JP4973818B2 - Information processing apparatus and information processing method - Google Patents

Description

  The present invention relates to an information processing apparatus and an information processing method. More specifically, the present invention relates to an information processing apparatus and an information processing method that eliminates illegal content use and realizes strict content use management by performing data conversion processing on various contents that require content use management.

  Various software data such as audio data such as music, image data such as movies, game programs, and various application programs (hereinafter referred to as “Content”) are recorded on a recording medium such as a blue laser using a blue laser. -It can be stored as digital data on a ray disc, DVD (Digital Versatile Disc), MD (Mini Disc), or CD (Compact Disc). In particular, a Blu-ray disc using a blue laser is a disc capable of high-density recording, and can record a large volume of video content as high-quality data.

  Digital contents are stored in these various information recording media (recording media) and provided to users. A user plays back and uses content on a playback device such as a personal computer (PC) or disc player.

  Many contents, such as music data and image data, generally have distribution rights or the like held by the creator or seller. Therefore, when distributing these contents, it is common to adopt a configuration that restricts the use of the contents, that is, permits the use of the contents only to authorized users and prevents unauthorized copying or the like. It is the target.

  According to the digital recording device and the recording medium, for example, recording and reproduction can be repeated without deteriorating images and sound, and illegally copied content is distributed via the Internet, and the content is copied to a CD-R or the like. Problems such as the distribution of so-called pirated discs and the use of copy contents stored on hard disks such as PCs have become widespread.

  A large-capacity recording medium such as a DVD or a recording medium using a blue laser that has been developed in recent years can record a large amount of data, for example, one movie to several movies as digital information on one medium. Is possible. As video information and the like can be recorded as digital information in this way, it is an increasingly important issue to prevent unauthorized copying and to protect the copyright holder. In recent years, in order to prevent such illegal copying of digital data, various techniques for preventing illegal copying in digital recording devices and recording media have been put into practical use.

  One technique for protecting the copyright holder by preventing unauthorized copying of content is content encryption processing. However, even if the content is encrypted, if an encryption key leaks, the content that has been decrypted illegally will flow out. As a prior art that discloses one configuration for solving such a problem, there is a configuration described in Patent Document 1. Patent Document 1 discloses a configuration in which unauthorized reproduction of content is prevented by recording part of the content replaced with dummy data.

  When reproducing the content in which the content is replaced with dummy data, it is necessary to replace the dummy data with normal content data again. This data conversion processing needs to be performed without causing leakage of normal content to the outside, and it is preferable to prevent leakage of processing information such as the arrangement position of dummy data and a conversion method. The current situation is that there are still many issues to be examined regarding the configuration in which such reproduction processing is performed safely while preventing information leakage.

JP-A-11-45508

  The present invention has been made in view of such a situation. The content is destroyed by partial replacement of content configuration data to effectively prevent unauthorized use of the content. It is an object of the present invention to provide an information processing apparatus and an information processing method for realizing secure data processing that prevents the above-described problem.

The first aspect of the present invention is:
An information processing apparatus that executes content reproduction processing,
A content reproduction processing unit for executing a data conversion process for replacing a part of the configuration data of the input content to be reproduced with the conversion data recorded in the conversion table and generating a reproduction content;
A parameter generation unit for providing a parameter to be applied in the data conversion process to the content reproduction processing unit;
The content reproduction processing unit
A configuration for outputting a parameter calculation request with a different parameter identifier for each segment set as a playback content segmentation area and a processing request different from the parameter calculation request to the parameter generation unit;
The parameter generator is
The processing request is sequentially input from the content reproduction processing unit to execute the process,
When the processing request from the content reproduction unit is a parameter calculation request, in response to the parameter calculation request, a segment-specific parameter that differs for each segment is calculated and provided to the content reproduction processing unit.
When another processing request is input from the content playback processing unit while the processing request input from the content playback processing unit is being executed, only one processing request is held for one type of processing request. ,
The content reproduction processing unit
Conversion applied to the conversion table data recorded in the conversion table as replacement data for the configuration data of the segment by executing arithmetic processing or encryption processing applying a segment-specific parameter acquired from the parameter generation unit It exists in the information processing apparatus which performs the decompression | restoration process of the data containing data.

  Furthermore, in one embodiment of the information processing apparatus of the present invention, the parameter generation unit further receives another processing request from the content reproduction processing unit during execution of the parameter calculation request from the content reproduction processing unit. In this case, the first other processing request is accepted, and the subsequent other processing requests are rejected.

Furthermore, in one embodiment of the information processing apparatus of the present invention, the content reproduction processing unit calculates a parameter identifier corresponding to the segment based on the EP map registration table ID by the following calculation formula:
(SP_ID) = (EP_map_ID) / N
However,
SP_ID: parameter identifier,
EP_map_ID: EP map registration table ID,
N: Number of EP map registration tables set corresponding to one segment,
It is the structure which performs the process calculated according to the said Formula.

  Furthermore, in one embodiment of the information processing apparatus of the present invention, the content reproduction processing unit acquires the conversion table data including the conversion data from a packet included in the content, and acquires the segment specific information acquired from the parameter generation unit. It is characterized in that an arithmetic process or an encryption process to which the above parameters are applied is executed, and a restoration process of data including conversion data applied as replacement data for the constituent data of the segment is executed.

  Furthermore, in one embodiment of the information processing apparatus of the present invention, the content reproduction processing unit acquires conversion table data including the conversion data from independent conversion table data different from the content, and acquires the conversion table data from the parameter generation unit. The present invention is characterized in that an arithmetic process or an encryption process to which a segment-specific parameter is applied is executed, and a data restoration process including conversion data applied as replacement data for the configuration data of the segment is executed.

Furthermore, the second aspect of the present invention provides
An information processing method for executing content reproduction processing in an information processing device,
In the content playback processing unit,
A parameter calculation request with a different parameter identifier for each segment set as a playback content segmentation area, and a process of outputting a processing request different from the parameter calculation request to the parameter generation unit,
In the parameter generator,
The processing request is sequentially input from the content reproduction processing unit to execute the process,
When the processing request from the content reproduction unit is a parameter calculation request, in response to the parameter calculation request, a segment-specific parameter that differs for each segment is calculated and provided to the content reproduction processing unit.
When another processing request is input from the content playback processing unit while the processing request input from the content playback processing unit is being executed, processing for holding only one processing request for one type of processing request is executed. And
In the content reproduction processing unit,
At the time of content playback processing for executing processing for generating playback content by executing data conversion processing that replaces part of configuration data of input content to be played back with conversion data recorded in a conversion table,
Conversion applied to the conversion table data recorded in the conversion table as replacement data for the configuration data of the segment by executing arithmetic processing or encryption processing applying a segment-specific parameter acquired from the parameter generation unit There is an information processing method for generating reproduction content by executing a restoration process of data including data.

  Furthermore, in one embodiment of the information processing method of the present invention, the parameter generation unit further receives another processing request from the content reproduction processing unit during execution of the parameter calculation request from the content reproduction processing unit. The first other processing request is accepted, and the other processing requests thereafter are rejected.

Furthermore, in one embodiment of the information processing method of the present invention, the parameter identifier is based on the EP map registration table ID, the following calculation formula:
(SP_ID) = (EP_map_ID) / N
However,
SP_ID: parameter identifier,
EP_map_ID: EP map registration table ID,
N: Number of EP map registration tables set corresponding to one segment,
An identifier that can be calculated according to the above formula.

  Other objects, features, and advantages of the present invention will become apparent from a more detailed description based on embodiments of the present invention described later and the accompanying drawings. In this specification, the system is a logical set configuration of a plurality of devices, and is not limited to one in which the devices of each configuration are in the same casing.

  According to the configuration of one embodiment of the present invention, according to the configuration of one embodiment of the present invention, the conversion data is restored and acquired by calculation or encryption processing using different parameters for each segment set as a content segmentation area. Thus, in the configuration in which content playback is performed while replacing part of the content data with the acquired conversion data, the SPN (source packet number) of the packet included in the segment of the playback target content and the parameter ID (SP_ID) are set. A segment-corresponding parameter based on a table that associates a parameter ID with a table associated with each other or an EP map registration table identifier (EP map registration table ID) that stores information on packets included in a segment of a content to be played back Acquired ID and acquired Since the secure VM is notified of the parameter ID (SP_ID) and the secret parameter calculation request (INTRP) is executed, the secret parameter (SP) corresponding to each segment is sequentially received from the secure VM accurately. Content reproduction can be performed while performing accurate data conversion.

  According to the configuration of one embodiment of the present invention, a playback (player) application that executes content playback first corresponds to playback target content data from an EP map recorded in clip information as content playback section information. An EP map is specified, and a parameter ID (SP_ID) is obtained by applying a calculation formula based on a registration table identifier (EP map registration table ID) of the EP map, or obtained by counting the number of EP map registration tables. Because the configuration is such that the acquired parameter ID (SP_ID) is notified to the secure VM and the secret parameter calculation request (INTRP) is executed, the parameter ID (SP_ID) is acquired without applying a special parameter ID specifying table. The secret corresponding to each segment DOO parameter (SP) sequentially after receipt accurately from the secure VM, it is possible to perform content reproduction while performing accurate data conversion.

It is a figure explaining the structure and process of the storage data of an information recording medium, a drive apparatus, and information processing apparatus. It is a figure explaining the example of a setting of the content management unit set with respect to the storage content of an information recording medium. It is a figure explaining a response | compatibility with the content management unit and unit key set with respect to the storage content of an information recording medium. It is a figure explaining the data recorded on the information recording medium, and the data conversion process required in content reproduction. It is a figure explaining a data structure in case a conversion table is stored in the transport stream packet containing a content. It is a figure explaining the detail of the content stored in an information recording medium, and a conversion table. It is a figure which shows the data structure of the conversion entry contained in a conversion table. It is a figure explaining the data conversion process which applied the conversion entry in the TS packet which comprises a content. It is a figure explaining the data conversion process to which the conversion entry in a conversion table is applied. It is a figure explaining the processing sequence performed between a reproduction | regeneration (player) application and secure VM. It is a figure explaining the copy process of the conversion table performed in the title initialization process in the process sequence between a reproduction | regeneration (player) application and secure VM. It is a figure explaining the acceptance of a process in a secure VM, and a rejection sequence. It is a figure explaining the process example of a content reproduction process. It is a figure explaining the data conversion process performed in the case of content reproduction. It is a figure explaining the outline | summary of SP identifier (SP_ID) acquisition process example 1 corresponding to a segment. It is a figure explaining EP map. It is a figure explaining EP map. It is a figure explaining the example of a structure of the processing sequence of SP identifier (SP_ID) acquisition process example 1 corresponding to a segment, and an SP_ID specific table. It is a figure which shows the whole data structure of a conversion table. It is a figure explaining the structural example of a SP_ID specific table. It is a figure which shows the data structure of the conversion table body contained in a conversion table. It is a figure which shows the data structure of the conversion table block (FUT block) contained in a conversion table body. It is a figure which shows the flowchart explaining the content reproduction | regeneration sequence at the time of applying the SP identifier (SP_ID) acquisition process example 1 corresponding to a segment. It is a figure explaining the content reproduction sequence in special reproduction at the time of applying SP identifier (SP_ID) acquisition processing example 1 corresponding to a segment. It is a figure explaining the structural example of the SP_ID specific table in the process example 2. FIG. It is a figure which shows the flowchart explaining a content reproduction sequence at the time of applying SP identifier (SP_ID) acquisition process example 2 corresponding to a segment. It is a figure explaining the content reproduction sequence in special reproduction at the time of applying SP identifier (SP_ID) acquisition processing example 2 corresponding to a segment. It is a figure explaining the outline | summary of SP identifier (SP_ID) acquisition process example 3 corresponding to a segment. It is a figure which shows the flowchart explaining a content reproduction sequence at the time of applying the SP identifier (SP_ID) acquisition process example 3 corresponding to a segment. It is a figure which shows the flowchart explaining the content reproduction sequence in special reproduction at the time of applying the SP identifier (SP_ID) acquisition process example 3 corresponding to a segment. FIG. 3 is a diagram for describing a hardware configuration example of an information processing apparatus that executes an application as a host.

The details of the information processing apparatus and information processing method of the present invention will be described below with reference to the drawings. The description will be made according to the following description items.
1. 1. Outline of data stored in information recording medium and processing in drive and host 2. Content management unit (CPS unit) 4. Outline of data structure and data conversion process of content including modified data 4. Process between playback (player) application and secure VM Content reproduction processing SP identifier (SP_ID) acquisition process corresponding to segment (6.1) SP identifier (SP_ID) acquisition process example 1 corresponding to segment
(6.2) SP identifier (SP_ID) acquisition processing example 2 corresponding to a segment
(6.3) SP identifier (SP_ID) acquisition processing example 3 corresponding to a segment
7). Configuration of information processing apparatus 8. Information recording medium manufacturing apparatus and information recording medium

[1. Overview of data stored in information recording medium and processing in drive and host]
First, data stored in the information recording medium and an outline of processing in the drive and the host will be described. FIG. 1 shows the configuration of the information recording medium 100, the drive 120, and the host 140 in which content is stored. The host 140 is a data reproduction (or recording) application executed by an information processing apparatus such as a PC, and performs processing using hardware of the information processing apparatus such as a PC in accordance with a predetermined data processing sequence.

