JP2000293588A - Information processor, information processing method, management device, management method, and providing means - Google Patents

Abstract

PROBLEM TO BE SOLVED: To effectively use the information included in the accounting information by transmitting the accounting information including the ID of an information processor and receiving the marketing information corresponding to the settlement result that is accordant with the accounting information and received from a management device. SOLUTION: This processor includes a production means which produces the accounting information including its own ID that is necessary for settling the accounting of the value information, a transmission means which transmits the produced accounting information to a management device and a reception means which receives the marketing information that is transmitted from the management device and corresponding to the settlement result accordant with the accounting information received from the transmission means. At an electrical music distribution(EMD) service center 1, a user management part 18 manages the information on the devices of a user home network which can be registered in an EMD system. The system registered information includes the information corresponding to the items of the SAM IDs, device numbers, settlement IDs, settlement user information, etc.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

[0001] The present invention relates to an information processing apparatus and method, a management apparatus and method, and a providing medium.
In particular, the present invention relates to an information processing apparatus and method for decoding encrypted information, a management apparatus and method, and a providing medium.

[0002]

2. Description of the Related Art Information such as music (hereinafter referred to as content) is encrypted and transmitted to an information processing device of a user who has made a predetermined contract, and the user decrypts the content using the information processing device and uses the content. There is a system to do.

[0003]

Naturally, in this system, a predetermined fee is charged by using (purchasing) the content, and the user has to settle it.
Usually, at this time, the billing information is transmitted to the management device that manages this system, and the billing is settled by the billing information.

[0004] By the way, the billing information includes information for specifying the purchased content and information regarding the purchased user, but there has been a problem that such information has not been used effectively conventionally.

[0005] The present invention has been made in view of such a situation, and an object of the present invention is to make it possible to effectively use information included in billing information.

[0006]

An information processing apparatus according to claim 1 is a creating means for creating billing information including its own ID, which is necessary to settle billing for value information, and a creating means. Transmitting means for transmitting the charging information created by the management apparatus to the management device; and receiving means for receiving predetermined marketing information transmitted from the management device and corresponding to a settlement result based on the charging information transmitted by the transmitting means. It is characterized by having.

[0007] According to a second aspect of the present invention, there is provided an information processing method comprising: a step of creating billing information including an ID of itself necessary to settle billing of value information; and a billing information created by the creating step. A transmitting step of transmitting to the management apparatus, and a receiving step of receiving predetermined marketing information corresponding to a settlement result based on the billing information transmitted in the transmitting step, transmitted from the management apparatus. I do.

[0008] According to a third aspect of the present invention, there is provided the providing medium, comprising: a creation step of creating billing information including an ID of itself necessary to settle the billing of the value information; and a billing information created by the creating step. A computer for executing a process including: a transmitting step of transmitting to the management apparatus; and a receiving step of receiving predetermined marketing information corresponding to a payment result based on the billing information transmitted in the transmitting step and transmitted from the management apparatus. A readable program is provided.

[0009] The information processing apparatus according to claim 1, claim 2
In the information processing method described in the above, and the providing medium described in the claim 3, billing information including its own ID required to settle the billing of the value information is created, and the created billing information is The predetermined marketing information corresponding to the settlement result based on the transmitted billing information transmitted from the management apparatus and transmitted from the management apparatus is received.

According to a fourth aspect of the present invention, there is provided a management apparatus, comprising: a storage unit for storing predetermined marketing information relating to an information processing apparatus in correspondence with an ID of the information processing apparatus; and an information processing apparatus transmitted from the information processing apparatus. Payment means for receiving the billing information including the ID of the information processing device, and performing billing based on the value information based on the billing information;
Reading means for reading marketing information related to the information processing device stored in the storage means,
The marketing information read by the reading means is included in a first publishing means for publishing the marketing information to the information processing apparatus in association with a settlement result by the settlement means.

According to a sixth aspect of the present invention, there is provided a management method for storing predetermined marketing information relating to an information processing apparatus in correspondence with an ID of the information processing apparatus, and an information processing apparatus transmitted from the information processing apparatus. Receiving the billing information including the ID of the information processing device and, based on the billing information, settling the billing based on the value information, and the information processing stored in the storage step corresponding to the ID of the information processing apparatus included in the billing information. A reading step of reading marketing information relating to the device, and a first publishing step of publishing the marketing information read in the reading step to the information processing device in association with a settlement result in the settlement step. I do.

[0012] According to an eighth aspect of the present invention, there is provided the providing medium, comprising: a storage step of storing predetermined marketing information relating to the information processing apparatus in correspondence with the ID of the information processing apparatus; and an information processing apparatus transmitted from the information processing apparatus. Receiving the billing information including the ID of the information processing device and, based on the billing information, settling the billing based on the value information, and the information processing stored in the storage step corresponding to the ID of the information processing apparatus included in the billing information. A process including a reading step of reading the marketing information related to the device and a first publishing step of publishing the marketing information read in the reading step to the information processing device in association with the payment result in the payment step is performed. A computer-readable program is provided.

[0013] In the management apparatus according to the fourth aspect, the management method according to the sixth aspect, and the providing medium according to the eighth aspect, predetermined marketing related to the information processing apparatus is associated with the ID of the information processing apparatus. The information is stored, billing information including the ID of the information processing apparatus transmitted from the information processing apparatus is received, and the billing based on the value information is settled based on the billing information. The marketing information on the information processing device stored corresponding to the ID is read, and the read marketing information is disclosed to the information processing device in correspondence with the settlement result.

[0014]

DESCRIPTION OF THE PREFERRED EMBODIMENTS Embodiments of the present invention will be described below. In order to clarify the correspondence between each means of the invention described in the claims and the following embodiments, each means is described. When the features of the present invention are described by adding the corresponding embodiment (however, an example) in parentheses after the parentheses, the result is as follows. However, of course, this description does not mean that each means is limited to those described.

FIG. 1 shows an EMD (Electronic) to which the present invention is applied.
1 is a diagram illustrating a Music Distribution (electronic music distribution) system. The EMD system manages registration with the EMD system and manages each device, an EMD service center 1, a content provider 2 that provides content, a service provider 3 that provides a predetermined service corresponding to the content, and a content used by the content. And a user home network 5 including devices to be used.

Devices (users) registered in the EMD system
Is digital data whose information itself has value. In this example, one content corresponds to music data for one song. The content is provided to the user with one content as one unit (single) or a plurality of contents as one unit (album). The user purchases the content (actually, purchases the right to use the content) and uses the provided content.

As shown in FIG. 2 showing the main information flow in the EMD system, the EMD service center 1 includes a user home network 5 and a plurality of content providers 2 (in this example, two sets of content providers 2-
1-2, (hereinafter, content providers 2-1 and 2-
If it is not necessary to distinguish the content providers 2 from each other, the content provider 2 is simply described. The same applies to other devices), and the delivery key K required to use the content
Send d. The EMD service center 1 also receives billing information and the like from the device of the user home network 5 and adjusts the fee, and receives a charge from the content provider 2.
The UCP and the PT from the service provider 3 are received.

The content providers 2-1 and 2-2
The content to be provided (encrypted with the content key Kco), the content key Kco required for decrypting the content (encrypted with the delivery key Kd),
And a handling policy (hereinafter referred to as UCP (Usage Control Policy)) indicating the usage content of the content and the like, and supplies them to the service provider 3 in a form called a content provider secure container (described later). In this example, it is assumed that there are two service providers 3-1 and 3-2.

The service providers 3-1 and 3-2 correspond to the UCP supplied from the content provider 2,
Create one or more price information (hereinafter referred to as PT (Price Tag)) and hold it. The service provider 3 adds the created PT together with the content (encrypted with the content key Kco), the content key Kco (encrypted with the delivery key Kd), and the UCP supplied from the content provider 2, In a form called a service provider secure container, the data is transmitted to the user home network 5 via the network 4 configured by a dedicated cable network, the Internet, satellite communication, or the like.

Based on the supplied UCP and PT, the user home network 5 uses license condition information (hereinafter referred to as U
CS (Usage Control Status) is created, and processing for using the content is executed based on the created UCS. The user home network 5 also creates billing information at the timing of creating a UCS, for example, a delivery key K
At the timing of receiving d, the corresponding UCP and PT
And sends it to the EMD service center 1. In addition,
The user home network 5 can prevent the UCP and PT from being transmitted to the EMD service center 1.

In this example, the user home network 5 is connected to the HDD 52 as shown in FIG.
Connected to the receiver 51 and the HDD 202, and
It comprises a receiver 201 having an AM 212.
The receiver 51 is formally registered in the EMD system, but the receiver 201 is not registered in the EMD system at the present time.

FIG. 3 is a block diagram showing a functional configuration of the EMD service center 1. The service provider management unit 11 supplies profit distribution information to the service provider 3. The content provider management unit 12 transmits the delivery key Kd to the content provider 2 and supplies profit distribution information.

The copyright management unit 13 stores information indicating the result of use of the contents of the user home network 5 by an organization that manages copyright, for example, JASRAC (Japanese Society).
forRights of Authors, Composers and Publishers: Japan Music Copyright Association.

The key server 14 stores the delivery key Kd and supplies it to the content provider 2 via the content provider management unit 12 or to the user home network 5 via the user management unit 18 or the like. Supply.

A device (eg, a receiver 5) of the user home network 5 that is formally registered in the EMD system.
EMD supplied to 1) and content provider 2
The distribution key Kd from the service center 1 will be described with reference to FIGS.

FIG. 4 shows that the EMD service center 1 in January 1998, when the content provider 2 starts providing the content and the receiver 51 (FIG. 26) constituting the user home network 5 starts using the content. FIG. 4 is a diagram showing a distribution key Kd of the content provider 2, a distribution key Kd of the content provider 2, and a distribution key Kd of the receiver 51.

In the example of FIG. 4, the delivery key Kd can be used from the first day of the calendar month to the last day of the month. For example, "aaaaaaaaa" which is a random number having a predetermined number of bits.
The distribution key Kd of version 1 having the value of
Available January 1, 1998 to January 31, 1998 (ie, January 1, 1998 to January 3, 1998)
The content key Kco for encrypting the content distributed to the user home network 5 via the service provider 3 during the period of one day is the version 1 delivery key Kco.
d) and has a value of “bbbbbbbbbb” which is a random number of a predetermined number of bits.
Is the delivery key Kd from February 1, 1998 to 199.
Usable until February 28, 2008 (that is, a content key K for encrypting content distributed to the user home network 5 via the service provider 3 during that period)
co is encrypted with version 2 of the distribution key Kd). Similarly, version 3 delivery key Kd can be used during March 1998, version 4 delivery key Kd can be used during April 1998, and version 5 delivery key Kd. Key Kd is 199
The distribution key Kd, which can be used during May 2008 and is version 6, can be used during June 1998.

Prior to the content provider 2 starting to provide content, the EMD service center 1 provides the content provider 2 with six delivery versions 1 to 6 available from January 1998 to June 1998. Sends the user key Kd and the content provider 2
Receives and stores the six delivery keys Kd. It is the content provider 2 that stores the delivery key Kd for June.
However, it is because a predetermined period is required for preparing the content and the content key before providing the content.

Before the receiver 51 starts using the content, the EMD service center 1 provides the receiver 51 with three available versions 1 to 3 from January 1998 to March 1998. The delivery key Kd is transmitted, and the receiver 51 transmits the three delivery keys K
d is received and stored. The reason that the delivery key Kd for March is stored is that the receiver 51 cannot use the content despite the contract period in which the content can be used due to troubles such as the inability to connect to the EMD service center 1. This is also to avoid the frequency of connection to the EMD service center 1 and reduce the load on the user home network 5.

From January 1, 1998 to January 3, 1998
During the period of one day, the delivery key Kd of version 1 is
It is used by the EMD service center 1, the content provider 2, and the receiver 51 constituting the user home network 5.

On February 1, 1998, the content provider 2 of the delivery key Kd of the EMD service center 1
The transmission to the receiver 51 will be described with reference to FIG. The EMD service center 1 provides the content provider 2 with 199
Send six distribution keys Kd, version 2 to version 7, available from February 2008 to July 1998;
The content provider 2 receives the six delivery keys Kd, overwrites the delivery key Kd stored before the reception, and stores the new delivery key Kd. EMD Service Center 1
Has been installed on the receiver 51 from February 1998 to April 1998.
Until the month, three delivery keys Kd that are available version 2 to version 4 are transmitted, and the receiver 51 receives the three delivery keys Kd and overwrites the delivery key Kd stored before reception. Then, the new delivery key Kd is stored. EM
D service center 1 has version 1 delivery key K
d is stored as it is. This is to make it possible to use the delivery key Kd that has been used in the past when an unexpected trouble occurs, or when an irregularity occurs or is found.

From February 1, 1998 to February 2, 1998
During the period of 8 days, the delivery key Kd of version 2 is
It is used by the EMD service center 1, the content provider 2, and the receiver 51 constituting the user home network 5.

On March 1, 1998, the content provider 2 of the distribution key Kd of the EMD service center 1
The transmission to the receiver 51 will be described with reference to FIG. The EMD service center 1 provides the content provider 2 with 199
Sending six distribution keys Kd, version 3 to version 8, available from March 2008 to August 1998;
The content provider 2 receives the six delivery keys Kd, overwrites the delivery key Kd stored before the reception, and stores the new delivery key Kd. EMD Service Center 1
Has been installed on the receiver 51 from March 1998 to May 1998.
Until the month, three available delivery keys Kd of version 3 to version 5 are transmitted, and the receiver 51 receives the three delivery keys Kd and overwrites the delivery key Kd stored before reception. Then, the new delivery key Kd is stored. EM
D service center 1 has version 1 delivery key K
d and the delivery key Kd of version 2 are stored as they are.

From March 1, 1998 to March 3, 1998
In the period of one day, the delivery key Kd of version 3 is
It is used by the EMD service center 1, the content provider 2, and the receiver 51 constituting the user home network 5.

On April 1, 1998, the content provider 2 of the distribution key Kd of the EMD service center 1
The transmission to the receiver 51 will be described with reference to FIG. The EMD service center 1 provides the content provider 2 with 199
Sending six distribution keys Kd, version 4 to version 9, available from April 1988 to September 1998;
The content provider 2 receives the six delivery keys Kd, overwrites the delivery key Kd stored before the reception, and stores the new delivery key Kd. EMD Service Center 1
Has been added to the receiver 51 from April 1998 to June 1998.
Until the month, three available delivery keys Kd of version 3 to version 5 are transmitted, and the receiver 51 receives the three delivery keys Kd and overwrites the delivery key Kd stored before reception. Then, the new delivery key Kd is stored. EM
D service center 1 has version 1 delivery key K
d, the delivery key Kd of version 2 and the delivery key Kd of version 3 are stored as they are.

From April 1, 1998 to April 3, 1998
During the 0 day period, the delivery key Kd of version 4 is
It is used by the EMD service center 1, the content provider 2, and the receiver 51 constituting the user home network 5.

