JP2006086824A - Information medium and security system - Google Patents

Abstract

PROBLEM TO BE SOLVED To provide an information medium having secure information and a security system using the information medium, and particularly to ensure security even for a service managed by a plurality of service providers and to provide one service for each other. A security system that can be used by using a terminal device is provided.
An information medium 1 composed of a CPU 2, a cryptographic processing unit 3, a storage unit 4, and a communication unit 5 protected by a tamper detection unit 7 stores secure information having different secure protocols, key information, and the like in the storage unit 4. By storing and using the same secure protocol as the other information media having the same secure information, it is possible to transmit information ensuring communication safety. Then, by arranging the devices having the information medium with the above configuration in a cascade, it is possible to ensure the security of the distribution of key information and the transmission of electronic value information.
[Selection] Figure 1

Description

  The present invention relates to an information medium having secure information and a security system using the information medium.

  Today, services such as credit information, electronic money, and electronic ticket sales are performed via a network. At this time, encryption processing and authentication processing are performed in order to ensure security of electronic values such as credit numbers and electronic values. However, in addition to the encryption process and the authentication process, it is also necessary to secure a secure environment that protects the electronic value.

  For example, Patent Document 1 discloses a card reader device with a security function. When unpacking is performed on the housing of the device, the operation is disabled and even if repair is performed after unpacking. A tamper-proof function is disclosed in which card forgery data cannot be taken out by continuing the state.

  For example, Patent Document 2 has been proposed as a system for storing an encryption key for performing authentication between an IC card and a reader / writer device in a terminal device in a secure manner. This document discloses an authentication system that periodically sends data encryption / decryption methods from a master device to a terminal device and stores the encryption / decryption methods in a storage unit each time the data is transmitted on the terminal device side.

  Patent Document 3 discloses an invention in which when a plurality of applications are realized on one terminal, a server that distributes the applications to the IC card is constructed in common, and information related to each application is centrally managed. .

Furthermore, in recent years, a method for realizing a secure environment using an open environment such as the Internet has been proposed. For example, Patent Document 4 uses a wide area distributed security for safely distributing value information by using an IC card. As an architecture, an invention of an autonomous card has been proposed. The present invention adds a specific IC chip on which one secure protocol determined by one security architecture is added to a reader / writer device and other devices, thereby transparently and logically security between nodes. It is to secure sex.
JP 2001-291050 A Japanese Patent Laid-Open No. 10-63800 JP 2001-236232 A Japanese Patent Laid-Open No. 2004-13748

  However, the conventional case has the following problems. For example, in the invention of Patent Document 2, it is necessary that at least the terminal device stores an encryption key for authentication with the key distribution server for the first time. These encryption keys are generally defined and managed by the service provider. If the encryption key is disclosed to the terminal device maker, the security key can be used or the information cannot be disclosed. It is necessary to consider the device of implementation, etc., and key management becomes complicated.

  In the case of the invention of Patent Document 3, it is difficult for companies with different security policies to use a common server and share information. Furthermore, in the invention of Patent Document 4, the secure protocol can be changed depending on the communication target, but there is no mention of a mechanism relating to the realization of an application with different security policies and the management of a key for ensuring security. .

  Therefore, the present invention provides an information medium that can ensure security by performing transmission of key information and value information using a plurality of different secure protocols, and a security system using the information medium, particularly a plurality of service providers. Security is ensured even for a service managed by the service provider, and a security system related to the provision of a plurality of services is provided by a single service providing terminal device.

  According to the present invention, the above-described object is a tamper-resistant means, a first storage means for storing first secure information, a second storage means for storing second secure information, and the first storage means. First control means for communicating with an information medium having secure information corresponding to the first secure information stored in the first secure information, and the second secure information stored in the second storage means This can be achieved by providing an information medium having a second control means for communicating with the information medium having the secure information corresponding to the information and transmitting the information.

  By configuring in this way, the first and second different secure information protected by the tamper resistance function is used, and the distribution of the key information and the transmission of the electronic value information are performed safely. Then, communication is performed with another information medium having a secure protocol paired with the secure protocol included in the first secure information, and the information medium is paired as if it has two or more hands. A safe communication path is constructed by handshaking with another information medium, and the above information is distributed and transmitted safely.

  Here, the secure information is a concept including key information, a secure protocol, authentication, and a handling encryption method. The information medium is for constructing a logically safe communication path. The physical connection means for connection to the actual network and the storage means and control means for service provision are information media. This is realized by another connected device.

