JP4995220B2 - Electronic device, main control board, peripheral board, authentication method and authentication program - Google Patents

Description

  The present invention relates to an electronic device that includes a plurality of substrates and performs authentication of communication between these substrates, a main control substrate, a peripheral substrate, an authentication method, and an authentication program.

  Conventionally, in an electronic apparatus having a plurality of substrates, various techniques have been proposed for preventing fraud on these substrates. Examples of the electronic device provided with a plurality of substrates include a pachinko gaming machine. The pachinko gaming machine includes a main control board that controls the operation of the entire electronic device and a controlled board (peripheral board) that performs the operation of each part of the electronic device. The main control board outputs a control signal including a control command to the peripheral board, and the other peripheral boards have a function of executing an operation according to the control signal transmitted from the main control board.

  In the case of an electronic device having such a configuration, examples of frauds with respect to the main control board include, for example, replacing a regular main control board with an illegal control board, or altering a program code that defines processing performed by the main control board. There is a technique. In order to prevent such fraud, for example, a technique has been proposed in which program data recorded in a ROM mounted on the main control board is checked by a ROM checker to prevent illegal exchange of the ROM ( For example, see the following Patent Document 1.)

  In another technique, a check code based on a measured value obtained by measuring a program counter value (PC value) of the main control board or a processing time of a predetermined functional unit in the main control board is generated and transmitted to the peripheral board. To do. In the peripheral board, a gaming machine having a function of analyzing the received check code and stopping the operation on the peripheral board when the analysis result is not normal is also provided (for example, Patent Document 2 below). reference.).

JP 11-333108 A JP-A-11-276699

  However, when the above-described conventional technology is used, the alteration of the program data can be detected, but if an unauthorized control board is connected between the regular main control board and the peripheral board to be controlled, this Unauthorized control by an unauthorized control signal output from an unauthorized control board cannot be prevented.

  FIG. 13 is an explanatory diagram showing an outline of a fraud prevention technique according to the prior art. FIG. 14 is an explanatory diagram showing an example of inserting an unauthorized control board. Here, the unauthorized control by the unauthorized control board will be specifically described with reference to FIGS. As shown in FIG. 13, the normal main control board 1301 normally outputs a normal control signal RS to the peripheral board 1302 to control the operation of the peripheral board 1302. The regular main control board 1301 is provided with an inspection port 1303. The program data recorded in the ROM or the like provided in the regular main control board 1301 is inspected from the inspection port 1303 to inspect whether the regular main control board 1301 is fraudulent.

  However, as shown in FIG. 14, there is a case where an unauthorized control board 1401 is inserted between the regular main control board 1301 and the peripheral board 1302 in order to perform unauthorized control of the peripheral board 1302. The unauthorized control board 1401 discards or ignores the authorized control signal RS output from the authorized main control board 1301 and outputs the unauthorized control signal FS to the peripheral board 1302 instead.

  In the case of the technique disclosed in Patent Document 1, the peripheral board 1302 cannot determine whether the input signal is a normal control signal RS or an illegal control signal FS. Therefore, when an unauthorized control signal FS is input to the peripheral substrate 1302, there is a problem that an unauthorized operation cannot be detected and an operation corresponding to the control content of the unauthorized control signal FS is performed.

  The inspection port 1303 is provided only on the regular main control board 1301. Therefore, even if the inspection using the inspection port 1303 is performed, the inspection result is only an evaluation of the processing in the regular main control board 1301, and the signal between the main control board 1301 and the peripheral board 1302 is inspected. I can't do it. Therefore, even if the inspection port 1303 is provided, there is a problem that unauthorized control by the unauthorized control board 1401 cannot be detected.

  FIG. 15 is an explanatory diagram showing an outline of signal switching by the signal switching circuit. As shown in FIG. 15, a signal switching circuit 1403 may be mounted in an unauthorized control board 1401 in addition to the CPU 1402 that performs an unauthorized process for outputting an unauthorized control signal FS. When the signal switching circuit 1403 is mounted, the unauthorized control board 1401 outputs the normal control signal RS during the initial diagnosis or inspection operation of the control signal RS output from the normal CPU 1304, and during other operations, It can be switched to output an unauthorized control signal FS.

  That is, the normal control signal RS output from the normal CPU 1304 can be output only when the inspection using the inspection port 1303 or the operation diagnosis of the CPU is performed by the signal switching circuit 1403. Therefore, the peripheral board 1302 has a problem in that it cannot detect an illegal output of the control signal FS even if an inspection port 1303 or an anti-fraud technology such as operation diagnosis is used.

  Further, as a countermeasure against the above-described problem, based on the measured value obtained by measuring the value of the program counter (PC value) of the main control board and the processing time of the predetermined function unit in the main control board as in Patent Document 2 above. There is a technique for authenticating a control signal transmitted from a main control board using a check code. However, when the check code is generated from the PC value indicating the storage position of the execution instruction and the information obtained by measuring the processing time of the predetermined functional unit, the specific processing contents such as what instruction is executed by the main control board It is sending information about.

  When such information is intercepted, it is important to give hints for analyzing the program from the processing time of the processing routine executed by the main control board and the PC value indicating the storage position of the execution instruction. There was a risk that information could be leaked.

  In order to solve the above-described problems caused by the prior art, the present invention has an electronic device, a main control board, and a function that prevents unauthorized control of a peripheral board that is a controlled unit from the main control board, together with a high confidentiality holding capability. An object is to provide a peripheral board, an authentication method, and an authentication program.

  In order to solve the above-described problems and achieve the object, an electronic apparatus according to a first aspect of the present invention includes a main control unit that transmits a control command, and a predetermined process based on the control command transmitted from the main control unit. The main control unit is a time measuring means for measuring free run independently of other means, and a time measuring time acquired from the time measuring means at a specified timing. Relative time code generating means for generating a relative time code from the above information, and synchronization for generating a synchronization code including packet information output at arbitrary intervals as an operation check value of the main control unit at the time of transmission of the control command The code generation means, the relative time code generated by the relative time code generation means, and the synchronization code generated by the synchronization code generation means are controlled. An adding means for adding to the command; and a transmitting means for transmitting the control command to the peripheral section, wherein the peripheral section receives the control command transmitted by the transmitting means; and the receiving means An operation authentication means for authenticating the operation order of the main control unit at the time of transmitting the control command using a difference between the relative time code added to the control command received by the packet and the packet information included in the synchronization code; A control command authenticating unit for authenticating that the main control unit outputs a correct control command when both the authentication using the relative time code and the authentication using the synchronization code are established in the operation authenticating unit; It is characterized by providing.

  According to a second aspect of the present invention, there is provided an electronic apparatus comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit. The main control unit is a relative time for generating the relative time code from the time measuring means for measuring the free run independently from other means, and the information of the time measured from the time measuring means at a specified timing. A synchronization code generator that generates a synchronization code including packet information output at arbitrary intervals as an operation check value of the main control unit at the time of transmission of the control command in accordance with transmission of the control command Means and a transmission means for transmitting the control command, the relative time code and the synchronization code to the peripheral section, the peripheral section being connected to the transmission section. Receiving means for receiving the control command, the relative time code and the synchronization code transmitted by using the difference between the relative time code received by the receiving means and the packet information included in the synchronization code When both the operation authentication means for authenticating the operation order of the main control unit at the time of transmitting the control command, the authentication using the relative time code in the operation authentication means, and the authentication using the synchronization code are established, Control command authenticating means for authenticating that the main control unit is outputting a correct control command.

  According to the first and second aspects of the present invention, when the synchronization code for authenticating the output order of the control commands and the relative time code are respectively authenticated, the normal control command is not received from the normal main control unit for the first time. Can be authenticated. Further, since the synchronization code and the relative time code are not information regarding the processing time of the processing routine of the main control unit, even if the synchronization code and the relative time code are intercepted by a third party, they do not serve as a hint for analyzing the processing content of the main control unit.

  An electronic device according to a third aspect of the present invention is the electronic device according to the first or second aspect, wherein the synchronous code generating means of the main control unit generates the relative time code by the relative time code generating means. Using part or all of the information used and the inspection value of the operation procedure of the main control unit at the time of transmission of the control command for authenticating the operation sequence of the main control unit at the time of transmission of the control command A synchronization code is generated by a predetermined calculation, and the operation authentication unit of the peripheral portion transmits a calculation result of a predetermined calculation using the authenticated relative time code and the received synchronization code to the control command. The operation sequence is authenticated as an inspection value of the operation procedure of the main control unit at the time of transmitting the control command for authenticating the operation sequence of the main control unit at the time To.

  According to the third aspect of the present invention, the main control unit generates the synchronization code including the information used for generating the relative time code. That is, in order to perform authentication using the synchronization code by the peripheral board, the relative time code must be referred to. Therefore, the peripheral board can authenticate the synchronization code only after the relative time code is successfully authenticated.

  According to a fourth aspect of the present invention, in the electronic device according to the first or second aspect, the relative time code generation means of the main control unit is used for generation of the synchronization code by the synchronization code generation means. Relative to each other by a predetermined calculation using a part or all of the information to be performed and an inspection value related to the relative time measured by the time measuring means for authenticating the operation order of the main control unit at the time of transmitting the control command. A time code is generated, and the operation authenticating means in the peripheral portion outputs a calculation result of a predetermined calculation using the authenticated synchronization code and the received relative time code as the main command when transmitting the control command. The main control unit is authenticated as an inspection value related to the relative time measured by the time measuring means for authenticating the operation order of the control unit. .

  According to the invention of claim 4, the main control unit generates a relative time code including information used for generating the synchronization code. That is, in order to perform authentication using the relative time code by the peripheral board, the synchronization code must be referred to. Therefore, the peripheral board can authenticate the relative time code only after the synchronization code is successfully authenticated.

  An electronic device according to a fifth aspect of the present invention is the electronic device according to any one of the first to fourth aspects, wherein the control command authentication means in the peripheral portion uses the relative time code or the synchronization code. When the designated information is authenticated among the information regarding the operation order of the main control unit at the time of transmitting the control command, the main control unit authenticates that the correct control command is output. And

  According to the invention of claim 5, in the peripheral part, it is arbitrarily set which information is authenticated among the information relating to the main control part when the correct control command is output when it is authenticated. Can do.

