[go: up one dir, main page]

WO2009005296A2 - System and method for processing certification of digital contents and computer-readable medium having thereon program performing function embodying the same - Google Patents

System and method for processing certification of digital contents and computer-readable medium having thereon program performing function embodying the same Download PDF

Info

Publication number
WO2009005296A2
WO2009005296A2 PCT/KR2008/003898 KR2008003898W WO2009005296A2 WO 2009005296 A2 WO2009005296 A2 WO 2009005296A2 KR 2008003898 W KR2008003898 W KR 2008003898W WO 2009005296 A2 WO2009005296 A2 WO 2009005296A2
Authority
WO
WIPO (PCT)
Prior art keywords
authentication
digital content
password
tag
signal
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Ceased
Application number
PCT/KR2008/003898
Other languages
French (fr)
Other versions
WO2009005296A3 (en
Inventor
Yoon Deock Lee
Yeong Rak Seong
Ha Ryoung Oh
Jun-Suk Park
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Individual
Original Assignee
Individual
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Individual filed Critical Individual
Publication of WO2009005296A2 publication Critical patent/WO2009005296A2/en
Publication of WO2009005296A3 publication Critical patent/WO2009005296A3/en
Anticipated expiration legal-status Critical
Ceased legal-status Critical Current

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/30Authentication, i.e. establishing the identity or authorisation of security principals
    • G06F21/31User authentication
    • G06F21/34User authentication involving the use of external additional devices, e.g. dongles or smart cards
    • G06F21/35User authentication involving the use of external additional devices, e.g. dongles or smart cards communicating wirelessly
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K19/00Record carriers for use with machines and with at least a part designed to carry digital markings
    • G06K19/06Record carriers for use with machines and with at least a part designed to carry digital markings characterised by the kind of the digital marking, e.g. shape, nature, code
    • G06K19/067Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components
    • G06K19/07Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips
    • G06K19/0723Record carriers with conductive marks, printed circuits or semiconductor circuit elements, e.g. credit or identity cards also with resonating or responding marks without active components with integrated circuit chips the record carrier comprising an arrangement for non-contact communication, e.g. wireless communication circuits on transponder cards, non-contact smart cards or RFIDs
    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06KGRAPHICAL DATA READING; PRESENTATION OF DATA; RECORD CARRIERS; HANDLING RECORD CARRIERS
    • G06K7/00Methods or arrangements for sensing record carriers, e.g. for reading patterns
    • G06K7/10Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation
    • G06K7/10009Methods or arrangements for sensing record carriers, e.g. for reading patterns by electromagnetic radiation, e.g. optical sensing; by corpuscular radiation sensing by radiation using wavelengths larger than 0.1 mm, e.g. radio-waves or microwaves
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04WWIRELESS COMMUNICATION NETWORKS
    • H04W12/00Security arrangements; Authentication; Protecting privacy or anonymity
    • H04W12/06Authentication

