JP4809723B2 - User authentication server, user management server, user terminal, user authentication program, user management program, and user terminal program - Google Patents

Description

  The present invention relates to a technique for performing user authentication based on information that conceals user personal information.

  When another business operator B provides a service such as content distribution to the user based on the user's personal information (user information) provided to the business operator A by the individual user, the business operator B When providing a service, it is necessary to inquire user A for each user's personal information and perform user authentication.

  However, as a user, in order to avoid unnecessary direct mail or telephone solicitation due to the marketing activities of the business operator B, the business operator B provides services without explicitly disclosing personal information. In addition, there is a demand for receiving information, and frequently putting personal information on a communication line such as the Internet is not preferable from the viewpoint of protecting personal information because it increases the chance of information leakage.

  Therefore, a system for receiving authentication from a business operator who wants to receive service provision without directly knowing the relationship between the individual user and the personal information of the individual user is described in, for example, Patent Document 1 and Patent Document 2. Has been.

  Patent Document 1 discloses information necessary for specifying a subscriber when a subscriber of a telecommunications carrier receives a service from another provider who uses the subscriber's personal information managed by the telecommunications carrier. By generating a temporary ID that can temporarily identify the subscriber, not the subscriber identification information itself such as the subscriber ID, name, and telephone number, and presenting this temporary ID to other contractors, the subscriber can A service providing system that can receive a service without being specified by another vendor is described.

  Further, in Patent Document 2, in order to request goods or services from a supplier while keeping the user's personal information secret, the user registers a credit card number in a support server managed by other than the supplier, and the support server A system for placing an order with a supplier using an identification code corresponding to a credit card number to be issued is described. Thus, the user can place an order for goods or services without directly disclosing the credit card number to the supplier.

JP-A-2005-51671 (paragraphs 0018 to 0024, paragraphs 0032 to 0034, FIGS. 1 and 8) JP 2003-296637 A (paragraph 0049 to paragraph 0053, FIG. 7)

  However, in the system disclosed in Patent Literature 1, the communication carrier converts the subscriber ID and the temporary ID presented to the other vendor until the provision of the service from the other vendor to the subscriber is completed. It is necessary to maintain a table, and other vendors need to inquire a communication carrier for a temporary ID for authentication. For this reason, when the number of subscribers who use services provided by other companies increases, the number of conversion tables to be held increases, the amount of communication between the other companies and the communication carriers increases, and the load on the communication carriers increases. There was a problem of getting bigger.

  Similarly, in the system described in Patent Document 2, the support server holds a conversion table that associates a user ID with an identification code, and the supplier needs to inquire the authentication server for the identification code for authentication. For this reason, when the number of users to be used increases, the number of conversion tables to be held increases, the amount of communication between the supplier and the support server increases, and the load on the support server increases.

  The present invention has been made in view of the above problems, and a user registers with a business operator A from a business operator B different from the business operator A who registers user information (personal information). It is an object of the present invention to provide a user authentication technique capable of receiving user authentication without disclosing user information to the business operator B when receiving user authentication based on the user information. Furthermore, it aims at providing the user authentication technique which can reduce the transmission / reception amount of the information for user authentication, when a user receives user authentication from the provider B.

The present invention was created to achieve the above object, and the user authentication server according to claim 1 is a user authentication server for performing user authentication of a user terminal connected via a network, with the user information of the user operating the user terminal in association with the user ID, and generates the first identification information by processing concealing the first information including at least a predetermined information in the user information, the Instead of the predetermined information in the first information, second information using a predetermined constant value that can be taken as the predetermined information is concealed to generate second identification information, and the first information A first identification information request sender that requests the first identification information from a user management server that transmits identification information to the user authentication server and also transmits the second identification information to the user terminal. When was the first identification information receiving unit, a first identification information storage means, and a second identification information receiving unit, and a second identification information decoding means, a configuration and an identification information verifying section.

According to such a configuration, the user authentication server requests the first identification information corresponding to the user ID from the user management server by the first identification information request transmission unit, and responds to the request by the first identification information reception unit. Correspondingly, the first identification information corresponding to the user ID transmitted from the user management server is received, and the first identification information received by the first identification information receiving means is associated with the user ID in the first identification information storage means. Remember. Further, the second identification information transmitted from the user management server to the user terminal and stored in the user terminal by the second identification information receiving means is encrypted by a secret key for encryption by the public key encryption method by the user terminal. The encrypted second identification information transmitted after being transmitted is received, and the second identification information decrypting means decrypts the encrypted second identification information received by the second identification information receiving means in a pair with the secret key. Decrypt with public key for. Whether the first identification information corresponding to the user ID stored in the first identification information storage means matches the second identification information decoded by the second identification information decoding means by the identification information verification means It verifies whether or not and performs user authentication of the user terminal.

Thereby, the user authentication server can appropriately perform user authentication without knowing the content of the predetermined information in the user information stored in the user information storage means of the user management server.
The user authentication server performs user authentication based on the first identification information transmitted from the user management server and stored, and the encrypted second identification information transmitted after being encrypted by the user terminal. Therefore, the user authentication server does not need to receive provision of information for user authentication from the user management server every time user authentication is performed.

  The user management server according to claim 2 is a user management server that manages user information of a user who operates a user terminal connected via a network, and includes a user information storage unit, an identification information generation unit, Item 1 includes a first identification information request receiving unit that receives the request for the first identification information from the user authentication server according to Item 1, and an identification information transmitting unit.

According to such a configuration, the user management server stores the user information of the user who operates the user terminal in the user information storage unit in association with the user ID, and the first identification information request reception unit stores the user information. When receiving a request for the first identification information corresponding to the user ID from the user authentication server, the identification information generating means includes at least predetermined information in the user information corresponding to the user ID stored in the user information storage means . with the first information to generate the first identification information by processing concealment, instead of the predetermined information in the first information, the second with a constant value predetermined to be taken as the predetermined information the information to generate second identification information by processing concealment, the identification information sending device, a first identification information and second identification information generated by identification information generating means, Yu respectively To send to and The authentication server and the user terminal.

As a result, the user management server does not disclose the content of the predetermined information in the user information stored in the user information storage means of the user management server to the user authentication server, and the user authentication server can perform appropriate user authentication. Can be performed.
The user authentication server performs user authentication based on the first identification information transmitted from the user management server and stored, and the encrypted second identification information transmitted after being encrypted by the user terminal. Therefore, the user management server does not need to transmit information for user authentication to the user authentication server and the user terminal every time the user authentication server performs user authentication.

The user management server according to claim 3 is the user management server according to claim 2, wherein the identification information generating means includes at least a user ID and the predetermined information in the user information corresponding to the user ID and a random value. And generating the first identification information by hashing based on the first information including a predetermined constant that can be taken as the predetermined information instead of the predetermined information in the first information and configured to generate the second identification information hashed based on the second information using the value.

  As a result, the user management server can generate the first identification information and the second identification information having high uniqueness without detecting the contents of the predetermined information in the original user information.

The user management server according to claim 4 is the user management server according to claim 2 or 3, wherein the user information stored in the user information storage unit in association with the user ID is the first information. includes authentication server identification information that identifies one or more the user authentication server as a destination that has transmitted the identification information, when changing the predetermined information by said identification information generating means, the changed as the predetermined information The first information including the predetermined information is concealed to generate the first identification information, and the changed predetermined information in the first information includes the changed predetermined information. Alternatively, the said second information using a fixed value determined in advance which can be taken as the predetermined information by processing concealing generates the second identification information by the identification information transmission means, before It transmits the second identification information to the user terminal, the first identification information, on the basis on the authentication server identification information stored in the user information storage unit, and transmits to the one or more the user authentication server The configuration.

  As a result, the user management server stores information for identifying the destination user authentication server that transmitted the first identification information in the user information storage means in association with the user ID. When there are a plurality of user authentication servers to which the user with the user ID is to be authenticated when there is a change in the predetermined user information, that is, the user management server to which the user management server has transmitted the first identification information In addition, the first identification information based on the predetermined user information after the change can be transmitted (distributed) to the user authentication servers without omission.

  The user terminal according to claim 5 is a user terminal connected to the user authentication server according to claim 1 and the user management server according to any one of claims 2 to 4 via a network. The second identification information receiving unit, the second identification information storage unit, the second identification information encryption unit, and the second identification information transmission unit are provided.

  According to this configuration, the user terminal receives the second identification information transmitted from the user management server by the second identification information receiving unit, and receives the second identification information received by the second identification information receiving unit in the second identification information storage unit. 2 The identification information and the secret key for encryption by the public key encryption method are stored. Then, when it is necessary to receive user authentication, the second identification information encryption means encrypts the second identification information stored in the second information storage means by using a secret key to obtain the encrypted second identification information. The encrypted second identification information generated by the second identification information encryption unit is transmitted to the user authentication server by the second identification information transmission unit.

