JPH07161172A - Data recording medium - Google Patents

Abstract

PURPOSE:To record various data with high security in a manner to be convenient to use to a recording medium such as a disc, a tape or the like. CONSTITUTION:A recording medium 12 where data are recorded is accommodated in a case 11. An IC 20 is installed at a predetermined position of the case 11. A start program and ciphered data are recorded in the recording medium 12, and a cipher program of the recorded data and data of password Nos. are stored in a memory in the IC 20. When the recorded data are to be read out or when data are to be written in the recording medium 12., an input password No. is sent to the 1C 20 and compared with the password No. stored in the memory in the IC 20 by an operational means. When tone password Nos. agree with each other, ciphered data recorded in the recording medium 12 are decoded or data to be recorded to the recording medium 12 are ciphered according to the cipher program stored in the memory in the IC 20.

Description

Detailed Description of the Invention

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to a data recording medium applied to various recording media such as magnetic disks such as floppy disks, magneto-optical disks, optical disks and magnetic tapes.

[0002]

2. Description of the Related Art As a recording medium for recording computer programs and the like, magnetic disks called floppy disks are widely used. Further, as a medium having a recording density higher than that of a magnetic disk, a magneto-optical disk or an optical disk which uses a laser beam for recording and reproduction is also used.

When a program is recorded on these discs, for example, data is recorded in a sector set in a data recording track of each disc in an order according to the recording format of this disc, and when the data is reproduced, the recording format is set. The recorded data is reproduced in the following sector order to obtain the recorded program.

On the other hand, in order to improve the security of the data recorded on the disc, the data is not recorded in the order of sectors according to the normal format, but is recorded by adding an appropriate offset or the like to the sector. Is being done. When the data recorded on the disk is read in this way, the correct program cannot be obtained unless the computer that reads the offset data, etc., in which the sector has been changed, can be used illegally. Can be prevented.

[0005]

However, even when the order of the sectors is changed in this way, it is possible to copy all the data recorded on one disk to another disk as it is. is there. Therefore, by copying from the original disc with such a copying device, the computer side using the duplicated disc,
If the offset data and the like of the sector necessary for accurate reading of data are prepared, the program can be copied and illegally used. Therefore, such a recording method is an incomplete recording method from the viewpoint of preventing unauthorized use of the program.

On the other hand, there is also a method in which the program data to be recorded itself is encrypted based on a predetermined encryption method and the encrypted data is recorded on a disc. In this case, an encryption program that decrypts this program data is required, and it is necessary to separately prepare a disk or the like on which the encryption program is recorded, but it is troublesome to manage the disk or the like on which this encryption program is recorded. , If this disk is lost, the program data cannot be decrypted. In order to prevent it from becoming unreadable due to such a loss, it is possible to copy the disc on which the encryption program is recorded.However, if the encryption program is copied, the security becomes lower. , The encrypted meaning is lost.

There is also a method of scrambling using a certain keyword in the case of such encryption, but in such a case, the same keyword is used on the encryption side and the decryption side. You need to know, and if you use the same keyword many times, the keyword becomes known and the meaning of encryption disappears. Therefore, there is also a method called the disposable keyword method for sequentially changing the used keywords, but the management of the keywords becomes complicated.

In the above description, the case where the computer program data is recorded on the disk has been described. However, when the data is recorded on another recording medium such as a magnetic tape, there is a similar problem regarding security. .

An object of the present invention is to enable high-security and easy-to-use recording when recording various data such as a program on a recording medium such as a disk or tape.

[0010]

According to the present invention, for example, as shown in FIG. 1, a recording medium 12 on which data is recorded by a predetermined method is housed in a predetermined housing 11 and a predetermined portion of the housing 11 is held. In a data recording medium in which an IC 20 having a memory and a calculation means is attached, a boot program and encrypted data are recorded on the recording medium 12, and an encrypted program for encrypted data and password data are stored. I
When the data stored in the memory of the C20 is read and the data recorded in the recording medium 12 is read or the data is written in the recording medium 12, the input personal identification number is supplied to the IC20 and the memory of the IC20 is stored in the memory. If the stored personal identification number is compared with the computing means and the personal identification numbers match, the IC
According to the encryption program stored in the memory in 20, the encrypted data recorded in the recording medium 12 can be decrypted or the data recorded in the recording medium 12 can be encrypted.

Further, in this case, when the mismatch of the personal identification number is detected in a predetermined number of times consecutively in the IC, the block that does not output the encryption program even if the personal identification numbers match in the subsequent verification. Is to do.