Definitions

  • the present invention relates to a system and a method for processing a certification of a digital content and a computer-readable medium having thereon a program performing a function embodying the same, and more particularly to a system and a method for processing a certification of a digital content and a computer-readable medium having thereon a program performing a function embodying the same wherein an authentication of a digital content is carried out using a random number to prevent an interception of authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and an authenticity of the radio frequency identification tag is verified based on a response to the random number.
  • Background Art
  • a radio frequency identification (hereinafter referred to as RFID) system processes an information by identifying a data stored in a thin planar tag attached to an object in a contactless manner through a radio signal.
  • the RFID system comprises an antenna, the tag, also referred to as a transponder, and a transceiver generally integrated into a reader.
  • the reader uses a radio frequency wave in order to transmit a signal for activating the tag.
  • the tag transmits the data stored therein to the reader through the antenna when activated.
  • the tag stores the information on a content of an object or a condition of its surroundings in an internal memory and transmits the information to the reader.
  • the tag (hereinafter referred to as RFID tag) utilizes the radio frequency wave as a means for providing the information stored therein.
  • the RFID tag generally includes the antenna connected to a memory device such as an integrated circuit in order to transmit a signal corresponding to a read request signal from the reader.
  • a memory device such as an integrated circuit
  • the RFID tag may be classified into an active RFID tag which operates using a built- in power supply and a passive RFID tag which operates by receiving a power from the read request signal.
  • the RFID system is disadvantageous in that the RFID system cannot be used to authenticate software due to the fragility in its security.
  • the software is sold in a form of a storage media such as a compact disc.
  • the storage media such as the compact disc is highly suitable as a storage means for a digital signal.
  • the digital signal stored in the storage media is advantageous in that a quality thereof is identical to that of an original even after multiple duplications.
  • a drawback of the digital signal stored in the storage media is that anyone can copy the digital signal to a similar storage media for use. That is, the signal quality of the copied digital signal is identical to that of the original. Therefore, the software is vulnerable to a copyright infringement.
  • a scheme wherein a copy protection device is added may be employed.
  • the copy protection device having therein an information required for executing the software is connected to a parallel port of a computer.
  • the computer then inspects the parallel port to detect a presence of the copy protection device when the software is executed.
  • the storage media such as a DVD, a blu-ray disc and a HD-DVD having therein a movie content as well as the software may be illegally copied by the user.
  • Internet such as the software and a multimedia content is hereinafter referred to as
  • digital content processing apparatus An apparatus capable of carrying out a signal processing in order to reproduce or execute the digital content is hereinafter referred to as "digital content processing apparatus"
  • digital content processing apparatus may be a computer executing the software.
  • the digital content processing apparatus may also be a playback apparatus for reproducing the multimedia content such as a movie stored in the storage media.
  • the digital content processing apparatus may be a playback apparatus capable of storing and reproducing the digital content such as a portable MP3 player.
  • the digital content processing apparatus herein is capable of reading or storing the digital content and of executing or reproducing the digital content.
  • An efficient method for preventing the illegal copying and an illegal use of the digital content in the digital content processing apparatus is necessary in order to protect a copyright holder of the digital content.
  • a conventional authentication method of a digital content, particularly a method using an RFID has following disadvantages.
  • An RFID reader which is embodied to be included in or to be connected to the digital content processing apparatus reads an information stored in an RFID tag in order to authenticate the digital content.
  • another RFID reader may monitor the information. Therefore, the information related to the authentication may be intercepted.
  • an undesired interception of the information limits a use of an RFID reader
  • a digital content authentication processing system comprising a digital content processing apparatus; and a radio frequency identification tag; wherein the digital content processing apparatus comprises: an authentication query signal generator for generating an authentication query signal for authenticating a digital content using a random number; a radio communication unit for transmitting the authentication query signal to the radio frequency identification tag and for receiving an authentication response signal corresponding to the authentication query signal from the radio frequency identification tag; and an authentication unit for authenticating the digital content based on the authentication query signal and the authentication response signal, and wherein the radio frequency identification tag comprises: an authentication response signal generator for generating the authentication response signal based on the authentication query response signal for authenticating the digital content; and a tag radio communication unit for receiving the authentication query signal from the digital content processing apparatus and for transmitting the authentication response signal to the digital content processing apparatus.
  • the authentication unit further comprises an authentication comparison signal generator for generating an authentication comparison signal based on the authentication query signal, wherein the authentication comparison signal generator generates the authentication comparison signal from the authentication query signal based on a first transfer function, and the authentication response signal generator generates the authentication response signal from the authentication query signal based on a second transfer function being identical to or conforming to the first transfer function, and wherein the authentication unit determines the digital content to be authentic when the authentication query signal corresponding to the authentication comparison signal.
  • an authentication comparison signal generator for generating an authentication comparison signal based on the authentication query signal
  • the authentication comparison signal generator generates the authentication comparison signal from the authentication query signal based on a first transfer function
  • the authentication response signal generator generates the authentication response signal from the authentication query signal based on a second transfer function being identical to or conforming to the first transfer function
  • the authentication unit determines the digital content to be authentic when the authentication query signal corresponding to the authentication comparison signal.
  • the digital content processing apparatus further comprises a device password storage for storing a device authentication password for authenticating the digital content; wherein the authentication comparison signal generator generates the authentication comparison signal based on a device authentication password and the authentication query signal, wherein the radio frequency identification tag further comprises a tag password storage for storing a tag authentication password for authenticating the digital content, and wherein the authentication response signal generator generates the authentication response signal based on the tag authentication password and the authentication query signal.
  • the authentication response signal generator generates the authentication response signal by irreversibly converting the tag authentication password and the authentication query signal based on the second transfer function.
  • the digital content processing apparatus further comprises a user input receiver for receiving a user input, and wherein the device password storage stores the device authentication password received through the user input receiver.
  • the device authentication password is displayed on a computer-readable medium corresponding to the digital content or the radio frequency identification tag.
  • the device password storage stores the device authentication password from an external apparatus connected through a network.
  • the device password storage reads the device authentication password from a computer-readable medium to be stored therein.
  • the tag password storage stores the tag authentication password in a manner that the password is unreadable by an external apparatus.
  • the device authentication password corresponding to the tag authentication password.
  • a digital content authentication processing method a digital content authentication processing system, the digital content authentication processing system including a digital content processing apparatus and a radio frequency identification tag, the method comprising steps of: (a) generating an authentication query signal for authenticating a digital content using a random number; (b) transmitting the authentication query signal to the radio frequency identification tag; (c) receiving an authentication response signal from the radio frequency identification tag as of response to the authentication query signal; and (d) authenticating the digital content based on the authentication query signal and the authentication response signal.
  • the step (a) comprises generating the random number within a predetermined range to be designated as the authentication query signal.
  • the method in accordance with the present invention may further comprise (e) generating an authentication comparison signal by converting the authentication query signal based on a transfer function, and wherein the step (d) comprises comparing the authentication comparison signal with the authentication response signal.
  • the method in accordance with the present invention may further comprises (f) storing the device authentication password generating the authentication comparison signal prior to carrying out the step (a), wherein the step (e) comprises generating the authentication comparison signal by irreversibly converting the device authentication password and the authentication query signal based on the transfer function.
