JP3606148B2 - Digital content usage control method and system - Google Patents

Description

[0001]
BACKGROUND OF THE INVENTION
The present invention relates to a technology for controlling the use of digital content, and more particularly to a digital content use control technology that can change the unit of use of digital content and prevent unauthorized distribution of a decryption key of encrypted content data.
[0002]
[Prior art]
Conventionally, this kind of digital content use control system distributes encrypted content data and gives a decryption key in exchange for proof that the user has paid a certain amount of money. It was demanded to satisfy the conditions. An example of a conventional digital content usage control system is described in JP-A-8-274729.
[0003]
The system described in this publication includes an antenna and satellite line I / F unit that receives content data delivered via a satellite, an ID card reader that records information for identifying a user, and collection of content charges A communication I / F unit for transmitting billing information to the center and receiving a decryption key for encrypted content data via a telephone line, and a cipher for decrypting the encrypted content data with a decryption key obtained from the communication I / F unit A decoding circuit, and an operation device and a display device necessary for dialog with the user are provided.
[0004]
When the user uses the content data received through the antenna and the satellite line I / F unit, the display device asks the user for consent for charging according to the charging information recorded in the content data. When the user accepts the billing by the operation device, the system connects to the price collection center via the telephone line by the communication I / F unit, and transmits the billing information together with the personal information recorded in the ID card. When receiving the billing information and the personal information, the price collection center transmits the decryption key of the content data in exchange for it. The system that has received the decryption key decrypts the encrypted data with the decryption circuit and displays the decrypted data with the display device.
[0005]
Also known is a system that regards content as a set of component data and controls availability for each subset of the component data. An example of such a system is described in JP-A-8-8852.
[0006]
The system described in this publication includes an information providing server and an information terminal device. The information providing server includes a receiver and a transmitter that communicate with the information terminal device, and an encryption that encrypts information to be distributed. The apparatus includes a distribution information database that stores various types of information.
[0007]
Each piece of information stored in the distribution information database consists of primary information and some differences with respect to it, and the partial information is divided into several groups and distributed according to usage requests issued by information terminal devices. Can do. At the time of distribution, the information providing server encrypts the grouped information using a different encryption key for each group and transmits the information to the information terminal device. When the user uses the grouped information using the information terminal device, the information providing server sequentially gives a decryption key for the group, thereby charging for partial information.
[0008]
Furthermore, there is also known a system in which an arbitrary data set is defined in advance, and encryption and decryption are performed with different keys for each set regardless of the difference information as in the system described in the above publication. An example of such a system is described in JP-A-8-212198.
[0009]
In the system described in this publication, font usage control is performed. A font has a one-to-one correspondence with a predetermined set of character codes, each character code set is encrypted with a different key, and encrypted font information is distributed. This system includes a font database and a font reading module for storing encrypted font information, a font decryption module for decrypting the encrypted font information, and a font display module for displaying the decrypted font. When the user tries to display a font, the font reading module reads the encrypted font information from the font database, the font decoding module calculates a decoding key based on the character code set to which the font belongs, and the font information And the font display module displays the font.
[0010]
[Problems to be solved by the invention]
The first problem is that it is difficult to change the group configuration of content partial data after content distribution.
[0011]
The reason is that at the time of content distribution, a set of encryption key and decryption key is uniquely determined for each group, and change of the set of encryption key and decryption key is impossible in principle.
[0012]
The second problem is that unauthorized transfer of content usage rights by a user is easy.
[0013]
The reason is that the request for the decryption key or the decryption key itself has no relationship with the user-specific information or is in a format that can be easily forged even if there is a relationship. This is because when the decryption key is distributed, there is no means for confirming that the decryption key has been obtained in an unauthorized manner.
[0014]
The third problem is that it is difficult to reliably limit the number of times the same content is used when there is a person who tries to cheat.
[0015]
The reason is that when using the same content, the request for the decryption key is always constant or can be easily counterfeited regardless of the number of times of use.
[0016]
Therefore, an object of the present invention is to enable the configuration of a content component set to be changed after content distribution.
[0017]
Another object of the present invention is to prevent unauthorized transfer of content usage rights by a user.
[0018]
Still another object of the present invention is to make it possible to reliably limit the number of times the same content is used even when there is a person who tries to commit fraud.
[0019]
[Means for Solving the Problems]
In the digital content usage control method of the present invention, the configuration of the content component set can be changed after the content distribution.
A digital content use control method for controlling the use of digital content in a system in which a playback device and a use permission server are connected via a network,
The digital content includes a plurality of component data encrypted with different encryption keys,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a use permission code for each component set and a decryption key for each component data, Component set to be played back from the playback device And requirements including usage When you receive a license request specifying If the usage method in the request condition is permitted, A usage certificate including a usage code corresponding to the specified component set is sent to the playback device;
When the usage certificate is sent from the usage authorization server, the playback device sends a decryption key sequence request including the usage authorization code in the usage license to the usage authorization server,
When the decryption key sequence request is sent from the playback device, the use permission server performs authentication based on the use permission code in the decryption key sequence request and the use permission code managed by the own server Thereafter, a decryption key for each component data included in the component set corresponding to the use permission code is sent to the playback device.
[0020]
As a system suitable for carrying out this method, the digital content use control system of the present invention is:
A digital content usage control system configured to control the use of digital content including a plurality of component data encrypted with different encryption keys, which includes a playback device and a use permission server connected via a network,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a use permission code for each component set and a decryption key for each component data, Component set to be played back from the playback device And requirements including usage When you receive a license request specifying If the usage method in the request condition is permitted, When a usage permit including a usage authorization code corresponding to the designated component set is sent to the playback device and a decryption key sequence request is sent from the playback device, the usage permission code in the decryption key sequence request And a decryption key for each component data included in the component set corresponding to the use permission code after performing authentication based on the use permission code managed by the server and the use permission code Have
The playback device, when playing back the component set, sends a usage permit request designating the component set to be played back to the usage permission server, and when the usage permit is sent from the usage permission server, The decryption key sequence request including the use permission code in the use certificate is sent to the use permission server.
[0021]
The digital content usage control method of the present invention prevents unauthorized transfer of content usage rights by the user.
A digital content use control method for controlling the use of digital content in a system in which a playback device and a use permission server are connected via a network,
The digital content includes a plurality of component data encrypted with different encryption keys,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a usage permission code for each component set and a decryption key for each component data, When a usage permit request specifying a component set to be played back is sent from the playback device, a usage permit including a usage code corresponding to the specified component set is sent to the playback device,
When the usage permit is sent from the usage permission server, the playback device generates a modified usage permission code based on the usage permission code in the usage license and the user information managed by the own device And sending the decryption key sequence request including the modified use permission code and the user information to the use permission server,
When the decryption key sequence request is sent from the playback device, the use permission server includes the modified use permission code in the decryption key sequence request, the user information sent from the playback device, and the own server. After performing authentication based on the managed use permission code, a decryption key for each component data included in the component set corresponding to the use permission code is sent to the playback device.
[0022]
As a system suitable for carrying out this method, the digital content use control system of the present invention is:
A digital content usage control system configured to control the use of digital content including a plurality of component data encrypted with different encryption keys, which includes a playback device and a use permission server connected via a network,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a usage permission code for each component set and a decryption key for each component data, When a usage permit request specifying a component set to be played back is sent from the playback device, a usage permit including a usage code corresponding to the specified component set is sent to the playback device, When a decryption key sequence request is sent from the playback device, the modified use permission code in the decryption key sequence request, the user information sent from the playback device, and the use permission code managed by the own server After performing authentication based on the above, the configuration is such that the decryption key of each component data included in the component set corresponding to the use permission code is sent to the playback device,
The playback device, when playing back the component set, sends a usage permit request designating the component set to be played back to the usage permission server, and when the usage permit is sent from the usage permission server, A modified use permission code is generated based on the use permission code in the use permit and the user information managed by the own device, and the decryption key sequence request including the modified use permission code and the user information are sent to the use permission server. To send to.
