Data distribution system and recording device and data provision device used therefor

US 7,219,227 B2
Filed: 12/01/2000
Issued: 05/15/2007
Est. Priority Date: 12/03/1999
Status: Expired due to Fees

First Claim

Patent Images

1. A data distribution system comprising:

a plurality of terminals; and

a content provision device distributing encrypted content data and a license key to said plurality of terminals, said license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, wherein;

each said terminal includesa first interface unit provided to externally communicate data, anda distributed-data deciphering unit receiving and recording at least said license key therein;

said deciphering unit hasa first authentication data hold unit holding first class certification data determined to correspond to said deciphering unit, for output via said first interface unit when said license key is received, said first class certification data being encrypted in a state authenticatable through decryption using an authentication key, anda first storage unit provided to record said encrypted content data and said license key therein; and

said content provision device includesa second interface unit provided to externally communicate data,a first authentication unit receiving from said second interface unit said first class certification data encrypted in a state capable of verifying authenticity through decryption using said authentication key, and decrypting said first class certification data with said authentication key to confirm said authenticity,a class revocation list hold unit holding a class revocation list listing said first class certification data subjected to revocation of said distribution, anda distribution control unit suspending at least a distribution operation distributing said content key to each said terminal having said deciphering unit, if said first authentication unit obtains said first class certification data listed on said class revocation list held in said class revocation list hold unitwherein said deciphering unit further has a second storage unit provided to hold said class revocation list, and a control unit operative in response to issuance of an instruction to effect said distribution operation, to extract update information capable of specifying an update of said class revocation list held in said second storage unit, for output via first interface unit to said content provision device;

said content provision device provides said update information to said distribution control unit via said second interface unit; and

said distribution control unit uses said update information to produce and output updating data via said second interface unit, said updating data being used to update said class revocation list in said second storage unit to provide a new class revocation list; and

said control unit receives said updating data via said first interface unit and uses said updating data to update content of said class revocation list held in said second storage unit,wherein each said terminal further includes a content reproduction unit;

said content reproduction unit has a content data reproduction unit receiving said license key and said encrypted content data from said deciphering unit and using said license key to decrypt and reproduce said encrypted content data, and a second authentication data hold unit holding second class certification data predetermined to correspond to said content reproduction unit and encrypted in a state capable of verifying said authenticity through decryption using said authentication key;

said first authentication unit receives encrypted said second class certification data via said second interface unit for decryption;

said class revocation list held in said class revocation list hold unit further lists said second class certification data subjected to revocation;

in said distribution operation each said terminal outputs encrypted said second class certification data via said first interface unit to said second interface unit; and

if said second class certification data input via said second interface unit and decrypted by said first authentication unit is listed on said class revocation list held in said class revocation list hold unit, said distribution control unit suspends at least said distribution operation distributing said license key to each said terminal.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A license server (10) includes a CRL database (306) holding a revocation list recording therein classes predetermined corresponding respectively to a memory device, such as a memory card, and a content reproduction circuit, such as a cellular phone, that are subjected to revocation of distributing, reproducing and transferring content data. A distribution control unit (315) suspends an operation distributing content data if the distribution is addressed to a class listed on the revocation list. The revocation list is also held in the memory card and distribution control unit (315) in distributing content also transmits information for updating the revocation list in the memory card.

73 Citations

View as Search Results

23 Claims

1. A data distribution system comprising:
- a plurality of terminals; and
  
  a content provision device distributing encrypted content data and a license key to said plurality of terminals, said license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, wherein;
  
  each said terminal includesa first interface unit provided to externally communicate data, anda distributed-data deciphering unit receiving and recording at least said license key therein;
  
  said deciphering unit hasa first authentication data hold unit holding first class certification data determined to correspond to said deciphering unit, for output via said first interface unit when said license key is received, said first class certification data being encrypted in a state authenticatable through decryption using an authentication key, anda first storage unit provided to record said encrypted content data and said license key therein; and
  
