Patent Grant
7611053
1. Technical Field
The present invention relates to technology for protecting rights to digital content, and more particularly to a technique for issuing and managing electronic tickets.
2. Related Art
In recent years, various types of digital content, such as image data, video data, document data, music data, and game and other programs, have been supplied from a variety of content providers to users. When such digital content is supplied, a digital right management (DRM) technology is employed for protecting rights, such as a copyright and the like, of a content provider.
A typical application example of a DRM technology is a system using electronic tickets. In this system, digital content is distributed to users in a state where usage restrictions on the digital content are defined by means of an encryption technique. Defining these types of usage restrictions is also referred to as “encapsulation.” In order to utilize encapsulated digital content (hereinafter simply referred to as a “capsule”), a user should separately obtain an electronic ticket which contains information such as a key necessary for removing the usage restrictions. An electronic ticket is sometimes referred to as a license.
As one electronic ticket issuing and managing scheme, there has been known a system using an access control list. In this system, a usage condition for an individual content item is previously registered for each user in the access control list. When an electronic ticket for a content item is requested from a user, a usage condition for the content item having been specified to the user is obtained in the access control list, and an electronic ticket matching the obtained usage condition is issued.
According to an aspect of the present invention, there is provided a ticket issuing system issuing an electronic ticket for digital content to a user system attempting to utilize the digital content by means of the electronic ticket. The ticket issuing system includes a receiver that receives a request to issue the electronic ticket for the digital content from the user system attempting to utilize the digital content using the electronic ticket, and an issuance controller that controls issuance of the electronic ticket for the digital content to the user system, on the basis of a retained electronic ticket in the user system.
Exemplary embodiments of the present invention will be described in detail by reference to the following figures, wherein:
By reference to
The ticket issuing server 10 issues an electronic ticket in response to a request from the user terminal 20. The electronic ticket is data containing information of a key used for removing usage restrictions defined on digital content supplied from a content providing server (not illustrated in
The ticket issuing server 10 includes a ticket issuing section 12, a condition judging section 14, and an issuing rule storage 16. Upon receipt of a request to issue an electronic ticket from the user terminal 20, the ticket issuing section 12 determines whether or not the electronic ticket should be issued in response to the request. When issuance of the electronic ticket is determined, the electronic ticket is issued to the user terminal 20 being a sender of the request for the electronic ticket. On the other hand, when the issuance of the electronic ticket is not determined, predetermined error information indicating disabled issuance of the electronic ticket is returned to the user terminal 20.
In a system for selling digital content or electronic tickets, determination as to whether or not the electronic ticket is issued in response to a request is conducted on the basis of whether or not a user who operates the user terminal 20 has paid a cost for using the digital content, for example. Meanwhile, there may be a system for supplying digital content to pre-registered limited users in accordance with respective rights of the users as in the case of distributing internal business documents to the users in a company. In this case, on the basis of information of user rights registered in an access control list (ACL), a determination is made as to whether or not an electronic ticket being a target of a request is issued to a user who is a source of the request, or as to which usage condition is specified on the electronic ticket to be issued. As an alternative to such a conventional determination method, or as an additional determination method, a method is adopted in this exemplary embodiment in which information of an electronic ticket possessed by a user who is a request source is used as information which constitutes a basis for determination. The issuing rule storage 16 stores one or more issuing rules. The issuing rule is a rule for determining whether or not issuance of an electronic ticket requested by a user is enabled, or determining at least one usage condition for an electronic ticket to be issued. In the issuing rule, the information of the electronic ticket possessed by the user is used as the information constituting a basis for determination. On the basis of the issuing rule, the condition judging section 14 forms either a judgment on enabling/disabling of issuance of an electronic ticket or a judgment on details of the usage condition, or forms both of the judgments.
As an example,
In the system shown in
The user terminal 20 may be a computer, such as a personal computer, a workstation, or the like, having an operating system and various applications installed therein. Such applications installed in the computer include an application for using the digital content supplied from the content providing server.
In addition, the user terminal 20 further includes a token 22 for managing electronic tickets. The token 22 manages the electronic tickets received from the ticket issuing server 10 and performs, when use of digital content is required from a user, a process for determining whether or not the use of digital content is allowed (or determining under which usage condition the use of digital content is allowed). The token 22 is configured so as to be protected against tampering, and may be implemented as either software or hardware. The token 22 includes a ticket retaining section 24 in which the electronic tickets received from the ticket issuing server 10 are stored, and a response processor 26 which returns information of the electronic tickets stored in the ticket retaining section 24 in response to a query from the ticket issuing section 12.