  The information recording medium 100 is, for example, an information recording medium such as a Blu-ray disc, a DVD, and the like, which is a legitimate content manufactured at a disc manufacturing factory with the permission of a so-called content right holder having a copyright or distribution right An information recording medium (ROM disk or the like) storing various contents or an information recording medium (RE disk or the like) capable of recording data. In the following embodiments, a disk-type medium will be described as an example of the information recording medium. However, the present invention can be applied to configurations using information recording media of various modes.

  As shown in FIG. 1, an information recording medium 100 includes an encrypted content 101 that has been subjected to encryption processing and partial data replacement processing, and a tree-structured key distribution method known as one aspect of the broadcast encryption method. MKB (Media Key Block) 102 as an encryption key block generated based on the content key, title key file 103 composed of data (Encrypted CPS Unit Key) encrypted title key applied to content decryption processing, etc. Use permission information 104 including CCI (Copy Control Information) as copy / playback control information, a conversion table (Fix-up Table) 105 in which conversion data corresponding to replacement data of a predetermined area in the content is registered, a conversion table ( (Fix-up Table) 105 registered data Stored data transformation processing program 106 including the processing instructions for execution. The data example shown in the figure is an example, and the stored data differs slightly depending on the type of disk. Hereinafter, an overview of these various types of information will be described.

(1) Encrypted content 101
Various contents are stored in the information recording medium 100. For example, it consists of an AV (Audio Visual) stream of moving image content such as HD (High Definition) movie content which is high-definition moving image data, a game program of a format defined by a specific standard, an image file, audio data, text data, etc. Content. These contents are specific AV format standard data and are stored according to a specific AV data format. Specifically, for example, it is stored as Blu-ray disc ROM standard data according to the Blu-ray disc ROM standard format.

  Furthermore, for example, a game program as service data, an image file, audio data, text data, or the like may be stored. These contents may be stored as data having a data format that does not conform to a specific AV data format.

  The content types include various contents such as music data, image data such as moving images and still images, game programs, and WEB contents, and these contents can be used only by data from the information recording medium 100. Various types of information such as content information that can be used in combination with content information, data from the information recording medium 100, and data provided from a network-connected server are included. The content stored in the information recording medium is encrypted by assigning a different key (CPS unit key or unit key (or sometimes called a title key)) to each divided content in order to realize different usage control for each divided content. And stored. A unit for assigning one unit key is called a content management unit (CPS unit). Furthermore, the content is set as broken data in which a part of the configuration data is replaced with data different from the correct content data. The correct content playback is not executed only by the decryption process. If playback is performed, the broken data is converted. Processing to replace the data registered in the table is required. These processes will be described in detail later.

(2) MKB
An MKB (Media Key Block) 102 is an encryption key block generated based on a tree-structured key distribution method known as one aspect of the broadcast encryption method. The MKB 102 can acquire the media key [Km], which is a key necessary for content decryption, only by processing (decryption) based on the device key [Kd] stored in the information processing apparatus of the user having a valid license. This is a key information block. This is an application of an information distribution method in accordance with a so-called hierarchical tree structure, which makes it possible to acquire and invalidate a media key [Km] only when the user device (information processing apparatus) has a valid license. In the revoked user device, the media key [Km] cannot be acquired.

  The management center as a license entity cannot be decrypted with a device key stored in a specific user device due to a change in the device key used for encrypting key information stored in the MKB, that is, a media key necessary for content decryption cannot be obtained. An MKB having a configuration can be generated. Accordingly, it is possible to provide an encrypted content that can be decrypted only to a device having a valid license by removing (revoking) an unauthorized device at an arbitrary timing. The content decryption process will be described later.

(3) Title Key File As described above, each content or a set of a plurality of contents is encrypted by applying an individual encryption key (title key (CPS unit key)) for content usage management. It is stored in the recording medium 100. That is, AV (Audio Visual) stream, image data such as music data, moving image, still image, game program, WEB content, etc. constituting the content are divided into units as management units for content use. It is necessary to generate a different title key and perform decryption processing. Information for generating the title key is title key data. For example, the title key is obtained by decrypting the encrypted title key with a key generated by a media key or the like. In accordance with a predetermined encryption key generation sequence to which the title key data is applied, a title key corresponding to each unit is generated and the content is decrypted.

(4) Use Permission Information The use permission information includes, for example, copy / playback control information (CCI). That is, the copy restriction information for use control corresponding to the encrypted content 101 stored in the information recording medium 100 and the reproduction restriction information. This copy / playback control information (CCI) can be set in various ways, for example, when it is set as individual CPS unit information set as a content management unit, or when it is set corresponding to a plurality of CPS units. is there.

(5) Conversion Table As described above, the encrypted content 101 stored in the information recording medium 100 is subjected to predetermined encryption, and part of the content configuration data is based on broken data different from the correct data. It is configured. When reproducing the content, a data overwriting process is required to replace the broken data with conversion data that is correct content data. A table in which the conversion data is registered is a conversion table (Fix-up Table) 105. A large number of pieces of broken data are scattered and set in the content, and when reproducing the content, it is necessary to replace (overwrite) the plurality of broken data with the conversion data registered in the conversion table. By applying this conversion data, for example, even when the encryption key is leaked and the content is decrypted illegally, the content cannot be reproduced by the presence of the replacement data only by decrypting the content. Unauthorized use of content can be prevented.

  The conversion table 105 includes conversion data including data that makes it possible to analyze the constituent bits of the identification information that can identify the content playback apparatus or the content playback application, in addition to the normal conversion data. Specifically, for example, a player ID as identification data of a player (an apparatus that executes a host application) or “conversion data including an identification mark” in which identification information generated based on the player ID is recorded is included. The conversion data including the identification mark is data in which the bit value of the correct content data is slightly changed at a level that does not affect the reproduction of the content. Details of processing using these conversion data will be described later.

  Although FIG. 1 shows an example in which the conversion table 105 is set as an independent data file, the conversion table is not included as an independent file, but is included in the configuration packet of the encrypted content 101 in a scattered manner. Also good. These configurations and processes will be described later.

(6) Data Conversion Processing Program The data conversion processing program 106 is a program including processing instructions for executing data conversion processing based on registered data in the conversion table (Fix-up Table) 105, and is executed by a host that executes content reproduction. Used. It is executed in the data conversion processing unit 154 of the host 100 in FIG. Note that the conversion table 105 described above may be set as data included in the data conversion processing program 106.

  In the host, a virtual machine (VM) that executes data conversion processing is set, the data conversion processing program 106 read from the information recording medium 100 is executed in the virtual machine (VM), and a conversion table (Fix-up Table) is executed. By applying the registration entry 105, the data conversion process of the partial configuration data is executed on the decrypted content. Details of these processes will be described later.

  Next, configurations of the host 140 and the drive 120 and an outline of processing will be described with reference to FIG. The reproduction process of the content stored in the information recording medium 100 is executed by transferring data to the host 140 via the drive 120.

  A reproduction (player) application 150 and a secure VM 160 are set in the host 140. The reproduction (player) application 150 is a content reproduction processing unit, and executes processing such as authentication processing with a drive, content decoding, and decoding processing executed in the content reproduction processing. The secure VM 160 functions as, for example, a parameter generation unit that provides parameters to be applied in a data conversion process executed in a content reproduction process executed by a reproduction (player) application 150 that is a content reproduction processing unit. The secure VM 160 is set as a virtual machine in the host 140. A virtual machine (VM) is a virtual computer that directly interprets and executes an intermediate language, reads instruction code information in an intermediate language independent of the platform from the information recording medium 100, and interprets and executes it.

  An information transmission or processing request between the playback (player) application 150 and the secure VM 160 includes an interrupt (INTRP) from the playback (player) application 150 to the secure VM 160, and a response (Call) from the secure VM 160 to the playback (player) application 150. It is executed by a sequence of processing. A request for calculating a parameter to be applied in the data conversion process executed in the content reproduction process and the parameter according to a sequence of an interrupt (INTRP) from the application 150 to the secure VM 160 and a response (Call) process from the secure VM 160 to the reproduction (player) application 150 Provision is made. Details of these processing sequences will be described later.

  The main processing executed by the host 140 will be described. Prior to the use of the content, mutual authentication processing is executed between the drive 120 and the host 140. After the validity of both is confirmed by the establishment of this authentication processing, the encrypted content is transferred from the drive to the host, and the host side Then, the content is decrypted, and further the data conversion processing based on the above-described conversion table is executed to reproduce the content.

  In the mutual authentication executed between the host 140 and the drive 120, refer to a revocation (invalidation) list issued by the management center indicating whether each device or application is registered as an unauthorized device or application. A process for determining validity is executed.

  The drive 120 has a memory 122 for storing a host CRL (Certificate Revocation List) storing revocation (invalidation) information of a host certificate (public key certificate). On the other hand, the host 140 has a memory 152 for storing a drive CRL (Certificate Revocation List) storing revocation (invalidation) information of a drive certificate (public key certificate). The memory is a non-volatile memory (NVRAM). For example, when the CRL read from the information recording medium 100 is a newer version, each data processing unit 121, 151 stores a new version host in the memory 122.152. Update processing for storing the CRL or the drive CRL is performed.

  The management center sequentially updates CRLs such as the host CRL and the drive CRL. That is, when a new unauthorized device is detected, an updated CRL is issued by adding a certificate ID or device ID issued to the unauthorized device as a new entry. Each CRL is assigned a version number, and can be compared with the old and new. For example, when the CRL read from the information recording medium loaded in the drive is newer than the CRL stored in the memory 122 in the drive, the drive executes a CRL update process. Similarly, the host 140 updates the drive CRL.

  In addition to the CRL update process, the data processing unit 121 of the drive 120 executes an authentication process with the host that is executed when the content is used, a data read process from the information recording medium, and a data transfer process to the host.

  The reproduction (play or application) application 150 of the host 140 is a data reproduction (or recording) application executed by an information processing apparatus such as a PC, and uses hardware of the information processing apparatus such as a PC in accordance with a predetermined data processing sequence. Perform the process.

  The host 140 includes a data processing unit 151 that performs mutual authentication processing with the drive 120, data transfer control, and the like, a decryption processing unit 153 that performs decryption processing of the encrypted content, and data based on the registration data of the conversion table 105 described above. A data conversion processing unit 154 that executes conversion processing and a decoding processing unit 155 that executes decoding (for example, MPEG decoding) processing are included.

  The data processing unit 151 executes a host-drive authentication process. In the authentication process, the drive is not a revoked drive with reference to the drive CRL stored in the memory a152 as a nonvolatile memory (NVRAM). Make sure. The host also performs an update process for storing a new version of the drive CRL in the memory a152.

  The decryption processing unit 153 applies various information stored in the memory b 156 and data read from the information recording medium 100 to generate a key to be applied to content decryption, and executes decryption processing of the encrypted content 101. To do. The data conversion processing unit 154 applies the conversion data registered in the conversion table acquired from the information recording medium 100 according to the data conversion processing program acquired from the information recording medium 100, and replaces the content configuration data (overwrite) ). The decoding processing unit 155 executes decoding (for example, MPEG decoding) processing.

  The memory b156 of the information processing apparatus 150 stores a device key: Kd, key information applied to mutual authentication processing, key information applied to decryption, and the like. The details of the content decryption process will be described later. The device key: Kd is a key applied to the MKB process described above. The MKB can acquire the media key [Km], which is a key necessary for content decryption, only by processing (decryption) based on the device key [Kd] stored in the information processing apparatus of the user having a valid license. When decrypting the encrypted content, the information processing apparatus 150 executes the MKB process by applying the device key: Kd stored in the memory b156. The details of the content decryption process will be described later.

[2. About content management unit (CPS unit)]
As described above, the content stored in the information recording medium is stored after being encrypted by being assigned a different key for each unit in order to realize different usage control for each unit. That is, the content is divided into content management units (CPS units), subjected to individual encryption processing, and individual usage management.

  When using content, it is necessary to obtain a CPS unit key (also referred to as a title key) assigned to each unit. In addition, other necessary keys, key generation information, etc. are applied in advance. Playback is performed by executing data processing based on the decoding processing sequence. A setting mode of the content management unit (CPS unit) will be described with reference to FIG.

  As shown in FIG. 2, the content has a hierarchical structure of (A) an index 210, (B) a movie object 220, (C) a playlist 230, and (D) a clip 240. When an index such as a title accessed by the playback application is specified, for example, a playback program associated with the title is specified, and a playlist that defines the playback order of contents is selected according to the program information of the specified playback program.

  The play list includes play items as reproduction target data information. The AV stream or the command as the actual content data is selectively read out by the clip information as the playback section defined by the play item included in the playlist, and the AV stream playback and command execution processing are performed. There are a large number of playlists and play items, and a playlist ID and play item ID as identification information are associated with each.

  FIG. 2 shows two CPS units. These constitute a part of the content stored in the information recording medium. Each of CPS units 1 and 271 and CPS units 2 and 272 is set as a unit including a clip including a title as an index, a movie object as a playback program file, a playlist, and an AV stream file as content actual data. CPS unit.

  The content management units (CPS units) 1 and 271 include titles 1 and 211 and titles 2 212, playback programs 221 and 222, playlists 231 and 232, clips 241 and clips 242, and these two clips 241. , 242, AV stream data files 261, 262, which are actual data of content, are at least encryption target data, and in principle are encryption keys set in association with the content management units (CPS units) 1, 271. Is set as data encrypted by applying a title key (Kt1) (also called a CPS unit key).

