JP2002366442A - Data terminal equipment and data recording device - Google Patents

Abstract

PROBLEM TO BE SOLVED: To provide a data recording device and data terminal equipment corresponding to this data recording device capable of preventing the transfer of any license key corresponding to encrypted contents data under reproduction control which can not be controlled by a reproducing terminal or encrypted contents data which can not be reproduced by the reproducing terminal to the terminal equipment. SOLUTION: A portable telephone set 100 is provided with a function certificate holding part 1507 so that a function certificate Cbp1 can be transmitted to a memory card 110. Then, when a function certified by the function certificate is made correspond to a function limited by reproduction control information ACp, the portable telephone set 100 acquires the license key Kc for decoding encrypted contents data Dc}Kc and the reproduction control information ACp from the memory card 110. A reproduction control part 1514 judges the validity/invalidity of the reproduction of the encrypted contents data Dc}Kc based on time information from a clock 1512 and a reproduction period included in the reproduction control information ACp.

Description

DETAILED DESCRIPTION OF THE INVENTION

[0001]

BACKGROUND OF THE INVENTION 1. Field of the Invention The present invention relates to reproduction restriction information for encrypted data when decrypting and reproducing encrypted data obtained by using a data distribution system capable of protecting copyright of copied information. The present invention relates to a data terminal device and a data recording device that realize the reproduction of encrypted data according to the content of the data terminal.

[0002]

2. Description of the Related Art In recent years, with the advancement of digital information communication networks such as the Internet, it has become possible for each user to easily access network information using personal terminals using cellular phones and the like.

In such a digital information communication network, information is transmitted by digital signals. Therefore, for example, even when music or video data transmitted in the information communication network described above is copied by each individual user, the data is copied with almost no deterioration in sound quality or image quality due to such copying. It is possible.

Therefore, when contents such as music data and image data, etc., for which rights of the creator exist, are transmitted over such digital information communication networks, appropriate copyright protection measures must be taken. , The rights of the copyright holder may be significantly infringed.

On the other hand, giving priority to the purpose of copyright protection,
If it is not possible to distribute content data through the rapidly expanding digital information communication network, basically, even for copyright owners who can collect a certain copyright fee when copying copyrighted work data, However, it is disadvantageous.

Here, considering not a distribution via the digital information communication network as described above but a recording medium on which digital data is recorded as an example, a CD (compact disc) on which music data which is usually sold is recorded is considered. Regarding (2), music data can be freely copied from a CD to a magneto-optical disk (MD or the like) in principle as long as the copied music is stopped for personal use. However, an individual user who performs digital recording or the like indirectly pays a certain amount of the price of the digital recording device itself or a medium such as an MD as a deposit to the copyright holder.

Furthermore, when music data as a digital signal is copied from a CD to an MD, the music information is transferred from a recordable MD to another MD in consideration of the fact that the information is digital data with little copy deterioration. Copying as digital data is not possible due to copyright protection due to equipment configuration.

[0008] Even in such circumstances, distribution of content data such as music data and image data to the public through a digital information communication network is itself an act restricted by the public transmission right of the copyright holder. Sufficient measures must be taken for copyright protection.

In this case, for content data such as music data and image data which are copyrighted works transmitted to the public through a digital information communication network, once received content data is prevented from being copied without permission. Is required.

[0010] Therefore, a distribution server that holds encrypted content data obtained by encrypting the content data is a data server that distributes the encrypted content data to a memory card mounted on a terminal device such as a mobile phone via the terminal device. A distribution system has been proposed. In this data distribution system, a public encryption key of a memory card and a certificate thereof, which have been authenticated by a certificate authority in advance, are transmitted to a distribution server at the time of a distribution request of encrypted content data. After confirming the reception, the encrypted content data and the license key for decrypting the encrypted content data are transmitted to the memory card. When distributing the encrypted content data and the license key, the distribution server and the memory card generate a different session key for each distribution, and encrypt the public encryption key with the generated session key. The keys are exchanged between the memory cards.

[0013] Finally, the distribution server transmits the license encrypted by the public encryption key of each memory card and further encrypted by the session key, and the encrypted content data to the memory card. Then, the memory card records the received license key and the encrypted content data on the memory card.

When playing back the encrypted content data recorded on the memory card, the user inserts the memory card into the portable telephone. The mobile phone has a dedicated circuit for decrypting the encrypted content data from the memory card and reproducing and outputting the decrypted content data to the outside in addition to the normal telephone function.

As described above, the user of the mobile phone receives the encrypted content data and the license including the license key necessary for reproducing the encrypted content data from the distribution server using the mobile phone as the download terminal, The encrypted content data can be reproduced. The license required for decrypting and reproducing the encrypted content data includes, in addition to the license key, reproduction restriction information for restricting the reproduction of the encrypted content data, and a data terminal for reproducing the encrypted content data. The mobile phone as a device restricts the reproduction of the encrypted content data according to the reproduction control information.

[0014]

However, in such a system, the license key is securely stored in spite of the fact that the user manages the license mainly by the memory card as the data recording device. However, the data recording device managed in the above-mentioned method has a problem that it is impossible to determine whether the restriction by the reproduction terminal is always implemented.

The present invention has been made in order to solve such a problem, and an object of the present invention is to deal with encrypted content data subject to playback control that cannot be controlled by a playback terminal and encrypted content data that cannot be played back by a playback terminal. An object of the present invention is to provide a data recording device that does not provide a license key to a terminal device and a data terminal device corresponding to the data recording device.

[0016]

According to the present invention, a data terminal device obtains encrypted content data and a license including a license key for decrypting the encrypted content data from a data recording device and encrypts the data. A data terminal device for decrypting and reproducing encrypted content data, an interface for controlling data exchange with a data recording device, content reproducing means for decrypting and reproducing encrypted content data with a license key, A function certificate holding unit for holding a function certificate for certifying a reproduction function of the means, a key operation unit for inputting an instruction, and a control unit, wherein the control unit is input via the key operation unit. Data recording device via an interface with a function certificate in response to a playback request for encrypted content data Transmitting, when the function certified by the function certificate corresponds to the function to be restricted by the reproduction restriction information included in the license, receiving the encrypted content data and the license from the data recording device via the interface; The received encrypted content data and license are given to the content reproducing means.

Preferably, the data terminal device further includes a class certificate holding unit for holding a class certificate for certifying a security level when data is transmitted / received to / from the data recording device, and the control unit responds to a reproduction request. Then, the class certificate is transmitted to the data recording device via the interface, and when the class certificate is authenticated in the data recording device, the function certificate is transmitted to the data recording device.

Preferably, the function certificate holding unit holds an encrypted function certificate that can be decrypted by a public encryption key included in the class certificate.

Preferably, the control means transmits the function certificate to the data recording device simultaneously with the class certificate.

Preferably, the data terminal device includes: a session key generating unit for generating a session key for specifying communication with the data recording device; an encryption processing unit for encrypting data with the session key; Decryption processing means for decrypting the encrypted data, and when acquiring the encrypted content data and the license from the data recording device, the session key generating means includes a second key for specifying communication with the data recording device. 1
The encryption processing means encrypts the function certificate and the first session key with the second session key received from the data recording device, and the control means encrypts the function certificate and the first session key with the second session key. The transmitted function certificate and the first session key are transmitted to the data recording device via the interface.

Preferably, the control means further receives the reproduction restriction information and the license key encrypted by the first session key from the data recording device and provides the license key to the decryption processing means, When the reproduction of the encrypted content data is not restricted by the restriction information, the encrypted content data and the license key are given to the content reproducing means.

Preferably, the data terminal device further includes a clock unit for updating date and time information in real time, the reproduction restriction information includes period restriction information for restricting a reproduction period of the encrypted content data, and the control means includes a clock unit. It is determined whether or not it is within the playback period of the encrypted content data based on the date and time information and the period restriction information from the unit.

According to the invention, the data recording device is a data recording device for recording encrypted content data and a license including a license key for decrypting the encrypted content data. Storage means for storing data and a license, an interface for exchanging data with a data reproducing apparatus for decrypting and reproducing the encrypted content data by a license, and control means; When the function certificate for certifying the function is received via the interface and the function certified by the received function certificate corresponds to the function to be restricted by the reproduction restriction information included in the license, the encrypted content data And read license from storage means and interface Via transmission to the data reproducing apparatus.

Preferably, the data recording apparatus further includes a decryption processing means for decrypting the data encrypted with the public encryption key unique to the data reproducing apparatus with the secret decryption key, and the control means encrypts the data with the public encryption key. The decrypted function certificate is received via the interface, the encrypted function certificate is provided to the decryption processing means, and the decrypted function certificate is received from the decryption processing means.

Preferably, the data recording device includes first decryption processing means for decrypting the data encrypted with the public authentication key using the public authentication key, and data encrypted with the public encryption key unique to the data reproducing device. Second decryption processing means for decrypting the public key with a secret decryption key. The control means further comprises: an encrypted class certificate that can be decrypted by a public authentication key; a function certificate encrypted by a public encryption key; Are simultaneously received via the interface, the encrypted class certificate is provided to the first decryption processing means, the encrypted function certificate is provided to the second decryption processing means, and the decrypted class certificate and the function are provided. Receive the certificate.

Preferably, the data recording device includes a session key generation unit for generating a session key for specifying communication with the data reproduction device, and another decryption processing unit for decrypting data encrypted with the session key. When,
Encryption processing means for encrypting the data with a public encryption key unique to the data reproduction apparatus, wherein the session key generation means, when receiving the function certificate, includes a first key for specifying communication with the data reproduction apparatus. The encryption processing means encrypts the first session key with the public encryption key, and the control means encrypts the first session key encrypted with the public encryption key via the interface. And the function certificate encrypted by the first session key is received via the interface and given to another decryption processing means, and the decrypted function certificate is received from the other decryption processing means, Another decryption processing means decrypts the encrypted function certificate using the first session key.

Preferably, the apparatus further comprises another encryption processing means for encrypting data with a session key, wherein the control means is configured to restrict the function certified by the function certificate by the reproduction restriction information included in the license. If it is determined that the license key and the reproduction restriction information read from the storage unit are provided to another encryption processing unit, the license key and the license key encrypted by the second session key generated by the data reproduction device are provided. The reproduction restriction information is transmitted to the data reproducing apparatus via the interface, and the other encryption processing means encrypts the license key and the reproduction restriction information with the second session key.

[0028] Preferably, the control means accepts a default value as the function certificate when the data reproducing device does not hold the function certificate.

Preferably, the reproduction restriction information includes at least one of a reproduction start date and time at which reproduction of the encrypted content data can be started and a reproduction end date and time at which reproduction of the encrypted content data cannot be performed.

[0030] Preferably, the reproduction restriction information further includes an area code indicating an area where the encrypted content data can be reproduced.

[0031]

Embodiments of the present invention will be described in detail with reference to the drawings. In the drawings, the same or corresponding portions have the same reference characters allotted, and description thereof will not be repeated.

