WO2024070328A1 - 情報作成方法、画像ファイル、情報作成装置、及びプログラム - Google Patents

情報作成方法、画像ファイル、情報作成装置、及びプログラム Download PDF

Info

Publication number
WO2024070328A1
WO2024070328A1 PCT/JP2023/029986 JP2023029986W WO2024070328A1 WO 2024070328 A1 WO2024070328 A1 WO 2024070328A1 JP 2023029986 W JP2023029986 W JP 2023029986W WO 2024070328 A1 WO2024070328 A1 WO 2024070328A1
Authority
WO
WIPO (PCT)
Prior art keywords
information
encrypted
image file
image
image data
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/JP2023/029986
Other languages
English (en)
French (fr)
Japanese (ja)
Inventor
潤 小林
啓 山路
俊輝 小林
祐也 西尾
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Fujifilm Corp
Original Assignee
Fujifilm Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Fujifilm Corp filed Critical Fujifilm Corp
Priority to EP23871570.0A priority Critical patent/EP4597348A4/en
Priority to CN202380069817.1A priority patent/CN119968633A/zh
Priority to JP2024549871A priority patent/JPWO2024070328A1/ja
Publication of WO2024070328A1 publication Critical patent/WO2024070328A1/ja
Priority to US19/076,231 priority patent/US20250211447A1/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3236Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using cryptographic hash functions
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/64Protecting data integrity, e.g. using checksums, certificates or signatures
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0825Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using asymmetric-key encryption or public key infrastructure [PKI], e.g. key signature or public key certificates
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N1/00Scanning, transmission or reproduction of documents or the like, e.g. facsimile transmission; Details thereof
    • H04N1/32Circuits or arrangements for control or supervision between transmitter and receiver or between image input and image output device, e.g. between a still-image camera and its memory or between a still-image camera and a printer device
    • H04N1/32101Display, printing, storage or transmission of additional information, e.g. ID code, date and time or title
    • H04N1/32128Display, printing, storage or transmission of additional information, e.g. ID code, date and time or title attached to the image data, e.g. file header, transmitted message header, information on the same page or in the same computer file as the image
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N1/00Scanning, transmission or reproduction of documents or the like, e.g. facsimile transmission; Details thereof
    • H04N1/32Circuits or arrangements for control or supervision between transmitter and receiver or between image input and image output device, e.g. between a still-image camera and its memory or between a still-image camera and a printer device
    • H04N1/32101Display, printing, storage or transmission of additional information, e.g. ID code, date and time or title
    • H04N1/32144Display, printing, storage or transmission of additional information, e.g. ID code, date and time or title embedded in the image data, i.e. enclosed or integrated in the image, e.g. watermark, super-imposed logo or stamp