[0023]
The digital content usage control method of the present invention can reliably limit the number of times the same content is used even if there is a person who tries to cheat.
A digital content use control method for controlling the use of digital content in a system in which a playback device and a use permission server are connected via a network,
The digital content includes a plurality of component data encrypted with different encryption keys,
The usage permission server manages each component data of the digital content divided into a plurality of component sets, uses a permission code for each component set, a use frequency upper limit for each component set, and The decryption key for each component data is managed, and when the usage permit request designating the component set is sent from the playback device, the upper limit number of use times and the seed of the designated component set are determined. A usage permit including the number of temporary use times corresponding to the different usage counts up to the usage count upper limit value based on the usage count upper limit value and the seed. Generate and save a temporary key sequence containing the key,
When the playback device does not receive a usage permit for the component set to be played back during playback of the component set, the use permission specifying the component set to be played back to the usage permission server A certificate request is sent, and then each of the usage counts in the usage certificate sent from the usage authorization server in response to the license request is different up to the usage count upper limit value based on the seed. The reproduction target component including a temporary key sequence including the same number of temporary keys as the usage count upper limit value corresponding to the usage count and storing the temporary key sequence corresponding to the current usage count in the temporary key sequence When a decryption key sequence request for a set is sent to the use permission server and a use permit for a component set to be reproduced is received, the request is stored when the use permit is received. Sending the decryption key sequence request to the reproduction target component set including a temporary key corresponding to the current number of uses of the temporary key in the sequence to the usage permission server,
When the decryption key sequence request for the playback target component set is sent from the playback device, the usage permission server includes the temporary key in the decryption key sequence request and the temporary key sequence stored in its own server this time. After performing authentication based on the temporary key corresponding to the number of times of use, the decryption key of each component data included in the playback target component set is sent to the playback device.
[0024]
As a system suitable for carrying out this method, the digital content usage control system of the present invention is:
A digital content usage control system configured to control the use of digital content including a plurality of component data encrypted with different encryption keys, which includes a playback device and a use permission server connected via a network,
The usage permission server manages each component data of the digital content divided into a plurality of component sets, uses a permission code for each component set, a use frequency upper limit for each component set, and The decryption key for each component data is managed, and when the usage permit request designating the component set is sent from the playback device, the upper limit number of use times and the seed of the designated component set are determined. A usage permit including the number of temporary use times corresponding to the different usage counts up to the usage count upper limit value based on the usage count upper limit value and the seed. A temporary key sequence including a key is generated and stored, and when a decryption key sequence request for a playback target component set is sent from the playback device, the temporary key in the decryption key sequence request is automatically stored. After performing the authentication based on the temporary key sequence corresponding to the current number of uses in the temporary key sequence stored in the server, the decryption key of each component data included in the reproduction target component set is obtained. Having a configuration to send to the playback device;
When the playback device does not receive a usage permit for the component set to be played back during playback of the component set, the use permission specifying the component set to be played back to the usage permission server A certificate request is sent, and then each of the usage counts in the usage certificate sent from the usage authorization server in response to the license request is different up to the usage count upper limit value based on the seed. The reproduction target component including a temporary key sequence including the same number of temporary keys as the usage count upper limit value corresponding to the usage count and including a temporary key corresponding to the current usage count in the temporary key sequence When a decryption key sequence request for a set is sent to the use permission server and a use permit for a component set to be reproduced is received, the request is stored when the use permit is received. Was decryption key sequence request to the reproduction target component set including a temporary key corresponding to the current number of uses of the temporary key in the sequence has a configuration to be sent to the authority server.
[0025]
DETAILED DESCRIPTION OF THE INVENTION
Next, embodiments of the present invention will be described in detail with reference to the drawings.
[0026]
FIG. 1 is a block diagram of a first embodiment of the present invention. Referring to FIG. 1, in the first embodiment of the present invention, a usage permission server 1 that delivers a usage certificate and a decryption key sequence, and playback that plays back digital content (sometimes simply referred to as content). The apparatus 2 and the network 0 which connects both are included.
[0027]
The use permission server 1 is constituted by, for example, a computer, and includes a communication control unit 11, a use condition description management unit 12, a condition determination unit 13, a use permit generation unit 14, and a decryption key sequence generation unit. 15, a use permission code authentication unit 16, a latest property acquisition unit 17, and a recording medium K 1.
[0028]
The communication control unit 11 receives the usage permit request sent from the playback device 2 via the network 0 and transmits the usage permit input from the condition determination unit 13 to the playback device 2. Further, the decryption key sequence request including the use permission code sent from the playback device 2 is received, and the decryption key sequence input from the condition determination unit 13 is transmitted to the playback device 2 via the network 0.
[0029]
The use condition description management unit 12 manages the following information (use condition description) for each content for which the server 1 manages use permission. Each content includes a plurality of component data (which may be simply referred to as a component) encrypted with different encryption keys. Further, the contents of the use condition description management unit 12 can be changed by the administrator of the use permission server 1 by using an input device such as a keyboard (not shown).
[0030]
A component set ID of each component set when component data included in the content is divided into a plurality of component sets (for example, if the content is an electronic book, a paragraph, a figure, a photograph, etc. Data, and pages, chapters, etc. are component sets)
・ Usage permission code for each component set
-Component ID of component data included in the component set
・ Condition set usage conditions (for example, usage methods that allow only display, display resolution restrictions, billing methods, etc.)
・ Decryption key for each component data
Property information
[0031]
The condition determination unit 13 collates the request condition in the license request input from the communication control unit 11 with the use condition description (ACL) managed by the use condition description management unit 12, and then uses the permission. The information necessary for generating the usage permit (such as the usage permission code of the component set to which the playback device 2 is to receive the usage permission) is passed to the certificate generation unit 14, and the usage certificate is generated based on this information. The usage permit generated by the unit 14 is output to the communication control unit 11. Further, it is necessary for the decryption key sequence generation unit 15 to generate a decryption key sequence after determining the validity of the decryption key sequence request input from the communication control unit 11 using the use permission code authentication unit 16. Information (decryption key or the like of each component data included in the component set to which the playback device 2 is to receive use permission) is passed, and the decryption key sequence generated by the decryption key sequence generation unit 15 is transmitted to the communication control unit 11. Output.
[0032]
The usage permit generation unit 14 generates a usage permit in an appropriate format using the information from the condition determination unit 13.
[0033]
The decryption key sequence generation unit 15 uses the information from the condition determination unit 13 to generate a decryption key sequence in an appropriate format.
[0034]
The use permission code authenticating unit 16 compares the use permission code in the decryption key sequence request passed from the condition determining unit 13 with the use permission code in the use condition description, and determines whether or not the decryption key sequence request is valid. And the result is output to the condition determination unit 13.
[0035]
The latest property acquisition unit 17 acquires the property information of the specified content from the use condition description management unit 12 and returns it to the playback device 2 when there is a request for acquisition of property information specifying the content from the playback device 2. .
[0036]
The recording medium K1 is a disk, a semiconductor memory, or other recording medium, and a program for causing the computer to function as the usage permission server 1 is recorded. This program is read by a computer and controls the operation of the computer, so that a communication control unit 11, a use condition description management unit 12, a condition determination unit 13, a use permit generation unit 14, and a decryption key sequence generation unit are executed on the computer. 15. A use permission code authentication unit 16 and a latest property acquisition unit 17 are realized.
[0037]
The playback device 2 is configured by a computer, for example, and includes an input unit 21 such as a keyboard, an output unit 22 such as a display device and a printing device, a content management unit 23, a usage permit management unit 24, and a usage A control unit 25, a usage permit request generation unit 26, a decryption key sequence request generation unit 27, a decryption unit 28, a communication control unit 29, and a recording medium K2 are provided.
