JP2004046809A - Content utilization management system, server device and terminal device used for this system - Google Patents

Abstract

<P>PROBLEM TO BE SOLVED: To provide a content utilization management system which reduces the load on a terminal device of a user and copes with a various kinds of services of content utilization. <P>SOLUTION: A right to use purchased by the user is managed by a right management server 20a. License information, which is a part of the right to use, is transmitted to a user terminal 30a from the right management server 20a. Utilization control of the content is conducted in the user terminal 30a based on this license information. Besides, the user terminal 30a returns this license information to the right management server 20a. <P>COPYRIGHT: (C)2004,JPO

Description

[0001]
TECHNICAL FIELD OF THE INVENTION
The present invention relates to a content use management system and the like, and more specifically, to a management device, which stores license information that enables use of content under certain use conditions to a terminal device of a user who has requested use of the content. And the like, and a content use management system and the like distributed via a communication network.
[0002]
[Prior art]
2. Description of the Related Art In recent years, systems for distributing digital works such as music, video, games, and the like via the Internet and digital broadcasting have been developed, and some of them have reached the stage of practical use. In addition, when distributing these contents, from the viewpoint of copyright protection, a content use control method for restricting the number of times of reproduction, movement, copying, and the like of the distributed contents is also being studied.
[0003]
In a conventional digital content distribution system, a usage condition for each user's content is modeled so as to be distributed to a user terminal together with the content, and the user terminal manages all of the conditions (for example, see Patent Document 1).
[0004]
For example, if a user purchases the right to watch the movie "Matrix" (R) three times, the user terminal determines that the user can "view the matrix three times" together with the content of the movie "Matrix". The use condition shown is received from the distribution server, and the reproduction of the content is managed according to the use condition. After distributing the use condition to the user terminal, the distribution server does not participate in the user use condition.
[0005]
When viewing the content “Matrix”, the user terminal performs a process of reducing the number of viewable times of the use condition managed by the user terminal itself by one each time the user terminal views the content, and the number of viewable times becomes zero. At this point, processing for disallowing viewing is performed.
[0006]
The conventional digital content distribution system employs such a method, and all usage conditions for content of each user are managed in the user terminal.
[0007]
[Patent Document 1]
JP-A-2000-48076 (Page 1, FIG. 1)
[0008]
[Problems to be solved by the invention]
However, in the related art, when all the usage conditions of each user are managed by the user terminal, complicated usage condition management at the user terminal is indispensable. Implementing such a function in a user terminal can be a heavy burden on portable devices such as mobile phones and home electric appliances.
[0009]
Further, when all the usage conditions of the user are managed by the user terminal, the user only needs to access the server device once when distributing the usage conditions to the user. As a result, the server device can hardly grasp the information (hereinafter, referred to as “usage status”) as to whether the user actually used the terminal or at what frequency (hereinafter, referred to as “usage status”). It cannot be used for distribution service of usage conditions.
[0010]
In addition, when all the usage conditions for the content of each user are managed in the user terminal, the content cannot be viewed on a terminal other than the terminal whose usage conditions are managed. Therefore, when the user owns a plurality of terminals, there is a problem that the right to view the content purchased by the user cannot be shared among the plurality of terminals.
[0011]
In other words, the conventional system has a problem that not only does a heavy load is imposed on the user's terminal device, but it is not possible to cope with various services using the content.
[0012]
The present invention solves the problems of the conventional technology, and provides a content use management system and the like that can reduce the load on a user terminal device and can cope with various contents use services. The purpose is to:
[0013]
[Means for Solving the Problems]
In order to solve the above-mentioned problems, a content use management system according to the present invention includes a terminal device that uses a content that is a digital work and a server device that manages use of the content in the terminal device. The server device, the license information storage means for storing license information indicating a use condition of the content for each user using the terminal device, based on a request from the user, the license corresponding to the user A license ticket issuance means for generating a license ticket, which is right information indicating a part or all of the usage conditions indicated by the information, and transmitting the license ticket to the terminal device; and a license ticket generated by the license ticket generation means. The above when the right of the ticket is lost Return information setting means for setting return information indicating whether or not return to the server device is required, wherein the terminal device requests use of the content from the server device in accordance with a user's instruction; and Receiving means for receiving the license ticket transmitted from the server device, content use control means for controlling use of the content according to the use conditions indicated by the received license ticket, and return information indicated by the received license ticket, A license ticket return requesting unit for requesting the server device to return a license ticket.
[0014]
Such a configuration not only reduces the load on the user's terminal device, but also increases the frequency of access to the server device by returning a license ticket or issuing a license ticket, thereby coping with various services of content use. be able to.
[0015]
In this specification, “use” of a content includes all operations that use the content, such as “play”, “move”, and “copy” of the content, and “print” of a content such as an electronic book. Use as
[0016]
Here, in the content use management system according to the present invention, the use request unit makes the request by transmitting a use amount of the requested content to the server device, and the license ticket issuing unit includes the use request unit. Preferably, a license ticket is generated according to the usage amount transmitted from the terminal device and transmitted to the terminal device.
[0017]
Further, the content usage management system according to the present invention is characterized in that the usage amount of the content includes a number of times the content is used, and the usage amount of the content includes a cumulative usage time of the content. It can be characterized as being.
[0018]
Further, in the content use management system according to the present invention, the use condition indicated by the license ticket includes a validity period of the license ticket in which all or a part of a validity period defined by the use condition indicated by the license information is set. It can be characterized as being included.
[0019]
Further, in the content use management system according to the present invention, the use request unit transmits, to the server device, capability information indicating the capability of the terminal device with respect to content use control, together with the use amount, and the license ticket issuing unit. May generate the license ticket according to the capability information transmitted from the use request unit, and transmit the generated license ticket to the terminal device.
[0020]
Further, in the content use management system according to the present invention, the capability information may include information indicating whether or not the terminal device has a secure clock.
[0021]
Further, the content use management system according to the present invention may be characterized in that the capability information includes information indicating whether or not the terminal device has a storage unit on a secure recording medium.
[0022]
In the content use management system according to the present invention, when the license ticket issuing unit receives the capability information from the use request unit, the license ticket issuance unit transmits the license ticket of the terminal device in accordance with the capability indicated by the capability information. The license ticket status information instructing the handling may be included in the license ticket and transmitted to the terminal device.
[0023]
Further, the content use management system according to the present invention may be characterized in that the license ticket status information includes a flag indicating that the license ticket must be immediately consumed without being written to a recording medium.
[0024]
The present invention can be realized not only as such a content usage management system or digital content distribution system, but also as a server device or a terminal device constituting such a system, or as a server device or a terminal device. It can be realized as a content use management method in which the characteristic means provided in are used as steps, or as a program that causes a computer to execute those steps. Needless to say, such a program can be distributed via a recording medium such as a CD-ROM or a transmission medium such as the Internet.
[0025]
BEST MODE FOR CARRYING OUT THE INVENTION
Hereinafter, embodiments of the present invention will be described in detail with reference to the drawings.
(Embodiment 1)
FIG. 1 is a block diagram showing an overall configuration of a digital content distribution system according to Embodiment 1 of the present invention.
[0026]
As shown in FIG. 1, the digital content distribution system 1a distributes a digitized work (content) to a user β after encrypting it by a company α involved in content distribution. The usage right (license) for each purchased content is managed by the company α, and a license ticket (License Ticket, hereinafter also referred to as “LT”) for using the content is distributed based on the user's request. Is a system for protecting the copyright of the content by making the content available within the usage conditions included in the content server. At least one content server 10, at least one rights management server 20a, and at least one The user terminal 30a, the content server 10, the rights management server 20a, and the user And a transmission path 40 that communicably connects the terminal 30a.
[0027]
The content server 10 is a computer device installed on the side of the company α involved in content distribution. Specifically, the content server 10 previously holds a plurality of content data 60 in which the content encrypted with the encryption key and the content ID are associated with each other, and transmits the content data 60 to the user terminal 30a that has issued the content distribution request. The requested content data 60 is delivered.
[0028]
FIG. 2 is a diagram showing a format configuration of the content data 60 shown in FIG.
As shown in FIG. 2, the content data 60 includes a content ID 61, an encrypted content 62, and the like. The content ID 61 is an ID for uniquely specifying a content in the digital content distribution system 1a.
The encrypted content 62 is obtained by encrypting content such as music data and video data using an encryption key. Therefore, in order to reproduce (use) the content, a content decryption key paired with the encryption key is required.
[0029]
The contents to be encrypted are not limited to music data and video data, but may be digital newspapers, electronic magazines, electronic books, electronic maps, electronic dictionaries, still images, games, computer software, and other digital contents. It may be. In the first embodiment, the content data 60 is described as being acquired via the transmission path 40. However, the method for acquiring the content data 60 is not particularly limited, and a recording medium such as a CD-ROM may be used. May be obtained via the Internet.
[0030]
The right management server 20a is a computer device installed on the side of the business entity α similarly to the content server 10 and managing the right to use the content of the user β who receives the content distribution service. Specifically, the right management server 20a manages the usage right for each content purchased by the user β, and in response to the LT issuance request 70a from the user terminal 30a, a part or all of the usage right and the content decryption. A key or the like is distributed to the user terminal 30a as an LT 80a, or an LT return request 90a including an LT and an identifier indicating that the LT is returned is received from the user terminal 30a, and the usage right is updated. . The LT 80a and the like will be described later in detail.
[0031]
The user terminal 30a is a computer device installed on the user β side and receiving a content distribution service. Specifically, the user terminal 30a transmits a content distribution request to the content server 10 to receive distribution of the content data 60 from the content server 10, and transmits an LT issuance request 70a to the right management server 20a in using the content. Then, it receives the LT 80a, reproduces the content within the range of the LT use conditions included in the LT 80a, and transmits an LT return request 90a to the right management server 20a.
[0032]
The transmission path 40 is a wired transmission path or a wireless transmission path, and connects the right management server 20a and the content server 10 to the user terminal 30a so that data communication is possible.
[0033]
When transmitting a request such as the LT issuance request 70a and the LT return request 90a, the user terminal 30a uses a mutual authentication format protocol such as SSL (Secure Sockets Layer) with the right management server 20a. A SAC (Secure Authenticated Channel: secure communication channel with authentication) is formed by encrypting and communicating a session key with a request from the user terminal 30a and a response such as an LT 80a from the right management server 20a using the session key. It is configured to prevent eavesdropping and spoofing.
[0034]
FIG. 3 is a functional block diagram showing a specific configuration of the right management server 20a shown in FIG.
As shown in FIG. 3, the right management server 20a includes a user information database 21, a use right database 22a, a user identification unit 23, an LT generation unit 24a, a return flag setting unit 25a, and an LT analysis unit 26a. , A use right update unit 27a, a communication unit 28, and the like.
[0035]
The user information database 21 is a database for managing the unique user ID of the user β registered as a member of the digital content distribution system 1a in association with the unique terminal ID of the user terminal used by the user β ( Hereinafter, also referred to as “DB”).
[0036]
FIG. 4 is a diagram showing a specific configuration of the user information database 21.
As shown in FIG. 4, the user information database 21 is a database for managing which user terminal 30a the user β owns, and includes a user ID 211, a terminal ID 212, and the like.
[0037]
The user ID 211 is an ID for uniquely specifying the user β in the digital content distribution system 1a. The terminal ID 212 is an ID for uniquely specifying the user terminal 30a in the digital content distribution system 1a.
[0038]
In FIG. 4, for example, the user β specified by the user ID “XXXAAA” indicates that the user β has two terminals, a terminal having the terminal ID “XXX111” and a terminal having the terminal ID “XXX222”. The user β specified by the user ID “XXXBBB” indicates that the user β owns only the terminal having the terminal ID “XXX333”.
[0039]
The data registration in the user information database 21 is performed when the user β performs a member registration process in order to receive the content distribution service operated by the business operator α. This member registration process may be performed by the user β communicating with the business entity α via the transmission path 40, or may be performed in another form such as sending a member registration document. In the member registration process, first, the business entity α assigns the user ID 211 to the user β. Thereafter, the terminal ID 212 of the user terminal 30a owned by the user β is notified to the business entity α by communication or a document, and the notified terminal ID 212 is associated with the user ID 211 previously assigned to the user β. Registered in the user information database 21. As a result of performing the above member registration processing, the user information database 21 as shown in FIG. 4 is constructed.
[0040]
The usage right database 22a illustrated in FIG. 3 is a database that manages the usage right 222a of the content purchased by the user β in association with the user ID.
[0041]
FIG. 5 is a diagram showing a specific configuration of the usage right database 22a.
As shown in FIG. 5, the usage right database 22a includes a user ID 221a for specifying the user β, a usage right 222a indicating the content of the usage right purchased by the user, and the like.
[0042]
The usage right 222a includes a usage right ID 2221a that is an ID of the usage right 222a, a content ID 2222a of the content targeted by the usage right 222a, a content decryption key 2223a for decrypting the content, and a valid period of the usage right 222a. Validity period 2224a indicating the following, an LT validity period width 2225a for limiting the LT validity period set in the LT 80a to a short period equal to or shorter than the use right validity period 2224a, and the number of reproducible times as the number of times the content can be reproduced. 2226a, an LT issuance number 2227a indicating the number of LTs 80a that can be issued from the usage right 222a, and an issuance state LT number 2228a indicating the number of LTs 80a currently in the issuance state for the user terminal 30a.
[0043]
FIG. 5 shows a state in which, for example, the user β whose user ID 211a is specified by “XXXAAA” has two usage rights 222a in which “XXX001” and “XXX002” are set in the usage right ID 2221a, respectively. ing. The usage right 222a whose usage right ID 2221a is “XXX001” is a right for the content whose content ID 61 is “XXX111”, the content decryption key 2223a for decrypting the content is “XXX221”, and the usage right Has a valid period of “2002/05 / 01.12.000.00 to 2003/04 / 30.12.00.00”, the LT valid period width 2225a is “1 day”, and the remaining number of times that the content can be reproduced is "5 times" indicates that the number of LTs 80a that can be issued from the usage right 222a is "$" (can be issued indefinitely), and that the number of LTs 80a in the issued state is "2".
[0044]
On the other hand, the usage right 222a whose usage right ID 2221a is “XXX002” is a right for the content whose content ID 61 is “XXX112”, and the content decryption key 2223a for decrypting the content is “XXX222”. , The validity period of the usage right is “2002/05 / 01.12.000.00 to 2003/04 / 04.30.100.00”, the LT validity period width 2225a is “no limit”, and the content can be reproduced. The remaining number is "10", the number of LTs 80a that can be issued from the usage right 222a is "3", and the number of LTs 80a in the issued state is "0".
