Data protection system that protects data by encrypting the data

US 9,130,741 B2
Filed: 04/08/2013
Issued: 09/08/2015
Est. Priority Date: 03/29/2001
Status: Expired due to Term

First Claim

Patent Images

1. A terminal device that is used in a data protection system that comprises three or more terminals including the terminal device, an encryption device, and an encryption key designation device, and that protects distribution data that is to be distributed to said terminals, according to said encryption device encrypting the distribution data, wherein:

each terminal is operable to(i) store a decryption key group assigned individually to the terminal, respectively, according to(a) a determination of two or more terminal groups, which are groups having two or more terminals as members, so that each of the terminals is a member of at least one of the terminal groups, and so that any one of the terminal groups that shares a same terminal as a member with an other one of the terminal groups does not completely include the other one of the terminal groups sharing the same terminal as a member and is not completely included in the other one of the terminal groups sharing the same terminal as a member,(b) a decision of one or more decryption keys individually in correspondence with each terminal and each determined terminal group, and(c) an assignment, to each terminal, the decryption key group, where the decryption key group is based on the decryption key decided in correspondence with the terminal, and decryption keys decided in correspondence with all terminal groups that include the terminal, respectively;

(ii) obtain an encrypted distribution data group that has been output from said encryption device, and(iii) use a stored decryption key to decrypt encrypted distribution data;

said encryption key designation device is operable to designate encryption keys, and includes;

an invalid terminal designation unit for receiving a specification of one or more terminal whose encryption keys have been exposed and designating the one or more terminals as invalid terminals such that data will be encrypted so that the one or more terminal designated as invalid will be unable to decrypt the data; and

an encryption key designation unit for designating, when all the decryption keys assigned to the terminals, other than decryption keys assigned to the one or more invalid terminals, are prescribed as valid decryption keys, and when a procedure for selecting an assigned valid decryption key for the most terminals not designated as invalid terminals is repeated until all terminals not designated as invalid terminals have been assigned a selected valid decryption key, encryption keys that respectively correspond to each of the valid decryption keys that are selected as a result of the procedure; and

said encryption device includes an encryption unit for encrypting distribution data by successively using all the designated encryption keys to encrypt distribution data, generating the encrypted distribution data group, and outputting the generated encrypted distribution data group; and

a key storage device for, when each terminal is corresponded with a node on a lowest level in an N-ary tree structure having a plurality of hierarchies, where N is a natural number equal to or greater than three,determining, for each node other than the nodes on the lowest level, a plurality of combination patterns, for each one of N nodes that are reached from the each node constituting a parent node of the one of the N nodes, that are combinations of two or more of the N nodes including the one of the N nodes, and that include a combination of all of the N nodes,deciding an individual decryption key for each determined combination pattern and storing each decided decryption key in correspondence with the parent node, andfurther stores an individual decryption key in correspondence with each node in the lowest level.

View all claims

0 Assignments

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

A data protection system includes terminals, and an encryption device that encrypts distribution data distributed to each terminal. Each terminal corresponds with one node on a lowest level of a tree structure having hierarchies. A data protection system excludes nodes on the lowest level, determines a plurality of combination patterns that include combinations of two or more of all four nodes that are reached one level below the node, decides an individual decryption key for each determined combination pattern, and decides an individual decryption key for each node on the lowest level. The data protection system prescribes nodes that are reached from the node on the lowest level and a terminal to the node on the highest level that is an invalid node. For invalid nodes, the data protection system designates an encryption key that corresponds to the decryption key determined in correspondence with the combination pattern that combines all nodes, excluding invalid nodes, and encrypts distribution data that uses each of the designated encryption keys.

