JP2007081860A - Data transmission method, terminal device, and computer program - Google Patents

Abstract

To enable data transmission / reception between mobile phone terminals more safely than before.
A mobile phone terminal 3A obtains first image data by photographing with a built-in camera, transmits the obtained first image data to the mobile phone terminal 3B, and the mobile phone terminal 3B uses a built-in camera. The second image data is acquired by photographing, the acquired second image data is transmitted to the mobile phone terminal 3A, and the first image data and the mobile phone terminal 3B transmitted from the mobile phone terminal 3A to the mobile phone terminal 3B. The second image data received from is encrypted with an encryption key generated according to a predetermined rule, and the first and second image data are transmitted to the mobile phone terminal 3B. In the mobile phone terminal 3B, the same as the mobile phone terminal 3A An encryption key is generated according to a predetermined rule, and the first and second image data received from the mobile phone terminal 3A are decrypted using the generated encryption key.
[Selection] Figure 1

Description

  The present invention relates to a method of data communication performed between two terminal devices.

  In recent years, mobile phone terminals can communicate using not only the carrier network but also the Internet. As a result, the mobile phone terminal can exchange information not only with the mobile phone terminal of the same carrier but also with devices such as mobile phone terminals of other carriers and personal computers. For example, it has become possible to send and receive e-mails with these devices and to download web pages from a web server.

  As the usage has increased, the mobile phone terminal becomes convenient for the user, but there is a risk that the contents of communication are stolen on the Internet.

Therefore, a method as described in Patent Document 1 has been proposed. According to the method described in Patent Document 1, data files are stored in a WWW server. If there is a data file request from the i-mode mobile phone, the data file is transferred by SSL from the WWW server to the gateway between the Internet and the digital radio, and from the gateway to the i-mode mobile phone in plain text. Transfer data files. Thereby, it is possible to prevent eavesdropping on a route with weak security.
JP 2001-320366 A

  However, according to the method described in Patent Document 1, leakage of data exchanged between the WWW server and the mobile phone terminal can be prevented, but leakage of data exchanged between the mobile phone terminals can be prevented. It cannot be prevented.

  In addition, it is conceivable to apply the method described in Patent Document 1 and perform communication between the mail server and the gateway by SSL, but the communication between the gateway and the mobile phone terminal uses an encrypted communication method. I can't. Therefore, the method described in Patent Document 1 still has some danger in terms of security.

  The present invention has been made in view of such problems, and an object of the present invention is to enable mobile phone terminals to exchange data more safely than before.

  A data transmission method according to the present invention is a data transmission method for transmitting data from a first terminal device to a second terminal device, wherein the first terminal device is provided in the first terminal device. The first situation data is acquired by performing shooting or sound collection using a photographing function or a sound collecting function, and the acquired first situation data is transmitted to the second terminal device. In the terminal device, the second situation data is obtained by photographing or collecting sound using the photographing function or the sound collecting function provided in the second terminal device, and the obtained second situation data is The first status data transmitted to the first terminal device, and the first status data transmitted to the second terminal device and the second status data received from the second terminal device in the first terminal device. To the prescribed rules An encryption key is generated by fitting, transmission target data that is data to be transmitted to the second terminal device is encrypted using the generated encryption key, and the encrypted transmission target data is The second terminal device transmits the first status data received from the first terminal device and the second status data transmitted to the first terminal device to the predetermined terminal device. An encryption key is generated by applying the rule, and the transmission target data received from the first terminal device is decrypted using the generated encryption key.

  According to the present invention, mobile phone terminals can exchange data more safely than before.

  According to the invention of claim 4, it is possible to discriminate an unauthorized device pretending to be a communication partner and prevent information leakage.

  1 is a diagram showing an example of the overall configuration of the encrypted mail system CSY, FIG. 2 is a diagram showing an example of the hardware configuration of the server 2, and FIG. 3 is a function of the subscriber information management server 2A and the location information management server 2B. FIG. 4 is a diagram illustrating an example of a hardware configuration of the mobile phone terminal 3, and FIG. 5 is a diagram illustrating an example of a functional configuration of the mobile phone terminal 3.

  As shown in FIG. 1, the encrypted mail system CSY according to the present invention includes a mobile phone carrier system 1 and a plurality of mobile phone terminals 3A, 3B,. Hereinafter, the mobile phone terminals 3A, 3B,... May be collectively referred to as “mobile phone terminal 3”.

  The mobile phone carrier system 1 is a system for providing a mobile phone communication service, and is operated by a mobile phone carrier (carrier). This cellular phone carrier system 1 is composed of a plurality of servers 2, a base station BST, an internal communication line NW, and the like. These server 2 and base station BST can be connected to each other via an internal communication line NW. Hereinafter, a case where the carrier X operates the mobile phone carrier system 1 will be described as an example.

  As shown in FIG. 2, the server 2 includes a CPU 20a, a RAM 20b, a ROM 20c, a magnetic storage device 20d, a communication interface 20e, and the like, and performs processing for providing various services to the user of the mobile phone terminal 3. Do. In this embodiment, as the server 2, a subscriber information management server 2A, a location information management server 2B, an electronic mail server 2C, a WWW server 2D, and the like are provided.

  The magnetic storage device 20d of the subscriber information management server 2A has functions such as a subscriber information database 2A1, a contract number inquiry receiving unit 2A2, a subscriber information search unit 2A3, and a contract number answering unit 2A4 as shown in FIG. Programs and data to be realized are installed. These programs and data are loaded into the RAM 20b as necessary, and the programs are executed by the CPU 20a.

  The magnetic information storage device 20d of the positional information management server 2B includes a positional information request receiving unit 2B1, a contract number inquiry unit 2B2, a satellite measurement data acquiring unit 2B3, a current location calculating unit 2B4, and a positional information answering unit 2B5 as shown in FIG. A program and data for realizing the functions are installed. These programs and data are loaded into the RAM 20b as necessary, and the programs are executed by the CPU 20a.

  The electronic mail server 2C has a function for relaying electronic mail exchanged between the mobile phone terminal 3 and other mobile phone terminals 3 and the like. The WWW server 2D has a function for providing a Web page. As the electronic mail server 2C and the WWW server 2D, existing electronic mail servers and WWW servers are used, respectively.

  FIG. 1 shows an example in which the subscriber information management server 2A, the location information management server 2B, the e-mail server 2C, and the WWW server 2D are realized by different server machines. It is also possible to implement with 1 to 3 server machines. Alternatively, the functions of these servers can be realized by distributing them to five or more server machines.

