JPH11176085A - Cd security system - Google Patents

Abstract

PROBLEM TO BE SOLVED: To make manageable the security of data according to a password by making a user write the password into a sector next to the volume informa tion holding area on a CD at the time when the selected data are written into the CD. SOLUTION: A means for writing the password by user and a means for writing the password into the sector next to the volume information holding area on the CD are provided in the system. When a security CD program is started, the selection of the data to be written by operator and the setting of the password are executed to start the write-in. By this program a volume descriptor, the structural information of previously selected data and the CD format information consisting of the password sector for holding the set password are produced, and also the CD image consisting of this information and the selected data is produced. The CD image is written into the CD and closed as one session.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

TECHNICAL FIELD The present invention relates to a CD (CD-R
More particularly, the present invention relates to a CD security system that enables data security management using a password.

[0002]

2. Description of the Related Art Conventionally, when security is provided for data on a CD, a unique CD format or unique hardware is required (for example, Japanese Patent Laid-Open Publication No.
No. 7340). As another security measure, a method of scrambling data to be written itself is also used.

[0003]

As described in the prior art, in order to realize a CD security system, a dedicated system having a unique CD format or unique hardware is required. . However,
In the conventional method, in order to realize a CD security system, a dedicated system having a unique CD format and unique hardware is required, and a configuration that can be used for general purposes is impossible. was there. In addition, when encrypting data itself, such as scrambling, it requires a high level of technology and knowledge on encryption and the like, so that there is a problem that it cannot be easily realized. Further, usually, only one type of security can be applied to one CD, and a plurality of types of security cannot be applied.

The first object of the present invention is to solve these problems and realize a CD security system capable of easily creating a CD that has been subjected to security management using a password without departing from a general-purpose CD format. It is a subject (the invention of claim 1 and claim 2). Also,
A second object is to realize a CD security system that can easily create a CD that can make useful information invisible using a general-purpose CD-ROM reader without deviating from a general-purpose CD format. (The inventions of claims 3 and 4). Further, a third object is to realize a CD security system capable of managing a plurality of useful data on one CD with a plurality of passwords (claims 5 and 6).

[0005]

According to the first aspect of the present invention, C
Means for selecting a plurality of devices storing data to be written to the DR, means for selecting data to be written from the selected device, and CD-ROM based on the selected information.
In a CD creation system comprising: means for creating R format information; means for formatting a CD-R based on the format information; and means for writing selected data to the formatted CD-R. When data is written to a CD, means for writing a password by a user and means for writing a password in a sector next to the volume information holding area on the CD are provided.

According to a second aspect of the present invention, in the CD security system according to the first aspect, when writing the selected data, the logical data structure information of the data to be originally written and the logical data structure information of the data to be originally written start from the sector next to the sector in which the password was written. Means for writing data to be written and means for writing the start sector position of the logical data structure information holding area in the logical data structure information start sector holding section in the volume information holding area are provided.

According to a third aspect of the present invention, there is provided the CD security system according to the first or second aspect, wherein the writing is performed as one session, and after closing the session, a means for automatically writing the next session is provided. Provided.

According to a fourth aspect of the present invention, there is provided the CD security system according to any one of the first to third aspects, wherein the logical data structure indicates that no data exists in the logical data structure information holding area in the automatically written session. Is provided.

According to a fifth aspect of the present invention, in the CD security system of the first to fourth aspects, the operation can be performed as one write unit, and the write unit can be written to one CD a plurality of times. Is provided.

[0010] In the CD security system according to claim 6, in the CD security system according to any one of claims 1 to 5, when reading a created CD, a password is input and a password that matches the input password is input. A means is provided for mounting the data of the session including the data.

[0011]

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS An embodiment of a CD security system according to the present invention will be described in detail with reference to the drawings. Since the CD security system of the present invention can be roughly classified into creation of a security CD and reading of a security CD, creation of a CD will be described below in the first and second embodiments. In the third embodiment, description will be given of ensuring security at the time of reading a created CD. Generally, a general-purpose CD-ROM drive, a general-purpose read driver, and a general-purpose CD-ROM constituted by a general-purpose computer
When a CD is mounted on the reading device, the latest session information is always mounted on the OS according to the CD-ROM standard. In this invention, focusing on this point, general-purpose CD-
When a CD created by the security CD creation program is inserted into the ROM reading device, the CD is mounted on the OS as a blank disk containing no data. That is, a general-purpose CD-ROM reader cannot access other useful data held in the security CD,
Security can be guaranteed.

