JP4909796B2 - Secret information management system, secret information management method and program - Google Patents

Description

  The present invention relates to a secret information management system, a secret information management method, and a program, and more particularly to a secret information management system, a secret information management, and a secret information management system that give a specific point to a specific user by using a polynomial type (k, n) threshold secret sharing method. It relates to a method and a program.

  Currently, with the development of communication networks and electronic data processing, handling of data take-out, duplication, distribution, etc. has become easy. As a result, there are many incidents where information such as secret data stored as electronic data leaks, which is a kind of social problem. Also, in this process, in addition to exploitation of internal information by intrusion via a third-party network and unauthorized distribution from the loss of laptops storing confidential data, insiders with data access rights have recently been illegally It has been carried out to take out and circulate, and it is an urgent task to construct an information leakage system regardless of these.

  As one of these solutions, as shown in Patent Document 1, for example, one person does not manage keys and secret information for access, but a secret whose information is not generated unless a plurality of people gather. There is a method of joint management using a distributed method. If this method is used, it can be expected that a data access check function by a plurality of persons works and the risk of information leakage can be reduced.

In general, there are several secret sharing methods, one of which is a polynomial (k, n) threshold secret sharing method. This is because f (x) among the functions represented by y = f (x) is f (x) = a (1) x ^ (n-1) + a (2) x ^ (n-2) + ... in the case of a function such as + a (n-1) x + a (n), using the property that all coefficients cannot be obtained unless n different types of (x, y) values are collected, a (n) Is used as secret information, different (x, y) satisfying this equation is distributed to k people, and when restoring the secret, n people are collected from the k people and restored. Therefore, according to this method, secret information can be shared by a plurality of people.
JP 2006-18850 A

  However, there is always a difference in authority (responsibility) weight among individuals who share shared information, not only when authority is the same for all individuals. When secret sharing is performed accordingly, for example, a person with high authority needs to have a plurality of (x, y). This is because the (x, y) possessed according to authority increases, management becomes complicated, and a plurality of information (x, y) flows from a person with high authority at the time of secret restoration. There was also a problem that by monitoring the amount, it was easy for others to find out who was authorized.

  Therefore, the present invention has been made in view of the above-described problems. In practice, while a specific person has a plurality of pieces of shared information, the complexity of the management is eliminated, and a plurality of third parties are provided to a third party. It is an object of the present invention to provide a secret information management system, a secret information management method, and a program that do not reveal the fact that the distributed information is held.

The present invention proposes the following items in order to solve the above problems.
(1) The present invention is a secret information management system including a shared information generating device, a secret information restoring device, and a plurality of user terminals, wherein the shared information generating device defines an arbitrary polynomial and is unique Distributed information generating means for generating shared information including points, and transmitting means for transmitting to the user terminal of a predetermined user who has confirmed the singular points in the user information database among the generated distributed information including singular points And receiving the shared information including the singular point from each user terminal, and receiving the singularity from the received shared information based on the user information confirmed based on the user information database A secret information management system characterized by comprising secret information restoring means for detecting a point and restoring secret information is proposed.

  According to the present invention, the shared information generating unit of the shared information generating device defines an arbitrary polynomial to generate the distributed information including the singular point, and among the distributed information including the singular point generated by the transmitting unit, the singular point The point is transmitted to the user terminal of a predetermined user who is confirmed by the user information database. On the other hand, the receiving means of the secret information restoring device receives the distributed information including the singular point from each user terminal, and based on the user information confirmed by the secret information restoring means based on the user information database, The point is detected and the secret information is restored. Accordingly, since a singular point including a plurality of pieces of shared information is distributed to a predetermined specific user, the specific user substantially manages the plurality of pieces of shared information by managing only the information of the singular points. It will be. Also, since the information transmitted / received is only singularity information when restoring the secret information, it is difficult to identify a user who manages a large amount of shared information. Here, the singular point is a value corresponding to an extreme value in a polynomial, and refers to a point corresponding to several points of dispersion information with one singular point.

  (2) The present invention proposes a secret information management system characterized in that, in the secret information management system of (1), the predetermined user is an administrator having a predetermined authority.

  According to the present invention, since a predetermined user becomes an administrator having a predetermined authority, the administrator having the authority manages a large amount of distributed information, and improves security for secret information. be able to.

  (3) In the secret information management system according to (2), the shared information generation unit generates singular points having different weights, and the transmission unit transmits the singular point according to the authority level of the administrator. We have proposed a secret information management system characterized by changing the weight of singularities.

  According to this invention, the distributed information generating means generates singular points with different weights, and the transmitting means changes the weight of the singular points to be transmitted according to the level of authority of the administrator. Therefore, the greater the authority of the administrator, the more shared information is managed, so the security for the secret information can be improved.

