JP4765377B2 - Content providing server and mobile phone - Google Patents

Description

  The present invention relates to a content purchase system, and more particularly, to a content purchase system that can purchase content using a service for a PC with a mobile phone using secret information unique to the mobile phone.

  2. Description of the Related Art Conventionally, services have been provided that can download digital content such as music content and video content from a server storing the content using an information terminal such as a personal computer (PC) owned by the user. . In order to use such content, the user needs to purchase a license corresponding to the content by performing a billing process on the server or the like. In order to use the content providing service or perform billing processing, the user needs to input user information for authenticating the user, such as a user ID and a password, via a Web browser.

  On the other hand, when the service is provided to a mobile phone, a Web site dedicated to the mobile phone is prepared and content is provided via the mobile phone network. In that case, the user who uses the mobile phone is authenticated by the authentication method dedicated to the mobile phone, and the billing process can be performed by the same method as the settlement method of the call charge of the mobile phone.

JP 2004-21661 A Japanese Patent Laid-Open No. 2004-21662

  However, when purchasing content etc. using a PC website using a mobile phone, the user ID and password for accessing the PC website are entered from the input screen of the mobile phone. There was a problem that had to be.

  In addition, when a content is purchased by accessing a PC website from a mobile phone, it is not settled by a payment method dedicated to the mobile phone, and a charge is charged separately from the call charge of the mobile phone. there were.

  Therefore, the present invention has been made in view of such problems, and the object of the present invention is to provide user authentication information for using a PC service when using a PC service on a mobile phone. You can use the PC service without input, and you can perform billing processing in the same way as the settlement method for mobile phone call charges, even though you purchased content etc. with the PC service. Another object of the present invention is to provide a content providing system, a content providing server, a mobile phone, a mobile phone management server, and a content providing method.

  In order to solve the above problems, according to an aspect of the present invention, there is provided a content providing server, a mobile phone that executes content purchase processing, and a mobile phone management server that is connected to the mobile phone via a mobile phone network. And a content providing system for providing content to a user registered in advance in the content providing server.

  The mobile phone management server includes a mobile phone information storage unit that stores secret information unique to a mobile phone transmitted from the mobile phone via the mobile phone network and terminal identification information of the mobile phone in association with each other; transmitted from the mobile phone A mobile phone identification information transmitting unit that transmits terminal identification information of the mobile phone associated with the secret information unique to the mobile phone.

  The content providing server includes a user information storage unit that stores user identification information of a user in association with a user key unique to the user; terminal information that stores terminal identification information of the mobile phone and user identification information in association with each other. A storage unit; a content key storage unit for storing the content identification information and a content key unique to each content in association with each other; a content purchase including at least the content identification information of the content from the mobile phone that has executed the content purchase processing A content purchase information receiving unit for receiving information; a mobile phone identification information receiving unit for receiving terminal identification information associated with secret information specific to the mobile phone that has executed the content purchase processing from the mobile phone management server; The user identification associated with the terminal identification information of the mobile phone received by the information receiving unit. A user identification information acquisition unit for acquiring information from the terminal information storage unit; a content key associated with the content identification information received by the content purchase information reception unit is acquired from the content key storage unit and acquired by the user identification information acquisition unit A content key encryption unit that acquires a user key associated with the acquired user identification information from the user information storage unit and encrypts the acquired content key with the acquired user key; and a content key encrypted with the user key And a content information transmission unit that transmits content information including the information to the mobile phone that has executed the content purchase processing.

  The mobile phone includes a content purchase information transmitting unit that transmits content purchase information including content identification information of the content to be purchased to the content providing server; a mobile phone management server that is associated with the mobile phone terminal identification information. A mobile phone secret information transmitting unit that transmits secret information; a content information receiving unit that receives content information including an encrypted content key; and a content key decrypting unit that decrypts the encrypted content key.

  According to the above invention, the mobile phone-specific secret information used between the mobile phone and the mobile phone management server via the mobile phone network is associated with the user information for accessing the Web site for the PC. Even if the user who uses the telephone does not input the user ID and password for accessing the Web site for the PC, the service prepared for the PC can be used.

  In addition, by transmitting the terminal identification information of the mobile phone associated with the secret information unique to the mobile phone to the mobile phone management server, it is purchased through a Web service for PCs in the same manner as the mobile phone call charge settlement method. Content charging processing can be performed.

  The above-mentioned secret information unique to the mobile phone is transmitted from the mobile phone to the mobile phone management server via the mobile phone network, and the user of the mobile phone, the credit card number, etc. in the mobile phone management server by this secret information. It is the information which understands personal information, payment method, etc. In the mobile phone management server, personal information of the user is associated with secret information unique to the mobile phone, and the mobile phone call charges are settled using the information. The user information associated with the secret information is information that cannot be accessed by a server other than the mobile phone management server.

  The encryption is to rearrange digital information using an encryption key. A content key, a user key, and a device key described later are encryption keys. The encryption key is a predetermined rule used for rearranging digital information. Examples of encryption methods include public key cryptosystems that use different keys for encryption and decryption, and private key cryptosystems that use the same key for encryption and decryption, but the present invention applies both methods Is possible. In this specification, both a key for encrypting content and a key for decrypting content are referred to as content keys. The user key is a key given to a user who uses the content information providing system, and includes both an encryption key and a decryption key. The device key is a key given to the content reproduction apparatus, and includes both an encryption key and a decryption key.

  In order to solve the above-described problem, according to another aspect of the present invention, a mobile phone that executes content purchase processing is connected to a mobile phone management server via a communication network, and content is provided to a pre-registered user. A content providing server is provided.

  The content providing server includes a user information storage unit that stores user identification information of a user in association with a user key unique to the user; terminal information that is stored in association with terminal identification information of the mobile phone and user identification information A storage unit; a content key storage unit for storing the content identification information and a content key unique to each content in association with each other; a content purchase including at least the content identification information of the content from the mobile phone that has executed the content purchase processing A content purchase information receiving unit for receiving information; a mobile phone identification information receiving unit for receiving terminal identification information associated with secret information specific to the mobile phone that has executed the content purchase processing from the mobile phone management server; The user identification associated with the terminal identification information of the mobile phone received by the information receiving unit. A user identification information acquisition unit for acquiring information from the terminal information storage unit; a content key associated with the content identification information received by the content purchase information reception unit is acquired from the content key storage unit, and the user identification information acquisition unit A content key encryption unit that acquires a user key associated with the acquired user identification information from the user information storage unit, and encrypts the acquired content key with the acquired user key; and content encrypted with the user key A content information transmission unit that transmits content information including a key to a mobile phone that has performed content purchase processing.

  According to the above invention, the mobile phone-specific secret information used between the mobile phone and the mobile phone management server via the mobile phone network is associated with the user information for accessing the Web site for the PC. Even if the user who uses the telephone does not input the user ID and password for accessing the Web site for the PC, the service prepared for the PC can be used.

The content providing server includes a process identification information issuing unit that issues process identification information for each content purchase process executed from a mobile phone; process identification information, terminal identification information of the mobile phone, and content purchase information. A process information storage unit for storing the content information; a content information acquisition process activation file generation unit for generating a content information acquisition process activation file including at least process identification information for activating the content information acquisition process; and a content information acquisition process activation A content information acquisition process activation file transmission unit for transmitting a file to a mobile phone;
May be provided.

  Further, the content providing server receives the user identification information and the process identification information included in the content information acquisition process start file from the mobile phone that has received the content information acquisition process start file, and accepts the content information acquisition request. A content information acquisition request reception unit; a terminal identification information acquisition unit that acquires terminal identification information of a mobile phone associated with the processing identification information from the processing information storage unit, and the user identification information acquisition unit includes: You may make it acquire the user identification information linked | related with the terminal identification information from a user information storage part.

  As a result, the user using the mobile phone can transmit the user identification information according to the content information acquisition process activation file without inputting the user identification information stored in advance in the content providing server. Therefore, even if the user identification information is not input by the user, the user identification information associated with the terminal identification information of the mobile phone can be acquired.

  The content providing server, when the user identification information received by the content information acquisition request receiving unit corresponds to the user identification information acquired by the user identification information acquiring unit, The content key associated with the information is acquired from the content key storage unit, the user key associated with the user identification information is acquired from the user information storage unit, the acquired content key is encrypted with the acquired user key, and the content information The transmitting unit may transmit the content information including the content key encrypted with the user key to the mobile phone that transmitted the content information acquisition request.

  As a result, the content key is encrypted with the user key of the user and transmitted only when the user identification information associated with the secret information unique to the mobile phone matches the user identification information transmitted from the mobile phone. Can do. Therefore, the encrypted content key can be decrypted only by the mobile phone from which the user key can be obtained, and the content can be used only by the mobile phone that has executed the purchase process.

  When the user identification information received by the content information acquisition request reception unit corresponds to the user identification information acquired by the user identification information acquisition unit, the terminal identification information of the mobile phone associated with the processing identification information A payment information transmitting unit for transmitting content purchase information to the mobile phone management server; the mobile phone management server obtains mobile phone-specific secret information associated with the mobile phone identification information, and purchases the content using the secret information. A content settlement processing unit that performs settlement processing of content according to information, and the content settlement processing unit may transmit a settlement processing completion notification to the content providing server when the settlement processing is completed.

  As a result, the terminal identification information of the mobile phone that has purchased the content and the purchase information are transmitted to the mobile phone management server, and the payment processing is performed based on the mobile phone specific secret information associated with the terminal identification information in the mobile phone management server. Executed. Therefore, although content is provided from the content providing server included in the PC service, payment for content purchase is performed by the mobile phone management server and processed by the same payment method as the mobile phone call charges. Is done.

  When the content payment processing unit provided in the mobile phone management server receives the payment processing completion notification, the content information transmission unit sends the content information including the content key encrypted with the user key to the mobile phone identification information reception unit. May be transmitted to the mobile phone corresponding to the terminal identification information of the mobile phone received.

  In order to solve the above problems, a mobile phone connected to a content providing server in which a user is registered in advance via a communication network, connected to a mobile phone management server via a telephone network, and executing content purchase processing is provided. Provided.

  The mobile phone includes a content purchase information transmitting unit that transmits content purchase information including content identification information of the content to be purchased to the content providing server; and a mobile phone specific associated with the mobile phone terminal identification information by the mobile phone management server A mobile phone secret information transmission unit that transmits the secret information of the mobile phone; a content information reception unit that receives the content information including the encrypted content key; and a content key decryption unit that decrypts the encrypted content key. . According to the above invention, the content information including the content key can be received by the content providing server without inputting the user identification information or the like by the user.

  The mobile phone includes a link information storage unit that stores the mobile phone identification information and the user identification information in association with each other; and the content providing server stores the process identification information for each content purchase process executed by the mobile phone. A content information acquisition process start file receiving unit for issuing a content information acquisition process start file including at least process identification information for issuing and starting the content information acquisition process from the content providing server; A content information acquisition requesting unit that transmits the processing identification information and the user identification information associated with the identification information of the mobile phone to request content information acquisition.

  The mobile phone further includes a link information storage unit that stores the mobile phone identification information and the user identification information in association with each other; the content key decryption unit is configured to identify the user stored in the link information storage unit. When the information corresponds to the user identification information registered in advance in the content providing server, the encrypted content key may be successfully decrypted. According to this configuration, the mobile phone succeeds in decrypting the content key only when the identification information corresponding to the user identification information registered in advance in the content providing server is stored in the link information storage unit. That is, the content can be used only with a mobile phone owned by a user registered in advance in the content providing server.

  The link information storage unit stores an encrypted user key unique to the user who uses the mobile phone, and decrypts the encrypted user key using a device key unique to the own device. The content key decrypting unit may decrypt the encrypted content key with the user key decrypted by the key processing unit.

  The link information storage unit stores at least one piece of link information acquired from the content providing server, and the start point is identified by the identification information according to the accumulated link information, and the arrival point is determined by the identification information. By creating a route that is the identified user, the association between the identification information of the own device and the identification information of the user who uses the own device is realized; one of the above link information is the link source , The other is a pair of identification information that is a link destination, and the identification information may be identification information for uniquely identifying the user in the content providing server or identification information for uniquely identifying the mobile phone in the content providing server. Good.

  In order to solve the above problem, according to another aspect of the present invention, a content providing method for providing content to a user registered in advance is provided.

  According to another aspect of the present invention, there are provided a program for causing a computer to function as the wireless communication device, and a computer-readable recording medium on which the program is recorded. Here, the program may be described in any programming language. In addition, as a recording medium, for example, a recording medium that is currently used as a recording medium capable of recording a program, such as a CD-ROM, a DVD-ROM, or a flexible disk, or any recording medium that is used in the future should be adopted. Can do.

  As described above, according to the present invention, when a PC service is used on a mobile phone, the PC service can be used without inputting user authentication information for using the PC service. The convenience of users who use mobile phones can be improved by performing billing processing in the same way as the mobile phone call charge settlement method, even though the content has been purchased through a PC service. Is possible.

  Hereinafter, preferred embodiments of the present invention will be described in detail with reference to the accompanying drawings. In the present specification and drawings, components having substantially the same functional configuration are denoted by the same reference numerals, and redundant description is omitted.

