A memory card and a recording/playback device are provided that are capable of deterring a memory card manufacturer from illicitly storing a same media ID on a plurality of memory cards. A memory card (100) includes a media ID storage module unit (610) and a memory unit (120). The media ID storage m
A memory card and a recording/playback device are provided that are capable of deterring a memory card manufacturer from illicitly storing a same media ID on a plurality of memory cards. A memory card (100) includes a media ID storage module unit (610) and a memory unit (120). The media ID storage module unit (610) includes a media ID storage unit (611) that stores therein a media ID that is specific to the memory card, and a certification unit (609) that generates certification information that certifies the validity of the memory card based on the media ID. The memory unit (120) includes an encrypted content storage unit (122) for storing encrypted digital content. The recording/playback device (200) includes a memory card verification unit (200) that acquires the certification information from the memory card (100), verifies the validity of the memory card (100) based on the acquired certification information, and when the verification has failed, prohibits decrypting an encrypted content or encrypting a content, and a content encryption unit (209) that, when the verification has succeeded, encrypts the digital content or decrypts the encrypted digital content.
대표청구항▼
1. A recording-playback system comprising: a recording medium device; and a recording-playback device, whereinthe recording medium device includes a controller that is tamper-resistant and a memory, the controller includes: a first non-transitory memory that stores commands, an embedded value genera
1. A recording-playback system comprising: a recording medium device; and a recording-playback device, whereinthe recording medium device includes a controller that is tamper-resistant and a memory, the controller includes: a first non-transitory memory that stores commands, an embedded value generated by a controller vendor, and a private key generated by a center; anda first hardware processor that executes the commands to cause the controller to operate as a generation subunit that generates controller-specific identification information by using the value stored in the first non-transitory memory and a value obtained from a center for a manufacturer of the recording medium device, the value obtained from the center stored in a center-issued value storage subunit of the memory, anda certification subunit that, by using the private key stored in the first non-transitory memory, digitally signs the controller-specific identification information generated in the first hardware processor and a random number obtained from the recording-playback device so as to generate certification information that certifies a validity of the recording medium device, and outputs the generated certification information,the memory includes an encrypted content storage subunit that stores therein an encrypted digital content,a public certificate storage subunit that stores a public key certificate generated by the center, the public key certificate being a digital signature for a public key corresponding to the private key stored in the first non-transitory memory, andthe center-issued value storage subunit that stores the value obtained from the center, whereinthe controller-specific identification information is a digital signing target of the certification subunit,the controller-specific identification information is a media ID identifying the recording medium device, andthe value generated by the controller vendor is a portion of a media ID, and the value obtained from the center for the manufacturer of the recording medium device is the remaining portion of the media ID, andthe recording-playback device includes:a second non-transitory memory that stores a program, anda second hardware processor that executes the program to cause the recording-playback device to operate as: a first verification unit that acquires the public key certificate from the recording medium device, and performs a digital signature verification for the public key certificate so as to verify the validity of the public key,a second verification unit that acquires the certification information from the recording medium device, performs a digital signature verification for the certification information so as to verify the validity of the recording medium device by using the verified public key corresponding to the private key, according to (i) the random number, (ii) the controller-specific identification information, and (iii) the acquired certification information, and when the verification has failed, prohibits a decrypting of the encrypted digital content or an encrypting of a digital content; anda content encryption-decryption that, when the verification has succeeded, encrypts, according to the controller-specific identification information, the digital content and records the encrypted digital content in the encrypted content storage subunit, or decrypts the encrypted digital content read from the encrypted content storage subunit according to the controller-specific identification information. 2. The recording-playback system of claim 1 wherein the certification subunit further: stores therein a manufacturer private key of the manufacturer of the recording medium device, andreceives the random number from the second verification unit of the recording-playback device, and generates the certification information by digitally signing the received random number and the controller-specific identification information stored in an identification information storage subunit, with use of the manufacturer private key,the memory further includes a manufacturer public key certificate storage unit that stores therein a manufacturer public key certificate issued by a center to the manufacturer public key corresponding to the manufacturer private key, with use of a center private key of the center,the second verification unit further: generates the random number and transmit the generated random number to the recording medium device,stores therein a center public key corresponding to the center private key of the center,verifies a validity of the manufacturer public key included in the manufacturer public key certificate received from the recording medium device, andverifies the validity of the recording medium device by verifying a validity of the certification information by applying a digital signature verification to the certification information received from the recording medium device, along with the random number and the identification information. 