Abstract: According to one embodiment, a content data reproduction system includes a host device which uses content data, and a storage device configured such that content data, which is obtained by decrypting encrypted content data that is created by encrypting the content data by content key data, is made usable in the host device. The host device includes a device ID which is uniquely allocated to each of host devices. The storage device includes a memory and a controller configured to control the memory.

Abstract: The present invention relates to an encoding and recording apparatus, a playback apparatus, and a program which solve the possibility of a capacity shortage of a protected area accompanying an increase in an information amount and the number of content keys. It is configured such that an encoded user identifier is recorded in a protected area of a key storage medium. The encoded user identifier is fixed information, and has the characteristic in which a data amount is not increased in connection with a utilization form. Therefore, a capacity shortage of the protected area is not brought about.

Abstract: A system for providing program information has a user terminal, a recording medium capable of reading information therefrom and writing information thereto through a command issued by the user terminal, and a server connected to the user terminal via a network, and provides program information from the server to the recording medium. The recording medium has a first control unit that performs a first mutual authentication operation with a first storage unit capable of writing program information thereto and the user terminal, and that executes a command to write program information to the first storage unit only if the first mutual authentication operation is successful. The user terminal performs a second mutual authentication operation with the server, obtains program information transmitted from the server if the second mutual authentication operation is successful, and issues a command to write the program information to the first storage unit of the recording medium.

Abstract: Spread of a forged storage medium is prevented suppressing an authentic storage medium's damage and trouble of a owner to the minimum. When there is an update request of user key data, the update history of the user key data concerning the shown above-mentioned medium identifier IDm is referred to. When judged that the update of the user key data concerning the shown medium identifier IDm not being performed within a predetermined period, the update of user key data is performed. The request of a update is refused when judged that the update of the user key data concerning the shown medium identifier IDm being performed within a predetermined period.

Abstract: To exclude any unauthorized device from a system and thereby prevent illegal use of content data, a memory card 10 stores a service key Ksrv for encrypting content key data Kc in a hidden area 14. The memory card 10 stores answer data AC to be obtained when question data Q is fed to a host function F possessed by an authorized host device 20, with encryption applied to the answer data AC by the service key Ksrv. When the question data Q is provided to the host device 20, answer data AH is obtained based on the question data Q and the host function F. A comparison unit 122 judges match or mismatch of the answer data AH and the answer data AC. When they match, the memory card 10 decrypts the content key data Kc encrypted by the service key Ksrv and sends it to the host device 20.

Abstract: Spread of a forged storage medium is prevented suppressing an authentic storage medium's damage and trouble of a owner to the minimum. When there is an update request of user key data, the update history of the user key data concerning the shown above-mentioned medium identifier IDm is referred to. When judged that the update of the user key data concerning the shown medium identifier IDm not being performed within a predetermined period, the update of user key data is performed. The request of a update is refused when judged that the update of the user key data concerning the shown medium identifier IDm being performed within a predetermined period.

Abstract: A user terminal converts stored contents of an SD card to contain second encrypted content key data equivalent to an encrypted title key of SD Audio, and encrypted content equivalent to encrypted content of the SD Audio. Accordingly, compatibility can be realized between an encryption dual key system as a first encryption system and an encryption (single) key system as a second encryption system.

Abstract: A content distribution method distributes a package containing a content from a content distribution apparatus to a terminal of a content distribution destination and causes the terminal to expand and display the content contained in the distributed package by using expansion software provided in the terminal. Update data of the expansion software is inserted in the package in addition to the content. When the terminal cannot expand the content by using the expansion software provided in it, the terminal updates the expansion software provided in it by using the update data contained in the distributed package and expands the content by using the updated expansion software.

Abstract: Rental business of content data is adequately performed while preventing a improper use of rights or the like by a user. Rental user key data Kuren1-3, and rental content key data Kuren1-3 includes management metadata M1-M3 and M1?-M3?, respectively. The management metadata includes data use termination date/time indicating an expiration date or the like.

Abstract: A content distribution method distributes a package containing a content from a content distribution apparatus to a terminal of a content distribution destination and causes the terminal to expand and display the content contained in the distributed package by using expansion software provided in the terminal. Update data of the expansion software is inserted in the package in addition to the content. When the terminal cannot expand the content by using the expansion software provided in it, the terminal updates the expansion software provided in it by using the update data contained in the distributed package and expands the content by using the updated expansion software.