  An electronic device according to a sixth aspect of the present invention is the electronic device according to any one of the first to fifth aspects, wherein the synchronization code generation means of the main control unit is accompanied by transmission of the control command. A synchronization code including packet information output at predetermined intervals set in advance as an operation inspection value of the main control unit at the time of transmission of the control command is generated.

  According to the sixth aspect of the present invention, it is possible to generate a synchronization code including packet information output at predetermined intervals set in advance. That is, the generation timing of the synchronization code can be freely adjusted.

  The main control board according to the invention of claim 7 is a main control board which is mounted on an electronic device and transmits a control command to a controlled part, and counts a free run independently of other means. Time measuring means for performing, relative time code generating means for generating a relative time code from information on the time measured from the time measuring means at a specified timing, and transmission of the control command, Synchronous code generation means for generating synchronous code including packet information output at arbitrary intervals as an operation inspection value of the main control board, and the control command, the relative time code, and the synchronous code to the controlled unit Transmitting means for transmitting.

  The main control board according to an eighth aspect of the present invention is the main control board according to the seventh aspect, wherein the main control board further includes a relative time code generated by the relative time code generation means and the synchronization. Adding means for adding the synchronization code generated by the code generation means to the control command, and the transmission means receives the control command to which the relative time code and the synchronization code are added by the adding means. It transmits to a control part, It is characterized by the above-mentioned.

  According to the seventh and eighth aspects of the invention, since the main control board is authenticated by the peripheral board which is the controlled unit, the main control board generates an arbitrary number of authentication method codes from any authentication method. Then, it can be transmitted to the peripheral board together with the control command. Further, in the case of claim 10, since each code (relative time code and synchronization code) is added to the control command, even if the information transmitted from the main control board is intercepted by a third party As in the prior art, only the control command can be transmitted.

  A peripheral board according to a ninth aspect of the invention is a peripheral board that is mounted on an electronic device and performs processing according to a control command transmitted from a main control unit, wherein the control is transmitted from the main control unit. The main unit at the time of transmission of the control command using the difference between the reception means for receiving the relative time code and the synchronization code together with the command, the relative time code received by the reception means, and the packet information included in the synchronization code When the operation authentication means for authenticating the operation order of the control section, and the authentication using the relative time code and the authentication using the synchronization code are both established in the operation authentication means, the main control section is correct. Control command authenticating means for authenticating that the message is output.

  A peripheral board according to a tenth aspect of the present invention is the peripheral board according to the ninth aspect, wherein the receiving means does not receive the relative time code and the synchronization code together with the control command. It is determined whether or not the relative time code and the synchronization code are added to the command, and when it is determined that the relative time code and the synchronization code are added, the operation authentication means Authentication is performed using the relative time code and the synchronization code added to the control command, respectively.

  According to the ninth and tenth aspects of the present invention, when a plurality of codes (relative time code and synchronization code) added to the control command are acquired upon receipt of the control command, or a plurality of codes transmitted simultaneously with the control command. When these codes (relative time code and synchronization code) are received, the operation sequence of the main control board that is the transmission source of the control command can be authenticated using each of these codes. Furthermore, the validity of the control command can be authenticated using this authentication result.

  According to an eleventh aspect of the present invention, there is provided an authentication method in an electronic apparatus comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit. In the authentication method, the main control unit acquires timekeeping time information at a designated timing from timekeeping means that time-freezes independently of other means, and generates a relative time code from the information. Relative time code generation step and synchronization for generating a synchronization code including packet information output at arbitrary intervals as an operation check value of the main control unit at the time of transmission of the control command in association with transmission of the control command A code generation step, a relative time code generated by the relative time code generation step, and a synchronous code generated by the synchronous code generation step. A receiving step for receiving the control command transmitted by the transmitting step at the peripheral portion. The adding step for adding the control command to the control command; and a transmitting step for transmitting the control command to the peripheral portion. And using the difference between the relative time code added to the control command received in the receiving step and the packet information included in the synchronization code, the operation order of the main control unit at the time of transmitting the control command is authenticated. A control command authentication step for authenticating that the main control unit is outputting a correct control command when both the operation authentication step, the authentication by the relative time code by the operation authentication step, and the authentication by the synchronization code are established. It is characterized by including these.

  An authentication method according to the invention of claim 12 is an electronic device comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit. An authentication method in a device, wherein the main control unit acquires timekeeping time information at a timing designated by a timekeeping means that time-freezes independently of other means, and obtains a relative time code from the information. A relative time code generation step to generate, an authentication code generation step to generate an authentication code for authenticating the main control unit, if any, and a main control at the time of transmission of the control command accompanying the transmission of the control command A synchronization code generation step for generating a synchronization code including packet information output at arbitrary intervals as an operation inspection value of the unit, the control command, and the relative time A transmission step of transmitting a code and the synchronization code to the peripheral portion, the peripheral portion receiving the control command, the relative time code and the synchronization code transmitted by the transmission step; An operation authentication step of authenticating an operation sequence of the main control unit at the time of transmission of the control command using a difference between the relative time code received by the reception step and packet information included in the synchronization code; and the operation authentication A control command authentication step for authenticating that the main control unit is outputting a correct control command when both the authentication by the relative time code by the step and the authentication by the synchronization code are established. To do.

  According to the eleventh and twelfth aspects of the present invention, when the synchronization code and the relative time code for authenticating the output order of the control commands transmitted from the main control unit are respectively authenticated, the normal main control is not performed for the first time. It can be authenticated that a regular control command is output from the part. Further, since the synchronization code and the relative time code are not information regarding the processing time of the processing routine of the main control unit, even if the synchronization code and the relative time code are intercepted by a third party, they do not serve as a hint for analyzing the processing content of the main control unit.

  An authentication program according to the invention of claim 13 can cause a computer to execute the authentication method according to claim 11 or 12.

  According to the electronic device, the main control board, the peripheral board, the authentication method, and the authentication program according to the present invention, a function of preventing unauthorized control from the main control board to the peripheral board that is the controlled unit is realized along with high confidentiality capability. There is an effect that can be done.

It is explanatory drawing which shows an example of a structure of the pachinko game machine which mounts the electronic device concerning this invention. It is a block diagram which shows the internal structure of the control part of a pachinko game machine. It is a block diagram which shows the functional structure concerning the authentication process of a main control board and a peripheral board | substrate. It is a flowchart which shows the procedure of the control command transmission process of the main control board concerning this invention. It is a flowchart which shows the procedure of the control command reception process of the peripheral board concerning this invention. 3 is a flowchart illustrating a procedure of authentication processing according to the first exemplary embodiment. 10 is a flowchart illustrating a procedure of authentication processing according to the second embodiment. 10 is a flowchart illustrating a procedure of authentication processing according to the third embodiment. 10 is a flowchart illustrating a procedure of authentication processing according to the fourth embodiment. 10 is a flowchart illustrating a procedure of authentication processing according to the fifth embodiment. 18 is a flowchart illustrating a procedure of authentication processing according to the sixth embodiment. 18 is a flowchart illustrating a procedure of authentication processing according to the seventh embodiment. 20 is a flowchart illustrating a procedure of authentication processing according to an eighth embodiment. It is explanatory drawing which shows the outline | summary of the fraud prevention technique by a prior art. It is explanatory drawing which shows the example of insertion of an unauthorized control board. It is explanatory drawing which shows the outline | summary of the signal switching by a signal switching circuit.

(Embodiment)
Referring to the accompanying drawings below, it is included in a control signal between a gaming machine equipped with the function of the electronic device according to the present invention and a plurality of boards (main control board and peripheral board) mounted on this gaming machine. A preferred embodiment of an authentication method and an authentication program for authenticating a control command will be described in detail.

(Basic configuration of gaming machine)
FIG. 1 is an explanatory diagram showing an example of the configuration of a pachinko gaming machine equipped with an electronic device according to the present invention. A game ball launched by driving a launching unit (see FIG. 2) arranged at a lower position of the game board 101 ascends between the rails 102a and 102b and reaches an upper position of the game board 101, and then the game area 103 Fall inside. A plurality of nails (not shown) are provided in the game area 103, and a game ball is dropped in various directions, and a windmill or a prize opening that changes the fall direction of the game ball is placed in the middle of the fall. Is arranged.

  A symbol display unit 104 is arranged at the center of the game area 103 of the game board 101. As the symbol display unit 104, for example, a liquid crystal display (LCD) is used. The symbol display unit 104 is not limited to the LCD, and a CRT or the like can also be used. Below the symbol display unit 104, a start winning port 105 for starting winning is arranged. Winning gates 106 are arranged on the left and right of the symbol display unit 104, respectively.

  The winning gate 106 is provided to detect the passing of the game ball and perform a lottery to open the start winning opening 105 for a predetermined time. A normal winning opening 107 is disposed on the side of the symbol display unit 104 or below. When a game ball wins the normal winning opening 107, the number of winning balls (for example, 10) at the time of the normal winning is paid out. At the bottom of the game area 103, there is provided a collection port 108 for collecting game balls that have not won any winning ports.

  The symbol display unit 104 described above starts a variation in the display of a plurality of symbols when a game ball is won at a specific winning opening (at the time of starting winning), and the symbol stops after a predetermined time. When the specific symbols (for example, “777”) are aligned at the time of the stop, a big hit state is obtained. In the big hit state, the big winning opening 109 located below repeats opening for a predetermined period for a predetermined round (for example, 15 rounds), and pays out the number of winning balls corresponding to the winning game balls.

  FIG. 2 is a block diagram showing the internal configuration of the control unit of the pachinko gaming machine. The control unit 200 includes a plurality of control units. In the example shown in the figure, a main control unit 201, an effect control unit 202, and a prize ball control unit 203 are included. The main control unit 201 controls basic operations related to the game of the pachinko gaming machine. The production control unit 202 controls the production operation during the game. The prize ball control unit 203 controls the number of prize balls to be paid out.