  • a digital content authentication processing method a digital content authentication processing system, the digital content authentication processing system including a digital content processing apparatus and the radio frequency identification tag, the method comprising steps of: (a) receiving an authentication query signal from the digital content processing apparatus; (b) generating an authentication response signal by converting the authentication query signal based on a transfer function; and (c) transmitting the authentication response signal to the digital content processing apparatus.
  • the method in accordance with the present invention may further comprises (d) storing a tag authentication password for generating of the authentication response signal prior to carrying out the step (a), wherein the step (b) comprises generating the authentication response signal by irreversibly converting the authentication query signal and the tag authentication password based on the transfer function.
  • the step (d) comprises storing the tag authentication password in a manner that the password is unreadable by an external apparatus.
  • an authentication of a digital content is carried out using a random number to prevent an interception of an authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and a authenticity of the radio frequency identification tag is verified base on a response to the random number.
  • FIG. 1 is a block diagram exemplifying a digital content authentication processing system in accordance with the present invention.
  • FIG. 2 is a flow diagram illustrating a digital content authentication processing method in accordance with an embodiment of the present invention.
  • FIG. 3 is a flow diagram illustrating a digital content authentication processing method in accordance with another embodiment of the present invention.
  • FIG. 1 is a block diagram exemplifying a digital content authentication processing system in accordance with the present invention.
  • the digital content authentication processing system in accordance with the present invention comprises a digital content processing apparatus 100 and a radio frequency identification tag 200.
  • the digital content processing apparatus 100 shown in Fig. 1 comprises an authentication query signal generator 110, a radio communication unit 130 and an authentication unit 150.
  • the digital content processing apparatus 100 shown in Fig. 1 may further comprise a device password storage 170.
  • the digital content processing apparatus 100 may further comprise a user input receiver (not shown).
  • the radio frequency identification tag 200 shown in Fig. 1 comprises an authentication response signal generator 210 and a tag radio communication unit 230.
  • the radio frequency identification tag 200 shown in Fig. 1 may further comprise a tag password storage 250.
  • the authentication query signal generator 110 generates an authentication query signal.
  • the digital content processing apparatus 100 transmits the authentication query signal to the radio frequency identification tag 200, and the digital content processing apparatus 100 receives an authentication response signal corresponding to the authentication query signal from the radio frequency identification tag 200.
  • the authentication query signal may use a random number generated to be within a predetermined range.
  • the radio frequency identification tag 200 generates a signal corresponding to the authentication query signal through an internal signal processing, i.e., is the authentication response signal, to be transmitted to the digital content processing apparatus 100.
  • the digital content processing apparatus 100 may verify the authentication of the radio frequency identification tag 200 based on the authentication response signal.
  • the random number is used as the authentication query signal in order to prevent other readers from monitoring a communication between the digital content processing apparatus 100 and the radio frequency identification tag 200. That is, the authentication query signal, which is changed randomly, is used to prevent adjacent tags or adjacent readers from knowing the authentication response signal despite the monitoring.
  • the radio communication unit 130 transmits the authentication query signal generated by the authentication query signal generator 110 to the radio frequency identification tag 200.
  • the radio communication unit 130 receives the authentication response signal, which is the response to the authentication query signal, from the radio frequency identification tag 200. That is, the radio communication unit 130 carries out an interfacing for a radio frequency identification communication.
  • the authentication unit 150 authenticates the digital content based on the authentication query signal generated by the authentication query signal generator 110 and the authentication response signal received from the radio communication unit 130.
  • the authentication unit 150 may comprise an authentication comparison signal generator (not shown) generating an authentication comparison signal based on the authentication query signal generated by the authentication query signal generator 110 for authenticating of the digital content.
  • the authentication unit 150 compares the authentication comparison signal generated by the authentication comparison signal generator with the authentication query signal received from the radio frequency identification tag 200 to authenticate the digital content. That is, the authentication comparison signal generator generates the authentication comparison signal, which is identical to or corresponds to the authentication response signal generated by the radio frequency identification tag and transmitted to the digital content processing apparatus 100.
  • a first transfer function used by theauthentication comparison signal generator is identical to or conforms to a second transfer function used by the authentication response signal generator 210 of the radio frequency identification tag 200.
  • the digital content processing apparatus 100 may only execute the digital content authenticated through the authentication unit 150.
  • radio frequency identification tag 200 is described in more detail below.
  • the authentication response signal generator 210 generates the authentication response signal based on the authentication query signal received from the digital content processing apparatus 100. That is, the authentication response signal generator 210 generates the authentication response signal using a transfer function when the authentication response signal generator 210 receives the authentication query signal.
  • the second transfer function used by authentication response signal generator 210 is identical to or conforms to the first transfer function used by the authentication comparison signal generator of the digital content processing apparatus 100.
  • the tag radio communication unit 230 receives the authentication query signal from the digital content processing apparatus 100. In addition, the tag radio communication unit 230 transmits the authentication query signal generated by the authentication response signal generator 210 to the digital content processing apparatus 100. That is, the tag radio communication unit 230 carries out an interfacing for a radio frequency identification communication.
  • the authentication comparison signal generator and the authentication response signal generator 210 may use the first transfer function and the second transfer function, respectively as described above, which are identical to or conform to each other.
  • the authentication comparison signal generator may generate the authentication comparison signal using a function Fl(Nl).
  • the authentication response signal generator 210 may generate the authentication response signal also using the function Fl(Nl).
  • the first transfer function is identical to the second transfer function.
  • the function Fl(x) is a transfer function for converting x, and a value of Fl(x) is the authentication comparison signal or the authentication response signal.
  • the authentication comparison signal generator may generate the authentication comparison signal using the function Fl(Nl), which is the first transfer function
  • the authentication response signal generator 210 may generate the authentication response signal using the function F2(N1), which is the second transfer function.
  • the functions Fl(x) and F2(x) are the transfer functions for converting x.
  • the values of Fl(x) and F2(x) are the authentication comparison signal and the authentication response signal, respectively.
  • the functions Fl(x) and F2(x) may be configured in a manner that there exists a correlation between the values of Fl(x) and F2(x).
  • the comparison by the authentication unit 150 may be carried out even when the authentication comparison signal generator of the digital content processing apparatus 100 and the authentication response signal generator 210 of the radio frequency identification tag 200 do not use the identical transfer function.
  • the authentication unit 150 determines the digital content to be authentic when the authentication response signal and the authentication comparison signal are identical to (that is, when the identical transfer function is used) or conform to (that is, when the transfer functions having the correlation are used) each other by comparing the authentication response signal with the authentication comparison signal.
  • the authentication response signal generator 210 of the radio frequency identification tag 200 generates the authentication response signal based on the authentication query signal. Particularly, the authentication response signal changes according the authentication query signal because the authentication query signal includes the random number.
  • radio frequency identification tag 200 since the radio frequency identification tag 200 generates the authentication response signal based on the random number, other adjacent tags cannot know the authentication response signal. Therefore, an authenticity of the radio frequency identification tag 200 is certified.
  • the digital content processing apparatus 100 may further comprise the device password storage 170 for storing a device authentication password for authenticating the digital content.
  • the radio frequency identification tag 200 may further comprise the tag password storage 250 for storing a tag authentication password for authenticating the digital content.
  • the device authentication password and the tag authentication password are used to improve a security of the authentication process.
  • the authentication comparison signal generator generates the authentication comparison signal based on the device authentication password of the device password storage 170 and the authentication query signal of the authentication query signal generator 110.
  • the authentication response signal generator 210 generates the authentication response signal based on the tag authentication password of the tag password storage 250 and the authentication query signal.