Citations

11 Claims

1. A terminal device that is used in a data protection system that comprises three or more terminals including the terminal device, an encryption device, and an encryption key designation device, and that protects distribution data that is to be distributed to said terminals, according to said encryption device encrypting the distribution data, wherein:
- each terminal is operable to(i) store a decryption key group assigned individually to the terminal, respectively, according to(a) a determination of two or more terminal groups, which are groups having two or more terminals as members, so that each of the terminals is a member of at least one of the terminal groups, and so that any one of the terminal groups that shares a same terminal as a member with an other one of the terminal groups does not completely include the other one of the terminal groups sharing the same terminal as a member and is not completely included in the other one of the terminal groups sharing the same terminal as a member,(b) a decision of one or more decryption keys individually in correspondence with each terminal and each determined terminal group, and(c) an assignment, to each terminal, the decryption key group, where the decryption key group is based on the decryption key decided in correspondence with the terminal, and decryption keys decided in correspondence with all terminal groups that include the terminal, respectively;
  
  (ii) obtain an encrypted distribution data group that has been output from said encryption device, and(iii) use a stored decryption key to decrypt encrypted distribution data;
  
  said encryption key designation device is operable to designate encryption keys, and includes;
  
  an invalid terminal designation unit for receiving a specification of one or more terminal whose encryption keys have been exposed and designating the one or more terminals as invalid terminals such that data will be encrypted so that the one or more terminal designated as invalid will be unable to decrypt the data; and
  
  an encryption key designation unit for designating, when all the decryption keys assigned to the terminals, other than decryption keys assigned to the one or more invalid terminals, are prescribed as valid decryption keys, and when a procedure for selecting an assigned valid decryption key for the most terminals not designated as invalid terminals is repeated until all terminals not designated as invalid terminals have been assigned a selected valid decryption key, encryption keys that respectively correspond to each of the valid decryption keys that are selected as a result of the procedure; and
  
  said encryption device includes an encryption unit for encrypting distribution data by successively using all the designated encryption keys to encrypt distribution data, generating the encrypted distribution data group, and outputting the generated encrypted distribution data group; and
  
  a key storage device for, when each terminal is corresponded with a node on a lowest level in an N-ary tree structure having a plurality of hierarchies, where N is a natural number equal to or greater than three,determining, for each node other than the nodes on the lowest level, a plurality of combination patterns, for each one of N nodes that are reached from the each node constituting a parent node of the one of the N nodes, that are combinations of two or more of the N nodes including the one of the N nodes, and that include a combination of all of the N nodes,deciding an individual decryption key for each determined combination pattern and storing each decided decryption key in correspondence with the parent node, andfurther stores an individual decryption key in correspondence with each node in the lowest level.
- View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9, 10)
- - 2. The terminal device used in the data protection system of claim 1, wherein:
    - said encryption unit is operable to output the generated encrypted distribution data group to be recorded on at least one data recording medium; and
      
      each terminal is operable to read the encrypted distribution data from one of the at least one data recording medium, and decrypt the encrypted distribution data.
  - 3. The terminal device used in the data protection system of claim 2, wherein:
    - said encryption device includesa content storage unit for storing content data that is a digital work,a random number generation unit for generating the distribution data that is a random number, anda content encryption unit for encrypting the content data, by using the generated distribution data as a key, so as to generate encrypted content data;
      
      said encryption device is operable to generate an encrypted distribution data group by encrypting the generated distribution data successively by using each of the encryption keys designated by said encryption key designation device, and record the encrypted distribution data group and the generated encrypted content on the at least one data recording medium; and
      
      each terminal is operable to read the encrypted content and the encrypted distribution data group from one of the at least one recording medium, decrypt the encrypted distribution data, and use the resulting distribution data to decrypt the encrypted content data.
  - 4. The terminal device used in the data protection system of claim 2, further comprising an encryption key designation information recording device for recording encryption key designation information that designates the encryption key designated by said encryption key designation device, wherein:
    - each terminal includesa random number generation unit for generating the distribution data that is a random number,a content storage unit for storing content data that is a digital work, andan encryption key selection unit for reading the encryption key designation information from the at least one data recording medium, and selecting the encryption key designated by the encryption key designation information, from among the encryption key group that corresponds to the decryption key group stored by the terminal; and
      
      said encryption unit is operable to encrypt distribution data by successively using all the encryption keys designated by the encryption keys designated by said encryption designation device so as to generate an encrypted distribution data group, and output the generated encrypted distribution data group.
  - 5. The terminal device used in the data protection system of claim 1, wherein:
    - said encryption unit is operable to transmit the generated encrypted distribution data group to each terminal; and
      
