US20140250308A1 - Content data reproduction system and recording device - Google Patents

Content data reproduction system and recording device Download PDF

Info

Publication number
US20140250308A1
US20140250308A1 US14/274,852 US201414274852A US2014250308A1 US 20140250308 A1 US20140250308 A1 US 20140250308A1 US 201414274852 A US201414274852 A US 201414274852A US 2014250308 A1 US2014250308 A1 US 2014250308A1
Authority
US
United States
Prior art keywords
data
host
key
area
content
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Abandoned
Application number
US14/274,852
Inventor
Shinichi Matsukawa
Akihiro Kasahara
Hiroshi Suu
Akira Miura
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Toshiba Corp
Original Assignee
Toshiba Corp
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Toshiba Corp filed Critical Toshiba Corp
Priority to US14/274,852 priority Critical patent/US20140250308A1/en
Publication of US20140250308A1 publication Critical patent/US20140250308A1/en
Abandoned legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/085Secret sharing or secret splitting, e.g. threshold schemes
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F12/00Accessing, addressing or allocating within memory systems or architectures
    • G06F12/14Protection against unauthorised use of memory or access to memory
    • G06F12/1408Protection against unauthorised use of memory or access to memory by using cryptography
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/606Protecting data by securing the transmission between two devices or processes
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/00188Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving measures which result in a restriction to authorised devices recording or reproducing contents to/from a record carrier
    • GPHYSICS
    • G11INFORMATION STORAGE
    • G11BINFORMATION STORAGE BASED ON RELATIVE MOVEMENT BETWEEN RECORD CARRIER AND TRANSDUCER
    • G11B20/00Signal processing not specific to the method of recording or reproducing; Circuits therefor
    • G11B20/00086Circuits for prevention of unauthorised reproduction or copying, e.g. piracy
    • G11B20/0021Circuits for prevention of unauthorised reproduction or copying, e.g. piracy involving encryption or decryption of contents recorded on or reproduced from a record carrier
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0816Key establishment, i.e. cryptographic processes or cryptographic protocols whereby a shared secret becomes available to two or more parties, for subsequent use
    • H04L9/0819Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s)
    • H04L9/0822Key transport or distribution, i.e. key establishment techniques where one party creates or otherwise obtains a secret value, and securely transfers it to the other(s) using key encryption key
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/08Key distribution or management, e.g. generation, sharing or updating, of cryptographic keys or passwords
    • H04L9/0894Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage
    • H04L9/0897Escrow, recovery or storing of secret information, e.g. secret key escrow or cryptographic key storage involving additional devices, e.g. trusted platform module [TPM], smartcard or USB
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L9/00Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols
    • H04L9/32Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials
    • H04L9/3271Cryptographic mechanisms or cryptographic arrangements for secret or secure communications; Network security protocols including means for verifying the identity or authority of a user of the system or for message authentication, e.g. authorization, entity authentication, data integrity or data verification, non-repudiation, key authentication or verification of credentials using challenge-response
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/41Structure of client; Structure of client peripherals
    • H04N21/414Specialised client platforms, e.g. receiver in car or embedded in a mobile appliance
    • H04N21/4147PVR [Personal Video Recorder]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/40Client devices specifically adapted for the reception of or interaction with content, e.g. set-top-box [STB]; Operations thereof
    • H04N21/43Processing of content or additional data, e.g. demultiplexing additional data from a digital video stream; Elementary client operations, e.g. monitoring of home network or synchronising decoder's clock; Client middleware
    • H04N21/44Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs
    • H04N21/4405Processing of video elementary streams, e.g. splicing a video clip retrieved from local storage with an incoming video stream, rendering scenes according to MPEG-4 scene graphs involving video stream decryption
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04NPICTORIAL COMMUNICATION, e.g. TELEVISION
    • H04N21/00Selective content distribution, e.g. interactive television or video on demand [VOD]
    • H04N21/60Network structure or processes for video distribution between server and client or between remote clients; Control signalling between clients, server and network components; Transmission of management data between server and client, e.g. sending from server to client commands for recording incoming content stream; Communication details between server and client 
    • H04N21/63Control signaling related to video distribution between client, server and network components; Network processes for video distribution between server and clients or between remote clients, e.g. transmitting basic layer and enhancement layers over different transmission paths, setting up a peer-to-peer communication via Internet between remote STB's; Communication protocols; Addressing
    • H04N21/633Control signals issued by server directed to the network components or client
    • H04N21/6332Control signals issued by server directed to the network components or client directed to client
    • H04N21/6334Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key
    • H04N21/63345Control signals issued by server directed to the network components or client directed to client for authorisation, e.g. by transmitting a key by transmitting keys
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L2209/00Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
    • H04L2209/60Digital content management, e.g. content distribution