  In the following, when the content providing system according to the present invention uses a PC service on a mobile phone, the PC service can be used without inputting user authentication information for using the PC service. A description will be given by applying to the possible content providing system 500.

  The content includes, for example, audio (Audio) content such as music, lectures, and radio programs, and video (Video) content composed of still images or moving images constituting movies, television programs, video programs, photographs, paintings, charts, etc. Arbitrary content such as an electronic book (E-book), a game, and software may be used. Hereinafter, examples of audio contents, particularly music contents distributed from a distribution server, will be described as contents, but the present invention is not limited to such examples.

  In general, when a content providing service or the like is provided to a mobile phone, a Web site dedicated to the mobile phone is prepared and the content is provided via the mobile phone network. In this case, the user who uses the mobile phone is authenticated by an authentication method dedicated to the mobile phone. In addition, the billing process can be performed in the same manner as the settlement method for the mobile phone call charges.

  However, when purchasing content using a mobile phone using a PC website, the user ID and password for accessing the PC website are entered from the input screen of the mobile phone. There is a need. In addition, payment is not made from the mobile phone using the PC payment method, and a charge is charged separately from the mobile phone call charge.

  Therefore, in the present embodiment, the secret information unique to the mobile phone used between the mobile phone and the mobile phone management server via the mobile phone network is associated with the user information for accessing the PC website, A user using a mobile phone can use a service prepared for a PC without inputting a user ID and a password for accessing the Web site for the PC.

  Here, the secret information specific to the mobile phone is transmitted from the mobile phone to the mobile phone management server via the mobile phone network, and the mobile phone management server uses the secret information to identify the mobile phone user, credit card number, etc. This is information that shows the user's personal information and payment method. In the mobile phone management server, personal information of the user is associated with secret information unique to the mobile phone, and the mobile phone call charges are settled using the information. The user information associated with the secret information is information that cannot be accessed by a server other than the mobile phone management server. Therefore, a server other than the mobile phone management server connected to the mobile phone through a network other than the mobile phone network cannot use the secret information transmitted from the mobile phone, and the mobile phone call charge settlement method, etc. Cannot be used.

  In this embodiment, on the mobile phone management server, the secret information and the mobile phone terminal information are stored in association with each other, and the mobile phone-specific secret information transmitted from the mobile phone is used to use the user ID for the PC service. It is possible to use a service for a PC without inputting the password.

  The outline of the content providing system 500 has been described above. Next, the copyright management by the link method employed in the content providing system 500 according to the present embodiment will be described. The copyright management of the content provided from the content providing server can be protected by the link type copyright management.

<1. Overview of copyright management by link method>
First, an outline of a content providing system corresponding to copyright management by the link method according to the present embodiment will be described.

  The content providing system according to the present embodiment is a system that manages users and usage states of copyright management content (hereinafter referred to as “content”) obtained by cryptographically processing digital content such as video and audio. This content providing system restricts the use of content to users other than the user who purchased the content in order to prevent illegal use of content such as mass distribution of content through the Internet or the like.

  In order for a user who has purchased content to reproduce the encrypted content, it is necessary to decrypt the content with a content encryption processing key (hereinafter referred to as “content key”) that has encrypted the content. Even if the content is illegally distributed over the Internet or the like, the content cannot be reproduced without this content key. Therefore, in the content providing system according to the present embodiment, the content key must be securely distributed and used by the correct user.

  On the other hand, it is necessary to be able to reproduce content freely to some extent between devices owned by the user who purchased the content. Otherwise, the user who purchased the content may purchase the content, but cannot play the content on his / her own device, or only on the device that purchased the content.

  As described above, in the content providing system according to the present embodiment, while performing copyright management, content sharing is permitted within the scope of private use, and convenience of content sharing among a plurality of devices owned by the same user, A copyright management system that can increase the degree of freedom is adopted. In order to realize this copyright management method, the present embodiment adopts a copyright management scheme based on a link method.

  In copyright management by the link method, it is possible to share contents between devices by associating the devices. In this embodiment, associating devices is referred to as linking devices. For example, by linking the device 2 owned by the user to the device 1 owned by the user, the content that can be reproduced by the device 1 can also be reproduced by the device 2. Although the link method will be described in detail later, since the content can be played back on the device linked to the device 1 that can play back the content, and the content cannot be played back on the device that is not linked, copyright management However, it is possible to play content freely to some extent on a user-owned device.

  Note that the content is, for example, audio (Audio) content such as music, performances, radio programs, etc., and video (Video) composed of still images or moving images constituting movies, television programs, video programs, photos, paintings, diagrams, etc. It may be any content such as content, electronic book (E-book), game, software, and the like. Hereinafter, an example of music content, particularly music content distributed from a distribution server or ripped from a music CD will be described as the content, but the present invention is not limited to such an example.

  Next, the outline of the link method in the content providing system according to the present embodiment for performing the copyright management of the link method as described above will be described with reference to FIG. FIG. 1 is an explanatory diagram showing an outline of the link method of the content providing system according to the present embodiment.

  As shown in FIG. 1, it is assumed that the user A owns the user devices 10a, 10b, and 10d. For example, the user A subscribes to the content providing service via the user device 10a and purchases the content. If the user A wants to reproduce the content on the user device 10a that is the device owned by the user A, the user A links the user device 10a to the user A. As described above, when the user device 10a is linked to the user A, the content purchased by the user A can be reproduced on the user device 10a.

  Here, linking the user device 10a to the user A means that the user device 10a acquires the secret information of the user A. The secret information of the user A is information that can be known only by the user A. For example, the secret information of the user A is information. For example, in order to securely distribute the content key to user A, the content key is encrypted with user A's public key or private key and distributed to user A.

  The user A tries to reproduce the content on the user device 10a, but if the user device 10a does not know the information on the secret key of the user A, the user device 10a cannot decrypt the content key and reproduces the content. I can't. Therefore, if the user device 10a is linked to the user A, that is, if the user device 10a can acquire the information on the secret key of the user A, the content purchased by the user A can be reproduced on the user device 10a.

  Similarly, the user device 10b is linked to the user A. If the user device 10b can know the information of the private key of the user A, the content purchased by the user A can be reproduced also on the user device 10b.

  In order to securely distribute the private key of user A to the user device 10a, the private key of user A needs to be encrypted with the public key or private key of the user device 10a and distributed to the user device 10a. The user A's private key is decrypted by the user device 10a, and the content key is decrypted with the decrypted user A's private key. Furthermore, if the user device 10d wants to reproduce the content, the user device 10d may be linked to the user device 10a. The user device 10d can acquire the secret key information of the user device 10a, and can also acquire the secret key information of the user A with the secret key of the user device 10a. Then, the content purchased by the user A can be reproduced with the user A's private key.

  In this way, by acquiring the secret information of the link destination by following the linked destination, the content purchased at the link destination can be reproduced on the own device. For example, if the user device 10a is linked to the user B who is the family of the user A, the content purchased by the user B can be reproduced on the user device 10a. Further, if the user A and the user B are linked to the family, for example, when the family becomes a member of the content providing service and purchases the content, the user A and the user B can reproduce the content. As described above, if there is a user device linked to the user A and the user B, the content purchased by the family can be reproduced on the user device.

  In addition, if a user and a user device owned by the user, or user devices owned by the user are linked, the user who uses the content is restricted only by securely distributing the content key to the user, and , It becomes possible to share contents freely between devices owned by users.

  The outline of copyright management by the link method has been described above. Next, the content providing system 100 will be described as a specific example for realizing the copyright management by the link method.

<2. Overall configuration of content providing system>
FIG. 2 is an overall configuration diagram of the content providing system 100 according to the present embodiment. As shown in FIG. 2, the content providing system 100 includes a user device 10, a copyright management server 20a, a content providing server 20b, and the like. The user device 10 may include a plurality of user devices 10a, 10b, 10c, 10d,... As shown in FIG. The copyright management server 20a and the content providing server 20b are configured as separate servers, but may be configured as a single server.

  The user device 10 is various information processing apparatuses for using content. In FIG. 2, as an example of the user equipment 10, a notebook type or desktop personal computer (hereinafter referred to as “PC”) 10 a, audio equipment 10 b, 10 c, a portable device that is a portable content playback device ( (Portable Device; hereinafter referred to as “PD”) 10d and the like.

  The user device 10 includes, for example, a content use function (for example, content playback, storage, transfer, combination, division, conversion, duplication, lending, return function, etc.), content playback control function by the above-described link, and content management function ( For example, it has a content creation function by ripping, self-recording, etc.).

  Among the user devices 10, a device (for example, the PC 10a) having a communication function via the network 30 can be communicably connected between the copyright management server 20a and the content providing server 20b. Such a user device 10 can download and install software for content distribution service and copyright management software from the content providing server 20b, for example. As a result, the user device 10 receives distribution of the encrypted content from the content providing server 20b, receives distribution of the license including the content key of the content and the usage conditions of the content from the copyright management server 20a, These data can be recorded in storage means such as a storage device or a removable storage medium.

  In addition, the user device 10 can newly create content by, for example, self-recording (self-recording, recording, etc.) or ripping, and record the content in a storage device or a removable storage medium. Note that self-recording refers to storing, for example, audio / video collected by an imaging device / sound collecting device of the user device 10 itself as video / audio digital data. Ripping is the extraction of digital content (audio data, video data, etc.) recorded on storage media such as music CDs, video DVDs, and software CD-ROMs, and converts them into a file format that can be processed by a computer. Recording on a storage device or a removable storage medium.

  As described above, if the user devices 10b, 10c, and 10d are linked to the PC 10a, the content downloaded by the PC 10a and reproducible on the PC 10a can be reproduced also on the linked user device. When content is reproduced on the user device 10, a content key obtained by encrypting the content is required. This content key is further encrypted, and the user device 10 obtains the key that is encrypting the content key, decrypts the content key, decrypts the content with the content key, and stores the content itself. Can be played on the device.

  The copyright management server 20a is an information processing apparatus that securely transmits a content key to a user and performs link processing for sharing content between devices owned by the user while restricting reproduction of the content. Specifically, the copyright management server 20a performs registration processing of the user and the user device 10 owned by the user, links between the user and the user device, links between the user devices, and encrypts the content key. To the user device 10.

  The content providing server 20b is a server that provides content and provides a content providing service to the user. The content providing server 20 b distributes content to the user device 10 via the network 30 in response to a request from the user device 10.

  For example, in the case of distributing music content, the distribution server 20b is configured as a server that provides an electronic music distribution (EMD; Electronic Music Distribution) service. In this case, the distribution server 20b compresses and encodes the music content to be distributed by a compression encoding method such as an ATRAC3 (Advanced Transform Acoustic Coding) method or an MP3 (MPEG Audio Layer-3) method. The encrypted data is encrypted by an encryption method such as Encryption Standard) and distributed to the user device 10. Further, the content providing server 20b may encrypt the content key for decrypting the content together with the content encrypted in this way and transmit the encrypted content key to the user device 10. Further, the content key may be provided to the copyright management server 20a, and the content key may be encrypted in the copyright management server 20a and transmitted to the user device 10.

  The content providing server 20b can also be configured as a server that provides a created content use service that manages the use of content created by the user device 10 by, for example, ripping or self-recording. In this case, the content providing server 20b distributes a content key for decrypting the content to the user device 10. As a result, the user device 10 can reproduce the content created by the ripping or the like based on the content key acquired from the content providing server 20b.

  The network 30 is a communication network that connects the user device 10, the copyright management server 20a, and the content providing server 20b so that they can communicate with each other. The network 30 includes, for example, a public line network such as the Internet, a telephone line network, and a satellite communication network, and a dedicated line network such as WAN, LAN, and IP-VPN, and may be wired or wireless.

  In the content providing system 100, while ensuring the copyright management function for restricting the use of content, the portability of content between various user devices 10 is improved, and the convenience of the user and the freedom of content usage are improved. It is something that can be done.

<3. Hardware configuration of user equipment>
Next, a hardware configuration of the user device 10 according to the present embodiment will be described. Hereinafter, a hardware configuration example of the PC 10a and the PD 10d will be described as a representative example of the user device 10. Note that the PC 10a and PD 10b, which are user devices 10, are configured as an embodiment of the content processing apparatus of the present invention.

  First, the hardware configuration of the PC 10a according to the present embodiment will be described with reference to FIG. FIG. 3 is a block diagram schematically showing a hardware configuration example of the PC 10a according to the present embodiment.

  As shown in FIG. 3, the PC 10 a includes, for example, a CPU (Central Processing Unit) 101, a ROM (Read Only Memory) 102, a RAM (Random Access Memory) 103, a host bus 104, a bridge 105, and an external bus 106. An interface 107, an input device 108, an output device 110, a storage device (HDD) 111, a drive 112, a connection port 114, and a communication device 115.

  The CPU 101 functions as an arithmetic processing unit and a control unit, operates according to various programs stored in the ROM 102 or the HDD 111, and controls each unit in the PC 10a. Specific processing includes, for example, content encryption and decryption processing, data falsification prevention and digital signature (MAC (Message Authentication Code) etc.) generation and verification processing, and other connected users. Authentication and session key sharing processing at the time of input / output of content to be executed with the device 10, input / output processing control of content, license, content key and the like, and copyright management processing such as license evaluation are executed.