As a result, the user does not disclose the content of the predetermined information in the user information stored (registered) in the user management server to the user authentication server by using the user terminal, and from the user management server to the user authentication server. Therefore, user authentication can be appropriately obtained from the user authentication server.
In addition, the user terminal stores the second identification information transmitted from the user management server, and encrypts and transmits the second identification information to the user authentication server when user authentication is required. The user authentication server is transmitted from the user terminal. The user management server performs user authentication based on the second identification information obtained by decrypting the encrypted second identification information and the first identification information transmitted from the user management server and stored therein. It is not necessary to transmit information for user authentication to the user authentication server and the user terminal every time the user authentication server performs user authentication.

The user authentication program according to claim 6 stores a computer in association with user ID of a user who operates the user terminal in order to perform user authentication of a user terminal connected via a network. The first information including at least the predetermined information in the user information is concealed to generate first identification information, and instead of the predetermined information in the first information, as the predetermined information The second information using a predetermined constant value that can be taken is concealed to generate second identification information, the first identification information is transmitted to the user authentication server, and the second identification information is A first identification information request transmitting means, a first identification information receiving means, a second identification information receiving means for requesting the first identification information to a user management server for transmitting to the user terminal; Identification information decoding means, and a function as an identification information verifying section.

According to such a configuration, the user authentication program requests the first identification information corresponding to the user ID from the user management server by the first identification information request transmission means, and this request is received by the first identification information reception means. The first identification information corresponding to the user ID transmitted from the user management server corresponding to is received and stored in association with the user ID. In addition, the second identification information receiving means receives encrypted second identification information that is encrypted and transmitted by the user terminal with the private key for encryption by the public key encryption method, and decrypts the second identification information. The means decrypts the encrypted second identification information received by the second identification information receiving means with the public key for decryption paired with the secret key. Then, the identification information verification unit, a first identification information corresponding to the user ID stored is received by the first identification information receiving unit, and a second identification information decoded by the second identification information decoding means It verifies whether it matches, and performs user authentication of the user terminal.

As a result, the user authentication program can appropriately perform user authentication without knowing the content of the predetermined information in the user information stored in the user management server.
Further, the user authentication program performs user authentication based on the first identification information transmitted from the user management server and stored, and the encrypted second identification information transmitted after being encrypted by the user terminal. Therefore, the user authentication server does not need to receive provision of information for user authentication from the user management server every time user authentication is performed.

  The user management program according to claim 7, wherein the computer manages a user information of a user who operates a user terminal connected via a network, an identification information generating unit, and a user authentication server according to claim 1. The first identification information request receiving means for receiving the request for the first identification information from, and the identification information transmitting means.

According to this configuration, when the user authentication program receives the request for the first identification information corresponding to the user ID from the user authentication server according to claim 1 by the first identification information request unit, the identification information generation unit The first information is generated by concealing first information including at least predetermined information in the user information stored in association with the user ID of the user who operates the user terminal, and the first information In place of the predetermined information, the second information using a predetermined constant value that can be taken as the predetermined information is concealed to generate second identification information, and the identification information transmitting means generates the identification information. The first identification information and the second identification information corresponding to the user ID generated by the generation unit are transmitted to the user authentication server and the user terminal, respectively.

As a result, the user management program can cause the user authentication server to perform appropriate user authentication without disclosing the content of the predetermined information in the user information stored in the user management server to the user authentication server. it can.
In addition, the user authentication server is a user based on the first identification information transmitted and stored by the user management program and the encrypted second identification information stored and encrypted in the user terminal. Since authentication is performed, the user management program does not need to transmit information for user authentication to the user authentication server and the user terminal every time the user authentication server performs user authentication.

  A user terminal program according to claim 8 is a computer connected to the user authentication server according to claim 1 and the user management server according to any one of claims 2 to 4 via a network. Are made to function as second identification information receiving means, second identification information encryption means, and second identification information transmission means.

  According to this configuration, the user terminal program receives and stores the second identification information transmitted from the user management server by the second identification information receiving unit. Then, when it is necessary to receive user authentication, the second identification information encrypted by the second identification information encrypting unit is received by the second identification information receiving unit and stored for encryption by the public key encryption method. The encrypted second identification information is generated by encrypting using the private key, and the second identification information transmitting means transmits the encrypted second identification information generated by the second identification information encryption means to the user authentication server. To do.

As a result, the user does not disclose the content of the predetermined information in the user information stored (registered) in the user management server to the user authentication server by the user terminal program, and from the user management server to the user authentication server. The user authentication can be appropriately obtained by the user authentication server without being disclosed.
The user terminal program stores the second identification information transmitted from the user management server, and encrypts and transmits the second identification information to the user authentication server when user authentication is required. The user authentication is performed by verifying the second identification information obtained by decrypting the encrypted encrypted second identification information transmitted by, and the first identification information transmitted from the user management server and stored. Therefore, the user management server does not need to send information for user authentication to the user authentication server and the user terminal every time the user authentication server performs user authentication.

According to the invention described in claim 1 or claim 2 or claims 5 to 8, from the identification information for performing user authentication used in the user authentication system, Since the contents of the predetermined information cannot be known, the user can receive user authentication without disclosing the user information to the user authentication server, and can communicate between the user management server, the user authentication server, and the user terminal. Even if the identification information transmitted / received by eavesdropping is eavesdropped, the user information itself is not leaked, and information security can be improved. Further, since the second identification information presented from the user terminal to the user authentication server is encrypted and transmitted using a public key private key, it is possible to prevent erroneous authentication when another person impersonates the user.
In addition, since the user management server does not need to transmit user information for performing user authentication to the user authentication server and the user terminal every time user authentication is performed, between the user management server and the user authentication server and The amount of communication between the user management server and the management server between the user terminals can be reduced, and an increase in the load on the user management server can be prevented.

  According to the third aspect of the present invention, the user management server generates the identification information by hashing based on the user ID, the predetermined user information, and the random number, so that the original user information is known from the identification information. Therefore, the user authentication server can appropriately perform user authentication because the identification information can be made highly unique.

  According to the invention described in claim 4, since the user management server stores the user authentication server that transmitted the identification information in association with the user ID, there is a change in the predetermined user information corresponding to the user ID. In addition, it is possible to regenerate the identification information based on the changed user information and distribute the identification information without omission even if there are a plurality of user authentication servers that require the identification information. It is possible to prevent erroneous user authentication based on old identification information.

The best mode for carrying out the invention will be described below with reference to the drawings as appropriate.
First, an embodiment of a user authentication system according to the present invention will be described with reference to FIG. Here, FIG. 1 is a block diagram showing a configuration of a content distribution system using a user authentication system according to the present invention.

(System configuration)
A content distribution system (user authentication system) 1 shown in FIG. 1 is operated by a business operator A, and uses a user information management device 10 that manages and holds user information and a user information managed by the business operator A. A content distribution management device 20 operated by an operator B that provides services such as content distribution to C (user), a user terminal (viewing terminal device) 500 operated by the viewer C in order to receive provision of the service, These are connected to each other via the Internet 6, and when a content distribution request is sent from the user terminal 500 to the content distribution management device 20, the content distribution management device 20 A system for performing content authentication to the user terminal 500 by determining whether the content can be distributed by performing user authentication It is.

The user information management apparatus 10 includes a user management server 100 that manages user information connected to each other via the intranet 2 and a program server 200 that holds and distributes content to be provided to the user terminal 500 or the content distribution management apparatus 20. And a gateway (GW) 3 for connecting the intranet 2 to the Internet 6.
Here, the intranet 2 is constructed by a LAN (Local Area Network), a WAN (Wide Area Network), or the like, and the gateway 3 is an IP router (IP: Internet Protocol), for example, and unauthorized access from the Internet 6 to the intranet 2. It has the function of a firewall that prevents

  The content distribution management device 20 includes a user authentication server 300 that performs user authentication of a user terminal 500 that requests content distribution connected to each other via the intranet 4, a distribution server 400 that distributes content to the user terminal 500, and the intranet 4. And a gateway (GW) 5 for connecting to the Internet 6. The intranet 4 and the gateway 5 are configured similarly to the above-described intranet 2 and gateway 3, respectively.

  The user terminal 500 requests the content distribution management device 20 to distribute the content according to the operation of the viewer C (user), receives and reproduces the distributed content, and the viewer C views the content. For viewing, a computer such as a PC (Personal Computer) equipped with communication means for connecting to the Internet 6, a television receiver equipped with an STB (Set Top Box), and a function for viewing content It is composed of a mobile mobile terminal such as a mobile phone or PDA (Personal Digital Assistant).

  In the content distribution system 1, a plurality of content distribution management devices 20 and a plurality of user terminals 500 may be connected to the Internet 6, and the user information management device 10, the content distribution management device 20, and the user terminals 500 are not connected. , All or a part of them may be connected via communication means other than the Internet.

Next, the configuration of each unit will be described in detail.
(User management server configuration)
First, the configuration of the user management server 100 will be described with reference to FIG. Here, FIG. 2 is a block diagram showing a configuration of the user management server.

