JP2006318006A - Content protection system and program - Google Patents

Abstract

The present invention provides a portable information storage medium, a use added value providing system, a portable information storage medium program, and a use added value adding method capable of improving the convenience and appeal of a user.
A storage unit for storing content, attribute information including a content readable remaining count and a content readable period, and a storage when an instruction to read the content from the storage unit is received from an application program. This is realized by the content receiving terminal 10 including an input / output management unit 135 that determines whether or not the condition of the attribute information stored in the unit 12 satisfies the condition and reads the content when it is determined as affirmative.
[Selection] Figure 1

Description

  The present invention relates to a content protection system, which is a computer system for protecting content, and a program executed by a computer for protecting content.

Conventionally, proposals have been made to distribute encrypted content from a distribution server to a client and sell the decryption key to a user. Content is a group of programs and data such as image data, audio data, and software. In this case, if the purchased user decrypts the content, the original complete data can be obtained, so that the purchaser can illegally copy the content. Digital content distribution management method and system for protecting content from illegal acts such as unauthorized copying, and in addition to the above method, setting the number of times the content can be used and reducing the remaining number of times each time it is used (For example, refer to Patent Document 1).
JP 2003-223371 A

However, in the prior art, the number of times of use is reduced by the application that uses the content, such as playing the content, that is, the data can be played back only by a dedicated application, and the data cannot be played back by other applications. There was a problem of lack of versatility and convenience.
In the prior art, the number of times the content is used is limited, but other usage details are not limited, and there is a possibility that the content provider and the user may lack convenience.

  An object of the present invention is to provide a content protection system and program capable of protecting the content by restricting the use of the content without depending on the application that uses the content, and improving the convenience of the content provider and the user Is to provide.

  The present invention solves the above problems by the following means. In addition, in order to make an understanding easy, although the code | symbol corresponding to the Example of this invention is attached | subjected and demonstrated, it is not limited to this. That is, according to the first aspect of the present invention, a content storage means (12) for storing content, a read means (135) for reading the content stored in the content storage means, and an instruction to the read means according to an application program are provided. A content protection system comprising application processing means (131, 134) for reading content and reading and processing the content, a read condition storage means for storing a condition for reading the content stored in the content storage means (12), and the reading means reads content under the conditions stored in the reading condition storage means when instructed by the application processing means. 10) a.

  According to a second aspect of the present invention, in the content protection system according to the first aspect, the read condition storage means is any one of the remaining number of times that the content can be read, the content that can be read, or the quality of the content that is read. Alternatively, the content protection system (10) is characterized by storing conditions including a plurality or all of them.

The invention according to claim 3 is the content protection system according to claim 1 or 2,
The reading means includes condition determining means (135, S640) for determining whether or not the condition stored in the reading condition storage means is satisfied when an instruction is given from the application processing means. The content protection system (10) is characterized in that the content is read when the determination means determines to be affirmative.

  According to a fourth aspect of the present invention, in the content protection system according to the third aspect, the content storage unit stores the encrypted content, and the reading unit is determined to be affirmative by the condition determination unit. The content protection system (10) includes first decryption means (135, S650) for decrypting the content stored in the content storage means.

  According to a fifth aspect of the present invention, in the content protection system according to any one of the first to fourth aspects, the reading unit satisfies a quality condition stored in the reading condition storage unit Content protection means for processing data stored in the content storage means, and providing the application processor with the content data processed by the content processing means System (10).

  A content protection system according to any one of claims 1 to 5, further comprising user identification means for identifying a user and / or a user attribute, wherein the read condition The storage means stores conditions for each user and / or attribute thereof, and the reading means reads content under conditions corresponding to the user identified by the user identifying means. A feature content protection system (10).

  The invention according to claim 7 is the content protection system according to any one of claims 1 to 6, wherein the read condition storage means is content stored in the content storage means, and / or A condition is stored for each attribute, and the reading means reads the content specified by an instruction from the application processing means under a condition corresponding to the content. is there.