Further, in this blocked state, the block is released by inputting a personal identification number set separately from the personal identification number.

Further, in the above-mentioned case, the additional information is stored in the memory in the IC.

[0014]

According to the present invention, the program for encrypting the data recorded on the recording medium is stored in the IC attached to the housing for accommodating the recording medium, and is encrypted from this IC unless the personal identification numbers match. The program cannot be read, and therefore the data recorded on the recording medium cannot be decrypted, and the security is high to prevent unauthorized use of the recorded data.

In this case, by collating the personal identification number in the IC,
When the inconsistency is detected a predetermined number of times in succession, the effect of preventing unauthorized use is further enhanced by blocking the encrypted program even if the personal identification numbers match in the subsequent collation.

Further, in this blocked state, the block number is released by inputting a personal identification number which is set separately from the personal identification number for reading the encrypted program. Can be released well.

Further, by storing the additional information in the memory in the IC, the IC storing the encryption program can be used efficiently.

[0018]

Embodiments of the present invention will be described below with reference to the accompanying drawings.

This example is applied to a data recording medium for a computer using a magnetic disk called a floppy disk, and is constructed as shown in FIGS. FIG. 1 is a diagram showing the overall configuration of the floppy disk of this example, in which 10 denotes the entire floppy disk,
The floppy disk 10 includes a magnetic disk 12 having a diameter of 3.5 inches in a housing 11 made of synthetic resin.
And a shutter 13 that can be opened and closed is attached.
The shutter 13 is provided with a window 13a, and when the shutter 13 is in the open state, the position of the opening 11a on the housing 11 side and the position of the window 13a coincide with each other, and the signal recording surface of the magnetic disk 12 is exposed. .

When the floppy disk 10 is mounted on a driving device described later, the magnetic disk 12 is rotated by a predetermined driving means, and the shutter 13 is opened so that the magnetic head is exposed on the exposed signal recording surface. The head is in close proximity, and data can be recorded and reproduced with this head. In addition,
This signal recording surface may be formed on one side only or on both sides. Up to this point, the configuration of a normal floppy disk has been completed.

In this example, a one-chip IC (integrated circuit) 20 is built in the corner of the housing 11 of the floppy disk 10. This IC 20 has a housing 11
As seen from the surface of FIG. 2, the eight contacts 21, 22, 23, ... 28 are only exposed as shown in the enlarged view of FIG. 2, and the internal circuit is shown in cross section in FIG. It is embedded in the resin forming 11. The internal structure of the IC 20 will be described later.

Next, the structure of the drive device for the floppy disk 10 having the above structure will be described. 4 and 5
FIG. 3 is a diagram showing the configuration of this drive device, in which reference numeral 30 shows the entire floppy disk drive device, and this floppy disk drive device 30 has a window portion 31 for mounting the floppy disk 10, and this window portion The floppy disk 10 mounted inside 31 is connected to the motor 32 side by a predetermined chucking mechanism 33, and is rotationally driven at a predetermined speed by the motor 32, as shown in the cross section in FIG. Then, recording and reproduction are performed by a magnetic head (not shown), and recording data supplied from the host computer side described later is recorded on the magnetic disk 12 and
The data reproduced from the magnetic disk 12 is supplied to the host computer side.

A terminal unit 40 is provided to connect with the eight contacts 21 to 28 exposed on the surface of the floppy disk 10, and the eight contact pieces 41, 42, arranged on the terminal unit 40. The tip of 43, ...
The respective contact points 21 to 28 are brought into contact with each other. Further, each of the contact pieces 41 to 48 is connected to a predetermined interface on the host computer side so that processing such as reading of stored data can be performed under the control of the host computer side.

Next, the structure of the IC 20 built in the floppy disk 10 of this example will be described. As shown in FIG. 6, six of the eight contacts 21 to 28 are two in this case.
1 to 26 are used, the contact 21 is the power supply terminal VCC, the contact 22 is the program voltage input terminal VPP of the EEPROM 55 having the built-in contact, the contact 23 is the serial data input / output terminal I / O, and the contact 24 is the clock. The input terminal CLK is used, and the contact 25 is the reset signal input terminal RS
T, and the contact 26 serves as the ground terminal GND.