  said content provision device includesa second interface unit provided to externally communicate data,a first authentication unit receiving from said second interface unit said first class certification data encrypted in a state capable of verifying authenticity through decryption using said authentication key, and decrypting said first class certification data with said authentication key to confirm said authenticity,a class revocation list hold unit holding a class revocation list listing said first class certification data subjected to revocation of said distribution, anda distribution control unit suspending at least a distribution operation distributing said content key to each said terminal having said deciphering unit, if said first authentication unit obtains said first class certification data listed on said class revocation list held in said class revocation list hold unitwherein said deciphering unit further has a second storage unit provided to hold said class revocation list, and a control unit operative in response to issuance of an instruction to effect said distribution operation, to extract update information capable of specifying an update of said class revocation list held in said second storage unit, for output via first interface unit to said content provision device;
  
  said content provision device provides said update information to said distribution control unit via said second interface unit; and
  
  said distribution control unit uses said update information to produce and output updating data via said second interface unit, said updating data being used to update said class revocation list in said second storage unit to provide a new class revocation list; and
  
  said control unit receives said updating data via said first interface unit and uses said updating data to update content of said class revocation list held in said second storage unit,wherein each said terminal further includes a content reproduction unit;
  
  said content reproduction unit has a content data reproduction unit receiving said license key and said encrypted content data from said deciphering unit and using said license key to decrypt and reproduce said encrypted content data, and a second authentication data hold unit holding second class certification data predetermined to correspond to said content reproduction unit and encrypted in a state capable of verifying said authenticity through decryption using said authentication key;
  
  said first authentication unit receives encrypted said second class certification data via said second interface unit for decryption;
  
  said class revocation list held in said class revocation list hold unit further lists said second class certification data subjected to revocation;
  
  in said distribution operation each said terminal outputs encrypted said second class certification data via said first interface unit to said second interface unit; and
  
  if said second class certification data input via said second interface unit and decrypted by said first authentication unit is listed on said class revocation list held in said class revocation list hold unit, said distribution control unit suspends at least said distribution operation distributing said license key to each said terminal.
- View Dependent Claims (2, 3, 4)
- - 2. The data distribution system of claim 1, wherein:
    - said deciphering unit is a recording device detachably attached to said terminal; and
      
      said first class certification data is predetermined to correspond to each type of said recording device.
  - 3. The data distribution system of claim 2, wherein said first memory is a semiconductor memory and said recording device is a memory card.
  - 4. The data distribution system of claim 1, wherein:
    - said deciphering unit further has a second authentication unit using said authentication key to effect decryption to confirm said authenticity;
      
      in a transfer operation effected in response to an external instruction to transfer or replicate into another distributed-data deciphering unit at least one of said encrypted content data and said license key, said deciphering unit obtains said first class certification data corresponding to said another deciphering unit and encrypted in a state capable of verifying said authenticity through decryption using said authentication key; and
      
      if said second authentication unit obtains said first class certification data corresponding to said another deciphering unit and listed on said class revocation list held in said second storage unit, said control unit suspends at least said transfer operation transferring said license key to said another deciphering unit.

5. A data distribution system, comprising:
- a plurality of terminals; and
  
  a content provision device distributing encrypted content data and a license key to said plurality of terminals, said license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, wherein;
  
  each said terminal includesa first interface unit provided to externally communicate data, anda distributed-data deciphering unit receiving and recording at least said license key therein;
  
  said deciphering unit hasa first authentication data hold unit holding first class certification data determined to correspond to said deciphering unit, for output via said first interface unit when said license key is received, said first class certification data being encrypted in a state authenticatable through decryption using an authentication key, anda first storage unit provided to record said encrypted content data and said license key therein; and
  
  said content provision device includesa second interface unit provided to externally communicate data,a first authentication unit receiving from said second interface unit said first class certification data encrypted in a state capable of verifying authenticity through decryption using said authentication key, and decrypting said first class certification data with said authentication key to confirm said authenticity,a class revocation list hold unit holding a class revocation list listing said first class certification data subjected to revocation of said distribution, anda distribution control unit suspending at least a distribution operation distributing said content key to each said terminal having said deciphering unit, if said first authentication unit obtains said first class certification data listed on said class revocation list held in said class revocation list hold unitwherein said deciphering unit further has a second storage unit provided to hold said class revocation list, and a control unit operative in response to issuance of an instruction to effect said distribution operation, to extract update information capable of specifying an update of said class revocation list held in said second storage unit, for output via first interface unit to said content provision device;
  
  said content provision device provides said update information to said distribution control unit via said second interface unit; and
  
  said distribution control unit uses said update information to produce and output updating data via said second interface unit, said updating data being used to update said class revocation list in said second storage unit to provide a new class revocation list; and
  
