Data access management system and management method using access control tickert

US 20030188117A1
Filed: 05/09/2003
Published: 10/02/2003
Est. Priority Date: 03/15/2001
Status: Abandoned Application

First Claim

Patent Images

1. A data access management system for managing access processing performed by an access unit for a data file stored in a memory-loaded device having a memory in which data can be stored, wherein:

said access unit receives a service permission ticket (SPT), which serves as an access control ticket in which an access mode to be accepted for said access unit is set, from ticket issuing means, and outputs the received service permission ticket (SPT) to said memory-loaded device; and

said memory-loaded device receives the service permission ticket from said access unit, and performs processing according to the access mode indicated in the service permission ticket (SPT).

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

To provide a data access management system that enables access control management for data files stored in a memory of a device. The system manages data access processing performed by an access unit for a memory-loaded device, and issues a service permission ticket (SPT), which serves as an access control ticket in which an access mode to be accepted for the access unit, such as a reader/writer, is set. The memory-loaded device receives the service permission ticket (SPT) from the access unit, and performs processing according to the access mode indicated in the service permission ticket (SPT). The service permission tickets (SPTs) in which access modes to be accepted for the access units are set are individually issued according to the access units. Accordingly, various modes of access according to the access units can be executed.

338 Citations

96 Claims

1. A data access management system for managing access processing performed by an access unit for a data file stored in a memory-loaded device having a memory in which data can be stored, wherein:
- said access unit receives a service permission ticket (SPT), which serves as an access control ticket in which an access mode to be accepted for said access unit is set, from ticket issuing means, and outputs the received service permission ticket (SPT) to said memory-loaded device; and
  
  said memory-loaded device receives the service permission ticket from said access unit, and performs processing according to the access mode indicated in the service permission ticket (SPT).
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
- - 2. A data access management system according to claim 1, wherein:
    - the service permission ticket (SPT) contains a file identifier for identifying a data file to be accessed; and
      
      said memory-loaded device receives the service permission ticket (SPT) from said access unit, selects the data file according to the file identifier indicated in the service permission ticket (SPT), and performs processing according to the access mode for the selected file.
  - 3. A data access management system according to claim 1, wherein:
    - the service permission ticket (SPT) contains a plurality of file identifiers for identifying a plurality of data files to be accessed, one of the plurality of file identifiers being set as a target file identifier so that read or write permission data for a target file is stored; and
      
      said memory-loaded device receives the service permission ticket (SPT) from said access unit so as to perform processing according to the access mode, and also performs read or write processing on the target file that is set as the target file identifier in the service permission ticket (SPT) according to the read or write permission data set in the service permission ticket (SPT).
  - 4. A data access management system according to claim 1, wherein:
    - the service permission ticket (SPT) contains a plurality of file identifiers for identifying a plurality of data files to be accessed, one of the plurality of file identifiers being set as a target file identifier so that read or write permission data for a target file is stored, and, as the access mode of the other data file, encryption processing using an encryption key stored in the data file is set; and
      
      said memory-loaded device receives the service permission ticket (SPT) from said access unit, and performs a reading operation for the target file and encryption processing by using the encryption key according to the access mode, thereby executing internal encryption processing in said memory-loaded device.
  - 5. A data access management system according to claim 1, wherein:
    - the ticket issuing means that issues the service permission ticket (SPT) is ticket issuing means which is under the management of an entity that manages a memory area of said memory-loaded device; and
      
      said ticket issuing means individually issues the service permission tickets (SPTs) in which various access modes are set according to the access units, thereby enabling the execution of the various modes of access according to the access units.
  - 6. A data access management system according to claim 1, wherein said memory-loaded device generates a file open table in which a file identifier, which serves as ID data of a file that has been subject to file open processing performed based on the service permission ticket (SPT) received during a session with the access unit is related to the access mode indicated in the service permission ticket (SPT), and determines whether a command received from the access unit is to be executed by referring to the file open table.
  - 7. A data access management system according to claim 1, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers, and the data file is stored in one of the partitions; and
      
      said memory-loaded device performs processing in response to an access request for the data file stored in each partition based on a description in the service permission ticket (SPT) which is issued by the ticket issuing means under the management of the partition manager and which is input into said memory-loaded device from said access unit, which serves as ticket using means.
  - 8. A data access management system according to claim 1, wherein:
    - the service permission ticket (SPT) contains mutual-authentication-mode designation data that designates a mutual authentication mode to be executed between said memory-loaded device and the access unit that outputs the ticket; and
      
      said memory-loaded device executes mutual authentication according to the mutual-authentication-mode designation data of the service permission ticket (SPT), and performs processing according to a description in the received ticket on the condition that the mutual authentication is successfully conducted.
  - 9. A data access management system according to claim 1, wherein:
    - the service permission ticket (SPT) contains ticketverification designation data that designates a verification mode of the service permission ticket (SPT) received by said memory-loaded device; and
      
      said memory-loaded device executes ticket verification processing according to the ticket-verification designation data of the service permission ticket (SPT), and performs processing according to a description in the received ticket on the condition that the verification is successfully conducted.