Definitions

  • the technology disclosed herein relates to an information creation method, an image file, an information creation device, and a program.
  • JP2006-345450A discloses an image verification system having an imaging device that applies anti-tampering processing to an image file including a captured image and its associated information, and an image verification device that verifies that the image file has not been tampered with.
  • the imaging device has a user interface providing means that provides a user interface for allowing a user to select items of the associated information to be subject to anti-tampering processing, an encryption means that creates encrypted associated information by encrypting the associated information selected by the user interface, and an addition means that adds the encrypted associated information to the image file to create an added image file.
  • the image verification device has a decryption means that decrypts the encrypted associated information to create decrypted associated information, and a comparison means that compares each item of the decrypted associated information with each corresponding item of the associated information.
  • JP 2009-225229 A discloses an imaging device having an imaging element that captures an image of a subject and outputs image data, and a condition acquisition means that acquires the shooting conditions at the time of shooting.
  • the imaging device described in JP 2009-225229 A has a generation section that generates first shooting information and second shooting information that is more detailed than the first shooting information based on the shooting conditions acquired by the condition acquisition means, a conversion section that converts the second shooting information into encrypted third shooting information, and a means for generating an image file in which the first shooting information and the third shooting information are added to the image data, and recording the image file on a recording medium.
  • JP2016-122917A discloses a signature generation device.
  • the signature generation device described in JP2016-122917A has a data acquisition unit that acquires multiple pieces of data including first data that are related to each other, and a signature generation unit that generates first signature data for the first data and correlation information based on the first data, correlation information indicating the correlation between the multiple pieces of data, and a signature key.
  • One embodiment of the technology disclosed herein provides an information creation method, an image file, an information creation device, and a program that can improve the security of related information that is related to image data.
  • a first aspect of the technology disclosed herein is an information creation method that includes an acquisition step of acquiring related information related to image data, an encryption step of generating first encrypted information by encrypting the related information, and an attachment step of directly or indirectly attaching additional information to the image data, where the additional information includes the first encrypted information, and timing information regarding the time when the first encrypted information was generated, or reliability information.
  • a second aspect of the technology disclosed herein is an image file that includes incidental information of image data, the incidental information including first encrypted information obtained by encrypting associated information related to the image data, and timing information regarding the time when the first encrypted information was generated, or reliability information.
  • a third aspect of the technology disclosed herein is an information creation device that includes a processor, which acquires related information related to image data, generates first encrypted information by encrypting the related information, and directly or indirectly attaches additional information to the image data, where the additional information includes the first encrypted information, and timing information related to when the first encrypted information was generated, or reliability information.
  • a fourth aspect of the technology disclosed herein is a program for causing a computer to execute a process, the process including an acquisition step of acquiring related information related to image data, an encryption step of generating first encrypted information by encrypting the related information, and an attachment step of directly or indirectly attaching additional information to the image data, the additional information including the first encrypted information and timing information regarding the time when the first encrypted information was generated, or reliability information.
  • FIG. 1 is a conceptual diagram showing an example of an embodiment in which an imaging device is used.
  • FIG. 2 is a conceptual diagram showing an example of a relationship between an imaging device and a receiving device.
  • 2 is a block diagram showing an example of a hardware configuration and main functions of an electrical system of the imaging apparatus;
  • 2 is a block diagram showing an example of a hardware configuration and main functions of an electrical system of a receiving device;
  • 1 is a conceptual diagram showing an example of the correlation between an image sensor, a distance measurement sensor, an electronic compass, a NVM, a GNSS device, a network, and an acquisition unit.
  • 11 is a conceptual diagram illustrating an example of a correlation between an acquisition unit and an association unit.
  • FIG. 13 is a conceptual diagram illustrating an example of the correlation between the NVM, an association unit, and an encryption unit.
  • FIG. 13 is a conceptual diagram showing an example of processing contents when metadata is directly attached to image data.
  • FIG. 13 is a conceptual diagram showing an example of processing contents when metadata is indirectly attached to image data.
  • FIG. 2 is a conceptual diagram showing an example of correlation between a transmitting unit and a receiving unit.
  • FIG. 13 is a conceptual diagram illustrating an example of the correlation between a receiving unit and a generating unit.
  • 10 is a conceptual diagram showing an example of the correlation between a receiving unit, a generating unit, and a comparing unit.
  • 10 is a conceptual diagram showing an example of the correlation between a receiving unit, a comparing unit, and an executing unit.
  • FIG. 10 is a flowchart showing an example of the flow of an image file creation process according to the first embodiment.
  • 10 is a flowchart showing an example of the flow of an image file receiving process according to the first embodiment.
  • FIG. 11 is a functional block diagram showing an example of functions of a processor included in an imaging device according to a second embodiment.
  • 1 is a conceptual diagram showing an example of the correlation between a UI device, a network, an acquisition unit, and an editing unit.
  • 11 is a conceptual diagram illustrating an example of a correlation between an acquisition unit and an association unit.
  • FIG. FIG. 13 is a conceptual diagram illustrating an example of the correlation between the NVM, an association unit, and an encryption unit.
  • 10 is a flowchart showing an example of the flow of an image file creation process according to the second embodiment.
  • FIG. 13 is a conceptual diagram showing a modified example of the second association information.
  • FIG. 2 is a conceptual diagram showing an example of the relationship between an imaging device, an editing device, and a receiving device.
  • 1 is a conceptual diagram showing an example of the correlation between an association unit, an encryption unit, a transmission unit, an attachment unit, a network, and a storage device.
  • 13A and 13B are conceptual diagrams showing modified examples of the contents of metadata included in an image file.
  • FIG. 13 is a conceptual diagram showing an example of processing content of a comparison unit.
  • FIG. 13 is a conceptual diagram showing a modified example of the first association information.
  • 13 is a conceptual diagram showing an example of a process performed by an encryption unit to generate fourth association information.
  • FIG. 13 is a conceptual diagram showing an example of a process performed by an encryption unit to generate fifth association information.
  • FIG. 11 is a conceptual diagram showing an example of a form in which an image file creation process is performed by an external device in response to a request from an imaging device, and the processing result is received by the imaging device.
  • an imaging device 10 captures an image of an imaging target area 12 designated as a subject.
  • the imaging target area 12 is determined by an angle of view designated by a user of the imaging device 10 (hereinafter referred to as "user").
  • the imaging target area 12 includes a plurality of people, a road, etc.
  • the imaging device 10 is an example of an "information creation device" according to the technology of the present disclosure.
  • the imaging device 10 generates an image file 16 by capturing an image of the imaging target area 12 according to instructions given by the photographer 14.
  • Examples of the file format of the image file 16 include JPEG (Joint Photographic Experts Group) and TIFF (Tag Image File Format).
  • the image file 16 includes image data 18 that indicates an image showing the imaging target area 12, and metadata 20 about the image data 18.
  • the metadata 20 is data that accompanies the image data 18.
  • An example of the format of the metadata 20 is EXIF (Exchangeable image file format).
  • image file 16 is an example of an "image file” according to the technology of the present disclosure.
  • Image data 18 is an example of “image data” according to the technology of the present disclosure.
  • metadata 20 is an example of "accompanying information” according to the technology of the present disclosure.
  • the imaging device 10 is a consumer digital camera. Examples of consumer digital cameras include interchangeable lens digital cameras and fixed lens digital cameras. A consumer digital camera is merely one example, and the imaging device 10 may also be an industrial digital camera.
  • the technology disclosed herein may also be used when the imaging device 10 is an imaging device mounted on various electronic devices such as a drive recorder, a smart device, a wearable terminal, a cell observation device, an ophthalmic observation device, or a surgical microscope.
  • the technology disclosed herein may also be used when the imaging device 10 is an imaging device mounted on various modalities such as an endoscope device, an ultrasound diagnostic device, an X-ray imaging device, a CT (Computed Tomography) device, or an MRI (Magnetic Resonance Imaging) device.
  • the image file 16 is sent from the photographer 14 to a receiving site 22.
  • a receiving device 24 is installed at the receiving site 22.
  • An example of the receiving device 24 is a personal computer.
  • the receiving device 24 is used by a recipient 26 at the receiving site 22.
  • the recipient 26 receives the image file 16 sent from the photographer 14 via the receiving device 24.
  • the receiving device 24 may also be a smart device, a server, etc.
  • the image file 16 is transferred via a network 28.
  • Examples of the network 28 include a WAN (Wide Area Network) or a LAN (Local Area Network).
  • the imaging device 10 and the receiving device 24 are communicatively connected to the network 28.
  • the imaging device 10 may be connected to the network 28 wirelessly or wired, and the same can be said for the receiving device 24.
  • the imaging device 10 may also be connected to the network 28 via a communication device such as a smart device, and the same can be said for the receiving device 24.
  • the image file 16 is transferred via the network 28, but this is merely one example.
  • the image file 16 may be transferred via a portable storage medium such as a Universal Serial Bus (USB) memory, or the imaging device 10 may be directly connected to the receiving device 24, and the image file 16 may be transferred from the imaging device 10 to the receiving device 24.
  • USB Universal Serial Bus
  • the recipient 26 When the recipient 26 at the receiving site 22 receives the image file 16 from the photographer 14, the recipient 26 refers to the metadata 20 included in the received image file 16 and uses the receiving device 24 or the like to perform some kind of processing (e.g., editing, etc.) on the image file 16 or manages the image file 16.
  • some kind of processing e.g., editing, etc.
  • the recipient 26 if, for example, the whole or part of the metadata 20 is altered by a person (hereinafter referred to as a "third party") not intended by the photographer 14, or if part of the metadata 20 is deleted by a third party, the recipient 26 will end up performing some kind of processing on the image file 16 or managing the image file 16 using metadata 20 that is not intended by the photographer 14. To avoid such a situation, it is important that the photographer 14 provides the recipient 26 with highly reliable metadata 20.
  • the imaging device 10 performs an image file creation process (see, for example, Figures 3 and 13), and the receiving device 24 performs an image file receiving process (see, for example, Figures 4 and 14). This will be explained in more detail below.
  • the imaging device 10 includes a computer 30, an image sensor 32, a UI (User Interface) device 34, an electronic compass 36, a distance measurement sensor 38, a GNSS (Global Navigation Satellite System) device 39, and a communication I/F (Interface) 40.
  • the computer 30 is an example of a "computer" related to the technology disclosed herein.
  • Computer 30 includes a processor 42, a non-volatile memory (NVM) 44, and a random access memory (RAM) 46.
  • NVM non-volatile memory
  • RAM random access memory
  • Processor 42, NVM 44, and RAM 46 are connected to a bus 48.
  • Processor 42 is an example of a "processor" according to the technology disclosed herein.
  • Processor 42 is a processing device including a DSP (Digital Signal Processor), a CPU (Central Processing Unit), and a GPU (Graphics Processing Unit), and the DSP and GPU operate under the control of the CPU and are responsible for executing image-related processing.
  • a processing device including a DSP, a CPU, and a GPU is given as an example of processor 42, but this is merely one example, and processor 42 may be one or more CPUs and one or more GPUs, one or more CPUs and DSPs with integrated GPU functionality, one or more CPUs and DSPs without integrated GPU functionality, or may be equipped with a TPU (Tensor Processing Unit).
  • NVM 44 is a non-volatile storage device that stores various programs and various parameters.
  • NVM 44 is a flash memory (such as an EEPROM (Electrically Erasable and Programmable Read Only Memory)).
  • RAM 46 is a memory that temporarily stores information, and is used as a work memory by processor 42.
  • An example of RAM 46 is a DRAM (Dynamic Random Access Memory) or an SRAM (Static Random Access Memory).
  • the image sensor 32 is connected to the bus 48.
  • An example of the image sensor 32 is a CMOS (Complementary Metal Oxide Semiconductor) image sensor.
  • the image sensor 32 generates image data 18 by capturing an image of the imaging target area 12 (see FIG. 1) under the control of the processor 42.
  • CMOS image sensor is given as an example of the image sensor 32, but this is merely one example, and the image sensor 32 may be other types of image sensors, such as a CCD (Charge Coupled Device) image sensor.
  • CCD Charge Coupled Device
  • the UI device 34 is connected to the bus 48.
  • the UI device 34 receives instructions from the photographer 14 (see Figures 1 and 2) and outputs a signal indicating the received instructions to the processor 42.
  • the UI device 34 also presents various information to the photographer 14 under the control of the processor 42.
  • the presentation of various information is realized, for example, by displaying the various information on a display or outputting the various information as sound from a speaker.
  • the electronic compass 36 detects the direction of the imaging direction of the imaging device 10 (e.g., the direction of the optical axis of the imaging lens attached to the imaging device 10) based on geomagnetism.
  • the distance measurement sensor 38 measures the imaging distance.
  • the imaging distance refers to the distance from the imaging device 10 (e.g., the light receiving surface of the image sensor 32) to the imaging target area 12 (e.g., a specific person included in the imaging target area 12 shown in FIG. 1).
  • a first example of the distance measurement sensor 38 is a distance measurement sensor using image surface phase difference pixels applied to the image sensor 32.
  • a second example of the distance measurement sensor 38 is a distance measurement sensor that uses multiple phase difference pixels and is provided in the imaging device 10 as a sensor separate from the image sensor 32.
  • a third example of the distance measurement sensor 38 is a TOF (Time Of Flight) type distance measurement sensor. In this way, the distance measurement sensor 38 may be any sensor that can measure the imaging distance.
  • TOF Time Of Flight