  According to the present invention, the above-described problem is a tamper-resistant means, a first storage means for storing first secure information, a second storage means for storing second secure information, and the first storage means. First control means for communicating with an information medium having secure information corresponding to the first secure information stored in the storage means and transmitting the information; and the second control information stored in the second storage means First information medium having second control means for communicating with the information medium having secure information corresponding to the secure information and transmitting the information, and the first and second information media include: This can be achieved by providing a security system that is a component of the network and performs communication between the first and second information media based on the secure information and transmits information in the network path.

Further, according to the present invention, the above-described problem is directed to a tamper-resistant means, a first storage means for storing first secure information, a second storage means for storing second secure information, and the first storage means. First control means for communicating with an information medium having secure information corresponding to the first secure information stored in the storage means and transmitting the information; and the second control information stored in the second storage means Comprising first, second, and third information media having second control means for communicating with information media having secure information corresponding to the secure information and transmitting information.
The first, second, and third information media are network components, and perform communication between the first and second information media and between the second and third information media based on the secure information. This can be achieved by providing a security system that transmits information in the network path.

  For example, the first information medium is disposed in the management center, the second information medium is disposed in the service providing terminal management apparatus, and the third information medium is disposed in the service providing terminal apparatus. And the service providing terminal management device and between the service providing terminal management device and the service providing terminal device can be authenticated by different secure protocols, so that key information can be distributed and value information can be transmitted safely.

  Further, according to the present invention, the above-mentioned problem is constituted by a management center in which the information medium is arranged, a service providing terminal management device, and first and second service providing trees that are formed by cooperation of service providing terminal devices, This can be achieved by providing a security system in which two information media corresponding to the first and second service providing trees are arranged in the service providing terminal device.

  By configuring in this way, it is possible to realize a multi-application compatible terminal device that can receive different services such as an electronic ticket and point distribution.

  According to the present invention, by connecting information media with different secure information, a plurality of security protocol pairs are connected in cascade, and even if an abnormality occurs in one security pair, the security of the entire system Sex does not fail.

  In addition, the above configuration can flexibly construct a secure environment suitable for the system connection configuration. For example, even when a system change is required for the lower level of the security protocol pair connected in cascade, it is possible to cope with it by changing only the lower level secure information.

  In addition, it is possible to construct a safe communication path by networking the above information medium, and to safely transmit electronic value and to distribute key information. For example, a plurality of information media are mounted on a service providing terminal device. Thus, a system in which a plurality of different security policies are linked can be constructed.

  With the above configuration, a multi-application compatible terminal device can be realized, and for example, separate services such as electronic ticketing and point distribution can be performed using one service providing terminal device.

Embodiments of the present invention will be described below with reference to the drawings.
(Embodiment 1)
FIG. 1 is a diagram for explaining Embodiment 1 of the present invention and shows a configuration of an information medium.

  The information medium 1 includes a CPU 2, a cryptographic processing unit 3, a storage unit 4, and a communication unit 5, and the dotted line area 6 has a tamper-resistant function against attacks from the outside when the information medium 1 is viewed alone. Protected. The tamper detection unit 7 shown in the figure has a function of detecting an attack from the outside, and is composed of, for example, an optical sensor or a thermal sensor, detects that a cover or a seal is peeled off, and attacks by probe scanning or the like. In contrast, a known function such as detecting a potential change of a signal line may be used.

  When the tamper detection unit 7 performs the tamper detection, the CPU 2 notifies the CPU 2, and the CPU 2 executes a tamper resistance process. For example, the information stored in the storage unit 4 is deleted. The storage unit 4 stores secure information, for example, information such as key information, a secure protocol (security program), and an authentication method.

  The cryptographic processing unit 3 performs cryptographic processing based on a secure protocol (security program) read from the storage unit 4 under the control of the CPU 2. Various cryptographic processing algorithms can be used as this cryptographic processing, and known algorithms such as algorithms such as DES (data encryption standard), triple DES, and hash function may also be used. The communication unit 5 is a communication interface with a reader / writer, a settlement processing unit, a CPU and the like in the apparatus in which the information medium 1 of this example is provided.

  The information medium 1 having the above-described configuration is disposed in, for example, a terminal device for providing various services, a terminal management device that manages a plurality of terminal devices, a management center, and the like. It is used to transmit value information such as a credit number and electronic value with a portable mobile terminal device such as a card.

