Distribution information management system and method
First Claim
1. A distribution information management system, comprising:
- a data carrier attached to an article that stores information relative to the article, the data carrier being an electronic tag;
a distribution information processing module that reads information from and stores information to the data carrier, anda distribution information management module that the distribution information processing module communicates with via first and second communication parts, the distribution information management module managing information relative to distribution of the article,the distribution information processing module comprising;
a reading part that reads out the information of the data carrier;
a storing part that stores the information in the data carrier;
a first information verification unit that verifies the information read out from the data carrier;
an information generating unit that processes the information to be stored in the data carrier, wherein the information includes at least a signer identifier that is a receiver identifier of last information stored in the data carrier; and
a first communication part that communicates with the distribution information management module,the first information verification unit comprising;
a first information verification part that verifies the information read out from the data carrier by a verification key; and
a first verification key storage part that stores the verification key used by the first information verification part for verification of the information, andthe information generating unit comprising;
a distribution information generating part that generates the information to be stored in the data carrier;
a signature module that performs signature generating process;
a signature key information storage part that stores the signature key information used by the signature module for generating a digital signature;
a signature key information selection part that selects a signature key information stored in the signature key storage part; and
a signature key information acquisition part that acquires the signature key information from the distribution information management module,the signature module comprising;
a signature part that generates the digital signature for the information generated by the distribution information generating part;
a first signer private information storage part that stores signer private information used by the signature part for generating the digital signature; and
a signature key use limit information storage part that stores a signer key use limit information to indicate whether the signature key information is already used, and the distribution information management module comprising;
a second communication part that communicates with the distribution information processing module;
a second information verification unit that processes the information received from the distribution information processing module; and
a signature key information generating unit that processes the signature key information to be sent to the distribution information processing module;
the second information verification unit comprising;
a second information verification part that verifies the information received from the distribution information processing module; and
a second verification key storage part that stores the verification key used by the second information verification part for verification of the information, the signature key information generating unit comprising;
a signature key information generating part that generates a signature key information used by the distribution information processing module for generating a distribution information;
a signature key storage part that stores the signature key used by the signature key information generating part for generating signature key information;
a signer private information selection part that selects signer private information used by the signature key information generating part for generating signature key information; and
a second signer private information storage part that stores the signer private information,wherein the information generating unit has a signature key use limit information storage part that limits a specified number of times for signatures performed using the signature key, the signature key information selection part does not select signature key information used more than a specified number of times for signature.
1 Assignment
0 Petitions
Accused Products
Abstract
Distributors can verify a signature without acquisition of a certificate for each signer from the certificate authority. A signature part calculates a hash value of distribution information and sets it to a variable h (step S412). Signer private information is taken out from a first signer private information storage part and set to the variable d (step S413). A signature key information selection part takes out signature key information corresponding to a product identifier pid from a signature key information storage part and sets it to the variable t, n (step S414). A signature part calculates a first signature value to the variable h by use of signer private information d and sets it to the variable r1 (step S415). A distribution information generating part calculates a second signature value to the variable h by use of a signature key information t according to the variable h (step S416). A signature value to the final variable h is calculated by use of the results r1 and r2.