  • the device authentication password stored in the device password storage 170 and the tag authentication password stored in the tag password storage 250 may be identical to or correspond to each other. That is, an authentication password identical to the tag authentication password or corresponding to the tag authentication password by n: 1 is stored in the device password storage 170 of the digital content processing apparatus 100 as the device authentication password. For instance, the device authentication password may correspond to a plurality of the tag authentication password.
  • the digital content processing apparatus 100 may further comprise the user input receiver for receiving a user input.
  • the user input receiver receives the user input through an input device such as a keyboard.
  • the authentication password may be printed on a surface of the compact disc or on a case thereof. Alternately, the authentication password may be printed on the radio frequency identification tag 200 provided with the compact disc.
  • the device password storage 170 stores the device authentication password received by the user input receiver. Moreover, the tag authentication password may be prestored in the radio frequency identification tag 200.
  • the device password storage 170 may store the device authentication password received from an external apparatus through a network.
  • the digital content processing apparatus 100 connects to the external apparatus storing the device authentication password corresponding to the tag authentication password of the radio frequency identification tag 200 through the network to receive device authentication password.
  • the device password storage 170 stores the received device authentication password.
  • the tag authentication password may be prestored in the radio frequency identification tag 200.
  • the device password storage 170 reads the device authentication password stored in the storage media storing the digital content, i.e. the compact disc, to store the device authentication password. That is, the device authentication password is prestored in the storage media such as the compact disc during the manufacturing process thereof, and the digital content processing apparatus 100 reads the device authentication password.
  • the device password storage 170 stores the device authentication password read from the storage media.
  • the tag authentication password corresponding to the device authentication password is prestored in the radio frequency identification tag 200.
  • the device authentication password of the device password storage 170 may be identical to the tag authentication password of the tag password storage 250 or correspond to the tag authentication password by n:l.
  • the tag password storage 250 may store the tag authentication password in a manner that the password is unreadable by the external apparatus.
  • the tag authentication password is stored in a manner that other adjacent readers cannot read the tag authentication password stored in the tag password storage 250 included in the radio frequency identification tag 200 even when the radio frequency identification tag 200 is communicating with other adjacent readers.
  • the authentication comparison signal generator generates the authentication comparison signal based on the device authentication password of the device password storage 170 and the authentication query signal of the authentication query signal generator 110.
  • the authentication response signal generator 210 generates the authentication response signal based on the tag authentication password of the tag password storage 250 and the authentication query signal received from the authentication query signal generator 110.
  • the authentication comparison signal and the authentication response signal are thereby expressed as F3(N1, PW).
  • the conversion by the function F3(x, y) used by the authentication response signal generator 210 may be irreversible. That is, the function F3(x, y) may be an irreversible transfer function.
  • the irreversible transfer function refers to the function wherein the input value of the transfer function cannot be known even when the authentication response signal is known. Therefore, when the irreversible transfer function is used, other adjacent tags or readers cannot know the authentication password PW even when other adjacent tags or readers know the authentication query signal and the transfer function by monitoring the communication.
  • FIG. 2 is a flow diagram illustrating a digital content authentication processing method in accordance with an embodiment of the present invention.
  • FIG. 2 illustrates a digital content authentication processing method carried out in the digital content processing apparatus of the digital content authentication processing system including the digital content processing apparatus and the radio frequency identification tag described with reference to Fig. 1.
  • a portion of a detailed description of the method shown in Fig. 2 already described with reference to Fig. 1 is omitted.
  • the digital content processing apparatus generates the authentication query signal to be transmitted to the radio frequency identification tag (Sl 10).
  • the authentication query signal is generated by generating the random number.
  • the random number may be generated by arbitrarily selecting a number.
  • the digital content processing apparatus transmits the authentication query signal generated in the step Sl 10 to the radio frequency identification tag (S130).
  • the digital content processing apparatus receives the authentication response signal, which is a response to the authentication query signal, from the radio frequency identification tag to correspond to the transmission in the step S 130 (S 150).
  • the digital content processing apparatus authenticates the digital content based on the authentication query signal generated in the step Sl 10 and the authentication response signal received in the step S 150 (S 170).
  • the method may further comprise generating the authentication comparison signal by converting the authentication query signal based on the transfer function.
  • the authentication comparison signal is generated for the authentication in the step S 170.
  • the digital content processing apparatus compares the generated authentication comparison signal with the authentication response signal received in the step S 150 to carry out the authentication in the step S 170.
  • the radio frequency identification tag converts the authentication query signal using the transfer function for generating the authentication comparison signal
  • the authentication response signal may be generated.
  • the authentication of the digital content is possible when the digital content processing apparatus determines whether the authentication comparison signal is identical to the authentication response signal in the step S 170.
  • the method may further comprise storing the device authentication password for generating the authentication comparison signal prior to carrying out the step Sl 10.
  • the device authentication password is used to improve the security of the authentication process.
  • the digital content processing apparatus may generate the authentication comparison signal from the device authentication password and the authentication query signal based on the irreversible transfer function as described above in the step of generating the authentication response signal.
  • the radio frequency identification tag may generate the authentication response signal from the tag authentication password, which is stored in the radio frequency identification tag to correspond to the device authentication password, and the authentication query signal based on the irreversible transfer function.
  • the digital content processing apparatus may carry out the authentication of the digital content by determining whether the authentication comparison signal is identical to the authentication response signal in the step S 170.
  • FIG. 3 is a flow diagram illustrating a digital content authentication processing method in accordance with another embodiment of the present invention.
  • FIG. 3 illustrates a digital content authentication processing method carried out in the radio frequency identification tag of the digital content authentication processing system including the digital content processing apparatus and the radio frequency identification tag described with reference to Fig. 1.
  • a portion of a detailed description of the method shown in Fig. 3 already described with reference to Fig. 1 is omitted.
  • the radio frequency identification tag receives the authentication query signal from the digital content processing apparatus (S210).
  • the radio frequency identification tag generates the authentication response signal by converting the authentication query signal received in the step S210 based on the irreversible transfer function (S230).
  • the radio frequency identification tag transmits the authentication response signal generated in the step S230 to the digital content processing apparatus (S250).
  • the tag authentication password for generating the authentication response signal may be stored in the radio frequency identification tag prior to carrying out the step S210.
  • the tag authentication password is used to improve the security of the authentication process.
  • the radio frequency identification tag may generate the authentication response signal by converting the authentication query signal and the tag authentication password based on the irreversible transfer function.
  • the tag authentication password is stored in a manner that the password is unreadable by the external apparatus.
  • the tag authentication password used for generating the authentication response signal is stored in the radio frequency identification tag in a manner that other external adjacent readers cannot read the tag authentication password.
  • the present invention provides a computer-readable medium having thereon a program performing function embodying the digital content authentication processing method based on the radio frequency identification tag in accordance with the present invention.
  • the computer-readable medium refers to various storage mediums for storing a data in a code or a program format that may be read by a computer system.
  • the computer- readable medium may include a memory such as a ROM and a RAM, a storage medium such as CD-ROM and a DVD-ROM, a magnetic storage medium such as a magnetic tape and a floppy disk, and an optical data storage medium.
  • the computer- readable medium may include a data transferred via the Internet.
  • the computer- readable medium may be embodied by a computer-readable data divided and stored over computer systems connected through a network.
  • an authentication of a digital content is carried out using a random number to prevent an interception of authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and a authenticity of the radio frequency identification tag is verified base on a response to the random number.

