This application is based upon and claims the benefit of priority from the prior Japanese Patent Application No. 2010-256189, filed in Japan on Nov. 16, 2010; the entire contents of which are incorporated herein by reference.
Embodiments described herein relate generally to a recording medium.
In the past, flash memory cards such as an SD card have been spread. The flash memory cards are widely used as recording media because the flash memory cards have compact, user-friendly external shapes and sizes and because capacities thereof are increased.
Among such flash memory cards, there are flash memory cards having a function for protection of contents recorded therein. For example, a flash memory card having a media bind function is developed. The media bind function is a function of fixing contents in association with a medium using a medium ID and an encryption technique. Even if encrypted contents are copied to another medium, it is impossible to reproduce the contents from the other medium.
In some cases, audio video contents for promotion, for example, are stored in a flash memory card to be distributed. When a flash memory card is used as a promotion medium in this way, there is a request to limit to only a few times viewing and/or listening to such a promotion file.
However, a flash memory card has not been developed that permits reproduction of a predetermined file only a designated number of times and can disable reproduction exceeding the designated number of times with a card function alone without using a function of a host.
Embodiments of the present invention are explained in detail below with reference to the accompanying drawings.
According to one embodiment, a recording medium includes: a storing section including a first area in which a number-of-reproductions limited file is written and a second area in which a determination address in an address range of the first area, in which the number-of-reproductions limited file is written, and a number of readable times of the number-of-reproductions limited file are written; and a control section configured to limit, after a number of readouts of reading out of data in the determination address reaches the number of readable times, an output of the number-of-reproductions limited file in response to a readout request for the number-of-reproductions limited file.
In
The control section 11 includes a card interface (IF) section 12, a MPU 13, a CPRM circuit 14, a ROM 15, a RAM 16, and a memory interface (IF) section 17. The sections are connected by a bus 18.
The card IF section 12 is connected to a card IF section on a not-shown host side and configured to exchange data with the host. The ROM 15 stores therein software used in the MPU 13. The RAM 16 is a memory for work of the MPU 13. The CPRM circuit 14 is a circuit for realizing a protection function of a CPRM (Content Protection for Recordable Media) standard for content protection. The memory IF section 17 is connected to the memory section 21 and configured to exchange data with the memory section 21.
In this embodiment, in causing the memory section 21 to store contents as a file, the number of times of reproduction of which is desired to be limited, the MPU 13 sets a start logic address and an end logic address of the memory section 21, which the MPU 13 causes to store the file (hereinafter referred to as number-of-reproductions limited file), on the basis of an exclusive command from the host and sets first and second determination logic address serving as logic addresses between the start and end logic addresses. The MPU 13 causes the memory section 21 to store the first and second determination logic addresses in a system management area in the memory section 21.
The MPU 13 sets an area between the start logic address and the end logic address as read-only area. Consequently, thereafter, data writing in this logic address area causes an error.
As shown in
Internal information for copy protection is stored in the confidential information area. The protect area is an area accessible when a user is authenticated. The general user area is an area accessible by a general user. The general user basically cannot access the other areas.
Further, in this embodiment, a determination logic address storage area, a number-of-readable-times storage area, and a number-of-readouts storage area are provided in the system management area.
In
The general user area includes, as shown in
Like the other files, the number-of-reproductions limited file is stored in a range of a predetermined logic address in the data area. In an example shown in
In this embodiment, in subjecting a file recorded in the memory section 21 to limitation of a number of reproduction times as the number-of-reproductions limited file, the MPU 13 causes, on the basis of an exclusive command from the host, the memory section 21 to store the first and second determination logic addresses between the start and end logic addresses in the determination logic address storage area in the system management area.
The MPU 13 receives an exclusive command from the host to cause the memory section 21 to store a number of readable times concerning the number-of-reproductions limited file in the number-of-readable-times storage area in the system management area. Further, the MPU 13 causes, every time data in the first and second determination logic addresses is read out, while counting up the number of readouts, the memory section 21 to store the number of readouts of the file in the number-of-readouts storage area in the system management area.
