Network device, network system and group management method
First Claim
1. A network device that communicates with other network devices connected through a network, wherein:
- said network device comprising;
a group management means, which manages a group consisting of network devices that can authenticate one another;
a cipher communication means, which performs cipher communication with the network devices belonging to said group, using a common encryption key;
a storage means, which stores cipher communication information required for cipher communication with the network devices belonging to said network, with said information including information of said encryption key and identification information including host names and addresses of the network devices belonging to said group; and
an acquisition means, which acquires information from outside; and
when said acquisition means acquires said cipher communication information in a state that said storing means does not store said cipher communication information, said group management means stores said cipher communication information in said storing means and sends identification information of its own network device to the network devices belonging to said group; and
when said group management means acquires identification information of another network device from said another network device through said cipher communication means, said group management means adds said identification information to said cipher communication information stored in said storage means.
1 Assignment
0 Petitions
Accused Products
Abstract
A group is formed from appliances permitted by a user, to realize safe communication between appliances joining to the group. A group management processing unit 302 generates an encryption key used for cipher communication within the group, and stores the encryption key together with information required for cipher communication into its own storage unit and into a storage medium. An appliance that acquires the information required for cipher communication, by means of the storage medium, uses the information to send information on the appliance itself and the information required for cipher communication to the other appliances. When an appliance is to leave the group, the appliance deletes the information required for cipher communication, which the appliance itself holds, and notifies its leave to the other appliances, so that those appliances delete information on the leave appliance, which is held in those appliances.
-
Citations
18 Claims
-
1. A network device that communicates with other network devices connected through a network, wherein:
-
said network device comprising;
a group management means, which manages a group consisting of network devices that can authenticate one another;
a cipher communication means, which performs cipher communication with the network devices belonging to said group, using a common encryption key;
a storage means, which stores cipher communication information required for cipher communication with the network devices belonging to said network, with said information including information of said encryption key and identification information including host names and addresses of the network devices belonging to said group; and
an acquisition means, which acquires information from outside; and
when said acquisition means acquires said cipher communication information in a state that said storing means does not store said cipher communication information, said group management means stores said cipher communication information in said storing means and sends identification information of its own network device to the network devices belonging to said group; and
when said group management means acquires identification information of another network device from said another network device through said cipher communication means, said group management means adds said identification information to said cipher communication information stored in said storage means. - View Dependent Claims (2, 3, 4, 5, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18)
-
-
6. A group management method for managing a group consisting of devices connected through a network, with a device of the group being able to perform cipher communication with another device of the group while authenticating each other, comprising:
-
a group generation step, in which one device connected to said network generates an encryption key used for said cipher communication, and holds, as cipher communication information, said encryption key and identification information including a host name and address of said one device itself;
a first group participation step, in which a device that acquires said cipher communication information notifies identification information of the device itself and information indicating participation of the device itself to all devices whose identification information is stored in said cipher communication information, and said device adds said identification information of the device itself to said cipher communication information and holds said cipher communication information;
a second group participation step, in which a device that receives said identification information and said information indicating the participation adds said identification information to the cipher communication information that said device holds;
a first withdrawal step, in which a device that receives an instruction to withdraw from said group notifies information indicating withdrawal and identification information of the device itself to all devices excluding said device itself whose identification information is stored in said cipher communication information, and deletes the cipher communication information that the device itself holds; and
a second withdrawal step, in which a device that receives the notification of said withdrawal deletes the notified identification information from the cipher communication information that the device itself holds.
-
-
7. A program that makes a computer function as:
-
a group generation means that generates an encryption key used for cipher communication and holds, as cipher communication information, said encryption key and identification including a host name and address of the computer itself;
a first group participation means that notifies identification information and information indicating participation of the computer itself to all devices whose identification information is stored in said cipher communication information, through cipher communication, and adds the identification information of the computer itself to said cipher communication information, when said cipher communication information is acquired;
a second group participation means that adds said identification information of another device to the cipher communication information that the computer itself holds, when said identification information of said another device and information indicating participation of said another device are received from said another device;
a first group withdrawal means that notifies information indicating withdrawal and identification information of the computer-itself to all devices excluding the computer itself whose identification information is stored in the cipher communication, through the cipher communication, and deletes said cipher communication information that the computer itself holds, when an instruction to delete the cipher communication information is received; and
a second group withdrawal means that deletes identification information of another device from the cipher communication information that the computer itself holds, when said identification information of said another device and information indicating withdrawal of said another device are received.
-
Specification