As a circuit inside the IC 20, a central control unit (CPU) 51 for performing arithmetic processing, and an IC 20
Serial / input / output for internal / external data
A parallel conversion circuit 52, a frequency divider 53 for supplying a conversion clock to the serial / parallel conversion 52,
A RAM 54 for temporarily storing data, and an EEPR for storing data such as a PIN that needs to be saved and rewritten
The central control unit 51, the serial / parallel conversion circuit 52, and the memories 54, 55, 5 are constituted by an OM 55 and a ROM 56 that stores a program such as an encryption program.
A bus line is connected between 6 and.

The central controller 51 and the frequency divider 53 are supplied with the clock obtained at the contact 24 (clock input terminal CLK), and the central controller 51 operates based on this clock. In this case, the central controller 51 is activated by supplying a predetermined reset signal to the contact 25 (reset pulse input terminal RST). Further, a signal obtained by frequency-dividing the clock by the frequency divider 53 is supplied to the serial / parallel conversion circuit 52, and based on the frequency-divided signal, serial data is converted into parallel data or parallel data is converted into serial data. . A contact 23 (serial data input / output terminal I / O) as an input / output terminal with the outside is connected to the serial / parallel conversion circuit 52, and serial data supplied from the outside via the contact 23 is converted into parallel data. And is supplied to the central control unit 51 and the like via a bus line. Further, the parallel data supplied to the serial / parallel conversion circuit 52 via the bus line is converted into serial data, and the contact 23
To the external computer (host computer) side.

The data stored in the EEPROM 55 of the IC 20 can be rewritten by externally supplying a predetermined program voltage to the contact 22 (program voltage input terminal VPP).

Next, the configuration of the host computer side accessed by the floppy disk 10 having the IC 20 built therein will be described. FIG. 7 is a diagram showing the configuration of this host computer, in which 61 is the main central control unit (C
PU), and the central controller 61 includes a floppy disk interface 62, a hard disk unit 63, a RAM 64, a ROM 65,
A keyboard interface 66, a CRT interface 68, and a serial / parallel conversion circuit 69 are connected. The floppy disk interface 62 interfaces the recorded data on the magnetic disk 12 side of the floppy disk 10 mounted in the above-mentioned floppy disk drive device 30 with the central control device 61 side, and is built in the floppy disk 10. The interface between the IC 20 and the central controller 61 side is performed.

A keyboard 67 is connected to the keyboard interface 66.
Is transmitted to the central controller 61 side via the interface 66. Further, a CRT display device 70 is connected to the CRT interface 68, and display data supplied via a bus line is supplied to the CRT display device 70 side to display corresponding characters and images. Further, the serial / parallel conversion circuit 69
External devices connected through (peripheral devices such as printers:
(Not shown), data can be transmitted.

Communication is performed between the host computer thus configured and the IC 20 in the floppy disk 10 by the processing shown in FIG.
Data processing using 0 is performed. That is, first, the power supply VCC and the program voltage VP are input from the host computer side.
A signal having a predetermined potential is supplied as P and a clock CLK having a predetermined frequency is supplied to set a state in which the IC 20 can operate (step 201). Also, in this first state, a low level “L” reset signal is supplied,
The central control unit 51 in the IC 20 is reset.

Then, the reset pulse RST is changed to the high level "H" to release the reset, and the IC 20 is activated (step 202). Here, when the IC 20 is activated, the initial data required for data exchange is transferred as a response signal from the central control unit 51 in the IC 20 to the host computer side (step 203). The initial data includes information for determining the logic level of data received by the IC 20 and the first bit.

On the side of the central controller 61 of the host computer, when the initial data is received, the IC 20
Set the interface with and to the corresponding state, and perform the subsequent sessions. Then from the host computer
The command is transmitted to the central controller 51 in the IC 20 (step 204). This command is composed of, for example, 5 bytes and indicates the attribute, command, parameter, etc. of the command system.

Then, in the central control unit 51 of the IC 20, it is judged whether the transmitted command belongs to the command system given to this ICI and the command and parameters are correct, and the authentication as a result of the judgment is made. The data is returned to the host computer (step 205). If the command returns authentication data that is judged to be normal, then the data corresponding to the command is transferred (step 206). The transfer direction of this data is set by a command. Depending on the command, data may not be transferred.

Finally, the status indicating that the processing on the IC 20 side is completed is transmitted to the host computer side (step 207) and this session is ended. The host computer then proceeds to step 20 if necessary.
The command transmission from step 4 to the status reception in step 207 are repeated.

In this example, two types of commands are prepared as the commands used in this case. That is, a management command is prepared as the first command and is a command that is handled without being known to the user, and is a command that is permitted to be used only by the issuer and the administrator of the floppy disk 10.