As described above, by distributing the delivery key Kd of the previous month in advance, even if the user has not accessed the EMD service center 1 at all for one or two months, the purchase of the content can be performed temporarily. The user can access the EMD service center 1 and receive the key at an appropriate time.

As described above, the delivery key Kd for three months or six months is distributed to the device and the content provider 2 in the user home network 5 which are formally registered in the EMD system. The device of the user home network 5 that has not been officially registered and has been provisionally registered (details will be described later), as shown in FIG. Monthly delivery keys Kd are distributed. In this example, in order to formally register the device of the user home network 5 in the EMD system, a registration procedure, such as credit processing, having a time of about one month is required. Therefore, in order to be able to use the contents from the registration application to the formal registration (approximately one month), one-month A distribution key Kd that can be used is distributed between the distribution keys.

Returning to FIG. 3, the history data management unit 15 outputs the billing information, the PT corresponding to the content, and the UC corresponding to the content, output from the user management unit 18.
Memorize P etc.

The profit distribution unit 16 includes the history data management unit 15
The profits of the EMD service center 1, the content providers 2-1 and 2-2, and the service providers 3-1 and 3-2 are calculated based on various information supplied from The content is output to the content provider management unit 12, the accounting unit 20, and the copyright management unit 13. The profit allocating unit 16 also determines the use points (the higher the profit, that is, the more the user uses the content, for each of the content providers 2-1 and 2-2 and the service providers 3-1 and 3-2 according to the calculated profit. The greater the number of points, the greater the value), and outputs it to the user management unit 18. In the following, the usage points at the content provider 2 are referred to as content usage points, and the usage points at the service provider 3 are referred to as service usage points.

The mutual authentication unit 17 performs mutual authentication with the content provider 2, the service provider 3, and the devices of the user home network 5.

The user management unit 18 manages information (hereinafter, referred to as system registration information) on devices of the user home network 5 that can be registered in the EMD system. As shown in FIG. 9, the system registration information includes "SAM I
D, “equipment number”, “payment ID”, “payment user information”, a plurality of “subordinate user information”, and information corresponding to “use point information”. In this example, the “SAM ID”, “equipment number”, “payment ID”, and “use point information” are not disclosed, but the predetermined information of “payment user information” and “subordinate user information” is It will be made public with the permission of the user. In the figure, the information shown with a shadow is information that is not disclosed (disclosure is not permitted), and the information shown without a shadow is disclosed (information that is permitted to be disclosed). Information).
The disclosure here means that the information is provided to the content provider 2, the service provider 3, or the device of the user home network 5.

The “SAM ID” stores the SAM ID of the manufactured device of the user home network 5. The “SAM ID” of the system registration information in FIG.
The ID of the SAM 62 of the receiver 1 and the ID of the SAM 212 of the receiver 201
Is set.

In the “device number”, a device number preset for a device of the user home network 5 having the SAM is set. The device of the user home network 5 communicates with the service provider 3 via the network 4,
And a function capable of directly communicating with the EMD service center 1 (having a communication unit).
If the device has a function of outputting (presenting) the contents of T to the user or allowing the user to select the contents of UCP (having a display unit and an operation unit), the device (hereinafter, referred to as A device having such a function is referred to as a main device). If the device does not have such a function, the device (hereinafter, such a device is referred to as a slave device) is given a device number of 99 or less. In this case, details will be described later,
Since both the receiver 51 and the receiver 201 have the above-described functions, the device numbers (10
0), and the corresponding “device number” is set to device number 100, respectively.

The “payment ID” stores a predetermined payment ID assigned when the formal registration is made in the EMD system.
In this example, the receiver 51 is formally registered and the payment ID
Is given, the SA of the system registration information of FIG.
The “payment ID” corresponding to the ID of M62 stores the given payment ID. On the other hand, the receiver 201
D is not registered in the system and the settlement ID is not given, so the ID of the SAM 212 in the system registration information of FIG.
No information is set in the “settlement ID” corresponding to.

The “payment user information” includes the name, address, telephone number, and payment institution information (for example, credit card number) of the user who settles the charged account (hereinafter, such a user is referred to as a payment user). Etc.), date of birth, age, gender, ID, password, etc. are set. In this example, the settlement institution information, ID, and password are not disclosed information, but other names, addresses, telephone numbers, dates of birth, age, and gender are permitted by the user. If so, it is information that will be made public.

The name, address, telephone number, information of the settlement institution, date of birth, and gender of the settlement user set in the “settlement user information” (these information set in the “settlement user information” are , When it is not necessary to distinguish them individually, collectively referred to as user general information) is provided and set by the user when registration is applied. In this example, the name, address, phone number, and clearing house information are processed based on the credit information.
Accurate information (for example, information registered with a clearing house)
Needs to be On the other hand, since the date of birth, age, and gender of the user general information are not used for credit processing, in this example, the information does not need to be accurate, and the user does not need to provide the information. It is not necessary to provide. The ID and password of the payment user stored in the “payment user information” are assigned and set when provisionally registered in the EMD system.

In the case of this example, the receiver 51
Is registered as a payment user, and “payment user information” corresponding to the ID of the SAM 62 in the system registration information of FIG.
User general information provided by user F, user F's I
D and the password of the user F are set. Since the receiver 201 has not applied for registration,
No information is set in the “payment user information” corresponding to the ID 212.

In this example, the user F has a name,
You are allowed to disclose your address, phone number, date of birth, age, and gender (all information that can be made public).

The “subordinate user information” includes the name, address, telephone number, date of birth, age, gender, ID, password, etc. of a user who does not settle billing (hereinafter, such a user is referred to as a subordinate user). Is set. That is, among the information set in the “payment user information”, information other than the information of the payment institution is set. In the case of this example, such information can be made public.

Since credit processing is not performed on the subordinate user, the information of the subordinate user set in the “subordinate user information” such as name, address, telephone number, date of birth, age, and gender is Need not be accurate. For example, in the case of a name, something like a nickname may be used. Also, the name is needed to identify the user, but other information need not necessarily be provided by the user. ID of subordinate user set in “subordinate user information”
And a password are assigned and set at the time of provisional registration or formal registration.

In this example, since the subordinate user is not registered in both the receiver 51 and the receiver 201, the “subordinate user information” corresponding to the ID of the SAM 62 in the system registration information in FIG. No information is set in the "subordinate user information" corresponding to.

The “use point information” includes the profit distribution unit 1
The use point output from 6 is set. In the case of this example, the content has already been used in the receiver 51, and the “use point information” corresponding to the SAM 62 stores the use point information as shown in FIG. In the example of FIG. 10, the content usage point of the content provider 2-1 given to the user F (payment user) of the receiver 51 is 222 points, the content usage point of the content provider 2-2 is 123 points, and the service is provided. The service use point of the provider 3-1 is 345 points, and
The service usage point of the service provider 3-2 is 0
It is a point.

Note that, in this example, the total points 345 (=) of the content usage points of the content provider 2-1 and the content provider 2-2, respectively.
123 + 222) is equal to the total point 345 (= 345 + 0) of the service use points of the service provider 3-1 and the service provider 3-2.

At the receiver 201, the content is not currently used (use is not permitted).
Therefore, naturally, no information is set in the “usage point information” corresponding to the ID of the SAM 212.

In addition to managing such system registration information, the user management unit 18 creates a registration list (to be described later) corresponding to a predetermined process, and transmits it to the user home network 5 together with the delivery key Kd.

Referring back to FIG. 3, the billing requesting section 19 calculates the billing to the user based on, for example, the billing information, UCP, and PT supplied from the history data management section 15, and calculates the result. It is supplied to the accounting unit 20. Cashier 20
Communicates with an external bank or the like (not shown) based on the withdrawal to the user, the content provider 2 and the service provider 3 and the amount of the usage fee to be collected, and executes a settlement process. The accounting unit 20 also notifies the user management unit 18 of the result of the settlement process.

The audit unit 21 audits the legitimacy of the billing information, PT, and UCP supplied from the devices of the user home network 5 (that is, whether or not the fraud is performed). In this case, the EMD service center 1 sends the UCP from the content provider 2 and the PT
And UCP and PT from user home network 5
, Respectively.

FIG. 11 is a block diagram showing a functional configuration of the content provider 2-1. The content server 31 stores the content to be supplied to the user and supplies the content to the watermark adding unit 32. The watermark adding unit 32 adds a watermark (digital watermark) to the content supplied from the content server 31, and
Supply 3

The compression section 33 includes a watermark adding section 32
Content supplied from ATRAC2 (Adaptive Transf
orm Acoustic Coding 2) (trademark) or the like, and supplies it to the encryption unit 34. The encryption unit 34 uses the random number supplied from the random number generation unit 35 as a key (hereinafter, this random number is referred to as a content key Kco) to encrypt the content compressed by the compression unit 33, such as DES (Data Encryption Standard). The encryption is performed by the key encryption method, and the result is output to the secure container creation unit 38.

The random number generator 35 supplies a random number having a predetermined number of bits to be the content key Kco to the encrypting unit 34 and the encrypting unit 36. The encryption unit 36 determines the content key Kc
o is the delivery key Kd supplied from the EMD service center 1.
And encrypts the data using a common key encryption method such as DES, and outputs the result to the secure container creation unit 38.

DES is an encryption system that uses a 56-bit common key and processes 64 bits of plaintext as one block. The DES processing includes a part (data stirring part) that converts plaintext into ciphertext and a part (key processing part) that generates a key (enlarged key) used by the data stirring part from a common key. Since all the DES algorithms are public, the basic processing of the data agitation unit will be briefly described here.

First, the 64 bits of the plaintext are divided into H _{0 of} the upper 32 bits and L _{0 of the} lower 32 bits. Expanded key K ₁ of 48 bits supplied from the key processing unit, and inputs the lower 32 bits of the L _0, the lower 32 bits of the L ₀
Is output and the output of the F function is calculated. The F function is composed of two types of basic conversion, "substitution" for replacing a numerical value with a predetermined rule and "transposition" for replacing a bit position with a predetermined rule. Next, the upper 32 bits H ₀ and F
The output of the function is XOR, the result is a L _1. L ₀ is set to H ₁ .

The above process is repeated 16 times based on the upper 32 bits H ₀ and the lower 32 bits L ₀ , and the obtained upper 32 bits H ₁₆ and lower 32 bits L ₁₆ are output as ciphertext. You. Decryption is realized by reversing the above procedure using the common key used for encryption.

The policy storage unit 37 stores the UCP set corresponding to the content and outputs the UCP to the secure container creation unit 38. FIG. 12 shows UCPs A and B set corresponding to the content A held in the content server 31 and stored in the policy storage unit 37. UCP consists of "content ID", "content information", "content provider ID", "UCP ID",
Specific information corresponding to each item of “expiration date of UCP”, “usage condition”, and “usage content” is included.

In the “content ID”, the ID of the content corresponding to the UCP is set. UCPA (Fig. 12 (A))
The ID of the content A is set to the “content ID” of each of UCPB and UCPB (FIG. 12B).
In the “content information”, predetermined content information relating to content (song) such as a song name and a singer name is set. "Content information" of UCPA and UCPB
, Content information of the content A is set.

In the “content provider ID”, the ID of the content provider that provides the content is set. The ID of the content provider 2-1 is set in the “content provider ID” of each of the UCP A and UCP B. A predetermined ID assigned to each UCP is set in the “UCP ID”, and the UCP ID is set in the “UCP ID” of the UCP.
The ID of A is set to the ID of UCPB in the “UCP ID” of UCPB. In the “expiration date of UCP”, information indicating the expiration date of UCP is set. In the “expiration date of UCP” of UCPA, the expiration date of UCPA is set. Expiration dates are set respectively.

In the “use condition”, predetermined information corresponding to each item of “user condition” and “device condition” is set. In the “user condition”, a condition of a user who can select this UCP is set. Is set, and the "device condition"
Is set with information indicating the condition of a device that can select this UCP.

In the case of UCPA, “Usage condition 10” is set, and “User condition 10” of “Usage condition 10” includes information (“200”) indicating that the use point is 200 points or more. More than points ") is set. In the “device condition 10” of the “use condition 10”, information indicating that there is no condition (“no condition”) is set. That is, UCPA can be selected only by a user who has a content usage point of the content provider 2-1 of 200 points or more.

In the case of UCPB, “usage condition 20” is set, and “user condition 20” of “usage condition 20” includes information (“200”) indicating that the condition is that the number of use points is less than 200 points. Less than point ") is set. Also, in “usage condition 20,” “device condition 2”
“0” is set to “no condition”. That is,
UCPB can be selected only by a user who has less than 200 points of content usage points of the content provider 2-1.

The “contents” includes “ID”, “format”,
Specific information corresponding to each item of “parameter” and “management movement permission information” is included. In “ID”, a predetermined ID assigned to the information set in “Usage Details” is set. In the “format”, information indicating a usage format of the content, such as reproduction or duplication, is set. In the “parameter”, predetermined information corresponding to the usage format set in the “format” is set.

In the “management movement permission information”, information (“permitted” or “impossible”) indicating whether management movement of the content is possible (permitted or not) is set. When the content is managed and moved, as shown in FIG. 13A, the content is moved to the management movement destination device while the content is held in the management movement source device. That is, the content is used in both the management transfer source device and the management transfer destination device. In this regard, FIG.
As shown in (1), this is different from normal movement in which the content is not held in the source device, the content is held only in the destination device, and the content is used only in the destination device.

While the content is being managed and moved, the management source device cannot manage and move the content to another device as shown in FIG. 13A. In other words, the content is held only in the management transfer source device and the management transfer destination device. In this regard, as shown in FIG. 14A, this is also different from the first generation copy in which a plurality of copies (first generation) can be created from the original content. In addition, since the content can be managed and moved to another device by returning the content from the management transfer source device, this point is different from the one-time duplication as shown in FIG. 14B.

Returning to FIG. 12A, the UCPA is provided with four “Usage contents 11” to “Usage contents 14”. In “Usage contents 11”, “ID 11” is
A predetermined ID assigned to “usage content 11” is set. In the “format 11”, information (“purchase reproduction”) indicating a use format for purchasing and reproducing the content is set, and in the “parameter 11”, predetermined information corresponding to “purchase reproduction” is set. . In the “management movement permission information 11”, information (“permitted”) indicating that the management movement of the content is possible is set.

In “Usage content 12”, the “ID1”
"2" is a predetermined ID assigned to "usage content 12"
Is set. In the “format 12”, information (“first generation copy”) indicating the usage format for performing the first generation copy is set. In the first generation copy, as shown in FIG. 14A, a plurality of first generation copies can be created from the original content. However, a second-generation copy cannot be created from a first-generation copy (not permitted). “Parameter 12” includes “1st generation copy”
Is set. In the “management movement permission information 12”, information (“impossible”) indicating that management movement is not possible is set.