Definitions

  • the present invention relates to a content data reproduction system capable of reproducing content data while eliminating unauthorized use of the content data, and a recording device used therefor.
  • a content data reproduction system that delivers to a user terminal content data such as electronic books, newspapers, music, and motion pictures and the like and allows the content data to be available.
  • content data Since the electronized content data (hereinafter referred to simply as “content data”) is easily duplicatable, illegal activities disregarding copyright may easily occur. From a point of view of protecting content data from such illegal activities, the content data is usually encrypted with an encryption key and is recorded, while it is decrypted when it is reproduced. Content Protection for Prerecorded Media (CPRM) is one of such content data protection technologies.
  • CPRM Content Protection for Prerecorded Media
  • Another proposed technique is a double-key encryption technique which encrypts a content key doubly by two keys (see e.g., Patent Document 1).
  • a double-key encryption technique of this type is used in, for example, MQbic®.
  • a key unique to a recording medium for example, a medium-unique key is securely stored in a hidden area of the recording medium and made completely inaccessible from outside.
  • a committer of illegal copying illegally copies only encrypted content key data he or she cannot use the content data unless he or she has the medium-unique key.
  • Patent Document 1 JP2005-341156A
  • An object of the present invention is to provide a content data reproduction system and a recording device capable of preventing illegal use of content data by excluding any unauthorized device from the system.
  • a content data reproduction system includes: a host device configured to use content data; and a recording device configured to decrypt encrypted content data to allow the content data to be used in the host device, the encrypted content data being content data encrypted by content key data.
  • the recording device includes: a storage unit configured to store a service key for encrypting the content key data, encrypted content key data which is the content key data encrypted by the service key, and encrypted output data which is first output data encrypted by the service key, the first output data being obtained when input data is calculated by using a host function possessed by an authorized host device; a comparison unit configured to provide the input data to the host device, receive from the host device second output data obtained by the host device based on the input data and the host function, and compare the second output data with the first output data; and a data processing unit configured to decrypt the encrypted content key data by using the service key to obtain the content key data, when the comparison unit detects that the first output data and the second output data match each other.
  • the storage unit is configured to store the service key in
  • a recording device in cooperation with a host device, and configured to be capable of decrypting encrypted content data to allow content data to be used in the host device, the encrypted content data being content data encrypted by content key data
  • the recording device including: a storage unit configured to store a service key for encrypting the content key data for encrypting the content data, encrypted content key data which is the content key data encrypted by the service key, input data to be fed to a host function possessed by an authorized host device, and encrypted output data which is first output data encrypted by the service key, the first output data being obtained when the input data is fed to the host function; a comparison unit configured to provide the input data to the host device, receive second output data obtained by the host device based on the input data and the host function, and compare the second output data with the first output data; and a decryption processing unit configured to decrypt the encrypted content key data by using the service key to obtain the content key data, when the comparison unit detects that the first output data and the second output data match each other.
  • the present invention it is possible to provide a content data reproduction system and a recording device capable of excluding any unauthorized device from the system, thereby preventing illegal use of content data.
  • FIG. 1 is a block diagram showing an entire structure of a content data reproduction system according to a first embodiment of the present invention.
  • FIG. 2 explains a process for a host device 20 to acquire content key data Kc according to the first embodiment, and the operation of each unit in the process.
  • FIG. 3 is a block diagram showing an entire structure of a content data reproduction system according to a second embodiment of the present invention.
  • FIG. 4 explains a process for a host device 20 to acquire content key data Kc according to the second embodiment, and the operation of each unit in the process.
  • FIG. 5 is a concept diagram explaining an outline of an authentication process in a content data reproduction system according to a third embodiment of the present invention.
  • FIG. 6 shows an example structure of MKB (Media Key Block) used in the content data reproduction system according to the third embodiment of the present invention.
  • MKB Media Key Block
  • FIG. 7 shows the operation of each unit when a common authentication process is executed in the content data reproduction system according to the third embodiment of the present invention.
  • FIG. 8 shows an example structure of MKB (Media Key Block) used in the content data reproduction system according to the third embodiment of the present invention.
  • FIG. 9 shows the operation of each unit when different authentication processes are executed for different hosts in the content data reproduction system according to the third embodiment of the present invention.
  • FIG. 1 is a block diagram showing the entire structure of a content data reproduction system according to a first embodiment of the present invention.
  • the system includes a memory card (a recording device) 10 which securely stores content key data for encrypting content data, etc., and a host device 20 which reproduces content data by, in cooperation with the memory card 10 , obtaining the content key data after an authentication process described later.
  • the host device 20 is capable of exchanging data with a content server 30 and a key database 40 through a network 50 .
  • the memory card 10 and the host device are connected through a secure channel 60 and capable of securely exchanging data in accordance with AKE (Authentication and Key Exchange).
  • AKE Authentication and Key Exchange
  • the memory card 10 includes an interface unit 11 , a data processing/communication control unit 12 , a system area 13 , a hidden area 14 , a user data area 15 , and a service key processing unit 16 .
  • the interface unit 11 is a unit in charge of controlling input/output of various data to be exchanged with the host device 20 through the secure channel 60 .
  • the data processing/communication control unit 12 is a unit in charge of various data processes described later (data separation, comparison/judgment, data conversion, encryption/decryption), and control on sending/receiving of the processed data.
  • the data processing/communication control unit 12 includes a data separation unit 121 , a comparison unit 122 , an encryption/decryption unit 123 , a third conversion unit 124 , and a sending/receiving control unit 125 .
  • the data separation unit 121 has a function of separating linked data composed of mutually-relevant linked pieces of data.
  • the comparison unit 122 is a unit which, as will be described later, compares answer data A C possessed by the memory card 10 with answer data A H calculated by the host device 20 and judges match or mismatch of these pieces of answer data.
  • the encryption/decryption unit 123 has a function of encrypting plain-text data provided thereto and decrypting encrypted data provided thereto.
  • the third conversion unit 124 applies a one-way function or the like to data provided thereto to convert the data into irreversible data.
  • the sending/receiving control unit 125 is a unit in charge of encryption using a session key Ks generated based on AKE (Authentication and Key Exchange), and data exchange with the host device 20 .
  • the system area 13 is an area accessible from the outside of the recording device 10 , and stores a storage medium key Ksm to be used when obtaining a service key Ksrv described later, an authentication key Kauth to be used for an authentication process with the host, etc.
  • the hidden area 14 is an area writable only by a content server 30 which has passed a predetermined authentication process, and otherwise completely inaccessible from the outside.
  • a service key Ksrv used for protecting content key data Kc is stored in the hidden area 14 to be invisible from the outside.
  • the service key Ksrv is written therein by a memory card maker when the memory card 20 is manufactured, or written therein after manufacture/shipping by a key distribution server by using an authentication process using the storage medium key Ksm described above, a PKI authentication process, or the like.
  • the method of writing the service key Ksrv is not limited to a specific one.
  • the user data area 15 is an area freely writable/readable from the outside of the recording medium 30 .
  • the user data area 15 stores encrypted content data Enc(Kc:C), i.e., content data C encrypted by the content key data Kc, and in addition, encrypted content key data Enc(Ksrv:Kc), i.e., the content key data Kc encrypted by the service key Ksrv.
  • the user data area 15 stores question data Q (input data) to be input into a host function F possessed by an authorized host device 20 , and encrypted answer data Enc(Ksrv:Ac), i.e., answer data Ac (first output data) which is to be obtained when the question data Q is input into the host function F and which is encrypted by the service key Ksrv.
  • these encrypted content key data Enc (Ksrv:Kc), question data Q, and encrypted answer data Enc (Ksrv:Ac) are stored as linked data Enc (Ksrv: Kc
  • C) represents that linked pieces of data B and C are encoded with the use of a single piece of key data A.
  • represents that the pieces of data shown on the left and right-hand sides thereof are concatenated.
  • MKB Media Key Block
  • the MKB is a medium key encrypted by an aggregate of device keys (Kd) set in respective host devices as secret keys.
  • the medium key is a base key for encrypting content data.
  • the MKB also includes information about unauthorized devices so that the unauthorized devices cannot acquire the medium key.