  The user management server 100 includes a user information storage unit 101 that stores user information (database) 101a, a login request reception unit 102, a user authentication unit 103, a login notification transmission unit 104, and a user information change request reception unit 105. , First identification information request receiving means 106, user information concealing means (identification information generating means) 107, public key pair generating means 108, identification information transmitting means 109, content distribution request receiving means 110, distribution possibility From judgment means 111, content delivery command means 112, content delivery non-permission notification means 113, and communication means 120 for connecting to intranet 2 and communicating with program server 200, user authentication server 300, user terminal 500, etc. Composed.

The user information storage unit 101 stores user information (database) 101a including a user name, a user ID (id_A), a password, viewing fee information F, and the name of a company that provides identification information based on the user information, as a user ID (id_A). Are stored in association with each other. The stored user information 101a is read and referred to by the user authentication means 103, the user information concealment means 107, the identification information transmission means 109, and the distribution availability determination means 111, and the user information change request reception means 105 and the first identification information. The stored contents are updated by the request receiving means 106 .

  The login request receiving unit 102 receives a login request from the user terminal 500 and outputs the user ID (id_A) and password input at the time of reception to the user authentication unit 103.

  The user authentication unit 103 performs user authentication based on the user ID (id_A) input from the login request receiving unit 102, the password and the password stored in the user information storage unit 101, and sends the authentication result to the login notification transmission unit 104. Output to.

  Based on the authentication result input from the user authentication unit 103, the login notification transmission unit 104 transmits a notification of whether or not login is possible to the user terminal 500 with a message.

  The user information change request receiving unit 105 receives a user information change request including the viewing fee information F from the user terminal 500 and stores the received user information in the user information storage unit 101.

  The first identification information request receiving means 106 receives the first identification information request from the user authentication server 300, and identifies the user authentication server 300. For example, the business name is input to the input user ID (id_A). The information is stored in the user information storage unit 101 in association with each other.

  The user information concealment means (identification information generation means) 107 reads user information including viewing fee information F stored in association with the user ID (id_A) from the user information storage means 101, and at least the viewing fee information F. Is concealed to generate first identification information a, and concealment processing is performed using a predetermined constant value that can be taken as viewing fee information F to generate second identification information a ′. The generated first identification information a and second identification information a ′ are output to the identification information transmitting means 109.

  The public key pair generation unit 108 generates a public key pair (public key Kp and secret key Ks) by a public key encryption method used for user authentication, and the generated public key pair Kp, Ks is used as the identification information transmission unit 109. Output to.

  The identification information transmission means 109 inputs the first identification information a and the second identification information a ′ from the user information concealment means 107, and the public key pair Kp, Ks from the public key pair generation means 108, and The first identification information a and the public key Kp are transmitted to the user authentication server 300 of the operator corresponding to the first identification information, and the second identification information a ′, the secret key Ks and the corresponding operator name are transmitted to the user. It transmits to the terminal 500.

  The content distribution request receiving unit 110 receives the content distribution request from the user terminal 500 and outputs a notification that the distribution request has been received from the user with the user ID (id_A) to the distribution availability determination unit 111. In addition, the input content name is output to the content distribution command means 110.

  The distribution permission / non-permission determining unit 111 receives a notification that the content distribution request has been received from the user with the user ID (id_A) from the content distribution request receiving unit 110, and the user ID (id_A) stored in the user information storage unit 101. The viewing fee information F corresponding to is read, and it is determined whether or not the content can be distributed. Then, the determination result is output to the content distribution command unit 112 and the content distribution non-permission notification unit 113.

  The content distribution command unit 112 inputs the content name requested for distribution from the content distribution request receiving unit 110, inputs the determination result from the distribution enable / disable determining unit 111, and permits distribution to the program server 200. The content distribution command is transmitted with the user ID (id_A) and the content name.

  The content distribution non-permission notification unit 113 inputs a determination result from the distribution permission / non-permission determination unit 111 and, when content distribution is not permitted, does not notify the user terminal 500 that content distribution is not permitted. Send with permission message.

  Here, the public key encryption method is an encryption method such as RSA (acronym for developer Rivest, Shamir, Adleman) encryption or elliptic curve encryption.

  Note that the user management server 100 can also realize each unit as a function program in a computer, and can also combine the function programs to operate as a user management program.

(Configuration of program server)
Next, the configuration of the program server 200 will be described with reference to FIG. Here, FIG. 3 is a block diagram showing the configuration of the program server.

  The program server 200 includes a content storage unit 201, a content distribution command receiving unit 202, a content distribution unit 203, a content providing unit 204, and a user management server 100, a distribution server 400, a user terminal 500, etc. connected to the intranet 2. And communication means 220 for communicating with the device.

  The content storage unit 201 stores content of programs such as movies and dramas, and the stored content is read by the content distribution unit 203 and the content providing unit 204.

  The content distribution command receiving unit 202 receives the content distribution command from the user management server 100 and outputs the input distribution destination user ID (id_A) and the content name to be distributed to the content distribution unit 203.

  The content distribution unit 203 inputs the content distribution destination user ID (id_A) and the content name to be distributed from the content distribution command reception unit 202, reads the content corresponding to the content name from the content storage unit 201, and reads the user ID (id_A). ) Is transmitted (distributed) to the user terminal 500 corresponding to.

  The content providing unit 204 reads out and transmits (provides) the content stored in the content storage unit 201 to the distribution server 400 operated by the business operator B (see FIG. 1).

(User authentication server configuration)
Next, the configuration of the user authentication server 300 will be described with reference to FIG. Here, FIG. 4 is a block diagram showing the configuration of the user authentication server.

  The user authentication server 300 includes a user information storage unit (first identification information storage unit) 301 that stores user information (database) 301a, a login request reception unit 302, a user authentication unit 303, a login notification transmission unit 304, User registration request reception means 305, first identification information request transmission means 306, first identification information reception means 307, content distribution request reception means 308, second identification information request transmission means 309, and second identification information reception Means 310, second identification information decoding means 311, identification information verification means 312, content distribution command means 313, content distribution non-permission notification means 314, connected to the intranet 4, user management server 100, distribution server 400 and communication means 320 that communicates with the user terminal 500 and the like.

  The user information storage means (first identification information storage means) 301 includes a user name, a user ID (id_B) at the business B, a password, a user ID (id_A) at the business A, the first identification information a, the public key Kp, and the like. Is stored in association with the user ID (id_A) or the user ID (id_B). The stored user information is read and referred to by the user authentication means 303, the second identification information decoding means 311 and the identification information verification means 312 and stored by the user registration request receiving means 305 and the first identification information receiving means 307. Is updated.

  The login request receiving unit 302 receives a login request from the user terminal 500 and outputs the user ID (id_B) and password input at the time of reception to the user authentication unit 303.

Yuza Ninsho means 303 Yuza ID input from the login request receiving unit 302 (ID_B), based on the password stored in the password and user information storage unit 3 01 authenticates the user, login Tsuchi transmitting means of the authentication result It outputs to 304.

  Based on the authentication result input from the user authentication unit 303, the login notification transmission unit 304 transmits a login permission notification to the user terminal 500 with a message.

  The user registration request receiving unit 305 receives a user registration request for receiving a content distribution service provided by the operator A from the user terminal 500, and stores the input user ID (id_A) in the user information storage unit 301. The information is stored in association with the user ID (id_B) of the business operator B, and is output to the first identification information request transmission unit 306.

  The first identification information request transmission unit 306 adds the user ID (id_A) of the user who has requested the user registration from the user registration request reception unit 305, and sends the first identification information request transmission unit 306 to the user management server 100 for the first user ID (id_A). A request for identification information a is transmitted.

  The first identification information receiving unit 307 receives the user ID (id_A), the first identification information a, and the public key Kp transmitted from the user management server 100, and stores the first identification information a and the public key Kp as user information. The means 301 stores the user ID (id_A) in association with it.

  The content distribution request receiving unit 308 receives the content distribution request from the user terminal 500, and outputs a notification that the distribution request has been received from the user with the user ID (id_A) to the second identification information request transmitting unit 309. Also, the input content name is output to the content distribution command means 313.

  The second identification information request transmitting unit 309 receives the user ID (id_A) from the content distribution request receiving unit 308, and the user terminal 500 corresponding to the user ID (id_A) is encrypted using the secret key Ks. A request for encrypted second identification information Ks (a ′) is transmitted.

  The second identification information receiving means 310 receives the encrypted second identification information Ks (a ′) transmitted from the user terminal 500 with the user ID (id_A), and receives the received encrypted second identification information Ks (a ′). Is output to the second identification information decoding means 311.

  The second identification information decryption unit 311 receives the encrypted second identification information Ks (a ′) from the second identification information reception unit 310 and performs decryption corresponding to the user ID (id_A) from the user information storage unit 301. The public key Kp is read out, and the second identification information a ′ is decrypted from the input encrypted second identification information Ks (a ′) using the public key Kp. The decrypted second identification information a ′ is output to the identification information verification unit 312.

  The identification information verification unit 312 receives the second identification information a ′ from the second identification information decoding unit 311 and reads the first identification information a corresponding to the user ID (id_A) from the user information storage unit 301. The first identification information a and the second identification information a ′ are collated, whether or not the user with the user ID (id_A) who has transmitted the content distribution request has the right authority to receive the content distribution, and the user authentication I do. Then, the verification result is output to the content distribution command unit 313 and the content distribution non-permission notification unit 314.