  The base station BST includes a transmitter, a receiver, an antenna, and the like, and serves as a radio station that controls connection between the mobile phone terminal 3 and the mobile phone carrier system 1.

  The mobile phone terminal 3 is a mobile phone terminal corresponding to the carrier X. As shown in FIG. 4, the CPU 30a, flash memory 30b, ROM 30c, communication unit 30d, liquid crystal display 30e, operation button 30f, digital camera 30g, GPS The antenna 30h, the microphone 30j, the speaker 30k, etc. are comprised. As the mobile phone terminal 3, an existing mobile phone terminal with a digital camera and a GPS function can be used. However, in the flash memory 30b or the ROM 30c, an email screen display unit 301, a location information acquisition processing unit 302, an authentication email management unit 303, an email transmission processing unit 304, an email reception processing unit 305, as shown in FIG. Programs for realizing functions such as the hash value calculation unit 306, the encryption / decryption processing unit 307, the counterpart device authentication processing unit 308, and the profile storage unit 309 are installed. These programs are executed by the CPU 30a. Alternatively, some of these functions can be realized by hardware using a circuit.

  FIG. 6 is a diagram showing an example of the subscriber information database 2A1. Next, processing contents of each unit of the subscriber information management server 2A and the location information management server 2B shown in FIG. 3 will be described.

  In FIG. 3, the subscriber information database 2A1 of the subscriber information management server 2A stores subscriber information 71 for each subscriber who has subscribed to the carrier X, as shown in FIG. The subscriber information 71 indicates the contract number of the subscriber and the e-mail address of the mobile phone terminal 3 owned by the subscriber. The contract number is used as identification information for the location information management server 2B and the electronic mail server 2C to access the mobile phone terminal 3 of the subscriber.

  The contract number inquiry reception unit 2A2 performs a process for receiving an inquiry regarding a contract number from another device (for example, the location information management server 2B or the e-mail server 2C). Specifically, contract number inquiry information 81 indicating an e-mail address is received.

  The subscriber information search unit 2A3 searches the subscriber information database 2A1 for the subscriber information 71 indicating the e-mail address indicated in the contract number inquiry information 81 received by the contract number inquiry reception unit 2A2.

  The contract number answering unit 2A4 transmits the contract number indicated in the subscriber information 71 searched by the subscriber information searching unit 2A3 as the contract number answering information 82 to the inquiry source device.

  The location information request accepting unit 2B1 of the location information management server 2B performs processing for accepting an inquiry about the current location (current location) of the mobile phone terminal 3 from another device. Specifically, current location inquiry information 83 indicating the email address of the mobile phone terminal 3 that is the subject of the inquiry is received.

  For example, when the mobile phone terminal 3A inquires about the current location of the mobile phone terminal 3A itself, the location information request accepting unit 2B1 receives from the mobile phone terminal 3A current location inquiry information 83 indicating the e-mail address of the mobile phone terminal 3A. . Alternatively, when the mobile phone terminal 3A inquires about the current location of another mobile phone terminal 3 (for example, the mobile phone terminal 3B), the location information request receiving unit 2B1 displays the current location inquiry information indicating the e-mail address of the mobile phone terminal 3B. 83 is received from the mobile phone terminal 3A.

  The contract number inquiry unit 2B2 performs processing for inquiring of the subscriber information management server 2A about the contract number corresponding to the e-mail address indicated in the current location inquiry information 83 received by the location information request reception unit 2B1. Specifically, the contract number inquiry information 81 indicating the e-mail address is transmitted to the subscriber information management server 2A, and the contract number response information 82 indicating the response thereto is received from the subscriber information management server 2A.

  The satellite measurement data acquisition unit 2B3 requests the satellite measurement data 84 of the mobile phone terminal 3 from the mobile phone terminal 3 having the contract number indicated in the contract number answer information 82 received by the contract number inquiry unit 2B2. Process to receive.

  The current location calculation unit 2B4 calculates the current location, that is, the longitude, latitude, and altitude of the mobile phone terminal 3 based on the satellite measurement data 84 received from the mobile phone terminal 3 to be queried. As a calculation method of the current location, for example, a known method as described in Non-Patent Document 1 is used.

[Non-Patent Document 1] GPS (Global Positioning System), Masao Mukaiten, August 24, 2005 Internet search, URL <http://www.sys.cs.meiji.ac.jp/~masao/Board/ infosys2002 / hayasi / gps.html>
According to this method, the mobile phone terminal 3 measures the distances between the four GPS satellites and the mobile phone terminal 3 at approximately the same time. The distance between the GPS satellite and the mobile phone terminal 3 can be measured based on the time from when the GPS satellite emits radio waves until the mobile phone terminal 3 receives the radio waves and the speed of the radio waves. In addition, position information of each GPS satellite at the time of measurement is acquired. The cellular phone terminal 3 transmits the distance to these four GPS satellites and the position information of these four GPS satellites as the satellite measurement data 84 to the position information management server 2B. Based on the received satellite measurement data 84, the current location calculation unit 2B4 calculates the current location of the mobile phone terminal 3, that is, the longitude, latitude, and altitude by the three-point intersection method.

  The position information answering unit 2B5 transmits information indicating the current location of the mobile phone terminal 3 calculated by the current location calculating unit 2B4 to the inquiry source device as current location answering information 85.

  FIG. 7 is a flowchart for explaining an example of the flow of position answer processing. Here, the flow of processing of each part of the subscriber information management server 2A and the location information management server 2B will be described with reference to the flowchart shown in FIG. The description will be given with reference.

  In the location information management server 2B, when the location information request receiving unit 2B1 receives the current location query information 83 related to the mobile phone terminal 3Y from the mobile phone terminal 3X (# 211 in FIG. 7), the contract number query unit 2B2 receives the current location query information. In order to inquire the subscriber information management server 2A about the contract number corresponding to the e-mail address shown in 83, the contract number inquiry information 81 indicating the e-mail address is transmitted (# 212).

  In the subscriber information management server 2A, when the contract number inquiry accepting unit 2A2 receives the contract number inquiry information 81 from the location information management server 2B (# 221), the subscriber information search unit 2A3 is shown in the contract number inquiry information 81. The subscriber information 71 corresponding to the e-mail address to be searched is searched from the subscriber information database 2A1 (see FIG. 6) (# 222). Then, the contract number answering unit 2A4 transmits the contract number indicated in the retrieved subscriber information 71 as the contract number answer information 82 to the inquiry source, that is, the location information management server 2B (# 223).

