Reception terminal, key management apparatus, and key updating method for public key cryptosystem

US 7,206,412 B2
Filed: 04/11/2002
Issued: 04/17/2007
Est. Priority Date: 04/12/2001
Status: Active Grant

First Claim

Patent Images

1. A method, for use in a data distribution system having a key management center, a distribution station, and a plurality of reception terminals, for updating a plurality of pairs of a distribution public key and a distribution secret key conforming to a public key cryptosystem and being prepared for the plurality of reception terminals, respectively and uniquely, the distribution public key being used to encrypt data to be distributed to a corresponding reception terminal, and the distribution secret key being used by a corresponding reception terminal to decrypt encrypted data distributed thereto, said method comprising:

an update secret key acquiring operation in which each reception terminal acquires a corresponding update secret key prior to a data distribution, wherein a plurality of update secret keys acquired by the plurality of reception terminals are different from each other and are respectively unique to the plurality of reception terminals;

an update public key acquiring operation in which the key management center acquires a plurality of update public keys that make pairs with the update secret keys, respectively, prior to the data distribution, wherein the plurality of update public keys acquired by the key management center are different from each other and are respectively unique to the plurality of reception terminals;

a key generating operation in which the key management center generates a plurality of new pairs of a distribution public key and a distribution secret key for the plurality of reception terminals, respectively, wherein the plurality of distribution public keys generated by the key management center are different from each other and are respectively unique to the plurality of reception terminals, and the plurality of distribution secret keys generated by the key management center are different from each other and are respectively unique to the plurality of reception terminals;

an encrypting operation in which the key management center generates encrypted secret keys for the plurality of reception terminals by encrypting the new distribution secret keys by using the update public keys for the plurality of reception terminals, respectively;

a sending operation in which the key management center sends the encrypted secret keys to the corresponding reception terminals all at once;

a distribution public key updating operation in which, after said sending operation, the key management center updates the distribution public keys having been used so far by the distribution station in data distributions to the new distribution public keys;

a reception operation in which each reception terminal receives a corresponding encrypted secret key;

a distribution secret key updating operation in which each reception terminal restores the corresponding new distribution secret key by decrypting the encrypted secret key, by using the corresponding update secret key, and updates the distribution secret key having been used so far to the restored new distribution secret key;

a contents key encryption operation in which the distribution station generates encrypted contents keys corresponding respectively to each of the plurality of reception terminals by encrypting a contents key conforming to a secret key cryptosystem, by using the distribution public keys corresponding respectively to each of the plurality of reception terminals, and generates encrypted content by encrypting a content by using the contents key;

a contents distribution operation in which the distribution station distributes (a) all the generated encrypted contents keys, and (b) the encrypted content to each of the plurality of reception terminals; and

a contents restoring operation in which each reception terminal restores the contents key by decrypting a corresponding encrypted contents key among the distributed encrypted contents keys by using the corresponding distribution secret key, and restores the content by decrypting the encrypted content by using the restored contents key.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A method for use in a distribution system having a key management center, a distribution station and a reception terminal. The method updates a pair of distribution keys unique to the reception terminal, where the distribution public key is used to encrypt distribution data, and the distribution secret key is used to decrypt encrypted data. In the key updating method, the reception terminal acquires an update secret key prior to data distribution, and the key management center acquires an update public key making a pair with the update secret key, generates a new pair of distribution keys, encrypts a new distribution secret key by using the update public key, transmits an encrypted secret key to the reception terminal and updates to the new distribution public key. The reception terminal receives the encrypted secret key and restores the new distribution secret key by decrypting it using the update secret key and updates to the new distribution secret key.