[First Embodiment] FIG. 1 conceptually illustrates the overall configuration of a data distribution system in which a data recording apparatus according to the present invention acquires encrypted content data and a license for decrypting the encrypted content data. FIG.

In the following, music data is stored in a memory card 1 attached to a user's mobile phone via a mobile phone network.
10 will be described as an example, but as will be apparent from the following description, the present invention is not limited to such a case, and content data as another copyrighted work, for example, The present invention can be applied to the case of distributing image data, moving image data, and the like.

Referring to FIG. 1, distribution carrier 20 relays a distribution request (distribution request) from a user obtained through its own mobile telephone network to distribution server 10. The distribution server 10 that manages music data is a mobile phone 10 of a mobile phone user who has accessed for data distribution.
The authentication process is performed to determine whether the memory card 110 inserted into the memory card 0, 102, or 104 has valid authentication data, that is, whether the memory card 110 is a valid memory card. After encrypting music data (hereinafter, also referred to as content data) by a predetermined encryption method for protection, the mobile phone company, which is a distribution carrier 20 for distributing the data, provides such encrypted content data and A license including a license key for decrypting the encrypted content data is given as information necessary for reproducing the encrypted content data.

The distribution carrier 20 transmits the distribution request via its own mobile telephone network to the portable telephones 100, 102,.
The encrypted content data and the license are distributed to the memory card 110 inserted in the mobile phone 104 via the mobile phone network and the mobile phones 100, 102, and 104.

In FIG. 1, for example, a detachable memory card 110 is attached to portable telephones 100, 102, 104 of a portable telephone user. The memory card 110 stores the mobile phones 100, 102, 10
4 receives the encrypted content data received by
After decrypting the encryption performed to protect the copyright, the decryption is provided to a music playback unit (not shown) included in the mobile phones 100, 102, and 104.

Further, for example, a portable telephone user can “play back” and listen to such content data via a headphone 130 or the like connected to the portable telephones 100, 102, 104.

With such a configuration, first, unless the memory card 110 is used, it becomes difficult to receive the distribution of the content data from the distribution server 10 and reproduce the music.

Moreover, the distribution carrier 20 counts the frequency each time one piece of content data is distributed, for example, so that the mobile phone user receives (downloads) the content data each time the content data is received (downloaded). Is collected by the distribution carrier 20 together with the communication charge of the mobile phone, the copyright holder can easily secure the copyright charge.

Therefore, in the data distribution system shown in FIG. 1, the memory card 110 mounted on the mobile phone 100 can receive the encrypted content data and the license from the distribution server 10 via the mobile phone network.

In the configuration shown in FIG. 1, in order for the content data distributed and encrypted to be reproducible on the user side of the mobile phone, the system needs firstly communication. The second is the method of encrypting content data itself, and the third is the method of unlicensed copying of content data in such a reproducible state. This is a configuration that implements copyright protection to prevent such a problem.

In the embodiment of the present invention, especially when the respective processes of distribution and reproduction occur, the authentication and check functions for the license transfer destination necessary for reproducing the encrypted content data are enhanced. By preventing output of content data to an unauthenticated recording device and a data playback terminal (a playback terminal capable of decrypting and playing back encrypted content data is also referred to as a mobile phone; the same applies hereinafter), the copyright protection of the content data is protected. The configuration to be strengthened will be described.

In the following description, the process of transmitting the encrypted content data or its license from the distribution server 10 to each mobile phone will be referred to as “distribution”.

FIG. 2 is a diagram for explaining characteristics of data, information, and the like for communication used in the data distribution system shown in FIG.

First, data distributed from the distribution server 10 will be described. Dc is content data such as music data. The content data Dc is encrypted so as to be decryptable with the license key Kc. License key K
The encrypted content data {Dc} Kc, which has been encrypted by decryption by c, is distributed to the users of the mobile phones 100, 102, and 104 from the distribution server 10 in this format.

In the following, it is assumed that the notation {Y} X indicates that the data Y has been encrypted with the decryption key X.

Further, the distribution server 10 distributes, along with the encrypted content data, additional information Dc-inf as plain text information such as a copyright relating to the content data or server access. The license includes a license key Kc and a license ID, which is a management code for specifying the distribution of the license key and the like from the distribution server 10.
02,104. Furthermore, the license is generated based on a content ID, which is a code for identifying the content data Dc, and a license purchase condition AC including information such as the number of licenses and function limitation determined by designation from the user side. Access control information AC, which is information regarding restrictions on license access in a recording device (memory card)
m and reproduction control information ACp which is control information relating to reproduction in the data reproduction terminal.

Specifically, the access control information ACm is:
Control information for outputting a license or a license key from a memory card to the outside, such as the number of reproducible times (the number of times a license key is output for reproduction) and restriction information on license transfer / copy.

The reproduction control information ACp is information for restricting reproduction after the content reproduction circuit receives a license key for reproducing the encrypted content data. FIG.
, The reproduction control information ACp includes flags FG1 to FG5 as reproduction restriction flags. The flag FG1 indicates that the reproduction speed change is prohibited, the flag FG2 indicates whether or not editing is possible, the flag FG3 indicates whether or not a region code is specified, the flag FG4 indicates whether or not a reproduction start date and time is specified, and the flag FG5 is when or Indicates whether the end date and time have been specified. The reproduction control information ACp further includes, when a region code is specified, a region code corresponding to the region code, a reproduction start date and time, a corresponding reproduction start date and time, and a reproduction end date and time. And the corresponding playback end date and time.

That is, the reproduction control information ACp includes the area 1 in which the flags FG1 to FG5 are stored and the flags FG3 to FG3.
And area 2 in which actual data corresponding to FG5 is stored. The region 2 includes regions 21 to 23. Region 21 is
When the area code is specified in the flag FG3,
An area code indicating an area where encrypted content data can be reproduced is stored. The area 22 stores the reproduction start date and time of the encrypted content data when the reproduction start date and time is specified in the flag FG4. The area 23 stores the reproduction end date and time of the encrypted content data when the reproduction end date and time is designated by the flag FG5.

"1" or "0" is stored in flags FG1 to FG5. When the flag is “1”, it means that the flag is active and is restricted by the reproduction restriction corresponding to the flag. When the flag is “0”, the flag is negative. hand,
It means that there is no restriction by the reproduction restriction corresponding to the flag. Specifically, when "1" is stored in the flag FG1, it means that the change of the reproduction speed is prohibited, and when "0" is stored, it means that the reproduction speed may be changed. When “1” is stored in the flag FG2,
This means that editing is permitted. If "0" is stored, it indicates that editing is prohibited. Further, when "1" is stored in the flag FG3, it means that there is designation of an area code in which the encrypted content data can be reproduced. When "0" is stored, the area code in which the encrypted content data can be reproduced is set. Is not specified, that is, the entire area is specified. Further, when "1" is stored in the flag FG4, it means that the reproduction start date and time at which reproduction of the encrypted content data can be started is specified, and when "0" is stored, the encrypted content data is specified. Means that there is no designation of a playback start date and time at which playback of the file can be started. Further, when “1” is stored in the flag FG5, it means that there is a designation of the reproduction end date and time at which the encrypted content data cannot be reproduced, and when “0” is stored, the encrypted content data is Means that there is no designation of the playback end date and time at which playback cannot be performed.

Therefore, the reproduction circuit of the encrypted content data sets the flags FG1 to FG5 of the reproduction control information ACp.
Search for. Then, the reproduction circuit reproduces the encrypted content data without changing the speed if "1" is stored in the flag FG1, and changes the speed by changing the speed if "0" is not stored. Play the data. The reproduction circuit edits the encrypted content data in response to an instruction from the user if “1” is stored in the flag FG2, and edits the encrypted content data if “0” is stored. Absent. Further, if “1” is stored in the flag FG3, the reproduction circuit determines that the region in which the encrypted content data is to be reproduced is in the region 2
It is determined whether or not the area where the encrypted content data is to be reproduced is an area stored in the area 21 and the encrypted content data is reproduced. If the encrypted content data is to be reproduced in a region other than the region where the encrypted content data is to be reproduced, the reproduction of the encrypted content data is not performed. Then, if “0” is stored in the flag FG3, the reproducing circuit reproduces the encrypted content data without determining the area where the encrypted content data is to be reproduced.

Further, the reproducing circuit further comprises a flag FG4
Is stored in the area 22, the playback start date and time stored in the area 22 are referred to. If the playback start date and time have been reached, the encrypted content data is played back. Do not reproduce encrypted content data. Further, the reproduction circuit refers to the reproduction end date and time stored in the area 23 when “1” is stored in the flag FG5, and reproduces the encrypted content data when the reproduction end date and time is reached. When the reproduction is completed and the reproduction end date and time has not been reached, the reproduction of the encrypted content data is continued.

In the present invention, only one of the reproduction start date and time and the reproduction end date and time may be specified. That is, only the playback start date and time are specified,
In some cases, the reproduction end date and time are not specified, or the reproduction start date and time are not specified and the reproduction end date and time are specified. In the former case, the reproduction end date and time are not stored in the area 23, and in the latter case, the reproduction start date and time are not stored in the area 22.

In the present invention, in particular, the reproduction start date and time or the reproduction end date and time are set in the reproduction control information ACp, and the reproduction of the encrypted content data is temporally limited using the reproduction start date and time or the reproduction end date and time. The areas 21 to 23 forming the area 2 are shown as always being reserved, but the corresponding flags FG3 to FG5
May be configured to be omitted when is negative “0”.

Referring again to FIG. 2, license ID
, The content ID, the license key Kc, the access control information ACm, and the reproduction control information ACp.

In the following, for simplicity, the access control information ACm includes the number of times of reproduction (0: unreproducible, 1 to 254: number of reproducible times, 255: no limit) which is control information for limiting the number of times of reproduction. Transfer / copy flag that restricts transfer and copy of licenses (0: move / copy prohibited, 1:
(Moving only is allowed, 2: moving copying is possible).

FIG. 4 is a diagram illustrating characteristics of data, information, and the like for authentication used in the data distribution system shown in FIG.

A public encryption key KPpy unique to the content reproduction device in the data reproduction terminal and the memory card is used.
And KPmw, respectively, and a public encryption key KPp
y and KPmw are a secret decryption key Kpy unique to the content reproduction circuit and a secret decryption key Km unique to the memory card.
Each can be decoded by w. These public encryption key and secret decryption key have different values for each type of memory card. The public encryption key and the secret decryption key are collectively referred to as a class key, the public encryption key is referred to as a class public encryption key, the secret decryption key is referred to as a class secret decryption key, and a unit sharing the class key is referred to as a class. The class differs depending on the manufacturer, the type of product, the lot at the time of manufacture, and the like.

Further, Cpay is provided as a class certificate of the content reproduction device, and Cmw is provided as a class certificate of the memory card. These class certificates have different information for each class of content reproduction device and memory card.