When an access ticket scheme disclosed in Japanese Patent Laid-Open Publication Nos. Hei 10-247905 or Hei 11-031105 filed by the present applicant is adopted in a system using an electronic ticket, the token 22 retains information on an individual key allocated for each user terminal. The user terminal 20 utilizes, in combination, information contained in the electronic ticket and information of the individual key contained in the token to decode a content encryption key corresponding to an encapsulated content item, and further decodes the encapsulated content item by means of the content encryption key. In this system, a token ID of the token 22 in the user terminal 20 and the information of the individual key are previously registered in the ticket issuing server 10. The ticket issuing server 10 uses the information to issue an appropriate ticket corresponding to the token 22 of the user terminal 20.
By reference to
In the procedural steps, the user terminal 20 requests issuance of an electronic ticket from the ticket issuing server 10 (S11). Here, the user terminal 20 sends to the ticket issuing server 10 a request including a content ID of digital content that the user wishes to use. Alternatively, in a case where the user accesses a content providing server (which may be configured as a web server, for example) to download desired digital content to the user terminal 20, a request to issue an electronic ticket corresponding to the desired digital content may be sent from the content providing server to the ticket issuing server 10 (in this case, the request includes information for identifying the user terminal 20).
Upon receipt of the request to issue the electronic ticket, the ticket issuing server 10 refers to the issuing rule storage 16 to find a necessary ticket ID corresponding to the content ID of the desired digital content being a target of the request (S21). Then, the ticket issuing server 10 inquires the user terminal 20 as to whether the user terminal 20 retains an electronic ticket corresponding to the necessary ticket ID (S22).
According to the issuing rule shown in
In the user terminal 20 having received the query, the response processor 26 in the token 22 searches the ticket retaining section 24 to find the presence or absence of the retained electronic ticket corresponding to each necessary ticket ID (S12), and returns to the ticket issuing server 10 a reply including a searched result for each necessary ticket ID (i.e. the “presence” or “absence” of the electronic ticket) (S13).
Upon receipt of the reply, the ticket issuing server 10 performs matching for the reply on the issuing rule, to determine whether or not a condition for issuing the electronic ticket for the digital content in question is satisfied (S23). When the digital content in question is “C002,” for example, issuance of the electronic ticket for the digital content is determined to be enabled upon receipt of a reply representing possession of at least one of “T001,” “T002,” and “T003” from the user terminal 20.
Then, the ticket issuing server 10 checks a result of determination in step S23 (S24). When the result of determination indicates that the issuance is to be disabled, the ticket issuing server 14 returns to the user terminal 20 a reply indicating that the issuance is disabled (S25). Upon receipt of the reply, the user terminal 20 performs a predetermined error handling process, such as a process of displaying on a screen a message that the electronic ticket is unavailable (S14). On the other hand, when the result of determination indicates that the issuance is to be enabled, the ticket issuing server 10 generates an electronic ticket corresponding to the digital content in question and transmits the generated electronic ticket to the user terminal 20 (S26). Upon receipt of the electronic ticket, the token 22 in the user terminal 20 registers the received electronic ticket in the ticket retaining section 24 (S15).
In the above-described configuration of the system shown in
In the system configuration shown in
By reference to
Although in the example of
The issuing rule (refer to
As another example of the issuing rule, a rule as depicted in
Although in
A still further example of the issuing rule as depicted in
In order to implement such an issuing rule in the system configured as shown in
As still another example of the issuing rule, a rule depicted in
As described above, even when the user terminal 20 does not retain a ticket having the corresponding ticket ID, an electronic ticket for permitting a predetermined right may be issued. In this case, it is preferable that when the ticket having the corresponding ticket ID is retained, there is issued an electronic ticket representing an advantageous right relative to that granted in a case where the ticket having the corresponding ticket ID is not retained.
The issuing rule as shown in
Further, as shown in
As yet a further example of the issuing rule, a rule as shown in
Further, the issuing rule shown in
According to the above-described exemplary embodiments and modified examples, on the basis of the retained electronic ticket in the user terminal 20, the ticket issuing server 10 determines whether or not a new electronic ticket is issued, or determines details of a right (the usage condition) allocated to the new electronic ticket to be issued. Because issuance of the new electronic ticket is controlled in accordance with circumstances where the user obtains or utilizes the retained electronic ticket as described above, for example, a value-added service can be offered to a user who is a regular user; i.e. a scheme to enable provision of a service which can yield an increase in level of customer satisfaction can be provided.
Further, such control of issuance of a new electronic ticket based on information of the retained electronic ticket in the user terminal 20 as described above advantageously realizes control of the issuance of a new electronic ticket in accordance with the retained electronic ticket in the user terminal 20 existing at the time of issuing, a usage state of the retained electronic ticket, and other circumstances; i.e., dynamic circumstances surrounding a user. Such ticket issuing control in accordance with the dynamic circumstances cannot be implemented in conventional control of ticket issuance using the access control list, because the access control list cannot be updated unless a manager rewrites data in the access control list.