  The content management units (CPS units) 2, 272 include applications 1, 213, a playback program 224, a playlist 233, and a clip 243 as indexes, and an AV stream data file 263 that is actual data of the content included in the clip 243. Is encrypted by applying a title key (Kt2) that is an encryption key that is an encryption key set in association with the content management units (CPS units) 2 and 272.

  For example, in order for the user to execute an application file or content reproduction process corresponding to the content management units 1 and 271, a title key as an encryption key set in association with the content management units (CPS units) 1 and 271: It is necessary to acquire Kt1 and execute the decoding process. In order to execute the application file or content reproduction process corresponding to the content management unit 2 272, the title key: Kt 2 as an encryption key set in association with the content management unit (CPS unit) 2 272 is acquired. Therefore, it is necessary to execute the decoding process.

  FIG. 3 shows a setting configuration of the CPS unit and a correspondence example of title keys. FIG. 3 shows a correspondence between CPS unit setting units as usage management units of encrypted content stored in the information recording medium and title keys (CPS unit keys) applied to each CPS unit. It is also possible to store and set a CPS unit for subsequent data and a title key in advance. For example, the data portion 281 is an entry for subsequent data.

  There are various CPS unit setting units such as content titles, applications, data groups, and the like, and a CPS unit ID as an identifier corresponding to each CPS unit is set in the CPS unit management table.

  In FIG. 3, for example, title 1 is CPS unit 1, and when decrypting encrypted content belonging to CPS unit 1, it is necessary to generate title key Kt1 and perform decryption processing based on the generated title key Kt1. .

  As described above, the content stored in the information recording medium 100 is stored after being encrypted by being assigned a different key for each unit in order to realize different usage control for each unit. For individual usage management for each content management unit (CPS unit), usage permission information (UR: Usage Rule) for each content management unit (CPS unit) is set. As described above, the use permission information is information including, for example, copy / reproduction control information (CCI) for content, and copy restriction information and reproduction restriction information of encrypted content included in each content management unit (CPS unit). It is.

  Note that the generation of the title key requires data processing using various information stored in the information recording medium. Specific examples of these processes will be described in detail later.

[3. Overview of content data structure including transformation data and data conversion process]
Next, the configuration of content including deformation data and an outline of data conversion processing will be described. As described above, the encrypted content 101 included in the information recording medium 100 is set as broken data in which a part of the configuration data is replaced with data different from the correct content data, and correct content reproduction is executed only by the decryption process. However, when playing back, it is necessary to replace the broken data with the conversion data registered in the conversion table.

  With reference to FIG. 4, an outline of a configuration of content stored in the information recording medium and reproduction processing will be described. The information recording medium 100 stores AV (Audio Visual) content such as a movie. These contents are encrypted and can be reproduced after being decrypted by a process using an encryption key that can be obtained only by a reproducing apparatus having a predetermined license. Specific content reproduction processing will be described later. The content stored in the information recording medium 100 has not only encryption but also a configuration in which content configuration data is replaced with modified data.

  FIG. 4 shows a configuration example of the recorded content 291 stored in the information recording medium 100. The recorded content 291 includes normal content data 292 that is not deformed and broken data 293 that is content that has been deformed and destroyed. Broken data 293 is data in which the original content is destroyed by data processing. Therefore, normal content reproduction cannot be performed by applying the content 291 including the broken data.

  In order to perform content playback, it is necessary to generate the playback content 296 by performing processing for replacing the broken data 293 included in the recorded content 291 with normal content data. Conversion data (conversion data) as normal content data corresponding to each broken data area is registered in a conversion table (FUT (Fix-Up Table)) 105 (see FIG. 1) recorded in the information recording medium 100. The converted data 295 obtained is acquired, the process of replacing the data in the broken data area is executed, the playback content 296 is generated, and playback is executed. Specific examples of the conversion table and details of the reproduction process using the conversion table will be described later.

  When generating the playback content 296, in addition to the process of replacing the broken data 293 with the conversion data 297 as normal content data, a part of the recorded content 291 can be identified by the content playback device or the content playback application. A process of replacing the constituent bits of the identification information (for example, player ID) with the identifier setting conversion data 298 including data that can be analyzed is performed. For example, when illegally copied content is leaked, it is possible to identify the source of illegal content by analyzing the identifier setting conversion data 298 in the leaked content.

  The conversion table storing the conversion data is set as a separate file from the content and recorded on the information recording medium. Furthermore, partial data of the conversion table including conversion data is recorded in a distributed manner in specific packets in the content configuration data. That is, the conversion data is stored in the conversion table 106 shown in FIG. 1 and is also distributed and recorded in the encrypted content 101 and is recorded in duplicate. Whether the information processing apparatus that executes content reproduction acquires the conversion data stored in the conversion table 106 and executes data replacement, or whether the distribution is recorded in the content and acquires the conversion entry recorded to execute data replacement One of the processes is performed.

  In the case of recording the conversion table block that is the configuration data of the conversion table including the conversion data dispersed in the specific packet in the content configuration data, for example, the configuration data of the conversion table block with the setting shown in FIG. Are stored in a transport stream packet containing the content. FIG. 5A shows the structure of content data. This content structure indicates content data including a decoded transport stream (TS) packet. The transport stream is composed of TS (transport stream) packets having a predetermined number of bytes. The constituent data of the conversion table block including the conversion data is divided and recorded in a part of the plurality of TS packets. For example, it is recorded in the TS packet 307 shown in the figure. As the TS packet for storing the conversion table block, for example, a TS packet including a PMT (program map table) set in a distributed manner in the content is used.

  In the conversion table block, conversion data (or identifier setting conversion data) for performing a replacement process on the decrypted content and a recording position of the conversion data are recorded. As the recording position information, for example, when there are a plurality of recording positions as shown in FIG. 5B, the position of the first modified packet is the TS packet 307 including the conversion entry as the configuration data of the conversion table block. As the offset of the second packet, the offset position indicating the relative packet position from the first modified packet 308 to the subsequent modified packet 309 is recorded.

  For example, as shown in FIG. 5B, the recording position of the conversion data recorded in each conversion table block is set in the vicinity of the TS packet including the conversion entry as the configuration data of each conversion table block.

  For example, in the example shown in FIG. 5B, the packets 308 and 309 having the conversion data recording area are set in the vicinity of the packet 307 including the conversion entry as the configuration data of the conversion table block. With this setting, when content is decrypted and played back in real time, the data replacement process using the converted data can be executed as a continuous process after the decryption process, and the TS in which the conversion table is recorded. The conversion data can be acquired by the packet detection and analysis process, and the process of writing (overwriting) the conversion data to the position recorded in the table can be efficiently executed.

  With reference to FIG. 6, a configuration example of the data conversion processing program 300, the conversion table (FUT: Fix-Up Table) 301, and the encrypted content 306 stored in the information recording medium 100 will be described. As shown in FIG. 6, the conversion table 301 recorded in the information recording medium 100 has a configuration including a secret parameter ID specifying table 302 and a conversion table body 303a.

  The conversion table body 303a is set as a conversion table set 303b for each clip, the conversion table for each clip is composed of a plurality of conversion table blocks 1 to K304, and each conversion table block includes a plurality of conversion entries 305. It has the composition including. Each of these conversion entries includes conversion data applied as replacement data and recording position information of the conversion data.

FIG. 7 shows a data configuration example of one conversion entry (FixUpEntry) included in the conversion table block. As shown in FIG. 7, the conversion entry (FixUpEntry) includes the following data.
type_indicator: Type identifier [00: No conversion, 01b: Processing by conversion data, 10b, 11b: Processing by conversion data with identifier setting]
FM_ID_bit_position: identification bit position of the player ID corresponding to the identifier setting conversion data
relative_SPN: Conversion data application packet position (number of packets from the programmable map table (PMT) storage packet)
byte_position: Conversion data recording position in the packet
overwrite_value: Conversion data (including identifier setting conversion data)
relative_SPN_2: Second conversion data application packet position (number of packets from the PMT packet)
byte_position_2: Conversion data recording position in the packet (corresponding to the second conversion data)
overwrite_value_2: Second conversion data (including identifier setting conversion data)
It consists of these data.

  The conversion table is set as a conversion table in which conversion data that is a part of the content data to be replaced and setting position information for the content of the conversion data is recorded, and content conversion data replacement processing by applying this conversion table Data conversion is performed by executing a data conversion processing program including an execution instruction.

Information [type_indicator] included in the conversion entry (FixUpEntry) information included in the conversion table block shown in FIG.
(A) registration information regarding conversion data for converting broken data into legitimate content data, or
(B) registration information regarding identifier setting conversion data for embedding identification information of a playback device or a content playback application;
This is a type identifier for identifying which of the registration information items (a) and (b).

  When the registration information area of the conversion table is a registration information area related to the identifier setting conversion data for embedding the identification information of the playback device or content playback application, the identification of the content playback device or content playback application is used as the table registration information. Conversion data to be selectively applied based on the information, that is, identifier setting conversion data is registered.

  The registration information [FM_ID_bit_position] is position information of bits to be referred for determining the processing mode in the identification information of the playback device or playback application composed of a plurality of bits. For example, in the identification information of a playback device or playback application consisting of a plurality of bits, if the bit value of the bit to be referred to for determining the processing mode is 1, the content configuration data is identified by the identifier setting conversion data registered in the conversion table. The replacement is executed, and when the bit value of the bit to be referred to is 0, the processing mode is determined such that the replacement is not executed, and the data conversion is executed.

  It is also possible to set so that conversion is executed when the reference bit is 0 and conversion is not executed when the reference bit is 1. Alternatively, the conversion data when the reference bit is 0 and the conversion data when the reference bit are 1 are set as different conversion data, and the conversion data is appropriately selected and set according to the bit value of the reference bit. Good.

  As shown in FIG. 6, the encrypted content 306 is set as a stream of TS packets, and packets in which conversion entries are scattered and stored, that is, conversion entry storage packets 307a to 307d are set. The AV stream is divided in units of clips, and conversion entries in units of clips are distributed and recorded in the content.

  As described with reference to FIG. 5, the conversion data in the vicinity is recorded in each conversion entry set as the distributed recording data. The conversion entries distributed and recorded in the encrypted content 306 and the conversion entries included in the conversion table 301 are the same, and the information processing apparatus that executes the content playback uses the content according to the specifications of the playback (player) application. Either conversion data is acquired from conversion entries recorded in a distributed manner and data replacement is executed, or conversion data is acquired from conversion entries in the conversion table 301 and data replacement is executed. .

  As shown in FIG. 6, the content is divided into segments for each predetermined data unit. The conversion entry including each conversion data is subjected to an operation or encryption process to which a different parameter (SP: secret parameter) is applied for each predetermined data unit (segment unit) of the content.

  An information processing apparatus that executes data conversion processing as data replacement processing executed at the time of content reproduction sequentially acquires secret parameters (SP1, SP2, SP3...) Corresponding to each segment, and sets each segment position. The conversion table block including the conversion data corresponding to is subjected to a calculation or encryption process using the acquisition parameter (SPn) to acquire the conversion data.

  A secret parameter (SP) ID specifying table 302 shown in FIG. 6 is a table in which guide information indicating which secret parameter should be applied to which content data position is recorded. Details of this table and usage examples will be described later.

  A specific example of data replacement based on the conversion data will be described with reference to FIGS. First, with reference to FIG. 8, an example of processing for acquiring conversion table block configuration data including conversion data distributed and recorded in content and executing data replacement will be described.

  FIG. 8A shows the content structure recorded on the information recording medium 100. The configuration data of the conversion table block including the conversion entry is distributed and recorded in TS packets 307a to 307d shown in the figure.

  The data replacement processing sequence will be described with reference to FIG. The process shown in FIG. 8B is a process executed by the playback (player) application of the host. FIG. 8B shows a part of a TS packet sequence of content belonging to segment ID = N, N + 1 in the content configuration data.

  For example, the packet 311 including the conversion entry recorded in the segment ID = N stores the XORed conversion entry 315 as result data obtained by performing an exclusive OR operation with the secret parameter (SPx). The playback (player) application of the host that executes the data replacement process performs an exclusive OR operation with the secret parameter (SPx) 316 on the XORed conversion entry 315 to obtain the conversion entry 317, and converts the conversion entry 317. Conversion data and recording position information are obtained from the data, and a replacement process with the packets 312a, 3b at the data replacement target position is executed.

  The parameter (SPx) applied to the calculation for obtaining the conversion entry 317 is supplied from the secure VM 320. For example, in order to acquire a secret parameter (SPn) necessary for each segment of the content, the playback (player) application acquires a secret parameter ID (SP_ID) as secret parameter designation information corresponding to each segment, and acquires the secret parameter. The secret parameter calculation request including the ID notification is output as an interrupt (INTRP) request to the secure VM. The secure VM calculates a secret parameter (SPx) corresponding to SP_ID in response to a secret parameter calculation request from the playback (player) application, and provides it as a response (Call) to the playback (player) application.

  As shown in FIG. 8, when the segment is different, the parameter (SPx) applied to the calculation for obtaining the conversion entry is a different parameter. For example, one segment is set to about 10 seconds as the content playback time, and the playback (player) application receives different parameters from the secure VM for each segment of about 10 seconds, restores the conversion entry, Conversion data is acquired from the restored conversion entry, and data replacement processing is executed.

