公开(公告)号：US08555089B2

公开(公告)日：2013-10-08

申请号：US12652256

申请日：2010-01-05

申请人： Takayuki Ito ,  Manabu Maeda ,  Tomoyuki Haga ,  Hideki Matsushima ,  Yuichi Futa ,  Kouji Kobayashi

发明人： Takayuki Ito ,  Manabu Maeda ,  Tomoyuki Haga ,  Hideki Matsushima ,  Yuichi Futa ,  Kouji Kobayashi

IPC分类号： G06F11/00

CPC分类号： G06F21/554 ,  G06F21/62 ,  G06F21/74

摘要： Information processing apparatus (100) ensures confidentiality of encryption and reduces overhead associated with processing not directly related to the encryption. The information processing apparatus (100) includes: application program (A158) that includes an instruction for encryption which uses a key; tampering detection unit (135x) that detects tampering of the program; CPU (141) that operates according to instructions and outputs a direction for encryption upon detecting the instruction for encryption; data encryption/decryption function unit (160) that controls switching to the protective mode according to the direction; and protected data operation unit (155) that stores a key in correspondence with the program, outputs the key in the protective mode, and controls switching to the normal mode, and the data encryption/decryption function unit (160) executes the encryption in the normal mode using the received key.

摘要翻译： 信息处理装置（100）确保加密的机密性，并减少与加密无直接关系的处理相关的开销。 信息处理装置（100）包括：应用程序（A158），其包括使用密钥的用于加密的指令; 篡改检测单元（135x），用于检测程序的篡改; CPU（141），其根据指令进行操作，并且在检测到加密指令时输出加密方向; 数据加密/解密功能单元（160），其根据所述方向控制切换到所述保护模式; 和存储与程序对应的密钥的保护数据操作单元（155），将该密钥输出为保护模式，并控制切换到正常模式，并且数据加密/解密功能单元（160）执行加密 正常模式使用接收的键。

公开(公告)号：US20130191927A1

公开(公告)日：2013-07-25

申请号：US13877833

申请日：2012-08-07

申请人： Kouji Miura ,  Natsume Matsuzaki ,  Yuichi Futa ,  Shunji Harada ,  Hideki Matsushima

发明人： Kouji Miura ,  Natsume Matsuzaki ,  Yuichi Futa ,  Shunji Harada ,  Hideki Matsushima

IPC分类号： G06F21/60

CPC分类号： G06F21/60 ,  G06F21/10 ,  G06Q10/101

摘要： Provided is a content management device for protecting a content of a provider. A content management device 800 deletes one or more contents shared with and held by a user of another device. The content management device 800 comprises: a sharing unit 801 configured to distribute the contents to the user and thereby share the contents with the user; and a switching unit 802 configured to switch a method of the deletion to another method according to a time elapsed from the distribution.

摘要翻译： 提供了一种用于保护提供者的内容的内容管理装置。 内容管理装置800删除由另一装置的用户共享和保持的一个或多个内容。 内容管理装置800包括：共享单元801，被配置为将内容分发给用户，从而与用户共享内容; 以及切换单元802，被配置为根据从分发经过的时间将删除的方法切换到另一种方法。

公开(公告)号：US08484485B2

公开(公告)日：2013-07-09

申请号：US12936740

申请日：2009-05-14

申请人： Masao Nonaka ,  Yuichi Futa ,  Kaoru Yokota ,  Natsume Matsuzaki

发明人： Masao Nonaka ,  Yuichi Futa ,  Kaoru Yokota ,  Natsume Matsuzaki

IPC分类号： G06F11/30 ,  G06F12/14 ,  H04K1/00 ,  H04L9/00 ,  H04L9/28

CPC分类号： H04L9/3093 ,  H04L2209/08 ,  H04L2209/127 ,  H04L2209/805 ,  H04L2209/88

摘要： An encryption apparatus prevents plaintext data from leaking even if accumulated data is analyzed, while preventing the size of encrypted data from increasing. The encryption apparatus encrypts a data piece that is smaller than a unit length and stores management information indicating a used area within an encryption area defined based on the unit length. The used area is an area already used for encryption. When encrypting a new data piece that is smaller than the unit length, the encryption apparatus generates encrypted data by adding the new data piece to an unused area within the encryption area with reference to the management information. The unused area is an area not yet used for encryption. The encryption apparatus updates the management information to include an area for the new data piece into the used area, after generating the encrypted data.