10. A memory-loaded device having a memory in which data can be stored, comprising:
- control means for controlling access processing performed by an access unit for a data file stored in the memory, wherein said control means selects a data file according to a file identifier indicated in a service permission ticket (SPT) received from said access unit, and performs processing on the selected file according to an access mode indicated in the service permission ticket (SPT).
- View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
- - 11. A memory-loaded device according to claim 10, wherein:
    - the service permission ticket (SPT) contains a file identifier for identifying a data file to be accessed; and
      
      said control means receives the service permission ticket (SPT) from said access unit, selects the data file according to the file identifier indicated in the service permission ticket (SPT), and performs processing on the selected file according to the access mode.
  - 12. A memory-loaded device according to claim 10, wherein:
    - the service permission ticket (SPT) contains a plurality of file identifiers for identifying a plurality of data files to be accessed, one of the plurality of file identifiers being set as a target file identifier, so that read or write permission data for a target file is stored; and
      
      said control means receives the service permission ticket (SPT) from said access unit so as to perform processing according to the access mode, and also performs read or write processing on the target file that is set as the target file identifier in the service permission ticket (SPT) according to the read or write permission data set in the service permission ticket (SPT).
  - 13. A memory-loaded device according to claim 10, wherein:
    - the service permission ticket (SPT) contains a plurality of file identifiers for identifying a plurality of data files to be accessed, one of the plurality of file identifiers being set as a target file identifier so that read or write permission data for a target file is stored, and, as the access mode of the other data file, encryption processing using an encryption key stored in the data file is set; and
      
      said control means receives the service permission ticket (SPT) from said access unit, and performs a reading operation for the target file and encryption processing by using the encryption key according to the access mode, thereby executing internal encryption processing in said memory-loaded device.
  - 14. A memory-loaded device according to claim 10, wherein said control means generates a file open table in which the file identifier, which serves as ID data of a file that has been subject to file open processing performed based on the service permission ticket (SPT) received during a session with the access unit is related to the access mode indicated in the service permission ticket (SPT), and determines whether a command received from the access unit is to be executed by referring to the file open table.
  - 15. A memory-loaded device according to claim 10, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers, and the data file is stored in one of the partitions; and
      
      said control means performs processing in response to an access request for the data file stored in each partition based on a description in the service permission ticket (SPT) which is issued by the ticket issuing means under the management of the partition manager and which is input into said memory-loaded device from said access unit, which serves as ticket using means.
  - 16. A memory-loaded device according to claim 10, wherein:
    - the service permission ticket (SPT) contains mutual-authentication-mode designation data that designates a mutual authentication mode to be executed between said memory-loaded device and the access unit that outputs the ticket; and
      
      said control means executes mutual authentication according to the mutual-authentication-mode designation data of the service permission ticket (SPT), and performs processing according to a description in the received ticket on the condition that the mutual authentication is successfully conducted.
  - 17. A memory-loaded device according to claim 10, wherein:
    - the service permission ticket (SPT) contains ticket-verification designation data that designates a verification mode of the service permission ticket (SPT) received by said memory-loaded device; and
      
      said control means executes ticket verification processing according to the ticket-verification designation data of the service permission ticket (SPT), and performs processing according to a description in the received ticket on the condition that the verification is successfully conducted.

18. A data access management method for managing access processing performed by an access unit for a data file stored in a memory-loaded device having a memory in which data can be stored, wherein:
- said access unit receives a service permission ticket (SPT), which serves as an access control ticket in which an access mode to be accepted for said access unit is set, from ticket issuing means, and outputs the received service permission ticket (SPT) to said memory-loaded device; and
  
  said memory-loaded device receives the service permission ticket from said access unit, and performs processing according to the access mode indicated in the service permission ticket (SPT).
- View Dependent Claims (19, 20, 21, 22, 23, 24, 25, 26)
- - 19. A data access management method according to claim 18, wherein:
    - the service permission ticket (SPT) contains a file identifier for identifying a data file to be accessed; and
      
