公开(公告)号：US07093128B2

公开(公告)日：2006-08-15

申请号：US09980340

申请日：2001-04-06

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Ryuji Ishiguro ,  Atsushi Mitsuzawa ,  Tateo Oishi ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Ryuji Ishiguro ,  Atsushi Mitsuzawa ,  Tateo Oishi ,  Ryuta Taki

IPC分类号： G06F1/24

CPC分类号： G11B20/0021 ,  G11B20/00086 ,  G11B20/00246 ,  G11B20/00253 ,  G11B20/10 ,  H04L9/0891 ,  H04L2209/60

摘要： When a player cannot play back data because a master key held by the player has a generation older than the generation of a master key having been used for recording the data, or when a recorder cannot record data because a master key held by the recorder has a generation older than the generation of a master key necessary for recording to a recording medium, the user is prompted to renew the master key for acquisition of the necessary master key, thereby enabling the data playback or data recording. The renewed master key is distributed in such a form that can be processed by a specific device via a transmission medium such as a recording medium, network, IC card, telephone line, for example, via a tree-structured distribution system.

公开(公告)号：US20070098177A1

公开(公告)日：2007-05-03

申请号：US11639711

申请日：2006-12-15

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： H04L9/00

CPC分类号： H04L63/0428 ,  G06F21/10 ,  G06F2221/0753 ,  G11B20/00086 ,  G11B20/0021 ,  G11B20/00855 ,  H04L9/0836 ,  H04L9/0891 ,  H04L63/062 ,  H04L63/0869 ,  H04L63/104 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed in a highly efficient manner using an enabling key block (EKB) on the basis of a tree structure including category subtrees. A key tree is produced so as to include a plurality of subtrees that are grouped in accordance with categories and managed by category entities. An EKB is produced so as to include data produced by selecting a path in the key tree and encrypting an upper-level key in the selected path using a lower-level key in the selected path. The resultant EKB is provided to a device. If a change occurs in state of a category tree capable of processing an EKB identified in the EKB type definition list, a notification of the change in state is sent to an entity that uses the EKB thereby making it possible for an EKB requester to perform processing in accordance with a newest EKB.

公开(公告)号：US06911974B2

公开(公告)日：2005-06-28

申请号：US10204514

申请日：2001-12-21

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： G06F12/14 ,  G06F12/00 ,  G06F21/62 ,  G11B20/00 ,  H04L9/00 ,  H04L9/08 ,  H04N7/167 ,  G09G5/00

CPC分类号： G06F21/10 ,  G06F2221/0755 ,  G06F2221/0771 ,  G06F2221/2107 ,  G11B20/00086 ,  G11B20/0021 ,  H04L9/0822 ,  H04L9/0836 ,  H04L9/0891 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed in a highly efficient manner using an enabling key block (EKB) on the basis of a tree structure including category subtrees. A key tree is formed so as to include a plurality of subtrees serving as category trees categorized in accordance with categories and managed by category entities. An EKB including data produced by selecting a path in a tree and encrypting a higher-level key in the selected path using a lower-level key in the selected path. The resultant EKB is provided to a device. Distribution of EKB's is managed on the basis of an EKB type definition list representing the correspondence between an EKB type identifier and one or more identification data identifying one or more category trees that can process an EKB of an EKB type specified by the EKB type identifier.

摘要翻译： 公开了一种信息处理系统和方法，其中使用基于包括类别子树的树结构的启用密钥块（EKB）以高效的方式执行信息处理。 形成关键树，以便包括用作根据类别分类并由类别实体管理的类别树的多个子树。 EKB包括通过选择树中的路径并使用所选路径中的较低级别的密钥加密所选路径中的较高级的密钥而产生的数据。 所得到的EKB被提供给设备。 基于表示EKB类型标识符与识别可以处理由EKB类型标识符指定的EKB类型的EKB的一个或多个类别树的一个或多个标识数据之间的对应关系的EKB类型定义列表来管理EKB的分发。