  The ROM 102 stores programs used by the CPU 101, calculation parameters, and the like. The ROM 102 can also be used as storage means for storing contents, licenses, content keys, and the like. The RAM 103 temporarily stores programs used in the execution of the CPU 101, parameters that change as appropriate during the execution, and the like. These are connected to each other by a host bus 104 including a CPU bus.

  The host bus 104 is connected to an external bus 106 such as a PCI (Peripheral Component Interconnect / interface) bus via a bridge 105.

  The input device 108 includes, for example, operation means such as a mouse, a keyboard, a touch panel, a button, a switch, and a lever, and an input control circuit that generates an input signal and outputs it to the CPU 101. The user of the PC 10a can input various data and instruct processing operations to the PC 10a by operating the input device 108.

  The output device 110 includes, for example, a CRT (Cathode Ray Tube) display device, a liquid crystal display (LCD) device, a display device such as a lamp, and an audio output device such as a speaker. The output device 110 outputs reproduced content, for example. Specifically, the display device displays the reproduced video content as text or an image as a moving image or a still image. On the other hand, the audio output device sounds the reproduced audio content.

  The HDD 111 is a data storage device configured as an example of a storage unit of the PC 10a according to the present embodiment. The HDD 111 stores programs executed by the CPU 101 and various data on a hard disk. The HDD 111 stores various data such as content, license, and content key.

  The drive 112 is a storage medium reader / writer, and is built in or externally attached to the PC 10a. This drive 112 has contents, licenses, and content keys for a removable storage medium 40 such as a magnetic disk (such as HD), an optical disk (such as CD, DVD), a magneto-optical disk (such as MO), or a semiconductor memory loaded on the PC 10a. Record / play various data such as

  Specifically, the drive 112 reads out data stored in the removable storage medium 40 and supplies the data to the RAM 103 connected via the interface 107, the external bus 106, the bridge 105, and the host bus 104. The CPU 101 stores these data in the ROM 102 or the HDD 111 as necessary. On the other hand, the drive 112 receives data stored in the ROM 102 or the HDD 111, newly generated data, or data acquired from an external device from the CPU 101 and writes it to the removable storage medium 40.

  The connection port 114 is, for example, a port for connecting the PC 10a to an external peripheral device such as another user device 10, and has a connection terminal such as USB or IEEE1394. The connection port 114 is connected to the CPU 101 and the like via the interface 107, the external bus 106, the bridge 105, the host bus 104, and the like. The connection port 114 is connected to the PC 10aha, PD 10b, etc. via the local line 30b, and various data can be communicated.

  The communication device 115 is a communication interface configured by a communication device or the like for connecting to the network 30 (including the network 30a), for example. The communication device 115 transmits and receives various data such as contents and content keys to and from other user devices 10 and external devices such as the copyright management server 20a and the content providing server 20b.

  Next, a hardware configuration of the PD 10d according to the present embodiment will be described with reference to FIG. FIG. 4 is a block diagram schematically showing a hardware configuration example of the PD 10d according to the present embodiment.

  As shown in FIG. 4, the PD 10d includes, for example, a control device 201, a flash memory 202, a RAM 203, a bus 206, an input device 208, a display device 210, an HDD 211, a drive 212, a decoder 213, A communication device 215, an audio output circuit 216, a remote controller 218, and a headphone 219 are provided.

  The control device 201 operates according to various programs stored in the flash memory 202 or the HDD 211, for example, and controls each part of the PD 10d. The flash memory 202 stores, for example, a program that defines the operation of the control device 201 and various data. The ROM 102 can also be used as storage means for storing content, licenses, content keys, and the like. The RAM 203 is composed of, for example, an SDRAM (Synchronous DRAM), and temporarily stores various data related to the processing of the control device 201.

  A bus 206 is a data line that connects the control device 201, flash memory 202, RAM 203, data processing device 204, input device 208, display device 210, HDD 211, drive 212, decoder 213, communication device 215, audio output circuit 216, and the like. is there.

  The input device 208 and the remote controller 218 include, for example, an operation unit such as a touch panel, a button key, a lever, and a dial, and an input control circuit that generates an input signal according to an operation on the operation unit by a user and outputs the input signal to the control device 201 It is composed of The user of the content processing apparatus 10 can input various data and instruct processing operations to the content processing apparatus 10 by operating the input device 208 and a remote controller 218 described later.

  The display device 210 includes, for example, an LCD panel and an LCD control circuit. The display device 210 displays various information as text or images in accordance with the control of the control device 201.

  The HDD 211 is a data storage device configured as an example of a storage unit of the PD 10d according to the present embodiment. The HDD 211 is composed of, for example, a hard disk drive (HDD) having a storage capacity of several tens GB, and stores content, a license, a content key, a program of the control device 201, and various data. The PD 10d including the HDD 211 is configured as a content recording / playback apparatus capable of recording and playing back content. As a result, not only the content provided from the PC 10a via the removable storage medium 40 but also the content received from the PCa or the like via the local line can be stored in the HDD 211 and reproduced. However, the present invention is not limited to this example. For example, the PD 10d may not be provided with the HDD 211 and may be configured as a content reproduction-only device. In this case, for example, the PD 10a can read only the content stored in the removable storage medium 40 and execute only reproduction (recording is impossible).

  The drive 212 is a storage medium reader / writer and is built in the PC 10a. The drive 212 records / reproduces various data such as content, license, content key, and the like with respect to the various removable storage media 40 loaded on the PD 10b. The decoder 213 performs decoding processing, surround processing, conversion processing to PCM data, and the like of the encrypted content.

  The communication device 215 includes, for example, a USB controller and a USB terminal, and includes content, a license, a content key, and a control signal with the user device 10 such as the PC 10a connected via a local line 30b such as a USB cable. Send and receive various data.

  The audio output circuit 216 amplifies the analog audio data decoded by the decoder 213 and DA-converted by the control device 201 and outputs the amplified analog audio data to the remote controller 218. The analog audio data is output from the remote controller 218 to the headphones 219 and output from a speaker (not shown) built in the headphones 219.

  As described above, in FIG. 3 and FIG. 4, the hardware configuration examples of the PC 10 a and the PC 10 d which are examples of the user device 10 have been described. However, the user equipment 10 that uses the content is not limited to the PC 10a and PC 10d described above, and as shown in FIG. It can be configured by a device and an information processing device. Therefore, the user device 10 executes processing according to the hardware configuration unique to each device.

<4. Functional configuration of copyright management server>
Next, the functional configuration of the copyright management server 20a will be described with reference to FIG. As shown in FIG. 5, the copyright management server 20a includes a receiving unit 302, a transmitting unit 304, a registration unit 306, a link issuing unit 308, a license issuing unit 310, a user information storage unit 312, a content key storage unit 314, and the like. Consists of including.

  The receiving unit 302 is a communication interface composed of, for example, a communication line, a communication circuit, a communication device, and the like. The receiving unit 302 receives attribute information of the user terminal 10 connected via the network 30 or is input at the user terminal 10. Receive information.

  The registration unit 306 performs registration processing, registration change processing, registration cancellation processing, and user account information (user ID, credit number, password, etc.) of a new user who desires to use the content providing service and / or copyright management service. I do. A unique key is assigned to each user registered as a service. The key given here may be a public key and a private key that are paired in public key cryptography, or may be a common key used in secret key cryptography. The key information is stored in the user information storage unit 312 together with the user ID.

  The registration unit 306 manages user devices owned by the user. The registration unit 306 acquires user device specific information (device type, model, version, etc.) via the receiving unit 302 and assigns a device ID and a key unique to the user device. Here, the device ID is identification information that can uniquely identify the user device. As the device ID, a device ID set in advance in the user device may be acquired, and the user device may be managed based on the device ID.

  As described above, the key information given by the registration unit 306 is stored in the user information storage unit 312 in association with the user ID or device ID, and the user ID or device ID and key information are generated as node information and transmitted. The data is transmitted to each user or each user device via the unit 304. The user ID or user device that has received the node information acquires an ID uniquely identified by the copyright management server 20a.

  The key given by the registration unit 306 is used to encrypt the content key by the server, or is used to decrypt the content key encrypted by the user device. For example, when the content key is encrypted with the user's public key in the server, the user who has received the content key needs to decrypt the content key with the user's private key. Therefore, in this case, it is necessary to transmit the user's private key to the user.

  The link issuing unit 308 has a function of associating user equipment owned by the user with the user or associating user equipment owned by the user with each other. Specifically, in accordance with an input from the user device, link information for linking the user device to the user is generated, and the link information is transmitted to the user device and stored in the user information storage unit 312. For example, it is assumed that a user who has registered with the copyright management service wants to freely reproduce content purchased on three user devices owned by the user. The user transmits a link request for three user devices owned by the user to the copyright management server 20a. Upon receiving the link request, the link issuing unit of the copyright management server 20a links the user with three user devices owned by the user.

  Here, linking the three user devices with the user means that the user's private key stored in the user information storage unit 312 is encrypted with the public key of each user device. If the content key for decrypting the content purchased by the user is encrypted with the user's private key, the encrypted content key can only be decrypted by the user's private key. However, if a user-owned user device is linked to the user, the user-owned user device can obtain the user's private key, decrypt the content key, and be encrypted with the content key. The content can be decrypted and reproduced.

  The user information storage unit 312 stores a user ID or device ID, key information, and link information in association with each other. The copyright management server 20a can acquire key information corresponding to each user and user device stored in the user information storage unit 312 by acquiring the user ID and device ID.

  The user information stored in the user information storage unit 312 will be described based on FIG. As illustrated in FIG. 6, the user information storage unit 312 stores information such as a user ID 3121, a credit card number 3122, a user key 3123, a device ID 3124, a device key 312, a link 3126, and the like.

  The user ID 3121 and the credit number 3122 are user account information of the user who receives the provision of the content providing service and the copyright management service, and are identification information that can uniquely identify the user. The user key 3123 is key information assigned to one user ID 3121.

  The device ID 3124 is an ID of a user device linked to the user, and stores an ID of the user device owned by the user. The device key 3125 is a number uniquely identified in the content providing system 100, and may be an identification number set in the user device in advance at the time of factory shipment or the like, or set by the registration unit 306 of the copyright management server 20a. An identification number may be used.

  The device key 3125 stores key information assigned to each user device. Also for the device key 3125, a device key set in advance in the user device may be stored, or key information assigned by the registration unit 306 may be stored.

  The link 3126 stores link information set for each user device. For example, when the user device 1 is linked to “Yamada Taro”, the “link A” includes the device ID and the direction of association with the user ID, and the user key A (secret key) as the device key 1 (public). Information encrypted with (key) is included. The link 3126 may be transmitted to each user device and stored in the storage unit of the user device, or the user device may acquire its own link information by accessing the server. The information stored in the user information storage unit 312 has been described above.

  Returning to FIG. 5, the license issuing unit 308 issues a license including the content key to the user who purchased the content. At this time, the license issuing unit 310 can securely distribute the content key to the user by encrypting the content key included in the license with the user's private key. The license may include usage conditions for content. The content key and the content usage conditions may be provided by the content providing server 20b.

  The license issued by the license issuing unit 310 is transmitted to the user device 10 via the transmission unit 304. The license may be stored in the user information storage unit 312.

  The license includes a content ID for identifying the content. The user may acquire the license from the copyright management server 20a after purchasing the content, or may acquire the license in advance before purchasing the content and then purchase the content.

  Further, the content providing server 20b may include a content key storage unit 312 in which content keys are stored and a license issuing unit 310. In this case, the content providing server 20b may acquire information such as a user key for encrypting the content key from the copyright management server 20a, encrypt the content key, and generate a license. The license generated in the content providing server 20b may be transmitted to the user device owned by the user together with the content.

  The transmission unit 304 is a communication interface configured by, for example, a communication line, a communication circuit, a communication device, and the like. The node information issued by the registration unit 306 and the link issued by the link issuing unit 308 It has a function of transmitting information and a license issued by the license issuing unit 310 to the user device 10 via the network.

  The content key storage unit 314 stores a content key. The content key generated by the content providing server 20b may be received and stored, or the content key is generated and stored by the copyright management server 20a. May be. For example, a content key may be generated in the copyright management server 20a, and the content key may be transmitted to the user device and further transmitted to the content providing server 20b. The content providing server 20b that has received the content key may encrypt the content purchased by the user with the content key and transmit the encrypted content to the user device 10.

  The functional configuration of the copyright management server 20a has been described above. Next, a content providing method using a link method using the content providing system 100 will be described. 7 to 11 are timing charts showing a basic flow of the content providing method by the link method according to the present embodiment. The user equipment (PC) 10 and the copyright management server 20a included in the content providing system 100 are securely connected via the network 30.

<5. User equipment and user registration method>
FIG. 7 is a timing chart for explaining a registration method of user equipment (PC) 10a connected to the network among user equipment. First, the specific information of the user device (PC) 10a is transmitted to the copyright management server (S102). Here, the user device identification information is information that can identify the user device such as the device type, model, and version of the user device. The user device specific information may be transmitted from the user device (PC) 10a by a user input, or when the specific information is set in the user device (PC) 10a in advance, the user device (PC) 10a. After the communication connection between the copyright management server 20a and the copyright management server 20a is established, the specific information may be transmitted to the copyright management server 20a.

