JP4694242B2 - Content file generator - Google Patents

Description

  The present invention relates to a content file generation apparatus that generates a content file including content data and a restriction program that restricts reproduction of the content data.

  In recent years, a server for content distribution storing files related to content such as games, music, movies, and novels and a user terminal device of a user who uses the content are connected via an electric communication line such as the Internet, Online commerce is widely performed using a content distribution system in which a file related to the content in a content distribution server can be downloaded to a user terminal device.

  As such a content distribution system, for example, a system disclosed in Japanese Patent Application Laid-Open No. 2004-171377 has been proposed. This content distribution system includes a user terminal device that transmits an identification code of a content file, a user An authentication server that receives the identification code from the terminal device and authenticates the identification code, and a distribution server that stores the content file and transmits the content file to the user terminal device are connected via the Internet.

  The identification code of the content file is described on a card that is sold as appropriate, and the user knows the identification code by purchasing the card on which the identification code relating to the desired content is described. , Input to the user terminal device and transmitted to the authentication server.

  The authentication server includes a storage unit that associates and stores an identification code and data indicating whether or not the identification code is an authenticated code, and receives the identification code transmitted from the user terminal device Then, referring to the data stored in the storage unit, it is confirmed whether or not the received identification code is an authenticated code. If the received identification code is not authenticated, the identification code and the address of the user terminal device are sent to the distribution server. At the same time, the data stored in the storage unit is updated to change the identification code to an authenticated code. If the code has been authenticated, an error message is returned to the user terminal device.

  Upon receiving the identification code transmitted from the authentication server and the address of the user terminal device, the distribution server transmits a content file corresponding to the received identification code to the user terminal device based on the received address of the user terminal device. To do.

  According to the content distribution system configured as described above, whether or not the identification code is an authenticated code is managed by the authentication server, and the content file is transmitted from the distribution server to the user terminal only once per one identification code. Since it is transmitted to the device, it is possible to prevent the content from being illegally used by using the used identification code illegally obtained by the user.

  In addition, while such online commerce is performed, a conventional sales method of storing a file related to the content in a recording medium such as a CD-ROM and selling it at a store is also adopted, The user can use the content by purchasing the recording medium.

JP 2004-171377 A

  However, in the content file distributed by the content distribution system as described above or the content file stored in the recording medium, the content file is transmitted from the distribution server to the user terminal device and stored, or the recording medium is transmitted to the user. Once sold, the use of the content cannot be restricted, and the content file cannot be illegally copied, making it usable by a third party. there were.

  The present invention has been made in view of the above circumstances, and an object of the present invention is to provide a content file generation device that generates a content file that can more reliably prevent unauthorized use of content.

To achieve the above object, the present invention provides:
An apparatus for generating a content file comprising a content data and a program for regulating the reproduction of the content data, the regulation file including a first key necessary for the regulation,
A data storage unit for storing the content data;
The restriction program is added to the content data stored in the data storage unit, the content data is encrypted with the first key of the restriction program to generate the content file , and the content data is paired with the first key of the restriction program. A file generation unit for generating the second key
A generation data storage unit that stores the content file generated by the file generation unit and the second key, respectively;
A generation data output unit for outputting the content file stored in the generation data storage unit and the second key to the outside;
The restriction program generates terminal identification information based on unique information of the computer on the computer when the content file is opened at least for the first time on the computer, and generates the generated terminal identification information and the content file. A file identification information for individually identifying the content file, which is set in advance, connected to the content management server via an electric communication line, and transmitted by the content management server according to the file identification information When a third key including these information is generated and transmitted based on the second key paired with the first key in the restriction program of the specified content file and the terminal identification information , the content is transmitted. The third key transmitted from the management server is received, and the third key is received from the received third key. Recognizing information corresponding to the key and terminal identification information, confirming whether the recognized second key is a key paired with the first key in the restriction program, and the recognized terminal identification information is A process for confirming whether or not the generated terminal identification information matches, a recognized second key is a key paired with the first key, and the recognized terminal identification information is the generated terminal identification information. The content file generating apparatus is configured to perform a process of decrypting the content data using the second key and reproducing the content data when the two data match.

  According to the present invention, content data generated in advance is stored in the data storage unit. The content data refers to information / data such as characters, sounds, and images, computer programs, etc., and music. , Movies, novels, etc., and game software.

  In addition, the content data does not include a reproduction program for reproducing the content data, but includes a reproduction program even if the content data is configured to be reproduced by an appropriate reproduction program stored in advance on the computer side. May be configured to be played back on the computer side.

  In addition, in the case of playback, when music is converted into data, the sound of the music is output to a computer speaker, and when the movie is converted into data, the movie is displayed on a computer display device. Is displayed on the display device, and if it is a game software, the game software can be used on a computer. It means to be in a state.

Then, the file generation unit, to the content data stored in the data storage unit, a program for regulating the reproduction of the content data restricted program containing first key necessary for the regulation is added, the The content data is encrypted with the first key of the restriction program, a content file including the content data and the restriction program is generated, and a second key that is paired with the first key of the restriction program is generated and generated. The content file and the second key are stored in the generated data storage unit.

