JPWO2023152989A5 - - Google Patents
Download PDFInfo
- Publication number
- JPWO2023152989A5 JPWO2023152989A5 JP2022560977A JP2022560977A JPWO2023152989A5 JP WO2023152989 A5 JPWO2023152989 A5 JP WO2023152989A5 JP 2022560977 A JP2022560977 A JP 2022560977A JP 2022560977 A JP2022560977 A JP 2022560977A JP WO2023152989 A5 JPWO2023152989 A5 JP WO2023152989A5
- Authority
- JP
- Japan
- Prior art keywords
- numerical control
- authentication code
- decryption key
- data
- encrypted
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 239000000284 extract Substances 0.000 claims description 13
- 238000003754 machining Methods 0.000 claims 2
- 238000000034 method Methods 0.000 claims 2
- 230000008520 organization Effects 0.000 claims 1
Description
上述した課題を解決し、目的を達成するために、本開示のデータ提供システムは、工作機械を制御する数値制御装置または工作機械の動作をシミュレーションするシミュレータによって用いられる数値制御データを第1の暗号鍵で暗号化することで暗号化数値制御データを生成する暗号化装置を備える。また、本開示のデータ提供システムは、暗号化数値制御データを暗号化装置から受け付けるとともに暗号化数値制御データを保存および配信するストア装置と、第1の暗号鍵に対応する第1の復号鍵を暗号化装置から受け付けるとともに第1の復号鍵を格納した決済認証コードを生成して第2の暗号鍵で暗号化し、第2の暗号鍵に対応する第2の復号鍵と暗号化された決済認証コードとを出力する認証管理装置とを備える。また、本開示のデータ提供システムは、ストア装置から暗号化数値制御データを受け付けるとともに認証管理装置から第2の復号鍵および暗号化された決済認証コードを受け付けて、暗号化された決済認証コードを第2の復号鍵で復号することによって決済認証コードから第1の復号鍵を取り出し、暗号化数値制御データを第1の復号鍵で復号することによって数値制御データを取り出す復号装置を備える。決済認証コードは、数値制御データの使用が許可されている対象に固有の対象認証コードおよび第1の復号鍵を格納する。復号装置は、暗号化された決済認証コードを第2の復号鍵で復号することによって決済認証コードから対象認証コードおよび第1の復号鍵を取り出し、対象認証コードに対応する対応コードを有している場合に、暗号化数値制御データを第1の復号鍵で復号することによって数値制御データを取り出す。 In order to solve the above-mentioned problems and achieve the purpose, the data providing system of the present disclosure converts numerical control data used by a numerical control device that controls a machine tool or a simulator that simulates the operation of a machine tool into a first code. It includes an encryption device that generates encrypted numerical control data by encrypting it with a key. The data providing system of the present disclosure also includes a storage device that receives encrypted numerical control data from an encryption device, stores and distributes the encrypted numerical control data, and a first decryption key corresponding to the first encryption key. A payment authentication code received from the encryption device and storing the first decryption key is generated and encrypted with a second encryption key, and a second decryption key corresponding to the second encryption key and the encrypted payment authentication are generated. and an authentication management device that outputs the code . Further, the data providing system of the present disclosure receives encrypted numerical control data from the store device, receives a second decryption key and an encrypted payment authentication code from the authentication management device, and receives the encrypted payment authentication code. A decryption device is provided that extracts a first decryption key from a payment authentication code by decrypting it with a second decryption key, and extracts numerical control data by decrypting encrypted numerical control data with the first decryption key. The payment authentication code stores an object authentication code and a first decryption key that are unique to objects for which use of the numerical control data is permitted. The decryption device extracts the target authentication code and the first decryption key from the payment authentication code by decrypting the encrypted payment authentication code with the second decryption key, and has a corresponding code corresponding to the target authentication code. If so, the encrypted numerical control data is decrypted using the first decryption key to extract the numerical control data.