  Based on the program data stored in the ROM 212, the main control unit 201 executes a CPU 211 that performs basic processing as the game content progresses, a RAM 213 that functions as a data work area when the CPU 211 performs arithmetic processing, and each detection unit 221- An interface (I / F) 214 that receives various data from the H.224 and transmits various data to the effect control unit 202 and the prize ball control unit 203 is configured. The main control unit 201 realizes its function by, for example, a so-called main control board. The program data stored in the ROM 212 described above means program code or fixed data that cannot be rewritten.

  On the input side of the main control unit 201, a start winning port detection unit 221 that detects a winning ball that has won a winning winning port 105, a gate detection unit 222 that detects a game ball that has passed through the winning gate 106, and a normal win An ordinary winning opening detection unit 223 that detects a game ball won in the mouth 107 and a large winning opening detection unit 224 that detects a winning ball won in the big winning opening 109 are connected via the I / F 214. These detection units can be configured using proximity switches or the like.

  A prize winning opening / closing part 231 is connected to the output side of the main control part 201, and the opening / closing of the prize winning opening / closing part 231 is controlled. The special prize opening / closing unit 231 has a function of opening the special prize opening 109 for a certain period of time when a big hit is made, and is configured using a solenoid or the like. This jackpot is programmed in advance to occur with a predetermined probability (for example, 1/300, etc.) based on the generated random number (random number for jackpot determination).

  The effect control unit 202 receives control signals including various control commands from the main control unit 201, and executes program data stored in the ROM 242 based on these commands to perform effect control during the game. The effect control unit 202 includes a CPU 241 that executes effect processing, a RAM 243 that functions as a data work area during the calculation processing of the CPU 241, a VRAM 244 that writes image data to be displayed on the symbol display unit 104, and various types from the main control unit 201. An interface (I / F) 245 for receiving data and transmitting various data to the lamp control unit 251 and the voice control unit 252 is provided. The effect control unit 202 realizes its function by, for example, a so-called effect board. In addition, the above-described symbol display unit (LCD) 104, lamp control unit 251, and voice control unit 252 are connected to the output side of the effect control unit 202 via the I / F 245.

  The winning ball control unit 203 receives control signals including various control commands from the main control unit 201, and executes program data stored in the ROM 282 based on these commands to perform winning ball control. The prize ball control unit 203 includes a CPU 281 that executes prize ball control processing, a RAM 283 that functions as a data work area when the CPU 281 performs arithmetic processing, and various data reception and emission units 292 from the main control unit 201. An interface (I / F) 284 that transmits and receives various data is provided. The prize ball control unit 203 realizes its function by, for example, a so-called prize ball substrate.

  The winning ball control unit 203 performs control for paying out the number of winning balls at the time of winning a prize to the connected paying unit 291. In addition, an operation of launching a game ball with respect to the launch unit 292 is detected, and the launch of the game ball is controlled. The payout unit 291 includes a motor for paying out a predetermined number from the game ball storage unit. The winning ball control unit 203 controls the paying unit 291 to pay out the number of winning balls corresponding to the game balls won in each winning port (start winning port 105, normal winning port 107, large winning port 109). Do it.

  The launcher 292 launches a game ball for a game, and includes a sensor that detects a game operation by the player, a solenoid that launches the game ball, and the like. When the prize ball control unit 203 detects a game operation by the sensor of the launch unit 292, the prize ball control unit 203 intermittently fires a game ball by driving a solenoid or the like in response to the detected game operation, and the game area 103 of the game board 101 A game ball is sent out.

  The main control unit 201, the effect control unit 202, and the prize ball control unit 203 configured as described above are provided on different printed circuit boards (main control board, effect board, and prize ball board). For example, the prize ball control unit 203 can be provided on the same printed circuit board as the main control unit 201.

(Basic operation of pachinko machines)
An example of the basic operation of the pachinko gaming machine having the above configuration will be described. The main control unit 201 outputs the winning status of the game ball for each winning port to the winning ball control unit 203 as a control command. The winning ball control unit 203 pays out the number of winning balls corresponding to the winning situation in accordance with the control command output from the main control unit 201.

  The main control unit 201 outputs a corresponding control command to the effect control unit 202 every time a game ball wins the start winning opening 105, and the effect control unit 202 displays the symbols on the symbol display unit 104 in a variable manner. Repeat to stop. When the occurrence of the big hit has been determined, the corresponding control command is output to the effect control unit 202, and the effect control unit 202 stops with a predetermined pattern aligned. At the same time, control for opening the special winning opening 109 is performed. The effect control unit 202 displays various effects on the symbol display unit 104 in addition to the symbol variation display during the jackpot occurrence period, during the reach until the jackpot occurrence, or at the time of reach notice. . In addition, effects such as performing specific driving for various types of accessories and changing the display state of the lamp 261 are performed.

  When a big hit occurs, the big winning opening 109 is opened a plurality of times. One release is one round, for example, 15 rounds are repeatedly executed. The period of one round is set, for example, when 10 game balls are won or for a predetermined period (for example, 30 seconds). At this time, the prize ball control unit 203 pays out with, for example, 15 prize balls per prize of one ball game ball to the big prize opening 109. After the jackpot is over, the jackpot state is canceled and the normal gaming state is restored.

(Functional configuration related to authentication processing of main control board and peripheral board)
In a general pachinko gaming machine, the basic operation as described above is repeated in accordance with the insertion of a game ball from a player. In the present embodiment, even if an illegal control board is inserted into the pachinko gaming machine by some method and provided to the player, the illegal output outputted from the illegal control board during the game A function of detecting a control command (control signal) is provided. Specifically, the control command transmitted from the main control unit 201 is authenticated, and an unauthorized control command is detected according to the authentication result. A function for authenticating this control command will be described below.

  FIG. 3 is a block diagram showing a functional configuration related to the authentication process of the main control board and the peripheral board. 3, the main control board 310 is configured by the main control unit 201 described with reference to FIG. The peripheral board 320 is configured by the effect control unit 202 or the prize ball control unit 203 described with reference to FIG. 2, and performs an authentication process according to the present invention.

Functional configuration of main control board The main control board 310 is a functional unit that transmits a control command for operating the peripheral board 320, and includes a control command output unit 311, a time measuring unit 312, a code generation unit 313, An addition unit 314 and a transmission unit 315 are included.

  The control command output unit 311 stores control command data (control command data) to be transmitted to the peripheral board 320. Then, the control command output unit 311 selects a control command to be transmitted to the peripheral board 320 from the stored control commands according to a predetermined program code, and outputs it to the adding unit 314.

  The time measuring unit 312 measures the free run independently of other means. The timing, the number of digits, and the display method are arbitrary. Therefore, the timing unit 312 does not fix the timing of time information acquisition on the time axis, and an irregular fluctuation value is output. For example, in the case where the main control board 310 is set to acquire timing information by using the timing when an event to be awarded as a trigger occurs, it is not known when the prize ball event occurs.

  In addition, the function of the time measuring unit 312 is a simple function of starting time measurement with the start of a gaming operation such as power-on or resetting. In the case of the time measuring unit 312, it is not necessary to have an initialization processing function for the purpose of fixing or setting an initial value such as a reset process or a clear process when starting the time measurement. In addition, after the start of timing, the timing information may be output with a specific event that occurs at random as a trigger, such as when an event to be awarded has occurred. Therefore, it can be realized with a very simple configuration and has a feature that the processing load is light.

  When the control command to be transmitted to the peripheral board 320 is a predetermined control command, the code generation section 313 includes a synchronization code generation means for generating a synchronization code as a code for authenticating the operation sequence of the main control board 310, and a timing section A function as a relative time generating means for generating a relative time code using the time measurement result by 312 is provided.

  Here, a synchronization code generation process by the synchronization code generation means will be described. In the synchronization code generation means, a synchronization code including packet information output at arbitrary intervals as an operation inspection value of the main control board 310 at the time of transmission of the control command in accordance with transmission of the control command in the control command output unit 311. Generate. The generated synchronization code is output to the adding unit 314.

  Here, the synchronization code will be described in detail. The synchronization code is information for confirming that transmission of a control command by the main control board 310 is continuously executed. As described above, the synchronization code is output set at an arbitrary interval, for example, a predetermined time interval, a predetermined clock number interval, or an instruction execution number interval in accordance with the generation of the control command of the main control board 310. Output at timing. The packet information output at this continuous timing has a correlation at a predetermined interval. The synchronization code is generated using the packet information output at such a predetermined output timing.

  As described above, since the packet information is output at arbitrary intervals, when comparing packet information at successive output timings, the packet information is such as a time difference between each predetermined interval and an instruction execution quantity. It has a correlation of having a change amount. Therefore, the operation authentication unit 322, which will be described later, authenticates the continuity of the operation of the main control board 310 by obtaining the correlation between the plurality of packet information. As the synchronization code, values acquired as packet information may be used as they are, or values obtained by performing a predetermined operation on these values may be used.

  Further, the synchronization code generation unit 303 may generate a synchronization code including packet information output at predetermined intervals set in advance as an operation inspection value of the main control board 310 in accordance with transmission of the control command. Good. In this way, the synchronization code is a synchronization code according to the timing set by the user of the main control board 310 (not a player, for example, an administrator who installs the main control board 310 in a gaming machine or a trader). Can be generated. With such a configuration, the synchronization code can be made information that is more difficult for a third party to analyze.

  In this way, by referring to the synchronization code when a predetermined control command is output, it is possible to easily determine whether or not the operation being executed on the main control board 310 is continuously performed. Can do. Therefore, it is possible to take a defense against fraud such as the signal switching circuit 1403 being mounted inside the unauthorized control board 1401 as described in FIG. Specifically, if it cannot be determined that the operation sequence authenticated by the synchronization code is a continuous operation, it is determined that the control command is transmitted from an unauthorized control board other than the control command transmitted from the main control board 310. And unauthorized control can be detected.