  The content file stored in the generated data storage unit is output to the outside by the generated data output unit, then stored in the content distribution server and sold online, or appropriately stored in a recording medium and sold at the store. When this is purchased by the user and the content file is opened on the computer used by the user, a content management system is constructed by the computer and a content management server connected to the computer via an electric communication line. Is done.

That is, when the content file is opened on the computer, firstly, regulations program is executed in accordance with the regulatory programs, specific information of the computer, for example, the terminal identification information based such as CPU number or a hard disk number generated Rutotomoni The generated terminal identification information and file identification information that is preset for the content file and for individually identifying the content file are transmitted to the content management server.

The terminal identification information and the file identification information transmitted from the computer are received by the content management server, and the received terminal identification information and the second key paired with the first key (the content file specified by the file identification information). A third key including these pieces of information is generated based on a second key paired with the first key in the restriction program . Then, the generated third key is returned from the content management server to the computer that transmitted the terminal identification information. Note that the content management server stores the second key output to the outside by the generated data output unit and manages the key information, and the second key is recognized based on this key information and the third key. Is generated. Further, the third key may be generated when a certain condition set for each file identification information is satisfied.

  The third key returned from the content management server is received by the computer in accordance with the restriction program, and the information corresponding to the second key and the terminal identification information is recognized from the received third key, respectively. It is confirmed whether or not the key is a key that is paired with the first key in the restriction program, and whether or not the recognized terminal identification information matches the generated terminal identification information. The

If the recognized second key is a key that is paired with the first key and the recognized terminal identification information matches the generated terminal identification information, the content data is transferred by the second key. A process of decoding and reproducing is performed, and the content data is reproduced on the computer.

  Thus, according to the present invention, it is possible to efficiently generate a content file composed of content data and a restriction program, and a second key that is paired with the first key in the restriction program for the content file.

  According to the content file generated in this way, the second key in the third key transmitted from the content management server is paired with the first key of the restriction program, and the terminal in the third key Unless the identification information matches the terminal identification information of the computer, the reproduction of the content data is regulated by the regulation program, the content file is illegally copied, and the information related to the third key is known. However, since the terminal identification information differs for each computer, the restriction by the restriction program cannot be released. Thereby, unauthorized use of content can be effectively prevented.

In addition, since the content data in the content file is encrypted, unauthorized use of the content can be more effectively prevented. Furthermore, since the first key and the second key that is paired with the first key can be changed for each content data, it is possible to prevent the misuse of the third key among the content data (content files), and to ensure illegal content. Use can be prevented.

  In the above-described regulation program, it is necessary that the computer and the content management server be configured to be connectable via an electric communication line in order to reproduce the content data. In order to cope with a case where the content management server is not configured to be connectable via the network, the regulation program may be configured to perform the processing described below instead of the above processing. good.

That is, when a content file is read by a computer and a restriction program is executed, first, terminal identification information based on the unique information of the computer is generated, and the generated terminal identification information and the file identification information are stored in the computer. The screen is displayed on the screen, the terminal identification information and the file identification information displayed are notified to the content manager, and the second key paired with the first key (the restriction of the content file specified by the file identification information) A second key that is paired with the first key in the program) and the terminal identification information, and a third key including such information is obtained from the content manager and stored in the computer. A screen prompting you to enter is displayed.

The user who sees such a display screen notifies the content manager of the displayed terminal identification information using a communication means such as a telephone (including a telephone configured to automatically answer) or a fax. The content manager generates a third key based on the terminal identification information transmitted from the user and notifies the user of the third key. The third key may be generated when a certain condition set for each file identification information is satisfied, as described above.

  Thereafter, when the user inputs the third key notified from the content manager to the computer, the input third key is accepted according to the restriction program, and the second key input from the input third key to the second key is similar to the above. The information corresponding to the key and the terminal identification information is recognized, and it is confirmed whether or not the recognized second key is a key paired with the first key in the restriction program, and the recognized terminal It is confirmed whether the identification information matches the generated terminal identification information.

If the recognized second key is a key paired with the first key, and the recognized terminal identification information matches the generated terminal identification information, the content data of the content file is stored in the first file . A process of decoding and reproducing with the two keys is performed. Thus, even if the restriction program is configured in this way, the same effect as described above can be obtained.

Here, the file identification information, for example, information notified to the user in advance or information displayed on the display label attached to the recording medium in which the content file is stored may be input and transmitted by the user. The contents contained in the content file are transmitted or displayed on the screen.

Also, the regulation program may be configured differently depending on the first key is the content data.

Also, the file generating unit, said at least the regulating program content file is configured to generate the content file by encrypting the regulation program, to execute decrypt the encrypted data In this way, since the restriction program in the content file is encrypted, it is effective to prevent unauthorized use of the content and data tampering .

Also, the regulation program first is configured to perform a process of checking whether a first execution, when it is the first time, in addition to the respective processing, the generated terminal identification information When the process of storing in the storage unit of the computer is further performed and it is not the first time, the terminal identification information is generated again, and the regenerated terminal identification information is stored in the storage unit of the computer It may be configured to perform processing for confirming whether or not they match and processing for reproducing the content data when it is determined that they match.

