CERTIFYING DEVICE, VERIFYING DEVICE, VERIFYING SYSTEM, COMPUTER PROGRAM AND INTEGRATED CIRCUIT
First Claim
1. An authentication system composed of a requesting device and a verifying device, the requesting device requesting verification from the verifying device,the requesting device including:
- a storage unit storing a plurality of computer programs that are to run on the requesting device, the computer programs being hierarchically related to each other;
a measuring unit operable to, each time one of the plurality of computer programs is loaded, measure an amount of characteristics of said one of the plurality of computer programs;
a generation unit which is tamper-resistant and is operable to, while a computer program that is one of the plurality of computer programs is loaded, generate certification information reflecting amounts of characteristics of the computer program and other computer programs that have already been loaded and are required to run the computer program; and
an output unit operable to output the generated certification information,the verifying device including;
an obtaining unit operable to obtain the certification information;
a storing unit preliminarily storing verification information reflecting amounts of characteristics which are to be obtained from the computer program and the other computer programs when the computer program and the other computer programs are not tampered with; and
a judging unit operable to judge, using the verification information and the obtained certification information, whether or not the requesting device is authentic.
2 Assignments
0 Petitions
Accused Products
Abstract
An authentication system that can show having an authentic computer program, can certify the authenticity of itself, and can verify the certification. The authentication system is composed of a terminal (requesting device) and a card (verifying device). The card stores secret information to be used by the terminal, and an update program for the terminal. The card verifies authenticity of the terminal using information obtained from the terminal. When it judges that the terminal is authentic, the card outputs the secret information to the terminal. When it judges that the terminal is not authentic, the card outputs the update program. With this structure, the terminal is forced to update the program when it attempts to use the secret information.
81 Citations
36 Claims
-
1. An authentication system composed of a requesting device and a verifying device, the requesting device requesting verification from the verifying device,
the requesting device including: -
a storage unit storing a plurality of computer programs that are to run on the requesting device, the computer programs being hierarchically related to each other; a measuring unit operable to, each time one of the plurality of computer programs is loaded, measure an amount of characteristics of said one of the plurality of computer programs; a generation unit which is tamper-resistant and is operable to, while a computer program that is one of the plurality of computer programs is loaded, generate certification information reflecting amounts of characteristics of the computer program and other computer programs that have already been loaded and are required to run the computer program; and an output unit operable to output the generated certification information, the verifying device including; an obtaining unit operable to obtain the certification information; a storing unit preliminarily storing verification information reflecting amounts of characteristics which are to be obtained from the computer program and the other computer programs when the computer program and the other computer programs are not tampered with; and a judging unit operable to judge, using the verification information and the obtained certification information, whether or not the requesting device is authentic. - View Dependent Claims (2)
-
-
3. A requesting device for requesting verification of authenticity of the requesting device itself from a verifying device, comprising:
-
a storage unit storing a plurality of computer programs that are to run on the requesting device, the computer programs being hierarchically related to each other; a measuring unit operable to, each time one of the plurality of computer programs is loaded, measure an amount of characteristics of said one of the plurality of computer programs; a generation unit which is tamper-resistant and is operable to, while a computer program that is one of the plurality of computer programs is loaded, generate certification information reflecting amounts of characteristics of the computer program and other computer programs that have already been loaded and are required to run the computer program; and an output unit operable to output the generated certification information. - View Dependent Claims (4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15)
-
-
16. A verifying device for verifying authenticity of a requesting device in which a plurality of computer programs hierarchically related to each other, the verifying device comprising:
-
an obtaining unit operable to obtain, from the requesting device, certification information while one computer program among the plurality of computer programs is loaded, the certification information reflecting (a) an amount of characteristics of the one computer program and (b) amounts of characteristics of other computer programs that have already been loaded and are required to run the one computer program; a storing unit preliminarily storing verification information reflecting amounts of characteristics which are to be obtained from the one computer program and the other computer programs when the one computer program and the other computer programs are not tampered with; and a judging unit operable to judge, using the verification information and the obtained certification information, whether or not the requesting device is authentic. - View Dependent Claims (17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30)
-
-
31. A requesting method for use in a requesting device for requesting verification of authenticity of the requesting device itself from a verifying device, wherein
the requesting device includes (i) a storage unit storing a plurality of computer programs that are to run on the requesting device, the computer programs being hierarchically related to each other, and (ii) a generation unit which is tamper-resistant, the certifying method comprising the steps of: -
measuring, each time one of the plurality of computer programs is loaded, an amount of characteristics of said one of the plurality of computer programs; generating, using the generation unit while a computer program that is one of the plurality of computer programs is loaded, certification information reflecting amounts of characteristics of the computer program and other computer programs that have already been loaded and are required to run the computer program; and outputting the generated certification information.