  The invention according to claim 8 is the content protection system according to any one of claims 1 to 7, wherein the encrypted content receiving means receives the encrypted content from the predetermined server via the communication line. (11, 133), the second decryption means (133, S370) for decrypting the encrypted content received by the encrypted content reception means, and the content decrypted by the second decryption means. First content encryption means (135, S380), the content storage means stores the content encrypted by the first encryption means, and the application processing means is the reading means. The second encryption means (1) encrypts the content read out by the second decryption means so that the content can be decrypted by the second decryption means (1). 3 and S740) and content providing means (11, 133, S750) for providing the content encrypted by the second encryption means to another content protection system. System (10).

  The invention of claim 9 is stored in advance when there is an instruction from the application program in a program to be executed by a computer in order to read the content stored in the storage unit in response to the instruction from the application program. A program characterized by comprising a reading procedure (S530, S600 to S690, S730) for reading content under a predetermined condition.

  According to a tenth aspect of the present invention, in the program according to the ninth aspect, the reading procedure is any one or more of a remaining number of contents that can be read, a period in which the contents can be read, or a quality of the contents to be read, or The program is characterized in that the content is read out under predetermined conditions including the whole.

  According to an eleventh aspect of the present invention, in the program according to the ninth or tenth aspect, the read-out procedure is a condition determination for determining whether or not the predetermined condition is satisfied when an instruction is received from an application program. The program has a procedure (S640), and reads content when it is determined to be affirmative in the condition determination procedure.

  According to a twelfth aspect of the present invention, in the program according to any one of the ninth to eleventh aspects, the storage unit stores encrypted content, and the reading procedure is performed in the condition determining procedure. The program includes a decryption procedure (S650) for decrypting the encrypted content stored in the storage unit when it is determined as affirmative.

According to the content protection system and program of the present invention, the following effects can be obtained.
(1) When there is an instruction from the application program, the content is read out under the conditions such as the remaining number of usable times, the usable period, the quality, etc., thereby restricting the use of the content without depending on the application using the content. Thus, the content is protected and the convenience of the content provider and the user is improved.
(2) The content is limited according to each user by reading out the content under the condition according to the user and / or the attribute and / or the condition according to the content and / or the attribute. And improve user convenience.
(3) When the condition is satisfied, unauthorized reading is prevented by decrypting and reading the encrypted content.
(4) The content is encrypted so that it can be decrypted by the second decryption means for decrypting the encrypted content received from the predetermined server, and the encrypted content is transferred from one content protection system to another content protection system. By providing the content, it is possible to use the provided content in other content protection systems as in the case where the content is received from a predetermined server, thereby improving the convenience of the user and the efficiency of the processing.

  The present invention is stored in the storage unit for the purpose of protecting the content by restricting the use of the content and improving the convenience of the content provider and the user without depending on the application that uses the content. When there is an instruction to read content from the application program, it is stored in advance, including any one, a plurality, or all of the remaining number of times content can be read, the content readable period, or the quality of the content to be read This is realized by a content protection system that reads content under predetermined conditions.

Hereinafter, the present invention will be described in more detail with reference to the drawings.
FIG. 1 is a block diagram showing a configuration of a content protection system according to the present invention. Note that the content protection system in this embodiment is the content receiving terminal 10.
As shown in FIG. 1, the content providing system 1 includes a content receiving terminal 10, a reading device 20, an IC card 30, a content distribution server 40, another receiving terminal 50, and the like, and provides content to users.
The content receiving terminal 10 is a computer such as a PC that is used by a user for content distribution and reproduction, and includes a communication unit 11, a storage unit 12, a CPU 13, a display 14, a keyboard 15, and the like. 11, 12, 14, 15 and a reading device 20 are connected via an interface circuit (not shown). The content receiving terminal 10 can communicate with the content distribution server 40 and the other receiving terminal 50 via a telephone line, an optical cable or other wired line, or an infrared or other wireless communication line 60.

The communication unit 11 includes a modem and the like, and realizes communication with the content distribution server 40 and the other receiving terminal 50 via the communication line 60.
The storage unit 12 is a storage device such as a memory such as a RAM or a ROM, a magnetic disk such as a hard disk or a flexible disk. The storage unit 12 stores programs, data, and the like necessary for the processing of the CPU 13.
The storage unit 12 stores various program modules such as an operating system (hereinafter referred to as “OS”), a content management application including a key management application and a content transmission / reception application, an application such as a content reproduction application, and input / output management software. Yes. A module is a structural unit of a program that can be logically separated. Each of these modules may constitute one program, or a plurality of modules such as one application may constitute one program.