  On the other hand, when the relative time code is generated by the relative time code generation means of the code generation unit 313, the code generation unit 313 generates a relative time code from the information of the time measurement acquired from the time measurement unit 312 at the specified timing. The generated relative time code is output to the adding unit 314.

  The relative time code is information for confirming that the transmission of the control command by the main control board 310 is continuously executed. Specifically, for example, a certain reference value is set from the timekeeping information, and is expressed by a difference value from this reference value, a cumulative value, or the like. The relative time code may include information set based on the timing information as it is, or may include a value obtained by performing a predetermined calculation on the information.

  In this manner, by referring to the relative time code when a predetermined control command is output, it is simply determined whether or not the operation being executed on the main control board 310 is continuously performed. be able to. Therefore, it is possible to take measures against an illegal act such as the signal switching circuit 1403 being mounted inside the illegal control board 1401 as described in FIG. Specifically, the control command is transmitted from an unauthorized control board other than the control command transmitted from the main control board 310 when the operation sequence authenticated by the relative time code is not determined to be a continuous operation. And unauthorized control is detected.

  The adding unit 314 adds the synchronization code and the relative time code generated by the code generating unit 313 to the control command. The control command to which each code is added is output from the adding unit 314 to the transmitting unit 315.

  The transmission unit 315 transmits a control command to which the relative time code and the synchronization code are added to the peripheral board 320. In this embodiment, “transmit a control command” means “transmit a control signal including control command data”. For example, a synchronization code, a relative time code, and other accompanying data as described above. The presence or absence of is not considered.

  Moreover, although the code generation unit 313 described above generates the synchronization code and the relative time code independently of each other, one code may be used when generating the code. For example, the code generation unit 313 first generates a relative time code as usual, and some or all of the information used to generate the relative time code and the operation sequence of the main control board 310 when transmitting the control command. The synchronization code may be generated by a predetermined calculation using the inspection value. In addition, using the reverse procedure, a synchronization code is generated as usual, and a part or all of the information used to generate the synchronization code and an inspection value related to the relative time measured by the timer unit 312 are used. The relative time code may be generated by a predetermined calculation.

  In the above-described configuration, the configuration in which the synchronization code and the relative time code are added to the control command has been described. However, as the authentication data for authenticating the control command, the control command, It may be configured to transmit separately. In this case, the transmission unit 315 transmits a control command and each code. Of each code, only a predetermined code (only a synchronization code, only a relative time code, etc.) may be added to the control command.

  For example, as a method of generating a relative time code, a part or all of information used when generating a synchronous code by the code generation unit 313 and a control command as described above in the previous stage of generating the relative time code The relative time code may be generated by a predetermined calculation using an inspection value related to the relative time for authenticating the operation sequence of the main control board 310 at the time of transmission. Similarly, as a method for generating a synchronization code, a part or all of information used when a relative time code is generated by the code generation unit 313 and a main command at the time of control command transmission are generated in the previous stage of generating the synchronization code. The synchronization code may be generated by a predetermined calculation using the inspection value of the operation procedure of the main control board 310 for authenticating the operation order of the control board 310.

  Further, in both cases of the above-described method of transmitting the synchronization code and the relative time code added to the control command, and the method of transmitting the synchronization code and the relative time code separately from the control command, the transmission control is performed. The synchronization code and the relative time code may be generated using the command data itself or accompanying data. The accompanying data described here is data accompanying the content of the control command, for example, data necessary for processing based on the control command such as the number of winning game balls. When such accompanying data is used, it is possible to prevent reuse of the synchronization code by an unauthorized control board. Therefore, it is possible to detect unauthorized control to the peripheral board 320 more reliably.

-Functional configuration of peripheral substrate Next, a functional configuration of the peripheral substrate 320 will be described. As shown in FIG. 3, the peripheral board 320 includes a receiving unit 321, an operation authentication unit 322, and a control command authentication unit 323.

  The receiving unit 321 receives the control command transmitted by the transmitting unit 315 of the main control board 310. As described above, when a synchronization code and a relative time code are transmitted separately from the control command, the control command and the synchronization code and the relative time code are received as authentication data for the control command.

  Here, the function of the receiving unit 321 when a synchronization code or a relative time code is added to the control command will be described in more detail. When a synchronization code or a relative time code is added to the control command, the receiving unit 321 must determine whether or not various codes are added to the control command.

  Normally, in the main control board 310, when a synchronization code or a relative time code is added to a control command, an adding process according to an arbitrary rule is performed. For example, as a rule when the control command is 8 bits, the main control board 310 assigns the upper 5 bits for the actual control command, and assigns the lower 3 bits for the synchronization code and relative time code. Send the assigned one as a control command.

  In this case, the receiving unit 321 of the peripheral board 320 sets so as to determine whether or not a synchronization code or a relative time code is given with reference to the lower 3 bits of the received control command. When a synchronization code or a relative time code is added to the received control command, the control command is authenticated by the following process using the synchronization code or the relative time code.

  As another rule, the main control board 310 does not simply connect the bits of the control command and other codes (synchronization code and relative time code) as described above. It is composed of 8-bit values, and the sum of these 8-bit values is transmitted as a control command to which a synchronization code or a relative time code is added.

  In this case, the receiving unit 321 of the peripheral board 320 subtracts a control command (8-bit value) expected to be a control command transmitted from the main control board 310 this time from the received control command. This expected control command can be easily received from the control command received when the peripheral board 320 is a legitimate board or last time and authenticated by the peripheral board 320 (the specific authentication procedure will be described later). Can be specified. In addition, when a record of the control command received last time or immediately before the last time such as immediately after resetting is not accumulated, it can be specified that a control command representing an initialization instruction is transmitted. Therefore, the receiving unit 321 of the peripheral board 320 authenticates the control command by the following process using the value after subtracting the control command (8-bit value) as a synchronization code or a relative time code. At this time, a value to be subtracted from the received control command may be a synchronization code or a relative time code, and it may be determined whether or not the value after the subtraction is an expected control code.

  The operation authentication unit 322 authenticates the operation sequence of the main control board 310 at the time of control command transmission using the synchronization code and the relative time code added to the control command received by the reception unit 321. Again, when a predetermined calculation is performed on the synchronization code or the relative time code, the predetermined calculation is performed according to the content of the calculation processing of the code generation unit 313 of the main control board 310, and the synchronization is performed. Get code or relative time code. If the acquired synchronization code is an inspection value indicating the operation sequence of the main control board 310 at the time of transmitting the control command, it is authenticated that the operation of the main control board 310 is in the correct order. Further, when the relative time code is an inspection value indicating the continuation state of the operation of the main control board 310, it is authenticated that the operation of the main control board 310 is in the correct order.

  When the reception unit 321 directly receives the relative time code, the operation authentication unit 322 authenticates the operation order of the main control board 310 using the relative time code. When the synchronization code is generated using all or part of the relative time code, the relative time code is first authenticated, and then the synchronization code is authenticated. Similarly, when the relative time code is generated using all or part of the synchronization code, the synchronization code is first authenticated, and then the relative time code is authenticated.

  The control command authentication unit 323 authenticates that the main control board 310 is outputting a correct control command when both the authentication by the synchronization code by the operation authentication unit 322 and the authentication by the relative time code are established. Here, if either one of the authentications fails, it is determined that an unauthorized control command (an unauthorized control signal) for performing unauthorized control is output from an unauthorized control board, and unauthorized control is detected. The

  As described above, the main control board 310 that is the person to be authenticated has a function of generating two types of codes, a synchronous code and a relative time code, in order to perform authentication processing by the peripheral board 320 that is the authenticator. I have. These two types of codes are generated in conjunction with transmission of a predetermined control command. In the peripheral board 320, authentication is performed by different methods using the two types of transmitted codes. Then, it is authenticated that the correct control command is received for the first time when both authentications are successful.

  In the present embodiment, an example is shown in which the main control board 310 of the person to be authenticated and the peripheral board 320 of the certifier are mounted in the same electronic device, but they are mounted in different electronic devices. In some cases, the main control board and the peripheral board have a control unit-controlled part relationship.

  In such a case, for example, when the control command transmitted to the controlled unit is a predetermined control command, the main control board that transmits a control command to the controlled unit authenticates the information regarding the main control board and the operation content. For generating a plurality of codes for authentication (in this embodiment, relative time codes and synchronous codes) using different authentication methods, and transmission for transmitting a plurality of codes to the controlled unit together with the control command What is necessary is just to have a part.

  In addition, the peripheral board that receives the control command from the control unit is received with the receiving unit that receives the control command transmitted from the main control board 310 and a plurality of codes having different authentication methods for authenticating information on the control unit. A code authentication unit that authenticates information related to the main control unit using a plurality of codes, and a control command authentication unit that authenticates that the main control unit outputs a correct control command according to an authentication result by the code authentication unit As long as it has.

(Authentication process procedure)
Next, the procedure of the authentication process for the control command output from the main control board 310 described with reference to FIG. 3 will be described. As described above, in the present embodiment, two codes, a relative time code and a synchronization code, are transmitted to the peripheral board 320 with the transmission of the control command from the main control board 310. The peripheral board 320 authenticates whether or not the control command received using the two codes transmitted from the main control board 310 is a control command transmitted from the regular main control board 310. Below, the procedure of the authentication process of the main control board 310 and the peripheral board 320 using the relative time code and the synchronization code will be described.

Control Command Transmission Process FIG. 4-1 is a flowchart showing the procedure of the control command transmission process of the main control board according to the present invention. In the flowchart of FIG. 4A, first, it is determined whether or not a predetermined control command is output from the control command output unit 311 (step S411). Here, the process waits until a predetermined control command is output (step S411: No loop). When the predetermined control command is output (step S411: Yes), the control command is input to the code generation unit 313, and the main control command is output. A relative time code for authenticating the control board 310 and a synchronization code are generated (steps S412 and S413).

  When both the relative time code and the synchronization code are generated, each of the generated codes (relative time code and synchronization code) is added to the control command by the adding unit 314 (step S414). Finally, a control command is transmitted from the transmission unit 315 to the peripheral board 320 (step S415), and the series of processes is terminated.

