Information management system
First Claim
1. An information management system comprising:
- a plurality of terminal apparatuses for storing data; and
an information management server for managing management information concerning the data, which is connected to the plurality of terminal apparatuses via a network, wherein the information management server includes;
a management information storage unit operable to store the management information; and
a first secure communication unit operable to establish a secure communication channel with each of the terminal apparatuses and communicate with said each terminal apparatus via the communication channel, and said each terminal apparatus includes a tamper-resistant module, wherein the tamper-resistant module includes;
a data storage unit operable to store the data securely;
an execution unit operable to securely execute processing that affects the management information on the data stored in the data storage unit; and
a second secure communication unit operable to establish a secure communication channel with the first secure communication unit and transmit a completion notification via said communication channel, said completion notification indicating that the processing that affects the management information has been executed.
6 Assignments
0 Petitions
Accused Products
Abstract
A group management server (20) in a group information management system (1) includes: a group member terminal list storage unit (25) for storing a group member terminal list (251); and a secure communication unit (21) for establishing a secure communication channel with a plurality of terminal apparatuses (60) and communicating with each of the terminal apparatuses (60) via the communication channel. Each terminal apparatus (60) includes a tamper-resistant module (68), and the tamper-resistant module (68) includes: a group information storage unit (65) for storing group information securely; a deletion unit (67) for securely executing deletion, which is processing that affects the group member terminal list (251), on the group information stored in the group information storage unit (65); and a secure communication unit (64) for establishing a secure communication channel with the secure communication unit (21) and transmitting a complete deletion notification message (M3) via the communication channel.
78 Citations
20 Claims
-
1. An information management system comprising:
-
a plurality of terminal apparatuses for storing data; and
an information management server for managing management information concerning the data, which is connected to the plurality of terminal apparatuses via a network, wherein the information management server includes;
a management information storage unit operable to store the management information; and
a first secure communication unit operable to establish a secure communication channel with each of the terminal apparatuses and communicate with said each terminal apparatus via the communication channel, and said each terminal apparatus includes a tamper-resistant module, wherein the tamper-resistant module includes;
a data storage unit operable to store the data securely;
an execution unit operable to securely execute processing that affects the management information on the data stored in the data storage unit; and
a second secure communication unit operable to establish a secure communication channel with the first secure communication unit and transmit a completion notification via said communication channel, said completion notification indicating that the processing that affects the management information has been executed. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17)
-
-
18. An information management method used for an information management system,
wherein the information management system comprises: -
a plurality of terminal apparatuses for storing data; and
an information management server for managing management information concerning the data, which is connected to the plurality of terminal apparatuses via a network, and the information management method comprises a step I executed by the information management server and a step 1I executed by a tamper-resistant module of said each terminal apparatus, wherein the step I includes a first secure communication step of establishing a secure communication channel with each of the terminal apparatuses and communicating with said each terminal apparatus via the communication channel, and the step II includes;
an execution step of securely executing processing that affects the management information on the data securely stored in the data storage unit; and
a second secure communication step of establishing a secure communication channel with the information management server and transmitting a completion notification via the communication channel, said completion notification indicating that the processing that affects the management information has been executed.
-
-
19. A terminal apparatus for storing data, which is connected via a network with an information management server for managing management information concerning the data, the apparatus comprising a tamper-resistant module,
wherein the tamper-resistant module includes: -
a data storage unit operable to store the data securely;
an execution unit operable to execute processing that affects the management information on the data stored in the data storage unit; and
a second secure communication unit operable to establish a secure communication channel with the information management server and transmit a completion notification via the communication channel, said completion notification indicating that the processing that affects the management information has been executed.
-
-
20. An information management server for managing management information, which is connected via a network with a plurality of terminal apparatuses for storing data and securely executing, on the data, processing that affects the management information concerning said data, the server comprising:
-
a management information storage unit operable to store the management information; and
a first secure communication unit operable to establish a secure communication channel with each of the terminal apparatuses and communicate with said each terminal apparatus via the communication channel, wherein the first secure communication unit receives a completion notification from said each terminal apparatus, said completion notification indicating that the processing that affects the management information has been executed.
-
Specification