摘要翻译： 即使分析了累积数据，加密装置也防止明文数据泄漏，同时防止加密数据的大小增加。 加密装置对小于单位长度的数据进行加密，并将指示使用区域的管理信息存储在基于单位长度定义的加密区域内。 使用区域是已经用于加密的区域。 当加密小于单位长度的新的数据段时，加密装置通过参考管理信息将新的数据段添加到加密区域内的未使用区域来生成加密数据。 未使用的区域是尚未用于加密的区域。 在生成加密数据之后，加密装置更新管理信息以将新数据段的区域包括到使用区域中。

公开(公告)号：US20130039491A1

公开(公告)日：2013-02-14

申请号：US13643671

申请日：2012-03-01

申请人： Yuji Unagami ,  Yuichi Futa ,  Natsume Matsuzaki ,  Hiroki Shizuya ,  Shuji Isobe ,  Atsushi Umeta

发明人： Yuji Unagami ,  Yuichi Futa ,  Natsume Matsuzaki ,  Hiroki Shizuya ,  Shuji Isobe ,  Atsushi Umeta

IPC分类号： H04L9/14

CPC分类号： G06F21/575 ,  G06F21/64 ,  G06F2221/2125 ,  H04L9/085 ,  H04L2209/16

摘要： A management device 200d comprises: a key share generation unit 251d generating a plurality of key shares by decomposing a decryption key, the decryption key being for decrypting an encrypted application program generated as a result of encryption of the application program; and an output unit 252d outputting each of the key shares to a different one of a plurality of detection modules. The detection modules acquire and store therein the key shares. The protection control module 120d comprises: an acquisition unit 381d acquiring the key shares from the detection modules; a reconstruction unit 382d reconstructing the decryption key by composing the key shares; a decryption unit 383d decrypting the encrypted application program with use of the decryption key; and a deletion unit 384d deleting the decryption key, after the decryption by the decryption unit is completed.

摘要翻译： 管理设备200d包括：密钥共享生成单元251d，通过分解解密密钥生成多个密钥共享;解密密钥，用于解密作为应用程序的加密生成的加密应用程序; 以及将每个密钥共享输出到多个检测模块中的不同的检测模块的输出单元252d。 检测模块在其中获取和存储关键股。 保护控制模块120d包括：获取单元381d，从检测模块获取密钥共享; 重构单元382d，通过构成密钥份额来重构解密密钥; 解密单元383d，利用解密密钥对加密的应用程序进行解密; 以及在解密单元的解密完成之后删除解密密钥的删除单元384d。

公开(公告)号：US08220064B2

公开(公告)日：2012-07-10

申请号：US11632863

申请日：2005-07-13

申请人： Hiroki Yamauchi ,  Natsume Matsuzaki ,  Yuichi Futa ,  Toshihisa Nakano

发明人： Hiroki Yamauchi ,  Natsume Matsuzaki ,  Yuichi Futa ,  Toshihisa Nakano

IPC分类号： H04L9/00

CPC分类号： G06F21/10 ,  G06F2221/2137

摘要： A content management system which can prevent a content from being copied exceeding the limited number of copies for the content. The content management system includes a first content management device and a second content management device. The first content management device stores period information that indicates an available period during which a first external device is permitted to use a copied content which has been copied from the content, and outputs the period information to the second content management device when the content is moved. Upon receiving the period information from the first content management device, the second content management device judges whether the available period of the copied content has expired, using the received period information, and if it is judges that the available period has not expired, it inhibits the content from being copied to the second external device.

摘要翻译： 一种内容管理系统，其可以防止内容被复制超过该内容的有限数量的副本。 内容管理系统包括第一内容管理装置和第二内容管理装置。 第一内容管理装置存储指示允许第一外部装置使用从内容复制的复制内容的可用期间的周期信息，并且当内容移动时将该周期信息输出到第二内容管理装置 。 在从第一内容管理装置接收到期间信息的情况下，第二内容管理装置使用接收到的周期信息来判断复制内容的可用期间是否到期，如果判断为可用期间未到期，则抑制 将内容从复制到第二个外部设备。