  In FIG. 9, the XORed conversion entry is acquired from the conversion table 303b for one clip as an independent conversion table block file, not the conversion table block recorded and distributed in the content, and the calculation or encryption process is executed. An example of processing when restoring a conversion entry, extracting conversion data from the restored conversion entry, and performing data replacement is shown.

  FIG. 9A shows the content structure recorded on the information recording medium 100. The conversion entries including the conversion data are distributed and recorded in the TS packets 307a to 307d shown in the figure, but in this example, these data are not used and are used as the configuration data of the conversion table recorded independently on the information recording medium. The conversion table 303b for one clip is used, and the data replacement is executed by applying the conversion entry stored in the conversion table 303b for one clip.

  The data replacement processing sequence will be described with reference to FIG. The process shown in FIG. 9B is a process executed by the playback (player) application of the host. FIG. 9B shows a part of a TS packet sequence of content belonging to segment ID = N, N + 1 in the content configuration data.

  For example, when data replacement is performed for segment ID = N, a conversion entry corresponding to segment ID = N included in the conversion table 303b for one clip is acquired. However, this conversion entry x315 is an XORed conversion entry 315 as result data obtained by performing an exclusive OR operation with the secret parameter (SPx), as in the case of the conversion table block distributed and recorded in the content. The playback (player) application of the host that executes the data replacement process performs an exclusive OR operation with the secret parameter (SPx) 316 on the XORed conversion entry 315 to obtain the conversion entry 317, and converts the conversion entry 317. Conversion data and recording position information are obtained from the data, and a replacement process with the packets 312a, 3b at the data replacement target position is executed.

  The parameter (SPx) applied to the calculation for obtaining the conversion entry 317 is supplied from the secure VM 320 in the same manner as the processing example described above. For example, in order to acquire a secret parameter (SPn) necessary for each segment of the content, the playback (player) application acquires a secret parameter ID (SP_ID) as secret parameter designation information corresponding to each segment, and acquires the secret parameter. The secret parameter calculation request including the ID notification is output as an interrupt (INTRP) request to the secure VM. The secure VM calculates a secret parameter (SPx) corresponding to SP_ID in response to a secret parameter calculation request from the playback (player) application, and provides it as a response (Call) to the playback (player) application.

  As shown in FIG. 9, when the segment is different, the parameter (SPx) applied to the calculation for acquiring the conversion entry is a different parameter. For example, one segment is set to about 10 seconds as the content playback time, and the playback (player) application receives different parameters from the secure VM for each segment of about 10 seconds, restores the conversion entry, Conversion data is acquired from the restored conversion entry, and data replacement processing is executed.

  In this way, the playback (player) application that executes content playback receives the secret parameter from the secure VM and executes the calculation for each segment, and restores the conversion entry as the configuration data of the conversion table block. Execute, acquire the restored conversion entry, and perform data replacement. In the above processing example, the exclusive OR (XOR) is exemplified as the operation to which the secret parameter is applied. However, other operation processing may be set. Moreover, it is good also as a structure which performs the encryption process etc. which applied a secret parameter.

[4. Processing between playback (player) application and secure VM]
When executing the above-described processing, the playback (player) application sequentially acquires different secret parameters (SP1, SP2, SP3,...) In a certain segment unit during playback of the content. On the other hand, before reproducing the segment switching, the secret parameter is acquired and the data is replaced. In this case, the playback (player) application notifies the secure VM of a secret parameter ID (SP_I) as secret parameter designation information, and identifies a necessary SP. The secret parameter ID (SP_I) is recorded in the secret parameter (SP) ID specifying table 302 described above with reference to FIG.

  The playback (player) application needs to set the secret parameter (SP) ID identification table 302 to a state where it can be referred to. A series of processing sequences executed between the playback application and the secure VM will be described with reference to FIG.

  As described above with reference to FIG. 1, the information transmission or processing request between the playback (player) application 150 and the secure VM 160 is an interrupt (INTRP) from the playback (player) application 150 to the secure VM 160. This is executed by a response (Call) processing sequence from the secure VM 160 to the playback (player) application 150.

  The processing sequence shown in FIG. 10 is a diagram showing the types of processing executed between the playback (player) application 150 and the secure VM 160 from insertion to removal of the information recording medium on which the content is recorded.

  For example, step S11 is a media initialization process that is executed as a process when an information recording medium (Disc) is inserted. The playback (player) application 150 obtains code information necessary for the first playback process. The stored content code file (Content Code File) is loaded into the memory and the execution is started. The content code file (Content Code File) specifies the manufacturer of the playback (player) application, the model name, and the like.

  For example, the secure VM 160 determines whether or not the acquired model name is a model in which a security problem has occurred in the past. Whether or not a problem has occurred is investigated by executing the content code (ContentCode). For example, a specific value on the RAM of the information processing apparatus or an operation of a specific device is checked to check whether the state is correct. Note that the investigation program for each model may not be included in the initially loaded content code file. In this case, another necessary content code file is accessed. When the initialization process by the secure VM 160 is completed, a response (Call) is notified to the playback application 150, and the process proceeds to the next step S12.

  In step S12, a title initialization process (Title Initialize) is executed. The title is applied as the designation information of the reproduction target content, and the title corresponding to the specific reproduction target content is selected based on the designation of the user and the title initialization processing request is sent from the reproduction (player) application 150 together with the title information. The data is output to the secure VM 160.

  The secure VM 160 generates a conversion table that collects conversion data information corresponding to all clips necessary for title playback on the memory of the secure VM 160, and a memory in which the table is stored so that the playback (player) application 150 can acquire the table. Is notified to the playback (player) application 150. During the title initialization, it is possible to perform the same security check as the media initialization in step S11.

  With reference to FIG. 11, an example of processing for generating a conversion table that collects conversion data information corresponding to all clips necessary for title playback, which is executed in the title initialization processing, on the memory of the secure VM 160 will be described. FIG. 11 shows an available memory area (for example, 2 MB) of the secure VM 160. Here, a content code as code information included in the data conversion processing program acquired by the secure VM 160 from the information recording medium is stored. The content code includes a conversion table that has been obfuscated such as encrypted.

  When a title initialization request from the playback (player) application 150 is input, the secure VM 160 decodes a conversion table that collects conversion data information corresponding to all clips necessary for title playback from the content code as necessary. Processing is performed, and the data is stored in the memory in a state (mask state) in which processing such as XORed described above is performed, and the playback (player) application 150 is notified of this memory storage position. This notification process is executed as a response (Call) to the title initialization request (INTRP) from the playback (player) application 150.

  When the reproduction (player) application 150 receives a response (Call) to the title initialization request (INTRP) from the secure VM 160, the reproduction (player) reproduces a necessary data portion from the conversion table storage area of the secure VM 160 use memory area. Copy and store in the available memory area of the application 150. For example, a secret parameter ID (SP_ID) identification table for acquiring the secret parameter ID (SP_ID) corresponding to the segment of the content described above with reference to FIGS. Copy and store in the available memory area.

  First, in the case of a playback (player) application that executes a process of acquiring conversion data from conversion table blocks distributed and recorded in the content described with reference to FIG. 8, a secret parameter ID (SP_ID) specifying table is set. In the case of the player described with reference to FIG. 9, that is, the player that does not use the conversion table block distributed and recorded in the content, the secret parameter ID (SP_ID) is specified in this copy process. The table and the conversion table block storing the conversion entry are also copied and stored in a memory area that can be used. The XORed conversion table block described with reference to FIG. 9 is a conversion table block copied to a usable memory area of the playback (player) application 150 by this processing.

  Returning to FIG. 10, the processing sequence between the playback (player) application 150 and the secure VM 160 will be described. Step S13 is processing corresponding to (Compute_SP) for secret parameter (SP) calculation. The playback (player) application 150 outputs an SP calculation request (INTRP) to the secure VM 160, and the secure VM 160 calculates the calculation result (SP). Is returned to the playback (player) application 150 as a response (Call). When outputting the SP calculation request (INTRP) to the secure VM 160, the playback (player) application 150 acquires SP_ID as SP designation information from, for example, a secret parameter ID (SP_ID) identification table and notifies it.

  When the playback (player) application 150 acquires SP_ID as SP designation information and notifies the secure VM 160 of the SP_ID, it is necessary to select an accurate SP_ID corresponding to the content segment. A specific example of the SP_ID selection process will be described later. Note that the process of step S13 is repeatedly executed for each segment.

  The process of step S14 is a request process from the playback (player) application 150 to the secure VM 160 different from the calculation of the secret parameter. For example, request processing such as execution of security check, and when there is such a request, the secure VM 160 executes processing according to the request and plays back the processing result as a response (Call) (player) application 150. Notify For information transmission at this time, registers that can be written and read by both the playback (player) application 150 and the secure VM 160, such as a player status register and a register (PSR), are used.

  The processing in step S15 is media finalization processing when the information recording medium (Disc) is taken out, and the processing status of the content code (Content Code) is recorded in the nonvolatile memory. By this processing, it becomes possible to continue using the information of the past security check at the next disk insertion.

  As described above, the information transmission or processing request and response between the playback (player) application 150 and the secure VM 160 are performed by the playback (player) application 150 from the interruption (INTRP) to the secure VM 160 and the playback (player) from the secure VM 160. This is executed by a response (Call) process to the application 150.

  In this case, the secure VM 160 does not process all interrupts (INTRP) input from the playback (player) application 150, but executes a certain process based on a certain condition and rejects a certain process. The acceptance / rejection mode of the interrupt processing request (INTRP) in the secure VM 160 will be described with reference to FIG.

  A graph 321 shown in the figure shows mode transition in the secure VM. Time (t) has passed from left to right. First, in the background mode, a secret parameter (SP) calculation request is input as an interrupt request from the playback (player) application. At this time, the secure VM is not executing the process, accepts the secret parameter (SP) calculation request (Accept), transitions to the parameter calculation mode, and executes the parameter calculation process.

  Further, when an interrupt request is received from the playback (player) application during this parameter calculation mode period, the first request is accepted and the consecutively received interrupt requests are rejected (Ignore).

  The processing corresponding to the first interrupt request received during the parameter calculation mode period is executed in the application request mode after the end of the parameter calculation mode period. Further, the secret parameter (SP) calculation request received during this period is accepted (Accept), and after the application request mode ends, the mode changes to the parameter calculation mode and executes the parameter calculation process. In this way, the secure VM has a configuration in which only one unprocessed interrupt is held for one type of interrupt (INTRP). The interrupt request for the second transition is rejected (Ignore).

[5. Content playback processing]
Next, content reproduction processing executed by the host will be described with reference to FIG. In FIG. 13, the information recording medium 330 storing the encrypted content and the information recording medium 330 are set from the left, and the drive 340 for reading data is connected to the information recording medium 330 so as to be able to perform data communication with the drive. A host 345 that executes a playback application that acquires stored content via the drive 340 and executes playback processing is shown.

  Note that the host 345 shown in FIG. 13 includes a secure VM 360 having a playback (player) application block 350 that executes content decryption, decoding, data conversion processing, and the like, and a secure VM 360 that executes secret parameter (SP) calculation processing, and the like. Blocks are shown separately.

  The information recording medium 330 stores an MKB (Media Key Block) 331, a title key file 332, an encrypted content 333, a conversion table 334, and a data conversion processing program 335. The host 345 holds a device key 351 applied to MKB processing.

  A processing sequence in which the host 345 shown in FIG. 13 acquires and reproduces the content stored in the information recording medium 330 via the drive 340 will be described. First, prior to reading the content stored in the information recording medium 330, the host 345 and the drive 340 perform mutual authentication in step S101. This mutual authentication is a process for confirming whether the host and the drive are valid devices or application software. Various processes can be applied as the mutual authentication processing sequence. Through the mutual authentication process, the drive 340 and the host 345 share a session key (Ks) as a common secret key.

  In step S101, mutual authentication between the host drives is performed, and after sharing the session key (Ks), the playback (player) application 350 of the host 345 reads the MKB 331 recorded on the information recording medium 330 in step S102. The media key (Km) is acquired from the MKB by executing the process of the MKB 331 to which the device key 351 obtained by the drive and stored in the memory is applied.

  As described above, the MKB (Media Key Block) 331 is an encryption key block generated based on a tree-structured key distribution method known as one aspect of the broadcast encryption method, and is stored in a device having a valid license. This is a key information block that makes it possible to obtain a media key (Km), which is a key necessary for content decryption, only by processing (decryption) based on the device key (Kd).

  Next, in step S103, the title key file 332 read from the information recording medium 330 is decrypted by applying the media key (Km) obtained in the MKB process in step S102, and the title key (Kt) is obtained. To do. The title key file 332 stored in the information recording medium 330 is a file including data encrypted with a media key, and a title key (Kt) to be applied to content decryption can be acquired by processing using the media key. . For example, an AES encryption algorithm is applied to the decryption process in step S103.

  Next, the playback (player) application 350 of the host 345 reads the encrypted content 333 stored in the information recording medium 330 via the drive 340, stores the read content in the track buffer 352, and the buffer stored content. In step S104, decryption processing using the title key (Kt) is executed to obtain decrypted content.

  The decrypted content is stored in the plaintext TS buffer 353. (Plain TS) means a decrypted plaintext transport stream. Here, the decrypted content stored in the plaintext TS buffer 353 is content including the above-described broken data, and cannot be reproduced as it is, and it is necessary to perform predetermined data conversion (data replacement by overwriting).