[0038]
The input unit 21 outputs a reproduction request including information such as digital content to be reproduced and a reproduction form to the usage control unit 25 in accordance with a user operation.
[0039]
The output unit 22 presents the decrypted data from the usage control unit 25 and other dialog boxes to the user.
[0040]
The content management unit 23 stores digital content obtained by the user.
[0041]
The usage permit management unit 24 stores the usage permit sent from the usage permit server 1.
[0042]
The usage control unit 25 receives a reproduction request from the user obtained through the input unit 21, confirms the presence / absence of a usage license using the usage certificate management unit 24, and uses the communication through the communication control unit 29. Communication processing for acquiring a certificate and a decryption key sequence, generation of a license request using the license request generation unit 26, generation of a decryption key sequence request using the decryption key sequence request generation unit 27, and decryption The encrypted data in the digital content using the unit 28 is decrypted, and the decrypted data is output to the output unit 22.
[0043]
The usage permit request generation unit 26 generates a usage permit request in an appropriate format according to the input from the usage control unit 25.
[0044]
The decryption key sequence request generation unit 27 generates a decryption key sequence request in an appropriate format according to the input from the usage control unit 25.
[0045]
The decryption unit 28 restores the original data using the decryption key sequence input from the usage control unit 25 and the corresponding encrypted data.
[0046]
The communication control unit 29 performs communication with the usage permission server 1 in accordance with transmission of the usage permit request, reception of the usage permit, transmission of the decryption key sequence request, and reception of the decryption key sequence.
[0047]
The recording medium K2 is a disk, semiconductor memory, or other recording medium, and stores a program for causing the computer to function as the playback device 2. This program is read by a computer and controls the operation of the computer, whereby a usage control unit 25, a usage permit request generation unit 26, a decryption key sequence request generation unit 27, a decryption unit 28, and a communication control unit 29 are executed on the computer. Is realized.
[0048]
Next, the operation of the first exemplary embodiment of the present invention will be described in detail with reference to the drawings. FIG. 2 is a processing sequence diagram showing information exchanged between the usage permission server 1 and the playback device 2 in time series, FIG. 3 is a flowchart showing a processing example of the playback device 2, and FIG. 4 is a flowchart illustrating an example of processing performed by a server 1.
[0049]
First, the user downloads digital content (encapsulated content, CAP) encapsulated in advance from the appropriate distribution server (not shown) via the network 0 (step 201 in FIG. 3). The downloaded encapsulated content is stored in the content management unit 23 (step 202).
[0050]
Encapsulated content describes multiple component data encrypted with different encryption keys, the server name of the usage permission server used to obtain the usage certificate and decryption key, the component set definition, etc. Property information.
[0051]
FIG. 5 is a diagram illustrating an example of property information, including a content name, an author name, a production date, a component list, a use permission server name, a component set definition, a display order definition, Is included. In the example of FIG. 5, the content name of the encapsulated content is “Michi”, the author name is “Masayuki Nakae”, the production date is “February 23, 1999”, and each of the encapsulated content includes The component data ID is “gk01, gk02, gk03,...”, And the name of the use permission server used to obtain the use certificate and the decryption key is “ts1.nec.co.jp”. . Further, each of the constituent element sets “C1, C2,...” Includes constituent element data “{gk01, gk02}, {gk02, gk03},...”, And the display order of the constituent element sets is “C1, C2,. ".
[0052]
When playing back the content stored in the content management unit 23, the user inputs a playback request for encapsulated content from the input unit 21.
[0053]
When the encapsulated content playback request is input from the user (YES in step 203), the usage control unit 25 performs the process of step 204. In step 204, a list of each encapsulated content stored in the content management unit 23 is displayed on the output unit 22, causing the user to select the encapsulated content to be reproduced, and further instructing the reproduction part. Thereafter, the component set C that is the target of the reproduction request is determined based on the component set definition in the property information included in the selected encapsulated content. For example, if the user requests reproduction of a certain page P of a certain encapsulated content CAP, a component set including the components E1, E2,..., En of the page P is set as a property of the encapsulated content CAP. A search is made from the component set definition in the information, and the searched component set is set as a component set C to be a reproduction request. At this time, when a plurality of component sets are searched as candidates, a method of displaying the candidates in the form of a dialog box or the like on the output unit 22 and allowing the user to select an appropriate one may be used. In addition, referring to the licenses stored in the license management unit 24, the latest licenses or the ones with the lowest charge amount among the usage conditions are selected from the usage licenses corresponding to the candidates, A method of selecting a component set corresponding to the usage permit may be used.
[0054]
Here, when determining the component set C to be played back, the playback device 2 appropriately requests the latest permission property information of the encapsulated content to be played back from the usage permission server 1 and uses it in response to this request. The component set C may be determined using the latest property information sent from the permission server 1. In this way, after distributing the encapsulated content, the content structure can be changed, or the billing amount of a certain component set can be changed. In this case, the property information in the encapsulated content held by the content management unit 23 is rewritten with the property information acquired from the use permission server 1 so that the component set definition can be referred to during subsequent use. On the usage permission server 1 side, when the latest property information of a certain encapsulated content is requested, the latest property acquisition unit 17 acquires the latest property information of the encapsulated content from the usage description management unit 12, and The data is transmitted to the playback device 1 via the communication control unit 11.
[0055]
Next, the usage control unit 25 checks whether or not the usage permit for the component set C has already been accumulated in the usage permit management unit 24 (step 205). If it is stored, the process immediately proceeds to the process of obtaining the decryption key sequence (step 212). If not, in order to request the use permission server 1 for a use permit for the component set C, A usage certificate request is generated using the usage certificate request generating unit 26, and the generated usage certificate request is transmitted to the usage permission server 1 via the communication control unit 29 (step 206). For example, as shown in FIG. 6, the license request has fields such as “content name”, “author name”, “component set ID”, and “request condition”. The “requirement conditions” include, for example, usage methods such as display and printing, display resolution restrictions, and the like. Thereafter, the usage control unit 25 in the playback device 2 waits for a usage permit sent from the usage permission server 1 (step 207).
[0056]
When there is an access from the playback device 2 (FIG. 4, step 301), the communication control unit 11 in the usage permission server 1 passes the received message to the condition determination unit 13.
[0057]
When the message is passed, the condition determination unit 13 determines whether it is a usage permit request or a decryption key sequence request (steps 302 and 308). In this example, since the message is a license request (YES in step 302), the condition determination unit 13 calculates the usage condition description ID based on the information included in the license request. Based on the use condition description ID, the use condition description management unit 12 in which the use condition descriptions of a plurality of digital contents are stored in association with the use condition description IDs, A usage condition description is extracted (step 303). When the usage permit request has the field shown in FIG. 6, the usage condition description ID can be, for example, a character string obtained by concatenating the content name and the author name.
[0058]
Subsequently, referring to the component set ID in the license request, the usage condition corresponding to the component set ID in the usage condition description extracted in step 303 is extracted, and the request condition in the license request And the extracted usage conditions are collated (step 304). If the verification fails at this time, the usage permit request is rejected (step 307).
[0059]
Here, in the usage condition description, the ID of the component included in the component set, the usage permission code of the component set, the usage condition of the component set, and the configuration are associated with the component set ID. The accounting conditions for the element set are described. Further, the use condition description describes the decryption key of the component in association with the component ID. The description format of the use condition description can be any description format as long as the predicate logic can be expressed in a machine-readable format such as a Boolean expression. For example, the usage condition description has the format shown in FIG. In this case, the use condition and the required condition are collated as follows, for example.