  In step S102, the copyright management server 20a that has received the specific information of the user device (PC) 10a stores the specific information in the user information storage unit provided in the copyright management server 20a (S104). Further, a device ID that can be uniquely specified by the copyright management server 20a is assigned from the transmitted specific information of the user equipment (PC) 10a. Furthermore, a device key is issued for each user device. The issued device ID and device key are stored in the user information storage unit in association with the specific information of the user device (PC) 10a. The device key is a key issued for each device, and may be a paired public key and secret key used in public key cryptography, or a common key used in secret key cryptography.

  After registration of the user equipment (PC) 10a in step S104, a node including the device ID and device key issued in step S104 is issued (S106). The node issued in step S106 is information that allows the copyright management server 20a to uniquely identify each user device, and includes at least a device ID, but specifies a device key and a user device (PC) 10a. Information may be included. The node issued in step S106 is transmitted to the user equipment (PC) 10a (S108).

  The user device (PC) 10a stores the node information transmitted to the copyright management server 20a in a memory provided in the user device (PC) 10a.

  The registration method of the user device (PC) 10a connected to the network has been described above. Next, a registration method for a user device that is not connected to the network, for example, the PD 10d, will be described with reference to FIG.

  FIG. 8 is a timing chart for explaining a registration method of the user equipment (PD) 10d not connected to the network. First, the specific information of the user device (PD) 10d is provided to the user device (PC) 10a (S110). For example, after the user device (PD) 10d is connected to the user device (PC) 10a, the device type, model, version, etc. of the user device (PD) 10d are transmitted to the user device (PC) 10a. Alternatively, specific information of the user device (PD) 10d may be transmitted to the user device (PC) 10a in response to a user input.

  In step S110, the user device (PC) 10a that has acquired the specific information of the user device (PD) 10d transmits the specific information of the user device (PD) 10d to the copyright management server 20a (S112). The copyright management server 20a that has received the specific information of the user device (PD) 10d in step S112 registers the user device (PD) 10d (S114). In step S114, the copyright management server 20a stores the specific information of the user device (PD) 10d in the user information storage unit, issues the device ID and the device key of the user device (PD) 10d, and the user device (PD ) Store in the user information storage unit in association with the specific information of 10d.

After performing registration processing of the user device (PD) 10d in step S114, the copyright management server 20a issues a node of the user device (PD) 10d (S116). As described above, the node issued in step S116 includes the identification information of the user equipment (PD) 10d by the copyright management server 20a, the device key, and the like. The node of the user device (PD) 10d issued in step S116 is transmitted to the user device (PC) 10a (S118).
In step S118, the user device (PC) having received the node information of the user device (PD) 10d from the copyright management server 20a provides the node information of the user device (PD) 10d to the user device (PD) 10d (S120). ). The user equipment (PD) 10d provided with the node information in step S120 stores the node information in a storage unit such as a memory. The node information of the user device (PD) 10d may be stored in the memory of the user device (PC) 10a.

  The user device (PD) 10d needs to be connected to the user device (PC) 10a in order to acquire a content and a content key for decrypting the content. Therefore, if the user device (PD) 10d stores information on the user device (PC) 10a, the user device (PC) 10a determines whether or not the transmitted content can be reproduced on the user device (PD) 10d. can do.

  The registration method of the user device (PD) 10d that is not connected to the network has been described above. Next, a method for registering a user who uses a user device will be described with reference to FIG.

  FIG. 9 is a timing chart for explaining a user registration method. The registration process for user A is performed via a user device (PC) 10a connected to the network. First, the specific information of the user A is transmitted to the copyright management server 20a (S122). Here, the specific information of the user A is a user ID of the user A, a credit card number possessed by the user A, and the like. This user ID is identification information that can be uniquely specified in the copyright management server 20a, and may be identification information specified by the user A or may be given in the copyright management server 20a.

  The copyright management server 20a to which the specific information of the user A is transmitted in step S122 performs the registration process of the user A (S124). In step S124, the copyright management server 20a stores the user ID of user A, a credit card number, and the like in the user information storage unit. In addition, a user key of user A is issued and stored in the user information storage unit in association with the user ID or the like.

  Then, the copyright management server 20a issues a node of the user A including the user ID and the user key stored in the user information storage unit (S126). The copyright management server 20a transmits the node information issued in step S126 to the user device (PC) 10a.

  As described above, the user who owns the user device registers his / her own user device in the copyright management server 20a via the network. In addition, user registration is performed for users who use the content providing service and the copyright management service. As a result, the copyright management server 20a that provides the copyright management service stores and manages the information of the user who wants to use the copyright management service and the information of the user device owned by the user in the user information storage unit. Can do. In addition, key information issued to each user or each user device can also be stored and managed in the user information storage unit in association with the user or user device.

  The copyright management server 20a can acquire the user ID of the user A through the user device connected to the network, and can know the user device owned by the user and the key information of the user. For example, the content key may be further encrypted with the user key of the user A in order to safely distribute the content key obtained by encrypting the content to the user. The copyright management server 20a acquires the encryption key of the user A stored in the user information storage unit based on the acquired user ID of the user A, and encrypts the content key with the user key of the user A. Since the content key encrypted with the public key of user A cannot be decrypted without using the private key of user A, the copyright management server 20a can safely transmit the content key to the user. . Furthermore, since only the user A who purchased the content can decrypt the content key, it is possible to limit the users who can decrypt the content key.

  However, even if the content key can be decrypted with the user A's encryption key, the user A cannot listen to the content unless the content can be reproduced on the user device owned by the user A. In the present embodiment, by associating the user device with the user, the content purchased by the user A can be reproduced on the user device. Next, the association between the user A and the user device will be described.

<6. Association between user A and user equipment>
10 and 11 are timing charts for explaining the association between the user A and the user device. First, the association between the user device (PC) 10a connected to the network and the user A will be described. When associating the user device (PC) 10a with the user A, the node of the user device (PC) 10a issued by the registration process and the node of the user A are transmitted to the copyright management server 20a (S130). .

  In step S130, the copyright management server 20a that acquired the node information of the user device (PC) 10a and the node information of the user A generates a link that associates the user device (PC) 10a with the user A (S132). The link generated in step S132 includes, for example, node information of the user device (PC) 10a, node information of the user A, and an association direction. The node information included in the link information may be information that can uniquely identify the user device or the user, and may be a device ID of the user device or a user ID of the user. The association direction is information indicating which node is associated with which node. When the user device (PC) 10a is associated with the user A, the association direction is information indicating the direction from the user device (PC) 10a that is the link source to the user A that is the link destination.

  Here, the link generated in step S132 will be described in detail based on FIG. As described above, the user device (PC) 10a and the user A are managed as nodes by the device ID and user ID in the copyright management server 20a. When the node information 400, 402 is transmitted to the copyright management server 20a, the copyright management server 20a sets information of “From” 406 and “To” 408 included in the link 404. When associating the user device (PC) 10a with the user A, the node ID of the user device (PC) 10a as the link source is set in “From”, and the node ID of the user A as the link destination is set in “To”. Set. Here, the node ID is identification information for identifying a node such as the user device (PC) 10a or the user A, and may be a device ID of the user device (PC) 10a or a user ID of the user A.

  The link 404 may include key information obtained by encrypting the secret information of the user A as the link destination with the public key of the user device (PC) 10a as the link source. The secret information of the user A is information that can be known only by the user A, such as information on the secret key of the user A.

  Returning to FIG. 10, the link information generated in step S132 is stored in the user information storage unit in association with the device ID of the user device (PC) 10a that is the link source (S134). Thereby, the copyright management server 20a can manage to which user the user device stored in the user information storage unit is associated. Then, link information including the association direction between the device ID of the user device and the user ID of the user is issued (S136) and transmitted to the user device (PC) 10a (S138). As described above, the link information transmitted to the user equipment (PC) 10a may include key information obtained by encrypting the secret information of the user A with the public key of the user equipment (PC) 10a.

  The user equipment (PC) 10a that has received the link information in step S138 can know to which user it is associated with the received link information. When the user device (PC) 10a is associated with the user A, the secret information of the user A can be known from the key information included in the link. For example, when the user A registers with the content providing service and purchases the content, the content is transmitted to the encrypted user A. The content key obtained by encrypting the content is encrypted with the private key of the user A and transmitted to the user device (PC) 10a owned by the user A. At this time, if the user device (PC) 10a is associated with the user A, the user device (PC) 10a acquires the secret information of the user A included in the link information transmitted from the copyright management server 20a. , The encrypted content key can be decrypted.

  The association between the user device (PC) 10a connected to the network and the user A has been described above. Next, the association between the user device (PD) 10d not connected to the network and the user device (PC) 10a will be described with reference to FIG.

  First, the user device (PC) 10a acquires node information of the user device (PD) 10d connected to the user device (PC) 10a (S140). The user device (PC) 10a that acquired the node information of the user device (PD) 10d in step S140 transmits the node information of the user device (PD) and its own node information to the copyright management server 20a (S142). In step S142, the association direction may be transmitted together with the node information of 2.

  In step S142, the copyright management server 20a that has received the information on the direction of association with the node of the user device generates a link based on the received information (S144). As described above, the link information generated in step S144 includes node information of the user device (PD) 10d, node information of the user device (PC) 10a, and association direction information.

  The link information generated in step S144 is recorded in the user information storage unit in association with the device ID of the user device (PD) 10d (S146). Then, link information including node information of the user device (PD) 10d, node information of the user device (PC) 10a, and association direction information is issued (S148), and the user device (PC) 10a. (S150).

  In step S150, the user device (PC) 10a that has received the link information from the copyright management server 20a provides the link information to the user device (PD) 10d (S152). As described above, the link information includes information that the user device (PD) 10d is associated with the user device (PC) 10. That is, the node information of the user equipment (PD) 10d is set to “From” of the link, and the node information of the user equipment (PC) 10a is set to “To”.

  The link also includes key information obtained by encrypting the private key of the user device (PC) 10a stored in the user information storage unit with the public key of the user device (PD) 10d. The user device (PD) 10d can acquire the secret key information of the user device (PC) 10a by acquiring the link information.

  Furthermore, when the link is issued in step S148, the link information of the user device (PC) 10c that is the link destination of the user device (PD) 10d may be transmitted. When the user device (PC) 10a is associated with the user A, link information for associating the user device (PC) 10a with the user A is also transmitted to the user device (PD) 10d. As a result, the user device (PD) 10d acquires the private key information of the user device (PC) 10a, and then acquires the private key information of the user A using the private key information of the user device (PC) 10a. It becomes possible to do.

  Based on FIG. 13, the key information included in the link will be described. FIG. 13 is an explanatory diagram for explaining key information included in a link.

  As shown in FIG. 13, it is assumed that three nodes, node A, node B, and node C, are stored in the user information storage unit of the copyright management server 20a. As described above, node information including identification information and key information is assigned to each user device and user. A secret key, public key, common key, and the like are issued to each user and user device.

  The key information included in each node will be described. The node A includes a public key (Kpub [A]) 4101 of the node A, a secret key (Kpriv [A]) 4102, and a common key (Ks [A]) 4103. Is included. When encryption is performed using the public key cryptosystem, encryption is performed using the public key 4101, and decryption is performed using the secret key 4102 that is paired with the public key 4101. Further, when encryption is performed by the common key encryption method, the same key is used for encryption and decryption, encryption is performed using the common key 4103, and decryption is performed using the common key 4103. Is called.

  The public key encryption method is a method in which the encryption key is made public and the decryption key is kept secret. For example, the public key 4101 of the node A is stored in a public key file on the network, and anyone can refer to it freely. On the other hand, the private key 4102 paired with the public key 4101 should be managed secretly so that no one other than the key owner can obtain it.

  The common key encryption method is a method in which the transmission side and the reception side share a common key and keep it secret. For example, the common key 4103 of the node A should be secretly managed so that only the copyright management server 20a and the node A can obtain it.

  Similarly, the node B 412 includes a public key (Kpub [B]) 4121 of the node B, a secret key (Kpriv [B]) 4122, and a common key (Ks [B]) 4123. Node C 414 includes node C's public key (Kpub [C]) 4141, secret key (Kpriv [A]) 4142, and common key (Ks [A]) 4143.

  As shown in FIG. 13, when associating node A with node B, a link 416 is issued. The link 416 includes information on the node ID of the node A, the node ID of the node B, and the association direction of the node A and the node B. As described above, when node A is associated with node B, the link source is node A and the link destination is node B. Further, the link 416 includes key information obtained by encrypting the secret key 4122 and the common key 4123 serving as the secret information of the node B with the public key 4101 or the common key 4103 of the node A.

  The node A that has acquired the link 416 knows which node it is associated with, and can acquire the secret information of the associated link destination. Since the secret information of the node B included in the link 416 is encrypted with the public key 4101 or the common key 4103 of the node A, the secret key 4102 or the common key 4103 of the node A managed secretly by the node A is used. Without it, it cannot be decrypted. That is, the key information included in the link 416 cannot be decrypted even if something other than the node A acquires.