  The content distribution command unit 313 inputs the name of the content requested for distribution from the content distribution request receiving unit 308, inputs the verification result from the identification information verification unit 312, and the user ID (id_A) that has transmitted the content distribution request In the case of the verification result that the user terminal 500 has a valid authority, a content distribution command is transmitted to the distribution server 400 with the user ID (id_A) and the content name.

  The content distribution non-permission notification unit 314 inputs the verification result from the identification information verification unit 312 and confirms that the user terminal 500 of the user ID (id_A) that has transmitted the content distribution request does not have a valid authority. In this case, a notification that content distribution is not permitted is transmitted to the user terminal 500 together with a disapproval message.

  Note that the user authentication server 300 can also realize each unit as a function program in a computer, and can also function as a user authentication program by combining the function programs.

(Configuration of distribution server)
Next, the configuration of the distribution server 400 will be described with reference to FIG. Here, FIG. 5 is a block diagram showing a configuration of the distribution server.

  The distribution server 400 is connected to the content storage unit 401, the content distribution command receiving unit 402, the content distribution unit 403, the content receiving unit 404, the intranet 4, and connected to the program server 200, the user authentication server 300, the user terminal 500, and the like. And communication means 420 for communicating with the user.

  The content storage unit 401 stores the content of a program such as a movie or a drama input from the content reception unit 404, and the stored content is read by the content distribution unit 403.

  The content distribution command receiving unit 402 receives the content distribution command from the user authentication server 300 and outputs the input distribution destination user ID (id_A) and the content name to be distributed to the content distribution unit 403.

  The content distribution unit 403 inputs the content distribution destination user ID (id_A) and the content name to be distributed from the content distribution command receiving unit 402, reads the content corresponding to the content name from the content storage unit 401, and reads the user ID ( It is transmitted (distributed) to the user terminal 500 corresponding to id_A).

  The content receiving unit 404 receives the content transmitted (supplied) from the program server 200 operated by the business operator A (see FIG. 1) and stores it in the content storage unit 401.

(User terminal configuration)
Next, the configuration of the user terminal 500 will be described with reference to FIG. Here, FIG. 6 is a block diagram showing the configuration of the user terminal.

  The user terminal 500 includes user information storage means (second identification information storage means) 501 for storing user information 501a, login request means 502, login notification reception means 503, user information change request transmission means 504, and user registration. Request transmission unit 505, second identification information reception unit 506, second identification information request reception unit 507, second identification information encryption unit 508, second identification information transmission unit 509, and content distribution non-permission notification reception Means 510, content distribution request transmission means 511, content reception means 512, content reproduction means 513, and communication with the user management server 100, program server 200, user authentication server 300, distribution server 400, etc. connected to the Internet 6. Communication means 520 for performing the operation.

  The user information storage unit (second identification information storage unit) 501 stores user information 501a including the second identification information a ′ and the secret key Ks in association with the name of the business operator B who receives the content distribution service. To do. The stored user information 501a is read and referenced by the second identification information encryption unit 508, and the stored content is updated by the second identification information reception unit 506.

  The login request unit 502 transmits a login request to the user management server 100 or the user authentication server 300 with the corresponding password added to the user ID (id_A) or the user ID (id_B).

  The login notification receiving unit 503 receives a login notification transmitted from the user management server 100 or the user authentication server 300. For example, the message attached to the login notification is output and displayed on the video display unit 515 or the like which will be described later on the content reproduction unit 513.

  The user information change request transmission unit 504 transmits a user information change request including at least the viewing fee information F to the user management server 100 with the user information to be changed.

  The user registration request transmission unit 505 transmits a user registration request for receiving the content distribution service to the user authentication server 300 with the user ID (id_A) of the business operator A.

The second identification information receiving unit 506 receives the operator name of the operator B, the second identification information a ′, and the secret key Ks transmitted from the user management server 100, and associates them with the operator name to store user information. Store in 501.
The secret key Ks is not different for each operator, and one secret key Ks common to each operator B may be used. Further, the second identification information a ′ may also be used in common for each business operator B.

  The second identification information request receiving unit 507 receives the second identification information request from the user authentication server 300 and outputs the requested business name to the second identification information encryption unit 508.

  The second identification information encryption unit 508 inputs the name of the operator requested from the second identification information request receiving unit 507, and the second identification information corresponding to the operator B of the operator name is input from the user information storage unit 501. The identification information a ′ and the secret key Ks are read, and the second identification information a ′ is encrypted using the secret key Ks to generate encrypted second identification information Ks (a ′). Then, the operator name and the generated encrypted second identification information Ks (a ′) are output to the second identification information transmitting means 509.

  The second identification information transmitting unit 509 receives the operator name and the encrypted second identification information Ks (a ′) from the second identification information encryption unit 508, and the user authentication server 300 corresponding to the input operator name. The second identification information Ks (a ′) is transmitted with the user ID (id_A).

  The content distribution non-permission notification receiving unit 510 receives a content distribution non-permission notification transmitted from the user management server 100 or the user authentication server 300. For example, the non-permission message attached to the content distribution non-permission notification is output and displayed on the video display unit 515 or the like which will be described later on the content reproduction unit 513.

  The content distribution request transmission unit 511 transmits a content distribution request to the user management server 100 or the user authentication server 300 with the user ID (id_A) and the content name.

  The content receiving unit 512 receives the content distributed from the program server 200 or the distribution server 400 and outputs it to the content reproduction unit 513.

The content playback unit 513 inputs content from the content reception unit 512 and plays back the input content so that the content can be viewed.
The content reproduction means 513 is a content decryption means 514 for decrypting the content that is encrypted and compressed and distributed, and the viewer C can view the decrypted content (signal information). Thus, the image display means 515 such as a cathode ray tube or a liquid crystal display for reproducing the image information and the sound reproduction means 516 such as a speaker or headphones for reproducing the audio information are configured.

  In the user terminal 500, each means can be realized as a function program in a computer, and the function programs can be combined to operate as a user terminal program.

  Next, prior to the description of the operation of the content distribution system (user authentication system) 1, an overview of the roles and functions of the operator A, the operator B, and the viewer C assumed in this embodiment will be described with reference to FIG. I will explain.

  Here, the business operator A and the viewer C (user) have signed a contract for the viewer C to view the program provided by the business operator A for a fee, and the content of this contract is, for example, viewing fee information F It is reflected in (payability data) and is registered (stored) as user information in the user management server 100 of the user information management apparatus 10 operated by the operator A (see 101a in FIG. 2). Based on this contract, when the user connects to the user information management apparatus 10 via the Internet 6 using the user terminal 500 and inputs the user ID (id_A) and password set at the time of the contract, the user management server 100 User authentication of a user connected using the user terminal 500 is performed, and content is distributed to the user terminal 500. The user can receive and view the content distributed from the business operator A to the user terminal 500.

  Further, the business operator A distributes the content to the user and provides the content to the business operator B. The business operator B provides the content distribution service for the content provided by the business operator A to the user who has signed a pay viewing contract for the content with the business operator A. At this time, the business operator B uses the user terminal 500 via the network to determine whether the user connected to the content distribution management device 20 operated by the business operator B has a valid authority to receive content distribution. After confirming whether or not the user is a legitimate viewer who has signed a paid viewing contract with the operator A, the content is distributed to the user terminal 500.

Here, the business operator B cannot explicitly know the viewing fee information F, but is generated based on the viewing fee information F for identifying whether or not the user has a legitimate authority. Identification information can be acquired. In other words, if someone else impersonates a legitimate user or the authority has expired (paid viewing contract has been cancelled), it is determined that the user does not have the proper authority and the content distribution is rejected. be able to.
Even if the identification information held by the operator B leaks to the outside, the viewing fee information F, which is the user information of the viewer C, cannot be known from this identification information, so that high information security is realized. is there.

  The above explanation is an example of a situation set to facilitate understanding of the invention, and the present invention provides predetermined information in user information used to generate identification information for performing user authentication. Is not limited to user information indicating the presence or absence of a paid viewing fee contract, and the service provided is not limited to content distribution. Also, it is not based on the premise that the business A provides the content to the business B, but the business A is, for example, a charge storage company, and the user can use his / her personal information (user information). ) Can be applied to a case where various services are received from an operator B different from the operator A without explicitly disclosing the information to the operator A.