[0060]
An arbitrary number of variables are specified along with their values in the requirement. The usage conditions describe a set of comparison expressions composed of variables and constants and comparison operators such as equal signs and inequality signs. For a variable that is included in both, the variable value specified in the request condition is embedded in an appropriate comparison expression described in the use condition, and it is determined whether or not the comparison expression is satisfied. If the logical product of all the true / false values of such a comparison expression is true, the request condition conforms to the use condition, and if false, it does not conform. However, if there is a variable that is included in the requirement but not included in the usage condition, the variable is simply ignored. Conversely, it is included in the usage condition but not included in the requirement. If there is a variable, it is immediately determined that the requirement does not meet the usage condition.
[0061]
In particular, if the usage condition description includes information related to the expiration date of the license, if the expiration date information is compared with the reception time of the usage certificate request, the clock on the usage license server 1 side is used. Since the usage period of the encapsulated content using can be restricted, it is safer.
[0062]
When the license request is accepted (YES in step 304), the condition determination unit 13 sets the component set ID included in the license request in the usage condition description extracted in step 303. The corresponding usage conditions, usage permission code, content name, author name, component set ID, and requesting user name included in the usage license request are input to the usage certificate generation unit 14. The usage permit generation unit 14 generates a usage permit including information passed from the condition determination unit 13 (step 305). The usage permit is transmitted to the playback device 2 via the communication control unit 11 (step 306). FIG. 8 is a diagram showing a configuration example of a license, which includes “serial number”, “content name”, “author name”, “requesting user name”, “component element set ID”, “usage condition”, It has fields of “use permission code”, “expiration date”, “validity flag”, and “signature”.
[0063]
The communication control unit 29 in the playback device 2 passes the usage certificate to the usage control unit 25 when the usage certificate for the usage certificate request is sent from the usage permission server 1 (YES in FIG. 3, step 207). .
[0064]
As a result, the usage control unit 25 first confirms the signature part in the usage certificate and confirms that there is a signature from the usage permission server 1 (step 208). If the verification of the signature fails, it is assumed that the usage permit may have been tampered with, and the subsequent processing is interrupted. For example, a dialog box as shown in FIG. This is notified to the user (step 209).
[0065]
Next, the usage control unit 25 checks the validity flag of the usage certificate, and checks whether or not the usage certificate request is actually accepted (step 210). The validity flag holds a status such as “valid” / “error” / “revoked”. For example, when the flag is “error”, the license is regarded as an error notification, and the subsequent processing is performed. Is interrupted, and for example, a dialog box as shown in FIG. 10 is displayed on the output unit 22 to notify the user to that effect (step 211).
[0066]
When the usage certificate is valid, the usage control unit 25 stores the usage certificate in the usage certificate management unit 24. Then, the access permission server 1 is accessed again via the communication control unit 29, and the decryption key sequence request generated using the decryption key sequence request generation unit 27 is transmitted (step 212). The decryption key sequence request includes a use permission code described in the use license. In addition, for example, “content name”, “author name”, “user ID”, “component element set ID”, etc. With fields. Thereafter, the usage control unit 25 waits for reception of a decryption key sequence from the usage permission server 1 (step 213).
[0067]
When the decryption key sequence request is sent from the playback device 2, the communication control unit 11 in the use permission server 1 passes it to the condition determination unit 13 (YES in FIG. 4, step 301).
[0068]
When the decryption key sequence request is passed (YES in step 308), the condition determining unit 13 calculates the use condition description ID as in the case of the usage permit request, and further includes the constituent elements included in the decryption key sequence request. The set ID and use permission code are extracted. Then, the usage condition description having the usage condition description ID is extracted from the usage condition description management unit 12 and input to the usage permission code authenticating unit 16 together with the usage permission code in the decryption key sequence request.
[0069]
The use permission code authenticating unit 16 extracts the use permission code described in correspondence with the component element set ID from the use condition description (step 309). Then, the usage permission code is compared with the usage permission code included in the decryption key sequence request (step 310). If they match, it is determined that the request is “valid”, and control is transferred to the subsequent stage. If they do not match, it is determined that the request is “illegal”, and an error message notifying that is transmitted to the playback device 2 (step 314).
[0070]
When it is determined that the request is a valid decryption key sequence request up to the previous stage, the condition determination unit 13 decrypts the component set ID extracted from the decryption key sequence request and the use condition description extracted from the use condition description management unit 12. Input to the sequence generation unit 15.
[0071]
The decryption key sequence generation unit 15 extracts a corresponding component set definition from the use condition description based on the component set ID. In the component set definition, the component IDs of the components included in the component set are described. After that, the decryption key sequence generation unit 15 extracts a decryption key described in correspondence with the component ID from the use condition description, and generates a pair (element = key pair) of the component ID and the decryption key. (Step 311).
[0072]
Next, the element = key pairs are grouped, for example, in the format shown in FIG. 11 (step 312). A decryption key sequence including information such as a use permission code and a serial number is generated in addition to a set of elements = key pairs grouped in this way, and is output to the condition determination unit 13. The condition determination unit 13 transmits the decryption key sequence to the playback device 2 via the communication control unit 11 (step 313).
[0073]
When the decryption key sequence is sent from the usage permission server 1 (YES in FIG. 3), the communication control unit 29 in the playback device 2 passes it to the usage control unit 25.
[0074]
Thus, the usage control unit 25 passes the encrypted component data belonging to the component set C and the decryption key sequence to the decryption unit 28, and requests the decryption of the component data into the original data (step) 214). Thereby, the decryption unit 28 decrypts each component data into the original data using the corresponding decryption key in the decryption key sequence, and returns the decryption result to the usage control unit 25. The usage control unit 25 outputs the original data of each returned component data to the output unit 22 (step 215).
[0075]
Thereafter, the user may follow a link or the like while referring to the reproduced encapsulated content, and may continue to use another component set. In that case, after the completion of step 215, the reproducing device 2 shifts the processing to step 203.
[0076]
Further, for example, as shown in FIG. 12, various output devices 22 such as a device selection device 221, a display device 222, a printing device 223, and a secondary storage device 224 are used as the output unit 22 used when outputting reproduction data in step 215. A plurality of output device devices may be provided so that an output destination device for reproduction data can be designated. In this case, when the device selection device 221 receives a device selection signal from the usage control unit 25, the device selection device 221 refers to a correspondence table (not shown) indicating a correspondence relationship between the device selection signal and the output device device, and selects an output destination device. After that, the reproduction data input from the usage control unit 25 is output to the selected device. If the reproduction data is input to the device selection device 221 without outputting the device selection signal, the display device 222 is selected. By doing this, it is possible to control “display only possible”, “printing prohibited”, and the like as playback data output conditions.
[0077]
Next, a second embodiment of the present invention will be described in detail with reference to the drawings.
[0078]
FIG. 13 is a block diagram showing a configuration example of the second embodiment of the present invention. The use permission server 4 is used instead of the use permission server 1 and the playback device 2 in the first embodiment shown in FIG. A playback device 3 is provided.
[0079]
The difference between the playback device 3 of the present embodiment and the playback device 2 of the first embodiment is provided with a second decryption key sequence request generation unit 31 instead of the decryption key sequence request generation unit 27. The point is that the recording medium K3 is provided instead of the recording medium K2, the use control unit 33 is provided instead of the use control unit 25, and the terminal side user information management unit 32 is added. .
[0080]
The terminal-side user information management unit 32 stores user information in association with the user name.
[0081]
The second decryption key sequence request generation unit 31 is based on the usage permission code described in the usage certificate sent from the usage permission server 4 and the user information extracted from the terminal-side user information management unit 32. It has a function of calculating one modified use permission code and generating a decryption key sequence request including the first modified use permission code.
[0082]
The recording medium K3 is a disk, semiconductor memory, or other recording medium, and stores a program for causing the computer to function as the playback device 3. This program is read by a computer and controls the operation of the computer, thereby realizing a usage control unit 33, a usage permit request generation unit 26, and a second decryption key sequence request generation unit 31 on the computer.