  Similarly, the link 418 includes node ID of the node B, node ID of the node C, and information on the association direction between the node B and the node C. The direction of association included in the link 418 is the direction from the node B to the node C, the link source is the node B, and the link destination is the node C. The link 418 also includes information obtained by encrypting the secret information of the node C using the public key 4122 or the common key 4123 of the node B. The node B can acquire the secret key 4142 or the common key 4143 of the node C through the link 418.

  For example, it is assumed that the node C is information assigned to a user who purchases content. The user who purchased the content transmits node C to the copyright management server 20a. The copyright management server 20a that has received the node C, which is the user's node, uses the content key (KC) obtained by encrypting the content purchased by the user as the public key (Kpub [C]) of the node C, which is the user's public key. Encrypt. The content key 420 encrypted with the public key 4141 of the node C is transmitted to the user device (PC) owned by the user.

  If node B is assigned to the user equipment (PC) owned by the user, if the content key encrypted with the public key of node C cannot be decrypted with the private key of node B, it is encrypted with the content key. The content cannot be played back on the user device (PC). However, if the link 418 is issued to the node B, the node B can acquire the secret information of the node C based on the information of the link 418. If the user equipment (PC) to which the node B is allocated can acquire the secret information of the user to which the node C is allocated, the content key 420 is decrypted using the user's secret key included in the secret information. The content encrypted with the content key 420 can be decrypted.

  In the same way, when the node A is allocated to the user equipment (PD) connected to the user equipment (PC), the user equipment (PD) stores the secret information of the node B encrypted with its own key. Can be decrypted. Further, the secret information of the node C included in the link 418 can be decrypted with the secret key of the node B included in the link 416. The user equipment (PD) assigned with node A who has obtained the secret key of node C decrypts the content key 420 encrypted with the public key of node C, and decrypts the content encrypted with the content key 420 Can be

  In FIG. 13, node A is associated with node B and node B is associated with node C, but node A may be directly associated with node C. In this case, in the link information issued to the node A, the node ID of the node A is set as the link source, and the node ID of the node C is set as the link destination. In addition, key information obtained by encrypting the secret information of the node C with the public key of the node A is included.

  In order for a user who has purchased content to play back the content on a user device owned by the user, the user device needs to acquire information on the user key obtained by encrypting the content key. Each user device acquires a user key in which the content key is encrypted based on the link information issued to itself, and decrypts the content key.

  In this way, if the content key obtained by encrypting the content is encrypted with the user's public key and transmitted to the user device owned by the user, the encrypted content is decrypted in the user device associated with the user. It can be played back. Even if the content key that encrypts the content is not encrypted with a unique key for each user device to be played, the content key is encrypted based on the link information, and the content key is decrypted. Can be The user device can know to which user it is associated with the link information. That is, the link information enables the user device to know which user's secret information can be acquired.

  The key information included in the link has been described above. Next, a license issued by the copyright management server 20a will be described with reference to FIG.

<7. About License>
FIG. 14 is a timing chart for explaining issuance of a license in the copyright management server 20a. The license issued by the copyright management server 20a includes information such as a content key for decrypting the content necessary for reproducing the content purchased by the user. The content key included in the license is further encrypted with the user key, etc., and the user device etc. that acquired the license uses which key to encrypt the content key based on the information of each key included in the license. Can know. If the user device or the like that has acquired the license can decrypt the content key based on the above-described link information or the like, the content encrypted with the content key can be reproduced.

  The user device (PC) 10a transmits a content ID for uniquely identifying the content and node information of the user A to the copyright management server 20a in order to obtain a license necessary for reproducing the content (S160). ). As described above, if the user device owned by the user A is associated with the user A, the license issued to the user A can also be used by the user device associated with the user A.

  In step S160, the copyright management server 20a that has received the content ID and the node information of the user A encrypts the content key obtained by encrypting the content with the public key of the user A (S162). Then, the copyright management server 20a generates a license including the content key encrypted in step S162 (S164).

  Based on FIG. 15, the license generated in step S164 will be described. As shown in FIG. 15, the license 440 includes a content key 441, a control 444, a protector 447, a controller 450, and the like. The content 430 is encrypted with the content key included in the license, and is transmitted from the content providing server 20b.

  The content key 441 included in the license 440 is encrypted with the key included in the node information transmitted by the user device (PC) 10a. For example, when the node information of the user A is transmitted from the user device (PC), the content key is encrypted with the public key of the user A. The protector 447 includes a content ID that is content identification information and a content key ID that is content key identification information. From the information included in the protector 447, it is possible to know which content the license 440 is used for reproducing.

  The control 444 includes a control code 446 that is a content usage condition or the like. The control code 446 includes a reproduction time limit of the content purchased by the user, and the user uses the content within the range of usage conditions described in the control code. In addition, the control code 446 may include information indicating which node the license 440 is issued to.

  The user device that has acquired the license 440 refers to the control 444 to determine to which node the license 440 has been issued. As a result of the determination, if the license is issued to the user associated with the user device, the user device can reproduce the content using the license.

  The controller 450 is information that associates the content key 441 with the control 444, and includes identification information of the content key 441 and identification information of the control 444. Further, in order to determine whether the content key 441 and the control 444 have been tampered with, the hash value 453 of the content key 441 and the hash value 454 of the control 444 may be included. For example, when the content key 441 included in the license 440 is tampered with when transmitted from the copyright management server 20a to the user device, the hash value obtained from the content key 441 and the hash value included in the controller Becomes a different value, and it can be determined whether or not the content key 441 has been tampered with. The control 444 can also determine whether the control has been tampered with based on the control hash value 454, and it is possible to find out rewriting of the usage conditions of the content when transmitting the license. The license has been described above.

  Returning to FIG. 14, the license generated in step S164 is issued to the user device (PC) 10a (S116) and transmitted to the user device (PC) 10a (S168).

  The user device (PC) 10a that has received the license in step S168 decrypts the content key encrypted with the user key of the user who owns the user device (PC) 10a using the key information included in the link. In the user device (PC) 10a, the content encrypted with the content key can be decrypted and reproduced with the decrypted content key.

  This completes the description of license issuance. Next, a functional configuration of the user device 10 that reproduces content copyright-protected by the link method will be described with reference to FIG. Hereinafter, the user device 10 will be described as the content reproduction device 10.

<8. Functional configuration of content playback device>
The content reproduction apparatus 10 includes, for example, a link information reception unit 540, a content information reception unit 541, a content selection unit 542, a content reception unit 544, a content information storage unit 546, a link information storage unit 548, and a determination unit. 550, a key processing unit 552, a reproduction control unit 554, a content key decryption unit 556, a content storage unit 558, a content reproduction unit 560, and the like.

  The link information receiving unit 540 receives link information from the copyright management server 20a. The link information is as described above. That is, the link information includes a pair of identification information in which one is a link source and the other is a link destination. The identification information is identification information (user ID) for uniquely identifying the user in the copyright management server or identification information (device ID) for uniquely identifying the content reproduction device in the copyright management server. In the link information, a key (user key or device key) specific to the user or content playback device specified by the identification information set at the link destination is specified by the identification information set at the link source. Information encrypted with a key unique to the user or the content playback device is included.

  The link information storage unit 548 stores the link information received by the link information receiving unit 540. The link information storage unit 548 stores the link information, so that the device ID of the content reproduction device 10 (hereinafter referred to as the own device) to which the link information storage unit 548 belongs and the user who uses the own device. Association with the user ID is performed. More specifically, the link information storage unit 548 uses the own device and the own device by generating a route whose origin is the own device and whose destination is the user according to the stored link information. The association with the user is realized. If this path is generated, the content reproduction apparatus 10 can decrypt the user key of the user associated with the own apparatus by using the device key unique to the own apparatus by following the link information. It becomes possible.

  The content information receiving unit 541 receives content information from the copyright management server 20a. Specifically, the content information receiving unit 541 receives content information including a content ID, content meta information, an encrypted content key, a user ID, and usage restriction information via the communication network 504. Receive from 20a. The content information receiving unit 541 stores the received content information in the content information storage unit 546.

  The content information storage unit 546 stores content information. The content information storage unit 546 is configured by a RAM or HDD.

  The content selection unit 542 selects content information stored in the content information storage unit 546. Specifically, the content selection unit 542 selects display unit such as a display that displays meta information of content included in the content information stored in the content information storage unit 546 and desired meta information by the user. Includes input means such as a mouse and keyboard. The content selection unit 542 provides the content control unit 554 with the content ID of the content associated with the meta information selected by the user.

  In addition, the content selection unit 542 selects one or more contents from the content list transmitted from the content transfer device 50b. The content list transferred from the content transfer device 50b is information indicating the content details such as the title of the content, and one or more content titles may be selected by user input.

  The playback control unit 554 limits the playback of content. The playback control unit 554 acquires content information including the content ID acquired from the content selection unit 542 from the content information storage unit 546. Then, the playback control unit 554 determines whether or not the content selected by the content selection unit 542 can be played based on the usage restriction information included in the acquired content information. Specifically, for example, the reproduction control unit 554 stores the number of reproductions of each content, and compares the number of reproductions included in the usage restriction information with the number of reproductions stored, thereby reproducing the content. Judgment is made. Alternatively, whether or not the content can be reproduced is determined by comparing the reproducible date and time included in the usage restriction information with the current date and time.

  Based on the user ID included in the content information and the user ID associated with the own device in the link information storage unit 548, the determination unit 550 determines whether to permit the content key decryption unit to decrypt the content key. to decide. Specifically, the determination unit 550 acquires content information from the reproduction control unit 554. Then, the determination unit 550 compares the user ID included in the acquired content information with the user ID associated with the own device in the link information storage unit 548, and if two user IDs correspond, The content key decryption process by the key decryption unit 556 is permitted. When permitting the decryption process, the determination unit 550 causes the key processing unit 552 to start the process, thereby continuing the subsequent process of the content reproduction apparatus 10. “Two user IDs correspond” means that the other user ID can be derived from one user ID according to a predetermined rule, and includes the case where the two user IDs match.

  A specific example of processing performed by the determination unit 550 will be described with reference to FIG. First, the determination unit 550 checks whether the user ID included in the acquired content information is stored in the link information storage unit 548. If stored, the determination unit 550 checks the link information storage unit 548 based on the link information to determine whether a route having the own device as a starting point and the user ID as a destination point has been generated. That is, first, the determination unit 550 searches the link information storage unit 548 for link information (for example, link A) in which the user ID included in the content information is set as the link destination (S230).

  If there is corresponding link information (S232), it is determined whether the identification information set as the link source of link A is the device ID of the own device (S234). When the link source of the link A is the device ID of the own device, it is determined that a route starting from the own device and having the user ID as the destination is generated, and the content key decrypting unit 556 determines the content key. Decryption processing is permitted (S238).

  In step S234, when the link source of link A is not the device ID of the own device, the determination unit 550 determines other link information (for example, link information) in which the identification information of the link source of link A is set as the link destination. B) is searched (S236). When there is no corresponding link information, the determination unit 550 determines that a route having the own device as a starting point and the user ID as a destination has not been generated, and the content key decrypting unit 556 performs content key decryption processing. Not permitted (S240). On the other hand, if there is corresponding link information in step S206, it is determined whether the identification information set in the link source of link B is the device ID of the own device (S234).

  If the link information is traced by repeating the above processing and the link information in which the device ID of the own device is set as the link source is stored in the link information storage unit 548, the determination unit 550 performs the content by the content key decryption unit 556. Allows key decryption.

  When permitting the content key decryption process, the determination unit 550 generates link information (for example, link A, link B, and link C) that is specified in the above process and generates a route from the own apparatus to the user ID. , The content information acquired from the content information storage unit 546 is provided to the key processing unit 552.

  The key processing unit 552 decrypts the user key of the user associated with the own device based on the link information stored in the link information storage unit 548. Specifically, the key processing unit 552 acquires link information from the determination unit 550, and first, the encrypted information (key key) included in the link information (for example, link C) whose link source is the own device. ) Is decrypted with the device key unique to the device itself. Next, the key processing unit 552 encrypts information (key) included in the link information (for example, link B) in which the identification information set as the link destination in the link C is set as the link source. Is decrypted with the key decrypted immediately before. The key processing unit 552 repeats this process, and the encrypted information (that is, the link source key of the link A) included in the link information (for example, the link A) in which the user ID is set at the link destination. (User key encrypted in step 1) is decrypted. Thereafter, the key processing unit 552 provides the decrypted user key and the content information acquired from the determining unit 550 to the content key decrypting unit 556.

  The content key decrypting unit 556 acquires content information and a user key from the key processing unit 552, and decrypts the content key included in the acquired content information with the acquired user key. The content key decryption unit 556 provides the content reproduction unit 560 with the content ID included in the content information and the decrypted content key.

  The content playback unit 560 acquires the content ID and content key from the content key decryption unit 556, acquires the content specified by the acquired content ID from the content storage unit 558, decrypts the content with the content key, and plays it back To do.

  The content receiving unit 554 receives content from the copyright management server 20a or another computer, and stores it in the content storage unit 558.

  Next, based on FIG. 17, it will be briefly described which information each processing unit involved in content reproduction uses to perform each processing.