  The storage unit 12 stores data such as encrypted content obtained by encrypting the content provided from the content distribution server 40 and content management information. The content management information includes information such as a key Kf, a key Ks, and attribute information A, and is information necessary for the content receiving terminal 10 to use content distributed from the content distribution server 40. The attribute information A is information indicating conditions for using the content, such as the number of times it can be used and the period of time it can be used, and the number of times it can be used is the number of times that the encrypted content can be decrypted and read from the storage unit 12. The period indicates a period during which reading can be performed. The key Ks is a key used for encryption and decryption when content is transmitted / received to / from other information processing apparatuses such as the content distribution server 40. The key Kf is encrypted when content is stored in the storage unit 12. A key used for decryption when reading from the storage unit 12 and a key used for authentication of a user's use authority. The key Ks and the key Kf are encryption keys in the common key encryption method.

The CPU 13 is a central processing unit that performs various operations and controls by executing a program stored in the storage unit 12 and controls the content receiving terminal 10 in an integrated manner. The CPU 13 implements a content management unit 131, a key management unit 132, a content transmission / reception unit 133, a content reproduction unit 134, an input / output management unit 135, and the like by executing a program stored in the storage unit 12. Each part 131-135 is later mentioned using FIG. 2, FIG.
A display device such as a display 14, a CRT, or a liquid crystal display displays information according to the control of the CPU 13.
The keyboard 15 is an input device such as a keyboard and a mouse that inputs instructions, information, and the like when operated by a user.

The reading device 20 includes a reader / writer, a modulation circuit, a demodulation circuit, and the like, and mediates communication between the content receiving terminal 10 and the IC card 30.
The IC card 30 includes an IC chip and an interface for communicating with the reading device 20, receives a command from the content receiving terminal 10 through the reading device 20, performs processing according to the command, This is a portable information processing apparatus that transmits a result to the content receiving terminal 10 as a response. The IC card 30 stores the key Kf, and provides the key Kf to the content receiving terminal 10 in response to a request from the content receiving terminal 10 that has been mutually authenticated.

The content distribution server 40 is a server computer that distributes content to the content receiving terminal 10 or the like via the communication line 60 and provides it to the user.
The other receiving terminal 50 is another information processing apparatus, has the same configuration as the content receiving terminal 10, and can communicate with the content receiving terminal 10 via the communication line 60.

FIG. 2 is a diagram for explaining access to the storage unit 12 when the CPU 13 executes each program. FIG. 2A shows the configuration of the content receiving terminal 10 in a hierarchical manner. FIG. 2B is a block diagram illustrating a configuration of each unit 131 to 135 of the content receiving terminal 10.
As shown in FIG. 2A, an application layer including application programs such as a content management application and a content reproduction application is at the highest level, and below that is basic software that provides various functions such as API and OS to the application. Some input / output management software is located, and hardware (H / W) such as the storage unit 12 is located in the lowest layer.

The content management application is an application for managing the encrypted content Cf stored in the storage unit 12, and includes a key management application and a content transmission / reception application.
The key management application is an application that manages encryption (decryption) keys such as the key Ks and the key Kf.

The content transmission / reception application is an application that manages transmission / reception of content with other information processing apparatuses such as the content distribution server 40. If the content reproduction application is image software, the content reproduction application is an application for reproducing the content such as displaying the image software on the display 14.
The input / output management software is a program for managing input / output of content to / from the storage unit 12, that is, managing writing of content to the storage unit 12 and reading of content.

  As shown in FIG. 2B, the CPU 13 executes each application of a content management application, a key management application, a content transmission / reception application, and a content reproduction application, whereby a content management unit 131, a key management unit 132, and a content transmission / reception unit. 133, the content reproduction unit 134 is realized. The CPU 13 implements an input / output management unit 135 by executing input / output management software. Details of the function of each part will be described later with reference to FIG.