[0045]
In addition, the user β whose user ID 211a is specified by “XXXBBB” has a state in which the user β has only one usage right 222a whose usage right ID 2221a is set to “XXX003”. The usage right 222a whose usage right ID 2221a is “XXX003” is a right for the content whose content ID 61 is “XXX113”, the content decryption key 2223a for decrypting the content is “XXX223”, and the usage right Has a valid period of “2003/01 / 010.00.00.00 to 2003/12 / 31.24.00.00”, an LT valid period width 2225a of “2 days”, and the remaining number of times that the content can be reproduced is "8 times" indicates that the number of LTs 80a that can be issued from the usage right 222a is "3" and the number of LTs 80a in the issued state is "0".
[0046]
Here, the LT valid period width 2225a is information set by the company α to be shorter than the valid period of the right basically held by the user. More specifically, the LT validity period width 2225a is a width of a period during which the right can be used on the user terminal 30a after the right is issued in the right management server 20a. The width of a period shorter than the valid period 2224a is set, or there is no limit, that is, the same period as the use right valid period 2224a is set. Since the validity period of the LT 80a expires due to the LT validity period width 2225a set by the business operator α, the frequency of access to the rights management server 20a by the LT return request 90a or the LT issuance request 70a can be changed by setting the LT 80a short. It becomes possible.
[0047]
Also, the reproducible number of times 2226a is subtracted from the initial value at the time of purchase by the user β by the amount cut out to the LT 80a, and added by the amount included in the LT 80a returned by the LT return request 90a.
[0048]
Also, the initial value of the issuance state LT number 2228a is “0”, and “1” is added when the LT 80a is issued from the rights management server 20a to the user terminal 30a, and the rights management server 20a transmits the LT 80a to the rights management server 20a. "1" is subtracted when the LT 80a is returned.
[0049]
When receiving the LT issue request 70a and the LT return request 90a transmitted from the user terminal 30a via the communication unit 28, the user specifying unit 23 illustrated in FIG. The user β (user ID) is specified based on the terminal ID included in the issuance request 70a and the LT return request 90a.
[0050]
When receiving the LT issuance request 70a transmitted from the user terminal 30a via the communication unit 28, the LT generation unit 24a generates a main part of the LT 80a from the usage right managed in the usage right database 22a. It is.
[0051]
The return flag setting unit 25a is a unit that sets information of “return required” or “return unnecessary” to a return flag included in the LT 80a generated by the LT generation unit 24a.
Specifically, the return flag setting unit 25a determines whether the LT issuable number included in the usage right managed by the usage right database 22a that is the source of the generated LT 80a is a finite value, and the LT that is set in the LT 80a. If the end of the validity period is at least one of earlier than the end of the usage right validity period, set the return flag to "return required", the number of LTs that can be issued is "$", and the end of the LT validity period If is the same as the end of the validity period of the usage right, set "return not required".
[0052]
FIG. 6 is a diagram illustrating a specific configuration of the LT 80a generated by the LT generation unit 24a and the return flag setting unit 25a.
As shown in FIG. 6, the LT 80a includes an LT header 81a, an LT use condition 82a, and a content decryption key 83a.
[0053]
The LT header 81a includes a usage right ID 811a, a content ID 812a, and a return flag 813a.
[0054]
The use right ID 2221a of the use right 222a from which the LT 80a was issued is stored in the use right ID 811a.
[0055]
The content ID 812a stores the content ID of a content that can be reproduced by using the LT 80a.
[0056]
The return flag 813a describes information indicating whether the LT 80a needs to be returned to the rights management server 20a. The return flag 813a is set by the return flag setting unit 25a. The user terminal 30a determines whether to return the LT 80a to the right management server 20a based on the return flag 813a.
[0057]
The LT use condition 82a includes an LT valid period 821a and a reproducible number of times 822a.
[0058]
The LT valid period 821a stores a period during which the LT 80a is valid. The LT validity period 821a is determined based on the use right validity period 2224a and the LT validity period width 2225a of the use right 222a, and the time at which the communication unit 28 receives the LT issuance request 70a.
[0059]
The reproducible number 822a stores the number of times the content can be reproduced.
The content decryption key 83a stores a key for decrypting the content.
The LT 80a thus configured is transmitted from the right management server 20a to the user terminal 30a, and the user terminal 30a reproduces the content using the LT 80a.
[0060]
Here, a method of generating the LT valid period 821a will be described more specifically.
FIG. 7 is a diagram showing the relationship between the LT validity period width 2225a of the usage right 222a and the LT validity period 821a set in the LT 80a.
[0061]
When the LT validity period width 2225a of the use right database 22a is shorter than the use right validity period 2224a (for example, one day, two days, etc.), the timing at which the LT issuance request 70a from the user β is received is determined by the timing of the use right validity period 2224a. First, the case when the vehicle is near the beginning (the state of FIG. 7A) will be described. That is, as shown in FIG. 7A, the time when the LT issuance request 70a is received (request time) is earlier than the beginning of the usage right effective period 2224a, and the end of the LT effective period width 2225a starting from the request time is This is a case where it is later than the beginning of the usage right validity period 2224a. In this case, the start time (start) of the usage right valid period 2224a held by the user β is set at the start time (start) of the LT valid period 821a, and the request time is set at the end time (end) of the LT valid period 821a. The end of the LT valid period width 2225a to be the starting point (request time + LT valid period width 2225a) is set. Therefore, in this case, the LT effective period 821a of the LT 80a is shorter than the LT effective period width 2225a.
[0062]
Next, when the LT effective period width 2225a of the use right database 22a is shorter than the use right effective period 2224a, when the timing at which the LT issuance request 70a from the user β is received is not near the beginning or end of the use right effective period 2224a ( 7B) will be described. That is, as shown in FIG. 7B, the time when the LT issuance request 70a is received (request time) is later than the beginning of the usage right effective period 2224a, and the end of the LT effective period width 2225a starting from the request time is This is a case where it is earlier than the end of the usage right validity period 2224a. In this case, the request time is set at the start time (start) of the LT valid period 821a, and the end (request time) of the LT valid period width 2225a starting from the request time at the end time (end) of the LT valid period 821a. + LT valid period width 2225a) is set. Therefore, in this case, the LT valid period 821a of the LT 80a matches the LT valid period width 2225a.
[0063]
Next, when the LT effective period width 2225a of the use right database 22a is shorter than the use right effective period 2224a, the timing when the LT issuance request 70a from the user β is received is near the end of the use right effective period 2224a (FIG. 7). (State (c)) will be described. That is, as shown in FIG. 7C, the time when the LT issuance request 70a is received (request time) is earlier than the end of the usage right effective period 2224a, and the end of the LT effective period width 2225a starting from the request time is This is a case where it is later than the end of the usage right validity period 2224a. In this case, the request time is set at the start time (start) of the LT valid period 821a, and the end of the usage right valid period 2224a is set at the end time (end) of the LT valid period 821a. Therefore, in this case, the LT effective period 821a of the LT 80a is shorter than the LT effective period width 2225a.
[0064]
Next, a case where the LT validity period width 2225a of the usage right database 22a is unlimited (the state of FIG. 7D) will be described. In this case, regardless of the request time, as shown in FIG. 7D, the start time (start) of the LT valid period 821a is set to the start of the use right valid period 2224a, and the end of the LT valid period 821a is ended. At the time (end), the end of the usage right validity period 2224a is set. Therefore, in this case, the LT validity period 821a of the LT 80a matches the usage right validity period 2224a.
[0065]
Needless to say, X satisfying the request time ≦ X ≦ (request time + LT valid period width 2225a) and Y satisfying the start of the use right valid period 2224a ≦ Y ≦ (the end of the use right valid period 2224a). When X∩Y = φ, it is determined that the LT valid period 821a is an empty set, that is, the LT 80a cannot be issued.
[0066]
Further, in the first embodiment, the period outside the usage right validity period 2224a is NG (unusable) in the cases of FIGS. 7A and 7C, but a unique The LT effective period 821a that is the same as the LT effective period width 2225a may be set by a rule.
[0067]
Furthermore, the LT validity period width 2225a is determined in advance by a predetermined rule, but the situation is momentarily (content holder's intention: how to use the content, a change in the level at which the use situation is desired to be grasped, or the user's use situation). For example, the LT valid period 821a may be variably generated as appropriate.
[0068]
The LT analysis unit 26a illustrated in FIG. 3 is a unit that analyzes the contents of the LT 80a returned from the user terminal 30a.
The usage right updating unit 27a updates the content of the usage right 222a when the LT 80a is issued to the user terminal 30a or when the LT 80a is returned from the user terminal 30a. The details of the update will be described later.
[0069]
The communication unit 28 communicates with the user terminal 30a via the transmission path 40. Specifically, the communication unit 28 is a communication interface that communicates with the user terminal 30a via the transmission path 40, and transmits a request such as an LT issue request 70a and an LT return request 90a transmitted from the user terminal 30a. The user terminal 30a performs analysis, requests the user identification unit 23, the LT generation unit 24a, and the usage right update unit 27a to perform processing in accordance with the result, and generates the LT 80a generated by the LT generation unit 24a and the return flag setting unit 25a. Or a SAC is formed with the user terminal 30a, and the above-described request and response are encrypted with a session key and then encrypted.
[0070]
FIG. 8 is a functional block diagram showing a specific configuration of the user terminal 30a shown in FIG.
As shown in FIG. 8, the user terminal 30a includes a content database 301, an LT database 302a, a terminal ID storage unit 303a, an LT acquisition unit 304a, an LT return unit 305a, an LT update unit 306a, and a return flag. It comprises a determination unit 307a, a content availability determination unit 308a, a decryption key acquisition unit 309, a content decryption unit 310, a content reproduction unit 311, a communication unit 312, and a GUI 313.
[0071]
The content database 301 is a database for registering and managing the content data 60 distributed from the content server 10.
The LT database 302a is a database that securely manages the LT 80a issued by the right management server 20a.
[0072]
The terminal ID storage unit 303a is a unit that stores in advance a terminal ID that is an ID that uniquely specifies the user terminal 30a.
The LT acquisition unit 304a is a unit that acquires the LT 80a from the rights management server 20a by generating the LT issuance request 70a and transmitting it to the rights management server 20a.
[0073]
FIG. 9 is a diagram illustrating a specific configuration of the LT issuance request 70a generated by the LT issuance request 70a.
As shown in FIG. 9, the LT issuance request 70a includes an LT issuance request identifier 71, a terminal ID 72, a content ID 73, a desired number of reproducible times 74a, and the like.
[0074]
The LT issuance request identifier 71 stores information indicating that this data is the LT issuance request 70a. The terminal ID 72 stores the terminal ID of the user terminal 30a that issues the LT issuance request 70a. The content ID 73 stores the content ID of the content to be reproduced using the acquired LT 80a. The desired number of reproducible times 74a stores a value desired to be set as the number of reproducible times of the acquired LT 80a.
[0075]
The LT return unit 305a illustrated in FIG. 8 is a unit that returns the LT 80a to the right management server 20a by generating the LT return request 90a and transmitting the LT return request 90a to the right management server 20a.
[0076]
FIG. 10 is a diagram illustrating a specific configuration of the LT return request 90a generated by the LT return unit 305a.
As shown in FIG. 10, the LT return request 90a includes an LT return request identifier 91, a terminal ID 92, an LT 93a, and the like.
[0077]
The LT return request identifier 91 stores information indicating that this data is the LT return request 90a. The terminal ID 92 stores the terminal ID of the user terminal 30a that issues the LT return request 90a. The LT to be returned is stored in the LT 93a.
[0078]
The LT update unit 306a illustrated in FIG. 8 is a unit that updates the contents of the LT 80a. Specifically, the LT updating unit 306a performs a process of reducing the value of the number of reproducible times in the LT 80a by "1" after reproducing the content.
[0079]
The return flag determination unit 307a refers to a return flag in the LT 80a and determines whether it is necessary to return the LT 80a to the rights management server 20a.
[0080]
The content availability determination unit 308a refers to the LT validity period and the number of reproducible times in the LT 80a to determine whether the content can be reproduced. Specifically, when the current time is within the LT valid period 821a and the value of the number of reproducible times 822a is "1" or more, the content use availability determination unit 308a determines that the content can be reproduced. And
[0081]
It is assumed that the user terminal 30a has a secure clock function so that the content use availability determination unit 308a can obtain the current time. When the user terminal 30a does not have a clock function, the user terminal 30a ignores the LT validity period 821a and determines whether or not reproduction is possible based on the number of reproducible times 822a in the LT 80a. Alternatively, the program may be unconditionally determined to be unreproducible.
[0082]
The decryption key acquisition unit 309 is a unit that extracts a content decryption key that is a key for decrypting the content from the LT 80a.
[0083]
The content decrypting unit 310 is a means for extracting the content from the content database 301 and decrypting the encrypted content 62 using the content decrypting key 2223a acquired by the decryption key acquiring unit 309.
[0084]
The content reproducing unit 311 is a unit that reproduces the content decoded by the content decoding unit 310, and outputs music and video through a speaker or a display (not shown).
[0085]
The communication unit 312 is a unit that communicates with the content server 10 and the right management server 20a via the transmission path 40. Specifically, the communication unit 312 is a communication interface that communicates with the content server 10 and the right management server 20a via the transmission path 40, and includes the content data 60 transmitted from the content server 10 and the right management server 20a. It analyzes the response of the LT 80a and the like transmitted from the server, requests the content database 301, the LT acquisition unit 304a, and the GUI 313 to perform processing according to the result, and issues the LT issuance request 70a generated by the LT acquisition unit 304a, The LT return request 90a generated by the LT return unit 305a is transmitted to the rights management server 20a or forms a SAC with the rights management server 20a, and the above-described request or response is encrypted with a session key and then encrypted. To communicate.
[0086]
The GUI 313 includes a liquid crystal display and a user operation input unit such as a keyboard and a mouse. The GUI 313 displays various buttons and information on the screen of the liquid crystal display so that the user can easily determine the buttons and information. Accept the instructions of.
[0087]
Next, the operation of each unit of the digital content distribution system 1a will be sequentially described using a flowchart. Here, it is assumed that the procedure for user registration (registration of terminal ID and user ID) for user β, the distribution of desired content to user terminal 30a, and the procedure for purchasing the right to use the content have been completed. explain.