      said memory-loaded device receives the service permission ticket (SPT) from said access unit, selects the data file according to the file identifier indicated in the service permission ticket (SPT), and performs processing according to the access mode for the selected file.
  - 20. A data access management method according to claim 18, wherein:
    - the service permission ticket (SPT) contains a plurality of file identifiers for identifying a plurality of data files to be accessed, one of the plurality of file identifiers being set as a target file identifier so that read or write permission data for a target file is stored; and
      
      said memory-loaded device receives the service permission ticket (SPT) from said access unit so as to perform processing according to the access mode, and also performs read or write processing on the target file that is set as the target file identifier in the service permission ticket (SPT) according to the read or write permission data set in the service permission ticket (SPT).
  - 21. A data access management method according to claim 18, wherein:
    - the service permission ticket (SPT) contains a plurality of file identifiers for identifying a plurality of data files to be accessed, one of the plurality of file identifiers being set as a target file identifier so that read or write permission data for a target file is stored, and, as the access mode of the other data file, encryption processing using an encryption key stored in the data file is set; and
      
      said memory-loaded device receives the service permission ticket (SPT) from said access unit, and performs a reading operation for the target file and encryption processing by using the encryption key according to the access mode, thereby executing internal encryption processing in said memory-loaded device.
  - 22. A data access management method according to claim 18, wherein:
    - the ticket issuing means that issues the service permission ticket (SPT) is ticket issuing means which is under the management of an entity that manages a memory area of said memory-loaded device; and
      
      said ticket issuing means individually issues the service permission tickets (SPTs) in which various access modes are set according to the access units, thereby enabling the execution of the various modes of access according to the access units.
  - 23. A data access management method according to claim 18, wherein said memory-loaded device generates a file open table in which a file identifier, which serves as ID data of a file that has been subject to file open processing performed based on the service permission ticket (SPT) received during a session with the access unit is related to the access mode indicated in the service permission ticket (SPT), and determines whether a command received from the access unit is to be executed by referring to the file open table.
  - 24. A data access management method according to claim 18, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers, and the data file is stored in one of the partitions; and
      
      said memory-loaded device performs processing in response to an access request for the data file stored in each partition based on a description in the service permission ticket (SPT) which is issued by the ticket issuing means under the management of the partition manager and which is input into said memory-loaded device from said access unit, which serves as ticket using means.
  - 25. A data access management method according to claim 18, wherein:
    - the service permission ticket (SPT) contains mutual-authentication-mode designation data that designates a mutual authentication mode to be executed between said memory-loaded device and the access unit that outputs the ticket; and
      
      said memory-loaded device executes mutual authentication according to the mutual-authentication-mode designation data of the service permission ticket (SPT), and performs processing according to a description in the received ticket on the condition that the mutual authentication is successfully conducted.
  - 26. A data access management method according to claim 18, wherein:
    - the service permission ticket (SPT) contains ticketverification designation data that designates a verification mode of the service permission ticket (SPT) received by said memory-loaded device; and
      
      said memory-loaded device executes ticket verification processing according to the ticket-verification designation data of the service permission ticket (SPT), and performs processing according to a description in the received ticket on the condition that the verification is successfully conducted.

27. A program storage medium for providing a computer program for performing data access management processing on a computer system, said data access management processing for managing access processing performed by an access unit for a data file stored in a memory-loaded device having a memory in which data can be stored, said computer program comprising the step of receiving a service permission ticket (SPT), which serves as an access control ticket in which an access mode to be accepted for said access unit that is to access said memory-loaded device is set, and performing processing according to the access mode indicated in the service permission ticket (SPT).

28. A data processing system for performing, in response to an access request from an access unit for a memory-loaded device having a memory in which data can be stored, data processing on the memory, wherein:
- said memory-loaded device receives an access control ticket, which is configured corresponding to the data processing on the memory, from said access unit, and performs the data processing based on rules indicated in the access control ticket; and
  
  said memory-loaded device determines a type of mutual authentication to be conducted with said access unit based on a description in the access control ticket designated or received from said access unit so as to conduct the mutual authentication, and also determines a type of verification of the access control ticket based on the description in the received access control ticket so as to conduct the verification, and responds to the access request from said access unit on the condition that both the mutual authentication and the ticket verification have been successfully conducted.
- View Dependent Claims (29, 30, 31, 32, 33, 34)
- - 29. A data processing system according to claim 28, wherein the type of mutual authentication is one of a public key system and a common key system, and the type of verification of the access control ticket is one of a public key system and a common key system.
  - 30. A data processing system according to claim 28, wherein:
    - said memory-loaded device possesses a MAC checking key for conducting the verification of the access control ticket according to the common key system, and, when conducting the verification of the access control ticket received from said access unit according to the common key system, said memory-loaded device performs tamper checking processing by using the MAC checking key; and
      