Claims (11)
前記暗号化数値制御データを前記暗号化装置から受け付けるとともに前記暗号化数値制御データを保存および配信するストア装置と、
前記第1の暗号鍵に対応する第1の復号鍵を前記暗号化装置から受け付けるとともに前記第1の復号鍵を格納した決済認証コードを生成して第2の暗号鍵で暗号化し、前記第2の暗号鍵に対応する第2の復号鍵と暗号化された前記決済認証コードとを出力する認証管理装置と、
前記ストア装置から前記暗号化数値制御データを受け付けるとともに前記認証管理装置から前記第2の復号鍵および暗号化された前記決済認証コードを受け付けて、暗号化された前記決済認証コードを前記第2の復号鍵で復号することによって前記決済認証コードから前記第1の復号鍵を取り出し、前記暗号化数値制御データを前記第1の復号鍵で復号することによって前記数値制御データを取り出す復号装置と、
を備え、
前記決済認証コードは、前記数値制御データの使用が許可されている対象に固有の対象認証コードおよび前記第1の復号鍵を格納し、
前記復号装置は、暗号化された前記決済認証コードを前記第2の復号鍵で復号することによって前記決済認証コードから前記対象認証コードおよび前記第1の復号鍵を取り出し、前記対象認証コードに対応する対応コードを有している場合に、前記暗号化数値制御データを前記第1の復号鍵で復号することによって前記数値制御データを取り出す、
ことを特徴とするデータ提供システム。 an encryption device that generates encrypted numerical control data by encrypting numerical control data used by a numerical control device that controls a machine tool or a simulator that simulates the operation of the machine tool with a first encryption key;
a store device that receives the encrypted numerical control data from the encryption device and stores and distributes the encrypted numerical control data;
receiving a first decryption key corresponding to the first encryption key from the encryption device, generating a payment authentication code storing the first decryption key and encrypting it with a second encryption key; an authentication management device that outputs a second decryption key corresponding to the encryption key and the encrypted payment authentication code;
The encrypted numerical control data is received from the store device , the second decryption key and the encrypted payment authentication code are received from the authentication management device, and the encrypted payment authentication code is transferred to the second decryption authentication code. a decryption device that extracts the first decryption key from the payment authentication code by decrypting it with a decryption key, and extracts the numerical control data by decrypting the encrypted numerical control data with the first decryption key;
Equipped with
The payment authentication code stores an object authentication code unique to an object for which use of the numerical control data is permitted and the first decryption key;
The decryption device extracts the target authentication code and the first decryption key from the payment authentication code by decrypting the encrypted payment authentication code with the second decryption key, and extracts the target authentication code and the first decryption key from the payment authentication code, and extracts the target authentication code and the first decryption key from the payment authentication code, and extracts the target authentication code and the first decryption key from the payment authentication code. decrypting the encrypted numerical control data with the first decryption key to extract the numerical control data;
A data provision system characterized by:
ことを特徴とする請求項1に記載のデータ提供システム。 The target authentication code includes the numerical control device, the user of the numerical control device, the simulator, the user of the simulator, the organization that owns the machine tool, the model of the machine tool, the manufacturer that manufactures the machine tool, or the linked to one of the machine tool sales companies,
The data providing system according to claim 1 , characterized in that:
前記暗号化数値制御データは、前記対応コードを記憶している複数の前記復号装置によって復号される、
ことを特徴とする請求項1または2に記載のデータ提供システム。 a plurality of the decoding devices store the same corresponding code;
The encrypted numerical control data is decrypted by a plurality of decryption devices storing the corresponding codes.
The data providing system according to claim 1 or 2, characterized in that:
ことを特徴とする請求項1から3の何れか1つに記載のデータ提供システム。 The numerical control data is data used when the machine tool executes machining, and is a programmable logic control program or macro program used when the numerical control device executes control processing, and is executed by the numerical control device. including at least one additional application software or firmware that can
The data providing system according to any one of claims 1 to 3 , characterized in that:
ことを特徴とする請求項1から4の何れか1つに記載のデータ提供システム。 The numerical control data includes at least one of a numerical control program, document data, drawing data, model data, optional data accompanying the numerical control program, and application software used when the machine tool executes machining. There is,
The data providing system according to any one of claims 1 to 4 .
前記認証管理装置は、前記決済サーバが購入または課金を確認すると、前記決済認証コードおよび前記第2の復号鍵を生成して、前記復号装置に出力する、
ことを特徴とする請求項1に記載のデータ提供システム。 further comprising a payment server that performs purchase procedure processing and payment processing for the encrypted numerical control data distributed from the store device,
The authentication management device generates the payment authentication code and the second decryption key when the payment server confirms the purchase or charge, and outputs the generated payment authentication code and the second decryption key to the decryption device.