-
-
32. A computer-readable recording medium storing a computer program for certification for use in a requesting device for requesting verification of authenticity of the requesting device itself from a verifying device, wherein
the requesting device includes (i) a storage unit storing a plurality of computer programs that are to run on the requesting device, the computer programs being hierarchically related to each other, and (ii) a generation unit which is tamper-resistant, the computer program causing a computer to execute the steps of: -
measuring, each time one of the plurality of computer programs is loaded, an amount of characteristics of said one of the plurality of computer programs; generating, using the generation unit while a computer program that is one of the plurality of computer programs is loaded, certification information reflecting amounts of characteristics of the computer program and other computer programs that have already been loaded and are required to run the computer program; and outputting the generated certification information.
-
-
33. An integrated circuit constituting a requesting device for certifying authenticity of the requesting device itself to a verifying device, wherein
the requesting device includes a storage unit storing a plurality of computer programs that are to run on the requesting device, the computer programs being hierarchically related to each other, the integrated circuit comprising: -
a measuring unit operable to, each time one of the plurality of computer programs is loaded, measure an amount of characteristics of said one of the plurality of computer programs; a generation unit which is tamper-resistant and is operable to, while a computer program that is one of the plurality of computer programs is loaded, generate certification information reflecting amounts of characteristics of the computer program and other computer programs that have already been loaded and are required to run the computer program; and an output unit operable to output the generated certification information.
-
-
34. A verifying method for use in a verifying device for verifying authenticity of a requesting device in which a plurality of computer programs hierarchically related to each other run, the verifying method comprising the step of
obtaining, from the requesting device, certification information while one computer program among the plurality of computer programs is loaded, the certification information reflecting (a) an amount of characteristics of the one computer program and (b) amounts of characteristics of other computer programs that have already been loaded and are required to run the one computer program, the verifying device including a storing unit preliminarily storing verification information reflecting amounts of characteristics which are to be obtained from the one computer program and the other computer programs when the one computer program and the other computer programs are not tampered with, and the verifying method also comprising the step of judging, using the verification information and the obtained certification information, whether or not the requesting device is authentic.
-
35. A recording medium storing a computer program for verification for use in a verifying device for verifying authenticity of a requesting device in which a plurality of computer programs hierarchically related to each other run, the computer program causing a computer to execute the step of
obtaining, from the requesting device, certification information while one computer program among the plurality of computer programs is loaded, the certification information reflecting (a) an amount of characteristics of the one computer program and (b) amounts of characteristics of other computer programs that have already been loaded and are required to run the one computer program, the verifying device including a storing unit preliminarily storing verification information reflecting amounts of characteristics which are to be obtained from the one computer program and the other computer programs when the one computer program and the other computer programs are not tampered with, and the computer program also causing the computer to execute the step of judging, using the verification information and the obtained certification information, whether or not the requesting device is authentic.
-
36. An integrated circuit constituting a verifying device for verifying authenticity of a requesting device in which a plurality of computer programs hierarchically related to each other, the integrated circuit comprising:
-
an obtaining unit operable to obtain, from the requesting device, certification information while one computer program among the plurality of computer programs is loaded, the certification information reflecting (a) an amount of characteristics of the one computer program and (b) amounts of characteristics of other computer programs that have already been loaded and are required to run the one computer program; a storing unit preliminarily storing verification information reflecting amounts of characteristics which are to be obtained from the one computer program and the other computer programs when the one computer program and the other computer programs are not tampered with; and a judging unit operable to judge, using the verification information and the obtained certification information, whether or not the requesting device is authentic.
-
Specification