  The processing example shown in FIG. 13 is a processing example in which conversion entries distributed and recorded in specific packets in the configuration data of the encrypted content are acquired, and the conversion data is extracted therefrom to perform data replacement. That is, this corresponds to the data conversion process described above with reference to FIG.

  The conversion entry divided and recorded in the content is data in which conversion data (or identifier setting conversion data) for performing replacement processing on the decrypted content and a recording position of the conversion data are recorded.

  The secure VM 361 reads out the data conversion processing program 335 including the instruction code information from the information recording medium 330, and controls the event handler 354 and inputs the player information 355 intermittently before or during the content reproduction or output processing. Based on this, secret parameters (SP1, SP2, SP3...) Necessary for converting the conversion table recorded together with the content on the information recording medium 330 into a plaintext conversion table are generated and output. This process is performed intermittently.

  The secret parameters (SP1, SP2, SP3...) Are calculation or encryption processing parameters that are switched for each segment corresponding to a predetermined content data unit as described above. Specifically, for example, an exclusive OR (XOR) is used. ) Calculation parameter. The secure VM 361 receives parameters (SP1, SP2, SP3,...) Necessary for restoring the conversion entry that is the configuration data of the conversion table block transformed by the arithmetic processing or the encryption processing in response to a request from the playback (player) application. Executes processing to generate and output intermittently.

  In step S104, the reproduction (player) application 350 decrypts the encrypted content 333 including the conversion entry, and the conversion entry that is the configuration data of the conversion table recorded in the content by the demultiplexer processing in step S105. And the table restoration & data conversion process in step S106 is executed under the control of the real-time event handler 356. Under the control of the real-time event handler 356, the playback (player) application 350 outputs a secret parameter calculation request according to segment switching to the secure VM 361 as an interrupt (INTRP), and the secure VM 361 outputs secure parameters (SP1, SP2, SP3,. ..) Is received, decryption or calculation of the conversion table block is executed to acquire a plaintext conversion table block, and a conversion entry included in the acquired conversion table block is acquired.

The conversion entry contains conversion data, that is,
(A) Conversion data (b) Identifier setting conversion data and recording position designation information in the contents of these conversion data are recorded, and the reproduction (player) application 350 performs data conversion processing to be written at the designated position in step S106. Is executed as real-time processing in parallel with content reproduction processing or external output processing.

For example, when the parameter (SP1, SP2, SP3...) Is an exclusive OR (XOR) operation parameter with conversion data corresponding to a predetermined content part data unit, the table restoration process in step S303 is as follows:
[Conversion Table Block 1] (XOR) [SP1],
[Conversion Table Block 2] (XOR) [SP2],
[Conversion Table Block 3] (XOR) [SP3],
::
These exclusive OR operations are executed to obtain conversion entries included in the conversion table block data. In the above formula, [A] (XOR) [B] means an exclusive OR operation of A and B.

  As described above, the conversion table block included in the content 333 recorded on the information recording medium is divided into conversion entries in which conversion data corresponding to each content portion and conversion data position information are recorded, and secret parameters (SP1, SP1, SP2, SP3...) And exclusive OR operation and stored. This parameter is sequentially acquired and output by the secure VM 361.

  In the table restoration & data conversion process in step S106, the conversion data is obtained from the restored conversion entry obtained by the calculation or encryption process using the secret parameter (SP1, SP2, SP3...) And included in the content. The broken data is replaced with conversion data that is valid content configuration data, and further, a data overwriting process is performed to replace the identifier setting conversion data with partial data of the content, and the data stored in the plaintext TS buffer 353 is converted into converted data. change. The outline of this data conversion process will be described with reference to FIG.

  The encrypted content 333 stored in the information recording medium is temporarily stored in the track buffer 352 on the host side. This is the track buffer storage data 401 shown in FIG. By decryption processing on the host side, decryption of the encrypted content as the track buffer storage data 401 is executed, and decryption result data is stored in the plaintext TS buffer 353. This is the decoding result data 402 shown in FIG.

  The decryption result data 402 includes broken data 403 that is not normal content configuration data. The host data conversion processing unit executes processing for replacing the broken data 403 with converted data 404 as correct content configuration data. This replacement process is executed, for example, as a rewrite (overwrite) process of a part of the data already written in the plaintext TS buffer 353.

  Further, the data conversion process executed by the host is not only the process of replacing the broken data with the conversion data that is normal content data, but also a part of the decryption result data 402 by the identifier setting conversion data 405 as shown in FIG. Execute processing to replace configuration data.

  The identifier is data that makes it possible to analyze the constituent bits of the identification information that makes it possible to identify the content playback apparatus or the content playback application as described above. Specifically, for example, configuration information of identification information (player ID) of an information processing apparatus as a player executing a host application, or an identification mark generated based on the player ID. The identifier setting conversion data is data in which the bit value of the correct content data is slightly changed at a level that does not affect the reproduction of the content as described above.

  A large number of identifier setting conversion data 405 are set in the content, and for example, the player ID is determined by collecting and analyzing the plurality of identifier setting conversion data 405. The identifier setting conversion data 405 is data in which the constituent bits of normal content data are changed at a level that can be normally reproduced as content, and is data in which bits (identification mark constituent bits) can be determined by MPEG bitstream analysis.

  In the conversion table stored in the information recording medium, a large number of conversion data 404 and identifier setting conversion data 405 shown in FIG. 14 are registered, and the writing position information is also registered. By executing the data conversion process based on the conversion table storage information, the data stored in the plaintext TS buffer 353 is replaced with the converted data 406 shown in FIG.

  Thereafter, the converted TS (transport stream) is output to the outside via a network or the like and is played back on an external playback device. Alternatively, in step S107, conversion from the transport stream (TS) to the elementary stream (ES) is performed by processing by the demultiplexer, and further, decoding processing (step S108) is performed, and then via the display speaker. Played.

[6. SP identifier (SP_ID) acquisition process corresponding to segment]
As described above, the content recorded on the information recording medium is divided into segments, and in the data conversion process required for each segment, a secret parameter (SPn) that differs for each segment is acquired from the secure VM. Therefore, it is necessary to restore the conversion table block including the conversion entry by applying the obtained secret parameter.

  In order to acquire a different secret parameter (SPn) for each segment from the secure VM, the playback (player) application acquires a secret parameter identifier (SP_ID) corresponding to each segment, and uses the acquired secret parameter identifier (SP_ID). Notify the secure VM. Below, the several process examples 1-3 regarding the method of acquiring the correct secret parameter identifier (SP_ID) corresponding to each segment are demonstrated.

(6.1) SP identifier (SP_ID) acquisition processing example 1 corresponding to a segment
A segment-corresponding SP identifier (SP_ID) acquisition processing example 1 will be described. In this processing example, the SPN (source packet number) as the identification information of the packet (TS packet) constituting the content is stored in the secret parameter ID specifying table described above with reference to FIG. 6 as the SP identifier (SP_ID). Register in association with.

  A playback (player) application that executes content playback first acquires an SPN (source packet number) corresponding to playback target content data from an EP map recorded in clip information as content playback section information. Further, the secret parameter ID specifying table is searched based on the SPN (source packet number) acquired from the EP map, and the SP identifier (SP_ID) set corresponding to the acquired SPN (source packet number) is acquired.

  The playback (player) application notifies the secure VM of the SP identifier (SP_ID) acquired from the secret parameter ID specifying table and executes a secret parameter calculation request (INTRP).

  Hereinafter, this processing example will be described in detail with reference to the drawings. FIG. 15 is a diagram for explaining content reproduction processing by a content reproduction processing unit that executes content reproduction, that is, a reproduction (player) application. First, at the time of content playback, a playback (player) application acquires clip information as playback section information of the content.

  For example, the clip information shown in FIG. 15A is selected. The clip information is set as data including a plurality of EP maps including content packet identifier information. In each EP map, for example, packet information related to an I picture in a GOP (Group Of Pictures) as an encoded data unit of MPEG data, which is encoded data constituting an AV stream as reproduction content shown in FIG. Is included.

  SPN (source packet number) is included in the packet information of the I picture included in the EP map. For example, one GOP (Group Of Pictures) is composed of one I picture 411 and a plurality of P and B pictures as shown in FIG. The I picture 411 is encoded data set as a reference picture in the GOP, and the P and B pictures are picture information to which I picture information is applied as reference information.

  Packets set as broken data are in TS packet units, and TS packets are set as configuration data of I picture 411, P, and B pictures as shown in the figure. That is, one I picture or P, B picture is distributed and stored in a number of TS packets.

  For example, when one TS packet constituting the I picture 411 in the GOP is set as modified data (broken data), the I picture that is the basis of the MPEG encoded data is broken, and the I picture is referred to as reference information. Also, P pictures and B pictures used as a picture cannot be restored (MPEG decoding), and effective data destruction can be performed.

  A playback (player) application that executes content playback acquires conversion data recorded in the conversion table by data conversion, and executes data replacement. As described above, data replacement is executed not only for conversion data for replacing broken data, but also for identifier setting conversion data.

  As described above, these pieces of conversion data are registered in the conversion table, but are subjected to calculation or encryption using a secret parameter (SP) that is different for each segment. The player application must obtain a secret VM corresponding to each segment.

  In this processing example, the playback (player) application acquires the SPN (source packet number) from the EP map recorded in the clip information as the content playback section information, and based on the acquired SPN (source packet number), the secret is obtained. The parameter ID identification table is searched to obtain the SP identifier (SP_ID) corresponding to the SPN (source packet number) scheduled to be reproduced.

  First, details of the EP map will be described with reference to FIGS. 16 and 17. As shown in FIG. 16, the EP map (EP_map) 412 is data included in a clip information file (clip information). The detection of the I picture position based on the EP map will be described with reference to FIG. FIG. 17A shows a clip AV stream, and each rectangle shows a 192-bit source packet. Each source packet is set with a time stamp and a playback processing time is defined.

  In FIG. 17B, the source packet No. The detailed structure of (X1) is shown. One source packet is composed of a TP_extra header and a transport packet, and the transport packet is composed of various header information and data of I-PICH ~ as MPEG2 entity data.

The clip information shown in FIG. 17C includes an EP map as described above. As shown in the figure, the EP map includes [PTS_EP start], [SPN_EP start], and [I_end_position_offset] data. The meaning of each data is as follows.
PTS_EP_start: Time stamp (presentation time stamp) corresponding to the source packet including the sequence header.
SPN_EP_start: Start address of source packet including sequence header.
I_end_position_offset: Offset of source packet including end of I picture from source packet including sequence header FIG. 17D shows the data relationship.

  That is, as shown in FIG. 17B, the configuration of data included in the source packet is defined, and each data of [PTS_EP start], [SPN_EP start], and [I_end_position_offset] shown in FIG. By obtaining from the EP map, the I picture position in the source packet is obtained based on these data.

  In this processing example, a playback (player) application that executes content playback acquires an SPN (source packet number) corresponding to the data of the playback target content from the EP map recorded in the clip information as the content playback section information. Based on the acquired SPN (source packet number), the secret parameter ID specifying table is searched, and the SP identifier (SP_ID) corresponding to the SPN (source packet number) scheduled to be reproduced is acquired.

  FIG. 18 is a flowchart illustrating a data configuration example of the secret parameter (SP) ID identification table and an SP calculation request processing sequence for the secure VM executed by the playback (player) application.

  Each step of the flowchart shown in FIG. 18 will be described. A playback (player) application that plays back content first acquires clip information as playback section information of content to be played back in step S201, and further acquires an EP map included in the clip information in step S202. In step S203, the source packet No. indicating the playback position is obtained from the acquired EP map. Get the SPN that is

  For example, it is assumed that the source packet number: SPN = 9451000 is acquired. Next, in step S204, the SP_ID identification table is referred to. Note that this SP_ID specifying table is the configuration data of the conversion table stored in the information recording medium as described above with reference to FIG. 6, and as described above with reference to FIGS. Are copied and stored in a memory area available for the playback application.

  As shown in FIG. 18, the SP_ID identification table is recorded as a correspondence table of SP_ID and source packet number (SPN). The SP_ID identification table shown in the figure is an SP_ID identification table corresponding to a clip. The source packet number (SPN) registered corresponding to each SP_ID corresponds to the first packet number of each segment constituting the content.

  In the example of the SP_ID identification table shown in the figure, for example, the content segment corresponding to SP_ID = 124 is packet number (SPN) = 93632153-9444310, and the segment corresponding to SP_ID = 125 is packet number (SPN) = 9444311. ~ 9528254.

  In step S203, it is assumed that the playback application acquires the source packet number: SPN = 9451000 from the EP map in the clip information. In step S204, the playback application acquires the SP_ID corresponding to the source packet number: SPN = 9451000 from the SP_ID identification table.

  In the example of the SP_ID identification table shown in FIG. 18, the source packet number: SPN = 9451000 belongs to the packet number (SPN) = 9444411 to 9528254 corresponding to SP_ID = 125. Therefore, the secret parameter ID corresponding to the source packet number: SPN = 9451000 is SP_ID = 125. In step S205, the secret parameter ID [SP_ID = 125] corresponding to the source packet number: SPN = 9451000 is obtained in this way.

  In step S206, the playback (player) application notifies the secure VM of the acquired secret parameter ID [SP_ID = 125], executes a segment-compatible secret parameter (SP) calculation request (INTRP), and executes the secure VM from the secure VM. The secret parameter (SP) corresponding to the segment is acquired.