  FIG. 2 is a diagram for explaining a communication method between information media having the above-described configuration. As shown in the figure, the information media 1a to 1c have two pieces of key information, secure information such as a secure protocol, and distribution of key information between adjacent information media, credit numbers, electronic values, etc. Communicate value information.

  For example, the leftmost information medium 1a shown in the figure has different secure information 1a-1 and 1a-2, and the information medium 1b has different secure information 1b-1 and 1b-2. Also have different secure information 1c-1 and 1c-2. Also, the secure information 1a-2 and 1b-1, 1b-2 and 1c-1 are paired, have the same secure information, and are connected to each other by handshake.

  Based on the above configuration, for example, key information of the IC card is sequentially transmitted from the information medium 1a and distributed to the information medium 1c. Further, the value information is sequentially transmitted from the information medium 1c in the reverse direction, and is transmitted to the information medium 1a.

In this case, in this example, transmission of information is sequentially performed based on different secure protocols, and security is reliably ensured to distribute key information and transmit value information.
In this example, the configuration of the information medium 1 is shown in FIG. 1, but specifically, for example, the configuration shown in FIG. In this case, as described above, the information medium 1 includes the CPU 2, the communication unit 5, and the tamper detection unit 7, and further includes two secure protocols 14a and 14b, storage units 15a and 15b, and encryption processing units 16a and 16b. Is done. In this case, different key information and authentication methods are recorded in the storage units 15a and 15b.

  With this configuration, the two secure protocols 14a and 14b, the storage units 15a and 15b, and the cryptographic processing units 16a and 16b have different secure protocols and key information, respectively, and distribution of key information based on different secure protocols And value information can be transmitted safely.

(Embodiment 2)
Next, Embodiment 2 of the present invention will be described.
FIG. 4 shows a system configuration for realizing multi-applications using the information medium described in the first embodiment. This example is an example of a multi-application providing system that allows two services based on different security policies to be received simultaneously by, for example, one terminal. That is, the management center MC1 and the management center MC2 operate and manage services (services 1 and 2) provided by the respective security systems.

  For example, the management center MC1 is a center server having functions of point management and key distribution, and the service providing terminal device SPM is a service providing RW terminal device that faces a plurality of card users arranged in a large store. The service providing terminal management device SPME1 is a device that manages the plurality of service providing terminal devices SPM.

  On the other hand, the management center MC2 is operated by an operator different from the management center MC1 and is, for example, an electronic ticket sales, management, and key distribution center server, and the service providing terminal device SPM is an apparatus that also performs an electronic ticket service. The service providing terminal management device SPME2 is a device that manages the service providing terminal device SPM.

  An information medium IDv1 is connected to the management center MC1. In addition, an information medium IDv2 is connected to the service providing terminal management apparatus SPME1, and an information medium IDv3 is connected to the service providing terminal apparatus SPM. Similarly, an information medium IDv1 'is connected to the management center MC2, an information medium IDv2' is connected to the service providing management device SPME2, and an information medium IDv3 'is connected to the service providing terminal device SPM. Therefore, two information media IDv3 and IDv3 'are connected to the service providing terminal device SPM.

  The information medium IDv3 has first and second authentication keys defined by two different secure protocols, for example, an authentication key Key_A and an authentication key Key_B. The information medium IDv2 has an authentication key Key_B and an authentication key Key_C defined by two different secure protocols, the card has an authentication key Key_A that is paired with Key_A, and an authentication key that is paired with Key_C in the management center. Has Key_C.

  On the other hand, the information medium IDv3 'has first and second encryption keys defined by two different secure protocols, an authentication key Key_A' and an authentication key Key_B '. The information medium IDv2 ′ has an authentication key Key_B ′ and an authentication key Key_C ′ defined by two different secure protocols, the card has an authentication key Key_A ′ paired with Key_A ′, and the management center has Key_C ′. And an authentication key Key_C ′ paired with. Note that the authentication here includes encryption and the like.

  All secure protocols are determined by the security policy defined by each management center, that is, the business entity, and can be implemented according to certain rules.

  FIG. 5 is a diagram showing a configuration of a service providing terminal device SPM in which the information media 1, 1a to 1c are arranged. As shown in the figure, the configuration of the terminal device in which the information medium 1 is arranged includes a CPU 20, a memory 21, a settlement unit 22, and a read / write unit 23, and the CPU 20 is based on a program stored in the memory 21. Controls the terminal device. Further, the settlement unit 22 performs, for example, a point counting process described later, a settlement process at the time of ticket purchase, and the like, and stores settlement information and the like in the memory 21. The read / write unit 23 reads data from the IC card and writes data to the IC card. Note that network communication is performed by the communication interface 24. The service providing terminal management device SPME may have the configuration shown in FIG. 5 or a configuration in which the settlement unit 22 and the read / write unit 23 are removed.