  • the GNSS device 39 receives radio waves transmitted from multiple satellites (not shown) and calculates the latitude and longitude that can identify the current position of the imaging device 10 based on the received radio waves.
  • the communication I/F 40 is an interface including a communication processor and an antenna, etc., and is connected to the bus 48.
  • the communication standard applied to the communication I/F 40 may be, for example, a wireless communication standard including 5G (5th Generation Mobile Communication System), Wi-Fi (registered trademark), Bluetooth (registered trademark), etc., or a wired communication standard including Ethernet (registered trademark), Fast Ethernet (registered trademark), Gigabit Ethernet (registered trademark), etc.
  • An image file creation program 50 is stored in NVM 44.
  • Image file creation program 50 is an example of a "program" according to the technology of the present disclosure.
  • Processor 42 reads image file creation program 50 from NVM 44 and executes the read image file creation program 50 on RAM 46 to perform image file creation processing.
  • the image file creation processing is realized by processor 42 operating as acquisition unit 42A, association unit 42B, encryption unit 42C, attachment unit 42D, and transmission unit 42E in accordance with image file creation program 50 executed by processor 42 on RAM 46.
  • the receiving device 24 includes a computer 52, a UI device 54, and a communication I/F 56.
  • the computer 52 includes a processor 58, an NVM 60, and a RAM 62.
  • the processor 58, the NVM 60, the RAM 62, the UI device 54, and the communication I/F 56 are connected to a bus 64.
  • the hardware configuration of the computer 52 (i.e., the processor 58, the NVM 60, and the RAM 62) is basically the same as the hardware configuration of the computer 30 shown in FIG. 3, so a description of the hardware configuration of the computer 52 will be omitted here.
  • the role played by the UI-based device 54 in the receiving device 24 is basically the same as the role played by the UI-based device 34 in the imaging device 10 shown in FIG. 3, so a description of it will be omitted here.
  • the role played by the communication I/F 56 in the receiving device 24 is basically the same as the role played by the communication I/F 40 in the imaging device 10 shown in FIG. 3, so a description of it will be omitted here.
  • An image file receiving program 66 is stored in the NVM 60.
  • the processor 58 reads the image file receiving program 66 from the NVM 60 and executes the read image file receiving program 66 on the RAM 62 to perform the image file receiving process.
  • the image file receiving process is realized by the processor 58 operating as a receiving unit 58A, a generating unit 58B, a comparing unit 58C, and an executing unit 58D in accordance with the image file receiving program 66 executed on the RAM 62.
  • FIGS. 5 to 9 show an example of the processing contents of the acquisition unit 42A, association unit 42B, encryption unit 42C, attachment unit 42D, and transmission unit 42E in the imaging device 10.
  • the acquisition unit 42A executes an imaging process and an acquisition process.
  • the imaging process is a process of acquiring image data 18 obtained by imaging using the image sensor 32 from the image sensor 32.
  • the acquisition process is also a process of acquiring related information 68 related to the image data 18.
  • the imaging process is an example of an "imaging process” according to the technology of the present disclosure.
  • the acquisition process is also an example of an "acquisition process” according to the technology of the present disclosure.
  • the acquisition process is automatically executed after the image data 18 is acquired. That is, the acquisition process is automatically executed after the imaging process.
  • the acquisition unit 42A performs the imaging process and the acquisition process consecutively by synchronizing the end of the imaging process with the start of the acquisition process (for example, starting the acquisition process at the timing when the imaging process ends).
  • Imager information 68A is an example of "imager information” according to the technology of the present disclosure.
  • Image capture time information 68B is an example of "image capture time information” according to the technology of the present disclosure.
  • Image capture device position information 68C is an example of "image capture device position information” according to the technology of the present disclosure.
  • Subject position information 68D is an example of "subject position information” according to the technology of the present disclosure.
  • the photographer information 68A is information that can identify the person who captured the image using the imaging device 10 to obtain the image data 18, i.e., the photographer 14.
  • One example of the photographer information 68A is information that indicates the name of the photographer 14 (e.g., name or handle name, etc.).
  • the photographer information 68A is stored in the NVM 44, and is acquired from the NVM 44 by the acquisition unit 42A.
  • the acquisition unit 42A acquires the photographer information 68A from the NVM 44, but this is merely one example.
  • the photographer information 68A may be acquired by the acquisition unit 42A from a server or the like via the network 28, or the photographer information 68A may be manually input via the UI device 34 and acquired by the acquisition unit 42A.
  • the imaging time information 68B is information that indicates the time when imaging was performed using the imaging device 10 to obtain the image data 18.
  • the imaging time information 68B is acquired by the acquisition unit 42A via the network 28.
  • the imaging time information 68B is acquired by the acquisition unit 42A through the network 28, but this is merely one example.
  • the imaging time information 68B may be acquired by the acquisition unit 42A from a real-time clock built into the imaging device 10 or a real-time clock built into an external device (e.g., a smart device) connected to the imaging device 10, or imaging time information 68B manually input via the UI device 34 may be acquired by the acquisition unit 42A.
  • imaging time information 68B is given as information included in related information 68, but this is merely one example.
  • information included in related information 68 may be information indicating the time required for exposure performed by image sensor 32.
  • Information included in related information 68 may also be information indicating the time interval between frames.
  • Information included in related information 68 may also be information indicating the time when imaging to obtain a moving image was started.
  • Information included in related information 68 may also be information indicating the time when imaging to obtain a moving image was ended.
  • Information included in related information 68 may also be information indicating the time from when imaging to obtain a moving image was started to when it was ended. In this way, it is sufficient that information indicating the time related to imaging using imaging device 10 is included in related information 68.
  • the imaging device position information 68C is information indicating the position where the imaging device 10 captured the image to obtain the image data 18 (e.g., the position of the imaging device 10 at the time the image was captured), and is acquired from the GNSS device 39 by the acquisition unit 42A. That is, the GNSS device 39 calculates the latitude and longitude that can identify the current position of the imaging device 10, and information indicating the calculated latitude and longitude is acquired by the acquisition unit 42A as the imaging device position information 68C.
  • the imaging device position information 68C is acquired by the acquisition unit 42A from the GNSS device 39, but this is merely one example.
  • information indicating latitude and longitude manually input via the UI device 34 may be acquired by the acquisition unit 42A as the imaging device position information 68C.
  • information indicating latitude and longitude calculated by a GNSS device built into an external device (e.g., a smart device, etc.) connected to the imaging device 10 may be acquired by the acquisition unit 42A as the imaging device position information 68C.
  • the subject position information 68D is information indicating the position of the imaging target area 12 (here, as an example, the latitude and longitude of the imaging target area 12) and is calculated by the acquisition unit 42A.
  • the acquisition unit 42A calculates the subject position information 68D based on the imaging device position information 68C, distance information 70, and orientation information 72.
  • the distance information 70 is information indicating the imaging distance measured by the distance measurement sensor 38 and is acquired from the distance measurement sensor 38 by the acquisition unit 42A.
  • the orientation information 72 is information indicating the orientation detected by the electronic compass 36 and is acquired from the electronic compass 36 by the acquisition unit 42A.
  • subject position information 68D is calculated by the acquisition unit 42A
  • subject position information 68D manually input via the UI device 34 may be acquired by the acquisition unit 42A.
  • the imaging device position information 68C and the subject position information 68D contain unacceptable information 74.
  • the unacceptable information 74 is information indicating that modification and deletion are not permitted.
  • the unacceptable information 74 contained in the imaging device position information 68C is information indicating that modification and deletion of the imaging device position information 68C is not permitted
  • the unacceptable information 74 contained in the subject position information 68D is information indicating that modification and deletion of the subject position information 68D is not permitted.
  • the image capturer 14 or the recipient 26 can determine whether the information is not permitted to be modified or deleted by checking whether the information contains unacceptable information 74. For example, in the first embodiment, the image capturer 14 or the recipient 26 can recognize that the image capturer position information 68C and the subject position information 68D are not permitted to be modified or deleted because the image capturer position information 68C and the subject position information 68D contain unacceptable information 74.
  • the acquisition unit 42A includes the unacceptable information 74 in one or more pieces of information (here, as an example, the imaging device position information 68C and the subject position information 68D) selected from the multiple pieces of information included in the related information 68 in accordance with the instruction received by the UI device 34.
  • the unacceptable information 74 in one or more pieces of information (here, as an example, the imaging device position information 68C and the subject position information 68D) selected from the multiple pieces of information included in the related information 68 in accordance with the instruction received by the UI device 34.
  • one or more pieces of information that include the unacceptable information 74 may be predetermined, and in this case, the acquisition unit 42A includes the unacceptable information 74 in the one or more pieces of information that are predetermined.
  • the association unit 42B generates first association information 76.
  • the first association information 76 is generated by associating reliability information 78 with the related information 68 acquired by the acquisition unit 42A.
  • the reliability information 78 is an example of "reliability information" related to the technology disclosed herein.
  • the reliability information 78 is information that indicates the reliability of the related information 68.
  • related information 68 that is highly likely to be altered or deleted can be said to be information with low reliability.
  • related information 68 that is less likely to be altered or deleted can be said to be information with high reliability.
  • the reliability of the related information 68 depends on the source of the related information 68.
  • the source of the related information 68 can be one indicator for the recipient 26, etc. to judge the reliability of the related information 68.
  • the source of the related information 68 is a source with high security (e.g., a source where it is difficult to modify or delete the related information 68)
  • the recipient 26, etc. can judge that the reliability of the related information 68 is also high
  • the source of the related information 68 is a source with low security (e.g., a source where it is easy to modify or delete the related information 68)
  • the recipient 26, etc. can judge that the reliability of the related information 68 is also low.
  • An example of a source with high security is the network 28 or GNSS.
  • An example of a source with medium security is when the processor 42 obtains some information in cooperation with other sensors that measure distance or direction.
  • An example of a source with low security i.e., a source that is more susceptible to third party intervention than the network 28 or GNSS
  • the UI device 34 or a readable/writable memory e.g., NVM 44.
  • the related information 68 obtained by manual input or the related information 68 obtained from the readable/writable memory can be said to be less reliable than the related information 68 obtained through a page of a public address on the network 28. Therefore, in the first embodiment, information regarding whether the related information 68 is information obtained through the network 28 is used as an example of reliability information 78.
  • the reliability information 78 includes first reliability information 78A, second reliability information 78B, third reliability information 78C, and fourth reliability information 78D.
  • the association unit 42B associates the first reliability information 78A with the imager information 68A, the second reliability information 78B with the image capture time information 68A, the third reliability information 78C with the image capture device position information 68C, and the fourth reliability information 78D with the subject position information 68D.
  • the first reliability information 78A is information that can identify the source of the photographer information 68A.
  • the photographer information 68A is information acquired from the NVM 44 by the acquisition unit 42A. Therefore, in this first embodiment, information indicating that the photographer information 68A was acquired from the NVM 44 is applied as an example of the first reliability information 78A.
  • the fact that such first reliability information 78A is associated with the photographer information 68A means that the photographer information 68A is not information obtained through the network 28.
  • the associating unit 42B automatically associates the first reliability information 78A with the imager information 68A after the imager information 68A is acquired from the NVM 44 by the acquiring unit 42A in a manner similar to the automatic execution of the acquisition process after the imaging process.
  • the reason for doing so is to prevent any time lag during which a third party can create false reliability information 78 and associate it with the imager information 68A.
  • the second reliability information 78B is information that can identify the source of the imaging time information 68B.
  • the imaging time information 68B is information obtained through the network 28. Therefore, in this first embodiment, information indicating that the imaging time information 68B was obtained through the network 28 is applied as an example of the second reliability information 78B.
  • the fact that such second reliability information 78B is associated with the imaging time information 68B means that the imaging time information 68B is information obtained through the network 28.
  • the second reliability information 78B is also automatically associated with the image capture time information 68B after the image capture time information 68B is acquired via the network 28.
  • the third reliability information 78C is information that can identify the source of the imaging device position information 68C.
  • the imaging device position information 68C is information obtained through GNSS. Therefore, in this first embodiment, information indicating that the imaging device position information 68C was obtained through GNSS is applied as an example of the third reliability information 78C.
  • the fact that such third reliability information 78C is associated with the imaging device position information 68C means that the imaging device position information 68C is not information obtained through a highly reliable GNSS.
  • the third reliability information 78C is also automatically associated with the imaging device position information 68C after the imaging device position information 68C is acquired via GNSS.
  • the fourth reliability information 78D is information that can identify the source of the subject position information 68D.
  • the subject position information 68D is information acquired through internal processing by the processor 42 (i.e., calculation of the subject position information 68D by the acquisition unit 42A based on the imaging device position information 68C, the distance information 70, and the orientation information 72). Therefore, in the first embodiment, as an example of the fourth reliability information 78D, information indicating that the subject position information 68D was acquired through internal processing by the processor 42 is applied.
