Secure data management apparatus

US 20050050363A1
Filed: 08/18/2004
Published: 03/03/2005
Est. Priority Date: 08/29/2003
Status: Abandoned Application

First Claim

Patent Images

1. A secure data management apparatus comprised of a secure device that executes storage and calculation of data in a confidential state, and an information processing terminal to which the secure device is attached, wherein the secure device comprises:

a card processing module that issues to the information processing terminal an application for controlling startup of an application that operates on the information processing terminal; and

a card storage device that stores data of the application, the information processing terminal comprises a storage device that stores actual data and data of a data management application that manages the actual data, and starts up the application issued by the secure device, the application initiated and the secure device mutually perform authentication, the application authenticated by the secure device starts up the data management application, the data management application initiated and the secure device mutually perform authentication, and the data management application authenticated by the secure device performs synchronization processing of the actual data with an external server.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A secure data management apparatus capable of improving reliability and certainty of synchronization processing with the server, security of data, and reliability of time, and performing data management with high reliability and high security. In the apparatus, a data management card application (301) on an IC card (102) issues MTA (Master Trusted Agent) (200) that is a terminal application operating on the terminal (101) to the terminal (101). The MTA (200) embeds authentication information in the code of the data management application (201) that is a terminal application for executing data synchronization processing with a server (103) to start up the data management application (201). Based on the authentication information, the data management card application (301) authenticates the data management application (201), and the data management application (201) stores target data of the synchronization processing in the IC card (102). Based on the target data stored in the IC card (102), the data management application (201) performs the synchronization processing with the server (103).

Citations

28 Claims

1. A secure data management apparatus comprised of a secure device that executes storage and calculation of data in a confidential state, and an information processing terminal to which the secure device is attached, wherein the secure device comprises:
- a card processing module that issues to the information processing terminal an application for controlling startup of an application that operates on the information processing terminal; and
  
  a card storage device that stores data of the application, the information processing terminal comprises a storage device that stores actual data and data of a data management application that manages the actual data, and starts up the application issued by the secure device, the application initiated and the secure device mutually perform authentication, the application authenticated by the secure device starts up the data management application, the data management application initiated and the secure device mutually perform authentication, and the data management application authenticated by the secure device performs synchronization processing of the actual data with an external server.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13)
- - 2. The secure data management apparatus according to claim 1, wherein the application or the data management application comprises a check section that checks whether the secure device is attached to the information processing terminal, and when it is confirmed that the secure device is not attached, finishes operation.
  - 3. The secure data management apparatus according to claim 1, wherein the card storage device stores the actual data and a hash value of the data management application, and the apparatus further comprises a data verification section which calculates a hash value when the actual data or the data management application is used, and compares the hash value calculated with the hash value stored in the card storage device to check tampering of the actual data or data management application, respectively.
  - 4. The secure data management apparatus according to claim 3, wherein the data management application comprises a control section that determines operation of the application, the card processing module comprises a card control section processes the data stored in the card storage device, the data verification section of the data management application calculates a hash value of actual data received from the server in synchronization processing, the control section of the data management application transmits the hash value calculated by the data verification section to the card control section, and the card control section stores the hash value transmitted from the control section in the card storage device.
  - 5. The secure data management device according to claim 1, wherein the data management application comprises an encryption section and a decoding section, the card storage device stores encryption key data, and the actual data is encrypted by the encryption section using the encryption key data stored in the card storage device to be stored in the storage device, and when being decoded, decoded by the decoding section using the encryption key data stored in the card storage device.
  - 6. The secure data management apparatus according to claim 1, wherein the card storage device stores startup application list data describing applications to start up on the information processing terminal, the data management application is described in the startup application list data, the application comprises an application operation section that performs startup processing of another application on the information processing terminal, and the application operation section refers to the startup application list data and maintains a state that the data management application is always activated.
  - 7. The secure data management apparatus according to claim 1, wherein the application comprises an application issue section that issues an application to start up on the information processing terminal, the data management application comprises a control section that determines operation of the application, the secure device comprises an authentication section, the application issue section embeds authentication information to perform authentication with the secure device in the data of the data management application stored in the storage device and starts up the data management application, and the control section of the data management application initiated performs authentication with the authentication section of the secure device.
  - 8. The secure data management apparatus according to claim 1, wherein the data management application comprises a target data determination section, a data synchronization section, a data deletion section and a control section, the card processing module comprises a card control section that processes data stored in the card storage device, the target data determination section generates or determines target data describing content of the synchronization processing of the actual data with the server, the control section transmits the target data generated or determined by the target data determination section to the card control section, the card control section stores the target data transmitted from the control section in the card storage device, the data synchronization section performs the synchronization processing of the actual data with the server based on the target data stored in the card storage device, and the data deletion section deletes the actual data stored in the storage device based on the target data stored in the card storage device.
  - 9. The secure data management apparatus according to claim 8, wherein the card storage device stores expiration date information indicative of an available limit of the actual data, and based on the expiration date information stored in the card storage device, the target data determination section sets actual data which has an expired expiration date and should be deleted to target data as data to delete.
  - 10. The secure data management apparatus according to claim 8, wherein the card storage device stores data policy data describing priorities of processing types on the actual data and priorities of data for each of the processing types, and based on the data policy data stored in the card storage device, the target data determination section generates or determines target data.
  - 11. The secure data management apparatus according to claim 8, wherein the target data includes information indicative of a processing status of each processing, the control section notifies information of a result of each processing to the card control section, and based on the information of processing result notified from the control section, the card control section updates target data stored in the card storage device.
  - 12. The secure data management apparatus according to claim 8, wherein the card storage device stores an urgent deletion flag that urges urgent deletion processing, and when the urgent deletion flag stored in the card storage device is ON, the target data determination section generates or determines target data to preferentially delete.
  - 13. The secure data management apparatus according to claim 5, wherein the data management application comprises a control section that determines operation of the application, and when an application operating on the information processing terminal requests reference of the actual data, the control section embeds date/time and/or a user ID as an electronic watermarking in actual data decoded by the decoding section, and transmits the actual data to the application.