  In the control command transmission process described above, the generation order of the relative time code and the synchronization code is not particularly limited. However, as described above, when the relative time code is generated using the synchronization code, the synchronization code is generated using the relative time code. When generating the code, the code used when generating another code is generated first.

Control Command Reception Process FIG. 4-2 is a flowchart showing the procedure of the peripheral board control command reception process according to the present invention. In the flowchart of FIG. 4B, first, the receiving unit 321 determines whether or not a control command has been received (step S421). When the control command is received (step S421: Yes), the operation authentication unit 322 uses the relative time code added to the control command to wait until the control command is received (step S421: No loop). The operation order of the control board 310 is authenticated (step S422).

  In step S422, it is determined whether or not the authentication is successful (step S423). If the authentication is successful (step S423: Yes), the main control is performed using the synchronization code added to the control command received in step S421. The operation order of the substrate 310 is authenticated (step S424). In step S424, it is determined whether or not the authentication is successful (step S425). If the authentication is successful (step S425: Yes), the control command received in step S421 is authenticated as a correct signal (step S426). ), A series of processing ends.

  If authentication fails in steps S423 and S425 (steps S423 and S425: No), the control command received in step S421 is detected as an invalid control command (step S427), and the series of processing ends.

  As described above, in the authentication process of the present embodiment, when a control command is transmitted from the main control board 310 to the peripheral board 320, two types of authentication data, that is, a relative time code and a synchronization code are simultaneously transmitted. The The peripheral board 320 performs authentication of the operation order of the main control board 310 using the relative time code and authentication of the operation order of the main control board 310 using the synchronization code. When both of these two authentication processes are successful, it is determined that the control command is transmitted from the correct main control board 310, and the control command is authenticated as a regular control signal.

  Also, as described above, instead of transmitting both the relative time code and the synchronization code simultaneously with one command transmission, for example, one of them is transmitted first, and the other is transmitted when the next command is transmitted. Thereafter, this may be repeated. In this case, the synchronization code, the relative time code, and the synchronization code may be alternately transmitted once, or may be transmitted by switching every plural times (for example, every two times or every five times). Further, when switching every plural times, for example, in the transmission of the control command for three times, the relative time code is transmitted twice in succession, and is synchronized with the next control command transmission (when the control command is transmitted for the third time). The ratio of the number of transmissions, such as transmitting a code, may be different.

  In this embodiment, two types of a relative time code and a synchronization code are used. However, a function unit for generating another code that performs authentication using a method different from these two types of codes is added. May be. Specifically, for example, a third type of authentication code is generated from the CPU serial number, a fourth type is generated from the manufacturer code, and a fifth type of authentication code is generated from the device identification number. is there. In addition to the method for generating the authentication code as described above, for example, every time the watchdog timer is cleared, a method of generating an event that is cleared as an authentication code, or a count value that is counted up for each clear is used for authentication. A method for generating code may be applied.

  When three or more types of authentication data are used in this way, the peripheral board 320 as the authenticator performs authentication processing using a plurality of codes received together with the control command. Then, when all the authentication processes using each code are successful, it may be determined that a regular control command has been received, or when a regular control command has been received when a predetermined number or more of authentication processes have been successful. You may set so that it may judge.

  Further, the control command may be authenticated according to which code among the plurality of codes as described above is used for authentication. For example, when the control command authentication unit 323 uses the relative time code or the synchronization code to authenticate the main control board 310 and the designated information among the information related to the operation sequence, the main control board 310 performs correct control. Set to authenticate when the command is output.

  In this way, if the configuration is such that a plurality of codes are respectively authenticated as authentication data, the processing capacity of the main control board 310 and the peripheral board 320 is low, the size limit of the program area and the work data area, etc. Therefore, even if complicated processing cannot be implemented, if each authentication processing is set to a processing load that is light, the authentication strength can be increased by the combination of the contents of the authentication processing and the number of times of authentication. Moreover, you may include the dummy code | cord | chord which does not utilize the right or wrong of an authentication process among the several codes for determination whether the regular control command was received. By including such a dummy code, it is possible to make it difficult for a third party to analyze the operation of the main control board, the authentication method, and the authentication data.

(Example of authentication processing)
Next, specific examples 1 to 8 of authentication processing by the main control board 310 and the peripheral board 320 will be described. Here, as described above, the timing is limited to the relative time code, the synchronization code, the generation and transmission timing when a predetermined control command is transmitted from the main control board 310, and the reception and authentication timing by the peripheral board 320. I will explain.

Generation and Authentication of Synchronization Code First, generation and authentication of a synchronization code that is a feature of the present invention will be described in detail. The synchronization code includes packet information output by at least two (two times) output timings (output timings at arbitrary intervals set in advance) among the packet information generated by the main control board 310. Yes. The output timing at every predetermined interval described here means, for example, intermittently continuous timing. For example, a clock timing such as every 1 clock timing or every 4 clock timings may be used as a reference, or a time such as 1 sec or 0.5 sec may be used as a reference.

  The synchronization state is verified from the correlation information between the two pieces of packet information output at such continuous output timing. For example, the basic value of the first packet (hereinafter referred to as “packet 1”) = 0x03, the basic value of the second packet (hereinafter referred to as “packet 2”) = 0x05, and the correlation between packet 1 and packet 2 The condition (authentication establishment condition) is “+2”. The inspection value of packet 1 transmitted from the main control board is 0x03 as the basic value, the inspection value of packet 2 is packet 1 + packet 2, that is, 0x03 + 0x05, and "0x08" is transmitted.

  Then, the packet 1 received at the peripheral board 320 is 0x03 as the basic value, and the packet 2 is 0x08. Then, in order to calculate the basic value of the packet 2, the packet 1 is subtracted from the received packet 2 to obtain 0x08-0x03 = 0x05.

  When the basic values of both packet 1 and packet 2 are obtained, the correlation between the two packets is obtained. That is, packet 2 basic value−packet 1 basic value = 0x05−0x03, and the correlation value is 0x02. Since this value satisfies the correlation condition (which is +2) between the basic value of packet 1 and the basic value of packet 2, it is determined that authentication is established.

  In the arithmetic processing using packet 1 and packet 2, the number of digits may be adjusted so that the arithmetic result does not overflow, or the basic values of packet 1 and packet 2 are selected within a numerical range that does not overflow. Alternatively, it may be calculated as an unsigned operation. Further, the correlation condition may be changed for each authentication process in order to increase the authentication strength. For example, the first correlation condition may be “+2”, the second correlation condition may be “+5”, the third correlation condition may be “+1”, and the like. However, when the correlation change rule as described above is applied, the main control board 310 and the peripheral board 320 are previously shared with each other, or a means or process for notifying is prepared.

  In addition, simply transmitting continuous packet information may cause a third party to analyze packet information differences. Accordingly, the basic value may be preprocessed to prevent analysis. For example, various arithmetic processing such as exclusive OR operation may be performed on the basic value of the packet information. Further, the pre-processing to the basic value may be performed only on one of the two pieces of packet information output at a preset output timing, such as every predetermined interval such as packet 1 and packet 2. However, it may be applied to both.

<Example 1: Authentication based on synchronization code>
In the first embodiment, authentication is performed based on the synchronization code. FIG. 5 is a flowchart illustrating the authentication processing procedure according to the first embodiment. As shown in the flowchart of FIG. 5, the main control board 310 that is the person to be authenticated first generates a control command and data (if there is data related to the control command) to be transmitted to the peripheral board 320 (step S501). Then, using the generation process in step S501 as a trigger, a normal CPU synchronization code Vsn is generated (step S502).

  The synchronization code Vsn generated in step S502 is expressed by the following equation (1). Here, since one authentication process is described, it is assumed that the process starts from n = 0. Therefore, the synchronization code Vs0 is used here. Moreover, as a suitable example of the value of the variable Sn, for example, an operation result value of the continuous operation inspection value and the salt value can be cited.

Synchronization code Vsn = Ec (Sn, Bn) (1)
Ec (): Encryption operation expression Sn: Continuous operation inspection value (for example, continuous synchronization packet) that can authenticate the continuous operation
Bn: Additional information (a value that can be arbitrarily set and is a value that is dynamically changed, such as a counter value or a pseudo-random number)
n: Processing order (in this case, initial value = 0 is started)

  When the synchronization code Vs0 is generated, the time is measured according to the output timing of the control command, and the relative time code Vtn is generated (step S503). The relative time code Vtn generated in step S503 is expressed by the following equation (2), and includes the variable Sn of the generation equation of the synchronization code Vsn generated in step S502. At this time, the generation formula of the relative time code Vtn may include a variable Sn and a variable Bn. Further, the configuration may include both of the variables Sn and Bn. Also, here, since one authentication process is described, it is assumed that the process starts from n = 0. Therefore, the relative time code Vt0 is generated in step S503.

Relative time code Vtn = Ec (Tn, Sn) or = Ec (Tn, Bn) (2)
Tn: Relative time test value (value acquired from the time measuring unit 312)

  In step S503, since n = 0th processing, the generated code is the relative time code Vt0. When the synchronization code Vs0 and the relative time code Vt0 are generated, first, the control command and data generated in step S501 are transmitted to the peripheral board 320 (step S504), and then the synchronization code Vs0 is transmitted to the peripheral board 320. (Step S505) and the relative time code Vt0 is transmitted to the peripheral board 320 (step S506), and the process of the main control board 310 for one authentication process is completed.

  On the other hand, the peripheral board 320 on the authenticator side starts authentication processing triggered by reception of the control command and data transmitted from the main control board 310, the synchronization code Vs0, and the relative time code Vt0. First, the synchronization code Vs0 is authenticated (step S511). Here, in order to authenticate the synchronization code, the variable Sn must be decrypted using the following equation (3).

Sn = Dc (Vsn, Bn) (3)
Dc (): Decoding arithmetic expression

  Subsequently, the relative time code Vt0 transmitted from the main control board 310 is authenticated (step S512). Again, the variable Sn or variable Bn must be decoded using the following equation (4).