  said control unit receives said updating data via said first interface unit and uses said updating data to update content of said class revocation list held in said second storage unit,wherein each said terminal further includes a content reproduction unit;
  
  said content reproduction unit has a content data reproduction unit receiving said license key and said encrypted content data from said deciphering unit and using said license key to decrypt and reproduce said encrypted content data, and a second authentication data hold unit holding second class certification data predetermined to correspond to said content reproduction unit and encrypted in a state capable of verifying said authenticity through decryption using said authentication key;
  
  said deciphering unit further has a second authentication unit using said authentication key to effect decryption to confirm said authenticity;
  
  said class revocation list held in said second storage unit further lists said second class certification data subjected to revocation;
  
  in a reproduction operation effected in response to an external instruction to reproduce said encrypted content in said content reproduction unit, said deciphering unit outputs said encrypted content data and license key stored in said first storage unit;
  
  said deciphering unit in said reproduction operation obtains said second class certification data corresponding to said content reproduction unit and encrypted in a state capable of verifying said authenticity through decryption using said authentication key; and
  
  said control unit at least suspends outputting said license key to said content reproduction unit, if in said reproduction operation said second authentication unit obtains said second class certification data listed on said class revocation list held in said second storage unit.
- View Dependent Claims (6, 7, 8)
- - 6. The data distribution system of claim 5, wherein:
    - said first interface unit and said second interface unit are connected together by a cellular phone network; and
      
      said distribution control unit in said distribution operation uses said first class certification data to authenticate said deciphering unit.
  - 7. The data distribution system of claim 6, wherein each said terminal further includes a communication processing unit connected to said cellular phone network to allow conversation.
  - 8. The data distribution system of claim 5, wherein said content reproduction unit is detachably attached to said terminal.

9. A recording device comprising:
- a first storage unit provided to record data therein;
  
  an authentication unit receiving first class certification data provided from a destination of said data output via an interface unit and encrypted in a state authenticatable through decryption using an authentication key, and decrypting said first class certification data with said authentication key to confirm authenticity;
  
  a second storage unit holding a class revocation list listing first class certification data subjected to revocation of output of said data; and
  
  a control unit operative in response to an external instruction issued to output said data, to issue an instruction to output said data via said interface unit,wherein said control unit suspends outputting said data to said destination having output said first class certification data received, if said class revocation list includes the first class certification data obtained from said authentication unit decrypting said encrypted first class certification data input externally via said interface unit together with said external instruction, andfurther comprising an authentication data hold unit holding second class certification data determined to correspond to said recording device and encrypted in a state decryptable with said authentication key, wherein in a recording operation recording in said first storage unit said data input and received via said interface unit, in response to an external instruction issued to output second class certification data said authentication data hold unit outputs via said interface unit said second class certification data held in said authentication data hold unit,wherein in said recording operation;
  
  in response to issuance of an instruction to effect said recording operation, said control unit extracts update information capable of specifying an update of said class revocation list held in said second storage unit and externally outputs said update information via said interface unit; and
  
  said control unit externally receives, via said interface unit, updating data together with said data, said updating data being produced from said update information for updating said class revocation list to provide a new class revocation list, and said control unit refers to said updating data to update content of said class revocation list.
- View Dependent Claims (10)
- - 10. The recording device of claim 9, wherein said first storage unit is a semiconductor memory and said recording device is a memory card.

11. A data distribution system comprising:
- a content provision device provided to distribute encrypted content data and a license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data; and
  
  a plurality of terminals receiving the distribution from said content provision device, wherein;
  
  said content provision device includesa first interface unit provided to externally communicate data,a first authentication unit receiving via said first interface unit first class certification data and a first public encryption key transmitted from each said terminal and encrypted in a state authenticatable through decryption using an authentication key, for decryption with said authentication key to confirm authenticity,a class revocation list hold unit holding a class revocation list listing said first class certification data subjected to revocation of distribution of said license key,a distribution control unit suspending a distribution operation distributing first reproduction information at least including said license key to a terminal corresponding to a source of said first class certification data received, if said first authentication unit obtains said first class certification data listed on said class revocation list held in said class revocation list hold unit,a first session key generation unit generating a first symmetric key updated whenever said distribution is effected,a session key encryption unit effecting an encryption process using said first public encryption key to encrypt said first symmetric key for transmission via said first interface unit to the terminal corresponding to the source of said first class certification data received,a session key decryption unit decrypting and extracting a second public encryption key and a second symmetric key encrypted with said first symmetric key and returned via said first interface unit from the terminal corresponding to the source of said first class certification data received,a first license data encryption unit encrypting said first reproduction information with said second public encryption key decrypted by said session key decryption unit, anda second license data encryption unit effecting an encryption process further encrypting an output of said first license data encryption unit with said second symmetric key decrypted by said session key decryption unit, for transmission via said first interface unit for distribution to the terminal corresponding to the source of said first class certification data received;
  