First Embodiment The first embodiment corresponds to the first to fourth aspects of the present invention, but also relates to the fifth and sixth aspects of the present invention. The first embodiment has a first feature in that a CD security system capable of easily creating a CD that has been subjected to security management using a password without deviating from a general-purpose CD format is realized. (The invention of claim 1 and claim 2). Also, general-purpose C
General-purpose CD-R without deviating from the D format
Useful information is invisible (not displayed) with an OM reader
The second feature lies in that a CD security system for easily creating a CD that can be used is realized (the inventions of claims 3 and 4). First, a security CD creation system will be described.

FIG. 2 shows a security CD creation system in the CD security system of the present invention.
It is an external view which shows an example of the principal part structure. In the figure,
PC indicates a general-purpose computer, Dr indicates a general-purpose CD-R drive, and SCSI indicates a SCSI (interface) device.

The security CD creation system shown in FIG. 2 includes a general-purpose computer PC and a general-purpose CD-R drive Dr. This general-purpose computer P
The C and the general-purpose CD-R drive Dr are connected by a SCSI device or the like. And a general-purpose computer PC
Has a security CD creation program. The operator selects write data, sets an arbitrary password, executes writing, and the like by operating the security CD creation program.

FIG. 3 is a functional block diagram showing an example of an embodiment of a main part configuration of the security CD creating system shown in FIG. In the figure, 1 is CP
U, 2 are CD-R / RW disc writing devices, 3
Is a RAM, 4a to 4c are write data storage devices,
5 is a program storage unit, 6 is an intermediate data storage unit, 7 is C
D image data storage unit, 8 is a keyboard, 9 is a mouse, 10 is a display control device, 11 is a display, and 12 is a system bus.

The function of each part is as follows. C
The PU 1 is controlled by a program stored in the program storage unit 5 corresponding to a command input from the keyboard 8 or the mouse 9.
A central unit having a function of comprehensively controlling the entire system such as the keyboard 8, the RAM 3, the display control device 10, and the CD-R / RW disk writing device 2 via the system bus 12 and executing predetermined calculations and processes. Processing means. CD-R / RW disk writing device 2
Has a CPU and a RAM (not shown), and has a write data buffer for temporarily storing write data transferred in accordance with an instruction from the CPU 1 of the system shown in FIG. It has a function of creating a CD disk.

The RAM 3 stores information necessary for CD creation, for example, selected write data storage devices 4a to 4c.
This is storage means for storing information on one of the devices, information on selected write data in the device, and the like. Furthermore, conversion of various information and programs
When data writing is instructed to the CD-R / RW disc writing device 2, the CD-R / RW disk writing device 2 is also used as storage means when partially creating CD image data. The write data storage devices 4a to 4c are devices for storing data to be written, and FIG. 3 shows a case where three write data storage devices 4a to 4c are provided. Each of the storage devices 4a to 4c stores actual write data used for creating a CD disk. The number of these write data storage devices 4a to 4c may be four or more, or may be two.

A plurality of the write data storage devices 4a to 4c can be selected by an instruction from the keyboard 8 or the mouse 9. The program storage unit 5 is storage means for storing a program for controlling the system shown in FIG.
A program for creating a CD disk mounted on the security system is stored. The intermediate data storage unit 6
This is storage means for holding data to be written on a CD disk and table of contents information in a state of being converted into intermediate data.
The CD image data storage unit 7 creates a CD image once when creating a CD disc, and then creates a CD-R
/ RW This device is used to write this image to the disk writing device 2.

The keyboard 8 and the mouse 9 are input means for selecting or inputting a write data device necessary for an operator to create a CD disk and control the system, and to select and input write data from the selected device. It has a function to perform such operations. The display control device 10 has a function of controlling the display of a display 11 such as a CRT or an LCD, and displays information stored in the RAM 3 and information such as patterns of windows and icons according to various functions. 11 on the screen. The above is an outline of the function of each part of the security CD creation system of the present invention, and a hardware configuration common to the inventions of claims 1 to 5.

Next, the operation of the security CD creation system shown in FIG. 3 according to the security CD creation program installed in this system will be described. 1) When the security CD creation program installed in the system starts, the operator selects data to be written on the CD and sets a password (the invention of claim 1). Once your password is set,
Start writing. 2) This program creates CD format information comprising a volume descriptor, structure information of the previously selected data, and a password sector that holds a set password, and creates the CD format information from the CD format information and the selected data. Create a CD image.

