WO2020195746A1 - Device management system, device management method, information processing apparatus, and program - Google Patents

Device management system, device management method, information processing apparatus, and program Download PDF

Info

Publication number
WO2020195746A1
WO2020195746A1 PCT/JP2020/010007 JP2020010007W WO2020195746A1 WO 2020195746 A1 WO2020195746 A1 WO 2020195746A1 JP 2020010007 W JP2020010007 W JP 2020010007W WO 2020195746 A1 WO2020195746 A1 WO 2020195746A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
manufacturing
distributed ledger
managed
information processing
Prior art date
Application number
PCT/JP2020/010007
Other languages
French (fr)
Japanese (ja)
Inventor
篤 古城
航洋 竹之下
Original Assignee
株式会社ウフル
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 株式会社ウフル filed Critical 株式会社ウフル
Publication of WO2020195746A1 publication Critical patent/WO2020195746A1/en

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q30/00Commerce
    • G06Q30/018Certifying business or products
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/10File systems; File servers
    • G06F16/14Details of searching files based on file metadata
    • G06F16/148File search processing
    • G06F16/152File search processing using file content signatures, e.g. hash values
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/10Office automation; Time management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q10/00Administration; Management
    • G06Q10/20Administration of product repair or maintenance
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/90Details of database functions independent of the retrieved data types
    • G06F16/901Indexing; Data structures therefor; Storage structures
    • G06F16/9024Graphs; Linked lists