[0088]
First, an operation (LT acquisition process) when the user terminal 30a acquires the LT 80a from the right management server 20a in the digital content distribution system 1a according to the first embodiment will be described.
FIG. 11 is a flowchart showing the operation of the LT acquisition process.
[0089]
S1001: Upon receiving the LT acquisition instruction from the user β through the GUI 313, the LT acquisition unit 304a generates an LT issuance request 70a in response to the LT acquisition instruction from the user β, and the rights management server 20a via the communication unit 312. Send to
[0090]
The LT acquisition instruction from the user β includes the content ID 61 of the content the user β desires to acquire and reproduce the LT 80a, and information specifying the value described in the desired number of reproducible times 74 in the LT issuance request 70a. ing. As shown in FIG. 12, for example, such an LT acquisition instruction is performed by a user β clicking an LT acquisition button 53a on a menu screen displayed by the GUI 313, and an LT acquisition menu screen (not shown) called by the click operation. The content is generated by the user β selecting one piece of content desired to be reproduced from the content data 60 registered in the content database 301 displayed as a list and further inputting the number of times desired to be reproduced. The menu screen includes an LT acquisition button 53a, a license purchase button 51a operated at the time of license purchase, a content acquisition button 52a operated at the time of content acquisition, and an operation performed at the time of content reproduction. A content playback button 54a and an LT return button 55a operated when returning the LT are provided.
[0091]
In response to such an LT acquisition instruction, the terminal ID held by the terminal ID storage unit 303a is set in the terminal ID 72 of the LT issuance request 70a transmitted to the right management server 20a, and the LT acquisition from the user β is set in the content ID 73. The content ID included in the instruction is set, and the value specified by the LT acquisition instruction from the user β is set as the desired reproducible number of times 74a.
[0092]
When transmitting the LT issuance request 70a, the communication unit 312 of the user terminal 30a and the communication unit 28 of the right management server 20a form a SAC.
[0093]
S1002: Upon receiving the LT issuance request 70a via the communication unit 28, the user identification unit 23 of the right management server 20a identifies the terminal ID included in the LT issuance request 70a.
[0094]
S1003: When the terminal ID is specified, the user specifying unit 23 refers to the user information database 21 and determines whether or not the terminal is registered, that is, whether or not the terminal ID is registered in the user information database 21. If the terminal ID included in the LT issuance request 70a is not registered in the user information database 21 (No in S1003), the user specifying unit 23 regards the user as not a legitimate user of the digital content distribution system 1a, The user terminal 30a is notified of the existence. On the other hand, when the terminal ID included in the LT issuance request 70a is registered in the user information database 21, the user identification unit 23 acquires the user ID corresponding to the terminal ID, and sets the user ID to the LT generation unit 24a. Pass to.
[0095]
S1004: Upon receiving the user ID of the user β from the user specifying unit 23, the LT generating unit 24a executes an LT issuance determination process, and based on the user ID and the LT issuance request 70a received via the communication unit 28. , The usage right 222a from which the LT 80a is issued, and whether the LT 80a can be issued is determined.
[0096]
FIG. 13 is a flowchart showing a subroutine of the LT issuance determination process (S1004) shown in FIG.
S1101: The LT generation unit 24a refers to the usage right database 22a, and the user β specified by the user specifying unit 23 in S1002 owns the usage right 222a for the content specified by the content ID 61 included in the LT issuance request 70a. It is determined whether or not. Here, if it is determined that the user β owns the usage right 222a for the content specified by the content ID 61 included in the LT issuance request 70a, the LT generation unit 24a sets the usage right 222a to The LT 80a is specified as the usage right 222a from which the LT 80a is issued, and the process proceeds to S1102. On the other hand, if it is determined that the user β does not have the use right 222a for the content specified by the content ID 61 included in the LT issuance request 70a, the process proceeds to S1106.
[0097]
S1102: The LT generation unit 24a refers to the usage right validity period 2224a and the LT validity period width 2225a of the usage right 222a specified in S1101, and determines whether the LT validity period is not an empty set. Here, if the LT validity period is not an empty set, that is, any one of FIGS. 7A to 7D, the process proceeds to S1103. On the other hand, when the LT validity period is an empty set, the LT generation unit 24a proceeds to the process of S1106.
[0098]
S1103: The LT generation unit 24a compares the number of reproducible times 2226a of the usage right 222a specified in S1101 with the desired number of reproducible times 74a in the LT issuance request 70a, and reproduces the usage right 222a specified in S1101. It is determined whether or not the number of times 2226a is equal to or greater than the desired reproducible number of times 74a in the LT issuance request 70a. Here, if it is determined that the number of reproducible times 2226a of the usage right 222a is equal to or more than the desired number of reproducible times 74a in the LT issuance request 70a, the process proceeds to S1104. On the other hand, if it is determined that the reproducible number of times 2226a of the usage right 222a is less than the desired reproducible number of times 74a in the LT issuance request 70a, the process proceeds to S1106.
[0099]
S1104: The LT generation unit 24a compares the LT issuable number 2227a of the usage right 222a specified in S1101 with the issuable state LT number 2228a, and determines whether the issuance state LT number 2228a is less than the LT issuable number 2227a. judge.
If it is determined that the issuance state LT number 2228a is less than the LT issuable number 2227a, the process proceeds to S1105. On the other hand, if it is determined that the issuance state LT number 2228a is equal to or larger than the LT issuable number 2227a, the process proceeds to S1106.
[0100]
S1105: The LT generation unit 24a determines that the LT 80a can be issued, and returns to the main routine shown in FIG.
S1106: The LT generation unit 24a determines that the LT 80a cannot be issued, and returns to the main routine illustrated in FIG.
[0101]
S1005: If it is determined in step S1004 that LT is not allowed to be issued, the LT generation unit 24a considers that the user is a legitimate user of the digital content distribution system 1a, but does not have a usage right for which LT is to be issued. The user terminal 30a is notified that the issuance is impossible. On the other hand, if it is determined in step S1004 that LT can be issued, the process advances to step S1006.
[0102]
S1006: If the determination result in step S1004 indicates that LT can be issued, the LT generation unit 24a generates an LT 80a based on the LT issuance request 70a. Specifically, LT generation unit 24a sets the content ID included in LT issuance request 70a in content ID 812a in LT 80a to be generated. The LT generation unit 24a calculates the LT validity period 821a based on the usage right validity period 2224a and the LT validity period width 2225a of the usage right 222a specified in S1004, and the time when the LT issuance request 70a is received. The LT validity period is set.
Further, the LT generation unit 24a sets the value of the desired reproducible number 74a included in the LT issuance request 70a to the reproducible number 822a. Further, the LT generation unit 24a sets the content decryption key 2223a of the usage right 222a specified in S1004 as the content decryption key 83a.
[0103]
The return flag 813a is set in S1007 to S1009 described later.
[0104]
S1007: The return flag setting unit 25a determines whether the LT issuable number 2227a of the usage right 222a specified in S1004 is a finite value, and determines the end date and time (end) and the LT expiration date of the usage right validity period 2224a. It is determined whether or not the end date and time (end period) are different.
[0105]
S1008: If the LT issuable number 2227a is determined to be a finite value in S1007, or if the end of the usage right validity period 2224a is different from the end of the LT validity period, the return flag setting unit 25a sets the LT generation unit 24a in S1006. The return flag 813a of the generated LT 80a is set to "return required". That is, if the LT issuable number 2227a is determined to be a finite value and if it corresponds to at least one of the cases of FIG. 7A and FIG. 7B, the return flag setting unit 25a Sets "return required" in the return flag 813a of the LT 80a. This is because if the LT issuable number 2227a is a “finite value”, further LT 80a may not be issued unless the LT is returned, and FIGS. 7A and 7B. In the case of, for the LT in which the LT validity period has expired and the usage right has been lost, the number of reproducible times is not necessarily “0”. In this case, when the LT is returned, the server This is because it is possible to increase the number of reproducible times managed by.
[0106]
S1009: If the LT issuable number 2227a is determined to be “$” in S1007, and the end of the usage right validity period 2224a and the end of the LT validity period are the same, the return flag setting unit 25a In S1006, the return flag 813a of the LT 80a generated by the LT generation unit 24a is set to "return unnecessary". That is, if the LT issuable number 2227a is determined to be “$”, and in the case of FIG. 7C and the case where the LT validity period width 2225a is unlimited in FIG. The unit 25a sets “return unnecessary” in the return flag 813a of the LT 80a. This is because if the LT issuable number 2227a is "$", a further LT 80a can be issued without returning the LT, and in the case of FIGS. 7 (c) and 7 (d). This is because there is no possibility that the number of reproducible times managed by the server will increase even if the LT whose usage right has been lost is returned.
[0107]
S1010: The usage right updating unit 27a updates the content of the usage right 222a specified in S1004. Specifically, the usage right update unit 27a subtracts the reproducible number 2226a of the usage right 222a specified in S1004 by the value of the reproducible number 822a in the LT 80a generated by the LT generation unit 24a in S1006, and , A process of adding “1” to the issue state LT number 2228a of the usage right 222a specified in S1004.
[0108]
S1011: The communication unit 28 transmits the LT 80a generated by the LT generation unit 24a in S1006 to the user terminal 30a.
[0109]
S1012: The LT acquisition unit 304a of the user terminal 30a receives the LT 80a transmitted in S1011 via the communication unit 312, and registers the received LT 80a in the LT database 302a. After that, the LT acquisition unit 304a notifies the user β via the GUI 313 that the acquisition of the LT 80a has been completed, and ends the process.
[0110]
S1013: If it is determined in step S1003 or S1005 that the LT cannot be issued, the LT acquisition unit 304a receives an LT issuance disable notification from the right management server 20a. In this case, the LT acquisition unit 304a notifies the user β via the GUI 313 that the LT 80a could not be acquired, and ends the processing.
[0111]
In S1001, the description has been made assuming that the value specified by the user β is set as the desired number of reproducible times 74a in the LT issuance request 70a. However, a predetermined specified value may be set. I do.
[0112]
In the first embodiment, when the setting of the return flag is completed (S1008, S1009), the usage right update unit 27a immediately updates the content of the usage right 222a specified in S1004, but the LT acquisition unit 304a Receives the LT 80a, transmits a message indicating that the LT 80a has been received to the right management server 20a, and the usage right update unit 27a receives a message indicating that the LT 80a has been received from the user terminal 30a, and then uses the usage specified in S1004. The content of the right 222a may be updated. As a result, it is possible to avoid such a disadvantage that the content of the usage right 222a is reduced even though the LT 80a has not reached the user terminal 30a.
[0113]
Further, in the first embodiment, when it is determined that the number of reproducible times 2226a of the usage right 222a is less than the desired reproducible number of times 74a in the LT issuance request 70a (No in S1103), it is determined that LT is not possible. However, (S1106), for example, when the desired number of reproducible times 74a is “2” and the reproducible number of times 2226a is “1”, that is, less than the desired reproducible number of times 74a but the reproducible number of times 2226a remains. In this case, it may be determined that LT can be issued, and the LT 80a whose reproducible number of times is “1” may be issued. In this case, it is preferable to transmit a message to the effect that only the number of reproducible times 2226a "1" remains in the usage right 222a together with the LT 80a.
[0114]
Next, an operation (content reproduction process) when the user terminal 30a reproduces a content in the digital content distribution system according to the present embodiment will be described with reference to a flowchart of FIG.
FIG. 14 is a flowchart illustrating an operation performed by each unit of the user terminal 30a when reproducing the content.
[0115]
S1401: When a content playback instruction from the user β is received through the GUI 313, the content availability determination unit 308a determines that the LT 80a corresponding to the content that the user β wants to play is LT in response to the content playback instruction from the user β. It is checked whether it exists in the database 302a.
[0116]
The content reproduction instruction from the user β includes information (content ID) for specifying the content that the user β wants to reproduce. Such a content reproduction instruction is issued, for example, by the user β clicking the content reproduction button 54a on the menu screen shown in FIG. 12, and the content database 301 displayed as a list on a content reproduction menu screen (not shown) called by the click operation. Is generated when the user β selects one content desired to be reproduced from the content data 60 registered in the content data 60.
[0117]
If the LT 80a exists, the process proceeds to S1404. If the LT 80a does not exist, the process proceeds to S1402.
S1402: If the desired LT 80a does not exist in the LT database 302a, the content use availability determination unit 308a requests the LT acquisition unit 304a to execute the LT acquisition process described in FIG. 11 and causes the LT acquisition process to execute.
[0118]
S1403: As a result of executing the LT acquisition process, if acquisition of the LT 80a fails, the content use availability determination unit 308a notifies the user β via the GUI 313 that the content cannot be reproduced, The process ends. If the acquisition of the LT 80a succeeds, the process proceeds to S1404.
[0119]
S1404: When the desired LT 80a exists in the LT database 302a (Yes in S1401), or when the LT 80a is successfully acquired by executing the LT acquisition process (Yes in S1403), the content use availability determination unit 308a determines that the user β With reference to the contents of the LT 80a corresponding to the content desired to be reproduced, it is determined whether the content can be reproduced. This determination is made by referring to the LT valid period 821a in the LT 80a and the reproducible number of times 822a. Specifically, the content use availability determination unit 308a determines that the content can be reproduced when the current time is within the LT valid period 821a and the value of the number of reproducible times 822a is "1" or more. In the case of, it is determined that the content cannot be reproduced.
[0120]
S1405: If it is determined in S1404 that the content can be reproduced, the process proceeds to S1406. If it is determined in step S1404 that the content cannot be reproduced, the content use determination unit 308a notifies the user β via the GUI 313 that the content cannot be reproduced, and ends the process.
[0121]
S1406: The content decoding unit 310 extracts from the content database 301 the content that the user β wants to reproduce.
S1407: The decryption key acquisition unit 309 extracts the content decryption key 83a from the LT 80a corresponding to the content that the user β wants to reproduce.
[0122]
S1408: The content decryption unit 310 decrypts the content extracted in S1406 using the content decryption key 83a acquired by the decryption key acquisition unit 309 in S1407, and the content reproduction unit 311 decrypts the content decrypted by the content decryption unit 310. Reproduce.