      each terminal is operable to receive the transmitted encrypted distribution data group and decrypt the received encrypted distribution data group.
  - 6. The terminal device used in the data protection system of claim 1, wherein said each terminal is operable to store the decryption key group which is assigned individually to the terminal also according to an assignment, to each terminal, of the decryption key decided in correspondence with the terminal and all decryption keys decided in correspondence with all terminal groups that include the terminal.
  - 7. The terminal device used in the data protection system of claim 6, wherein said each terminal is operable to store the decryption key group which is assigned individually to the terminal also according to a determination of terminal groups so that at least one terminal group exists that completely includes the two or more terminal groups, and so that any one of the terminal groups within the two or more terminal groups that shares a same terminal group as a member with an other one of the terminal groups does not completely include the other one of the terminal groups that shares the same terminal group as a member and is not completely included in the other one of the terminal groups that shares the same terminal group as a member.
  - 8. The terminal device used in the data protection system of claim 7, wherein said each terminal is operable to store the decryption key group which is assigned individually to the terminal also according to a determination of the terminal groups so that each terminal group includes three or more terminals as members, and so that a terminal group exists that contains three or more terminal groups.
  - 9. The terminal device used in the data protection system of claim 8, further comprising:
    - a decryption key determining device for(i) executing(a) the determination of the two or more terminal groups,(b) the decision of the one or more decryption keys individually in correspondence with each terminal and each determined terminal group, and(c) the assignment of the decryption key group to each terminal,(ii) determining the decryption key group that is assigned to each terminal, and(iii) determining decryption keys to be assigned to each terminal, the decryption keys being (a) decryption keys selected from among the decryption keys stored in said key storage device in correspondence with each node on a same path, which is a path from the node corresponding to the terminal on the lowest level to a node on the highest level, excluding the node that corresponds to the terminal, and corresponding with all of the combination patterns that include a node that is one level below the each node on the same path, and (b) the decryption key stored in said key storage device in correspondence with the terminal;
      
      wherein the terminal groups have a one-to-one correspondence with the combination patterns, and each terminal group is a group whose members are all the terminals that correspond to all nodes on the lowest level that are reached from all the combined nodes in the corresponding combination pattern;
      
      wherein said encryption key designation unit, for the N-ary tree structure, prescribes all nodes from which a node on the lowest level of the N-ary tree structure that corresponds to an invalid terminal is reached as invalid nodes, performs encryption key designation processing first with a node on the highest level as a processing target node, and repeatedly performs the encryption key designation processing until all processing target nodes have been processed; and
      
      wherein said encryption key designation unit is operable to perform the encryption key designation processing on one processing target node at a time that has not been processed, and is processing that(i) when a combination pattern exists that relates to a combination that includes all nodes, other than invalid nodes, one level below the processing target node, designates an encryption key that corresponds to the decryption key stored by said key storage device in correspondence with the combination pattern, and if one or more invalid nodes exists one level below the processing target node and the one level below the processing target node is not the lowest level, newly makes all of the one or more invalid nodes that are one level below the processing target node processing target nodes, and(ii) when a combination pattern does not exist that relates to a combination including all nodes, other than invalid nodes, one level below the processing target node, designates encryption keys stored in correspondence with all the nodes, other than the invalid nodes, by said key storage device in the level one level below if one level below is the lowest level, and if one level below is not the lowest level, newly makes all the nodes that are one level below the processing target node processing target nodes.
  - 10. The terminal device used in the data protection system of claim 9, wherein:
    - said encryption unit is operable to output in correspondence, for each encryption key designated by said encryption key designation device, encrypted distribution data that is generated by encrypting data by using the designated encryption key, and encryption key node identification information for designating a position in the tree structure of the node that is corresponded by said key storage device with the decryption key corresponding to the encryption key; and
      
      each terminal is operable to store the decryption key that has been individually assigned to the terminal, respectively, according to(i) the determination of the two or more terminal groups,(ii) the decision of the one or more decryption keys individually in correspondence with each terminal and each determined terminal group, and(iii) the assignment of the decryption key group to each terminal, in correspondence with decryption key node identifying information of the node with which the decryption key is corresponded, obtain the encrypted distribution data group and an encryption key node identification information group, and decrypt the encrypted distribution data that corresponds to encryption key node identification information that matches the decryption key node identification information stored by the terminal, by using the decryption key that corresponds with the decryption key node identification information.