Definitions

  • IoT Internet of Things
  • technologies for connecting IoT devices such as sensors, cameras, and home appliances to networks, controlling these IoT devices, and utilizing data from IoT devices have been developed. It is becoming widely used.
  • the information that guarantees the reliability of the IoT device includes, for example, manufacturing information such as what kind of component and where the IoT device was manufactured. Information that guarantees such reliability is required not only for IoT devices but also for all other devices.
  • information such as manufacturing conditions of the semiconductor device manufacturing process is recorded in a database in association with a fingerprint pattern formed on the semiconductor device. According to this configuration, it is difficult to artificially rewrite the fingerprint pattern formed on the semiconductor device, thereby increasing the reliability of the information of the semiconductor device.
  • An object of the present invention is to provide a device management system, a device management method, an information processing device, and a program capable of improving the reliability of a device.
  • One embodiment of the present invention provides a network to a distributed ledger, a first information processing device connected to an information processing device constituting the distributed ledger via a network, and an information processing device constituting the distributed ledger.
  • a second information processing device connected via a device is provided, and the first information processing device is information related to a communication unit that communicates via a network and a device manufacturing process, and can identify the device. At least one of manufacturing information including the device ID, information related to the device startup process and including the device ID, and information related to the device updating process and including the device ID.
  • It is equipped with a processing unit that records information in a distributed ledger, and the second information processing device acquires the device ID of the device to be managed, and updates the acquired device ID with manufacturing information and startup information.
  • One embodiment of the present invention is to connect a network to a distributed ledger, a first information processing device connected to an information processing device constituting the distributed ledger via a network, and an information processing device constituting the distributed ledger.
  • the first information processing device includes a second information processing device connected via the first information processing device. It detects whether or not manufacturing time information, which is information related to the manufacturing process of the device, has been generated with the communication unit that communicates via the network, and if it is detected that manufacturing time information has occurred, the manufacturing time information is displayed.
  • the second information processing apparatus is a device management system that includes a processing unit that records in a distributed ledger, and reads manufacturing time information from the distributed ledger to check the reliability of the device.
  • One embodiment of the present invention includes a communication unit that communicates with an information processing device constituting a distributed ledger via a network, and a device ID that is information related to a device manufacturing process and can identify the device at the time of manufacturing. At least one of information, information related to the device startup process and startup information including the device ID, and information related to the device update process and update time information including the device ID is stored in the distributed ledger.
  • It is equipped with a processing unit for recording, and at least one of the information recorded in the distributed ledger among the manufacturing information, startup information, and update information is used when checking the reliability of the managed device.
  • It is an information processing device that is information read out based on the device ID of the device to be managed.
  • One embodiment of the present invention detects whether or not manufacturing information, which is information related to the manufacturing process of a device, has been generated, and a communication unit that communicates with an information processing device constituting a distributed ledger via a network. , When it is detected that the manufacturing time information has been generated, it is equipped with a processing unit that records the manufacturing time information in the distributed ledger, and the manufacturing time information recorded in the distributed ledger is the reliability of the device to be managed.
  • One embodiment of the present invention is information related to a device manufacturing process and including a device ID that can identify the device, manufacturing information including a device ID, information related to a device activation process, and startup information including the device ID, and A device to be managed that is connected to an information processing device that constitutes a distributed ledger in which at least one of the update information including the device ID, which is information related to the device update process, is recorded via a network. Acquires the device ID, and reads at least one of the information recorded in the block chain among the manufacturing information, startup information, and update information for the acquired device ID to determine the reliability of the managed device. It is an information processing device to confirm.
  • Information related to the device startup process and including the device ID, and at least one of the information related to the device update process and the update information including the device ID are recorded in the block chain.
  • At least one of the manufacturing information, startup information, and update information recorded in the blockchain is managed when checking the reliability of the managed device. It is a program that is information read out based on the device ID of the device.
  • One embodiment of the present invention detects whether or not manufacturing time information, which is information related to the manufacturing process of a device, is generated in a computer connected to an information processing device constituting a distributed ledger via a network. When it is detected that the manufacturing information has been generated, the manufacturing information is recorded in the blockchain, and the manufacturing information recorded in the blockchain confirms the reliability of the managed device.
  • One embodiment of the present invention is information related to a device manufacturing process and including a device ID that can identify a device, manufacturing information including a device ID, information related to a device activation process, and startup information including a device ID, and A device to be managed by an information processing device and a computer connected to a network that form a distributed ledger in which at least one piece of update information including a device ID, which is information related to a device update process, is recorded.
  • Device ID is acquired, and at least one of the information recorded in the distributed ledger among the manufacturing information, startup information, and update information for the acquired device ID is read out to determine the reliability of the managed device. It is a program that executes to confirm.
  • the present invention it is possible to provide a device management system, a device management method, an information processing device, and a program capable of improving the reliability of the device.
  • FIG. 1 It is a block diagram which shows the structure of the device management system which concerns on 1st Embodiment of this invention. It is a block diagram which shows about the IoT device managed by the device management system 1 shown in FIG. It is a block diagram which shows the structure of the terminal apparatus which is an example of the information processing apparatus 2 shown in FIG. It is a block diagram which shows the structure of the device which is an example of the IoT device 5 shown in FIG. It is a figure which shows the structure which applied an example of the distributed ledger technology in the device management system 1 shown in FIG. It is a figure which shows the tangle which is an example of the distributed ledger which records the information about the device to be managed in the device management system 1 shown in FIG. FIG.
  • FIG. 3 is a block diagram showing a configuration related to bookkeeping of manufacturing information of a device managed by the device management system 1 shown in FIG. 1.
  • FIG. 5 is a flowchart showing a process related to bookkeeping of manufacturing information of a device managed by the device management system 1 shown in FIG.
  • FIG. 5 is a block diagram showing a configuration related to bookkeeping of start-up information of a device managed by the device management system 1 shown in FIG. It is a flowchart which shows the process which concerns on the recording of the start-up information of the device managed by the device management system 1 shown in FIG.
  • FIG. 5 is a block diagram showing a configuration related to bookkeeping of update information of a device managed by the device management system 1 shown in FIG. 1.
  • FIG. 5 is a flowchart showing a process of recording update information of a device managed by the device management system 1 shown in FIG. 1 at predetermined time intervals.
  • FIG. 5 is a block diagram showing a configuration in which the device management system 1 shown in FIG. 1 refers to the device manufacturing time-use block chain 101 and the device change history block chain 102.
  • It is a block diagram which shows the structure of Example 2 which applied the device management system by this invention.
  • FIG. 2 is a block diagram showing an IoT device managed by the device management system 1 shown in FIG.
  • the device management system 1 manages the IoT device 5.
  • the IoT device 5 is connected to the information processing device 2 by the network 4.
  • the information processing device 2 controls the operation of the IoT device 5.
  • the network 4 may be a wired network or a wireless network.
  • the network 4 is, for example, an internet network.
  • the IoT device 5 may be any sensor that detects a natural phenomenon such as temperature, humidity, pressure, light amount, and volume, and a known fluctuation amount such as a moving speed of an object or a position and its acceleration. Further, the IoT device 5 may be a camera capable of photographing the surroundings.
  • the IoT device 5 may be any product such as a home electric appliance such as an air conditioner, an automobile, or a robot.
  • the device to be managed is an IoT device, but the present invention is not limited to this, and the device management system according to the present invention manages devices that are not connected by a network. It may be a thing.
  • the IoT device 5 may be a device that constitutes a node in the distributed ledger technology.
  • FIG. 3 is a block diagram showing a configuration of a terminal device which is an example of the information processing device 2 shown in FIG.
  • the information processing device 2 may be a device generally called a personal computer, a workstation, a mainframe, or a device called a supercomputer. Further, the information processing device 2 may be a device called a smartphone or a tablet. Further, the information processing device 2 may be various devices having a function peculiar to the device such as a sensor function and a camera function in addition to the function of the computer.
  • the configuration of the terminal device 11 as an example of the information processing device 2 will be described.
  • the terminal device 11 includes a processing unit 12 that performs various processes, an input / output unit 13 that performs input / output to and from the operator, a storage unit 14 that stores programs and various data operated by the processing unit 12, a network 3, and a network 3. It is configured to include a communication unit 15 that performs communication via the network 4.
  • the terminal device 11 may be a device managed by the device management system 1 of the present embodiment. All devices that can be connected to the Internet are IoT devices managed by the device management system 1 of the present embodiment.
  • the processing unit 12 is an arithmetic unit called a CPU or MPU.
  • the processing unit 12 executes the program stored in the storage unit 14.
  • the input / output unit 13 is an input / output device such as a keyboard, a mouse, and a display.
  • the storage unit 14 may be any known storage device such as a RAM, a ROM, a hard disk, a magnetic storage device, and an optical storage device.
  • Each of the plurality of information processing devices 2 may have the same configuration, or each device may have a configuration different from that of the other devices.
  • FIG. 4 is a block diagram showing a device configuration which is an example of the IoT device 5 shown in FIG.
  • the device 16 includes a processing unit 17 that performs various processes, a device function execution unit 18 that executes a function peculiar to the device, a storage unit 19 that stores programs and various data operated by the processing unit 17, and a network 4. It is configured to include a communication unit 20 that performs communication via the above.
  • the processing unit 17 is an arithmetic unit called a CPU or MPU.
  • the processing unit 17 executes the program stored in the storage unit 19.
  • the storage unit 14 may be any known storage device such as a RAM, a ROM, a hard disk, a magnetic storage device, and an optical storage device.
  • Each of the plurality of information processing devices 2 may have the same configuration, or each device may have a configuration different from that of the other devices.
  • the device function execution unit 18 is configured to execute a function peculiar to the device.
  • the device function execution unit 18 includes a detection element that detects an object, a control unit that controls the detection element, and the like.
  • the device function execution unit 18 includes an image sensor that images the surroundings, an image processing unit that performs image processing on the image captured by the image sensor, and an image sensor and an image processing unit. It has a control unit to control.
  • the device function execution unit 18 includes a drive unit that drives each configuration related to the refrigeration cycle, a detection unit that detects temperature and humidity, and a control unit that controls the drive unit and the detection unit. Has.
  • the device function execution unit 18 is a drive unit that drives each configuration related to the running of the automobile, a detection unit that detects a situation related to safety outside the vehicle, a situation related to comfort inside the vehicle, and the like. It also has a control unit that controls a drive unit and a detection unit.
  • the device function execution unit 18 includes a drive unit that drives the robot, a detection unit that detects the surrounding conditions of the robot, and a control unit that controls the drive unit and the detection unit.
  • the robot may manufacture an IoT device to be managed by the device management system 1 of the present embodiment. By doing so, a more reliable IoT device can be manufactured.
  • the information processing device 2 the IoT device 5, the terminal device 11, and the device 16 may be full nodes or light nodes.
  • FIG. 6 is a diagram showing a tangle which is an example of a distributed ledger for recording information about a device to be managed in the device management system 1 shown in FIG.
  • the tangle uses a DAG (Directed Acyclic Graph).
  • recording information in the distributed ledger means recording a transaction (TX) in the tangle.
  • PoW Proof of work
  • FIG. 7 is a block diagram showing a configuration related to bookkeeping of manufacturing information of the device managed by the device management system 1 shown in FIG.
  • the device manufacturing blockchain 101 is a blockchain that records manufacturing information, which is information related to the manufacturing process of a device managed by the device management system 1 (hereinafter, referred to as “managed device”).
  • the device manufacturing distributed ledger 101 is a tangle possessed by the full nodes constituting the device management system 1.
  • the terminal device 11 records the manufacturing time information 16a in the device manufacturing time distributed ledger 101.
  • the manufacturing time information 16a is a transaction in the device manufacturing time distribution ledger 101.
  • the manufacturing information 16a is information when manufacturing the managed device.
  • the manufacturing time information 16a is generated each time the parts constituting the managed device are selected and assembled in the manufacturing process of the managed device.
  • the circuit board A which is a component constituting the managed device
  • the electronic component B CPU, memory, etc.
  • the manufacturing information 16a for the circuit board A is generated, and the manufacturing information 16a for the electronic component B is generated.
  • the manufacturing information 16a can specify a device ID that can identify the managed device, a component ID that can identify the parts constituting the managed device, and a manufacturing line that incorporates the component indicated by the component ID into the managed device.
  • the production line ID and the production time information indicating the time when the component indicated by the component ID is incorporated into the managed device are included.
  • the manufacturing time information 16a is information in which the part ID, the manufacturing line ID, and the manufacturing time information are associated with the device ID.
  • the manufacturing line ID may include a worker person in charge ID or a manufacturing device (robot) ID in order to identify a worker or a manufacturing device.
  • FIG. 8 is a flowchart showing a process related to bookkeeping of manufacturing information of the device managed by the device management system 1 shown in FIG. FIG. 8 shows a process executed by the terminal device 11.
  • the processing unit 12 of the terminal device 11 detects whether or not there is newly generated manufacturing time information 16a (step S801).
  • the manufacturing person may operate the input / output unit 13 of the terminal device 11 to input the manufacturing information 16a to the terminal device 11.
  • the robot may input the manufacturing time information 16a to the terminal device 11 via the communication unit 15 of the terminal device 11.
  • the processing unit 12 records the manufacturing time information 16a in the device manufacturing time distribution ledger 101 (step S802), and ends the process. .. If there is no newly generated manufacturing information 16a in step S801, the processing unit 12 ends the processing as it is.
  • the terminal device 11 recorded in the device manufacturing distributed ledger 101 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself.
  • the device manufacturing process is divided into a plurality of processes such as component mounting, assembly, and inspection.
  • the manufacturing information 16a may be recorded for each process, or may be recorded at least once in the final assembly / inspection process.
  • FIG. 9 is a block diagram showing a configuration related to bookkeeping of device startup information managed by the device management system 1 shown in FIG.
  • the device change history distributed ledger 102 is a distributed ledger for recording startup information 16b, which is information related to the startup process of the managed device.
  • the device change history distributed ledger 102 is a tangle possessed by the full nodes constituting the device management system 1.
  • the device change history distributed ledger 102 may be the same distributed ledger as the device manufacturing distributed ledger 101.
  • the terminal device 11 records the startup information 16b in the device change history distributed ledger 102.
  • the startup information 16b is a transaction in the device change history distributed ledger 102.
  • the startup information 16b is information when the managed device is activated.
  • the managed device manufactured in the manufacturing process performs the activation process at the time of activation.
  • the managed device is initialized and activated.
  • the managed device has a ROM that stores the program, a CPU that executes the program stored in the ROM, and a secure element.
  • the secure element may be a TPM (Trusted Platform Module) having tamper resistance, a SIM (Subscriber Identity Module), a SAM (Security Application Module), or any other known configuration.
  • the secure element does not necessarily have to have tamper resistance as long as it has a function that can store the verification key of the digital signature. For example, it uses a mechanism called TrustZone that exists in the CPU separately from the normal memory. You may.
  • the activation information 16b is generated.
  • the startup information 16b includes a device ID that can identify the managed device, verification time information indicating the time when the startup process of the managed device was performed, and a hash of a file of a program or data used in the startup process of the managed device. Includes values and digital signatures by managed devices. Further, the startup information 16b is information in which the verification time information, the hash value, and the digital signature are associated with the device ID.
  • FIG. 10 is a flowchart showing a process related to bookkeeping of device startup information managed by the device management system 1 shown in FIG. FIG. 10 shows a process executed by the terminal device 11.
  • the processing unit 12 of the terminal device 11 detects whether or not there is newly generated start-up information 16b (step S1001).
  • the managed device may input the startup information 16b into the terminal device 11 via the communication unit 15 of the terminal device 11.
  • the managed device itself may record the startup information 16b in the device change history distributed ledger 102.
  • step S1001 If there is newly generated startup information 16b in step S1001, the processing unit 12 records the current startup information 16b in the device change history distributed ledger 102 (step S1002), and ends the process. .. In step S1001, if there is no newly generated start-up information 16b, the processing unit 12 ends the processing as it is.
  • the terminal device 11 recorded in the device change history distributed ledger 102 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself.
  • FIG. 11 is a block diagram showing a configuration related to bookkeeping of update information of the device managed by the device management system 1 shown in FIG.
  • the device change history distributed ledger 102 is a distributed ledger that records the update information 16c, which is information related to the update process of the managed device, in addition to the startup information 16b.
  • the device change history distributed ledger 102 is a tangle possessed by the full nodes constituting the device management system 1.
  • the terminal device 11 records the update information 16c in the device change history distributed ledger 102.
  • the update information 16c is a transaction in the device change history distributed ledger 102.
  • the update information 16c is information when updating the managed device.
  • the managed device activated in the activation process executes an update process for updating the program during operation.
  • a managed device is a program that receives firmware patches, programs that add new functions in functions specific to managed devices, programs that fix bugs, and various data via the Internet, and is managed. Update the program that runs on the device.
  • the managed device has a firmware (FW) executed by the managed device, a program executed by the managed device, and a data file (File) used for execution.
  • Firmware is also a type of program.
  • the update process of the managed device is executed, the update information 16c is generated.
  • the process of updating the managed device may include updating the firmware and the config file of the managed device by, for example, the terminal device 11. In this case, the terminal device 11 records the update information 16c regarding the update in the device change history distributed ledger 102.
  • the update information 16c includes a device ID that can identify the managed device, verification time information indicating the time when the update process of the managed device was performed, and a hash of a file of a program or data used in the update process of the managed device. Includes values and digital signatures by managed devices. Further, the update information 16c is information in which the verification time information, the hash value, and the digital signature are associated with the device ID.
  • FIG. 12 is a flowchart showing a process related to bookkeeping of update information of the device managed by the device management system 1 shown in FIG. FIG. 12 shows a process executed by the terminal device 11.
  • the processing unit 12 of the terminal device 11 detects whether or not there is newly generated update information 16c (step S1201).
  • the managed device may input the update information 16c to the terminal device 11 via the communication unit 15 of the terminal device 11.
  • the managed device itself may record the update information 16c in the device change history distributed ledger 102.
  • step S1201 If there is newly generated update information 16c in step S1201, the processing unit 12 records the current update information 16c in the device change history distributed ledger 102 (step S1202), and ends the process. .. In step S1201, if there is no newly generated update information 16c, the processing unit 12 ends the processing as it is.
  • the terminal device 11 recorded in the device change history distributed ledger 102 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself.
  • the terminal device 11 is not only when there is new update information 16c (when it is updated), but also when it is updated to indicate the current state of the managed device at predetermined time intervals even if it is not updated.
  • the information 16c may be recorded in the device change history distributed ledger 102.
  • the update information 16c indicating the status of the current managed device includes a device ID that can identify the managed device, verification time information indicating the current time, and a file of programs and data currently being executed on the managed device. Includes the hash value of and the digital signature of the managed device. Further, the update information 16c is information in which the verification time information, the hash value, and the digital signature are associated with the device ID.
  • FIG. 13 is a flowchart showing a process of recording update information of the device managed by the device management system 1 shown in FIG. 1 at predetermined time intervals.
  • FIG. 13 shows a process executed by the terminal device 11.
  • the processing unit 12 of the terminal device 11 confirms whether a predetermined time has elapsed from the recording of the previous update information 16c (step S1301).
  • the predetermined time determined in step S1301 may be determined according to the frequency at which the managed device may be tampered with. Further, the predetermined time may be a fixed time or may be changed.
  • the managed device may input the update information 16c to the terminal device 11 via the communication unit 15 of the terminal device 11.
  • the managed device itself may record the update information 16c in the device change history distributed ledger 102.
  • step S1301 when the predetermined time has elapsed, the processing unit 12 records the current startup information 16b in the device change history distributed ledger 102 (step S1302), and ends the process. If the predetermined time does not elapse in step S1301, the processing unit 12 ends the processing as it is.
  • the terminal device 11 recorded in the device change history distributed ledger 102 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself. According to the process shown in FIG. 13, even though the managed device has been updated, it is possible to respond to tampering that pretends to be in an unupdated state, and the current status of the managed device is correct. It is reflected in the device change history distributed ledger 102.
  • FIG. 14 is a block diagram showing a configuration in which the device management system 1 shown in FIG. 1 refers to the device manufacturing time distributed ledger 101 and the device change history distributed ledger 102.
  • the terminal device 11 has a manufacturing time information 16a recorded in the device manufacturing distributed ledger 101, a startup information 16b recorded in the device change history distributed ledger 102, and a device change history. Refer to the update information 16c recorded in the distributed ledger 102.
  • FIG. 15 is a flowchart showing a process of referring to the device manufacturing time distributed ledger 101 and the device change history distributed ledger 102 in the device management system 1 shown in FIG. FIG. 15 shows a process executed by the terminal device 11.
  • the terminal device 11 determines whether or not a process for confirming the reliability of the managed device has occurred (step S1501).
  • the process of confirming the reliability of a managed device includes, for example, a process of confirming the state of the managed device when there is some suspicious movement in the operation of the managed device.
  • the process of confirming the reliability of a managed device includes, for example, a process of confirming the reliability of the managed device when using data from a certain managed device.
  • the process of confirming the reliability of the managed device includes, for example, a process of confirming the reliability of the managed device when driving and controlling a certain managed device.
  • the process of confirming the reliability of a managed device includes, for example, a process of confirming the status of a managed device when an audit of the managed device becomes necessary.
  • step S1502 the terminal device 11 assigns a device ID for specifying which device is the managed device for which the reliability is confirmed this time. get.
  • the device ID may be acquired by being input from the input / output unit 13, may be acquired by receiving from the outside via the communication unit 15, or may be read from the storage unit 14. You may get it by.
  • step S1502 the terminal device 11 reads the manufacturing time information 16a about the acquired device ID from the device manufacturing time distribution type ledger 101, and reads the acquired device ID startup information 16b from the device change history distribution type. Read from the ledger 102, and read the updated information 16c about the acquired device ID from the device change history distributed ledger 102.
  • the terminal device 11 determines the manufacturing information 16a, the startup information 16b, and the update information 16c read in step S1501 and confirms the current reliability of the managed device (step S1503).
  • step S1504 the process is terminated after performing control based on the current reliability of the managed device, which is the determination result of step S1503. For example, if the manufacturing information 16a read from the device manufacturing blockchain 101 contains information about parts other than the originally planned parts, it is possible to perform control without using the managed device. it can. Further, for example, when the update information 16c read from the device change history distributed ledger 102 includes information about a non-genuine update, control can be performed without using the managed device. ..
  • the terminal device 11 that executes the process of FIG. 15 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself.
  • FIG. 16 is a block diagram showing a configuration of Example 1 to which the device management system according to the present invention is applied.
  • the present embodiment is an example in which the device management system according to the present invention is applied to a person tracking system that tracks the footprints of a person.
  • the person tracking system 1600 has surveillance cameras 1606, 1607 and 1608 that are managed devices. Information at the time of manufacture, start-up, and update of the surveillance cameras 1606, 1607, and 1608 is recorded in the distributed ledger 1602 at any time. The reliability of surveillance cameras 1606, 1607 and 1608 is guaranteed by the blockchain 1602.
  • the decentralized ledger 1602 refers to the decentralized ledger 1601 in which the evidence on which the reliable device is sufficient is recorded.
  • the face image of the person 1605 is recorded in the distributed ledger 1604.
  • the surveillance cameras 1606, 1607 and 1608 collate the face image recorded in the distributed ledger 1604 with the face image of the person photographed by the person 1605, so that the person 1605 can set the installation position of the surveillance cameras 1606, 1607 and 1608. Acquire the action history that passed. This action history is recorded in the distributed ledger 1603.
  • the distributed ledger 1602 is referred to, and the reliability of the shooting results of the surveillance cameras 1606, 1607 and 1608 is guaranteed.
  • the distributed ledger 1603 can be referred to to analyze the behavior pattern and purchase tendency of the person 1605, which can be used for product purchase and product development.
  • FIG. 17 is a block diagram showing a configuration of Example 2 to which the device management system according to the present invention is applied.
  • This embodiment is an example in which the device management system according to the present invention is applied to a dangerous vehicle discrimination system for discriminating a dangerous driving vehicle.
  • the dangerous vehicle discrimination system 1700 has surveillance cameras 1705 and 1706 which are managed devices. Surveillance cameras 1705 and 1706 are mounted on the vehicle 1704.
  • the surveillance camera 1705 photographs the front of the vehicle 1704 and captures the driving situation of the preceding vehicle 1707.
  • the surveillance camera 1706 photographs the rear of the vehicle 1704 and captures the driving situation of the following vehicle 1708.
  • Information at the time of manufacture, start-up, and update of the surveillance cameras 1705 and 1706 is recorded in the distributed ledger 1702 at any time.
  • the reliability of surveillance cameras 1705 and 1706 is guaranteed by the blockchain 1702.
  • the decentralized ledger 1702 refers to the decentralized ledger 1701 in which the evidence on which the reliable device is sufficient is recorded.
  • the driving status and vehicle number of the preceding vehicle and the following vehicle taken by the surveillance cameras 1705 and 1706 are recorded in the distributed ledger 1703.
  • the surveillance cameras 1705 and 1706 can acquire the vehicle number of the vehicle that has driven dangerously in the past by referring to the contents recorded in the distributed ledger 1703 in the past.
  • the surveillance cameras 1705 and 1706 match the vehicle numbers of the preceding vehicle and the following vehicle that are currently being photographed with the vehicle numbers of the vehicles that have been dangerously driven in the past obtained from the distributed ledger 1703, thereby causing the preceding vehicle and the following vehicle to collide with each other. It is possible to notify the smartphone 1710 of the driver driving the vehicle 1704 or the navigation system 1709 mounted on the vehicle 1704 about the risk of the vehicle driving dangerously.
  • the distributed ledger (distributed ledger 101 for device manufacturing, distributed ledger 102 for device change history), manufacturing information which is information related to the device manufacturing process, and activation of the device.
  • Bookkeeping means (S802, S1002, S1202, S1302) for recording at least one of the start-up information, which is information related to the process, and the update time information, which is information related to the device update process, in the block chain. It is characterized by having an information reading means (S1502) for reading the information recorded in the distributed ledger.
  • This provides a device management system capable of improving the reliability of the device. Further, by recording the information about the device in the distributed ledger, it is possible to prevent the information from being tampered with. In addition, by recording in a public blockchain, it is possible to provide a system in which anyone can refer to information about the device, and anyone can confirm the reliability of the device.
  • the present invention is characterized in that the distributed ledger is a tangle (see FIG. 6). As a result, it is possible to record in the block chain in real time. Also, unlike other decentralized ledgers that require a fee for bookkeeping, bookkeeping in the decentralized ledger can be done free of charge. In addition, it is possible to provide a scalable system. In addition, it is possible to provide a system having a high affinity with micropayments using the virtual currency IOTA.
  • the manufacturing information incorporates a device ID capable of identifying the device, a component ID capable of identifying a component constituting the device, and a component indicated by the component ID into the device. It is information that includes a manufacturing line ID that can identify the manufacturing line and manufacturing time information that indicates the time when the component indicated by the component ID is incorporated into the device, and each information is linked to the device ID. It is a feature. As a result, it is possible to provide a system with improved reliability at the time of manufacturing the device.
  • the startup information includes a device ID that can identify the device, verification time information indicating the time when the device activation process is performed, and a file used for the device activation process.
  • the hash value and the digital signature by the device are included, and each information is associated with the device ID.
  • the update time information includes a device ID that can identify the device, verification time information indicating the time when the device update process is performed, and a file used for the device update process.
  • the hash value and the digital signature by the device are included, and each information is associated with the device ID.
  • the present invention is characterized in that the digital signature is a digital signature obtained by encrypting the hash value of the file with a private key. This also makes it possible to make it more difficult for the information about the device recorded in the block chain to be tampered with.
  • the present invention is characterized in that the device is an IoT device.
  • the device is an IoT device.
  • the program that controls the IoT device is rewritten by malware, for example, the rewritten program is recorded in the distributed ledger, so that the current state of the IoT device can be known.
  • the operator can obtain a judgment material for deciding whether or not to utilize the IoT device.
  • the present invention is a device management method for managing a device using a computer, which is manufacturing information which is information related to a device manufacturing process and startup information which is information related to the device starting process.
  • This provides a device management method that can improve the reliability of the device. Further, by recording the information about the device in the distributed ledger, it is possible to prevent the information from being tampered with.
  • posting in a public blockchain it is possible to provide a method in which anyone can refer to information about the device, and anyone can confirm the reliability of the device.
  • the present invention relates to manufacturing information which is information related to a device manufacturing process, startup information which is information related to the device activation process, and information related to the device updating process. It is characterized by having a recording means for recording at least one of the updated information in the distributed ledger. As a result, the information processing device records the information about the device in the distributed ledger, so that the information about the device is less likely to be falsified, and highly reliable information can be provided.
  • the present invention includes manufacturing information which is information related to the manufacturing process of the device, startup information which is information related to the activation process of the device, and information related to the updating process of the device. It is characterized by having a bookkeeping means for recording at least one of the update information in a distributed ledger. As a result, the IoT device records the information about the device in the distributed ledger, so that the information about the device is less likely to be tampered with, and highly reliable information can be provided.
  • the present invention includes manufacturing information which is information related to a device manufacturing process, startup information which is information related to the device activation process, and information related to the device updating process.
  • the computer functions as a bookkeeping means for recording at least one of the update information in the block chain. This provides a program that can improve the reliability of the device. Further, by recording the information about the device in the distributed ledger, it is possible to prevent the information from being tampered with. In addition, by recording in a public block chain, it is possible to provide a program in which anyone can refer to information about the device, and anyone can check the reliability of the device.
  • the present invention is characterized in that the distributed ledger is a tangle in the program. As a result, it is possible to record in the block chain in real time. Also, unlike other decentralized ledgers that require a fee for bookkeeping, bookkeeping in the decentralized ledger can be done free of charge. In addition, it is possible to provide a scalable program. In addition, it is possible to provide a program having a high affinity with micropayments using the virtual currency IOTA.
  • the manufacturing information includes a device ID capable of identifying the device, a component ID capable of identifying a component constituting the device, and a component indicated by the component ID.
  • the information includes a manufacturing line ID capable of specifying the manufacturing line incorporated in the device and manufacturing time information indicating the time when the component indicated by the component ID is incorporated in the device, and each information is associated with the device ID. It is characterized by being. As a result, it is possible to provide a program with increased reliability when manufacturing the device.
  • the startup information includes a device ID that can identify the device, verification time information indicating the time when the device activation step is performed, and the device activation process. It is characterized in that the information includes the hash value of the file used and the digital signature by the device, and each information is associated with the device ID. As a result, it is possible to provide a program with improved reliability at the time of starting the device.
  • the update time information includes a device ID that can identify the device, verification time information indicating the time when the device update process is performed, and the device update process. It is characterized in that the information includes the hash value of the file used and the digital signature by the device, and each information is associated with the device ID. As a result, it is possible to provide a program with improved reliability when updating the device.
  • the present invention is characterized in that, in a program, the bookkeeping means records the manufacturing time information in the distributed ledger when the device is manufactured by the manufacturing process. As a result, it is possible to provide a program with increased reliability when manufacturing the device.
  • the present invention is characterized in that, in a program, the bookkeeping means records the startup information in the distributed ledger when the device is activated by the activation step. As a result, it is possible to provide a program with improved reliability at the time of starting the device.
  • the present invention is characterized in that, in a program, the bookkeeping means records the update time information in the distributed ledger when the device is updated by the update step. As a result, it is possible to provide a program with improved reliability when updating the device.
  • the present invention is characterized in that, in a program, the bookkeeping means records the update information in the distributed ledger at predetermined time intervals. As a result, the status of the device can be confirmed at predetermined time intervals, and a program with enhanced device reliability can be provided.

Landscapes

  • Engineering & Computer Science (AREA)
  • Business, Economics & Management (AREA)
  • Theoretical Computer Science (AREA)
  • Entrepreneurship & Innovation (AREA)
  • Human Resources & Organizations (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • Marketing (AREA)
  • Economics (AREA)
  • Quality & Reliability (AREA)
  • Tourism & Hospitality (AREA)
  • Operations Research (AREA)
  • Data Mining & Analysis (AREA)
  • Library & Information Science (AREA)
  • Databases & Information Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Development Economics (AREA)
  • Finance (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
  • Debugging And Monitoring (AREA)

Abstract

Provided are a device management system, a device management method, an information processing apparatus, and a program which make it possible to improve the reliability of a device. The device management system comprises: a distributed ledger which is, for example, an IOTA tangle; a registering means that registers, in the distributed ledger, at least one of manufacture time information that is information pertaining to a process of manufacturing an IoT device, startup time information that is information pertaining to a process of starting up the IoT device, and update time information that is information pertaining to a process of updating the IoT device; and an information readout means that reads out the information registered in the distributed ledger.