Further, Cpbi is provided as a function certificate of the content reproduction device. This functional certificate is
This indicates whether or not the content reproduction device has a function that can be restricted by the reproduction control information ACp. That is, when the playback start date and time or the playback end date and time are set as the playback control information ACp, the content playback device sets the date and time when the encrypted content data is played back to
It is necessary to determine whether or not the conditions of the set reproduction start date and time or reproduction end date and time are satisfied. Then, the content playback device capable of playing back the encrypted content data for which the playback start date and time or the playback end date and time is set as the playback control information ACp is a content playback device having a function of determining time. Therefore, the presence / absence of the time determination function is described in the function certificate Cpbi for each class of the content reproduction device.

The class public encryption key and class certificate of these content reproduction devices are stored in the authentication data {KPp
y // Cpay @ KPa is recorded on the content reproducing device at the time of shipment, and the class public encryption key and class certificate of the memory card are authentication data @ KPmw // Cm
It is recorded on a memory card at the time of shipment in the format of w｝ KPa. The function certificate is Cpbi or {Cpbi}
It is recorded on the content reproduction device at the time of shipment in the KPpy format. As will be described in detail later, KPa is a public authentication key common to the entire distribution system.

In the following, for the sake of simplicity, the function certificate describes whether or not the region code indicated by the flags FG3 to FG5 of the reproduction control information ACp, the reproduction start date and time, and the reproduction end date and time are compatible. FG1, F
It is assumed that supporting G2 is a standard function for the content reproduction device.

As keys for managing data processing in the memory card 110, a public encryption key KPmcx and a public encryption key K
There is a secret decryption key Kmcx capable of decrypting data encrypted with Pmcx. The public encryption key and the secret decryption key set for each memory card are collectively called an individual key, the public encryption key KPmcx is called an individual public encryption key, and the secret decryption key Kmcx is called an individual secret decryption key.

Each time license distribution and reproduction are performed, distribution server 10 and portable telephones 100, 102, 1
04 and the common keys Ks1 to Ks3 generated in the memory card 110 are used.

Here, the common keys Ks1 to Ks3 are unique common keys generated for each “session” which is a unit of communication or access between the distribution server, the content reproduction device or the memory card. These common keys Ks1 to Ks3 are referred to as “session keys”.
Also referred to as.

These session keys Ks1 to Ks3
Has a unique value for each session,
It is managed by a distribution server, a content reproduction device, and a memory card. Specifically, the session key Ks1 is generated by the distribution server for each distribution session. The session key Ks2 is generated for each distribution session and reproduction session by the memory card, and the session key Ks3 is generated for each reproduction session in the content reproduction device. In each session, these session keys are transmitted and received, a session key generated by another device is received, encryption is performed using the session key, and a license key or the like is transmitted. Can be improved.

FIG. 5 is a schematic block diagram showing the configuration of distribution server 10 shown in FIG. The distribution server 10 includes an information database 304 for storing distribution information such as data obtained by encrypting content data according to a predetermined method and a content ID, and accounting information according to the start of access to the content data for each user of the mobile phone. , A menu database 307 for storing a menu of content data stored in the information database 304, and a log related to distribution of a license ID or the like generated for each license distribution and specifying a license. And a data processing for receiving data from the information database 304, the billing database 302, the menu database 307, and the distribution record database 308 via the bus BS1 and performing predetermined processing. It includes a section 310 via the communication network, a communication device 350 for performing data transfer between the delivery carrier 20 and the data processing unit 310.

The data processing unit 310 is controlled by the distribution control unit 315 for controlling the operation of the data processing unit 310 according to the data on the bus BS1 and the session key Ks1 during the distribution session. Key generation unit 316 for generating the authentication data, and authentication data $ KPm for authentication transmitted from the memory card.
public authentication key KP for decrypting w // Cmw @ KPa
and an authentication key holding unit 313 for holding the authentication data {KPmw // C}
mw｝ KPa via communication device 350 and bus BS 1, and receives public authentication key KPa from authentication key holding unit 313.
And a session key Ks1 generated by the session key generation unit 316 for each distribution session using the class public encryption key KPmw obtained by the decryption processing unit 312. Cryptographic processing unit 318 for outputting to BS1
And a decryption processing unit 320 that receives data encrypted and transmitted by the session key Ks1 from the bus BS1 and performs decryption processing.

Data processing section 310 further encrypts license key Kc and access control information ACm provided from distribution control section 315 with individual public encryption key KPmcx for each memory card obtained by decryption processing section 320. Encryption processing unit 326 and encryption processing unit 3
26 includes an encryption processing unit 328 for further encrypting the output from the decryption processing unit 320 using the session key Ks2 given from the decryption processing unit 320 and outputting the encrypted data to the bus BS1.

The operation of the distribution server 10 in a distribution session will be described later in detail using a flowchart.

FIG. 6 is a schematic block diagram for describing a configuration of portable telephone 100 shown in FIG.

The mobile phone 100 has an antenna 1100 for receiving a signal wirelessly transmitted by the mobile phone network, and receives a signal from the antenna 1100 and converts it into a baseband signal, or modulates data from the mobile phone 100 to transmit an antenna. A transmission / reception unit 1102 provided to 1100 and a bus BS2 for transmitting / receiving data to / from each unit of mobile phone 100 are included.

The mobile phone 100 further takes in the voice data of the user of the mobile phone 100 and converts the voice data into A
A microphone 1104 for outputting to the D conversion unit 1106, an AD conversion unit 1106 for converting audio data from an analog signal to a digital signal, and an audio encoding unit 1108 for encoding the audio signal converted to the digital signal into a predetermined method. including.

The portable telephone 100 further includes an audio reproducing unit 111 for decoding an audio signal received from another portable telephone.
0 and D for converting the audio signal from the audio reproduction unit 1110 from a digital signal to an analog signal and outputting audio data.
An A conversion unit 1112 and a speaker 1114 that outputs audio data to the outside are included.

The mobile phone 100 further includes an operation panel 1116 for giving an external instruction to the mobile phone 100.
And a display panel 1118 for giving information output from the controller 1120 and the like to the user as visual information, a controller 1120 for controlling the operation of the mobile phone 100 via the bus BS2, a memory card 110 and a bus BS2.
And a memory card interface 1200 for controlling the transfer of data to and from the memory card.

The mobile phone 100 further decrypts the class public encryption key KPp1 and the class certificate Cpa1 with the public authentication key KPa to encrypt the data so that its validity can be authenticated {KPp1 // Cpa1} KP
a, which includes an authentication data holding unit 1500 for holding a. Here, it is assumed that the class y of the mobile phone 100 is y = 1.

The mobile phone 100 further includes a Kp holding unit 1502 for holding Kp1, which is a class-specific decryption key.
And a decryption processing unit 1504 that decrypts data received from the bus BS2 with Kp1 and obtains a session key Ks2 generated by the memory card 110.

Further, mobile phone 100 further includes a session key Ks3 for encrypting data exchanged with memory card 110 over bus BS2 in a reproduction session for reproducing content data stored in memory card 110. And a function certificate holding unit 1507 for holding a function certificate Cpbi. here,
It is assumed that the class i of the mobile phone 100 is i = 1.
The function certificate Cpb1 is stored in the content reproduction device 155.
0 is a function certificate indicating that a function for determining time is provided.

The mobile phone 100 further stores the memory card 1 in the playback session of the encrypted content data.
When the license key Kc and the reproduction control information ACp are received from the server 10, the function certificate Cpb1 from the function certificate holding unit 1507 and the session key Ks3 generated by the session key generation unit 1508 are obtained by the decryption processing unit 1504. A cryptographic processing unit 1506 that encrypts with the session key Ks2 and outputs it to the bus BS2, a decryption processing unit 1510 that decrypts data on the bus BS2 with the session key Ks3 and outputs the license key Kc and the reproduction control information ACp, A clock 1512 for outputting information, and a license key Kc from the decryption processing unit 1510.
And the playback control information ACp, and the playback of the encrypted content data {Dc} Kc is performed based on the playback start date and time or the playback end date and time included in the received playback control information ACp and the time information obtained from the clock 1512. A reproduction control unit 1514 that determines whether or not the reproduction is restricted, and outputs the license key Kc to the decryption processing unit 1516 when the reproduction is not temporally restricted.

The mobile phone 100 further includes a bus BS2
Upon receiving the encrypted content data {Dc} Kc, the decryption processing unit 1516 decrypts the encrypted content data {Dc} Kc with the license key Kc from the playback control unit 1514 and outputs the content data Dc to the music playback unit 1518. And a music reproduction unit 1518 for reproducing the content data in response to the output from the decryption processing unit 1516
A DA converter 1519 for converting the output of the music reproducing unit 1518 from a digital signal to an analog signal, and a terminal 1530 for outputting the output of the DA converter 1519 to an external output device (not shown) such as a headphone. Including.

In FIG. 6, the area surrounded by the dotted line constitutes a content reproducing device 1550 for decrypting the encrypted content data and reproducing the music data.

As described above, the mobile phone 100 is a mobile phone having a function of determining the playback period of the encrypted content data limited by the playback control information ACp.

FIG. 7 is a schematic block diagram for describing a configuration of portable telephone 102 in the data distribution system shown in FIG. The mobile phone 102 is a mobile phone 10
The clock 1512 of 0 is deleted, and the rest is the same as the mobile phone 100. In the mobile phone 102, the function certificate holding unit 1507 stores the function certificate C
The function certificate Cpb2 is held instead of pb1. The function certificate Cpb2 is a function certificate indicating that the content reproduction device 1550 does not have a temporal determination function. Therefore, the mobile phone 102 displays the reproduction control information A
The mobile phone cannot determine the playback period of the encrypted content data limited by Cp.

FIG. 8 is a schematic block diagram for describing a configuration of portable telephone 104 in the data distribution system shown in FIG. The mobile phone 104 is the mobile phone 10
The function certificate holding unit 1507 and the clock 1512 are deleted, and the other components are the same as those of the mobile phone 100. Therefore, the mobile phone 104 is a mobile phone without a function certificate.

The operation of each component of each of the portable telephones 100, 102 and 104 in each session will be described later in detail with reference to flowcharts.

FIG. 9 is a schematic block diagram for describing a configuration of memory card 110 shown in FIG.

As described above, KPm is used as the class public encryption key and the class secret decryption key of the memory card.
w and Kmw are provided, and a class certificate Cmw of the memory card is provided. In the memory card 110, it is assumed that a natural number w = 3. Also, a natural number x for identifying a memory card is represented by x = 4.

Therefore, memory card 110 holds authentication data holding section 1400 holding authentication data {KPm3 // Cm3} KPa and individual secret decryption key Kmc4 which is a unique decryption key set for each memory card. Kmc holding unit 1402, Km holding unit 1421 holding class secret decryption key Km3, and individual secret decryption key Kmc4
K holding public encryption key KPmc4 that can be decrypted by
Pmc holding unit 1416.

As described above, by providing an encryption key for a recording device called a memory card, management of distributed content data and an encrypted license key is executed for each memory card, as will be apparent from the following description. It becomes possible to do.