In the above-described exemplary embodiments and modified examples, it is also preferable that electronic tickets having the same ticket ID be issued for every user, as long as the requested target is the same content item. If rights to be granted vary from one user to another with respect to even the same content item, rights to be specified on the electronic tickets accordingly differ depending on the users. In this example, however, the same ticket ID may be assigned to the electronic tickets representing the different rights. When the ticket IDs are changed for each right specified on an electronic ticket, it is necessary to describe a great number of the “necessary ticket IDs” or “corresponding ticket IDs” in the issuing rule, which increases complexity (for example, it becomes necessary to describe multiple electronic tickets for the same content item). Such complexity can be reduced by issuing the electronic tickets having the same ticket ID when the requested target is the same content item.
Although the above-described examples have used the issuing rules in which the presence or absence of an electronic ticket, the number of times the electronic ticket is used, and an elapsed time from the issuing date of the electronic ticket are taken into consideration as information of the retained electronic ticket installed in the user terminal 20, the issuing rule is not limited to those described above, and there may be adopted an issuing rule in which information items other than those described above are taken into consideration.
Still further, although in the above-described examples issuance of a new electronic ticket is controlled on the basis of the information of the retained electronic ticket installed in the user terminal 20, information other than the information of the retained electronic ticket may be used as data representing the dynamic circumstances surrounding the user terminal 20. For example, there may be employed an issuing rule configured on the basis of information of an address of the user terminal 20 (for example, a global IP address) detected when the user terminal 20 attempts to access the ticket issuing server 10. Specifically, it is possible to use an issuing rule under which the issuance of the requested electronic ticket is enabled only when the global IP address of the user terminal 20 attempting to make an access falls within a previously registered range. The use of such an issuing rule can yield appropriate restrictions on the issuing range of electronic tickets. Further, when the user terminal 20 is a mobile terminal, for example, control can be effected such that issuance of an electronic ticket is disabled in a period during which the user terminal 20 is located outside the company.
The above-described ticket issuing server 10 is typically implemented by executing a program in which functions or details of processing of each component are described by means of a general-purpose computer. The computer has, as hardware, a circuit configuration in which a central processing unit (CPU) 40, a memory (a primary storage) 42, various I/O interfaces 44, and other components are connected through a bus 46 as shown in
The foregoing description of the exemplary embodiments of the present invention has been provided for the purposes of illustration and description. It is not intended to be exhaustive or to limit the invention to the precise forms disclosed. Obviously, many modifications and variations will be apparent to practitioners skilled in the art. The exemplary embodiments were chosen and described in order to best explain the principles of the invention and its practical applications, thereby enabling others skilled in the art to understand the invention for various exemplary embodiments and with various modifications as are suited to the particular use contemplated. It is intended that the scope of the invention be defined by the following claims and their equivalents.
| Number | Date | Country | Kind |
|---|---|---|---|
| 2006-027044 | Feb 2006 | JP | national |
| Number | Name | Date | Kind |
|---|---|---|---|
| 6216227 | Goldstein et al. | Apr 2001 | B1 |
| 6690794 | Terao et al. | Feb 2004 | B1 |
| 7004388 | Kohta | Feb 2006 | B2 |
| 7392226 | Sasaki et al. | Jun 2008 | B1 |
| 20020077983 | Tagashira | Jun 2002 | A1 |
| 20020116343 | Nakamura et al. | Aug 2002 | A1 |
| 20040039911 | Oka et al. | Feb 2004 | A1 |
| 20040039919 | Takayama et al. | Feb 2004 | A1 |
| 20040059685 | Sakamura et al. | Mar 2004 | A1 |
| 20040187009 | Ebata | Sep 2004 | A1 |
| 20040193546 | Tokutani et al. | Sep 2004 | A1 |
| 20050049975 | Katayama | Mar 2005 | A1 |
| 20060161446 | Fyfe et al. | Jul 2006 | A1 |
| 20060188097 | Taniguchi et al. | Aug 2006 | A1 |
| 20060288424 | Saito | Dec 2006 | A1 |
| 20070017979 | Wu et al. | Jan 2007 | A1 |
| 20070044157 | Taguchi et al. | Feb 2007 | A1 |
| Number | Date | Country |
|---|---|---|
| 03027924 | Aug 2002 | JP |
| 2003-157334 | Mar 2003 | JP |
| 2002008291 | May 2003 | JP |
| 2003196414 | Jul 2003 | JP |
| 2004-302931 | Oct 2004 | JP |
| 20010067759 | Jul 2001 | KR |
| Number | Date | Country | |
|---|---|---|---|
| 20070185982 A1 | Aug 2007 | US |