11. A method of using a terminal device in a data protection system that comprises three or more terminals including the terminal device, an encryption device, and an encryption key designation device, to protect distribution data that is to be distributed to said terminals, according to said encryption device encrypting the distribution data, said method comprising:
- using each terminal to(i) store a decryption key group assigned individually to the terminal, respectively, according to(a) a determination of two or more terminal groups, which are groups having two or more terminals as members, so that each of the terminals is a member of at least one of the terminal groups, and so that any one of the terminal groups that shares a same terminal as a member with an other one of the terminal groups does not completely include the other one of the terminal groups sharing the same terminal as a member and is not completely included in the other one of the terminal groups sharing the same terminal as a member,(b) a decision of one or more decryption keys individually in correspondence with each terminal and each determined terminal group, and(c) an assignment, to each terminal, the decryption key group, where the decryption key group is based on the decryption key decided in correspondence with the terminal, and decryption keys decided in correspondence with all terminal groups that include the terminal, respectively;
  
  (ii) obtain an encrypted distribution data group that has been output from said encryption device, and(iii) use a stored decryption key to decrypt encrypted distribution data;
  
  using said encryption key designation device to designate encryption keys by(i) using an invalid terminal designation unit of said encryption key designation device for receiving a specification of one or more terminal whose encryption keys have been exposed and designating the one or more terminals as invalid terminals such that data will be encrypted so that the one or more terminal designated as invalid will be unable to decrypt the data; and
  
  (ii) using an encryption key designation unit of said encryption key designation device to designate, when all the decryption keys assigned to the terminals, other than decryption keys assigned to the one or more invalid terminals, are prescribed as valid decryption keys, and when a procedure for selecting an assigned valid decryption key for the most terminals not designated as invalid terminals is repeated until all terminals not designated as invalid terminals have been assigned a selected valid decryption key, encryption keys that respectively correspond to each of the valid decryption keys that are selected as a result of the procedure;
  
  using an encryption unit of said encryption device to encrypt distribution data by successively using all the designated encryption keys to encrypt distribution data, generating the encrypted distribution data group, and outputting the generated encrypted distribution data group; and
  
  using a key storage device for, when each terminal is corresponded with a node on a lowest level in an N-ary tree structure having a plurality of hierarchies, where N is a natural number equal to or greater than three,determining, for each node other than the nodes on the lowest level, a plurality of combination patterns, for each one of N nodes that are reached from the each node constituting a parent node of the one of the N nodes, that are combinations of two or more of the N nodes including the one of the N nodes, and that include a combination of all of the N nodes,deciding an individual decryption key for each determined combination pattern and storing each decided decryption key in correspondence with the parent node, andfurther stores an individual decryption key in correspondence with each node in the lowest level.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Original Assignee
Panasonic Corporation (Panasonic Holdings Corporation)
Inventors
Nakano, Toshihisa, Ohmori, Motoji, Matsuzaki, Natsume, Tatebayashi, Makoto
Primary Examiner(s)
VOSTAL, ONDREJ C

Application Number

US13/858,306
Publication Number

US 20130236018A1
Time in Patent Office

883 Days
Field of Search

380/277, 380/264, 380/2, 713/163, 713/150
US Class Current

1/1
CPC Class Codes

G06F 21/10   Protecting distributed prog...

G06F 2221/2107   File encryption

G11B 20/00086   Circuits for prevention of ...

G11B 20/0021   involving encryption or dec...

H04L 2209/60   Digital content management,...

H04L 2209/80   Wireless

H04L 2463/101   applying security measures ...

H04L 63/064   Hierarchical key distributi...

H04L 63/065   for group communications cr...

H04L 9/08   Key distribution or managem...

H04L 9/0822   using key encryption key

H04L 9/0836   using tree structure or hie...

H04L 9/0891   Revocation or update of sec...

H04N 2005/91364   the video signal being scra...

H04N 21/2347   involving video stream encr...

H04N 21/26606   for generating or managing ...

H04N 21/4325   by playing back content fro...

H04N 21/4405   involving video stream decr...

H04N 5/913   for scrambling ; for copy p...

H04N 7/1675   Providing digital key or au...

Data protection system that protects data by encrypting the data

First Claim

0 Assignments

0 Petitions

Accused Products

Abstract

Citations

11 Claims

Specification

Solutions

Use Cases

Quick Links

Data protection system that protects data by encrypting the data

First Claim

0 Assignments

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

11 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links