  In the content reproduction apparatus 10, information related to content reproduction is stored in the content information storage unit 546 and the link information storage unit 548. The content information storage unit 546 includes one or more pieces of content information including a user ID 562, at least one content meta information 564, at least one content key 566, usage restriction information 568, and a content ID (not shown) as one set. A plurality are stored.

  The link information storage unit 548 stores link information as described above. Specifically, at least one device ID 570, user ID 572, association direction 574, user key 576, and at least one device key are: Each is associated and stored as link information. The association direction 574 indicates the link source and link destination included in each link information.

  The determination unit 550 uses the user ID 562 stored in the content information storage unit 546, the device ID 570, the user ID 572, and the association direction 574 stored in the link information storage unit 548 to perform the above determination process. Do.

  The key processing unit 552 performs the above-described user key decryption processing using the user key 576 and the device key 578 stored in the link information storage unit 548.

  The playback control unit 554 uses the usage restriction information 568 stored in the content information storage unit 546 to perform the above-described playback permission determination process.

  The content key decryption unit 556 uses the content key 566 stored in the content information storage unit 546 and the user key 576 stored in the link information storage unit 548 to perform the above-described content key decryption process. Do.

  The functional configuration of the content reproduction device 10 has been described above. The content playback apparatus 10 may be configured with all the functions described above provided in one computer, but each function is distributed to a plurality of computers and functions as a single content playback apparatus 10 as a whole. You may be comprised so that it may do. Next, the flow of content reproduction processing performed by the content reproduction apparatus 10 will be described with reference to FIG.

<9. Flow of content playback processing>
First, the content reproduction apparatus 10 selects content to be reproduced (S400). More specifically, in response to input processing by the user, the content selection unit 542 specifies the content ID of the content to be reproduced.

  Next, the content reproduction apparatus 10 acquires use restriction information included in the content information (S402). More specifically, the playback control unit 554 acquires usage restriction information associated with content information including the content ID specified in S400 from the content information storage unit 546.

  Next, the content playback apparatus 10 determines whether or not to permit playback of the content (S404). More specifically, the playback control unit 554 determines whether the content can be played back based on the usage restriction information acquired in S402. As a result of the determination, if reproduction is permitted, the process proceeds to S406. On the other hand, if the reproduction is not permitted, the content reproduction apparatus 10 ends the process without reproducing the content.

  Next, the content reproduction apparatus 10 compares the user ID included in the content information with the arrival point of the route (S406). More specifically, the determination unit 500 compares the user ID included in the content information specified in S402 with the user ID associated with the own device in the link information storage unit 548.

  Next, the content reproduction apparatus 10 determines whether or not to permit the decryption of the content key (S408). More specifically, when the two user IDs compared in S406 correspond, the determination unit 550 permits the decryption of the content key, and the process proceeds to S410. On the other hand, when the two user IDs do not correspond to each other, the decryption of the content key is not permitted, and the content reproduction device 10 ends the process without reproducing the content.

  Next, the content reproduction apparatus 10 decrypts the user key (S410). More specifically, the key processing unit 552 decrypts the encrypted user key stored in the link information storage unit 548 using the device key of the own device. Note that the key processing unit 552 uses the device key of the content playback apparatus 10 other than the own apparatus stored in the link information storage unit 548 as necessary for decrypting the user key.

  Next, the content reproduction apparatus 10 decrypts the content key (S412). More specifically, the content key decrypting unit 556 decrypts the encrypted content key included in the content information using the user key decrypted in S410.

  Next, the content playback apparatus 10 decrypts the content to be played back (S414). More specifically, the content reproduction unit 560 decrypts the encrypted content using the content key decrypted in S412.

  Next, the content reproduction apparatus 10 reproduces the content (S416). More specifically, the content reproduction unit 560 reproduces the content decrypted in S414. The flow of content reproduction processing performed by the content reproduction apparatus 10 has been described above.

<10. Key Information Concept>
Next, based on FIG. 20, the concept of the key ring possessed by the user device will be described. Each user device has a key bundle necessary for decrypting the content key, and decrypts the encrypted content key using the key bundle.

  FIG. 20 is a conceptual diagram of key management according to the present embodiment. As indicated by 460, the concept of a tree structure is adopted in this embodiment. That is, with the Kroot key 461 as a vertex, node keys such as a K0 key 462, a K1 key 463, a K10 key 464, a K11 key 465,. In addition, user keys inherently held by I and J, which are user devices, such as a KI key 468, a KJ key 469,. Here, it is assumed that each node key is encrypted with a node key directly below the tree structure. For example, the K1 key 463 is encrypted by the K10 key 464 or the K11 key 465.

On the other hand, the pub (or Sec) Key 471 corresponds to the Kroot key 461. That is, the content key 472 is encrypted with the Kroot key 461. In FIG. 13, the content key is encrypted with the public key of node C, but more specifically, the content key is encrypted with the Kroot key 461.
Here, for example, in order for the user equipment I to acquire the content key 472 for decrypting the content, KI key, E (KI key, K100 key), E (K100 key, K10 key), E (K10 key, K1) A key bundle composed of E key (key), E (K1 key, Kroot key), E (pub (or Sec) Key, CK) is required. The key ring is included in the content body.

  In this way, the user devices owned by the user can acquire the Kroot key 461 and decrypt the content key 472 using the key ring possessed by each user device. As described above, in this embodiment, it is possible to share copyright-protected content between user-owned devices by the link method.

  The copyright management method adopted in the content providing system 500 has been described above. Next, the overall configuration of the content providing system 500 will be described with reference to FIG.

<11. Overall configuration of content providing system>
As shown in FIG. 21, the content providing system 500 includes a content providing server 602, a communication network 604, a mobile phone 606, a mobile phone network 608, a mobile phone management server 610, a user device (PC) 612, a store server 614, and the like. Is done.

  The content providing server 602 is a computer that provides content to the mobile phone 606 and the user device 612. The content providing server 602 can provide encrypted content, a content key for decrypting the content, and the like. The content providing server 602 also has the functions of the copyright management server 20a described above, and can generate and issue link information.

  The mobile phone management server 610 is a computer that manages communication of the mobile phone 606 and information unique to the mobile phone. The mobile phone management server 610 is connected to a mobile phone via a mobile phone network, and performs authentication, billing, etc. of the user of the mobile phone 606 based on information transmitted from the mobile phone. When the mobile phone 606 is authenticated or charged, secret information unique to the mobile phone is transmitted from the mobile phone 606, and authentication or billing is performed based on the user's personal information associated with the secret information. Is called. As described above, this secret information is information that cannot be acquired by a server other than the mobile phone management server, and is information that cannot be leaked to other than the mobile phone network.

  Further, information other than secret information can be transmitted / received to / from other servers via the communication network 604. For example, by storing the secret information and the terminal identification information for identifying the terminal of the mobile phone in association with each other in the mobile phone management server 610, the server other than the mobile phone management server that cannot transmit / receive the secret information can be used. Thus, the mobile phone can be authenticated using the terminal identification information of the mobile phone.

  The mobile phone 606 communicates via the mobile phone network 608 and purchases content from the mobile phone Web site or accesses the PC Web site via the communication network 604 to purchase content. Mobile communication equipment that can. When accessing a mobile phone dedicated Web site and performing processing such as content purchase, the above-described secret information unique to the mobile phone is transmitted to the mobile phone management server 610. As a result, the mobile phone management server 610 authenticates and charges the mobile phone, and the mobile phone management server 610 provides the content to the mobile phone 608. It is also possible to purchase contents by connecting to a PC website via the communication network 604. In that case, the content purchased from the content providing server 602 via the communication network 604 is provided to the mobile phone 606.

  The communication network 604 is a communication line network that connects the content providing server 602, the mobile phone 606, the mobile phone management server 610, and the like so that they can communicate with each other. The communication network 604 includes, for example, a public line network such as the Internet or a satellite communication network, or a dedicated line network such as WAN, LAN, or IP-VPN, and may be wired or wireless.

  The mobile phone network 608 is a communication network that connects the mobile phone 606 and the mobile phone management server 610, and transmits and receives information such as secret information unique to the mobile phone described above.

  A user device (PC) 612 is an information processing apparatus owned by a user who uses the mobile phone 606, and can receive content by connecting to a content providing server via the communication network 604. The store server 614 is a computer that can be accessed first to perform user authentication or the like when a user purchases a product such as content. The store server 614 and the content providing server 602 may be separate servers or may be configured as one server.

  The overall configuration of the content providing system 500 has been described above. Next, functional configurations of the content providing server 602 and the mobile phone management server 610 will be described with reference to FIG.

<12. Functional configuration of content providing server and mobile phone management server>
FIG. 22 is a block diagram illustrating functional configurations of the content providing server 602 and the mobile phone management server 610. The content providing server 602 includes a content information acquisition process activation file transmission unit 622, a process information storage unit 624, a terminal information storage unit 626, a terminal identification information acquisition unit 628, a content information acquisition request reception unit 630, a content key storage unit 632, and a user. Information storage unit 634, content information acquisition process activation file generation unit 636, process identification information issue unit 638, user identification information acquisition unit 640, user identification information determination unit 642, content key encryption unit 644, content purchase information reception unit 646 A mobile phone identification information reception unit 648, a payment information transmission unit 650, a payment processing management notification reception unit 652, a content information transmission unit 654, and the like are provided.

  Since the content key storage unit 632 and the user information storage unit 634 have substantially the same functions as those of the copyright management server 20a described above, description thereof is omitted. Further, a registration unit 306 and a link issuing unit 308 provided in the copyright management server 20a may be provided. The registration unit 306 and the link issuing unit 308 store the user identification information in the user information storage unit 634 in advance and the user key unique to the user, and the terminal information storage unit 626 stores the terminal identification information and user identification information of the mobile phone 606. Associated and stored.

  This user identification information is user identification information necessary for accessing a PC website. Normally, in order for a user to connect to a PC website from a mobile phone 606 via a communication network, it is necessary to input this user identification information and the like. In the present embodiment, the mobile phone terminal identification information and the user identification information for connecting to the PC website are stored in association with each other, so that the user can connect to the PC website from the mobile phone. It is possible to connect to a PC website without inputting identification information or the like.

  Further, when the user device 612 and the mobile phone 606 are associated by the above-described link method, the terminal identification information of the mobile phone 606 and the above-described user identification information are stored in association with each other.

  The content purchase information receiving unit 646 is a communication interface configured by, for example, a communication line, a communication circuit, a communication device, and the like. When content purchase processing is executed by the mobile phone 606, the content purchase information receiving unit 646 The content identification information of the purchased content transmitted via the server 614 is received. Before the mobile phone 606 performs content purchase processing, when the mobile phone 606 is connected to the server via the communication network, a session ID is issued, and the mobile phone 606 acquires the session ID. The content purchase information receiving unit 646 may receive the session ID together with the content identification information.

  The mobile phone identification information receiving unit 648 is a communication interface configured with, for example, a communication line, a communication circuit, a communication device, and the like, and receives mobile phone identification information from the mobile phone management server 610. When the content purchase processing is executed by the mobile phone 606, secret information unique to the mobile phone is transmitted to the mobile phone management server 610 for authentication of the mobile phone 606. Since the mobile phone management server 610 stores the secret information unique to the mobile phone and the terminal identification information of the mobile phone in association with each other, the mobile phone identification information receiving unit 648 provided in the content providing server 602 includes the terminal identification information of the mobile phone 606. Can be sent to. At this time, the session ID described above may be transmitted together with the mobile phone identification information.

  The process identification information issuing unit 638 issues process identification information for each purchase process in response to reception of the content identification information from the content purchase information receiving unit 646. Then, the issued processing identification information, the content identification information provided from the content purchase information receiving unit 646, and the mobile phone identification information received by the mobile phone identification information receiving unit 648 are associated with each other in the processing information storage unit 624. Remember. The content identification information received by the content purchase information receiving unit 646 and the terminal identification information of the mobile phone received by the mobile phone identification information receiving unit 648 can be associated by the session ID described above. The issued process identification information is provided to the content information acquisition process activation file generation unit 636.

  As described above, the processing information storage unit 648 stores the processing identification information, the content identification information, and the mobile phone identification information in association with each other. When the content purchase information receiving unit 646 receives content information such as the price of content together with the content identification information, the content purchase information may be stored in association with each other. As shown in FIG. 24, in the processing information storage unit 624, a processing ID 701, a device ID 702 that is terminal identification information of a mobile phone, a content ID 703 that is content identification information, a content price 704, and the like are stored in association with each other. it can. The processing information storage unit 648 may store not only purchase processing information received from the mobile phone 606 but also purchase processing information transmitted from the user device 612. In that case, the device ID 702 becomes terminal identification information of the user device 612.

  The content information acquisition process activation file generation unit 636 generates a content information acquisition process activation file including the process identification information provided by the process identification information issue unit 638. The content information acquisition process activation file is a file that causes the mobile phone 606 to activate an information transmission process for acquiring content information. In order for the mobile phone 606 to acquire content information, it is necessary to receive information for encrypting the content key from the mobile phone 606, and the mobile phone 606 that has received the content information acquisition process activation file receives the content information acquisition. Send necessary information to

  The content information acquisition process activation file transmission unit 622 is a communication interface configured by, for example, a communication line, a communication circuit, a communication device, and the like, and the content information acquisition process activation file provided by the content information acquisition process activation file generator 636 is provided. Is transmitted to the mobile phone 606.