15 Citations

View as Search Results

17 Claims

1. A method, for use in a data distribution system having a key management center, a distribution station, and a plurality of reception terminals, for updating a plurality of pairs of a distribution public key and a distribution secret key conforming to a public key cryptosystem and being prepared for the plurality of reception terminals, respectively and uniquely, the distribution public key being used to encrypt data to be distributed to a corresponding reception terminal, and the distribution secret key being used by a corresponding reception terminal to decrypt encrypted data distributed thereto, said method comprising:
- an update secret key acquiring operation in which each reception terminal acquires a corresponding update secret key prior to a data distribution, wherein a plurality of update secret keys acquired by the plurality of reception terminals are different from each other and are respectively unique to the plurality of reception terminals;
  
  an update public key acquiring operation in which the key management center acquires a plurality of update public keys that make pairs with the update secret keys, respectively, prior to the data distribution, wherein the plurality of update public keys acquired by the key management center are different from each other and are respectively unique to the plurality of reception terminals;
  
  a key generating operation in which the key management center generates a plurality of new pairs of a distribution public key and a distribution secret key for the plurality of reception terminals, respectively, wherein the plurality of distribution public keys generated by the key management center are different from each other and are respectively unique to the plurality of reception terminals, and the plurality of distribution secret keys generated by the key management center are different from each other and are respectively unique to the plurality of reception terminals;
  
  an encrypting operation in which the key management center generates encrypted secret keys for the plurality of reception terminals by encrypting the new distribution secret keys by using the update public keys for the plurality of reception terminals, respectively;
  
  a sending operation in which the key management center sends the encrypted secret keys to the corresponding reception terminals all at once;
  
  a distribution public key updating operation in which, after said sending operation, the key management center updates the distribution public keys having been used so far by the distribution station in data distributions to the new distribution public keys;
  
  a reception operation in which each reception terminal receives a corresponding encrypted secret key;
  
  a distribution secret key updating operation in which each reception terminal restores the corresponding new distribution secret key by decrypting the encrypted secret key, by using the corresponding update secret key, and updates the distribution secret key having been used so far to the restored new distribution secret key;
  
  a contents key encryption operation in which the distribution station generates encrypted contents keys corresponding respectively to each of the plurality of reception terminals by encrypting a contents key conforming to a secret key cryptosystem, by using the distribution public keys corresponding respectively to each of the plurality of reception terminals, and generates encrypted content by encrypting a content by using the contents key;
  
  a contents distribution operation in which the distribution station distributes (a) all the generated encrypted contents keys, and (b) the encrypted content to each of the plurality of reception terminals; and
  
  a contents restoring operation in which each reception terminal restores the contents key by decrypting a corresponding encrypted contents key among the distributed encrypted contents keys by using the corresponding distribution secret key, and restores the content by decrypting the encrypted content by using the restored contents key.
- View Dependent Claims (2, 3, 4, 5, 15)
- - 2. The key updating method of claim 1, wherein:
    - in said encrypting operation, the key management center further places a digital signature on each encrypted secret key as a certification of the encrypted secret key;
      
      before said distribution secret key updating operation, each reception terminal checks the digital signature placed on the corresponding encrypted secret key and judges, based on the digital signature, whether or not the corresponding encrypted secret key has the certification of the encrypted secret key;
      
      each reception terminal updates to the new distribution secret key if the corresponding encrypted key is judged to have the certification; and
      
      each reception terminal does not update to the new distribution secret key if the corresponding encrypted key is judged to not have the certification.
  - 3. The key updating method of claim 1, further comprising:
    - a terminal detecting operation in which the distribution station physically detects a reception terminal for which data distribution should be stopped; and
      
      a distribution preventing operation in which, when a reception terminal for which data distribution should be stopped is detected in said terminal detecting operation, the distribution station prevents data distribution to the detected reception terminal.
  - 4. The key updating method of claim 1, further comprising a terminal detecting operation in which the distribution station physically detects a reception terminal for which a distribution secret key should be updated, wherein:
    - in said key generating operation, the key management center generates a new pair of a distribution public key and a distribution secret key for the reception terminal detected in said terminal detecting operation;
      
      in said encrypting operation, the key management center generates an encrypted secret key for the detected reception terminal by encrypting the new distribution secret key generated for the detected reception terminal, by using the update public key unique to the detected reception terminal;
      
      in said sending operation, the key management center transmits the encrypted secret key for the detected reception terminal to the detected reception terminal;
      
      in said distribution public key updating operation, after said sending operation, the key management center updates the distribution public key having been used so far by the distribution station in data distributions to the detected reception terminal, to the new distribution public key; and
      