3) Write the created CD image to a CD and close it as one session. 4) This program creates CD format information including the volume descriptor and the data structure information indicating that "data does not exist" again, and re-creates the CD image (the invention of claim 4). 5) The CD image created in 4) is added as a new session after the session written in 3) (the invention of claim 3). After appending is completed, close the session. The operation according to the security CD creation program installed in the security CD creation system of FIG. 3 described above is shown in a flowchart.

FIG. 1 is a flowchart showing the main processing flow of a security CD creation program installed in the CD security system of the present invention. In the figure, # 1 to # 8 indicate steps.

In the flow of FIG. 1, steps # 3 to #
By the processing of No. 8, one write operation by the system of the present invention is executed. More specifically, the writing of the session N is performed by the processing of steps # 3 to # 5, and the writing of the session (N + 1) is performed by the processing of steps # 6 to # 8. In step # 1, the operator selects data to be written to the CD and sets a password. In step # 2, writing is started. In step # 3, a CD image (1) is created with CD format information including write data and a password sector.

In step # 4, the created CD image (1) is written to a CD. In step # 5, the session is closed as one session. At step # 6, CD format information indicating "data does not exist" and CD
Create image (2). In step # 7, the created CD image (2) is written to a CD. Step # 8
Then, the session is closed and the flow of FIG. 1 ends. Next, an example of a CD data arrangement in the CD security system of the present invention will be described.

FIG. 4 is a diagram showing an example of a data arrangement of a CD created by one writing of a security CD creating program in the CD security system of the present invention.

FIG. 4 shows one unit of writing. In a general-purpose CD-ROM reading system,
The data structure of the latest session is always mounted. In the case of the data arrangement shown in FIG. 4, since information indicating that "no data (file and directory) exists" is stored in the path table 1 of the second session, no file or directory exists on the OS. It looks like it doesn't exist. The details are listed below.

11) 1st Session starts from sector 0. And 1st Sessi
A volume descriptor group holding volume information is allocated from the on sector 16. In the volume descriptor, there is an area that holds start position information of a path table that stores data structure information indicating a file or directory structure existing in the session. 12) The password set by the operator according to the security CD creation program is held in the sector next to the volume descriptor group of the above 11) (the invention of claim 2).

13) The path table group is held from the sector next to the password sector holding the password of the above 12). 14) The data written by the operator's selection is held in the path table group of the above 13) and the sector group after the other additional information holding unit. 15) 1st Session of 11) to 14) above
, A volume descriptor group and a path table group are held as a second session. The path table group holds information indicating that no data exists (the invention of claim 4).

As described above, in the first embodiment, when writing the selected data to the CD, the user writes the password, and writes the password to the next sector of the volume information holding area on the CD. A writing means is provided (the invention of claim 1). Secondly, when writing the selected data, means for writing the logical data structure information of the data to be originally written and the data to be originally written from the sector next to the sector in which the password was written, and a logical unit in the volume information holding area. A means for writing the start sector position of the logical data structure information holding area is provided in the data structure information start sector holding section (the invention of claim 2). Thirdly, there is provided means for writing as one session, and after closing the session, automatically writing the next session (the invention of claim 3). Fourthly, there is provided means for writing a logical data structure indicating that no data exists in the logical data structure information holding area in the session to be written automatically (the invention of claim 4). Therefore, data security management using a password becomes possible.

Second Embodiment The second embodiment corresponds to the invention of claim 5, but also relates to the invention of claims 1 to 4.
In the first embodiment, the data security management using the password is performed by holding information indicating that "no data (file and directory) exists" in the path table at the time of one write. Although the case where the writing is performed has been described, the second embodiment is characterized in that the writing is performed a plurality of times.

As described in the first embodiment,
Generally, a general-purpose C-ROM drive, a general-purpose read driver, and a general-purpose C
When a CD is loaded in the D-ROM reader,
According to the ROM standard, the latest session information is always
Mounted on top. Therefore, when a CD created by the security CD creation program is inserted into the general-purpose CD-ROM reader, the CD is mounted on the OS as a blank disk on which no data is stored. That is, the general-purpose CD-ROM reader cannot access other useful data held in the security CD, and as a result, the security of the CD is guaranteed. This point is completely the same even when writing is performed a plurality of times.