公开(公告)号：US07346170B2

公开(公告)日：2008-03-18

申请号：US10204731

申请日：2001-12-21

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： H04L9/00 ,  H04K1/00

CPC分类号： H04L9/0822 ,  G11B20/00086 ,  G11B20/0021 ,  G11B20/00855 ,  H04L9/0836 ,  H04L9/0891 ,  H04L63/0428 ,  H04L63/062 ,  H04L63/0869 ,  H04L63/104 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed using an enabling key block (EKB) in association with a tree structure including category subtrees. A key tree is produced, which include subtrees that are grouped in accordance with categories and are managed by category entities. The EKB includes data produced by selecting a path in the key tree and encrypting a higher-level key in the selected path using a lower-level key in the selected path. The EKB is then provided to a device. A requester, which requests production of the EKB, may produce a root key or may request a key distribution center (KDC) to produce a root key. If the (KDC) produces the EKB, it may also request a category entity to produce a sub-EKB.

摘要翻译： 公开了一种信息处理系统和方法，其中使用与包括类别子树的树结构相关联的使能密钥块（EKB）来执行信息处理。 生成一个关键树，其中包括根据类别分组并由类别实体管理的子树。 EKB包括通过选择密钥树中的路径并使用所选路径中的较低级密钥加密所选路径中的较高级密钥而产生的数据。 然后将EKB提供给设备。 要求生产EKB的请求者可以生成根密钥，或者可以请求密钥分发中心（KDC）产生根密钥。 如果（KDC）生成EKB，它也可以请求类别实体来生成子EKB。

公开(公告)号：US20050228809A1

公开(公告)日：2005-10-13

申请号：US11132664

申请日：2005-05-19

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： G06F12/14 ,  G06F12/00 ,  G06F21/62 ,  G11B20/00 ,  H04L9/00 ,  H04L9/08 ,  H04N7/167 ,  G06F17/30

CPC分类号： G06F21/10 ,  G06F2221/0755 ,  G06F2221/0771 ,  G06F2221/2107 ,  G11B20/00086 ,  G11B20/0021 ,  H04L9/0822 ,  H04L9/0836 ,  H04L9/0891 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed in a highly efficient manner using an enabling key block (EKB) on the basis of a tree structure including category subtrees. A key tree is formed so as to include a plurality of subtrees serving as category trees categorized in accordance with categories and managed by category entities. An EKB includes data produced by selecting a path in a tree and encrypting a higher-level key in the selected path using a lower-level key in the selected path. The resultant EKB is provided to a device. Distribution of EKB's is managed on the basis of an EKB type definition list representing the correspondence between an EKB type identifier and one or more identification data identifying one or more category trees that can process an EKB of an EKB type specified by the EKB type identifier.

摘要翻译： 公开了一种信息处理系统和方法，其中使用基于包括类别子树的树结构的启用密钥块（EKB）以高效的方式执行信息处理。 形成关键树，以便包括用作根据类别分类并由类别实体管理的类别树的多个子树。 EKB包括通过选择树中的路径并使用所选路径中的较低级别的密钥来加密所选路径中的较高级别的密钥而产生的数据。 所得到的EKB被提供给设备。 基于表示EKB类型标识符与识别可以处理由EKB类型标识符指定的EKB类型的EKB的一个或多个类别树的一个或多个标识数据之间的对应关系的EKB类型定义列表来管理EKB的分发。

公开(公告)号：US07405731B2

公开(公告)日：2008-07-29

申请号：US11132664

申请日：2005-05-19

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： G09G5/00

CPC分类号： G06F21/10 ,  G06F2221/0755 ,  G06F2221/0771 ,  G06F2221/2107 ,  G11B20/00086 ,  G11B20/0021 ,  H04L9/0822 ,  H04L9/0836 ,  H04L9/0891 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed in a highly efficient manner using an enabling key block (EKB) on the basis of a tree structure including category subtrees. A key tree is formed so as to include a plurality of subtrees serving as category trees categorized in accordance with categories and managed by category entities. An EKB includes data produced by selecting a path in a tree and encrypting a higher-level key in the selected path using a lower-level key in the selected path. The resultant EKB is provided to a device. Distribution of EKB's is managed on the basis of an EKB type definition list representing the correspondence between an EKB type identifier and one or more identification data identifying one or more category trees that can process an EKB of an EKB type specified by the EKB type identifier.