  • fourth reliability information 78D is associated with the subject position information 68D means that the subject position information 68D is information acquired by the processor 42, which has a slightly higher reliability, performing internal processing in cooperation with another device (e.g., the electronic compass 36 or the distance sensor 38, etc.).
  • the fourth reliability information 78D is also automatically associated with the subject position information 68D after the subject position information 68D is acquired through internal processing by the processor 42.
  • the encryption unit 42C generates second association information 80 using the first association information 76.
  • the second association information 80 differs from the first association information 76 in that the association information 68 has been replaced with encryption information 82, and in that the second association information 80 includes time information 86.
  • the encryption unit 42C executes an encryption process.
  • the encryption process is a process for generating encrypted information 82 by encrypting the related information 68 included in the first association information 76.
  • the encrypted information 82 is an example of the "first encrypted information" related to the technology of the present disclosure.
  • the encryption process is automatically performed after the acquisition process in a manner similar to how the acquisition process is automatically performed after the imaging process.
  • the reason for this is to prevent any time gap for a third party to alter the related information 68, delete the related information 68, or encrypt the altered related information 68.
  • the NVM 44 stores a hash function 84.
  • Examples of the hash function 84 include SHA-256, SHA-384, and SHA-512.
  • the encryption unit 42C obtains the hash function 84 from the NVM 44, and generates encrypted information 82 by encrypting (i.e., hashing) the related information 68 using the obtained hash function 84.
  • the encrypted information 82 includes a first hash value 82A, a second hash value 82B, a third hash value 82C, and a fourth hash value 82D.
  • the first hash value 82A is a value obtained by hashing the photographer information 68A using a hash function 84.
  • the second hash value 82B is a value obtained by hashing the imaging time information 68B using a hash function 84.
  • the third hash value 82C is a value obtained by hashing the imaging device position information 68C using a hash function 84.
  • the fourth hash value 82D is a value obtained by hashing the subject position information 68D using a hash function 84.
  • the reliability information 78 associated with the related information 68 is inherited and associated with the encrypted information 82 as is. That is, the first reliability information 78A is associated with the first hash value 82A, the second reliability information 78B is associated with the second hash value 82B, the third reliability information 78C is associated with the third hash value 82C, and the fourth reliability information 78D is associated with the fourth hash value 82D.
  • the encryption unit 42C In the encryption process, the encryption unit 42C generates timing information 86, which is information about the time when the encryption information 82 was generated, and includes the generated timing information 86 in the second association information 80. For example, in the encryption process, the timing information 86 is included in the second association information 80 by being associated with the encryption information 82.
  • information generated using the image capture time information 68B is used as an example of the time information 86.
  • An example of the timing at which the time information 86 is generated is the timing at which encryption (here, hashing is used as an example) of the related information 68 is completed.
  • the timing information 86 includes information indicating the timing of generation, such as that the encrypted information 82 was generated at the time of image capture, and the image capture time information 68B. Note that this is merely one example, and the timing information 86 may be the image capture time information 68B itself.
  • the timing information 86 may also be information indicating the time at which the encryption of the related information 68 actually ends. In this case, for example, the timing information 86 may be acquired by the encryption unit 42C via the network 28 at the timing when the encryption of the related information 68 ends, or may be acquired by the encryption unit 42C from a real-time clock built into the imaging device 10 at the timing when the encryption of the related information 68 ends.
  • the attachment unit 42D executes an attachment process of directly or indirectly attaching the related information 68, the second association information 80, and the hash function 84 to the image data 18 as metadata 20.
  • the attachment process includes a creation process.
  • the creation process is a process of creating an image file 16.
  • the image file 16 is created by converting the image data 18 and the metadata 20 into a file according to a default file format.
  • the attachment unit 42D directly attaches the metadata 20 to the image data 18, for example, as shown in FIG. 8A, the image file 16 includes the related information 68, the second association information 80, and the hash function 84 as metadata 20.
  • FIG. 8B shows an example of a case where the attachment unit 42D indirectly attaches the metadata 20 to the image data 18.
  • the indirect attachment of the metadata 20 to the image data 18 is achieved by including access information 85 in the metadata 20 in the image file 16.
  • the attachment process includes a recording process of recording the metadata 20 on the recording medium 4 of the external server 2 (e.g., a process in which the attachment unit 42D uploads the metadata 20 to the server 2 and causes the server 2 to record it on the recording medium 4), and a creation process of creating an image file 16 that includes access information 85 for accessing the metadata 20 in the recording medium 4 (e.g., information for enabling access to the metadata 20 stored on the recording medium 4 of the server 2).
  • a recording process of recording the metadata 20 on the recording medium 4 of the external server 2 e.g., a process in which the attachment unit 42D uploads the metadata 20 to the server 2 and causes the server 2 to record it on the recording medium 4
  • a creation process of creating an image file 16 that includes access information 85 for accessing the metadata 20 in the recording medium 4 (e.g., information for enabling access to the metadata 20 stored on the recording medium 4 of the server 2).
  • Examples of the recording medium 4 include a hard disk, a magnetic tape, or a flash memory.
  • Examples of access include a process of searching for and viewing information (here, as an example, metadata 20) on the network 28, a process of reading information (here, as an example, metadata 20) from a memory (here, as an example, the recording medium 4), or a process of writing information to a memory.
  • Examples of the access information 85 include an identification ID (identifier), a URL (Uniform Resource Locator), or a download password.
  • the metadata 20 contained in the image file 16 and the metadata 20 contained in the recording medium 20 may be the same data, or may be partially or entirely different data.
  • a first example of a case in which the metadata 20 contained in the image file 16 differs from the metadata 20 contained in the recording medium 20 is an example in which all of the related information 68, second association information 80, and hash function 84 shown in FIG. 8A are recorded on the recording medium 20, and metadata 20 other than the related information 68, second association information 80, and hash function 84 shown in FIG. 8A are recorded in the image file 16.
  • a second example of a case in which the metadata 20 included in the image file 16 differs from the metadata 20 included in the recording medium 20 is one in which part of the related information 68, second association information 80, and hash function 84 shown in FIG. 8A (e.g., related information 68) is recorded on the recording medium 20, and metadata 20 including the remainder (e.g., second association information 80 and hash function 84) is recorded in the image file 16.
  • a third example of a case in which the metadata 20 contained in the image file 16 and the metadata 20 contained in the recording medium 20 are different is when the access information 85 is recorded as metadata 20 in the image file 16, and the metadata 20 other than the access information 85 is recorded on the recording medium 20.
  • the metadata 20 is directly attached to the image data 18, but the technology of the present disclosure is not limited to this, and the technology of the present disclosure also includes an example in which the attachment unit 42D indirectly attaches the metadata 20 to the image data 18.
  • the attachment unit 42D automatically includes the related information 68 in the metadata 20 after the acquisition process in a manner similar to the way that the acquisition process is automatically performed after the imaging process. The reason for doing so is to prevent any time leeway for a third party to modify or delete the related information 68 before it is included in the metadata 20.
  • the attachment unit 42D automatically includes the second association information 80 and the hash function 84 in the metadata 20 after the encryption step, in a manner similar to the way that the acquisition step is automatically performed after the imaging step.
  • the reason for doing so is to prevent any time leeway for a third party to modify or delete the second association information 80 and the hash function 84 before they are included in the metadata 20.
  • the transmission unit 42E transmits the image file 16 created by the attachment unit 42D to the receiving device 24 via the communication I/F 40 (see FIG. 3).
  • the receiving device 24 receives the image file 16 transmitted from the transmission unit 42E via the communication I/F 56 (see FIG. 4). In this way, the image file 16 is handed over from the photographer 14 to the recipient 26 (see FIG. 2).
  • FIGS. 10 to 12 show an example of the processing contents of the receiving unit 58A, generating unit 58B, comparing unit 58C, and executing unit 58D in the receiving device 24.
  • the generation unit 58B acquires the image file 16 received by the reception unit 58A from the reception unit 58A.
  • the generation unit 58B executes a generation process.
  • the generation process is a process of generating verification information 88 using the related information 68 and a hash function 84.
  • the generation process is an example of a "generation process" related to the technology of the present disclosure.
  • the generation unit 58B obtains the related information 68 and the hash function 84 from the metadata 20 included in the image file 16, and generates verification information 88 by hashing the related information 68 using the hash function 84.
  • the verification information 88 includes a fifth hash value 88A, a sixth hash value 88B, a seventh hash value 88C, and an eighth hash value 88D.
  • the fifth hash value 88A is a value obtained by hashing the photographer information 68A (see FIG. 6) included in the related information 68 using the hash function 84.
  • the sixth hash value 88B is a value obtained by hashing the imaging time information 68A (see FIG. 6) included in the related information 68 using the hash function 84.
  • the seventh hash value 88C is a value obtained by hashing the imaging device position information 68C included in the related information 68 using the hash function 84.
  • the eighth hash value 88D is a value obtained by hashing the subject position information 68D using the hash function 84.
  • the comparison unit 58C acquires from the receiving unit 58A the image file 16 received by the receiving unit 58A (i.e., the same image file 16 as the image file 16 acquired by the generating unit 58B).
  • the comparison unit 58C extracts the encryption information 82 from the second association information 80 in the metadata 20 included in the image file 16 acquired from the receiving unit 58A.
  • the comparison unit 58C acquires the verification information 88 generated by the generation unit 58B from the generation unit 58B.
  • the comparison unit 58C executes a comparison process.
  • the comparison process is an example of a "comparison process" according to the technology of the present disclosure.
  • the comparison process is a process of comparing the verification information 88 acquired from the generation unit 58B with the encrypted information 82 extracted from the second association information 80. Note that, as shown in FIG. 8B, when the metadata 20 is recorded on the recording medium 4 of the server 2, the verification of the modification or deletion of the metadata 20 in the comparison process may be performed within the server 2, or may be performed by a device (such as a personal computer or a server other than the server 2) communicably connected to the server 2.
  • the comparison unit 58C compares the fifth hash value 88A included in the verification information 88 with the first hash value 82A included in the encryption information 82 to determine whether the fifth hash value 88A and the first hash value 82A match.
  • the comparison unit 58C also compares the sixth hash value 88B included in the verification information 88 with the second hash value 82B included in the encryption information 82 to determine whether the sixth hash value 88B and the second hash value 82B match.
  • the comparison unit 58C also compares the seventh hash value 88C included in the verification information 88 with the third hash value 82C included in the encryption information 82 to determine whether the seventh hash value 88C and the third hash value 82C match.
  • the comparison unit 58C also compares the eighth hash value 88D included in the verification information 88 with the fourth hash value 82D included in the encryption information 82 to determine whether the eighth hash value 88D and the fourth hash value 82D match.
  • the execution unit 58D obtains the comparison result 90 from the comparison unit 58C.
  • the comparison result 90 includes a first comparison result 90A, a second comparison result 90B, a third comparison result 90C, and a fourth comparison result 90D.
  • the first comparison result 90A is the result of the comparison by the comparison unit 58C between the fifth hash value 88A and the first hash value 82A (i.e., the result of determining whether the fifth hash value 88A and the first hash value 82A match).
  • the second comparison result 90B is the result of the comparison by the comparison unit 58C between the sixth hash value 88B and the second hash value 82B (i.e., the result of determining whether the sixth hash value 88B and the second hash value 82B match).
  • the third comparison result 90C is the result of the comparison by the comparison unit 58C between the seventh hash value 88C and the third hash value 82C (i.e., the result of determining whether the seventh hash value 88C and the third hash value 82C match).
  • the fourth comparison result 90D is the result of the comparison between the eighth hash value 88D and the fourth hash value 82D by the comparison unit 58C (i.e., the result of determining whether the eighth hash value 88D and the fourth hash value 82D match).
  • the execution unit 58D acquires from the receiving unit 58A the image file 16 received by the receiving unit 58A (i.e., the same image file 16 as the image file 16 acquired by the generating unit 58B and the comparing unit 58C). The execution unit 58D also extracts the reliability information 78 and the timing information 86 from the second association information 80 in the metadata 20 included in the image file 16 acquired from the receiving unit 58A.
  • the execution unit 58D executes processing based on the comparison result 90 obtained from the comparison unit 58C, the reliability information 78 extracted from the second association information 80, and the timing information 86 extracted from the second association information 80.
  • Preventive processing refers to processing that prevents a recipient 26 who uses the metadata 20 from suffering any disadvantage due to, for example, the metadata 20 being altered or a part of the metadata 20 being deleted.
  • a first example of preventive processing is a process in which the comparison result 90, reliability information 78, and timing information 86 are presented to the recipient 26 via a UI device 34 (e.g., a display) or the photographer 14 is notified.
  • a UI device 34 e.g., a display
  • a second example of preventive processing is a process in which a numerical value indicating the possibility that related information 68 included in metadata 20 has been altered or part of related information 68 has been deleted is calculated based on comparison result 90, reliability information 78, and timing information 86, and information based on the calculated numerical value is output to a specific output destination (e.g., UI-based device 34, NVM 44, or an external device on network 28, etc.).