FIG. 5 is a diagram showing an example of the data arrangement of a CD created by writing the security CD creating program a plurality of times in the CD security system of the present invention.

In FIG. 5, the writing unit is "No. 1".
To "No. 3". Each writing unit is basically the same as that in FIG. 4 and is composed of two sessions. And one of them
Passwords are provided. In addition, information indicating that "no data (files and directories) exist" is stored in the path table, and when the passwords do not match, the disk is mounted on the OS as a blank disk containing no data. Therefore, data security management using a password is realized.

As described above, in the second embodiment, the operation described in the first embodiment is used as one writing unit, and the writing unit can be written to one CD a plurality of times. I can do it. Therefore, different passwords can be set for a plurality of sessions on one CD.

Third Embodiment The third embodiment corresponds to the invention of claim 6, but also relates to the invention of claims 1 to 5.
In the first and second embodiments, a case has been described in which a CD is created by the CD security system of the present invention. In the third embodiment, the CD created in this manner is read. In this case, a password is input, and session data including a password that matches the input password can be mounted. First, security CD
The reading system will be briefly described.

FIG. 6 is an external view showing an example of a main configuration of a security CD reading system in the CD security system of the present invention. The symbols in the figure are the same as those in FIG. 2, and Dr2 is a general-purpose CD-ROM.
Indicates a drive.

The security CD reading system shown in FIG. 6 includes a general-purpose computer PC and a general-purpose CD-RO.
M drive Dr2. The hardware configuration of the general-purpose computer PC is basically the same as that of FIG.
Is the same as And a general-purpose computer PC and a general-purpose C
The D-ROM drive Dr2 is connected by a SCSI device or the like. In this security CD reading system, a general-purpose computer PC is equipped with a security CD reading program. With this security CD reading program, input of a password, mounting of a session on the OS, and the like are performed.

FIG. 7 shows a security CD created in the CD security system of the present invention shown in FIG.
FIG. 7 is a diagram for explaining the reading operation of FIG.

21) After the security CD reading program starts, the operator inputs a password suitable for the session desired to be read. 22) This security CD reading program
The start sector position of the path table is read from the volume descriptor of the first session of the inserted CD. next,
The password held in the sector (password sector) immediately before the path table start sector read in 21) is read, and compared with the password input by the operator. 23) If both passwords match as a result of the comparison in 22), the contents of the session are mounted on the OS.

24) If the passwords do not match, the password sector of the next session (matching the first session in one writing unit by the security CD creation program) following the session from which the password was read is stored. Read the stored password and compare it with the password entered by the operator. 25) The comparison operation of the above 23) to 24) is repeated until the passwords match. 26) If the password does not match the session immediately before the last session existing on the CD to be read (the first session in the last writing unit by the security CD creation program), a message indicating the fact, etc. Is displayed to notify the operated operator. The operation of the security CD reading program installed in the security CD creation system of FIG. 3 described above is shown in a flowchart.

FIG. 8 is a flowchart showing the main processing flow of the security CD reading program installed in the CD security system of the present invention. In the figure, # 11 to # 16 indicate steps.

This FIG. 8 is, as explained in FIG.
A case where data is written a plurality of times for each writing unit on one CD is shown. In step # 11, the user inputs a password. In step # 12, the program compares the input password with the password n (= 1) of the writing unit "No. n (= 1)". If the two passwords match, in step # 13, the data of the session is mounted on the OS.

If the passwords do not match, the flow advances to step # 14 to check whether or not the next write unit "No. n + 1" exists. The next writing unit "N
o.n + 1 "exists, in step # 15,
n is incremented by "1", and the process returns to the previous step # 12 to compare the input password with the password n + 1 of the writing unit "No. n + 1". The above processing is executed until the passwords match.

As a result of the comparison in step # 12, if the passwords do not match, and it is detected in step # 14 that the next writing unit "No.n + x" does not exist, the flow proceeds to step # 16. In step # 16, a message that "no data (file and directory) exists" is displayed, and the flow of FIG. 8 ends. As described above, in the third embodiment, a password is input, and the CD of the invention that matches the input password is input.
The session data including the password in the security system (the system of claim 1) can be mounted. Accordingly, it is possible to show different users data of different sessions on one CD.

[0045]

According to the CD security system of the first aspect, in the CD creation system, the selected data is stored in the CD security system.
When writing to D, the user has means for writing a password and means for writing a password in the sector next to the volume information holding area on the CD. Therefore, data security management using a password becomes possible.