  Tn = Dc (Vtn, Sn or Bn) (4)

  Only after the authentication in both step S511 and step S512 is completed, the control command and data can be processed (step S513), and one authentication process is completed. Thereafter, when the next control command is transmitted from the main control board 310, the synchronization code Vs1 and the relative time code Vt1 are generated by the same procedure.

  Here, a specific calculation example using the above-described processing is illustrated. Here, as an example, when the encryption operation Ec (A, B) is selected, AxorB is executed, and AxorB is executed as the decryption operation Dc (A, B). When A = 0x11 and B = 0x22, Ec (0x11, 0x22) => 0x11 xor 0x22 => 0x33 (⇒: calculation processing). Therefore, as described above, since variables Sn, Bn, Tn and the like are used as A and B, when S0 = 0x11, B0 = 0x01, and C0 = 0x77, Vs0 = Ec (0x11,0x01) => 0x11 xor 0x01⇒0x10. Next, Vt0 = Ec (0x77, 0x11) ⇒0x77 xor 0x11⇒0x66. At this time, the main control board 310 that is the person to be authenticated transmits 0x10 and 0x66.

  Then, the peripheral board 320 as the person to be authenticated receives and decodes 0x10 and 0x66. S0 = Dc (0x10, 0x01) → 0x10 xor 0x01 → 0x11. Then, the peripheral board 320 determines whether or not 0x11 is an expected error check value. For example, if inspection value = expected value = 0x11, authentication is established.

  Therefore, S0 = Dc (0x66, 0x11) ⇒0x66 xor 0x11⇒0x77. Then, the authenticator determines whether 0x77 is an expected error check value. Here, for example, if the inspection value = expected value = 0x77, the authentication is established.

  As described above, in the case of the first embodiment, since the relative time code Vt0 includes the variable of the generation formula of the synchronization code Vs0, it is essential to receive and authenticate the synchronization code Vs0 in order to authenticate the relative time code Vt0. Become.

<Example 2: Authentication based on relative time code>
FIG. 6 is a flowchart illustrating the authentication processing procedure according to the second embodiment. In the second embodiment, authentication is performed based on the relative time code Vtn. As shown in the flowchart of FIG. 6, the main control board 310 that is the person to be authenticated first generates a control command and data (when there is data related to the control command) to be transmitted to the peripheral board 320 (step S601). Then, timing is performed according to the output timing of this control command, and a relative time code Vtn is generated (step S602).

  The relative time code Vtn generated in step S602 is expressed by the following equation (5). Note that, as described above, since one authentication process is described here, it is assumed that the process starts from n = 0. Therefore, the relative time code Vt0 is accurate here.

  Relative time code Vtn = Ec (Tn, Bn) (5)

  When the relative time code Vt0 is generated, a normal CPU synchronization code Vs0 is subsequently generated (step S603). The synchronization code Vs0 generated in step S603 is expressed by the following equation (6), and includes a variable Tn of the relative time code generation equation generated in step S601. Here, instead of the variable Tn, the variable Bn used in the relative time code generation formula may be included. Furthermore, the structure including both the variables Tn and Bn may be used.

  Synchronization code Vsn = Ec (Sn, Tn) or = Ec (Sn, Bn) (6)

  When the relative time code Vt0 and the synchronization code Vs0 are generated, first, the control command and data generated in step S601 are transmitted to the peripheral board 320 (step S604), and then the relative time code Vt0 is transmitted to the peripheral board. It transmits to 320 (step S605). Further, the synchronization code Vs0 is transmitted to the peripheral board 320 (step S606), and the process of the main control board 310 for one authentication process is completed.

  On the other hand, the peripheral board 320, which is the authenticator, starts the authentication process triggered by reception of the control command and data transmitted from the main control board 310, the synchronization code Vs0, and the relative time code Vt0. First, the relative time code Vt0 is authenticated (step S611). Here, in order to authenticate the relative time code Vt0, the variable Tn must be decoded using the following equation (7).

  Tn = Dc (Vtn, Bn) (7)

  Subsequently, the synchronization code Vs0 transmitted from the main control board 310 is authenticated (step S612). Again, the variable Sn must be decoded using the following equation (8).

  Sn = Dc (Vsn, Tn or Bn) (8)

  Only after the authentication in both step S611 and step S612 is completed, the control command and data can be processed (step S613), and one authentication process is completed. Thereafter, when the next control command is transmitted from the main control board 310, the relative time code Vt1 and the synchronization code Vs1 are generated by the same procedure. As described above, in the case of the second embodiment, since the synchronization code Vsn includes the variable of the generation formula of the relative time code Vtn, the reception of the relative time code Vtn and the authentication are essential for the authentication of the synchronization code Vs0. Become.

<Example 3: The authentication of Example 1 is executed every plural times>
In the third embodiment, the authentication of the first embodiment is executed every plural times. FIG. 7 is a flowchart illustrating the authentication processing procedure according to the third embodiment. In the flowchart of FIG. 7, as in the flowchart of FIG. 5, the main control board 310 first generates a control command and data to be transmitted to the peripheral board 320, a synchronization code Vs0, and a relative time code Vt0 (steps S701 to S703). ). Each data (control command and data, synchronization code Vs0, relative time code Vt0) generated by the processes in steps S701 to S703 is transmitted to the peripheral board 320 (steps S704 to S706).

  When the peripheral board 320 receives the control command and data, the synchronization code Vs0, and the relative time code Vt0 transmitted from the main control board 310, it directly processes the control command and data (step S711).

  Then, the main control board 310 shifts to the next generation process (n = 1). Therefore, when a control command and data are generated (step S707), a synchronization code Vs1 and a relative time code Vt1 are generated (steps S708 and S709). Each generated data (control command and data, synchronization code Vs1, relative time code Vt1) is transmitted to the peripheral board 320 (steps S710 to S712).

  The peripheral board 320 starts the authentication process triggered by reception of the control command and data transmitted from the main control board 310, the synchronization code Vs1, and the relative time code Vt1. First, the synchronization codes Vs0 and Vs1 are authenticated (step S712). Subsequently, the relative time codes Vt0 and t1 transmitted from the main control board 310 are authenticated (step S713).

  The synchronization codes Vs0 and Vs1 may be continuously authenticated, or the synchronization code Vs1 is authenticated after the authentication of the relative time code Vt0 is completed, and then the relative time code Vt1 is authenticated. Also good. When authentication is performed in the order of n, when an authentication error occurs, it is possible to immediately confirm in which processing order the illegal processing has occurred.

  Only after the authentications in steps S712 and S713 as described above are completed, the control command and data transmitted for the first time can be processed (step S714), and one authentication process is completed. As described above, in the third embodiment, since the authentication process is performed once every time the control command and data are transmitted a plurality of times, the processing burden on the peripheral board 320 can be reduced.

<Embodiment 4: Execution of authentication of embodiment 2 every plural times>
In the fourth embodiment, the authentication of the second embodiment is executed every plural times. FIG. 8 is a flowchart illustrating a procedure of authentication processing according to the fourth embodiment. In the flowchart of FIG. 8, as in the flowchart of FIG. 6, the main control board 310 first generates a control command and data to be transmitted to the peripheral board 320, a relative time code Vt0, and a synchronization code Vs0 (steps S801 to S803). ). Each data (control command and data, relative time code Vt0, synchronization code Vs0) generated by the processes in steps S801 to S803 is transmitted to the peripheral board 320 (steps S804 to S806).

  When the peripheral board 320 receives the control command and data, the relative time code Vt0, and the synchronization code Vs0 transmitted from the main control board 310, it directly processes the control command and data (step S811).

  Then, the main control board 310 shifts to the next generation process (n = 1). Therefore, when a control command and data are generated (step S807), a relative time code Vt1 and a synchronization code Vs1 are generated (steps S808 and S809). Each generated data (control command and data, relative time code Vt1, synchronization code Vs1) is transmitted to the peripheral board 320 (steps S810 to S812).

  The peripheral board 320 starts the authentication process triggered by reception of the control command and data, the relative time code Vt1, and the synchronization code Vs1 transmitted from the main control board 310. First, the relative time codes Vt0 and Vt1 are authenticated (step S812). Subsequently, the synchronization codes Vs0 and Vs1 transmitted from the main control board 310 are authenticated (step S813). Here, the relative time codes Vt0 and Vt1 may be continuously authenticated, or the relative time code Vt1 is authenticated after the authentication of the synchronization code Vs0 is completed, and then the synchronization code Vs1 is authenticated. May be.

  Only after the authentications in steps S812 and S813 as described above are completed, the control command and data transmitted for the first time can be processed (step S814), and one authentication process is completed. As described above, in the fourth embodiment, since the authentication process is performed once every time the control command and data are transmitted a plurality of times, the processing load on the peripheral board 320 can be reduced.

<Example 5: Modification 1 of Example 1 (authentication based on a synchronization code)>
The fifth embodiment performs an authentication process that is a modification of the first embodiment. FIG. 9 is a flowchart illustrating a procedure of authentication processing according to the fifth embodiment. In the fifth embodiment, after the synchronization code Vsn is authenticated a predetermined number of times, the relative time code Vt0 is authenticated. As shown in the flowchart of FIG. 9, the main control board 310 first generates a control command and data to be transmitted to the peripheral board 320 (step S901). Then, using the generation process in step S901 as a trigger, a normal CPU synchronization code Vsn is generated (step S902). The synchronization code Vsn generated in step S901 corresponds to the synchronization code Vs0 generated in step S502 of the first embodiment.

  Next, the control command and data generated in step S901 and the synchronization code Vs0 generated in step S902 are transmitted to the peripheral board 320 (steps S903 and S904). The peripheral board 320 authenticates the synchronization code Vs0 transmitted at step S904 (step S911). When the authentication is completed, the control command and data transmitted at step S903 are processed (step S912).