The second command is a command for controlling the interface with the IC 20, and this command is used to access the floppy disk 10.

The floppy disk 10 with the built-in IC of this example is used in the above-described configuration. An example of processing when using the built-in IC 20 will be described below with reference to the flowchart of FIG. .

Here, the computer program data is encrypted and recorded on the magnetic disk 12 in the floppy disk 10, and the encrypted program is stored in the ROM 56 in the IC 20. Further, the magnetic disk 12 is recorded with a start-up program necessary for reading the recorded program data. This startup program is not encrypted. Then, a personal identification number (number by a predetermined digit) for reading the encrypted program from the IC 20 is set in the IC 20, and the data of the set personal identification number is stored in the EEPROM 5 in the IC 20.
Keep it in 5. In addition to the personal identification number for reading the encrypted program, a personal identification number for releasing a block, which will be described later, is also set and stored in the EEPROM 55 in the IC 20.

The encryption program stored in the IC 20 can be read out to the host computer side only when the same number as the personal identification number registered in the EEPROM 55 is supplied from the host computer side.
Further, when a number different from the registered personal identification number is input, when this incorrect personal identification number input processing is performed three times in a row, the central controller 51 in the IC 20 controls A block process for prohibiting the reading of the encrypted program from the IC 20 is performed. In this blocked state, reading of the encrypted program is prohibited even if the correct personal identification number is input.

Then, in this blocked state, EE
The block is released when the same number as the password for unlocking registered in the PROM 55 is supplied from the host computer side. However, when the input of the unlocking personal identification number is erroneous 10 times in succession, the central control unit 51 in the IC 20 does not accept the input of the unlocking personal identification number, and the level is higher. Blocks are set to take place. In the state where this high level block has been performed, the administrator of this security system (issuer of the floppy disk) should not return to the state in which it can access the IC 20 unless it is canceled using the management tool. is there.

Further, additional information about the program encrypted and recorded on the magnetic disk 12 that does not need to be encrypted (simple table of contents, date, arbitrary information such as user name)
Can be stored in the memory (RAM 54 or the like) in the IC 20.

The process for reproducing the data thus encrypted and recorded on the magnetic disk 12 in the floppy disk 10 (or for encrypting and recording the data on the magnetic disk 12) will be described below with reference to the flowchart of FIG. This will be explained in order. First, the host computer reads the boot program recorded on the magnetic disk 12 and reads it into the host computer (step 101). This operation is the same as the operation at the time of starting the program recorded in the conventional floppy disk.

After this start-up, the CRT display device 70 on the host computer side displays that there is a password input request (step 102). After this display, when the operation of inputting the personal identification number is performed with the keyboard 67, the data of the input number is transferred to the IC 20 in the floppy disk 10 (step 10).
3). Then, when the host computer receives the status from the IC 20 (step 104), it is judged whether or not the IC 20 is blocked by the data received at this time (step 105).

At this time, when blocked,
CRT display device 70 on the host computer side
To indicate that it is blocked (step 1
06). If it is not blocked, it is judged whether or not the personal identification numbers match (step 107). If the personal identification numbers match, the keyboard 6 is pressed.
The mode is input by the operation of 7 or the like (step 109).
This mode input is for selecting whether to read the additional information stored in the IC 20 or to read the encrypted program.

If the personal identification numbers do not match in step 107, the CRT display device 70 on the host computer side displays a message requesting re-entry of the personal identification number (step 109) and then step 103. Return.

After the mode is input in step 109, the central control unit 61 on the host computer side is provided.
However, it is determined whether or not the input mode is for confirming the additional information (step 110). Here, if the mode is not for confirming the additional information, the RO in the IC 20
Processing for transferring the encryption program stored in M56 to the RAM 64 on the host computer side is performed (step 111). Then, it is judged whether or not the process required at this time is a process of recording the data on the floppy disk (a process of writing the data) (step 112), and in the case of recording, the encryption program transferred to the RAM 64 By the processing on the side of the host computer based on the above, the data to be recorded is made into encrypted data, and this encrypted data is recorded in a predetermined sector of the magnetic disk 12 (step 113). Further, the additional information (data such as recording date and time) generated at this time is transferred to the IC 20,
It is stored in the area for storing the additional information (step 114).

When it is determined in step 112 that the process is the process of reproducing (reading), the predetermined data recorded on the magnetic disk 12 is reproduced and transferred to the host computer side, and the code transferred to the RAM 64 is encrypted. By the processing on the host computer side based on the encryption program, the reproduced data is decrypted, and the decrypted data is supplied to the specified drive (hard disk or other floppy disk) side and written. (Step 115).