According to a second aspect of the present invention, in the CD security system according to the first aspect, when writing the selected data, the logical data structure information of the data to be originally written starts from the sector next to the sector in which the password is written. Means for writing data to be originally written, and means for writing the start sector position of the logical data structure information holding area in the logical data structure information start sector holding section in the volume information holding area. Therefore, in addition to the effect of the CD security system of the first aspect, it is possible to write the sector holding the password information on the CD in a format that does not deviate from the CD format standard.

In the CD security system according to the third aspect, writing in the CD security system according to the first or second aspect can be written as one session, and after closing the session, the next session can be automatically written. Like that. Therefore, in addition to the effects of the CD security system of claim 1 or claim 2, it is possible to hide data written in the system of claim 1 or 2 on a general-purpose CD-ROM reading system.

According to a fourth aspect of the present invention, in the CD security system according to the first or second aspect, a logical data structure indicating that no data exists in the logical data structure information holding area in the session automatically written. So that you can write. Therefore, in addition to the effects of the CD security system according to claim 1 or 2, a general-purpose CD-ROM
On the reading system, it is possible to hide the data written in the system of claim 1 or claim 2.

In the CD security system according to the fifth aspect, the operation in the CD security system according to the first to fourth aspects is set as one writing unit, and the writing unit can be written to one CD a plurality of times. I have. Therefore, in addition to the effects of the CD security system of claims 1 to 4, different passwords can be set for a plurality of sessions on one CD.

In the CD security system according to the sixth aspect, when reading a CD created by the CD security system according to any one of the first to fifth aspects, a password is input and the input password coincides with the input password. It allows you to mount session data, including passwords, on other systems. Therefore, in addition to the effects of the CD security system according to claims 1 to 5, it is possible to show data of different sessions to different users with one CD.

[Brief description of the drawings]

FIG. 1 is a flowchart showing a main processing flow for a security CD creation program installed in a CD security system of the present invention.

FIG. 2 is an external view showing an example of a main configuration of a security CD creation system in the CD security system of the present invention.

FIG. 3 is a functional block diagram showing an example of an embodiment of a main part configuration of the security CD creation system shown in FIG. 2;

FIG. 4 is a diagram showing an example of a data arrangement of a CD created by one writing of a security CD creating program in the CD security system of the present invention.

FIG. 5 is a diagram showing an example of a data arrangement of a CD created by writing a security CD creating program a plurality of times in the CD security system of the present invention.

FIG. 6 is an external view showing an example of a main configuration of a security CD reading system in the CD security system of the present invention.

FIG. 7 is a view for explaining an operation of reading a created security CD in the CD security system of the present invention shown in FIG. 6;

FIG. 8 is a flowchart showing a main processing flow of a security CD reading program installed in the CD security system of the present invention.

[Explanation of symbols]

1 ... CPU, 2 ... CD-R / RW disk writing device, 3 ... RAM, 4a-4c ... write data storage device, 5 ... program storage unit, 6 ... intermediate data storage unit, 7 ... CD image data storage, 8 ...
... keyboard, 9 ... mouse, 10 ... display control device,
11 Display

Claims (6)

[Claims] 1. A means for selecting a plurality of devices storing data to be written to a CD-R, a means for selecting data to be written from a selected device, and a format of a CD-R based on the selected information A CD creation system comprising: means for creating information; means for formatting a CD-R based on format information; and means for writing the selected data to the formatted CD-R. C when the user writes a password on a CD, and a means for writing the password in a sector next to the volume information holding area on the CD.
D security system. 2. When writing the selected data,
Means for writing logical data structure information of data to be originally written and data to be originally written from the sector next to the sector in which the password was written; and a logical data structure in the logical data structure information start sector holding section in the volume information holding area. 2. The CD security system according to claim 1, further comprising means for writing a start sector position of the information holding area. 3. The CD security system according to claim 1, further comprising means for writing the writing as one session, closing the session, and then automatically writing a next session. 4. The apparatus according to claim 1, further comprising means for writing a logical data structure indicating that no data exists in the logical data structure information holding area in the automatically written session. CD security system. 5. The CD security system according to claim 1, further comprising a unit capable of performing the operation as one writing unit and writing the writing unit to one CD a plurality of times. . 6. When reading the created CD,
6. The CD security system according to claim 1, further comprising means for inputting a password and mounting session data including the password that matches the input password.