  The main control board 310 that has completed the transmission in step S904 proceeds to the process of n = 1. First, a control command and data are generated (step S905), and then a synchronization code Vs1 is generated (step S906). Then, using the generation of the generated synchronization code Vs1 as a trigger, a relative CPU relative time code Vt0 is generated (step S907). Since the relative time code is generated for the first time in step S907, it becomes the relative time code Vt0. However, since the synchronization code has shifted to the process of n = 1, the value to be used is as shown in the following equation (9). It has become.

  Relative time code Vt0 = Ec (T0, S1) (9)

  As shown in the above equation (9), the relative time code Vt0 includes the variable S1 of the generation equation of the synchronization code Vs1 generated n = 1. At this time, the variable B1 may be included instead of the variable S1, or the combined number (for example, four arithmetic operations) with the variables S0 and S1 or the variables B0 and B1 may be included.

  When the generation of the synchronization code Vs1 and the relative time code Vt0 is finished, the main control board 310 transmits the control command and data, and the synchronization code Vs1 and the relative time code Vt0 to the peripheral board 320 (steps S908 to S910). . Through the above steps, the process of the main control board 310 for one authentication process is completed.

  The peripheral board 320 authenticates the synchronization code Vs1 transmitted from the main control board 310 (step S913). Subsequently, the relative time code Vt0 transmitted from the main control board 310 is authenticated (step S914). When both authentications are completed, the control command and data are processed (step S915), and one authentication process is terminated. Thereafter, when the next control command is transmitted from the main control board 310, the synchronization codes Vs2 and Vs3 and the relative time code Vt1 are generated by the same procedure.

  As described above, in the case of the fifth embodiment, the relative time code is generated by using a predetermined number (here, twice) of generation of the synchronization code as a trigger. In addition, since the relative time code Vtn includes a variable of the generation formula of the synchronization code Vsn, reception and authentication of the synchronization code Vsn are essential for authentication of the relative time code Vtn.

<Example 6: Modification 1 of Example 2 (authentication based on relative time code)>
In the sixth embodiment, an authentication process obtained by modifying the second embodiment is performed. FIG. 10 is a flowchart illustrating the authentication processing procedure according to the sixth embodiment. In the sixth embodiment, after the relative time code is authenticated a predetermined number of times, the synchronization code is authenticated. As shown in the flowchart of FIG. 10, the main control board 310 first generates a control command and data to be transmitted to the peripheral board 320 (step S1001). Then, using the generation process in step S1001 as a trigger, a relative CPU relative time code Vtn is generated (step S1002). The relative time code Vtn generated in step S1002 corresponds to the relative time code Vt0 generated in step S602 of the second embodiment.

  Next, the control command and data generated in step S1001 and the relative time code Vt0 generated in step S1002 are transmitted to the peripheral board 320 (steps S1003 and S1004). Then, the peripheral board 320 authenticates the relative time code Vt0 transmitted in step S1004 (step S1011). When the authentication in step S1011 is completed, the control command and data transmitted in step S1003 are processed (step S1012).

  The main control board 310 that has completed the transmission of steps S1003 and S1004 moves to the first process n = 1. First, a control command and data are generated (step S1005), and then a relative time code Vt1 is generated (step S1006). Then, with the generation of the generated relative time code Vt1 as a trigger, a synchronization code Vs0 of the regular CPU is generated (step S1007). Since the synchronization code is generated for the first time in step S1007, it becomes the synchronization code Vs0. However, since the synchronization code has shifted to the processing of n = 1, the value to be used is as shown in the following equation (10). Yes.

  Synchronization code Vs0 = Ec (S0, T1) (10)

  As shown in the above equation (10), the synchronization code Vs0 includes the variable T1 of the generation formula of the relative time code Vt0 generated for the first time. At this time, instead of the variable T1, the variable T0 and the variables B0 and B1 may be included, or the combined number of the variables T0 and T1 and the variables B0 and B1 may be included.

  When generation of the control command and data, the relative time code Vt1 and the synchronization code Vs0 is finished, the main control board 310 transmits the control command and data, the relative time code Vt1 and the synchronization code Vs0 to the peripheral board 320, respectively. (Steps S1008 to S1010), the process of the main control board 310 for one authentication process is completed.

  On the other hand, the peripheral board 320 first authenticates the relative time code Vt1 transmitted from the main control board 310 (step S1013). Subsequently, the synchronization code Vs0 transmitted from the main control board 310 is authenticated (step S1014). When both authentications are completed, the control command and data are processed (step S1015), and one authentication process is completed. To do. Thereafter, when the next control command is transmitted from the main control board 310, the relative time codes Vt2 and Vt3 and the synchronization code Vs1 are generated by the same procedure.

  As described above, in the case of the sixth embodiment, the synchronization code Vsn is generated by using the generation of the relative time code Vtn as a trigger (here, twice). Further, since the synchronization code Vsn includes a variable of the generation formula of the relative time code Vtn, reception and authentication of the relative time code Vtn are essential for authentication of the synchronization code Vsn.

<Embodiment 7: Variation 2 of Embodiment 1 (authentication based on synchronization code)>
In the seventh embodiment, an authentication process obtained by modifying the first embodiment is performed. FIG. 11 is a flowchart illustrating the authentication processing procedure according to the seventh embodiment. In the seventh embodiment, when a predetermined number of codes are transmitted from the main control board 310, each of these codes is authenticated by the peripheral board 320.

  In the flowchart of FIG. 11, the main control board 310 first generates a control command and data to be transmitted to the peripheral board 320 (step S1101). Then, using the generation process of step S1101 as a trigger, a synchronization code Vsn of the regular CPU is generated (step S1102). The synchronization code Vsn generated in step S1102 corresponds to the synchronization code Vs0 generated in step S902 of the fifth embodiment.

  Next, the control command and data generated in step S1101 and the synchronization code Vs0 generated in step S1102 are transmitted to the peripheral board 320 (steps S1103 and S1104). The peripheral board 320 processes the control command and data transmitted in step S1103 (step S1111). Then, the main control board 310 shifts to n = 1 processing, and generates a control command and data, and a synchronization code Vs1 (steps S1105 and S1106). The synchronization code Vs1 generated in step S1106 corresponds to the synchronization code Vs1 generated in step S906 of the fifth embodiment.

  Then, the main control board 310 generates a normal CPU relative time code Vt0 using the generation of the synchronization codes Vs0 and Vs1 as a trigger (step S1107). The relative time code Vt0 generated in step S1107 corresponds to the relative time code Vt0 generated in step S907 of the fifth embodiment.

  When the generation of the control command and data, the synchronization code Vs1 and the relative time code Vt0 is finished, the main control board 310 transmits the control command and data, the synchronization code Vs1 and the relative time code Vt0 to the peripheral board 320, respectively. (Steps S1108 to 1110), the process of the main control board 310 for one authentication process is completed. At this time, the transmission order (timing 1110) of the synchronization code Vs1 and the relative time code Vt0 may be set to change randomly.

  On the other hand, the peripheral board 320, which is the authenticator, starts authentication by using as a trigger the reception of all the control commands and data transmitted in step S1108 and the synchronization codes Vs0 and Vs1 and the relative time code Vt0. First, the synchronization code Vs0 transmitted from the main control board 310 is authenticated (step S1112). Subsequently, the synchronization code Vs1 is authenticated (step S1113). Finally, the relative time code Vt0 is authenticated (step S1114). When all these authentications are completed, the control command and data are processed (step S1115), and one authentication process is terminated. Thereafter, when the next control command is transmitted from the main control board 310, the synchronization codes Vs2 and Vs3 and the relative time code Vt1 are generated by the same procedure.

  As described above, in the case of the seventh embodiment, a relative time code is generated by using a predetermined number (here, twice) of generation of the synchronization code as a trigger. The peripheral board 320 also starts authentication of each code triggered by the completion of reception of all the predetermined codes. In addition, since the relative time code Vtn includes a variable of the generation formula of the synchronization code Vsn, reception and authentication of the synchronization code Vsn are essential for authentication of the relative time code Vtn.

<Embodiment 8: Variation 2 of Embodiment 2 (authentication based on relative time code)>
In the eighth embodiment, an authentication process obtained by modifying the second embodiment is performed. FIG. 12 is a flowchart illustrating the authentication processing procedure according to the eighth embodiment. In the eighth embodiment, as in the seventh embodiment, when a predetermined number of codes are transmitted from the main control board 310, the peripheral board 320 authenticates each of these codes.

  In the flowchart of FIG. 12, the main control board 310 first generates a control command and data to be transmitted to the peripheral board 320 (step S1201). Then, using the generation process of step S1201 as a trigger, the relative time code Vtn of the regular CPU is generated (step S1202). The relative time code Vtn generated in step S1202 corresponds to the relative time code Vt0 generated in step S602 of the second embodiment.

  Next, the control command and data generated in step S1201 and the relative time code Vt0 generated in step S1202 are transmitted to the peripheral board 320 (steps S1203 and S1204). The peripheral board 320 processes the control command and data transmitted in step S1203 (step S1211). Then, the main control board 310 shifts to n = 1 processing, and generates a control command and data and a relative time code Vt1 (steps S1205 and S1206). The relative time code Vt1 generated in step S1206 corresponds to the relative time code Vt1 generated in step S1006 of the sixth embodiment.

  Then, the main control board 310 generates a normal CPU synchronization code Vs0 triggered by the generation of the relative time codes Vt0 and Vt1 (step S1207). The synchronization code Vs0 generated in step S1207 corresponds to the synchronization code Vs0 generated in step S1007 of the sixth embodiment.

  When generation of the control command and data, the relative time code Vt1, and the synchronization code Vs0 is finished, the main control board 310 transmits the control command and data, the relative time code Vt1 and the synchronization code Vs0 to the peripheral board 320, respectively. (Steps S1208 to S1210), the process of the main control board 310 for one authentication process is completed. At this time, the transmission order (timing 1210) of the relative time code Vt1 and the synchronization code Vs0 may be set to change randomly.