In “Usage content 13”, “ID1”
"3" is a predetermined ID assigned to "usage content 13"
Is set. In the “format 13”, information (“period limited playback”) indicating a usage format to be reproduced only during a predetermined period (time) is set, and in the “parameter 13”, information corresponding to “period limited playback” is set. The start time (time) and the end time (time) of the period are set. In the “management movement permission information 13”, “impossible” is set.

In “Usage contents 14”, the “ID1”
"4" is a predetermined ID assigned to "usage content 14"
Is set. In the “format 14”, information (“Pay Per Copy 5”) indicating a usage format in which copying is performed five times (so-called coupon that can be copied five times) is set. In this case, as shown in FIG.
Duplicates cannot be created from duplicates (not permitted). In the “parameter 14”, information indicating that copying is possible five times (“5 times copying”) is set.
In the “management movement permission information 14”, “impossible” is set.

The UCPB of FIG. 12B is provided with two “usage contents 21” and “usage contents 22”.
In “Usage content 21”, a predetermined ID assigned to “Usage content 21” is set in “ID 21”. In the “format 21”, information (“Pay Per Play 4”) indicating a usage format for performing four times of reproduction is set, and in the “parameter 21”, information indicating that the reproduction is possible four times ”
“4 times of reproduction” is set.
“1” is set to “impossible”.

In “Usage content 22”, “ID2
"2" is a predetermined ID assigned to "usage content 22"
Is set. "Format 22" includes "Pay Per Copy
2 ”is set, and“ Replication 2 ”is set in“ Parameter 22 ”.
In the “management movement permission information 22”, “impossible” is set.

Here, comparing the contents of UCP A and UCP B, a user having a usage point of 200 points or more can select a usage content from four types of usage content 11 to usage content 14. It is assumed that a user having a usage point less than 200 points can select a usage content from only two usage details 21 and 22.

FIG. 12 schematically shows UCPA and UCPB.
0 ”and“ Usage conditions 20 ”of UCPB are shown in FIG.
In addition to the service code shown in FIG. 15 and the condition code shown in FIG. 15B, it is actually composed of a numerical value and a value code indicating a predetermined type corresponding to the service code.

FIG. 16A shows UCPA (FIG. 12A)
The code value of each code set as “user condition 10” and “device condition 10” of “usage condition 10” is shown. Since the “user condition 10” of the “use condition 10” of the UCPA is “200 points or more”, 80x meaning “there is a condition regarding the use point”
The service code of xh (FIG. 15A), the value code of 0000C8h indicating 200 at this time, and the condition code of 06h meaning “> = (or more)” (FIG. 15B) It is set as a condition.

The “equipment condition 10” of UCPA is “no condition”, which means “no condition” 000
0h service code, FFFFFFh value code which has no meaning at this time, and "unconditional"
Is set as a device condition.

FIG. 16B shows the “Usage condition 2” of UCPB.
The code value of each code set as “user condition 20” and “device condition 20” of “0” is shown.
"User condition 20" is "less than 200 points"
Therefore, a service code of 80xxh meaning “there is a condition with respect to a usage point” is a value code of 0000C8h indicating a numerical value of 200, and “<
A condition code of 03h meaning “smaller” is set as a user condition.

The “equipment condition 20” of UCPB is set to “no condition” and the same code value is set as in the “equipment condition 10” of UCPA, and the description thereof is omitted.

Returning to FIG. 11, the secure container creating unit 3
Reference numeral 8 denotes, for example, a content A (encrypted with a content key KcoA), a content key KcoA (encrypted with a delivery key Kd), UCP as shown in FIG.
Create a content provider secure container consisting of A, B, and a signature. The signature is the data to be transmitted (in this case, the content A (content key KcoA
), A content key KcoA (encrypted with the delivery key Kd), and a hash value obtained by applying a hash function to the entire UCP A, B are the private key of the public key encryption. (In this case, the content provider 2-
1 secret key Kscp).

The secure container creator 38 also attaches the certificate of the content provider 2-1 shown in FIG. This certificate contains the version number of the certificate, the serial number of the certificate assigned to the content provider 2-1 by the certificate authority, the algorithm and parameters used for signing, the name of the certificate authority, the expiration date of the certificate, and the content provider. 2-1, the public key Kpcp of the content provider 2-1, and its signature (encrypted with the private key Ksca of the certificate authority).

The signature is data for checking tampering and authenticating the creator. The signature is created by obtaining a hash value by a hash function based on the data to be transmitted and encrypting the hash value with a secret key of public key encryption. .

The hash function and signature verification will be described. The hash function is a function that receives predetermined data to be transmitted as input, compresses the data into data having a predetermined bit length, and outputs the data as a hash value. The hash function has difficulty in predicting an input from a hash value (output). When one bit of data input to the hash function changes, many bits of the hash value change, and the same hash value is obtained. It has the feature that it is difficult to find the input data that it has.

The recipient who has received the signature and the data decrypts the signature with the public key of the public key encryption, and as a result (hash value)
Get. Further, a hash value of the received data is calculated, and it is determined whether the calculated hash value is equal to a hash value obtained by decrypting the signature. If it is determined that the hash value of the transmitted data is equal to the decrypted hash value, the received data is not falsified,
It can be seen that the data is transmitted from the sender holding the secret key corresponding to the public key. As the signature hash function, MD4, MD5, SHA-1, or the like is used.

Next, public key encryption will be described. In contrast to a common key cryptosystem that uses the same key (common key) for encryption and decryption, the public key cryptosystem uses a different key for decryption and a key for decryption. When using public key cryptography,
One of the keys can be kept public while the other can be kept secret. A key that may be made public is called a public key, and a key that keeps the other secret is called a private key.

A typical RSA (Rivest-Sh) in public key cryptography
amir-Adleman) Briefly explain the encryption. First, two sufficiently large prime numbers p and q are obtained, and further, n which is a product of p and q is obtained. The least common multiple L of (p-1) and (q-1) is calculated, and a number e that is 3 or more and less than L and is relatively prime to L
(Ie, the number that can divide e and L in common is 1
Only).

Next, the multiplicative inverse d of e regarding the multiplication modulo L is determined. That is, ed = 1 between d, e, and L
mod L holds, and d can be calculated by Euclidean algorithm. At this time, n and e are public keys, and p, q, and d are
It is a secret key.

The ciphertext C is calculated from the plaintext M by the processing of equation (1).

C = M ^ e mod n (1) The ciphertext C is decrypted into a plaintext M by the processing of equation (2).

M = C ^ d mod n (2) Although the proof is omitted, the reason that the plaintext is converted into the ciphertext by the RSA cryptosystem and can be decrypted is based on Fermat's little theorem. This is because (3) holds.

M = C ^ d = (M ^ e) ^ d = M ^ (ed) = M mod n (3) If the secret keys p and q are known, the secret key d is calculated from the public key e. However, if the number of digits of the public key n is increased to such an extent that the factorization of the public key n is computationally difficult, the secret key d cannot be calculated from the public key e only by knowing the public key n. Can not. As described above, in the RSA encryption, the key used for encryption and the key used for decryption can be different keys.

Further, elliptic curve cryptography, which is another example of public key cryptography, will be briefly described. Elliptic curve y ^ 2 = x ^ 3 + ax
Let B be a point on + b. The addition of points on the elliptic curve is defined, and nB represents the result of adding B n times. Similarly, subtraction is defined. Calculating n from B and nB has proven to be difficult. Let B and nB be public keys and n be a secret key. Using the random number r, the ciphertexts C1 and C2 are calculated from the plaintext M using the public key by the processing of Expressions (4) and (5).

C1 = M + rnB (4) C2 = rB (5) The ciphertexts C1 and C2 are decrypted into plaintext M by the processing of equation (6).

M = C1-nC2 (6) Only those having the secret key n can be decrypted. As described above, similarly to the RSA encryption, in the elliptic curve encryption, a key used for encryption and a key for decryption can be different keys.

Returning to FIG. 11, the mutual authentication unit 39 of the content provider 2-1 performs mutual authentication with the EMD service center 1 before receiving the supply of the delivery key Kd from the EMD service center 1. Further, the mutual authentication unit 39 can also perform mutual authentication with the service provider 3 before transmitting the content provider secure container to the service provider 3, but in this case, the content provider secure container must keep secret. This cross-certification is not necessarily required because it does not contain any information that must be included.

[0102] The content provider 2-2 has the same basic configuration as the content provider 2-1, so that illustration and description thereof are omitted.

Next, the functional configuration of the service provider 3-1 will be described with reference to the block diagram of FIG. The content server 41 includes a content (encrypted with the content key Kco), a content key Kco (encrypted with the delivery key Kd), and a UCP included in the content provider secure container supplied from the content provider 2. , And the signature of the content provider 2 and supply them to the secure container creation unit 44.

The pricing section 42 is a content provider 2
The validity of the content provider secure container is verified on the basis of the signature included in the content provider secure container supplied from the company. In this case, the certificate of the content provider 2 is verified. A public key is obtained. Then, based on the obtained public key, the validity of the content provider secure container is verified.

When the validity of the content provider secure container is confirmed, the pricing unit 42 sets the PT corresponding to the UCP included in the content provider secure container.
Is generated and supplied to the secure container generating unit 44. FIG. 20 is a diagram corresponding to the UCPA of FIG.
Two PTA-1 (FIG. 20 (A)) and PTA-2 (FIG. 2)
0 (B)). The PT states, "Content I
D "," Content Information "," Content Provider I "
D "," UCP ID "," Service Provider ID "," PT
The information includes predetermined information corresponding to each item of “ID”, “expiration date of PT”, “price condition”, and “price content”.

The PT “content ID”, “content information”, “content provider ID”, and “UCP
In “ID”, information on items corresponding to UCP is set. That is, the “content ID” of each of the PTA-1 and PTA-2 contains the ID of the content A, and the “content information” contains the content information of the content A.
In “D”, the ID of the content provider 2-1 is set, and in each “UCP ID”, the ID of UCPA is set.

In the “service provider ID”, the ID of the service provider 3 that provides the PT is set. PTA-
1 and PTA-2 "Service Provider ID"
The ID of the service provider 3-1 is set. "PT
In the “ID”, a predetermined ID assigned to each PT is set. In the “PT ID” of PTA-1, the ID of PTA-1 is
In the “PT ID” of “−2”, the ID of PTA-2 is set. In the “expiration date of PT”, information indicating the expiration date of the PT is set. PTA-1 “PT expiration date”
The expiration date of PTA-1 is set in the "expiration date of PT" of PTA-2.

In the “price condition”, similar to the “use condition” of the UCP, predetermined information corresponding to each item of “user condition” and “device condition” is set. In the "price condition", information indicating the condition of the user who can select this PT is set in the "user condition", and in the "device condition", the condition of the device that can select this PT is set. The indicated information is set.

In the case of PTA-1, “price condition 10” is set, and information indicating that the user is male (“male”) is set in “user condition 10” of “price condition 10”.
In the “device condition 10”, “no condition” is set. That is, only the male user can select PTA-1.

The “user condition 10” and the “equipment condition 10” of the “price condition 10” of the PTA-1 are also actually shown in FIG.
As shown in (A), code values of various codes are set. In the “user condition 10” of the “price condition 10”, a service code of 01xxh (FIG. 15A) meaning “sex condition exists” is set to “0” meaning male at this time.
A value code of 00000h and a condition code of 01h (FIG. 15B) meaning "=" are set. "Condition 10" is "No condition"
Is the service code of 0000h, meaning that the value code of FFFFFFh, which has no meaning in this case, is
Then, a condition code of 00h meaning "unconditional" is set.

In the case of PTA-2, "price condition 20" is set, and "user condition 20" of "price condition 20" is set with information indicating that the user is a woman ("female"). In the “device condition 20”, “no condition” is set. That is, only the female user can select PTA-2.

The “user condition 20” and the “equipment condition 20” of the “price condition 20” of the PTA-2 are also actually shown in FIG.
As shown in (B), the code value of each code is set. "User condition 20" of "price condition 20" includes "
A service code of 01xxh (FIG. 15 (A)) meaning "sex condition exists" indicates a female in this case, 000001.
h value code and 01h meaning "="
(FIG. 15B) is set. In the "device condition 20", a service code of 0000h meaning "no condition", a value code of FFFFFFh having no meaning in this case, and a condition code of 00h meaning "unconditional" are set. ing.

Returning to FIG. 20, the “price content” of the PT indicates a usage fee when the content is used in the usage format set in the “format” of the “utilization content” of the corresponding UCP. ing. That is, "Price 11" of PTA-1
"2000 yen" set in "Price content 21" of PTA-2 and "1000 yen" set in "UCPA" (FIG. 1)
2 (A)), the “format 11” of the “contents 11” is “purchase playback”, and thus the purchase price (charge) of the content A is shown.

"600" of "Price content 12" of PTA-1
Yen ”and“ 300 yen ”of“ Price content 22 ”of PTA-2
Indicates the fee for using the content A in the first generation copy usage format from the “format 12” of the “usage content 12” of UCPA. "1" of "Price content 13" of PTA-1
00 yen ”and PTA-2“ Price 23 ”“ 50 ”
“Yen” indicates the fee for using the content A in the usage format of the time-limited playback from the “format 13” of the “usage content 13” of UCPA. PTA-1 "Price 14"
"300 yen" and PTA-2 "Price 24"
"150 yen" is "Format 1" of "Usage Content 14" of UCPA
"4" indicates a fee when the content A is used in a usage format in which copying is performed five times.

In the case of this example, comparing the price content of PTA-1 (applied to male users) with the price content of PTA-2 (applied to female users), Is set to twice the price shown in the price content of PTA-2. For example, "Price content 11" of PTA-1 corresponding to "Usage content 11" of UCPA
Is "2000 yen", but also UCPA
"Pricing content 2" of PTA-2 corresponding to "Usage content 11"
“1” is “1000 yen”. Similarly, the price set in “Price contents 12” to “Price contents 14” of PTA-1 is twice the price set in “Price contents 22” to “Price contents 24” of PTA-2. Have been. That is, the content A is content that can be used by female users at a lower price.

FIG. 22 shows two PTB-1 and PTB-2 created corresponding to the UCPB of FIG. 12 (B). In the PTB-1 of FIG.
D, content information of content A, ID of content provider 2-1, ID of UCPB, service provider 3
1, the ID of PTB-1, the expiration date of PTB-1, the price condition 30, the two kinds of price contents 31, 32, etc. are included.

“No condition” is set in “User condition 30” of “Price condition 30” of PTB-1, and “Device condition 3” is set.
In “0”, information indicating that the device is a slave device (“slave device”) is set. That is, PTB-1 can be selected only when the content A is used in the slave device.

