Archive system, management apparatus, and control method
First Claim
1. An archive system, comprising:
- a user terminal that refers to an encrypted content from an encrypted content memory medium; and
a management apparatus that stores a decryption key for decrypting the encrypted content that is a management target, the management apparatus acquiring management information that is information of uniquely specifying the encrypted content from the user terminal and authenticating whether a process for decrypting the encrypted content specified by the management information by using the decryption key is permitted, whereinthe user terminal comprisesa computing unit that reads out the encrypted content that is an authentication target from the encrypted content memory medium that stores the encrypted content in association with the management information, assigns data forming the read encrypted content to a same hash function as that of the management apparatus, and computes a first hash value, andthe management apparatus comprisesan acquiring unit that acquires the first hash value computed by the computing unit and the management information from the user terminal;
a hash value authentication unit that reads out, from a management information memory unit that stores a second hash value that is a hash value that is previously computed by assigning data forming the encrypted content retaining its authenticity to the hash function in association with the management information, the corresponding second hash value by using the management information acquired by the acquiring unit as a retrieval key and authenticates whether the first hash value acquired by the acquiring unit and the second hash value are identical to each other; and
a decryption control unit that permits the decryption process when an authentication result performed by the hash value authentication unit is an authentication success indicating that the first hash value and the second hash value are identical to each other.
1 Assignment
0 Petitions
Accused Products
Abstract
A user terminal reads out an encrypted content that is an authentication target from an encrypted content memory medium that stores the encrypted content in association with management information, assigns data forming the read encrypted content to the same hash function as that of a management apparatus, and computes a first hash value. The management apparatus acquires the computed first hash value and management information from the user terminal, reads out, from a management information memory unit that stores a second hash value that is a hash value previously computed by assigning data forming the encrypted content retaining its authenticity to the hash function in association with the management information, the corresponding second hash value by using the acquired management information as a retrieval key, authenticates whether the acquired first hash value and the second hash value are identical to each other, and permits a decryption process when the authentication result is an authentication success indicating that the first hash value and the second hash value are identical to each other.
10 Citations
20 Claims
-
1. An archive system, comprising:
-
a user terminal that refers to an encrypted content from an encrypted content memory medium; and a management apparatus that stores a decryption key for decrypting the encrypted content that is a management target, the management apparatus acquiring management information that is information of uniquely specifying the encrypted content from the user terminal and authenticating whether a process for decrypting the encrypted content specified by the management information by using the decryption key is permitted, wherein the user terminal comprises a computing unit that reads out the encrypted content that is an authentication target from the encrypted content memory medium that stores the encrypted content in association with the management information, assigns data forming the read encrypted content to a same hash function as that of the management apparatus, and computes a first hash value, and the management apparatus comprises an acquiring unit that acquires the first hash value computed by the computing unit and the management information from the user terminal; a hash value authentication unit that reads out, from a management information memory unit that stores a second hash value that is a hash value that is previously computed by assigning data forming the encrypted content retaining its authenticity to the hash function in association with the management information, the corresponding second hash value by using the management information acquired by the acquiring unit as a retrieval key and authenticates whether the first hash value acquired by the acquiring unit and the second hash value are identical to each other; and a decryption control unit that permits the decryption process when an authentication result performed by the hash value authentication unit is an authentication success indicating that the first hash value and the second hash value are identical to each other. - View Dependent Claims (2, 3, 4, 5)
-
-
6. A computer readable storage medium having stored therein an archive system control program for controlling an archive system that comprises a user terminal that refers to an encrypted content from an encrypted content memory medium and a management apparatus that stores a decryption key for decrypting the encrypted content that is a management target, the management apparatus acquiring management information that is information of uniquely specifying the encrypted content from the user terminal and authenticating whether a process for decrypting the encrypted content specified by the management information by using the decryption key is permitted, the archive system control program causing a computer serving as the user terminal to execute a process comprising:
-
reading out the encrypted content that is an authentication target from the encrypted content memory medium that stores the encrypted content in association with the management information; and computing a first hash value by assigning data forming the read encrypted content to a same hash function as that of the management apparatus, the archive system control program causing a computer serving as the management apparatus to execute a process comprising; acquiring the first hash value computed at the computing and the management information from the user terminal; reading out, from a management information memory unit that stores a second hash value that is a hash value that is previously computed by assigning data forming the encrypted content retaining its authenticity to the hash function in association with the management information, the corresponding second hash value by using the management information acquired at the acquiring as a retrieval key; authenticating whether the first hash value acquired at the acquiring and the second hash value are identical to each other; and permitting the decryption process when an authentication result performed at the authenticating is an authentication success indicating that the first hash value and the second hash value are identical to each other. - View Dependent Claims (7, 8, 9, 10)
-
-
11. A management apparatus that stores a decryption key for decrypting an encrypted content that is a management target, acquires management information that is information of uniquely specifying the encrypted content from a user terminal that refers to a content that is encrypted from an encrypted content memory medium, and authenticates whether a process for decrypting the encrypted content specified by the management information by using the decryption key is permitted, the management apparatus comprising:
-
an acquiring unit that acquires a first hash value computed by a computing unit and the management information from the user terminal; a hash value authentication unit that reads out, from a management information memory unit that stores a second hash value that is a hash value that is previously computed by assigning data forming the encrypted content retaining its authenticity to a hash function in association with the management information, the corresponding second hash value by using the management information acquired by the acquiring unit as a retrieval key and authenticates whether the first hash value acquired by the acquiring unit and the second hash value are identical to each other; and a decryption control unit that permits the decryption process when an authentication result performed by the hash value authentication unit is an authentication success indicating that the first hash value and the second hash value are identical to each other. - View Dependent Claims (12, 13, 14, 15)
-
-
16. A controlling method performed in an archive system that includes a user terminal that refers to an encrypted content from an encrypted content memory medium, and a management apparatus that stores a decryption key for decrypting the encrypted content that is a management target, the management apparatus acquiring management information that is information of uniquely specifying the encrypted content from the user terminal and authenticating whether a process for decrypting the encrypted content specified by the management information by using the decryption key is permitted, the controlling method comprising:
-
in the user terminal, reading out the encrypted content that is an authentication target from the encrypted content memory medium that stores the encrypted content in association with the management information, computing a first hash value by assigning data forming the read encrypted content to a same hash function as that of the management apparatus, and in the management apparatus, acquiring the first hash value computed at the computing and the management information from the user terminal; reading out, from a management information memory unit that stores a second hash value that is a hash value that is previously computed by assigning data forming the encrypted content retaining its authenticity to the hash function in association with the management information, the corresponding second hash value by using the management information acquired at the acquiring as a retrieval key; authenticating whether the first hash value acquired at the acquiring and the second hash value are identical to each other; and permitting the decryption process when an authentication result performed at the authenticating is an authentication success indicating that the first hash value and the second hash value are identical to each other. - View Dependent Claims (17, 18, 19, 20)
-
Specification