  When the contract number response information 82 is obtained in the position information management server 2B (# 213), the satellite measurement data acquisition unit 2B3 sends the satellite measurement data 84 to the mobile phone terminal 3 that is the target of inquiry, that is, the mobile phone terminal 3Y. Request (# 214) and obtain it (# 215). The current location calculation unit 2B4 calculates the current location of the mobile phone terminal 3Y, that is, the longitude, latitude, and altitude based on the satellite measurement data 84 (# 216). Then, the position information answering unit 2B5 transmits the current location answer information 85 indicating the calculated current location of the mobile phone terminal 3Y to the mobile phone terminal 3X that is the inquiry source (# 217).

  FIG. 8 is a diagram showing an example of the email creation screen HG1, and FIG. 9 is a diagram showing an example of the received email screen HG2.

  Next, the processing content of each part of the mobile phone terminal 3 shown in FIG. 5 will be described. FIG. 5A shows the flow of information when sending an e-mail, and FIG. 5B shows the flow of information when receiving an e-mail.

  In FIG. 5, an e-mail screen display unit 301 of the mobile phone terminal 3 creates an e-mail for creating an e-mail to be transmitted to another mobile phone terminal 3 as shown in FIG. 8 on the liquid crystal display 30e of the mobile phone terminal 3 itself. A process for displaying a mail creation screen HG1 or a received email screen HG2 indicating the content of an email sent from another mobile phone terminal 3 as shown in FIG. 9 is performed.

  The e-mail screen display unit 301 displays the e-mail creation screen HG1 when the user inputs a predetermined command. The user creates an e-mail by inputting an e-mail destination (destination), subject (title), and body in the text boxes TX11, TX12, and TX13 of the e-mail creation screen HG1, respectively. Hereinafter, the e-mail created on the e-mail creation screen HG1 is referred to as “e-mail EML”.

  The location information acquisition processing unit 302 inquires the location information management server 2B about the current location of the mobile phone terminal 3 itself or the current location of another mobile phone terminal 3, and performs processing for acquiring location information indicating the current location. At this time, the present location inquiry information 83 indicating the electronic mail address of the mobile phone terminal 3 to be inquired is transmitted to the location information management server 2B.

  The authentication mail management unit 303 performs processing for generating and managing the authentication mail NM. This authentication mail NM is an e-mail for requesting another mobile phone terminal 3 as a communication partner to authenticate the validity of the mobile phone terminal 3 itself. Details of the authentication mail NM will be described later.

  The e-mail transmission processing unit 304 transmits the e-mail created on the e-mail creation screen HG1, that is, the e-mail EML or the authentication mail NM created by the authentication mail management unit 303 to the destination mobile phone terminal 3. Process. The e-mail reception processing unit 305 performs processing for receiving e-mail EML and authentication mail NM from other mobile phone terminals 3.

  The hash value calculation unit 306 calculates a hash value based on a predetermined hash function. The encryption / decryption processing unit 307 encrypts the electronic mail EML to be transmitted. In addition, the electronic mail EML received from another mobile phone terminal 3 is decrypted. The encryption key for encryption and decryption is generated by the hash value calculation unit 306.

  The counterpart device authentication processing unit 308 performs processing for determining the legitimacy of the other mobile phone terminal 3 that is the partner of transmission / reception of electronic mail. In the present embodiment, the position of the other mobile phone terminal 3 notified by the other mobile phone terminal 3 and the position of the other mobile phone terminal 3 that the mobile phone terminal 3 knows by making an inquiry to the location information management server 2B. Is discriminated based on whether they match. The profile storage unit 309 stores a first authentication profile NPA or a second authentication profile NPB described later.

  When the user creates an e-mail EML on the e-mail creation screen HG1 (see FIG. 8) and presses the send button BT1, the process of encrypting the e-mail EML and sending it to the other mobile phone terminal 3 is the location information acquisition. This is performed by the processing unit 302 or the encryption / decryption processing unit 307. On the other hand, in the mobile phone terminal 3 on the e-mail receiving side, processing for receiving the e-mail EML is performed by the position information acquisition processing unit 302 or the encryption / decryption processing unit 307. Hereinafter, the content of the processing of the location information acquisition processing unit 302 to the encryption / decryption processing unit 307 will be described in more detail with reference to the flowchart, taking as an example the case where an electronic mail EML is transmitted from the mobile phone terminal 3A to the mobile phone terminal 3B. explain.

  FIGS. 10 to 12 are flowcharts for explaining the flow of processing when two mobile phone terminals 3 exchange e-mail EML, and FIG. 13 is a diagram for explaining an example of the flow of authentication mail generation processing. FIG. 14 is a diagram showing an example of the first authentication profile NPA, and FIG. 15 is a diagram showing an example of the second authentication profile NPB.

  When the user presses the send button BT1 on the e-mail creation screen HG1 on the mobile phone terminal 3A, the location information acquisition processing unit 302 displays the current location inquiry information 83 indicating the e-mail address of the mobile phone terminal 3A itself on the mobile phone carrier system 1 Is sent to the location information management server 2B to inquire about the current location of the mobile phone terminal 3A itself (# 501 in FIG. 10), and information indicating the current location (current location answer information 85) is acquired (# 502).

  At this time, the subscriber information management server 2A and the location information management server 2B execute the process of the procedure described above with reference to FIG. 7 to obtain the current location answer information 85 indicating the current location of the mobile phone terminal 3A. (# 601).

  In the mobile phone terminal 3A, the authentication mail management unit 303 shows an authentication mail NM for requesting authentication of the mobile phone terminal 3 to which the e-mail EML is sent, that is, the mobile phone terminal 3B, in the flowchart of FIG. It is generated by such a procedure (# 503).

  The mobile phone terminal 3A's own digital camera 30g takes a picture of the current user's appearance or surroundings, and acquires image data GDA (# 521). Shooting may be executed when the send button BT1 on the e-mail creation screen HG1 is pressed, or may be executed when the user outputs a message to press the shutter button and the shutter button is pressed. Good.