-
Citations
20 Claims
-
1. A distribution information management system, comprising:
-
a data carrier attached to an article that stores information relative to the article, the data carrier being an electronic tag; a distribution information processing module that reads information from and stores information to the data carrier, and a distribution information management module that the distribution information processing module communicates with via first and second communication parts, the distribution information management module managing information relative to distribution of the article, the distribution information processing module comprising; a reading part that reads out the information of the data carrier; a storing part that stores the information in the data carrier; a first information verification unit that verifies the information read out from the data carrier; an information generating unit that processes the information to be stored in the data carrier, wherein the information includes at least a signer identifier that is a receiver identifier of last information stored in the data carrier; and a first communication part that communicates with the distribution information management module, the first information verification unit comprising; a first information verification part that verifies the information read out from the data carrier by a verification key; and a first verification key storage part that stores the verification key used by the first information verification part for verification of the information, and the information generating unit comprising; a distribution information generating part that generates the information to be stored in the data carrier; a signature module that performs signature generating process; a signature key information storage part that stores the signature key information used by the signature module for generating a digital signature; a signature key information selection part that selects a signature key information stored in the signature key storage part; and a signature key information acquisition part that acquires the signature key information from the distribution information management module, the signature module comprising; a signature part that generates the digital signature for the information generated by the distribution information generating part; a first signer private information storage part that stores signer private information used by the signature part for generating the digital signature; and a signature key use limit information storage part that stores a signer key use limit information to indicate whether the signature key information is already used, and the distribution information management module comprising; a second communication part that communicates with the distribution information processing module; a second information verification unit that processes the information received from the distribution information processing module; and a signature key information generating unit that processes the signature key information to be sent to the distribution information processing module; the second information verification unit comprising; a second information verification part that verifies the information received from the distribution information processing module; and a second verification key storage part that stores the verification key used by the second information verification part for verification of the information, the signature key information generating unit comprising; a signature key information generating part that generates a signature key information used by the distribution information processing module for generating a distribution information; a signature key storage part that stores the signature key used by the signature key information generating part for generating signature key information; a signer private information selection part that selects signer private information used by the signature key information generating part for generating signature key information; and a second signer private information storage part that stores the signer private information, wherein the information generating unit has a signature key use limit information storage part that limits a specified number of times for signatures performed using the signature key, the signature key information selection part does not select signature key information used more than a specified number of times for signature. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16)
-
-
17. A distribution information processing module, comprising:
-
a reading part that reads out information of a data carrier, the data carrier being an electronic tag attached to an article that stores information relative to the article; a storing part that stores information in the data carrier; a first information verification unit that verifies the information read out from the data carrier; an information generating unit that processes the information to be stored in the data carrier, wherein the information includes at least a signer identifier that is a receiver identifier of last information stored in the data carrier; and a communication part that communicates with a distribution information management module information relative to the article processed by the distributed information processing module for the distribution information management module to manage information relative to distribution of the article, the first information verification unit comprising; a first information verification part that verifies the information read out from the data carrier by a verification key; and a first verification key storage part that stores the verification key used by the first information verification part for verification of the information, and the information generating unit comprising; a distribution information generating part that generates the information to be stored in the data carrier; a signature module that performs signature generating process; a signature key storage part that stores the signature key information used by the signature module for generating a digital signature; a signature key information selection part that selects signature key information stored in the signature key storage part; and a signature key information acquisition part that acquires the signature key information from the distribution information management module, the signature module comprising; a signature part that generates the digital signature for the information generated by the distribution information generating part; a first signer private information storage part that stores signer private information used by the signature part for generating the digital signature; and a signature key use limit information storage part that stores a signer key use limit information to indicate whether the signature key information is already used, wherein the information generating unit has a signature key use limit information storage part that limits a specified number of times for signatures performed using the signature key, the signature key information selection part does not select signature key information used more than a specified number of times for signature.
-
-
18. A computer program product recorded on a computer-readable medium for distribution information processing, wherein a computer executes a process comprising:
-
a reading step for reading out information of a data carrier, the data carrier being an electronic tag attached to an article that stores information relative to the article, a storing step for storing information in the data carrier; a first information verification step for verifying the information read out from the data carrier; an information generating step for processing the information to be stored in the data carrier; and a communicating step for communicating with a distribution information management module, the first information verification step comprises; a first information verification sub-step for verifying the information read out from the data carrier; and a first verification key storage sub-step for storing the verification key used in the first information verification sub-step for verification of the information, and the information generating step comprises; a distribution information generating sub-step for generating the information to be stored in the data carrier, wherein the information includes at least a signer identifier that is a receiver identifier of last information stored in the data carrier; a signature sub-step for performing signature generating process; a signature key storage step for storing the signature key information used in the signature sub-step for generating a digital signature; a signature key information selection step for selecting a signature key information stored in the signature key storage sub-step; and a signature key information acquisition sub-step for acquiring the signature key information from the distribution information management module, the signature sub-step comprises; a signature micro-step for generating the digital signature for the information generated by the distribution information generating module in response to a signer key use limit information indicating that the signature key information is not already used; and a first signer private information storage micro-step for storing signer private information used in the signature micro-step for generating the digital signature, wherein the information generating step has a signature key use limit information storage step that limits a specified number of times for signatures performed using the signature key, the signature key information selection step does not select signature key information used more than a specified number of times for signature.