  • a specific output destination e.g., UI-based device 34, NVM 44, or an external device on network 28, etc.
  • a third example of preventive processing is the process of calculating a numerical value indicating the possibility as described above, and including information based on the calculated numerical value in the metadata 20.
  • a fourth example of preventive processing is a process of calculating the degree of difference between the time indicated by the timing information 86 and the time indicated by the image capture time information 68B included in the metadata 20 of the image file 16, and outputting information based on the calculated degree of difference to a specific output destination.
  • information based on the degree of difference is information that indicates the degree of difference itself, or alert information determined according to the degree of difference.
  • alert information is information that calls for greater caution the greater the degree of difference.
  • a fifth example of preventive processing is a process in which the degree of difference is calculated as described above, and information based on the calculated degree of difference (e.g., a flag corresponding to the degree of difference) is included in the metadata 20.
  • a sixth example of preventive processing is a process in which, as described above, a numerical value indicating the possibility or a degree of difference is calculated, and if the numerical value indicating the possibility or the degree of difference exceeds a threshold, the image file 16 is deleted, a flag is assigned to the image file 16, or the image file 16 is stored in a specific storage area.
  • preventive processing may be executed by the execution unit 58D based on one or two pieces of information among the comparison result 90, the reliability information 78, and the timing information 86.
  • FIG. 13 The flow of the image file creation process shown in the flowchart in FIG. 13 is an example of an "information creation method" related to the technology of the present disclosure.
  • step ST10 the acquisition unit 42A determines whether or not one frame's worth of image has been captured by the image sensor 32. In step ST10, if one frame's worth of image has not been captured by the image sensor 32 (e.g., capturing an image for a still image), the determination is negative and the image file creation process proceeds to step ST26. In step ST10, if one frame's worth of image has been captured by the image sensor 32, the determination is positive and the image file creation process proceeds to step ST12.
  • step ST12 the acquisition unit 42A acquires image data 18 from the image sensor 32. After the processing of step ST12 is executed, the image file creation processing proceeds to step ST14.
  • step ST14 the acquisition unit 42A acquires related information 68 related to the image data 18. After the processing of step ST14 is executed, the image file creation processing proceeds to step ST16.
  • step ST16 the association unit 42B generates first association information 76 by associating the association information 68 and reliability information 78 acquired in step ST14. After the processing of step ST16 is executed, the image file creation processing proceeds to step ST18.
  • step ST18 the encryption unit 42C generates encrypted information 82 by encrypting the associated information 68 included in the first association information 76 generated in step ST16 using a hash function 84.
  • the image file creation processing proceeds to step ST20.
  • step ST20 the encryption unit 42C generates timing information 86. Then, the encryption unit 42C generates second association information 80 based on the encryption information 82 generated in step ST18, the reliability information 78 used in step ST16, and the timing information 86. After the process of step ST20 is executed, the image file creation process proceeds to step ST22.
  • step ST22 the attachment unit 42D creates an image file 16 by attaching the related information 68 acquired in step ST14, the second association information 80 generated in step ST20, and the hash function 84 used in step ST18 to the image data 18 as metadata 20.
  • the image file creation process proceeds to step ST24.
  • step ST24 the sending unit 42E sends the image file 16 created in step ST22 to the receiving device 24. After the processing of step ST24 is executed, the image file creation processing proceeds to step ST26.
  • step ST26 the transmission unit 42E determines whether or not the conditions for terminating the image file creation process have been satisfied.
  • a condition for terminating the image file creation process is that an instruction to terminate the image file creation process has been accepted by the UI device 34. If the conditions for terminating the image file creation process are not satisfied in step ST26, the determination is negative, and the image file creation process proceeds to step ST10. If the conditions for terminating the image file creation process are satisfied in step ST26, the determination is positive, and the image file creation process terminates.
  • step ST50 the receiving unit 58A determines whether or not the image file 16 transmitted from the transmitting unit 42E of the imaging device 10 has been received by executing the process of step ST24 shown in FIG. 13. If the image file 16 has not been received in step ST50, the determination is negative, and the image file receiving process proceeds to step ST60. If the image file 16 has been received in step ST50, the determination is positive, and the image file receiving process proceeds to step ST52.
  • step ST52 the generation unit 58B generates verification information 88 by encrypting the related information 68 included in the metadata 20 of the image file 16 received in step ST50 using a hash function 84 included in the metadata 20.
  • step ST52 the image file receiving processing proceeds to step ST54.
  • step ST54 the comparison unit 58C extracts the encryption information 82 from the second association information 80 included in the metadata 20 of the image file 16 received in step ST50.
  • the comparison unit 58C then compares the encryption information 82 extracted from the second association information 80 with the verification information 88 generated in step ST52.
  • the receiving process proceeds to step ST56.
  • step ST56 the execution unit 58D extracts the reliability information 78 and the timing information 86 from the second association information 80 contained in the metadata 20 of the image file 16 received in step ST50. After the processing of step ST56 is executed, the image file receiving processing proceeds to step ST58.
  • step ST58 the execution unit 58D executes processing (e.g., the preventive processing described above) based on the comparison result 90 resulting from the comparison of the encryption information 82 and the verification information 88 in step ST54, the reliability information 78 extracted from the second association information 80 in step ST56, and the timing information 86 extracted from the second association information 80 in step ST56.
  • processing e.g., the preventive processing described above
  • the image file receiving processing proceeds to step ST60.
  • step ST60 the execution unit 58D determines whether or not the conditions for terminating the image file receiving process have been satisfied.
  • a condition for terminating the image file receiving process is that an instruction to terminate the image file receiving process has been accepted by the UI device 54. If the conditions for terminating the image file receiving process are not satisfied in step ST60, the determination is negative, and the image file receiving process proceeds to step ST50. If the conditions for terminating the image file receiving process are satisfied in step ST60, the determination is positive, and the image file receiving process terminates.
  • the imaging device 10 acquires the associated information 68 related to the image data 18, and generates encrypted information 82 by encrypting the associated information 68.
  • the imaging device 10 creates the image file 16 by attaching the encrypted information 82 to the image data 18 as metadata 20.
  • the imaging device 10 includes timing information 86 in the metadata 20 of the image file 16.
  • the timing information 86 is information related to the time when the encrypted information 82 was generated. Therefore, for example, when the recipient 26 or the like receives the image file 16 from the imager 14, the recipient 26 or the like can infer the validity of the time when the related information 68 was encrypted by referring to the timing information 86 included in the metadata 20 of the image file 16.
  • the recipient 26 or the like can determine that the reliability of the related information 68 is high, and conversely, if the recipient 26 or the like feels that there is something abnormal about the time when the related information 68 was encrypted, the recipient 26 or the like can determine that the reliability of the related information 68 is low. In this way, by including the timing information 86 in the metadata 20 of the image file 16, the security of the related information 68 can be increased.
  • reliability information 78 is included in the metadata 20 by the imaging device 10.
  • the reliability information 78 is information that indicates the reliability of the related information 68. Therefore, for example, when a recipient 26 etc. receives an image file 16 from the imager 14, the recipient 26 etc. can determine the reliability of the related information 68 by referring to the reliability information 78 included in the metadata 20 of the image file 16. In this way, by including the reliability information 78 in the metadata 20 of the image file 16, the security of the related information 68 can be increased.
  • the imaging device 10 includes related information 68 in the metadata 20.
  • the recipient 26 or the like can receive related information 68 related to the image data 18 by receiving the image file 16 itself or the metadata 20 included in the image file 16 from the imager 14. This allows the recipient 26 or the like to easily obtain the related information 68.
  • information on whether the related information 68 was obtained through the network 28 is used as an example of reliability information 78. Therefore, if the related information 68 was obtained through the network 28, the recipient 26 or the like can be made to determine that the related information 68 was obtained from a public page and therefore had high security. If the related information 68 was not obtained through the network 28 or GNSS, the recipient 26 or the like can be made to determine that the related information 68 was not highly secure.
  • the imaging device 10 creates an image file 16 that includes the related information 68 and the encrypted information 82. That is, the image file 16 includes not only the encrypted information 82, but also the related information 68, which is the information before it is encrypted. This allows, for example, the receiving device 24 to realize not only processing using the encrypted information 82, but also processing using the related information 68.
  • the related information 68 includes photographer information 68A, image capture time information 68B, image capture device position information 68C, and subject position information 68D.
  • the related information 68 is encrypted and included in the metadata 20 of the image file 16 as encrypted information 82. This makes it possible to improve the security of the photographer information 68A, image capture time information 68B, image capture device position information 68C, and subject position information 68D.
  • the image capture device position information 68C and the subject position information 68D contain unacceptable information 74.
  • the unacceptable information 74 is information that indicates that modification and deletion are not permitted.
  • the image capturer 14 or the recipient 26, etc. can recognize that modification and deletion of the imaging device position information 68C and the subject position information 68D are not permitted.
  • the hash function 84 used to encrypt the related information 68 is included in the metadata 20. Therefore, the recipient 26 or the like who receives the image file 16 from the photographer 14 can easily obtain the hash function 84 used to encrypt the related information 68.
  • the image file 16 transmitted from the imaging device 10 is received by the receiving device 24, and the receiving device 24 obtains a hash function 84 from the image file 16.
  • the receiving device 24 then encrypts (i.e., hashes) the related information 68 using the hash function 84 to generate verification information 88, and compares the verification information 88 with the encrypted information 82.
  • the recipient 26 or the like can determine that it is highly likely that the related information 68 has been altered or that a portion of the related information 68 has been deleted.
  • the recipient 26 or the like can determine that it is low likely that the related information 68 has been altered or that a portion of the related information 68 has been deleted.
  • the process of encrypting the related information 68 in the imaging device 10 is automatically executed after the related information 68 is acquired. This means that, for example, there is no time for the related information 68 to be altered or part of the related information 68 to be deleted between the time when the encrypted information 82 is generated from the related information 68, and therefore the reliability of the related information 68 can be improved.
  • the related information 68 is automatically acquired after the image data 18 is acquired in the imaging device 10.
  • the related information 68 is automatically acquired after the image data 18 is acquired in the imaging device 10.
  • the image data 18 obtained by imaging using the image sensor 32 is acquired from the image sensor 32 by the acquisition unit 42A, and then the related information 68 is automatically acquired by the acquisition unit 42A.
  • the unacceptable information 74 is included in the imaging device position information 68C and the subject position information 68D, but this is merely one example.
  • the unacceptable information 74 may be included in the imaging device position information 68C or the subject position information 68D, or the unacceptable information 74 may be included in other information included in the related information 68 (for example, the photographer information 68A or the imaging time information 68B, etc.).
  • the unacceptable information 74 may be assigned to the entire related information 68.
  • the timing information 86 is included directly in the second association information 80, but this is merely one example.
  • the timing information 86 may also be encrypted in a manner similar to the way in which the association information 68 is encrypted, and the encrypted information of the timing information 86 may be included in the second association information 80.
  • the timing information 86 before encryption may also be included in the metadata 20 of the image file 16 as part of the association information 68.
  • the image file creation process according to the second embodiment is realized by the processor 42 further operating as an editing unit 42F, as compared to the image file creation process according to the first embodiment.
  • the editing unit 42F executes an editing process.
  • the editing process is a process of editing the image data 18.
  • the editing process is performed by the imaging device 10, but this is merely one example.
  • the editing process may be performed by a smart device, a personal computer, a server, or the like that is communicatively connected to the imaging device 10.
  • the UI-based device 34 receives an editing instruction 92 from the photographer 14 or the like.
  • the editing instruction 92 refers to, for example, an instruction regarding the specific content for editing the image data 18.
  • the editing unit 42F edits the image data 18 in accordance with the editing instruction 92.
  • the UI device 34 accepts editor information 68E.
  • Editor information 68E is information about an editor.
  • An editor refers to a person who edits image data 18. Examples of information about an editor include the name of the editor, the nickname of the editor, information indicating the location of the editor, or contact information for the editor.
  • the editor may be the photographer 14 or a person other than the photographer 14.
  • the editing unit 42F includes editing related information, which is information related to editing, in the related information 68.
  • the editing unit 42F includes the editor information 68E received by the UI device 34 in the related information 68.
  • the editing unit 42F acquires the editing time information 68F through the network 28 and includes the editing time information 68F in the related information 68.
  • the editing time information 68F is information indicating the time when editing was performed on the image data 18. Examples of the time when editing was performed on the image data 18 include the time when editing of the image data 18 was started, or the time when editing of the image data 18 was completed.
  • the editing time information 68F may include information indicating the total time required to edit the image data 18.
  • the editing instructions 92 and editor information 68E may be received by the UI device 34, this is merely one example.