  each said terminal includesa second interface unit provided to externally communicating data, anda distributed-data deciphering unit receiving and recording said encrypted content data therein;
  
  first class certification data and a first public encryption key are determined to correspond to said deciphering unit;
  
  said deciphering unit hasa first authentication data hold unit holding said first class certification data and first public encryption key encrypted in a state capable of verifying said authenticity through decryption using said authentication key, for output when said first reproduction information is received,a first key hold unit holding a first private decryption key decrypting data encrypted with said first public encryption key,a first decryption unit receiving said first symmetric key encrypted with said first public encryption key, for decryption,a second key hold unit holding said second public encryption key,a second session key generation unit producing said second symmetric key updated whenever said encrypted content data is communicated,a first encryption unit encrypting said second symmetric key and said second public encryption key with said first symmetric key for output to said second interface unit,a second decryption unit receiving encrypted said first reproduction information from said second license data encryption unit for decryption using said second symmetric key,a third key hold unit holding a second private decryption key decrypting data encrypted with said second public encryption key,a third decryption unit providing a decryption using said second private decryption key, anda first storage unit recording said first reproduction information and said encrypted content data therein,wherein said deciphering unit further hasa second storage unit holding said class revocation list, anda control unit operative in response to issuance of an instruction to effect a distribution operation to distribute said first reproduction information, to produce update information capable of specifying an update of said class revocation list held in said second storage unit;
  
  said first encryption unit further encrypts said update information with said first symmetric key together with said second public encryption key and said second symmetric key for output to said second interface unit;
  
  said distribution control unit produces updating data from said update information decrypted by said session key decryption unit, said updating data being used to update said class revocation list in said second storage unit to provide a new class revocation list;
  
  said content provision device encrypts said updating data with said second symmetric key together with the first reproduction information encrypted with said second public encryption key, for transmission via said first interface unit to the terminal corresponding to the source of said first class certification data received;
  
  said second decryption unit receives encrypted said updating data via said second interface unit for decryption with said second symmetric key; and
  
  said control unit uses said updating data to update content of said class revocation list held in said second storage units,wherein said deciphering unit is a recording device detachably attached to said terminal;
  
  said first private decryption key varies for each type of said recording device; and
  
  each said terminal further includes a third interface having said deciphering unit attached thereto to communicate data with said deciphering unit, andwherein in a reproduction operation effected in response to an external instruction to reproduce said content data, said second session key generation unit is operative in response to said instruction to produce a third symmetric key;
  
  said first storage unit is controlled by said control unit to be operative in response to said instruction issued to effect said reproduction operation, to output recorded said encrypted content data and said first reproduction information;
  
  if in said reproduction operation said first storage unit outputs said first reproduction information encrypted, said third decryption unit effects decryption to extract said first reproduction information;
  
  said first encryption unit in said reproduction operation receives said first reproduction information from one of said third decryption unit and said first storage unit for encryption with a fourth symmetric key;
  
  said deciphering unit outputs said first reproduction information encrypted with said fourth symmetric key and said encrypted content data recorded in said first recording unit;
  
  said data distribution system further comprises a plurality of reproduction terminals having said deciphering unit attached thereto to receive from said deciphering unit said first reproduction information encrypted with said fourth symmetric key and said encrypted content data which are output from said deciphering unit and reproduce content data from said first reproduction information and said encrypted content data;
  
  each said reproduction terminal has a fourth interface having said deciphering unit attached thereto to communicate data with said deciphering unit, and a content reproduction unit;
  