  An empty e-mail is generated, and an identifier (hereinafter referred to as “message ID”) of the e-mail EML that is the object of transmission this time is described in the header of the e-mail (# 522). An image indicating that the type of mail is authentication mail is described in the subject (# 523), the other party's e-mail address, that is, the e-mail address of the mobile phone terminal 3B is described in the destination (# 524), and an image obtained by photographing The data GDA and the present location answer information 85 of the mobile phone terminal 3A itself obtained in step # 502 of FIG. 10 are attached (# 525). Alternatively, the image data GDA or the current location answer information 85 may be written in the body of the email instead of being attached to the email. In this way, the authentication mail NM is generated. Hereinafter, the authentication mail NM generated by the mobile phone terminal 3A that is the transmission side of the e-mail EML to be transmitted to the mobile phone terminal 3B that is the reception side of the e-mail EML is described as “first authentication mail NMA”. To do.

  Returning to FIG. 10, the e-mail transmission processing unit 304 transmits the first authentication e-mail NMA generated by the authentication e-mail management unit 303 to the e-mail address of the mobile phone terminal 3B (# 504). The first authentication mail NMA is delivered to the mobile phone terminal 3B via the electronic mail server 2C of the mobile phone carrier system 1 (# 602, # 701).

  The hash value calculation unit 306 calculates the hash value HSA by substituting the image data GDA attached to the first authentication mail NMA into a predetermined hash function (# 505). Hereinafter, the hash function for calculating the hash value from the image data is referred to as “hash function HK1”. As the hash function HK1, a known hash function such as SHA-1 or MD5 may be used, or a uniquely defined hash function may be used.

  Then, as shown in FIG. 14, the authentication mail management unit 303 calculates the contents (address, subject, text, image data GDA, and current location answer information 85), transmission date and time, and hash value of the first authentication mail NMA. The hash value HSA calculated by the unit 306, the authentication response flag FGA, and the message ID of the current email EML are stored in the profile storage unit 309 as the first authentication profile NPA (# 506). The authentication response flag FGA is a flag indicating whether or not a response to the first authentication mail NMA has been obtained from the other party, and the initial value is “0” indicating that there is no response yet.

  On the other hand, in the mobile phone terminal 3B, when the e-mail reception processing unit 305 receives the first authentication mail NMA (# 701), the location information acquisition processing unit 302 sends the source mobile phone terminal 3, that is, the mobile phone terminal The location information management server 2B of the cellular phone carrier system 1 is inquired about the current location of 3A (# 702), and current location answer information 85 indicating the current location is acquired (# 703). At the time of the inquiry, current location inquiry information 83 indicating the email address of the mobile phone terminal 3A to be inquired is transmitted to the location information management server 2B.

  At this time, the subscriber information management server 2A and the location information management server 2B indicate the current location of the mobile phone terminal 3A by executing the processing of the procedure described above with reference to FIG. 7 as in the case of step # 601. The present location answer information 85 is answered to the mobile phone terminal 3B (# 603).

  In the mobile phone terminal 3B, the counterpart device authentication processing unit 308 determines the position indicated by the current location answer information 85 attached to the first authentication mail NMA received from the mobile phone terminal 3A in step # 701 and the step # 703. By comparing the position indicated by the current location answer information 85 received from the position information management server 2B of the mobile phone carrier system 1, the mobile phone terminal 3 that has transmitted the first authentication mail NMA is a true mobile phone. It is determined whether or not the terminal 3A is itself (# 704). Specifically, the magnitude of displacement between the two positions (that is, the distance) is obtained. If it is within a predetermined distance, it is determined that it is the true mobile phone terminal 3A itself, and authentication is given to the sender of the first authentication mail NMA. If it exceeds the predetermined distance range, it is determined that the transmission source of the first authentication mail NMA is unauthorized (so-called impersonation).

  When it is determined that the transmission source of the first authentication mail NMA is invalid, the first authentication mail NMA is discarded and the subsequent processing is stopped. When the authentication is given to the transmission source of the first authentication mail NMA, the process proceeds to FIG. 11, and on the contrary, the process for the mobile phone terminal 3A to authenticate the mobile phone terminal 3B is as follows. Follow a simple procedure. Note that the description of the same contents as the processing of FIG. 10 is omitted.

  In the mobile phone terminal 3B, the location information acquisition processing unit 302 inquires the location information management server 2B about the current location of the mobile phone terminal 3B itself (# 705 in FIG. 11), and acquires current location answer information 85 indicating the location (# 706). ).

  The authentication mail management unit 303 generates an authentication mail NM for requesting the mobile phone terminal 3A for authentication in the procedure shown in the flowchart of FIG. 13 described above (# 707). Hereinafter, the mobile phone terminal 3B that has authenticated the mobile phone terminal 3A that is the transmission source of the first authentication email NMA is referred to as “the second authentication email NMB” that requires the mobile phone terminal 3A to authenticate. May be described.

  In FIG. 13, the mobile phone terminal 3 </ b> B's own digital camera 30 g shoots the current user's appearance or surroundings, and obtains image data GDB (# 521). At this time, a message indicating that the mobile phone terminal 3A intends to transmit the e-mail EML and a command indicating that an operation for photographing should be performed may be output to the user of the mobile phone terminal 3B. An empty e-mail is generated, the message ID indicated in the received first authentication mail NMA is written in the header of this e-mail (# 522), and the fact that the type of this e-mail is the authentication e-mail It is described in the subject (# 523), the e-mail address of the mobile phone terminal 3A is described in the destination (# 524), the image data GDB obtained by photographing, and the mobile phone terminal 3B obtained in step # 706 of FIG. The present location answer information 85 is attached (# 525). In this way, the second authentication mail NMB is generated.

  Returning to FIG. 11, the e-mail transmission processing unit 304 transmits the second authentication e-mail NMB generated by the authentication e-mail management unit 303 to the e-mail address of the mobile phone terminal 3A (# 708).

  The hash value calculation unit 306 calculates the hash value HSB by substituting the image data GDB attached to the second authentication mail NMB for the hash function HK1 (# 709). The hash function HK1 of the mobile phone terminal 3A and the hash function HK1 of the mobile phone terminal 3B are the same.

  Then, as shown in FIG. 15, the authentication mail management unit 303 calculates the contents (address, subject, text, image data GDB, and current location answer information 85), transmission date and time, and hash value of the second authentication mail NMB. The hash value HSB calculated by the unit 306, the authentication response flag FGB, and the message ID indicated in the received first authentication mail NMA (that is, the message ID of the current e-mail EML) are used as the second authentication profile NPB. The profile is stored in the profile storage unit 309 (# 506). The authentication response flag FGB is a flag indicating whether or not a response to the second authentication mail NMB is obtained from the mobile phone terminal 3A, and the initial value is “0” indicating that there is no response yet. .