  (4) The present invention is a secret information management method in a secret information management system including a shared information generating device, a secret information restoring device, and a plurality of user terminals, wherein the shared information generating device converts an arbitrary polynomial into A first step of defining and generating shared information including a singular point; and a predetermined step in which the shared information generation apparatus confirms the singular point among the generated distributed information including the singular point by a user information database. A second step of transmitting to the user terminal of the received user, a third step of the secret information restoring device receiving shared information including singular points from each user terminal, and the secret information restoring device And a fourth step of detecting the singular point from the received distributed information and restoring the secret information based on the user information confirmed based on the information database. It has proposed a secret information management method, characterized in that.

  According to the present invention, the distributed information generation device defines an arbitrary polynomial, generates distributed information including a singular point, and confirms the singular point among the generated distributed information including the singular point by a user information database. It transmits to the user terminal of a predetermined user. On the other hand, the secret information restoration device receives the distributed information including the singular point from each user terminal, detects the singular point from the received distributed information based on the user information confirmed based on the user information database, and Restore. Accordingly, since a singular point including a plurality of pieces of shared information is distributed to a predetermined specific user, the specific user substantially manages the plurality of pieces of shared information by managing only the information of the singular points. It will be. Also, since the information transmitted / received is only singularity information when restoring the secret information, it is difficult to identify a user who manages a large amount of shared information.

  (5) The present invention is a program for causing a computer to execute a secret information management method in a secret information management system including a shared information generating device, a secret information restoring device, and a plurality of user terminals. A first step in which a generating device defines an arbitrary polynomial and generates distributed information including a singular point; and the distributed information generating device uses the singular point in the distributed information including the generated singular point. A second step of transmitting to the user terminal of the predetermined user confirmed by the user information database; a third step of receiving the shared information including singular points from each user terminal by the secret information restoring device; The secret information restoration device detects the singular point from the received distributed information based on the user information confirmed based on the user information database, and We propose a program to execute a fourth step of performing a restore information, to the computer.

  According to the present invention, the distributed information generation device defines an arbitrary polynomial, generates distributed information including a singular point, and confirms the singular point among the generated distributed information including the singular point by a user information database. It transmits to the user terminal of a predetermined user. On the other hand, the secret information restoration device receives the distributed information including the singular point from each user terminal, detects the singular point from the received distributed information based on the user information confirmed based on the user information database, and Restore. Accordingly, since a singular point including a plurality of pieces of shared information is distributed to a predetermined specific user, the specific user substantially manages the plurality of pieces of shared information by managing only the information of the singular points. It will be. Also, since the information transmitted / received is only singularity information when restoring the secret information, it is difficult to identify a user who manages a large amount of shared information.

  According to the present invention, since the singularity is distributed to a predetermined user and the shared information is managed, the complexity of the management is substantially eliminated while the specific user has a plurality of shared information. This has the effect of not revealing the fact that a third party holds multiple pieces of distributed information.

Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.
Note that the constituent elements in the present embodiment can be appropriately replaced with existing constituent elements and the like, and various variations including combinations with other existing constituent elements are possible. Therefore, the description of the present embodiment does not limit the contents of the invention described in the claims.

<System configuration when generating distributed information>
The system according to the present embodiment is a system using a polynomial type (k, n) threshold secret sharing method, and the system configuration at the time of generating shared information is as shown in FIG. It consists of a terminal A20, a user terminal B30, and a user terminal N40. Furthermore, the shared information generation apparatus 10 includes a shared information generation unit 11, a user information confirmation unit 12, a user information database (DB) 13, and a shared information transmission unit 14, and the user terminal A20 receives the shared information reception. Unit 21, shared information database (DB) 22, user terminal B30, shared information receiving unit 31, shared information database (DB) 32, user terminal N40, shared information receiving unit 41, shared information database (DB) 42.

  Here, the shared information generating unit 11 of the shared information generating apparatus 10 defines an arbitrary polynomial and generates shared information including singular points. The user information confirmation unit 12 confirms the authority of the user based on a user information database (DB) 13 described later. The user information database (DB) 13 is a storage device that stores a user and its authority information in association with each other. The shared information transmission unit 14 transmits the shared information including the singular point generated by the shared information generation unit 11 according to the authority of the user confirmed by the user information confirmation unit 12.

  Further, the shared information receiving units 21, 31, and 41 of the user terminal A20, the user terminal B30, and the user terminal N40 receive the shared information transmitted from the shared information transmitting unit 14 of the shared information generating device 10. The shared information databases (DB) 22, 32, and 42 are storage devices that store the shared information received by the shared information receiving units 21, 31, and 41.