      in said distribution secret key updating operation, the detected reception terminal restores the new distribution secret key by decrypting the encrypted secret key by using the update secret key, and updates the distribution secret key having been used so far to the restored new distribution secret key.
  - 5. The key updating method of claim 1, wherein:
    - each reception terminal has a portable IC card on which an encrypted secret key unique to each reception terminal is recorded, and each reception terminal restores a distribution secret key by decrypting the encrypted secret key recorded on the IC card, and decrypts distributed encrypted data by using the restored distribution secret key;
      
      in said sending operation, the key management center records the encrypted secret key generated in said encrypting operation onto a new IC card, and sends the new IC card to each reception terminal for use;
      
      each reception terminal receives the new IC card in said reception operation; and
      
      in said distribution secret key updating operation, each reception terminal updates to the new distribution secret key by replacing the IC card having been used so far with the new IC card.
  - 15. The key updating method of claim 1, wherein each of the reception terminals is a DVD player, and the distribution station records all the generated encrypted contents keys and a corresponding encrypted content onto an optical disc.

6. A reception terminal for receiving distributed encrypted content, said reception terminal having a distribution secret key unique to said reception terminal, said reception terminal comprising:
- an update secret key acquiring unit for acquiring an update secret key prior to a data distribution, the update secret key acquired by said update secret key acquiring unit being unique to said reception terminal;
  
  a holding unit for holding an encrypted secret key which is generated by encrypting the distribution secret key unique to said reception terminal, by using an update public key that is unique to said reception terminal and that makes a pair with the update secret key;
  
  a distribution secret key restoring unit for restoring the distribution secret key unique to said reception terminal by decrypting the encrypted secret key held by said holding unit, by using the update secret key acquired by said update secret key acquiring unit;
  
  a reception unit for receiving (a) an encrypted contents key generated by encrypting a contents key by using a distribution public key unique to said reception terminal, and (b) an encrypted content generated by encrypting a content by using the contents key; and
  
  a data restoring unit for restoring the contents key by decrypting the encrypted contents key by using the distribution secret key unique to said reception terminal, and for restoring the content by decrypting the encrypted content by using the restored contents key.
- View Dependent Claims (7, 8, 9, 16)
- - 7. The reception terminal of claim 6, further comprising:
    - a new key receiving unit for receiving a new encrypted secret key from a key management center, the new encrypted secret key being generated by the key management center by encrypting a distribution secret key by using the update public key, the distribution secret key making a pair with a distribution public key, the pair being generated by the key management center and conforming to a public key cryptosystem; and
      
      a secret key updating unit for updating the encrypted secret key held by said holding unit to the new encrypted secret key.
  - 8. The reception terminal of claim 7, wherein:
    - the new encrypted secret key received by said new key receiving unit has a digital signature as a certification of the new encrypted secret key; and
      
      after said secret key updating unit updates to the new encrypted secret key, said distribution secret key restoring unit is operable tocheck the digital signature placed on the new encrypted secret key and judge whether or not the new encrypted secret key has the certification of the new encrypted secret key,restore another distribution secret key by decrypting the new encrypted secret key if the new encrypted secret key is judged to have the certification, andnot restore another distribution secret key if the new encrypted secret key is not judged to have the certification.
  - 9. The reception terminal of claim 7, wherein:
    - said holding unit is an IC card;
      
      said new key receiving unit is operable to receive a new IC card on which the new encrypted secret key is recorded; and
      
      said secret key updating unit is operable to update to the new encrypted secret key by replacing the IC card having been used so far with the new IC card.
  - 16. The reception terminal of claim 6, further configured to serve as a DVD player, wherein said reception unit is operable to receive the encrypted contents key and the encrypted content recorded on an optical disc.