  • the encrypted content data Enc (Kc:C) needs not be stored in the user data area 15 but may be stored in the host device 20 .
  • the service key processing unit 16 has a function of writing a service key Ksrv in the hidden area 14 through a certain process, when it receives the service key Ksrv distributed from the content server 30 .
  • the service key Ksrv is used only in the memory card 10 , and never given away to the outside once written from the content server 30 .
  • the host device 20 has an application program 20 A.
  • the host device 20 forms, in the application program 20 A, an interface unit 21 , a data processing/communication control unit 22 , and a data storage area 23 .
  • the interface unit 21 is a unit in charge of controlling input/output of various data to be exchanged with the memory card 10 through the secure channel 60 .
  • the data processing/communication control unit 22 is a unit in charge of various data processes described later (data separation and data conversion) and control on sending/receiving of the processed data.
  • the data processing/communication control unit 22 includes a data combining/separation unit 221 , a first conversion unit 222 , an encryption/decryption unit 223 , and a sending/receiving control unit 225 .
  • the data processing/communication control unit 22 also includes an MKB processing unit 22 A in charge of processing MKB (Media Key Block).
  • the data combining/separation unit 221 has a function of combining (linking) mutually relevant pieces of data and separating linked data received.
  • the first conversion unit 222 has a function of inputting question data Q provided thereto into a host function F to convert it into answer data A H .
  • the encryption/decryption unit 223 has a function of encrypting plain-text data provided thereto and decrypting encrypted data provided thereto.
  • the sending/receiving control unit 225 is a unit in charge of encrypting the data by using a session key Ks generated by AKE (Authentication and Key Exchange) or the like, and exchanging data with the memory card 10 .
  • the data storage area 23 stores a host function executing program for executing the host function F described in detail later, content key data Kc acquired, and the like.
  • the host function executing program stored in the data storage area 23 may be a self-contained program.
  • some part of its functions may be provided from a Dynamic Link Library (DLL) execution unit 24 in the form of a DLL, as shown in FIG. 1 .
  • the DLL execution unit 24 loads the DLL, thereby causing the DLL to operate integrally with the program stored in the data storage area 23 . That is, they function as a single piece of software as a whole.
  • DLL Dynamic Link Library
  • an authorized host device 20 possesses a host function executing program for executing the host function F, while the memory card 10 possesses question data Q as data to be input into the host function F which an authorized host device 20 is supposed to possess, and answer data A C as data to be output as a result.
  • the host device 20 inputs question data Q provided by the memory card 10 into the host function F to obtain answer data A H , and returns the answer data A H to the memory card 10 .
  • the memory card 10 compares the received answer data A H with the answer data A C possessed in itself. When both the pieces of data match each other, the memory card 10 decrypts the content key data Kc encrypted by the service key Ksrv and sends the decrypted content key data Kc to the host device 20 .
  • an unauthorized host device does not possess such a host function F, and hence even when provided with the question data Q, cannot obtain answer data, and hence the content key data Kc, either. Therefore, according to the present embodiment, it is possible to exclude use of any unauthorized device.
  • the host function F is provided in an authorized host device in the form of a program to be executed. Unlike ordinary data, the host function F is difficult to be deplicated in an easy way, and used without authority. The host function executing program becomes even harder to be deplicated when it is formed by using an add-on DLL as in the example described above.
  • MKB Media Key Block
  • the MKB is a medium key encrypted by an aggregate of device keys (Kd) set in respective host devices as secret keys.
  • the medium key is a base key for encrypting content data.
  • the MKB also includes information about unauthorized devices so that the unauthorized devices cannot acquire the medium key.
  • the memory card 10 sends linked data Enc(Ksrv:Kc
  • the data combining/separation unit 221 of the host device 20 separates the question data Q from the encrypted data Enc (Ksrv:Kc
  • the separated question data Q is input to the first conversion unit 222 , and answer data A H is generated based on the host function F.
  • the data combining/separation unit 221 combines the answer data A H and the encrypted data Enc (Ksrv:Kc
  • a H is encrypted by the encryption/decryption unit 223 with the use of the session key Ks, and sent to the memory card 10 .
  • the encryption/decryption unit 123 decrypts this encrypted data by using the session key Ks.
  • the data separation unit 121 separates the decrypted composite data Enc (Ksrv:Kc
  • the encryption/decryption unit 123 decrypts the encrypted data Enc (Ksrv:Kc
  • the comparison unit 122 compares the obtained answer data A C and answer data A H . When both the pieces of data match each other, the comparison unit 122 outputs a match signal to the sending/receiving control unit 125 . On receiving the match signal, the sending/receiving control unit 125 instructs the encryption/decryption unit 123 to encrypt the decrypted content key data Kc by using the session key Ks, and sends the encrypted content key data Kc to the host device 20 . The host device 20 decrypts the content key data Kc by using the session key Ks. A data processing unit 226 stores the content key data Kc in a certain storage unit, and thereby this process is finished.
  • the host device 20 can obtain answer data A H based on the provided question data Q, and then the content key data Kc based on this answer data A H . Replication of such data as behaving like a program is difficult because it requires a program analysis. By introducing a scheme for executing such a program, it is possible to exclude unauthorized devices effectively.
  • FIG. 3 and FIG. 4 The entire structure of the system is substantially the same as shown in FIG. 1 , and the same components are denoted by the same reference numerals. Therefore, a detailed explanation about them will not be provided.
  • the difference from the first embodiment is that there is provided a second conversion unit 224 .
  • the second conversion unit inputs, together with the session key Ks, the answer data A H output by the first conversion unit 222 into a one-way function and thereby obtains converted data AES-G(A H , Ks).
  • the third conversion unit 124 of the memory card 10 is configured to execute an operation of inputting the answer data A C and the session key Ks into a one-way function to obtain converted data AES-G (A C , Ks). Then, these pieces of converted data are compared by the comparison unit 122 . In this way, match or mismatch of the answer data A C and the answer data A H is judged.
  • the second embodiment is the same as the first embodiment in any other points.
  • FIG. 5 to FIG. 9 a content data reproduction system according to a third embodiment of the present invention will be explained with reference to FIG. 5 to FIG. 9 .
  • the entire structure of the system according to the present embodiment is substantially the same as shown in FIG. 1 , and a detailed explanation will not be provided.
  • a specific host device 20 - m can use an input and an output which can be calculated only by a host function provided in that host device, while the other host devices 20 - i (i ⁇ m) can use an input and an output which can be calculated by all of the host devices.
  • different host devices may be provided with different input and output to be used in an authentication process. This may inspect on one by one basis installation of a host function in a host device. This process also may achieve secure exclusion of a specific unauthorized device. Specifically, as shown in FIG.
  • a specific host device 20 - m is provides with question data Q#m and answer data A#m.
  • the question data Q#m is provided to the host device 20 - m to let the host device 20 - m return answer data. Because the host device 20 - m must possess the specific host function F#m, the authentication process for the host device 20 - m becomes stricter than that for the other host devices.
  • question data Q#* is provided to the other host devices 20 - i (i ⁇ m).
  • the question data Q#* provides the same answer data A#* whichever host function F it is input into.
  • the present system For switching the host-function-F-based authentication process, the present system has such an MKB structure as shown in FIG. 6 .
  • the MKB includes a host node number storage section 71 which stores host node numbers (Node# 1 , Node# 2 , . . . , and Node#n) of the host devices 20 .
  • the MKB also includes, in the form of data, a common medium key Km used for the plurality of host devices 20 - 1 to 20 - n in common.
  • the MKB also includes, in the form of data, individual medium keys Km- 1 , Km- 2 , . . . , and Km-n unique to the host devices respectively.
  • the individual medium keys Km- 1 , Km- 2 , and . . . , Km-n are stored in an individual medium key storage section 73 .
  • the content key data Kc is encrypted by the common medium key Km to generate encrypted content key data Enc (Km:Kc).
  • the MKB having this data structure is stored in the user data area 15 of the memory card 10 .
  • the memory card 10 provides this MKB to the MKB processing unit 22 A of the host device 20 - m.
  • the MKB processing unit 22 A decrypts the common medium key Km in the storage section 72 by using its own device key Kd#m, and then by using this common medium key Km, decrypts the encrypted data Enc(Km:Enc(Ksrv:Enc(Km:Kc)
  • the data separation unit 221 separates the question data Q#* and provides it to the first conversion unit 222 , which then obtains answer data A H . Any other operations are the same as in the embodiment described above.
  • the MKB processing unit 22 A obtains the individual medium key Km- m by using its own device key Kd#m and thereby decrypts the data Enc(Km-m:Enc(Ksrv:Enc(Km-m:Kc)
  • This question data Q#m results in answer data A#m being output only when it is input into a specific host function F#m, and results indifferent answer data being output when input into other host functions F#. Accordingly, in the host device 20 - m, the function of the host device 20 - m is inspected by question data and answer data different from those for the other host devices 20 - i (i ⁇ m).