The MPU 13 reads out a file stored in the data area and outputs the file to the host according to a readout command from the host. In this case, in this embodiment, when the data in the first and second determination logic addresses stored in the system management area is read out, the MPU 13 counts up the number of readouts and determines whether or not the number of readouts has reached the number of readable times. If the number of readouts reaches the number of readable times, the MPU 13 outputs, in response to the next readout request, 0xFF to the host instead of the data of the number-of-reproductions limited file.
The operation of the embodiment configured as explained above is explained below with reference to
Writing of a file in the memory section 21 is controlled by the not-shown host. The MPU 13 writes a file supplied from the host in a predetermined address range of the memory section 21 according to a command from the host.
When the file is the number-of-reproductions limited file, the MPU 13 writes, according to an exclusive command from the host, the first and second determination logic address set between the start and end logic address of the number-of-reproductions limited file in the determination logic address storage area in the system management area of the memory section 21. Further, the MPU 13 writes, according to an exclusive command from the host, information concerning the number of readable times, which specifies the number of times of reproduction of the number-of-reproductions limited file, in the number-of-readable-times storage area in the system management area. The MPU 13 initializes the information stored in the number-of-readable-times storage area in the system management area.
A user inserts the memory card 10 having the number-of-reproductions limited file stored therein into a predetermined host and performs reproduction of the number-of-reproductions limited file. When the memory card 10 is inserted into the card IF section of the not-shown host, the MPU 13 receives power supply from the host and starts operation.
When read out of the number-of-reproductions limited file is instructed from the host in step S1 in
When the file designated to be read out is the number-of-reproductions limited file, the determination logic address of which is stored, in step S3, the MPU 13 reads out information concerning the number of readouts from the number-of-readouts storage area in the system management area. Subsequently, in step S4, the MPU 13 reads out the number of readable times from the number-of-readable-times storage area in the system management area and determines whether or not the read-out number of readouts has reached the number of readable times.
If the number of readouts has not reached the number of readable times, in the next step S5, the MPU 13 performs normal readout. In the normal readout in step S5, stop and the like of the readout are also possible. The MPU 13 stops, halfway in the readout of the number-of-reproductions limited file, the readout when a command for stopping the readout is delivered from the host.
In the normal readout in step S5, the MPU 13 determines whether or not data in the determination logic address is read out (step S6). If both the data in the first and second determination logic addresses are read out in the normal readout in step S5, the MPU 13 shifts the processing to step S7, counts up the number of readouts, and updates the information in the number-of-readouts storage area. If the data in the first and second determination logic addresses are not read out in the normal readout in step S5, the MPU 13 ends the processing without counting up the number of readouts.
The MPU 13 repeats the flow shown in
In this way, in this embodiment, the determination logic address for determining readout of the number-of-reproductions limited file and the number of readable times are written in the system management area of the memory that the general user cannot directly access. When the number-of-reproductions limited file is read out, read out of data in the determination logic address is detected and the number of readouts is updated. If the number of readouts reaches the number of readable times, in the next readout, a specified value is output instead of the data of the number-of-reproductions limited file. Consequently, even when a general-purpose apparatus is used on the host side, it is possible to limit, in the memory card alone, the number of times of reproduction of the number-of-reproductions limited file to a desired number of times.
In the example explained in this embodiment, if the number of readouts reaches the number of readable times, the specified value is output in the next readout. However, any data may be output other than the data of the number-of-reproductions limited file. Further, the data output may be prohibited.
In this embodiment, readout of the number-of-reproductions limited file is detected according to readout of the data in the two first and second determination logic addresses. However, readout of the number-of-reproductions limited file may be determined according to readout of data in one or three or more determination logic addresses.
In this embodiment, as shown in
In this embodiment, if the number of readouts reaches the number of readable times, when reproduction of the number-of-reproductions limited file is instructed next, the MPU 13 reads out data of the related file stored in the auxiliary area from the first reproduction designation logic address corresponding to the start logic address of the number-of-reproductions limited file and outputs the data instead of data in the second reproduction designation logic address in a predetermined address range.