Description

デバイス管理システム、デバイス管理方法、情報処理装置及びプログラムDevice management system, device management method, information processing device and program
 本発明は、デバイス管理システム、デバイス管理方法、情報処理装置及びプログラムに関する。 The present invention relates to a device management system, a device management method, an information processing device and a program.
 近年、IoT(Internet of Things)の普及に伴い、センサー、カメラ及び家電機器などのIoTデバイスをネットワークに接続し、これらのIoTデバイスを制御したり、IoTデバイスからのデータを活用したりする技術が広く用いられるようになってきている。IoTデバイスを活用するにあたっては、そのIoTデバイスが信頼できるものであることが求められる。IoTデバイスの信頼性を担保する情報としては、例えば、そのIoTデバイスがどのような部品を使ってどこで製造されたかといった製造時情報が含まれる。このような信頼性を担保する情報が求められるのは、IoTデバイスに限らず、他のあらゆるデバイスについても同様である。
 特許文献1に記載の発明では、半導体デバイスの管理装置において、半導体デバイスの製造工程の製造条件等の情報を、その半導体デバイスに形成した指紋模様パターンと関連付けてデータベースに記録する。この構成によれば、半導体デバイスに形成した指紋模様パターンを作為的に書き換えることが困難であることにより、その半導体デバイスの情報の信頼性を高めている。 In recent years, with the spread of IoT (Internet of Things), technologies for connecting IoT devices such as sensors, cameras, and home appliances to networks, controlling these IoT devices, and utilizing data from IoT devices have been developed. It is becoming widely used. In utilizing an IoT device, it is required that the IoT device is reliable. The information that guarantees the reliability of the IoT device includes, for example, manufacturing information such as what kind of component and where the IoT device was manufactured. Information that guarantees such reliability is required not only for IoT devices but also for all other devices.
In the invention described in Patent Document 1, in the semiconductor device management device, information such as manufacturing conditions of the semiconductor device manufacturing process is recorded in a database in association with a fingerprint pattern formed on the semiconductor device. According to this configuration, it is difficult to artificially rewrite the fingerprint pattern formed on the semiconductor device, thereby increasing the reliability of the information of the semiconductor device.
特開2014-146722号公報Japanese Unexamined Patent Publication No. 2014-146722
 しかしながら、特許文献1に記載の技術では、半導体デバイスの情報をデータベースによって確認する(トレースする)ことになるが、その際に半導体デバイスに形成された指紋模様パターンを観察する電子顕微鏡が必要であった。このため、電子顕微鏡を用意しなければ、指紋模様パターンが偽造されたものかどうかがわからず、特殊な環境においてのみ確認可能なものであった。また、特許文献1に記載の技術では、データベースの情報自体が書き換えられてしまうような場合については、何ら考慮されていないものであった。 However, in the technique described in Patent Document 1, information on the semiconductor device is confirmed (traced) by a database, and at that time, an electron microscope for observing the fingerprint pattern formed on the semiconductor device is required. It was. For this reason, unless an electron microscope is prepared, it is not possible to know whether or not the fingerprint pattern is forged, and it can be confirmed only in a special environment. Further, in the technique described in Patent Document 1, no consideration is given to the case where the information itself in the database is rewritten.
 本発明は、デバイスの信頼性を向上可能なデバイス管理システム、デバイス管理方法、情報処理装置及びプログラムを提供することを目的とする。 An object of the present invention is to provide a device management system, a device management method, an information processing device, and a program capable of improving the reliability of a device.
 本発明の一つの形態は、分散型台帳と、分散型台帳を構成する情報処理装置にネットワークを介して接続される第1の情報処理装置と、分散型台帳を構成する情報処理装置にネットワークを介して接続される第2の情報処理装置と、を備え、第1の情報処理装置は、ネットワークを介した通信を行う通信部と、デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、デバイスの起動工程に係る情報であってデバイスIDを含む起動時情報、及びデバイスの更新工程に係る情報であってデバイスIDを含む更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳する処理部と、を備え、第2の情報処理装置は、管理対象のデバイスのデバイスIDを取得し、取得したデバイスIDについての、製造時情報と起動時情報と更新時情報とのうち分散型台帳に記帳された情報の少なくとも1つを読み出して管理対象のデバイスの信頼性を確認する、デバイス管理システムである。
 本発明の一つの形態は、分散型台帳と、分散型台帳を構成する情報処理装置にネットワークを介して接続される第1の情報処理装置と、分散型台帳を構成する情報処理装置にネットワークを介して接続される第2の情報処理装置と、を備え、第1の情報処理装置は、
 ネットワークを介した通信を行う通信部と、デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、製造時情報が発生したことが検出された場合、製造時情報を分散型台帳に記帳する処理部と、を備え、第2の情報処理装置は、分散型台帳から製造時情報を読み出してデバイスの信頼性を確認する、デバイス管理システムである。
 本発明の一つの形態は、分散型台帳を構成する情報処理装置とネットワークを介した通信を行う通信部と、デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、デバイスの起動工程に係る情報であってデバイスIDを含む起動時情報、及びデバイスの更新工程に係る情報であってデバイスIDを含む更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳する処理部と、を備え、製造時情報と起動時情報と更新時情報とのうち分散型台帳に記帳された情報の少なくとも1つは、管理対象のデバイスの信頼性を確認する際に、管理対象のデバイスのデバイスIDに基づいて読み出される情報である、情報処理装置である。
 本発明の一つの形態は、分散型台帳を構成する情報処理装置とネットワークを介した通信を行う通信部と、デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、製造時情報が発生したことが検出された場合、製造時情報を分散型台帳に記帳する処理部と、を備え、分散型台帳に記帳された製造時情報は、管理対象のデバイスの信頼性を確認する際に読み出される情報である、情報処理装置である。
 本発明の一つの形態は、デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、デバイスの起動工程に係る情報であってデバイスIDを含む起動時情報、及びデバイスの更新工程に係る情報であってデバイスIDを含む更新時情報のうちの少なくとも一つの情報が記帳された分散型台帳を構成する情報処理装置とネットワークを介して接続され、管理対象のデバイスのデバイスIDを取得し、取得したデバイスIDについての、製造時情報と起動時情報と更新時情報とのうち分散型台帳に記帳された情報の少なくとも1つを読み出して管理対象のデバイスの信頼性を確認する、情報処理装置である。
 本発明の一つの形態は、分散型台帳にネットワークを介して接続される第1の情報処理装置の処理部によって、デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、デバイスの起動工程に係る情報であってデバイスIDを含む起動時情報、及びデバイスの更新工程に係る情報であってデバイスIDを含む更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳することと、分散型台帳にネットワークを介して接続される第2の情報処理装置によって、管理対象のデバイスのデバイスIDを取得し、取得したデバイスIDについての、製造時情報と起動時情報と更新時情報とのうち分散型台帳に記帳された情報の少なくとも1つを読み出して管理対象のデバイスの信頼性を確認することと、を有するデバイス管理方法である。
 本発明の一つの形態は、分散型台帳にネットワークを介して接続される第1の情報処理装置の処理部によって、デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、製造時情報が発生したことが検出された場合、製造時情報を分散型台帳に記帳することと、分散型台帳にネットワークを介して接続される第2の情報処理装置によって、分散型台帳から製造時情報を読み出してデバイスの信頼性を確認することと、を有するデバイス管理方法である。
 本発明の一つの形態は、分散型台帳を構成する情報処理装置にネットワークを介して接続されるコンピュータに、デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、デバイスの起動工程に係る情報であってデバイスIDを含む起動時情報、及びデバイスの更新工程に係る情報であってデバイスIDを含む更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳することを実行させ、製造時情報と起動時情報と更新時情報とのうち分散型台帳に記帳された情報の少なくとも1つは、管理対象のデバイスの信頼性を確認する際に、管理対象のデバイスのデバイスIDに基づいて読み出される情報である、プログラムである。
 本発明の一つの形態は、分散型台帳を構成する情報処理装置にネットワークを介して接続されるコンピュータに、デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、製造時情報が発生したことが検出された場合、製造時情報を分散型台帳に記帳することを実行させ、分散型台帳に記帳された製造時情報は、管理対象のデバイスの信頼性を確認する際に読み出される情報である、プログラムである。
 本発明の一つの形態は、デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、デバイスの起動工程に係る情報であってデバイスIDを含む起動時情報、及びデバイスの更新工程に係る情報であってデバイスIDを含む更新時情報のうちの少なくとも一つの情報が記帳された分散型台帳を構成する情報処理装置とネットワークに接続されるコンピュータに、管理対象のデバイスのデバイスIDを取得し、取得したデバイスIDについての、製造時情報と起動時情報と更新時情報とのうち分散型台帳に記帳された情報の少なくとも1つを読み出して管理対象のデバイスの信頼性を確認することを実行させる、プログラムである。 One embodiment of the present invention provides a network to a distributed ledger, a first information processing device connected to an information processing device constituting the distributed ledger via a network, and an information processing device constituting the distributed ledger. A second information processing device connected via a device is provided, and the first information processing device is information related to a communication unit that communicates via a network and a device manufacturing process, and can identify the device. At least one of manufacturing information including the device ID, information related to the device startup process and including the device ID, and information related to the device updating process and including the device ID. It is equipped with a processing unit that records information in a distributed ledger, and the second information processing device acquires the device ID of the device to be managed, and updates the acquired device ID with manufacturing information and startup information. It is a device management system that reads at least one of the information recorded in the distributed ledger among the time information and confirms the reliability of the managed device.
One embodiment of the present invention is to connect a network to a distributed ledger, a first information processing device connected to an information processing device constituting the distributed ledger via a network, and an information processing device constituting the distributed ledger. The first information processing device includes a second information processing device connected via the first information processing device.
It detects whether or not manufacturing time information, which is information related to the manufacturing process of the device, has been generated with the communication unit that communicates via the network, and if it is detected that manufacturing time information has occurred, the manufacturing time information is displayed. The second information processing apparatus is a device management system that includes a processing unit that records in a distributed ledger, and reads manufacturing time information from the distributed ledger to check the reliability of the device.
One embodiment of the present invention includes a communication unit that communicates with an information processing device constituting a distributed ledger via a network, and a device ID that is information related to a device manufacturing process and can identify the device at the time of manufacturing. At least one of information, information related to the device startup process and startup information including the device ID, and information related to the device update process and update time information including the device ID is stored in the distributed ledger. It is equipped with a processing unit for recording, and at least one of the information recorded in the distributed ledger among the manufacturing information, startup information, and update information is used when checking the reliability of the managed device. It is an information processing device that is information read out based on the device ID of the device to be managed.
One embodiment of the present invention detects whether or not manufacturing information, which is information related to the manufacturing process of a device, has been generated, and a communication unit that communicates with an information processing device constituting a distributed ledger via a network. , When it is detected that the manufacturing time information has been generated, it is equipped with a processing unit that records the manufacturing time information in the distributed ledger, and the manufacturing time information recorded in the distributed ledger is the reliability of the device to be managed. It is an information processing device which is information read when confirming.
One embodiment of the present invention is information related to a device manufacturing process and including a device ID that can identify the device, manufacturing information including a device ID, information related to a device activation process, and startup information including the device ID, and A device to be managed that is connected to an information processing device that constitutes a distributed ledger in which at least one of the update information including the device ID, which is information related to the device update process, is recorded via a network. Acquires the device ID, and reads at least one of the information recorded in the block chain among the manufacturing information, startup information, and update information for the acquired device ID to determine the reliability of the managed device. It is an information processing device to confirm.
One embodiment of the present invention is manufacturing including information related to a device manufacturing process and a device ID that can identify the device by the processing unit of the first information processing device connected to the distributed ledger via a network. A distributed ledger that contains at least one of the time information, the information related to the device startup process and the startup information including the device ID, and the information related to the device update process and the update time information including the device ID. The device ID of the device to be managed is acquired by the second information processing device connected to the distributed ledger via the network, and the manufacturing information and startup information of the acquired device ID are acquired. It is a device management method having to read at least one of the information recorded in the distributed ledger among the information at the time of update and to confirm the reliability of the device to be managed.
In one embodiment of the present invention, it is detected whether or not manufacturing time information, which is information related to the manufacturing process of the device, is generated by the processing unit of the first information processing device connected to the block chain via a network. However, when it is detected that the manufacturing time information has been generated, the manufacturing time information is recorded in the distributed ledger, and the distributed ledger is connected to the distributed ledger via a second information processing device via a network. It is a device management method that includes reading manufacturing information from and confirming the reliability of the device.
One embodiment of the present invention is manufacturing information including a device ID which is information related to a device manufacturing process and can identify a device to a computer connected to an information processing device constituting a distributed ledger via a network. , Information related to the device startup process and including the device ID, and at least one of the information related to the device update process and the update information including the device ID are recorded in the block chain. At least one of the manufacturing information, startup information, and update information recorded in the blockchain is managed when checking the reliability of the managed device. It is a program that is information read out based on the device ID of the device.
One embodiment of the present invention detects whether or not manufacturing time information, which is information related to the manufacturing process of a device, is generated in a computer connected to an information processing device constituting a distributed ledger via a network. When it is detected that the manufacturing information has been generated, the manufacturing information is recorded in the blockchain, and the manufacturing information recorded in the blockchain confirms the reliability of the managed device. It is a program that is information read at the time.
One embodiment of the present invention is information related to a device manufacturing process and including a device ID that can identify a device, manufacturing information including a device ID, information related to a device activation process, and startup information including a device ID, and A device to be managed by an information processing device and a computer connected to a network that form a distributed ledger in which at least one piece of update information including a device ID, which is information related to a device update process, is recorded. Device ID is acquired, and at least one of the information recorded in the distributed ledger among the manufacturing information, startup information, and update information for the acquired device ID is read out to determine the reliability of the managed device. It is a program that executes to confirm.
 本発明によれば、デバイスの信頼性を向上可能なデバイス管理システム、デバイス管理方法、情報処理装置及びプログラムを提供することができる。 According to the present invention, it is possible to provide a device management system, a device management method, an information processing device, and a program capable of improving the reliability of the device.
本発明の第1実施形態に係るデバイス管理システムの構成を示すブロック図である。It is a block diagram which shows the structure of the device management system which concerns on 1st Embodiment of this invention. 図1に示したデバイス管理システム1が管理するIoTデバイスについて示すブロック図である。It is a block diagram which shows about the IoT device managed by the device management system 1 shown in FIG. 図1に示した情報処理装置2の一例である端末装置の構成を示すブロック図である。It is a block diagram which shows the structure of the terminal apparatus which is an example of the information processing apparatus 2 shown in FIG. 図2に示したIoTデバイス5の一例であるデバイスの構成を示すブロック図である。It is a block diagram which shows the structure of the device which is an example of the IoT device 5 shown in FIG. 図1に示したデバイス管理システム1において、分散型台帳技術の一例を適用した構成について示す図である。It is a figure which shows the structure which applied an example of the distributed ledger technology in the device management system 1 shown in FIG. 図1に示したデバイス管理システム1において、管理対象のデバイスに関する情報を記帳する分散型台帳の一例であるタングルについて示す図である。It is a figure which shows the tangle which is an example of the distributed ledger which records the information about the device to be managed in the device management system 1 shown in FIG. 図1に示したデバイス管理システム1が管理するデバイスの製造時情報の記帳に係る構成を示すブロック図である。FIG. 3 is a block diagram showing a configuration related to bookkeeping of manufacturing information of a device managed by the device management system 1 shown in FIG. 1. 図1に示したデバイス管理システム1が管理するデバイスの製造時情報の記帳に係る処理を示すフローチャートである。FIG. 5 is a flowchart showing a process related to bookkeeping of manufacturing information of a device managed by the device management system 1 shown in FIG. 図1に示したデバイス管理システム1が管理するデバイスの起動時情報の記帳に係る構成を示すブロック図である。FIG. 5 is a block diagram showing a configuration related to bookkeeping of start-up information of a device managed by the device management system 1 shown in FIG. 図1に示したデバイス管理システム1が管理するデバイスの起動時情報の記帳に係る処理を示すフローチャートである。It is a flowchart which shows the process which concerns on the recording of the start-up information of the device managed by the device management system 1 shown in FIG. 図1に示したデバイス管理システム1が管理するデバイスの更新時情報の記帳に係る構成を示すブロック図である。FIG. 5 is a block diagram showing a configuration related to bookkeeping of update information of a device managed by the device management system 1 shown in FIG. 1. 図1に示したデバイス管理システム1が管理するデバイスの更新時情報の記帳に係る処理を示すフローチャートである。It is a flowchart which shows the process which concerns on the recording of the update information of the device managed by the device management system 1 shown in FIG. 図1に示したデバイス管理システム1が管理するデバイスの更新時情報を所定時間ごとに記帳する処理を示すフローチャートである。FIG. 5 is a flowchart showing a process of recording update information of a device managed by the device management system 1 shown in FIG. 1 at predetermined time intervals. 図1に示したデバイス管理システム1において、デバイス製造時用分散型台帳101及びデバイス変更履歴用分散型台帳102を参照する構成を示すブロック図である。FIG. 5 is a block diagram showing a configuration in which the device management system 1 shown in FIG. 1 refers to the device manufacturing time-use block chain 101 and the device change history block chain 102. 図1に示したデバイス管理システム1において、デバイス製造時用分散型台帳101及びデバイス変更履歴用分散型台帳102を参照する処理を示すフローチャートである。It is a flowchart which shows the process which refers to the block chain 101 for device manufacturing and the block chain 102 for device change history in the device management system 1 shown in FIG. 本発明によるデバイス管理システムを適用した実施例1の構成を示すブロック図である。It is a block diagram which shows the structure of Example 1 to which the device management system by this invention was applied. 本発明によるデバイス管理システムを適用した実施例2の構成を示すブロック図である。It is a block diagram which shows the structure of Example 2 which applied the device management system by this invention.
 以下、本発明によるデバイス管理システムの実施形態について、図面を参照して説明する。 Hereinafter, embodiments of the device management system according to the present invention will be described with reference to the drawings.
[第1実施形態]
 図1は、本発明の第1実施形態に係るデバイス管理システムの構成を示すブロック図である。本実施形態のデバイス管理システム1は、複数の情報処理装置2をネットワーク3で接続して構成される。ネットワーク3は、例えばP2P(ピア・ツー・ピア)型ネットワークである。ネットワーク3は、有線のネットワークであってもよいし、無線のネットワークであってもよい。ネットワーク3は、例えばインターネット網である。デバイス管理システム1は、分散型台帳技術(Distributed Ledger Technology)を利用する。複数の情報処理装置2のそれぞれは、分散型台帳技術におけるノードを構成する。本実施形態のデバイス管理システム1では、IOTA(アイオータ)のTangle(タングル)を分散型台帳として用いるが、本発明はこれに限られるものではなく、他の分散型台帳を用いてもよい。例えば、分散型台帳として、Ethereum(イーサリアム)のブロックチェーンを用いてもよい。 [First Embodiment]