  Next, specific processing in the above configuration will be described. The process of this example is an example of a key distribution process by a business operator (MC1) who performs a point service. For example, when the key of the IC card is changed by updating or upgrading the IC card, the service providing terminal from the management center MC1 This is an example in which a new key is distributed to a device.

  FIG. 6 is a flowchart showing a basic procedure for performing key distribution processing to the service providing terminal device SPM. As shown in the figure, when key distribution is performed, authentication processing is performed between information media using a secure protocol (step (hereinafter referred to as S) 1), and key information is distributed. Hereinafter, specific processing will be described using the flowcharts shown in FIGS.

  The flowchart shown in FIG. 7 is an authentication process performed between the management center MC1 and the service providing terminal management apparatus SPME1, and specifically, is a mutual authentication process using the first secure protocol pair by the information media IDv1 and IDv2. First, it is determined whether the information medium IDv2 of the management center MC1 is the correct partner (authentication process 1 (S2)).

  Here, when the authentication process 1 is OK (S2 is YES), the information medium IDv2 of the service providing terminal management device SPME1 further determines whether the information medium IDv1 on the management center MC side is a correct counterpart (authentication process). 2 (S3)).

  Next, when the authentication process 2 is also OK (S3 is YES), a communication process is performed (S4). That is, the key information is transmitted from the management center MC1 to the service providing terminal management device SPME1. When there is a problem with the authentication process 3 or the authentication process 4, the process is terminated without performing the communication process (S2 is NO, S3 is NO).

  The key information transmitted to the service providing terminal management device SPME1 is temporarily stored, for example, in the storage unit 4, and further transmitted from the service providing terminal management device SPME1 to the service providing terminal device SPM. At this time, processing according to the flowchart shown in FIG. 8 is performed. That is, the second secure protocol of the information medium IDv2 of the service providing terminal management device SPME1 is used to determine whether the information medium IDv3 of the service providing terminal device is a correct counterpart (authentication process 3 (S5)).

  Here, when the authentication process 3 is OK (S5 is YES), the information medium IDv3 of the service providing terminal device SPM uses the second secure protocol, and the information medium IDv2 on the service providing terminal management device SPME1 side is used. Is a correct partner (authentication process 4 (S6)).

  Next, when the authentication process 4 is also OK (S6 is YES), a communication process is performed (S7). That is, the key information is distributed from the service providing terminal management device SPME1 to the service providing terminal device SPM. When there is a problem with the authentication process 3 or the authentication process 4, the process is terminated without performing the communication process (S5 is NO, S6 is NO).

  By processing as described above, the key information can be securely delivered from the management center MC1 to the service providing terminal device SPM. This key information is used as key information of a new IC card, for example.

  In the above example, the example in which the key information is distributed from the management center MC1 to the service providing terminal device SPM has been described, but the same processing is performed even when the key information is distributed from the management center MC2 to the service providing terminal device SPM. The key information can be securely distributed to the service providing terminal device.

(Embodiment 3)
Next, a third embodiment of the present invention will be described.
FIG. 9 is a flowchart illustrating this example. This example describes an example of providing a point service to a card user by a service providing terminal device SPM.

  First, the user goes to the store where the service providing terminal device SPM of this example is installed, operates the operation panel of the service providing terminal device SPM, and selects the point service. By this operation, the point service application is activated (step (hereinafter referred to as ST) 1), and the user confirms the number of points and operates the operation panel to select a point charge when storing points. (ST2). This operation may be performed by a store clerk who operates the SPM.

  As a result of this operation, when the user subsequently brings the IC card closer to the operation panel, the charging process for the number of points set by the processing of the CPU in the IC card is performed (ST3). In this process, the number of points is charged by performing the mutual authentication process using the above-mentioned authentication key between the information medium IDv3 and the IC card logically.

  Next, the service providing terminal device SPM creates detailed information for use points (ST4), and transmits the detailed point information to the management center MC1 at an appropriate timing. This process is also performed while repeating the mutual authentication process described in the above-described embodiment 2 in the same manner as in the case of key distribution and ensuring the security of the system.