The memory card 110 further includes an interface 1424 for exchanging signals with the memory interface 1200 via the terminal 1426, a bus BS3 for exchanging signals with the interface 1424,
From the data provided from the interface 1424 to the bus BS3, the class secret decryption key Km3 is stored in the Km holding unit 142.
1, the decryption processing unit 1422 that outputs the session key Ks1 generated in the distribution session by the distribution server 10 to the contact point Pa, and receives the public authentication key KPa from the KPa holding unit 1414 and publishes from the data given to the bus BS3. The decryption process using the authentication key KPa is executed, and the decryption result and the obtained class certificate are sent to the controller 1420.
A decryption processing unit 1408 that outputs the obtained class public key to the encryption processing unit 1410, and a key selectively provided by the changeover switch 1442,
And an encryption processing unit 1406 for encrypting the data selectively given by 6 and outputting it to the bus BS3.

The memory card 110 further stores a session key Ks2 in each of the distribution and reproduction sessions.
And a session key Ks2 output from the session key generator 1418
Processing unit 1410 for encrypting with the class public encryption key KPpy obtained by the decryption processing unit 1408 and sending it to the bus BS3;
and a decryption processing unit 1412 that receives the data encrypted by s2 and decrypts the data by the session key Ks2 obtained from the session key generation unit 1418.

The memory card 110 further includes a bus BS
3, a decryption processing unit 1404 for decrypting the data on the memory card 110 paired with the individual public encryption key KPmc4, the encrypted content data {Dc} Kc, and the encrypted content data {D
License for reproducing c @ Kc (Kc, ACp,
ACm, license ID, content ID), additional information Dc-inf, a playlist of encrypted content data, and a license management file for managing a license from the bus BS3 and stored in the memory 1.
415. The memory 1415 is configured by, for example, a semiconductor memory. The memory 1415 includes a license area 1415A and a data area 1415B.

The license area 1415A is an area for recording a license, and includes a license (license key Kc, reproduction control information ACp, access restriction information AC).
m, license ID, and content ID) are stored in license-specific recording units called entries. When accessing a license, an entry in which the license is stored or an entry for which the license is to be recorded is specified by an entry number.

The data area 1415B includes an encrypted content data {Dc} Kc, related information Dc-inf of the encrypted content data, a license management file for recording information necessary for managing a license for each encrypted content data, A playlist for recording basic information for accessing encrypted content data and a license recorded on a memory card, and a license area 1
An area for recording entry information for managing the entry of 415A. Then, the data area 1415
B can be directly accessed from the outside. Details of the license management file and the playlist will be described later.

The memory card 110 further includes a bus BS
3 to exchange data with the outside via the bus BS
3 includes a controller 1420 for receiving playback information and the like and controlling the operation of the memory card 110.

Note that all components except the data area 1415B are configured in a tamper-resistant module area.

Hereinafter, the operation of each session in the data distribution system shown in FIG. 1 will be described.

[Distribution] First, in the data distribution system shown in FIG.
An operation of distributing the encrypted content data and the license to the memory card 110 mounted on the memory cards 102 and 104 will be described.

FIGS. 10 and 11 show a license distribution operation (hereinafter, referred to as “license”) to memory card 110 attached to mobile phones 100, 102, and 104, which occurs when the encrypted content data is purchased in the data distribution system shown in FIG. FIG. 5 is a first and a second flowchart for explaining a distribution session).

Prior to the processing in FIG.
The users 00, 102, and 104 connect to the distribution server 10 via the telephone network, acquire the content ID for the content desired to be purchased, and further acquire the entry management information for the memory card 110 to acquire the license area. It is assumed that an empty entry in 1415A has been confirmed.

Referring to FIG. 10, portable telephones 100, 1
A distribution request by designating a content ID is made from the users 02 and 104 via the operation panel 1116 (step S100). Then, an instruction is issued via the operation panel 1116 to input a purchase condition AC for purchasing a license of the encrypted content data, and the purchase condition AC is input (step S102). That is, the license key K for decrypting the selected encrypted content data
In order to purchase c, access control information ACm and playback control information ACp of the encrypted content data are set, and a purchase condition AC is input.

When purchase condition AC for encrypted content data is input, controller 1120 gives an instruction to output authentication data to memory card 110 via bus BS2 and memory card interface 1200 (step S104). Controller 1 of memory card 110
420 receives the authentication data transmission request via the terminal 1426, the interface 1424, and the bus BS3 (step S106). And the controller 1420
Reads the authentication data {KPm3 // Cm3} KPa from the authentication data holding unit 1400 via the bus BS3,
{KPm3 // Cm3} KPa is output via bus BS3, interface 1424, and terminal 1426 (step S108).

The controller 1120 of each of the mobile phones 100, 102, and 104 transmits the content ID, license purchase condition data AC, and the distribution request in addition to the authentication data {KPm3 // Cm3} KPa from the memory card 110. (Step S110).

In the distribution server 10, the mobile phones 100,
From 102 and 104, a distribution request, a content ID,
Authentication data {KPm3 // Cm3} KPa and license purchase condition data AC are received (step S11).
2) The decryption processing unit 312 decrypts the authentication data output from the memory card 110 with the public authentication key KPa (step S114).

The distribution control unit 315 performs an authentication process for judging from the decryption processing result in the decryption processing unit 312 whether or not an authorized organization has received encrypted authentication data for certifying its validity. (Step S116).
If it is determined that the authentication data is valid, the distribution control unit 315 approves and accepts the class public encryption key KPm3 and the class certificate Cm3. Then, control goes to the next process (step S118). If it is not valid authentication data, it is rejected and the distribution session is terminated without accepting the class public encryption key KPm3 and the class certificate Cm3 (step S164).

As a result of the authentication, if it is confirmed that the access is from a mobile phone equipped with a memory card having valid authentication data, session key generating section 316 in distribution server 10 transmits a session key for distribution. K
s1 is generated (step S118). The session key Ks1 is encrypted by the encryption processing unit 318 using the class public encryption key KPm3 corresponding to the memory card 110 obtained by the decryption processing unit 312 (step S120).

The distribution control unit 315 generates a license ID (step S122), and stores the license ID and the encrypted session key Ks1 in the license ID //
As {Ks1} Km3, the bus BS1 and the communication device 3
The data is output to the outside through the device 50 (step S124).

When portable telephones 100, 102, and 104 receive license ID // Ks1Km3, controller 1120 sets license ID // Ks1K.
m3 is input to the memory card 110 (step S12).
6). Then, in memory card 110, controller 1420 transmits the license ID // {Ks1} via terminal 1426 and interface 1424.
Km3 is received (step S128). Then, the controller 1420 outputs {Ks1} K via the bus BS3.
m3 to the decoding processing unit 1422, and
Is the memory card 11 held in the Km holding unit 1421
By decrypting with the class secret decryption key Km3 unique to 0, the session key Ks1 is decrypted and the session key Ks1 is received (step S132).

[0110] The controller 1420
After confirming the reception of the session key Ks1 generated in the step (1), the memory card 110 is instructed to generate a session key Ks2 generated at the time of distribution operation in the memory card 110. Then, the session key generation unit 1418 generates a session key Ks2 (Step S134).

The encryption processing unit 1406 includes the changeover switch 14
The changeover switch 14 is provided by the session key Ks1 provided from the decryption processing unit 1422 through the contact point Pa at 42.
The session key Ks2 and the individual public encryption key KPmc4, which are given by sequentially switching the contacts 46, are encrypted as one data string, and {Ks2 // KPm
c4 @ Ks1 is output to the bus BS3. Encrypted data {Ks2 // KPmc4} Ks1 output to bus BS3
Is output from the bus BS3 to the mobile phones 100, 102, and 104 via the interface 1424 and the terminal 1426 (step S138).
02 and 104 to the distribution server 10 (step S140).

Referring to FIG. 11, distribution server 10
Receiving {Ks2 // KPmc4} Ks1, the decryption processing unit 320 performs decryption processing using the session key Ks1, and receives the session key Ks2 generated by the memory card 110 and the individual public encryption key KPmc4 of the memory card 110. (Step S142).

The distribution control unit 315 obtains the license key Kc from the information database 304 according to the content ID obtained in step S112 (step S14).
4) In accordance with the license purchase condition data AC acquired in step S112, the access control information ACm and the reproduction control information ACp are determined (step S146).

The distribution control unit 315 gives the generated license, that is, the license ID, the content ID, the license key Kc, the reproduction control information ACp, and the access control information ACm to the encryption processing unit 326. The encryption processing unit 326 encrypts the license using the individual public encryption key KPmc4 of the memory card 110 obtained by the decryption processing unit 320 and encrypts the encrypted data {license ID // content ID // Kc // ACm // ACp} Kmc4.
Is generated (step S148). Then, the encryption processing unit 328 outputs the encrypted data from the encryption processing unit 326 {license ID // content ID // Kc // ACm //
ACp @ Kmc4 is encrypted with the session key Ks2 from the decryption processing unit 320, and the encrypted data {license ID // content ID // Kc // ACm //
ACp {Kmc4} Ks2 is output. Delivery control unit 31
5 is the encrypted data via the bus BS1 and the communication device 350 {license ID // content ID // Kc
/// ACm // ACp {Kmc4} Ks2 is transmitted to the mobile phones 100, 102 and 104 (step S15).
0).

The mobile phones 100, 102, and 104 transmit the encrypted data {license ID // content ID // Kc // ACm // ACp {Kmc4} Ks
2 is received and input to the memory card 110 via the bus BS2 (step S152). In the memory card 110, the terminal 1426 and the interface 1424
The decoding processing unit 1412 decodes the received data given to the bus BS3 via the. Decryption processing unit 1412
Decrypts the data received on the bus BS3 using the session key Ks2 given from the session key generator 1418, and outputs the data to the bus BS3 (step S154).

At this stage, an encrypted license {license ID // content ID // Kc // ACm // ACp} Kmc4 that can be decrypted with the individual secret decryption key Kmc4 held in the Kmc holding unit 1402 is stored in the bus BS3. Is output (step S154).

In accordance with an instruction from the controller 1420, the encrypted license $ license ID // content ID /
/ Kc // ACm // ACp @ Kmc4 is decrypted by the individual secret decryption key Kmc4 in the decryption processing unit 1404, and the license (license key Kc, license I
D, content ID, access control information ACm, and reproduction control information ACp) are received (step S15).
6).

The controller 1120 of the mobile phone 100, 102, 104
15, the entry number for storing the license received from the distribution server 10 is determined, and the determined entry number is assigned to the bus B.
The data is input to the memory card 110 via S2 and the memory card interface 1200. Then, the controller 1120 additionally updates the entry management information (step S158).

Then, controller 1420 of memory card 110 receives the entry number via terminal 1426 and interface 1424, and stores the license (step S156) in license area 1415A of memory 1415 specified by the received entry number. License key Kc, License I
D, content ID, access control information ACm, and reproduction control information ACp) are stored (step S160).
When the writing of the license is completed, the controller 112
0 updates the entry management information so that the entry input to the memory card 110 in step S158 is in use, and inputs the updated entry management information to the memory card 110 (step S162). The controller 1420 of the memory card 110 uses the input entry management information to
The entry management information is written in 15B (step S16)
3). Then, the license distribution operation ends (step S164).