A configuration example of a conversion table and an SP_ID identification table applicable in this processing example will be described with reference to FIGS. 19 and 20. FIG. 19 is a diagram illustrating the configuration of the conversion table. The conversion table includes the following data.
Number of Clips (= Nclip): Number of clips used in the title
FixUpTableBody_StartAddress: Start address of the translation table body in the translation table
SPChangePositionTable (): SP_ID specific table
FixUpTableBody (): Conversion table body

  In this processing example, as shown in FIG. 18, the SP_ID specification table includes a packet No. whose secret parameter (SP) is changed. Is set as a recorded table. That is, the first packet No. of each segment. Are recorded corresponding to each SP_ID.

FIG. 20 shows a data configuration example of the SP_ID identification table [SPChangePositionTable] included in the conversion table. The SP_ID identification table is set as a table in which a source packet number (SPN) as a packet identifier corresponding to the SP changing unit included in each clip is registered for each clip. The SP_ID identification table includes the following data.
Clip_ID: Clip ID
Number of SP (= NSP): Number of segments (SP_segment)
SP_segment_start_SPN: First source packet number (SPN) of the segment (SP_segment) corresponding to SP_ID

  The playback application can acquire the first source packet number (SPN) of the segment (SP_segment) corresponding to the SP_ID, and can acquire the SP_ID corresponding to the SPN scheduled to be played back.

FIG. 21 shows a data configuration example of the conversion table body [FixUpTableBody] included in the conversion table. The conversion table body has the following data for each clip.
Clip_ID: Clip identifier (ID) (if Clip_ID = 1234, it corresponds to the clip file of 01234.clpi, 01234.m2ts)
Number of SP (= NSP): Number of segments (SP_segment) in the clip, and for each SP_ID
Start address of FUT block (): Start address of conversion table block (FUT block)
FUT block: Conversion table block These data are stored.
Each conversion table block is set to include all conversion entries corresponding to one segment (SP_segment) as shown in the figure.

A data configuration example of one conversion table block will be described with reference to FIG. As described above, the conversion table block is a table storing conversion data as actual replacement data and conversion entries including write position information. The following data is recorded in the conversion table block.
Number of FixUpEntry in this block (= NFixups): Number of conversion entries (FixUpEntry) in this conversion table block (FUT block) = Conversion data (SP_segment) in the segment (SP_segment) corresponding to this conversion table block (FUT block) Number of program map tables (PMT) including FixUp data) and for each conversion entry,
Base SPN for FixUpEntry: Source packet number (SPN) of program map table (PMT) with I-th conversion entry (FixUpEntry) structure in segment (SP_segment)
FixUpEntry (): conversion entry, these pieces of data that match the conversion entry (FixUpEntry) information in the program map table (PMT) with the I-th conversion entry (FixUpEntry) structure in the segment (SP_segment) are included.

  The conversion entry (FixUpEntry) is data in which conversion data to be actually replaced and recording position information of the conversion data are registered as described above with reference to FIG. The (player) application extracts the conversion data and the recording position information of the conversion data from the conversion entry, overwrites the conversion data at the designated position, and executes data conversion.

  Next, with reference to the flowchart shown in FIG. 23, a content reproduction processing sequence that involves obtaining a secret parameter (SP) that differs for each segment and replacing the data with converted data will be described. First, in step S401, the playback (player) application determines a title to be played back and issues a title initialization command to the secure VM. In step S402, the secure VM executes a title initialization process and generates a conversion table (FixUpTable) corresponding to the title. This is the processing described above with reference to FIGS. 10 and 11, and corresponds to the processing in step S12 of the sequence diagram shown in FIG.

  In step S403, the playback (player) application acquires necessary information from the conversion table (FixUpTable). This is the process described above with reference to FIG. 11, and the necessary information is copied from the conversion table stored in the memory area of the secure VM to the memory area available for the playback (player) application. Run as.

  A playback (player) application that extracts a conversion entry from a FUT block multiplexed in a content TS (transport stream) and executes data conversion, that is, playback that executes the processing described above with reference to FIG. In the case of a player application, only the secret parameter (SP) ID identification table is copied to its own memory area. On the other hand, a playback (player) application that uses the conversion data recorded in the conversion table block in the conversion table file without using the FUT block multiplexed in the TS (transport stream) of the content, that is, FIG. In the case of a playback (player) application (FUT preload type player) that executes the processing described with reference to FIG. 9, the entire conversion table is copied to its own memory area.

  Next, in step S404, the playback (player) application acquires clip information corresponding to the title, and acquires a source packet number (SPN) value corresponding to the playback start point from the EP map included in the clip information.

  Next, in step S405, based on the SPN acquired from the EP map, the playback point secret parameter ID (SP_ID) is specified from the SP_ID specifying table (SPChangePositionTable ()). This process is the process described with reference to FIG.

  Next, in step S406, the secure VM is notified of the acquired secret parameter ID (SP_ID), and a secret parameter (SP) value calculation request is output. This process corresponds to the process of step S13 described with reference to FIG.

  Next, in step S407, the playback (player) application obtains the segment-compatible secret parameter (SP) value calculated in the secure VM, and restores the conversion table block based on the secret parameter (SP). A conversion entry stored in the restored conversion table block is acquired, and based on the conversion data recorded in the conversion entry and its recording position, data conversion processing is performed in which data in the content segment is replaced with conversion data, and step S408 is performed. Then, decoding and reproduction processing are executed.

  Further, when moving to the next segment, in step S410, the SPN of the next reproduction segment is acquired from the EP map, and the processing from step S405 onward is executed. That is, based on the SPN acquired from the EP map, the SP_ID corresponding to the segment is acquired from the SP_ID identification table (SPChangePositionTable ()), the acquired SP_ID is notified to the secure VM, the SP value corresponding to the segment is acquired, and the acquired SP Restore the conversion table block based on the value, obtain the conversion entry from the restored conversion table block, extract the conversion data and recording position from the conversion entry, and replace the data in the content segment with the conversion data segment Run every time.

  By these processes, a process using a different secret parameter (SP) for each segment is performed.

  Next, with reference to FIG. 24, a processing sequence when special reproduction processing such as random access is performed will be described. Note that the processing shown in FIG. 24 shows only the processing sequence of the title initialization processing word. That is, it shows processing after processing steps S401 to S403 in the processing flow shown in FIG.

  First, in step S421, the playback (player) application acquires an EP map from the clip information in response to a request for special playback processing such as random access, and the source packet number (SPN) corresponding to the playback start point from the acquired EP map. ) Value.

  Next, in step S422, based on the SPN acquired from the EP map, the playback point secret parameter ID (SP_ID) is specified from the SP_ID specification table (SPChangePositionTable ()). This process is the process described with reference to FIG.

  Next, in step S423, the acquired secret parameter ID (SP_ID) is transmitted to the secure VM, and a secret parameter (SP) value calculation request is output. This process corresponds to the process of step S13 described with reference to FIG.

  Next, in step S424, the playback (player) application obtains the segment-compatible secret parameter (SP) value calculated in the secure VM, and restores the conversion table block based on the secret parameter (SP). A conversion entry stored in the restored conversion table block is acquired, and based on the conversion data recorded in the conversion entry and its recording position, data conversion processing is performed to replace the data in the content segment with the conversion data, and step S425. Then, decoding and reproduction processing are executed.

  Furthermore, when moving to the next segment, in step S430, the SPN of the next reproduction segment is acquired from the EP map, and the processing from step S422 is executed. That is, based on the SPN acquired from the EP map, the SP_ID corresponding to the segment is acquired from the SP_ID identification table (SPChangePositionTable ()), the acquired SP_ID is notified to the secure VM, the SP value corresponding to the segment is acquired, and the acquired SP Restore the conversion table block based on the value, obtain the conversion entry from the restored conversion table block, extract the conversion data and recording position from the conversion entry, and replace the data in the content segment with the conversion data segment Run every time.

  As described above, in this processing example, a playback (player) application that executes content playback first uses an SPN (source packet number) corresponding to a segment of content data to be played back as clip information as content playback section information. Obtained from the recorded EP map, and then searches the secret parameter ID specifying table based on the obtained SPN (source packet number), and sets the SP identifier (corresponding to the obtained SPN (source packet number)). SP_ID) is acquired, the acquired SP identifier (SP_ID) is notified to the secure VM, and the secret parameter calculation request (INTRP) is executed. Therefore, the secret parameter (SP) corresponding to each segment is sequentially set. Accurately from a secure VM And territory, it is possible to perform content reproduction while performing accurate data conversion.

(6.2) SP identifier (SP_ID) acquisition processing example 2 corresponding to a segment
Next, a segment-corresponding SP identifier (SP_ID) acquisition process example 2 will be described. In this processing example, the secret parameter ID specifying table is configured to store correspondence data between a secret parameter ID (SP_ID) and EP map registration table identification information (EP map registration table ID).

  A playback (player) application that executes content playback first acquires an EP map from clip information corresponding to the content data to be played back, and uses the EP map registration table identification information (EP map registration table ID) corresponding to the EP map. Based on the secret parameter ID identification table, the SP identifier (SP_ID) set corresponding to the EP map registration table ID is acquired.

  The playback (player) application notifies the secure VM of the SP identifier (SP_ID) acquired from the secret parameter ID specifying table and executes a secret parameter calculation request (INTRP).

  Hereinafter, this processing example will be described in detail with reference to the drawings. FIG. 25 is a diagram illustrating a data configuration example of the SP_ID identification table [SPChangePositionTable] applied in the present processing example. In this processing example, the configuration of the conversion table has the configuration shown in FIG. Only the data structure of the SP_ID identification table [SPChangePositionTable] is different from the processing example 1.

The SP_ID identification table shown in FIG. 25 stores correspondence data between an EP map registration table ID and a secret parameter ID (SP_ID). Specifically, correspondence data between an EP map registration table ID of an EP map including information on the first packet of a segment (SP_segment) as content configuration data and a secret parameter ID (SP_ID) is stored. The SP_ID identification table includes the following data.
Clip_ID: Clip ID
Number of SP (= NSP): Number of segments (SP_segment)
SP_segment_start_EP_map_id: The start of the segment (SP_segment) corresponding to SP_ID is designated by the EP map registration table ID (EP_map_id), and the EP map registration table ID (SPN) corresponding to the source packet number (SPN) to be reproduced using this value SP_ID can be acquired from (EP_map_id)

  The playback application acquires the registration table ID of the EP map including the first packet of the segment (SP_segment) corresponding to the SP_ID, and based on the EP map registration table ID, from the SP_ID identification table shown in FIG. SP_ID can be acquired.

  With reference to the flowchart shown in FIG. 26, a content playback processing sequence that involves applying the SP_ID identification table shown in FIG. 25 to obtain a secret parameter (SP) that differs for each segment and replacing the data with converted data will be described.

  First, in step S501, the playback (player) application determines a title to be played back and issues a title initialization command to the secure VM. In step S502, the secure VM executes a title initialization process and generates a conversion table (FixUpTable) corresponding to the title. This is the processing described above with reference to FIGS. 10 and 11, and corresponds to the processing in step S12 of the sequence diagram shown in FIG.

  In step S503, the playback (player) application acquires necessary information from the conversion table (FixUpTable). This is the process described above with reference to FIG. 11, and the necessary information is copied from the conversion table stored in the memory area of the secure VM to the memory area available for the playback (player) application. Run as.

  A playback (player) application that extracts a conversion entry from a FUT block multiplexed in a content TS (transport stream) and executes data conversion, that is, playback that executes the processing described above with reference to FIG. In the case of a player application, only the secret parameter (SP) ID identification table is copied to its own memory area. On the other hand, a playback (player) application that uses the conversion data recorded in the conversion table block in the conversion table file without using the FUT block multiplexed in the TS (transport stream) of the content, that is, FIG. In the case of a playback (player) application (FUT preload type player) that executes the processing described with reference to FIG. 9, the entire conversion table is copied to its own memory area.

  Next, in step S504, the playback (player) application acquires clip information corresponding to the title, determines an EP map included in the clip information, and an EP map registration table as registration table identification information of the determined EP map. Get the ID value.

  Next, in step S505, the secret parameter ID (SP_ID) of the playback point is specified from the SP_ID specifying table (SPChangePositionTable ()) based on the EP map registration table ID. An SP_ID specifying table storing correspondence data between the secret parameter ID (SP_ID) and the EP map registration table identification information (EP map registration table ID) shown in FIG. 25 is used.

  Next, in step S506, the acquired secret parameter ID (SP_ID) is transmitted to the secure VM, and a secret parameter (SP) value calculation request is output. This process corresponds to the process of step S13 described with reference to FIG.

  Next, in step S507, the playback (player) application obtains the segment-compatible secret parameter (SP) value calculated in the secure VM, executes restoration of the conversion table block based on the secret parameter (SP), and A conversion entry stored in the restored conversion table block is acquired, and based on the conversion data recorded in the conversion entry and its recording position, data conversion processing is performed to replace the data in the content segment with the conversion data, and step S508. Then, decoding and reproduction processing are executed.

  Further, when moving to the next segment, in step S510, the EP map registration table ID of the EP map including the information of the first packet of the next reproduction segment is acquired, and the processing from step S505 is executed. That is, based on the acquired EP map registration table ID, the SP_ID associated with the EP map registration table ID is acquired from the SP_ID identification table (SPChangePositionTable ()), the acquired SP_ID is notified to the secure VM, and the segment correspondence Acquires SP value, restores conversion table block based on acquired SP value, obtains conversion entry from restoration conversion table block, extracts conversion data and recording position from conversion entry, and converts data in content segment Data conversion processing to replace with data is executed for each segment.