      when conducting the verification of the access control ticket according to the public key system, said memory-loaded device performs signature verification processing based on a public key of ticket issuing means obtained from a public key certificate of the ticket issuing means.
  - 31. A data processing system according to claim 28, wherein said memory-loaded device possesses a plurality of MAC checking keys for conducting the verification of the access control ticket, and selects the MAC checking key to be used according to information recorded in the access control ticket received from said access unit.
  - 32. A data processing system according to claim 28, wherein:
    - the access control ticket includes a data update ticket (DUT) for allowing updating processing of data stored in the memory of said memory-loaded device;
      
      said memory-loaded device possesses a plurality of MAC checking keys for conducting the verification of the access control ticket; and
      
      when the data to be updated, designated in the data update ticket (DUT), received from said access unit is a MAC checking key for conducting the verification of the access control ticket, said memory-loaded device conducts the verification processing of the received data update ticket (DUT) by selecting a MAC checking key which is not the MAC checking key to be updated from the plurality of MAC checking keys.
  - 33. A data processing system according to claim 28, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said memory-loaded device performs processing in response to an access request for the data stored in each partition based on a description in the access control ticket which is issued by the ticket issuing means under the management of the corresponding partition manager and which is input into said memory-loaded device from said access unit, which serves as ticket using means.
  - 34. A data processing system according to claim 28, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said memory-loaded device generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by partition authentication or device authentication executed during a session with said access unit, are related to each other, and retains the authentication table during a period of the session.

35. A memory-loaded device having a memory in which data can be stored, comprising:
- control means for performing data processing on the memory in response to an access request from an access unit, wherein;
  
  said control means receives an access control ticket, which is configured corresponding to the data processing on the memory, from said access unit, and performs the data processing based on rules indicated in the access control ticket; and
  
  said control means determines a type of mutual authentication to be conducted with said access unit based on a description in the access control ticket designated or received from said access unit so as to conduct the mutual authentication, and also determines a type of verification of the access control ticket based on the description in the received access control ticket so as to conduct the verification, and responds to the access request from said access unit on the condition that both the mutual authentication and the ticket verification have been successfully conducted.
- View Dependent Claims (36, 37, 38, 39, 40, 41, 93)
- - 36. A memory-loaded device according to claim 35, wherein said control means selectively executes a public key system or a common key system as the type of mutual authentication, and selectively executes a public key system or a common key system as the type of verification of the access control ticket.
  - 37. A memory-loaded device according to claim 35, wherein:
    - said memory-loaded device possesses a MAC checking key for conducting the verification of the access control ticket;
      
      when conducting the verification of the access control ticket received from said access unit according to the common key system, said control means performs tamper checking processing by using the MAC checking key; and
      
      when conducting the verification of the access control ticket according to the public key system, said control means performs signature verification processing based on a public key of ticket issuing means obtained from a public key certificate of the ticket issuing means.
  - 38. A memory-loaded device according to claim 35, wherein:
    - said memory-loaded device possesses a plurality of MAC checking keys for conducting the verification of the access. control ticket; and
      
      said control means selects the MAC checking key to be used according to information recorded in the access control ticket received from said access unit.
  - 39. A memory-loaded device according to claim 35, wherein:
    - the access control ticket includes a data update ticket (DUT) for allowing updating processing of data stored in the memory of said memory-loaded device;
      
      said memory-loaded device possesses a plurality of MAC checking keys for conducting the verification of the access control ticket; and
      
      when the data to be updated, designated in the data update ticket (DUT), received from said access unit is a MAC checking key for conducting the verification of the access control ticket, said control means conducts the verification processing of the received data update ticket (DUT) by selecting a MAC checking key which is not the MAC checking key to be updated from the plurality of MAC checking keys.
  - 40. A memory-loaded device according to claim 35, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said control means performs processing in response to an access request for the data stored in each partition based on a description in the access control ticket which is issued by the ticket issuing means under the management of the corresponding partition manager and which is input into said memory-loaded device from said access unit, which serves as ticket using means.
  - 41. A memory-loaded device according to claim 35, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said control means generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by partition authentication or device authentication executed during a session with said access unit, are related to each other, and retains the authentication table during a period of the session.
  - 93. A memory access control method according to claim 38, wherein said memory-loaded device generates a single integrated session key based on a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions according to exclusive OR computation of the plurality of session keys, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the integrated session key.