After the license distribution session is completed, controller 1120 of mobile phone 100, 102, 104 transmits a request for distribution of the encrypted content data to distribution server 10, and distribution server 10 distributes the encrypted content data. Receive the request. Then, the distribution control unit 315 of the distribution server 10 acquires the encrypted content data {Dc} Kc and the additional information Dc-inf from the information database 304, and transfers these data to the bus BS.
1 and via the communication device 350.

The portable telephones 100, 102, 104
{Dc} Kc // Dc-inf is received, and encrypted content data {Dc} Kc and additional information Dc-inf are received.
Accept. Then, controller 1120 transmits encrypted content data {Dc} Kc and additional information Dc
-Inf as one content file on the bus BS2
And input to the memory card 110 via the memory card interface 1200. The controller 11
20 generates a license management file for the encrypted content data {Dc} Kc including the license entry number stored in the memory card 110, the plaintext license ID and the content ID, and the additional information Dc-inf. The data is input to the memory card 110 via the memory card interface 1200. Further, the controller 1120 stores, in the playlist recorded in the memory 1415 of the memory card 110, information on the received content, such as the name of the recorded content file and the license management file, and additional information Dc-i.
Information (tune name, artist name) and the like relating to the encrypted content data extracted from nf are added, and the entire process ends.

Thus, the mobile phones 100, 10
2 and 104, the memory card 110 is a device that holds regular authentication data, and at the same time, the public encryption key K that can be encrypted and transmitted with the class certificate Cm3.
After confirming that Pm3 is valid, the content data can be distributed, and the distribution of the content data to an unauthorized memory card can be prohibited.

Further, by transmitting and receiving the encryption keys generated by the distribution server and the memory card, respectively, executing the encryption using the encryption keys received by each other, and transmitting the encrypted data to the other party, In the transmission and reception of encrypted data, mutual authentication can be performed in effect, and the security of the data distribution system can be improved.

Referring to FIG. 12, license area 1415A and data area 1415B in memory 1415 of memory card 110 will be described. Data area 1
415B includes a playlist file 160, entry management information 165, and content files 1611-16.
1n and license management files 1621 to 162n are recorded. Content files 1611-16
1n is the received encrypted content data {Dc} Kc
And the additional information Dc-inf are recorded as one file. Also, the license management files 1621 to 162
n is the content files 1611 to 161 respectively
n.

When receiving the encrypted content data and the license from distribution server 10, memory card 110 records the encrypted content data and the license in memory 1415.

Accordingly, the license of the encrypted content data transmitted from distribution server 10 to memory card 110 is stored in license area 1415A of memory 1415.
By reading the license management file of the playlist file 160 recorded in the area designated by the entry number of the reproduction list 160 and recorded in the data area 1415B of the memory 1415, the entry number can be obtained. License area 14
15A.

[Reproduction] As described above, the mobile phone 10
0, 102, 104 memory card 110
Can receive the encrypted content data and the license from the distribution server 10. Therefore, next, reproduction of the encrypted content data received by the memory card will be described.

FIG. 13 shows portable telephones 100, 102, 104 of content data received by memory card 110.
5 is a flowchart for explaining a reproducing operation in the step S. Before the processing in FIG.
The users 0, 102, and 104 determine the content (song) to be reproduced according to the reproduction list recorded in the data area 1415B of the memory card 110, specify the content file, and acquire the license management file. The description is based on the assumption.

Referring to FIG. 13, at the start of the reproduction operation, a reproduction request is input from the user of portable telephones 100, 102, 104 to portable telephones 100, 102, 104 via operation panel 1116 (step S10). . Then, the mobile phones 100, 102, 1
An initialization process is performed between the memory card 04 and the memory card 110 (step S20). Details of this initialization processing will be described later. When the initialization process is completed, the mobile phone 1
The controllers 1120 of 00, 102, and 104 determine whether an error has occurred in the initialization processing (step S30). If an error has occurred, the operation of reproducing the encrypted content data ends (step S70). .

In step S30, the controller 1
When it is determined that no error has occurred in the initialization processing, the reproduction permission processing is performed (step S120).
40). The details of the reproduction permission process will also be described later.
When the reproduction permission process ends, the mobile phones 100 and 10
The controller 1120 determines whether an error has occurred in the reproduction permission process (step S5).
0), when an error occurs, the reproduction permission process (step S
Step 40) is repeated. When the controller 1120 determines in step S50 that no error has occurred in the reproduction permission process, the reproduction process is performed (step S60). Then, steps S40, S50, S
Step 60 is repeated to reproduce the encrypted content data. Therefore, in the reproducing operation, once the initialization processing is performed, the encrypted content data can be reproduced without performing the initialization processing for the second and subsequent times.

FIG. 14 is a flowchart for explaining in detail the operation of the initialization processing shown in FIG. FIG.
Referring to FIG. 13, when a reproduction request is made in step S10 shown in FIG. 13, controller 1120 makes a request for output of authentication data to content reproduction device 1550 via bus BS2 (step S200). An output request for authentication data is received (step S202). Then, the authentication data holding unit 1500 stores the authentication data {KPp1 // Cpa1}.
KPa is output (step S204), and the controller 1
120, the authentication data {KPp1 // Cp} is transmitted to the memory card 110 via the memory card interface 1200.
a1 @ KPa is input (step S206).

Then, memory card 110 receives authentication data {KPp1 // Cpa1} KPa (step S208), and decryption processing section 1408 stores received authentication data {KPp1 // Cpa1} KPa in KPa holding section 1414. (Step S210), and the controller 1420 performs an authentication process based on the result of the decryption process by the decryption processing unit 1408. That is, the authentication data {KPp1 // Cpa
An authentication process is performed to determine whether 1｝ KPa is legitimate authentication data (step S212). If decryption has failed, the process moves to step S222, and the initialization processing ends. If the authentication data can be decrypted, the controller 1
420 controls the session key generation unit 1418, and the session key generation unit 1418 generates a session key Ks2 for a reproduction session (step S21).
4). Then, the encryption processing unit 1410 transmits the encrypted data {Ks2} Kp1 obtained by encrypting the session key Ks2 from the session key generation unit 1418 with the public encryption key KPp1 decrypted by the decryption processing unit 1408 to the bus BS3.
Output to Then, controller 1420 transmits encrypted data {Ks} to memory card interface 1200 via interface 1424 and terminal 1426.
2｝ Kp1 is output (step S216). The controller 1120 of the mobile phone 100, 102, 104
The encrypted data {Ks2} Kp1 is obtained via the memory card interface 1200. Then, the controller 1120 transfers the encrypted data {Ks2} Kp1 to the bus B
This is given to the decryption processing unit 1504 of the content reproduction device 1550 via S2 (step S218), and the decryption processing unit 1504 uses the secret decryption key Kp1 paired with the public encryption key KPp1 output from the Kp holding unit 1502. The encrypted data {Ks2} Kp1 is decrypted, and the session key Ks2 is received (step S220). Then, the initialization processing ends (step S222).

FIG. 15 is a flowchart for explaining in detail the operation of the reproduction permission process (step S40) shown in FIG. FIG. 15 shows the mobile phones 100, 1
12 is a flowchart showing the operation of the reproduction permission process between the memory card 02 and the memory card 110. Referring to FIG. 15, when it is determined that no error has occurred in step S30 shown in FIG.
The controller 1120 controls the session key generation unit 1508 to generate the session key Ks3 (step S300), and the session key generation unit 1508
Generates a session key Ks3 for a reproduction session, and outputs the session key Ks3 to the encryption processing unit 1506 (step S304). The encryption processing unit 1506 receives the session key Ks from the session key generation unit 1508.
3 and the function certificate Cpb from the function certificate holding unit 1507
i and the session key Ks2 from the decryption processing unit 1504.
And outputs {Ks3 // Cpbi} Ks2 (step S306).
Bus BS2 and memory card interface 1200
And outputs {Ks3 // Cpbi} Ks2 to memory card 110 (step S308).

Then, the decryption processing unit 1412 of the memory card 110 includes the terminal 1426 and the interface 142
4, and {Ks3 // Cpbi} via bus BS3
Receive Ks2. The decryption processing unit 1412 outputs the session key K generated by the session key generation unit 1418.
By decrypting {Ks3 // Cpbi} Ks2 by s2, the session key Ks3 and the function certificate Cpbi generated by the mobile phones 100 and 102 are received (step S310).

The controller 1120 of each of the mobile phones 100 and 102 obtains the entry number in which the license is stored from the license management file of the reproduction request music previously obtained from the memory card 110, and obtains the obtained entry number, the license output request, and the like. Is input to the memory card 110 via the memory card interface 1200 (step S312).

The controller 142 of the memory card 110
0 accepts the entry number and the license output request,
The license stored in the area specified by the entry number is obtained (step S314). Then, the controller 1420 reads the reproduction control information ACp from the acquired license and checks the reproduction restriction flag in the reproduction control information ACp, and the reproduction restriction flag becomes active “1” by the function certificate Cpbi received in step S314. Content playback device 1550 that has output the function certificate determines whether or not playback control information ACp is provided.
Is determined (step S31).
6).

When memory card 110 receives a function certificate from mobile phone 100, the function certificate indicates function certificate Cp indicating that content reproduction device 1550 of mobile phone 100 has a function of determining time.
b1, the controller 1420 sets the flag F indicating that there is a time limit for the reproduction control information ACp.
If any one of G4 and FG5 is active “1”, it is determined that it can be handled. When both the flags FG4 and FG5 are negative “0”, the controller 1420 determines that the time can be dealt with because there is no restriction on time.

On the other hand, when the memory card 110 is
02, the function certificate is received from the content reproduction device 155 of the mobile phone 102.
Since 0 is a function certificate Cpb2 indicating that there is no function for determining time, the controller 1420 sets one of the flags FG4 and FG5 indicating that there is a restriction on the time of the reproduction control information ACp to active “1”. It is determined that the case cannot be handled. Flags FG4, FG5
Are both negative “0”, the controller 1420 determines that there is no restriction on the time, and that it can respond. When the reproduction start date and time and the reproduction end date and time are not specified in the reproduction control information ACp, the controller 1420 determines that the function certificate Cpb2 corresponds to the reproduction control information ACp.

[0139] Regarding the flag FG3, when the content reproduction device 1550 of the portable telephone 100 or the portable telephone 102 holds the area code and reproduces only the content data permitted to be reproduced in the area corresponding to the area code, Each function certificate indicates that the area code is compatible. If the flag FG3 is active “1”, it is determined that the function certificate can be used when the function certificate indicates that the area code is compatible. Conversely, if the flag FG3 is negative “0”, it is determined that the content can be reproduced in all regions not restricted by the region code, and can be supported by all devices without relying on the function certificate. The same applies to the other flags FG1 and FG2.

In step S316, when it is determined that all the flags FG1 to FG5 constituting the reproduction restriction flag can be handled, the controller 1420 determines that the reproduction control information ACp has been described. Judgment is made, and if any one cannot be dealt with, it is judged that correspondence is impossible.