The “user condition 30” and the “equipment condition 30” of the “price condition 30” of the PTB-1 are actually shown in FIG.
As shown in (A), the code value of each code is set. The “user condition 30” includes a service code of 0000h meaning “no condition” (FIG. 15A), a value code of FFFFFFh meaningless in this case, and 00h meaning “unconditional”. (FIG. 15B) is set. Since the “device condition 30” is “slave device”, a service code of 00xxh meaning “there is a condition with respect to the device”, a value code of 000064h indicating “numerical value 100” at this time, and “<( Condition code of 03h meaning "small)" is set. In the case of this example, since a device number smaller than 100 is set for the slave device, such a code value is set.

"Price contents 31" of PTB-1 "100"
Since “format 21” of “usage content 21” of UCPB (FIG. 12B) is “Pay Per Play 4”,
Indicates the charge for performing the reproduction four times, "Price content 32"
“300 yen” indicates the fee for performing two copies since “Format 22” of “Usage content 22” of UCPB is “Pay Per Copy2”.

The other PTB-2 of FIG. 22B created in correspondence with UCPB includes the ID of the content A, the content information of the content A, and the content provider 2-
1, ID of UCPB, expiration date of UCPB, ID of service provider 3-1, ID of PTB-2, expiration date of PTB-2,
A price condition 40 and two kinds of price contents 41 and 42 are included.

“No condition” is set in “user condition 40” of “price condition 40” of PTB-2, and information (condition) that the device is the main device is set in “device condition 40”. "Main device") is set. That is, PTB-2
Can be selected only when the content is used in the main device.

The “user condition 40” and the “device condition 40” of the “price condition 40” of the PTB-2 are actually shown in FIG.
As shown in (B), the code value of each code is set. “User condition 40” of “price condition 40” includes “
The service code of 0000h (FIG. 15A) meaning "no condition" has no meaning in this case.
A value code of FFh and a condition code (15 (B)) of 00h meaning "unconditional" are set. The “device condition 40” includes a service code of 00xxh meaning “there is a condition with respect to the device”, a value code of 000064h indicating “100”, and a value of 06h indicating “=> (or more)”. Condition code is set.

The prices indicated in the “price contents 41” and “price contents 42” of the PTB-2 are the “form 21” of the “usage contents 21” and the “form 22” of the “usage contents 22” of UCPB. The fee for using the content A in the usage format indicated in each of them is shown.

Here, PTB-1 (applied to slave equipment)
Comparing the price content of PTB-1 and the price content of PTB-2 (applied to the main device), the price content of PTB-1 is set to be twice that of PTB-2. For example, the “price content 31” of PTB-1 is “100 yen”, the “price content 41” of PTB-2 is 50 yen, and the “price content 32” is “300 yen”. "Price content 42" is "150 yen".

Returning to FIG. 19, the policy storage unit 43 stores the content UC supplied from the content provider 2.
P is stored and supplied to the secure container creation unit 44.

For example, the secure container creation unit 44
As shown in FIG. 24, content A (content key Kc
oA), content key KcoA (encrypted with delivery key Kd), UCP A, B, signature of content provider 2, PTA-1, A-2, B-1,
A service provider secure container including B-2 and the signature of the service provider 3 is created.

The secure container creation unit 44 also stores the created service provider secure container in the certificate version number, the serial number of the certificate assigned to the service provider 3-1 by the certificate authority, and the signature as shown in FIG. Algorithm and parameters used, name of certificate authority, expiration date of certificate, service provider 3
1, the public key Kps of the service provider 3-1
p and a service provider certificate composed of a signature, and supplies the certificate to the user home network 5.

Referring back to FIG. 19, the mutual authentication unit 45 returns
Prior to receiving the supply of the content provider secure container from the content provider 2, mutual authentication with the content provider 2 is performed. The mutual authentication unit 45 also performs mutual authentication with the user home network 5 before transmitting the service provider secure container to the user home network 5. The mutual authentication between the service provider 3 and the user home network 5 is performed by, for example, the network 4. Is not implemented if is a satellite communication. In this case, the content provider secure container and the service provider secure container include:
In particular, since no secret information is included, the service provider 3 does not need to perform mutual authentication with the content provider 2 and the user home network 5.

The configuration of the service provider 3-2 is basically the same as the configuration of the service provider 3-1; therefore, its illustration and description are omitted.

Next, an example of the configuration of the receiver 51 constituting the user home network 5 will be described with reference to the block diagram of FIG. The receiver 51 includes a communication unit 61 and a SAM 6
2. External storage unit 63, decompression unit 64, communication unit 65, interface 66, display control unit 67, and input control unit 68
It is composed of The communication unit 61 communicates with the service provider 3 or the EMD service center 1 via the network 4, and receives or transmits predetermined information.

The SAM 62 includes a mutual authentication module 71, a billing module 72, a storage module 73, a decryption / encryption module 74, and a data inspection module 75.
It consists of a single-chip cryptographic processing IC, has a multi-layer structure, its memory cells are sandwiched between dummy layers such as aluminum layers, and the operating voltage or frequency width is narrow. It has a characteristic (tamper resistance) that makes it difficult to read data illegally from the outside.

The mutual authentication module 71 of the SAM 62 stores the SAM 62 shown in FIG.
The certificate of 62 is transmitted to the mutual authentication partner, and mutual authentication is performed, whereby the temporary key Ktemp (session key) shared with the authentication partner is supplied to the decryption / encryption module 74. The SAM certificate includes information corresponding to the information included in the certificate of the content provider 2-1 (FIG. 18) and the certificate of the service provider 3-1 (FIG. 25). Description is omitted.

[0133] The billing processing module 72 selects the selected UC.
Create UCS and billing information based on the usage of P. FIG. 28 is a diagram showing the usage content 11 of UCPA shown in FIG. 12A and the price content 11 of PTA-1 shown in FIG.
Represents the UCSA created based on the. As shown in FIG. 28, the UCS includes “content ID”, “content information”, “content provider ID”, and “UCP I
D "," UCP expiration date "," Service Provider I "
D "," PT ID "," PT expiration date "," UCS ID "
Predetermined information corresponding to each item of “SAM ID”, “user ID”, “use content”, and “use history” is set.

The “content ID”, “content information”, “content provider ID”, and “UCP I”
D "," UCP expiration date "," Service Provider I "
In each of the items "D", "PT ID", and "expiration date of PT", information of items corresponding to the PT is set.
That is, in the UCSA of FIG. 28, the “content ID” indicates the content A ID, the “content information” indicates the content A content information, and the “content provider ID” indicates the content provider 2-1. ID is
"UCP ID" is the UCPA ID, "UCP Expiration Date" is the UCPA expiration date, "Service Provider ID"
Is the ID of the service provider 3-1, the ID of the PT is the ID of the PTA-1, and the "expiration date of the PT" is the PT.
The expiration date of A-1 is set respectively.

A predetermined ID assigned to the UCS is set in the “UCS ID”, and the UCSA ID is set in the “UCS ID” of the UCSA.
D is set. "SAM ID" is the SAM ID of the device
Is set, and the “SAM ID” of UCSA is
The ID of the SAM 62 is set. "User ID"
The ID of the user who uses the content is set, and the ID of the user F is set in the “user ID” of UCSA.

[0136] The "usage content" is composed of items of "ID", "format", "parameter", and "management movement status information", and among them, "ID", "format", and "parameter" Is set with information on items corresponding to the “usage contents” of the selected UCP. That is, UC
In the “ID” of the SA, “ID1” of “Usage Details 11” of UCPA
The information (ID of usage content 11) set to "1" is
In “Format”, “Purchase Playback” set in “Format 11” of “Usage Contents 11”, and in “Parameter”,
Information (information corresponding to “purchase / reproduction”) set in “parameter 11” of “usage content 11” is set.

In the “management transfer status information” of the “usage contents”, if “permitted” is set in the “management transfer permission information” of the selected UCP (when the management transfer can be performed), the management transfer source The respective IDs of the device (the device from which the content was purchased) and the device at the management transfer destination are set. Note that, in a state where the management transfer of the content is not performed, the ID of the management transfer source device is set as the ID of the management transfer destination device. On the other hand, when "impossible" is set in "management movement permission information" of UCP, "impossible" is set in "management movement state information". That is, in this case, the management movement of the content is not performed (not permitted). In the “management transfer status information” of UCSA, “OK” is added to “management transfer permission information 11” of “use content 11” of UCPA.
Is set, and since the content A is not managed and moved, the ID of the SAM 62 is set as the ID of the management moving source device and the ID of the management moving destination device.

[0138] "Usage history" includes a history of the use format for the same content. In the “usage history” of UCSA, only information indicating “purchase playback” is stored. For example, when the content A has been used before in the receiver 51, information indicating the usage format at that time is also included. It is remembered.

In the above-described UCS, “UCP expiration date” and “PT expiration date” are provided, but they may not be set in the UCS. In the above-mentioned UCS, "Content provider I
Although "D" is provided, if the ID of the UCP is unique and the content provider can be specified by this, it is also possible not to provide it. Similarly, in the case of the “service provider ID”, if the PT ID is unique and the service provider can be specified by this, it is possible not to provide the service provider.

The generated UCS is decoded / received by the receiver 51.
The content key Kco (encrypted with the storage key Ksave) supplied from the decryption unit 91 of the encryption module 74 is transmitted to the external storage unit 63, and is stored in the usage information storage unit 63A. External storage unit 63
The usage information storage unit 63A is divided into M blocks BP-1 to BP-M as shown in FIG.
Each block BP is divided into N use information memory areas RP-1 to RP-N. The content key Kco (encrypted with the storage key Ksave) and UCS supplied from the SAM 62 are:
It is stored correspondingly in the usage information memory area RP of the predetermined block BP of the usage information storage unit 63A.

In the example of FIG. 29, the UCSA shown in FIG. 28 is stored in the usage information memory area RP-3 of the block BP-1.
Content key KcoA for decrypting content A
(Encrypted with the storage key Ksave) is stored correspondingly. Another content key Kco is stored in the usage information memory areas RP-1 and RP-2 of the block BP-1.
1 and Kco2 (encrypted with the storage key Ksave) and UCS1 and UCS2, respectively. Usage information memory area RP-4 of block BP-1
(Not shown) through RP-N and blocks BP-2 (not shown) through BP-M include content keys Kco and U
CS is not stored, and predetermined initial information indicating that it is free is stored. Note that the content key Kco (storage key Ksa) stored in the usage information memory area RP
(encrypted with ve) and UCS are collectively referred to as usage information unless it is necessary to distinguish them individually.

FIG. 30 shows the billing information A created at the same time as the UCSA shown in FIG. The billing information is shown in FIG.
0, "content ID", "content provider ID", "UCP ID", "UCP expiration date", "service provider ID", "PT ID", "PT
Expiration date ”,“ UCS ID ”,“ SAM ID ”,“ User ID ”
Predetermined information and the like corresponding to the items of “ID”, “usage content”, and “billing history” are set.

In the billing information, “content ID”, “content provider ID”, “UCP ID”, “UCP expiration date”, “service provider ID”, “PT ID”, “PT
Expiration date ”,“ UCS ID ”,“ SAM ID ”,“ User ID ”
In the “ID” and “Usage Details”, information of items corresponding to the UCS are set, respectively. That is, the “content ID” of the billing information A in FIG.
The content A ID is “content provider ID” and the content provider 2-1 ID is “UCP ID”.
Is the UCPA ID, the “UCP expiration date” is the UCPA expiration date, the “service provider ID” is the service provider 3-1 ID, and the “PT ID” is the PTA ID. -1
ID of “PT expiration date” is the expiration date of PTA-1, “UCS ID” is the ID of UCSA, “SAM ID” is the ID of SAM62, “user ID”. ID ”contains the I of user F
D and "Usage Content" include "Usage Content 1" of UCSA
1 "is set.

In the “charging history” of the charging information, information indicating the total amount of the charging calculated in the device is set. In the “charging history” of the charging information A, the total amount of the charging calculated in the receiver 51 is set.

[0145] In the charging information described above, "UC
Although the “expiration date of P” and “expiration date of PT” are provided, they may not be set in the billing information. In the billing information described above, the "content provider ID" is provided, but if the UCP ID is unique and this allows the content provider to be specified, do not provide it. Can also. Similarly, "Service Provider ID"
If the PT's ID is unique and can identify the service provider, it can be omitted.

Returning to FIG. 26, in the storage module 73,
As shown in FIG. 31, the public key Kpu of the SAM 62 and the SAM 62
Private key Ksu and public key Kpe of EMD service center 1
sc, the public key of the certificate authority Kpca, the storage key Ksave,
Various keys such as a delivery key Kd for March, a certificate of the SAM 62 (FIG. 27), charging information (for example, charging information A in FIG. 30), reference information 51, and M inspection values HP-1 to HP. -M and the like are stored.

FIG. 32 shows the reference information 51 stored in the storage module 73. Reference information includes “SA
Predetermined information set for each item of "M ID", "equipment number", "payment ID", "charging upper limit", "payment user information", "subordinate user information", and "use point information" And so on.

The reference information “SAM ID”, “equipment number”, “payment ID”, “payment user information”, “subordinate user information”, and “use point information” include the user of the EMD service center 1. The information of the corresponding items of the system registration information (FIG. 9) managed by the management unit 18 is set. That is, the reference information 51 includes the ID of the SAM 62 and the SAM 6
2, device number (100), payment ID of user F, payment user information of user F (general information of user F (name, address, telephone number, payment institution information, date of birth, age, gender), user F ID and password of user F),
And use point information (the same information as that shown in FIG. 10) shown in FIG. 33 is set.

[0149] In the "upper limit of charging", different upper limits of charging are set in a state where the device is formally registered in the EMD system and a state in which the device is temporarily registered. Since the receiver 51 is formally registered, the information indicating the maximum charge amount in the state where the receiver 51 is formally registered (“the maximum amount at the time of formal registration”) is set in “upper limit of charge” of the reference information 51. ing. Note that the upper limit of charging in the state of formal registration is larger than the upper limit of charging in the state of provisional registration.

Next, stored in the storage module 73,
The M inspection values HP-1 to HP-M shown in FIG. 31 will be described. The inspection value HP-1 is a hash value calculated by applying a hash function to the entire data stored in the block BP-1 of the usage information storage unit 63A of the external storage unit 63. The test values HP-2 to HP-M are also the hash values of the data stored in the corresponding blocks BP-2 to BP-M in the external storage unit 63, similarly to the test value HP-1.

Returning to FIG. 26, the decryption / encryption module 74 of the SAM 62 comprises a decryption unit 91, a random number generation unit 92, and an encryption unit 93. The decryption unit 91 decrypts the encrypted content key Kco with the delivery key Kd, and outputs the decrypted content key Kco to the encryption unit 93.
The random number generation unit 92 generates a random number of a predetermined number of digits as necessary (for example, at the time of mutual authentication), and stores the temporary key Kte
mp is generated and output to the encryption unit 93.