公开(公告)号：US08127168B2

公开(公告)日：2012-02-28

申请号：US12377320

申请日：2008-06-04

申请人： Manabu Maeda ,  Tomoyuki Haga ,  Takayuki Ito ,  Hideki Matsushima ,  Yuichi Futa

发明人： Manabu Maeda ,  Tomoyuki Haga ,  Takayuki Ito ,  Hideki Matsushima ,  Yuichi Futa

IPC分类号： G06F1/00

CPC分类号： G06F1/3203 ,  G06F9/45558 ,  G06F9/4856 ,  G06F9/4893 ,  G06F21/57 ,  Y02D10/24 ,  Y02D10/32

摘要： A data processing device including an inter-VM notification management unit 1242, a resuming judgment unit 1244 and a scheduled interruption time acquisition unit 1245, such that, when it is necessary to notify a virtual machine in a power-saving state, the resuming judgment unit 1244 judges whether to cause the virtual machine to return from the power saving state, based on a time until an interruption acquired by the scheduled interruption time acquisition unit 1245. This structure prevents unnecessary transitions between states, and realizes the power saving for the apparatus.

摘要翻译： 一种包括VM间通知管理单元1242，恢复判断单元1244和调度中断时间获取单元1245的数据处理设备，使得当需要在省电状态下通知虚拟机时，恢复判断 单元1244基于直到由调度中断时间获取单元1245获取的中断的时间来判断是否使虚拟机从省电状态返回。这种结构防止了状态之间的不必要的转换，并且实现了设备的功率节省 。

公开(公告)号：US20110314280A1

公开(公告)日：2011-12-22

申请号：US13201062

申请日：2010-03-30

申请人： Masao Nonaka ,  Natsume Matsuzaki ,  Hideki Matsushima ,  Yuichi Futa

发明人： Masao Nonaka ,  Natsume Matsuzaki ,  Hideki Matsushima ,  Yuichi Futa

IPC分类号： H04L9/32

CPC分类号： A61B5/0002 ,  H04L9/0822 ,  H04L9/085 ,  H04L9/0866

摘要： A measurement device (11) measures vital data, encrypts the vital data using an encryption key to generate encrypted vital data, and generates, from a decryption key of the vital data, two pairs of a first share FSD and a second share SSD which enable reproduction of the decryption key. The measurement device (11) generates an encrypted second share by encrypting the second share SSD. The measurement device (11) transmits the encrypted vital data, the first share FSD, the encrypted second share to a server device (15) via an intermediate device (13).

摘要翻译： 测量装置（11）测量重要数据，使用加密密钥对重要数据进行加密以产生加密的重要数据，并从重要数据的解密密钥生成两对第一共享FSD和第二共享SSD 再现解密密钥。 测量装置（11）通过加密第二共享SSD生成加密的第二共享。 测量装置（11）经由中间装置（13）将加密的重要数据，第一共享FSD，加密的第二共享传送到服务器装置（15）。

公开(公告)号：US07995766B2

公开(公告)日：2011-08-09

申请号：US12147126

申请日：2008-06-26

申请人： Taichi Sato ,  Kaoru Yokota ,  Natsume Matsuzaki ,  Yuichi Futa ,  Tetsuya Inoue ,  Masao Nonaka

发明人： Taichi Sato ,  Kaoru Yokota ,  Natsume Matsuzaki ,  Yuichi Futa ,  Tetsuya Inoue ,  Masao Nonaka

IPC分类号： H04L9/08

CPC分类号： H04L9/0833 ,  H04L9/0891 ,  H04L2209/60

摘要： Provided is a group subordinate terminal in a key updating system that includes a server and a group of terminals including: a group managing terminal; and group subordinate terminals including the group subordinate terminal, the group subordinate terminal comprising: a group withdrawal request processing unit which transmits a group withdrawal request to the group managing terminal in response to an instruction to update its apparatus-unique key, the group withdrawal request requesting for withdrawal of the group subordinate terminal from the group; an update apparatus-unique key requesting unit which requests for another apparatus-unique key by transmitting to the server a group withdrawal certificate indicating that the withdrawal of the group subordinate terminal from the group of terminals is completed through invalidation of its group key; and an update processing unit which updates the apparatus-unique key held in an apparatus-unique key holding unit to the another apparatus-unique key obtained from the server.