  For example, if the restriction program is configured to be executed only when the content file is opened for the first time, there will be no restriction after the restriction program is executed once and the restriction by the restriction program is released. Since the content can be used without any problem, the content file may be illegally copied and used.

  Therefore, if the terminal identification information is confirmed at the second and subsequent executions, even if the content file is copied, if the terminal identification information is different, the content data in the content file cannot be reproduced. , Unauthorized use of content can be prevented more reliably. In addition, since the data is not transmitted and received between the computer and the content management server at the second and subsequent executions, the restriction by the restriction program can be canceled efficiently. Whether or not the restriction program is executed for the first time can be determined, for example, based on whether or not the terminal identification information is stored in an appropriate storage unit of the computer.

  As described above, according to the content file generation apparatus of the present invention, it is possible to efficiently generate a content file that can more reliably prevent unauthorized use of content.

  Hereinafter, specific embodiments of the present invention will be described with reference to the accompanying drawings. FIG. 1 is a block diagram showing a schematic configuration of a content file generation apparatus according to an embodiment of the present invention.

  As shown in FIG. 1, the content file generation apparatus 1 of this example is composed of a computer having a CPU, ROM, RAM, hard disk, etc., and includes a data storage unit 11, a generation program storage unit 12, a file generation unit 13, and generation data. A storage unit 14 and a generation data output unit 15 are provided.

  The data storage unit 11 stores content data generated in advance as appropriate. The content data includes information / data such as characters, sounds, and images (novels, essays, music, movies, photographs, paintings, designs, etc.). Is a computer program such as game software and the like, and does not include a reproduction program for reproducing the program, and is appropriately stored in advance on the computer (user terminal device 4 described later) side. It is constituted so that it can be reproduced according to the above, or includes a reproduction program, and is constituted to be reproduced on the computer (user terminal device 4) side by this reproduction program.

  In the generation program storage unit 12, a generation program that is executed by the file generation unit 13 and generates a content file and a second key, which will be described later, is appropriately generated and stored in advance.

  The file generation unit 13 reads and executes the generation program stored in the generation program storage unit 12 and transmits various information input from an input device (not shown) (for example, transmitted together with the terminal ID when performing the regulation release processing) Information for identifying data (product ID or user ID), the address of the content distribution server 3 that is the transmission destination of the terminal ID, information on which content data is processed, and the restriction release processing are not forcibly performed (Information on key settings, etc. that are input when doing so) and processing for generating content files and the like.

  Specifically, the file generation unit 13 adds a restriction program including a first key necessary for the restriction to the content data stored in the data storage unit 11 to restrict the reproduction of the content data. In addition, the process of generating the content file as shown in FIG. 2 consisting of the content data and the restriction program by encrypting the restriction program, and the second key paired with the first key of the restriction program The process which produces | generates is performed.

  The restriction program encrypts the content data with the first key, and the first key differs depending on the content data. The restriction program is configured to perform the following processing when the content file is opened on the user terminal device 4. In the execution of the restriction program, the encrypted data is decrypted and executed by the amount necessary for the execution based on the appropriate decryption program in the content file.

  That is, the restriction program is set in advance on the computer (user terminal device 4) as one of operations for not performing the restriction release processing forcibly whether or not there is a preset key input. If there is, a process for reproducing the content data is performed. On the other hand, when there is no key input, first, a process for confirming whether or not it is the first execution is performed. If it is the first time, unique information of the computer (user terminal device 4), for example, An ID number (terminal ID (terminal identification information)) based on a CPU number, a hard disk number, and the like is generated, and a product ID input to the computer (user terminal device 4) by a user is received, and the generated terminal ID and A process of transmitting the received product ID to the content distribution server 3 and a third key (described later) transmitted from the content distribution server 3 are received, and the second key and terminal ID (described later) are received from the received third key. Recognize corresponding information, and confirm whether the recognized second key is a key that is paired with the first key in the regulation program. And a process for confirming whether or not the recognized terminal ID matches the generated terminal ID, the recognized second key is a key paired with the first key, and the recognized terminal ID is A process of decrypting the content data with the second key and playing it back when it matches the generated terminal ID, and storing the generated terminal ID in a storage unit of a computer (user terminal device 4); On the other hand, if it is not the first time, the terminal ID is generated again, and whether or not the regenerated terminal ID matches the terminal ID stored in the storage unit of the computer (user terminal device 4). And a process for reproducing the content data when it is determined that they match.

  The generation data storage unit 14 stores the content file generated by the file generation unit 13 and the second key. The generation data output unit 15 stores the content file stored in the generation data storage unit 14 and the second key. Processing to output 2 keys to the outside.

  Then, the content file output by the generated data output unit 15 is output by the generated data output unit 15 in the file storage unit 24 of the content distribution server 3 of the content distribution system 2 as shown in FIG. 3, for example. The second key is stored in the key storage unit 25 of the content distribution server 3.