Abstract

To exclude any unauthorized device from a system and thereby prevent illegal use of content data, a memory card 10 stores a service key Ksrv for encrypting content key data Kc in a hidden area 14. The memory card 10 stores answer data AC to be obtained when question data Q is fed to a host function F possessed by an authorized host device 20, with encryption applied to the answer data AC by the service key Ksrv. When the question data Q is provided to the host device 20, answer data AH is obtained based on the question data Q and the host function F. A comparison unit 122 judges match or mismatch of the answer data AH and the answer data AC. When they match, the memory card 10 decrypts the content key data Kc encrypted by the service key Ksrv and sends it to the host device 20.

Description

    TECHNICAL FIELD
  • The present invention relates to a content data reproduction system capable of reproducing content data while eliminating unauthorized use of the content data, and a recording device used therefor.
    • BACKGROUND ART
  • With the recent development of the information society, a content data reproduction system is widely used that delivers to a user terminal content data such as electronic books, newspapers, music, and motion pictures and the like and allows the content data to be available.
  • Since the electronized content data (hereinafter referred to simply as “content data”) is easily duplicatable, illegal activities disregarding copyright may easily occur. From a point of view of protecting content data from such illegal activities, the content data is usually encrypted with an encryption key and is recorded, while it is decrypted when it is reproduced. Content Protection for Prerecorded Media (CPRM) is one of such content data protection technologies. Another proposed technique is a double-key encryption technique which encrypts a content key doubly by two keys (see e.g., Patent Document 1). A double-key encryption technique of this type is used in, for example, MQbic®. Of the encryption keys, a key unique to a recording medium, for example, a medium-unique key is securely stored in a hidden area of the recording medium and made completely inaccessible from outside. Hence, for example, if a committer of illegal copying illegally copies only encrypted content key data, he or she cannot use the content data unless he or she has the medium-unique key.
  • However, if the medium-unique key is somehow read out illegally and given away to a host manufacturer who has not got a formal license, it is likely that the content data will be used illegally with an unauthorized device that is manufactured based on the leaked information.
    • CONVENTIONAL ART DOCUMENT Patent Document
  • Patent Document 1: JP2005-341156A
    • DISCLOSURE OF INVENTION Problem to be Solved by the Invention
  • An object of the present invention is to provide a content data reproduction system and a recording device capable of preventing illegal use of content data by excluding any unauthorized device from the system.
    • Means for Solving the Problem
  • A content data reproduction system according to one aspect of the present invention includes: a host device configured to use content data; and a recording device configured to decrypt encrypted content data to allow the content data to be used in the host device, the encrypted content data being content data encrypted by content key data. The recording device includes: a storage unit configured to store a service key for encrypting the content key data, encrypted content key data which is the content key data encrypted by the service key, and encrypted output data which is first output data encrypted by the service key, the first output data being obtained when input data is calculated by using a host function possessed by an authorized host device; a comparison unit configured to provide the input data to the host device, receive from the host device second output data obtained by the host device based on the input data and the host function, and compare the second output data with the first output data; and a data processing unit configured to decrypt the encrypted content key data by using the service key to obtain the content key data, when the comparison unit detects that the first output data and the second output data match each other. The storage unit is configured to store the service key in a hidden area inaccessible by the host device. The host device includes a first conversion unit configured to obtain the second output data based on the input data and the host function.
  • A recording device according to one aspect of the present invention is provided in cooperation with a host device, and configured to be capable of decrypting encrypted content data to allow content data to be used in the host device, the encrypted content data being content data encrypted by content key data, the recording device including: a storage unit configured to store a service key for encrypting the content key data for encrypting the content data, encrypted content key data which is the content key data encrypted by the service key, input data to be fed to a host function possessed by an authorized host device, and encrypted output data which is first output data encrypted by the service key, the first output data being obtained when the input data is fed to the host function; a comparison unit configured to provide the input data to the host device, receive second output data obtained by the host device based on the input data and the host function, and compare the second output data with the first output data; and a decryption processing unit configured to decrypt the encrypted content key data by using the service key to obtain the content key data, when the comparison unit detects that the first output data and the second output data match each other. The storage unit is configured to store the service key in a hidden area inaccessible by the host device.
    • EFFECT OF THE INVENTION
  • According to the present invention, it is possible to provide a content data reproduction system and a recording device capable of excluding any unauthorized device from the system, thereby preventing illegal use of content data.
    • BRIEF DESCRIPTION OF THE DRAWINGS
  • FIG. 1 is a block diagram showing an entire structure of a content data reproduction system according to a first embodiment of the present invention.
  • FIG. 2 explains a process for a host device 20 to acquire content key data Kc according to the first embodiment, and the operation of each unit in the process.
  • FIG. 3 is a block diagram showing an entire structure of a content data reproduction system according to a second embodiment of the present invention.
  • FIG. 4 explains a process for a host device 20 to acquire content key data Kc according to the second embodiment, and the operation of each unit in the process.
  • FIG. 5 is a concept diagram explaining an outline of an authentication process in a content data reproduction system according to a third embodiment of the present invention.
  • FIG. 6 shows an example structure of MKB (Media Key Block) used in the content data reproduction system according to the third embodiment of the present invention.
  • FIG. 7 shows the operation of each unit when a common authentication process is executed in the content data reproduction system according to the third embodiment of the present invention.
  • FIG. 8 shows an example structure of MKB (Media Key Block) used in the content data reproduction system according to the third embodiment of the present invention.
  • FIG. 9 shows the operation of each unit when different authentication processes are executed for different hosts in the content data reproduction system according to the third embodiment of the present invention.
    •  BEST MODE FOR CARRYING OUT THE INVENTION
  • Next, the embodiments of the present invention will be explained in detail with reference to the drawings.
    • First Embodiment
  • FIG. 1 is a block diagram showing the entire structure of a content data reproduction system according to a first embodiment of the present invention. The system includes a memory card (a recording device) 10 which securely stores content key data for encrypting content data, etc., and a host device 20 which reproduces content data by, in cooperation with the memory card 10, obtaining the content key data after an authentication process described later. The host device 20 is capable of exchanging data with a content server 30 and a key database 40 through a network 50.
  • The memory card 10 and the host device are connected through a secure channel 60 and capable of securely exchanging data in accordance with AKE (Authentication and Key Exchange).
  • The memory card 10 includes an interface unit 11, a data processing/communication control unit 12, a system area 13, a hidden area 14, a user data area 15, and a service key processing unit 16.
  • The interface unit 11 is a unit in charge of controlling input/output of various data to be exchanged with the host device 20 through the secure channel 60.
  • The data processing/communication control unit 12 is a unit in charge of various data processes described later (data separation, comparison/judgment, data conversion, encryption/decryption), and control on sending/receiving of the processed data. The data processing/communication control unit 12 includes a data separation unit 121, a comparison unit 122, an encryption/decryption unit 123, a third conversion unit 124, and a sending/receiving control unit 125. As will be described later, the data separation unit 121 has a function of separating linked data composed of mutually-relevant linked pieces of data.