  • the editing instructions 92 or editor information 68E may be provided to the editing unit 42F from an external device (e.g., a smart device, a personal computer, or a server) communicatively connected to the imaging device 10.
  • the editor information 68E may be stored in the NVM 44.
  • the editing unit 42F may obtain the editor information 68E from the NVM 44 at the time when editing is performed on the image data 18.
  • the association unit 42B generates fifth reliability information 78E and sixth reliability information 78F, and includes the generated fifth reliability information 78E and sixth reliability information 78F in the reliability information 78.
  • the association unit 42B also associates the fifth reliability information 78E with the editor information 68E, and associates the sixth reliability information 78F with the editing time information 68F.
  • the fifth reliability information 78E is information that can identify the source of the editor information 68E.
  • the editor information 68E is information obtained by the editing unit 42F from the UI-based device 34. Therefore, in the second embodiment, information indicating that the editor information 68E was obtained from the UI-based device 34 is applied as an example of the fifth reliability information 78E.
  • the fact that such fifth reliability information 78E is associated with the editor information 68E means that the editor information 68E is not information obtained through the network 28.
  • the fifth reliability information 78E is automatically associated with the editor information 68E after the editing process in a similar manner to how the acquisition process is automatically performed after the imaging process. The reason for doing so is to prevent any time gap from occurring in which a third party creates false reliability information 78 and associates it with the editor information 68E.
  • the sixth reliability information 78F is information that can identify the source of the edit time information 68F.
  • the edit time information 68F is information obtained through the network 28. Therefore, in the second embodiment, information indicating that the edit time information 68F was obtained through the network 28 is applied as an example of the sixth reliability information 78F.
  • the fact that such sixth reliability information 78F is associated with the edit time information 68F means that the edit time information 68F is information obtained through the network 28.
  • the sixth reliability information 78F is automatically associated with the editing time information 68F after the editing process in a similar manner to how the acquisition process is automatically performed after the imaging process.
  • the reason for this is to prevent a third party from creating false reliability information 78 and linking it to the edit time information 68F.
  • the encryption unit 42C encrypts the editor information 68E and the edit time information 68F using a hash function 84 in a manner similar to the encryption (i.e., hashing) described in the first embodiment above.
  • a hash function 84 in a manner similar to the encryption (i.e., hashing) described in the first embodiment above.
  • an eleventh hash value 82E obtained by encrypting the editor information 68E and a twelfth hash value 82F obtained by encrypting the edit time information 68F are included in the encrypted information 82.
  • the fifth reliability information 78E is associated with the eleventh hash value 82E
  • the sixth reliability information 78F is associated with the twelfth hash value 82F.
  • the encryption unit 42C In the encryption process, the encryption unit 42C generates timing information 94, which is information about the time when the 11th hash value 82E and the 12th hash value 82F were generated, and includes the timing information 94 in the second association information 80, similar to the timing information 86 in the first embodiment described above.
  • information generated using the edit time information 68F is applied as an example of the time information 94.
  • An example of the timing at which the time information 94 is generated is the timing at which the encryption (here, hashing is taken as an example) of the related information 68 is completed.
  • the timing information 94 includes information indicating that the eleventh hash value 82E and the twelfth hash value 82F were generated at the time when the image data 18 was edited, and the edit time information 68F.
  • the timing information 94 may also include information indicating the total time required to edit the image data 18.
  • the time information 94 may be the editing time information 68F itself.
  • the time information 94 may also be information indicating the time when the encryption of the eleventh hash value 82E and the twelfth hash value 82F is actually completed.
  • the time information 94 may be acquired by the encryption unit 42C via the network 28 at the timing when the encryption of the editor information 68E and the editing time information 68F is completed, or may be acquired by the encryption unit 42C from a real-time clock built into the imaging device 10 at the timing when the encryption of the eleventh hash value 82E and the twelfth hash value 82F is completed.
  • a ninth hash value 88E and a tenth hash value 88F are generated as information included in the verification information 88 in a similar manner to the first embodiment in which a fifth hash value 88A, a sixth hash value 88B, a seventh hash value 88C, and an eighth hash value 88D are generated as information included in the verification information 88.
  • the ninth hash value 88E is a hash value obtained by hashing the editor information 68E using the hash function 84
  • the tenth hash value 88F is a hash value obtained by hashing the edit time information 68F using the hash function 84.
  • the ninth hash value 88E is compared with the eleventh hash value 82E, and the tenth hash value 88F is compared with the twelfth hash value 82F, in a manner similar to the processing performed by the comparison unit 58C according to the first embodiment.
  • These comparison results are then handled by the execution unit 58D according to the first embodiment in a manner similar to that of the first embodiment.
  • FIG. 19 shows an example of the flow of an image file creation process according to the second embodiment.
  • the flowchart shown in FIG. 19 differs from the flowchart shown in FIG. 13 in that steps ST21A to ST21E are inserted between steps ST20 and ST22.
  • steps ST21A to ST21E are inserted between steps ST20 and ST22.
  • step ST21A of the image file creation process shown in FIG. 19 the editing unit 42F determines whether or not the editing instruction 92 and the editor information 68E have been accepted by the UI device 34. In step ST21A, if the editing instruction 92 and the editor information 68E have not been accepted by the UI device 34, the determination is negative and the image file creation process proceeds to step ST22. In step ST21A, if the editing instruction 92 and the editor information 68E have been accepted by the UI device 34, the determination is positive and the image file creation process proceeds to step ST21B.
  • step ST21B the editing unit 42F edits the image data 18 acquired in step ST12 in response to the editing instruction 92 accepted by the UI device 34 in step ST21A.
  • the editing unit 42F also generates editing time information 68F using information obtained via the network 28.
  • the editing unit 42F then updates the related information 68 by including in the related information 68 the editor information 68E and the editing time information 68F accepted by the UI device 34 in step ST21A.
  • step ST21C the image file creation processing proceeds to step ST21C.
  • step ST21C the association unit 42B updates the first association information 76 by associating the fifth reliability information 78E with the editor information 68E and associating the sixth reliability information 78F with the edit time information 68F.
  • step ST21D the image file creation process proceeds to step ST21D.
  • step ST21D the encryption unit 42C generates an eleventh hash value 82E and a twelfth hash value 82F by encrypting the editor information 68E and the edit time information 68F included in the related information 68 using a hash function 84.
  • the image file creation processing proceeds to step ST21E.
  • step ST21E the encryption unit 42C generates timing information 94.
  • the encryption unit 42C then updates the second association information 80 using the eleventh hash value 82E, the twelfth hash value 82F, the fifth reliability information 78E, the sixth reliability information 78F, and the timing information 94. That is, the second association information 80 is updated by associating the fifth reliability information 78E with the eleventh hash value 82E, associating the sixth reliability information 78F with the twelfth hash value 82F, and associating the timing information 94 with the encryption information 82.
  • the image file creation process proceeds to step ST22.
  • the image data 18 is edited by the imaging device 10, and editing related information (here, as an example, editor information 68E and editing time information 68F) is included in the related information 68.
  • the editing related information is encrypted.
  • the editor information 68E is encrypted to generate the eleventh hash value 82E
  • the editing time information 68F is encrypted to generate the twelfth hash value 82F.
  • the eleventh hash value 82E and the twelfth hash value 82F are included in the encrypted information 82.
  • the imaging device 10 includes time information 94 in the metadata 20.
  • the time information 94 is information regarding the time when the eleventh hash value 82E and the twelfth hash value 82F were generated.
  • the recipient 26 etc. when the recipient 26 etc. receives an image file 16 from an editor (e.g., the photographer 14 etc.), the recipient 26 etc. can infer the validity of the time when the editing-related information was encrypted by referring to the timing information 94 included in the metadata 20 of the image file 16. For example, if the recipient 26 etc. feels that the time when the editing-related information was encrypted is valid, the recipient 26 etc. can determine that the reliability of the editing-related information is high, and conversely, if the recipient 26 etc. feels that there is something abnormal about the time when the editing-related information was encrypted, the recipient 26 etc. can determine that the reliability of the editing-related information is low. In this way, the security of the editing-related information can be increased by including the timing information 94 in the metadata 20 of the image file 16.
  • the metadata 20 also includes reliability information 78 provided by the imaging device 10, and the reliability information 78 includes fifth reliability information 78E and sixth reliability information 78F.
  • the fifth reliability information 78E is information that can identify the source of the editor information 68E.
  • the sixth reliability information 78F is information that can identify the source of the editing time information 68F.
  • the recipient 26 etc. can determine the reliability of the editing-related information by referring to the fifth reliability information 78E and sixth reliability information 78F included in the metadata 20 of the image file 16. In this way, by including the fifth reliability information 78E and sixth reliability information 78F in the metadata 20 of the image file 16, the security of the editing-related information can be increased.
  • the time information 86 and 94 are associated with the encryption information 82, but this is merely one example.
  • the time information 86 may be individually associated with the first hash value 82A, the second hash value 82B, the third hash value 82C, and the fourth hash value 82D, and the time information 94 may be individually associated with the eleventh hash value 82E and the twelfth hash value 82F.
  • the second association information 80 configured in this manner is stored in the metadata 20 in the same manner as in the above first and second embodiments.
  • the encrypted information corresponding to time information 86 and the encrypted information corresponding to time information 94 can be stored together in the metadata 20. That is, the first hash value 82A, the second hash value 82B, the third hash value 82C, and the fourth hash value 82D corresponding to time information 86, and the eleventh hash value 82E and the twelfth hash value 82F corresponding to time information 94 can be stored together in the metadata 20.
  • the time information 86 corresponds to the first hash value 82A, the second hash value 82B, the third hash value 82C, and the fourth hash value 82D
  • the time information 94 corresponds to the eleventh hash value 82E and the twelfth hash value 82F.
  • the first hash value 82A, the second hash value 82B, the third hash value 82C, the fourth hash value 82D, the eleventh hash value 82E, the twelfth hash value 82F, and the time information 86 and 94 can be easily handled.
  • the editing process may be performed by an editing device 100 used by an editor 98 at an editing site 96.
  • An example of the editing device 100 is a device with the same specifications as the receiving device 24.
  • the editing device 100 is connected to the network 28 in the same manner as the receiving device 24.
  • the image file 16 is transmitted from the imaging device 10 to the editing device 100 via the network 28, and the image file 16 edited by the editing device 100 is transmitted to the receiving device 24 via the network 28.
  • the image file creation process may be distributed and performed by the imaging device 10 and the editing device 100.
  • the image file creation process shown in FIG. 13 is performed by the imaging device 10
  • the processes of steps ST21A to ST26 included in the image file creation process shown in FIG. 19 are performed by the editing device 100.
  • the destination of the image file 16 sent by the imaging device 10 is the editing device 100
  • the destination of the edited image file 16 sent by the editing device 100 is the receiving device 24.
  • the image file receiving process may be performed by the editing device 100.
  • the timing information 94 may also be encrypted in a manner similar to the way in which the associated information 68 is encrypted, and the encrypted information of the timing information 94 may be included in the second association information 80.
  • the timing information 94 before encryption may also be included in the metadata 20 of the image file 16 as part of the associated information 68.
  • the encryption unit 42C according to the third embodiment differs from the encryption unit 42C described in each of the above embodiments in that it generates third association information 102 instead of second association information 80.
  • the third association information 102 differs from the second association information 80 in that it has re-encrypted information 104 instead of encryption information 82.
  • the re-encrypted information 104 is an example of the "first encryption information" according to the technology disclosed herein, and is generated based on encryption information 82 (e.g., first hash value 82A, second hash value 82B, third hash value 82C, and fourth hash value 82D, etc.).
  • the encryption unit 42C generates a private key 106, and also generates a public key 108 that corresponds to the private key 106.
  • the public key 108 is acquired by the transmission unit 42E.
  • the transmission unit 42E transmits it to the storage device 110 on the network 28.
  • the storage device 110 receives the public key 108 transmitted from the transmission unit 42E, and stores the received public key 108.
  • An example of the storage device 110 is a server or a personal computer that is communicatively connected to the network 28.
  • the sending unit 42E provides the attachment unit 42D with a URL 112 that can identify the location on the network 28 where the public key 108 is stored (e.g., the location where the public key 108 is stored by the storage device 110).
  • the encryption unit 42C generates re-encrypted information 104 by encrypting the encrypted information 82 using the private key 106.
  • the re-encrypted information 104 is information in which the first hash value 82A, the second hash value 82B, the third hash value 82C, the fourth hash value 82D, the eleventh hash value 82E, and the twelfth hash value 82F are encrypted using the private key 106.
  • the first hash value 82A, the second hash value 82B, the third hash value 82C, the fourth hash value 82D, the eleventh hash value 82E, and the twelfth hash value 82F are examples of the "first hash value" according to the technology disclosed herein.
  • the attachment unit 42D creates an image file 16 by attaching metadata 20 to image data 18.
  • the attachment unit 42D creates an image file 16 using the image data 18, related information 68, hash function 84, third association information 102, and URL 112.
  • the metadata 20 includes the associated information 68 and the hash function 84. Also, in this third embodiment, the metadata 20 includes the third association information 102 instead of the second association information 80. Furthermore, in this third embodiment, the metadata 20 includes the URL 112 as information required to obtain the public key 108.
  • the comparison unit 58C extracts the re-encryption information 104 from the third association information 102 included in the metadata 20 of the image file 16.