[0123]
S1409: LT updating section 306a updates the content of LT 80a used when reproducing the content. Specifically, when the content is played back by the content playback unit 311, the LT update unit 306 a starts a secure timer, and accumulates the usage time indicating the total number of times the content has been played back, or determines the content based on a one-time determination threshold. Is performed once, and once the reproduction is performed, the LT updating unit 306a performs a process of reducing the value of the reproducible number of times 822a in the LT 80a by "1".
[0124]
S1410: When the LT is updated, the LT return unit 305a executes an LT return / deletion process of returning the LT 80a to the rights management server 20a or deleting the LT 80a, and ends the operation when the content is reproduced. I do.
Next, the LT return / deletion process in S1410 in FIG. 14 will be described with reference to the flowchart in FIG.
[0125]
FIG. 15 is a flowchart showing a subroutine of the LT return / deletion process shown in FIG. The LT return / deletion process is a process for determining whether the LT 80a is invalid and, if invalid, returning or deleting the LT 80a to the rights management server 20a.
[0126]
S1501: First, the LT update unit 306a refers to the LT valid period 821a of the LT 80a to be operated, and checks whether the current time has passed the end time of the LT valid period 821a, that is, the end of the LT valid period 821a. If the current time has passed the end time of the LT valid period 821a, the process proceeds to S1503. If the current time has not passed the end time of the LT valid period 821a, the process proceeds to S1502.
[0127]
S1502: If the current time has not passed the end time of the LT valid period 821a (No in S1501), the LT update unit 306a refers to the number of reproducible times 822a of the operation target LT 80a and determines whether the value is “0”. Is determined. If the value of the reproducible count 822a is not "0", the LT 80a is still available. In this case, the process is terminated without returning or deleting the LT 80a. On the other hand, if the value of the number of reproducible times 822a is “0”, the process proceeds to S1503.
[0128]
S1503: The return flag determination unit 307a refers to the return flag 813a of the operation target LT 80a, and determines whether it is necessary to return the LT 80a to the right management server 20a.
Specifically, when the return flag 813a is set to "return required", the return flag determination unit 307a determines that it is necessary to return the LT 80a to the rights management server 20a, and sets the return flag 813a to "return." If "unnecessary" is set, it is determined that it is not necessary to return the LT 80a to the rights management server 20a.
[0129]
S1504: If it is determined in S1503 that the LT 80a needs to be returned to the rights management server 20a, the LT 80a executes an LT return process of returning the LT 80a to the rights management server 20a.
S1505: If it is determined in S1503 that the LT 80a does not need to be returned to the rights management server 20a, the LT update unit 306a deletes the LT 80a from the LT database 302a.
[0130]
Next, an operation (LT return process) when the user terminal 30a returns the LT 80a to the right management server 20a in the digital content distribution system according to the first embodiment will be described with reference to the flowchart in FIG. I do.
[0131]
FIG. 16 is a flowchart showing the operation of the LT return process.
S1201: Upon receiving the LT return instruction from the user β via the GUI 313, the LT return unit 305a generates an LT return request 90a in accordance with the LT return instruction from the user β, and generates the LT return request 90a. The data is transmitted to the right management server 20a via the communication unit 312.
[0132]
The LT return instruction from the user β includes information (for example, usage right ID 811a) for specifying the LT 80a that the user β wants to return. Such an LT return instruction is issued, for example, by the user β clicking on the LT return button 55a on the menu screen shown in FIG. 12, and the LT database 302a displayed as a list on an LT return menu screen (not shown) called by this click operation. Is generated when the user β selects one of the LTs 80a that the user wishes to return from the registered LTs 80a. By such an LT return instruction, the terminal ID held by the terminal ID storage unit 303a is specified in the terminal ID 92 of the LT return request 90a generated by the LT return unit 305a, and the LT return instruction from the user β is specified in the LT 93a. LT is set respectively.
[0133]
When transmitting the LT return request 90a, the communication unit 312 of the user terminal 30a and the communication unit 28 of the right management server 20a form a SAC.
[0134]
S1202: Upon receiving the LT return request 90a, the user specifying unit 23 of the right management server 20a specifies the terminal ID 92 included in the LT return request 90a.
With reference to the user information database 21, the user β (user ID) who wants to return the LT 80a is specified from the terminal ID 92 included in the LT return request 90a.
[0135]
S1203: When the specification of the terminal ID is completed, the user specifying unit 23 refers to the user information database 21 and determines whether or not the terminal is registered, that is, whether or not the terminal ID is registered in the user information database 21. If the terminal ID included in the LT return request 90a is not registered in the user information database 21 (No in S1203), the user identification unit 23 considers that the user is not a legitimate user of the digital content distribution system 1a and returns an LT return impossible. The user terminal 30a is notified of the existence. On the other hand, when the terminal ID included in the LT return request 90a is registered in the user information database 21 (Yes in S1203), the user identification unit 23 acquires the user ID corresponding to the terminal ID, and To the LT analysis unit 26a.
[0136]
S1204: Upon receiving the user ID of the user β from the user specifying unit 23, the LT analysis unit 26a refers to the usage right database 22a and determines whether the LT included in the LT return request 90a can be returned. Specifically, the LT analysis unit 26a first analyzes the LT in the LT return request 90a and extracts the usage right ID included in the LT. Thereafter, the LT analysis unit 26a refers to the usage right database 22a and checks whether the usage right 222a specified by the usage right ID extracted earlier is owned by the user β specified in S1202. As a result of the check, if the LT is owned, the LT analysis unit 26a determines that the LT included in the LT return request 90a can be returned. On the other hand, when the LT is not owned, since there is no return target, the LT analysis unit 26a determines that the LT cannot be returned.
[0137]
S1205: When it is determined that the LT cannot be returned in S1204 (No in S1204), the LT analysis unit 26a notifies the user terminal 30a that the LT cannot be returned. On the other hand, if it is determined in step S1204 that the LT can be returned, the process advances to step S1206.
[0138]
S1206: The LT analysis unit 26a analyzes the LT 80a included in the LT return request 90a, and extracts the reproducible number of times 822a included in the LT 80a. The usage right updating unit 27a adds the reproducible number of times 2226a of the usage right 222a specified by the usage right ID 2221a retrieved by the LT analysis unit 26a in S1204 to the value of the reproducible number 822a retrieved by the LT analysis unit 26a. Then, a process of subtracting “1” from the issue state LT number 2228a of the usage right 222a is performed. As a result, the number of reproducible times 2226a increases, an LT 80a with a different validity period is newly issued, or the issuance state LT number 2228a becomes lower than the LT issuable number 2227a, and the LT 80a can be issued, and the user β It becomes possible to share between a plurality of terminals owned.
[0139]
S1207: When the use right database 22a is updated, if the use right 222a updated in S1206 can be deleted, a use right deletion process for deleting the use right 222a from the use right database 22a is executed.
[0140]
FIG. 17 is a flowchart showing a subroutine of the usage right deletion process shown in FIG. The usage right deletion process is a process of maintaining or deleting the updated usage right when the LT 80a is returned from the user terminal 30a to the right management server 20a.
[0141]
S1301: The usage right updating unit 27a refers to the usage right validity period 2224a of the deletion candidate usage right 222a, and checks whether the current time has passed the end time of the usage right validity period 2224a. If the current time has passed the end time of the usage right validity period 2224a, the usage right 222a is unnecessary, and the process proceeds to S1304, where the usage right 222a is deleted. If the current time has not passed the end time of the usage right validity period 2224a, the process proceeds to S1302.
[0142]
S1302: The usage right updating unit 27a refers to the reproducible number of times 2226a of the usage right 222a of the deletion candidate, and determines whether the value is “0”. If the value of the number of reproducible times 2226a is not “0”, the usage right 222a is still available, so that the usage right 222a cannot be deleted. In this case, the processing is terminated without deleting the usage right 222a. If the value of the number of reproducible times 2226a is “0”, the process proceeds to S1303.
[0143]
S1303: The usage right updating unit 27a checks the issuance state LT number 2228a of the deletion candidate usage right 222a, and determines whether the value is “0”. When the value of the issuance state LT number 2228a is not “0”, the LT 80a may be returned to the use right 222a, and thus the use right 222a cannot be deleted. In this case, the processing is terminated without deleting the usage right 222a. When the value of the issuance state LT number 2228a is “0”, the usage right 222a is deleted because the value of the reproducible number of times 2226a is “0” and the LT 80a is not likely to be returned. May be. In this case, the process proceeds to S1304, and the usage right 222a is deleted.
[0144]
S1304: The usage right updating unit 27a deletes the usage right 222a as a deletion candidate from the usage right database 22a, and returns to the main routine shown in FIG.
S1208: When the usage right deletion process by the usage right updating unit 27a ends, the communication unit 28 transmits an LT return processing completion notification to the user terminal 30a.
[0145]
S1209: The LT return unit 305a of the user terminal 30a receives the LT return processing completion notification transmitted in S1208 via the communication unit 312, and deletes the LT 80a to be returned from the LT database 302a. After that, the LT return unit 305a notifies the user β via the GUI 313 that the return of the LT 80a is completed, and ends the process.
[0146]
S1210: If it is determined in step S1203 or S1205 that LT cannot be issued, the LT return unit 305a receives an LT return impossible notification from the right management server 20a. In this case, the LT return unit 305a notifies the user β via the GUI 313 that the LT 80a could not be returned, and ends the processing.
[0147]
As described above, according to the invention of the first embodiment, not only the load on the user terminal is reduced, but also the frequency of access to the server device by returning the license information or issuing the license information is increased. Various services of use can be dealt with, and the right management server manages the content use right of each user, thereby changing the validity period and transferring the use right to a plurality of terminals owned by the user. It can be used.
[0148]
Although the LT return request 90a has been described as describing the LT itself, it is not always necessary to describe the entire LT, and the return processing in the rights management server 20a, such as describing only the LT usage conditions 82a, is not necessary. It is also possible to describe only the minimum necessary parts in the above.
[0149]
Further, the use condition is implemented by the number of uses, but may be implemented by another use condition such as the accumulated use time.
[0150]
Furthermore, in the first embodiment, only the desired reproducible number is stored in the LT issuance request 70a. However, together with the desired reproducible number, capability information (for example, secure Information indicating whether or not a clock is provided, or information indicating whether or not a storage means is provided in a secure recording medium) to the server device, and the rights information management server transmits the capability transmitted from the user terminal. The license ticket status information (for example, a flag indicating that the license ticket must be consumed immediately without writing the license ticket on the recording medium) instructing the handling of the license ticket in the user terminal is associated with the capability indicated by the information. The information may be included in a ticket and transmitted to the terminal device.
[0151]
(Embodiment 2)
FIG. 18 is a block diagram showing an overall configuration of a digital content distribution system 1b according to Embodiment 2 of the present invention. Note that the same reference numerals are given to portions corresponding to the configuration of the digital content distribution system 1a according to the first embodiment, and description thereof will be omitted.
[0152]
As shown in FIG. 18, the digital content distribution system 1b encrypts a digitized work (content) by a business entity α involved in content distribution, and then encrypts the user β Or license data (License Data; hereinafter, also referred to as “LD”) which represents the usage rights of each content that the user β has purchased and which the user β has purchased. This is a system for protecting the copyright of the content by distributing the LD 80b based on the user's request and making the content available within the usage conditions included in the LD, and at least one content server 10; At least one rights management server 20b, at least one user terminal 30b, These content server 10, and a right management server 20b and the transmission path 40 communicatively connecting the user terminal 30b.
[0153]
The right management server 20b is a computer device that is installed on the side of the business entity α like the content server 10 and manages license data for the content of the user β who receives the content distribution service. Specifically, the rights management server 20b manages the original license data for each content purchased by the user β, and responds to the LD issuance request 70b from the user terminal 30b to manage the original license data managed by the rights management server 20b. The license data, part or all of the license data, the content decryption key, and the like, are delivered to the user terminal 30b as the LD 80b, or the LD and the identifier indicating that the LD is to be returned from the user terminal 30b. , And updates the license data.
[0154]
The user terminal 30b is a computer device installed on the user β side and receiving a content distribution service. Specifically, the user terminal 30b transmits a content distribution request to the content server 10 to receive distribution from the content server 10, or transmits an LD issuance request 70b to the right management server 20b to use the LD 80b when using the content. Upon receiving the content, it reproduces the content within the range of the terminal use conditions included in the LD 80b, or transmits an LD return request 90b to the right management server 20b.
[0155]
In the digital content distribution system 1a according to the first embodiment, the right management server 20a cuts out some or all of the usage conditions from the usage right 222a in response to the LT issuance request 70a, issues the LT 80a, and issues the LT 80a. The content is reproduced within the range of the use condition, and the use condition is updated. Then, the user terminal 30a is configured to return the LT 80a with the updated usage condition to the right management server 20a. On the other hand, in the digital content distribution system 1b according to the second embodiment, the following points are greatly different.
[0156]
FIG. 19 is a diagram showing the features of the configuration of the digital content distribution system 1b.
As shown in FIG. 19, the right management server 20b according to the digital content distribution system 1b indicates the original usage conditions 2224b (for example, 10 hours) and the status used by the user terminal 30b as the license data purchased by the user. The original usage status 2226b is held. Upon receiving the LD issuance request 70b from the user terminal 30b, the rights management server 20b stores all of the original use condition 2224b and the original use status 2226b in the LD 80b issued to the user terminal 30b that issued the LD issuance request 70b. The original usage rule 2224b and the original usage status 2226b are temporarily deleted from the license data database 22b. Then, when issuing the LD 80b, the rights management server 20b generates a terminal use condition 87 (for example, 1 hour) and a terminal use status 88 (for example, 0 hour) based on a predetermined rule. , Embedded in the LD 80b and issued. In other words, the LD 80b is issued in a two-layer structure including the original usage conditions 85 and the original usage status 86, and the terminal usage conditions 87 and the terminal usage status 88.
[0157]
The user terminal 30b refers to only the terminal usage condition 87 and the terminal usage status 88 of the LD 80b received from the right management server 20b at the time of content reproduction, and updates the content of the terminal usage status 88 by the usage status used by the terminal. . Note that the user terminal 30b does not refer to the original use condition 85 and the original use state 86. Then, the user terminal 30b transmits the two-layered LD 80b to the rights management server 20b in the LD return request 90b.
[0158]
Upon receiving the LD return request 90b, the rights management server 20b refers to the terminal usage status 88 of the LD 80b, updates the original usage status by the terminal usage status, and stores the original usage conditions in the license data database managed by the right management server 20b. 2222b and the original usage status 2226b are registered again. When the original use condition is subtracted from the original use condition, the remaining use condition is known.