  • The comparison unit 122 is a unit which, as will be described later, compares answer data AC possessed by the memory card 10 with answer data AH calculated by the host device 20 and judges match or mismatch of these pieces of answer data. The encryption/decryption unit 123 has a function of encrypting plain-text data provided thereto and decrypting encrypted data provided thereto. The third conversion unit 124 applies a one-way function or the like to data provided thereto to convert the data into irreversible data. The sending/receiving control unit 125 is a unit in charge of encryption using a session key Ks generated based on AKE (Authentication and Key Exchange), and data exchange with the host device 20.
  • The system area 13 is an area accessible from the outside of the recording device 10, and stores a storage medium key Ksm to be used when obtaining a service key Ksrv described later, an authentication key Kauth to be used for an authentication process with the host, etc.
  • The hidden area 14 is an area writable only by a content server 30 which has passed a predetermined authentication process, and otherwise completely inaccessible from the outside. According to the present embodiment, a service key Ksrv used for protecting content key data Kc is stored in the hidden area 14 to be invisible from the outside. The service key Ksrv is written therein by a memory card maker when the memory card 20 is manufactured, or written therein after manufacture/shipping by a key distribution server by using an authentication process using the storage medium key Ksm described above, a PKI authentication process, or the like. The method of writing the service key Ksrv is not limited to a specific one.
  • The user data area 15 is an area freely writable/readable from the outside of the recording medium 30. According to the present embodiment, the user data area 15 stores encrypted content data Enc(Kc:C), i.e., content data C encrypted by the content key data Kc, and in addition, encrypted content key data Enc(Ksrv:Kc), i.e., the content key data Kc encrypted by the service key Ksrv. Moreover, the user data area 15 stores question data Q (input data) to be input into a host function F possessed by an authorized host device 20, and encrypted answer data Enc(Ksrv:Ac), i.e., answer data Ac (first output data) which is to be obtained when the question data Q is input into the host function F and which is encrypted by the service key Ksrv. For association purposes, these encrypted content key data Enc (Ksrv:Kc), question data Q, and encrypted answer data Enc (Ksrv:Ac) are stored as linked data Enc (Ksrv: Kc||Ac)||Q obtained by linking these pieces of data together. (Here, Enc (A:B||C) represents that linked pieces of data B and C are encoded with the use of a single piece of key data A. The sign “||” represents that the pieces of data shown on the left and right-hand sides thereof are concatenated.)
  • For preventing illegal copy, data called MKB (Media Key Block) is used and stored in the user data area 15. The MKB is a medium key encrypted by an aggregate of device keys (Kd) set in respective host devices as secret keys. The medium key is a base key for encrypting content data. The MKB also includes information about unauthorized devices so that the unauthorized devices cannot acquire the medium key. Note that the encrypted content data Enc (Kc:C) needs not be stored in the user data area 15 but may be stored in the host device 20.
  • The service key processing unit 16 has a function of writing a service key Ksrv in the hidden area 14 through a certain process, when it receives the service key Ksrv distributed from the content server 30. The service key Ksrv is used only in the memory card 10, and never given away to the outside once written from the content server 30.
  • The host device 20 has an application program 20A. The host device 20 forms, in the application program 20A, an interface unit 21, a data processing/communication control unit 22, and a data storage area 23. The interface unit 21 is a unit in charge of controlling input/output of various data to be exchanged with the memory card 10 through the secure channel 60.
  • The data processing/communication control unit 22 is a unit in charge of various data processes described later (data separation and data conversion) and control on sending/receiving of the processed data. The data processing/communication control unit 22 includes a data combining/separation unit 221, a first conversion unit 222, an encryption/decryption unit 223, and a sending/receiving control unit 225. The data processing/communication control unit 22 also includes an MKB processing unit 22A in charge of processing MKB (Media Key Block).
  • As will be described later, the data combining/separation unit 221 has a function of combining (linking) mutually relevant pieces of data and separating linked data received.
  • The first conversion unit 222 has a function of inputting question data Q provided thereto into a host function F to convert it into answer data AH. The encryption/decryption unit 223 has a function of encrypting plain-text data provided thereto and decrypting encrypted data provided thereto. The sending/receiving control unit 225 is a unit in charge of encrypting the data by using a session key Ks generated by AKE (Authentication and Key Exchange) or the like, and exchanging data with the memory card 10.
  • The data storage area 23 stores a host function executing program for executing the host function F described in detail later, content key data Kc acquired, and the like. The host function executing program stored in the data storage area 23 may be a self-contained program. Alternatively, some part of its functions may be provided from a Dynamic Link Library (DLL) execution unit 24 in the form of a DLL, as shown in FIG. 1. The DLL execution unit 24 loads the DLL, thereby causing the DLL to operate integrally with the program stored in the data storage area 23. That is, they function as a single piece of software as a whole.
  • As can be understood from the above, an authorized host device 20 possesses a host function executing program for executing the host function F, while the memory card 10 possesses question data Q as data to be input into the host function F which an authorized host device 20 is supposed to possess, and answer data AC as data to be output as a result. The host device 20 inputs question data Q provided by the memory card 10 into the host function F to obtain answer data AH, and returns the answer data AH to the memory card 10. The memory card 10 compares the received answer data AH with the answer data AC possessed in itself. When both the pieces of data match each other, the memory card 10 decrypts the content key data Kc encrypted by the service key Ksrv and sends the decrypted content key data Kc to the host device 20.
  • On the other hand, an unauthorized host device does not possess such a host function F, and hence even when provided with the question data Q, cannot obtain answer data, and hence the content key data Kc, either. Therefore, according to the present embodiment, it is possible to exclude use of any unauthorized device. The host function F is provided in an authorized host device in the form of a program to be executed. Unlike ordinary data, the host function F is difficult to be deplicated in an easy way, and used without authority. The host function executing program becomes even harder to be deplicated when it is formed by using an add-on DLL as in the example described above.
  • Furthermore, for preventing illegal copy, data called MKB (Media Key Block) is used. The MKB is a medium key encrypted by an aggregate of device keys (Kd) set in respective host devices as secret keys. The medium key is a base key for encrypting content data. The MKB also includes information about unauthorized devices so that the unauthorized devices cannot acquire the medium key.
  • Next, a process for the host device 20 to acquire the content key data Kc according to the present embodiment, and the operations of the respective units in this process will be explained with reference to FIG. 2.
  • When the host device 20 gives a request for reproduction of certain content data C, the memory card 10 sends linked data Enc(Ksrv:Kc||AC)||Q that includes the content key data Kc corresponding to that content data C to the requesting host device 20 through the data processing/communication control unit 12 and the secure channel 60 (not illustrated in FIG. 2).
  • The data combining/separation unit 221 of the host device 20 separates the question data Q from the encrypted data Enc (Ksrv:Kc||AC). The separated question data Q is input to the first conversion unit 222, and answer data AH is generated based on the host function F.
  • The data combining/separation unit 221 combines the answer data AH and the encrypted data Enc (Ksrv:Kc||AC). The resulting composite data Enc (Ksrv:Kc||AC)||AH is encrypted by the encryption/decryption unit 223 with the use of the session key Ks, and sent to the memory card 10. In the memory card 10, the encryption/decryption unit 123 decrypts this encrypted data by using the session key Ks. The data separation unit 121 separates the decrypted composite data Enc (Ksrv:Kc||AC)||AH and thereby obtains the encrypted data Enc (Ksrv:Kc||AC) and the answer data AH. The encryption/decryption unit 123 decrypts the encrypted data Enc (Ksrv:Kc||AC) by using the service key Ksrv, and thereby obtains the content key data Kc and the answer data AC.