  said content reproduction unit hasa fourth decryption unit decrypting said first reproduction information encrypted with said fourth symmetric key and output from said deciphering unit, to extract said first reproduction information,a content data reproduction unit decrypting said encrypted content data with said license key included in said first reproduction information corresponding to an output of said fourth decryption unit, for reproduction,a second authentication data hold unit holding a second class certification data and a third public encrypted key predetermined to correspond to said content reproduction unit and encrypted in a state capable of verifying authenticity through decryption using said authentication key, for output to said deciphering unit to accommodate said reproduction operation,a fourth key hold unit holding a third private decryption key decrypting data encrypted with said third public encryption key,a fifth decryption unit using said third private decryption key to decrypt data encrypted with said third public encryption key and returned, to obtain said third symmetric key,a third session key generation unit producing said fourth symmetric key updated whenever said reproduction operation is effected, anda second encryption unit using said third symmetric key received from said fifth decryption unit, to encrypt said fourth symmetric key for output to said deciphering unit;
  
  said deciphering unit further hasa second authentication unit using said authentication key to decrypt said second class certification data and said third public encryption key encrypted in a state capable of verifying authenticity through decryption using said authentication key, to confirm said authenticity, anda third decryption unit controlled by said control unit to encrypt said second symmetric key with said third public encryption key received from said second authentication unit, for output to said content reproduction unit corresponding thereto;
  
  said class revocation list further lists said second class certification data subjected to revocation; and
  
  said control unit suspends outputting said first reproduction information to said content reproduction unit, if in said reproduction operation said second authentication unit obtains said second class certification data listed in said class revocation list held in said second storage unit.
- View Dependent Claims (12, 13, 14, 15, 16, 17)
- - 12. The data distribution system of claim 11, wherein:
    - said second and third decryption units receive via said second interface unit second reproduction information encrypted in said content provision device with said second public encryption key, further encrypted with said second symmetric key, and distributed together with said first reproduction information, for decryption with said second symmetric key and said second private decryption key; and
      
      said first storage unit further records said second reproduction information therein.
  - 13. The data distribution system of claim 11, wherein said second storage unit is arranged in a security area unrewritable by a third party.
  - 14. The data distribution system of claim 11, wherein:
    - said second and third decryption units receives via said second interface unit second reproduction information encrypted in said content provision device with said second public encryption key, further encrypted with said second symmetric key, and distributed together with said first reproduction information, for decryption with said second symmetric key and said second private decryption key;
      
      said first storage unit, said deciphering unit further records therein said second reproduction information decrypted; and
      
      said control unit in said reproduction operation refers to said second reproduction information in said first storage unit to determine whether said first reproduction information may be output.
  - 15. The data distribution system of claim 11, wherein:
    - in a transfer operation effected in response to an external instruction to transfer or replicate from said deciphering unit to another distributed-data deciphering unit data at least including said first reproduction information, said second authentication unit of said deciphering unit receives via said second interface unit said first class certification data and said first public encryption key corresponding to said another deciphering unit and encrypted in a state capable of verifying authenticity through decryption using said authentication key, for decryption with said authentication key to confirm said authenticity, and said second session key generation units of said deciphering unit and said another deciphering unit, respectively, also produce said third and second symmetric keys, respectively, to accommodate said transfer operation;
      
      said third encryption unit of said deciphering unit in said transfer operation uses said first public encryption key corresponding to said another deciphering unit, to encrypt said third symmetric key corresponding to said deciphering unit, for output to said deciphering unit;
      
      said second decryption unit of said another deciphering unit in said transfer operation decrypts data encrypted with said third symmetric key and returned from said deciphering unit, to obtain said second symmetric key produced in said deciphering unit and said second public encryption key corresponding to said deciphering unit;
      
      said deciphering unit further has a fourth encryption unit further encrypting in said transfer operation said first reproduction information output from said first storage unit, with said second public encryption key corresponding to said another deciphering unit;
      
      said first encryption unit of said deciphering unit in said transfer operation further encrypts said output of said fourth encryption unit with said second symmetric key produced by said another deciphering unit, for output to said another deciphering unit; and
      
      said control unit of said deciphering unit suspends said transfer operation if in said transfer operation said second authentication unit obtains said first class certification data corresponding to said another deciphering unit and listed in said class revocation list held in said second storage unit.
  - 16. The data distribution system of claim 11, wherein:
    - said second and third decryption units receive via said second interface unit second reproduction information encrypted in said content provision device with said second public encryption key, further encrypted with said second symmetric key, and distributed together with said first reproduction information, for decryption with said second symmetric key and said second private decryption key;
      