FIG. 1 is a block diagram showing a configuration of a device management system according to the first embodiment of the present invention. The device management system 1 of the present embodiment is configured by connecting a plurality of information processing devices 2 via a network 3. The network 3 is, for example, a P2P (peer-to-peer) type network. The network 3 may be a wired network or a wireless network. The network 3 is, for example, an internet network. The device management system 1 utilizes a distributed ledger technology (Distributed Ledger Technology). Each of the plurality of information processing devices 2 constitutes a node in the distributed ledger technology. In the device management system 1 of the present embodiment, the Tangle of IOTA is used as a distributed ledger, but the present invention is not limited to this, and other distributed ledger may be used. For example, as a distributed ledger, an Ethereum blockchain may be used.
 図2は、図1に示したデバイス管理システム1が管理するIoTデバイスについて示すブロック図である。デバイス管理システム1はIoTデバイス5の管理を行う。IoTデバイス5は、ネットワーク4によって情報処理装置2と接続される。情報処理装置2は、IoTデバイス5の動作制御を行う。ネットワーク4は、有線のネットワークであってもよいし、無線のネットワークであってもよい。ネットワーク4は、例えばインターネット網である。IoTデバイス5は、温度、湿度、圧力、光量、音量などの自然現象や、物体の向きや位置の移動速度及びその加速度などの、既知の変動量を検出する如何なるセンサーであってもよい。また、IoTデバイス5は、周囲を撮影可能なカメラであってもよい。また、IoTデバイス5は、エアコンなどの家電製品、自動車、ロボットなど如何なる製品であってもよい。本実施形態のデバイス管理システム1では、管理するデバイスがIoTデバイスであるとするが、本発明はこれに限られるものではなく、本発明に係るデバイス管理システムでは、ネットワークで接続されないデバイスを管理するものであってもよい。IoTデバイス5は、分散型台帳技術におけるノードを構成するデバイスであってもよい。 FIG. 2 is a block diagram showing an IoT device managed by the device management system 1 shown in FIG. The device management system 1 manages the IoT device 5. The IoT device 5 is connected to the information processing device 2 by the network 4. The information processing device 2 controls the operation of the IoT device 5. The network 4 may be a wired network or a wireless network. The network 4 is, for example, an internet network. The IoT device 5 may be any sensor that detects a natural phenomenon such as temperature, humidity, pressure, light amount, and volume, and a known fluctuation amount such as a moving speed of an object or a position and its acceleration. Further, the IoT device 5 may be a camera capable of photographing the surroundings. Further, the IoT device 5 may be any product such as a home electric appliance such as an air conditioner, an automobile, or a robot. In the device management system 1 of the present embodiment, the device to be managed is an IoT device, but the present invention is not limited to this, and the device management system according to the present invention manages devices that are not connected by a network. It may be a thing. The IoT device 5 may be a device that constitutes a node in the distributed ledger technology.
 図3は、図1に示した情報処理装置2の一例である端末装置の構成を示すブロック図である。情報処理装置2は、一般にパソコンと呼ばれる装置であってもよく、ワークステーション、メインフレーム、或いはスーパーコンピュータと呼ばれる装置であってもよい。また、情報処理装置2は、スマートフォンやタブレットと呼ばれる装置であってもよい。また、情報処理装置2は、コンピュータの機能のほかに、センサー機能やカメラ機能といったそのデバイス特有の機能を有する各種デバイスであってもよい。ここでは、情報処理装置2の一例としての端末装置11の構成について説明する。端末装置11は、各種の処理を行う処理部12と、操作者に対する入出力を行う入出力部13と、処理部12で動作するプログラムや各種のデータを記憶する記憶部14と、ネットワーク3及びネットワーク4を介した通信を行う通信部15と、を有して構成される。なお、端末装置11は、本実施形態のデバイス管理システム1で管理されるデバイスであってもよい。インターネットに接続可能なすべての装置は、本実施形態のデバイス管理システム1による管理対象のIoTデバイスである。 FIG. 3 is a block diagram showing a configuration of a terminal device which is an example of the information processing device 2 shown in FIG. The information processing device 2 may be a device generally called a personal computer, a workstation, a mainframe, or a device called a supercomputer. Further, the information processing device 2 may be a device called a smartphone or a tablet. Further, the information processing device 2 may be various devices having a function peculiar to the device such as a sensor function and a camera function in addition to the function of the computer. Here, the configuration of the terminal device 11 as an example of the information processing device 2 will be described. The terminal device 11 includes a processing unit 12 that performs various processes, an input / output unit 13 that performs input / output to and from the operator, a storage unit 14 that stores programs and various data operated by the processing unit 12, a network 3, and a network 3. It is configured to include a communication unit 15 that performs communication via the network 4. The terminal device 11 may be a device managed by the device management system 1 of the present embodiment. All devices that can be connected to the Internet are IoT devices managed by the device management system 1 of the present embodiment.
 処理部12は、CPUやMPUと呼ばれる演算装置である。処理部12は、記憶部14に記憶されたプログラムを実行する。入出力部13は、キーボード、マウス、ディスプレイといった入出力装置である。記憶部14は、RAMやROM、ハードディスク、さらに磁気的記憶装置、光学的記憶装置など、既知のいかなる記憶装置であってもよい。複数の情報処理装置2のそれぞれは、すべて同じ構成であってもよいし、装置ごとに、他の装置と異なる構成を有するものであってもよい。 The processing unit 12 is an arithmetic unit called a CPU or MPU. The processing unit 12 executes the program stored in the storage unit 14. The input / output unit 13 is an input / output device such as a keyboard, a mouse, and a display. The storage unit 14 may be any known storage device such as a RAM, a ROM, a hard disk, a magnetic storage device, and an optical storage device. Each of the plurality of information processing devices 2 may have the same configuration, or each device may have a configuration different from that of the other devices.
 図4は、図2に示したIoTデバイス5の一例であるデバイスの構成を示すブロック図である。デバイス16は、各種の処理を行う処理部17と、そのデバイス特有の機能を実行するデバイス機能実行部18と、処理部17で動作するプログラムや各種のデータを記憶する記憶部19と、ネットワーク4を介した通信を行う通信部20と、を有して構成される。処理部17は、CPUやMPUと呼ばれる演算装置である。処理部17は、記憶部19に記憶されたプログラムを実行する。記憶部14は、RAMやROM、ハードディスク、さらに磁気的記憶装置、光学的記憶装置など、既知のいかなる記憶装置であってもよい。複数の情報処理装置2のそれぞれは、すべて同じ構成であってもよいし、装置ごとに、他の装置と異なる構成を有するものであってもよい。 FIG. 4 is a block diagram showing a device configuration which is an example of the IoT device 5 shown in FIG. The device 16 includes a processing unit 17 that performs various processes, a device function execution unit 18 that executes a function peculiar to the device, a storage unit 19 that stores programs and various data operated by the processing unit 17, and a network 4. It is configured to include a communication unit 20 that performs communication via the above. The processing unit 17 is an arithmetic unit called a CPU or MPU. The processing unit 17 executes the program stored in the storage unit 19. The storage unit 14 may be any known storage device such as a RAM, a ROM, a hard disk, a magnetic storage device, and an optical storage device. Each of the plurality of information processing devices 2 may have the same configuration, or each device may have a configuration different from that of the other devices.
 デバイス機能実行部18は、そのデバイス特有の機能を実行する構成である。デバイス16がセンサーである場合には、デバイス機能実行部18は、対象の検知を行う検知素子、及び検知素子を制御する制御部などを有する。デバイス16がカメラである場合には、デバイス機能実行部18は、周囲を撮像する撮像素子、撮像素子で得た撮像画像に対して画像処理を施す画像処理部、及び撮像素子や画像処理部を制御する制御部などを有する。デバイス16がエアコンである場合には、デバイス機能実行部18は、冷凍サイクルに係る各構成を駆動する駆動部、温度や湿度を検知する検知部、及び駆動部や検知部を制御する制御部などを有する。デバイス16が自動車である場合には、デバイス機能実行部18は、自動車の走行に係る各構成を駆動する駆動部、車外の安全性に関する状況や車内の快適性に関する状況などを検知する検知部、及び駆動部や検知部を制御する制御部などを有する。デバイス16がロボットである場合には、デバイス機能実行部18は、ロボットを駆動する駆動部、ロボットの周囲状況を検知する検知部、及び駆動部や検知部を制御する制御部などを有する。デバイス16がロボットである場合は、このロボットによって、本実施形態のデバイス管理システム1による管理対象のIoTデバイスを製造してもよい。このようにすることによって、より信頼性の高いIoTデバイスを製造することができる。 The device function execution unit 18 is configured to execute a function peculiar to the device. When the device 16 is a sensor, the device function execution unit 18 includes a detection element that detects an object, a control unit that controls the detection element, and the like. When the device 16 is a camera, the device function execution unit 18 includes an image sensor that images the surroundings, an image processing unit that performs image processing on the image captured by the image sensor, and an image sensor and an image processing unit. It has a control unit to control. When the device 16 is an air conditioner, the device function execution unit 18 includes a drive unit that drives each configuration related to the refrigeration cycle, a detection unit that detects temperature and humidity, and a control unit that controls the drive unit and the detection unit. Has. When the device 16 is an automobile, the device function execution unit 18 is a drive unit that drives each configuration related to the running of the automobile, a detection unit that detects a situation related to safety outside the vehicle, a situation related to comfort inside the vehicle, and the like. It also has a control unit that controls a drive unit and a detection unit. When the device 16 is a robot, the device function execution unit 18 includes a drive unit that drives the robot, a detection unit that detects the surrounding conditions of the robot, and a control unit that controls the drive unit and the detection unit. When the device 16 is a robot, the robot may manufacture an IoT device to be managed by the device management system 1 of the present embodiment. By doing so, a more reliable IoT device can be manufactured.
 図5は、図1に示したデバイス管理システム1において、分散型台帳技術の一例を適用した構成について示す図である。本実施形態のデバイス管理システム1では、ノードとして、分散型台帳の一例であるタングルを有するフルノードと、タングルを有しないライトウォレットと、を有する。フルノードは自身が有するタングルと、他のフルノードが有するタングルとを同期させる。ライトウォレットは、ライトノードとも呼ばれる。ここでは、ライトウォレットをライトノードと呼ぶ。ライトノードは、自身でタングルを有しない分、タングルの管理などが不要なので動作上の負担が小さくて済むが、フルノードから情報を得て動作する場合にはわずかながら通信時間による処理の遅延が生じるおそれがある。フルノードでは、自身でタングルを管理する負担があるが、自身が有するタングルを用いることで通信の必要がなく、他の装置に依存せず動作可能である。なお、デバイス管理システム1においては、各装置間又は各装置内で生じる情報の授受に対して課金するようにしてもよい。わずかな情報の授受では課金額もわずかであるが、仮想通貨であるIOTAで課金額の支払いをすることで、マイクロペイメントに適したシステムを構築することができる。情報処理装置2、IoTデバイス5、端末装置11、デバイス16は、フルノードであってもよいし、ライトノードであってもよい。 FIG. 5 is a diagram showing a configuration in which an example of the distributed ledger technology is applied in the device management system 1 shown in FIG. The device management system 1 of the present embodiment has, as nodes, a full node having a tangle, which is an example of a distributed ledger, and a light wallet having no tangle. A full node synchronizes its own tangle with the tangles of other full nodes. A light wallet is also called a light node. Here, the light wallet is called a light node. Since the light node does not have a tangle by itself, there is no need to manage the tangle, so the operational burden is small, but when operating with information obtained from the full node, there is a slight delay in processing due to communication time. There is a risk. In a full node, there is a burden of managing the tangle by itself, but by using the tangle of its own, there is no need for communication and it is possible to operate without depending on other devices. In the device management system 1, charges may be charged for the exchange of information between or within each device. Although the amount charged for sending and receiving a small amount of information is small, it is possible to build a system suitable for micropayment by paying the amount charged with IOTA, which is a virtual currency. The information processing device 2, the IoT device 5, the terminal device 11, and the device 16 may be full nodes or light nodes.
 図6は、図1に示したデバイス管理システム1において、管理対象のデバイスに関する情報を記帳する分散型台帳の一例であるタングルについて示す図である。タングルは、DAG(有向非巡回グラフ)を用いている。図1に示したデバイス管理システム1において、分散型台帳に情報を記帳するということは、タングルにトランザクション(TX)を記録することになる。新たなトランザクションを記録する際には、プルーフオブワーク(PoW)が実行される。IOTAのタングルを分散型台帳として用いることで、分散型台帳への記帳速度を速くすることができる。 FIG. 6 is a diagram showing a tangle which is an example of a distributed ledger for recording information about a device to be managed in the device management system 1 shown in FIG. The tangle uses a DAG (Directed Acyclic Graph). In the device management system 1 shown in FIG. 1, recording information in the distributed ledger means recording a transaction (TX) in the tangle. Proof of work (PoW) is performed when recording a new transaction. By using the IOTA tangle as a blockchain, the speed of posting to the blockchain can be increased.
 図7は、図1に示したデバイス管理システム1が管理するデバイスの製造時情報の記帳に係る構成を示すブロック図である。デバイス製造時用分散型台帳101は、デバイス管理システム1が管理するデバイス(以下、「管理対象デバイス」という)の製造工程に係る情報である製造時情報を記帳する分散型台帳である。デバイス製造時用分散型台帳101は、デバイス管理システム1を構成するフルノードが有するタングルである。端末装置11は、製造時情報16aをデバイス製造時用分散型台帳101に記帳する。製造時情報16aは、デバイス製造時用分散型台帳101におけるトランザクションである。製造時情報16aは、管理対象デバイスを製造する際の情報である。製造時情報16aは、管理対象デバイスの製造工程において、管理対象デバイスを構成する部品が選択され、組付けられる都度、発生する。例えば、管理対象デバイスの製造工程において、管理対象デバイスを構成する部品である回路基板Aが選択され、回路基板Aに電子部品B(CPU、メモリ等)が実装された場合、その管理対象デバイスに対し、回路基板Aについての製造時情報16aが発生するとともに、電子部品Bについての製造時情報16aが発生する。 FIG. 7 is a block diagram showing a configuration related to bookkeeping of manufacturing information of the device managed by the device management system 1 shown in FIG. The device manufacturing blockchain 101 is a blockchain that records manufacturing information, which is information related to the manufacturing process of a device managed by the device management system 1 (hereinafter, referred to as “managed device”). The device manufacturing distributed ledger 101 is a tangle possessed by the full nodes constituting the device management system 1. The terminal device 11 records the manufacturing time information 16a in the device manufacturing time distributed ledger 101. The manufacturing time information 16a is a transaction in the device manufacturing time distribution ledger 101. The manufacturing information 16a is information when manufacturing the managed device. The manufacturing time information 16a is generated each time the parts constituting the managed device are selected and assembled in the manufacturing process of the managed device. For example, in the manufacturing process of a managed device, when the circuit board A, which is a component constituting the managed device, is selected and the electronic component B (CPU, memory, etc.) is mounted on the circuit board A, the managed device is used. On the other hand, the manufacturing information 16a for the circuit board A is generated, and the manufacturing information 16a for the electronic component B is generated.
 製造時情報16aは、管理対象デバイスを特定可能なデバイスIDと、管理対象デバイスを構成する部品を特定可能な部品IDと、部品IDが示す部品を管理対象デバイスに組み入れた製造ラインを特定可能な製造ラインIDと、部品IDが示す部品を管理対象デバイスに組み入れた時刻を示す製造時刻情報とを含む。また、製造時情報16aは、部品ID、製造ラインID及び製造時刻情報を、デバイスIDに紐付けた情報である。製造ラインIDは、作業者または製造装置を特定するため、作業者担当者IDまたは製造装置(ロボット)IDを含んでもよい。 The manufacturing information 16a can specify a device ID that can identify the managed device, a component ID that can identify the parts constituting the managed device, and a manufacturing line that incorporates the component indicated by the component ID into the managed device. The production line ID and the production time information indicating the time when the component indicated by the component ID is incorporated into the managed device are included. Further, the manufacturing time information 16a is information in which the part ID, the manufacturing line ID, and the manufacturing time information are associated with the device ID. The manufacturing line ID may include a worker person in charge ID or a manufacturing device (robot) ID in order to identify a worker or a manufacturing device.
 図8は、図1に示したデバイス管理システム1が管理するデバイスの製造時情報の記帳に係る処理を示すフローチャートである。図8は、端末装置11が実行する処理を示す。まず、端末装置11の処理部12は、新たに発生した製造時情報16aがあるか否かを検出する(ステップS801)。製造時情報16aは、製造担当者が端末装置11の入出力部13を操作して端末装置11に入力してもよい。また、ロボットが管理対象デバイスを製造する場合には、そのロボットが端末装置11の通信部15を介して端末装置11に製造時情報16aを入力してもよい。 FIG. 8 is a flowchart showing a process related to bookkeeping of manufacturing information of the device managed by the device management system 1 shown in FIG. FIG. 8 shows a process executed by the terminal device 11. First, the processing unit 12 of the terminal device 11 detects whether or not there is newly generated manufacturing time information 16a (step S801). The manufacturing person may operate the input / output unit 13 of the terminal device 11 to input the manufacturing information 16a to the terminal device 11. Further, when the robot manufactures the managed device, the robot may input the manufacturing time information 16a to the terminal device 11 via the communication unit 15 of the terminal device 11.
 ステップS801において、新たに発生した製造時情報16aがある場合には、処理部12は、デバイス製造時用分散型台帳101に今回の製造時情報16aを記帳し(ステップS802)、処理を終了する。ステップS801において、新たに発生した製造時情報16aがない場合には、処理部12は、そのまま処理を終了する。なお、デバイス製造時用分散型台帳101に記帳する端末装置11は、情報処理装置2、IoTデバイス5又はデバイス16のいずれかであってもよいし、管理対象デバイス自身であってもよい。一般に、デバイス製造工程は、部品の実装、組み立て、検査など複数の工程に分かれる。製造時情報16aは、工程ごとに記録してもよいし、最終の組み立て・検査工程で少なくとも一回記録してもよい。 If there is newly generated manufacturing time information 16a in step S801, the processing unit 12 records the manufacturing time information 16a in the device manufacturing time distribution ledger 101 (step S802), and ends the process. .. If there is no newly generated manufacturing information 16a in step S801, the processing unit 12 ends the processing as it is. The terminal device 11 recorded in the device manufacturing distributed ledger 101 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself. Generally, the device manufacturing process is divided into a plurality of processes such as component mounting, assembly, and inspection. The manufacturing information 16a may be recorded for each process, or may be recorded at least once in the final assembly / inspection process.
 図9は、図1に示したデバイス管理システム1が管理するデバイスの起動時情報の記帳に係る構成を示すブロック図である。デバイス変更履歴用分散型台帳102は、管理対象デバイスの起動工程に係る情報である起動時情報16bを記帳する分散型台帳である。デバイス変更履歴用分散型台帳102は、デバイス管理システム1を構成するフルノードが有するタングルである。デバイス変更履歴用分散型台帳102は、デバイス製造時用分散型台帳101と同じ分散型台帳であってもよい。端末装置11は、起動時情報16bをデバイス変更履歴用分散型台帳102に記帳する。起動時情報16bは、デバイス変更履歴用分散型台帳102におけるトランザクションである。起動時情報16bは、管理対象デバイスを起動する際の情報である。製造工程において製造された管理対象デバイスは、起動時に起動工程を実施する。この起動工程では、管理対象デバイスを初期化して起動する。本実施形態では、管理対象デバイスは、プログラムを記憶したROM、ROMに記憶したプログラムを実行するCPUおよびセキュアエレメントを有する。セキュアエレメントは耐タンパー性を有するTPM(Trusted Platform Module)、SIM(Subscriber Identity Module)、SAM(Secure Application Module)であってもよいし、既知の他の如何なる構成を設けてもよい。セキュアエレメントは、デジタル署名の検証鍵を保存できる機能を有していれば、必ずしも耐タンパー性を備えている必要は無く、例えばCPU内に通常のメモリとは別に存在するTrustZoneと呼ばれる仕組みを使ってもよい。管理対象デバイスの起動工程が実施されると、起動時情報16bが発生する。 FIG. 9 is a block diagram showing a configuration related to bookkeeping of device startup information managed by the device management system 1 shown in FIG. The device change history distributed ledger 102 is a distributed ledger for recording startup information 16b, which is information related to the startup process of the managed device. The device change history distributed ledger 102 is a tangle possessed by the full nodes constituting the device management system 1. The device change history distributed ledger 102 may be the same distributed ledger as the device manufacturing distributed ledger 101. The terminal device 11 records the startup information 16b in the device change history distributed ledger 102. The startup information 16b is a transaction in the device change history distributed ledger 102. The startup information 16b is information when the managed device is activated. The managed device manufactured in the manufacturing process performs the activation process at the time of activation. In this activation process, the managed device is initialized and activated. In the present embodiment, the managed device has a ROM that stores the program, a CPU that executes the program stored in the ROM, and a secure element. The secure element may be a TPM (Trusted Platform Module) having tamper resistance, a SIM (Subscriber Identity Module), a SAM (Security Application Module), or any other known configuration. The secure element does not necessarily have to have tamper resistance as long as it has a function that can store the verification key of the digital signature. For example, it uses a mechanism called TrustZone that exists in the CPU separately from the normal memory. You may. When the activation process of the managed device is executed, the activation information 16b is generated.