The encryption unit 93 encrypts the decrypted content key Kco again with the storage key Ksave held in the storage module 73. The encrypted content key Kco is supplied to the external storage unit 63.
The encryption unit 93 transmits the content key Kco to the decompression unit 6.
4, the content key Kco is encrypted with the temporary key Ktemp generated by the random number generation unit 92.

The data inspection module 75 stores the inspection value HP stored in the storage module 73 and the external storage unit 6
Then, the hash value of the data of the corresponding block BP in the usage information storage unit 63A of No. 3 is compared to check whether the data of the block BP has been tampered with. The data inspection module 75 also recalculates the inspection value HP and stores (updates) it in the storage module 73 when the purchase, use, management transfer, and the like of the content are performed.

The decompression unit 64 is provided for the mutual authentication module 10
1, a decoding module 102, a decoding module 103, a decompression module 104, and a watermark adding module 105. Mutual authentication module 101
Mutually authenticates with the SAM 62 and outputs the temporary key Ktemp to the decryption module 102. The decryption module 102
The content key Kco encrypted with the temporary key Ktemp is decrypted with the temporary key Ktemp and output to the decryption module 103. The decryption module 103 decrypts the content recorded on the HDD 52 with the content key Kco, and outputs the decrypted content to the decompression module 104. The decompression module 104 further decompresses the decrypted content by a method such as ATRAC2,
Output to the watermark adding module 105. The watermark adding module 105 includes information for specifying the receiver 51 in the content (for example, the I of the SAM 62).
The watermark (digital watermark) of D) is inserted and output to a speaker (not shown) to reproduce music.

The communication section 65 performs communication processing with the receiver 201 of the user home network 5. The interface 66 changes the signal from the SAM 62 and the decompression unit 64 into a predetermined format and outputs the signal to the HDD 52, and changes the signal from the HDD 52 into a predetermined format and outputs the signal to the SAM 62 and the decompression unit 64.

The display control section 67 controls output to a display section (not shown). The input control unit 68 controls input from an operation unit (not shown) including various buttons and the like.

The HDD 52 stores a registration list as shown in FIG. 34, in addition to the content, UCP, and PT supplied from the service provider 3. The registration list includes a list section in which information is stored in a table format, and a target SAM information section in which predetermined information on a device holding the registration list is stored.

The target SAM information section contains the SAMID of the device holding the registration list, in this case, the SAM ID of the receiver 51.
62 are stored (in the “target SAMID” column).
The target SAM information section also stores the expiration date of this registration list (in the “expiration date” column), the version number of the registration list (in the “version number” column), and is connected. The number of devices (including itself). In this example, since no other device is connected to the receiver 51, a value of 1 including itself is set in the “number of connected devices” column. It is remembered.

The list section includes “SAMID”, “user ID”,
"Purchase processing", "Billing processing", "Billing equipment", "Content supply equipment", "Status flag", "Registration condition signature",
And 9 items of "Registration list signature",
In the case of this example, predetermined information is stored in each item as a registration condition of the receiver 51.

In the “SAMID”, the ID of the SAM of the device is stored. In the case of this example, the ID of the SAM 62 of the receiver 51 is stored. The “user ID” stores the ID of the user of the corresponding device. In the case of this example, the ID of the user F is stored.

[0161] The "purchase process" includes information indicating whether or not the corresponding device can perform a process for purchasing a content (specifically, a license condition or a content key Kco). "OK" or "NO" is stored. In the case of this example, “acceptable” is stored because the receiver 51 can perform processing for purchasing the content.

In the “charging process”, the corresponding device is an EMD
Information ("permitted" or "impossible") indicating whether or not a process for settling charges can be performed with the service center 1 is stored. In this example, the receiver 51
Since the user F is registered as a settlement user, it is possible to perform a process for settlement of billing. Therefore, “acceptable” stores “OK”.

The “charging device” is the ID of the SAM of the device that performs the charging process for the charging accounted for the corresponding device.
Is stored. In this example, the receiver 51 (SAM6
2) Because you can settle your own bill,
The ID of the SAM 62 is stored.

In the “content supply device”, when the corresponding device receives the supply of the content not from the service provider 3 but from another connected device, the ID of the SAM of the device that can supply the content is displayed. It is memorized. In this example, since the receiver 51 receives the supply of the content from the service provider 3, information ("none") indicating that there is no device that supplies the content is stored.

The "status flag" stores the operation restriction condition of the corresponding device. If there are no restrictions,
Information indicating that (“no restrictions”), information indicating that certain restrictions are imposed (“restricted”), and information indicating that the operation is stopped (“restrictions”) "Stop" is stored. Further, for example, when the settlement is not successful, or when the credit processing for formal registration is not completed (temporary registration), the “status flag” corresponding to the device includes “restriction”. "Yes" is set. In the case of this example, in a device in which “restricted” is set in the “status flag”, processing for using already purchased content is executed, but processing for purchasing new content is not executed. . That is, certain restrictions are placed on the device. Further, when a violation such as illegal duplication of content is detected, “stop” is set in the “status flag”, and the operation of the device is stopped. This allows the device to receive services from the EMD system,
You will not be able to receive it at all.

In the case of this example, for the receiver 51,
No restrictions are imposed, and the "status flag"
Is set to "none".

The “registration condition signature” includes, as registration conditions,
"SAMID", "User ID", "Purchase process",
A signature by the EMD service center 1 for information stored in the “charging process”, the “charging device”, the “content supply device”, and the “status flag” is stored. In the case of this example, a signature for the registration condition of the receiver 51 is stored. In "Registration list signature", a signature for the entire data set in the registration list is set.

FIG. 35 shows a configuration example of the receiver 201. The communication unit 211 to the input control unit 218 of the receiver 201 are the communication unit 61 to the input control unit 6 of the receiver 51.
8 has the same function as that of FIG.

The storage module 223 of the SAM 212 has
At this point, as shown in FIG. 36, the public key Kpu of the SAM 212, the secret key Ksu of the SAM 212, the public key Kpesc of the EMD service center 1, and the public key Kpc of the certificate authority.
a, the storage key Ksave, the certificate of the SAM 212 previously distributed from the certificate authority, and the SAM 212 as shown in FIG.
Reference information 201 in which the ID 212 and the device number (No. 100) of the receiver 201 are set is stored. In FIG. 36, the delivery key Kd indicated with a shadow is shown.
Is not stored at this time.

[0170] The HDD 202 has the same function as the HDD 52, and a description thereof will be omitted.

Next, the processing of the EMD system will be described with reference to FIG.
8 will be described with reference to the flowchart of FIG.
The case where the content A held in the content provider 2-1 is supplied to the receiver 51 of the user home network 5 via the service provider 3-1 and used is described as an example.

In step S11, the delivery key Kd
From the EMD service center 1 to the content provider 2
-1 is performed. For more information on this process,
This is shown in the flowchart of FIG. That is, in step S31, the mutual authentication unit 17 (FIG. 3) of the EMD service center 1 mutually authenticates with the mutual authentication unit 39 (FIG. 11) of the content provider 2-1. Is confirmed, the content provider management unit 12 of the EMD service center 1 sends the delivery key Kd supplied from the key server 14.
To the content provider 2-1. The details of the mutual authentication process will be described later with reference to FIGS.

Next, in step S32, the encryption unit 36 of the content provider 2-1 receives the delivery key Kd transmitted from the EMD service center 1, and stores it in step S33.

As described above, the content provider 2-1
When the encryption unit 36 stores the distribution key Kd, the process ends and the process proceeds to step S12 in FIG. Here, before describing the processing after step S12, the mutual authentication processing (processing for confirming that there is no spoofing) in step S31 in FIG. 39 when one common key is used (FIG. 40) A case where a key is used (FIG. 41) and a case where public key encryption is used (FIG. 42) will be described as examples.

FIG. 40 is a flowchart for explaining the mutual authentication operation between the mutual authentication unit 39 of the content provider 2 and the mutual authentication unit 17 of the EMD service center 1 using DES which is a common key encryption with one common key. It is. In step S41, the mutual authentication unit 39 of the content provider 2 generates a 64-bit random number R1 (may be generated by the random number generation unit 35). Step S42
, The mutual authentication unit 39 of the content provider 2
Encrypts the random number R1 with the common key Kc stored in advance using DES (or may be encrypted by the encryption unit 36). In step S43, the mutual authentication unit 39 of the content provider 2 sends the encrypted random number R1
It is transmitted to the mutual authentication unit 17 of the EMD service center 1.

At step S44, the mutual authentication unit 17 of the EMD service center 1 decrypts the received random number R1 with the common key Kc stored in advance. In step S45, the mutual authentication unit 17 of the EMD service center 1
A bit random number R2 is generated. In step S46, the mutual authentication unit 17 of the EMD service center 1 replaces the lower 32 bits of the decrypted 64-bit random number R1 with the random number R2, and generates a concatenation R1 _H ‖R2. Here, Ri _H represents the upper bits of Ri, and A‖B represents A and B
(M-bit B is combined with n-bit A lower to form (n + m) bits). Step S
At 47, the mutual authentication unit 17 of the EMD service center 1
Encrypts R1 _H ‖R2 with the common key Kc using DES. In step S48, the mutual authentication unit 17 of the EMD service center 1 transmits the encrypted R1 _H ‖R2 to the content provider 2.

In step S49, the mutual authentication section 39 of the content provider 2 decrypts the received R1 _H ‖R2 with the common key Kc. In step S50, the mutual authentication unit 39 of the content provider 2 sends the decrypted R1
The upper 32 bits R1 _H of _H HR2 are checked, and step S41 is executed.
In generated, if consistent with the upper 32 bits R1 _H of the random number R1, to authenticate that the EMD service center 1 is legitimate center. A random number R1 _H which generated, when the received R1 _H do not match, the process is terminated. When they match, in step S51, the content provider 2
Generates a 32-bit random number R3. In step S52, the content provider 2
The mutual authentication unit 39 sets the received and decrypted 32-bit random number R2 in the upper position, sets the generated random number R3 in the lower position, and makes the connection R2‖R3. In step S53, the mutual authentication unit 39 of the content provider 2
And the concatenation R2‖R3 is encrypted with the common key Kc. In step S54, the mutual authentication unit 39 of the content provider 2 transmits the encrypted connection R2ＲR3 to the mutual authentication unit 17 of the EMD service center 1.

In step S55, the mutual authentication unit 17 of the EMD service center 1 decrypts the received connection R2ＲR3 with the common key Kc. In step S56, the mutual authentication unit 17 of the EMD service center 1 sends the decrypted connection R2
上位 Check the upper 32 bits of R3, and if they match the random number R2, authenticate the content provider 2 as a legitimate provider; otherwise, terminate the process as an invalid provider.

FIG. 41 shows two common keys Kc1 and Kc2.
FIG. 9 is a flowchart for explaining the operation of mutual authentication between the mutual authentication unit 39 of the content provider 2 and the mutual authentication unit 17 of the EMD service center 1 using DES which is a common key encryption. In step S61, the mutual authentication unit 39 of the content provider 2 generates a 64-bit random number R1. In step S62, the mutual authentication unit 39 of the content provider 2 uses DES to encrypt the random number R1 with the previously stored common key Kc1. Step S6
3, the mutual authentication unit 39 of the content provider 2
Transmits the encrypted random number R1 to the EMD service center 1.

In step S64, the mutual authentication unit 17 of the EMD service center 1 decrypts the received random number R1 with the common key Kc1 stored in advance. In step S65, the mutual authentication unit 17 of the EMD service center 1 encrypts the random number R1 with the common key Kc2 stored in advance.
In step S66, the mutual authentication unit 17 of the EMD service center 1 generates a 64-bit random number R2. In step S67, the mutual authentication unit 17 of the EMD service center 1 encrypts the random number R2 with the common key Kc2. In step S68, the mutual authentication unit 17 of the EMD service center 1 transmits the encrypted random numbers R1 and R2 to the mutual authentication unit 39 of the content provider 2.

In step S69, the mutual authentication section 39 of the content provider 2 decrypts the received random number R1 and random number R2 with the previously stored common key Kc2.
In step S70, the mutual authentication unit 39 of the content provider 2 checks the decrypted random number R1,
If the random number R1 matches the random number R1 generated before (the random number R1 before encryption), the EMD service center 1 is authenticated as a proper center, and if not, the process is terminated as an unauthorized center. In step S71, the mutual authentication unit 39 of the content provider 2 encrypts the decrypted random number R2 with the common key Kc1. In step S72, the mutual authentication unit 39 of the content provider 2
The encrypted random number R2 is transmitted to the EMD service center 1.

At step S73, the mutual authentication unit 17 of the EMD service center 1 decrypts the received random number R2 with the common key Kc1. In step S74, the mutual authentication unit 17 of the EMD service center 1 checks the decrypted random number R2
If the content provider 2 matches the random number R2 (the random number R2 before encryption) generated in step S66, the content provider 2 is authenticated as a proper provider, and if not, the process is terminated as an invalid provider.

FIG. 42 shows a content provider 2 using a 160-bit length elliptic curve cryptosystem which is a public key cryptosystem.
5 is a flowchart for explaining the operation of mutual authentication between the mutual authentication unit 39 of the EMD service center 1 and the mutual authentication unit 17 of the EMD service center 1. In step S81, the content provider 2
Generates a 64-bit random number R1. In step S82, the content provider 2
The mutual authentication unit 39 transmits a certificate including its own public key Kpcp (obtained in advance from a certificate authority) and a random number R1 to the mutual authentication unit 17 of the EMD service center 1.

In step S83, the mutual authentication unit 17 of the EMD service center 1 discloses the signature of the received certificate (encrypted with the secret key Ksca of the certificate authority) to the public of the certificate authority obtained in advance. The content is decrypted with the key Kpca, the public key Kpcp of the content provider 2 and the hash value of the name of the content provider 2 are extracted, and the public key Kpcp of the content provider 2 and the name of the content provider 2 stored in plain text in the certificate are obtained. Take out. If the certificate is a proper one issued by the certificate authority, the signature of the certificate can be decrypted, and the public key Kpcp and the hash value of the name of the content provider 2 obtained by the decryption are decrypted in plain text. It matches the hash value obtained by applying the hash function to the public key Kpcp of the content provider 2 and the name of the content provider 2 stored in the certificate as they are. Thereby, it is authenticated that the public key Kpcp is not a falsified one but an appropriate one. If the signature cannot be decrypted, or if the hash values do not match, it is not a proper public key or a proper provider. At this time, the process ends.

When an appropriate authentication result is obtained, in step S84, the mutual authentication unit 1 of the EMD service center 1
7 generates a 64-bit random number R2. Step S8
5, the mutual authentication unit 17 of the EMD service center 1
Generates a concatenation R1‖R2 of the random number R1 and the random number R2. In step S86, the mutual authentication unit 17 of the EMD service center 1 encrypts the connection R1‖R2 with its own secret key Ksesc. In step S87, EM
D The mutual authentication unit 17 of the service center 1 determines that the connection R1 @ R
2 is encrypted with the public key Kpcp of the content provider 2 acquired in step S83. In step S88, the mutual authentication unit 17 of the EMD service center 1 checks the connection R1‖R2 and the public key K encrypted with the secret key Ksesc.
The connection (R1‖R2) encrypted by pcp and a certificate (a certificate obtained in advance from a certificate authority) including its own public key Kpesc are transmitted to the mutual authentication unit 39 of the content provider 2.