      said first storage unit further records therein said second reproduction information decrypted; and
      
      said control unit in said transfer operation refers to second reproduction information in said first storage unit to determine whether said transfer operation may be carried out and if said control unit determines that said transfer operation may be effected and said first reproduction information is output to said another deciphering unit said control unit updates said second reproduction information recorded in said first storage unit.
  - 17. The data distribution system of claim 11, wherein:
    - said deciphering unit further hasa fifth key hold unit holding a secret key different for each said recording device,a fifth encryption unit using said secret key to encrypt data obtained from said third decryption unit decrypting an output of said second decryption unit using said second private decryption key, anda sixth decryption unit decrypting data encrypted with said secret key;
      
      said first storage unit records therein data encrypted by said fifth encryption unit;
      
      said fifth encryption unit encrypts data of said class revocation list with said secret key; and
      
      said second storage unit is arranged external to a security area unreadable by a third party and holds said class revocation list encrypted by said fifth encryption unit.

18. A recording device receiving and recording therein encrypted content data and first reproduction information including a license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, comprising:
- an interface unit externally communicating data;
  
  a first storage unit recording said first reproduction information and said encrypted content data therein;
  
  a second storage unit holding a class revocation list listing said first class certification data subjected to revocation of communicating said reproduction information;
  
  a control unit operative, when said first reproduction information is received, to produce update information capable of specifying an update of said class revocation list held in said second storage;
  
  an authentication data hold unit holding second class certification data and a first public encryption-key of a data recording device determined to correspond to said recording device and encrypted in a state capable of authenticatable through decryption using an authentication key, for external output via said interface unit when said first reproduction information is received;
  
  a first key hold unit holding a first private decryption key decrypting data encrypted with said first public encryption key;
  
  a first decryption unit receiving externally via said interface unit a first symmetric key encrypted with said first public encryption key, for decryption;
  
  a second key hold unit holding a second public encryption key determined for each said recording device;
  
  a session key generation unit producing a second symmetric key updated whenever said content data is communicated;
  
  a first encryption unit encrypting said update information, said second symmetric key and said second public encryption key with said first symmetric key for external output via said interface unit;
  
  a second decryption unit receiving, via said interface unit, said first reproduction information encrypted with said second public encryption key encrypted with said second symmetric key, and updating data based on said update information and input and used to update said class revocation list held in said second storage, for decryption with said second symmetric key;
  
  a third key hold unit holding a second private decryption key decrypting data encrypted with said second public encryption key; and
  
  a third decryption unit using said second private decryption key to effect decryption,wherein said control unit refers to said updating data decrypted by said second decryption unit, to update content of said class revocation list held in said second storage, andfurther comprising an authentication unit operative in a reproduction operation effected in response to an external instruction issued to reproduce said content data, to receive via said interface unit said third class certification data corresponding to a reproduction circuit reproducing said content data, and encrypted with said authentication key, for decryption with said authentication key to confirm said authenticity,wherein said first class certification data includes said third class certification data; and
  
  said control unit suspends said reproduction operation if in said reproduction operation said authentication unit obtains said third class certification data corresponding to said content data reproduction circuit and listed on said class revocation list held in said second storage unit.
- View Dependent Claims (19)
- - 19. The recording device of claim 18, wherein:
    - in a transfer operation effected in response to an external instruction to transfer or replicate into another recording device data at least including said first reproduction information, said authentication unit receives via said interface unit second class certification data encrypted with said authentication key and corresponding to said another recording device, for decryption;
      
      said first class certification data includes said second class certification data; and
      
      said control unit suspends said transfer operation if in said transfer operation said authentication unit obtains said second class certification data corresponding to said recording device and listed on said class revocation list held in said second storage unit.