FIG. 3 is a flowchart showing the operation and program of the content protection system according to the present invention. The content registration terminal 10 performs usage registration processing for performing usage registration as a precondition for receiving content distribution from the content distribution server 40. Show. FIG. 4 is a diagram showing a display on the display 14 of the content receiving terminal 10. Hereinafter, the processing of the content management unit 131 of the content receiving terminal 10 will be mainly described.
As shown in FIG. 3, in step 100 (hereinafter, “step” is referred to as “S”), the user sets the IC card 30 possessed by the user in the reading device 20, and the content receiving terminal 10 The card 30 is in a state of mutual authentication (the same applies to S500 in FIG. 6 and S700 in FIG. 8 described later). In S110, in order to use the content, the user operates the keyboard 15 to instruct activation of the content management application, and the CPU 13 executes the content management application and starts processing.

  The content management unit 131 accesses the content distribution server 40 via the communication line 60, such as accessing a predetermined URL (S120), and performs mutual authentication with the content distribution server 40 (S130). If mutual authentication fails, an error occurs and the process ends (S140, S230). If mutual authentication is possible, the user transmits personal information or the like from the content receiving terminal 10 to the content distribution server 40 to perform user registration (S150), and the content management unit 131 receives the key from the content distribution server 40. Ks and key Kf are received (S160). This key Ks is written in the storage unit 12.

  The user operates the keyboard 15 in accordance with the display on the display 14 as shown in FIG. 4 to set the attribute information A such as the number of uses and the use period. The usage fee varies depending on the setting contents of the attribute information A, and the higher the usage frequency, the higher the usage period. The content management unit 131 inputs the setting information of the attribute information A and transmits it to the content distribution server 40 (S170). The content management unit 131 settles this usage fee by electronic payment (S180), passes the key Kf and the set attribute information A to the input / output management unit 135135, and the input / output management unit 135 sets the key Kf and the attribute information A. Is stored in the storage unit 12 (S190). Further, the key management unit 132 writes the key Kf to the IC card 30 (S190), and the content receiving terminal 10 ends the use registration process (S200).

FIG. 5 is a flowchart showing the operation and program of the content protection system according to the present invention, in which the content receiving terminal 10 receives content distribution from the content distribution server 40 after use registration processing. Hereinafter, the processing of the content management unit 131 of the content receiving terminal 10 will be mainly described.
From S300 to S340, the content receiving terminal 10 performs the same processing as S100 to S140 of the use registration process (see FIG. 3).
If mutual authentication is possible in S340, the user selects the content to be used by operating the keyboard 15, and the content management unit 131 includes the selection information and requests the provision of the specified content. Is transmitted to the content distribution server 40 (S350). The content distribution server 40 encrypts the designated content with the key Ks to generate the encrypted content Cs, and transmits the encrypted content Cs to the content receiving terminal 10. The content receiving terminal 10 receives the encrypted content Cs (S360), and the content management unit 131 decrypts the encrypted content Cs with the key Ks received in S160 to obtain the content P (S370).

  The content management unit 131 passes the content P to the input / output management unit 135 and instructs writing to the storage unit 12. In response to the instruction from the content management unit 131, the input / output management unit 135 encrypts the content P with the key Kf received in S160 to generate the encrypted content Cf (S380), and writes the encrypted content Cf into the storage unit 12 (S390). The content receiving terminal 10 ends the content receiving process (S400).

FIG. 6 is a flowchart showing the operation and program of the content protection system according to the present invention, and shows the content reproduction processing for reproducing the content distributed from the content distribution server 40 by the content distribution processing. Hereinafter, the processing of the content reproduction unit 134 of the content receiving terminal 10 will be mainly described.
As shown in FIG. 5, in S510, the user operates the keyboard 15 to instruct activation of the content reproduction application in order to reproduce the content, and the CPU 13 executes the content reproduction application and starts processing. .

The user instructs the content reproduction, and the content receiving terminal 10 inputs a content reproduction request (S520). The content reproduction unit 134 instructs the input / output management unit 135 to read the content specified by the request from the storage unit 12, and receives the content read by the read processing from the input / output management unit 135 (S530, described later). (See FIG. 6).
The content reproduction unit 134 reproduces the read content (S540), and ends the content reproduction process (S550).