The data providing system according to claim 1 , characterized in that:
前記数値制御装置は、前記数値制御プログラムを用いて前記工作機械を制御する際に、前記オプションデータに対応した付加機能を用いて前記工作機械を制御する、
ことを特徴とする請求項5に記載のデータ提供システム。 The numerical control data includes the numerical control program and the option data,
The numerical control device controls the machine tool using additional functions corresponding to the option data when controlling the machine tool using the numerical control program.
6. The data providing system according to claim 5 .
前記数値制御装置は、前記使用条件で許可されている条件で前記オプションデータを用いて加工を制御する、
ことを特徴とする請求項1に記載のデータ提供システム。 The payment authentication code includes information on usage conditions for using optional data accompanying a numerical control program used when the machine tool executes processing,
The numerical control device controls processing using the optional data under conditions permitted by the usage conditions.
The data providing system according to claim 1 , characterized in that:
ことを特徴とする請求項8に記載のデータ提供システム。 The usage conditions are the number of execution cycles for one processing, the number of optional program commands, the usage time, number of days of usage, or expiration date of the option data.
9. The data providing system according to claim 8 .
ことを特徴とする請求項1から7の何れか1つに記載のデータ提供システム。 The decoding device is included in the numerical control device or the simulator.
The data providing system according to any one of claims 1 to 7 .
ストア装置が、前記暗号化数値制御データを前記暗号化装置から受け付けるとともに前記暗号化数値制御データを保存および配信する配信ステップと、
認証管理装置が、前記第1の暗号鍵に対応する第1の復号鍵を前記暗号化装置から受け付けるとともに前記第1の復号鍵を格納した決済認証コードを生成して第2の暗号鍵で暗号化し、前記第2の暗号鍵に対応する第2の復号鍵と暗号化された前記決済認証コードとを出力する出力ステップと、
復号装置が、前記ストア装置から前記暗号化数値制御データを受け付けるとともに前記認証管理装置から前記第2の復号鍵および暗号化された前記決済認証コードを受け付けて、暗号化された前記決済認証コードを前記第2の復号鍵で復号することによって前記決済認証コードから前記第1の復号鍵を取り出し、前記暗号化数値制御データを前記第1の復号鍵で復号することによって前記数値制御データを取り出す復号ステップと、
を含み、
前記決済認証コードは、前記数値制御データの使用が許可されている対象に固有の対象認証コードおよび前記第1の復号鍵を格納し、
前記復号装置は、暗号化された前記決済認証コードを前記第2の復号鍵で復号することによって前記決済認証コードから前記対象認証コードおよび前記第1の復号鍵を取り出し、前記対象認証コードに対応する対応コードを有している場合に、前記暗号化数値制御データを前記第1の復号鍵で復号することによって前記数値制御データを取り出す、
ことを特徴とするデータ提供方法。 Generation in which the encryption device generates encrypted numerical control data by encrypting numerical control data used by a numerical control device that controls a machine tool or a simulator that simulates the operation of the machine tool with a first encryption key. step and
a distribution step in which a storage device receives the encrypted numerical control data from the encryption device, and stores and distributes the encrypted numerical control data;
An authentication management device receives a first decryption key corresponding to the first encryption key from the encryption device, generates a payment authentication code storing the first decryption key , and encrypts it with a second encryption key. an output step of outputting a second decryption key corresponding to the second encryption key and the encrypted payment authentication code;
A decryption device receives the encrypted numerical control data from the store device, receives the second decryption key and the encrypted payment authentication code from the authentication management device, and decodes the encrypted payment authentication code. Decoding to extract the first decryption key from the payment authentication code by decrypting it with the second decryption key, and extracting the numerical control data by decrypting the encrypted numerical control data with the first decryption key. step and
including;
The payment authentication code stores an object authentication code unique to an object for which use of the numerical control data is permitted and the first decryption key;
The decryption device extracts the target authentication code and the first decryption key from the payment authentication code by decrypting the encrypted payment authentication code with the second decryption key, and extracts the target authentication code and the first decryption key from the payment authentication code, and extracts the target authentication code and the first decryption key from the payment authentication code, and extracts the target authentication code and the first decryption key from the payment authentication code. decrypting the encrypted numerical control data with the first decryption key to extract the numerical control data;
A data provision method characterized by:
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
PCT/JP2022/005761 WO2023152989A1 (en) | 2022-02-14 | 2022-02-14 | Data providing system and data providing method |
Publications (3)
Publication Number | Publication Date |
---|---|
JP7186938B1 JP7186938B1 (en) | 2022-12-09 |
JPWO2023152989A1 JPWO2023152989A1 (en) | 2023-08-17 |
JPWO2023152989A5 true JPWO2023152989A5 (en) | 2024-01-16 |
Family
ID=84388169
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
JP2022560977A Active JP7186938B1 (en) | 2022-02-14 | 2022-02-14 | Data provision system and data provision method |
Country Status (2)
Country | Link |
---|---|
JP (1) | JP7186938B1 (en) |
WO (1) | WO2023152989A1 (en) |
Family Cites Families (7)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
JP2000216772A (en) * | 1999-01-22 | 2000-08-04 | Canon Inc | Terminal, data processing system, data retention method and storage medium |
JP2008152551A (en) * | 2006-12-18 | 2008-07-03 | Fanuc Ltd | Software option setting system and setting method |
US11480945B2 (en) * | 2017-04-27 | 2022-10-25 | Hewlett-Packard Development Company, L.P. | Production device for production of an object for user permitted to print pre-defined number of copies of the object including encrypted token, and decrypted by the production device for determining user access right |
EP3502806A1 (en) * | 2017-12-22 | 2019-06-26 | Siemens Aktiengesellschaft | Method for protecting the production data for producing a product |
DE102018214840A1 (en) * | 2018-08-31 | 2020-03-05 | DMG MORI Software Solutions GmbH | METHOD AND SYSTEM FOR PROVIDING MACHINING DATA ON A NUMERICALLY CONTROLLED MACHINE |
US20200326683A1 (en) * | 2019-04-13 | 2020-10-15 | Toybox Labs Inc | Secure 3D Printing |
US11454952B2 (en) * | 2019-09-12 | 2022-09-27 | Mitsubishi Electric Corporation | Numerical control apparatus |
-
2022
- 2022-02-14 WO PCT/JP2022/005761 patent/WO2023152989A1/en active Application Filing
- 2022-02-14 JP JP2022560977A patent/JP7186938B1/en active Active
Similar Documents
Publication | Publication Date | Title |
---|---|---|
CN1960363B (en) | Method and equipment for implementing remote updating information security devices through network | |
JP2004528632A (en) | Distributed generation method and system of program for programmable portable data storage medium | |
CN103856322B (en) | Method and system for the embedded code and/or data safety that are designed for equipment to be sent to client | |
CN101872404B (en) | Method for protecting Java software program | |
CN104025104A (en) | Virtual machine device having key driven obfuscation and method | |
CN109992987B (en) | Script file protection method and device based on Nginx and terminal equipment | |
CN104298932A (en) | Method and device for calling SO file | |
CN101957903A (en) | Method and device for protecting class files | |
CN106503494A (en) | A kind of firmware protection location and guard method with flash memory microcontroller on piece | |
US20150371012A1 (en) | Process and device for encoding of source files for secure delivery of source code | |
CN104200137A (en) | Method for guaranteeing self-security of JAVA program | |
CN105574441A (en) | Embedded firmware protection method and device | |
RU2001128432A (en) | Device for processing data and method for processing data | |
KR20080046515A (en) | Encoding and decoding method of contents file | |
JP4582619B2 (en) | IC card for encryption or decryption processing, and encryption communication system and encryption communication method using the same | |
JPWO2023152989A5 (en) | ||
US20190044709A1 (en) | Incorporating software date information into a key exchange protocol to reduce software tampering | |
CN113542303B (en) | Software importing system and method for secret key in non-trusted environment | |
JPH02155034A (en) | Computer with security function | |
JP7186938B1 (en) | Data provision system and data provision method | |
CN110114772B (en) | System, method and engineering tool for preventing illegal use of ladder program | |
JP2018078610A5 (en) | ||
US11748459B2 (en) | Reducing software release date tampering by incorporating software release date information into a key exchange protocol | |
JPH0368024A (en) | Preventing system for illegal use of program | |
CN117807610A (en) | Kernel transparent encryption and decryption method and device |