  • The comparison unit 122 compares the obtained answer data AC and answer data AH. When both the pieces of data match each other, the comparison unit 122 outputs a match signal to the sending/receiving control unit 125. On receiving the match signal, the sending/receiving control unit 125 instructs the encryption/decryption unit 123 to encrypt the decrypted content key data Kc by using the session key Ks, and sends the encrypted content key data Kc to the host device 20. The host device 20 decrypts the content key data Kc by using the session key Ks. A data processing unit 226 stores the content key data Kc in a certain storage unit, and thereby this process is finished.
  • As can be understood from the above, by possessing the host function executing program capable of executing a calculation based on the host function F, the host device 20 can obtain answer data AH based on the provided question data Q, and then the content key data Kc based on this answer data AH. Replication of such data as behaving like a program is difficult because it requires a program analysis. By introducing a scheme for executing such a program, it is possible to exclude unauthorized devices effectively.
    • Second Embodiment
  • Next, a content data reproduction system according to a second embodiment of the present invention will be explained with reference to FIG. 3 and FIG. 4. The entire structure of the system is substantially the same as shown in FIG. 1, and the same components are denoted by the same reference numerals. Therefore, a detailed explanation about them will not be provided.
  • The difference from the first embodiment is that there is provided a second conversion unit 224. The second conversion unit inputs, together with the session key Ks, the answer data AH output by the first conversion unit 222 into a one-way function and thereby obtains converted data AES-G(AH, Ks).
  • Likewise, the third conversion unit 124 of the memory card 10 is configured to execute an operation of inputting the answer data AC and the session key Ks into a one-way function to obtain converted data AES-G (AC, Ks). Then, these pieces of converted data are compared by the comparison unit 122. In this way, match or mismatch of the answer data AC and the answer data AH is judged. The second embodiment is the same as the first embodiment in any other points.
    • Third Embodiment
  • Next, a content data reproduction system according to a third embodiment of the present invention will be explained with reference to FIG. 5 to FIG. 9. The entire structure of the system according to the present embodiment is substantially the same as shown in FIG. 1, and a detailed explanation will not be provided.
  • In the system according to the present embodiment, among a plurality of host devices 20-1, 20-2, . . . and 20-n, a specific host device 20-m can use an input and an output which can be calculated only by a host function provided in that host device, while the other host devices 20-i (i≠m) can use an input and an output which can be calculated by all of the host devices. In this way, different host devices may be provided with different input and output to be used in an authentication process. This may inspect on one by one basis installation of a host function in a host device. This process also may achieve secure exclusion of a specific unauthorized device. Specifically, as shown in FIG. 5, a specific host device 20-m is provides with question data Q#m and answer data A#m. The question data Q#m and answer data A#m may satisfy a relationship of A#m=F#m (Q#m) only in a host function F#m that is supposed to be held in the specific host device 20-m. The question data Q#m is provided to the host device 20-m to let the host device 20-m return answer data. Because the host device 20-m must possess the specific host function F#m, the authentication process for the host device 20-m becomes stricter than that for the other host devices.
  • On the other hand, question data Q#* is provided to the other host devices 20-i (i≠m). The question data Q#* allows any host function F#* to result in the same answer data A#* (A#*=F (Q#*)). In other words, the question data Q#* provides the same answer data A#* whichever host function F it is input into. Hence, it is possible to ease the authentication process for the other host devices 20-i compared to that for the specific host device 20-m (i.e., the host device 20-i in question needs only to possess some host function whatsoever, and the kind of the function is overlooked). Hence, it is possible to switch the scheme and strictness of the authentication process from host device to host device.
  • For switching the host-function-F-based authentication process, the present system has such an MKB structure as shown in FIG. 6.
  • First, the MKB includes a host node number storage section 71 which stores host node numbers (Node# 1, Node#2, . . . , and Node#n) of the host devices 20.
  • The MKB also includes, in the form of data, a common medium key Km used for the plurality of host devices 20-1 to 20-n in common. The common medium key Km is encrypted by device keys Kd# 1, Kd#2, . . . , and Kd#n unique to the respective host devices, and stored in an encrypted common medium key storage section 72 as encrypted common medium keys Enc (Kd#m, Km) (m=1 to n).
  • The MKB also includes, in the form of data, individual medium keys Km-1, Km-2, . . . , and Km-n unique to the host devices respectively. The individual medium keys Km-1, Km-2, and . . . , Km-n are stored in an individual medium key storage section 73.
    • (A) Case 1
  • A case when this MKB structure is prepared such that the same input and output to be fed to and returned from the host function are used for all of the host devices 20-1, 20-2, . . . , and 20-n will now be explained with reference to FIG. 7. In this case, the content key data Kc and the answer data AC are encrypted and stored in the user data area 15 in accordance with the following process.
  • (1) The content key data Kc is encrypted by the common medium key Km to generate encrypted content key data Enc (Km:Kc).
  • (2) The encrypted content key data Enc (Km:Kc) is linked with answer data A#* and question data Q#*, and then the resulting linked data is encrypted by the service key Ksrv to obtain encrypted data Enc(Ksrv:Enc(Km:Kc)||A#*||Q#*). This data is further encrypted by the common medium key Km and stored in the user data area 15.
  • The MKB having this data structure is stored in the user data area 15 of the memory card 10. When the host device 20-m accesses the memory card 10 under this condition to request distribution of the content key data Kc, the memory card 10 provides this MKB to the MKB processing unit 22A of the host device 20-m. The MKB processing unit 22A decrypts the common medium key Km in the storage section 72 by using its own device key Kd#m, and then by using this common medium key Km, decrypts the encrypted data Enc(Km:Enc(Ksrv:Enc(Km:Kc)||A#*||Q#*) in the user data area 15 to obtain the data Enc (Ksrv:Enc (Km:Kc)||A#*||Q#*.
  • The data separation unit 221 separates the question data Q#* and provides it to the first conversion unit 222, which then obtains answer data AH. Any other operations are the same as in the embodiment described above.
    • (B) Case 2
  • An operation of a case when the question used for a specific host device 20-m is different from the question used for any other host devices will be explained with reference to FIG. 8 and FIG. 9. In this case, encrypted data Enc(Ksrv:Enc(Km:Kc)||A#*||Q#*) is generated for the other host devices 20-i (i≠m), while encrypted data Enc(Ksrv:Enc(Km-m:Kc)||A#m||Q#m) is generated for the specific host device 20-m. Furthermore, the encrypted common medium key data Enc(Kd#m:Km) stored in the encrypted common medium key storage section 72 is rewritten to encrypted individual medium key data Enc(Kd#m:Km-m).
  • An operation of a case when the specific host device 20-m requests distribution of the content key data Kc when such an MKB is prepared will be explained with reference to FIG. 9. In this case, the MKB processing unit 22A obtains the individual medium key Km-m by using its own device key Kd#m and thereby decrypts the data Enc(Km-m:Enc(Ksrv:Enc(Km-m:Kc)||A#m||Q#m) to obtain the encrypted data Enc(Ksrv:Enc(Km-m:Kc)||A#m||Q#m, and separates the question data Q#m and provides it to the first conversion unit 222. This question data Q#m results in answer data A#m being output only when it is input into a specific host function F#m, and results indifferent answer data being output when input into other host functions F#. Accordingly, in the host device 20-m, the function of the host device 20-m is inspected by question data and answer data different from those for the other host devices 20-i (i≠m).
  • Though the embodiments of the invention having been described, the present invention is not limited to them, but various modifications, additions, etc. can be made thereonto without departing from the scope of the spirit of the invention.
    • DESCRIPTION OF REFERENCE NUMERALS
  • 10 memory card
  • 11 interface unit
  • 12 data processing/communication control unit
  • 13 system area
  • 14 hidden area
  • 15 user data area
  • 16 service key processing unit
  • 20 host device
  • 21 interface unit
  • 22 data processing/communication control unit
  • 22A MKB processing unit
  • 23 data storage unit
  • 24 DLL execution unit
  • 30 content server
  • 40 key database
  • 50 network
  • 71 host node number storage section
  • 72 encrypted common medium key storage section
  • 73 individual medium key storage section
  • 121 data separation unit
  • 122 comparison unit
  • 123 encryption/decryption unit
  • 124 third conversion unit
  • 125 sending/receiving control unit
  • 221 data separation unit
  • 222 first conversion unit
  • 223 encryption/decryption unit
  • 224 second conversion unit
  • 225 sending/receiving control unit
  • 226 data processing unit