In step S89, the mutual authentication section 39 of the content provider 2 decrypts the signature of the received certificate with the public key Kpca of the certificate authority obtained in advance,
If it is correct, the public key Kpesc is extracted from the certificate. The processing in this case is the same as that in step S83, and a description thereof will be omitted. In step S90, the mutual authentication unit 39 of the content provider 2 sets the EMD
The connection R1ＲR2 encrypted with the secret key Ksesc of the service center 1 is decrypted with the public key Kpesc obtained in step S89. In step S91, the mutual authentication unit 39 of the content provider 2 decrypts the concatenation R1‖R2 encrypted with its own public key Kpcp with its own secret key Kscp. In step S92, the mutual authentication unit 39 of the content provider 2
The connection R1‖R2 decrypted in step S90 is compared with the connection R1‖R2 decrypted in step S91, and if they match, the EMD service center 1 is authenticated as being appropriate,
If they do not match, it is determined to be inappropriate and the process ends.

When a proper authentication result is obtained, in step S93, the mutual authentication unit 39 of the content provider 2 generates a 64-bit random number R3. Step S
At 94, the mutual authentication unit 3 of the content provider 2
9 generates a concatenation R2‖R3 of the random number R2 obtained in step S90 and the generated random number R3. Step S9
5, the mutual authentication unit 39 of the content provider 2
Encrypts the concatenation R2 @ R3 with the public key Kpesc obtained in step S89. In step S96,
The mutual authentication unit 39 of the content provider 2 transmits the encrypted connection R2 @ R3 to the mutual authentication unit 17 of the EMD service center 1.

In step S97, the mutual authentication unit 17 of the EMD service center 1 checks the encrypted connection R2 連 R
3 with its own secret key Ksesc. In step S98, the mutual authentication unit 1 of the EMD service center 1
7, if the decrypted random number R2 matches the random number R2 generated in step S84 (the random number R2 before encryption), the content provider 2 is authenticated as a proper provider; otherwise, an incorrect provider is used. And the process ends.

As described above, the mutual authentication unit 17 of the EMD service center 1 and the mutual authentication unit 3 of the content provider 2
9 mutually authenticates. The random number used for the mutual authentication is used as a temporary key Ktemp that is effective only for processing subsequent to the mutual authentication.

Next, the processing in step S12 in FIG. 38 will be described. In step S12, a process of supplying the content provider secure container from the content provider 2-1 to the service provider 3-1 is performed. Details of the processing are shown in the flowchart of FIG. That is, in step S201, the watermark adding unit 32 (FIG. 11) of the content provider 2-1 reads the content A from the content server 31, and inserts a predetermined watermark (digital watermark) indicating the content provider 2-1. , To the compression unit 33.

In step S202, the compression section 33 of the content provider 2-1 compresses the content A into which the watermark has been inserted by a predetermined method such as ATRAC2.
This is supplied to the encryption unit 34. In step S203,
The random number generation unit 35 generates a random number serving as the content key KcoA, and supplies the generated random number to the encryption unit 34.

In step S204, the encryption unit 34 of the content provider 2-1 inserts a watermark by using a random number (content key KcoA) generated by the random number generation unit 35 by a predetermined method such as DES. The encrypted content A is encrypted. Next, step S
In 205, the encryption unit 36 uses a predetermined method such as DES to transmit the delivery key K supplied from the EMD service center 1.
The content key KcoA is encrypted with d.

In step S206, the secure container creation unit 38 of the content provider 2-1 checks the content A (encrypted with the content key KcoA), the content key KcoA (encrypted with the delivery key Kd), Then, a hash value is calculated by applying a hash function to the entire UCP A, B (FIG. 12) corresponding to the content A stored in the policy storage unit 37, and is encrypted with its own secret key Kscp. As a result, FIG.
The signature shown in FIG. 7 is created.

In step S207, the secure container creation unit 38 of the content provider 2-1 sends the content A (encrypted with the content key KcoA), the content key KcoA (encrypted with the delivery key Kd), UCP A, B (FIG. 12) and step S
The content provider secure container shown in FIG. 17 including the signature generated in 206 is created.

In step S208, the mutual authentication unit 39 of the content provider 2-1 performs mutual authentication with the mutual authentication unit 45 (FIG. 19) of the service provider 3-1.
This authentication processing is the same as that described with reference to FIGS. 40 to 42, and a description thereof will not be repeated. In step S209, the secure container creation unit 38 of the content provider 2-1 attaches the certificate (FIG. 18) issued in advance by the certificate authority to the content provider secure container created in step S207, and Send to 1.

When the content provider secure container is supplied to the service provider 3-1 in this way, the process ends, and the flow advances to step S13 in FIG.

In step S13, the service provider secure container is supplied from the service provider 3-1 to the user home network 5 (receiver 51). Details of this processing are shown in the flowchart of FIG. That is, in step S221,
Pricing section 42 of service provider 3-1 (FIG. 19)
Checks the signature included in the certificate (FIG. 18) attached to the content provider secure container transmitted from the content provider 2-1. If there is no falsification of the certificate, then the public of the content provider 2-1 is released. Key K
Take out pcp. Confirmation of the signature of the certificate is the same as the processing in step S83 in FIG. 42, and thus the description thereof is omitted.

In step S222, the pricing section 42 of the service provider 3-1 converts the signature of the content provider secure container transmitted from the content provider 2-1 into the public key K of the content provider 2-1.
pcp, and the hash value obtained is the content A
(Encrypted with content key KcoA), content key KcoA (encrypted with delivery key Kd),
Then, it is determined whether or not the hash value obtained by applying the hash function to all of UCP A and B is identical to that of the content provider secure container. If the two values do not match (if tampering is found), the process is terminated. In this example, however, it is assumed that the content provider secure container has not been tampered with, and the process proceeds to step S223.

In step S223, the pricing section 42 of the service provider 3-1 sends the content A (content key K
coA), the content key KcoA
(Encrypted with the delivery key Kd) and the signature, and supply them to the content server 41. The content server 41 stores them. The pricing section 42 also
UCPs A and B are also extracted from the content provider secure container and supplied to the policy storage unit 43 and the secure container creation unit 44.

In step S224, the pricing section 42 of the service provider 3-1 retrieves the extracted UCP A, B
, PTA-1, A-2 (Fig. 20), and PTB
-1, B-2 (FIG. 22) and supplies them to the secure container creation unit 44.

In step S 225, the secure container creation unit 44 of the service provider 3-1 sends the content A (encrypted with the content key KcoA) read from the content server 41 and the content key Kc
oA (encrypted with the delivery key Kd), the signature of the content provider 2-1, and UCP A, B and PTA-1, A-2, B supplied from the pricing unit 42.
-1 and B-2, the service provider secure container shown in FIG. 24 is created.

In step S226, the mutual authentication unit 45 of the service provider 3-1 performs mutual authentication with the mutual authentication module 71 of the receiver 51 (FIG. 26). This authentication processing is the same as that described with reference to FIG. 40 to FIG. 42, and a description thereof will not be repeated.

In step S227, the secure container creation unit 44 of the service provider 3-1 adds the certificate of the service provider 3-1 to the service provider secure container created in step S225 (FIG. 25).
, The receiver 51 of the user home network 5
Send to

Thus, when the service provider secure container is transmitted from the service provider 3-1 to the receiver 51, the processing ends, and the flow proceeds to step S14 in FIG.

In step S14, the service provider secure container transmitted from the service provider 3-1 is connected to the receiver 5 of the user home network 5.
1 is received. Details of this processing are shown in the flowchart of FIG. That is, step S24
1, the mutual authentication module 71 of the receiver 51
(FIG. 26) mutually authenticates with the mutual authentication unit 45 (FIG. 19) of the service provider 3-1 via the communication unit 61, and when the mutual authentication can be performed, the communication unit 61 transmits the mutually authenticated service provider 3-. 1, the service provider secure container (FIG. 24) is received. If the mutual authentication has failed, the process is terminated. In this case, however, it is assumed that the mutual authentication has been performed, and the process proceeds to step S242.

At step S242, the receiver 51
The communication unit 61 receives the public key certificate from the service provider 3-1 that has been mutually authenticated in step S241.

At step S243, the receiver 51
Decryption / encryption module 74 verifies the signature included in the service provider secure container received in step S241, and verifies whether or not there has been tampering. Here, if tampering is found, the process ends. In this case, however, it is assumed that tampering has not been found, and the process proceeds to step S244.

At step S244, the receiver 51
Information 51 stored in the storage module 73
(FIG. 32), the UCP satisfying the use condition and the PT satisfying the price condition are selected and displayed on the display unit (not shown) via the display control unit 67. User F displays the displayed UCP and P
Referring to the contents of T, operate the operation unit (not shown) to
Choose one usage. Thereby, the input control unit 68
Outputs a signal corresponding to the operation of the user F input from the operation unit to the SAM 62.

In the case of this example, the reference information 5 of the receiver 51
As shown in FIG. 33, the “use point information” of No. 1 indicates that the content use point of the content provider 2-1 is 222 points. That is,
According to the reference information 51, among the UCPs A and B set corresponding to the content A, the UC for which the “user condition 10” of the “use condition 10” is “200 points or more”
PA (FIG. 12A) is selected. Also, reference information 5
In the “payment user information” of No. 1, since the user F is a man, “Price condition 1” of PTA-1 (FIG. 20A) is used.
The condition set to “0” is satisfied. As a result, of PTA-1 and PTA-2 created corresponding to UCPA, PTA-1
Is selected. After all, the contents of UCPA and PTA-1
It is displayed on the display. Further, in the case of this example, it is assumed that the user F has selected the usage content 11 of UCPA (the price content 11 of PTA-1).

At step S245, the receiver 51
The charging processing module 72 of the SAM 62 of step S2
The contents of the "Usage contents 11" of UCPA selected at 44 (P
UCSA based on “Contents of Price 11” of TA-1)
(FIG. 28) and billing information A (FIG. 30). That is, in this case, the content A is purchased and reproduced at a charge of 2,000 yen.

At step S246, contents A (encrypted with contents key KcoA) included in the service provider secure container (FIG. 24),
The signatures of the UCP A, PTA-1, A-2 and the content provider 2 are extracted, output to the HDD 52, and stored. In step S247, the decryption unit 91 of the decryption / encryption unit 74 sends the content key KcoA (encrypted with the delivery key Kd) included in the service provider secure container to the delivery key stored in the storage module 73. Decrypt with key Kd.

[0212] In step S248, the encryption unit 93 of the decryption / encryption unit 74 determines in step S24
Then, the content key KcoA decrypted in step 7 is encrypted with the storage key Ksave stored in the storage module 73.

At step S249, the receiver 51
Of the content key Kco encrypted with the storage key Ksave in step S248.
A and the usage information storage unit 63 of the external storage unit 63 in which the UCSA created in step S245 is stored correspondingly.
The block BP of A (FIG. 29) is detected. In the case of this example, the block BP-1 of the usage information storage unit 63A is detected. Note that, in the usage information storage unit 63A of FIG.
It is shown that the content key KcoA and UCSA are stored in the usage information memory area RP-3 of the block BP-1, but in this case, the block BP-1
At this time, the use information memory area RP-3 is not stored, and predetermined initial information indicating that it is vacant is stored.

At step S250, the receiver 51
The data inspection module 75 of the data of the block BP-1 detected in step S249 (all data stored in the use information memory areas RP-1 to RP-N)
To obtain a hash value. next,
In step S251, the data inspection module 75
Compares the hash value obtained in step S250 with the check value HP-1 (FIG. 31) corresponding to the block BP-1 stored in the storage module 73, and determines whether or not they match. If it is determined that they match, the data of the block BP-1 has not been tampered with.
Proceed to 252.

At step S252, the receiver 51
Is the usage information (the content key KcoA encrypted with the storage key Ksave in step S248 and the UCSA created in step S245 (FIG. 28)).
Is stored in the usage information memory area RP-3 of the block BP-1 of the external storage unit 63.

In step S253, the receiver 51
The data inspection module 75 applies the hash function to all the data stored in the block BP-1 of the use information storage unit 63A to which the use information memory area RP-3 in which the use information is stored in step S252 belongs. Then, a hash value is calculated, and the inspection value HP-1 stored in the storage module 73 is overwritten in step S254. In step S255, the charging processing module 7
2 stores the billing information A created in step S245 in the storage module 73, and the process ends.

If it is determined in step S251 that the calculated hash value does not match the check value HP-1, since the data of the block BP-1 has been tampered with, the procedure proceeds to step S256. The inspection module 75 includes a usage information storage unit 63 of the external storage unit 63.
It is determined whether or not all the blocks BP of A have been checked, and if it is determined that all the blocks BP of the external storage unit 63 have not been checked, the process proceeds to step S257, and the usage information storage unit 6
Another empty block BP of 3A is searched for, and the process returns to step S250 to execute the subsequent processing.

At step S256, the external storage unit 6
If it is determined that all the blocks BP of the third usage information storage unit 63A have been checked, there is no block BP (use information memory area RP) that can store the usage information.
The process ends.

As described above, when the service provider secure container is received by the receiver 51, the processing ends, and the flow advances to step S15 in FIG.

[0220] In step S15, the supplied content A is used in the receiver 51. In addition,
In this example, according to the usage content 11 of the selected UCPA, the content A is reproduced and used. Therefore, here, the reproduction process of the content A will be described. Details of the reproduction process are shown in the flowchart of FIG.

At step S261, the receiver 51
The data inspection module 75 of FIG.
At 52, a block BP-1 of the usage information storage unit 63A of the external storage unit 63 to which the usage information memory area RP-3 in which the content key KcoA (encrypted with the storage key Ksave) and UCSA are stored belongs. A hash value is calculated by applying a hash function to the data of.

In step S262, the receiver 51
The data inspection module 75 of FIG. 45 determines that the hash value calculated in step S261 is the same as that of step S253 in FIG.
It is determined whether or not the hash value matches the hash value (inspection value HP-1) stored in the storage module 73 in step S254.
Since the data of No. 1 has not been falsified, step S263
Proceed to.

In step S263, UCSA (FIG. 2)
8) It is determined whether or not the content A can be used based on the information indicated in the “parameter” of the “contents of use”. For example, in a UCS in which the "format" of the "usage content" is "period limited playback", its "parameter" stores its start period (time) and end period (time). In this case, it is determined whether or not the current time is within the range. When the current time is within the range, it is determined that the content can be used, and when the current time is outside the range, it is determined that the content cannot be used. In UCS where the “format” of the “contents” is a usage format that is reproduced (copied) only a predetermined number of times,
In the “parameter”, the remaining available number of times is stored. In this case, when the number of available times stored in the “parameter” is not 0, it is determined that the corresponding content can be used. On the other hand, when the number of available times is 0, it is determined that the corresponding content cannot be used. You.