[0159]
FIG. 20 is a functional block diagram showing a specific configuration of the right management server 20b shown in FIG.
As shown in FIG. 20, the right management server 20b includes a user information database 21, a license data database 22b, a user identification unit 23, an LD generation unit 24b, an LD analysis unit 26b, an LD update unit 27b, It is composed of a communication unit 28 and the like.
[0160]
The user information database 21 stores user information and the like of users who have registered as members in the digital content distribution system 1b.
[0161]
The license data database 22b is a database for managing content license data 222b purchased by the user β. Specifically, the license data database 22b manages the remaining information of the usage right (license) purchased by the user for the predetermined content for each usage mode (for example, reproduction, transfer, copying, printing, usage period, etc.). Or a database for The license data database 22b also stores a rule table 22c that is referred to when issuing the LD 80b.
[0162]
Next, the license data database 22b will be described with reference to FIG.
FIG. 21 is a diagram showing a specific configuration of the license data database 22b shown in FIG.
[0163]
As shown in FIG. 21, the license data database 22b includes a user ID 221b and license data 222b.
The license data 222b includes a license ID 2221b, which is an ID of the license data 222b, a content ID 2222b of the content to be targeted by the license data 222b, a content decryption key 2223b for decrypting the content, and an original usage condition purchased by the user. , And an original usage status 2226b indicating the total usage status (for example, the total usage time, etc.) in which the user actually used the content.
[0164]
The original use condition 2224b includes a license validity period 22241 indicating a validity period of the license data 222b and a reproducible time 22242 that is a reproducible time of the content.
[0165]
According to the license data database 22b configured in this manner, whether the user has the right to use the content is specified based on whether the user ID and the license data 222b are registered in the license data database 22b. Alternatively, it is possible to calculate the usage condition of the remaining terminal from the difference between the original usage condition 2224b and the original usage status 2226b.
[0166]
The initial value of the original usage status 2226b is “0”, and the LD 80b is issued from the rights management server 20b to the user terminal 30b. When the LD 80b is returned from the user terminal 30b to the rights management server 20b, the user terminal It is updated according to the usage status in 30b.
[0167]
FIG. 21 shows, for example, a state in which the user β whose user ID 211 is specified by “XXXDDD” owns two pieces of license data 222b whose license IDs 2221b are “XXX004” and “XXX005”. The license data 222b whose license ID 2221b is “XXX004” is a right for the content whose content ID 61 is “XXX114”, the content decryption key 2223b for decrypting the content is “XXX224”, and the original usage condition. The license validity period 22241 of 2224b is "2002/05 / 01.12.000.00 to 2003/04 / 30.12.00.00", the time during which the content can be reproduced is "10 hours", and the original usage status 2226b is "0" (unused).
[0168]
FIG. 22 is a diagram showing a specific configuration of the rule table 22c further held by the license data database 22b shown in FIG.
As shown in FIG. 22, the rule table 22c includes a license ID 221c and rule data 222c. The rule data 222c is composed of a terminal use condition 2221c (license validity period, reproducible time) and a use end return flag 2222c. The terminal usage condition 2221c includes a license valid period 22211 indicating a valid period of license data issued to the user terminal 30b, and a reproducible time 22212.
[0169]
Here, the license validity period 22211 is information set by the company α to be shorter than the validity period of the rights basically held by the user, similarly to the license validity period width 2225a described above. More specifically, the license validity period 22211 is a maximum validity period that can be used on the user terminal 30b after the right is issued in the right management server 20b, and is, for example, one day, two days, one week, or the like. A period shorter than 22241 is set, or there is no limit, that is, the same width as the license valid period 22241 is set. The level at which the access frequency is grasped can be changed by the license validity period 22211 set by the provider α.
[0170]
The reproducible time 22212 is information set by the company α based on the time required for reproducing the content.
The return flag 2222c at the end of use is information set by the company α as to whether or not to return the LD 80b at the end of use of the content.
[0171]
The LD generation unit 24b is a unit that generates the LD 80b illustrated in FIG. 23 from the license data 222b managed in the license data database 22b.
FIG. 23 is a diagram illustrating a specific configuration of the LD 80b generated by the LD generation unit 24b.
[0172]
As shown in FIG. 23, the LD 80b includes a license header 84, an original use condition 85, an original use condition 86, a terminal use condition 87, a terminal use condition 88, and a content decryption key 89.
[0173]
The license header 84 includes a license ID 841, a content ID 842, an immediate use flag 843, a use end return flag 844, and a right disappearance return flag 845.
[0174]
The license ID 841 stores the license ID 2221b of the license data 222b from which the LD 80b was issued.
The content ID 842 stores the content ID of a content that can be reproduced by using the LD 80b.
[0175]
The immediate use flag 843 stores a flag indicating whether or not the content should be immediately reproduced using the LD 80b.
[0176]
The use end return flag 844 is a flag that is paired with the immediate use flag 843. The use end return flag 844 indicates whether the LD 80b should be returned at the end of use of the LD 80b based on the rule table 22c. Is stored.
[0177]
The return flag 845 stores information indicating whether or not the LD 80b needs to be returned to the right management server 20b when the use right at the terminal has been lost.
[0178]
The original use condition 85 includes a license validity period 851 and a reproducible time 852. In the license validity period 851, the content of the license validity period 22241 in the original usage rule 2224b held in the LD database 22b is stored as it is. In the reproducible time 852, the content of the reproducible time 22242 in the original use condition 2224b is stored as it is.
[0179]
In the original usage status 86, the content of the original usage status 2226b held in the LD database 22b, that is, the status of the actual use by the user terminal 30b so far is stored as it is.
The terminal use condition 87 includes a license validity period 871 and a reproducible time 872.
[0180]
The license validity period 871 stores a period during which the LD 80b is valid.
The reproducible time 872 stores an accumulated time during which the content can be reproduced.
The terminal usage status 88 stores the cumulative time during which the user terminal 30b has used the LD 80b to reproduce the content.
[0181]
The content decryption key 89 stores a key for decrypting the content.
Here, the reason that the LD generation unit 24b sets the “return required” in the return upon lapse of right flag 845 is that the MAX of the remaining usage conditions calculated from the original usage conditions 2224b and the original usage status 2226b is included in the terminal usage conditions. It is not included. More specifically, if any one of the following conditions is satisfied, “return required” is set.
[0182]
1. The value obtained by subtracting the original usage status from the reproducible time in the original usage conditions> Reproducible time value in the terminal usage conditions
2. When the end of the license validity period of the terminal usage conditions is set before the end of the license validity period of the original use conditions
Conversely, when MAX of the remaining usage conditions is included in the terminal usage conditions, that is, the value obtained by subtracting the original usage status from the reproduction available time in the original usage conditions = the value of the reproduction available time in the terminal usage conditions, If the end of the license validity period of the terminal use condition is the same as the end of the license validity period of the original use condition, the LD generation unit 24b sets “return unnecessary” in the right-of-rights return flag 845.
[0183]
The LD 80b is transmitted from the rights management server 20b to the user terminal 30b, and the user terminal 30b uses the LD 80b to reproduce the content, and based on the return flag 844 at the end of use and the return flag 845 at the time of the loss of the right. , To return the LD 80b to the right management server 20b.
[0184]
The LD analysis unit 26b is a unit that analyzes the contents of the LD 80b returned from the user terminal 30b.
The LD updating unit 27b updates the contents of the license data 222b when the LD 80b is issued to the user terminal 30b or when the LD 80b is returned from the user terminal 30b. The details of the update will be described later.
[0185]
The communication unit 28 communicates with the user terminal 30b via the transmission path 40. Specifically, the communication unit 28 is a communication interface that communicates with the user terminal 30b via the transmission path 40, and analyzes requests such as the LD issue request 70b and the LD return request 90b transmitted from the user terminal 30b. Or requests the user identification unit 23, the LD generation unit 24b, and the LD update unit 27b to perform processing, distributes the LD 80b generated by the LD generation unit 24b to the user terminal 30b, , A SAC is formed, and the above-described request and response are encrypted with a session key and then encrypted.
[0186]
Next, a specific configuration of the user terminal 30b will be described with reference to FIG.
FIG. 24 is a functional block diagram showing a specific configuration of the user terminal 30b shown in FIG.
[0187]
In FIG. 24, the user terminal 30b includes a content database 301, an LD database 302b, a terminal ID / terminal capability storage unit 303b, an LD acquisition unit 304b, an LD return unit 305b, an LD update unit 306b, and a return flag determination. A unit 307b, a content use determination unit 308b, a decryption key acquisition unit 309, a content decryption unit 310, a content reproduction unit 311, a communication unit 312, and a GUI 313.
[0188]
The content database 301 is a database that manages the content data 60 distributed from the content server 10.
The LD database 302b is a secure database that manages the LD 80b issued by the right management server 20b.
[0189]
The terminal ID / terminal capability storage unit 303b stores a terminal ID which is an ID for uniquely specifying the user terminal 30b, and furthermore, whether or not the terminal has a secure clock and whether or not the LD database 302b can be securely registered. The capability of the user terminal 30b, such as whether or not it is, is stored in advance.
[0190]
The LD acquisition unit 304b is a unit that acquires the LD 80b from the right management server 20b.
The LD acquisition unit 304b acquires the LD 80b by generating the LD issuance request 70b and transmitting it to the right management server 20b.
[0191]
FIG. 25 is a diagram illustrating a specific configuration of the LD issuance request 70b generated by the LD acquisition unit 304b.
25, the LD issuance request 70b includes an LD issuance request identifier 71b, a terminal ID 72, a content ID 73, and a terminal capability 75.
[0192]
Information indicating that this data is the LD issuance request 70b is described in the LD issuance request identifier 71.
In the terminal ID 72, the terminal ID of the user terminal 30b that sends the LD issuance request 70b is described.
[0193]
The content ID 73 describes the content ID of the content to be reproduced using the acquired LD 80b.
The terminal capability 75 stores a terminal capability stored in advance in the terminal ID / terminal capability storage unit 303b.
[0194]
The LD return unit 305b is means for returning the LD 80b to the right management server 20b.
The LD return unit 305b returns the LD 80b by generating the LD return request 90b and transmitting it to the right management server 20b.
[0195]
FIG. 26 is a diagram illustrating a specific configuration of the LD return request 90b generated by the LD return unit 305b.
26, the LD return request 90b includes an LD return request identifier 91b, a terminal ID 92, and an LD 93b.
[0196]
In the LD return request identifier 91b, information indicating that this data is the LD return request 90b is described.
[0197]
The terminal ID 92 describes the terminal ID of the user terminal 30b that sends the LD return request 90b stored in the terminal ID / terminal capability storage unit 303b.
[0198]
The LD 93b to be returned is described in the LD 93b.
The LD updating unit 306b is means for updating the contents of the LD 80b. Specifically, the LD updating unit 306b performs a process of adding the value of the terminal usage status 88 in the LD 80b by the time of the reproduction, after reproducing the content.
[0199]
The return flag determination unit 307b refers to a return flag 844 at the end of use and a return flag 845 at the end of the right in the LD 80b, and determines whether the LD 80b needs to be returned to the right management server 20b.
[0200]
The content use availability determination unit 308b determines whether the content can be played back by referring to the license validity period 871, the playable time 872, and the terminal use status 88 in the LD 80b.
[0201]
When the current time is within the license validity period 871 and the value of the terminal usage status 88 is less than the reproducible time 872, the content use availability determination unit 308b determines that the content can be reproduced. Note that the user terminal 30b has a clock function so that the content use availability determination unit 308b can obtain the current time.
[0202]
When the user terminal 30b does not have a clock function, the user terminal 30b ignores the license validity period 871 and determines whether or not reproduction is possible based on the reproducible time 872 in the LD 80b. Alternatively, the program may be unconditionally determined to be unreproducible.
[0203]
The decryption key acquisition unit 309 is a unit that extracts a content decryption key 89 that is a key for decrypting the content from the LD 80b.
[0204]
The content decryption unit 310 is a unit that extracts the content from the content database 301 and decrypts the encrypted content 62 using the content decryption key 89 acquired by the decryption key acquisition unit 309.
[0205]
The content reproducing unit 311 is a unit that reproduces the content decoded by the content decoding unit 310, and outputs music and video through a speaker or a display (not shown).
[0206]
The communication unit 312 is a unit that communicates with the right management server 20b via the transmission path 40. Specifically, the communication unit 312 is a communication interface that communicates with the content server 10 and the right management server 20b via the transmission path 40, and includes the content data 60 transmitted from the content server 10 and the right management server 20b. It analyzes the response of the LD 80b and the like transmitted from the server, requests the content database 301, the LD acquisition unit 304b, and the GUI 313 to perform processing according to the result, the LD issuance request 70b generated by the LD acquisition unit 304b, The LD return request 90b generated by the LD return unit 305b is transmitted to the rights management server 20b, or a SAC is formed with the rights management server 20b. To communicate.
[0207]
The GUI 313 is a user interface utilizing the graphics function of the computer.
Next, the operation of the digital content distribution system 1b will be described.
First, an LD acquisition process in which the user terminal 30b acquires the LD 80b from the right management server 20b in the digital content distribution system 1b according to the second embodiment will be described with reference to the flowchart in FIG.
[0208]
FIG. 27 is a flowchart showing the operation of the LD acquisition process.
This LD acquisition process is displayed in a list on an LD acquisition screen (not shown) which is called when the user β clicks the LD acquisition button 53b on the menu screen shown in FIG. 28 and clicks the LD acquisition button 53b, for example. When an LD is acquired from the content data registered in the content database 301 and the user selects content data desired to be reproduced, an LD acquisition instruction including the content ID of the selected content data is issued from the GUI 313 to the LD acquisition unit 304b. Is entered and executed.
[0209]
Upon receiving the LD acquisition instruction from the user β via the GUI 313, the LD acquisition unit 304b generates an LD issuance request 70b and transmits it to the rights management server 20b via the communication unit 312 (S2001).
[0210]
Here, the terminal ID held in the terminal ID / terminal capability storage unit 303b is set in the terminal ID 72 of the LD issuance request 70b transmitted to the right management server 20b, and the content ID 73 corresponds to an LD acquisition instruction from the user β. The included content ID is set, and the terminal capability set in the terminal ID / terminal capability storage unit 303b in advance is set in the terminal capability 75.