In step S316, when controller 1420 determines from content certificate Cpbi that content reproduction device 1550 does not support reproduction control information ACp, the reproduction permission process ends (step S330). In step S316, the controller 1420 transmits the function certificate Cpbi to the playback control information AC.
p, the access restriction information ACm included in the license is confirmed (step S31).
8).

In step S318, by checking the access restriction information ACm which is information relating to the restriction on the access to the memory, specifically, by checking the number of times of reproduction, if the reproduction is already disabled, When the reproduction operation is completed and the number of times of reproduction of the access restriction information is limited, the number of reproductions of the access restriction information ACm is changed (step S320), and the process proceeds to the next step (step S322). On the other hand, access restriction information AC
If the reproduction is not restricted by the number of reproductions of m, step S318 is skipped, and the process proceeds to the next step (step S322) without changing the number of reproductions of the access restriction information ACm.

If it is determined in step S318 that the reproduction operation can be performed, the license key Kc and the reproduction control information ACp of the reproduction request music recorded in the license area 1415A of the memory 1415 are stored on the bus BS3. (Step S32)
2).

The obtained license key Kc and reproduction control information ACp are sent to the encryption processing unit 1406 via the bus BS3. The encryption processing unit 1406 includes a changeover switch 1442
The license key Kc and the reproduction control information ACp received via the bus BS3 are encrypted by the session key Ks3 received from the decryption processing unit 1412 via the contact Pb of
{Kc // ACp} Ks3 is output to bus BS3.

Encrypted data $ K output to bus BS3
c // ACp @ Ks3 includes an interface 1424, a terminal 1426, and a memory card interface 120.
0 to the mobile phones 100 and 102 (step S322).

Controller 1120 of mobile phones 100 and 102 transmits encrypted data {Kc // ACp} via memory card interface 1200 and bus BS2.
Ks3 is received, and the received encrypted data {Kc //
ACp @ Ks3 is provided to the decryption processing unit 1510 of the content reproduction device 1550 via the bus BS2 (step S324). Then, the decryption processing unit 1510
Encrypted data given via S2 {Kc // AC
p｝ Ks3 is decrypted by the session key Ks3 from the session key generation unit 1508, and the license key Kc and the reproduction control information ACp are decoded by the reproduction control unit 15.
14 is output. As a result, the license key Kc and the reproduction control information ACp are received (step S32).
6).

The reproduction control section 1514 includes the reproduction control information AC
It is determined whether or not the encrypted content data {Dc} Kc can be reproduced based on p (step S328). Specifically, in the case of the mobile phone 100, assuming that the content reproduction device corresponds to the flags FG3 to FG5,
The reproduction control unit 1514 sets the flag FG3 of the reproduction restriction flag.
To FG5 is active “1”. Then, when the flag FG3 is active “1”, the reproduction control unit 1514 compares the area code held therein with the area code described in the area 21 of the reproduction control information ACp. The permission operation ends. When the flag FG4 or the flag FG5 is active “1”, the reproduction control unit 1514 acquires the time information from the clock 1512, and the reproduction start date and time or the reproduction end time included in the acquired time information and the reproduction control information ACp. Based on the date and time, the encrypted content data
It is determined whether the reproduction of c @ Kc is restricted by the reproduction start date and time or the reproduction end date and time. When the reproduction of the encrypted content data $ Dc @ Kc is restricted by the reproduction start date and time or the reproduction end date and time, the encryption is performed. The reproduction permission operation of the encrypted content data {Dc} Kc ends (step S330). When the playback control unit 1514 determines that the playback of the encrypted content data {Dc} Kc is not restricted by the playback control information ACp, the license key K
c is output to the decryption processing unit 1516, and the reproduction processing of the encrypted content data {Dc} Kc described later is performed.

On the other hand, in the case of the portable telephone 102, the content reproduction device corresponds only to the flag FG3 and does not correspond to the flags FG4 and FG5. However, step S3
By the process of No. 16, the flags FG4 and FG5 are always negative "0". The reproduction control unit 1514 checks whether the flag of the reproduction restriction flag is active “1”.
When the flag FG3 is active “1”,
The playback control unit 1514 stores the area code held therein,
When there is no match as compared with the area code described in the area 21 of the reproduction control information ACp, the reproduction permission operation ends (step S330). When the held area code matches the area code described in area 21 of playback control information ACp, playback control section 1514 outputs license key Kc to decryption processing section 1516, and encrypts content data {Dc} to be described later. The reproduction process of Kc is performed.

Then, the reproduction permission process ends (step S330). Thus, in the reproduction permission process,
The memory card 110 determines whether the function certificate Cpbi transmitted from the mobile phones 100 and 102 to the memory card 110 corresponds to the reproduction control information ACp of the encrypted content data {Dc} Kc (step S).
316), and the function certificate Cpbi is the reproduction control information AC.
When it does not correspond to p, the reproduction permission process ends. Therefore, when a memory card is inserted into a mobile phone having no function corresponding to the function restricted by the playback control information ACp, a license for decrypting and playing back the encrypted content data is transferred from the memory card 110 to the mobile phone 100, Thus, the reproduction of the encrypted content data {Dc} Kc can be restricted.

In step S328 of the reproduction permission process, when the reproduction control unit 1514 determines that the encrypted content data {Dc} Kc can be reproduced, the reproduction control unit 1514 outputs a result of the determination to the controller 1120 via the bus BS2. , And outputs the license key Kc to the decryption processing unit 1516. Then, the controller 1120 requests the encrypted content data {Dc} Kc from the memory card 110 via the memory card interface 1200. Then, the controller 1420 of the memory card 110
Indicates that the encrypted content data {D
Acquires c 取得 Kc, bus BS3, interface 142
4, and the encrypted content data {Dc} Kc to the memory card interface 1200 via the terminal 1426.
Is output.

The controller 1120 of each of the mobile phones 110 and 102 obtains the encrypted content data {Dc} Kc via the memory card interface 1200, and obtains the encrypted content data {Dc} Kc via the bus BS2.
To the content reproduction device 1550.

Then, the content reproducing device 1550
Of the encrypted content data {D
The content data Dc is obtained by decrypting c @ Kc with the license key Kc output from the reproduction control unit 1514.

Then, the decrypted content data Dc
Is output to the music playback unit 1518 and the music playback unit 1518
Reproduces the content data Dc, and
9 is a terminal for converting a digital signal into an analog signal.
Output to 30. Then, the music data is output from the terminal 1530 to the headphone 130 via the external output device and reproduced. Thus, the reproduction operation ends.

In addition, the portable telephone 1 without the function certificate
04 is performed in step S30 of FIG.
Steps S6, S308 and S310 shown in FIG.
6a, S308a, S310a, and S311 in accordance with the flowchart. After step S304 shown in FIG. 15, the encryption processing unit 1506 of the mobile phone 104
Encrypts the session key Ks3 from the session key generation unit 1508 with the session key Ks2 from the decryption processing unit 1504 to generate encrypted data {Ks3} Ks
2 is output to the bus BS2 (step S306a). Then, the controller 1120 transmits the encrypted data {Ks
3 @ Ks2 is received via the bus BS2 and output to the memory card 110 via the memory card interface 1200 (step S308a). Then, the controller 1420 of the memory card 110
6, receives the encrypted data {Ks3} Ks2 via the interface 1424 and the bus BS3, and gives the received encrypted data {Ks3} Ks2 to the decryption processing unit 1412 via the bus BS3. The decryption processing unit 1412
The encrypted data {Ks3} Ks2 is decrypted with the session key Ks2 from the session key generation unit 1418 (step S310a).

[0155] Then, controller 1420 determines in step S310a that a function certificate has not been input, and assumes that a standard function required for the content reproduction device is provided, and sets the default value to the content stored in mobile phone 104. Playback device 1550
Is accepted as the function certificate Cpbi (step S31).
1). After step S311, step S3 shown in FIG.
Steps 312 to S330 are executed, and the reproduction permission process in the mobile phone 104 ends. The default value received in step S311 is the flag FG1, shown in FIG.
If it is possible to cope with the reproduction restriction by the FG2 and if the restriction information on the reproduction speed and the editability is set in the reproduction control information ACp of the encrypted content data {Dc} Kc, the function certificate is set in step S316 shown in FIG. Corresponds to the reproduction control information ACp.

As described above, even when the memory card is inserted into a mobile phone having no function certificate, the default value is used as the function certificate to reproduce the encrypted content data in accordance with the flowcharts shown in FIGS. The permission process can be executed, and the encrypted content data can be reproduced even in a mobile phone having no function certificate.

According to the first embodiment, the mobile phone has the function certificate, and the memory card decrypts the encrypted content data when the function certificate transmitted from the mobile phone corresponds to the reproduction control information. Since the license key to be reproduced is output to the mobile phone, the reproduction of the encrypted content data can be easily restricted only by setting the restriction information in the reproduction control information.

[Second Embodiment] Referring to FIG. 17, mobile phone 100A according to a second embodiment is similar to mobile phone 10A.
0 function certificate holding unit 1507 and function certificate holding unit 15
07A instead of the mobile phone 100
Is the same as The function certificate holding unit 1507A holds the function certificate Cpb1 in the form of encrypted data {Cpb1} KPp1 obtained by encrypting the function certificate Cpb1 with the public encryption key KPp1 unique to the content reproduction device 1550.

Referring to FIG. 18, mobile phone 102A according to the second embodiment is different from mobile phone 102 in that functional certificate holding unit 1507 of mobile phone 102 is replaced with function certificate holding unit 1507A. Is the same. The function certificate holding unit 1507A stores the function certificate Cpb2 in the public encryption key KP unique to the content reproduction device 1550.
Encrypted data {Cpb1} KP encrypted by p1
The function certificate Cpb2 is held in the format of p1.

As described above, in the second embodiment, portable telephones 100A and 102A transmit function certificate Cpbi to public encryption key K unique to content reproduction device 1550.
It is stored in a form signed by Pp1. Then, the memory card decrypts the encrypted data {Cpb1} KPp1 with the public encryption key KPp1, and determines whether or not the function certificate Cpbi has been received, thereby determining the function certificate Cpbi.
It can be confirmed that bi has been received from a legitimate content reproduction device.

Referring to FIG. 19, memory card 110A according to the second embodiment is the same as memory card 110 except that decryption processing section 1409 is added to memory card 110. In the reproduction permission process, the decryption processing unit 1409 uses the encrypted data {Cpbi} KPp1
Is decrypted by the public encryption key KPp1 decrypted by the decryption processing unit 1408 to obtain a functional certificate Cpbi. In this case, the decryption processing unit 1408 determines that the authentication data {K
The public encryption key KPp1 obtained by decrypting Pp1 // Cpa1} with the public authentication key KPa is used as the encryption processing unit 1410.
And outputs it to the decoding processing unit 1409.

When reproducing the encrypted content data,
The initialization process performed between the mobile phones 100A, 102A, 104 and the memory card 110A is performed according to the flowchart shown in FIG. The reproduction permission process is performed according to the flowchart shown in FIG. The flowchart shown in FIG. 20 is different from the flowchart shown in FIG. 15 in steps S306, S308, and S3.
10 to steps S306b, S308b, S310b,
Steps S310c and S310d are the same, and the rest is the same as the flowchart shown in FIG.