Claims (7)

1.-5. (canceled)
6. A medium comprising first key information (Ksm) and unique authentication information,
the medium comprising a storing unit that stores encrypted secret key data, the encrypted secret key data being generated by encrypting secret key data using unique key information, the unique key information being obtained by a process using the first key information.
7. A device comprising a first area as a hidden area, a second area and a third area,
wherein a session key shared between the device and a host may be generated by authentication and key exchange (AKE),
and wherein data transmission and reception may be performed between the device and the host after encryption using the session key.
8. A host configured to generate a session key by authentication and key exchange (AKE) using information stored in a first area as a hidden area, a second area and a third area, the session key being shared between the host and an external device, wherein in a communication between the host and the external device using the session key, one way function or the like is applied thereto, and data converted in an irreversible manner is used for authentication.
9. A content data reproduction system comprising a host,
the host being configured to generate a session key by authentication and key exchange (AKE) using information stored in a first area as a hidden area, a second area and a third area, the session key being shared between the host and an external device,
wherein in a communication between the host and the external device using the session key, one way function or the like is applied thereto, and data converted in an irreversible manner is used for authentication,
the host further includes a first conversion unit that receives the session key data obtained by an authentication process between the host and the external device, and first output data to obtain first conversion data, and
the external device further comprises a second conversion unit that receives the session key data and second output data to obtain second conversion data, and a comparison unit that compares the first conversion data and the second conversion data to judge a match between the first output data and the second output data.
10. The content data reproduction system according to claim 9, wherein
the host is configured to perform an executing program for executing calculation by a host function possessed by the host.
11. The content data reproduction system according to claim 9, wherein a part of the executing program is provided in form of a dynamic link library.
US14/274,852 2009-04-16 2014-05-12 Content data reproduction system and recording device Abandoned US20140250308A1 (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
US14/274,852 US20140250308A1 (en) 2009-04-16 2014-05-12 Content data reproduction system and recording device

