acquisition unit 53. Key encryption management unit 60. Mobile terminal 70. DVD player 601 Control unit 602 Memory 603 ... ROM, 604 ... RAM, 605 ... communication control unit, 606 ... display control unit, 607 ... display unit, 608 ... CCD camera, 609 ... keyboard, 611 ..Infrared port, 612... QR code analysis unit, 701... Optical pickup, 702... Signal processing unit, 703. ,..., Driver, 705... Output controller, 706... ROM, 707... RAM, 700... CPU, 709 ... memory, 711 ... infrared port, 712. Communication control unit, 713 ... random number generation unit, 712 ... QR code generation unit, 715 ... sound wave generation unit, 716 ... encryption / decryption unit.

Claims (10)

A playback device configured to be able to decrypt and play back the content data encrypted with the content key data and hold a device ID for identifying itself;
A portable terminal configured to be capable of data communication with the playback device and holding a portable terminal ID for identifying itself;
A content data distribution method for distributing content data in a content data distribution system including a server for distributing the content key data to the playback device via the portable terminal,
Presenting the device ID and the portable terminal ID to the server from the portable terminal to request distribution of the content key data;
Encrypting and transmitting the content key data related to the request from the server to the mobile terminal;
Transmitting the encrypted content key data to the playback device. 5. A content data distribution method comprising: Before the step of requesting distribution of the content key data,
In response to a request from the portable terminal, the step of assigning the device ID from the server to the playback device;
A step of associating the assigned device ID with the portable terminal ID of the portable terminal that has transmitted the request and storing the associated device ID in a database;
When there is a request for distribution of the content key data from the mobile terminal, the content key data is confirmed after confirming that the combination of the device ID and the mobile terminal ID presented with reference to this database exists as data. The content data distribution method according to claim 1, further comprising: transmitting from the server to the portable terminal. In order to transmit and receive data between the server and the playback device via the portable terminal, the playback device converts the data into a character string according to a predetermined protocol, and displays the data on a display device linked with the playback device. Displaying a string;
The content data distribution method according to claim 1, further comprising a step of transmitting data of the character string to the server after inputting the character string on the portable terminal. In order to transmit and receive data between the server and the playback device via the mobile terminal, the playback device converts the data into an audio signal and outputs the audio signal;
2. The content data distribution method according to claim 1, further comprising the step of: converting the audio signal into an electric signal after receiving the audio signal at the portable terminal and transmitting it to the server. The string according to claim 3 Symbol placement content data delivery method is intended to include kana characters. The string according to claim 3 Symbol placement content data delivery method is intended to include alphabet. The string according to claim 3 Symbol placement content data delivery method is intended to include Chinese characters. In a content data distribution server configured to be capable of data communication with a mobile terminal via a network,
In response to a request from the portable terminal, a device ID for identifying a reproduction device configured to be able to decrypt and reproduce the content data associated with the portable terminal and encrypted with the content key data, A device ID transmitting means to be given to the playback device via
A database that stores the device ID assigned to the playback device in association with the mobile terminal ID for identifying the mobile terminal;
Content comprising: a transmission unit configured to transmit the content key data to the mobile terminal in response to a distribution key data distribution request accompanied by the presentation of the device ID and the mobile terminal ID from the mobile terminal. Data distribution server.   When there is a request for distribution of the content key data from the mobile terminal, the transmission means has a combination of the device ID and the mobile terminal ID presented with reference to the database as data in the database After confirming that, the content key data is transmitted to the portable terminal
9. The content data distribution server according to claim 8, wherein   In a content data distribution server configured to be capable of data communication with a mobile terminal via a network,
  In response to a request from the portable terminal, a device ID for identifying a reproducing device configured to be able to decrypt and reproduce the content data associated with the portable terminal and encrypted with the content key data, A device ID transmitting means for transmitting to the portable terminal to grant to
  A database that stores the device ID assigned to the playback device in association with the mobile terminal ID for identifying the mobile terminal;
  Transmitting means for transmitting the content key data to the mobile terminal in response to a request for distribution of the content key data accompanied by the presentation of the device ID and the mobile terminal ID from the mobile terminal;
A content data distribution server comprising:

Images