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Physics & Mathematics (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Software Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Toxicology (AREA)
  • Microelectronics & Electronic Packaging (AREA)
  • Signal Processing (AREA)
  • Electromagnetism (AREA)
  • General Health & Medical Sciences (AREA)
  • Artificial Intelligence (AREA)
  • Computer Vision & Pattern Recognition (AREA)
  • Storage Device Security (AREA)

Abstract

The present invention relates to a system for processing a certification of a digital content wherein an authentication of a digital content is carried out using a random number to prevent an interception of authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and an authenticity of the radio frequency identification tag is verified based on a response to the random number.

Description

Description
SYSTEM AND METHOD FOR PROCESSING CERTIFICATION
OF DIGITAL CONTENTS AND COMPUTER-READABLE
MEDIUM HAVING THEREON PROGRAM PERFORMING
FUNCTION EMBODYING THE SAME Technical Field
[1] The present invention relates to a system and a method for processing a certification of a digital content and a computer-readable medium having thereon a program performing a function embodying the same, and more particularly to a system and a method for processing a certification of a digital content and a computer-readable medium having thereon a program performing a function embodying the same wherein an authentication of a digital content is carried out using a random number to prevent an interception of authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and an authenticity of the radio frequency identification tag is verified based on a response to the random number. Background Art
[2] A radio frequency identification (hereinafter referred to as RFID) system processes an information by identifying a data stored in a thin planar tag attached to an object in a contactless manner through a radio signal.
[3] The RFID system comprises an antenna, the tag, also referred to as a transponder, and a transceiver generally integrated into a reader. The reader uses a radio frequency wave in order to transmit a signal for activating the tag. The tag transmits the data stored therein to the reader through the antenna when activated.
[4] That is, the tag stores the information on a content of an object or a condition of its surroundings in an internal memory and transmits the information to the reader. The tag (hereinafter referred to as RFID tag) utilizes the radio frequency wave as a means for providing the information stored therein.
[5] The RFID tag generally includes the antenna connected to a memory device such as an integrated circuit in order to transmit a signal corresponding to a read request signal from the reader.
[6] The RFID tag may be classified into an active RFID tag which operates using a built- in power supply and a passive RFID tag which operates by receiving a power from the read request signal.
[7] An application of an RFID system in the industry is increasing due to a stan- dardization of an RFID technology, a reduction of a manufacturing cost and an increase in a reading distance.
[8] However, the RFID system is disadvantageous in that the RFID system cannot be used to authenticate software due to the fragility in its security.
[9] The authentication of the software is described in more detail below.
[10] Generally, the software is sold in a form of a storage media such as a compact disc.
The storage media such as the compact disc is highly suitable as a storage means for a digital signal. The digital signal stored in the storage media is advantageous in that a quality thereof is identical to that of an original even after multiple duplications. However, a drawback of the digital signal stored in the storage media is that anyone can copy the digital signal to a similar storage media for use. That is, the signal quality of the copied digital signal is identical to that of the original. Therefore, the software is vulnerable to a copyright infringement.
[11] In order to prevent the software stored in the storage media from an illegal duplication, a scheme wherein the signal stored in the storage media is distorted, or a scheme wherein a special marking is stored in a storage area to which a normal user cannot access. However, a high-priced special equipment should be used to employ theses schemes.
[12] A scheme wherein a serial number or a password should be inputted in order to execute software has been developed to prevent the illegal duplication. However, it is disadvantageous in that the serial number and the password may be illegally generated.
[13] A scheme wherein a copy protection device is added may be employed. For instance, the copy protection device having therein an information required for executing the software is connected to a parallel port of a computer. The computer then inspects the parallel port to detect a presence of the copy protection device when the software is executed.
[14] However, when the copy protection device is used, a cost for manufacturing the software package is increased. In addition, a user must install the copy protection device. Moreover, since the number of the copy protection device that may be installed in the computer is limited, the illegal duplication cannot be efficiently prevented as the number of the software increases.
[15] Alternately, a scheme wherein the user downloads the software via the Internet and obtains an authentication the software may be possible.
[16] However, even when the software is downloaded via the Internet, the user may illegally copy the software. For instance, the user may generate an illegal authentication information to use the software.
[17] On the other hand, the storage media such as a DVD, a blu-ray disc and a HD-DVD having therein a movie content as well as the software may be illegally copied by the user. [18] A data in a form of a digital file stored in the storage media or downloaded via the
Internet such as the software and a multimedia content is hereinafter referred to as
"digital content". [19] An apparatus capable of carrying out a signal processing in order to reproduce or execute the digital content is hereinafter referred to as "digital content processing apparatus" [20] The digital content processing apparatus may be a computer executing the software.
The digital content processing apparatus may also be a playback apparatus for reproducing the multimedia content such as a movie stored in the storage media. In addition, the digital content processing apparatus may be a playback apparatus capable of storing and reproducing the digital content such as a portable MP3 player. [21] The digital content processing apparatus herein is capable of reading or storing the digital content and of executing or reproducing the digital content. [22] An efficient method for preventing the illegal copying and an illegal use of the digital content in the digital content processing apparatus is necessary in order to protect a copyright holder of the digital content. [23] A conventional authentication method of a digital content, particularly a method using an RFID has following disadvantages. [24] An RFID reader, which is embodied to be included in or to be connected to the digital content processing apparatus reads an information stored in an RFID tag in order to authenticate the digital content. [25] However, when the information stored in the RFID tag is transmitted to the RFID reader, another RFID reader may monitor the information. Therefore, the information related to the authentication may be intercepted. [26] Accordingly, when the RFID reader and the RFID tag are used for the authentication of the digital content, an undesired interception of the information limits a use of an
RFID system for the authentication.
[27] In addition, it is difficult to verify an authenticity of the RFID tag.
[28] That is, when the RFID tag is maliciously modified or duplicated, the RFID reader or the digital content processing apparatus including the RFID reader is not capable of detecting the maliciously modified or duplicated RFID tag. [29] Therefore, it is substantially impossible to use the RFID system for the authentication of the digital content due to the above-described disadvantage.
Disclosure of Invention
Technical Problem [30] It is an object of the present invention to provide a digital content authentication processing system and a digital content authentication processing method wherein an authentication of a digital content is carried out using a random number to prevent an interception of authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and an authenticity of the radio frequency identification tag is verified based on a response to the random number.
[31] It is another object of the present invention to provide a computer-readable medium having thereon a program performing a function embodying a digital content authentication processing method. Technical Solution
[32] In order to achieve above-described object of the present invention, there is provided a digital content authentication processing system comprising a digital content processing apparatus; and a radio frequency identification tag; wherein the digital content processing apparatus comprises: an authentication query signal generator for generating an authentication query signal for authenticating a digital content using a random number; a radio communication unit for transmitting the authentication query signal to the radio frequency identification tag and for receiving an authentication response signal corresponding to the authentication query signal from the radio frequency identification tag; and an authentication unit for authenticating the digital content based on the authentication query signal and the authentication response signal, and wherein the radio frequency identification tag comprises: an authentication response signal generator for generating the authentication response signal based on the authentication query response signal for authenticating the digital content; and a tag radio communication unit for receiving the authentication query signal from the digital content processing apparatus and for transmitting the authentication response signal to the digital content processing apparatus.
[33] Preferably, the authentication unit further comprises an authentication comparison signal generator for generating an authentication comparison signal based on the authentication query signal, wherein the authentication comparison signal generator generates the authentication comparison signal from the authentication query signal based on a first transfer function, and the authentication response signal generator generates the authentication response signal from the authentication query signal based on a second transfer function being identical to or conforming to the first transfer function, and wherein the authentication unit determines the digital content to be authentic when the authentication query signal corresponding to the authentication comparison signal.
[34] Preferably, the digital content processing apparatus further comprises a device password storage for storing a device authentication password for authenticating the digital content; wherein the authentication comparison signal generator generates the authentication comparison signal based on a device authentication password and the authentication query signal, wherein the radio frequency identification tag further comprises a tag password storage for storing a tag authentication password for authenticating the digital content, and wherein the authentication response signal generator generates the authentication response signal based on the tag authentication password and the authentication query signal.
[35] Preferably, the authentication response signal generator generates the authentication response signal by irreversibly converting the tag authentication password and the authentication query signal based on the second transfer function.
[36] Preferably, the digital content processing apparatus further comprises a user input receiver for receiving a user input, and wherein the device password storage stores the device authentication password received through the user input receiver.
[37] Preferably, the device authentication password is displayed on a computer-readable medium corresponding to the digital content or the radio frequency identification tag.
[38] Preferably, the device password storage stores the device authentication password from an external apparatus connected through a network.
[39] Preferably, the device password storage reads the device authentication password from a computer-readable medium to be stored therein.
[40] Preferably, the tag password storage stores the tag authentication password in a manner that the password is unreadable by an external apparatus.
[41] Preferably, the device authentication password corresponding to the tag authentication password.
[42] There is also provided a digital content authentication processing method a digital content authentication processing system, the digital content authentication processing system including a digital content processing apparatus and a radio frequency identification tag, the method comprising steps of: (a) generating an authentication query signal for authenticating a digital content using a random number; (b) transmitting the authentication query signal to the radio frequency identification tag; (c) receiving an authentication response signal from the radio frequency identification tag as of response to the authentication query signal; and (d) authenticating the digital content based on the authentication query signal and the authentication response signal.
[43] Preferably, the step (a) comprises generating the random number within a predetermined range to be designated as the authentication query signal.
[44] The method in accordance with the present invention may further comprise (e) generating an authentication comparison signal by converting the authentication query signal based on a transfer function, and wherein the step (d) comprises comparing the authentication comparison signal with the authentication response signal.