(System operation)
Hereinafter, the operation of the content distribution system (user authentication system) 1 will be described.
(User registration process)
First, referring to FIG. 7, FIG. 10 and FIG. 2 to FIG. 6 (refer to FIG. 1 as appropriate), viewer C (user with user name C1) provides content for the first time from business operator B (business name B1). In order to receive the request, the flow of processing when performing user registration will be described. Here, FIG. 7 is a flowchart showing the flow of user registration processing performed by the viewer C to the operator B. Moreover, FIG. 10 is a figure which shows the content of the user information which a user management server, a user authentication server, and a user terminal each hold | maintain, (a) (b) (c) is user information before user registration. , (D), (e), and (f) are user information after user registration, and (g), (h), and (i) are user information after the user information is changed.
Note that the viewer C (user name C1) has already completed the registration work individually for the business operator A and the business operator B (business name B1), and each user ID (id_A and id_B). ) Has already been acquired (see FIG. 10A and FIG. 10B).
The user IDs (id_A, id_B) may be any symbols that are arbitrarily set so as not to be duplicated between users. For example, a reception contract number, a telephone number, a name, etc. Can also be used.

  The user terminal 500 transmits the user ID (id_B) and password input by the viewer C (user name C1) to the user authentication server 300 of the content distribution management device 20 by the login request unit 502 (step 100). . The user authentication server 300 receives the login request by the login request reception unit 302 (step S101), and corresponds to the password received by the user authentication unit 303 and the user ID (id_B) stored in the user information storage unit 301. The password (see FIG. 10B) is collated, and user authentication is performed to determine whether or not the user is valid (step S102).

  When the user authentication server 300 determines that the user is not a valid user as a result of the user authentication (NG in step S102), the login notification transmission unit 304 sends, for example, “login” to the user terminal 500 that has transmitted the login request. "A login is not permitted" is sent with a message indicating that the login request has been rejected (step S103). When the login notification receiving unit 503 receives a notification that the login request has been rejected (step S105), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process ends.

  When the user authentication server 300 determines that the user is a valid user as a result of the user authentication (OK in step S102), the login notification transmission unit 304 sends, for example, “ "Login is permitted. Welcome to business B." A message indicating that the login request is permitted is attached and a login permission notification is transmitted (step S104). When the login notification receiving unit 503 receives the notification that the login request is permitted (step S106), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process proceeds to a user registration request (step S107).

  The user terminal 500 uses the user registration request transmission unit 505 to attach the user ID (id_A) registered in the business operator A to the user authentication server 300 of the content distribution management apparatus 20 operated by the business operator B. Then, user registration for receiving distribution of contents based on the paid viewing contract with the operator A is requested (step S107; user registration request step). When the user authentication request is received by the user registration request receiving means 305 (step S108; user registration request receiving step), the user authentication server 300 is associated with the user ID (id_B) for which the user registration request has been made, and the business of the user. The user ID (id_A) of the person A is stored in the user information storage unit 501 (see FIG. 10E) (step S109; user information storage step). Further, the user authentication server 300 performs the first identification in order to acquire identification information for authenticating whether or not the user ID (id_A) requested to register the user has a legitimate authority to receive the content distribution. The information request transmission means 306 transmits a first identification information request with the user ID (id_A) to the user management server 100 of the user information management apparatus 10 operated by the operator A (step S110; first identification). Information request step).

  When the first identification information request is received by the first identification information request receiving means 106 (step S111; first identification information request receiving step), the user management server 100 of the user information management apparatus 10 receives the request from the business operator. Authentication server identification information for identifying the user authentication server 300 of the content distribution management device 20 of the provider, such as the provider name (B1), is associated with the user ID (id_A) in the user information storage unit 101. Store (see FIG. 10D) (step S112; authentication server identification information storage step). Then, the user information concealment means 107 indicates the viewing fee information F stored in the user information storage means 101 in association with the user ID (id_A) (based on the presence or absence of a paid viewing contract, whether or not the paid viewing fee is payable). User information (see FIG. 10D) is read out, and the user information is concealed to generate the first identification information a and the second identification information a ′ (step S113; identification information generation step).

  Note that the user information stored in the user information storage unit 101 of the user management server 100 is random with respect to the user name as shown in (a), (d), and (g) of FIG. They are arranged to improve security against theft caused by information stealing. A similar storage method may be adopted for user information stored in the user information storage device 301 of the user authentication server 300.

  In the present embodiment, as first identification information a and second identification information a ′, a hash calculated by hashing the user ID (id_A), viewing fee information F, and random number value r using an appropriate hash function. Use the value. This hash value is identification information that takes a unique value according to the value of the viewing fee information F while concealing the original viewing fee information F. As a hash function, for example, MD5 (Message Digest Algorithm 5), SHA (Secure Hash Algorithm), or the like can be used.

Here, the user information concealment means 107 provides to the viewer C having the first identification information a and the user ID (id_A) to be provided to the operator B (transmitted to the user authentication server 300) (to the user terminal 500). The second identification information a ′ to be transmitted is generated by the following procedure.
If the hash function is H, the first identification information a is
a = H (id_A, F, r) (1)
The second identification information a ′ is
a ′ = H (id_A, 1, r) (2)
Calculated by The difference between the two is that in the expression (1), the second input variable of the hash function is viewing fee information F stored in the user information storage means 101 (Yes (1) corresponding to whether or not the viewing fee can be paid). In contrast, in Formula (2), a constant value (Yes (1)) corresponding to the payable viewing fee is always set. . That is, when the viewing fee information F stored in the user information storage means 101 is Yes (1), a = a ′, and when the viewing fee information F is No (0), a ≠ a ′. .

  In addition, the user management server 100 generates the first identification information a and the second identification information a ′, and the public key pair generation unit 108 uses the public key pair (public key Kp and secret key Ks) by the public key encryption method. ) Is generated (step S114).

  When the user management server 100 generates the first identification information a, the second identification information a ′, and the public key pair Kp, Ks, the identification information transmission unit 109 obtains the second identification information a ′ and the secret key Ks from the user terminal 500. (Step S115; second identification information transmission step) and the first identification information a and the public key Kp are transmitted to the user authentication server 300 (step S116; first identification information transmission step).

The user terminal 500 receives the second identification information a ′ and the secret key Ks transmitted from the user management server 100 by the second identification information receiving means 506 (step S117; second identification information receiving step). The two identification information a ′ and the secret key Ks are stored in the user information storage unit 501 in association with the business name (B1) (see FIG. 10F) (step S118; second identification information storage step). Moreover, you may make it memorize | store by matching with user ID (id_B) in each provider B instead of a provider name.
Note that one or both of the secret key Ks and the second identification information a ′ may be used in common by a plurality of business operators B (B1, B2, etc.). There is no need to store it in association with the name of the person.

The user authentication server 300 receives the first identification information a and the public key Kp transmitted from the user management server 100 by the first identification information receiving unit 307 (step S119; first identification information receiving step) and receives The first identification information a and the public key Kp are stored in the user information storage unit 301 in association with the user ID (id_B or id_A) (see FIG. 10E) (step S120; first identification information storage step). .
This completes the user registration process.

  Here, the transmission process of the first identification information a and the second identification information a ′ may be continuously performed as the series of processes described above every time there is a user registration request from the user terminal 500. The generated user management server 100 stores the information a and the second identification information a ′ in association with the user ID, and only transmits the second identification information a ′ to the user terminal 500 at the time of user registration request. The transmission of the business operator B to the user authentication server 300 may be performed by collectively performing user registration processing for a plurality of users at regular intervals, for example, every day or every week. By transmitting the first identification information a collectively from the business operator A to the business operator B, communication between the user management server 100 and the user authentication server 300 can be performed efficiently, and registration within both servers is performed. Processing can also be performed efficiently.

In this embodiment, the public key pair is generated by the user management server 100. However, the user terminal 500 generates a public key pair (Kp, Ks) for authentication, and the user terminal 500 generates a secret. While holding the key Ks, the public key Kp may be transmitted to the user management server 100 and transferred from the user management server 100 to the user authentication server 300. In addition, the user entrusts the generation and management of the public key pair (Kp, Ks) to an appropriate certificate authority (CA) in the public key infrastructure (PKI), and the user terminal 500 obtains the secret key Ks. At the same time, the user authentication server 300 obtains the public key Kp from the certificate authority and stores it in the user information storage unit 301 or holds the public key Kp of the user who performs authentication from the certificate authority every time user authentication is performed. May be acquired and used.
When a certificate authority is used, processing steps such as generation of a public key pair (Kp, Ks), key transmission / reception, and storage can be appropriately omitted or replaced with communication with the certificate authority.

In addition, in order to receive a content distribution service from a plurality of business operators B, when the user registration is performed in a plurality of times, it is necessary to distribute the public key Kp to the business operator B to be additionally registered later. Therefore, when the user management server 100 is configured to generate the public key pair Kp, Ks as in this embodiment, the user management server 100 uses the generated public key Kp as the user ID (id_A). Correspondingly, the information is stored in the user information storage unit 101, or when the user B is newly added and registered as a user, the public key pairs Kp and Ks are newly generated, and all registered operators What is necessary is just to make it transmit with respect to the user authentication server 300 of B, and the user terminal 500.
Here, as described above, when the generation and management of the public key are entrusted by the certificate authority, each of the plurality of business operators B can obtain the user's public key from the certificate authority. There is no need to generate, hold and distribute the public key Kp, and there is an advantage that the load on the server can be reduced.

