摘要:
A recording device configured to store content data in an encrypted manner, the recording device comprises a memory unit which stores various data, and a controller which controls the memory unit. The controller possesses a controller key and unique identification information, and is configured to generate a controller-unique key unique for each controller in accordance with the controller key and the identification information. The memory unit stores an MKB generated by encrypting a medium key with a device key set that is a collection of a plurality of device keys, an encrypted device key set generated by encrypting the device key set with the controller-unique key, and a device-key-set index which uniquely identifies the device key set. The controller comprises a decryption unit which obtains a device key set by decrypting the encrypted device key set with the controller-unique key, an ID generating unit which generates a medium ID from the identification information and the device-key-set index, and an authentication unit which executes an authentication process with an exterior in accordance with the device key set, the medium ID and the MKB.
摘要:
To reduce a load on a user terminal imposed when verifying signature data and at the same time reduce a load on a server, a signature key matrix KM includes a plurality of signature keys Ki-j arranged in a matrix structure of m rows and n columns, and is stored in a signature key matrix database 21. A correspondence relationship between a signature key set CK which is an aggregate of any signature keys selected from the n columns respectively and a user terminal 30 is stored in a correspondence relationship information database 22. A signature data generating unit 24 generates signature data having a matrix structure by encrypting a content digest D generated based on content data C by n number of signature keys included in the signature key matrix KM.
摘要:
A handheld device is configured to be connectable to a storage media that holds a unique media identifier and holds a content key data used to decrypt an encrypted content data. A content data delivery system is provided that is configured to be able to deliver various data to the handheld device and to make a content data available to the handheld device. The system includes a member-registration information database that holds member-registration information including a data pair of a handheld-device identifier related to the relevant handheld device and the relevant media identifier. The media identifier held by the storage media is verified with the member-registration information database.
摘要:
Spread of a forged storage medium is prevented suppressing an authentic storage medium's damage and trouble of a owner to the minimum. When there is an update request of user key data, the update history of the user key data concerning the shown above-mentioned medium identifier IDm is referred to. When judged that the update of the user key data concerning the shown medium identifier IDm not being performed within a predetermined period, the update of user key data is performed. The request of a update is refused when judged that the update of the user key data concerning the shown medium identifier IDm being performed within a predetermined period.
摘要:
According to one embodiment, a memory chip, which is connected to a controller that controls reading and writing of data in response to a request from an external device, includes: a memory including a special area that is a predetermined data storage area; a key storage unit that stores therein a second key that corresponds to a first key used by the external device to convert the data; a converting unit that receives, from the controller, data to be written into the special area and generates converted data by converting the data to be written using the second key; and a writing unit that writes the converted data into the special area.
摘要:
A recording device configured to store content data in an encrypted manner, the recording device comprises a memory unit which stores various data, and a controller which controls the memory unit. The controller possesses a controller key and unique identification information, and is configured to generate a controller-unique key unique for each controller in accordance with the controller key and the identification information. The memory unit stores an MKB generated by encrypting a medium key with a device key set that is a collection of a plurality of device keys, an encrypted device key set generated by encrypting the device key set with the controller-unique key, and a device-key-set index which uniquely identifies the device key set. The controller comprises a decryption unit which obtains a device key set by decrypting the encrypted device key set with the controller-unique key, an ID generating unit which generates a medium ID from the identification information and the device-key-set index, and an authentication unit which executes an authentication process with an exterior in accordance with the device key set, the medium ID and the MKB.
摘要:
An interface control device includes a first interface, a second interface, a third interface, an interface controller and a clock supplying unit. The first interface is used to communicate with a first information processing device and obtain a first clock signal from the first information processing device. The second interface is used to communicate using a second clock signal with a second information processing device different from the first information processing device. The third interface is used to communicate with a controller of a data-storage medium. The interface controller performs an interface control for the first, second and third interfaces. Moreover, the clock supplying unit supplies the first clock signal to the third interface while communications through the second interface have not been established.
摘要:
A content delivery server comprises a packet generator operative to generate packetized content data; an encryptor operative to encrypt the packetized content data with content key data to generate encrypted content data and also operative to encrypt the content key data with user key data to generate encrypted content key data; a TS multiplexer operative to multiplex the encrypted content data into a transport stream and add the encrypted content key data to a TS header thereof; and a transmitter operative to transmit the transport stream to a user terminal.
摘要:
The content data is offered not only to specific storage media but also to the storage media of several different types. Various kinds of storage media (SDq, MSq, HDDq, etc.) enabled to acquire data from a license center unit 40 is provided with different type-identifier data IDs. This data is stored in a type identifier database 42. In case of acquisition request of the user key data from the each storage medium, the type identifier data IDs is shown with the medium identifier data IDm.
摘要:
A key memory medium stores a medium identifier, a medium inherent key based on the medium identifier, an encrypted user key of a user key based on the medium inherent key, and an encrypted contents key of a contents key based on the user key. A contents memory medium stores an encrypted contents software of the contents software based on the contents key. A start-up software of the contents software is executed. The medium inherent key is generated using the medium identifier. The user key is derived from the encrypted user key using the medium inherent key. The contents key is derived from the encrypted contents key using the user key. The contents software is derived from the encrypted contents using the contents key.