3. The recording-playback system of claim 1, wherein the certification subunit further: stores therein a manufacturer private key of the manufacturer of the recording medium device; andreceives the random number from the verification unit of the recording-playback device, and generates the certification information by digitally signing the received random number and the controller-specific identification information with use of the manufacturer private key,the verification unit further: stores therein a manufacturer public key of the manufacturer of the recording medium device, and(i) acquires the certification information from the recording medium device, digitally signs the random number, the controller-specific identification information, and the acquired certification information with use of the manufacturer public key, (ii) when the verification has failed, prohibits the decrypting of the encrypted content or the encrypting of the digital content, and (iii) when the verification has succeeded, acquires the controller-specific identification information, andthe content encryption-decryption unit, when the verification has succeeded, encrypts the digital content or decrypt the encrypted digital content according to the controller-specific identification information. 4. The recording-playback system of claim 1, wherein the controller vendor is a manufacturer of the controller included in the recording medium device, andthe center for the manufacturer of the recording medium device is a key issuing authority. 5. The recording-playback system of claim 4, wherein a media manufacturer manufactures the recording medium device. 6. A recording-playback device capable of decrypting an encrypted content stored by a recording medium device and encrypting and recording a content on the recording medium device, the recording medium device comprising: a non-transitory memory that stores a program; anda hardware processor that executes the program to cause the recording-playback device to operate as: a first verification unit that acquires the public key certificate from the recording medium device, and performs a digital signature verification for the public key certificate so as to verify the validity of the public key,a second verification unit that (i) acquires the certification information that certifies the validity of the recording medium device, the certification information being generated using a private key to digitally sign controller-specific identification information and a random number obtained from the recording-playback device, and (ii) performs a digital signature verification of the certification information so as to verify the validity of the recording medium device by using the verified public key corresponding to the private key, according to the random number, the controller-specific identification information, and the acquired certification information, and (iii) when the verification has failed, prohibits a decrypting of the encrypted digital content or an encrypting a digital content; anda content encryption-decryption unit that, when the verification has succeeded, encrypts the digital content according to the controller-specific identification information and records the encrypted digital content in the recording medium device, or to decrypt the encrypted digital content read from the recording medium device, andthe controller-specific identification information is the digital signing target of the certification subunit,the controller-specific identification information is generated using an embedded value generated by a controller vendor and a value obtained from a center for a manufacturer of the recording medium device,the controller-specific identification information is a media ID identifying the recording medium device, andthe value generated by the controller vendor is a portion of the media ID, and the value obtained from the center for the manufacturer of the recording medium device is the remaining portion of the media ID. 7. The recording-playback device of claim 6, wherein the second verification unit further: stores therein a manufacturer public key of the manufacturer of the recording medium device, and(i) acquires the certification information by digitally signing the controller-specific identification information and the random number with use of a manufacturer private key of the manufacturer of the recording medium device, (ii) verifies the acquired certification information with use of the manufacturer public key, (iii) when the verification has failed, prohibits decrypting of the encrypted digital content or the encrypting of the digital content, and (iv) when the verification has succeeded, acquires the controller-specific identification information, andthe content encryption-decryption unit, when the verification has succeeded, encrypts the digital content or decrypts the encrypted digital content according to the controller-specific identification information. 8. The recording-playback device of claim 7, wherein the verification unit of the recording-playback device further generates the random number and transmits the generated random number to the recording medium device, andthe verification unit acquires the certification information generated by digitally signing a concatenation of the identification information and the random number, and verifies the validity of the recording medium device according to the concatenation of the acquired certification information and the generated random number. 9. The recording-playback device of claim 7, wherein the verification unit further: stores therein a center public key corresponding to a center private key of a reliable center, andwith use of the center public key of the center public key storage unit, verifies the validity of the manufacturer public key included in the manufacturer public key certificate received from the recording medium device. 