After the recording or reproducing process is completed, a purging process is performed to erase the encrypted program stored in the RAM 64 on the host computer side (step 116). When the erasing process of the encrypted program is completed, it is judged whether or not the session of the IC 20 required at this time is completed (step 117), and when it is completed, the process using the DOS (disk operating system) on the host computer side is executed. Return to (step 118).

If it is the mode for confirming the additional information in step 110, the additional information stored in the IC 20 is read by the host computer (step 11).
9) The read additional information is displayed on the CRT display device 70 (step 120). When this display is performed, the process proceeds to step 117.

If it is determined in step 117 that the IC20 session has not ended, step 1
Returning to 08, the mode input process is executed again.

After displaying that the block is blocked in step 106, it is judged whether or not there is an operation of inputting the unlocking password with the keyboard 67 (step 12).
1) If there is this input operation, the data of the inputted block releasing personal identification number is transferred to the IC 20 (step 122). Then, when the host computer receives the status from the IC 20 (step 12
3), authentication processing is performed to determine whether or not the unlocking personal identification numbers match, and it is determined whether or not they match (step 12).
4). Here, if they match, the process proceeds to step 108 to accept the mode input. If they do not match, the access to the IC 20 is terminated, and the process moves to step 118 to return to the process using the DOS on the host computer side.

As described above, the floppy disk 10
By using, to record / reproduce encrypted data, it is possible to effectively prevent unauthorized use of encrypted and recorded data. That is, the program relating to the encryption method is the IC built in the floppy disk 10.
20. The encryption program is stored in the memory 20 so that the data can be encrypted or decrypted by reading this encryption program only when the disc is recorded or played back and the personal identification number is known. For this reason, unless the personal identification number is known, the recorded data cannot be decrypted and read, which is highly effective in preventing unauthorized use, and it is difficult to read and copy the encrypted program. Is unlikely to leak outside.

Therefore, for example, even if the data recorded on one floppy disk is duplicated using a device that directly copies all the data, the encrypted program itself is not duplicated, and the program data recorded on the floppy disk is not copied. Unauthorized use is prevented.

Further, in the case of the present example, the starting program required for reading the recorded program data is recorded on the magnetic disk 12 without being encrypted, so that the host computer controls this. The operation until the boot program is read is the same as that of the conventional floppy disk. If the process of reading the encryption program is performed according to this boot program, the host computer will perform the encryption and decryption. It is not necessary to prepare a special control program, and it can be realized by the control of the program configuration similar to the case of using the conventional floppy disk.

Further, when the IC 20 is built in one floppy disk as in this example, the disks and the encryption programs correspond to each other on a one-to-one basis, and therefore each floppy disk is encrypted. You can change the computerization program. In this way, by changing the encryption program for each floppy disk, even if any encryption program leaks to the outside, only the data on the specific disk corresponding to this encryption program can be decrypted,
Not all recorded data on the disc to which this system is applied can be decrypted, and the illegal use prevention effect is further enhanced.

Further, in the case of this example, when the password collation processing is erroneously performed a plurality of times (three times in the above-mentioned embodiment) in succession, there is a possibility that the encrypted program is being illegally read. Since the reading of the encryption program from the built-in IC is blocked because it is expensive, a person who does not know the personal identification number cannot perform the collation work many times to decipher the personal identification number. From this point as well, the effect of preventing illegal use is high.

Further, when the reading of the encrypted program from the built-in IC is blocked, it is possible to release the blocked state by another secret code. Can be easily dealt with, and a plurality of times (10 times in the above-described embodiment) is performed even in the collation work of the personal identification number for releasing the blocked state.
In the case of continuous erroneous execution, the reading of the encrypted program from the built-in IC is completely blocked, so that the effect of preventing unauthorized use is further enhanced.

In the above embodiment, when recording / reproducing to / from a floppy disk, the encryption program is transferred from the IC 20 to the host computer so that the encryption / decryption processing is performed in the host computer. However, by making it impossible to read the encrypted program from the IC 20, instead of decrypting the data reproduced from the disk or encrypting the data to be recorded on the disk, the IC2
The processing may be performed within 0. In this case, since the encryption program is not transferred to the outside at all, there is no possibility that the encryption program is copied on the host computer side, and the security is very high. However, it is necessary to once transfer the data reproduced from the disc or the data to be recorded on the disc to the IC 20 for processing.
It takes a little time to reproduce and record data as compared with the case of processing on the host computer side.

