Information processing device, information processing method and program storage medium
First Claim
1. An information processing device, associated with respective leaves of a hierarchical tree structure in which unique keys are associated with nodes and leaves, having a key set stored therein, the key set consisting of leaf key corresponding to each leaf of the hierarchical tree structure and node keys on paths to upper layers, wherein the information processing device comprising a constitution for executing verification processing as to whether an entity corresponding to a node or a leaf is a revocation entity, which is an entity to be revoked, by determining whether or not an enabling key block (EKB) including encrypted key data resulting from encryption of a renewal node key of the hierarchical tree structure by a subordinate node key or a leaf key can be decrypted by a stored key set for an entity to be verified, the determination as to whether decryption is possible or not being executed by trace processing of a key location identification tag in the enabling key block (EKB) based on an identifier of the entity to be verified.
1 Assignment
0 Petitions
Accused Products
Abstract
In an information processing system and method which enables detection processing of a revoked entity using an enabling key block (EKB), a device or a service provider as a revoked entity is determined on the basis of the enabling key block (EKB) used for key distribution in a tree structure. ID which enables position identification in the hierarchical key distribution tree is stored in a public key certificate and tracing processing using a tag of the enabling key block (EKB) is executed on the basis of the ID acquired from the public key certificate, thus determining whether or not the ID is of a position where EKB processing (decryption) is possible and determining the presence/absence of revocation of an entity corresponding to the ID.
77 Citations
11 Claims
-
1. An information processing device, associated with respective leaves of a hierarchical tree structure in which unique keys are associated with nodes and leaves, having a key set stored therein, the key set consisting of leaf key corresponding to each leaf of the hierarchical tree structure and node keys on paths to upper layers,
wherein the information processing device comprising a constitution for executing verification processing as to whether an entity corresponding to a node or a leaf is a revocation entity, which is an entity to be revoked, by determining whether or not an enabling key block (EKB) including encrypted key data resulting from encryption of a renewal node key of the hierarchical tree structure by a subordinate node key or a leaf key can be decrypted by a stored key set for an entity to be verified, the determination as to whether decryption is possible or not being executed by trace processing of a key location identification tag in the enabling key block (EKB) based on an identifier of the entity to be verified.
-
6. An information processing method in an information processing device, associated with respective leaves of a hierarchical tree structure in which unique keys are associated with nodes and leaves, having a key set stored therein, the key set consisting of leaf key corresponding to each leaf of the hierarchical tree structure and node keys on paths to upper layers,
wherein the information processing method comprising a constitution for executing verification processing as to whether an entity corresponding to a node or a leaf is a revocation entity, which is an entity to be revoked, by determining whether or not an enabling key block (EKB) including encrypted key data resulting from encryption of a renewal node key of the hierarchical tree structure by a subordinate node key or a leaf key can be decrypted by a stored key set for an entity to be verified, the determination as to whether decryption is possible or not being executed by trace processing of a key location identification tag in the enabling key block (EKB) based on an identifier of the entity to be verified.
-
11. A program storage medium for providing a computer program which causes a computer system to execute information processing in an information processing device, associated with respective leaves of a hierarchical tree structure in which unique keys are associated with nodes and leaves, having a key set stored therein, the key set consisting of leaf key corresponding to each leaf of the hierarchical tree structure and node keys on paths to upper layers,
the computer program stored in the storage medium comprising a verification processing step as to whether an entity corresponding to a node or a leaf is a revocation entity as an entity to be revoked, the verification processing step including a step of execution by determining whether of not an enabling key block (EKB) including encrypted key data resulting from encryption of a renewal node key of the hierarchical tree structure by a subordinate node key or a leaf key can be decrypted by a stored key set for an entity to be verified, the step of determining whether decryption is possible or not including a step of execution by trace processing of a key location identification tag in the enabling key block (EKB) based on an identifier of the entity to be verified.
Specification
-
- Resources
-
Current AssigneeSony Corporation (Sony Group Corp.)
-
Original AssigneeSony Corporation (Sony Group Corp.)
-
InventorsAsano, Tomoyuki, Ishiguro, Ryuji
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current713/158
-
CPC Class CodesG06F 21/10 Protecting distributed prog...G06F 21/80 in storage media based on m...G06F 2221/2135 MeteringG11B 20/00086 Circuits for prevention of ...G11B 20/00166 involving measures which re...G11B 20/00188 involving measures which re...G11B 20/0021 involving encryption or dec...G11B 20/00253 wherein the key is stored o...G11B 20/00536 wherein encrypted content d...H04L 2209/60 Digital content management,...H04L 9/0822 using key encryption keyH04L 9/0836 using tree structure or hie...H04L 9/0891 Revocation or update of sec...