20. A recording device receiving and recording therein encrypted content data and first reproduction information including a license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, comprising:
- an interface unit externally communicating data;
  
  a first storage unit recording said first reproduction information and said encrypted content data therein;
  
  a second storage unit holding a class revocation list listing said first class certification data subjected to revocation of communicating said reproduction information;
  
  a control unit operative, when said first reproduction information is received, to produce update information capable of specifying an update of said class revocation list held in said second storage;
  
  an authentication data hold unit holding second class certification data and a first public encryption-key of a data recording device determined to correspond to said recording device and encrypted in a state capable of authenticatable through decryption using an authentication key, for external output via said interface unit when said first reproduction information is received;
  
  a first key hold unit holding a first private decryption key decrypting data encrypted with said first public encryption key;
  
  a first decryption unit receiving externally via said interface unit a first symmetric key encrypted with said first public encryption key, for decryption;
  
  a second key hold unit holding a second public encryption key determined for each said recording device;
  
  a session key generation unit producing a second symmetric key updated whenever said content data is communicated;
  
  a first encryption unit encrypting said update information, said second symmetric key and said second public encryption key with said first symmetric key for external output via said interface unit;
  
  a second decryption unit receiving, via said interface unit, said first reproduction information encrypted with said second public encryption key encrypted with said second symmetric key, and updating data based on said update information and input and used to update said class revocation list held in said second storage, for decryption with said second symmetric key;
  
  a third key hold unit holding a second private decryption key decrypting data encrypted with said second public encryption key; and
  
  a third decryption unit using said second private decryption key to effect decryption,wherein said control unit refers to said updating data decrypted by said second decryption unit, to update content of said class revocation list held in said second storage, andwherein said second storage unit is arranged internal to a security area unreadable by a third party.

21. A recording device receiving and recording therein encrypted content data and first reproduction information including a license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, comprising:
- an interface unit externally communicating data;
  
  a first storage unit recording said first reproduction information and said encrypted content data therein;
  
  a second storage unit holding a class revocation list listing said first class certification data subjected to revocation of communicating said reproduction information;
  
  a control unit operative, when said first reproduction information is received, to produce update information capable of specifying an update of said class revocation list held in said second storage;
  
  an authentication data hold unit holding second class certification data and a first public encryption-key of a data recording device determined to correspond to said recording device and encrypted in a state capable of authenticatable through decryption using an authentication key, for external output via said interface unit when said first reproduction information is received;
  
  a first key hold unit holding a first private decryption key decrypting data encrypted with said first public encryption key;
  
  a first decryption unit receiving externally via said interface unit a first symmetric key encrypted with said first public encryption key, for decryption;
  
  a second key hold unit holding a second public encryption key determined for each said recording device;
  
  a session key generation unit producing a second symmetric key updated whenever said content data is communicated;
  
  a first encryption unit encrypting said update information, said second symmetric key and said second public encryption key with said first symmetric key for external output via said interface unit;
  
  a second decryption unit receiving, via said interface unit, said first reproduction information encrypted with said second public encryption key encrypted with said second symmetric key, and updating data based on said update information and input and used to update said class revocation list held in said second storage, for decryption with said second symmetric key;
  
  a third key hold unit holding a second private decryption key decrypting data encrypted with said second public encryption key; and
  
  a third decryption unit using said second private decryption key to effect decryption,wherein said control unit refers to said updating data decrypted by said second decryption unit, to update content of said class revocation list held in said second storage, andfurther comprising a second encryption unit encrypting data of said class revocation list with said second public encryption key, wherein said second storage unit is arranged external to a security area unreadable by a third party and holds said class revocation list encrypted by said second encryption unit.

22. A recording device receiving and recording therein encrypted content data and first reproduction information including a license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, comprising:
- an interface unit externally communicating data;
  
  a first storage unit recording said first reproduction information and said encrypted content data therein;
  
  a second storage unit holding a class revocation list listing said first class certification data subjected to revocation of communicating said reproduction information;
  
  a control unit operative, when said first reproduction information is received, to produce update information capable of specifying an update of said class revocation list held in said second storage;
  
  an authentication data hold unit holding second class certification data and a first public encryption-key of a data recording device determined to correspond to said recording device and encrypted in a state capable of authenticatable through decryption using an authentication key, for external output via said interface unit when said first reproduction information is received;
  
  a first key hold unit holding a first private decryption key decrypting data encrypted with said first public encryption key;
  
  a first decryption unit receiving externally via said interface unit a first symmetric key encrypted with said first public encryption key, for decryption;
  
  a second key hold unit holding a second public encryption key determined for each said recording device;
  
  a session key generation unit producing a second symmetric key updated whenever said content data is communicated;
  