  This content distribution system 2 is configured by connecting a content distribution server 3 and a plurality of user terminal devices 4 to each other via the Internet 5, and the content distribution server 3 is an Internet server such as a WWW server, The user terminal device 4 functions as a client including a browser, and functions as a server including a CGI script.

  The content distribution server 3 comprises a computer having a CPU, ROM, RAM, hard disk, etc., and as shown in FIG. 3, a web page processing unit 21, a user registration processing unit 22, a user registration information storage unit 23, a file A storage unit 24, a key storage unit 25, a transmission / reception control unit 26, a product ID issuing unit 27, a management information storage unit 28, a key generation unit 29, a communication interface 30, and the like are connected to the Internet 5 via the communication interface 30. Yes.

  The web page processing unit 21 performs a process of publishing a home page for content distribution on the Internet 5, and user registration and distribution content file distribution processing, which will be described later, are performed via this home page.

  The user registration processing unit 22 performs a process of registering a system user (user) based on information input from the user terminal device 4 via a homepage. Specifically, as shown in FIG. 4, the user registration processing unit 22 receives personal information (name, address, credit card number, email address, password, etc.) of the user from the user terminal device 4 via the homepage. When registration information is input (step S1), the input personal information of the user is received (step S2), an ID number is set for the user, and the set ID number (user ID) is set to the user terminal device 4. (Step S3), the personal information of the received user and the set user ID are stored in the user registration information storage unit 23 (step S4). In the user terminal device 4, the transmitted user ID is received and displayed (step S5).

  The file storage unit 24 stores a plurality of types of content files that are generated and output by the content file generation device 1 and have different content data.

  As shown in FIG. 5, the key storage unit 25 includes a content file name, a product ID that is a pre-registered number, which will be described later, and a second key generated and output by the content file generation device 1. The second key paired with the first key in the restriction program for the content file specified by the product ID is stored in association with each other.

  In response to a request from the user terminal device 4, the transmission / reception control unit 26 transmits a content file stored in the file storage unit 24 to the user terminal device 4 and a product set by the product ID issuing unit 27. A process of transmitting the ID to the user terminal device 4; a process of transferring the received terminal ID and product ID to the key generation unit 29 upon receiving the terminal ID and product ID transmitted from the user terminal device 4; When the third key transmitted from the terminal 29 is received, a process of transmitting the received third key to the user terminal device 4 is performed.

  When the content file stored in the file storage unit 24 is transmitted to the user terminal device 4 in response to a request from the user terminal device 4 under the control of the transmission / reception control unit 26, the product ID issuing unit 27 transmits An ID number (file identification information) that is set for each content file that is used to individually identify the content file is set from among the registered numbers, and the set ID number (product ID) is set. Then, under the control of the transmission / reception control unit 26, processing to transmit to the user terminal device 4 is performed.

  In the management information storage unit 28, as shown in FIG. 6, the content file name, the product ID as the previously registered number, and the management information for each product ID are stored in association with each other. The management information includes, for example, the number and period of generation of a third key, which will be described later, the generation result of the third key, and the like.

  When the key generation unit 29 receives the terminal ID and product ID transferred from the transmission / reception control unit 26, the key generation unit 29 refers to the data stored in the management information storage unit 28 based on the received product ID and sets the product ID. Processing to confirm whether or not a certain condition is satisfied based on the corresponding management information, and when the certain condition is satisfied (if the third key generation result has not reached the number of times the third key can be generated) And the second key associated with the product ID by referring to the data stored in the key storage unit 25 based on the received product ID. , The process of generating the third key including the information based on the recognized second key and the received terminal ID, and the received product I stored in the management information storage unit 28 It performs a process of updating the generation performance of the third key corresponding, and a process of transmitting the third key generated in the transmission and reception control unit 26.

  In the content distribution system 2 configured as described above, a content file is transmitted from the content distribution server 3 to the user terminal device 4 and the content file transmitted to the user terminal device 4 as shown in FIG. Is opened, the restriction data (authentication process) is executed as shown in FIGS. 8 and 9, and the content data is reproduced.

  That is, as shown in FIG. 7, personal identification information such as a user ID and a password and information for specifying a desired content file selected by the user are input from the user terminal device 4 via the homepage (steps). S11) When this is received by the transmission / reception control unit 26 of the content distribution server 3 (step S12), the transmission / reception control unit 26 reads the content file in the file storage unit 24 based on the received content file specifying information. To the user terminal device 4 (step S13).

  Then, the content file transmitted by the transmission / reception control unit 26 is received and stored by the user terminal device 4 (step S14). When the content file is transmitted to the user terminal device 4 by the transmission / reception control unit 26, the product ID issuing unit 27 sets a product for individually identifying the content file set for each transmitted content file. An ID is set from numbers registered in advance and transmitted to the user terminal device 4 under the control of the transmission / reception control unit 26 (step S15). The transmitted product ID is received by the user terminal device 4, Stored (step S16).