[0083]
Further, the difference between the use permission server 4 of the present embodiment and the use permission server 1 in the first embodiment is that a second use permission code authentication unit 41 is provided instead of the use permission code authentication unit 16. The point that the recording medium K4 is provided instead of the recording medium K1, the condition determination unit 43 is provided instead of the condition determination unit 13, and the server-side user information management unit 42 is added. is there.
[0084]
The server-side user information management unit 42 stores user information sent from the playback device 3.
[0085]
The second use permission code authenticating unit 41 includes a first modified use permission code included in the decryption key sequence request from the playback device 3, a use permission code stored in the use condition description managing unit 12, Based on the user information stored in the server-side user information management unit 42, it has a function of determining the validity of the decryption key sequence request.
[0086]
The recording medium K4 is a disk, a semiconductor memory, or other recording medium, and stores a program for causing the computer to function as the usage permission server 4. This program is read by a computer and controls the operation of the computer, so that the communication control unit 11, the usage condition description management unit 12, the condition determination unit 43, the usage permit generation unit 14, and the decryption key sequence generation unit are executed on the computer. 15. The latest property acquisition unit 17 and the second use permission code authentication unit 41 are realized.
[0087]
Next, the operation of the second exemplary embodiment of the present invention will be described in detail with reference to the drawings. 14 is a processing sequence diagram showing information exchanged between the playback device 3 and the usage permission server 4 in time series, FIG. 15 is a flowchart showing a processing example of the playback device 3, and FIG. 16 is a usage permission server. 6 is a flowchart illustrating a process example 4;
[0088]
When a playback request for digital content is input by the user, the playback device 3 is set as a playback target by performing the same processing as steps 203 to 206 in FIG. 3 performed by the playback device 2 in the first embodiment. The component set C is determined, and a usage permit request for the component set C is transmitted to the usage permission server 4.
[0089]
When the usage permit request is sent from the playback device 3, the usage permission server 4 performs the same processing as steps 301 to 306 in FIG. 4 performed by the usage permission server 1 in the first embodiment. A usage permit for the component set C is generated and transmitted to the playback device 3.
[0090]
When the usage permit for the component set C is received from the usage permission server 4, the playback device 3 performs the same processing as steps 207 to 211 in FIG. 3 performed by the playback device 2 of the first embodiment. Step 1501 shown in FIG.
[0091]
In step 1501, the usage control unit 33 searches the terminal-side user information management unit 32 using the request source user name described in the usage certificate as a key, and sends it to a third party other than the user and the usage-permitted server operator. User information that should be kept secret is extracted. Thereafter, the pair of the user information and the user name is transmitted to the use permission server 4 (step 1502). Such a process corresponds to, for example, a settlement process for a usage permit. For example, user credit card information can be used as the user information.
[0092]
When a pair of user information U and a user name is sent from the playback device 3, the condition determination unit 43 in the usage permission server 4 registers the pair in the server-side user information management unit 42 (FIG. 16, step). 1601).
[0093]
When the usage control unit 33 in the playback device 3 transmits the pair of the user information U and the user name, the usage control unit 33 extracts the usage permission code UPC and the user name described in the usage certificate, and outputs them to the second decryption key. It is passed to the series request generator 31 (FIG. 15, step 1503).
[0094]
As a result, the second decryption key sequence request generation unit 31 acquires the user information U corresponding to the user name from the terminal-side user information management unit 32, and uses the function F shown in the following equation (1) to The modified use permission code MUPC of 1 is calculated (step 1504).
[0095]
F (UPC, U) = H [U] (MUPC) (1)
[0096]
Here, the function H [x] (y) may be a function that calculates different values with high probability for different sets (x, y). For example, an encryption function using x as a key or a keyed hash function such as HMAC described in RFC-2104 can be used. In particular, when a one-way function such as a keyed hash function is used, it is possible to obtain an effect that it is more difficult for a third party to steal an unauthorized use permission code.
[0097]
Then, the second decryption key sequence request generation unit 31 generates a decryption key sequence request including the first modified use permission code instead of the use permission code in the first embodiment, and uses it It transmits to the permission server 4 (step 1505).
[0098]
When the decryption key sequence request is sent from the playback device 3, the condition determination unit 43 in the use permission server 4 uses the first modified use permission code MUPC included in the decryption key sequence request to manage the use condition description. The usage permission code of the logical component set C to be reproduced stored in the unit 12 and the user information U corresponding to the transmission source user of the decryption key sequence request extracted from the server-side user information management unit 42 On the other hand, it is verified that the relationship of the following expression (2) is satisfied (steps 1602 and 1603).
[0099]
MUPC = F (UPC, U) (2)
[0100]
When the relationship such as Expression (2) holds, the second use permission code authenticating unit 41 determines that the decryption key sequence request is “valid” (YES in Step 1603). Determination is made (NO in step 1603).
[0101]
Then, by performing the same processing as the steps 311 to 314 in FIG. 4 performed by the use permission server 1 in the first embodiment, when the decryption key sequence is “valid”, generation and reproduction of the decryption key sequence Transmission to the device 3 is performed, and if it is “illegal”, an error message notifying that the decryption key sequence request is invalid is transmitted to the reproduction device 3 (steps 311 to 314).
[0102]
When the decryption key sequence request is sent, the playback device 3 performs the same processing as steps 213 to 215 in FIG. 3 to decrypt the encrypted component data, and outputs the content data to the output unit 22.
[0103]
Next, a third embodiment of the present invention will be described in detail with reference to the drawings.
[0104]
FIG. 17 is a block diagram showing a configuration example of the third embodiment of the present invention. The use permission server 6 is used instead of the use permission server 1 and the playback device 2 of the first embodiment shown in FIG. A playback device 5 is provided.
[0105]
The difference between the playback device 5 of the present embodiment and the playback device 2 of the first embodiment is that a second usage permit management unit 53 is provided instead of the usage permit management unit 24, decryption A point that a third decryption key sequence request generation unit 51 is provided instead of the key sequence request generation unit 27, a point that a usage control unit 54 is provided instead of the usage control unit 25, and a recording medium instead of the recording medium K2. K5 is provided, and a terminal side key scheduling unit 52 is added.
[0106]
The second usage permit management unit 53 stores the second usage permit sent from the usage permission server 6. Further, the second usage permit management unit 53 associates the second usage permit with the license serial number included in the use permit and the use permit gives the use permission. The ID of the constituent element set, the temporary key sequence generated based on the contents of the usage permit, and the number of times of use of the constituent element set permitted to be used by the usage permit are stored.
[0107]
The terminal-side key scheduling unit 52 sets different usage counts up to the above usage count upper limit value based on the usage count upper limit value and seed included in the second usage permit extracted by the usage control unit 54. A corresponding temporary key sequence including the same number of temporary keys as the use count upper limit value is generated.
[0108]
The third decryption key sequence request generation unit 51 calculates the number of times the reproduction target logical component is used from the temporary key sequence corresponding to the logical component that is the current reproduction target stored in the second usage certificate management unit 53. A corresponding temporary key is acquired, and a decryption key sequence request including the temporary key is generated.
[0109]
The recording medium K5 is a disk, a semiconductor memory, or other recording medium, and stores a program for causing the computer to function as the playback device 5. This program is read by a computer, and the usage certificate request generator 26, the communication controller 29, the third decryption key sequence request generator 51, and the terminal side key scheduling unit are controlled on the computer by controlling the operation of the computer. 52, the use control unit 54 is realized.
[0110]
Further, the difference between the use permission server 6 of the present embodiment and the use permission server 1 of the first embodiment is that a use condition description management unit 63 is provided instead of the use condition description management unit 12. A point that a condition determining unit 64 is provided instead of the condition determining unit 13, a point that a third use permission code authenticating unit 61 is provided instead of the use permission code authenticating unit 16, and a recording medium K6 that replaces the recording medium K1. The server side key scheduling unit 62 is added, and the schedule table management unit 621 is added.
