DATA PROCESSING APPARATUS AND PROGRAM
First Claim
1. A data processing apparatus capable of updating and writing a plurality of distributed information items generated based on to-be-held secret information with respect to a storage device in which access is not limited, comprising:
- a distributed information generation device configured to generate a plurality of distributed information items updated this time according to secret information to be held this time based on a threshold value secret distribution method,a recording position selecting device configured to select recording positions of the distributed information items updated this time to leave behind distributed information items of a number less than a threshold value among the plurality of distributed information items updated last time or leave behind none of the above distributed information items with respect to a plurality of distributed information items updated and stored in the storage device, anda distributed information writing device configured to write the distributed information items updated this time to the storage device based on the selected recording positions.
1 Assignment
0 Petitions
Accused Products
Abstract
A data processing apparatus capable of updating and writing a plurality of distributed information items generated based on to-be-held secret information with respect to a data storage device in which access is not limited includes a secret distribution processing portion which generates a plurality of distributed information items updated this time according to secret information to be held this time based on a threshold value secret distribution method, and a distributed information management portion which selects recording positions of distributed information items updated this time to leave behind distributed information items of a number less than a threshold value among a plurality of distributed information items updated last time with respect to a plurality of distributed information items updated and stored in the data storage device and writes distributed information items updated this time to the data storage device based on the selected recording positions.
-
Citations
8 Claims
-
1. A data processing apparatus capable of updating and writing a plurality of distributed information items generated based on to-be-held secret information with respect to a storage device in which access is not limited, comprising:
-
a distributed information generation device configured to generate a plurality of distributed information items updated this time according to secret information to be held this time based on a threshold value secret distribution method, a recording position selecting device configured to select recording positions of the distributed information items updated this time to leave behind distributed information items of a number less than a threshold value among the plurality of distributed information items updated last time or leave behind none of the above distributed information items with respect to a plurality of distributed information items updated and stored in the storage device, and a distributed information writing device configured to write the distributed information items updated this time to the storage device based on the selected recording positions. - View Dependent Claims (2, 3)
-
-
4. A data processing apparatus capable of updating and writing a plurality of distributed information items generated based on to-be-held secret key information with respect to a storage device in which access is not limited, comprising:
-
a file input device configured to input a file by an operation of an operator, a file key generation device configured to generate file key information according to the file, a file encrypting device configured to encrypt the file by use of the file key information and write the thus obtained encrypted file to the storage device, a key encrypting device configured to encrypt a key management file containing file addresses of the file key information and encrypted file and file addresses of different file key information and different encrypted file stored in the storage device by use of the secret key information and write the thus obtained encrypted key management file to the storage device, a distributed information generation device configured to generate a plurality of distributed information items updated this time according to secret key information to be held this time based on a threshold value secret distribution method, a recording position selecting device configured to select recording positions of the distributed information items updated this time to leave behind distributed information items of a number less than a threshold value among the plurality of distributed information items updated last time or leave behind none of the above distributed information items with respect to a plurality of distributed information items updated and stored in the storage device, a distributed information writing device configured to write the distributed information items updated this time to the storage device based on the selected recording positions, a device configured to read the distributed information items updated this time from the storage device, a key restoring device configured to restore secret key information from the read distributed information items by use of the threshold value secret distribution method, a device configured to decrypt the encrypted key management file in the storage device based on the restored secret key information to obtain a key management file, and a device configured to decrypt a corresponding encrypted file in the storage device based on corresponding file key information in the key management file and a file address input from an exterior to obtain a file.
-
-
5. A program stored in a computer-readable recording medium used for a data processing apparatus capable of updating and writing a plurality of distributed information items generated based on to-be-held secret information with respect to a storage device in which access is not limited, comprising:
-
a first program code which causes the data processing apparatus to perform a process of generating a plurality of distributed information items updated this time according to secret information to be held this time based on a threshold value secret distribution method, a second program code which causes the data processing apparatus to perform a process of selecting recording positions of the distributed information items updated this time to leave behind distributed information items of a number less than a threshold value among the plurality of distributed information items updated last time or leave behind none of the above distributed information items with respect to a plurality of distributed information items updated and stored in the storage device, and a third program code which causes the data processing apparatus to perform a process of writing the distributed information items updated this time to the storage device based on the selected recording positions. - View Dependent Claims (6, 7)
-
-
8. A program stored in a computer-readable recording medium used for a data processing apparatus capable of updating and writing a plurality of distributed information items generated based on to-be-held secret key information with respect to a storage device in which access is not limited, comprising:
-
a first program code which causes the data processing apparatus to perform a process of inputting a file by an operation of an operator, a second program code which causes the data processing apparatus to perform a process of generating file key information according to the file, a third program code which causes the data processing apparatus to perform a process of encrypting the file by use of the file key information and writing the thus obtained encrypted file to the storage device, a fourth program code which causes the data processing apparatus to perform a process of encrypting a key management file containing file addresses of the file key information and encrypted file and file addresses of different file key information and different encrypted file stored in the storage device by use of the secret key information and writing the thus obtained encrypted key management file to the storage device, a fifth program code which causes the data processing apparatus to perform a process of generating a plurality of distributed information items updated this time according to secret key information to be held this time based on a threshold value secret distribution method, a sixth program code which causes the data processing apparatus to perform a process of selecting recording positions of the distributed information items updated this time to leave behind distributed information items of a number less than a threshold value among the plurality of distributed information items updated last time or leave behind none of the above distributed information items with respect to a plurality of distributed information items updated and stored in the storage device, a seventh program code which causes the data processing apparatus to perform a process of writing the distributed information items updated this time to the storage device based on the selected recording positions, an eighth program code which causes the data processing apparatus to perform a process of reading the distributed information items updated this time from the storage device, a ninth program code which causes the data processing apparatus to perform a process of restoring secret key information from the read distributed information items based on the threshold value secret distribution method, a tenth program code which causes the data processing apparatus to perform a process of decrypting the encrypted key management file in the storage device based on the restored secret key information to obtain a key management file, and an eleventh program code which causes the data processing apparatus to perform a process of decrypting a corresponding encrypted file in the storage device based on corresponding file key information in the key management file and a file address input from an exterior to obtain a file.
-
Specification