Abstract: A personal computer PC transmits to a server encoded user information and encoded license information, etc. contained in a secure recording medium. The server decodes the encoded license information to obtain license information. Then, the server deletes the encoded license information contained in the secure recording medium via the personal computer PC. The server decodes the decoded user information contained in a secure recording medium to obtain user information. Then, the server encodes the license information based on the user information to write the obtained encoded license information into the secure recording medium via the personal computer PC. In this manner, license information can be moved between two secure media and convenience can be improved.

Abstract: A recording device configured to store content data in an encrypted manner, the recording device comprises a memory unit which stores various data, and a controller which controls the memory unit. The controller possesses a controller key and unique identification information, and is configured to generate a controller-unique key unique for each controller in accordance with the controller key and the identification information. The memory unit stores an MKB generated by encrypting a medium key with a device key set that is a collection of a plurality of device keys, an encrypted device key set generated by encrypting the device key set with the controller-unique key, and a device-key-set index which uniquely identifies the device key set.

Abstract: A recording device comprises a memory unit configured to be communicationable with an external device and to record key data for encryption of content data through an authentication process, and a controller which controls the memory unit. The memory unit comprises a normal recording unit which is accessible from the exterior through the controller without an authentication process, a protected recording unit which is accessible from the external device when authentication of a first authentication process completes, and a writing restricted/protected recording unit which is accessible from the external device when authentication of a second authentication completes and is unwritable and unaccessible from the external device when authentication of only the first authentication process completes.

Abstract: An interface control device includes a first interface, a second interface, a third interface, an interface controller and a clock supplying unit. The first interface is used to communicate with a first information processing device and obtain a first clock signal from the first information processing device. The second interface is used to communicate using a second clock signal with a second information processing device different from the first information processing device. The third interface is used to communicate with a controller of a data-storage medium. The interface controller performs an interface control for the first, second and third interfaces. Moreover, the clock supplying unit supplies the first clock signal to the third interface while communications through the second interface have not been established.

Abstract: This data protection system encrypts and stores data in a memory card, using a double encryption key scheme for encrypting the data with a data key and further encrypting the data key with a user key. This system provides data to a particular host device from the memory card and limits provision of the data to other host devices. The host device includes DPS program that governs control of writing data to, and reading data from the memory card. The memory card includes a first non-volatile memory and a memory controller that controls the first non-volatile memory. DPSA program is implemented in the memory controller that manages ID information for identifying a user capable of decrypting the encrypted data with the user key.

Abstract: A content distribution terminal includes a user key data generation unit generating new user key data representing a new version of the user key data; a user key update unit capturing, from the recordable medium, already-recorded user key data that has already been recorded on the recordable medium, and ordering the user key data generation unit to generate the new user key data when a predetermined situation is identified in the already-recorded user key data to execute an update procedure for the user key data; an erase control unit erasing, when a predetermined situation is identified in the already-recorded user key data, the first encrypted content key data that is encrypted with the already-recorded user key data and stored in the recordable medium; an encryption/decryption unit decrypting, with terminal-unique key, second encrypted content key data resulting from encryption of the content key data with different terminal-unique keys for different terminals, encrypting again content key data resulting f

Abstract: A situation where accesses concentrate on a release day is eased. A user terminal 20 requests a license center unit 40 to deliver content data submitting medium identifier data IDm. The license center unit 40 confirms a sale-start time of the content data concerning the delivery request in the sale-start time database 47, and delivers the content data or the like to the user terminal when the sale-start time has elapsed.

Abstract: A content delivery server comprises a packet generator operative to generate packetized content data; an encryptor operative to encrypt the packetized content data with content key data to generate encrypted content data and also operative to encrypt the content key data with user key data to generate encrypted content key data; a TS multiplexer operative to multiplex the encrypted content data into a transport stream and add the encrypted content key data to a TS header thereof; and a transmitter operative to transmit the transport stream to a user terminal.

Abstract: The content data is offered not only to specific storage media but also to the storage media of several different types. Various kinds of storage media (SDq, MSq, HDDq, etc.) enabled to acquire data from a license center unit 40 is provided with different type-identifier data IDs. This data is stored in a type identifier database 42. In case of acquisition request of the user key data from the each storage medium, the type identifier data IDs is shown with the medium identifier data IDm.

Abstract: A system for providing program information has a user terminal, a recording medium capable of reading information therefrom and writing information thereto through a command issued by the user terminal, and a server connected to the user terminal via a network, and provides program information from the server to the recording medium. The recording medium has a first control unit that performs a first mutual authentication operation with a first storage unit capable of writing program information thereto and the user terminal, and that executes a command to write program information to the first storage unit only if the first mutual authentication operation is successful. The user terminal performs a second mutual authentication operation with the server, obtains program information transmitted from the server if the second mutual authentication operation is successful, and issues a command to write the program information to the first storage unit of the recording medium.