Although the encryption method has not been described in the above embodiment, various encryption methods applicable to computer data can be used. For example, a method of encrypting every number of bytes corresponding to one sector of a floppy disk, a method of encrypting every number of bytes corresponding to one track, a method of collectively encrypting data and programs, and the like can be considered. Further, when encryption is performed for each predetermined sector or track, the encryption algorithm may be changed for each unit data to be encrypted. Alternatively, only a part of the data recorded on one floppy disk may be encrypted.

Further, in the above embodiment, the additional information of the data recorded on the disc is stored in the IC 20, but this additional information may be encrypted and stored if necessary. Further, instead of being stored in the IC 20, it may be recorded in a predetermined area of the magnetic disk 12.

Further, in the above-mentioned embodiment, the invention is applied to the magnetic disk, but it is needless to say that the invention can be applied to other recording media. For example, it can be applied to a disc-shaped recording medium such as a magneto-optical disc or an optical disc, or a tape-shaped recording medium such as a magnetic tape. In either case, this can be dealt with by incorporating an IC in the housing that houses the recording medium. Further, various data other than the computer program can be applied to the data recorded on the recording medium.

[0062]

According to the present invention, the program for encrypting the data recorded on the recording medium is stored in the IC attached to the housing for accommodating the recording medium, and the code is encrypted from this IC unless the personal identification numbers match. The encrypted program cannot be read, and therefore the data recorded on the recording medium cannot be decrypted, and the security is high to prevent unauthorized use of the recorded data. For example, even if a user who does not know the personal identification number copies the data recorded on the recording medium to another recording medium, it is copied as it is, and the encryption program for decrypting the copied data is not copied. , It is difficult to decrypt the copied data and illegal use is prevented.

In this case, by collating the personal identification number in the IC,
When the inconsistency is detected a predetermined number of times in succession, the effect of preventing unauthorized use is further enhanced by blocking the encrypted program even if the personal identification numbers match in the subsequent collation.

Further, in this blocked state, the block number is released by inputting the personal identification number set separately from the personal identification number for reading the encrypted program. Can be released well.

Further, by storing the additional information in the memory in the IC, the IC storing the encryption program can be used efficiently.

[Brief description of drawings]

FIG. 1 is a perspective view showing an embodiment of the present invention.

FIG. 2 is a plan view showing a main part of one embodiment.

FIG. 3 is a sectional view taken along the line III-III in FIG.

FIG. 4 is a plan view showing the configuration of a disk drive device to which the disk of one embodiment is applied.

5 is a cross-sectional view taken along the line VV of FIG.

FIG. 6 is a configuration diagram showing a built-in IC according to an embodiment.

FIG. 7 is a configuration diagram showing an example of a host computer connected to the built-in IC of one embodiment.

FIG. 8 is a flowchart showing a disk write / read process according to an embodiment.

FIG. 9 is an explanatory diagram showing a communication state between a built-in IC of one embodiment and a host computer.

[Explanation of symbols]

10 Floppy disk 11 Housing 12 Magnetic disk 13 Shutter 20 Built-in IC 21,22,23,24,25,26,27,28 Contact point 30 Floppy disk drive 40 Terminal unit 41,42,43,44,45,46, 47,48 Contact piece 51 Central control unit (CPU) 56 ROM

Claims (4)

[Claims] 1. A data recording medium in which a recording medium on which data is recorded by a predetermined method is housed in a predetermined casing, and an IC having a memory and an arithmetic means is attached to a predetermined portion of the casing, The boot program and the encrypted data are recorded in a recording medium, the encrypted program of the encrypted data and the code number data are stored in the memory in the IC, and the data recorded in the recording medium. When reading out or writing data to the recording medium, the input personal identification number is supplied to the IC, and the personal identification number stored in the memory of the IC is compared with the arithmetic means, so that the personal identification number is If they match, decryption of the encrypted data recorded in the recording medium or encryption of the data recorded in the recording medium is performed according to the encryption program stored in the memory of the IC. Data recording medium to be able to. 2. When the identification number is collated in the IC and the inconsistency is detected a predetermined number of times in succession, the encryption program is prevented from being output even if the identification numbers coincide in the subsequent collation. The data recording medium according to claim 1, further comprising: 3. The block is released by inputting a personal identification number that is set separately from the personal identification number in a state where the inconsistency is detected a predetermined number of times in a row and blocked. Item 2. The data recording medium according to item 2. 4. The data recording medium according to claim 1, wherein the additional information is stored in a memory in the IC.