  • the comparison unit 58C also obtains the public key 108 via the network 28 using the URL 112 included in the metadata 20 of the image file 16. That is, the comparison unit 58C identifies the location on the network 28 where the public key 108 is stored (for example, the location where the public key 108 is stored by the storage device 110) from the URL 112, and obtains the public key 108 from the identified location.
  • the comparison unit 58C generates encrypted information 82 (e.g., the first hash value 82A, the second hash value 82B, the third hash value 82C, the fourth hash value 82D, the eleventh hash value 82E, and the twelfth hash value 82F) by decrypting the re-encrypted information 104 using the public key 108.
  • the encrypted information 82 obtained by decrypting the re-encrypted information 104 using the public key 108 is the "first information" according to the technology disclosed herein.
  • the first hash value 82A, the second hash value 82B, the third hash value 82C, the fourth hash value 82D, the eleventh hash value 82E, and the twelfth hash value 82F included in the encrypted information 82 obtained by decrypting the re-encrypted information 104 using the public key 108 are examples of the "second hash value" according to the technology disclosed herein.
  • the comparison unit 58C compares the verification information 88 with the encrypted information 82 in the same manner as in each of the above embodiments. That is, the comparison unit 58C compares the fifth hash value 88A, the sixth hash value 88B, the seventh hash value 88C, the eighth hash value 88D, the ninth hash value 88E, and the tenth hash value 88F with the first hash value 82A, the second hash value 82B, the third hash value 82C, the fourth hash value 82D, the eleventh hash value 82E, and the twelfth hash value 82F.
  • the comparison unit 58C compares the verification information 88 with the encrypted information 82 generated based on the re-encryption information 104. This makes it possible to obtain the same effects as the above embodiments.
  • the re-encrypted information 104 is information generated based on the encrypted information 82 obtained by hashing the related information 68 and the private key 106.
  • the re-encrypted information 104 can be said to be information obtained by performing double encryption on the related information 68.
  • the re-encrypted information 104 is included in the metadata 20 of the image file 16.
  • the image file 16 is then received and handled by the recipient 26, editor 98, or the like in the same manner as in each of the above embodiments.
  • the information that is compared with the verification information 88 by the comparison unit 58C in the receiving device 24 used by the recipient 26 or the editing device 100 used by the editor 98 is the encrypted information 82 generated by decrypting the re-encrypted information 104 with the public key 108. Therefore, compared to a case where the related information 68 is simply hashed, it is possible to determine whether the related information 68 has been altered while ensuring a high level of security.
  • the comparison unit 58C obtains the public key 108 from the network 28 by using the URL 112 in the metadata 20 of the image file 16. Therefore, the public key 108 can be easily obtained by a legitimate user (e.g., the recipient 26 or the editor 98) who handles the image file 16.
  • the URL 112 is included in the metadata 20
  • the public key 108 may also be included in the metadata 20.
  • a legitimate user who handles the image file 16 e.g., the recipient 26 or the editor 98
  • the related information 68 included photographer information 68A, image capture time information 68B, image capture device position information 68C, subject position information 68D, editor information 68E, and editing time information 68F, but in this fourth embodiment, an example will be described in which the related information 68 also includes a thumbnail image 114, as shown in Fig. 25. Note that in this fourth embodiment, the same components as those described in the above-mentioned embodiments are denoted by the same reference numerals and their description will be omitted, and only the parts that differ from the above-mentioned embodiments will be described.
  • the acquisition unit 42A generates a thumbnail image 114 by thumbnailizing (i.e., reducing) the image data 18.
  • the acquisition unit 42A then includes the thumbnail image 114 in the related information 68.
  • the thumbnail image 114 is an example of a "thumbnail image" according to the technology of the present disclosure.
  • the associating unit 42B generates the first association information 76.
  • the seventh reliability information 78G is associated with the thumbnail image 114.
  • the seventh reliability information 78G is information that can identify the source of the thumbnail image 114.
  • the thumbnail image 114 is information acquired through internal processing by the processor 42 (i.e., the thumbnail processing of the image data 18 by the acquisition unit 42A). Therefore, in the fourth embodiment, information indicating that the thumbnail image 114 was acquired through internal processing by the processor 42 is applied as an example of the seventh reliability information 78G.
  • the fact that such seventh reliability information 78G is associated with the thumbnail image 114 means that the thumbnail image 114 is not information acquired through the network 28.
  • the seventh reliability information 78G is also automatically associated with the thumbnail image 114 after the thumbnail image 114 is acquired through internal processing by the processor 42 in a manner similar to the association between the first reliability information 78A and the photographer information 68A.
  • the encryption unit 42C generates the fourth association information 116.
  • the fourth association information 116 includes image encryption information 118, seventh reliability information 78G, and time information 120.
  • the encryption unit 42C generates the image encryption information 118 by encrypting the thumbnail image 114 in the same manner as in each of the above embodiments, and includes the generated image encryption information 118 in the fourth association information 116.
  • the encryption unit 42C also includes the above-mentioned second association information 80 or third association information 102 in the fourth association information 116.
  • the image encryption information 118 is associated with seventh reliability information 78G and timing information 120.
  • the timing information 120 includes information indicating that the thumbnail image 114 was generated and information indicating the time when the thumbnail image 114 was generated.
  • the fourth association information 116 including the image encryption information 118 (i.e., information obtained by encrypting the thumbnail image 114) is included in the metadata 20 of the image file 16 in a manner similar to the above embodiments.
  • the attachment unit 42D creates the image file 16 by attaching the fourth association information 116 including the image encryption information 118 to the image data 18 as metadata 20. This can improve the security of the thumbnail image 114.
  • the related information 68 included a thumbnail image 114, but the technology of the present disclosure is not limited to this, and the related information 68 may also include text information.
  • the text information is encrypted in the same manner as in the above embodiments and included in the metadata 20 of the image file 16, thereby improving the security of the text information.
  • the thumbnail image 114 may be an image that does not change in association with changes to the image data 18 (e.g., editing by the editing unit 42F). In this case, the security of the thumbnail image 114 that does not change in association with changes to the image data 18 can be improved.
  • the encryption unit 42C may generate fifth association information 122, and include image encryption information 124 in the fifth association information 122.
  • the image encryption information 124 is information generated by encrypting the image data 18.
  • the image encryption information 124 is an example of "second encryption information" related to the technology of the present disclosure.
  • the fifth association information 122 also includes the second association information 80, the third association information 102, or the fourth association information 116 described above.
  • the fifth association information 122 is associated with the eighth reliability information 78H and the timing information 86.
  • the eighth reliability information 78H is information that can identify the source of the image data 18.
  • the eighth reliability information 78H includes information that indicates that imaging was performed to obtain the image data 18, and information equivalent to the imaging time information 68B (see FIG. 5).
  • the fifth association information 122 including the image encryption information 124 (i.e., information obtained by encrypting the image data 18) is included in the metadata 20 of the image file 16 in a manner similar to that of each of the above embodiments.
  • the attachment unit 42D creates the image file 16 by attaching the fifth association information 122 including the image encryption information 124 to the image data 18 as metadata 20. This can increase the security of the image data 18.
  • the image file creation process is executed by the computer 30 in the imaging device 10, but the technology of the present disclosure is not limited to this.
  • the technology of the present disclosure is not limited to this.
  • FIG. 28 shows that as shown in FIG. 28,
  • the image file creation process may be performed by a computer 128 in the external device 126.
  • An example of the computer 128 is a server computer for a cloud service.
  • the computer 128 is an example of an "information creation device” and a "computer” according to the technology of the present disclosure.
  • the computer 128 includes a processor 130, an NVM 132, and a RAM 134.
  • An image file creation program 50 is stored in the NVM 132.
  • the imaging device 10 requests the external device 126 to execute an image file creation process via the network 28.
  • the processor 130 of the external device 126 reads the image file creation program 50 from the NVM 132, and executes the image file creation program 50 on the RAM 134.
  • the processor 130 performs the image file creation process in accordance with the image file creation program 50 executed on the RAM 134.
  • the processor 130 then provides the processing result obtained by executing the image file creation process to the imaging device 10 via the network 28.
  • FIG. 28 shows an example of a form in which the external device 126 executes the image file creation process, but this is merely one example.
  • the image capture device 10 and the external device 126 may execute the image file creation process in a distributed manner, or multiple devices including the image capture device 10 and the external device 126 may execute the image file creation process in a distributed manner.
  • FIG. 28 shows an example of a form in which the processor 130 of the external device 126 performs image file creation processing
  • the technology of the present disclosure is not limited to this.
  • the processor 130 may be made to perform image file receiving processing in response to a request from the receiving device 24.
  • the image file creation program 50 is stored in the NVM 44, but the technology disclosed herein is not limited to this.
  • the image file creation program 50 may be stored in a solid state drive (SSD), USB memory, magnetic tape, etc.
  • the image file creation program 50 may be stored in any portable, computer-readable, non-transitory storage medium.
  • the image file creation program 50 stored in the non-transitory storage medium is installed in the imaging device 10.
  • the processor 42 executes the image file creation process according to the image file creation program 50.
  • the image file creation program 50 may be stored in a storage device such as another computer or server device connected to the imaging device 10 via a network, and the image file creation program 50 may be downloaded and installed in the imaging device 10 in response to a request from the imaging device 10.
  • image file creation program 50 it is not necessary to store the entire image file creation program 50 in a storage device such as another computer or server device connected to the imaging device 10, or in the NVM 44; only a portion of the image file creation program 50 may be stored.
  • the imaging device 10 shown in FIG. 3 has a built-in computer 30, the technology disclosed herein is not limited to this, and for example, the computer 30 may be provided outside the imaging device 10.
  • processors listed below can be used as hardware resources for executing the image file creation process described in each of the above embodiments.
  • An example of a processor is a CPU, which is a general-purpose processor that functions as a hardware resource for executing the image file creation process by executing software, i.e., a program.
  • Another example of a processor is a dedicated electronic circuit, which is a processor with a circuit configuration designed specifically for executing specific processing, such as an FPGA, PLD, or ASIC. All of the processors have built-in or connected memory, and all of the processors use the memory to execute the image file creation process.
  • the hardware resource that executes the image file creation process may be composed of one of these various processors, or may be composed of a combination of two or more processors of the same or different types (for example, a combination of multiple FPGAs, or a combination of a CPU and an FPGA). Also, the hardware resource that executes the image file creation process may be a single processor.
  • a configuration using a single processor firstly, there is a configuration in which one processor is configured using a combination of one or more CPUs and software, and this processor functions as a hardware resource that executes the image file creation process. Secondly, there is a configuration in which a processor is used that realizes the functions of the entire system, including multiple hardware resources that execute the image file creation process, on a single IC (Integrated Circuit) chip, as typified by SoCs (System-on-a-chip). In this way, the image file creation process is realized using one or more of the various processors mentioned above as hardware resources.
  • IC Integrated Circuit
  • the hardware structure of these various processors can be electronic circuits that combine circuit elements such as semiconductor elements.
  • the above image file creation process is merely one example. It goes without saying that unnecessary steps can be deleted, new steps can be added, and the processing order can be changed without departing from the spirit of the invention.
  • the grammatical concept of "A or B” includes not only the concept of "either one of A and B,” but also the concept synonymous with “at least one of A and B.”
  • “A or B” includes the meaning that it could be just A, just B, or a combination of A and B.
  • the same concept as “A or B” is also applied when three or more things are expressed by connecting them with “or.”
  • the additional information includes time information regarding the time when the first encrypted information was generated, or reliability information.
  • the reliability information is information regarding whether or not the related information was obtained through a network.
  • the encryption step includes generating first encrypted information by hashing the related information;
  • the information creation method according to any one of Supplementary Note 1 to Supplementary Note 8, wherein the additional information includes a hash function used for hashing.
  • the first encrypted information is information generated based on a first hash value obtained by hashing the related information and a private key;
  • the information creation method according to claim 10 wherein the first information is a second hash value generated based on the first encrypted information and the public key.
  • the encryption step generates second encrypted information by encrypting the image data;
  • the information creating method according to any one of Supplementary Note 1 to Supplementary Note 16, wherein the attaching step attaches the second encrypted information to the image data as auxiliary information.
  • An image file including supplementary information of image data The additional information is First encrypted information obtained by encrypting related information related to the image data; time information or reliability information regarding a time when the first encryption information was generated; Collateral information is an image file that contains related information.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Signal Processing (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Theoretical Computer Science (AREA)
  • Multimedia (AREA)
  • General Engineering & Computer Science (AREA)
  • Bioethics (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • General Health & Medical Sciences (AREA)
  • Health & Medical Sciences (AREA)
  • Studio Devices (AREA)
PCT/JP2023/029986 2022-09-29 2023-08-21 情報作成方法、画像ファイル、情報作成装置、及びプログラム Ceased WO2024070328A1 (ja)

