摘要:
A data player for reading contents encrypted by a decoding key from a digital medium, and playing the encrypted contents by using the decoding key which is stored in a key storage unit, comprises: a key obtaining unit for performing mutual authentication with the key storage unit to obtain the decoding key stored in the key storage unit; a key holding unit for holding the decoding key; a playback state obtaining unit for monitoring the playback state of the digital medium; and a contents decoding unit for decoding the encrypted contents by using the decoding key. The decoding key is obtained by the key obtaining unit and stored in the key holding unit, and the encrypted contents read from the digital medium is decoded with the decoding key by the contents decoding unit to play the contents. The decoding key stored in the key holding unit is discarded according to the playback state of the digital medium which is obtained by the playback state obtaining unit.
摘要:
A revocation list is registered a public ROM area. The revocation list designates at least one electronic device in which use of the storage medium by the designated electronic device is to be revoked. A controller receives from the electronic device which attempts to access, identification information indicative of the electronic device, and checks whether identification information corresponding to the received identification information is contained in the revocation list, thereby determining whether or not use of the storage medium by the electronic device which attempts to access should be revoked.
摘要:
An apparatus generates first shared information that is shared by the apparatus and a recording medium by performing a first bilateral authentication. The apparatus encrypts overwrite data that is used to erase key information item recorded in the recording medium using the first shared information. Encrypted overwrite data is transferred to the recording medium. Second shared information is generated and shared by the apparatus and the recording medium by performing a second bilateral authentication between them. The apparatus receives data that is encrypted using the second shared information and that has been used by the recording medium for erasing key information. Encrypted data is decrypted using second shared information item and key information recorded in the recording medium is erased when the decrypted data is identical to overwrite data.
摘要:
A semiconductor memory card comprising a control IC 302, a flash memory 303, and a ROM 304. The ROM 304 holds information such as a medium ID 341 unique to the semiconductor memory card. The flash memory 303 includes an authentication memory 332 and a non-authentication memory 331. The authentication memory 332 can be accessed only by external devices which have been affirmatively authenticated. The non-authentication memory 331 can be accessed by external devices whether the external devices have been affirmatively authenticated or not. The control IC 302 includes control units 325 and 326, an authentication unit 321 and the like. The control units 325 and 326 control accesses to the authentication memory 332 and the non-authentication memory 331, respectively. The authentication unit 321 executes a mutual authentication with an external device.
摘要:
A data protection system obtains data having a first content on which a first encryption has been performed and a second content on which a second encryption has been performed, the second encryption more difficult to break than the first encryption. A first content decryption unit decrypts the first content, using a first encryption method corresponding to the first encryption of the first content. A second content decryption unit decrypts the second content using a second decryption method that corresponds to the second encryption. The decrypting contents can be executed by a software, and the second content decryption unit can include one of tamperproof hardware and an apparatus that executes tamperproof software.
摘要:
A system composed of a plurality of user devices, each storing unique secret information, a system device and a control unit. The control unit produces key capsule data by performing a digital signature conversion with message recovery on the unique secret information for each user device and distributes the unique secret information to the user devices. When device authentication and encrypted communication is performed, each user device transmits the key capsule data distributed by the control unit to the system device. The system device receives the data and recovers the unique secret information from the key capsule data by a digital signature verification conversion with message recovery, which uses the verification key distributed in advance by the control unit. Thus, the user device and the system device can share unique secret information and, using it as a key, perform device authentication and encrypted communication by performing encryption and decryption based on a secret key encryption algorithm.
摘要:
A storage medium (PM) 13 includes a controller 130 and two types of storage regions, the concealed region 134 and the open region 131. The open region 131 includes an open RW 133 storing a digital content, an open ROM-W region 132a storing, as revocation information, identification information of an electronic appliance that is prohibited from accessing the digital content, and an open ROM region 132 storing, as master revocation information, identification information of an electronic appliance that is prohibited from updating the revocation information. When the storage medium is loaded into an electronic appliance that has identification information which is registered in the open ROM region 132, the controller 130 prohibits the electronic appliance from updating the revocation information.
摘要:
A decryption selection control unit controls a ciphertext read unit, a decryption key set read unit, and a decryption selection unit to respectively repeat an encrypted scramble key reading, a decryption key set reading, and an encrypted scramble key decryption until N encrypted scramble keys are read from a distribution medium. As a result, N decryption keys that correctly decrypt the respective N encrypted scramble keys are selected. A key pattern detection unit detects an encryption key set, from M encryption key sets stored in an encryption key table, that matches the selected N decryption keys. A type of an encryption device that produced the distribution medium is specified using this encryption key set.
摘要:
An information recording medium includes a lead-in area and a data recording area. Key information is recorded in the lead-in area. Scrambled data is recorded in the data recording area. The scrambled data is descrambled based on the key information.
摘要:
The decoder apparatus 90 generates a random number R1 for authenticating the optical disc drive apparatus 70 and sends it to the optical disc drive apparatus 70 as the challenge data CHA1. The optical disc drive apparatus 70 selects one out of the sixteen claimant functions stored in the claimant function unit 722 and calculates the function value fi(CHA1) which it sends to the decoder apparatus 90 as the response data RES1. The decoder apparatus 90 compares the response data RES1 with sixteen function values f1(R1) to f16(R1) that are obtained using the sixteen verification functions stored in the verification function unit 922, and authenticates the optical disc drive apparatus 70 when at least one of the function values matches the response data RES1.