  On the other hand, in the mobile phone terminal 3A, when the e-mail reception processing unit 305 receives the second authentication mail NMB from the mobile phone terminal 3B (# 507), the location information acquisition processing unit 302 displays the current location of the mobile phone terminal 3B. To the location information management server 2B of the mobile phone carrier system 1 (# 508), and the current location answer information 85 indicating it is acquired (# 509). Also, after receiving the second authentication mail NMB, the first authentication profile NPA corresponding to the message ID indicated in the second authentication mail NMB is searched from the profile storage unit 309, and the first authentication is performed. The authentication response flag FGA included in the profile NPA is updated to “1” indicating that it has been authenticated.

  As described above, the second authentication mail NMB is not transmitted unless the mobile phone terminal 3B authenticates the mobile phone terminal 3A. Therefore, for the mobile phone terminal 3A, the second authentication mail NMB not only means an authentication request from the mobile phone terminal 3B but also a notification that the mobile phone terminal 3B has been authenticated.

  The counterpart apparatus authentication processing unit 308 receives the position indicated by the current location answer information 85 attached to the second authentication mail NMB received from the mobile phone terminal 3B in step # 507 and the position information management server 2B in step # 509. By comparing with the position indicated in the received current location answer information 85, it is determined whether or not the mobile phone terminal 3 that has transmitted the second authentication mail NMB is the true mobile phone terminal 3B itself ( # 510). That is, if the magnitude of the difference between the two is within a predetermined distance, it is determined that the mobile phone terminal 3B itself is true, and authentication is given to the sender of the second authentication mail NMB. . If it exceeds the predetermined distance range, it is determined that the transmission source of the second authentication mail NMB is invalid.

  If it is determined that the sender of the second authentication mail NMB is invalid, the second authentication mail NMB and the electronic mail EML with the message ID indicated in the second authentication mail NMB are discarded. Then, the subsequent processing is stopped.

  When authentication is given to the transmission source of the second authentication mail NMB, the mobile phone terminal 3A and the mobile phone terminal 3B can authenticate each other. Accordingly, proceeding to FIG. 12, the process for transmitting the electronic mail EML having the message ID shown in the second authentication mail NMB from the mobile phone terminal 3A to the mobile phone terminal 3B is performed as follows.

  In the mobile phone terminal 3A, the hash value calculation unit 306 substitutes the hash value HSB ′ for the hash function HK1 by substituting the image data GDB attached to the second authentication mail NMB received from the mobile phone terminal 3B. Calculate (# 511 in FIG. 12). Further, the first authentication profile NPA indicating the message ID is searched from the profile storage unit 309, and the hash value indicated by the searched first authentication profile NPA is stored in the hash function HK2 having two arguments α and β. The hash value HSC is calculated by substituting the HSA and the hash value HSB ′ calculated in step # 510, respectively (# 512). This hash value HSC is used to encrypt the text of the e-mail EML transmitted to the mobile phone terminal 3B. If there is an attached file, it is also used to encrypt the attached file.

  The encryption / decryption processing unit 307 encrypts the text and attached file of the email EML using the hash value HSC as an encryption key (# 513). Then, the e-mail transmission processing unit 304 transmits this to the mobile phone terminal 3B (# 514).

  The encrypted electronic mail EML is delivered to the mobile phone terminal 3B via the electronic mail server 2C of the mobile phone carrier system 1 (# 607, # 710).

  On the other hand, when the e-mail reception processing unit 305 performs the process of receiving the encrypted e-mail EML in the mobile phone terminal 3B (# 710), the hash value calculation unit 306 performs the decryption key as follows. Is generated. That is, first, by substituting the image data GDA attached to the first authentication mail NMA corresponding to the message ID of the electronic mail EML received in step # 701 of FIG. 10 into the hash function HK1. Then, the hash value HSA ′ is calculated (# 711). The profile storage unit 309 is searched for a second authentication profile NPB corresponding to the message ID of the electronic mail EML. Then, the hash value HSC 'is calculated by substituting the calculated hash value HSA' and the hash value HK2 into the same hash function HK2 as the mobile phone terminal 3A (# 712). This hash value HSC 'is used as a decryption key.

  By the way, the hash values HSA and HSA ′ are calculated by substituting the same image data GDA into the same hash function HK1, and the hash values HSB and HSB ′ are calculated by substituting the same image data GDB into the same hash function HK1. The The hash values HSC and HSC 'are also calculated by substituting the same value argument into the same hash function HK2. Therefore, the hash value HSC and the hash value HSC ′ are the same value. Therefore, as a result of the above processing, the mobile phone terminal 3A and the mobile phone terminal 3B share the same one encryption key, that is, a common key.

  Further, as described above, the electronic mail EML is not transmitted unless the mobile phone terminal 3A authenticates the mobile phone terminal 3B. Therefore, for the mobile phone terminal 3B, the e-mail EML also means notification that the authentication is given from the mobile phone terminal 3A. After receiving the e-mail EML, the mobile phone terminal 3B searches the profile storage unit 309 for the second authentication profile NPB corresponding to the message ID of the e-mail EML, and the authentication included in the second authentication profile NPB The response flag FGB is updated to “1” indicating that it has been authenticated.

  Returning to the flowchart, the encryption / decryption processing unit 307 decrypts the received electronic mail EML using the hash value HSC '(# 713). Then, the email screen display unit 301 displays the content of the decrypted email EML as a received email screen HG2 as shown in FIG. 9 (# 714).

  According to the present embodiment, before the start of the exchange of the e-mail EML, the two mobile phone terminals 3 acquire the image data by capturing the current state with their digital camera 30g, and transmit them to each other. Fit. Then, an encryption key is generated using the image data acquired by the digital camera 30g and the image data acquired from the other party, and the email EML is encrypted or decrypted using the encryption key. With such a configuration, both mobile phone terminals 3 can securely obtain an encryption key that is a common key and perform transmission and reception of electronic mail EML without taking complicated procedures.