  Thereafter, when the content file stored in the user terminal device 4 is opened on the user terminal device 4, a restriction program is executed as shown in FIGS. 8 and 9 (step S21). First, a process of confirming whether or not there is a preset key input (whether or not there is a predetermined key input preset as one of operations for preventing the restriction release processing from being performed forcibly) If yes (step S22), if not, a process for checking whether or not the regulation program is executed for the first time is performed (step S23). Whether or not the restriction program is executed for the first time is determined based on whether or not there is restriction release data generated and stored in step S36, which will be described later. If there is such deregulation data, it is determined that it is not the first time. On the other hand, if it is step S22, the process proceeds to step S37.

  If it is determined in step S23 that it is the first time, a terminal ID based on the unique information (CPU number, hard disk number, etc.) of the user terminal device 4 is generated, and the product ID issuing unit input to the user terminal device 4 by the user The product ID set by 27 and transmitted to the user terminal device 4 is received, and the generated terminal ID and the received product ID are transmitted to the content distribution server 3 (step S24).

  The terminal ID and product ID transmitted from the user terminal device 4 are received by the transmission / reception control unit 26 of the content distribution server 3 and transferred to the key generation unit 29 (step S25). Based on the transferred product ID, the data in the management information storage unit 28 is referred to and it is confirmed whether or not a certain condition is satisfied based on the management information corresponding to the product ID (step S26).

  If it is determined in step S26 that a certain condition is satisfied (when the third key generation record has not reached the number of times the third key can be generated and within the period during which the third key can be generated). Then, referring to the data in the key storage unit 25 based on the transferred product ID, the second key associated with the product ID is recognized (step S27), the recognized second key and the transferred terminal ID A third key including these pieces of information is generated on the basis of (step S28).

  Next, the generation result of the third key corresponding to the transferred product ID in the management information storage unit 28 is updated, and the generated third key is transmitted to the transmission / reception control unit 26 to perform the transmission / reception control. The part 26 is made to return to the user terminal device 4 (step S29). On the other hand, if it is determined in step S26 that the predetermined condition is not satisfied, an error message is generated and transmitted to the transmission / reception control unit 26, and returned to the user terminal device 4 under the control of the transmission / reception control unit 26 (step S30). .

  The third key or error message returned by the transmission / reception control unit 26 is received by the user terminal device 4 according to the restriction program (step S31). The restriction program first receives the third key and the error message. Is confirmed (step S32), and if it is an error message, it is displayed on the display device of the user terminal device 4 (step S33).

  On the other hand, if it is determined in step S32 that the key is the third key, information corresponding to the second key and the terminal ID is recognized from the received third key, and the recognized second key is included in the restriction program. A process for confirming whether or not the key is paired with the first key is performed (step S34). If it is determined that the key is paired, the recognized terminal ID is generated in step S24. A process of confirming whether or not the terminal ID matches is performed (step S35).

  If it is determined in step S35 that they match, the deregulation data including the second key and the terminal ID is generated and stored in the storage unit of the user terminal device 4 as appropriate, and the storage unit storing the deregulation data Is added to the restriction release data (step S36), and the process proceeds to step S37.

  On the other hand, if it is determined in step S23 that it is not the first time, a process for confirming the content of the restriction release data generated and stored in step S36 is performed (step S38), and a process for determining whether the content is correct (step S38) Step S39). Specifically, the terminal ID based on the unique information of the user terminal device 4 is generated again, and it is confirmed whether or not the regenerated terminal ID matches the terminal ID of the deregulation data, and the deregulation is performed. It is confirmed whether or not the address of the storage unit storing the data matches the storage address of the deregulation data. In the first execution, the user terminal device 4 must be connected to the content distribution server 3 via the Internet 5. However, in the second and subsequent executions, the user terminal device 4 is connected to the content distribution server 3. It is not necessary to be connected to.

  In step S39, when the regenerated terminal ID matches the terminal ID of the deregulation data, and the address of the storage unit storing the deregulation data matches the storage address of the deregulation data Then, the process proceeds to step S37. In step S37, an appropriate reproduction program stored in advance on the user terminal device 4 side or an appropriate reproduction program in the content file is executed to reproduce the content data.

  Note that the reproduction means that the music sound is output to the speaker of the user terminal device 4 and the music sound is output to the speaker of the user terminal device 4. If the movie is displayed on the display device 4 and the novel is converted into data, the text of the novel is displayed on the display device, and if it is game software, the game software Is made available on the user terminal device 4.

  On the other hand, if it is determined in step S34 that the recognized second key is not a key paired with the first key in the restriction program, in step S35, the recognized terminal ID matches the terminal ID generated in step S24. If it is determined that it has not, the regenerated terminal ID does not match the terminal ID of the deregulation data in step S39, or the address of the storage unit storing the deregulation data is stored in the deregulation data. If it does not match the address, the process proceeds to step S40 to generate a message for requesting release of the restriction by the restriction program and display it on the display device of the user terminal device 4.

  As described above in detail, according to the content file generating apparatus 1 of this example, the content file composed of the content data and the restriction program, and the second key paired with the first key in the restriction program of the content file are efficiently used. Can be generated automatically.