  The content information acquisition request receiving unit 630 receives the user identification information and the process identification information from the mobile phone 606 that has received the content information acquisition process activation file, thereby receiving the content information acquisition request. The process identification information received by the content information acquisition request reception unit 630 is provided to the terminal identification information acquisition unit 628, and the user identification information is provided to the user identification information determination unit 642.

  The terminal identification information acquisition unit 628 acquires terminal identification information associated with the processing identification information received by the content information acquisition request reception unit, and provides the terminal identification information acquisition unit 640 with the terminal identification information. The user identification information acquisition unit 640 acquires user identification information associated with the user terminal identification information provided to the terminal identification information acquisition unit 628 and provides the user identification information determination unit 642 with the user identification information.

  The user identification information determination unit 642 determines whether the user identification information provided from the content information acquisition request reception unit 630 corresponds to the user identification information provided from the user identification information acquisition unit 640. “Two user identification information corresponds” means that the other user identification information can be derived from one user identification information by a predetermined rule, and includes a case where the two user identification information match. The user identification information determination unit 642 determines whether or not the user identification information associated with the terminal identification information acquired via the mobile phone management server 610 matches the user identification information transmitted by the mobile phone 606. be able to.

  The user identification information can be acquired from the terminal identification information of the mobile phone transmitted from the mobile phone management server 610. The mobile phone 606 acquires the content information acquisition process activation file and is necessary for acquiring the content information. Information stored in the own device can be transmitted. Therefore, the content providing server 602 can acquire the user identification information without any user input.

  The user identification information determination unit 642 determines that the user who uses the mobile phone that has executed the content purchase processing matches the user who transmitted the content information acquisition request. It is transmitted to the content key encryption unit 644. Further, the result determined by the user identification information determination unit 642 is transmitted to the payment information transmission unit 650.

  When the user identification information determination unit determines that the users match as a result of the determination by the user identification information determination unit, the payment information transmission unit 650 receives the processing identification information, the terminal identification information of the mobile phone 606 associated with the processing information identification information, and the content The purchase information is transmitted to the mobile phone management server 610.

  The payment processing completion notification receiving unit 652 receives the payment processing completion notification performed in the mobile phone management server 610. The payment processing completion notification receiving unit 652 that has received the payment processing completion notification notifies the content key encryption unit 644 that the payment processing for content purchase has been completed. The payment processing completion notification receiving unit 652 provides the processing identification information to the content key encryption unit 644 along with the payment completion notification.

  The content key encryption unit 644 acquires content identification information associated with the processing identification information from the processing information storage unit 624 and acquires a content key associated with the content identification information from the content key storage unit 632. Then, the user key associated with the user identification information is acquired from the user information storage unit 634, the content key is encrypted with the user key, and provided to the content information transmission unit 654.

  The content information transmission unit 654 transmits content information including the encrypted content key provided by the content key encryption unit 644 to the mobile phone 606. The functional configuration of the content providing server 602 has been described above.

  The mobile phone management server 610 includes a mobile phone secret information reception unit 656, a mobile phone identification information transmission unit 658, a payment information reception unit 660, a payment processing completion notification transmission unit 662, a mobile phone identification information storage unit 664, A content settlement processing unit 666 and the like are provided.

  The mobile phone secret information receiving unit 656 receives secret information unique to the mobile phone from the mobile phone 606 via the mobile phone network. The mobile phone identification information storage unit 664 stores secret information unique to the mobile phone and terminal identification information of the mobile phone 606 in association with each other. The terminal identification information is identification information given to each device owned by the user, and is in agreement with the above-described device ID.

  The cellular phone identification information transmission unit 658 transmits the terminal identification information of the cellular phone 606 associated with the secret information unique to the cellular phone transmitted from the cellular phone 606 to the content providing server 602. The payment information receiving unit 660 receives the payment information described above from the content providing server 602 and provides it to the content payment processing unit 666.

  The content settlement processing unit 666 performs content settlement processing according to the settlement information provided by the settlement information receiving unit 660. In the mobile phone management server 610, it is possible to perform settlement processing such as mobile phone call charges using secret information unique to the mobile phone. Therefore, the settlement of the content purchased by the mobile phone 606 via the content providing server 602 can be settled by the same method as the settlement processing for the mobile phone call charges and the like.

  The payment processing completion notification transmission unit 662 transmits the result of the payment processing executed by the content payment processing unit 666 to the content providing server 602. When the above-mentioned process identification information is received by the settlement information receiving unit 660, the process identification information may be transmitted together with the settlement process completion notification.

  The functional configuration of the mobile phone management server 610 has been described above. By configuring the content providing server 602 and the mobile phone management server 610 as described above, it is possible to provide content to users registered in the content providing server 602 in advance. When a user who uses the mobile phone 606 connects to a PC website provided with the content providing server 602 and purchases the content, the user does not input the user identification information or password, Can be provided.

<13. Functional configuration of mobile phone>
Next, the functional configuration of the mobile phone 606 will be described with reference to FIG. FIG. 23 is a block diagram showing a functional configuration of the mobile phone 606. The mobile phone 606 includes a link information reception unit 670, a content purchase information transmission unit 672, a mobile phone secret information transmission unit 674, a content information acquisition process activation file reception unit 676, a content information acquisition request unit 678, and content information. A request unit 680, a content information acquisition process activation unit 682, a determination unit 684, a link information storage unit 686, a key processing unit 688, a content key decryption unit 690, and the like are provided.

  The link information receiving unit 670, the content information receiving unit 680, the determining unit 684, the link information storage unit 686, the key processing unit 688, and the content key decrypting unit 690 are substantially the same as those of the above-described user device 10. The description is omitted because it has a function.

  The content purchase information transmission unit 672 transmits content purchase information including the content identification information of the content to be purchased, the price of the content, and the like to the content providing server 602. Also, secret information unique to the mobile phone is transmitted to the mobile phone management server 610.

  The content information acquisition process activation file receiving unit 676 receives the content information acquisition process activation file transmitted from the content providing server 602 and provides it to the content information acquisition process activation unit 682. As described above, the content information acquisition process activation file is a file that includes process identification information and activates an information transmission process for acquiring content information.

  The content information acquisition process starting unit 682 provides information necessary for acquiring content information such as user identification information and process identification information to the content information acquisition requesting unit 678 according to the information included in the content information acquisition process starting file. To do. For example, when the user identification information of the user is necessary for content information acquisition, the user identification information associated with the terminal identification information stored in the link information storage unit 686 is acquired. Further, if terminal identification information is necessary for content information acquisition, the terminal identification information of its own apparatus may be provided to the content information request unit 678.

  The content information request unit 678 provides the content providing server 610 with the processing identification information provided by the content information acquisition processing activation unit 682 and information necessary for content information acquisition such as user identification information. When the user identification information is transmitted to the content providing server together with the processing identification information by the content information acquisition request unit 678, the content key for decrypting the content is encrypted with the user key stored in advance in the content providing server 602. , Transmitted to the mobile phone 606. When the content identification acquisition request unit 678 transmits the terminal identification information together with the processing identification information to the content providing server, the content key for decrypting the content is encrypted with the device key stored in the content providing server 602 in advance. Then, it is transmitted to the mobile phone 606.

  Content information including the content key encrypted as described above by the content providing server 602 is transmitted to the content information receiving unit 680. Then, the determination unit 684 determines whether to permit the content key decryption unit to decrypt the content key based on the user ID included in the content information and the user ID associated with the own device in the link information storage unit 686. Determine whether.

  A specific example of processing performed by the determination unit 684 will be described with reference to FIG. Here, the user identification information is also referred to as a user ID. First, the determination unit 684 checks whether the user ID included in the acquired content information is stored in the link information storage unit 686. If it is stored, the determination unit 684 checks the link information storage unit 686 based on the link information to determine whether a route starting from the own device and having the user ID as a destination is generated. That is, first, the determination unit 684 searches the link information storage unit 686 for link information (for example, link A) in which the user ID included in the content information is set as the link destination (S560).

  If there is corresponding link information (S562), it is determined whether the identification information set in the link source of link A is the device ID of the own apparatus (S564). When the link source of the link A is the device ID of the own device, it is determined that a route starting from the own device and having the user ID as the destination is generated, and the content key decrypting unit 690 determines the content key. Decryption processing is permitted (S568).

  If the link source of link A is not the device ID of the own device in step S564, the determination unit 684 determines other link information (for example, link information) in which the identification information of the link source of link A is set as the link destination. B) is searched (S566). When there is no corresponding link information, the determination unit 684 determines that a route starting from the own device and having the user ID as a destination is not generated, and the content key decryption unit 690 performs content key decryption processing. Not permitted (S570). On the other hand, if there is corresponding link information in step S566, it is determined whether the identification information set as the link source of link B is the device ID of the own apparatus (S564).

  If the link information is traced by repeating the above processing and the link information in which the device ID of the own apparatus is set as the link source is stored in the link information storage unit 686, the determination unit 684 determines the content by the content key decryption unit 690. Allows key decryption.

  The functional configuration of the mobile phone 606 has been described above. Next, information transmitted / received among the content providing server 602, the mobile phone 606, and the mobile phone management server 610 will be described in detail with reference to FIG.

<14. Information sent and received in the content providing system>
FIG. 25 is an explanatory diagram showing information transmitted and received in the content providing system. The user ID described in FIG. 25 is the above-described user identification information, the device ID is terminal identification information, and the process ID is process identification information. As shown in FIG. 25, the link is stored in the link information storage unit 686 in the mobile phone 606 in advance. Also, in the content providing server 602, a device ID and a user ID are stored in advance in the terminal information storage unit 626, and a user ID and a user key are stored in the user information storage unit 634 in association with each other. . The content key storage unit 632 stores a content ID and a content key in association with each other. In the mobile phone management server 610, mobile phone secret information and a device ID are stored in advance in the mobile phone identification information storage unit.

  When the content purchase processing is executed by the mobile phone 606, first, the mobile phone secret information 708 is transmitted to the mobile phone management server 601 and the content purchase information 710 is transmitted to the content providing server 602. The mobile phone management server 610 that has received the mobile phone secret information 708 acquires the device ID associated with the received mobile phone secret information from the mobile phone identification information storage unit 660. The device ID 718 acquired by the mobile phone management server 610 is transmitted to the content providing server 602. The content providing server 602 that has acquired the content purchase information 710 and the device ID 718 issues a process ID, and stores the process ID, the device ID, and the content purchase information in association with each other in the process information storage unit 624.

  Then, the content providing server 602 transmits a content information acquisition process activation file 712 including a process ID and the like to the mobile phone 606. The mobile phone 606 that has received the content information acquisition process activation file 712 transmits a content information acquisition request 714 including a process ID and a user ID to the content providing server 602. The content providing server 602 that has received the content information acquisition request 714 transmits settlement information 720 including the processing ID, device ID, and content purchase information to the mobile phone management server 610.

  The mobile phone management server 610 that has received the payment information 720 performs payment related to the content purchase according to the payment information 720 and transmits a payment completion notification 722 to the content providing server 602. The content providing server 602 that has received the payment completion notification 722 acquires the content ID included in the content purchase information associated with the processing ID from the processing information storage unit 624 and stores the content key associated with the content ID in the content key storage. Get from the department. The acquired content key is encrypted with the user key, and the content information 716 including the encrypted content key is transmitted to the mobile phone 606.

  The information transmitted and received in the content providing system 500 has been described above. Next, a method of associating information stored in the content providing server, the mobile phone management server, and the mobile phone will be described.

<15. Association method>
FIG. 26 is a timing chart for explaining a method of associating a mobile phone device ID with mobile phone secret information. The mobile phone 606 transmits the device ID, the mobile phone device ID stored in the mobile phone management server 610, and the secret information unique to the mobile phone to the mobile phone management server 610 (S500). The mobile phone management server 610 that has received the device ID of the mobile phone and the secret information unique to the mobile phone stores the device ID and the secret information in the mobile phone identification information storage unit 660 in association with each other (S502). In step S502, the mobile phone management server 610 notifies the mobile phone 606 that the association between the device ID and the secret information has been completed (S504). The method for associating the mobile phone device ID with the mobile phone secret information has been described above.

  FIG. 27 is a timing chart for explaining a method of associating a mobile phone with a user. The mobile phone 606 transmits its own device ID and user ID to the content providing server 602 (S510). The content providing server 602 generates a link that associates the device with the user (S510). The link generated in step S510 includes the mobile phone device ID, the user ID of the user, and the association direction.

  The content providing server 602 stores the link information generated in step S512 (S514). In the present embodiment, the link information may be stored in the terminal information storage unit 626. The link information may include key information obtained by encrypting the user key of the user with the public key of the mobile phone. Then, the content providing server 602 issues link information including the direction of association with the device ID of the mobile phone and the user ID of the user (S516), and transmits it to the mobile phone 606 (S518).