 起動時情報16bは、管理対象デバイスを特定可能なデバイスIDと、管理対象デバイスの起動工程を実施した時刻を示す検証時刻情報と、管理対象デバイスの起動工程に用いたプログラムやデータのファイルのハッシュ値と、管理対象デバイスによるデジタル署名と、を含む。また、起動時情報16bは、検証時刻情報、ハッシュ値及びデジタル署名を、デバイスIDに紐付けた情報である。 The startup information 16b includes a device ID that can identify the managed device, verification time information indicating the time when the startup process of the managed device was performed, and a hash of a file of a program or data used in the startup process of the managed device. Includes values and digital signatures by managed devices. Further, the startup information 16b is information in which the verification time information, the hash value, and the digital signature are associated with the device ID.
 図10は、図1に示したデバイス管理システム1が管理するデバイスの起動時情報の記帳に係る処理を示すフローチャートである。図10は、端末装置11が実行する処理を示す。まず、端末装置11の処理部12は、新たに発生した起動時情報16bがあるか否かを検出する(ステップS1001)。管理対象デバイスは、端末装置11の通信部15を介して、起動時情報16bを端末装置11に入力してもよい。なお、管理対象デバイス自身が、起動時情報16bをデバイス変更履歴用分散型台帳102に記帳してもよい。 FIG. 10 is a flowchart showing a process related to bookkeeping of device startup information managed by the device management system 1 shown in FIG. FIG. 10 shows a process executed by the terminal device 11. First, the processing unit 12 of the terminal device 11 detects whether or not there is newly generated start-up information 16b (step S1001). The managed device may input the startup information 16b into the terminal device 11 via the communication unit 15 of the terminal device 11. The managed device itself may record the startup information 16b in the device change history distributed ledger 102.
 ステップS1001において、新たに発生した起動時情報16bがある場合には、処理部12は、デバイス変更履歴用分散型台帳102に今回の起動時情報16bを記帳し(ステップS1002)、処理を終了する。ステップS1001において、新たに発生した起動時情報16bがない場合には、処理部12は、そのまま処理を終了する。なお、デバイス変更履歴用分散型台帳102に記帳する端末装置11は、情報処理装置2、IoTデバイス5又はデバイス16のいずれかであってもよいし、管理対象デバイス自身であってもよい。 If there is newly generated startup information 16b in step S1001, the processing unit 12 records the current startup information 16b in the device change history distributed ledger 102 (step S1002), and ends the process. .. In step S1001, if there is no newly generated start-up information 16b, the processing unit 12 ends the processing as it is. The terminal device 11 recorded in the device change history distributed ledger 102 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself.
 図11は、図1に示したデバイス管理システム1が管理するデバイスの更新時情報の記帳に係る構成を示すブロック図である。デバイス変更履歴用分散型台帳102は、起動時情報16bに加えて、管理対象デバイスの更新工程に係る情報である更新時情報16cを記帳する分散型台帳である。デバイス変更履歴用分散型台帳102は、デバイス管理システム1を構成するフルノードが有するタングルである。端末装置11は、更新時情報16cをデバイス変更履歴用分散型台帳102に記帳する。更新時情報16cは、デバイス変更履歴用分散型台帳102におけるトランザクションである。更新時情報16cは、管理対象デバイスを更新する際の情報である。起動工程において起動された管理対象デバイスは、動作中に、プログラムの更新を行う更新工程を実施する。例えば、管理対象デバイスは、ファームウェアのパッチ、管理対象デバイス特有の機能において新機能を追加するプログラム、バグを修正するプログラム、及び各種データ等をインターネット経由で受信し、受信したプログラム等で、管理対象デバイスで実行するプログラムを更新する。本実施形態では、管理対象デバイスは、管理対象デバイスで実行するファームウェア(FW)、及び管理対象デバイスで実行するプログラムや実行に際して利用するデータのファイル(File)を有する。なお、ファームウェアもプログラムの一種である。管理対象デバイスの更新工程が実施されると、更新時情報16cが発生する。管理対象デバイスの更新工程は、例えば端末装置11により管理対象デバイスのファームウェアやコンフィグファイルのアップデートを含んでもよい。この場合、端末装置11は、アップデートに関する更新時情報16cをデバイス変更履歴用分散型台帳102に記帳する。 FIG. 11 is a block diagram showing a configuration related to bookkeeping of update information of the device managed by the device management system 1 shown in FIG. The device change history distributed ledger 102 is a distributed ledger that records the update information 16c, which is information related to the update process of the managed device, in addition to the startup information 16b. The device change history distributed ledger 102 is a tangle possessed by the full nodes constituting the device management system 1. The terminal device 11 records the update information 16c in the device change history distributed ledger 102. The update information 16c is a transaction in the device change history distributed ledger 102. The update information 16c is information when updating the managed device. The managed device activated in the activation process executes an update process for updating the program during operation. For example, a managed device is a program that receives firmware patches, programs that add new functions in functions specific to managed devices, programs that fix bugs, and various data via the Internet, and is managed. Update the program that runs on the device. In the present embodiment, the managed device has a firmware (FW) executed by the managed device, a program executed by the managed device, and a data file (File) used for execution. Firmware is also a type of program. When the update process of the managed device is executed, the update information 16c is generated. The process of updating the managed device may include updating the firmware and the config file of the managed device by, for example, the terminal device 11. In this case, the terminal device 11 records the update information 16c regarding the update in the device change history distributed ledger 102.
 更新時情報16cは、管理対象デバイスを特定可能なデバイスIDと、管理対象デバイスの更新工程を実施した時刻を示す検証時刻情報と、管理対象デバイスの更新工程に用いたプログラムやデータのファイルのハッシュ値と、管理対象デバイスによるデジタル署名と、を含む。また、更新時情報16cは、検証時刻情報、ハッシュ値及びデジタル署名を、デバイスIDに紐付けた情報である。 The update information 16c includes a device ID that can identify the managed device, verification time information indicating the time when the update process of the managed device was performed, and a hash of a file of a program or data used in the update process of the managed device. Includes values and digital signatures by managed devices. Further, the update information 16c is information in which the verification time information, the hash value, and the digital signature are associated with the device ID.
 図12は、図1に示したデバイス管理システム1が管理するデバイスの更新時情報の記帳に係る処理を示すフローチャートである。図12は、端末装置11が実行する処理を示す。まず、端末装置11の処理部12は、新たに発生した更新時情報16cがあるか否かを検出する(ステップS1201)。管理対象デバイスは、端末装置11の通信部15を介して、更新時情報16cを端末装置11に入力してもよい。なお、管理対象デバイス自身が、更新時情報16cをデバイス変更履歴用分散型台帳102に記帳してもよい。 FIG. 12 is a flowchart showing a process related to bookkeeping of update information of the device managed by the device management system 1 shown in FIG. FIG. 12 shows a process executed by the terminal device 11. First, the processing unit 12 of the terminal device 11 detects whether or not there is newly generated update information 16c (step S1201). The managed device may input the update information 16c to the terminal device 11 via the communication unit 15 of the terminal device 11. The managed device itself may record the update information 16c in the device change history distributed ledger 102.
 ステップS1201において、新たに発生した更新時情報16cがある場合には、処理部12は、デバイス変更履歴用分散型台帳102に今回の更新時情報16cを記帳し(ステップS1202)、処理を終了する。ステップS1201において、新たに発生した更新時情報16cがない場合には、処理部12は、そのまま処理を終了する。なお、デバイス変更履歴用分散型台帳102に記帳する端末装置11は、情報処理装置2、IoTデバイス5又はデバイス16のいずれかであってもよいし、管理対象デバイス自身であってもよい。 If there is newly generated update information 16c in step S1201, the processing unit 12 records the current update information 16c in the device change history distributed ledger 102 (step S1202), and ends the process. .. In step S1201, if there is no newly generated update information 16c, the processing unit 12 ends the processing as it is. The terminal device 11 recorded in the device change history distributed ledger 102 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself.
 なお、端末装置11は、新たな更新時情報16cがある場合(更新がされたとき)だけではなく、更新がされていなくても所定時間ごとに、現在の管理対象デバイスの状態を示す更新時情報16cをデバイス変更履歴用分散型台帳102に記帳するようにしてもよい。現在の管理対象デバイスの状態を示す更新時情報16cは、管理対象デバイスを特定可能なデバイスIDと、現在の時刻を示す検証時刻情報と、管理対象デバイスで現在実行されているプログラムやデータのファイルのハッシュ値と、管理対象デバイスによるデジタル署名と、を含む。また、更新時情報16cは、検証時刻情報、ハッシュ値及びデジタル署名を、デバイスIDに紐付けた情報である。 It should be noted that the terminal device 11 is not only when there is new update information 16c (when it is updated), but also when it is updated to indicate the current state of the managed device at predetermined time intervals even if it is not updated. The information 16c may be recorded in the device change history distributed ledger 102. The update information 16c indicating the status of the current managed device includes a device ID that can identify the managed device, verification time information indicating the current time, and a file of programs and data currently being executed on the managed device. Includes the hash value of and the digital signature of the managed device. Further, the update information 16c is information in which the verification time information, the hash value, and the digital signature are associated with the device ID.
 図13は、図1に示したデバイス管理システム1が管理するデバイスの更新時情報を所定時間ごとに記帳する処理を示すフローチャートである。図13は、端末装置11が実行する処理を示す。まず、端末装置11の処理部12は、前回の更新時情報16cの記帳から所定時間経過したかを確認する(ステップS1301)。なお、ステップS1301で判定する所定時間は、管理対象デバイスが改竄されるおそれがある頻度に応じて定めるようにしてもよい。また、所定時間は一定の時間にしてもよいし、変動させてもよい。管理対象デバイスは、端末装置11の通信部15を介して、更新時情報16cを端末装置11に入力してもよい。なお、管理対象デバイス自身が、更新時情報16cをデバイス変更履歴用分散型台帳102に記帳してもよい。 FIG. 13 is a flowchart showing a process of recording update information of the device managed by the device management system 1 shown in FIG. 1 at predetermined time intervals. FIG. 13 shows a process executed by the terminal device 11. First, the processing unit 12 of the terminal device 11 confirms whether a predetermined time has elapsed from the recording of the previous update information 16c (step S1301). The predetermined time determined in step S1301 may be determined according to the frequency at which the managed device may be tampered with. Further, the predetermined time may be a fixed time or may be changed. The managed device may input the update information 16c to the terminal device 11 via the communication unit 15 of the terminal device 11. The managed device itself may record the update information 16c in the device change history distributed ledger 102.
 ステップS1301において、所定時間経過した場合には、処理部12は、デバイス変更履歴用分散型台帳102に今回の起動時情報16bを記帳し(ステップS1302)、処理を終了する。ステップS1301において、所定時間経過しない場合には、処理部12は、そのまま処理を終了する。なお、デバイス変更履歴用分散型台帳102に記帳する端末装置11は、情報処理装置2、IoTデバイス5又はデバイス16のいずれかであってもよいし、管理対象デバイス自身であってもよい。図13に示した処理によれば、管理対象デバイスが更新されているにもかかわらず、更新されていない状態を装う改竄に対しても対応することができ、管理対象デバイスの現在の状況が正しくデバイス変更履歴用分散型台帳102に反映される。 In step S1301, when the predetermined time has elapsed, the processing unit 12 records the current startup information 16b in the device change history distributed ledger 102 (step S1302), and ends the process. If the predetermined time does not elapse in step S1301, the processing unit 12 ends the processing as it is. The terminal device 11 recorded in the device change history distributed ledger 102 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself. According to the process shown in FIG. 13, even though the managed device has been updated, it is possible to respond to tampering that pretends to be in an unupdated state, and the current status of the managed device is correct. It is reflected in the device change history distributed ledger 102.
 図14は、図1に示したデバイス管理システム1において、デバイス製造時用分散型台帳101及びデバイス変更履歴用分散型台帳102を参照する構成を示すブロック図である。デバイス管理システム1において、例えば端末装置11は、デバイス製造時用分散型台帳101に記帳された製造時情報16a、デバイス変更履歴用分散型台帳102に記帳された起動時情報16b、及びデバイス変更履歴用分散型台帳102に記帳された更新時情報16cを参照する。 FIG. 14 is a block diagram showing a configuration in which the device management system 1 shown in FIG. 1 refers to the device manufacturing time distributed ledger 101 and the device change history distributed ledger 102. In the device management system 1, for example, the terminal device 11 has a manufacturing time information 16a recorded in the device manufacturing distributed ledger 101, a startup information 16b recorded in the device change history distributed ledger 102, and a device change history. Refer to the update information 16c recorded in the distributed ledger 102.
 図15は、図1に示したデバイス管理システム1において、デバイス製造時用分散型台帳101及びデバイス変更履歴用分散型台帳102を参照する処理を示すフローチャートである。図15は、端末装置11が実行する処理を示す。まず、端末装置11は、管理対象デバイスの信頼性を確認する処理が発生したかを判定する(ステップS1501)。管理対象デバイスの信頼性を確認する処理とは、例えば、ある管理対象デバイスの動作に何らかの不審な動きがあったときに、その管理対象デバイスの状態を確認する処理を含む。管理対象デバイスの信頼性を確認する処理とは、例えば、ある管理対象デバイスからのデータを利用する際に、その管理対象デバイスの信頼性を確認する処理を含む。管理対象デバイスの信頼性を確認する処理とは、例えば、ある管理対象デバイスを駆動制御する際に、その管理対象デバイスの信頼性を確認する処理を含む。管理対象デバイスの信頼性を確認する処理とは、例えば、ある管理対象デバイスの監査などが必要になったときに、その管理対象デバイスの状態を確認する処理を含む。 FIG. 15 is a flowchart showing a process of referring to the device manufacturing time distributed ledger 101 and the device change history distributed ledger 102 in the device management system 1 shown in FIG. FIG. 15 shows a process executed by the terminal device 11. First, the terminal device 11 determines whether or not a process for confirming the reliability of the managed device has occurred (step S1501). The process of confirming the reliability of a managed device includes, for example, a process of confirming the state of the managed device when there is some suspicious movement in the operation of the managed device. The process of confirming the reliability of a managed device includes, for example, a process of confirming the reliability of the managed device when using data from a certain managed device. The process of confirming the reliability of the managed device includes, for example, a process of confirming the reliability of the managed device when driving and controlling a certain managed device. The process of confirming the reliability of a managed device includes, for example, a process of confirming the status of a managed device when an audit of the managed device becomes necessary.
 ステップS1501において、管理対象デバイスの信頼性を確認する処理が発生していない場合には、端末装置11は、そのまま処理を終了する。ステップS1501において、管理対象デバイスの信頼性を確認する処理が発生した場合には、ステップS1502において、端末装置11は、今回信頼性を確認する管理対象デバイスがどのデバイスなのかを特定するデバイスIDを取得する。このデバイスIDの取得は、入出力部13から入力されることで取得してもよいし、通信部15を介して外部から受信することで取得してもよいし、記憶部14から読み出してくることで取得してもよい。さらに、ステップS1502において、端末装置11は、取得したデバイスIDについての製造時情報16aをデバイス製造時用分散型台帳101から読み出し、取得したデバイスIDについての起動時情報16bをデバイス変更履歴用分散型台帳102から読み出し、取得したデバイスIDについての更新時情報16cをデバイス変更履歴用分散型台帳102から読み出す。 If the process of confirming the reliability of the managed device has not occurred in step S1501, the terminal device 11 ends the process as it is. When a process for confirming the reliability of the managed device occurs in step S1501, in step S1502, the terminal device 11 assigns a device ID for specifying which device is the managed device for which the reliability is confirmed this time. get. The device ID may be acquired by being input from the input / output unit 13, may be acquired by receiving from the outside via the communication unit 15, or may be read from the storage unit 14. You may get it by. Further, in step S1502, the terminal device 11 reads the manufacturing time information 16a about the acquired device ID from the device manufacturing time distribution type ledger 101, and reads the acquired device ID startup information 16b from the device change history distribution type. Read from the ledger 102, and read the updated information 16c about the acquired device ID from the device change history distributed ledger 102.
 続いて、端末装置11は、ステップS1501で読み出した製造時情報16a、起動時情報16b及び更新時情報16cを判定し、管理対象デバイスの現在の信頼性を確認する(ステップS1503)。ステップS1504では、ステップS1503の判定結果である、管理対象デバイスの現在の信頼性に基づいた制御を行った後、処理を終了する。例えば、デバイス製造時用分散型台帳101から読み出した製造時情報16aに、当初予定した部品以外の部品についての情報が含まれていた場合には、その管理対象デバイスを利用しない制御を行うことができる。また、例えば、デバイス変更履歴用分散型台帳102から読み出した更新時情報16cに、非正規のアップデートについての情報が含まれていた場合には、その管理対象デバイスを利用しない制御を行うことができる。また、例えば、製造時情報16a、起動時情報16b及び更新時情報16cに何ら不審な点が無ければ、その管理対象デバイスが信頼できるデバイスであるとして利用する制御を行うことができる。なお、図15の処理を実行する端末装置11は、情報処理装置2、IoTデバイス5又はデバイス16のいずれかであってもよいし、管理対象デバイス自身であってもよい。このように本実施形態によれば、管理対象デバイスに対してトレーサビリティな環境を提供することができる。また、本実施形態によれば、第三者に対して、管理対象デバイスが正当なデバイスであることを主張する根拠を提供することができる。 Subsequently, the terminal device 11 determines the manufacturing information 16a, the startup information 16b, and the update information 16c read in step S1501 and confirms the current reliability of the managed device (step S1503). In step S1504, the process is terminated after performing control based on the current reliability of the managed device, which is the determination result of step S1503. For example, if the manufacturing information 16a read from the device manufacturing blockchain 101 contains information about parts other than the originally planned parts, it is possible to perform control without using the managed device. it can. Further, for example, when the update information 16c read from the device change history distributed ledger 102 includes information about a non-genuine update, control can be performed without using the managed device. .. Further, for example, if there is no suspicious point in the manufacturing information 16a, the startup information 16b, and the updating information 16c, it is possible to control the managed device to be used as a reliable device. The terminal device 11 that executes the process of FIG. 15 may be either the information processing device 2, the IoT device 5, or the device 16, or may be the managed device itself. As described above, according to the present embodiment, it is possible to provide a traceable environment for the managed device. Further, according to the present embodiment, it is possible to provide a third party with a basis for claiming that the managed device is a legitimate device.
 図16は、本発明によるデバイス管理システムを適用した実施例1の構成を示すブロック図である。本実施例は、本発明によるデバイス管理システムを、人物の足跡を追う人物追跡システムに適用した例である。人物追跡システム1600は、管理対象デバイスである監視カメラ1606、1607及び1608を有する。監視カメラ1606、1607及び1608の製造時、起動時及び更新時の情報は、随時分散型台帳1602に記帳される。監視カメラ1606、1607及び1608の信頼性は分散型台帳1602によって保証される。分散型台帳1602は、信頼できるデバイス足る根拠となるエビデンスが記帳された分散型台帳1601を参照する。 FIG. 16 is a block diagram showing a configuration of Example 1 to which the device management system according to the present invention is applied. The present embodiment is an example in which the device management system according to the present invention is applied to a person tracking system that tracks the footprints of a person. The person tracking system 1600 has surveillance cameras 1606, 1607 and 1608 that are managed devices. Information at the time of manufacture, start-up, and update of the surveillance cameras 1606, 1607, and 1608 is recorded in the distributed ledger 1602 at any time. The reliability of surveillance cameras 1606, 1607 and 1608 is guaranteed by the blockchain 1602. The decentralized ledger 1602 refers to the decentralized ledger 1601 in which the evidence on which the reliable device is sufficient is recorded.
 人物1605の顔画像は分散型台帳1604に記帳されている。監視カメラ1606、1607及び1608は、分散型台帳1604に記帳された顔画像と、自身が撮影した人物の顔画像とを突合することで、人物1605が監視カメラ1606、1607及び1608の設置位置を通過したという行動履歴を取得する。この行動履歴は分散型台帳1603に記帳される。この行動履歴の記帳の際には、分散型台帳1602が参照され、監視カメラ1606、1607及び1608の撮影結果の信頼性が保証される。店舗1609では、分散型台帳1603を参照し、人物1605の行動パターンや購入傾向などを分析し、商品仕入れや商品開発に利用することができる。 The face image of the person 1605 is recorded in the distributed ledger 1604. The surveillance cameras 1606, 1607 and 1608 collate the face image recorded in the distributed ledger 1604 with the face image of the person photographed by the person 1605, so that the person 1605 can set the installation position of the surveillance cameras 1606, 1607 and 1608. Acquire the action history that passed. This action history is recorded in the distributed ledger 1603. When recording the action history, the distributed ledger 1602 is referred to, and the reliability of the shooting results of the surveillance cameras 1606, 1607 and 1608 is guaranteed. At the store 1609, the distributed ledger 1603 can be referred to to analyze the behavior pattern and purchase tendency of the person 1605, which can be used for product purchase and product development.