FIG. 7 is a flowchart showing the operation and program of the content protection system according to the present invention, and shows content read processing (S530 in FIG. 6) for reading content from the storage unit 12 in content playback processing or the like. Hereinafter, the processing of the input / output management unit 135 of the content receiving terminal 10 will be mainly described.
As shown in FIG. 7, in S610, the input / output management unit 135 detects a content read instruction from the content reproduction unit 134 and starts processing.

The key management unit 132 reads the key Kf from the IC card 30 via the reading device 20 (S620), refers to the key Kf stored in the storage unit 12, and determines whether the read key Kf is valid. (S630). That is, it is determined whether the user who possesses the IC card 30 is a legitimate person who has the authority to use the content, such as playback of the content.
If the keys Kf do not match and it is determined that the key is invalid, an error is returned to the instructing content reproduction unit 134 (S680), and the process ends (S690).
If it is determined to be valid, the input / output management unit 135 determines whether or not the condition of the attribute information A is satisfied (S640). Specifically, the input / output management unit 135 determines whether or not the number of usable times remains one time or is in the usable period, and returns an error to the content reproduction unit 134 when the condition is not satisfied. The process is terminated (S680, S690).

If the condition is satisfied, the input / output management unit 135 reads the encrypted content Cf from the storage unit 12, decrypts it with the key Kf, and generates the content P (S650). The input / output management unit 135 passes the content P to the content reproduction unit 134 that is the instruction source (S660), reduces the usable count by one (S670), and ends the processing (S690).
Even when other content stored in the storage unit 12 is reproduced, the content receiving terminal 10 performs the same processing and reproduces the content under the condition of the attribute information A. When the content information cannot be used, such as when the number of times that the attribute information A can be used becomes zero or when the available period has elapsed, the user can use the content distribution server at the content receiving terminal 10. , The attribute information A is set again, and electronic payment is performed again (see S170 and S180 in FIG. 3).
Furthermore, the other user obtains the key Kf by performing use registration (from S110 to S150 in FIG. 3) and stores it in the IC card possessed, so that the content receiving terminal 10 can obtain the condition of the attribute information A. The content can be played back below.

FIG. 8 is a flowchart showing the operation and program of the content protection system according to the present invention, and shows the content transmission processing for transmitting the content stored in the storage unit 12 to the other receiving terminal 50. Hereinafter, the processing of the content management unit 131 of the content receiving terminal 10 will be mainly described.
As shown in FIG. 8, in S710, in order to transmit the content to the other receiving terminal 50, the user operates the keyboard 15 to instruct activation of the content management app, and the CPU 13 executes the content management app. Start processing.

The user instructs transmission of content to the other receiving terminal 50, and the content receiving terminal 10 inputs a content transmission request (S720). The content management unit 131 instructs the input / output management unit 135 to read the content specified by the request from the storage unit 12, and receives the content read by the read processing from the input / output management unit 135 (S730, FIG. 6).
The content transmitting / receiving unit 133 encrypts the read content with the key Ks to generate the encrypted content Cs (S740), transmits the content Cs to the other receiving terminal 50 designated by the user (S750), and performs content transmission processing. The process ends (S760).
The other receiving terminal 50 that has received the content Cs performs the same processing as the content receiving processing (see S360 to S390 in FIG. 5) and stores it in the storage unit. The user can use the content P in the other receiving terminal 50 under the condition of the attribute information A stored in the other receiving terminal 50.

As described above, according to the present embodiment, the input / output management unit 135, when there is a content read instruction from the application program (content management unit 131, content reproduction unit 134), etc. If the condition of the attribute information A is satisfied and the determination is affirmative, the content is read out to protect the content by limiting the use of the content without depending on the application using the content, It has become possible to improve the convenience of content providers and users.
Further, the storage unit 12 stores the encrypted content Cs encrypted with the key Kf, and the input / output management unit 135 decrypts and reads the encrypted content when the condition is satisfied. It became possible to improve security, such as preventing reading.
Furthermore, since the content transmitting / receiving unit 133 encrypts the content so that it can be decrypted with the key Ks and transmits the content to the other receiving terminal 50, the content receiving unit 133 receives the content from the content distribution server 40 at the other receiving terminal. The provided content can be used, and the convenience of the user and the efficiency of processing can be improved.