  Furthermore, in this embodiment, the mobile phone terminal 3 uses the location information management server for the location information obtained from the other mobile phone terminal 3 and whether or not the other mobile phone terminal 3 is a true communication partner. It discriminate | determines based on the positional information obtained from 2B. This makes it possible to easily determine the spoofing of the communication partner. In addition, since the position information can be acquired by the existing GPS function, it is not necessary to make a special design change on the mobile phone carrier system 1 side. Therefore, such an effect can be realized at low cost.

  In this embodiment, the case where the E-mail EML is exchanged between the mobile phone terminals 3 of the carrier X has been described as an example. However, the present invention is a case where the E-mail EML is exchanged between the mobile phone terminals 3 of different carriers. It is also applicable to. In this case, the service of providing location information by the location information management server 2B of each carrier may be configured to be open to the mobile phone terminals 3 of other carriers.

  Instead of using the image data, the encryption key may be generated using voice data obtained by collecting the surrounding state or the user's voice with the microphone 30j when the EML EML is transmitted / received.

  The present invention is also applicable to a portable terminal device of PHS (Personal Handy-phone System). In this case, position information indicating the current location of the portable terminal device can be obtained by searching for a base station nearest to the portable terminal device. Or it is applicable also to the portable terminal device which employ | adopted the wireless LAN system and VoIP (Voice over IP) system which are anticipated in the future. Also in this case, the position information indicating the current location of the portable terminal device can be found by searching for an access point nearest to the portable terminal device.

  The processing procedures described in FIG. 7 and FIGS. 10 to 13 can be changed as appropriate. For example, in the present embodiment, as described with reference to steps # 501 to # 503 in FIG. 10, steps # 705 to # 707 in FIG. 11, and FIG. Although the photographing process for obtaining image data is performed later, this order may be changed. Or you may carry out in parallel.

  The encryption key, which is a common key generated by the two mobile phone terminals 3, may be discarded every time the electronic mail EML is exchanged once. Alternatively, an expiration date may be provided, and the email EML exchanged between the two mobile phone terminals 3 may be used any number of times until the expiration date expires. Or you may make it provide an expiration date and the upper limit of use. Alternatively, the partner's current location may be periodically checked, and the encryption key may be invalidated when it is detected that the partner is away from the initial position by a predetermined distance or more.

  When calculating the hash values HSA and HSB, it is not always necessary to use all the image data GDA, and only a part of the image data GDA may be used in accordance with the hash function HK1.

  In this embodiment, the case where the electronic mail EML is exchanged has been described as an example. However, the present invention is also applicable to the case where data is exchanged by FTP or the voice data of conversation is exchanged.

  In addition, the configuration, processing contents, processing order, etc. of the whole or each part of the cellular phone carrier system 1, the subscriber information management server 2A, the location information management server 2B, and the cellular phone terminal 3 are appropriately changed in accordance with the spirit of the present invention. be able to.

  In addition, more effective authentication can be achieved by specifying approximate position information from an image captured by the digital camera 30g of the mobile phone 3 using existing image recognition technology and linking it with position information using a GPS satellite. It becomes possible. For example, an intersection name, a label indicating an address name on a telephone pole, a signboard of a public institution, etc. are photographed with the digital camera 30g, and characters included in the photographed image are recognized and compared with map information. Thus, it is possible to specify approximate position information.