14. A secure data management apparatus comprised of a secure device that executes storage and calculation of data in a confidential state, and an information processing terminal to which the secure device is attached, wherein the secure device comprises:
- a card processing module that issues to the information processing terminal an application for controlling startup of an application that operates on the information processing terminal; and
  
  a card storage device that stores data of the application, the application comprises;
  
  a time acquisition section that acquires current time from a server on a network, and a time count section that counts current time on the information processing terminal, the information processing terminal starts up the application issued by the secure device, the application initiated and the secure device mutually perform authentication, the time acquisition section of the application authenticated by the secure device acquires the current time from the server to set the time count section, and the time indicated by the time count section is set as the current time.
- View Dependent Claims (15, 16, 17, 18)
- - 15. The secure data management apparatus according to claim 14, wherein the application comprises a control section, the time acquisition section acquires the current time a plurality of times from the server on the network, and the control section compares elapsed time based on a difference from the current time acquired by the time acquisition section with elapsed time indicated by the time count section to judge validity of the elapsed time indicated by the time count section, and when judging that the elapsed time is improper, halts an application operating on the information processing terminal.
  - 16. The secure data management apparatus according to claim 14, wherein the secure device comprises a card time count section that counts time, the application comprises a control section, and the control section compares elapsed time indicated by the card time count section of the secure device with elapsed time indicated by the time count section of the information processing terminal to judge validity of the elapsed time indicated by the time count section of the information processing terminal, and when judging that the elapsed time is improper, halts an application operating on the information processing terminal.
  - 17. The secure data management apparatus according to claim 14, wherein the card processing module comprises a card control section that processes data stored in the card storage device, the application comprises a control section, the card control section stores current time in the card storage device when the time acquisition section of the application acquires the current time from the server on the network, and the control section compares the current time stored in the card storage device with current time indicated by the time count section of the information processing terminal, when the application is newly initiated and the time acquisition section is not able to acquire current time from the server on the network, to judge validity of the current time indicated by the time count section of the information processing terminal, and when judging that the current time is improper, halts an application operating on the information processing terminal.
  - 18. The secure data management apparatus according to claim 14, wherein the card processing module comprises a card control section that processes data stored in the card storage section, the application comprises a control section, the control section notifies the card control section of failure when the time acquisition section fails to acquire time information, the card control section stores the number of failure times in the card storage device, and when the number of failure times stored in the card control section exceeds the allowable number of times, the control section halts an application operating on the information processing terminal.