10. The recording-playback device of claim 6, wherein the controller vendor is a manufacturer of the controller included in the recording medium device, andthe center for the manufacturer of the recording medium device is a key issuing authority. 11. The recording-playback device of claim 10, wherein a media manufacturer manufactures the recording medium device. 12. A recording-playback method used by a recording-playback device that decrypts encrypted content stored by a recording medium device and encrypts and records a content on the recording medium device, the recording-playback method comprising: acquiring the public key certificate from the recording medium device, and performing a digital signature verification for the public key certificate so as to verify the validity of the public key;acquiring the certification information that certifies the validity of the recording medium device from the recording medium device, the certification information being generated using a private key to digitally sign controller-specific identification information and a random number obtained from the recording-playback device;performing a digital signature verification for the certification information so as to verify the validity of the recording medium device by using the verified public key corresponding to the private key, according to the random number, the controller-specific identification information, and the acquired certification information;when the verification has failed, prohibiting a decrypting of the encrypted digital content or an encrypting of a digital content; andwhen the verification has succeeded, encrypting the digital content according to the controller-specific identification information and recording the encrypted digital content in the encrypted content storage subunit, or decrypting the encrypted digital content read from the encrypted content storage subunit, andthe controller-specific identification information is the digital signing target of the certification subunit,the controller-specific identification information is generated using an embedded value generated by a controller vendor and a value obtained from a center for a manufacturer of the recording medium device,the controller-specific identification information is a media ID identifying the recording medium device, andthe value generated by the controller vendor is a portion of the media ID, and the value obtained from the center for the manufacturer of the recording medium device is the remaining portion of the media ID. 13. The recording-playback method of claim 12, wherein the controller vendor is a manufacturer of the controller included in the recording medium device, andthe center for the manufacturer of the recording medium device is a key issuing authority. 14. The recording-playback device of claim 13, wherein a media manufacturer manufactures the recording medium device. 15. A non-transitory computer-readable recording medium having a computer program recorded thereon, the computer program being used in a recording-playback device capable of decrypting an encrypted content stored by a recording medium device and encrypting and recording a content on the recording medium device, the computer program causing a computer to execute a method comprising: acquiring the public key certificate from the recording medium device, and performing a digital signature verification for the public key certificate so as to verify the validity of the public key; acquiring the certification information that certifies the validity of the recording medium device from the recording medium device, the certification information being generated using a private key to digitally sign controller-specific identification information and a random number obtained from the recording-playback device;performing a digital signature verification for the certification information so as to verify the validity of the recording medium device by using the verified public key corresponding to the private key, according to the random number, the controller-specific identification information, and the acquired certification information;when the verification has failed, prohibiting a decrypting of the encrypted digital content or an encrypting of a digital content; andwhen the verification has succeeded, encrypting the digital content according to the controller-specific identification information and recording the encrypted digital content in the encrypted content storage subunit, or decrypting the encrypted digital content read from the encrypted content storage subunit according to the controller-specific identification information, andthe controller-specific identification information is the digital signing target of the certification subunit,the controller-specific identification information is generated using an embedded value generated by a controller vendor and a value obtained from a center for a manufacturer of the recording medium device,the controller-specific identification information is a media ID identifying the recording medium device, andthe value generated by the controller vendor is a portion of the media ID, and the value obtained from the center for the manufacturer of the recording medium device is the remaining portion of the media ID. 16. An integrated circuit capable of decrypting an encrypted content stored by a recording medium device and encrypting and recording a content on the recording medium device, the integrated circuit comprising: a first verification circuit that acquires the public key certificate from the recording medium device, and performs a digital signature verification for the public key certificate so as to verify the validity of the public key,a second verification circuit that (i) acquires the certification information that certifies the validity of the recording medium device from the recording medium device, the certification information being generated using a private key to digitally sign controller-specific identification information and a random number obtained from the recording-playback device, (ii) performs a digital signature verification so as to verify the validity of the recording medium device by using the verified public key corresponding to the private key, according to the random number, the controller-specific