[0111]
In the use condition description management unit 63, in addition to the information stored in the use condition description management unit 12 in the first embodiment, an upper limit value of the number of uses for each component set is stored.
[0112]
The server-side key scheduling unit 62 acquires the use frequency upper limit value of the specified component set from the use condition description management unit 63 when a usage permit request specifying the component set is sent from the playback device 5. And generating a seed, and a temporary key sequence including the same number of temporary keys as the usage count upper limit value, each corresponding to a different usage count up to the usage count upper limit value based on the usage count upper limit value and the seed. Generated and stored in the schedule table management unit 621.
[0113]
When the decryption key sequence request for the playback target component set is sent from the playback device 5, the third usage authorization code authenticating unit 61 is stored in the temporary key in the decryption key sequence and the schedule table management unit 621. Authentication based on the temporary key that is present.
[0114]
The recording medium K6 is a disk, a semiconductor memory, or other recording medium, and stores a program for causing the computer to function as the usage permission server 6. This program is read by a computer and controls the operation of the computer, so that the communication control unit 11, usage condition description management unit 63, condition determination unit 64, usage permit generation unit 14, and decryption key sequence generation unit are executed on the computer. 15. A server-side key scheduling unit 62 and a third use permission code authentication unit 61 are realized.
[0115]
Next, the operation of the present embodiment will be described in detail with reference to the drawings. FIG. 18 is a processing sequence diagram showing information exchanged between the use permission server 6 and the playback device 5 in time series. FIG. 19 is a flowchart showing an example of processing of the playback apparatus 5, and FIG.
[0116]
When a playback request for digital content is input by the user, the playback device 5 is set as a playback target by performing the same processing as steps 203 to 206 in FIG. 3 performed by the playback device 2 in the first embodiment. The component set C is determined, and a usage permit request for the component set C is transmitted to the usage permission server 6.
[0117]
When a usage permit request is sent from the playback device 5, the usage permission server 6 performs the same processing as steps 301 to 304 in FIG. 4 performed by the usage permission server 1 in the first embodiment. It is determined whether or not the conditions in the usage permit request satisfy the usage conditions stored in the usage condition description management unit 63. If the usage condition is satisfied, the server-side key scheduling unit 62 performs the process of step 2104 in FIG.
[0118]
In step 2104, the server-side key scheduling unit 62 generates a seed S using a random number, and further extracts the usage count upper limit N of the component set C that is the current reproduction target from the usage condition description management unit 63. .
[0119]
In the next step 2105, the server-side key scheduling unit 62 uses the seed S, the use frequency upper limit value N, and the recurrence formulas (3), (4), and (5) shown below to generate a temporary key sequence. σ = {S [1], S [2],..., S [N]} is generated (step 2105).
[0120]
S [0] = S (3)
S [N] = H (S [0]) (4)
S [i−1] = H (S [i]) (2 ≦ i ≦ N) (5)
[0121]
Here, H is a one-way hash function such as MD5.
[0122]
In the next step 2106, the server-side key scheduling unit 62 uses the serial number newly generated by the usage certificate generation unit 14 as a key, the seed S, the usage count upper limit N, the temporary key sequence σ, the usage count “0”. Is stored in the schedule table management unit 621. FIG. 21 is a diagram showing an example of the contents of the schedule table management unit 621, in which “serial number”, “seed”, “temporary key sequence”, “use count upper limit”, and “use count” are stored.
[0123]
The seed S may be random binary data. For example, the seed S can be prevented from being illegally leaked to a third party by using the user information as described above.
[0124]
Thereafter, the usage certificate generation unit 14 has fields of the seed S and the usage count upper limit N in addition to the fields (content name, author name, etc.) of the usage certificate in the first embodiment of the present invention. A second usage permit is generated. FIG. 22 shows a configuration example of the second usage permit. The second usage permit is transmitted to the playback device 5 via the communication control unit 11 (step 2107).
[0125]
When the second usage permit is received from the usage permit server 6, the usage control unit 54 in the playback device 5 includes the second usage permit and the component set C permitted to be used by the usage permit. The ID and the license serial number are stored in the second usage certificate management unit 53 (step 1901 in FIG. 19). As shown in FIG. 23, the second usage permit management unit 53 includes “use count”, “temporary” in addition to the area for storing the ID of the component set, the second usage permit, and the license serial number. It has an area for storing the “key sequence”. When storing a new second usage permit, the usage control unit 54 sets 0 as the initial value of the usage count.
[0126]
Thereafter, the usage control unit 54 extracts the seed S and the usage count upper limit N in the usage permit and inputs them to the terminal-side key scheduling unit 52 (step 1902).
[0127]
In the terminal-side key scheduling unit 52, the temporary key sequence σ = {S [1] from the input seed S and the upper limit N of use times based on the above recurrence formulas (3), (4), (5). ], S [2],..., S [N]} are generated (step 1903).
[0128]
The temporary key sequence generated in this way is output to the usage control unit 54. The usage control unit 54 registers the temporary key sequence in an appropriate position in the second usage certificate management unit 53 using the usage code included in the usage certificate as a key (step 1904). Thereafter, the usage control unit 54 instructs the third decryption key sequence request generation unit 51 to generate a decryption key sequence request.
[0129]
As a result, the third decryption key sequence request generation unit 51 acquires an appropriate temporary key from the second usage permit management unit 53. At that time, the third decryption key sequence request generation unit 51 adds 1 to the usage count UC stored in the second usage permit management unit 53 and then uses the updated UC to generate the temporary key. A temporary key S [UC] is extracted from the sequence σ (step 1905). The third decryption key sequence request generation unit 51 then includes a decryption key sequence including the extracted temporary key as the second modified use permission code MUPC ′ instead of the use permission code in the first embodiment. A request is generated and transmitted to the use permission server 6 (step 1907). If a temporary key that meets the conditions cannot be extracted in step 1905 (NO in step 1906), the output unit 22 is used to notify the user that use of the component set C is not permitted.
[0130]
When receiving the decryption key sequence request from the playback device 5, the condition determination unit 64 in the use permission server 6 extracts the second modified use permission code MUPC ′ included in the decryption key sequence request, and the decryption key sequence The request is input to the third use permission code authenticating unit 61 together with the request (step 2101 in FIG. 20).
[0131]
The third usage authorization code authenticating unit 61 inputs the usage certificate serial number SN in the decryption key sequence request to the server side key scheduling unit 62. Then, the server-side key scheduling unit 62 extracts a set of (usage license serial number SN, usage count UC, temporary key sequence σ) from the schedule table management unit 621 using the SN as a key, and sets the value of the usage count UC. After adding 1, the temporary key S [UC] corresponding to the usage count UC is referenced, and the value is output to the third usage authorization code authenticating unit 61 (step 2102).
[0132]
Then, the third use permission code authenticating unit 61 verifies that the following expression (6) holds for the second modified use permission code MUPC ′ and the temporary key S [UC].
[0133]
MUPC ′ = S [UC] (6)
[0134]
The third usage authorization code authenticating unit 61 determines that the decryption key sequence request is “valid” when a relationship such as Expression (6) is satisfied, and determines that the request is “illegal” when the relationship is not satisfied (step 2103). .
[0135]
Then, similarly to the usage permission server 1 in the first embodiment, when the second modified usage permission code is “valid”, a decryption key sequence is generated and transmitted to the playback device 3, If it is “illegal”, an error message notifying that the decryption key sequence request is invalid is transmitted to the playback device 3.
[0136]
When the decryption key sequence is sent from the use permission server 6, the playback device 5 decrypts the content data to be played back and outputs it to the output unit 22, as in the playback device 2 of the first embodiment. To do.
[0137]
【The invention's effect】
The first effect is that the configuration of the component set can be changed after content distribution.
[0138]
The reason is that a use permission code is assigned to each component set, and a set of decryption keys of component data belonging to the component set is assigned to the use permission code. Correspondence between the use permission code and the decryption key set This is because the relationship can be changed at any time.