The operation of the embodiment configured as explained above is explained with reference to a flowchart of
In this embodiment, if the MPU 13 determines in step S4 that the number of readouts has reached the number of readable times, in step S10, the MPU 13 reads out the first and second reproduction designation logic addresses from the reproduction designation logic address storage area in the system management area. Subsequently, in step S11, the MPU 13 reads out the data of the related file stored in the auxiliary area and outputs the data as data between the first reproduction designation logic address and the second reproduction designation logic address equivalent to the start logic address.
In this way, after the number of readouts reaches the number of readable times, the data of the related file in the auxiliary area is output. For example, if advertisement information related to the number-of-reproductions limited file is stored as the related file, it is possible to reproduce the advertisement information according to designation of reproduction of the number-of-reproductions limited file.
As explained above, in this embodiment, after the number-of-reproductions limited file is reproduced a designated number of times of reproduction, the related file of the number-of-reproductions limited file is reproduced. Therefore, this embodiment is excellent in convenience for a provider of the number-of-reproductions limited file.
In the first and second embodiments, it is possible to perform limitation of a number of reproduction times with the memory card alone without using the function on the host side. Therefore, when the number-of-reproductions limited file stored in the memory section 21 is copied to another recording medium in which the first and second embodiments are not adopted, the number-of-reproductions limited file copied to the other recording medium can be reproduced many times exceeding the number of readouts.
Therefore, in this embodiment, the number of times of reproduction of the number-of-reproductions limited file is surely limited by making use of a copy protection technique adopted in an SD card or the like.
In writing a file in the memory section 21, the CPRM circuit 14 in the control section 11 performs writing of an encryption key according to CPRM rules. In the CPRM rules, the encrypted file is stored in a specified directory in the user area.
The CPRM circuit 14 causes the memory section 21 to store a generated encryption key in a directory in the protect area corresponding to the specified directory in the user area. In this case, the CPRM circuit 14 sets, as a file name of the encryption key, a file name associated with a file name of the file written in the user area.
During encryption, the CPRM circuit 14 retrieves, from the protect area, the encryption key corresponding to the file written in the user area. When the encryption key corresponding to the file is not retrieved from the protect area, the file written in the user area cannot be decrypted. Therefore, even if the number-of-reproductions limited file written in the user area is copied to the recording medium on the host side, since the corresponding encryption key is not copied to the recording medium at the copy destination, the file recorded in the recording medium at the copy destination cannot be decrypted.
However, if the number-of-reproductions limited file copied to the recording medium at the copy destination is written back to another address range of the user area of the memory section 21, even if the first and second embodiments are adopted, the written number-of-reproductions limited file can be reproduced many times.
Therefore, in this embodiment, the number of times of reproduction is limited by prohibiting writing of a file having a directory and a file name same as those of the number-of-reproductions limited file already written in the user area.
Specifically, in writing the number-of-reproductions limited file on the basis of an exclusive command from the host, the MPU 13 performs writing same as that in the first and second embodiments and writes, in a change prohibited area storage area in the system management area, information (a start address and an end address) concerning a change prohibited area in which information for accessing the number-of-reproductions limited file generated and written according to the writing is stored.
In
In writing the number-of-reproductions limited file, the MPU 13 writes information concerning the change prohibited areas in the system management area and, when a writing request is generated from the host side, reads out the information concerning the change prohibited areas and controls the writing. When there is writing data for changing a data value written in the change prohibited areas according to the writing request, the MPU 13 returns an error in response to the writing request and prevents writing in the memory section 21.
In some case, data writing is performed in sector unit of 512 bytes. Even in this case, the change prohibited areas are set in byte address unit. When writing data for changing a data value already written in the change prohibited areas is included in at least a part of the writing data in sector unit, the MPU 13 returns an error in response to the writing request and prevents data writing.
The operation of the embodiment configured as explained above is explained with reference to
It is assumed that the MPU 13 writes the number-of-reproductions limited file in the memory section 21 according to an exclusive command from the host. In this case, the MPU 13 writes the first and second determination logic addresses, the number of readable times, the number of readouts, and the first and second reproduction designation logic addresses respectively in the determination logic address storage area, the number-of-readable-times storage area, the number-of-readouts storage area, and the reproduction designation logic address storage area in the system management area. Further, in this embodiment, the MPU 13 sets the recording areas for FAT chains generated according to writing of the number-of-reproductions limited file and the recording areas of sub-directory and file entries as the change prohibited areas. The MPU 13 writes start and end addresses of the change prohibited areas in the change prohibited area storage area in the system management area.