[0211]
Upon receiving the LD issuance request 70b via the communication unit 28, the user identification unit 23 of the right management server 20b first identifies the terminal ID included in the received LD issuance request 70b (S2002). When the terminal ID is specified, the user specifying unit 23 refers to the user information database 21 and registers the terminal ID of the user terminal 30b used by the user β who wants to issue the LD 80b in the user information database 21. It is determined whether or not it has been performed (S2003).
[0212]
As a result of the determination, when the terminal ID included in the LD issuance request 70b is not registered in the user information database 21 (No in S2003), that is, when the user β cannot be specified, the user specifying unit 23 uses the digital content distribution system 1b And notifies the user terminal 30b that the LD cannot be issued. On the other hand, as a result of the determination, when the terminal ID included in the LD issuance request 70b is registered in the user information database 21 (Yes in S2003), the user identification unit 23 sends the acquired user ID to the LD generation unit 24b. Notice.
[0213]
Upon receiving the user ID from the user identification unit 23, the LD generation unit 24b refers to the license data database 22b and determines whether or not the license data 80b can be issued (S2004). Specifically, the determination is made as to whether the user ID notified from the user specifying unit 23 is registered in the license data database 22b, or the user β is specified by the content ID 61 included in the LD issuance request 70b. This is performed based on the determination as to whether or not the user has valid license data 222b for the content to be performed. More specifically, the LD generation unit 24b first determines whether the user ID notified from the user identification unit 23 is registered in the license data database 22b. When the notified user ID is registered, the LD generation unit 24b determines whether license data including the content ID included in the LD issuance request 70b is registered.
[0214]
If the license data is registered and the terminal capability included in the LD issuance request 70b indicates that the terminal has no secure clock, the current time is within the license validity period 22241 and the When the value obtained by subtracting the original usage status 2226b from the available time 22242, that is, when there is a remaining available playback time, the LD generation unit 24b determines that the LD can be issued. If the license data is registered and the terminal capability indicates that the terminal has a secure clock, the current time is earlier than the end of the license validity period 22241 and the remaining playable Even when there is time, the LD generation unit 24b determines that the LD can be issued. In other cases, the LD generation unit 24b determines that the LD cannot be issued.
[0215]
If the result of the determination is that the LD cannot be issued (No in S2004), the LD generation unit 24b considers that the user is a legitimate user of the digital content distribution system 1b, but that there is no license data for which LD is to be issued. The user terminal 30b is notified that the LD cannot be issued. That is, when the user ID notified from the user specifying unit 23 is not registered in the license data database 22b, when the license data including the content ID included in the LD issuance request 70b is not registered, the current time is set to the license validity period. In any of the cases where it is out of 22241 or the case where there is no remaining reproducible time, the LD generation unit 24b notifies the user terminal 30b that the LD cannot be issued.
[0216]
On the other hand, when the result of the determination is that the LD can be issued (Yes in S2004), the LD generation unit 24b generates the LD 80b to be issued to the user terminal 30b that has issued the LD issuance request 70b. Is executed (S2005). That is, the user ID notified from the user specifying unit 23 is registered in the license data database 22b, the license data including the content ID included in the LD issuance request 70b is registered, and the current time is within the license validity period 22241. And if there is a remaining playable time, the LD generation unit 24b executes the issued LD generation process.
[0219]
FIG. 29 is a flowchart showing a subroutine of the issued LD generation process (S2005) shown in FIG.
In this subroutine, the LD generation unit 24b first sets the license data corresponding to the user ID read from the license data database 22b in the LD 80b to be issued (S2101). More specifically, the LD generation unit 24b stores the license ID and the content ID of the license data 222b in the license ID 841 and the content ID 842 of the license header 84 of the LD 80b to be issued, and stores the content of the license data 222b in the content decryption key 89 of the LD 80b. The decryption key is stored, the original usage condition (license validity period, reproducible time) of the license data 222b is stored in the original usage condition 85 of the LD 80b, and the original usage status of the license data 222b is stored in the original usage status 86 of the LD 80b. .
[0218]
Next, the LD generation unit 24b sets “0” to the terminal usage status 88 of the LD 80b to be issued (S2102).
Then, the LD generation unit 24b refers to the rule table 22c described with reference to FIG. 22 (S2103), and sets the terminal use condition to the terminal use condition 87 of the issuing LD 80b according to the rule (S2104).
[0219]
When the setting of the terminal use conditions is completed, the LD generation unit 24b sets the immediate use flag 843 and the use end return flag 844 of the license header 84 of the LD 80b to be issued to predetermined values. The setting process is executed (S2105), and further, the rights erasure return flag 845 is set to a predetermined value. The rights erasure return flag setting process is executed (S2106). When generation of the LD 80b to be issued is completed, FIG. Return to the main routine.
[0220]
FIG. 30 is a flowchart showing a subroutine of the immediate use flag / use end return flag setting process (S2105) shown in FIG.
The LD generation unit 24b first determines whether to immediately use the LD 80b to be issued (S2111). This determination is made based on, for example, the terminal capability included in the LD issuance request 70b. Since the terminal capability indicates that the user terminal 30b does not hold a secure clock, if the terminal is to be used immediately (Yes in S2111), the LD generation unit 24b sets “ON” in the immediate use flag and uses the "Return required" is set in the return flag at the end (S2112), and the process returns to the subroutine shown in FIG.
[0221]
On the other hand, if the terminal capability indicates that the user terminal 30b holds a secure clock, and there is no need for immediate use (No in S2111), the LD generation unit 24b returns the LD at the end of use. It is determined whether or not this is the case (S2113). This determination is made based on the contents of the use end return flag 2222c shown in FIG. If the LD is to be returned at the end of use (Yes at S2113), the LD generation unit 24b sets “OFF” to the immediate use flag and sets “return required” to the return flag at the end of use (S2114), and FIG. And returns to the subroutine indicated by. On the other hand, if the LD is not returned at the end of use (No at S2113), the LD generation unit 24b sets “OFF” for the immediate use flag and “return unnecessary” for the use end flag (S2115), and FIG. And returns to the subroutine indicated by.
[0222]
FIG. 31 is a flowchart showing a subroutine of the right-of-rights-return-time return flag setting process (S2106) shown in FIG.
The LD generation unit 24b determines whether or not the remaining usage condition MAX calculated from the original usage condition 2224b and the original usage status 2226b is not included in the terminal usage condition (S2121). When the remaining usage condition MAX is not included in the terminal usage condition (Yes in S2121), the LD generation unit 24b sets “return required” to the return flag 845 of the LD 80b when the right is lost (S2122), and FIG. And returns to the main routine shown in FIG. Here, the reason for setting the return requirement is to secure the reusability when the usage right remains because the LD 80b has a two-layer structure.
[0223]
On the other hand, when the remaining usage condition MAX is included in the terminal usage condition (No in S2121), the LD generation unit 24b sets “return unnecessary” in the return right flag 845 of the LD 80b ( S2123), and returns to the main routine shown in FIG.
[0224]
When the generation of the LD 80b to be issued is completed in this way, the LD generation unit 24b deletes the license data to be issued from the license data database 22b (S2006). That is, the license data on which the generation of the LD 80b is based is deleted from the license data database 22b.
[0225]
The user ID corresponding to the license data to be deleted may be deleted from the license data database 22b together with the license data.
After the license data is deleted, the LD generation unit 24b transmits the generated LD 80b to the user terminal 30b via the communication unit 28 (S2007).
[0226]
Here, the LD 80b is transmitted after deleting the license data. However, as a modification of the second embodiment, the LD 80b is transmitted to the user terminal 30b, and after receiving the message indicating that the LD 80b has been received from the user terminal 30b. The license data may be deleted. In this case, even if the LD 80b is broken during transmission due to a failure of the transmission path 40 or the like, the LD 80b can be reliably reissued.
[0227]
Upon receiving the LD 80b transmitted from the rights management server 20b via the communication unit 312 (S2008), the LD acquisition unit 304b of the user terminal 30b determines whether or not “ON” is set in the immediate use flag 843 (S2008). S2009). As a result of the determination, if “ON” is not set in the immediate use flag 843 (No in S2009), that is, if “OFF” is set in the immediate use flag 843, the LD acquisition unit 304b sends the received LD 80b to the The information is registered in the LD database 302b (S2010). Thereafter, the LD acquisition unit 304b notifies the user β via the GUI 313 that the acquisition of the LD 80b has been completed, and ends the LT acquisition process.
[0228]
On the other hand, as a result of the determination, if “ON” is set in the immediate use flag 843 (Yes in S2009), the LD acquiring unit 304b uses the content without registering the received LD 80b in the LD database 302b. The content is passed to the propriety determining unit 308b, and a content reproduction process for reproducing the content corresponding to the LD 80b is executed (S2011).
[0229]
Thereby, when the user terminal 30b holds the secure clock, the LD 80b is registered in the LD database 302b, and when the user terminal 30b does not hold the secure clock, the acquired LD 80b is immediately consumed, whereby the user terminal 30b is consumed. At 30b, it is possible to prevent the reproduction time from being altered or the LD from being altered.
[0230]
On the other hand, when it is determined in step S2003 or S2004 that LD issuance is not possible, the LD acquisition unit 304b receives an LD issuance disable notification from the right management server 20b (S2012). In this case, the LD obtaining unit 304b notifies the user β via the GUI 313 that the LD 80b could not be obtained, and ends the processing.
[0231]
When transmitting the LD issuance request 70b, the communication unit 312 of the user terminal 30b and the communication unit 28 of the right management server 20b form an SAC.
Next, a content reproduction process in which the user terminal 30b reproduces content using the LD 80b in the digital content distribution system 1b according to Embodiment 2 will be described with reference to the flowchart in FIG.
[0232]
FIG. 32 is a flowchart showing the operation of the content reproduction process.
This content playback process is performed by, for example, displaying a list on a content playback menu screen (not shown) called when the user β clicks the content playback button 54b on the menu screen shown in FIG. 28 and clicking the content playback button 54b. When the user β selects one content to be reproduced from the content data 60 registered in the content database 301 to be reproduced, a content reproduction instruction including the content ID of the selected content data is transmitted from the GUI 313 to the LD acquisition unit 304b. Is entered and executed.
[0233]
Upon receiving the content playback instruction from the user β via the GUI 313, the content use availability determination unit 308b checks whether or not the LD 80b corresponding to the content that the user β wants to play exists in the LD database 302b (S2201). .
[0234]
If the desired LD 80b does not exist in the LD database 302b, the content use availability determination unit 308b passes the content ID to the LD acquisition unit 304b, and automatically executes an LD acquisition process similar to the LD acquisition process shown in FIG. (S2203), it is determined whether or not the LD 80b has been acquired (S2203).
[0235]
As a result of the determination, when the acquisition of the LD 80b fails (No in S2203), the content use availability determination unit 308b notifies the user β via the GUI 313 that the content cannot be reproduced, and executes the content reproduction process. finish.
[0236]
On the other hand, when the LD 80b exists in the LD database 302b (Yes in S2201) or when the LD 80b is successfully acquired by executing the LD acquisition process (Yes in S2203), the content availability determination is performed. The unit 308b refers to the content of the LD 80b and determines whether the content can be reproduced (S2205). This determination is made by referring to the license validity period 871, the reproducible time 872, and the terminal use status 88 in the terminal use condition 87 in the LD 80b. More specifically, the content availability determination unit 308b subtracts the value stored in the terminal usage status 88 from the value stored in the reproducible time 872 when the current time is within the license validity period 871. If the calculated value (hereinafter, the subtracted value is also referred to as “remaining terminal usage condition”) is greater than “0”, it is determined that the content can be reproduced. Otherwise, if the validity period of the LD 80b has expired or if there are no remaining terminal use conditions, the content use availability determination unit 308b determines that the content cannot be reproduced.
[0237]
If it is determined that the content cannot be reproduced (No in S2205), the return flag determination unit 307b determines whether the value of the return flag at the time of right disappearance is "return required" (S2231). If the value is “return unnecessary”, the content use determination unit 308b notifies the user β via the GUI 313 that the content cannot be reproduced, and ends the content reproduction process. Conversely, if the value is "return required", the LD return unit 305b executes an LD return process of returning the LD 80b to the rights management server 20b (S2232), and then returns to step S2202. Such a situation occurs, for example, when the validity period of the LD 80b has expired without reproducing the content.
[0238]
On the other hand, when the content use availability determination unit 308b determines that the content can be reproduced (Yes in S2205), the content decoding unit 310 extracts the content that the user β wants to reproduce from the content database 301 (S2206). . In addition, the decryption key acquisition unit 309 extracts the content decryption key 89 from the LD 80b corresponding to the content that the user β wants to reproduce (S2207), and passes it to the content decryption unit 310.
[0239]
When the content decryption key is passed, the content decryption unit 310 decrypts the encrypted content retrieved from the content database 301 using the content decryption key 89 (S2208), and the content reproduction unit 311 decrypts the content using the content decryption unit 310. The content thus reproduced is reproduced (S2209).
[0240]
When the reproduction of the content is started, the LD updating unit 306b determines whether the content reproduction time has reached the reproducible time (S2210). This determination is made based on the reproducible time 872 in the terminal use condition 87 in the LD 80b, the terminal use status 88, and the replay time measured by the secure timer. That is, it is determined whether or not the total of the cumulative playback time of content playback stored in the terminal usage status 88 and the playback time measured by the timer has reached the value stored in the playable time 872. Is done.
[0241]
As a result of the determination, when the reproducible time has not been reached (No in S2210), the LD update unit 306b determines whether the user β has instructed the stop of the reproduction via the GUI 313 (S2211). If the user has not instructed to stop (No in S2211), content reproduction by the content reproduction unit 311 is permitted.
[0242]
When the user instructs to stop (Yes in S2211), or when the content reproduction time reaches the reproducible time (Yes in S2210), the LD update unit 306b completes the reproduction of the content (S2212). Then, the current playback time measured by the timer is obtained (S2213). Then, the LD updating unit 306b updates the content of the LD 80b used when reproducing the content (S2214). Specifically, the LD update unit 306b sets the terminal usage status 88 with the total value obtained by adding the current playback time measured by the timer.
[0243]
When the LD is updated, the LD return unit 305b executes an end-of-use LD return process of returning the LD 80b to the rights management server 20b (S2220), and the LD return unit 305b assigns the rights to the LD 80b that cannot be used for content reproduction. An LD return / deletion process when the usage right is lost, such as returning to the management server 20b or deleting the LD 80b from the LD database 302b, is executed (S2215), and the operation of the content reproduction process ends.