  By these processes, a process using a different secret parameter (SP) for each segment is performed.

  Next, with reference to FIG. 27, a processing sequence when special reproduction processing such as random access is performed will be described. Note that the processing shown in FIG. 27 shows only the processing sequence of the title initialization processing word. That is, the processing after the processing steps S501 to S503 in the processing flow shown in FIG.

  First, in step S521, the playback (player) application specifies a use EP map of clip information in response to a request for special playback processing such as random access, and a registration table identifier (EP map registration table ID) of the specified EP map. ) Value.

  Next, in step S522, based on the acquired EP map registration table ID, the playback point secret parameter ID (SP_ID) corresponding to the EP map registration table ID is specified from the SP_ID specification table (SPChangePositionTable ()).

  Next, in step S523, the acquired secret parameter ID (SP_ID) is transmitted to the secure VM, and a secret parameter (SP) value calculation request is output. This process corresponds to the process of step S13 described with reference to FIG.

  Next, in step S524, the playback (player) application obtains the segment-compatible secret parameter (SP) value calculated in the secure VM, executes restoration of the conversion table block based on the secret parameter (SP), A conversion entry stored in the restored conversion table block is acquired, and based on the conversion data recorded in the conversion entry and its recording position, data conversion processing is performed to replace the data in the content segment with the conversion data, and step S525 is performed. Then, decoding and reproduction processing are executed.

  Further, when moving to the next segment, in step S530, the EP map registration table ID of the EP map including the information of the first packet of the next reproduction segment is acquired, and the processing from step S522 is executed. That is, based on the acquired EP map registration table ID, the SP_ID associated with the EP map registration table ID is acquired from the SP_ID identification table (SPChangePositionTable ()), the acquired SP_ID is notified to the secure VM, and the segment correspondence Acquires SP value, restores conversion table block based on acquired SP value, obtains conversion entry from restoration conversion table block, extracts conversion data and recording position from conversion entry, and converts data in content segment Data conversion processing to replace with data is executed for each segment.

  As described above, in the present processing example, a playback (player) application that executes content playback starts from the EP map recorded in the clip information as the content playback section information at the start position of the segment of the content data to be played back. The EP map storing the corresponding packet information is specified, the secret parameter ID specifying table is searched based on the registration table identifier (EP map registration table ID) of the EP map, and the EP map registration table ID is corresponded. Since the set SP identifier (SP_ID) is acquired, the acquired SP identifier (SP_ID) is notified to the secure VM, and the secret parameter calculation request (INTRP) is executed, the secret parameter corresponding to each segment (SP) sequentially After receipt accurately from VM, it is possible to perform content reproduction while performing accurate data conversion.

(6.3) SP identifier (SP_ID) acquisition processing example 3 corresponding to a segment
Next, a segment correspondence SP identifier (SP_ID) acquisition process example 3 will be described. In this processing example, the segment set in the content is set to be classified based on the number of EP map registration tables defined in advance. That is, a segment area of content having an entry point indicating a reproduction start position corresponding to N EP map registration tables is defined as one segment. N is an integer of 1 or more.

  A playback (player) application that executes content playback acquires an EP map from the clip information corresponding to the content data to be played back, and sequentially acquires TS packets constituting the content based on the EP map for playback. As described above with reference to FIG. 15, the EP map is set for each GOP, and the playback (player) application acquires the EP map included in the clip information and extracts the playback packet. To execute the playback process.

  In this processing example, the playback (player) application calculates the secret parameter ID (SP_ID) by applying the EP map registration table ID corresponding to the EP map to be used. Alternatively, the playback (player) application counts the number of EP map registration tables to be used, and every time the number of EP map registration tables (N) constituting a segment (corresponding to the number of N EP map registration tables) is reached, It is determined that segment switching occurs, and processing for switching the secret parameter (SP) applied to the restoration of the conversion table block is executed.

  The playback (player) application sequentially increases the SP identifier (incremented each time the number of EP map registration tables (n) associated with the segment (corresponding to the number of n EP map registration tables) reaches the secure VM. SP_ID) is notified and a secret parameter calculation request (INTRP) is executed.

  Hereinafter, this processing example will be described in detail with reference to the drawings. FIG. 28 shows (a) content configuration and (b) EP map configuration data applied in this processing example. (A) As shown in the content configuration, the content is classified by GOP, and information regarding the I picture in each GOP is recorded in the EP map registration table. As shown in the EP map configuration data of FIG. 28 (b), a plurality of EP map registration tables are recorded in the EP map, and SPN (source packet number) which is address information about the I picture is recorded in each EP map registration table. And PTS (presentation time stamp) are recorded in association with each other.

  Thus, the EP map has a data structure in which a plurality of EP map registration tables are stored in one file. Tables registered in the EP map have table numbers, which are identified as EP map registration table IDs.

  In this processing example, the segment is set as a data area for N EP map registration tables. In the example shown in FIG. 28, N = 5 is set, and five EP map registration tables are set as one segment. In the content shown in FIG. 28A, GOP0 to GOP4, that is, EP map registration table 0 to EP map registration table 4, are divided as one segment, and hereinafter GOP5 to GOP9, that is, EP map registration table 5 to EP map registration. Table 9 is partitioned as the next one segment. Similarly, 5 GOP (= 5 EP map registration table) is set as one segment.

In this case, as shown in FIG. 28 (b), the identifier (SP_ID) of the secret parameter applied in the segments corresponding to the EP map registration tables 0 to 4 is set to [0].
EP map registration tables 5 to 9: SP_ID = 1,
EP map registration tables 10 to 14: SP_ID = 2,
EP map registration tables 14 to 19: SP_ID = 3,
In this way, the secret parameter identifier (SP_ID) is set to increase by 1 for each of the five EP map registration tables.

A playback (player) application that executes content playback calculates a secret parameter ID (SP_ID) by applying an EP map registration table ID corresponding to the EP map registration table to be used. The secret parameter ID (SP_ID) is determined by extracting an integer part of 0 or more calculated by the following calculation formula.
SP_ID = (EP map registration table ID) / N
In the above formula, N corresponds to the number of EP map registration tables in one segment. In the example of FIG.
EP map registration tables 0 to 4: SP_ID = 0,
EP map registration tables 5 to 9: SP_ID = 1,
EP map registration tables 10 to 14: SP_ID = 2,
:
Is calculated as

  Alternatively, without applying the above calculation formula, the playback (player) application counts the number of EP map registration tables to be used, and the number of EP map registration tables constituting the segment (corresponding to N EP map registration tables). It may be configured to execute a process of switching the secret parameter (SP) applied to the restoration of the conversion table block by determining that segment switching occurs every time (N).

  In the setting example shown in FIG. 28, since N = 5, it is determined that segment switching occurs for each of the five EP map registration tables, and SP_ID is incremented by one for each count of the five EP maps to determine SP_ID. Then, the determined SP_ID is output to the secure VM, and the secret parameter corresponding to the segment is acquired. Of course, it is obvious that segments may be set in integer units other than N = 5. However, in consideration of the processing time of the playback device, it is desirable to set in units of entry points of a plurality of EP map registration tables.

  In this processing example, it is possible to obtain a different SP_ID for each segment based on the above calculation formula or the count of the EP map registration table. As in processing examples 1 and 2 described above, There is no need to use a secret parameter ID specifying table for obtaining a secret parameter ID based on the EP map registration table ID.

  A content reproduction processing sequence involving acquisition of different secret parameters (SP) for each segment and data replacement with converted data when this processing example is applied will be described with reference to the flowchart shown in FIG.

  First, in step S601, the playback (player) application determines a title to be played back and issues a title initialization command to the secure VM. In step S602, the secure VM executes a title initialization process and generates a conversion table (FixUpTable) corresponding to the title. This is the processing described above with reference to FIGS. 10 and 11, and corresponds to the processing in step S12 of the sequence diagram shown in FIG.

  In step S603, the playback (player) application acquires necessary information from the conversion table (FixUpTable). This is the process described above with reference to FIG. 11, and the necessary information is copied from the conversion table stored in the memory area of the secure VM to the memory area available for the playback (player) application. Run as.

  A playback (player) application that extracts a conversion entry from a FUT block multiplexed in a content TS (transport stream) and executes data conversion, that is, playback that executes the processing described above with reference to FIG. In the case of a player application, only the secret parameter (SP) ID identification table is copied to its own memory area. On the other hand, a playback (player) application that uses the conversion data recorded in the conversion table block in the conversion table file without using the FUT block multiplexed in the TS (transport stream) of the content, that is, FIG. In the case of a playback (player) application (FUT preload type player) that executes the processing described with reference to FIG. 9, the entire conversion table is copied to its own memory area.

  Next, in step S604, the playback (player) application acquires clip information corresponding to the title, determines an EP map included in the clip information, and an EP map registration table as registration table identification information of the determined EP map. Get the ID value.

Next, in step S605, SP_ID is calculated based on the EP map registration table ID. For example, when the number of EP map registration tables included in one segment is N,
SP_ID = (EP map registration table ID) / N
To calculate SP_ID.

  Next, in step S606, the secure VM is notified of the acquired secret parameter ID (SP_ID), and a secret parameter (SP) value calculation request is output. This process corresponds to the process of step S13 described with reference to FIG.

  Next, in step S607, the playback (player) application obtains the segment-compatible secret parameter (SP) value calculated in the secure VM, and restores the conversion table block based on the secret parameter (SP). A conversion entry stored in the restored conversion table block is acquired, and based on the conversion data recorded in the conversion entry and its recording position, data conversion processing is performed to replace the data in the content segment with the conversion data, and step S608 is performed. Then, decoding and reproduction processing are executed.

  Further, when moving to the next segment, in step S610, the EP map registration table ID of the EP map including the information of the first packet of the next reproduction segment is acquired, and the processing of step S605 and subsequent steps is executed. That is, the SP_ID is calculated based on the acquired EP map registration table ID, the calculated SP_ID is notified to the secure VM, the SP value corresponding to the segment is acquired, and the conversion table block is restored based on the acquired SP value. Then, a conversion entry is obtained from the restored conversion table block, conversion data and a recording position are extracted from the conversion entry, and data conversion processing for replacing the data in the content segment with the conversion data is executed for each segment.

  By these processes, a process using a different secret parameter (SP) for each segment is performed. As described above, instead of obtaining the SP_ID based on the calculation formula to which the EP map registration table ID is applied, the SP_ID may be set by counting the number of EP map registration tables.

  Next, with reference to FIG. 30, a processing sequence when special reproduction processing such as random access is performed will be described. Note that the processing shown in FIG. 30 shows only the processing sequence of the title initialization processing word. That is, the processing after the processing steps S601 to S603 in the processing flow shown in FIG.

  First, in step S621, the playback (player) application specifies a clip information use EP map registration table in response to a request for special playback processing such as random access, and an identifier (EP map registration) of the specified EP map registration table. Table ID) value is acquired.

Next, in step S622, based on the acquired EP map registration table ID, a calculation formula,
SP_ID = (EP map registration table ID) / N
To calculate SP_ID.

  Next, in step S623, the acquired secret parameter ID (SP_ID) is transmitted to the secure VM, and a secret parameter (SP) value calculation request is output. This process corresponds to the process of step S13 described with reference to FIG.

  Next, in step S624, the playback (player) application obtains the segment-compatible secret parameter (SP) value calculated in the secure VM, executes restoration of the conversion table block based on the secret parameter (SP), A conversion entry stored in the restored conversion table block is acquired, and based on the conversion data recorded in the conversion entry and its recording position, a data conversion process is performed in which data in the content segment is replaced with conversion data, and step S625 is performed. Then, decoding and reproduction processing are executed.

  Furthermore, when moving to the next segment, in step S630, the EP map registration table ID of the EP map including the information of the first packet of the next reproduction segment is acquired, and the processing from step S622 is executed. That is, the SP_ID is calculated based on the acquired EP map registration table ID, the calculated SP_ID is notified to the secure VM, the SP value corresponding to the segment is acquired, and the conversion table block is restored based on the acquired SP value. The conversion entry is acquired from the restored conversion table block, the conversion data and the recording position are extracted from the conversion entry, and the data conversion process for replacing the data in the content segment with the conversion data is executed for each segment. In this example, the SP_ID may be obtained based on the count of the number of EP map registration tables without applying the calculation formula.

  As described above, in this processing example, a playback (player) application that executes content playback first registers an EP map corresponding to playback target content data from an EP map recorded in clip information as content playback section information. A table is specified, and based on the identifier (EP map registration table ID) of the EP map registration table, the secret parameter ID (SP_ID) is obtained by applying a calculation formula or obtained by counting the number of EP map registration tables. Since the obtained SP identifier (SP_ID) is notified to the secure VM and the secret parameter calculation request (INTRP) is executed, the SP identifier (SP_ID) is obtained without applying the special parameter ID specifying table. Corresponding to each segment Secret parameter (SP) sequentially after receipt accurately from the secure VM, it is possible to perform content reproduction while performing accurate data conversion.