[45] The method in accordance with the present invention may further comprises (f) storing the device authentication password generating the authentication comparison signal prior to carrying out the step (a), wherein the step (e) comprises generating the authentication comparison signal by irreversibly converting the device authentication password and the authentication query signal based on the transfer function.
[46] There is also provided a digital content authentication processing method a digital content authentication processing system, the digital content authentication processing system including a digital content processing apparatus and the radio frequency identification tag, the method comprising steps of: (a) receiving an authentication query signal from the digital content processing apparatus; (b) generating an authentication response signal by converting the authentication query signal based on a transfer function; and (c) transmitting the authentication response signal to the digital content processing apparatus.
[47] The method in accordance with the present invention may further comprises (d) storing a tag authentication password for generating of the authentication response signal prior to carrying out the step (a), wherein the step (b) comprises generating the authentication response signal by irreversibly converting the authentication query signal and the tag authentication password based on the transfer function.
[48] Preferably, the step (d) comprises storing the tag authentication password in a manner that the password is unreadable by an external apparatus.
[49] There is also provided a computer-readable medium having thereon a program performing a function embodying a digital content authentication processing method in accordance with the present invention.
Advantageous Effects
[50] In accordance with the present invention, an authentication of a digital content is carried out using a random number to prevent an interception of an authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and a authenticity of the radio frequency identification tag is verified base on a response to the random number. Brief Description of the Drawings
[51] Fig. 1 is a block diagram exemplifying a digital content authentication processing system in accordance with the present invention.
[52] Fig. 2 is a flow diagram illustrating a digital content authentication processing method in accordance with an embodiment of the present invention.
[53] Fig. 3 is a flow diagram illustrating a digital content authentication processing method in accordance with another embodiment of the present invention. [54]
[55] [Description of the reference numerals]
[56] 100: digital content processing apparatus
[57] 110: authentication query signal generator
[58] 130: radio communication unit
[59] 150: authentication unit
[60] 170: device password storage
[61] 200: radio frequency identification tag
[62] 210: authentication response signal generator
[63] 230: tag radio communication unit
[64] 250: tag password storage
Best Mode for Carrying Out the Invention
[65] A system and a method for processing a certification of a digital content and a computer-readable medium having thereon a program performing a function embodying the same in accordance with the present invention will now be described in detail with reference to the accompanied drawings.
[66] Fig. 1 is a block diagram exemplifying a digital content authentication processing system in accordance with the present invention.
[67] Referring Fig. 1, the digital content authentication processing system in accordance with the present invention comprises a digital content processing apparatus 100 and a radio frequency identification tag 200.
[68] The digital content processing apparatus 100 shown in Fig. 1 comprises an authentication query signal generator 110, a radio communication unit 130 and an authentication unit 150.
[69] The digital content processing apparatus 100 shown in Fig. 1 may further comprise a device password storage 170. In addition, the digital content processing apparatus 100 may further comprise a user input receiver (not shown).
[70] The radio frequency identification tag 200 shown in Fig. 1 comprises an authentication response signal generator 210 and a tag radio communication unit 230.
[71] The radio frequency identification tag 200 shown in Fig. 1 may further comprise a tag password storage 250.
[72] The digital content authentication processing system is described in more detail hereinafter with reference to Fig. 1.
[73] First, the digital content processing apparatus 100 is described in more detail below.
[74] The authentication query signal generator 110 generates an authentication query signal.
[75] The digital content processing apparatus 100 transmits the authentication query signal to the radio frequency identification tag 200, and the digital content processing apparatus 100 receives an authentication response signal corresponding to the authentication query signal from the radio frequency identification tag 200.
[76] For example, the authentication query signal may use a random number generated to be within a predetermined range. The radio frequency identification tag 200 generates a signal corresponding to the authentication query signal through an internal signal processing, i.e., is the authentication response signal, to be transmitted to the digital content processing apparatus 100. The digital content processing apparatus 100 may verify the authentication of the radio frequency identification tag 200 based on the authentication response signal.
[77] The random number is used as the authentication query signal in order to prevent other readers from monitoring a communication between the digital content processing apparatus 100 and the radio frequency identification tag 200. That is, the authentication query signal, which is changed randomly, is used to prevent adjacent tags or adjacent readers from knowing the authentication response signal despite the monitoring.
[78] The radio communication unit 130 transmits the authentication query signal generated by the authentication query signal generator 110 to the radio frequency identification tag 200. In addition, the radio communication unit 130 receives the authentication response signal, which is the response to the authentication query signal, from the radio frequency identification tag 200. That is, the radio communication unit 130 carries out an interfacing for a radio frequency identification communication.
[79] The authentication unit 150 authenticates the digital content based on the authentication query signal generated by the authentication query signal generator 110 and the authentication response signal received from the radio communication unit 130.
[80] The authentication of the digital content is described in more detail below.
[81] The authentication unit 150 may comprise an authentication comparison signal generator (not shown) generating an authentication comparison signal based on the authentication query signal generated by the authentication query signal generator 110 for authenticating of the digital content.
[82] The authentication unit 150 compares the authentication comparison signal generated by the authentication comparison signal generator with the authentication query signal received from the radio frequency identification tag 200 to authenticate the digital content. That is, the authentication comparison signal generator generates the authentication comparison signal, which is identical to or corresponds to the authentication response signal generated by the radio frequency identification tag and transmitted to the digital content processing apparatus 100.
[83] Therefore, a first transfer function used by theauthentication comparison signal generator is identical to or conforms to a second transfer function used by the authentication response signal generator 210 of the radio frequency identification tag 200.
[84] The digital content processing apparatus 100 may only execute the digital content authenticated through the authentication unit 150.
[85] In addition, the radio frequency identification tag 200 is described in more detail below.
[86] The authentication response signal generator 210 generates the authentication response signal based on the authentication query signal received from the digital content processing apparatus 100. That is, the authentication response signal generator 210 generates the authentication response signal using a transfer function when the authentication response signal generator 210 receives the authentication query signal.
[87] As described above, the second transfer function used by authentication response signal generator 210 is identical to or conforms to the first transfer function used by the authentication comparison signal generator of the digital content processing apparatus 100.
[88] The tag radio communication unit 230 receives the authentication query signal from the digital content processing apparatus 100. In addition, the tag radio communication unit 230 transmits the authentication query signal generated by the authentication response signal generator 210 to the digital content processing apparatus 100. That is, the tag radio communication unit 230 carries out an interfacing for a radio frequency identification communication.
[89] The authentication of the digital content will be described in detail more focused on a function of the authentication unit 150.
[90] The authentication comparison signal generator and the authentication response signal generator 210 may use the first transfer function and the second transfer function, respectively as described above, which are identical to or conform to each other.
[91] In one embodiment, when the authentication query signal includes Nl (a random number within a predetermined range), the authentication comparison signal generator may generate the authentication comparison signal using a function Fl(Nl). The authentication response signal generator 210 may generate the authentication response signal also using the function Fl(Nl). In this case, the first transfer function is identical to the second transfer function.
[92] The function Fl(x) is a transfer function for converting x, and a value of Fl(x) is the authentication comparison signal or the authentication response signal.
[93] In another embodiment, the authentication comparison signal generator may generate the authentication comparison signal using the function Fl(Nl), which is the first transfer function, and the authentication response signal generator 210 may generate the authentication response signal using the function F2(N1), which is the second transfer function.
[94] The functions Fl(x) and F2(x) are the transfer functions for converting x. The values of Fl(x) and F2(x) are the authentication comparison signal and the authentication response signal, respectively. However, the functions Fl(x) and F2(x) may be configured in a manner that there exists a correlation between the values of Fl(x) and F2(x).
[95] Therefore, the comparison by the authentication unit 150 may be carried out even when the authentication comparison signal generator of the digital content processing apparatus 100 and the authentication response signal generator 210 of the radio frequency identification tag 200 do not use the identical transfer function.
[96] That is, the authentication unit 150 determines the digital content to be authentic when the authentication response signal and the authentication comparison signal are identical to (that is, when the identical transfer function is used) or conform to (that is, when the transfer functions having the correlation are used) each other by comparing the authentication response signal with the authentication comparison signal.
[97] On the other hand, the authentication response signal generator 210 of the radio frequency identification tag 200 generates the authentication response signal based on the authentication query signal. Particularly, the authentication response signal changes according the authentication query signal because the authentication query signal includes the random number.
[98] Accordingly, since the radio frequency identification tag 200 generates the authentication response signal based on the random number, other adjacent tags cannot know the authentication response signal. Therefore, an authenticity of the radio frequency identification tag 200 is certified.
[99] On the other hand, the digital content processing apparatus 100 may further comprise the device password storage 170 for storing a device authentication password for authenticating the digital content. The radio frequency identification tag 200 may further comprise the tag password storage 250 for storing a tag authentication password for authenticating the digital content.
[100] The device authentication password and the tag authentication password are used to improve a security of the authentication process.
[101] The authentication comparison signal generator generates the authentication comparison signal based on the device authentication password of the device password storage 170 and the authentication query signal of the authentication query signal generator 110. Similarly, the authentication response signal generator 210 generates the authentication response signal based on the tag authentication password of the tag password storage 250 and the authentication query signal.
[102] The device authentication password stored in the device password storage 170 and the tag authentication password stored in the tag password storage 250 may be identical to or correspond to each other. That is, an authentication password identical to the tag authentication password or corresponding to the tag authentication password by n: 1 is stored in the device password storage 170 of the digital content processing apparatus 100 as the device authentication password. For instance, the device authentication password may correspond to a plurality of the tag authentication password.
[103] In addition, the digital content processing apparatus 100 may further comprise the user input receiver for receiving a user input.
[104] The user input receiver receives the user input through an input device such as a keyboard.