[0244]
Next, the LD return process at the end of use in S2220 in FIG. 32 will be described with reference to the flowchart in FIG.
FIG. 33 is a flowchart showing a subroutine of the LD return process at the end of use (S2220) shown in FIG.
[0245]
The return flag determination unit 307b determines whether the value of the return flag 844 at the end of use of the LD 80b to be operated is a return unnecessary or a return required (S2221).
When the value of the return flag 845 at the time of losing the right is a required return, the LD return unit 305b executes an LD return process of automatically returning the LD 80b to the right management server 20b (S2222), and returns to the main routine. On the other hand, when the value of the return flag 845 at the time of losing the right is unnecessary, the process returns to the main routine.
[0246]
Next, with reference to the flowchart of FIG. 34, the LD return / deletion process when the usage right is lost in S2215 in FIG. 32 will be described.
Note that this LD return / deletion process is a process for determining whether the LD 80b is invalid and, if invalid, returning or deleting the LD 80b to the rights management server 20b.
[0247]
FIG. 34 is a flowchart showing a subroutine of the LD return / deletion process (S2215) when the right to use is lost shown in FIG.
The LD updating unit 306b refers to the license validity period 871 of the operation target LD 80b, and checks whether the current time has passed the end time (end) of the license validity period 871, that is, whether the current time has passed the license validity period 871 ( S2302).
[0248]
If the current time has not passed the end time of the license validity period 871 (No in S2302), the LD updating unit 306b determines whether the value of the original usage state 86 of the operation target LD 80b has reached the value of the reproducible time 872. It is determined whether or not it is (S2303). As a result of the determination, if the reproducible time has not been reached (No in S2303), since the LD 80b is still available, the LD return unit 305b does not return or delete the LD 80b, and performs the LD return / deletion process as it is. To end.
[0249]
On the other hand, if the current time has passed the end time of the license validity period 871 (Yes in S2302) and if the value of the original usage status 86 has reached the reproducible time (Yes in S2303), the LD 80b is Since it is unusable, the return flag determination unit 307b refers to the value of the right-of-loss return flag 845 of the LD 80b and determines whether it is necessary to return to the right management server 20b (S2304). If the value of the right-of-rights return flag 845 does not need to be returned, the LD updating unit 306b deletes the LD 80b from the LD database 302b (S2305) and returns to the main routine.
[0250]
On the other hand, in the case where the value of the return flag 844 at the end of use is a return required or the value of the return flag at the time of disappearing right 845 is a return required, the LD updating unit 306b sends the LD 80b to the rights management server 20b. Execute the LD return process to return, and return to the main routine.
[0251]
Next, an LD return process for returning the LD 80b from the user terminal 30b to the rights management server 20b in the digital content distribution system 1b according to the second embodiment will be described with reference to the flowchart in FIG.
FIG. 35 is a flowchart showing the operation of the LD return process.
[0252]
The LD return process is performed, for example, by displaying a list on an LD return screen (not shown) called when the user β clicks the LD return button 55b on the menu screen shown in FIG. 28 and clicks the LD return button 55b. When the user selects one of the LDs 80b desired to be returned from the LDs registered in the displayed LD database 302b, an LD return instruction including the terminal ID is input from the GUI 313 to the LD return unit 305b and executed. .
[0253]
Upon receiving an LD return instruction from the user β via the GUI 313, the LD return unit 305b generates an LD return request 90b, and transmits the generated LD return request 90b to the rights management server 20b via the communication unit 312. (S2401).
Here, the terminal ID held by the terminal ID / terminal capability storage unit 303b is stored in the terminal ID 92 of the LD return request 90b generated by the LD return unit 305b, and the LD specified by the LD return instruction from the user β is displayed in the LD 93b. , Respectively.
[0254]
When transmitting the LD issuance request 70b, the communication unit 312 of the user terminal 30b and the communication unit 28 of the right management server 20b form an SAC.
Upon receiving the LD return request 90b from the user terminal 30b via the communication unit 28, the user specifying unit 23 of the right management server 20b specifies the terminal ID included in the LD return request 90b (S2402).
[0255]
After specifying the terminal ID, the user specifying unit 23 refers to the user information database 21 and determines whether the specified user ID is registered in the user information database 21 (S2403).
[0256]
If the terminal ID included in the LD return request 90b is not registered in the user information database 21 (No in S2403), the user identifying unit 23 determines that the user β of the user terminal 30b that has transmitted the LD return request 90b distributes this digital content. It is considered that the user is not a legitimate user of the system 1b, and notifies the user terminal 30b that the LD cannot be returned.
[0257]
When the terminal ID 92 included in the LD return request 90b is registered in the user information database 21 (Yes in S2404), the user identifying unit 23 acquires a user ID corresponding to the identified terminal ID, and sends the user ID to the LD updating unit 27b. hand over.
When the user ID is passed, the LD updating unit 27b updates the license data included in the LD return request 90b (S2404).
[0258]
This updating is performed, for example, as follows. The LD analysis unit 26b analyzes the LD included in the LD return request 90b, and firstly, a part necessary for the license data 222b managed by the license data database 22b, that is, a license ID, a content ID, a content decryption key, an original use The condition and the original usage status portion are extracted from the LD return request 90b, and the terminal usage status portion is extracted from the LD return request 90b to check how the user terminal 30b has been used. When the terminal usage status portion is extracted, the LD updating unit 27b adds the value of the original usage status extracted by the LD analysis unit 26b by the value of the terminal usage status, and updates the added value.
[0259]
After updating the license data, the LD updating unit 27b registers the updated license data in the license data database 22b (S2405). This registration is performed by referring to the license data database 22b, searching for a record including the user ID passed from the user specifying unit 23, and storing the updated license data in the record including the searched user ID.
[0260]
When the registration in the license data database 22b is completed, the LD updating unit 27b transmits an LD return processing completion notification to the user terminal 30b via the communication unit 28 (S2406).
[0261]
Upon receiving the LD return processing completion notification via the communication unit 312, the LD return unit 305b of the user terminal 30b deletes the return target LD 80b from the LD database 302b (S2407). After that, the LD return unit 305b notifies the user β via the GUI 313 that the return of the LD 80b is completed, and ends the processing.
[0262]
On the other hand, when the LD return unit 305b receives the LD return disable notification via the communication unit 312 (S2408), the LD return unit 305b notifies the user β via the GUI 313 that the LD 80b could not be returned. Then, the process is terminated without deleting the LD 80b to be returned from the LD database 302b.
[0263]
As described above, according to the invention of the second embodiment, it is possible to not only reduce the load on the user's terminal device but also control access to the server device by returning license information or issuing a license information request Content usage control based on various conditions and usage results (for example, licenses that are reissued after return according to various conditions and usage conditions, such as "I answered a questionnaire" or "I used it within x days") Various contents use services can be dealt with, such as changing data contents) and collecting usage results. In addition, the load on the server device during the issuance of license data can be reduced.
[0264]
Also, according to the invention according to the second embodiment, by generating license data in a server device and introducing two usage conditions of an original usage condition and a terminal usage condition, general-purpose usage conditions can be obtained. Extension can be realized. In other words, the terminal device can introduce a complicated use condition that is difficult to interpret by setting it as the original use condition. In this case, when issuing the license data, the server device generates a simple use condition that can be interpreted by the terminal device based on the complicated use condition, and sets the simple use condition as the terminal use condition.
[0265]
In the digital content distribution system 1b according to the second embodiment, the case where the original usage conditions 2224b and the like are managed by time has been described. However, it is needless to say that the present invention is applicable to the case where the original usage conditions 2224b and the like are managed by the number of times. Nor.
[0266]
In other words, as shown in FIG. 36, the right management server 20b according to the digital content distribution system 1b determines whether the license data purchased by the user has the original usage condition 2224b (for example, 10 times) and the usage status of the user terminal 30b. And an original usage status 2226b representing the original usage status 2226b. Upon receiving the LD issuance request 70b from the user terminal 30b, the rights management server 20b stores all of the original use condition 2224b and the original use status 2226b in the LD 80b issued to the user terminal 30b that issued the LD issuance request 70b. The original usage rule 2224b and the original usage status 2226b are temporarily deleted from the license data database 22b. Then, when issuing the LD 80b, the rights management server 20b generates a terminal use condition 87 (for example, once) and a terminal use status 88 (for example, 0 times) based on a predetermined rule. , Embedded in the LD 80b and issued. In other words, the LD 80b is issued in a two-layer structure including the original usage conditions 85 and the original usage status 86, and the terminal usage conditions 87 and the terminal usage status 88.
[0267]
The user terminal 30b refers to only the terminal usage condition 87 and the terminal usage status 88 of the LD 80b received from the right management server 20b at the time of content reproduction, and updates the content of the terminal usage status 88 by the usage status used by the terminal. . Note that the user terminal 30b does not refer to the original use condition 85 and the original use state 86. Then, the user terminal 30b transmits the two-layered LD 80b to the rights management server 20b in the LD return request 90b.
[0268]
Upon receiving the LD return request 90b, the rights management server 20b refers to the terminal usage status 88 of the LD 80b, updates the original usage status by the terminal usage status, and stores the original usage conditions in the license data database managed by the right management server 20b. 2222b and the original usage status 2226b are registered again. When the original use condition is subtracted from the original use condition, the remaining use condition is known.
[0269]
Further, in the second embodiment, the user terminal 30b sets at least the use end return flag 844 and the right disappearance return flag 845 of the license header 84 without referring to the original use condition 85 and the original use state 86 of the LD 80b. If one of them is required to be returned, the LD 80b is returned to the rights management server 20b. However, at least one of the use end return flag 844 and the rights lost return flag 845 of the license header 84 is eliminated, and the alternative is used. Then, with reference to the original use condition 85 and the original use state 86, if the LD 80b has a two-layer structure, the LD 80b may be returned to the right management server 20b. In addition, at least one of the return flag 844 at the end of use and the return flag 845 at the end of the right of the license header 84 is eliminated, and instead, the original use condition 85 and the original use state 86 are referred to, and the LD 80b has a two-layer structure. If the remaining usage condition MAX calculated from the original usage condition 2224b and the original usage status 2226b is not included in the terminal usage condition, the LD 80b may be returned to the right management server 20b. Good.
[0270]
Also, the rule table 22c has been described as a rule that defines a license validity period, a reproducible time (reproducible number), and a return flag at the end of use set in the terminal use condition, but this is only an example. The rules defined in the rule table 22c include, for example, a rule that determines a return flag at the time of loss of right based on whether or not there is a will to check the terminal use status, a terminal use condition, and setting of various flags for each user. There are various rules, such as simple rules.
[0271]
Further, in the second embodiment, the license data database 22b and the rule table 22c are separately formed, but the two tables may be configured as one table.
[0272]
In the digital content distribution system 1b according to the second embodiment, upon receiving the LD issuance request 70b from the user terminal 30b, the rights management server 20b transmits the two-layered LD 80b including the original use condition 2224b and the original use status 2226b. , The original usage condition 2224b and the original usage status 2226b are temporarily deleted from the license data database 22b. However, the original usage condition 2224b and the original usage status 2226b are stored in the license data database 22b. The original usage condition 2224b and the original usage status 2226b may be issued to the LD 80b without being deleted from the LD 80b.
[0273]
In other words, as shown in FIG. 37, the rights management server 20b according to the digital content distribution system 1b determines whether the license data purchased by the user has the original usage condition 2224b (for example, 10 hours) and the status of use by the user terminal 30b. And an original usage status 2226b representing the original usage status 2226b. Upon receiving the LD issuance request 70b from the user terminal 30b, the rights management server 20b sends a predetermined rule to the user terminal 30b that has issued the LD issuance request 70b, based on the original usage conditions 2224b and the original usage status 2226b. , A terminal usage condition 87 (for example, one hour) and a terminal usage status 88 (for example, zero times) are cut out, embedded in the LD 80b, and issued.
[0274]
The user terminal 30b refers to the terminal usage condition 87 and the terminal usage status 88 of the LD 80b received from the right management server 20b at the time of content reproduction, and updates the content of the terminal usage status 88 by the usage status used by the terminal. Then, the user terminal 30b transmits the LD 80b to the rights management server 20b in the LD return request 90b.
[0275]
Upon receiving the LD return request 90b, the rights management server 20b refers to the terminal usage status 88 of the LD 80b and updates the original usage status registered in the license data database managed by the right management server 20b by the terminal usage status. .
[0276]
Further, in order for the user terminal 30b to efficiently return the LD to the rights management server 20b and then acquire the LD again (such as the operation from the LT return process (S2232) to S2202 in FIG. 32), the user terminal 30b efficiently performs In step S2406 in FIG. 35, the LD return processing completion notification transmitted from the rights management server 20b to the user terminal 30b may include information indicating whether a new LD can be issued. In this case, if the user terminal 30b is notified by the LD return processing completion notification that a new LD can be issued, the user terminal 30b continuously performs the LD acquisition processing, but cannot issue a new LD. Is notified, the process of acquiring a new LD is not performed.
[0277]
In addition, it is also possible to implement so that the process of returning the LD and the subsequent acquisition of the LD is performed at once. In this case, as shown in FIG. 38, the user terminal 30b transmits an LD return / issue request 100 requesting that the LD return processing and the LD acquisition processing be performed at once to the rights management server 20b. After receiving the issuance request 100, the rights management server 20b performs the LD return process (the processes of S2402 to S2405 in FIG. 35), and then continuously performs the LT issuance process (the processes of S2004 to S2007 in FIG. 27). . The LD return / issuance request 100 is composed of an LD return / issuance request identifier 101 representing an LD return / issuance request, and a combination of an LD issue request 70b and a license data return request 90b, that is, a terminal ID 102, a license data 103, a content ID 104, and a terminal capability 105.
[0278]
Also, normally, an LD is transmitted from the rights management server 20b to the user terminal 30b as a reply to the LD return / issuing request, but it is not always necessary to return the entire LD. The minimum necessary information that can be held may be returned.
[0279]
For example, if the terminal usage condition of the LD to be returned is the same as the terminal usage condition of the LD returned from the user terminal 30b, the user terminal 30b resets the terminal usage status of the LD to be returned to 0. The information to be instructed may be returned. In this case, the user terminal 30b does not delete the LD that is to be returned, but instead resets the terminal usage status of the LD to 0 and retains it.