<Processing when generating distributed information>
Next, a process at the time of generating shared information will be described with reference to FIG.
Here, in order to make the description more specific, the user will be described as A and B (A is assumed to have higher authority than B).

First, the shared information generation unit 11 defines, for example, y = ax ² + bx + c as a polynomial used in the polynomial type (k, n) threshold secret sharing method (step S101). That is, in this case, it means that three pieces of distributed information (x, y) are required to obtain all the coefficients a, b, and c.

  However, since the distributed information (x, y) is distributed to two users A and B from the above-mentioned preconditions, the distributed information (x, y) can be distributed to the highly authorized user A as it is. ) Will be distributed. Therefore, the shared information generation unit 11 generates shared information including singular points (step S102).

Specifically, when the defined polynomial y = ax ² + bx + c is transformed to y = a (x + b / (2a)) ² + c−b ² / (4a), x = −b / (2a), y = (b 2-4ac) / (4a) is an extreme value and has a meaning equivalent to ^two pieces of distributed information (x, y), and thus becomes a singular point. Therefore, if there is this singular point and another variance information (x, y), the coefficients of all a, b, and c can be obtained.

  The shared information generation unit 11 outputs the shared information including the singular point to the shared information transmission unit 14, and the shared information transmission unit 14 receives the user A and B from the user information database (DB) via the user information confirmation unit 12. The authority information is acquired, and the singularity is transmitted to the user A having a higher authority, and the other shared information is transmitted to the user B (step 103).

  Therefore, since a singular point including a plurality of shared information is distributed to a user with a high authority, a user with a high authority substantially manages a plurality of pieces of distributed information by managing only the information of the singular point. Become.

  In the above description, for the sake of simplicity, the case where there are two users has been described as an example. However, when there are several users with different authorities, y = f (x) is weighted twice. 0 = f ′ (x) (value at which the primary differential value becomes 0), 3 times weighting, 0 = f ′ (x), 0 = f ″ (x) (primary differential value, secondary differential value) It is also possible to define a polynomial in which there is a point where the value is 0),... And assign a singular point corresponding to the weight according to the authority of the user.

<System configuration when restoring confidential information>
As shown in FIG. 3, the system configuration at the time of secret information restoration includes a secret information restoration device 50, a user terminal A60, a user terminal B70, and a user terminal N80. Further, the secret information restoring device 50 includes a shared information request transmitting unit 51, a shared information receiving unit 52, a user information confirming unit 53, a user information database (DB) 54, and a secret information restoring unit 55. The user terminal A 60 is a shared information request receiving unit 61, a shared information database (DB) 62, a shared information transmitting unit 63, and the user terminal B 70 is a shared information request receiving unit 71, a shared information database (DB) 72, The information transmitting unit 73 and the user terminal N80 include a shared information request receiving unit 81, a distributed information database (DB) 82, and a distributed information transmitting unit 83.

  Here, the shared information request transmitting unit 51 of the secret information restoring apparatus 50 is connected to the shared information request receiving unit 61 of the user terminal A60, the shared information request receiving unit 71 of the user terminal B70, and the shared information request receiving unit 81 of the user terminal N80. A signal requesting transmission of shared information is transmitted.

  The shared information receiving unit 52 receives the shared information transmitted from the shared information transmitting units 63, 73, and 83 of the user terminals 60, 70, and 80. The user information confirmation unit 53 confirms the user authority and the like based on a user information database (DB) 54 described later. The user information database (DB) 54 is a storage device that stores a user and its authority information in association with each other.

  The secret information restoring unit 55 restores the secret information based on the shared information received by the shared information receiving unit 52 and the user authority input from the user information confirmation unit 53.

  Further, the shared information request receiving units 61, 71, and 81 of the user terminal A 60, the user terminal B 70, and the user terminal N 80 receive the shared information request transmitted from the shared information request transmitting unit 51 of the secret information restoring device 50. The distributed information databases (DB) 62, 72, and 82 are storage devices that store the distributed information. In response to the shared information request from the secret information restoring device 50, the shared information transmitting units 63, 73, and 83 take out the shared information from the shared information databases (DB) 62, 72, and 82, and use this as the secret information restoring device 50. Send to.

<Processing when restoring confidential information>
Next, a process at the time of restoring secret information will be described with reference to FIG.

  First, the shared information request transmitting unit 51 of the secret information restoring apparatus 50 requests the shared information request receiving units 61, 71, and 81 of the user terminals 60, 70, and 80 to transmit the shared information. Receiving the shared information request, each user terminal 60, 70, 80 retrieves shared information from the shared information database (DB) 62, 72, 82 and transmits it to the secret information restoring device 50 (step S201).

  Next, the user information confirmation unit 53 confirms the authority of the user corresponding to the transmitted shared information, detects a singular point, and outputs this information to the secret information restoration unit 55 (step S202).