42. A data processing method for performing, in response to an access request from an access unit for a memory-loaded device having a memory in which data can be stored, data processing on the memory, wherein:
- said memory-loaded device receives an access control ticket, which is configured corresponding to the data processing on the memory, from said access unit, and performs the data processing based on rules indicated in the access control ticket; and
  
  said memory-loaded device determines a type of mutual authentication to be conducted with said access unit based on a description in the access control ticket designated or received from said access unit so as to conduct the mutual authentication, and also determines a type of verification of the access control ticket based on the description in the received access control ticket so as to conduct the verification, and responds to the access request from said access unit on the condition that both the mutual authentication and the ticket verification have been successfully conducted.
- View Dependent Claims (43, 44, 45, 46, 47, 48)
- - 43. A data processing method according to claim 42, wherein the type of mutual authentication is one of a public key system and a common key system, and the type of verification of the access control ticket is one of a public key system and a common key system.
  - 44. A data processing method according to claim 42, wherein:
    - said memory-loaded device possesses a MAC checking key for conducting the verification of the access control ticket according to the common key system, and, when conducting the verification of the access control ticket received from said access unit according to the common key system, said memory-loaded device performs tamper checking processing by using the MAC checking key; and
      
      when conducting the verification of the access control ticket according to the public key system, said memory-loaded device performs signature verification processing based on a public key of ticket issuing means obtained from a public key certificate of the ticket issuing means.
  - 45. A data processing method according to claim 42, wherein said memory-loaded device possesses a plurality of MAC checking keys for conducting the verification of the access control ticket, and selects the MAC checking key to be used according to information recorded in the access control ticket received from said access unit.
  - 46. A data processing method according to claim 42, wherein:
    - the access control ticket includes a data update ticket (DUT) for allowing updating processing of data stored in the memory of said memory-loaded device;
      
      said memory-loaded device possesses a plurality of MAC checking keys for conducting the verification of the access control ticket; and
      
      when the data to be updated, designated in the data update ticket (DUT), received from said access unit is a MAC checking key for conducting the verification of the access control ticket, said memory-loaded device conducts the verification processing of the received data update ticket (DUT) by selecting a MAC checking key which is not the MAC checking key to be updated from the plurality of MAC checking keys.
  - 47. A data processing method according to claim 42, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said memory-loaded device performs processing in response to an access request for the data stored in each partition based on a description in the access control ticket which is issued by the ticket issuing means under the management of the corresponding partition manager and which is input into said memory-loaded device from said access unit, which serves as ticket using means.
  - 48. A data processing method according to claim 42, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said memory-loaded device generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by partition authentication or device authentication executed during a session with said access unit, are related to each other, and retains the authentication table during a period of the session.

49. A program storage medium for providing a computer program for performing data processing on a computer system, said data processing to be performed, in response to an access request from an access unit for a memory-loaded device having a memory in which data can be stored, on the memory, said computer program comprising:
- a step of receiving an access control ticket, which is configured corresponding to the data processing on the memory, from said access unit;
  
  a step of determining a type of mutual authentication to be conducted with said access unit based on a description in the access control ticket designated or received from said access unit so as to conduct the mutual authentication;
  
  a step of determining a type of verification of the access control ticket based on the description of the received access control ticket so as to conduct the verification; and
  
  a step of executing the access request from said access unit on the condition that both the mutual authentication and the ticket verification have been successfully conducted.

50. A data access control system for issuing a command from an access unit to a memory-loaded device having a memory in which data can be stored, and for performing processing on the data stored in the memory, wherein said memory-loaded device receives an access control ticket, which is configured as access control data for the data stored in the memory, from said access unit, and allows data access on the condition that authentication based on authentication rules indicated in the access control ticket is successfully conducted, and that ID data of said access unit indicated in the access control ticket is successfully verified.
- View Dependent Claims (51, 52, 53, 54, 55, 56)
- - 51. A data access control system according to claim 50, wherein:
    - an authentication type as authentication-type designation information indicating whether a public key authentication type or a common key authentication type is to be performed, or whether either the public key authentication type or the common key authentication type is allowed, is recorded in the access control ticket; and
      