 図17は、本発明によるデバイス管理システムを適用した実施例2の構成を示すブロック図である。本実施例は、本発明によるデバイス管理システムを、危険運転車を判別する危険車判別システムに適用した例である。危険車判別システム1700は、管理対象デバイスである監視カメラ1705及び1706を有する。監視カメラ1705及び1706は、車両1704に搭載される。監視カメラ1705は車両1704の前方を撮影し、先行車1707の運転状況を撮影する。監視カメラ1706は車両1704の後方を撮影し、後続車1708の運転状況を撮影する。監視カメラ1705及び1706の製造時、起動時及び更新時の情報は、随時分散型台帳1702に記帳される。監視カメラ1705及び1706の信頼性は分散型台帳1702によって保証される。分散型台帳1702は、信頼できるデバイス足る根拠となるエビデンスが記帳された分散型台帳1701を参照する。 FIG. 17 is a block diagram showing a configuration of Example 2 to which the device management system according to the present invention is applied. This embodiment is an example in which the device management system according to the present invention is applied to a dangerous vehicle discrimination system for discriminating a dangerous driving vehicle. The dangerous vehicle discrimination system 1700 has surveillance cameras 1705 and 1706 which are managed devices. Surveillance cameras 1705 and 1706 are mounted on the vehicle 1704. The surveillance camera 1705 photographs the front of the vehicle 1704 and captures the driving situation of the preceding vehicle 1707. The surveillance camera 1706 photographs the rear of the vehicle 1704 and captures the driving situation of the following vehicle 1708. Information at the time of manufacture, start-up, and update of the surveillance cameras 1705 and 1706 is recorded in the distributed ledger 1702 at any time. The reliability of surveillance cameras 1705 and 1706 is guaranteed by the blockchain 1702. The decentralized ledger 1702 refers to the decentralized ledger 1701 in which the evidence on which the reliable device is sufficient is recorded.
 監視カメラ1705及び1706で撮影された、先行車や後続車の運転状況や車両ナンバーは分散型台帳1703に記帳される。また、監視カメラ1705及び1706は、分散型台帳1703に過去に記帳された内容を参照することで、過去に危険運転をした車両の車両ナンバーを取得することができる。監視カメラ1705及び1706は、現在撮影している先行車や後続車の車両ナンバーと、分散型台帳1703から取得した過去に危険運転をした車両の車両ナンバーとを突合することで、先行車や後続車が危険運転をするおそれについて、車両1704を運転する運転者のスマートフォン1710に通知したり、車両1704に搭載されたナビゲーションシステム1709に通知したりすることができる。 The driving status and vehicle number of the preceding vehicle and the following vehicle taken by the surveillance cameras 1705 and 1706 are recorded in the distributed ledger 1703. In addition, the surveillance cameras 1705 and 1706 can acquire the vehicle number of the vehicle that has driven dangerously in the past by referring to the contents recorded in the distributed ledger 1703 in the past. The surveillance cameras 1705 and 1706 match the vehicle numbers of the preceding vehicle and the following vehicle that are currently being photographed with the vehicle numbers of the vehicles that have been dangerously driven in the past obtained from the distributed ledger 1703, thereby causing the preceding vehicle and the following vehicle to collide with each other. It is possible to notify the smartphone 1710 of the driver driving the vehicle 1704 or the navigation system 1709 mounted on the vehicle 1704 about the risk of the vehicle driving dangerously.
 (1)なお、本発明は、分散型台帳(デバイス製造時用分散型台帳101、デバイス変更履歴用分散型台帳102)と、デバイスの製造工程に係る情報である製造時情報、前記デバイスの起動工程に係る情報である起動時情報、及び前記デバイスの更新工程に係る情報である更新時情報のうちの少なくとも一つの情報を前記分散型台帳に記帳する記帳手段(S802、S1002、S1202、S1302)と、前記分散型台帳に記帳された情報を読み出す情報読出手段(S1502)と、を有することを特徴とする。これにより、デバイスの信頼性を向上可能なデバイス管理システムを提供する。また、デバイスに関する情報を分散型台帳に記帳することにより、情報が改竄されにくくすることができる。また、パブリックな分散型台帳に記帳するようにすれば、デバイスに関する情報を誰でもが参照可能なシステムを提供することができ、デバイスの信頼性を誰でもが確認することができる。 (1) In the present invention, the distributed ledger (distributed ledger 101 for device manufacturing, distributed ledger 102 for device change history), manufacturing information which is information related to the device manufacturing process, and activation of the device. Bookkeeping means (S802, S1002, S1202, S1302) for recording at least one of the start-up information, which is information related to the process, and the update time information, which is information related to the device update process, in the block chain. It is characterized by having an information reading means (S1502) for reading the information recorded in the distributed ledger. This provides a device management system capable of improving the reliability of the device. Further, by recording the information about the device in the distributed ledger, it is possible to prevent the information from being tampered with. In addition, by recording in a public blockchain, it is possible to provide a system in which anyone can refer to information about the device, and anyone can confirm the reliability of the device.
 (2)また、本発明は、前記分散型台帳がタングル(図6参照)であることを特徴とする。これにより、分散型台帳への記帳をリアルタイムで行うことができる。また、記帳の際に手数料が必要となる他の分散型台帳と異なり、分散型台帳への記帳を無料で行うことができる。また、スケーラビリティのあるシステムを提供することができる。また、仮想通貨IOTAを利用したマイクロペイメントとの親和性が高いシステムを提供することができる。 (2) Further, the present invention is characterized in that the distributed ledger is a tangle (see FIG. 6). As a result, it is possible to record in the block chain in real time. Also, unlike other decentralized ledgers that require a fee for bookkeeping, bookkeeping in the decentralized ledger can be done free of charge. In addition, it is possible to provide a scalable system. In addition, it is possible to provide a system having a high affinity with micropayments using the virtual currency IOTA.
 (3)また、本発明は、前記製造時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスを構成する部品を特定可能な部品IDと、前記部品IDが示す部品を前記デバイスに組み入れた製造ラインを特定可能な製造ラインIDと、前記部品IDが示す部品を前記デバイスに組み入れた時刻を示す製造時刻情報と、を含み、各情報を前記デバイスIDに紐付けた情報であることを特徴とする。これにより、デバイスの製造時についての信頼性を高めたシステムを提供することができる。 (3) Further, in the present invention, the manufacturing information incorporates a device ID capable of identifying the device, a component ID capable of identifying a component constituting the device, and a component indicated by the component ID into the device. It is information that includes a manufacturing line ID that can identify the manufacturing line and manufacturing time information that indicates the time when the component indicated by the component ID is incorporated into the device, and each information is linked to the device ID. It is a feature. As a result, it is possible to provide a system with improved reliability at the time of manufacturing the device.
 (4)また、本発明は、前記起動時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスの起動工程を実施した時刻を示す検証時刻情報と、前記デバイスの起動工程に用いたファイルのハッシュ値と、前記デバイスによるデジタル署名と、を含み、各情報を前記デバイスIDに紐付けた情報であることを特徴とする。これにより、デバイスの起動時についての信頼性を高めたシステムを提供することができる。 (4) Further, in the present invention, the startup information includes a device ID that can identify the device, verification time information indicating the time when the device activation process is performed, and a file used for the device activation process. The hash value and the digital signature by the device are included, and each information is associated with the device ID. As a result, it is possible to provide a system with improved reliability at the time of device startup.
 (5)また、本発明は、前記更新時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスの更新工程を実施した時刻を示す検証時刻情報と、前記デバイスの更新工程に用いたファイルのハッシュ値と、前記デバイスによるデジタル署名と、を含み、各情報を前記デバイスIDに紐付けた情報であることを特徴とする。これにより、デバイスの更新時についての信頼性を高めたシステムを提供することができる。 (5) Further, in the present invention, the update time information includes a device ID that can identify the device, verification time information indicating the time when the device update process is performed, and a file used for the device update process. The hash value and the digital signature by the device are included, and each information is associated with the device ID. As a result, it is possible to provide a system with improved reliability when updating the device.
 (6)また、本発明は、前記デジタル署名は、前記ファイルのハッシュ値を秘密鍵で暗号化して得られたデジタル署名であることを特徴とする。これにより、また、分散型台帳に記帳したデバイスに関する情報を、より改竄されにくくすることができる。 (6) Further, the present invention is characterized in that the digital signature is a digital signature obtained by encrypting the hash value of the file with a private key. This also makes it possible to make it more difficult for the information about the device recorded in the block chain to be tampered with.
 (7)また、本発明は、前記デバイスは、IoTデバイスであることを特徴とする。これにより、インターネット接続されることでマルウェア等の攻撃を受ける可能性があるIoTデバイスに対し、その信頼性を高めることができる。また、本発明によれば、例えばマルウェアによって、IoTデバイスを制御するプログラムが書き換えられたとしても、その書き換えられたことが分散型台帳に記帳されるので、そのIoTデバイスの現況について知ることができ、操作者は、そのIoTデバイスを活用するか否かを判断する際の判断材料を得ることができる。 (7) Further, the present invention is characterized in that the device is an IoT device. As a result, it is possible to increase the reliability of IoT devices that may be attacked by malware or the like by being connected to the Internet. Further, according to the present invention, even if the program that controls the IoT device is rewritten by malware, for example, the rewritten program is recorded in the distributed ledger, so that the current state of the IoT device can be known. , The operator can obtain a judgment material for deciding whether or not to utilize the IoT device.
 (8)また、本発明は、コンピュータを用いてデバイスの管理を行うデバイス管理方法であって、デバイスの製造工程に係る情報である製造時情報、前記デバイスの起動工程に係る情報である起動時情報、及び前記デバイスの更新工程に係る情報である更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳する記帳工程と、前記分散型台帳に記帳された情報を読み出す情報読出工程と、を有することを特徴とする。これにより、デバイスの信頼性を向上可能なデバイス管理方法を提供する。また、デバイスに関する情報を分散型台帳に記帳することにより、情報が改竄されにくくすることができる。また、パブリックな分散型台帳に記帳するようにすれば、デバイスに関する情報を誰でもが参照可能な方法を提供することができ、デバイスの信頼性を誰でもが確認することができる。 (8) Further, the present invention is a device management method for managing a device using a computer, which is manufacturing information which is information related to a device manufacturing process and startup information which is information related to the device starting process. A bookkeeping step of recording information and at least one of update information, which is information related to the device update process, in a distributed ledger, and an information reading step of reading information recorded in the distributed ledger. It is characterized by having. This provides a device management method that can improve the reliability of the device. Further, by recording the information about the device in the distributed ledger, it is possible to prevent the information from being tampered with. In addition, by posting in a public blockchain, it is possible to provide a method in which anyone can refer to information about the device, and anyone can confirm the reliability of the device.
 (9)また、本発明は、情報処理装置において、デバイスの製造工程に係る情報である製造時情報、前記デバイスの起動工程に係る情報である起動時情報、及び前記デバイスの更新工程に係る情報である更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳する記帳手段を有することを特徴とする。これにより、情報処理装置がデバイスに関する情報を分散型台帳に記帳することで、デバイスに関する情報を改竄されにくくすることができ、信頼性の高い情報を提供することができる。 (9) Further, in the information processing apparatus, the present invention relates to manufacturing information which is information related to a device manufacturing process, startup information which is information related to the device activation process, and information related to the device updating process. It is characterized by having a recording means for recording at least one of the updated information in the distributed ledger. As a result, the information processing device records the information about the device in the distributed ledger, so that the information about the device is less likely to be falsified, and highly reliable information can be provided.
 (10)また、本発明は、IoTデバイスにおいて、デバイスの製造工程に係る情報である製造時情報、前記デバイスの起動工程に係る情報である起動時情報、及び前記デバイスの更新工程に係る情報である更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳する記帳手段を有することを特徴とする。これにより、IoTデバイスがデバイスに関する情報を分散型台帳に記帳することで、デバイスに関する情報を改竄されにくくすることができ、信頼性の高い情報を提供することができる。 (10) Further, in the IoT device, the present invention includes manufacturing information which is information related to the manufacturing process of the device, startup information which is information related to the activation process of the device, and information related to the updating process of the device. It is characterized by having a bookkeeping means for recording at least one of the update information in a distributed ledger. As a result, the IoT device records the information about the device in the distributed ledger, so that the information about the device is less likely to be tampered with, and highly reliable information can be provided.
 (11)また、本発明は、プログラムにおいて、デバイスの製造工程に係る情報である製造時情報、前記デバイスの起動工程に係る情報である起動時情報、及び前記デバイスの更新工程に係る情報である更新時情報のうちの少なくとも一つの情報を分散型台帳に記帳する記帳手段として、コンピュータを機能させる。これにより、デバイスの信頼性を向上可能なプログラムを提供する。また、デバイスに関する情報を分散型台帳に記帳することにより、情報が改竄されにくくすることができる。また、パブリックな分散型台帳に記帳するようにすれば、デバイスに関する情報を誰でもが参照可能なプログラムを提供することができ、デバイスの信頼性を誰でもが確認することができる。 (11) Further, in the program, the present invention includes manufacturing information which is information related to a device manufacturing process, startup information which is information related to the device activation process, and information related to the device updating process. The computer functions as a bookkeeping means for recording at least one of the update information in the block chain. This provides a program that can improve the reliability of the device. Further, by recording the information about the device in the distributed ledger, it is possible to prevent the information from being tampered with. In addition, by recording in a public block chain, it is possible to provide a program in which anyone can refer to information about the device, and anyone can check the reliability of the device.
 (12)また、本発明は、プログラムにおいて、前記分散型台帳がタングルであることを特徴とする。これにより、分散型台帳への記帳をリアルタイムで行うことができる。また、記帳の際に手数料が必要となる他の分散型台帳と異なり、分散型台帳への記帳を無料で行うことができる。また、スケーラビリティのあるプログラムを提供することができる。また、仮想通貨IOTAを利用したマイクロペイメントとの親和性が高いプログラムを提供することができる。 (12) Further, the present invention is characterized in that the distributed ledger is a tangle in the program. As a result, it is possible to record in the block chain in real time. Also, unlike other decentralized ledgers that require a fee for bookkeeping, bookkeeping in the decentralized ledger can be done free of charge. In addition, it is possible to provide a scalable program. In addition, it is possible to provide a program having a high affinity with micropayments using the virtual currency IOTA.
 (13)また、本発明は、プログラムにおいて、前記製造時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスを構成する部品を特定可能な部品IDと、前記部品IDが示す部品を前記デバイスに組み入れた製造ラインを特定可能な製造ラインIDと、前記部品IDが示す部品を前記デバイスに組み入れた時刻を示す製造時刻情報と、を含み、各情報を前記デバイスIDに紐付けた情報であることを特徴とする。これにより、デバイスの製造時についての信頼性を高めたプログラムを提供することができる。 (13) Further, in the program, the manufacturing information includes a device ID capable of identifying the device, a component ID capable of identifying a component constituting the device, and a component indicated by the component ID. The information includes a manufacturing line ID capable of specifying the manufacturing line incorporated in the device and manufacturing time information indicating the time when the component indicated by the component ID is incorporated in the device, and each information is associated with the device ID. It is characterized by being. As a result, it is possible to provide a program with increased reliability when manufacturing the device.
 (14)また、本発明は、プログラムにおいて、前記起動時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスの起動工程を実施した時刻を示す検証時刻情報と、前記デバイスの起動工程に用いたファイルのハッシュ値と、前記デバイスによるデジタル署名と、を含み、各情報を前記デバイスIDに紐付けた情報であることを特徴とする。これにより、デバイスの起動時についての信頼性を高めたプログラムを提供することができる。 (14) Further, in the program, the startup information includes a device ID that can identify the device, verification time information indicating the time when the device activation step is performed, and the device activation process. It is characterized in that the information includes the hash value of the file used and the digital signature by the device, and each information is associated with the device ID. As a result, it is possible to provide a program with improved reliability at the time of starting the device.
 (15)また、本発明は、プログラムにおいて、前記更新時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスの更新工程を実施した時刻を示す検証時刻情報と、前記デバイスの更新工程に用いたファイルのハッシュ値と、前記デバイスによるデジタル署名と、を含み、各情報を前記デバイスIDに紐付けた情報であることを特徴とする。これにより、デバイスの更新時についての信頼性を高めたプログラムを提供することができる。 (15) Further, in the program, the update time information includes a device ID that can identify the device, verification time information indicating the time when the device update process is performed, and the device update process. It is characterized in that the information includes the hash value of the file used and the digital signature by the device, and each information is associated with the device ID. As a result, it is possible to provide a program with improved reliability when updating the device.
 (16)また、本発明は、プログラムにおいて、前記記帳手段は、前記製造工程によって前記デバイスが製造された場合に、前記製造時情報を前記分散型台帳に記帳することを特徴とする。これにより、デバイスの製造時についての信頼性を高めたプログラムを提供することができる。 (16) Further, the present invention is characterized in that, in a program, the bookkeeping means records the manufacturing time information in the distributed ledger when the device is manufactured by the manufacturing process. As a result, it is possible to provide a program with increased reliability when manufacturing the device.
 (17)また、本発明は、プログラムにおいて、前記記帳手段は、前記起動工程によって前記デバイスが起動された場合に、前記起動時情報を前記分散型台帳に記帳することを特徴とする。これにより、デバイスの起動時についての信頼性を高めたプログラムを提供することができる。 (17) Further, the present invention is characterized in that, in a program, the bookkeeping means records the startup information in the distributed ledger when the device is activated by the activation step. As a result, it is possible to provide a program with improved reliability at the time of starting the device.
 (18)また、本発明は、プログラムにおいて、前記記帳手段は、前記更新工程によって前記デバイスが更新された場合に、前記更新時情報を前記分散型台帳に記帳することを特徴とする。これにより、デバイスの更新時についての信頼性を高めたプログラムを提供することができる。 (18) Further, the present invention is characterized in that, in a program, the bookkeeping means records the update time information in the distributed ledger when the device is updated by the update step. As a result, it is possible to provide a program with improved reliability when updating the device.
 (19)また、本発明は、プログラムにおいて、前記記帳手段は、所定時間ごとに、前記更新時情報を前記分散型台帳に記帳することを特徴とする。これにより、所定時間ごとのデバイスの状況を確認することができ、デバイスの信頼性を高めたプログラムを提供することができる。 (19) Further, the present invention is characterized in that, in a program, the bookkeeping means records the update information in the distributed ledger at predetermined time intervals. As a result, the status of the device can be confirmed at predetermined time intervals, and a program with enhanced device reliability can be provided.
 以上、本発明の好ましい実施形態について説明したが、本発明は、これらの実施形態に限定されず、その要旨の範囲内で種々の変形および変更が可能である。これらの実施形態及びその変形は、発明の範囲及び要旨に含まれると同時に、特許請求の範囲に記載された発明とその均等の範囲に含まれる。 Although the preferred embodiments of the present invention have been described above, the present invention is not limited to these embodiments, and various modifications and changes can be made within the scope of the gist thereof. These embodiments and modifications thereof are included in the scope and gist of the invention, and at the same time, are included in the scope of the invention described in the claims and the equivalent scope thereof.
 本出願は、2019年3月22日に出願された日本特許出願である特願2019-54461号に基づく優先権を主張し、当該日本特許出願に記載されたすべての記載内容を援用する。 This application claims priority based on Japanese Patent Application No. 2019-54461, which is a Japanese patent application filed on March 22, 2019, and incorporates all the contents described in the Japanese patent application.
1 デバイス管理システム
2 情報処理装置
3 ネットワーク
4 ネットワーク
5 IoTデバイス
11 端末装置
12 処理部
13 入出力部
14 記憶部
15 通信部
16 デバイス
17 処理部
18 デバイス機能実行部
19 記憶部
20 通信部
101 デバイス製造時用分散型台帳
102 デバイス変更履歴用分散型台帳
16a 製造時情報
16b 起動時情報
16c 更新時情報 1 Device management system 2 Information processing device 3 Network 4 Network 5 IoT device 11 Terminal device 12 Processing unit 13 Input / output unit 14 Storage unit 15 Communication unit 16 Device 17 Processing unit 18 Device function execution unit 19 Storage unit 20 Communication unit 101 Device manufacturing Distributed ledger for time 102 Distributed ledger for device change history 16a Manufacturing information 16b Startup information 16c Update information