Priority Applications (4)

Application Number Priority Date Filing Date Title
EP23871570.0A EP4597348A4 (en) 2022-09-29 2023-08-21 INFORMATION CREATION METHOD, IMAGE FILE, INFORMATION CREATION DEVICE AND PROGRAM
CN202380069817.1A CN119968633A (zh) 2022-09-29 2023-08-21 信息创建方法、图像文件、信息创建装置及程序
JP2024549871A JPWO2024070328A1 (https=) 2022-09-29 2023-08-21
US19/076,231 US20250211447A1 (en) 2022-09-29 2025-03-11 Information creation method, image file, information creation apparatus, and program

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
JP2022156886 2022-09-29
JP2022-156886 2022-09-29

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US19/076,231 Continuation US20250211447A1 (en) 2022-09-29 2025-03-11 Information creation method, image file, information creation apparatus, and program

Publications (1)

Publication Number Publication Date
WO2024070328A1 true WO2024070328A1 (ja) 2024-04-04

Family

ID=90477311

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/JP2023/029986 Ceased WO2024070328A1 (ja) 2022-09-29 2023-08-21 情報作成方法、画像ファイル、情報作成装置、及びプログラム

Country Status (5)

Country Link
US (1) US20250211447A1 (https=)
EP (1) EP4597348A4 (https=)
JP (1) JPWO2024070328A1 (https=)
CN (1) CN119968633A (https=)
WO (1) WO2024070328A1 (https=)

Families Citing this family (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2025062403A (ja) * 2023-10-02 2025-04-14 キヤノン株式会社 撮像装置、撮像方法、及びコンピュータプログラム

Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000215379A (ja) * 1998-11-17 2000-08-04 Ricoh Co Ltd デジタル計測機器及び画像計測機器
JP2006165650A (ja) * 2004-12-02 2006-06-22 Matsushita Electric Ind Co Ltd メタデータ管理装置
JP2006345450A (ja) 2005-06-10 2006-12-21 Canon Inc 画像検証システム、撮像装置、並びに画像検証装置
JP2009225229A (ja) 2008-03-18 2009-10-01 Nikon Corp 撮像装置、画像ファイル生成方法および画像ファイル作成プログラム
JP2016110041A (ja) * 2014-12-10 2016-06-20 キヤノン株式会社 顕微鏡システムおよびその制御方法、及びプログラム
JP2016122917A (ja) 2014-12-24 2016-07-07 パナソニックIpマネジメント株式会社 署名生成装置、署名検証装置、署名生成方法及び署名検証方法
JP2017059943A (ja) * 2015-09-15 2017-03-23 キヤノン株式会社 撮影装置、情報処理方法及びプログラム

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2002542502A (ja) * 1999-02-16 2002-12-10 コーニンクレッカ フィリップス エレクトロニクス エヌ ヴィ ディジタルカメラアーキテクチャ内の認証と検証
US10880619B2 (en) * 2019-02-21 2020-12-29 Raytheon Bbn Technologies Corp. Verifying provenance of digital content
US12002127B2 (en) * 2020-03-10 2024-06-04 Samsung Electronics Co., Ltd. Robust selective image, video, and audio content authentication

Patent Citations (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2000215379A (ja) * 1998-11-17 2000-08-04 Ricoh Co Ltd デジタル計測機器及び画像計測機器
JP2006165650A (ja) * 2004-12-02 2006-06-22 Matsushita Electric Ind Co Ltd メタデータ管理装置
JP2006345450A (ja) 2005-06-10 2006-12-21 Canon Inc 画像検証システム、撮像装置、並びに画像検証装置
JP2009225229A (ja) 2008-03-18 2009-10-01 Nikon Corp 撮像装置、画像ファイル生成方法および画像ファイル作成プログラム
JP2016110041A (ja) * 2014-12-10 2016-06-20 キヤノン株式会社 顕微鏡システムおよびその制御方法、及びプログラム
JP2016122917A (ja) 2014-12-24 2016-07-07 パナソニックIpマネジメント株式会社 署名生成装置、署名検証装置、署名生成方法及び署名検証方法
JP2017059943A (ja) * 2015-09-15 2017-03-23 キヤノン株式会社 撮影装置、情報処理方法及びプログラム

Non-Patent Citations (1)

* Cited by examiner, † Cited by third party
Title
See also references of EP4597348A4

Also Published As

Publication number Publication date
EP4597348A1 (en) 2025-08-06
EP4597348A4 (en) 2026-01-28
US20250211447A1 (en) 2025-06-26
JPWO2024070328A1 (https=) 2024-04-04
CN119968633A (zh) 2025-05-09

Similar Documents

Publication Publication Date Title
US12002127B2 (en) Robust selective image, video, and audio content authentication
JP4764536B2 (ja) 画像計測機器
KR101720268B1 (ko) 환자정보 보호를 위한 의료영상의 클라우드 데이터베이스 구축 및 판독 방법
US7979698B2 (en) Apparatus and method for proving authenticity with personal characteristics
US20120095922A1 (en) Image data sales system, image data sales method, camera, and server apparatus
US7558704B2 (en) Method and device for time verifying measurement data
US20040201751A1 (en) Secure digital photography system
JPH11308564A (ja) デジタル証拠カメラシステム、復号化鍵取得・登録システム、及びデジタル画像編集システム
JP2009151610A (ja) 地盤情報転送装置および地盤情報転送プログラム
EP3627812B1 (en) Video recording apparatus and video recording verification system, and video recording method and video verification method
JP4146488B2 (ja) ディジタル画像撮影装置と表示装置、ならびに権利情報サーバとそれらを用いたディジタル画像管理システムとその方法
WO2021039055A1 (ja) 撮像装置、画像データ処理方法、プログラム
US20250211447A1 (en) Information creation method, image file, information creation apparatus, and program
US7650511B2 (en) Information processing method, falsification verification method and device, storage medium, and program
US10389536B2 (en) Imaging systems with data encryption and embedding capabalities
JP5035050B2 (ja) 撮像装置、画像ファイル生成方法および画像ファイル作成プログラム
JP5737116B2 (ja) 情報提供システム
JP5563361B2 (ja) 撮像装置、画像保存方法およびプログラム
US20240283655A1 (en) Information processing apparatus, information processing method and non-transitory computer-readable medium
JP2016103775A (ja) カメラ装置及び検証システム及び情報処理方法及びプログラム
US20250227188A1 (en) Image file creation method, image file, image file creation apparatus, and program
JP2006279518A (ja) 画像証明補助機能付き電子カメラおよび画像証明システム
WO2024122396A1 (ja) 画像処理装置および方法
JP2013008182A (ja) 電子機器
WO2018211552A1 (ja) 通信端末、画像管理システム、画像管理方法、およびプログラム

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 23871570

Country of ref document: EP

Kind code of ref document: A1

WWE Wipo information: entry into national phase

Ref document number: 2024549871

Country of ref document: JP

WWE Wipo information: entry into national phase

Ref document number: 202517024258

Country of ref document: IN

WWE Wipo information: entry into national phase

Ref document number: 202380069817.1

Country of ref document: CN

WWP Wipo information: published in national office

Ref document number: 202517024258

Country of ref document: IN

WWE Wipo information: entry into national phase

Ref document number: 2023871570

Country of ref document: EP

NENP Non-entry into the national phase

Ref country code: DE

ENP Entry into the national phase

Ref document number: 2023871570

Country of ref document: EP

Effective date: 20250429

WWP Wipo information: published in national office

Ref document number: 202380069817.1

Country of ref document: CN

WWP Wipo information: published in national office

Ref document number: 2023871570

Country of ref document: EP