-
-
19. A distribution information management system having a distribution information processing module, the distribution information processing module comprising:
-
a reading part that reads out information of a data carrier, the data carrier being an electronic tag attached to an article that stores information relative to the article, a storing part that stores information in the data carrier; a first information verification unit that verifies the information read out from the data carrier; an information generating unit that processes the information to be stored in the data carrier; and a first communication part that communicates with the distribution information management module, the first information verification unit comprising; an information verification part that verifies the information read out from the data carrier by a verification key; and a verification key storage part that stores the verification key used by the first information verification part for verification of the information, and the information generating unit comprising; a distribution information generating part that generates the information to be stored in the data carrier, wherein the information includes at least a signer identifier that is a receiver identifier of last information stored in the data carrier; a signature module that performs signature generating process; a signature key storage part that stores the signature key information used by the signature module for generating a digital signature; a signature key information selection part that selects signature key information stored in the signature key storage part; and a signature key information acquisition part that acquires the signature key information from the distribution information management module, the signature module comprising; a signature part that generates the digital signature for the information generated by the distribution information generating part; a first signer private information storage part that stores a signer private information used by the signature part for generating the digital signature; and a signature key use limit information storage part that stores a signer key use limit information to indicate whether the signature key information is already used, and the distribution information management module comprising; a second communication part that communicates with the distribution information processing module; and a signature key information generating unit that processes the signature key information to be sent to the distribution information processing module, the signature key information generating unit comprising; a signature key information generating part that generates signature key information used by the distribution information processing module for generating distribution information; a signature key storage part that stores the signature key used by the signature key information generating part for generating signature key information; a signer private information selection part that selects a signer private information used by the signature key information generating part for generating signature key information; and a second signer private information storage part that stores the signer private information, wherein the information generating unit has a signature key use limit information storage part that limits a specified number of times for signatures performed using the signature key, the signature key information selection part does not select signature key information used more than a specified number of times for signature.
-
-
20. A distribution information management system having a distribution information module, the distribution information processing module comprising:
-
a storing part that stores information in the data carrier, the data carrier being an electronic tag attached to an article that stores information relative to the article, an information generating unit that processes the information to be stored in the data carrier; and a first communication part that communicates with the distribution information management module, and the information generating unit comprising; a distribution information generating part that generates the information to be stored in the data carrier, wherein the information includes at least a signer identifier that is a receiver identifier of last information stored in the data carrier; a signature module that performs signature generating process; a signature key storage part that stores the signature key information used by the signature module for generating a digital signature; a signature key information selection part that elects signature key information stored in the signature key storage part; and a signature key information acquisition part that acquires the signature key information from the distribution information management module, the signature module comprising; a signature part that generates the digital signature for the information generated by the distribution information generating part; a first signer private information storage part that stores signer private information used by the signature part for generating the digital signature; and a signature key use limit information storage part that stores a signer key use limit information to indicate whether the signature key information is already used, and the distribution information management module comprising; a second communication part that communicates with the distribution information processing module; an information verification unit that processes the information received from the distribution information processing module; and a signature key information generating unit that processes the signature key information to be sent to the distribution information processing module; the information verification unit comprising; an information verification part that verifies the information received from the distribution information processing module; and a verification key storage part that stores the verification key used by the information verification part for verification of the information, the signature key information generating unit comprising; a signature key information generating part that generates signature key information used by the distribution information processing module for generating distribution information; a signature key storage part that stores the signature key used by the signature key information generating part for generating a signature key information, a signer private information selection part that selects signer private information used by the signature key information generating part for generating signature key information; and a second signer private information storage part that stores the signer private information, wherein the information generating unit has a signature key use limit information storage part that limits a specified number of times for signatures performed using the signature key, the signature key information selection part does not select signature key information used more than a specified number of times for signature.
-
Specification