Claims (21)

  1.  分散型台帳と、
     前記分散型台帳を構成する情報処理装置にネットワークを介して接続される第1の情報処理装置と、
     前記分散型台帳を構成する情報処理装置にネットワークを介して接続される第2の情報処理装置と、を備え、
     前記第1の情報処理装置は、
     前記ネットワークを介した通信を行う通信部と、
     デバイスの製造工程に係る情報であって前記デバイスを特定可能なデバイスIDを含む製造時情報、前記デバイスの起動工程に係る情報であって前記デバイスIDを含む起動時情報、及び前記デバイスの更新工程に係る情報であって前記デバイスIDを含む更新時情報のうちの少なくとも一つの情報を前記分散型台帳に記帳する処理部と、を備え、
     前記第2の情報処理装置は、管理対象のデバイスの前記デバイスIDを取得し、取得した前記デバイスIDについての、前記製造時情報と前記起動時情報と前記更新時情報とのうち前記分散型台帳に記帳された情報の少なくとも1つを読み出して前記管理対象のデバイスの信頼性を確認する、デバイス管理システム。     Blockchain and
    A first information processing device connected to the information processing device constituting the block chain via a network, and
    A second information processing device connected to the information processing device constituting the distributed ledger via a network is provided.
    The first information processing device is
    With the communication unit that communicates via the network
    Manufacturing process information related to the device manufacturing process including a device ID that can identify the device, starting information related to the device activation process including the device ID, and updating process of the device. A processing unit that records at least one piece of information at the time of update including the device ID in the distributed ledger is provided.
    The second information processing apparatus acquires the device ID of the device to be managed, and the distributed ledger of the manufacturing information, the startup information, and the update information for the acquired device ID. A device management system that reads at least one of the information recorded in the device and confirms the reliability of the managed device.
  2.  分散型台帳と、
     前記分散型台帳を構成する情報処理装置にネットワークを介して接続される第1の情報処理装置と、
     前記分散型台帳を構成する情報処理装置にネットワークを介して接続される第2の情報処理装置と、を備え、
     前記第1の情報処理装置は、
     前記ネットワークを介した通信を行う通信部と、
     デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、前記製造時情報が発生したことが検出された場合、前記製造時情報を前記分散型台帳に記帳する処理部と、を備え、
     前記第2の情報処理装置は、前記分散型台帳から前記製造時情報を読み出して前記デバイスの信頼性を確認する、デバイス管理システム。     Blockchain and
    A first information processing device connected to the information processing device constituting the block chain via a network, and
    A second information processing device connected to the information processing device constituting the distributed ledger via a network is provided.
    The first information processing device is
    With the communication unit that communicates via the network
    A processing unit that detects whether or not manufacturing time information, which is information related to the manufacturing process of the device, has been generated, and if it is detected that the manufacturing time information has been generated, records the manufacturing time information in the block chain. And with
    The second information processing device is a device management system that reads the manufacturing time information from the distributed ledger and confirms the reliability of the device.
  3.  分散型台帳を構成する情報処理装置とネットワークを介した通信を行う通信部と、
     デバイスの製造工程に係る情報であって前記デバイスを特定可能なデバイスIDを含む製造時情報、前記デバイスの起動工程に係る情報であって前記デバイスIDを含む起動時情報、及び前記デバイスの更新工程に係る情報であって前記デバイスIDを含む更新時情報のうちの少なくとも一つの情報を前記分散型台帳に記帳する処理部と、を備え、
     前記製造時情報と前記起動時情報と前記更新時情報とのうち前記分散型台帳に記帳された情報の少なくとも1つは、管理対象のデバイスの信頼性を確認する際に、前記管理対象のデバイスの前記デバイスIDに基づいて読み出される情報である、情報処理装置。     Information processing devices that make up the block chain and the communication unit that communicates via the network,
    Manufacturing process information related to the device manufacturing process including a device ID that can identify the device, starting information related to the device activation process including the device ID, and updating process of the device. A processing unit that records at least one piece of information at the time of update including the device ID in the distributed ledger is provided.
    At least one of the information recorded in the distributed ledger among the manufacturing information, the startup information, and the update information is the managed device when confirming the reliability of the managed device. Information processing device, which is information read out based on the device ID of the above.
  4.  分散型台帳を構成する情報処理装置とネットワークを介した通信を行う通信部と、
     デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、前記製造時情報が発生したことが検出された場合、前記製造時情報を前記分散型台帳に記帳する処理部と、を備え、
     前記分散型台帳に記帳された前記製造時情報は、管理対象のデバイスの信頼性を確認する際に読み出される情報である、情報処理装置。     Information processing devices that make up the block chain and the communication unit that communicates via the network,
    A processing unit that detects whether or not manufacturing time information, which is information related to the manufacturing process of the device, has been generated, and if it is detected that the manufacturing time information has been generated, records the manufacturing time information in the block chain. And with
    The information processing device, which is information to be read when confirming the reliability of the device to be managed, is the manufacturing information recorded in the distributed ledger.
  5.  デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、前記デバイスの起動工程に係る情報であって前記デバイスIDを含む起動時情報、及び前記デバイスの更新工程に係る情報であって前記デバイスIDを含む更新時情報のうちの少なくとも一つの情報が記帳された分散型台帳を構成する情報処理装置とネットワークを介して接続され、
     管理対象のデバイスの前記デバイスIDを取得し、取得した前記デバイスIDについての、前記製造時情報と前記起動時情報と前記更新時情報とのうち前記分散型台帳に記帳された情報の少なくとも1つを読み出して前記管理対象のデバイスの信頼性を確認する、情報処理装置。     Information related to the manufacturing process of the device and including the device ID that can identify the device, information related to the booting process of the device and booting information including the device ID, and updating process of the device. It is connected to the information processing device constituting the distributed ledger in which at least one of the update information including the device ID is recorded via a network.
    The device ID of the device to be managed is acquired, and at least one of the manufacturing information, the startup information, and the update information of the acquired device ID is recorded in the distributed ledger. An information processing device that reads out and confirms the reliability of the managed device.
  6.  前記製造時情報は、前記デバイスを特定可能なデバイスIDと、前記デバイスを構成する部品を特定可能な部品IDと、前記部品IDが示す部品を前記デバイスに組み入れた製造ラインを特定可能な製造ラインIDと、前記部品IDが示す部品を前記デバイスに組み入れた時刻を示す製造時刻情報と、を含み、前記部品IDと前記製造ラインIDと前記製造時刻情報とを前記デバイスIDに紐付けた情報である、
     請求項3から5のいずれか一項に記載の情報処理装置。     The manufacturing information includes a device ID that can identify the device, a component ID that can identify the parts constituting the device, and a manufacturing line that can specify a manufacturing line in which the component indicated by the component ID is incorporated into the device. Information that includes an ID and manufacturing time information indicating the time when the component indicated by the component ID is incorporated into the device, and links the component ID, the manufacturing line ID, and the manufacturing time information to the device ID. is there,
    The information processing device according to any one of claims 3 to 5.
  7.  前記製造時情報は、前記製造工程によって前記デバイスが製造された場合に、前記分散型台帳に記帳される、
     請求項3から5、6のいずれか一項に記載の情報処理装置。     The manufacturing information is recorded in the blockchain when the device is manufactured by the manufacturing process.
    The information processing device according to any one of claims 3 to 5 and 6.
  8.  前記起動時情報は、前記デバイスの起動工程を実施した時刻を示す検証時刻情報と、前記デバイスの起動工程に用いたファイルのハッシュ値と、前記デバイスによるデジタル署名と、を含み、前記起動工程を実施した時刻を示す検証時刻情報と前記起動工程に用いたファイルのハッシュ値と前記デジタル署名とを前記デバイスIDに紐付けた情報である、
     請求項3又は5に記載の情報処理装置。     The start-up information includes verification time information indicating the time when the start-up process of the device is performed, a hash value of a file used in the start-up step of the device, and a digital signature by the device. This is information in which the verification time information indicating the execution time, the hash value of the file used in the activation process, and the digital signature are associated with the device ID.
    The information processing device according to claim 3 or 5.
  9.  前記起動時情報に含まれるデジタル署名は、前記起動工程に用いたファイルのハッシュ値を秘密鍵で暗号化して得られたデジタル署名である、
     請求項3、5、8のいずれか一項に記載の情報処理装置。     The digital signature included in the startup information is a digital signature obtained by encrypting the hash value of the file used in the startup process with a private key.
    The information processing device according to any one of claims 3, 5 and 8.
  10.  前記起動時情報は、前記起動工程によって前記デバイスが起動された場合に、前記分散型台帳に記帳される、
     請求項3、5、8、9のいずれか一項に記載の情報処理装置。     The start-up information is recorded in the blockchain when the device is started by the start-up process.
    The information processing device according to any one of claims 3, 5, 8 and 9.
  11.  前記更新時情報は、前記デバイスの更新工程を実施した時刻を示す検証時刻情報と、前記デバイスの更新工程に用いたファイルのハッシュ値と、前記デバイスによるデジタル署名と、を含み、前記更新工程を実施した時刻を示す検証時刻情報と前記更新工程に用いたファイルのハッシュ値と前記デジタル署名とを前記デバイスIDに紐付けた情報である、
     請求項3、5、8から10のいずれか一項に記載の情報処理装置。     The update time information includes verification time information indicating the time when the device update process was performed, a hash value of a file used in the device update process, and a digital signature by the device, and the update process is performed. This is information in which the verification time information indicating the time of execution, the hash value of the file used in the update process, and the digital signature are associated with the device ID.
    The information processing apparatus according to any one of claims 3, 5, 8 to 10.
  12.  前記更新時情報に含まれるデジタル署名は、前記更新工程に用いたファイルのハッシュ値を秘密鍵で暗号化して得られたデジタル署名である、
     請求項3、5、8から11のいずれか一項に記載の情報処理装置。     The digital signature included in the update information is a digital signature obtained by encrypting the hash value of the file used in the update process with a private key.
    The information processing apparatus according to any one of claims 3, 5, 8 to 11.
  13.  前記更新時情報は、前記更新工程によって前記デバイスが更新された場合に、前記分散型台帳に記帳される、
     請求項3、5、8から12のいずれか一項に記載の情報処理装置。     The update information is recorded in the blockchain when the device is updated by the update process.
    The information processing apparatus according to any one of claims 3, 5, 8 to 12.
  14.  前記更新時情報は、所定時間ごとに、前記分散型台帳に記帳される、
     請求項3、5、8から13のいずれか一項に記載の情報処理装置。     The update information is recorded in the blockchain at predetermined time intervals.
    The information processing apparatus according to any one of claims 3, 5, 8 to 13.
  15.  前記分散型台帳がタングルである、
     請求項3から14のいずれか一項に記載の情報処理装置。     The blockchain is a tangle,
    The information processing device according to any one of claims 3 to 14.
  16.  前記デバイスは、IoTデバイスである、
     請求項3から15のいずれか1項に記載の情報処理装置。     The device is an IoT device,
    The information processing device according to any one of claims 3 to 15.
  17.  分散型台帳にネットワークを介して接続される第1の情報処理装置の処理部によって、デバイスの製造工程に係る情報であって前記デバイスを特定可能なデバイスIDを含む製造時情報、前記デバイスの起動工程に係る情報であって前記デバイスIDを含む起動時情報、及び前記デバイスの更新工程に係る情報であって前記デバイスIDを含む更新時情報のうちの少なくとも一つの情報を前記分散型台帳に記帳することと、
     前記分散型台帳にネットワークを介して接続される第2の情報処理装置によって、管理対象のデバイスの前記デバイスIDを取得し、取得した前記デバイスIDについての、前記製造時情報と前記起動時情報と前記更新時情報とのうち前記分散型台帳に記帳された情報の少なくとも1つを読み出して前記管理対象のデバイスの信頼性を確認することと、
    を有するデバイス管理方法。     By the processing unit of the first information processing device connected to the block chain via a network, information related to the manufacturing process of the device, manufacturing information including a device ID that can identify the device, and activation of the device. At least one of the information related to the process and the start-up information including the device ID and the information related to the update process of the device and the update information including the device ID is recorded in the block chain. To do and
    The device ID of the device to be managed is acquired by the second information processing device connected to the block chain via the network, and the manufacturing information and the startup information of the acquired device ID are obtained. To confirm the reliability of the managed device by reading at least one of the updated information and the information recorded in the distributed ledger.
    Device management method with.
  18.  分散型台帳にネットワークを介して接続される第1の情報処理装置の処理部によって、デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、前記製造時情報が発生したことが検出された場合、前記製造時情報を前記分散型台帳に記帳することと、
     前記分散型台帳にネットワークを介して接続される第2の情報処理装置によって、前記分散型台帳から前記製造時情報を読み出して前記デバイスの信頼性を確認することと、を有するデバイス管理方法。     The processing unit of the first information processing apparatus connected to the block chain via a network detects whether or not manufacturing time information, which is information related to the device manufacturing process, has been generated, and the manufacturing time information is generated. When it is detected that the information has been processed, the manufacturing information is recorded in the distributed ledger.
    A device management method comprising reading the manufacturing time information from the distributed ledger by a second information processing device connected to the distributed ledger via a network and confirming the reliability of the device.
  19.  分散型台帳を構成する情報処理装置にネットワークを介して接続されるコンピュータに、
     デバイスの製造工程に係る情報であって前記デバイスを特定可能なデバイスIDを含む製造時情報、前記デバイスの起動工程に係る情報であって前記デバイスIDを含む起動時情報、及び前記デバイスの更新工程に係る情報であって前記デバイスIDを含む更新時情報のうちの少なくとも一つの情報を前記分散型台帳に記帳することを実行させ、
     前記製造時情報と前記起動時情報と前記更新時情報とのうち前記分散型台帳に記帳された情報の少なくとも1つは、管理対象のデバイスの信頼性を確認する際に、前記管理対象のデバイスの前記デバイスIDに基づいて読み出される情報である、プログラム。     To a computer connected to the information processing devices that make up the block chain via a network
    Manufacturing process information related to the device manufacturing process including a device ID that can identify the device, starting information related to the device activation process including the device ID, and device updating process. At least one of the update information including the device ID, which is the information related to the above, is recorded in the distributed ledger.
    Of the manufacturing information, the startup information, and the update information, at least one of the information recorded in the distributed ledger is the managed device when confirming the reliability of the managed device. Information that is read out based on the device ID of the program.
  20.  分散型台帳を構成する情報処理装置にネットワークを介して接続されるコンピュータに、
     デバイスの製造工程に係る情報である製造時情報が発生したか否かを検出し、前記製造時情報が発生したことが検出された場合、前記製造時情報を前記分散型台帳に記帳することを実行させ、
     前記分散型台帳に記帳された前記製造時情報は、管理対象のデバイスの信頼性を確認する際に読み出される情報である、プログラム。     To a computer connected to the information processing devices that make up the block chain via a network
    It is detected whether or not manufacturing time information, which is information related to the manufacturing process of the device, has been generated, and when it is detected that the manufacturing time information has been generated, the manufacturing time information is recorded in the block chain. Let it run
    The manufacturing information recorded in the distributed ledger is information read when confirming the reliability of the device to be managed, a program.
  21.  デバイスの製造工程に係る情報であってデバイスを特定可能なデバイスIDを含む製造時情報、前記デバイスの起動工程に係る情報であって前記デバイスIDを含む起動時情報、及び前記デバイスの更新工程に係る情報であって前記デバイスIDを含む更新時情報のうちの少なくとも一つの情報が記帳された分散型台帳を構成する情報処理装置とネットワークに接続されるコンピュータに、
     管理対象のデバイスの前記デバイスIDを取得し、取得した前記デバイスIDについての、前記製造時情報と前記起動時情報と前記更新時情報とのうち前記分散型台帳に記帳された情報の少なくとも1つを読み出して前記管理対象のデバイスの信頼性を確認することを実行させる、プログラム。     Information related to the manufacturing process of the device and including the device ID that can identify the device, information related to the booting process of the device and booting information including the device ID, and updating process of the device. To a computer connected to a network and an information processing device constituting a distributed ledger in which at least one of the update information including the device ID is recorded.
    The device ID of the device to be managed is acquired, and at least one of the manufacturing information, the startup information, and the update information of the acquired device ID is recorded in the distributed ledger. A program that reads and confirms the reliability of the managed device.
PCT/JP2020/010007 2019-03-22 2020-03-09 Device management system, device management method, information processing apparatus, and program WO2020195746A1 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2019054461A JP6656446B1 (en) 2019-03-22 2019-03-22 Device management system, device management method, information processing apparatus, and program
JP2019-054461 2019-03-22