  Then, the secret information restoration unit 55 grasps the shared information and restores the secret information. Specifically, a differential equation is obtained according to the weight of the distributed information, and the entire simultaneous equation is solved to restore the secret information (step S203).

  Therefore, since the information to be transmitted / received is only singularity information even when restoring the secret information, it becomes difficult to identify a user who manages a large amount of shared information.

  The process of the secret information management system is recorded on a computer-readable recording medium, and the program recorded on the recording medium is read into the secret information management system and executed, thereby realizing the secret information management system of the present invention. be able to. The computer system here includes an OS and hardware such as peripheral devices.

  Further, the “computer system” includes a homepage providing environment (or display environment) if a WWW (World Wide Web) system is used. The program may be transmitted from a computer system storing the program in a storage device or the like to another computer system via a transmission medium or by a transmission wave in the transmission medium. Here, the “transmission medium” for transmitting the program refers to a medium having a function of transmitting information, such as a network (communication network) such as the Internet or a communication line (communication line) such as a telephone line.

  The program may be for realizing a part of the functions described above. Furthermore, what can implement | achieve the function mentioned above in combination with the program already recorded on the computer system, and what is called a difference file (difference program) may be sufficient.

  The embodiments of the present invention have been described in detail with reference to the drawings. However, the specific configuration is not limited to the embodiments, and includes designs and the like that do not depart from the gist of the present invention. For example, in the present embodiment, the system is configured with a function for managing user information in the shared information generating device and the secret information restoring device, but the storage capacity of the shared information generating device and the secret information restoring device is considered. In addition, another device having a function of managing user information may be provided.

It is a system configuration figure at the time of distributed information generation concerning this embodiment. It is a processing flow at the time of shared information generation concerning this embodiment. It is a system configuration figure at the time of secret information restoration concerning this embodiment. It is a processing flow at the time of secret information restoration concerning this embodiment.

Explanation of symbols

DESCRIPTION OF SYMBOLS 10 ... Distributed information generation apparatus, 11 ... Distributed information generation part, 12, 53 ... User information confirmation part, 13, 54 ... User information database (DB), 14 ... Distributed information transmission part , 20, 60 ... user terminals A, 21, 31, 41 ... shared information receiving unit, 22, 32, 42, 62, 72, 82 ... shared information database (DB), 30, 70,. User terminal, 40, 80 ... User terminal, 50 ... Secret information restoring device, 51 ... Shared information request transmitting unit, 52 ... Distributed information receiving unit, 55 ... Secret information restoring unit, 61, 71, 81 ... shared information request receiving unit, 63, 73, 83 ... shared information transmitting unit

Claims (5)

A secret information management system comprising a shared information generating device, a secret information restoring device, and a plurality of user terminals,
The shared information generating device is
A distributed information generating means for defining an arbitrary polynomial and generating shared information including singular points;
Among the distributed information including the generated singular point, a transmission unit that transmits the singular point to the user terminal of a predetermined user who confirmed the singular point by a user information database
With
The secret information restoration device
Receiving means for receiving distributed information including singular points from each user terminal;
Secret information restoration means for detecting the singular point from the received distributed information and restoring the secret information based on the user information confirmed based on the user information database;
A secret information management system characterized by comprising:   The secret information management system according to claim 1, wherein the predetermined user is an administrator having a predetermined authority.   3. The distributed information generation unit generates singular points with different weights, and the transmission unit changes the weight of the singular points to be transmitted according to the authority of the manager. Secret information management system. A secret information management method in a secret information management system including a shared information generation device, a secret information restoration device, and a plurality of user terminals,
A first step in which the shared information generation device defines an arbitrary polynomial and generates distributed information including singular points;
A second step in which the shared information generation device transmits the singular point among the generated singular points including the singular point to the user terminal of a predetermined user who has confirmed the singular point by a user information database;
A third step in which the secret information restoration device receives distributed information including a singular point from each user terminal;
A fourth step in which the secret information restoration device detects the singular point from the received distributed information based on the user information confirmed based on the user information database and restores the secret information;
A secret information management method characterized by comprising: A program for causing a computer to execute a secret information management method in a secret information management system including a shared information generation device, a secret information restoration device, and a plurality of user terminals,
A first step in which the shared information generation device defines an arbitrary polynomial and generates distributed information including singular points;
A second step in which the shared information generation device transmits the singular point among the generated singular points including the singular point to the user terminal of a predetermined user who has confirmed the singular point by a user information database;
A third step in which the secret information restoration device receives distributed information including a singular point from each user terminal;
A fourth step in which the secret information restoration device detects the singular point from the received distributed information based on the user information confirmed based on the user information database and restores the secret information;
A program that causes a computer to execute.

Images