  a first encryption unit encrypting said update information, said second symmetric key and said second public encryption key with said first symmetric key for external output via said interface unit;
  
  a second decryption unit receiving, via said interface unit, said first reproduction information encrypted with said second public encryption key encrypted with said second symmetric key, and updating data based on said update information and input and used to update said class revocation list held in said second storage, for decryption with said second symmetric key;
  
  a third key hold unit holding a second private decryption key decrypting data encrypted with said second public encryption key; and
  
  a third decryption unit using said second private decryption key to effect decryption,wherein said control unit refers to said updating data decrypted by said second decryption unit, to update content of said class revocation list held in said second storage, andfurther comprising;
  
  a secret key hold unit holding a secret key different for each said recording device;
  
  a secret key encryption unit using said secret key to effect encryption; and
  
  a secret key decryption unit decrypting data encrypted with said secret key, wherein;
  
  said first storage unit and said second storage unit are arranged external to a security area unreadable by a third party;
  
  said first storage unit holds data encrypted by said second encryption unit; and
  
  said second storage unit holds said class revocation list encrypted by said second encryption unit.

23. A recording device device receiving and recording therein encrypted content data and first reproduction information including a license key serving as a decryption key decrypting said encrypted content data to obtain plaintext content data, comprising:
- an interface unit externally communicating data;
  
  a first storage unit recording said first reproduction information and said encrypted content data therein;
  
  a second storage unit holding a class revocation list listing said first class certification data subjected to revocation of communicating said reproduction information;
  
  a control unit operative, when said first reproduction information is received, to produce update information capable of specifying an update of said class revocation list held in said second storage;
  
  an authentication data hold unit holding second class certification data and a first public encryption-key of a data recording device determined to correspond to said recording device and encrypted in a state capable of authenticatable through decryption using an authentication key, for external output via said interface unit when said first reproduction information is received;
  
  a first key hold unit holding a first private decryption key decrypting data encrypted with said first public encryption key;
  
  a first decryption unit receiving externally via said interface unit a first symmetric key encrypted with said first public encryption key, for decryption;
  
  a second key hold unit holding a second public encryption key determined for each said recording device;
  
  a session key generation unit producing a second symmetric key updated whenever said content data is communicated;
  
  a first encryption unit encrypting said update information, said second symmetric key and said second public encryption key with said first symmetric key for external output via said interface unit;
  
  a second decryption unit receiving, via said interface unit, said first reproduction information encrypted with said second public encryption key encrypted with said second symmetric key, and updating data based on said update information and input and used to update said class revocation list held in said second storage, for decryption with said second symmetric key;
  
  a third key hold unit holding a second private decryption key decrypting data encrypted with said second public encryption key; and
  
  a third decryption unit using said second private decryption key to effect decryption,wherein said control unit refers to said updating data decrypted by said second decryption unit, to update content of said class revocation list held in said second storage, andwherein said first storage unit is a semiconductor memory and said recording device is a memory card.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Fujitsu Limited, Hitachi, Ltd., Sanyo Electric Company Limited (Panasonic Holdings Corporation)
Original Assignee
Fujitsu Limited, Hitachi, Ltd., Sanyo Electric Company Limited (Panasonic Holdings Corporation)
Inventors
Hasebe, Takayuki, Anazawa, Takeaki, Hioki, Toshiaki, Hatakeyama, Takahisa, Takahashi, Masataka, Hori, Yoshihiro, Tonegawa, Tadaaki, Kanamori, Miwa, Yoshikawa, Takatoshi, Furuta, Shigeki, Takemura, Hiroshi
Primary Examiner(s)
Moazzami; Nasser
Assistant Examiner(s)
ABEDIN, SHANTO

Application Number

US10/130,302
Publication Number

US 20020184492A1
Time in Patent Office

2,356 Days
Field of Search

713/193, 713/169, 713/156, 713/171, 713/158, 713/176, 713/155, 380/270, 380/277, 235/380, 705/54, 705/55, 705/59, 726/4, 726/26, 726/29
US Class Current

713/158
CPC Class Codes

G06F 21/109 by using specially-adapted ...

G06F 2221/2107 File encryption

Data distribution system and recording device and data provision device used therefor

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

73 Citations

23 Claims

Specification

Solutions

Use Cases

Quick Links

Data distribution system and recording device and data provision device used therefor

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

73 Citations

23 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links