[105] For instance, when the digital content is sold in a form of a storage media such as a compact disc, the authentication password may be printed on a surface of the compact disc or on a case thereof. Alternately, the authentication password may be printed on the radio frequency identification tag 200 provided with the compact disc.
[106] The device password storage 170 stores the device authentication password received by the user input receiver. Moreover, the tag authentication password may be prestored in the radio frequency identification tag 200.
[107] Alternately, the device password storage 170 may store the device authentication password received from an external apparatus through a network.
[108] That is, the digital content processing apparatus 100 connects to the external apparatus storing the device authentication password corresponding to the tag authentication password of the radio frequency identification tag 200 through the network to receive device authentication password. The device password storage 170 stores the received device authentication password. Moreover, the tag authentication password may be prestored in the radio frequency identification tag 200.
[109] In addition, the device password storage 170 reads the device authentication password stored in the storage media storing the digital content, i.e. the compact disc, to store the device authentication password. That is, the device authentication password is prestored in the storage media such as the compact disc during the manufacturing process thereof, and the digital content processing apparatus 100 reads the device authentication password. The device password storage 170 stores the device authentication password read from the storage media.
[110] The tag authentication password corresponding to the device authentication password is prestored in the radio frequency identification tag 200.
[I l l] As described above, the device authentication password of the device password storage 170 may be identical to the tag authentication password of the tag password storage 250 or correspond to the tag authentication password by n:l.
[112] On the other hand, the tag password storage 250 may store the tag authentication password in a manner that the password is unreadable by the external apparatus.
[113] That is, the tag authentication password is stored in a manner that other adjacent readers cannot read the tag authentication password stored in the tag password storage 250 included in the radio frequency identification tag 200 even when the radio frequency identification tag 200 is communicating with other adjacent readers.
[114] The authentication of the digital content using the device authentication password and the tag authentication password is described in more detail below.
[115] As described above, the authentication comparison signal generator generates the authentication comparison signal based on the device authentication password of the device password storage 170 and the authentication query signal of the authentication query signal generator 110. Moreover, as described above, the authentication response signal generator 210 generates the authentication response signal based on the tag authentication password of the tag password storage 250 and the authentication query signal received from the authentication query signal generator 110.
[116] A case will be exemplified wherein the device authentication password identical to the tag authentication password and the transfer functions used for the generating the authentication comparison signal and the authentication response signal are identical. PW represents both the device authentication password and the tag authentication password, Nl represents the authentication query signal, and F3(x,y) represents the transfer function.
[117] The authentication comparison signal and the authentication response signal are thereby expressed as F3(N1, PW).
[118] Preferably, the conversion by the function F3(x, y) used by the authentication response signal generator 210 may be irreversible. That is, the function F3(x, y) may be an irreversible transfer function.
[119] The irreversible transfer function refers to the function wherein the input value of the transfer function cannot be known even when the authentication response signal is known. Therefore, when the irreversible transfer function is used, other adjacent tags or readers cannot know the authentication password PW even when other adjacent tags or readers know the authentication query signal and the transfer function by monitoring the communication.
[120] Accordingly, it is impossible to generate the authentication response signal corresponding to the randomly changing authentication query signal even when other adjacent tags or readers carry out the monitoring. Therefore, an interception of the authentication password PW may be prevented.
[121] While the case wherein the authentication comparison signal and the authentication response signal are generated using the identical transfer function is exemplified, the different transfer functions that conform to each other may be used to generate the authentication comparison signal and the authentication response signal. That is, the comparison of the authentication comparison signal and the authentication response signal may authenticate thereof. Mode for the Invention
[122] Fig. 2 is a flow diagram illustrating a digital content authentication processing method in accordance with an embodiment of the present invention.
[123] The flow diagram of Fig. 2 illustrates a digital content authentication processing method carried out in the digital content processing apparatus of the digital content authentication processing system including the digital content processing apparatus and the radio frequency identification tag described with reference to Fig. 1. In additional, a portion of a detailed description of the method shown in Fig. 2 already described with reference to Fig. 1 is omitted.
[124] The digital content processing apparatus generates the authentication query signal to be transmitted to the radio frequency identification tag (Sl 10).
[125] As described above with reference to Fig. 1, the authentication query signal is generated by generating the random number. The random number may be generated by arbitrarily selecting a number.
[126] Thereafter, the digital content processing apparatus transmits the authentication query signal generated in the step Sl 10 to the radio frequency identification tag (S130).
[127] Thereafter, the digital content processing apparatus receives the authentication response signal, which is a response to the authentication query signal, from the radio frequency identification tag to correspond to the transmission in the step S 130 (S 150).
[128] Thereafter, the digital content processing apparatus authenticates the digital content based on the authentication query signal generated in the step Sl 10 and the authentication response signal received in the step S 150 (S 170).
[129] Although not shown, the method may further comprise generating the authentication comparison signal by converting the authentication query signal based on the transfer function.
[130] That is, the authentication comparison signal is generated for the authentication in the step S 170.
[131] In such case, the digital content processing apparatus compares the generated authentication comparison signal with the authentication response signal received in the step S 150 to carry out the authentication in the step S 170.
[132] When the radio frequency identification tag converts the authentication query signal using the transfer function for generating the authentication comparison signal, the authentication response signal may be generated.
[133] In this case, the authentication of the digital content is possible when the digital content processing apparatus determines whether the authentication comparison signal is identical to the authentication response signal in the step S 170.
[134] Although not shown, the method may further comprise storing the device authentication password for generating the authentication comparison signal prior to carrying out the step Sl 10.
[135] The device authentication password is used to improve the security of the authentication process.
[136] In this case, the digital content processing apparatus may generate the authentication comparison signal from the device authentication password and the authentication query signal based on the irreversible transfer function as described above in the step of generating the authentication response signal.
[137] Similarly, the radio frequency identification tag may generate the authentication response signal from the tag authentication password, which is stored in the radio frequency identification tag to correspond to the device authentication password, and the authentication query signal based on the irreversible transfer function.
[138] When the device authentication password is assumed to be identical to the tag authentication password and the transfer functions used for generating the authentication comparison signal and the authentication query signal are assumed to be identical, the digital content processing apparatus may carry out the authentication of the digital content by determining whether the authentication comparison signal is identical to the authentication response signal in the step S 170.
[139] While the embodiment wherein the device authentication password is identical to the tag authentication password and identical transfer functions are used during the generation of the authentication response signal is described, an embodiment wherein the device authentication password is not identical to the tag authentication password and different transfer functions are used is also possible. However, a detailed description thereof is omitted since the detailed description thereof is already given with reference to Fig. 1.
[140] Fig. 3 is a flow diagram illustrating a digital content authentication processing method in accordance with another embodiment of the present invention.
[141] The flow diagram of Fig. 3 illustrates a digital content authentication processing method carried out in the radio frequency identification tag of the digital content authentication processing system including the digital content processing apparatus and the radio frequency identification tag described with reference to Fig. 1. In additional, a portion of a detailed description of the method shown in Fig. 3 already described with reference to Fig. 1 is omitted.
[142] The radio frequency identification tag receives the authentication query signal from the digital content processing apparatus (S210).
[143] Thereafter, the radio frequency identification tag generates the authentication response signal by converting the authentication query signal received in the step S210 based on the irreversible transfer function (S230).
[144] Thereafter, the radio frequency identification tag transmits the authentication response signal generated in the step S230 to the digital content processing apparatus (S250).
[145] Although not shown, the tag authentication password for generating the authentication response signal may be stored in the radio frequency identification tag prior to carrying out the step S210.
[146] The tag authentication password is used to improve the security of the authentication process.
[147] When the tag authentication password is used, the radio frequency identification tag may generate the authentication response signal by converting the authentication query signal and the tag authentication password based on the irreversible transfer function.
[148] Preferably, the tag authentication password is stored in a manner that the password is unreadable by the external apparatus. In such case, the tag authentication password used for generating the authentication response signal is stored in the radio frequency identification tag in a manner that other external adjacent readers cannot read the tag authentication password.
[149] In addition, the present invention provides a computer-readable medium having thereon a program performing function embodying the digital content authentication processing method based on the radio frequency identification tag in accordance with the present invention.
[150] The computer-readable medium refers to various storage mediums for storing a data in a code or a program format that may be read by a computer system. The computer- readable medium may include a memory such as a ROM and a RAM, a storage medium such as CD-ROM and a DVD-ROM, a magnetic storage medium such as a magnetic tape and a floppy disk, and an optical data storage medium. The computer- readable medium may include a data transferred via the Internet. The computer- readable medium may be embodied by a computer-readable data divided and stored over computer systems connected through a network.
[151] Since the computer-readable medium in accordance with the present invention is substantially identical to that of the method in accordance with the present invention described with reference to Fig. 2 and 3, a detailed description thereof is omitted.
[152] Since the computer-readable medium in accordance with the present invention is sub- stantially identical to that of the method in accordance with the present invention described with reference to Fig. 3, a detailed description thereof is omitted.
[153] While the present invention has been particularly shown and described with reference to the preferred embodiment thereof, it will be understood by those skilled in the art that various changes in form and details may be effected therein without departing from the spirit and scope of the invention as defined by the appended claims. Industrial Applicability
[154] In accordance with the present invention, an authentication of a digital content is carried out using a random number to prevent an interception of authentication information through a monitoring of a communication between a radio frequency identification tag and a digital content processing apparatus, and a authenticity of the radio frequency identification tag is verified base on a response to the random number.