Publications (1)

Publication Number Publication Date
WO2020195746A1 true WO2020195746A1 (en) 2020-10-01

Family

ID=67982985

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2020/010007 WO2020195746A1 (en) 2019-03-22 2020-03-09 Device management system, device management method, information processing apparatus, and program

Country Status (3)

Country Link
JP (1) JP6656446B1 (en)
GB (1) GB2572925A (en)
WO (1) WO2020195746A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113115435A (en) * 2021-03-12 2021-07-13 武汉慧联无限科技有限公司 Activation processing method, device, equipment and storage medium
CN117408680A (en) * 2023-12-14 2024-01-16 安徽常力达电气有限公司 Intelligent power distribution room management method and system based on Internet of things

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US11527061B1 (en) * 2019-03-29 2022-12-13 United Services Automobile Association (Usaa) Systems and methods for assessing property development condition
EP4239509A1 (en) * 2020-11-02 2023-09-06 Le-Techs Inc. Management device and program

Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003318929A (en) * 2002-04-24 2003-11-07 Toshiba Corp Communication system

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US5475826A (en) * 1993-11-19 1995-12-12 Fischer; Addison M. Method for protecting a volatile file using a single hash
JP2002333912A (en) * 2001-05-09 2002-11-22 Toshiba Corp Ic card and production control system and its method
JP2014146722A (en) * 2013-01-30 2014-08-14 Hitachi High-Technologies Corp Management device of semiconductor device, and microscope
JP2018516026A (en) * 2015-03-20 2018-06-14 リヴェッツ・コーポレーションRivetz Corp. Automatic device integrity authentication using blockchain
KR101852077B1 (en) * 2018-01-16 2018-04-27 주식회사 미탭스플러스 Distributed Ledger Device and Distributed Ledger Method for Game Difficulty Control based on Block Chain
JP6487091B1 (en) * 2018-03-29 2019-03-20 株式会社電通 ICO management method, communication device, ICO management system and program
JP6438615B1 (en) * 2018-03-29 2018-12-19 株式会社三井住友銀行 Correct / error judgment and result sharing system on blockchain
JP6487096B1 (en) * 2018-04-17 2019-03-20 株式会社電通 Point grant system and point grant method

Patent Citations (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2003318929A (en) * 2002-04-24 2003-11-07 Toshiba Corp Communication system

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
ARASHIMA, AKIKO: "Why Blockchain IoT Managers Should Pay Attention: Guaranteeing the Authenticity of IoT Data", TELECOMMUNICATION, vol. 35, no. 1, 25 December 2017 (2017-12-25), pages 36 - 37, XP055691471 *
YAMAZAKI, DAISUKE: "Advanced Technologies that will Rule the Next Generation", LEARN EVERYTHING ABOUT BLOCKCHAIN & BITCOIN IN ONE BOOK, 24 December 2016 (2016-12-24), pages 106 - 114 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113115435A (en) * 2021-03-12 2021-07-13 武汉慧联无限科技有限公司 Activation processing method, device, equipment and storage medium
CN117408680A (en) * 2023-12-14 2024-01-16 安徽常力达电气有限公司 Intelligent power distribution room management method and system based on Internet of things
CN117408680B (en) * 2023-12-14 2024-03-19 安徽常力达电气有限公司 Intelligent power distribution room management method and system based on Internet of things

Also Published As

Publication number Publication date
GB2572925A (en) 2019-10-16
JP6656446B1 (en) 2020-03-04
GB201910795D0 (en) 2019-09-11
JP2020154954A (en) 2020-09-24

Similar Documents

Publication Publication Date Title
WO2020195746A1 (en) Device management system, device management method, information processing apparatus, and program
KR102137773B1 (en) System for transmitting secure data via security application and method thereof
US20220138333A1 (en) System and method for enabling and verifying the trustworthiness of a hardware system
US11204751B2 (en) Mitigating incompatibilities due to code updates in a system containing multiple networked electronic control units
CN109829297B (en) Monitoring device, method and computer storage medium thereof
JP4939851B2 (en) Information processing terminal, secure device, and state processing method
US20100325040A1 (en) Device Authority for Authenticating a User of an Online Service
CN103368987A (en) Cloud server, application program verification, certification and management system and application program verification, certification and management method
CN104683409A (en) Method for sharing applications between terminals and terminal
US11398896B2 (en) Building device with blockchain based verification of building device files
JP6712538B2 (en) Tamper detection system
CN111161259B (en) Method and device for detecting whether image is tampered or not and electronic equipment
CN116711264A (en) Method for protecting trust score of edge device
CN113950679A (en) Validating a measurement dataset using speaker consensus
KR102621707B1 (en) Apparatus and method for collecting of data and diagnosing, vehicle system
US11609996B2 (en) Data processing apparatus, system, and method for proving or checking the security of a data processing apparatus
CN109905408B (en) Network security protection method, system, readable storage medium and terminal equipment
JP2017187963A (en) Electronic apparatus and system
CN115129275A (en) Digital file printing method and device, electronic equipment and storage medium
WO2021075475A1 (en) Device management system
CN110798356B (en) Firmware monitoring method and device, storage medium and computer equipment
CN113157543A (en) Credibility measuring method and device, server and computer readable storage medium
Schweppe Security and privacy in automotive on-board networks
Tratter et al. Shared Mobility for Transport and Its Environmental Impact VeSIPreS: A Vehicular Soft Integrity Preservation Scheme for Shared Mobility
US11874752B1 (en) Methods and systems for facilitating cyber inspection of connected and autonomous electrical vehicles using smart charging stations

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 20776885

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 20776885

Country of ref document: EP

Kind code of ref document: A1