(Modification)
The present invention is not limited to the embodiments described above, and various modifications and changes are possible, and these are also within the equivalent scope of the present invention. For example, the playback quality of the content may be limited using the playback quality of the content as the attribute information A. The reproduction quality is the quality of the content such as the image resolution and the reproduction time when the content is reproduced. The content receiving terminal 10 receives from the content distribution server 40 the content P including a plurality of contents having the same content and different reproduction qualities (for example, the same content having a data amount of 10 Mbytes and 1 Mbyte). When receiving, encrypting and storing in the storage unit 12 and reading, the input / output management unit 135 passes the content of any reproduction quality to the application that is the read instruction source according to the attribute information A (FIG. 7). (S660), it becomes possible to limit the reproduction quality of the content.

The key Ks for encrypting and decrypting the content related to transmission / reception is the encryption key in the common key encryption method, but may be the encryption key in the public key encryption method. For example, the content may be encrypted with the public key on the transmission side and decrypted with the private key on the reception side.
The same applies to the key Kf used for encryption and decryption when content is input / output from the storage unit 12.
It is only necessary that what can be decoded can be limited to a predetermined one.

  The key Kf is stored in common in the IC cards 30 of these users as identification information for identifying users who have registered for use, that is, users with a predetermined attribute. The system 1 may provide a different key Kf for each user, such as a secret key of a public key cryptosystem. Since the content is encrypted with the key of each user and stored in the storage unit 12, it is possible to limit those who can read out to a specific person. Similarly, encryption and decryption may be performed with a different key Kf for each content.

Further, the key Kf is stored in the IC card 30 and the IC card 30 is identified to identify a predetermined user (a person who has registered for use with the content distribution server 40) (FIG. 7). S630 of FIG. 5), instead of storing the key Kf in the IC card 30, other identification information for identifying a predetermined user is stored in the IC card 30 and the content receiving terminal 10 instead of the key Kf. Identification may be performed. It is not necessary to take out the key Kf from the content receiving terminal 10 to the outside (IC card 30), and security can be improved.
Further, the content receiving terminal 10 may authenticate that the user of the IC card 30 is a valid user. For example, an authentication PIN may be registered in the IC card 30 in advance, and the content reception terminal 10 may read this and collate with the PIN input by the user from the keyboard 15.

  Furthermore, the content providing system 1 restricts the use of content based on the attribute information A stored for each content receiving terminal 10, that is, the attribute information A set for each content receiving terminal 10. However, the attribute information A may be set for each user (or IC card 30) and for each content to restrict the use. Moreover, you may restrict | limit with the combination of these elements, such as every user and the content receiving terminal 10. FIG. This can be realized by associating each element such as a user with the attribute information A.

  For example, instead of storing the attribute information A in the content receiving terminal 10, the attribute information A is stored in the IC card 30 (see S 190 in FIG. 3), and this attribute is used when the content receiving terminal 10 reads the content from the storage unit 12. Information A may be read, and content usage may be restricted based on the conditions. The use of content can be restricted for each user (or IC card 30), and the number of times of use can be managed by the user himself / herself, and convenience can be improved. Further, even when the user uses the other receiving terminal 50, the content can be used under the same conditions.

In addition, the content receiving terminal 10 stores a table in which each IC card 30 (or each user) and corresponding attribute information A are associated with each other in the storage unit 12, and each IC card 30 or each user. And use of content may be restricted according to attribute information A corresponding to the identification result.
Furthermore, when the content receiving terminal 10 associates and stores the attribute information A corresponding to each content in the storage unit 12 and reproduces the content, the use is restricted for each content based on the corresponding attribute information A. Also good. Furthermore, when content is transmitted from the content receiving terminal 10 to the other receiving terminal 50, the attribute information A corresponding to the content is simultaneously transmitted to the other receiving terminal 50, and the content transmitting / receiving unit 133 determines the number of times the attribute information A is used. According to the user's instruction, the number of times of using the content of the content receiving terminal 10 and the number of times of using the content transmitted to the other receiving terminal 50 may be divided.

  The input / output management software does not need to be a single software, and may be realized by a general OS and software that detects input / output of content from the storage unit 12 by the OS and performs encryption, decryption, and the like. . The same applies to other programs.