      said memory-loaded device performs authentication processing according to the authentication type indicated in the access control ticket received from said access unit.
  - 52. A data access control system according to claim 50, wherein:
    - a category or an identifier of issuing means of the access control ticket is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket issued by authorized issuing means based on the category or the identifier of the issuing means of the access control ticket indicated in the access control ticket received from said access unit, and allows the data access on the condition that the ticket is successfully verified.
  - 53. A data access control system according to claim 50, wherein:
    - a category or an identifier of issuing means of the access control ticket is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket issued by authorized issuing means based on a comparison between the category or the identifier of the issuing means of the access control ticket indicated in the access control ticket received from said access unit and user information stored in a pubic key certificate of the issuing means of the access control ticket, and allows the data access on the condition that the ticket is successfully verified.
  - 54. A data access control system according to claim 50, wherein:
    - a category or an identifier of the access unit, which serves as using means of the access control ticket, is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket provided from authorized using means based on the category or the identifier of said access unit indicated in the access control ticket received from said access unit, and allows the data access on the condition that the ticket is successfully verified.
  - 55. A data access control system according to claim 50, wherein:
    - a category or an identifier of using means of the access control ticket is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket provided by authorized using means based on a comparison between the category or the identifier of the access unit, which serves as the using means of the access control ticket, indicated in the access control ticket received from said access unit and user information stored in a public key certificate of the using means of the access control ticket, and allows the data access on the condition that the ticket is successfully verified.
  - 56. A data access control system according to claim 50, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said memory-loaded device generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by partition authentication or device authentication executed during a session with said access unit, are related to each other.

57. A memory-loaded device having a memory in which data can be stored, comprising:
- control means for issuing a command from an access unit and for performing processing on the data stored in the memory, wherein said control means receives an access control ticket, which is configured as access control data for the data stored in the memory, from said access unit, and allows data access on the condition that authentication based on authentication rules indicated in the access control ticket is successfully conducted, and that ID data of said access unit indicated in the access control ticket is successfully verified.
- View Dependent Claims (58, 59, 60, 61, 62, 63)
- - 58. A memory-loaded device according to claim 57, wherein:
    - an authentication type as authentication-type designation information indicating whether a public key authentication type or a common key authentication type is to be performed, or whether either the public key authentication type or the common key authentication type is allowed, is recorded in the access control ticket; and
      
      said control means performs authentication processing according to the authentication type indicated in the access control ticket received from said access unit.
  - 59. A memory-loaded device according to claim 57, wherein:
    - a category or an identifier of issuing means of the access control ticket is stored in the access control ticket; and
      
      said control means verifies whether the ticket is a ticket issued by authorized issuing means based on the category or the identifier of the issuing means of the access control ticket indicated in the access control ticket received from said access unit, and allows the data access on the condition that the ticket is successfully verified.
  - 60. A memory-loaded device according to claim 57, wherein:
    - a category or an identifier of issuing means of the access control ticket is stored in the access control ticket; and
      
      said control means verifies whether the ticket is a ticket issued by authorized issuing means based on a comparison between the category or the identifier of the issuing means of the access control ticket indicated in the access control ticket received from said access unit and user information stored in a pubic key certificate of the issuing means of the access control ticket, and allows the data access on the condition that the ticket is successfully verified.
  - 61. A memory-loaded device according to claim 57, wherein:
    - a category or an identifier of the access unit, which serves as using means of the access control ticket, is stored in the access control ticket; and
      
      said control means verifies whether the ticket is a ticket provided from authorized using means based on the category or the identifier of said access unit indicated in the access control ticket received from said access unit, and allows the data access on the condition that the ticket is successfully verified.
  - 62. A memory-loaded device according to claim 57, wherein:
    - a category or an identifier of using means of the access control ticket is stored in the access control ticket; and
      
      said control means verifies whether the ticket is a ticket provided by authorized using means based on a comparison between the category or the identifier of the access unit, which serves as the using means of the access control ticket, indicated in the access control ticket received from said access unit and user information stored in a public key certificate of the using means of the access control ticket, and allows the data access on the condition that the ticket is successfully verified.
  - 63. A memory-loaded device according to claim 57, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said control means generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by partition authentication or device authentication executed during a session with said access unit, are related to each other.

64. A data access control method for issuing a command from an access unit to a memory-loaded device having a memory in which data can be stored, and for performing processing on the data stored in the memory, wherein said memory-loaded device receives an access control ticket, which is configured as access control data for the data stored in the memory, from said access unit, and allows data access on the condition that authentication based on authentication rules indicated in the access control ticket is successfully conducted, and that ID data of said access unit indicated in the access control ticket is successfully verified.
- View Dependent Claims (65, 66, 67, 68, 69, 70)
- - 65. A data access control method according to claim 64, wherein:
    - an authentication type as authentication-type designation information indicating whether a public key authentication type or a common key authentication type is to be performed, or whether either the public key authentication type or the common key authentication type is allowed, is recorded in the access control ticket; and
      