  Thereafter, the service providing terminal device SPM ends the point service application (ST5). The secure protocol between the information terminals is determined by the security policy of the entire system. The existing secure protocol between the point management center MC1 and the service providing management device SPME1 can be used, and system changes in existing services and interoperability of services provided by another management center MC2 can be used. However, it can respond flexibly.

  Furthermore, as a system configuration, not only a configuration in which three information terminals IDv are connected between the management center and the IC card, but also, for example, in response to circumstances such as four or more different physical connection environments, FIG. As shown, more information terminals IDv can be connected in series to ensure security between the management center and the card. In the example of the figure, five information terminals IDv1 to 5 are arranged from the management center MC to the IC card.

  Note that the management center MC1 can be configured using a general SAM (Secure Application Module) instead of an information medium.

It is a block diagram of an information medium. It is a figure explaining the communication method between information media. It is a figure which shows the structure of the modification of an information medium. This is a system configuration for realizing multi-applications using an information medium. It is a figure explaining the structure of the terminal by which the information medium was arrange | positioned, or an apparatus. It is a flowchart which shows the basic procedure of a delivery process. It is a flowchart explaining the delivery process from a management center to a service provision terminal management apparatus. It is a flowchart explaining the delivery process from a service provision terminal management apparatus to a service provision terminal apparatus. It is a flowchart explaining the process of point service. It is a figure which shows the structure by which many information terminals were interposed.

Explanation of symbols

1 Information medium 2 CPU
3 Cryptographic Processing Unit 4 Storage Unit 5 Communication Unit 6 Area 7 Tamper Detection Unit 10 Information Terminal 11 CPU
12 communication unit 13 tamper detection unit 14a, 14b secure protocol 15a, 15b storage unit 16a, 16b encryption processing unit 20 CPU
21 Memory 22 Settlement Unit 23 Read / Write Unit 24 Communication Interface

Claims (11)

Anti-tampering means,
First storage means for storing first secure information;
Second storage means for storing second secure information;
First control means for communicating with an information medium having secure information corresponding to the first secure information stored in the first storage means to transmit information;
Second control means for communicating with an information medium having secure information corresponding to the second secure information stored in the second storage means to transmit information;
An information medium characterized by comprising:   The information medium according to claim 1, wherein the secure information includes a secure protocol or key information. Anti-tampering means,
Communication means;
First and second cryptographic processing means including a secure protocol, at least a storage unit for storing key information, and a cryptographic processing unit;
Via the communication means, the corresponding key information is used according to the secure protocol included in the first cryptographic processing means, and communicates with the information medium having the same secure protocol or key information as the first cryptographic processing means. In addition, using corresponding key information according to the secure protocol included in the second cryptographic processing means, communicating with an information medium having the same secure protocol or key information as the second cryptographic processing means, and transmitting information Control means to perform;
An information medium characterized by comprising:   4. The information medium according to claim 1, wherein the information medium is arranged in a device having a reader / writer and a settlement unit. Tamper resistant means, first storage means for storing first secure information, second storage means for storing second secure information, and the first secure means stored in the first storage means Information having secure information corresponding to the second secure information stored in the second storage means, and a first control means for communicating with an information medium having secure information corresponding to the information and transmitting the information First and second information media having second control means for communicating with the media and transmitting information;
The first and second information media are components of a network, and communicate between the first and second information media based on the secure information and transmit information in a network path. Security system. Tamper resistant means, first storage means for storing first secure information, second storage means for storing second secure information, and the first secure means stored in the first storage means Information having secure information corresponding to the second secure information stored in the second storage means, and a first control means for communicating with an information medium having secure information corresponding to the information and transmitting the information First, second, and third information media having second control means for communicating with the media and transmitting information;
The first, second, and third information media are network components, and perform communication between the first and second information media and between the second and third information media based on the secure information. A security system characterized by transmitting information in a network route.   The first information medium is disposed in a management center, the second information medium is disposed in a service providing terminal management apparatus, the third information medium is disposed in a service providing terminal apparatus, and the key information 7. The security system according to claim 6, wherein distribution and value information are transmitted.   The service providing terminal device includes a management center, a service providing terminal management device, and a service providing terminal device in which the information medium is arranged. 8. The security system according to claim 7, wherein an information medium corresponding to the service providing tree is arranged.   9. The security system according to claim 6, 7, or 8, wherein the third information medium communicates with a portable information terminal to exchange value information. 10. The security system according to claim 9, wherein the first information medium distributes key information for communicating with the portable information terminal to the third information medium.   7. The security system according to claim 5, wherein the secure information includes a secure protocol or key information.

Images