The CPRM circuit 14 writes the encryption key corresponding to the encrypted number-of-reproductions limited file in the protect area of the memory section 21. The general user area and the protect area of the memory section 21 adopts file systems independent from each other. User authentication is necessary in order to access the protect area.
As a specific example, in
The CPRM circuit 14 writes encryption keys corresponding to the files in the protect area. As a file name of each of the encryption keys, three characters at the top of the file name of the file to be encrypted and an extension are combined. KEY is added as the extension. For example, an encryption key having a file name “AOBSA1.KEY” is generated for the file having the file name “AOB001.SA1”. In the generated encryption keys, entries “Title Key Entry #1 to #3” respectively corresponding to the files “AOB001.SA1”, “AOB001.SA2”, and “AOB001.SA3” in the user area are included.
When a readout request for a file is received from the host, the CPRM circuit 14 retrieves an encryption key corresponding to a directory in which the requested file is stored and a file name of the file in the protect area corresponding to the directory and the file name. When the corresponding encryption key is present, the file requested to be read out is decrypted using the encryption key. In this way, the MPU 13 can output the file corresponding to the file readout request received from the host side.
However, when the encryption key having the file name corresponding to the file name of file requested to be read out is not present in the directory in the protect area corresponding to the directory in which the file requested to be read out is stored, the CPRM circuit 14 cannot read out the encryption key for the file requested to be read out. Thus, decryption for the file is not performed.
Therefore, in this embodiment, the MPU 13 sets, other than the boot sector, a file entry for the number-of-reproductions limited file, a directory entry of a sub-directory in which the file is present, and recording areas of a FAT chain of the file entry for the file and a FAT chain for a body of the file as change prohibited areas. The MPU 13 writes information concerning the change prohibited areas in the change prohibited area storage area in the system management area to prohibit the number-of-reproductions limited file to be rewritten in the same direction in the same file name.
In an example shown in
As explained above, when the number-of-reproductions limited file having the file name “AOB001.SA1” is stored in a directory other than “SD AUDIO” or is changed to another file name, the CPRM circuit 14 cannot decrypt the number-of-reproductions limited file.
Therefore, even if the number-of-reproductions limited file already stored in the user area is stored in other directory or stored in another file name in response to a writing request from the host, the CPRM circuit 14 cannot decrypt the number-of-reproductions limited file.
In step S21 in
If the writing request involves a change of the change prohibited area, in step S24, the MPU 13 returns an error to the host and does not perform writing processing in the memory section 21.
As explained above, in this embodiment, a file having a same file name as that of a same sub-directory as that of the number-of-reproductions limited file cannot be deleted on a file system and cannot be replaced on another logic address. On the other hand, the CPRM circuit 14 associates a protection target file and an encryption key of the protect area using a file name (including a sub-directory name) of a content file. Therefore, even if the number-of-reproductions limited file is rewritten to the memory section 21, reproduction exceeding a designated number of reproducible times cannot be performed. It is possible to surely limit the number of times of reproduction to a desired number of times.
In the examples explained in the embodiments, the entire directory entry and the entire file entry are set as the change prohibited areas. However, a part in an entry (e.g., a file name, a file attribute, or a start cluster) may be set as the change prohibited area. In this case, other fields such as a file size and time information in the entry can be updated. However, deletion of a file on a file system and replacement of a file on another logic address cannot be performed.
In the embodiments, the example of the SD card is explained. However, the present invention can also be applied to other similar flash memory cards.
While certain embodiments have been described, these embodiments have been presented by way of example only, and are not intended to limit the scope of the inventions. Indeed, the novel embodiments described herein may be embodied in a variety of other forms; furthermore, various omissions, substitutions and changes in the form of the embodiments described herein may be made without departing from the spirit of the inventions. The accompanying claims and their equivalents are intended to cover such forms or modifications as would fall within the scope and spirit of the inventions.
Number | Date | Country | Kind |
---|---|---|---|
2010-256189 | Nov 2010 | JP | national |