[0224] The "format" of the "usage contents" of UCSA
Is "purchase reproduction", in this case, the content A is purchased and reproduced without restriction. In other words, the "parameters" of the "usage contents" of UCSA include:
Information indicating that the content is available is set. Therefore, in the case of this example, step S26
In 3, it is determined that the content A is available, and the process proceeds to step S264.

In step S264, the receiver 51
The charging module 72 updates UCSA. Although the UCSA does not include information to be updated, for example, if the “format” of the “contents” is a usage format that is reproduced only a predetermined number of times, it is stored in the “parameter”. The number of reproducible times is decremented by one.

Next, in step S265, the SAM 62 of the receiver 51 stores the UCS updated in step S264.
A (actually not updated) is stored in the usage information memory area RP-3 of the block BP-1 of the usage information storage unit 63A of the external storage unit 63. In step S266, the data inspection module 75 determines in step S26
5, a hash value is calculated by applying a hash function to the data of the block BP-1 of the usage information storage unit 63A of the external storage unit 63 in which the UCSA is stored, and the inspection value HP- Overwrite to 1.

In step S267, the mutual authentication module 71 of the SAM 62 and the mutual authentication module 101 of the decompression unit 64 authenticate each other, and execute the SAM 62 and the decompression unit 64.
Share the temporary key Ktemp. This authentication processing is the same as that described with reference to FIGS. 40 to 42, and a description thereof will not be repeated. Random numbers R1, R2, R3 or a combination thereof used for mutual authentication are used as temporary key Ktemp.

In step S268, the decryption unit 91 of the decryption / encryption module 74 determines in step S252 in FIG. 45 that the block BP-1 (the usage information memory area RP-3) of the usage information storage unit 63A of the external storage unit 63. Is decrypted with the storage key Ksave stored in the storage module 73. The content key KcoA stored in the storage module 73 is encrypted with the storage key Ksave.

Next, in step S269, the decryption /
The encryption unit 93 of the encryption module 74 encrypts the decrypted content key KcoA with the temporary key Ktemp. In step S270, the SAM 62 transmits the content key KcoA encrypted with the temporary key Ktemp to the decompression unit 64.

[0230] In step S271, the decryption module 102 of the decompression unit 64 decrypts the content key KcoA with the temporary key Ktemp. In step S272,
The extension unit 64 is connected to the HDD 52 via the interface 66.
Is received (encrypted with the content key Kco). In step S273, the decryption module 103 of the decompression unit 64 decrypts the content A (encrypted with the content key Kco) with the content key KcoA.

[0231] In step S274, the decompression module 104 of the decompression unit 64 converts the decrypted content A into an AT.
Decompress by a predetermined method such as RAC2. In step S275, the watermark adding module 1 of the extension unit 64
In step 05, a predetermined watermark (digital watermark) for specifying the receiver 51 is inserted into the expanded content A.
In step S276, the content A is output to a speaker (not shown) or the like, and the process ends.

At step S262, step S2
If it is determined that the hash value calculated in 61 does not match the hash value stored in the storage module 73 of the receiver 51, or if it is determined in step S263 that the content is unusable, the SAM 62 is determined in step S277. Executes a predetermined error process such as displaying an error message on a display unit (not shown) via the display control unit 67, and the process ends.

Thus, in the receiver 51,
When the content A has been reproduced (used), the processing ends, and the processing in FIG. 38 also ends.

[0234] Next, among the devices constituting the user home network 5, a process of registering the receiver 201, which has not been registered in the EMD system, with the user A, the purchaser, as the settlement user will be described. The flowchart of FIG. 47 shows the receiver 201 when this process is executed.
Is shown.

At step S401, the receiver 20
The user A who has purchased 1 writes predetermined information in a registration form attached to the receiver 201 at the time of purchase, and sends it to the management company that manages the EMD service center 1. As shown in FIG. 48, this registration form includes
SAM ID (in this case, the ID of the SAM 212 of the receiver 201)
In addition to the display indicating, the user's name, address, telephone number, information of the payment institution (for example, credit card number etc.), date of birth, age, gender, password, user ID, and payment ID There is a column in which information such as information can be entered. In addition, corresponding to the columns for entering name, address, telephone number, date of birth, age, and gender, a column for entering whether or not to permit the disclosure of each information (" Public: Yes or No ”). When permitting the disclosure of the information, the user encloses “Yes” in the corresponding column with a circle. Also,
When the disclosure of the information is not permitted, "impossible" in the corresponding column is circled.

User's password, ID, and payment ID
Are given to users when they are registered (formally registered or provisionally registered) in the EMD system, and they are not made public.

In the case of this example, at this point, since the user A is not registered in the EMD system, he does not have the password, the user ID, and the settlement ID. Therefore, as shown in FIG. 48, the user A enters the user A's name, address, telephone number, information on the settlement institution, date of birth, age, and gender (hereinafter, the name,
If it is not necessary to individually distinguish the address, telephone number, information on the settlement institution, date of birth, age, and gender, they are collectively referred to as user general information) on a registration form.
In this example, since the user A is permitted to disclose the name, date of birth, and age, “OK” in the corresponding column is surrounded by a circle. On the other hand, since the user A does not permit the disclosure of the address, telephone number, and gender, “impossible” in the corresponding column is surrounded by a circle.

Note that in this case, the user A
Since the user A is registered as the settlement user 01, credit processing is performed on the user A. Therefore, the user A must fill in the registration form with the name, address, telephone number, and information on the settlement institution used in the credit processing among the user general information.

[0239] Next, in step S402, the user A performs an operation on the receiver 201 to transmit a predetermined use start signal indicating that the receiver 201 starts using the content to the EMD service center 1. Thereby, the mutual authentication unit 221 of the receiver 201 and
Mutual authentication is performed with the mutual authentication unit 17 of the EMD service center 1, and thereafter, the use start signal is transmitted to the receiver 20.
1 is transmitted to the EMD service center 1 via the first communication unit 211. The use start signal includes the ID of the SAM of the device for which use start is requested (in this case, the SAM of the receiver 201).
212).

At step S403, the receiver 20
Reference numeral 1 denotes a delivery key Kd for one month (FIG. 8) transmitted from the EMD service center 1 when provisionally registered in the EMD system, an upper limit of charging at the time of provisional registration, and a user A
ID, password of user A, and step S401
Then, the general user information written on the registration sheet (hereinafter, when there is no need to individually distinguish them, the information transmitted from the EMD service center 1 at this time is referred to as temporary registration information) is received and stored. I do. Specifically, prior to receiving information transmitted from the EMD service center 1, the mutual authentication module 221 of the receiver 201 and
Mutual authentication with the mutual authentication unit 17 of the EMD service center 1 is performed, and the temporary key Ktemp is shared. The information received from the EMD service center 1 via the communication unit 211 of the receiver 201 is transmitted to the decryption / encryption module 2
24, decrypted by the temporary key Ktemp shared with the EMD service center 1, output to the storage module 223, and stored.

As a result, the delivery key Kd for one month is stored in the storage module 223 of the receiver 201, as shown in FIG. At this time, the reference information 201 stored in the storage module 223 includes, as shown in FIG. 50, information stored before this processing (FIG.
In addition to 7), “Upper limit for provisional registration” is set to
Is set, and the user general information of the user A, the ID of the user A, and the password are set in the “payment user information”. In this example, since the user A has applied for registration by permitting only the name, the date of birth, and the age to be disclosed, the “name”, “birth date”, In “age”, the information of the user A is stored as being permitted to be disclosed. In the example of FIG. 50, the information displayed with a shadow in the figure indicates information for which disclosure is not permitted, and the information displayed without a shadow is information for which disclosure is permitted. Represents what you have.

Next, in step S404, the receiver 201 sets the delivery key Kd for March sent from the EMD service center 1 when it is officially registered in the EMD system, , And the settlement ID of the user A (hereinafter, these pieces of information transmitted from the EMD service center 1 are collectively referred to as formal registration information when it is not necessary to distinguish them individually) and stored. . The specific processing here is step S4
03, the description thereof is omitted, however, the storage module 2 of the receiver 201
As shown in FIG. 51, the delivery key Kd for March is stored in the information 23 in place of the delivery key Kd for January in the information (FIG. 49) stored before this processing. Information 201
In FIG. 52, as shown in FIG. 52, “upper limit of formal registration” is set in “upper limit of charging”, and the payment ID of user A is newly set in “payment ID”.

As described above, the receiver 201 is registered in the EMD system with the user A as the settlement user. As a result, the user A can use the content in the receiver 201.

Next, the processing described above (the receiver 201
The processing procedure of the EMD service center 1 when executing the processing of registering the user A as the settlement user in the EMD system) will be described with reference to the flowchart of FIG.

In step S411, the management company that manages the EMD service center 1 receives the registration form (step S401 in FIG. 47) sent by the user A, and inputs the contents to the EMD service center 1. As a result, the system registration information held by the user management unit 18 of the EMD service center 1 includes the I
As shown in FIG. 54, the “payment user information” corresponding to D stores general user information of user A (name, address, telephone number, payment institution information, date of birth, age, and gender). You.

In this example, the user A has a name,
Since only the date of birth and age were permitted to be disclosed, the registration form was filled out, so that information was stored as information permitted to be disclosed (without the shadow in the figure). I have.

In step S 412, registration processing by credit is started. Details of the credit-based registration process are shown in the flowchart of FIG. That is, in step S421, the EMD service center 1
Of the user A entered on the registration form, for example, communicates with the settlement institution of the user A based on the information of the user A, and starts credit processing for the user A. I do.

In step S422, the user management unit 18 of the EMD service center 1 transmits the use start signal transmitted from the receiver 201 (step S40 in FIG. 47).
It is determined whether or not 2) has been received. If it is determined that it has been received, the process proceeds to step S423, and it is determined whether or not the credit processing started in step S421 has been completed.

If it is determined in step S423 that the credit processing has not been completed, the flow advances to step S424 to execute EMD.
The user management unit 18 of the service center 1
An ID and a password are assigned, and are set as “payment user information” corresponding to the ID of the SAM 212 in the system registration information as shown in FIG. The information is transmitted to the receiver 201 together with the delivery key Kd for one month and the information indicating the upper limit of the charge at the time of the provisional registration. The receiver 201 receives them (step S40 in FIG. 47).
3). In this case, the temporary registration information is transmitted to the receiver 201 within a few hours after the EMD service center 1 receives the use start signal.

Next, in step S425, the user management section 18 of the EMD service center 1 executes step S42.
The process waits until the credit process started in step 1 is completed. When the credit process is completed, the process proceeds to step S426, and based on the result of the credit process, determines whether the receiver 201 can be formally registered in the EMD system. judge.

At step S426, the receiver 201 sets the EM
If the user management unit 18 of the EMD service center 1 determines that the formal registration can be made in the D system, the process proceeds to step S427, where the user management unit 18 assigns a settlement ID to the user A, and determines that the publication is not permitted. As shown in FIG. 57, after setting the “payment ID” corresponding to the ID of the SAM 212 in the system registration information, the delivery key Kd for March created by the key server 14 and the billing for the formal registration The information is transmitted to the receiver 201 together with the information indicating the upper limit. The receiver 201 receives them (step S404 in FIG. 47). Note that, in the case of this example, step S
The credit processing started at 401 is completed in about one week.
In other words, the formal registration information is transmitted to the receiver 201 one week or more after the registration sheet is transmitted to the management company.

If it is determined in step S422 that the use start signal has not been received, the flow advances to step S428 to determine whether or not the credit processing has been completed. If it has been determined that the credit processing has not been completed. Then, the process returns to step S422, and the subsequent processes are executed.

If it is determined in step S428 that the credit processing has been completed, that is, if the credit processing has been completed before the use start signal is received, or step S4
If it is determined in step S23 that the credit processing is completed, that is, if the credit processing is completed before the temporary registration information is transmitted, the process proceeds to step S429.

In step S429, the user management unit 18 of the EMD service center 1 assigns the ID, password, and settlement ID of the user A, and sets “ID” in the “settlement user information” corresponding to the ID of the SAM 212. 14
Are transmitted to the receiver 201 together with the delivery key Kd for March created in the above, information indicating the upper limit of charging at the time of formal registration, and user general information. In addition, in a case corresponding to the processing shown in the flowchart of FIG. 47, the credit processing is completed after the temporary registration information is transmitted to the receiver 201.

At step S426, the receiver 201 sets the EM
If it is determined that it is not officially registered in the D system, the process of step S427 is skipped, and the process ends.
At this time, in step S424, the user ID, password, and user general information set in the system registration information are deleted.

[0256] In this way, the user A
After purchasing 01, the contents can be used within a few hours.

Next, a processing procedure in the case where a charge is settled will be described with reference to the flowchart in FIG. In the case of this example, a case will be described as an example in which the accounting charged in the receiver 51 is settled.

That is, in step S501, mutual authentication between the receiver 51 and the EMD service center 1 is performed. This mutual authentication is a process similar to that described with reference to FIGS. 40 to 42, and a description thereof will not be repeated.

Next, in step S502, the SAM 62 of the receiver 51 transmits a certificate to the user management unit 18 of the EMD service center 1. In step S503, the SAM 62 of the receiver 51 encrypts the billing information stored in the storage module 73 with the temporary key Ktemp shared with the EMD service center 1 in step S501, and stores the version of the delivery key Kd in the HDD 52. The corresponding UCP and PT and the registration list are transmitted to the EMD service center 1.

In step S504, the user management unit 18 of the EMD service center 1 determines in step S503
After receiving and decoding the information transmitted from the receiver 51, the user management unit 18 of the EMD service center 1 has found in the receiver 51 an illegal act in which “stop” is to be set in the “status flag” of the registration list. Confirm whether or not.

[0261] In step S505, the billing section 19 of the EMD service center 1 analyzes the billing information received in step S503, and determines whether the user (eg, user F)
And the like to calculate the amount of payment for. Next, in step S506, the user management unit 18 determines in step S5
In the process in 05, it is confirmed whether or not the settlement is successful.

Next, in step S507, the user management unit 18 of the EMD service center 1
Based on the confirmation result in step 4 and the confirmation result in step S506, the registration condition of the receiver 51 is set, and a signature is attached to the registration condition to create a registration list of the receiver 51.

[0263] For example, if an illegal act is confirmed in step S504, "stop" is set in the "status flag", and in this case, all processing is stopped in the future. That is, the service from the EMD system cannot be received at all. If it is confirmed in step S506 that the settlement has not been successful, the “status flag” is set to “
"Limited" is set, and in this case, the process of reproducing the already purchased content is enabled, but the process of purchasing new content cannot be executed.