摘要翻译： 公开了一种信息处理系统和方法，其中使用基于包括类别子树的树结构的启用密钥块（EKB）以高效的方式执行信息处理。 形成关键树，以便包括用作根据类别分类并由类别实体管理的类别树的多个子树。 EKB包括通过选择树中的路径并使用所选路径中的较低级别的密钥来加密所选路径中的较高级别的密钥而产生的数据。 所得到的EKB被提供给设备。 基于表示EKB类型标识符与识别可以处理由EKB类型标识符指定的EKB类型的EKB的一个或多个类别树的一个或多个标识数据之间的对应关系的EKB类型定义列表来管理EKB的分发。

公开(公告)号：US07167564B2

公开(公告)日：2007-01-23

申请号：US10204775

申请日：2001-12-21

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： H04L9/16

CPC分类号： H04L63/0428 ,  G06F21/10 ,  G06F2221/0753 ,  G11B20/00086 ,  G11B20/0021 ,  G11B20/00855 ,  H04L9/0836 ,  H04L9/0891 ,  H04L63/062 ,  H04L63/0869 ,  H04L63/104 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed in a highly efficient manner using an enabling key block (EKB) on the basis of a tree structure including category subtrees. A key tree is produced so as to include a plurality of subtrees that are grouped in accordance with categories and managed by category entities. An EKB is produced so as to include data produced by selecting a path in the key tree and encrypting an upper-level key in the selected path using a lower-level key in the selected path. The resultant EKB is provided to a device. If a change occurs in state of a category tree capable of processing an EKB identified in the EKB type definition list, a notification of the change in state is sent to an entity that uses the EKB thereby making it possible for an EKB requester to perform processing in accordance with a newest EKB.

摘要翻译： 公开了一种信息处理系统和方法，其中使用基于包括类别子树的树结构的启用密钥块（EKB）以高效的方式执行信息处理。 生成密钥树，以便包括根据类别分组并由类别实体管理的多个子树。 产生EKB，以包括通过选择密钥树中的路径并使用所选路径中的下级密钥加密所选路径中的上级密钥而产生的数据。 所得到的EKB被提供给设备。 如果在能够处理在EKB类型定义列表中识别的EKB的类别树的状态发生变化，则向使用EKB的实体发送状态改变的通知，从而使得EKB请求者能够执行处理 按照最新的EKB。

公开(公告)号：US07738662B2

公开(公告)日：2010-06-15

申请号：US11639711

申请日：2006-12-15

申请人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

发明人： Tomoyuki Asano ,  Yoshitomo Osawa ,  Tateo Oishi ,  Ryuji Ishiguro ,  Ryuta Taki

IPC分类号： H04L9/16

CPC分类号： H04L63/0428 ,  G06F21/10 ,  G06F2221/0753 ,  G11B20/00086 ,  G11B20/0021 ,  G11B20/00855 ,  H04L9/0836 ,  H04L9/0891 ,  H04L63/062 ,  H04L63/0869 ,  H04L63/104 ,  H04L2209/60

摘要： An information processing system and method are disclosed in which information processing is performed in a highly efficient manner using an enabling key block (EKB) on the basis of a tree structure including category subtrees. A key tree is produced so as to include a plurality of subtrees that are grouped in accordance with categories and managed by category entities. An EKB is produced so as to include data produced by selecting a path in the key tree and encrypting an upper-level key in the selected path using a lower-level key in the selected path. The resultant EKB is provided to a device. If a change occurs in state of a category tree capable of processing an EKB identified in the EKB type definition list, a notification of the change in state is sent to an entity that uses the EKB thereby making it possible for an EKB requester to perform processing in accordance with a newest EKB.