摘要翻译： 提供了一种密钥更新系统中的组下属终端，其包括服务器和一组终端，包括：组管理终端; 组群下属终端包括：群组提取请求处理单元，响应于更新其装置唯一密钥的指令向组管理终端发送组提款请求，组提款请求 要求集团下属终端从集团撤出; 更新设备唯一密钥请求单元，其通过向服务器发送指示通过其组密钥的无效来完成组从属终端的撤销而完成的组取出证书来请求另一设备唯一密钥; 以及更新处理单元，其将从设备唯一密钥保存单元保存的设备唯一密钥更新为从服务器获得的另一设备唯一密钥。

公开(公告)号：US07979731B2

公开(公告)日：2011-07-12

申请号：US11632349

申请日：2005-07-13

申请人： Yuichi Futa ,  Natsume Matsuzaki ,  Hiroki Yamauchi ,  Toshihisa Nakano

发明人： Yuichi Futa ,  Natsume Matsuzaki ,  Hiroki Yamauchi ,  Toshihisa Nakano

IPC分类号： G06F1/00 ,  G06F7/04 ,  G06F17/30 ,  H04L9/32 ,  H04N7/18 ,  H04N7/16

CPC分类号： H04L63/08 ,  H04L9/12 ,  H04L9/3297 ,  H04L2209/60 ,  H04L2463/121

摘要： A time authentication device identifies clocks that show a time falling within the predetermined permissible range as compared with a time shown by the time authentication device. In a time authentication device embodied as a distribution device, a time-relation information storage unit stores a playback-device-time measured by a clock unit of a playback device, and also stores a distribution-device-time measured by a clock unit when the playback-device-time is acquired. The time authentication unit acquires from the playback device a target time measured by the clock unit, and also acquires an authentication time measured by the clock unit when the target time is received. The time authentication unit then calculates a first difference, a second difference, an authentication difference. If the authentication difference is smaller than or equal to a predetermined threshold, the time authentication unit judges that the clock unit of the playback device is valid.

摘要翻译： 与时间认证装置所示的时间相比，时间认证装置识别出显示与预定允许范围内的时间的时钟。 在体现为分发装置的时间认证装置中，时间关系信息存储单元存储由重放装置的时钟单元测量的重放装置时间，并且还存储由时钟单元测量的分配装置时间 获取播放设备时间。 时间认证单元从重放设备获取由时钟单元测量的目标时间，并且还获取当接收到目标时间时由时钟单元测量的认证时间。 时间认证单元然后计算第一差异，第二差异，认证差异。 如果认证差异小于或等于预定阈值，则时间认证单元判断播放设备的时钟单元有效。

公开(公告)号：US20110033046A1

公开(公告)日：2011-02-10

申请号：US12936740

申请日：2009-05-14

申请人： Masao Nonaka ,  Yuichi Futa ,  Kaoru Yokota ,  Natsume Matsuzaki

发明人： Masao Nonaka ,  Yuichi Futa ,  Kaoru Yokota ,  Natsume Matsuzaki

IPC分类号： H04L9/06 ,  H04L9/28

CPC分类号： H04L9/3093 ,  H04L2209/08 ,  H04L2209/127 ,  H04L2209/805 ,  H04L2209/88

摘要： The present invention provides an encryption apparatus that prevents plaintext data from leaking even if accumulated data is analyzed, while preventing the size of encrypted data from increasing. An encryption apparatus for encrypting a data piece that is smaller than a unit length for encryption performs the following: storing management information indicating a used area within an encryption area defined based on the unit length, the used area being an area already used for encryption; when encrypting a new data piece that is smaller than the unit length, generating encrypted data by adding the new data piece to an unused area within the encryption area with reference to the management information, the unused area being an area not used for encryption; and updating the management information to include an area for the new data piece into the used area, after generating the encrypted data.

摘要翻译： 本发明提供一种加密装置，即使在分析了累积数据的同时也能防止明文数据泄漏，同时防止加密数据的大小增加。 用于加密小于加密单位长度的数据段的加密装置执行以下操作：将指示使用区域的管理信息存储在基于单位长度定义的加密区域内，所使用区域是已经用于加密的区域; 当加密小于单位长度的新数据段时，通过参照管理信息将新数据片段加到加密区域内的未使用区域，生成加密数据，未使用区域是不用于加密的区域; 以及在生成加密数据之后，更新管理信息以将新的数据段的区域包括到使用区域中。