Applications Claiming Priority (3)

Application Number Priority Date Filing Date Title
PCT/JP2009/057688 WO2010119549A1 (en) 2009-04-16 2009-04-16 Content data reproduction system and recording device
US201113264448A 2011-12-21 2011-12-21
US14/274,852 US20140250308A1 (en) 2009-04-16 2014-05-12 Content data reproduction system and recording device

Related Parent Applications (2)

Application Number Title Priority Date Filing Date
US13/264,448 Continuation US8799682B2 (en) 2009-04-16 2009-04-16 Content data reproduction system and recording device
PCT/JP2009/057688 Continuation WO2010119549A1 (en) 2009-04-16 2009-04-16 Content data reproduction system and recording device

Publications (1)

Publication Number Publication Date
US20140250308A1 true US20140250308A1 (en) 2014-09-04

Family

ID=42982232

Family Applications (3)

Application Number Title Priority Date Filing Date
US13/264,448 Expired - Fee Related US8799682B2 (en) 2009-04-16 2009-04-16 Content data reproduction system and recording device
US14/274,788 Abandoned US20140289529A1 (en) 2009-04-16 2014-05-12 Content data reproduction system and recording device
US14/274,852 Abandoned US20140250308A1 (en) 2009-04-16 2014-05-12 Content data reproduction system and recording device

Family Applications Before (2)

Application Number Title Priority Date Filing Date
US13/264,448 Expired - Fee Related US8799682B2 (en) 2009-04-16 2009-04-16 Content data reproduction system and recording device
US14/274,788 Abandoned US20140289529A1 (en) 2009-04-16 2014-05-12 Content data reproduction system and recording device

Country Status (4)

Country Link
US (3) US8799682B2 (en)
JP (1) JP5296195B2 (en)
CN (1) CN102396179B (en)
WO (1) WO2010119549A1 (en)

Families Citing this family (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9734356B2 (en) * 2009-06-29 2017-08-15 Clevx, Llc Encrypting portable media system and method of operation thereof
JP2012204879A (en) 2011-03-23 2012-10-22 Toshiba Corp Content data reproduction system and system for collecting usage history of the same
US8782440B2 (en) * 2012-08-15 2014-07-15 International Business Machines Corporation Extending the number of applications for accessing protected content in a media using media key blocks

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040044906A1 (en) * 1999-04-06 2004-03-04 Paul England Secure execution of program code
US20050198529A1 (en) * 2004-03-05 2005-09-08 Satoshi Kitani Information processing apparatus, authentication processing method, and computer program
US20070160209A1 (en) * 2004-07-02 2007-07-12 Kabushiki Kaisha Toshiba Content management method, content management program, and electronic device
US20090313468A1 (en) * 2008-05-08 2009-12-17 International Business Machines Corporation Certificate renewal using secure handshake

Family Cites Families (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
EP1248248A4 (en) 1999-11-30 2005-08-31 Sanyo Electric Co Recorder
JP4686138B2 (en) 2004-05-26 2011-05-18 株式会社東芝 Storage medium conversion method, program and device
JP2006014035A (en) 2004-06-28 2006-01-12 Toshiba Corp Storage medium processing method, storage medium processor and program
JP4634751B2 (en) 2004-07-08 2011-02-16 株式会社東芝 Storage medium processing method, storage medium processing apparatus, and program
JP2006033326A (en) 2004-07-15 2006-02-02 Toshiba Corp Storage medium processing method, storage medium processor, and program
JP2007304822A (en) 2006-05-10 2007-11-22 Sanyo Electric Co Ltd Content management method and device
JP4740371B2 (en) 2007-04-26 2011-08-03 パナソニック株式会社 Rights information encryption module, nonvolatile storage device, rights information recording system, rights information decryption module, rights information reading system, and rights information recording and reading system
CN101911713B (en) * 2008-09-30 2014-01-08 松下电器产业株式会社 Recording medium, reproduction device, system LSI, reproduction method, spectacle, and display device associated with 3D video

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20040044906A1 (en) * 1999-04-06 2004-03-04 Paul England Secure execution of program code
US20050198529A1 (en) * 2004-03-05 2005-09-08 Satoshi Kitani Information processing apparatus, authentication processing method, and computer program
US20070160209A1 (en) * 2004-07-02 2007-07-12 Kabushiki Kaisha Toshiba Content management method, content management program, and electronic device
US20090313468A1 (en) * 2008-05-08 2009-12-17 International Business Machines Corporation Certificate renewal using secure handshake

Also Published As

Publication number Publication date
CN102396179A (en) 2012-03-28
US20120096284A1 (en) 2012-04-19
JPWO2010119549A1 (en) 2012-10-22
JP5296195B2 (en) 2013-09-25
US8799682B2 (en) 2014-08-05
CN102396179B (en) 2014-07-23
WO2010119549A1 (en) 2010-10-21
US20140289529A1 (en) 2014-09-25

Similar Documents

Publication Publication Date Title
US8805742B2 (en) Method and system for providing DRM license
US8831217B2 (en) Digital rights management system and methods for accessing content from an intelligent storage
US7864953B2 (en) Adding an additional level of indirection to title key encryption
CN101112036B (en) Information processing apparatus, information recording medium manufacturing apparatus, and information recording medium
CN1859086B (en) Content grading access control system and method
EP1975841A2 (en) Method and system for mutual authentication between mobile and host devices
WO2013031124A1 (en) Terminal device, verification device, key distribution device, content playback method, key distribution method, and computer program
JP4863178B2 (en) System and method for managing encrypted content using logical partitions
US20100268953A1 (en) Recording device, and content-data playback system
KR20030027066A (en) Device arranged for exchanging data, and method of authenticating
JP2010267240A (en) Recording device
JP2008527874A (en) ENCRYPTION SYSTEM, METHOD, AND COMPUTER PROGRAM (System and method for securely and conveniently processing combined state information of encryption)
JP2010537287A (en) Apparatus and method for backup of copyright objects
US20100040231A1 (en) Security Classes in a Media Key Block
CN100386811C (en) Information processing apparatus, information recording medium, information processing method and computer program
CN100364002C (en) Apparatus and method for reading or writing user data
US20140250308A1 (en) Content data reproduction system and recording device
WO2009134239A2 (en) Enabling recording and copying data
EP2466583A1 (en) Information processing apparatus, information processing method, and program
US8929547B2 (en) Content data reproduction system and collection system of use history thereof
JP5110942B2 (en) Information protection system
JP2005149234A (en) Method and system for reproduction and recording of content

Legal Events

Date Code Title Description
STCB Information on status: application discontinuation

Free format text: ABANDONED -- FAILURE TO RESPOND TO AN OFFICE ACTION