Next, proceeding to step S508, the user management unit 18 of the EMD service center 1 checks the latest version of the delivery key Kd (the latest version of the delivery key K for March).
d) is encrypted with the temporary key Ktemp, and step S
The information is transmitted to the receiver 51 together with the registration list created in 507.

At step S509, the receiver 51
The SAM 62 receives the distribution key Kd and the registration list transmitted from the EMD service center 1 via the communication unit 61, decrypts them, and stores them in the storage module 73. At this time, the accounting information stored in the storage module 73 is deleted, and the registration list and the delivery key Kd are updated.

This processing is performed when the accounted charge exceeds a predetermined upper limit (the upper limit at the time of formal registration or the upper limit at the time of temporary registration), or the version of the delivery key Kd becomes old. 45, when the content key Kco (encrypted with the delivery key Kd) cannot be decrypted (when the service provider secure container cannot be received) in step S247 of FIG. You.

Next, marketing information provided by EMD service center 1 will be described. As mentioned above,
When the charge is settled, the charge information is transmitted to the EMD service center 1 (step S503) and stored in the history data management unit 15 of the EMD service center 1. That is,
The EMD service center 1 stores information related to the purchased content (for example, content ID, content information,
User general information of the user who purchased the content), so-called marketing information.

FIG. 59 shows information that can be disclosed to the content provider 2, the service provider 3, or the user home network 5 among the information on the purchased content, which the EMD service center 1 has. In the case of this example, the content ID, content information, usage format, and selling price (usage price) corresponding to "public" in the figure are not particularly limited.
It is published (provided) to the content provider 2, the service provider 3, and the user home network 5.
The content ID, content information, and usage format are information included in the billing information, and the selling price is the UCP ID, usage ID, and P included in the billing information.
This is information read from the price content of the PT specified by the ID of the T.

In the figure, the name, address, telephone number, date of birth, age, and gender of the user who purchased the content, which is indicated by “necessary”, are the user of the EMD service center 1. If the information is read from the system registration information managed by the management unit 18 and its publication is permitted by the user, they are published to the content provider 2, the service provider 3, or the user home network 5. That is, in this example, the name, address, telephone number, date of birth, age, and gender of the user F are disclosed. Then, the name, date of birth, and age of the user A are disclosed.

The EMD service center 1 can individually provide the information shown in FIG. 59 to the content provider 2, the service provider 3, and the user home network 5, and as shown in FIGS. It is also possible to provide information obtained by summing these pieces of information.

FIG. 60 showing a bar graph shows the contents of singers (artists) used in a predetermined period.
They are shown in descending order of the number of use cases. FIG. 61 showing a bar graph
Indicates the usage format of the predetermined content (content S),
They are shown in descending order of the number of use cases. FIG. 62 showing a bar graph
Represents the number of usages by age of the user (purchaser) of the predetermined content (content S). The aggregation information shown in FIGS. 60 to 62 is provided to the content provider 2, the service provider 3, and the user home network 5 in response to a request. For example, the user
This information can be obtained using a password.

FIG. 63 showing a bar graph shows a sales state of each content server 2 during a predetermined period. Such information aggregated for each content provider 2 is provided to the content provider 2 upon request. FIG. 64 showing a bar graph shows a sales state of each service provider 3 during a predetermined period. Such a service provider 3
The information aggregated for each is provided to the service provider 3 on demand.

In the present specification, the system is
It is assumed that the device as a whole is constituted by a plurality of devices.

Further, as a providing medium for providing a user with a computer program for performing the above processing,
In addition to recording media such as magnetic disks, CD-ROMs, and solid-state memories, communication media such as networks and satellites can be used.

[0275]

According to the information processing apparatus according to the first aspect, the information processing method according to the second aspect, and the providing medium according to the third aspect, the accounting information including the ID of the information processing apparatus is managed by the management apparatus. , The marketing information corresponding to the settlement result can be received.

According to the management device of the fourth aspect, the management method of the sixth aspect, and the providing medium of the eighth aspect, the accounting information including the ID of the information processing device is received, and the settlement processing is performed. Since it is performed, marketing information corresponding to the settlement result can be made public.

[Brief description of the drawings]

FIG. 1 is a diagram illustrating an EMD system.

FIG. 2 is a diagram illustrating a flow of main information in an EMD system.

FIG. 3 is a block diagram showing a functional configuration of the EMD service center 1.

FIG. 4 is a diagram illustrating transmission of a delivery key Kd of the EMD service center 1.

FIG. 5 is another diagram illustrating transmission of a delivery key Kd of the EMD service center 1.

FIG. 6 is another diagram illustrating transmission of the delivery key Kd of the EMD service center 1.

FIG. 7 is another diagram illustrating the transmission of the delivery key Kd of the EMD service center 1.

FIG. 8 is another diagram illustrating transmission of the distribution key Kd of the EMD service center 1.

FIG. 9 is a diagram illustrating system registration information.

FIG. 10 is a diagram illustrating use point information.

FIG. 11 is a block diagram showing a functional configuration example of a content provider 2.

FIG. 12 is a diagram illustrating an example of UCP.

FIG. 13 is a diagram illustrating management movement of content.

FIG. 14 is a diagram illustrating first-generation replication.

FIG. 15 is a diagram illustrating an example of code values of a service code and a condition code.

FIG. 16 is a diagram illustrating an example of a code value set as a UCP use condition.

FIG. 17 is a diagram illustrating an example of a content provider secure container.

FIG. 18 is a diagram illustrating an example of a certificate of the content provider 2.

FIG. 19 is a block diagram showing a functional configuration of the service provider 3.

FIG. 20 is a diagram illustrating an example of a PT.

FIG. 21 is a diagram illustrating an example of a code value set as a price condition of a PT.

FIG. 22 is a diagram showing another example of PT.

FIG. 23 is a diagram illustrating an example of a code value set as a price condition of another PT.

FIG. 24 is a diagram illustrating an example of a service provider secure container.

FIG. 25 is a diagram showing an example of a certificate of the service provider 3.

FIG. 26: Receiver 51 of user home network 5
FIG. 3 is a block diagram showing an example of a functional configuration of FIG.

FIG. 27 is a diagram illustrating an example of a certificate of the SAM 62 of the receiver 51.

FIG. 28 is a diagram illustrating an example of a UCS.

FIG. 29 is a diagram illustrating the inside of a usage information storage unit 63A of the external storage unit 63 of the receiver 51.

FIG. 30 is a diagram illustrating an example of billing information.

FIG. 31 is a diagram showing information stored in a storage module 73 of the receiver 51.

FIG. 32 is a diagram illustrating reference information 51.

FIG. 33 is a diagram showing an example of use point information of the reference information 51.

FIG. 34 is a diagram showing an example of a registration list.

FIG. 35: Receiver 20 of user home network 5
1 is a block diagram illustrating an example of a functional configuration.

FIG. 36 is a diagram illustrating an example of information stored in a storage module 223 of the receiver 201.

FIG. 37 is a diagram showing an example of reference information 201.

FIG. 38 is a flowchart illustrating a content use process.

FIG. 39 is a flowchart illustrating a process in which the EMD service center 1 transmits a delivery key Kd to the content provider 2.

FIG. 40 is a flowchart illustrating an operation of mutual authentication between the content provider 2 and the EMD service center 1.

FIG. 41 is a flowchart illustrating another operation of the mutual authentication between the content provider 2 and the EMD service center 1.

FIG. 42 is a flowchart illustrating another operation of mutual authentication between the content provider 2 and the EMD service center 1.

FIG. 43 is a flowchart illustrating a process in which the content provider 2 transmits a content provider secure container to the service provider 3.

FIG. 44 is a flowchart illustrating a process in which the service provider 3 transmits a service provider secure container to the receiver 51.

FIG. 45 is a flowchart illustrating a process in which a receiver 51 receives a service provider secure container.

FIG. 46 is a flowchart illustrating a process in which the receiver 51 reproduces a content.

FIG. 47 is a flowchart illustrating a process in which a receiver 201 registers a user A as a settlement user.

FIG. 48 is a diagram illustrating an example of a registration sheet.

FIG. 49 is a diagram illustrating another example of the information stored in the storage module 223 of the receiver 201.

FIG. 50 is a diagram showing another example of the reference information 201.

FIG. 51 is a diagram illustrating another example of information stored in the storage module 223 of the receiver 201.

FIG. 52 is a diagram showing another example of the reference information 201.

FIG. 53 is another flowchart illustrating a process in which the receiver 201 registers a user A as a settlement user.

FIG. 54 is a diagram showing another example of the system registration information.

FIG. 55 is a flowchart illustrating a credit-based registration process.

FIG. 56 is a diagram showing another example of system registration information.

FIG. 57 is a diagram showing another example of the system registration information.

FIG. 58 is a flowchart illustrating a settlement process.

FIG. 59 is a diagram illustrating an example of marketing information.

FIG. 60 is a diagram showing an example of total information.

FIG. 61 is a diagram showing another example of total information.

FIG. 62 is a diagram illustrating another example of the aggregation information.

FIG. 63 is a diagram showing another example of the aggregation information.

FIG. 64 is a diagram showing another example of total information.

[Explanation of symbols]

1 EMD service center, 2 content provider, 3 service provider, 5 user home network, 11 service provider management section, 1
2 Content provider management unit, 13 Copyright management unit, 14 Key server, 15 History data management unit,
16 Profit sharing unit, 17 Mutual authentication unit, 18 User management unit, 19 Billing unit, 20 Cash unit, 21
Auditing department, 31 content server, 32 watermark adding part, 33 compression part, 34 encryption part,
35 random number generation unit, 36 encryption unit, 37 policy storage unit, 38 secure container creation unit, 39
Mutual authentication unit, 41 content server, 42 pricing unit, 43 policy storage unit, 44 secure container creation unit, 45 mutual authentication unit, 51 receiver, 52 HDD, 61 communication unit, 62 SAM, 63
External storage unit, 64 decompression unit, 65 communication unit, 66
Interface, 67 display controller, 68 input controller, 71 mutual authentication module, 72 billing module, 73 storage module, 74 decryption /
Encryption module, 75 Data inspection module, 9
1 decoding unit, 92 random number generation unit, 93
Encryption unit, 101 mutual authentication module, 1
02 decryption module, 103 decryption module,
104 expansion module, 105 watermark adding module, 201 receiver, 202 HDD,
211 communication unit, 212 SAM, 213 external storage unit, 214 decompression unit, 215 communication unit, 216
Interface, 217 display control unit, 218 input control unit, 221 mutual authentication module, 222
Billing module, 223 Storage module, 2
24 decryption / encryption module, 225 data inspection module, 231 decryption unit, 232 random number generation unit, 233 encryption unit, 241 mutual authentication module, 242 decryption module, 24
3 decryption module, 244 expansion module, 2
45 Watermark addition module

──────────────────────────────────────────────────続 き Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) H04L 9/00 673B 675B F-term (Reference) 5B049 AA05 BB11 CC05 CC36 DD05 EE03 EE09 EE23 FF03 FF04 FF09 GG04 GG07 GG10 5B089 GA21 GB03 HA10 JA33 JB05 KA15 KB06 KB12 KC58 KH30 LB14 5D044 AB01 AB05 DE48 DE49 GK17 HL11 5J104 AA07 KA02 KA05 NA05 PA07 PA10 PA11 9A001 EE03 JZ67

Claims (9)

[Claims] An information processing apparatus managed by a management apparatus and decrypting and using encrypted value information, including an own ID required to settle billing for the value information, Creating means for creating billing information; transmitting means for transmitting the billing information created by the creating means to the management device; and billing information transmitted from the managing device and transmitted by the transmitting means. Receiving means for receiving predetermined marketing information corresponding to a settlement result based on the information processing apparatus. 2. An information processing method for an information processing device which is managed by a management device and decrypts and uses encrypted value information, the method comprising the steps of: A creating step of creating billing information including an ID, a sending step of sending the billing information created in the creating step to the management device, and a sending step of sending from the managing device, A receiving step of receiving predetermined marketing information corresponding to a settlement result based on the billing information. 3. An information processing apparatus which is managed by a management apparatus and decrypts and uses encrypted value information, including an own ID required to settle billing for the value information, A creating step of creating accounting information; a transmitting step of transmitting the accounting information created in the creating step to the management device; and the accounting information transmitted from the management device and transmitted in the transmitting step. And a receiving step of receiving predetermined marketing information corresponding to a settlement result based on the computer-based program. 4. A management device for managing an information processing device that decrypts and uses encrypted value information, wherein predetermined marketing information relating to the information processing device is stored in correspondence with an ID of the information processing device. A storage unit, a payment unit that receives charging information including an ID of the information processing device transmitted from the information processing device, and that performs payment based on the value information based on the charging information; In response to the ID of the information processing device included in, the reading means for reading the marketing information related to the information processing device stored in the storage means, and the marketing information read by the reading means, According to the settlement result by the settlement means,
And a first publishing unit that publishes the information to the information processing apparatus. 5. A value information providing device that provides the value information, and a marketing information that is connected to a service providing device that provides a predetermined service corresponding to the value information, and that corresponds to a settlement result by the settlement unit. 5. The management apparatus according to claim 4, further comprising: a second publishing unit that publishes the information to the value information providing apparatus and the service providing apparatus. 6. A management method of a management device for managing an information processing device that decrypts and uses encrypted value information, wherein predetermined marketing information related to the information processing device is associated with an ID of the information processing device. A storing step of receiving, from the information processing apparatus, charging information including an ID of the information processing apparatus, and a payment step of performing payment based on the value information based on the charging information, A reading step of reading the marketing information about the information processing device stored in the storage step, corresponding to the ID of the information processing device included in the billing information; and the marketing information read in the reading step In a first disclosure step of releasing the information to the information processing apparatus in accordance with the payment result in the payment step. Management method which comprises and. 7. When the management device is connected to a value information providing device that provides the value information and a service providing device that provides a predetermined service corresponding to the value information, The management method according to claim 6, further comprising a second publishing step of publishing the marketing information corresponding to the settlement result to the value information providing device and the service providing device. 8. A management device that manages an information processing device that decrypts and uses encrypted value information, and stores predetermined marketing information related to the information processing device in correspondence with the ID of the information processing device. A storing step; receiving the billing information including the ID of the information processing apparatus transmitted from the information processing apparatus; and performing a settlement based on the billing information, and performing a billing based on the value information. In response to the ID of the information processing device included in, the reading step of reading the marketing information related to the information processing device stored in the storage step, and the marketing information read in the reading step, A process including a first publishing step of publishing the information to the information processing device in association with the settlement result in the settlement step. Providing medium characterized by computer to row to provide a readable program. 9. When the management device is connected to a value information providing device that provides the value information and a service providing device that provides a predetermined service corresponding to the value information, The providing medium according to claim 8, further comprising: a second publishing step of publishing the marketing information corresponding to the settlement result to the value information providing device and the service providing device.