  On the other hand, the peripheral board 320, which is the authenticator, starts authentication with the reception of all the control commands and data transmitted in step S1208 and the relative time codes Vt0, Vt1 and the synchronization code Vs0 as a trigger. First, the relative time code Vt0 transmitted from the main control board 310 is authenticated (step S1212). Subsequently, the relative time code Vt1 is authenticated (step S1213). Finally, the synchronization code Vs0 is authenticated (step S1214). When all these authentications are completed, the control command and data are processed (step S1215), and one authentication process is terminated. Thereafter, when the next control command is transmitted from the main control board 310, the relative time codes Vt2 and Vt3 and the synchronization code Vs1 are generated by the same procedure.

  As described above, in the case of the eighth embodiment, the synchronization code is generated by using as a trigger that the relative time code has been generated a predetermined number (here, twice). The peripheral board 320 also starts authentication of each code triggered by the completion of reception of all the predetermined codes. Further, since the synchronization code Vsn includes a variable of the generation formula of the relative time code Vtn, reception and authentication of the relative time code Vtn are essential for authentication of the synchronization code Vsn.

  As described above, various variations can be set as the generation and transmission of the relative time code and the synchronization code by the main control board 310. Similarly, it is possible to set in what procedure authentication is performed in the peripheral board 320. Depending on these settings, the processing load and authentication strength can be changed. Therefore, the settings may be adjusted according to the processing capability of the main control board 310 and the peripheral board 320 and the required authentication strength.

  In the electronic device, main control board, peripheral board, authentication method, and authentication program according to the present embodiment of the present invention, authentication processing using two types of authentication data, that is, a relative time code and a synchronization code is performed. In this authentication process, if either one of the two types of authentication data is not authenticated, an unauthorized control signal is detected by determining that the code is an unauthorized control command transmitted from an unauthorized control board. Thus, unauthorized control can be prevented by a third party.

  Furthermore, although the relative time code and the synchronization code are used in the present invention, it is extremely difficult to analyze the processing contents of the main control board even if such information is intercepted by a third party. In addition, as described above, various settings can be made regarding the processing contents of each code generation, transmission, and authentication, such as relative time code and synchronization code. Analyzing data can be difficult and confuse analysts.

  Therefore, according to the electronic device, the main control board, the peripheral board, the authentication method, and the authentication program according to the present invention, the function to prevent unauthorized control from the main control board to the peripheral board that is the controlled part, as well as high confidentiality retention capability. Can be realized.

  In the present invention, the generation procedure of the relative time code and the synchronization code by the main control board and the transmission procedure can be appropriately selected and set from various methods. In accordance with this setting, the load of each code generation process and the load of the authentication process on the peripheral board can be adjusted. Therefore, the authentication process according to the specifications of the electronic device can be executed.

  The authentication method described in the present embodiment can be realized by executing a program prepared in advance on a computer such as a personal computer or a workstation. This program is recorded on a computer-readable recording medium such as a hard disk, a flexible disk, a CD-ROM, an MO, and a DVD, and is executed by being read from the recording medium by the computer. This program may be distributed via a network such as the Internet.

  As described above, the present invention is useful for an electronic device in which the contents of communication between the control board and the peripheral board are worried, and for the control board and the peripheral board mounted on the electronic device. Suitable for machines, slot machines and other various game machines.

DESCRIPTION OF SYMBOLS 201 Main control part 202 Production control part 203 Prize ball control part 310 Main control board 311 Control command output part 312 Timing part 313 Code generation part 314 Addition part 315 Transmission part 320 Peripheral board 321 Reception part 322 Operation authentication part 323 Control command authentication part

Claims (7)

An electronic apparatus comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit,
The main control unit
A time measuring means for measuring the free run independently of other means;
A relative time code generating means for generating a relative time code from the information of the measured time acquired from the time measuring means at a specified timing;
With the transmission of the control commands, and synchronization code generating means for generating a synchronization code containing a packet information output for each arbitrary interval as the operation check value of the main control unit at the time of transmitting the control command,
An adding means for adding the relative time code generated by the relative time code generating means and the synchronization code generated by the synchronous code generating means to the control command;
Transmission means for transmitting the control command to the peripheral part,
The peripheral portion is
Receiving means for receiving the control command transmitted by the transmitting means;
Operation authentication for authenticating the operation order of the main control unit at the time of transmission of the control command using a difference between the relative time code added to the control command received by the receiving means and the packet information included in the synchronization code Means,
A control command authenticating unit for authenticating that the main control unit outputs a correct control command when both the authentication using the relative time code and the authentication using the synchronization code are established in the operation authenticating unit; With
The synchronization code generation means of the main control unit includes a part or all of information used for generation of the relative time code by the relative time code generation means, and an operation order of the main control unit when transmitting the control command. For generating a synchronization code by a predetermined calculation using an inspection value of an operation procedure of the main control unit at the time of transmitting the control command,
The operation authenticating means of the peripheral part indicates an operation order of the main control unit at the time of transmitting the control command based on an operation result of a predetermined operation using the authenticated relative time code and the received synchronization code. An electronic device that performs authentication of the operation order as an inspection value of an operation procedure of the main control unit when transmitting the control command for authentication . An electronic apparatus comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit,
The main control unit
A time measuring means for measuring the free run independently of other means;
A relative time code generating means for generating a relative time code from the information of the measured time acquired from the time measuring means at a specified timing;
Along with the transmission of the control command, a synchronization code generating means for generating a synchronization code including packet information output every arbitrary interval as an operation inspection value of the main control unit at the time of transmission of the control command;
An adding means for adding the relative time code generated by the relative time code generating means and the synchronization code generated by the synchronous code generating means to the control command;
Transmission means for transmitting the control command to the peripheral part,
The peripheral portion is
Receiving means for receiving the control command transmitted by the transmitting means;
Operation authentication for authenticating the operation order of the main control unit at the time of transmission of the control command using a difference between the relative time code added to the control command received by the receiving means and the packet information included in the synchronization code Means,
A control command authenticating unit for authenticating that the main control unit outputs a correct control command when both the authentication using the relative time code and the authentication using the synchronization code are established in the operation authenticating unit; With
The relative time code generation means of the main control unit includes a part or all of information used for generation of the synchronization code by the synchronization code generation means and an operation order of the main control unit at the time of transmission of the control command. A relative time code is generated by a predetermined calculation using a test value related to the relative time measured by the time measuring means for authentication,
The operation authenticating means of the peripheral unit determines the operation order of the main control unit at the time of transmitting the control command based on the operation result of a predetermined operation using the authenticated synchronization code and the received relative time code. An electronic apparatus , wherein the main control unit is authenticated as an inspection value related to the relative time measured by the time measuring means for authentication . The control command authentication means in the peripheral part uses the relative time code or the synchronization code, and the specified information is authenticated among the information related to the operation order of the main control unit when transmitting the control command The electronic device according to claim 1 , wherein the electronic control unit authenticates that the main control unit is outputting a correct control command. The synchronization code generation means of the main control unit outputs packet information output at predetermined intervals set in advance as operation check values of the main control unit at the time of transmission of the control command in association with transmission of the control command. The electronic device according to claim 1 , further comprising: a synchronization code including: An authentication method in an electronic device comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit,
In the main control unit,
A relative time code generating step of acquiring time information at a specified timing from a time measuring means that performs time measurement in a free run independently of other means, and generating a relative time code from the information;
With the transmission of the control command, a synchronization code generation step of generating a synchronization code including packet information output at every interval as an operation inspection value of the main control unit at the time of transmission of the control command;
An addition step of adding the relative time code generated by the relative time code generation step and the synchronization code generated by the synchronization code generation step to the control command;
Transmitting the control command to the peripheral portion, and
In the periphery,
A receiving step for receiving the control command transmitted by the transmitting step;
Operation authentication for authenticating the operation order of the main control unit at the time of transmission of the control command using a difference between the relative time code added to the control command received by the reception step and the packet information included in the synchronization code Process,
A control command authentication step for authenticating that the main control unit outputs a correct control command when both the authentication by the relative time code by the operation authentication step and the authentication by the synchronization code are established ,
The synchronization code generation step is for authenticating a part or all of information used for generation of the relative time code by the relative time code generation step and an operation order of the main control unit at the time of transmitting the control command. , Generating a synchronization code by a predetermined calculation using an inspection value of an operation procedure of the main control unit at the time of transmitting the control command,
The operation authentication step is for authenticating an operation order of the main control unit at the time of transmitting the control command with a calculation result of a predetermined operation using the authenticated relative time code and the received synchronization code. An authentication method comprising: authenticating the operation order as an inspection value of an operation procedure of the main control unit at the time of transmitting the control command . An authentication method in an electronic device comprising: a main control unit that transmits a control command; and a peripheral unit that performs predetermined processing based on the control command transmitted from the main control unit,
The main control unit
A relative time code generating step of acquiring time information at a specified timing from a time measuring means that performs time measurement in a free run independently of other means, and generating a relative time code from the information;
With the transmission of the control command, a synchronization code generation step of generating a synchronization code including packet information output at every interval as an operation inspection value of the main control unit at the time of transmission of the control command;
Transmitting the control command, the relative time code and the synchronization code to the peripheral part,
The peripheral portion is
Receiving the control command, the relative time code and the synchronization code transmitted by the transmitting step;
An operation authentication step of authenticating the operation order of the main control unit at the time of transmission of the control command using the difference between the relative time code received by the reception step and the packet information included in the synchronization code;
A control command authentication step for authenticating that the main control unit outputs a correct control command when both the authentication by the relative time code by the operation authentication step and the authentication by the synchronization code are established ,
The relative time code generation step is for authenticating a part or all of information used for generation of the synchronization code by the synchronization code generation step and an operation order of the main control unit at the time of transmitting the control command. A relative time code is generated by a predetermined calculation using a test value related to the relative time measured by the time measuring means,
The operation authentication step is for authenticating an operation order of the main control unit at the time of transmitting the control command with a calculation result of a predetermined operation using the authenticated synchronization code and the received relative time code. An authentication method comprising: authenticating the main control unit as an inspection value relating to a relative time measured by the time measuring means . An authentication program for causing a computer to execute the authentication method according to claim 5 or 6 .

Images