  Further, according to the content file generated by the content file generation device 1, the second key in the third key transmitted from the content distribution server 3 is paired with the first key in the content file restriction program. None, and unless the terminal ID in the third key matches the terminal ID of the user terminal device 4, reproduction of the content data in the content file is restricted by the restriction program, and the content file is illegal. Even if the information related to the third key is copied and the terminal ID is known, the restriction by the restriction program cannot be released because the terminal ID is different for each user terminal device 4. Thereby, unauthorized use of content can be effectively prevented.

  Further, since the first key in the restriction program is changed for each content data, the second key paired with the first key can be changed for each content data, and the second key between the content data (distributed content files) can be changed. It is possible to prevent unauthorized use of the content more reliably by preventing the diversion of the 3 key.

  In addition, the key generation unit 29 of the content distribution server 3 refers to the management information stored in the management information storage unit 28 based on the product ID, and the third key is used only when a certain condition is satisfied. Since it is configured so as to be generated, it is possible to finely limit the use of the user for each product ID or each content file (content data), and to prevent unauthorized use of the content more effectively.

  The content file restriction program is encrypted, and the encrypted restriction program is decrypted at the time of execution, and the content data of the content file is encrypted with the first key in the restriction program. Since the content data is decrypted by the second key among the three keys, it is possible to more effectively prevent the unauthorized use of the content and the alteration of the data.

  In addition, when the content file is opened, the restriction program is executed, and the number of executions is confirmed. When the number of executions is the second or later, the terminal ID is regenerated and matched with the terminal ID of the restriction release data. And whether or not the address of the storage unit in which the deregulation data is stored matches the storage address of the deregulation data, so that unauthorized use of content can be prevented more reliably. Can do.

  This is because when the content file is copied and stored in a different user terminal device 4, the address of the storage unit storing the terminal ID and the deregulation data will be different. This is because it can be effectively prevented. For example, if the restriction program is configured to be executed only when the content file is opened for the first time, after the restriction program is executed once and the restriction by the restriction program is released, Since the content can be used without restriction, such inconvenience can be eliminated.

  In addition, since data is not transmitted and received between the user terminal device 4 and the content distribution server 3 at the second and subsequent executions, the restriction by the restriction program can be efficiently released.

  Further, when a predetermined key input (predetermined key input for preventing the restriction release processing from being forcibly performed) is performed on the user terminal device 4 by the user, between the user terminal device 4 and the content distribution server 3 In this case, the restriction is released without transmitting / receiving data, and therefore, when an error or the like occurs and the normal restriction release process (steps S23 to S40) cannot be executed. Convenient.

  As mentioned above, although one Embodiment of this invention was described, the specific aspect which this invention can take is not limited to this at all.

  In the above example, the restriction program is configured to transmit the product ID to the content distribution server 3. However, the restriction program is not limited to this, and content identification information for identifying content data is used as the content distribution server. 3 may be configured to transmit to 3. The content identification information is, for example, information previously notified to the user, input by the user, and transmitted from the user terminal device 4 to the content distribution server 3 together with the generated terminal ID. Are automatically transmitted from the user terminal device 4 to the content distribution server 3 together with the generated terminal ID.

  In this case, the key storage unit 25 includes content identification information, a content file name, and a second key paired with the first key in the restriction program corresponding to the content data specified by the content identification information. The management information storage unit 28 stores content identification information, a content file name, and management information for each content identification information in association with each other. The key generation unit 29 Based on the content identification information transmitted from the device 4, the second key stored in the key storage unit 25 and the management information stored in the management information storage unit 28 are recognized.

  Further, the content identification information, user ID, second key and content file are associated with each other and stored in the key storage unit 25, or the content identification information, user ID, management information and content file are associated with each other. Based on the generated terminal ID, content identification information, and input user ID stored in the management information storage unit 29 and transmitted from the user terminal device 4 to the content distribution server 3, the second key and management Information can also be recognized.

  In the above example, the content file generated and output by the content file generation device 1 is stored in the file storage unit 24 of the content distribution server 3 and sold to the user online. However, the present invention is not limited to this. You may make it store in recording media suitably, such as CD-ROM, and sell at a store.

  Even in this case, when the content file stored in the recording medium is read by the user terminal device 4, the restriction release processing is performed in the same manner as described above. Further, the user terminal device 4 is replaced with a content management server including a key storage unit 25, a transmission / reception control unit 26, a management information storage unit 28, a key generation unit 29, a communication interface 30, and the like, instead of the content distribution server 3. Connected via the Internet 5, the product ID (the content file (recording medium) set in advance for the product file (recording medium) that is displayed on the display label attached to the storage case of the recording medium is individually identified. File identification information)) is input and transmitted by the user.

  Furthermore, in the restriction program, even when a content file is stored in a recording medium and sold, the user terminal device 4 and the content management server can be connected via the Internet 5 to reproduce the content data. In order to cope with the case where the computer used by the user is not configured to be connectable to the content management server via the Internet 5, the regulation program is shown in FIGS. Instead of the process shown in FIG. 10, the process shown in FIG. 10 may be performed.