[7. Configuration of information processing apparatus]
Next, a hardware configuration example of an information processing apparatus that executes the above-described playback (player) application and secure VM processing will be described with reference to FIG. The information processing apparatus 800 includes an OS, a content reproduction or recording application program, a mutual authentication process, various processes associated with content reproduction, for example, a CPU 809 that executes data processing according to various programs including the above-described data conversion process, etc. ROM 808 as a storage area for parameters, memory 810, input / output I / F 802 for inputting / outputting digital signals, input / output I / F 804 for inputting / outputting analog signals, A / D, D / A converter 805, MPEG MPEG codec 803 that performs data encoding / decoding processing, TS / PS processing means 806 that executes TS (Transport Stream) / PS (Program Stream) processing, various authentication processing such as mutual authentication and decryption processing of encrypted content Cryptographic processing means 807 to execute, hard disk Which recording medium 812, the drive of the recording medium 812 has a drive 811 for performing input and output of data recording and reproducing signals, each block being connected to a bus 801.

  The information processing apparatus (host) 800 is connected to the drive by a connection bus such as ATAPI-BUS. A conversion table, content, and the like are input / output via the digital signal input / output I / F 802. The encryption process and the decryption process are executed by the encryption processing unit 807 by applying, for example, an AES algorithm.

  Note that a program for executing content reproduction or recording processing is stored in, for example, the ROM 808, and a memory 810 is used as a parameter, data storage, and work area as needed during execution of the program.

  The ROM 808 or the recording medium 812 stores, for example, a management center public key, a host-compatible secret key, a host-compatible public key certificate, and a drive CRL as a revocation list.

  For content playback or external output, apply a data conversion processing program obtained from an information recording medium to decrypt encrypted content, restore conversion tables, write conversion data based on conversion table storage data, etc. The processing according to each processing sequence of the processing example described in the above is executed.

[8. Information recording medium manufacturing apparatus and information recording medium]
Next, an information recording medium manufacturing apparatus and an information recording medium will be described. That is, an information recording medium manufacturing apparatus, method, and information recording medium applied in the above-described content reproduction process will be described.

The information recording medium manufacturing apparatus is an apparatus that manufactures the information recording medium 100 that stores the recording data described above with reference to FIG.
The information recording medium manufacturing apparatus
Content that includes broken data that is different from legitimate content configuration data,
Conversion table body data in which conversion data to be replaced with broken data is subjected to calculation or encryption processing according to the parameters set corresponding to the segment that is the content division area, and parameters as parameter identification information A data processing unit that generates a conversion table including a parameter identifier specifying table in which the identifier is recorded; a content including broken data; and a data recording unit that records the conversion table on an information recording medium.

  One example of the parameter identifier specifying table generated by the data processing unit in the configuration of one embodiment of the information recording medium manufacturing apparatus includes the parameter identifier described above with reference to FIG. 20 and the beginning of the segment as the content configuration data. It is the table which matched the packet number of the packet in position.

  Alternatively, another example of the parameter identifier specifying table generated by the data processing unit in the configuration of one embodiment of the information recording medium manufacturing apparatus is the parameter identifier described above with reference to FIG. It is a table in which an EP map registration table ID as an EP map registration table identifier including information of a packet at the head position of a segment is associated.

Such an information recording medium generated by the manufacturing apparatus is as described with reference to FIG.
(A) content including broken data different from legitimate content configuration data;
(B) Conversion table body data in which conversion data to be replaced with broken data is subjected to calculation or encryption processing according to a parameter set corresponding to a segment that is a content division area, and parameter identification information A conversion table including a parameter identifier specifying table in which parameter identifiers are recorded, and
The information recording medium is stored as recording data.

  In one embodiment, the conversion table recorded on the information recording medium associates the parameter identifier described above with reference to FIG. 20 with the packet number of the packet at the head position of the segment as the content configuration data. It is a table. A table in which the parameter identifier described above with reference to FIG. 25 and the EP map registration table ID as the registration table identifier of the EP map including the information of the packet at the head position of the segment as the content configuration data are associated with each other It is.

  The present invention has been described in detail above with reference to specific embodiments. However, it is obvious that those skilled in the art can make modifications and substitutions of the embodiments without departing from the gist of the present invention. In other words, the present invention has been disclosed in the form of exemplification, and should not be interpreted in a limited manner. In order to determine the gist of the present invention, the claims should be taken into consideration.

  The series of processes described in the specification can be executed by hardware, software, or a combined configuration of both. When executing processing by software, the program recording the processing sequence is installed in a memory in a computer incorporated in dedicated hardware and executed, or the program is executed on a general-purpose computer capable of executing various processing. It can be installed and run.

  For example, the program can be recorded in advance on a hard disk or ROM (Read Only Memory) as a recording medium. Alternatively, the program is temporarily or permanently stored on a removable recording medium such as a flexible disk, a CD-ROM (Compact Disc Read Only Memory), an MO (Magneto optical) disk, a DVD (Digital Versatile Disc), a magnetic disk, or a semiconductor memory. It can be stored (recorded). Such a removable recording medium can be provided as so-called package software.

  The program is installed on the computer from the removable recording medium as described above, or is wirelessly transferred from the download site to the computer, or is wired to the computer via a network such as a LAN (Local Area Network) or the Internet. The computer can receive the program transferred in this manner and install it on a recording medium such as a built-in hard disk.

  Note that the various processes described in the specification are not only executed in time series according to the description, but may be executed in parallel or individually according to the processing capability of the apparatus that executes the processes or as necessary. Further, in this specification, the system is a logical set configuration of a plurality of devices, and the devices of each configuration are not limited to being in the same casing.

  As described above, according to the configuration of the embodiment of the present invention, the conversion data obtained by restoring and acquiring the conversion data by calculation or encryption processing using different parameters for each segment set as the content division area is acquired. In a configuration in which content playback is performed while replacing some data of content with data, a table in which SPN (source packet number) of a packet included in a segment of the content to be played is associated with a parameter ID (SP_ID); Alternatively, the parameter ID corresponding to the segment is acquired based on the table in which the registration table identifier (EP map registration table ID) of the EP map storing the information of the packet included in the segment of the content to be reproduced is associated with the parameter ID. , Retrieved parameters Since D (SP_ID) is notified to the secure VM and the secret parameter calculation request (INTRP) is executed, the secret parameter (SP) corresponding to each segment is sequentially received from the secure VM accurately and accurately. It is possible to perform content playback while executing various data conversions.

  According to the configuration of one embodiment of the present invention, a playback (player) application that executes content playback first corresponds to playback target content data from an EP map recorded in clip information as content playback section information. An EP map is specified, and a parameter ID (SP_ID) is obtained by applying a calculation formula based on a registration table identifier (EP map registration table ID) of the EP map, or obtained by counting the number of EP map registration tables. Because the configuration is such that the acquired parameter ID (SP_ID) is notified to the secure VM and the secret parameter calculation request (INTRP) is executed, the parameter ID (SP_ID) is acquired without applying a special parameter ID specifying table. The secret corresponding to each segment DOO parameter (SP) sequentially after receipt accurately from the secure VM, it is possible to perform content reproduction while performing accurate data conversion.

100 Information recording medium 101 Encrypted content 102 MKB
103 Title Key File 104 License Information 105 Conversion Table 106 Data Conversion Processing Program 120 Drive 121 Data Processing Unit 122 Memory 140 Host 150 Playback (Player Application)
151 Data processing unit 152 Memory a
153 Decoding processing unit 154 Data conversion processing unit 155 Decoding processing unit 156 Memory b
160 Secure VM
210 Index 220 Movie object 230 Playlist 240 Clip 261, 262, 263 AV stream 271, 272 Content management unit (CPS unit)
281 Data portion 291 Recorded content 292 Content data 293 Broken data 295 Conversion entry 296 Playback content 297 Conversion data 298 Identifier setting conversion data 300 Data conversion processing program 301 Conversion table 302 Secret parameter (SP) ID identification table 303a Conversion table body 303b Conversion table Set 304 Conversion table block 305 Conversion entry 306 Encrypted content 307 TS packet 308, 309 TS packet 311 to 314 packet 315 XORed conversion entry 316 Secret parameter 317 Conversion entry 320 Secure VM
330 Information recording medium 331 MKB
332 Title key file 333 Encrypted content 334 Conversion table 335 Data conversion processing program 340 Drive 345 Host 350 Playback (player) application 351 Device key 352 Track buffer 353 Plain text TS buffer 354 Event handler 355 Player information 356 Real-time event handler 360 Secure VM block 361 Secure VM
401 Track buffer storage data 402 Decoding result data 403 Broken data 404 Conversion data 405 Identifier setting conversion data 411 I picture 412 EP map 800 Information processing device 801 Bus 802 Input / output I / F
803 MPEG codec 804 I / O I / F
805 A / D, D / A converter 806 TS / PS processing means 807 Cryptographic processing means 808 ROM
809 CPU
810 Memory 811 Drive 812 Recording medium

Claims (6)

An information processing apparatus that executes content reproduction processing,
Content that executes processing to generate playback content by executing data conversion processing that replaces broken data that is part of the configuration data of input content to be played back and that is different from correct content data, with conversion data recorded in the conversion table A playback processing unit;
A parameter generation unit for providing a parameter to be applied in the data conversion process to the content reproduction processing unit;
The content reproduction processing unit
EP map registration information in which packet identification information of a content storage packet is recorded is acquired from clip information as content playback section information, and a playback content section area is obtained by table search or calculation processing based on the acquired EP map registration information. A different parameter identifier for each segment set as, having a configuration for outputting a parameter calculation request with the acquired parameter identifier and a processing request different from the parameter calculation request to the parameter generation unit,
The parameter generator is
The processing request is sequentially input from the content reproduction processing unit to execute the process,
(A) a parameter calculation mode for executing a parameter calculation process in response to a parameter calculation request to calculate a segment-specific parameter that differs for each segment and providing the parameter to a content reproduction processing unit;
(B) (a) and (b) two modes of application request mode for executing a process according to a process request other than the parameter calculation process, and executing each process.
When a parameter calculation request or a processing request from an application is input within one of the mode execution periods of (a) and (b), the first parameter calculation request and the processing request from the first application Is a configuration that accepts, then rejects a processing request of the same type as a received request that is continuously input, and executes the received request after the mode execution period ends,
The content reproduction processing unit
Conversion applied to the conversion table data recorded in the conversion table as replacement data for the configuration data of the segment by executing arithmetic processing or encryption processing applying a segment-specific parameter acquired from the parameter generation unit An information processing apparatus that executes a restoration process of data including data. The content reproduction processing unit
Based on the EP map registration table ID which is the registration information of the EP map , the parameter identifier corresponding to the segment is calculated by the following formula:
(SP_ID) = (EP_map_ID) / N
However,
SP_ID: parameter identifier,
EP_map_ID: EP map registration table ID,
N: Number of EP map registration tables set corresponding to one segment,
The information processing apparatus according to claim 1, wherein the information processing apparatus is configured to execute processing calculated according to the above formula. The content reproduction processing unit
The conversion table data including the conversion data is acquired from the packet included in the content, and the arithmetic processing or the cryptographic processing applying the segment-specific parameter acquired from the parameter generation unit is executed, and the configuration data of the segment is replaced The information processing apparatus according to claim 1, wherein the information processing apparatus is configured to perform a restoration process of data including conversion data applied as data. The content reproduction processing unit
The conversion table data including the conversion data is acquired from independent conversion table data different from the content, and an arithmetic process or an encryption process to which a segment-specific parameter acquired from the parameter generation unit is applied is executed. The information processing apparatus according to claim 1, wherein the information processing apparatus is configured to perform a restoration process of data including conversion data applied as replacement data for the data. An information processing method for executing content reproduction processing in an information processing device,
In the content playback processing unit,
EP map registration information in which packet identification information of a content storage packet is recorded is acquired from clip information as content playback section information, and a playback content section area is obtained by table search or calculation processing based on the acquired EP map registration information. A parameter identifier that is different for each segment set as a parameter calculation request with the acquired parameter identifier, and a process that outputs a processing request different from the parameter calculation request to the parameter generation unit,
In the parameter generator,
The processing request is sequentially input from the content reproduction processing unit to execute the process,
(A) a parameter calculation mode for executing a parameter calculation process in response to a parameter calculation request to calculate a segment-specific parameter that differs for each segment and providing the parameter to a content reproduction processing unit;
(B) (a) and (b) two modes of application request mode for executing a process according to a process request other than the parameter calculation process, and executing each process.
When a parameter calculation request or a processing request from an application is input within one of the mode execution periods of (a) and (b), the first parameter calculation request and the processing request from the first application Accepts, then rejects processing requests of the same type as accepted requests that are continuously input, and executes the accepted requests after the end of the mode execution period ,
In the content reproduction processing unit,
Content that executes processing to generate playback content by executing data conversion processing that replaces broken data that is part of the configuration data of input content to be played back and that is different from correct content data, with conversion data recorded in the conversion table During playback processing,
Conversion applied to the conversion table data recorded in the conversion table as replacement data for the configuration data of the segment by executing arithmetic processing or encryption processing applying a segment-specific parameter acquired from the parameter generation unit An information processing method for generating reproduction content by executing a restoration process of data including data. The parameter identifier is
Based on the EP map registration table ID which is the registration information of the EP map ,
(SP_ID) = (EP_map_ID) / N
However,
SP_ID: parameter identifier,
EP_map_ID: EP map registration table ID,
N: Number of EP map registration tables set corresponding to one segment,
6. The information processing method according to claim 5 , wherein the identifier is a calculable identifier.