10. A key management apparatus comprising:
- an update public key acquiring unit for acquiring, prior to a data distribution, a plurality of update public keys that are different from each other and are respectively unique to a plurality of reception terminals;
  
  a key generating unit for generating a plurality of pairs of a distribution public key and a distribution secret key for the plurality of terminals, respectively, wherein the plurality of distribution public keys generated by said key generating unit are different from each other and are respectively unique to the plurality of reception terminals, and the plurality of distribution secret keys generated by said key generating unit are different from each other and are respectively unique to the plurality of reception terminals such that each pair of the distribution public key and distribution secret key generated for each of the plurality of reception terminals is respectively unique to the plurality of reception terminals;
  
  an encrypting unit for generating encrypted secret keys for the plurality of reception terminals by encrypting the distribution secret keys by using the update public keys for the plurality of reception terminals, respectively;
  
  a sending unit for sending the encrypted secret keys to the corresponding reception terminals all at once;
  
  a distribution public key updating unit for updating, after said sending unit sends the encrypted secret keys to the corresponding reception terminals, the distribution public keys having been used so far to the new distribution public keys for the respective reception terminals;
  
  a distribution data generating unit for generating a plurality of encrypted contents keys for the plurality of reception terminals, respectively, by encrypting a contents key by using the distribution public keys for the plurality of reception terminals, and for generating encrypted content by encrypting a content by using the contents key; and
  
  a distribution unit for distributing (a) all the generated encrypted contents keys, and (b) the encrypted content to each of the plurality of reception terminals.
- View Dependent Claims (11, 12, 13, 14, 17)
- - 11. The key management apparatus of claim 10, wherein said encrypting unit is further operable to place a digital signature on the encrypted secret key as a certification of the encrypted secret key.
  - 12. The key management apparatus of claim 10, further comprising:
    - a terminal detecting unit for detecting a reception terminal for which data distribution should be stopped; and
      
      a distribution preventing unit for, when a reception terminal for which a data distribution should be stopped is detected by said terminal detecting unit, preventing the data distribution to the detected reception terminal.
  - 13. The key management apparatus of claim 10, further comprising a terminal detecting unit for detecting a reception terminal for which a distribution secret key should be updated, wherein:
    - said key generating unit is operable to generate a new pair of a distribution public key and a distribution secret key for the reception terminal detected by said terminal detecting unit;
      
      said encrypting unit is operable to generate an encrypted secret key for the detected reception terminal by encrypting the new distribution secret key generated for the detected reception terminal, by using the update public key unique to the detected reception terminal;
      
      said sending unit is operable to send the encrypted secret key for the detected reception terminal to the detected reception terminal;
      
      said distribution public key updating unit, after said sending unit sends the encrypted secret key to the detected reception terminal, is operable to update the distribution public key having been used so far to the new distribution public key, for the detected reception terminal.
  - 14. The key management apparatus of claim 10, wherein:
    - each reception terminal has an IC card on which an encrypted secret key unique to the reception terminal is recorded, and each reception terminal is operable to restore a distribution secret key by decrypting the encrypted secret key recorded on the IC card, and decrypt distributed encrypted data by using the restored distribution secret key; and
      
      said sending unit is operable to record the encrypted secret key generated by said encrypting unit onto a new IC card, and send the new IC card to each reception terminal for use.
  - 17. The key management apparatus of claim 10, wherein:
    - each of the reception terminals is a DVD player; and
      
      said distribution unit is operable to record all the generated encrypted contents keys and the encrypted content onto an optical disc.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Original Assignee
Matsushita Electric Industrial Company Limited (Panasonic Holdings Corporation)
Inventors
Tatebayashi, Makoto, Yokota, Kaoru
Primary Examiner(s)
Zand; Kambiz
Assistant Examiner(s)
Tolentino; Roderick

Application Number

US10/119,766
Publication Number

US 20020164035A1
Time in Patent Office

1,832 Days
Field of Search

380/277, 380/278, 380/279, 380/280
US Class Current

380/278
CPC Class Codes

H04L 2209/60   Digital content management,...

H04L 9/0822   using key encryption key

H04L 9/0825   using asymmetric-key encryp...

H04L 9/083   involving central third par...

H04L 9/0891   Revocation or update of sec...

Reception terminal, key management apparatus, and key updating method for public key cryptosystem

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

15 Citations

17 Claims

Specification

Use Cases

Quick Links

Others

Reception terminal, key management apparatus, and key updating method for public key cryptosystem

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

15 Citations

17 Claims

Specification

Subscription Required

Use Cases

Quick Links

Others