  The content key encrypted with the user key stored in the content providing server 602 by the content providing server 602 can be decrypted with the user key included in the link information stored in the mobile phone 606. As a result, even if content information including a content key is transmitted to a mobile phone other than the user who purchased the content, the content key cannot be decrypted by the mobile phone, and the copyright of the content can be protected. The method for associating the mobile phone with the user has been described above.

  FIG. 28 is a timing chart for explaining the update of link information stored in the mobile phone 606. The stored mobile phone 606 that has received the link information from the content providing server 602 updates the link information at a predetermined cycle or as necessary. For example, when the user key information stored in the content providing server is leaked and may be used illegally, the stored user key information needs to be updated.

  The user key mobile phone 606 transmits the device ID to the content providing server 602 (S520). The content providing server 602 searches the stored link information based on the device ID transmitted in step S520. The link information transmitted to the mobile phone 606 is updated (S524), and the updated link information is transmitted to the mobile phone 606 (S606).

  The link information may be updated every time the mobile phone 606 purchases the content, or the link information may be transmitted from the content providing server 602 when the link information is updated. .

  Next, a content providing method in the content providing system 500 will be described with reference to FIG.

<16. Content providing method in content providing system>
First, the mobile phone 606 connects to the store server via the communication network 604 and starts a session (S528). The store server 614 issues a session ID and transmits it to the mobile phone 606 (S529). The mobile phone 606 executes content purchase processing via a PC website provided by the store server 614. When the content purchase process is executed, content purchase information such as content identification information is transmitted to the store server 614 (S530). The store server 614 that has received the content purchase information in step S530 provides the content purchase information to the content information management server 602 (S532). Further, when the content purchase process is executed by the mobile phone, secret information unique to the mobile phone is transmitted to the mobile phone management server 606.

  The mobile phone management server 606 that has received the mobile phone-specific secret information in step S534 searches the mobile phone terminal identification information associated with the mobile phone secret information (S536). The terminal identification information searched in step S536 is transmitted to the content providing server 602. The content providing server that acquired the content purchase information in step S532 issues a process ID (S540), and stores the content purchase information and the terminal identification information in association with the issued process ID. In step S532, the session ID is transmitted together with the content purchase information, and in step S538, the session ID is transmitted together with the terminal identification information. The content providing server 602 can associate the content purchase information with the terminal identification information by the session ID.

  The content providing server 602 generates a content information acquisition process activation file after issuing the process ID in step S540 (S542). The content information acquisition process activation file generated in step S542 is transmitted to the store server 614 (S544). The store server 614 transmits the received content information acquisition process activation file to the mobile phone 606 (S546).

  As described above, the content information acquisition process activation file includes the process ID issued in step S540, and is a file that allows the mobile phone 606 to activate an information transmission process for acquiring content information. . The mobile phone 606 that has received this file transmits the user ID and the process ID to the content providing server according to the information in the content information acquisition process activation file (S548).

  The content providing server 602 determines whether or not the user ID acquired in step S548 corresponds to the user ID associated with the terminal identification information acquired in step S538 (S549). If it is determined in step S549 that the user ID corresponds, terminal identification information and content purchase information associated with the process ID transmitted in step S548 are searched (S550).

  The terminal identification information and content purchase information searched in step S550 are transmitted to the mobile phone management server 606 (S552). The mobile phone management server 606 searches for secret information unique to the mobile phone associated with the terminal identification information in step S552 (S554). Then, content settlement processing is executed using the secret information searched in step S554 (S556). In step S556, a payment process is executed, and if completed, a payment completion notice is transmitted (S558). In step S558, the content providing server 602 that has received the payment completion notification encrypts the content key for encrypting the content purchased in the mobile phone 606 with the user key, and generates content information including the content key (S560). . The content information generated in step S560 is transmitted to the mobile phone 606 (S562). The content providing method in the content providing system has been described above.

  According to the content providing system 500 according to the present embodiment, when purchasing content by connecting to a PC website using a mobile phone, content purchase processing is performed without entering a user ID or password. , It is possible to receive content. In addition, even if the content is purchased from the Web service for PC, it is possible to charge the purchased content by the same payment method as the payment information of the mobile phone, and the convenience for the user can be increased. In addition, a content key for encrypting content to be provided to a mobile phone is encrypted with a user key, and the user key is provided to a mobile phone capable of decryption. As a result, even if the content key leaks to a third party, the third party cannot decrypt the content key, and it is possible to protect the copyright of the content.

  As mentioned above, although preferred embodiment of this invention was described referring an accompanying drawing, it cannot be overemphasized that this invention is not limited to the example which concerns. It will be apparent to those skilled in the art that various changes and modifications can be made within the scope of the claims, and these are naturally within the technical scope of the present invention. Understood.

  The present invention relates to a content purchase system, and in particular, can be applied to a content purchase system in which content can be purchased using a service for a PC using a mobile phone using secret information unique to the mobile phone.

It is explanatory drawing which shows the outline | summary of the link system of a content provision system for demonstrating the copyright management of the link system employ | adopted in this embodiment. It is a whole block diagram of the content provision system in the embodiment. It is a block diagram which shows roughly the hardware structural example of PC in the embodiment. It is a block diagram which shows roughly the hardware structural example of PD in the same embodiment. It is a function block diagram of the copyright management server in the embodiment. It is explanatory drawing which shows the memory content of the user information storage part in the embodiment. It is a timing chart which shows the registration process of PC in the embodiment. 4 is a timing chart showing a PD registration process in the embodiment. It is a timing chart which shows the registration process of the user in the embodiment. It is a timing chart which shows the link process in the embodiment. It is explanatory drawing which shows the content of the link information in the embodiment. It is a timing chart which shows the link process in the embodiment. It is explanatory drawing which shows the key information contained in the link in the embodiment. It is a timing chart which shows the license issuing process in the embodiment. It is explanatory drawing which shows the content of the license information in the embodiment. It is a block diagram which shows the function structure of the content reproduction apparatus in the embodiment. FIG. 2 is a block diagram showing a detailed functional configuration of a content reproduction device in the same embodiment. It is a flowchart which shows the content key composite permission determination processing by the content reproduction apparatus in the embodiment. It is a flowchart which shows the content reproduction process by the content reproduction apparatus in the embodiment. It is explanatory drawing which shows the conceptual diagram of the key information in the embodiment. It is a block diagram which shows the whole structure of the content provision system concerning embodiment of this invention. It is a block diagram which shows the function structure of the content provision server and mobile telephone management server in the embodiment. It is a block diagram which shows the function structure of the mobile telephone in the embodiment. It is explanatory drawing which shows the memory content of the process identification information storage part in the embodiment. It is explanatory drawing which shows the information transmitted / received in the content provision system in the embodiment. 4 is a timing chart for explaining a method of associating a mobile phone device ID and secret information in the embodiment. 6 is a timing chart illustrating a method of associating a mobile phone with a user in the embodiment. 6 is a timing chart for explaining the update of link information stored in the mobile phone in the embodiment. It is a timing chart explaining the content provision method in the content provision system in the embodiment. It is a flowchart explaining the method to decode the content key in the embodiment.

Explanation of symbols

602 Content providing server 604 Communication network 606 Mobile phone 608 Mobile phone network 610 Mobile phone management server 622 Content information acquisition process activation file transmission unit 624 Processing information storage unit 626 Terminal information storage unit 628 Terminal identification information acquisition unit 630 Acceptance of content information acquisition request Unit 632 Content key storage unit 634 User information storage unit 636 Content information acquisition process activation file generation unit 638 Process identification information issue unit 640 User identification information acquisition unit 642 User identification information determination unit 644 Content key encryption unit 646 Content purchase information reception unit 648 Mobile phone identification information receiving unit 654 Content information transmitting unit

Claims (11)

A content providing server that is connected to a mobile phone that executes content purchase processing via a communication network with a mobile phone management server, and that provides content to pre-registered users:
A user information storage unit for storing the user identification information of the user in association with a user key unique to the user;
A terminal information storage unit that stores the terminal identification information of the mobile phone and the user identification information in association with each other;
A content key storage unit for storing the content identification information and a content key unique to each content in association with each other;
A content purchase information receiving unit that receives content purchase information including at least content identification information of the content from the mobile phone that has executed the content purchase processing;
A mobile phone identification information receiving unit that receives terminal identification information associated with secret information unique to the mobile phone that has executed the content purchase processing from the mobile phone management server;
A user identification information acquisition unit that acquires, from the terminal information storage unit, user identification information associated with the terminal identification information of the mobile phone received by the mobile phone identification information receiving unit;
The content key associated with the content identification information received by the content purchase information receiving unit is acquired from the content key storage unit, and the user key associated with the user identification information acquired by the user identification information acquisition unit is A content key encryption unit that is acquired from a user information storage unit and encrypts the acquired content key with the acquired user key;
A content information transmission unit that transmits content information including the content key encrypted with the user key to the mobile phone that has executed the content purchase processing;
A content providing server comprising: A process identification information issuing unit that issues process identification information for each content purchase process executed from the mobile phone;
A processing information storage unit that stores the processing identification information, the terminal identification information of the mobile phone, and the content purchase information in association with each other;
A content information acquisition process activation file generation unit for generating a content information acquisition process activation file including at least the process identification information for activating the content information acquisition process;
A content information acquisition process activation file transmission unit for transmitting the content information acquisition process activation file to the mobile phone;
The content providing server according to claim 1 , further comprising: A content information acquisition request that receives user identification information and the processing identification information included in the content information acquisition process activation file from a mobile phone that has received the content information acquisition process activation file and accepts a content information acquisition request With the receptionist;
A terminal identification information acquisition unit that acquires terminal identification information of the mobile phone associated with the processing identification information from the processing information storage unit;
The user identification information acquisition unit
The content providing server according to claim 1 , wherein the user identification information associated with the terminal identification information of the mobile phone is acquired from the user information storage unit. When the user identification information received by the content information acquisition request reception unit corresponds to the user identification information acquired by the user identification information acquisition unit,
The content key encryption unit
The content key associated with the content identification information is acquired from the content key storage unit, the user key associated with the user identification information is acquired from the user information storage unit, and the acquired content key is acquired. Encrypt with user key,
The content information transmission unit
The content providing server according to claim 1 , wherein content information including a content key encrypted with the user key is transmitted to the mobile phone that has transmitted the content information acquisition request. When the user identification information received by the content information acquisition request reception unit corresponds to the user identification information acquired by the user identification information acquisition unit,
A payment information transmitting unit that transmits terminal identification information of the mobile phone and the content purchase information associated with the processing identification information to the mobile phone management server;
The mobile phone management server acquires secret information specific to the mobile phone associated with the mobile phone identification information, and uses the secret information to perform content payment processing according to the content purchase information Part and;
The content providing server according to claim 1 , wherein the content payment processing unit transmits a payment processing completion notification to the content providing server when the payment processing is completed. The content information transmission unit
When the payment processing completion notification is received by the content payment processing unit provided in the mobile phone management server,
Wherein the content information including the content key encrypted with the user key, and transmits to the mobile phone that corresponds to the mobile telephone identification information of mobile phone terminal identification information received by the receiving unit, to claim 1 The content providing server described. A mobile phone connected to a content providing server in which a user is registered in advance via a communication network, connected to a mobile phone management server via a telephone line network, and executing a content purchase process:
A content purchase information transmitting unit that transmits content purchase information including content identification information of the content to be purchased to the content providing server;
A mobile phone secret information transmitting unit that transmits secret information specific to the mobile phone associated with the terminal identification information of the mobile phone by the mobile phone management server;
A content information receiving unit for receiving content information including the encrypted content key;
A content key decrypting unit for decrypting the encrypted content key;
A mobile phone characterized by comprising: A link information storage unit that stores the identification information of the mobile phone and the identification information of the user in association with each other;
The content providing server issues process identification information for each content purchase process executed from the mobile phone,
A content information acquisition process start file receiving unit for receiving a content information acquisition process start file including at least the process identification information for starting a content information acquisition process from the content providing server;
Content information acquisition request for requesting content information acquisition by transmitting the process identification information and the user identification information associated with the identification information of the mobile phone in response to reception of the content information acquisition process activation file Part;
The mobile phone according to claim 7 , comprising: A link information storage unit for storing the identification information of the mobile phone and the identification information of the user in association with each other;
The content key decryption unit is encrypted when the user identification information stored in the link information storage unit corresponds to the user identification information registered in advance in the content providing server. The mobile phone according to claim 7 , wherein the content key is successfully decrypted. The link information storage unit stores an encrypted user key unique to a user who uses the mobile phone,
A key processing unit for decrypting the encrypted user key using a device key unique to the device;
The content key decrypting unit decrypts the encrypted content key with the user key decrypted by the key processing unit;
The mobile phone according to claim 9 , wherein: The link information storage unit stores at least one piece of link information acquired from the content providing server, and a start point is identified by the identification information according to the stored link information, and a destination point is the identification information A path that is a user identified by the information is generated, thereby associating the identification information of the own device with the identification information of the user who uses the own device;
The link information includes a pair of identification information, one of which is a link source and the other of which is a link destination. The identification information uniquely identifies the user in the content providing server or the content providing information. The mobile phone according to claim 9 , wherein the mobile phone is identification information for uniquely identifying the mobile phone in the server.

Images