  In communication between the user terminal 500 and the user management server 100 and communication between the user terminal 500 and the user authentication server 300, at least when transmitting and receiving a user ID, a password, and other user information, For example, it is preferable to prevent information leakage by using a general encryption method such as SSL (Secure Socket Layer).

(Content distribution processing)
Next, with reference to FIG. 8 and FIGS. 2 to 6 (refer to FIG. 1 as appropriate), the flow of processing when the viewer C receives a content distribution service from the operator B will be described. Here, FIG. 8 is a flowchart showing the flow of processing when the viewer C receives content distribution from the operator B.

  The user terminal 500 transmits the user ID (id_B) and password input by the viewer C (user name C1) to the user authentication server 300 of the content distribution management device 20 by the login request unit 502 (step 200). . The user authentication server 300 receives the login request by the login request reception unit 302 (step S201), and corresponds to the password received by the user authentication unit 303 and the user ID (id_B) stored in the user information storage unit 301. The password (see FIG. 10E) is collated, and user authentication is performed to determine whether or not the user is valid (step S202).

  When the user authentication server 300 determines that the user is not a valid user as a result of the user authentication (NG in step S202), the login notification transmission unit 304 sends, for example, “login” to the user terminal 500 that has transmitted the login request. "A login is not permitted" is sent with a message indicating that the login request has been rejected (step S203). When the login notification receiving unit 503 receives a notification that the login request has been rejected (step S205), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process ends.

  When the user authentication server 300 determines that the user is a valid user as a result of the user authentication (OK in step S202), the login notification transmission unit 304 sends, for example, “ "Login is permitted. Welcome to business B." A message indicating that the login request is permitted is attached and a login permission notification is transmitted (step S204). When the login notification receiving unit 503 receives the notification that the login request is permitted (step S206), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process proceeds to the content distribution request (step S207).

  The user terminal 500 uses the content distribution request transmission unit 511 to add the user ID (id_A) registered in the operator A to the name of the content to be distributed (or a symbol for identifying the content). Then, a content distribution request is transmitted to the user authentication server 300 (step S207; user authentication request step). Note that when the user terminal 500 makes a content distribution request to the user authentication server 300, it means that the user authentication server simultaneously requests user authentication as a registered user of the operator A.

  When the content distribution request is received by the content distribution request receiving unit 308 (step S208), the user authentication server 300 returns to the user terminal 500 using the second identification information request transmitting unit 309. The second identification information a ′ possessed is requested (step S209; second identification information request step).

When receiving the second identification information request by the second identification information request receiving means 507 (step S210; second identification information request receiving step), the user terminal 500 receives the second identification information a by the second identification information encryption means 508. Read out the second identification information a ′ and the secret key Ks (see FIG. 10F) stored in the user information storage unit 501 in association with the operator B (the operator name B1) for which “ The second identification information a ′ is encrypted using the secret key Ks (step S211; second identification information encryption step). Then, the encrypted second identification information Ks (a ′) generated by encrypting the second identification information a ′ is transmitted to the user authentication server 300 by the second identification information transmitting means 509 (step S212; second identification information). Send step).
Ks (a ′) represents information obtained by encrypting the second identification information a ′ using the secret key Ks.

  When the second identification information receiving unit 310 receives the encrypted second identification information Ks (a ′) (step S213; second identification information receiving step), the user authentication server 300 uses the second identification information decrypting unit 311. The encrypted second identification information Ks (a ′) is decrypted using the public key Kp (see FIG. 10E) corresponding to the user ID (id_A) stored in the user information storage unit 301, 2 identification information a ′ is obtained (step S214; second identification information decoding step).

  The user authentication server 300 distributes content from the user terminal 500 based on the second identification information a ′ decrypted by the identification information verification unit 312 and the first identification information a stored in the user information storage unit 301. It is verified whether or not the requested user has the authority to receive valid content distribution (step S215; identification information verification step). That is, the first identification information a and the second identification information a ′ are collated, and the user is authenticated as a user having a legitimate authority only when they match.

Here, a case where the two do not match will be described. First, when the distribution request is for a legitimate user but has not made a paid viewing contract, that is, when the viewing fee information F is No (0), the first identification information a possessed by the operator B is: Since the viewing fee information F is generated based on information that is No (0), and the second identification information a ′ is generated based on information that the viewing fee information F is always Yes (1). Both are inconsistent.
In other words, the second identification information a ′ is always generated based on the value of certain user information (viewing fee information F) that can provide a positive result when user authentication is performed. When the first identification information a is generated, user authentication can be given only when the predetermined user information stored in the user management server 100 is a positive value.

  Next, consider a case where a legitimate user has a paid viewing contract, and another person impersonates the legitimate user and requests distribution. In this case, the first identification information a held by the business operator B is generated based on the information that is Yes (1) as the viewing fee information F. On the other hand, even if another person pretending to be a legitimate user obtains the legitimate user's user ID (id_A) by any method, the second identification information a ′ in the present embodiment is concealed using a hash function or the like. Therefore, since the correspondence with the original information cannot be substantially determined, the appropriate second identification information a ′ cannot be generated, and it is extremely unlikely that both coincidentally coincide. Accordingly, in the business operator B, the first identification information a and the second identification information a ′ are inconsistent and user authentication cannot be obtained.

  Even if the second identification information a ′ is obtained by any method, the second identification information a ′ may be obtained using an encryption key different from the correct secret key Ks if the secret key Ks possessed only by the authorized user is not provided. Even if 'is encrypted and presented to the operator B, the operator B cannot correctly decrypt it using the legitimate public key Kp, and in this case as well, the user authentication cannot be obtained from the operator B.

  That is, when viewed from the operator B (user authentication server 300), the correct user ID (id_A), the right authority (viewing fee information F is set to Yes (1)), and the corresponding second identification information a ′ User authentication can be given only to a distribution request from a user who holds the secret key Ks.

  Therefore, when the identification information a and a ′ are verified by the identification information verification unit 312 and the user cannot be authenticated, that is, when the first identification information a and the second identification information a ′ are inconsistent (step In step S215, the content distribution non-permission notification means 314 adds, for example, a message indicating that content distribution is not permitted, such as “content is rejected because there is no authority”. Then, a content distribution non-permission notification is transmitted to the user terminal 500 (step S218).

  When the content distribution non-permission notification transmitted from the user authentication server 300 is received by the content distribution non-permission notification receiving unit 510, the user terminal 500 sends the attached message to the video display unit 515 of the content reproduction unit 513, for example. Display and finish the process.

  In addition, as a result of verifying the identification information by the identification information verification means 312, when user authentication is possible, that is, when the first identification information a matches the second identification information a ′ (OK in step S 215), The user authentication server 300 transmits a content distribution command to the distribution server 400 by adding the user ID (id_A) that is the content distribution destination and the content name to be distributed by the content distribution command unit 313. When the distribution server 400 receives the content distribution command by the content distribution command receiving unit 402, the distribution server 400 reads the content stored in the content storage unit 401 by the content distribution unit 403 and distributes the content to the user terminal 500. (Step S217).

The user terminal 500 receives the content distributed from the distribution server 400 by the content receiving unit 512 (step S219), and the content encrypted, compressed and encoded by the content decoding unit 514 of the content reproduction unit 513 The information is decoded, and the content is reproduced so as to be viewable using the video display means 515 and the audio reproduction means 516 (step S221).
In this way, the viewer C (user name C1) can receive and watch the content distribution using the user terminal (viewing terminal device) 500.

(User information change process)
Next, the flow of processing when changing the viewing fee information F, which is user information related to user authentication, will be described with reference to FIGS. Here, FIG. 9 is a flowchart showing a processing flow when the viewer C changes the user information registered in the business operator A.

  The user terminal 500 transmits the user ID (id_A) and password input by the viewer C (user name C1) to the user management server 100 of the user information management apparatus 10 by the login request unit 502 (step 300). . The user management server 100 receives the login request by the login request receiving unit 102 (step S301), and corresponds to the received password and the user ID (id_A) stored in the user information storage unit 101 by the user authentication unit 103. The password (see FIG. 10D) is verified and user authentication is performed to determine whether or not the user is valid (step S302).

  When the user management server 100 determines that the user is not a valid user as a result of the user authentication (NG in step S302), for example, “login” is sent to the user terminal 500 that has transmitted the login request by the login notification transmission unit 104. "A login is not permitted" is sent with a message indicating that the login request has been rejected (step S303). When the login notification receiving unit 503 receives the notification that the login request has been rejected (step S305), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process ends.

  When the user management server 100 determines that the user is a legitimate user as a result of the user authentication (OK in step S302), the login notification transmission unit 104 sends a login request to the user terminal 500, for example, “ “Login is permitted. Welcome to operator A.” A message indicating that the login request is permitted is attached and a login permission notification is transmitted (step S304). When the login notification receiving unit 503 receives the notification that the login request is permitted (step S306), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process proceeds to a user information change request (step S307).