  That is, when the content file is opened on the computer and the restriction program is executed (step S51), the restriction program first receives a predetermined key input for preventing the restriction release processing from being forcibly performed. A process for confirming whether or not the restriction program has been executed is performed (step S52), and if not, a process for confirming whether or not the regulation program is executed for the first time is performed (step S53). Whether or not the restriction program is executed for the first time is determined based on whether or not there is restriction release data generated and stored in step S58 described later. On the other hand, if it is step S52, the process proceeds to step S59.

  If it is determined in step S53 that it is the first time, a terminal ID based on the unique information of the computer is generated, and the generated terminal ID and a third key input screen are displayed on the display device of the computer (step S54). ). At this time, on the display device of the computer, in addition to this, it is urged to notify the content manager of the displayed terminal ID and the product ID displayed on the display label attached to the storage case of the recording medium. A message to that effect and a message to prompt the input of the third key are displayed on the screen.

  Then, the user who views such a display screen manages the displayed terminal ID and product ID using a communication means such as a telephone (including a telephone configured to automatically answer) or a fax. When the user is contacted, the content manager generates a third key based on the terminal ID and product ID transmitted from the user and notifies the user. On the content manager side, for example, based on information obtained from the user, the operator causes the key generation device to appropriately execute the processes shown in steps S25 to S30 in the content distribution server 3 described above. Thus, the third key is generated.

  Thereafter, when the user inputs the third key notified from the content manager side to the computer, the input third key is accepted according to the restriction program (step S55), and the restriction program is first input. A process of recognizing information corresponding to the second key and the terminal ID from the third key, and confirming whether or not the recognized second key is a key paired with the first key in the restriction program. If it is determined that the key is a key to be paired, a process of confirming whether or not the recognized terminal ID matches the terminal ID generated in step S54 is performed (step S57). ).

  If it is determined in step S57 that they match, the deregulation data including the second key and the terminal ID is generated and stored in the appropriate storage unit of the computer, and the address of the storage unit storing the deregulation data ( A process of adding (storage address) to the restriction release data is performed (step S58), and the process proceeds to step S59.

  On the other hand, if it is determined in step S53 that it is not the first time, a process of confirming the contents of the restriction release data generated and stored in step S58 is performed (step S60), and a process of determining whether the contents are correct (step S60) Step S61). Specifically, the terminal ID based on the unique information of the computer is generated again, it is confirmed whether the regenerated terminal ID matches the terminal ID of the restriction release data, and the restriction release data is stored. It is checked whether the stored address of the storage unit matches the storage address of the restriction release data.

  In step S61, when the regenerated terminal ID matches the terminal ID of the deregulation data, and the address of the storage unit storing the deregulation data matches the storage address of the deregulation data Then, the process proceeds to step S59. In step S59, a process for reproducing the content data by appropriately executing a reproduction program is performed.

  On the other hand, if it is determined in step S56 that the recognized second key is not a key paired with the first key in the restriction program, in step S57, the recognized terminal ID matches the terminal ID generated in step S54. If it is determined that it is not, the regenerated terminal ID does not match the terminal ID of the deregulation data or the address of the storage unit storing the deregulation data is stored in the deregulation data in step S61. If it does not match the address, the process proceeds to step S62 to generate a message for requesting release of the restriction by the restriction program and display it on the display device of the computer.

  Thus, even if the restriction program is configured in this way, the same effect as described above can be obtained. As described above, in step S54, the terminal ID is displayed. In addition to this, content identification information, file identification information, and the like included in the content file are displayed together with the terminal ID so that the user can The terminal ID and content identification information or file identification information can be notified to the content manager side. Then, on the content manager side, the third key is generated based on the notified terminal ID and content identification information or file identification.

  In addition, when the content is game software or the like, content data called a trial version that allows the user to use the content for a little while free may be distributed in order for the user to understand what kind of game it is. In such a case, you must prepare the trial version content data and the content data as the regular version that is not the trial version, but combine the trial version content data and the regular version content data into one content file. When the restriction release process is executed by the restriction program, if the contents of the regular version can be used, it becomes efficient, for example, data can be shared between the trial version and the regular version. . For example, when the user pays an appropriate usage fee, the management information stored in the management information storage unit 28 is changed so that the third key can be generated, so that the restriction by the restriction program is released, and the regular version Can be executed on the user terminal device 4.

It is the block diagram which showed schematic structure of the content file production | generation apparatus which concerns on one Embodiment of this invention. It is explanatory drawing which showed the data structure of the content file produced | generated by the content file production | generation apparatus which concerns on this embodiment. It is the block diagram which showed schematic structure of the content delivery system which concerns on this embodiment. It is a flowchart for demonstrating the process in the user registration process part which concerns on this embodiment. It is explanatory drawing which showed the data structure of the data stored in the key memory | storage part which concerns on this embodiment. It is explanatory drawing which showed the data structure of the data stored in the management information storage part which concerns on this embodiment. It is a flowchart for demonstrating the delivery process which concerns on this embodiment. It is a flowchart for demonstrating the regulation cancellation | release process which concerns on this embodiment. It is a flowchart for demonstrating the regulation cancellation | release process which concerns on this embodiment. It is a flowchart for demonstrating the regulation cancellation | release process which concerns on other embodiment of this invention.