It is a block diagram which shows the structure of a content protection system. It is a figure for demonstrating the access to the memory | storage part 12 when CPU13 runs each program. It is a flowchart which shows operation | movement and a program of a content protection system. It is a figure which shows the display of the display 14 of the content receiving terminal 10. FIG. It is a flowchart which shows operation | movement and a program of a content protection system. It is a flowchart which shows operation | movement and a program of a content protection system. It is a flowchart which shows operation | movement and a program of a content protection system. It is a flowchart which shows operation | movement and a program of a content protection system.

Explanation of symbols

DESCRIPTION OF SYMBOLS 1 Content provision system 10 Content receiving terminal 11 Communication part 12 Memory | storage part 13 CPU
DESCRIPTION OF SYMBOLS 14 Display 15 Keyboard 20 Reading apparatus 30 IC card 40 Content distribution server 50 Other receiving terminal 60 Communication line 131 Content management part 132 Key management part 133 Content transmission / reception part 134 Content reproduction part 135 Input / output management part

Claims (12)

Content storage means for storing content;
Reading means for reading the content stored in the content storage means;
In accordance with an application program, the content protection system includes an application processing unit that gives an instruction to the reading unit to read the content and performs processing on the content,
Read condition storage means for storing conditions for reading the content stored in the content storage means,
The reading means, when instructed by the application processing means, reading content under the conditions stored in the reading condition storage means;
A content protection system characterized by The content protection system according to claim 1,
The read condition storage means stores a condition including any one, a plurality, or all of the remaining number of times content can be read, the content readable period, or the quality of the content to be read.
A content protection system characterized by In the content protection system according to claim 1 or 2,
The reading unit includes a condition determining unit that determines whether or not the condition stored in the reading condition storage unit is satisfied when an instruction is received from the application processing unit. Read the content if it is determined,
A content protection system characterized by The content protection system according to claim 3,
The content storage means stores encrypted content,
The reading unit includes a first decoding unit configured to decode the content stored in the content storage unit when the condition determination unit determines affirmative;
A content protection system characterized by In the content protection system according to any one of claims 1 to 4,
The reading means includes content processing means for processing data stored in the content storage means so as to satisfy a quality condition of the content stored in the read condition storage means, and the content processing means Providing the application processing means with the content data processed by
A content protection system characterized by The content protection system according to any one of claims 1 to 5,
Comprising a user identification means for identifying a user and / or a user attribute;
The read condition storage means stores a condition for each user and / or attribute thereof,
The reading means reads content under conditions corresponding to the user identified by the user identifying means;
A content protection system characterized by The content protection system according to any one of claims 1 to 6,
The read condition storage unit stores a condition for each content stored in the content storage unit and / or its attribute,
The reading means reads content specified by an instruction from the application processing means under a condition corresponding to the content;
A content protection system characterized by The content protection system according to any one of claims 1 to 7,
Encrypted content receiving means for receiving encrypted content from a predetermined server via a communication line;
Second decryption means for decrypting the encrypted content received by the encrypted content reception means;
First encryption means for encrypting the content decrypted by the second decryption means,
The content storage means stores the content encrypted by the first encryption means;
The application processing means includes second encryption means for encrypting the content read by the reading means so that the content can be decrypted by the second decryption means,
Content providing means for providing the content encrypted by the second encryption means to another content protection system;
A content protection system characterized by In a program to be executed by a computer in order to read content stored in a storage unit in accordance with an instruction from an application program,
A reading procedure for reading content under a predetermined condition stored in advance when there is an instruction from the application program;
A program characterized by The program according to claim 9,
The reading procedure includes reading the content under a predetermined condition including any one, a plurality, or all of the content readable remaining count, the content readable period, or the quality of the content to be read.
A program characterized by In the program according to claim 9 or claim 10,
The reading procedure includes a condition determination procedure for determining whether or not the predetermined condition is satisfied when an instruction is received from an application program, and reads content when it is determined positive in the condition determination procedure. ,
A program characterized by In the program according to any one of claims 9 to 11,
The storage unit stores encrypted content,
The reading procedure includes a decrypting procedure for decrypting the encrypted content stored in the storage unit when it is determined to be positive in the condition determining procedure;
A program characterized by

Images