  The user terminal 500 uses the user information change request transmission means 504 to transmit viewing fee information F, which is user information related to user authentication, to the user management server 100 (step S307; user information change request step). When the user information change request receiving unit 105 receives the request for changing the viewing fee information F (step S308; user information change request receiving step), the user management server 100 receives the viewing fee information stored in the user information storage unit 101. F (see FIG. 10D) is updated and stored in the viewing fee information F attached to the change request (see FIG. 10G) (step S309; user information update step).

  Subsequently, the user management server 100 uses the user information concealment unit 107 and, based on the changed viewing fee information F, in the same procedure as described in the user registration process, 2 The identification information a ′ is newly generated (step S310; identification information generation step).

  Since the first identification information a and the second identification information a ′ are calculated using the new random value r, the identification information a, a ′ used up to now and any of the information used before that are used. Since the identification information a and a ′ are different from the identification information a and a ′, the correct user authentication cannot be obtained when the identification information a and a ′ used in the past is used.

  Further, in the present embodiment, since different identification information a and a ′ is used for each of a plurality of business operators, the business operator name registered in association with the user ID (id_A) in the user information storage unit 101. For each registered business operator B, for example, in the case of the user name C4 (user ID = 2321) shown in FIG. Identification information a, a ′ is generated using a numerical value r.

  When the first identification information a and the second identification information a ′ are generated, the user management server 100 uses the identification information transmitting unit 109 to register the business name of each business operator B registered with the user terminal 500. (In the case of the user with the user name C1, only B1 is used, and in the case of the user with the user name C4, the two are B1 and B2.) And the corresponding second identification information a ′ are sequentially transmitted (step S311; (2 identification information transmission step) and each registered business operator B (in the case of a user with a user name C1, there is only one location B1, and in the case of a user with a user name C4, there are two locations B1 and B2). The first identification information a corresponding to the user ID (id_A) is transmitted to the user authentication server 300 of the content distribution management apparatus 20 operated by (step S312; first identification information transmission process). -Up).

  The user terminal 500 receives the operator name and the second identification information a ′ transmitted from the user management server 100 by the second identification information receiving means 506 (step S313; second identification information receiving step), and receives the received first The two identification information a ′ is stored in the user information storage unit 501 in association with the business name (see FIG. 10 (i)) (step S314; second identification information storage step).

The user authentication server 300 receives the user ID (id_A) and the first identification information a transmitted from the user management server 100 by the first identification information receiving unit 310 (step S315; second identification information receiving step). The received first identification information a is stored in the user information storage unit 301 in association with the user ID (id_A) (see FIG. 10H) (step S316; first identification information storage step).
This completes the user information change process.

  Here, the transmission process of the first identification information a and the second identification information a ′ may be continuously performed as the series of processes described above every time there is a user information change request from the user terminal 500. The generated user management server 100 stores the identification information a and the second identification information a ′ in association with the user ID, and only transmits the second identification information a ′ to the user terminal 500 at the time of the change request. The transmission of the business operator B to the user authentication server 300 may be performed by collectively processing user information change requests from a plurality of users periodically, for example, every day or every week. Since the first identification information a is collectively transmitted from the business operator A to the business operator B, communication can be efficiently performed, so that the communication amount between the business operator A and the business operator B can be reduced. . Even if transmission is performed with a time difference in this way, the first identification information a before the change owned by the operator B and the second identification information a ′ after the change held by the viewer C are always inconsistent, The business operator B can prevent distribution for an unauthorized distribution request.

  For security improvement, even if the user information is not changed, the user management server 100 generates the first identification information a and the second identification information a ′ periodically, for example, every six months or every year. It may be transmitted again to the user authentication server 300 and the user terminal 500, respectively.

In the present embodiment, during the user registration process, the user management server 100 generates the public key pair Kp, Ks by the public key pair generation unit 108 and the first identification information a by the identification information transmission unit 109, respectively. And the second identification information a ′ are transmitted to the user authentication server 300 and the user terminal 500. Since the public key pair is not updated during the user information change process, only the first identification information a and the second identification information a ′ are transmitted. Each of them is transmitted to the user authentication server 300 and the user terminal 500, but a public key pair may be newly generated and transmitted during the user information change processing.
Further, as described above, when the generation and management of the public key pair Kp, Ks is outsourced to the certificate authority, the user management server 100 may omit the processes related to the generation and distribution of the public key pair Kp, Ks. it can.

Moreover, although the case where the user information change process is started from the user information change request from the user terminal 500 has been described, the change process may be performed starting from the user management server 100. For example, when the predetermined user information that is the basis of the first identification information a is the viewing fee information F, if the user is behind payment of the viewing fee, the user management server 100 stores the viewing fee information F. Forcibly change to No (0), generate the first identification information a based on the changed viewing fee information F, transmit it to the user authentication server 300, and regenerate the second identification information a ′ To the user terminal 500.
Then, when the user management server 100 confirms the payment of the viewing fee that the user has been delinquent in, the user management server 100 changes the viewing fee information F to Yes (1), and again the first identification information a and the second identification information a ′. What is necessary is just to produce | generate and transmit to the user authentication server 300 and the user terminal 500, respectively.

(Content delivery processing from operator A)
Next, referring to FIGS. 11, 2, 3, and 6 (refer to FIG. 1 as appropriate), the flow of processing when the viewer C receives the content distribution service directly from the operator A will be described. To do. Here, FIG. 11 is a flowchart showing the flow of processing when the viewer C receives content distribution from the operator A.

  The user terminal 500 transmits the user ID (id_A) and password input by the viewer C (user name C1) to the user management server 100 of the user information management apparatus 10 by the login request unit 502 (step 400). . The user management server 100 receives the login request by the login request receiving unit 102 (step S401), and corresponds to the received password and the user ID (id_A) stored in the user information storage unit 101 by the user authentication unit 103. The password (see (a), (d), and (g) in FIG. 10) is collated, and user authentication is performed to determine whether or not the user is valid (step S402).

  When the user management server 100 determines that the user is not a valid user as a result of the user authentication (NG in step S402), for example, “login” is sent to the user terminal 500 that has transmitted the login request by the login notification transmission unit 104. "A login is not permitted" is sent with a message indicating that the login request has been rejected (step S403). When the login notification receiving unit 503 receives the notification that the login request is rejected (step S405), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process ends.

  If the user management server 100 determines that the user is a legitimate user as a result of the user authentication (OK in step S402), the login notification transmission unit 104 sends a login request to the user terminal 500, for example, “ “Login is permitted. Welcome to the business operator A.” A message indicating that the login request is permitted is attached and a login permission notification is transmitted (step S404). When the login notification receiving unit 503 receives the notification that the login request is permitted (step S406), the user terminal 500 displays the attached message on the video display unit 515 of the content reproduction unit 513, for example. The process proceeds to the content distribution request (step S407).

  The user terminal 500 uses the content distribution request transmission unit 511 to transmit a content distribution request to the user management server 100 for the name of the content to be distributed (or a symbol that identifies the content). Step S407).

Upon receiving the content distribution request by the content distribution request receiving unit 110 (step S408), the user management server 100 is stored in the user information storage unit 101 in association with the user ID (id_A) by the distribution availability determination unit 111. The current viewing fee information F is read out, the presence / absence (payment / non-payment) of the paid viewing contract is confirmed, and it is determined whether or not the content can be distributed (step S409).
Unlike the case where the provider B distributes, the user management server 100 operated by the provider A does not verify the identification information but directly refers to the viewing fee information F to determine whether the content can be distributed.

  When the viewing fee information F is No (0), the distribution permission determination unit 111 determines that the content distribution is not permitted (NG in step S409), and the content distribution non-permission notification unit 113 determines, for example, “ A content distribution rejection notice is sent to the user terminal 500 together with a message that the content distribution is not allowed, such as “the content distribution has been rejected because no paid viewing contract has been made.” (Step S410).

  When the user terminal 500 receives the content distribution non-permission notification transmitted from the user management server 100 by the content distribution non-permission notification receiving unit 510, the user terminal 500 sends the attached message to the video display unit 515 of the content reproduction unit 513, for example. Display and finish the process.

  When the viewing fee information F is Yes (1), the distribution permission determination unit 111 determines that the distribution of content can be permitted (OK in step S409), and the user authentication server 300 uses the content distribution command unit 112 to A content distribution command is transmitted to the program server 200 with the user ID (id_A) as the content distribution destination and the content name to be distributed. When the content distribution command receiving unit 202 receives the content distribution command, the program server 200 reads the content stored in the content storage unit 201 by the content distribution unit 203 and distributes the content to the user terminal 500. (Step S411).

The user terminal 500 receives the content distributed from the program server 200 by the content receiving unit 512 (step S413), and the content encrypted, compressed and encoded by the content decoding unit 514 of the content reproduction unit 513 The information is decrypted (step S414), and the content is reproduced so that it can be viewed using the video display means 515 and the audio reproduction means 516 (step S415).
In this way, the user can receive and watch content distribution from the operator A using the user terminal (viewing terminal device) 500.

(Content provision processing)
Next, with reference to FIGS. 12, 3, and 5 (refer to FIG. 1 as appropriate), the flow of processing for providing content from the operator A to the operator B will be described. Here, FIG. 12 is a flowchart showing the flow of processing when content is provided from business operator A to business operator B.