摘要翻译： 公开了一种信息处理系统和方法，其中使用基于包括类别子树的树结构的启用密钥块（EKB）以高效的方式执行信息处理。 生成密钥树，以便包括根据类别分组并由类别实体管理的多个子树。 产生EKB，以包括通过选择密钥树中的路径并使用所选路径中的下级密钥加密所选路径中的上级密钥而产生的数据。 所得到的EKB被提供给设备。 如果在能够处理在EKB类型定义列表中识别的EKB的类别树的状态发生变化，则向使用EKB的实体发送状态改变的通知，从而使得EKB请求者能够执行处理 按照最新的EKB。

公开(公告)号：US07401231B2

公开(公告)日：2008-07-15

申请号：US10221302

申请日：2002-01-11

申请人： Ryuta Taki ,  Tomoyuki Asano ,  Tateo Oishi ,  Yoshitomo Osawa

发明人： Ryuta Taki ,  Tomoyuki Asano ,  Tateo Oishi ,  Yoshitomo Osawa

IPC分类号： G06F11/30 ,  G06F12/14 ,  H04L9/32

CPC分类号： G11B20/00086 ,  G06F21/10 ,  G06F21/78 ,  G11B20/00166 ,  G11B20/0021 ,  G11B20/00253 ,  G11B20/00731 ,  H04L9/0822 ,  H04L9/0836 ,  H04L9/0891 ,  H04L2209/603

摘要： A system and method are realized which enables valid use of content by preventing unauthorized use of content which is caused by rewriting rights data. A structure is employed in which rights data including use-restriction information on content and DRM data including an encrypted content key are recorded in a digital data recording medium (media), and in which an integrity check value (ICV) for the DRM data can be stored in a recordable/playable area (protected area) by using only a dedicated IC. EKB distribution is used to execute the tree-structure key distribution to distribute keys for generating ICV-generation verifying keys. In this structure, unauthorized use of content by rewriting of the rights data is prevented.

摘要翻译： 实现了通过防止由重写权限数据引起的内容的未经授权的使用来有效地使用内容的系统和方法。 使用包括关于内容的使用限制信息和包括加密的内容密钥的DRM数据的权利数据记录在数字数据记录介质（媒体）中的结构，并且其中DRM数据的完整性检查值（ICV）可以 通过仅使用专用IC存储在可记录/可播放区域（保护区域）中。 EKB分配用于执行树结构密钥分发，以分发用于生成ICV生成验证密钥的密钥。 在这种结构中，防止通过重写权利数据来未经授权地使用内容。

公开(公告)号：US07392393B2

公开(公告)日：2008-06-24

申请号：US10469703

申请日：2003-01-09

申请人： Ryuta Taki

发明人： Ryuta Taki

IPC分类号： H04L9/00 ,  G06F7/04

CPC分类号： H04L63/18 ,  G06F21/10 ,  H04L63/08 ,  H04L2463/101 ,  H04N5/913 ,  H04N7/17318 ,  H04N21/25816 ,  H04N21/41407 ,  H04N21/4143 ,  H04N21/47202 ,  H04N21/63345 ,  H04N21/6581 ,  H04N2005/91364

摘要： A system that allows secure processing in a case where a download-requesting terminal and a download-destination terminal are different devices is implemented. A content distribution server receives a ticket carrying a signature of a download destination from a terminal requesting downloading of content, and verifies the ticket to verify that a device serving as the download destination is a device authorized by the download-requesting terminal, thereby verifying the authenticity of the device serving as the download destination without directly authenticating the device serving as the download destination. Furthermore, a content-signing key [Ksig] or a hash value is exchanged as data that can be cryptographically processed only at the download-requesting device and the download-destination device, so that, for example, checking of the integrity of the content is allowed only at a legitimate download-destination device.

摘要翻译： 实现了在下载请求终端和下载目的地终端是不同设备的情况下进行安全处理的系统。 内容分发服务器从请求下载内容的终端接收携带下载目的地的签名的机票，并且验证该机票以验证用作下载目的地的设备是由下载请求终端授权的设备，从而验证 作为下载目的地的设备的真实性，而不直接认证用作下载目的地的设备。 此外，内容签名密钥[Ksig]或哈希值被交换为只能在下载请求设备和下载目的地设备处被加密处理的数据，使得例如检查内容的完整性 仅允许在合法的下载目的地设备。