[0280]
Alternatively, only a terminal use condition may be transmitted as a reply to the LD return / issue request. In this case, the user terminal 30b overwrites the terminal usage condition of the LD to be returned with the returned terminal usage condition, further resets the terminal usage status to 0, and retains the status as it is. .
[0281]
In the above description, the license data itself is described in the LD return request 90b and the LD return / issuance request 100. However, it is not always necessary to describe the entire license data, but only the terminal usage status. For example, only the minimum part necessary for the return processing in the right management server 20b may be described.
[0282]
Up to this point, the user terminal 30b has been described as returning the LD whose usage right has been lost to the right management server 20b, and then acquiring a new LD. However, the return of the LD is performed. Instead, it may be implemented to re-acquire the LD from the rights management server 20b. In this case, upon receiving the LD reacquisition request from the user terminal 30b, the rights management server 20b processes the previously issued LD on the assumption that the use has been completed, and issues a new LD. In this case, in the user terminal 30b, a request to re-acquire the LD is made only when the right to use the LD has been lost, and two LDs having the same license ID can be held at the same time. Preferably, it is controlled not to occur.
[0283]
In the second embodiment, the return flag at the time of erasure of rights has been described as information indicating whether the LD needs to be returned to the rights management server 20b at the time of erasure of the rights of the LD. The flag is not limited, and indicates whether or not there is a remaining usage condition calculated from the original usage condition and the original usage status, whether or not LD can be re-acquired from the rights management server 20b, and whether or not LD can be deleted at the user terminal 30b. May be used, and the user terminal 30b may determine the next operation according to the information specified in the flag.
[0284]
Further, in the second embodiment, only the cumulative usage time and the number of times of use are stored in the terminal usage status. However, information accompanying the usage status such as the content reproduction start time and the content reproduction end time is stored in the terminal usage status. It may be embedded and returned to the server. As a result, the server can acquire specific detailed usage status of each user such as the content usage time zone, and can cope with various services of content usage.
[0285]
Industrial applicability
A content use management system and a digital content distribution system according to the present invention include a server device and a terminal device, and the server device is used as a computer device that distributes license information for each content, and the terminal device receives license information. It is suitable for use as a computer device such as a set-top box, a personal computer, a digital television, a printer, a mobile phone, and a personal digital assistant.
[0286]
【The invention's effect】
According to the content usage management system according to the present invention, the server device stores license information indicating usage conditions of content for each user who uses the terminal device, and, based on a request from the user, a license corresponding to the user. A license ticket, which is right information indicating a part or all of the usage conditions indicated by the information, is generated, and a return indicating the necessity of returning the license ticket to the server device when the right of the license ticket has been lost is generated. After setting the information, the terminal device requests the server device to use the content according to the user's instruction, receives the license ticket transmitted from the server device, and uses the content according to the usage condition indicated by the received license ticket. Control according to the return information indicated by the received license ticket. Requesting the device to return the license ticket not only reduces the load on the user's terminal device, but also increases the frequency of access to the server device by returning the license ticket and issuing a license ticket, thereby increasing the variety of content usage. Service can be dealt with.
[0287]
Therefore, the practical value of the present invention is extremely high today, when the infrastructure such as the Internet is prepared and the distribution of contents over the Internet is widespread.
[Brief description of the drawings]
FIG. 1 is a block diagram illustrating an overall configuration of a digital content distribution system according to a first embodiment of the present invention.
FIG. 2 is a diagram showing a format configuration of content data 60 shown in FIG.
FIG. 3 is a functional block diagram showing a specific configuration of a right management server 20a shown in FIG.
FIG. 4 is a diagram showing a specific configuration of a user information database 21 shown in FIG.
FIG. 5 is a diagram showing a specific configuration of a usage right database 22a shown in FIG. 3;
FIG. 6 is a diagram showing a specific configuration of an LT 80a shown in FIG.
FIG. 7 is a diagram illustrating a relationship between an LT effective period width 2225a of a usage right 222a and an LT effective period 821a set in the LT 80a.
FIG. 8 is a functional block diagram showing a specific configuration of a user terminal 30a shown in FIG.
FIG. 9 is a diagram showing a specific configuration of an LT issuance request 70a shown in FIG.
FIG. 10 is a diagram showing a specific configuration of an LT return request 90a shown in FIG.
FIG. 11 is a flowchart illustrating an operation of an LT acquisition process.
FIG. 12 is a diagram illustrating a configuration of a menu screen displayed by a GUI 313.
FIG. 13 is a flowchart showing a subroutine of an LT issue availability determination process (S1004) shown in FIG. 11;
FIG. 14 is a flowchart showing an operation of a content reproduction process.
FIG. 15 is a flowchart showing a subroutine of an LT return / deletion process shown in FIG. 14;
FIG. 16 is a flowchart showing an operation of an LT return process.
FIG. 17 is a flowchart showing a subroutine of a usage right deletion process shown in FIG. 16;
FIG. 18 is a block diagram illustrating an overall configuration of a digital content distribution system 1b according to Embodiment 2 of the present invention.
FIG. 19 is a diagram showing features of the configuration of the digital content distribution system 1b.
20 is a functional block diagram showing a specific configuration of a right management server 20b shown in FIG.
21 is a diagram showing a specific configuration of a license data database 22b shown in FIG.
FIG. 22 is a diagram showing a specific configuration of a rule table 22c further held by a license data database 22b shown in FIG.
FIG. 23 is a diagram showing a specific configuration of an LD 80b shown in FIG.
24 is a functional block diagram showing a specific configuration of a user terminal 30b shown in FIG.
FIG. 25 is a diagram showing a specific configuration of an LD issuance request 70b shown in FIG.
26 is a diagram showing a specific configuration of an LD return request 90b shown in FIG.
FIG. 27 is a flowchart showing the operation of the LD acquisition process.
FIG. 28 is a diagram showing a configuration of a menu screen displayed by a GUI 313.
FIG. 29 is a flowchart showing a subroutine of an issue LD generation process (S2005) shown in FIG. 27;
30 is a flowchart showing a subroutine of an immediate use flag / use end return flag setting process (S2105) shown in FIG. 29.
FIG. 31 is a flowchart showing a subroutine of a process for setting a return flag upon lapse of right (S2106) shown in FIG. 29;
FIG. 32 is a flowchart showing an operation of a content reproduction process.
FIG. 33 is a flowchart showing a subroutine of an LD return process at end of use (S2220) shown in FIG. 32;
FIG. 34 is a flowchart illustrating a subroutine of an LD return / deletion process (S2215) when the usage right is lost shown in FIG. 32;
FIG. 35 is a flowchart showing the operation of the LD return process.
FIG. 36 is a diagram showing features of another configuration of the digital content distribution system 1b.
FIG. 37 is a diagram showing features of still another configuration of the digital content distribution system 1b.
FIG. 38 is a diagram showing a specific configuration of an LD return / issue request.
[Explanation of symbols]
1a, 1b Digital content distribution system
20a, 20b Rights management server
22a Usage rights database
22b LD database
24a LT generation unit
24b LD generation unit
25a Return flag setting section
26a LT analysis unit
26b LD analysis unit
27a Use Right Update Department
27b LD update unit
30a, 30b User terminal
70a LT issue request
70b LD issue request
80a LT
80b LD
90a LT return request
90b LD return request
302a LT database
302b LD database
303a Terminal ID storage unit
303b Terminal ID / terminal capability storage unit
304a LT acquisition unit
304b LD acquisition unit
305a LT return section
305b LD return section
306a LT update unit
306b LD update unit
307a, 307b Return flag judgment unit
308a, 308b Content use availability determination unit
309 Decryption key acquisition unit
310 Content decryption unit
311 Content playback unit

Claims (15)

A content use management system comprising a terminal device that uses content that is a digital work and a server device that manages use of the content in the terminal device,
The server device,
License information storage means for storing license information indicating usage conditions of content for each user who uses the terminal device,
Based on a request from a user, a license ticket issuance unit that generates a license ticket that is right information indicating a part or all of the usage conditions indicated by the license information corresponding to the user, and transmits the license ticket to the terminal device.
Return information setting means for setting return information indicating whether or not it is necessary to return to the server device when the right of the license ticket is lost for the license ticket generated by the license ticket generating means,
The terminal device,
Usage request means for requesting the server device to use the content according to a user's instruction;
Receiving means for receiving a license ticket transmitted from the server device;
Content use control means for controlling use of the content according to the use condition indicated by the received license ticket;
A content use management system comprising: a license ticket return requesting unit for requesting the server device to return a license ticket in accordance with return information indicated by the received license ticket. The use requesting unit makes the request by transmitting a use amount of the requested content to the server device,
2. The content use management system according to claim 1, wherein the license ticket issuing unit generates a license ticket in accordance with the amount of use transmitted from the use request unit, and transmits the generated license ticket to the terminal device. 3. The content usage management system according to claim 2, wherein the usage amount of the content includes a number of times the content is used. The content usage management system according to claim 2, wherein the usage amount of the content includes an accumulated usage time of the content. The use condition indicated by the license ticket includes a validity period of the license ticket in which all or a part of a validity period determined by the use condition indicated by the license information is set. Content usage management system. The use requesting means transmits, to the server device, capability information indicating the capability of the terminal device with respect to the content usage control, together with the usage amount, and the license ticket issuing unit transmits the capability information transmitted from the use requesting unit. The content use management system according to claim 1, wherein the license ticket is generated according to the information, and transmitted to the terminal device. The content use management system according to claim 6, wherein the capability information includes information indicating whether the terminal device has a secure clock. 7. The content use management system according to claim 6, wherein the capability information includes information indicating whether or not the terminal device has a storage unit on a secure recording medium. The license ticket issuing unit, when receiving the capability information from the use requesting unit, associates the license ticket status information instructing the handling of the license ticket in the terminal device with the license ticket corresponding to the capability indicated by the capability information. 7. The content use management system according to claim 6, wherein the content is transmitted to the terminal device. 10. The content use management system according to claim 9, wherein the license ticket status information includes a flag indicating that the license ticket must be immediately consumed without being written to a recording medium. A terminal device in a content use management system comprising a terminal device that uses content that is a digital work and a server device that manages use of the content in the terminal device,
The server device,
License information storage means for storing license information indicating usage conditions of content for each user who uses the terminal device,
Based on a request from a user, a license ticket issuance unit that generates a license ticket that is right information indicating a part or all of the usage conditions indicated by the license information corresponding to the user, and transmits the license ticket to the terminal device.
Return information setting means for setting return information indicating whether or not it is necessary to return to the server device when the right of the license ticket is lost for the license ticket generated by the license ticket generating means,
The terminal device,
Usage request means for requesting the server device to use the content according to a user's instruction;
Receiving means for receiving a license ticket transmitted from the server device;
Content use control means for controlling use of the content according to the use condition indicated by the received license ticket;
A terminal device comprising: a license ticket return request unit that requests the server device to return a license ticket according to return information indicated by the received license ticket. A program for a terminal device in a content use management system including a terminal device that uses content that is a digital work and a server device that manages use of the content in the terminal device,
The server device,
License information storage means for storing license information indicating usage conditions of content for each user who uses the terminal device,
Based on a request from a user, a license ticket issuance unit that generates a license ticket that is right information indicating a part or all of the usage conditions indicated by the license information corresponding to the user, and transmits the license ticket to the terminal device.
Return information setting means for setting return information indicating whether or not it is necessary to return to the server device when the right of the license ticket is lost for the license ticket generated by the license ticket generating means,
The program is
Usage request means for requesting the server device to use the content according to a user's instruction;
Receiving means for receiving a license ticket transmitted from the server device;
According to a use condition indicated by the received license ticket, a content use control unit that controls use of the content and a license ticket return request unit that requests the server device to return a license ticket according to return information indicated by the received license ticket. A program that makes a computer function. A server device in a content use management system including a terminal device that uses content that is a digital work and a server device that manages use of the content in the terminal device,
The server device,
License information storage means for storing license information indicating usage conditions of content for each user who uses the terminal device,
Based on a request from a user, a license ticket issuance unit that generates a license ticket that is right information indicating a part or all of the usage conditions indicated by the license information corresponding to the user, and transmits the license ticket to the terminal device.
Return information setting means for setting return information indicating whether or not it is necessary to return to the server device when the right of the license ticket is lost for the license ticket generated by the license ticket generating means,
The terminal device,
Usage request means for requesting the server device to use the content according to a user's instruction;
Receiving means for receiving a license ticket transmitted from the server device;
Content use control means for controlling use of the content according to the use condition indicated by the received license ticket;
A server device comprising: a license ticket return request unit that requests the server device to return a license ticket in accordance with return information indicated by the received license ticket. A program for a server device in a content use management system including a terminal device that uses content that is a digital work and a server device that manages use of the content in the terminal device,
The program is
Based on a request from the user, one of the license information indicating the usage condition of the content for each user who uses the terminal device, which is stored in the license information storage unit. A license ticket, which is right information indicating a copy or a whole, is generated, and a license ticket issuance unit that transmits the license ticket to the terminal device and a license ticket that is generated by the license ticket generation unit generate a license ticket when the right of the license ticket is lost. Causing the computer to function as return information setting means for setting return information indicating whether or not the return to the server device is necessary;
The terminal device,
Usage request means for requesting the server device to use the content according to a user's instruction;
Receiving means for receiving a license ticket transmitted from the server device;
Content use control means for controlling use of the content according to the use condition indicated by the received license ticket;
A program comprising: license ticket return request means for requesting the server device to return a license ticket in accordance with return information indicated by the received license ticket. A content use management method in a system including a terminal device that uses content that is a digital work and a server device that manages use of the content in the terminal device,
In the server device,
A storage step of storing license information indicating a usage condition of content for each user who uses the terminal device in a license information storage unit;
Based on a request from a user, a license ticket issuance step of generating a license ticket that is right information indicating a part or all of the usage conditions indicated by the license information corresponding to the user, and transmitting the license ticket to the terminal device.
A return information setting step of setting return information indicating whether or not return to the server device is necessary when the right of the license ticket is lost for the license ticket generated by the license ticket generating means,
In the terminal device,
A use requesting step of requesting the server device to use the content according to a user's instruction;
A receiving step of receiving a license ticket transmitted from the server device;
A content use control step of controlling use of the content according to the use condition indicated by the received license ticket;
A license ticket return requesting step of requesting the server device to return a license ticket in accordance with the return information indicated by the received license ticket.

Images