Claims

Claims
[1] A digital content authentication processing system comprising a digital content processing apparatus; and a radio frequency identification tag; wherein the digital content processing apparatus comprises: an authentication query signal generator for generating an authentication query signal for authenticating a digital content using a random number; a radio communication unit for transmitting the authentication query signal to the radio frequency identification tag and for receiving an authentication response signal corresponding to the authentication query signal from the radio frequency identification tag; and an authentication unit for authenticating the digital content based on the authentication query signal and the authentication response signal, and wherein the radio frequency identification tag comprises: an authentication response signal generator for generating the authentication response signal based on the authentication query response signal for authenticating the digital content; and a tag radio communication unit for receiving the authentication query signal from the digital content processing apparatus and for transmitting the authentication response signal to the digital content processing apparatus.
[2] The system in accordance with claim 1, wherein the authentication unit further comprises an authentication comparison signal generator for generating an authentication comparison signal based on the authentication query signal, wherein the authentication comparison signal generator generates the authentication comparison signal from the authentication query signal based on a first transfer function, and the authentication response signal generator generates the authentication response signal from the authentication query signal based on a second transfer function being identical to or conforming to the first transfer function, and wherein the authentication unit determines the digital content to be authentic when the authentication query signal corresponding to the authentication comparison signal.
[3] The system in accordance with claim 2, wherein the digital content processing apparatus further comprises a device password storage for storing a device authentication password for authenticating the digital content; wherein the authentication comparison signal generator generates the authentication comparison signal based on a device authentication password and the authentication query signal, wherein the radio frequency identification tag further comprises a tag password storage for storing a tag authentication password for authenticating the digital content, and wherein the authentication response signal generator generates the authentication response signal based on the tag authentication password and the authentication query signal.
[4] The system in accordance with claim 3, wherein the authentication response signal generator generates theauthentication response signal by irreversibly converting the tag authentication password and the authentication query signal based on the second transfer function.
[5] The system in accordance with claim 3, wherein the digital content processing apparatus further comprises a user input receiver for receiving a user input, and wherein the device password storage stores the device authentication password received through the user input receiver.
[6] The system in accordance with claim 5, wherein the device authentication password is displayed on a computer-readable medium corresponding to the digital content or the radio frequency identification tag.
[7] The system in accordance with claim 3, wherein the device password storage stores the device authentication password from an external apparatus connected through a network.
[8] The system in accordance with claim 3, wherein the device password storage reads the device authentication password from a computer-readable medium to be stored therein.
[9] The system in accordance with claim 3, wherein the tag password storage stores the tag authentication password in a manner that the password is unreadable by an external apparatus.
[10] The system in accordance with claim 3, wherein the device authentication password corresponding to the tag authentication password.
[11] A digital content authentication processing method a digital content authentication processing system, the digital content authentication processing system including a digital content processing apparatus and a radio frequency identification tag, the method comprising steps of:
(a) generating an authentication query signal for authenticating a digital content using a random number;
(b) transmitting the authentication query signal to the radio frequency identification tag;
(c) receiving an authentication response signal from the radio frequency identification tag as of response to the authentication query signal; and (d) authenticating the digital content based on the authentication query signal and the authentication response signal.
[12] The method in accordance with claim 11, wherein the step (a) comprises generating the random number within a predetermined range to be designated as the authentication query signal.
[13] The method in accordance with claim 11, further comprises (e) generating an authentication comparison signal by converting the authentication query signal based on a transfer function, and wherein the step (d) comprises comparing the authentication comparison signal with the authentication response signal.
[14] The method in accordance with claim 13, further comprising (f) storing the device authentication password generating the authentication comparison signal prior to carrying out the step (a), wherein the step (e) comprises generating the authentication comparison signal by irreversibly converting the device authentication password and the authentication query signal based on the transfer function.
[15] A digital content authentication processing method a digital content authentication processing system, the digital content authentication processing system including a digital content processing apparatus and the radio frequency identification tag, the method comprising steps of:
(a) receiving an authentication query signal from the digital content processing apparatus;
(b) generating an authentication response signal by converting the authentication query signal based on a transfer function; and
(c) transmitting the authentication response signal to the digital content processing apparatus.
[16] The method in accordance with claim 15, further comprising (d) storing a tag authentication password for generating of the authentication response signal prior to carrying out the step (a), wherein the step (b) comprises generating the authentication response signal by irreversibly converting the authentication query signal and the tag authentication password based on the transfer function.
[17] The method in accordance with claim 16, wherein the step (d) comprises storing the tag authentication password in a manner that the password is unreadable by an external apparatus.
[18] A computer-readable medium having thereon a program performing a function embodying a digital content authentication processing method in accordance with one of claims 11 through 17.
PCT/KR2008/003898 2007-07-02 2008-07-02 System and method for processing certification of digital contents and computer-readable medium having thereon program performing function embodying the same Ceased WO2009005296A2 (en)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
KR10-2007-0065974 2007-07-02
KR1020070065974A KR20090002547A (en) 2007-07-02 2007-07-02 Wireless identification tag based digital content authentication processing system and wireless identification tag based digital content authentication processing method and computer readable recording medium recording a program for realizing the same

Publications (2)

Publication Number Publication Date
WO2009005296A2 true WO2009005296A2 (en) 2009-01-08
WO2009005296A3 WO2009005296A3 (en) 2009-03-19

Family

ID=40226668

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/KR2008/003898 Ceased WO2009005296A2 (en) 2007-07-02 2008-07-02 System and method for processing certification of digital contents and computer-readable medium having thereon program performing function embodying the same

Country Status (2)

Country Link
KR (1) KR20090002547A (en)
WO (1) WO2009005296A2 (en)

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107463647A (en) * 2017-07-25 2017-12-12 努比亚技术有限公司 Audio identification method to set up, application method, terminal and computer-readable recording medium
CN111669436A (en) * 2020-05-21 2020-09-15 河南信大网御科技有限公司 SSH remote connection method of mimicry system, mimicry architecture and readable storage medium
CN115242804A (en) * 2022-06-10 2022-10-25 河南信大网御科技有限公司 Pseudo-executive random number detection method

Family Cites Families (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP4032358B2 (en) * 2004-12-15 2008-01-16 株式会社日立情報システムズ RFID authentication system, RFID authentication method, and program therefor
ATE480836T1 (en) * 2005-01-12 2010-09-15 British Telecomm SECURITY SYSTEMS FOR RFID LABELS
KR20070049933A (en) * 2005-11-09 2007-05-14 주식회사 비즈모델라인 RFID information operation method and system, RFID information operation apparatus, recording medium, information storage medium
KR100710759B1 (en) * 2006-04-13 2007-04-23 경북대학교 산학협력단 RFID authentication system and method

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107463647A (en) * 2017-07-25 2017-12-12 努比亚技术有限公司 Audio identification method to set up, application method, terminal and computer-readable recording medium
CN111669436A (en) * 2020-05-21 2020-09-15 河南信大网御科技有限公司 SSH remote connection method of mimicry system, mimicry architecture and readable storage medium
CN111669436B (en) * 2020-05-21 2022-12-13 河南信大网御科技有限公司 SSH remote connection method of mimicry system, mimicry system and readable storage medium
CN115242804A (en) * 2022-06-10 2022-10-25 河南信大网御科技有限公司 Pseudo-executive random number detection method

Also Published As

Publication number Publication date
WO2009005296A3 (en) 2009-03-19
KR20090002547A (en) 2009-01-09

Similar Documents

Publication Publication Date Title
CN108053001B (en) Information security authentication method and system for electronic warehouse receipt
AU2006203515B2 (en) Protection of Non-Promiscuous Data in an RFID Transponder
US8547202B2 (en) RFID tag and operating method thereof
JP5401507B2 (en) Information confirmation method for purchased goods using wireless identification system, recording medium thereof, and system thereof
KR100969730B1 (en) A system and method for radio frequency identification and multicore tags including a plurality of radio frequency identification tags
CN107231231B (en) Method and system for terminal equipment to safely access Internet of things
US20110241838A1 (en) System, method, and apparatus for rfid, emulated rfid and rfid-like based enablement and privilege allocation
EP2453398A1 (en) Product authentication system
CA2500779A1 (en) A challenged-based tag authentication model
KR100842270B1 (en) Electronic tag for privacy protection and privacy protection method using the same
US8010808B2 (en) Data recognition apparatus for copy protection and method thereof and recording medium thereof
CN107181714A (en) Verification method and device, the generation method of service code and device based on service code
US7457952B2 (en) Authentication tag for S/W media
KR100785765B1 (en) Product certification method and device
CN110546639A (en) certified product authentication service system and method based on wireless radio frequency identification of password updating algorithm for anti-counterfeiting
CN105590227A (en) Dynamic verification method, apparatus, and system of authenticity of commodity
KR101527582B1 (en) System for verifying product genuineness using double security key and method thereof
WO2009005296A2 (en) System and method for processing certification of digital contents and computer-readable medium having thereon program performing function embodying the same
US20110185037A1 (en) Method for providing/accessing data on the internet and a respective client, server, and system
JP2008233975A (en) Information communication device, information central management device, and information processing system
US20090092019A1 (en) Information processing apparatus, disc, and information processing method, and computer program used therewith
US20210203483A1 (en) Secure rfid communication method
JP5322788B2 (en) Information processing apparatus, information processing method, and program
CN101625727B (en) Radio Frequency Identification Tag and Method of Operation
CN117528501B (en) Anti-cracking RFID tag, initializing method and reading method thereof

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 08778562

Country of ref document: EP

Kind code of ref document: A2

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 08778562

Country of ref document: EP

Kind code of ref document: A2