After step S304, the mobile phone 100
A, the encryption processing unit 1506 of 102A and 104 receives the function certificate {Cpbi} K from the function certificate holding unit 1507A.
Pp1 and the session key Ks3 from the session key generation unit 1508 are encrypted with the session key Ks2 from the decryption processing unit 1504, and the encrypted data {Cp
bi｝ KPp1 // Ks3｝ Ks2 is output to the bus BS2 (step S306b). Controller 1120
Is the encrypted data {Cpbi} KPp on the bus BS2.
1 // Ks3 @ Ks2 is converted to memory card interface 1
The data is input to the memory card 110A via the memory 200 (step S308b).

Then, in memory card 110A, controller 1420 receives encrypted data {Cpbi} KPp1 // Ks3 @ Ks2 via terminal 1426, interface 1424 and bus BS3, and receives the received encrypted data { Cpbi @ KPp1
// Ks3｝ Ks2 through bus BS3 to decryption processing unit 1
412. Then, the decryption processing unit 1412 outputs the encrypted data {Cpbi} KPp1 // Ks3 {Ks2
Is decrypted with the session key Ks2 from the session key generation unit 1418, and the encrypted data {Cpbi} K
It receives Pp1 and the session key Ks3 (step S310b). The decryption processing unit 1412 converts the encrypted data {Cpbi} KPp1 obtained by decryption
409, and outputs the session key Ks3 to the switch 14
42 to the contact Pb.

Then, the decryption processing unit 1409 decrypts the encrypted data {Cpbi} KPp1 using the public encryption key KPp1 from the decryption processing unit 1408, and
bi is output to the bus BS3 (step S310c).
The controller 1420 determines whether or not the function certificate Cpbi has been received (step S310d). If the function certificate Cpbi has not been received, the reproduction permission process ends (step S330). In step S310d,
When the controller 1420 determines that the function certificate Cpbi has been received, steps S312 to S330 are performed, and the reproduction permission process ends.

When the memory card 110A is the portable telephone 104
When the camera is mounted on the camera, steps S306b, S308b, S310b, and S310 in the flowchart shown in FIG.
c and S310d in steps S306a and S306 shown in FIG.
The reproduction permission process in the mobile phone 104 is performed according to the flowchart replaced with 308a, S310a, and S311.

The other points are the same as in the first embodiment. According to the second embodiment, since the mobile phone holds the function certificate in a form signed by the public encryption key unique to the content reproduction device, only the memory card holding the public encryption key accepts the function certificate. It is possible to prevent an unauthorized memory card from accepting a function certificate.

[Third Embodiment] Referring to FIG. 21, a portable telephone 100B according to a third embodiment has a portable telephone 10B.
The function certificate holding unit 1507A of the mobile phone 1A is replaced with a function certificate holding unit 1507B.
Same as 00A. The function certificate holding unit 1507B
The function certificate {Cpb1} KPp1 is directly output to the bus BS2.

Referring to FIG. 22, a mobile phone 102B according to the third embodiment is different from mobile phone 102A in that function certificate holding unit 1507A of mobile phone 102A is replaced with function certificate holding unit 1507B. Is the same. The function certificate holding unit 1507B stores the function certificate {Cp
b2 @ KPp1 is directly output to the bus BS2.

Referring to FIG. 23, memory card 110B according to the third embodiment has the same components as memory card 110A according to the second embodiment, but decryption processing unit 14
Reference numeral 12 differs from memory card 110A in that decryption processing unit 1409 does not output the result of decrypting the encrypted data using session key Ks2 to decryption processing unit 1409, and decryption processing unit 1409 exchanges data with bus BS3.

Memory Card 110B According to Third Embodiment
Is the authentication data $ K from the mobile phones 100B and 102B.
Pp1 // Cpa1 {KPa} and functional certificate {Cpbi}
This is a memory card corresponding to receiving KPp1 in the initialization processing.

Referring to FIG. 24, the initialization process in the process of reproducing the encrypted content data according to the third embodiment will be described. The flowchart shown in FIG.
Steps S204 and S20 of the flowchart shown in FIG.
6, S208 to steps S204a, S206a, S2
08 is replaced with steps S213a and S213b between steps S212 and S214, and the other steps are the same as those in the flowchart shown in FIG. After step S202, the mobile phones 100B, 1
02B controller 1120 sends authentication data $ KPp1 to authentication data holding unit 1500 and function certificate holding unit 1507B of content reproduction device 1550, respectively.
// Cpa1 ¥ KPa and function certificate ¥ Cpbi ¥ K
Pp1 is output, and the authentication data holding unit 15
00 outputs the authentication data {KPp1 // Cpa1} KPa to the bus BS2, and the function certificate holding unit 1507B
The function certificate {Cpbi} KPp1 is output to the bus BS2 (step S204a). And the controller 11
Reference numeral 20 denotes {KPp1 // Cpa1} KPa // via the bus BS2 and the memory card interface 1200.
{Cpbi} KPp1 is output to memory card 110B (step S206a).

Then, the controller 1420 of the memory card 110B connects the terminal 1426 and the interface 1
424 and the encrypted data {KPp
1 // Cpa1 @ KPa // {Cpbi} KPp1 is received (step S208a). Then, steps S210 and S212 described above are performed. Then, the controller 1420 gives the encrypted data {Cpbi} KPp1 to the decryption processing unit 1409, and the decryption processing unit 1409 converts the encrypted data {Cpbi} KPp1 to the decryption processing unit 1408.
Decrypted by the public encryption key KPp1 (step S
213a), and outputs the function certificate Cpbi to the bus BS3. The controller 1420 determines whether or not the function certificate Cpbi has been received (step S213b). If the function certificate Cpbi has not been received, the initialization process ends (step S222). When the controller 1420 determines in step S213b that the function certificate Cpbi has been accepted, the above-described steps S214 to S220 are executed, and the initialization processing ends.

Referring to FIG. 25, memory card 110B
Initialization processing when the is mounted on the mobile phone 104 will be described. The flowchart shown in FIG. 25 corresponds to steps S212 and S2 in the flowchart shown in FIG.
14, steps S213 and S213b are inserted, and the rest is the same as the flowchart shown in FIG.

In step S212, controller 1420 of memory card 110B makes public encryption key KPp
If it is determined that “1” has been received, the default value is received as the function certificate Cpbi of the content reproduction device 1550 of the mobile phone 104 (step S213). Then, the controller 1420 determines whether or not the function certificate Cpbi has been accepted (step S213b). If the function certificate Cpbi has not been accepted, the initialization process ends (step S222). When the controller 1420 determines in step S213b that the function certificate Cpbi has been accepted, the above-described steps S214 to S220 are executed, and the initialization processing ends. Since the default value has been accepted as the function certificate Cpbi in step S213, the controller 1420 determines in step S213
b, it is determined that the function certificate Cpbi has been accepted.

As described above, even when the memory card is inserted into a mobile phone having no function certificate, the initialization processing is executed to reproduce the encrypted content data.

Referring to FIG. 26, the operation of the reproduction permission process according to the third embodiment will be described. In the flowchart shown in FIG. 26, steps S306, S308, and S310 of the flowchart shown in FIG.
a, S308a, and S310a, and the others are the same as the flowchart shown in FIG. After step S304, the mobile phones 100B, 102B, 10
The encryption processing unit 1506 of the fourth
08 to the decryption processing unit 150
4 and outputs the encrypted data {Ks3} Ks2 to the bus BS2 by encrypting with the session key Ks2 (step S306a). Then, the controller 1120
Receives the encrypted data {Ks3} Ks2 via the bus BS2 and outputs it to the memory card 110B via the memory card interface 1200 (step S308)
a). Then, the controller 1420 of the memory card 110B connects the terminal 1426, the interface 142
4, and the encrypted data {Ks3} via the bus BS3.
Ks2 is received, and the received encrypted data {Ks3}
Ks2 is supplied to the decoding processing unit 1412 via the bus BS3. The decryption processing unit 1412 outputs the encrypted data {Ks3} K
s2 is decrypted with the session key Ks2 from the session key generation unit 1418 to receive the session key Ks3 (step S310a). Then, step 3
Steps S12 to S328 are executed, and the reproduction permission process ends (step S330).

The rest is the same as the first embodiment. According to the third embodiment, the authentication data and the function certificate are transmitted from the mobile phone to the memory card in the initialization process in the playback process of the encrypted content data. Therefore, if the function of the mobile phone is confirmed once, Thereafter, the encrypted content data can be reproduced without checking the function of the mobile phone.

In the above description, the flags FG1 and FG2 are described as not being described in the function certification. However, since the flag FG1 indicates that the reproduction speed change is prohibited,
The content reproduction device whose reproduction speed cannot be changed or the reproduction speed can be changed, but the flag FG1
When the flag FG1 is active "1", the function certificate for the content reproduction device which can be controlled so as not to make a change when "1" is active is described as being compatible. To play.

Since the flag FG2 is editable or uneditable, if the flag FG2 is active "1", the flag FG2 is prohibited from being used for special reproduction. Therefore, reproduction is performed according to the flag FG2 so as not to depend on special reproduction. The function certificate for the content playback device that can perform the operation is described as being compatible, and the content playback device controls the content whose flag FG2 is active “1” so as not to be played back during special playback, thereby adding the function certificate. It is also possible.

Furthermore, after the standard functions of the content reproduction device are determined in advance, if there is an unsupported function, it is also possible to indicate in the function certificate that the function does not work for the function certificate.

Further, the function can be described by providing a corresponding function flag constituted by a flag uniquely corresponding to each flag constituting the reproduction restriction flag with respect to the function certificate. The determination in S316 may be made by checking the positions of the reproduction restriction flag and the reproduction function corresponding flag.

In the first to third embodiments,
Download and record music data as content data to the memory card provided in the mobile phone,
Although it has been described that music data recorded on a memory card is reproduced by a content reproducing device provided in a mobile phone, the present invention is not limited to this.

The present invention is applicable not only to music data, but also to image data, moving image data, text data, reading data, sound source data, application programs such as games, and the like. Applicable to all data that needs to be protected.

[0185] In addition, although a description has been given of downloading a license via a portable telephone network, the present invention is not limited to a data supply source, and is applicable to a digital communication network such as the Internet. Furthermore, it is also possible to write directly on a memory card by a device such as a personal computer.

Further, the recording device for recording a license has been described by taking a memory card as an example. However, the recording device is not limited to a memory card, and any recording device capable of controlling input / output such as a hard disk can be used. It may be.

Furthermore, the license and the encrypted content data need not necessarily be recorded on the same recording device, and the encrypted content data may be recorded on a conventional recording device.

[0188] Furthermore, the content playback device has been described as being provided in the mobile phone, but the mobile phone is not necessarily required. It is not necessary that the same terminal has a function of connecting to the distribution server and downloading, and the recording device (memory card) includes a download terminal for recording a license and encrypted content data from the recording device (memory card). And a playback terminal having a content playback device that acquires and plays back a license.