      said memory-loaded device performs authentication processing according to the authentication type indicated in the access control ticket received from said access unit.
  - 66. A data access control method according to claim 64, wherein:
    - a category or an identifier of issuing means of the access control ticket is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket issued by authorized issuing means based on the category or the identifier of the issuing means of the access control ticket indicated in the access control ticket received from said access unit, and allows the data access on the condition that the ticket is successfully verified.
  - 67. A data access control method according to claim 64, wherein:
    - a category or an identifier of issuing means of the access control ticket is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket issued by authorized issuing means based on a comparison between the category or the identifier of the issuing means of the access control ticket indicated in the access control ticket received from said access unit and user information stored in a pubic key certificate of the issuing means of the access control ticket, and allows the data access on the condition that the ticket is successfully verified.
  - 68. A data access control method according to claim 64, wherein:
    - a category or an identifier of the access unit, which serves as using means of the access control ticket, is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket provided from authorized using means based on the category or the identifier of said access unit indicated in the access control ticket received from said access unit, and allows the data access on the condition that the ticket is successfully verified.
  - 69. A data access control method according to claim 64, wherein:
    - a category or an identifier of using means of the access control ticket is stored in the access control ticket; and
      
      said memory-loaded device verifies whether the ticket is a ticket provided by authorized using means based on a comparison between the category or the identifier of the access unit, which serves as the using means of the access control ticket, indicated in the access control ticket received from said access unit and user information stored in a public key certificate of the using means of the access control ticket, and allows the data access on the condition that the ticket is successfully verified.
  - 70. A data access control method according to claim 64, wherein:
    - the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers; and
      
      said memory-loaded device generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by partition authentication or device authentication executed during a session with said access unit, are related to each other.

71. A program storage medium for providing a computer program for performing processing on a computer system, the processing being performed, by issuing a command from an access unit to a memory-loaded device having a memory in which data can be stored, on the data stored in the memory, said computer program comprising:
- a step of receiving an access control ticket, which is configured as access control data for the data stored in the memory, from said access unit; and
  
  a step of allowing data access on the condition that authentication based on authentication rules indicated in the access control ticket is successfully conducted, and that ID data of said access unit indicted in the access control ticket is successfully verified.

72. A memory access control system for controlling memory access from an access unit to a memory-loaded device having a memory in which a plurality of data files are stored, wherein:
- the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers, and the data files are stored in any of the partitions; and
  
  said memory-loaded device receives an access control ticket from said access unit, and performs access processing on a data file according to a description in the access control ticket, and performs access processing on the plurality of data files based on a plurality of the access control tickets on the condition that device authentication as authentication for said memory-loaded device or partition authentication as authentication for the corresponding partition in which the data file to be accessed is stored is successfully conducted.
- View Dependent Claims (73, 74, 75, 76, 77, 78, 79)
- - 73. A memory access control system according to claim 72, wherein an authentication mode that can be set in each of the partitions is indicated in the access control ticket, which is configured as access control data, and said memory-loaded device receives the access control ticket from said access unit, and determines the authentication mode required for the corresponding partition according to the description in the access control ticket.
  - 74. A memory access control system according to claim 72, wherein said memory-loaded device allows file access in the plurality of different partitions based on the plurality of access control tickets on the condition that the device authentication is successfully conducted.
  - 75. A memory access control system according to claim 72, wherein said memory-loaded device allows file access in the plurality of different partitions based on the plurality of access control tickets on the condition that the partition authentications as authentication conditions which are individually set for the different partitions or the device authentication are successfully conducted.
  - 76. A memory access control system according to claim 72, wherein said memory-loaded device generates a single integrated session key based on a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the integrated session key.
  - 77. A memory access control system according to claim 72, wherein said memory-loaded device generates a single integrated session key based on a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions according to exclusive OR computation of the plurality of session keys, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the integrated session key.
  - 78. A memory access control system according to claim 72, wherein said memory-loaded device selects a single session key from a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the selected session key.
  - 79. A memory access control system according to claim 72, wherein said memory-loaded device generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by the partition authentication or the device authentication executed with said access unit, are related to each other, and retains the authentication table during a period of the session.