In the embodiment described above, the following notes are also disclosed.
(Appendix 1)
A data transmission method for transmitting data from a first terminal device to a second terminal device,
In the first terminal device,
The first situation data is obtained by shooting or collecting sound using the shooting function or sound collection function provided in the first terminal device,
Transmitting the acquired first status data to the second terminal device;
In the second terminal device,
The second situation data is acquired by performing shooting or sound collection using the shooting function or sound collection function provided in the second terminal device,
Transmitting the acquired second status data to the first terminal device;
In the first terminal device,
Generating an encryption key by applying the first situation data transmitted to the second terminal device and the second situation data received from the second terminal device to a predetermined rule;
The transmission target data, which is the target data to be transmitted to the second terminal device, is encrypted using the generated encryption key,
Transmitting the encrypted data to be transmitted to the second terminal device;
In the second terminal device,
Generating an encryption key by applying the first situation data received from the first terminal device and the second situation data transmitted to the first terminal device to the predetermined rule;
Decrypting the transmission target data received from the first terminal device using the generated encryption key;
A data transmission method characterized by the above.
(Appendix 2)
A data transmission method for transmitting data from a first terminal device to a second terminal device,
In the first terminal device,
Processing for obtaining first status data by performing photographing or sound collection using a photographing function or a sound collecting function provided in the first terminal device, and a GPS provided in the first terminal device A process of acquiring position data indicating the position of the first terminal device using the function is executed,
Transmitting the acquired first status data and the position data to the second terminal device;
In the second terminal device,
When receiving the first status data and the location data, the location of the first terminal device is inquired of a provider that provides services to the first terminal device,
Whether or not the terminal device that is the transmission source of the first status data and the position data is the true first terminal device, the position returned from the operator and the position indicated in the position data Based on
When it is determined that the terminal device that is the transmission source of the first status data and the position data is the true first terminal device, the shooting function or sound collection provided in the second terminal device The second situation data is acquired by shooting or collecting sound using the function,
Transmitting the acquired second status data to the first terminal device;
In the first terminal device,
Generating an encryption key by applying the first situation data transmitted to the second terminal device and the second situation data received from the second terminal device to a predetermined rule;
The transmission target data, which is the target data to be transmitted to the second terminal device, is encrypted using the generated encryption key,
Transmitting the encrypted data to be transmitted to the second terminal device;
In the second terminal device,
Generating an encryption key by applying the first status data received from the first terminal device and the second status data transmitted to the first terminal device to the predetermined rule;
Decrypting the transmission target data received from the first terminal device using the generated encryption key;
A data transmission method characterized by the above.
(Appendix 3)
A data transmission method for transmitting data from a first terminal device to a second terminal device,
In the first terminal device,
The first situation data is obtained by shooting or collecting sound using the shooting function or sound collection function provided in the first terminal device,
Transmitting the acquired first status data to the second terminal device;
In the second terminal device,
Processing for obtaining second status data by performing photographing or sound collection using the photographing function or sound collecting function provided in the second terminal device, and GPS provided in the second terminal device Perform processing to obtain position data indicating the position of the second terminal device using the function,
Transmitting the acquired second situation data and the position data to the first terminal device;
In the first terminal device,
Inquires about the location of the second terminal device to a provider that provides services to the second terminal device,
Whether or not the terminal device that is the transmission source of the second status data and the position data is the true second terminal device, the position returned from the operator and the position indicated in the position data Based on
When it is determined that the terminal device that is the transmission source of the second situation data and the position data is the true second terminal device, the first situation data transmitted to the second terminal device and A cryptographic key is generated by applying the second status data received from the second terminal device to a predetermined rule,
The transmission target data, which is the target data to be transmitted to the second terminal device, is encrypted using the generated encryption key,
Transmitting the encrypted data to be transmitted to the second terminal device;
In the second terminal device,
Generating an encryption key by applying the first status data received from the first terminal device and the second status data transmitted to the first terminal device to the predetermined rule;
Decrypting the transmission target data received from the first terminal device using the generated encryption key;
A data transmission method characterized by the above.
(Appendix 4)
A data transmission method for transmitting data from a first terminal device to a second terminal device,
In the first terminal device,
Processing for obtaining first status data by performing photographing or sound collection using a photographing function or a sound collecting function provided in the first terminal device, and a GPS provided in the first terminal device Execute a process of acquiring first position data indicating the position of the first terminal device using the function;
Transmitting the acquired first status data and the first position data to the second terminal device;
In the second terminal device,
Upon receipt of the first status data and the first location data, the location of the first terminal device is inquired of a first operator that provides services to the first terminal device,
Whether the terminal device that is the transmission source of the first status data and the first position data is the true first terminal device, the position returned from the first operator and the first Discriminate based on the position indicated in the one position data,
A shooting function provided in the second terminal device when it is determined that the terminal device that is the transmission source of the first status data and the first position data is the true first terminal device. Alternatively, the process of acquiring the second status data by photographing or collecting sound using the sound collecting function and the position of the second terminal device using the GPS function provided in the second terminal device Process to obtain the second position data shown,
Transmitting the acquired second status data and the second position data to the first terminal device;
In the first terminal device,
Inquires about the location of the second terminal device to a second operator that provides services to the second terminal device,
Whether the terminal device that is the transmission source of the second status data and the second position data is the true second terminal device, the position returned from the second operator and the first Discriminate based on the position indicated in the second position data,
When it is determined that the terminal device that is the transmission source of the second status data and the second position data is the true second terminal device, the first terminal that has been transmitted to the second terminal device Generating an encryption key by applying situation data and the second situation data received from the second terminal device to a predetermined rule;
The transmission target data, which is the target data to be transmitted to the second terminal device, is encrypted using the generated encryption key,
Transmitting the encrypted data to be transmitted to the second terminal device;
In the second terminal device,
Generating an encryption key by applying the first status data received from the first terminal device and the second status data transmitted to the first terminal device to the predetermined rule;
Decrypting the transmission target data received from the first terminal device using the generated encryption key;
A data transmission method characterized by the above.
(Appendix 5)
A terminal device having a photographing function or a sound collecting function and a communication function,
Situation data acquisition means for acquiring first situation data by shooting or collecting sound;
Status data transmission means for transmitting the acquired first status data to a communication partner;
Status data receiving means for receiving, from the communication partner, second status data acquired by the communication partner capturing or collecting sound;
An encryption key generating means for generating an encryption key by applying the first status data transmitted to the communication partner and the second status data received from the communication partner to a predetermined rule;
Encryption means for encrypting target data, which is target data to be transmitted to the communication partner, using the generated encryption key;
Target data transmission means for transmitting the encrypted target data to the communication partner;
A terminal device comprising:
(Appendix 6)
Position data receiving means for receiving position data indicating the position of the transmission source of the second status data from the transmission source;
Position inquiry means for inquiring the position of the communication partner with respect to a system other than the transmission source;
Communication partner confirmation means for confirming whether or not the transmission source is the true communication partner based on the position indicated in the position data received from the transmission source and the position indicated in the answer from the system And are provided,
The target data transmitting means transmits the target data when it is confirmed that the transmission source is the true communication partner.
The terminal device according to claim 5.
(Appendix 7)
A terminal device having a photographing function or a sound collecting function and a communication function,
Situation data receiving means for receiving, from a communication partner, first situation data acquired by the communication partner performing shooting or sound collection;
Situation data acquisition means for acquiring second situation data by shooting or collecting sound;
Status data transmission means for transmitting the acquired second status data to the communication partner;
An encryption key generating means for generating an encryption key by applying the first status data received from the communication partner and the second status data transmitted to the communication partner to a predetermined rule;
Data intended for transmission to the terminal device by the communication partner encrypted by the encryption key generated by applying the first status data and the second status data to the predetermined rule at the communication partner Target data receiving means for receiving the target data from the communication partner;
Decrypting means for decrypting the received target data with the encryption key generated by the encryption key generating means;
A terminal device comprising:
(Appendix 8)
Position data receiving means for receiving position data indicating the position of the transmission source of the first status data from the transmission source;
Position inquiry means for inquiring the position of the communication partner with respect to a system other than the transmission source;
Communication partner confirmation means for confirming whether or not the transmission source is the true communication partner based on the position indicated in the position data received from the transmission source and the position indicated in the answer from the system And are provided,
The status data transmission means transmits the second status data when it is confirmed that the transmission source is the true communication partner.
The terminal device according to claim 6.
(Appendix 9)
A computer program for controlling a terminal device having a photographing function or a sound collecting function and a communication function,
In the mode of transmitting the transmission purpose data, which is data related to the purpose of transmission, to the communication partner,
Processing to obtain first situation data by shooting or collecting sound,
Processing for transmitting the acquired first status data to the communication partner;
A process of receiving second situation data acquired by the communication partner from photographing or collecting sound from the communication partner;
Processing to generate a first encryption key by applying the first status data transmitted to the communication partner and the second status data received from the communication partner to a predetermined rule;
Processing for encrypting the transmission object data using the generated first encryption key;
Processing for transmitting the encrypted transmission object data to the communication partner;
To the terminal device,
In the mode for receiving the reception purpose data, which is data related to the reception purpose, from the communication partner,
A process of receiving third situation data acquired by the communication partner performing shooting or sound collection from the communication partner;
Processing to obtain fourth situation data by shooting or collecting sound; and
Processing for transmitting the acquired fourth status data to the communication partner;
A process of generating a second encryption key by applying the third situation data received from the communication partner and the fourth situation data transmitted to the communication partner to a predetermined rule;
Processing for receiving the reception object data from the communication partner;
A process of decrypting the received reception-purpose data with the generated second encryption key;
To execute the terminal device,
A computer program characterized by the above.