The embodiments disclosed this time are to be considered in all respects as illustrative and not restrictive. The scope of the present invention is defined by the terms of the claims, rather than the description of the embodiments, and is intended to include any modifications within the scope and meaning equivalent to the terms of the claims.

[0190]

According to the present invention, the portable telephone has the function certificate, and the memory card decrypts the encrypted content data when the function certificate transmitted from the portable telephone corresponds to the reproduction control information. Since the license key to be reproduced is output to the mobile phone, the reproduction of the encrypted content data can be easily restricted only by setting the restriction information in the reproduction control information.

[Brief description of the drawings]

FIG. 1 is a schematic diagram conceptually illustrating a data distribution system.

FIG. 2 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG.

FIG. 3 is a diagram showing a format of the reproduction control information shown in FIG. 2;

4 is a diagram showing characteristics of data, information, and the like for communication in the data distribution system shown in FIG.

FIG. 5 is a schematic block diagram showing a configuration of a distribution server in the data distribution system shown in FIG.

FIG. 6 is a schematic block diagram showing a configuration of the mobile phone according to the first embodiment.

FIG. 7 is a schematic block diagram showing a configuration of another mobile phone according to the first embodiment.

FIG. 8 is a schematic block diagram showing a configuration of still another mobile phone according to the first embodiment.

FIG. 9 is a schematic block diagram showing a configuration of a memory card in the data distribution system shown in FIG.

FIG. 10 is a first flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;

FIG. 11 is a second flowchart for explaining a distribution operation in the data distribution system shown in FIG. 1;

FIG. 12 is a diagram showing a configuration of a playlist file in a memory card.

FIG. 13 is a flowchart illustrating an operation of reproducing encrypted content data in a mobile phone.

FIG. 14 is a flowchart illustrating an operation of an initialization process according to the first embodiment shown in FIG.

FIG. 15 is a flowchart illustrating an operation of a reproduction permission process according to the first embodiment shown in FIG.

16 is a flowchart showing a flow for replacing a part of the flowchart shown in FIG.

FIG. 17 is a schematic block diagram showing a configuration of a mobile phone according to a second embodiment.

FIG. 18 is a schematic block diagram showing a configuration of another mobile phone according to the second embodiment.

FIG. 19 is a schematic block diagram showing a configuration of a memory card according to a second embodiment.

FIG. 20 is a flowchart illustrating an operation of a reproduction permission process according to the second embodiment.

FIG. 21 is a schematic block diagram showing a configuration of a mobile phone according to a third embodiment.

FIG. 22 is a schematic block diagram showing a configuration of another mobile phone according to the third embodiment.

FIG. 23 is a schematic block diagram showing a configuration of a memory card according to a third embodiment.

FIG. 24 is a flowchart illustrating an operation of an initialization process according to the third embodiment;

FIG. 25 is another flowchart illustrating the operation of the initialization processing in the third embodiment.

FIG. 26 is a flowchart illustrating an operation of a reproduction permission process according to the third embodiment.

[Explanation of symbols]

10 distribution servers, 20 distribution carriers, 1, 2, 21
~ 23 areas, 100, 102, 104, 100A, 1
02A, 100B, 102B Mobile phone, 110, 1
10A, 110B memory card, 130 headphones, 160 playlist file, 165 entry management information, 302 charging database, 304 information database, 307 menu database, 308 distribution record database, 310 data processing section, 312
320, 1404, 1408, 1409, 1412, 1
422, 1504, 1510, 1516 decoding processing unit,
313 authentication key holding unit, 315 distribution control unit, 316,
1418, 1508 Session key generator, 318,
326, 328, 1406, 1410, 1506 Cryptographic processing unit, 350 communication device, 1120, 1420 controller, 1426, 1530 terminal, 1100 antenna, 1102 transmitting / receiving unit, 1104 microphone, 1106
AD converter, 1108 audio encoder, 1110 audio reproducer, 1112, 1519 DA converter, 1114
Speaker, 1116 operation panel, 1118 display panel, 1200 memory card interface, 140
0,1500 Authentication data holding unit, 1402 Kmc holding unit, 1414 KPa holding unit, 1415 memory, 1
415A license area, 1415B data area,
1416 KPmc holding part, 1421 Km holding part, 1
424 interface, 1442, 1446 changeover switch, 1502 Kp holding unit, 1507, 1507
A, 1507B Function certificate holding unit, 1512 clock,
1514 playback control unit, 1518 music playback unit, 152
1-1525, 1621-162n license management file, 1531-1535, 1611-161n content file, 1550 content playback device.

──────────────────────────────────────────────────続 き Continued on the front page (51) Int.Cl. ⁷ Identification symbol FI Theme coat ゛ (Reference) H04N 7/167 H04N 7/167 Z 5J104 // H04N 5/765 H04L 9/00 601B 5K101 5/907 H04N 5 / 91 L 5/91 PF term (reference) 5B017 AA07 BA07 BB10 CA16 5B035 AA13 BB09 BC00 CA11 CA38 5C052 GA08 GB01 GB07 GC00 GE08 5C053 FA13 FA27 GB40 LA15 5C064 BA01 BB01 BC04 BC23 BC25 BD02 CB01 CC01 A04A01 EA01 PA14 5K101 KK18 LL01 LL11

Claims (15)

[Claims] 1. A data terminal device for acquiring encrypted content data and a license including a license key for decrypting the encrypted content data from a data recording device, and decrypting and reproducing the encrypted content data. An interface for controlling the exchange of data with the data recording device; a content playback unit for decrypting and playing back the encrypted content data with the license key; and a function certification for certifying a playback function of the content playback unit. A function certificate holding unit for holding a certificate, a key operation unit for inputting an instruction, and a control unit, wherein the control unit reproduces the encrypted content data input via the key operation unit. The function certificate upon request through the interface to the data recording device And transmitting the encrypted content data from the data recording device via the interface when the function certified by the function certificate corresponds to the function to be restricted by the reproduction restriction information included in the license. A data terminal device that receives the license and provides the received encrypted content data and license to the content reproduction unit. 2. The apparatus according to claim 2, further comprising: a class certificate holding unit for holding a class certificate for certifying a security level when data is transmitted / received to / from the data recording device; 2. The data according to claim 1, wherein a certificate is transmitted to the data recording device via the interface, and the function certificate is transmitted to the data recording device when the class certificate is authenticated in the data recording device. Terminal device. 3. The data terminal device according to claim 2, wherein the function certificate holding unit holds an encrypted function certificate that can be decrypted with a public encryption key included in the class certificate. 4. The control means transmits the function certificate to the data recording device simultaneously with the class certificate.
The data terminal device according to claim 3. 5. A session key generating means for generating a session key for specifying communication with the data recording device; an encryption processing means for encrypting data with the session key; And decryption processing means for decrypting the encrypted data, wherein when acquiring the encrypted content data and the license from the data recording device, the session key generating device specifies communication with the data recording device. Wherein the cryptographic processing means receives the function certificate and the first session key from the data recording device,
The control unit transmits the function certificate and the first session key encrypted with the second session key to the data recording device via the interface. The data terminal device according to any one of claims 2 to 4. 6. The control unit further receives the reproduction restriction information and the license key encrypted with the first session key from the data recording device, and provides the license key to the decryption processing unit. 6. The data terminal device according to claim 5, wherein when the reproduction of the encrypted content data is not restricted by the reproduction restriction information decrypted by the means, the encrypted content data and the license key are provided to the content reproduction means. 7. A clock unit for updating date and time information in real time, wherein the reproduction restriction information includes period restriction information for restricting a reproduction period of the encrypted content data; 7. The data terminal device according to claim 6, wherein it is determined whether or not the time period is within the reproduction period of the encrypted content data based on the date and time information and the period restriction information. 8. A data recording apparatus for recording encrypted content data and a license including a license key for decrypting the encrypted content data, wherein the storage unit stores the encrypted content data and the license. An interface for exchanging data with a data reproducing apparatus that decrypts and reproduces the encrypted content data using the license; and a control unit, wherein the control unit certifies a function of the data reproducing apparatus. When a function certificate is received via the interface, and the function certified by the received function certificate corresponds to a function to be restricted by the reproduction restriction information included in the license, the encrypted content data and Reading the license from the storage means and Transmitted to the data reproducing device via the interface, the data recording device. 9. A data processing apparatus further comprising: decryption processing means for decrypting data encrypted with a public encryption key unique to the data reproducing apparatus using a secret decryption key, wherein the control means has a function encrypted with the public encryption key. 9. The data recording apparatus according to claim 8, wherein a certificate is received via the interface, the encrypted function certificate is provided to the decryption processing means, and the decrypted function certificate is received from the decryption processing means. 10. A first decryption processing means for decrypting data encrypted with a public authentication key using the public authentication key, and a secret decryption key for decrypting data encrypted with a public encryption key unique to the data reproducing apparatus. And a second decryption processing means for decrypting the public certificate, the control means comprising: an encrypted class certificate decryptable by the public authentication key; and an encrypted functional certificate decryptable by the public encryption key. And the encrypted class certificate is provided to the first decryption processing means, and the encrypted function certificate is provided to the second decryption processing means. 9. The data recording device according to claim 8, wherein the data recording device receives the class certificate and the function certificate. 11. A session key generating means for generating a session key for specifying communication with the data reproducing apparatus; another decryption processing means for decrypting data encrypted by the session key; Encryption processing means for encrypting data with a public encryption key unique to the playback device, wherein when the function certificate is received, the session key generation means is for identifying communication with the data playback device. A first session key is generated, and the encryption processing means uses the public encryption key to generate the first session key.
The control means transmits the first session key encrypted by the public encryption key to the data reproducing device via the interface, and the control means encrypts the first session key by the first session key. Receiving the function certificate via the interface and providing the function certificate to the other decryption processing means, receiving the decrypted function certificate from the other decryption processing means, The data recording device according to any one of claims 8 to 10, wherein the encrypted function certificate is decrypted using the first session key. 12. The apparatus according to claim 12, further comprising another encryption processing unit for encrypting data with the session key, wherein the control unit limits a function certified by the function certificate by reproduction restriction information included in the license. When it is determined that the license key and the reproduction restriction information read from the storage means are provided to the other encryption processing means, the second session key generated in the data reproduction apparatus is provided. Transmitting the license key and the reproduction restriction information encrypted by the second session key to the data reproduction apparatus via the interface, and the second encryption processing means converts the license key and the reproduction restriction information by the second session key. The data recording device according to claim 11, which performs encryption. 13. The data according to claim 8, wherein the control unit accepts a default value as the function certificate when the data reproducing device does not hold the function certificate. Recording device. 14. The reproduction restriction information includes at least one of a reproduction start date and time at which reproduction of the encrypted content data can be started and a reproduction end date and time at which reproduction of the encrypted content data cannot be performed. 8
The data recording device according to any one of claims 1 to 13. 15. The data recording apparatus according to claim 14, wherein the reproduction restriction information further includes an area code indicating an area where the encrypted content data can be reproduced.