80. A memory-loaded device having a memory in which a plurality of data files are stored, comprising:
- control means for controlling memory access from an access unit, wherein;
  
  the memory includes one or more partitions as memory areas managed by corresponding partition managers, and the data files are stored in any of the partitions; and
  
  said control means receives an access control ticket from said access unit, and performs access processing on a data file according to a description in the access control ticket, and performs access processing on the plurality of data files based on a plurality of the access control tickets on the condition that device authentication as authentication for said memory-loaded device or partition authentication as authentication for the corresponding partition in which the data file to be accessed is stored is successfully conducted.
- View Dependent Claims (81, 82, 83, 84, 85, 86, 87)
- - 81. A memory-loaded device according to claim 80, wherein an authentication mode that can be set in each of the partitions is indicated in the access control ticket, which is configured as access control data, and said memory-loaded device receives the access control ticket from said access unit, and said control means determines the authentication mode required for the corresponding partition according to the description in the access control ticket.
  - 82. A memory-loaded device according to claim 80, wherein said control means allows file access in the plurality of different partitions based on the plurality of access control tickets on the condition that the device authentication is successfully conducted.
  - 83. A memory-loaded device according to claim 80, wherein said control means allows file access in the plurality of different partitions based on the plurality of access control tickets on the condition that the partition authentications as authentication conditions which are individually set for the different partitions or the device authentication are successfully conducted.
  - 84. A memory-loaded device according to claim 80, wherein said control means generates a single integrated session key based on a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the integrated session key.
  - 85. A memory-loaded device according to claim 80, wherein said control means generates a single integrated session key based on a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions according to exclusive OR computation of the plurality of session keys, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the integrated session key.
  - 86. A memory-loaded device according to claim 80, wherein said control means selects a single session key from a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the selected session key.
  - 87. A memory-loaded device according to claim 80, wherein said control means generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by the partition authentication or the device authentication executed with said access unit, are related to each other, and retains the authentication table during a period of the session.

88. A memory access control method for controlling memory access from an access unit to a memory-loaded device having a memory in which a plurality of data files are stored, wherein:
- the memory of said memory-loaded device includes one or more partitions as memory areas managed by corresponding partition managers, and the data files are stored in any of the partitions; and
  
  said memory-loaded device receives an access control ticket from said access unit, and performs access processing on a data file according to a description in the access control ticket, and performs access processing on the plurality of data files based on a plurality of the access control tickets on the condition that device authentication as authentication for said memory-loaded device or partition authentication as authentication for the corresponding partition in which the data file to be accessed is stored is successfully conducted.
- View Dependent Claims (89, 90, 91, 92, 94, 95)
- - 89. A memory access control method according to claim 88, wherein an authentication mode that can be set in each of the partitions is indicated in the access control ticket, which is configured as access control data, and said memory-loaded device receives the access control ticket from said access unit, and determines the authentication mode required for the corresponding partition according to the description in the access control ticket.
  - 90. A memory access control method according to claim 88, wherein said memory-loaded device allows file access in the plurality of different partitions based on the plurality of access control tickets on the condition that the device authentication is successfully conducted.
  - 91. A memory access control method according to claim 88, wherein said memory-loaded device allows file access in the plurality of different partitions based on the plurality of access control tickets on the condition that the partition authentications as authentication conditions which are individually set for the different partitions or the device authentication are successfully conducted.
  - 92. A memory access control method according to claim 88, wherein said memory-loaded device generates a single integrated session key based on a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the integrated session key.
  - 94. A memory access control method according to claim 88, wherein said memory-loaded device selects a single session key from a plurality of session keys obtained as a result of a plurality of authentication processings performed as file access conditions in the plurality of different partitions, and performs encryption processing of communication data that is to be sent or received to or from said access unit based on the selected session key.
  - 95. A memory access control method according to claim 88, wherein said memory-loaded device generates an authentication table in which public-key authentication information and a session key, or common-key authentication information and a session key, which are obtained by the partition authentication or the device authentication executed with said access unit, are related to each other, and retains the authentication table during a period of the session.

96. A program storage medium for providing a computer program for performing memory access control processing on a computer system, said memory access control processing being for controlling memory access from an access unit to a memory-loaded device having a memory in which a plurality of data files are stored, said computer program comprising:
- an authentication step of conducting device authentication as authentication for said memory-loaded device or partition authentication as authentication for a corresponding partition stored in a data file to be accessed is stored; and
  
  a step of performing access processing on the plurality of data files based on an access control ticket received from said access unit on the condition that the authentication in said authentication step is successfully conducted.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Sony Corporation (Sony Group Corp.)
Original Assignee
Sony Corporation (Sony Group Corp.)
Inventors
Takada, Masayuki, Ishibashi, Yoshihito, Yoshino, Kenji, Shirai, Taizo

Application Number

US10/275,499
Publication Number

US 20030188117A1
Time in Patent Office

Days
Field of Search
US Class Current

711/164
CPC Class Codes

G06F 21/6218 to a system of files or obj...

G06F 21/78 to assure secure storage of...

Data access management system and management method using access control tickert

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

338 Citations

96 Claims

Specification

Solutions

Use Cases

Quick Links

Data access management system and management method using access control tickert

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

338 Citations

96 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links