identification information, and the acquired certification information, and (iii) when the verification has failed, prohibit a decrypting of the encrypted digital content or an encrypting of a digital content; anda content encryption-decryption circuit that, when the verification has succeeded, encrypts the digital content according to the controller-specific identification information and records the encrypted digital content in the encrypted content storage subunit, or decrypts the encrypted digital content read from the encrypted content storage subunit according to the controller-specific identification information, andthe controller-specific identification information is the digital signing target of the certification subunit,the controller-specific identification information is generated using an embedded value generated by a controller vendor and a value obtained from a center for a manufacturer of the recording medium device,the controller-specific identification information is a media ID identifying the recording medium device, andthe value generated by the controller vendor is a portion of the media ID, and the value obtained from the center for the manufacturer of the recording medium device is the remaining portion of the media ID. 17. A recording medium device, comprising: a tamper-resistant controller; anda memory, whereinthe tamper-resistant controller includes: a non-transitory memory that stores commands and an embedded value generated by a controller vendor; anda hardware processor that executes the commands to cause the controller to operate as a generation subunit operable to generate controller-specific identification information by using the value stored in the non-transitory memory and a value obtained from a center for a manufacturer of the recording medium device, the value obtained from the center stored in a center-issued value storage subunit of the memory and a certification subunit that, by using the private key stored in the non-transitory memory, digitally signs the controller-specific identification information generated in the non-transitory memory and a random number obtained from a recording-playback device so as to generate certification information that certifies a validity of the recording medium device, and outputs the generated certification information,the memory includes an encrypted content storage subunit that stores therein an encrypted digital content, a public certificate storage subunit that stores a public key certificate generated by the center, the public key certificate being a digital signature for a public key corresponding to the private key stored in the non-transitory memory, and the center-issued value storage subunit that stores the value obtained from the center, whereinthe controller-specific identification information is the digital signing target of the certification subunit,the controller-specific identification information is a media ID identifying the recording medium device, andthe value generated by the controller vendor is a portion of a media ID, and the value obtained from the center for the manufacturer of the recording medium device is the remaining portion of the media ID. 18. The recording medium device of claim 17, wherein the certification subunit further generates the certification information, as response data, according to the controller-specific identification information and challenges data from the recording-playback device, which is the random number, with use of the private key, and outputs the generated certification information as the response data. 19. The recording medium device of claim 17, wherein the certification subunit further: stores therein a manufacturer private key of the manufacturer of the recording medium device as the private key, andwith use of the manufacturer private key, generates the certification information. 20. The recording medium device of claim 19 wherein the signature generation subunit acquires the random number from the recording-playback device, and digitally signs a concatenation of the controller-specific identification information and the acquired random number. 21. The recording medium device of claim 19 wherein the memory of the recording medium device further includes a manufacturer public key certificate storage subunit that stores therein a manufacturer public key certificate issued from a center, with use of a center private key of the center, to a manufacturer public key corresponding to the manufacturer private key. 22. The recording medium device of claim 7, wherein the controller-specific identification information is generated according to vendor-specific information unique to the controller vendor, in addition to the value generated by the controller vendor and the value received from the center for the manufacturer of the recording medium device. 23. The recording medium device of claim 17, wherein the controller vendor is a manufacturer of the controller included in the recording medium device, andthe center for the manufacturer of the recording medium device is a key issuing authority. 24. The recording medium device of claim 23, wherein a media manufacturer manufactures the recording medium device. 25. The recording medium device of claim 17, wherein the controller-specific identification information is generated by concatenating the value generated by the controller vendor and the value obtained from the center for the manufacturer of the recording medium device.
연구과제 타임라인
LOADING...
LOADING...
LOADING...
LOADING...
LOADING...
이 특허에 인용된 특허 (16)
Matsushima,Hideki; Tokuda,Katsumi; Harada,Shunji; Hirota,Teruto; Inoue,Shinji, Audio data playback management system and method with editing apparatus and recording medium.
Sasmazel Levent MD ; Schneider David H., Method for issuing a new authenticated electronic ticket based on an expired authenticated ticket and distributed server architecture for using same.
Maruyama Minoru,JPX ; Kanno Hiroshi,JPX ; Fujiwara Shuuji,JPX ; Watanabe Kunio,JPX, Method of mobile unit registration and method of IC card registration for mobile communications system, and mobile unit.
Ginter Karl L. ; Shear Victor H. ; Sibert W. Olin ; Spahn Francis J. ; Van Wie David M., Systems and methods for secure transaction management and electronic rights protection.
※ AI-Helper는 부적절한 답변을 할 수 있습니다.