[0139]
The second effect is that unauthorized transfer of content usage rights by a user can be prevented.
[0140]
The reason is that, in the decryption key sequence request, instead of the use permission code, by including a modified use permission code generated using user information that can be disadvantageous if the user notifies the third party, the playback device side Information that is closely related to user-specific information is shared securely on both the usage-authorization server side and if the correct modified usage-authorization code is leaked to a third party, the user is the source of the leak This is because it can be easily detected by the use permission server.
[0141]
The third effect is that the number of times of use of content can be surely limited even when there is a person who tries to commit fraud.
[0142]
The reason is that by including the modified usage permission code extracted from the temporary key sequence having a finite length in the decryption key sequence request, a valid modified usage permission code is generated exceeding the length of the temporary key sequence. This is because it is impossible.
[Brief description of the drawings]
FIG. 1 is a block diagram showing a configuration example of a first exemplary embodiment of the present invention.
FIG. 2 is a processing sequence diagram according to the first embodiment;
FIG. 3 is a flowchart showing a processing example of the playback apparatus 2;
FIG. 4 is a flowchart showing a processing example of the use permission server 1;
FIG. 5 is a diagram illustrating an example of property information.
FIG. 6 is a diagram illustrating an example of a usage permit request.
FIG. 7 is a diagram illustrating an example of a usage condition description.
FIG. 8 is a diagram showing an example of a usage permit.
FIG. 9 is a diagram illustrating an example of a dialog box presented to the user when an unauthorized usage permit is obtained by the playback apparatus 2;
FIG. 10 is a diagram illustrating an example of a dialog box presented to the user when the playback apparatus 2 does not satisfy the usage conditions.
FIG. 11 is a diagram illustrating an example of a structure of a decryption key sequence.
FIG. 12 is a block diagram illustrating a configuration example of the output unit 22 when the playback apparatus 2 has a plurality of output devices.
FIG. 13 is a block diagram illustrating a configuration example of a second exemplary embodiment of the present invention.
FIG. 14 is a processing sequence diagram according to the second embodiment;
FIG. 15 is a flowchart showing a processing example of the playback apparatus 3;
FIG. 16 is a flowchart showing a processing example of the use permission server 4;
FIG. 17 is a block diagram illustrating a configuration example of a third exemplary embodiment of the present invention.
FIG. 18 is a processing sequence diagram according to the third embodiment;
FIG. 19 is a flowchart showing a processing example of the playback device 5;
FIG. 20 is a flowchart showing a processing example of the use permission server 6;
FIG. 21 is a diagram illustrating a content example of a schedule table management unit 621;
FIG. 22 is a diagram showing an example of a second usage permit.
FIG. 23 is a diagram illustrating an example of the contents of a second usage permit management unit 53;
[Explanation of symbols]
0 ... Network
1 ... Usage permission server in the first mode of the present invention
11: Communication control unit
12 ... Usage condition description management part
13 ... Condition determination unit
14 ... Usage license generator
15 ... Decryption key sequence generation unit
16 ... Use authorization code authentication part
17 ... Latest property acquisition section
2 ... Playback apparatus in the first embodiment of the present invention
21 ... Input section
22 ... Output section
23 ... Content Management Department
24 ... License Management Department
25. Usage control unit
26 ... Usage license request generator
27: Decryption key sequence request generator
28: Decoding unit
29. Communication control unit
221 ... Device selection device
222: Display device
223 ... Printing device
224 ... Secondary storage device
3 ... Playback apparatus in the second embodiment of the present invention
31 ... Second decryption key sequence request generation unit
32 ... Terminal-side user information management unit
33. Usage control unit
4 ... Usage permission server in the second mode of the present invention
41 ... 2nd use permission code authentication part
42. Server-side user information management unit
43 ... Condition determining unit
5 ... Playback apparatus according to the third embodiment of the present invention
51. Third decryption key sequence request generation unit
52 ... Terminal side key scheduling unit
53. Second license management unit
54. Usage control unit
6 ... Usage permission server in the third mode of the present invention
61 ... Third use authorization code authentication unit
62 ... Server side key scheduling section
621 ... Schedule table management department
63 ... Usage condition description management section
64 ... Condition determination unit
K1 to K6 ... Recording medium

Claims (10)

A digital content use control method for controlling the use of digital content in a system in which a playback device and a use permission server are connected via a network,
The digital content includes a plurality of component data encrypted with different encryption keys,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a use permission code for each component set and a decryption key for each component data, When a usage permit request designating a request condition including a set of components to be played back and a usage method is sent from the playback device, if the usage method in the request condition is permitted, the specified A usage certificate including a usage code corresponding to the component set is sent to the playback device;
When the usage certificate is sent from the usage authorization server, the playback device sends a decryption key sequence request including the usage authorization code in the usage license to the usage authorization server,
When the decryption key sequence request is sent from the playback device, the use permission server performs authentication based on the use permission code in the decryption key sequence request and the use permission code managed by the own server Then, a digital content usage control method, wherein a decryption key for each component data included in the component set corresponding to the use permission code is sent to the playback device. A digital content use control method for controlling the use of digital content in a system in which a playback device and a use permission server are connected via a network,
The digital content includes a plurality of component data encrypted with different encryption keys,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a usage permission code for each component set and a decryption key for each component data, When a usage permit request specifying a component set to be played back is sent from the playback device, a usage permit including a usage code corresponding to the specified component set is sent to the playback device,
When the usage permit is sent from the usage permission server, the playback device generates a modified usage permission code based on the usage permission code in the usage license and the user information managed by the own device And sending the decryption key sequence request including the modified use permission code and the user information to the use permission server,
When the decryption key sequence request is sent from the playback device, the use permission server includes the modified use permission code in the decryption key sequence request, the user information sent from the playback device, and the own server. After performing authentication based on a managed use permission code, a decryption key for each component data included in a set of components corresponding to the use permission code is sent to the playback device. Digital content usage control method. A digital content use control method for controlling the use of digital content in a system in which a playback device and a use permission server are connected via a network,
The digital content includes a plurality of component data encrypted with different encryption keys,
The usage permission server manages each component data of the digital content divided into a plurality of component sets, uses a permission code for each component set, a use frequency upper limit for each component set, and The decryption key for each component data is managed, and when the usage permit request designating the component set is sent from the playback device, the upper limit number of use times and the seed of the designated component set are determined. A usage permit including the number of temporary use times corresponding to the different usage counts up to the usage count upper limit value based on the usage count upper limit value and the seed. Generate and save a temporary key sequence containing the key,
When the playback device does not receive a usage permit for the component set to be played back during playback of the component set, the use permission specifying the component set to be played back to the usage permission server A certificate request is sent, and then each of the usage counts in the usage certificate sent from the usage authorization server in response to the license request is different up to the usage count upper limit value based on the seed. The reproduction target component including a temporary key sequence including the same number of temporary keys as the usage count upper limit value corresponding to the usage count and including a temporary key corresponding to the current usage count in the temporary key sequence When a decryption key sequence request for a set is sent to the use permission server and a use permit for a component set to be reproduced is received, the request is stored when the use permit is received. Sending the decryption key sequence request to the reproduction target component set including a temporary key corresponding to the current number of uses of the temporary key in the sequence to the usage permission server,
When the decryption key sequence request for the playback target component set is sent from the playback device, the usage-permission server includes the temporary key in the decryption key sequence request and the temporary key sequence stored in its own server this time. After performing authentication based on a temporary key corresponding to the number of times of use, a decryption key for each component data included in the playback target component set is sent to the playback device. Control method. A digital content usage control system configured to control the use of digital content including a plurality of component data encrypted with different encryption keys, which includes a playback device and a use permission server connected via a network,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a use permission code for each component set and a decryption key for each component data, When a usage permit request designating a request condition including a set of components to be played back and a usage method is sent from the playback device, if the usage method in the request condition is permitted, the specified When a usage certificate including a usage authorization code corresponding to a component set is sent to the playback device, and when a decryption key sequence request is sent from the playback device, the usage permission code in the decryption key sequence request and the own server After performing authentication based on the managed use permission code, the reproduction key of each component data included in the set of components corresponding to the use permission code is reproduced. Has a configuration to be sent to the location,