  In Supplementary Note 4, when the first terminal device and the second terminal device correspond to the same carrier (common carrier, telecommunications carrier), the first carrier and the second carrier are the same.

  The present invention is particularly preferably used in order for portable terminal devices to communicate safely with each other.

It is a figure which shows the example of the whole structure of an encryption mail system. It is a figure which shows the example of the hardware constitutions of a server. It is a figure which shows the example of a functional structure of a subscriber information management server and a location information management server. It is a figure which shows the example of the hardware constitutions of a mobile telephone terminal. It is a figure which shows the example of a functional structure of a mobile telephone terminal. It is a figure which shows the example of a subscriber information database. It is a flowchart for demonstrating the example of the flow of a position reply process. It is a figure which shows the example of an e-mail preparation screen. It is a figure which shows the example of a receiving electronic mail screen. It is a flowchart for demonstrating the flow of a process when two mobile telephone terminals exchange electronic mail. It is a flowchart for demonstrating the flow of a process when two mobile telephone terminals exchange electronic mail. It is a flowchart for demonstrating the flow of a process when two mobile telephone terminals exchange electronic mail. It is a flowchart for demonstrating the example of the flow of an authentication mail production | generation process. It is a figure which shows the example of a 1st authentication profile. It is a figure which shows the example of a 2nd authentication profile.

Explanation of symbols

2B Location information management server 3 Mobile phone terminal (terminal device)
3A mobile phone terminal (first terminal device)
3B mobile phone terminal (second terminal device)
302 Location information acquisition processing unit (location inquiry means)
303 Authentication mail management unit (status data transmission means)
304 E-mail transmission processing unit (status data transmission means, target data transmission means)
305 E-mail reception processing unit (status data receiving means, position data receiving means, target data receiving means)
306 Hash value calculation unit (encryption key generation means)
307 Encryption / decryption processing unit (encryption means, decryption means)
308 Counterpart authentication processing unit (communication partner confirmation means)
30g digital camera (status data acquisition means)
30k speaker (status data acquisition means)
85 Current location answer information (position data)
EML E-mail (data to be sent, target data)
GDA image data (first situation data)
GDB image data (second situation data)

Claims (5)

A data transmission method for transmitting data from a first terminal device to a second terminal device,
In the first terminal device,
The first situation data is acquired by shooting or collecting sound using the shooting function or sound collection function provided in the first terminal device,
Transmitting the acquired first status data to the second terminal device;
In the second terminal device,
The second situation data is acquired by performing shooting or sound collection using the shooting function or sound collection function provided in the second terminal device,
Transmitting the acquired second status data to the first terminal device;
In the first terminal device,
Generating an encryption key by applying the first situation data transmitted to the second terminal device and the second situation data received from the second terminal device to a predetermined rule;
The transmission target data, which is the target data to be transmitted to the second terminal device, is encrypted using the generated encryption key,
Transmitting the encrypted data to be transmitted to the second terminal device;
In the second terminal device,
Generating an encryption key by applying the first situation data received from the first terminal device and the second situation data transmitted to the first terminal device to the predetermined rule;
Decrypting the transmission target data received from the first terminal device using the generated encryption key;
A data transmission method characterized by the above. A terminal device having a photographing function or a sound collecting function and a communication function,
Situation data acquisition means for acquiring first situation data by shooting or collecting sound;
Status data transmission means for transmitting the acquired first status data to a communication partner;
Status data receiving means for receiving, from the communication partner, second status data acquired by the communication partner capturing or collecting sound;
An encryption key generating means for generating an encryption key by applying the first status data transmitted to the communication partner and the second status data received from the communication partner to a predetermined rule;
Encryption means for encrypting target data, which is target data to be transmitted to the communication partner, using the generated encryption key;
Target data transmission means for transmitting the encrypted target data to the communication partner;
A terminal device comprising: Position data receiving means for receiving position data indicating the position of the transmission source of the second status data from the transmission source;
Position inquiry means for inquiring the position of the communication partner with respect to a system other than the transmission source;
Communication partner confirmation means for confirming whether or not the transmission source is the true communication partner based on the position indicated in the position data received from the transmission source and the position indicated in the answer from the system And are provided,
The target data transmitting means transmits the target data when it is confirmed that the transmission source is the true communication partner.
The terminal device according to claim 2. A terminal device having a photographing function or a sound collecting function and a communication function,
Situation data receiving means for receiving, from a communication partner, first situation data acquired by the communication partner performing shooting or sound collection;
Situation data acquisition means for acquiring second situation data by shooting or collecting sound;
Status data transmission means for transmitting the acquired second status data to the communication partner;
An encryption key generating means for generating an encryption key by applying the first status data received from the communication partner and the second status data transmitted to the communication partner to a predetermined rule;
Data intended for transmission to the terminal device by the communication partner encrypted by the encryption key generated by applying the first status data and the second status data to the predetermined rule at the communication partner Target data receiving means for receiving the target data from the communication partner;
Decrypting means for decrypting the received target data with the encryption key generated by the encryption key generating means;
A terminal device comprising: A computer program for controlling a terminal device having a photographing function or a sound collecting function and a communication function,
In the mode of transmitting the transmission purpose data, which is data related to the purpose of transmission, to the communication partner,
Processing to obtain first situation data by shooting or collecting sound,
Processing for transmitting the acquired first status data to the communication partner;
A process of receiving second situation data acquired by the communication partner from photographing or collecting sound from the communication partner;
Processing to generate a first encryption key by applying the first status data transmitted to the communication partner and the second status data received from the communication partner to a predetermined rule;
Processing for encrypting the transmission object data using the generated first encryption key;
Processing for transmitting the encrypted transmission object data to the communication partner;
To the terminal device,
In the mode for receiving the reception purpose data, which is data related to the reception purpose, from the communication partner,
A process of receiving third situation data acquired by the communication partner from photographing or collecting sound from the communication partner;
Processing to obtain fourth situation data by shooting or collecting sound; and
Processing for transmitting the acquired fourth status data to the communication partner;
Processing to generate a second encryption key by applying the third situation data received from the communication partner and the fourth situation data transmitted to the communication partner to a predetermined rule;
Processing for receiving the reception object data from the communication partner;
A process of decrypting the received reception-purpose data with the generated second encryption key;
To execute the terminal device,
A computer program characterized by the above.