19. A secure data management apparatus comprised of a secure device that executes storage and calculation of data in a confidential state, and an information processing terminal to which the secure device is attached, wherein the secure device comprises:
- a card processing module that issues to the information processing terminal an application for controlling startup of an application that operates on the information processing terminal; and
  
  a secure storage device that stores data of the application, actual data and data of a data management application that manages the actual data, the information processing terminal starts up the application issued by the secure device, the application initiated and the secure device mutually perform authentication, the application authenticated by the secure device starts up the data management application, the data management application initiated and the secure device mutually perform authentication, and the data management application authenticated by the secure device performs synchronization processing of the actual data with an external server.
- View Dependent Claims (20, 21, 22, 23, 24, 25, 26, 27, 28)
- - 20. The secure data management apparatus according to claim 19, wherein the application or the data management application comprises a check section that checks whether the secure device is attached to the information processing terminal, and when it is confirmed that the secure device is not attached, finishes operation.
  - 21. The secure data management apparatus according to claim 19, wherein the secure storage device stores startup application list data describing applications to start up on the information processing terminal, the data management application is described in the startup application list data, the application comprises an application operation section that performs startup processing of applications except the application on the information processing terminal, and the application operation section refers to the startup application list data and maintains a state that the data management application is always activated.
  - 22. The secure data management apparatus according to claim 19, wherein the data management application comprises a control section that determines operation of the application, the secure device comprises an application issue section that issues an application to start up on the information processing terminal and an authentication section, the application issue section embeds authentication information to perform authentication with the secure device in the data of the data management application stored in the secure storage device and starts up the data management application, and the control section of the data management application initiated performs authentication with the authentication section of the secure device.
  - 23. The secure data management apparatus according to claim 19, wherein the data management application comprises a target data determination section, a data synchronization section and a control section, the card processing module comprises a data deletion section and a card control section, the target data determination section generates or determines target data describing content of the synchronization processing of the actual data with the server, the control section transmits the target data generated or determined by the target data determination section to the card control section, the card control section stores the target data transmitted from the control section in the secure storage device, the data synchronization section performs the synchronization processing of the actual data with the server based on the target data stored in the secure storage device, and the data deletion section deletes the actual data stored in the secure storage device based on the target data stored in the secure storage device.
  - 24. The secure data management apparatus according to claim 23, wherein the secure storage device stores expiration date information indicative of an available limit of the actual data, and based on the expiration date information stored in the secure storage device, the target data determination section sets actual data which has an expired expiration date and should be deleted to target data as data to delete.
  - 25. The secure data management apparatus according to claim 23, wherein the secure storage device stores data policy data describing priorities of processing types on the actual data and priorities of data for each of the processing types, and based on the data policy data stored in the secure storage device, the target data determination section generates or determines target data.
  - 26. The secure data management apparatus according to claim 23, wherein the target data includes information indicative of a processing status of each processing, the control section notifies information of a result of each processing to the card control section, and based on the information of processing result notified from the control section, the card control section updates target data stored in the secure storage device.
  - 27. The secure data management apparatus according to claim 23, wherein the secure storage device stores an urgent deletion flag that urges urgent deletion processing, and when the urgent deletion flag stored in the secure storage device is ON, the target data determination section generates or determines target data to preferentially delete.
  - 28. The secure data management apparatus according to claim 19, wherein the data management application comprises a control section that determines operation of the application, and when an application operating on the information processing terminal requests reference of the actual data, the control section embeds date/time and/or a user ID as an electronic watermarking in actual data, and transmits the actual data to the application.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Original Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Inventors
Takayama, Hisashi, Takekawa, Hiroshi, Naka, Ken

Application Number

US10/920,438
Publication Number

US 20050050363A1
Time in Patent Office

Days
Field of Search
US Class Current

726/4
CPC Class Codes

G06F 21/445   by mutual authentication, e...

G06F 21/62   Protecting access to data v...

G06F 21/725   operating on a secure refer...

G06F 2221/2137   Time limited access, e.g. t...

Secure data management apparatus

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

28 Claims

Specification

Solutions

Use Cases

Quick Links

Secure data management apparatus

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

28 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links