  The program server 200 of the user information management device 10 reads the content stored in the content storage unit 201 by the content providing unit 204 and transmits (provides) the content to the distribution server 400 of the content distribution management device 20. (Step S500).

  The distribution server 400 receives the content transmitted from the program server 200 by the content receiving unit 404 and stores it in the content storage unit 401 (step S501). The content stored in the content storage unit 401 is additionally disclosed in, for example, a list of contents that can be distributed on the homepage of the operator B, and is sent to the user terminal 500 in response to a distribution request from a user having a legitimate authority. be delivered.

As described above, in the content distribution system 1 using the user authentication system according to the present invention, the user authentication server 300 of the content distribution management device 20 performs user authentication of the user terminal 500 connected to the user authentication server 300. In order to perform this, the user authentication server 300 and the user terminal 500 respectively store the first identification information a and the second identification information a ′ generated based on the user information held by the user management server 100 of the user information management apparatus 10. When the user authentication is performed, the user authentication server 300 stores the first identification information a stored in the user authentication server 300 and the user terminal 500, which is encrypted by the user terminal 500 and transmitted to the user authentication server 300. 2 to perform user authentication based on the identification information a ′, the user authentication server 300 Without knowing the content of the user information is the source identity a, and the user management server 100 can perform user authentication without communicating with the user authentication server 300 and the user terminal 500.
For this reason, the content distribution system 1 using the user authentication system according to the present invention does not increase the load on the user management server 100 of the user information management device 10 for user authentication, and the distribution server 400 of the content distribution management device 20. Content delivery service to the user terminal 500.

It is a block diagram which shows the structure of a content delivery system (user authentication system). It is a block diagram which shows the structure of a user management server. It is a block diagram which shows the structure of a program server. It is a block diagram which shows the structure of a user authentication server. It is a block diagram which shows the structure of a delivery server. It is a block diagram which shows the structure of a user terminal. It is a flowchart which shows the flow of a process when the viewer C registers with user B as a user. It is a flowchart which shows the flow of a process when the viewer C receives content delivery from the provider B. FIG. It is a flowchart which shows the flow of a process when the viewer C changes the user information registered into the provider A. FIG. It is a figure which shows the content of the user information which a user management server, a user authentication server, and a user terminal each hold | maintain, (a) (b) (c) is user information before user registration, (d) (e (F) is user information after user registration, and (g), (h), and (i) are user information after the user information is changed. It is a flowchart which shows the flow of a process when the viewer C receives content delivery from the provider A. FIG. It is a flowchart which shows the flow of a process when providing a content with respect to the provider B from the provider A.

Explanation of symbols

1 Content distribution system (user authentication system)
100 User management server 101 User information storage means 106 First identification information request receiving means 107 User information concealing means (identification information generating means)
109 Identification information transmitting means
300 User authentication server 301 User information storage means (first identification information storage means)
306 First identification information request transmission means 307 First identification information reception means 310 Second identification information reception means 311 Second identification information decoding means 312 Identification information verification means 500 User terminal 501 User information storage means (second identification information storage means )
506 Second identification information receiving means 508 Second identification information encryption means 509 Second identification information transmitting means a First identification information a ′ Second identification information Kp Public key Ks Private key

Claims (8)

A user authentication server for performing user authentication of a user terminal connected via a network,
User information of a user who operates the user terminal is stored in association with a user ID, first information including at least predetermined information in the user information is concealed to generate first identification information, and
Instead of the predetermined information in the first information, second information using a predetermined constant value that can be taken as the predetermined information is concealed to generate second identification information, 1st identification information request | requirement which requests | requires the 1st identification information corresponding to the said user ID with respect to the user management server which transmits 1st identification information to the said user authentication server, and transmits said 2nd identification information to the said user terminal A transmission means;
First identification information receiving means for receiving first identification information corresponding to the user ID transmitted from the user management server;
First identification information storage means for storing the first identification information received by the first identification information receiving means in association with the user ID;
The second identification information transmitted from the user management server to the user terminal and stored in the user terminal is encrypted and transmitted by the user terminal with a secret key for encryption using a public key encryption method. Second identification information receiving means for receiving the encrypted second identification information;
Second identification information decrypting means for decrypting the encrypted second identification information received by the second identification information receiving means with a public key for decryption paired with the secret key;
Verify whether the first identification information corresponding to the user ID stored in the first identification information storage means matches the second identification information decoded by the second identification information decoding means Identification information verification means for performing user authentication of the user terminal;
A user authentication server comprising: A user management server that manages user information of a user operating a user terminal connected via a network,
User information storage means for storing the user information of a user operating the user terminal in association with a user ID;
The first information including at least predetermined information in the user information corresponding to the user ID stored in the user information storage means is concealed to generate first identification information, and in the first information Instead of the predetermined information, identification information generating means for generating second identification information by concealing the second information using a predetermined constant value that can be taken as the predetermined information;
First identification information request receiving means for receiving a request for first identification information corresponding to the user ID from the user authentication server according to claim 1;
Identification information transmitting means for transmitting first identification information and second identification information corresponding to the user ID generated by the identification information generating means to the user authentication server and the user terminal, respectively;
A user management server comprising: The identification information generation unit generates the first identification information by hashing based on the first information including at least the user ID, the predetermined information in the user information corresponding to the user ID, and a random value. together, instead of the predetermined information in the first information, the second identification information hashed based on the second information using a fixed value determined in advance which can be taken as the predetermined information The user management server according to claim 2, wherein the user management server is generated. The user information stored in association with the user ID in the user information storing means includes an authentication server identification information that identifies one or more the user authentication server as a destination which transmitted the first identification information,
When the predetermined information is changed,
The identification information generating means generates the first identification information by concealing the first information including the predetermined information after the change as the predetermined information, and the predetermined information after the change is generated. In place of the changed predetermined information in the first information, the second information using a predetermined constant value that can be taken as the predetermined information is concealed and the second identification information Information
The identification information transmitting means transmits the second identification information to the user terminal,
Wherein the first identification information, on the basis on the authentication server identification information stored in the user information storage unit, be transmitted to one or more the user authentication server,
The user management server according to claim 2 or claim 3, wherein A user terminal connected to the user authentication server according to claim 1 and the user management server according to any one of claims 2 to 4 via a network,
Second identification information receiving means for receiving the second identification information transmitted from the user management server;
Second identification information storage means for storing the second identification information received by the second identification information receiving means and a secret key for encryption by a public key encryption method;
Second identification information encryption means for generating the encrypted second identification information by encrypting the second identification information stored in the second identification information storage means using the secret key;
Second identification information transmitting means for transmitting the encrypted second identification information generated by the second identification information encryption means to the user authentication server;
A user terminal comprising: In order to perform user authentication for user terminals connected via a network,
User information of a user who operates the user terminal is stored in association with a user ID, first information including at least predetermined information in the user information is concealed to generate first identification information, and Instead of the predetermined information in the first information, second information using a predetermined constant value that can be taken as the predetermined information is concealed to generate second identification information, 1st identification information request | requirement which requests | requires the 1st identification information corresponding to the said user ID with respect to the user management server which transmits 1st identification information to the said user authentication server, and transmits said 2nd identification information to the said user terminal Transmission means,
First identification information receiving means for receiving first identification information corresponding to the user ID transmitted from the user management server and storing the first identification information in association with the user ID;
The second identification information transmitted from the user management server to the user terminal and stored in the user terminal is encrypted and transmitted by the user terminal with a secret key for encryption using a public key encryption method. Second identification information receiving means for receiving the encrypted second identification information;
Second identification information decryption means for decrypting the encrypted second identification information received by the second identification information reception means with a public key for decryption paired with the secret key;
Whether or not the first identification information corresponding to the user ID received and stored by the first identification information receiving means matches the second identification information decoded by the second identification information decoding means Verifying identification information verification means for performing user authentication of the user terminal,
A user authentication program characterized by being made to function as: In order to manage user information of a user who operates a user terminal connected via a network,
To generate a first identification information by processing concealing the first information including at least predetermined information in the user information associated with the storage with the user ID of the user who operates the user terminal, the first Identification information generating means for generating second identification information by concealing second information using a predetermined constant value that can be taken as the predetermined information instead of the predetermined information in the information ;
First identification information request receiving means for receiving a request for first identification information corresponding to the user ID from the user authentication server according to claim 1;
Identification information transmitting means for transmitting first identification information and second identification information corresponding to the user ID generated by the identification information generating means to the user authentication server and the user terminal, respectively;
A user management program that functions as In order to connect to the user authentication server according to claim 1 and the user management server according to any one of claims 2 to 4 through a network, a computer is provided.
Second identification information receiving means for receiving and storing the second identification information transmitted from the user management server;
The second identification information received and stored by the second identification information receiving means is encrypted using a secret key for encryption by a public key encryption method to generate encrypted second identification information. 2 identification information encryption means,
Second identification information transmission means for transmitting the encrypted second identification information generated by the second identification information encryption means to the user authentication server;
A user terminal program that is caused to function as:

Images