The playback device, when playing back the component set, sends a usage certificate request specifying the component set to be played back to the usage permission server, and when the usage certificate is sent from the usage permission server, A digital content usage control system characterized by having a configuration for sending a decryption key sequence request including a usage permission code in a usage certificate to the usage permission server. The digital content use control system according to claim 4,
The use permission server is:
Information indicating component data included in each component set when each component data of the digital content is divided into a plurality of component sets, a use permission code for each component set, and each component data A use condition description management unit for managing the decryption key of
When a usage permit request designating a request condition including a set of components to be played back and a usage method is sent from the playback device, if the usage method in the request condition is permitted, the usage condition description A usage certificate generation unit that acquires a usage permission code corresponding to the specified component set from the management unit, and sends a usage certificate including the acquired usage permission code to the playback device;
When a decryption key sequence request is sent from the playback device, a use permission for authentication based on the use permission code in the decryption key sequence request and the use permission code managed by the use condition description management unit A code authenticator,
Decryption that obtains the decryption key of each component data included in the component set corresponding to the use authorization code determined to be valid by the use authorization code authentication unit from the use condition description management unit and sends the decryption key to the playback device A key sequence generation unit,
The playback device
A license request generating unit that sends a usage certificate specifying a component set to be reproduced to the usage permission server when reproducing the component set;
A decryption key sequence request generating unit that sends a decryption key sequence request including a use permission code in the use permit to the use permission server when a use permit is sent from the use permission server; Digital content usage control system. A digital content usage control system configured to control the use of digital content including a plurality of component data encrypted with different encryption keys, which includes a playback device and a use permission server connected via a network,
The usage permission server manages each component data of the digital content divided into a plurality of component sets and manages a usage permission code for each component set and a decryption key for each component data, When a usage permit request specifying a component set to be played back is sent from the playback device, a usage permit including a usage code corresponding to the specified component set is sent to the playback device, When a decryption key sequence request is sent from the playback device, the modified use permission code in the decryption key sequence request, the user information sent from the playback device, and the use permission code managed by the own server After performing authentication based on the above, the configuration is such that the decryption key of each component data included in the component set corresponding to the use permission code is sent to the playback device,
The playback device, when playing back the component set, sends a usage permit request designating the component set to be played back to the usage permission server, and when the usage permit is sent from the usage permission server, A modified use permission code is generated based on the use permission code in the use permit and the user information managed by the own device, and the decryption key sequence request including the modified use permission code and the user information are sent to the use permission server. A digital content use control system characterized by having a configuration for sending to a digital content. The digital content use control system according to claim 6, wherein
The use permission server is:
Information indicating component data included in each component set when each component data of the digital content is divided into a plurality of component sets, a use permission code for each component set, and each component data A use condition description management unit for managing the decryption key of
When a usage permit request specifying a component set to be reproduced is sent from the playback device, a usage permission code corresponding to the specified component set is acquired from the usage condition description management unit, A license generating unit for sending a license including the acquired license code to the playback device;
When a decryption key sequence request is sent from the playback device, the modified use permission code in the decryption key sequence request, the user information sent from the playback device, and the use permission code managed by the own server An authorization code authenticating unit that performs authentication based on
Decryption that obtains the decryption key of each component data included in the component set corresponding to the use authorization code determined to be valid by the use authorization code authentication unit from the use condition description management unit and sends the decryption key to the playback device A key sequence generation unit,
The playback device
A license request generating unit that sends a license request specifying a component set to be played back to the license server when reproducing the component set;
When the usage permit is sent from the usage permission server, a modified usage permission code is generated based on the usage permission code in the usage license and the user information managed by the own device, and the modified usage A digital content usage control system, comprising: a decryption key sequence request including a permission code; and a decryption key sequence request generation unit that transmits the user information to the use permission server. A digital content usage control system configured to control the use of digital content including a plurality of component data encrypted with different encryption keys, which includes a playback device and a use permission server connected via a network,
The usage permission server manages each component data of the digital content divided into a plurality of component sets, uses a permission code for each component set, a use frequency upper limit for each component set, and The decryption key for each component data is managed, and when the usage permit request designating the component set is sent from the playback device, the upper limit number of use times and the seed of the designated component set are determined. A usage permit including the number of temporary use times corresponding to the different usage counts up to the usage count upper limit value based on the usage count upper limit value and the seed. A temporary key sequence including a key is generated and stored, and when a decryption key sequence request for a playback target component set is sent from the playback device, the temporary key in the decryption key sequence request is automatically stored. After performing the authentication based on the temporary key sequence corresponding to the current number of uses in the temporary key sequence stored in the server, the decryption key of each component data included in the reproduction target component set is obtained. Having a configuration to send to the playback device;
When the playback device does not receive a usage permit for the component set to be played back during playback of the component set, the use permission specifying the component set to be played back to the usage permission server A certificate request is sent, and then each of the usage counts in the usage certificate sent from the usage authorization server in response to the license request is different up to the usage count upper limit value based on the seed. The reproduction target component including a temporary key sequence including the same number of temporary keys as the usage count upper limit value corresponding to the usage count and including a temporary key corresponding to the current usage count in the temporary key sequence When a decryption key sequence request for a set is sent to the use permission server and a use permit for a component set to be reproduced is received, the request is stored when the use permit is received. Digital content usage control system, characterized in that the the decryption key sequence request to the reproduction target component set including a temporary key corresponding to the current number of uses of the temporary key in the sequence has a configuration to be sent to the authority server. The digital content use control system according to claim 8,
The use permission server is:
Information indicating component data included in each component set when each component data of the digital content is divided into a plurality of component sets, a use permission code for each component set, and each component set Usage condition description management unit for managing the upper limit number of times of use and the decryption key of each component element data,
When a usage permit request designating a component set is sent from the playback device, the usage condition description management unit obtains a usage count upper limit value of the designated component set and generates a seed, The server side that generates and stores a temporary key sequence including the same number of temporary keys as the usage count upper limit value corresponding to different usage counts up to the usage count upper limit value based on the usage count upper limit value and the type A key scheduling unit;
A usage certificate generation unit for sending a usage certificate including the upper limit of the number of times of use acquired by the server side key scheduling unit and the seed generated by the server side key scheduling unit to the playback device;
When a decryption key sequence request for the playback target component set is sent from the playback device, the temporary key in the decryption key sequence request and the current key count stored in the local server An authorization code authenticating unit that performs authentication based on the temporary key;
A decryption key sequence generation unit that sends a decryption key of each component data included in the reproduction target component set to the reproduction device when it is determined to be valid by the use authorization code authentication unit;
The playback device
Usage permission for sending a license request specifying the component set to be played back to the usage permission server when a usage permit for the component set to be played back has not been received during playback of the component set Certificate request generation unit;
The same number of temporary keys as the number of times of use upper limit corresponding to different times of use up to the number of times of use upper limit based on the number of times of use upper limit and seeds in the use permit sent from the use permission server A terminal-side key scheduling unit that generates and stores a temporary key sequence including
When a usage permit for the constituent set to be reproduced is received at the time of playback of the constituent set, the current usage count in the temporary key sequence stored by the terminal side key scheduling unit at the time of receiving the usage permit A digital content usage control system, comprising: a decryption key sequence request generation unit that sends a decryption key sequence request for the reproduction target component set including a corresponding temporary key to the use permission server. The digital content use control system according to claim 9, wherein
The server-side key scheduling unit has a configuration for generating seeds using a random number.

Images