DESCRIPTION OF SYMBOLS 1 Content file generation apparatus 2 Content distribution system 3 Content distribution server 4 User terminal device 5 Internet 11 Data storage part 12 Generation program storage part 13 File generation part 14 Generation data storage part 15 Generation data output part 21 Web page process part 22 User Registration processing unit 23 User registration information storage unit 24 File storage unit 25 Key storage unit 26 Transmission / reception control unit 27 Product ID issuing unit 28 Management information storage unit 29 Key generation unit

Claims (7)

An apparatus for generating a content file comprising a content data and a program for regulating the reproduction of the content data, the regulation file including a first key necessary for the regulation,
A data storage unit for storing the content data;
The restriction program is added to the content data stored in the data storage unit, the content data is encrypted with the first key of the restriction program to generate the content file , and the content data is paired with the first key of the restriction program. A file generation unit for generating the second key
A generation data storage unit that stores the content file generated by the file generation unit and the second key, respectively;
A generation data output unit for outputting the content file stored in the generation data storage unit and the second key to the outside;
The restriction program generates terminal identification information based on unique information of the computer on the computer when the content file is opened at least for the first time on the computer, and generates the generated terminal identification information and the content file. A file identification information for individually identifying the content file, which is set in advance, connected to the content management server via an electric communication line, and transmitted by the content management server according to the file identification information When a third key including these information is generated and transmitted based on the second key paired with the first key in the restriction program of the specified content file and the terminal identification information , the content is transmitted. The third key transmitted from the management server is received, and the third key is received from the received third key. Recognizing information corresponding to the key and terminal identification information, confirming whether the recognized second key is a key paired with the first key in the restriction program, and the recognized terminal identification information is A process for confirming whether or not the generated terminal identification information matches, a recognized second key is a key paired with the first key, and the recognized terminal identification information is the generated terminal identification information. The content file generation apparatus is configured to perform a process of decrypting the content data with the second key and reproducing the content data when the content data matches. When the third key is generated and transmitted by the content management server when the content management server satisfies a certain condition set for each file identification information, the restriction program is transmitted from the content management server. 3 keys are received, information corresponding to the second key and terminal identification information is recognized from the received third key, and the recognized second key is paired with the first key in the restriction program 2. The apparatus according to claim 1, wherein a process for confirming whether the recognized terminal identification information matches the generated terminal identification information is performed. content file generation device. An apparatus for generating a content file comprising a content data and a program for regulating the reproduction of the content data, the regulation file including a first key necessary for the regulation,
A data storage unit for storing the content data;
The restriction program is added to the content data stored in the data storage unit, the content data is encrypted with the first key of the restriction program to generate the content file , and the content data is paired with the first key of the restriction program. A file generation unit for generating the second key
A generation data storage unit that stores the content file generated by the file generation unit and the second key, respectively;
A generation data output unit for outputting the content file stored in the generation data storage unit and the second key to the outside;
The restriction program generates terminal identification information based on unique information of the computer on the computer when the content file is opened at least for the first time on the computer, and generates the generated terminal identification information and the content file. The file identification information for individually identifying the content file, which is set in advance, is displayed on the screen on the computer, and the terminal identification information and the file identification information displayed are notified to the content manager. A key generated on the basis of the second key paired with the first key in the restriction program for the content file specified by the file identification information and the terminal identification information, and includes such information Obtain a third key from the content manager and enter it into the computer When the third key is input, information corresponding to the second key and terminal identification information is recognized from the input third key, and the recognized second key A process of confirming whether or not the key is paired with the first key in the program and confirming whether or not the recognized terminal identification information matches the generated terminal identification information; When the key is paired with the first key and the recognized terminal identification information matches the generated terminal identification information, the content data is decrypted by the second key and the content A content file generation device configured to perform processing for reproducing data. The restriction program generates terminal identification information based on unique information of the computer, displays the generated terminal identification information and the file identification information on the computer, and displays the displayed terminal identification information and the file identification. Information is sent to the content manager, and the third key generated when a certain condition set for each file identification information is satisfied is obtained from the content manager and input to the computer. 4. The content file generation device according to claim 3, wherein the content file generation device is configured to perform a process of performing a screen display prompting the user . The regulation program, any content file generation device according to claim 1 to 4 wherein that the first key is set to be different. Depending on the content data. The file generation unit is configured to generate the content file by encrypting at least the restriction program of the content file,
The regulation program, any content file generation apparatus of claims 1 to 5, wherein the composed configured to run decrypt the encrypted data. The restriction program is configured to perform a process for confirming whether or not it is the first execution, and when it is the first time, in addition to the processes, the generated terminal identification information is stored in the computer. If the process is further stored in the storage unit and it is not the first time, the terminal identification information is generated again, and the regenerated terminal identification information matches the terminal identification information stored in the storage unit of the computer. a process for confirming whether or dolphin not, if it is determined that they match any of the claims 1 to 6, wherein the composed configured to perform a process for reproducing the content data Content file generation device.

Images