Abstract: The present invention provides mobile terminals with various types of services such as electronic commerce service, music delivery service, and position information service. User applications required for the electronic commerce service, music delivery service, and position information service are respectively configured as service objects each having a server facility, and further a local gateway is provided, whereby various types of services can be used through a browser.

Abstract: The present invention provides mobile terminals with various types of services such as electronic commerce service, music delivery service, and position information service. User applications required for the electronic commerce service, music delivery service, and position information service are respectively configured as service objects each having a server facility, and further a local gateway is provided, whereby various types of services can be used through a browser.

Abstract: According to the present invention provided is an accounting means that is superior in safety and usability. The accounting means comprises: payment means including a plurality of systems of communication means; charging means including a plurality of systems of communication means; and settlement means including a plurality of systems of communication means. Since the payment means and the settlement means exchange transaction data by communicating with each other, it is possible to prevent the assessment of an illegal charge by the charging means. In addition, since a signature (a digital signature) and an accounting statement are exchanged by communication between the payment means and the charging means, the efficiency of the sale can be improved.

Abstract: An information terminal that decrypts sealed data without returning program data after update to the state before update. The information terminal includes update certificate storage unit 102 storing an update certificate for certifying update of the program data to be executed by CPU 101, and a selection unit 103 which, when the CPU 101 is to execute program data, judges whether or not digest of the post-update program data in the update certificate matches digest of the program data to be executed, and selects digest of the pre-update program data in the update certificate when it judges that they match. The CPU 101 executes the post-update program data. The information terminal further includes a security device that stores an extend value of a program data digest when the pre-update program data is executed by the CPU according to a request from the selection unit 103.

Abstract: A method is executed which is for managing the optional trusted components that are active within a device, such that the device itself controls the availability of trusted components. The device includes: a storing unit which stores a plurality of pieces of software and a plurality of certificates; a receiving unit which receives the certificates; and a selecting unit which selects one of the certificates. The device further includes an executing unit which verifies an enabled one of the plurality of pieces of software using the selected and updated one of the certificates.

Abstract: The present invention provides mobile terminals with various types of services such as electronic commerce service, music delivery service, and position information service. User applications required for the electronic commerce service, music delivery service, and position information service are respectively configured as service objects each having a server facility, and further a local gateway is provided, whereby various types of services can be used through a browser.

Abstract: A secure device can make contents of terminal application authentication information calculation a different complicated calculation process at each time while suppressing the processing load in the secure device and a card application code size to low values. When issuing of a terminal application (302) is requested from an application loader (301) to an application management unit (1011), an instruction content execution unit (1012) embeds authentication information used for calculation of an authentication key required for authentication with an application causing an information processing terminal (30) to perform a process, into the terminal application (302). A calculation complicating unit (1013) creates a calculation problem having a calculation result as an answer and embeds it as a part of the authentication information calculation into the terminal application (302).

Abstract: The present invention aims at providing an information processing terminal, a status notification system, and a status notification method that can protect both privacy and security when a status of the information processing terminal is notified to a server. An information processing terminal 10 has a disclosure/nondisclosure determination section 1001 that determines a notifiable server for each entry; a log concealing section 1002 that conceals an entry; a multi-log measurement section 1003 that commands to update hashes as to a plurality of parties; a log configuration section 1004 that configures a log directed at a notified party and that causes performance of signing action; a verification request section 1005 that requests verification; a policy storage section 1006 that stores a policy used for determining a party that can be notified; and a log storage section 1007 for storing the entry.

Abstract: With respect to a secure device 10 for executing a data storing operation and a data calculating operation under secrecy condition, a first application program 15 and a second application program 11 are retained. The program 15 causes an information processing terminal 30 mounted thereon this secure device 10 to execute a process operation by utilizing a resource of this information processing terminal 30. The program 11 causes the secure device 10 to execute such a process operation under secrecy condition in conjunction with the process operation of this information processing terminal 30. When this secure device 10 is mounted on the information processing terminal 30, this secure device 10 loads the program 15 to the information processing terminal 30 so as to install this loaded first application program therein. Then, a terminal application program required to execute a service is automatically installed to the information processing terminal 30.

Abstract: Provided is a data storage device capable of safely and effectively updating software of a home electric apparatus. In the home electric apparatus (100) in which currently used data is to be updated to new data, a reception unit (140) receives encrypted new data and a serial number of data to be updated. A key generation unit (112) generates a key by executing a predetermined irreversible calculation on the unique information correlated to the currently used data by a number of times based on the serial number of the data to be updated. An update unit (113) decrypts the new data by using the key.

Abstract: The objective of the present invention is to provide a mobile electronic commerce system that is superior in safety and usability. The mobile electronic commerce system comprises an electronic wallet 100, supply sides 101, 102, 103, 104 and 105, and a service providing means 110 that is connected by communication means. The service providing means installs a program for an electronic ticket, an electronic payment card, or an electronic telephone card. The electronic wallet employs the installed card to obtain a product or a service or entrance permission. The settlement process is performed by the electronic wallet and the supply side via the communication means, and data obtained during the settlement process are managed by being transmitted to the service providing means at a specific time. A negotiable card can be easily obtained, and when the negotiable card is used the settlement process can be quickly and precisely performed.

Abstract: The present invention has an object to provide a communication terminal, a secure device, and an integrated circuit, by which before data is transmitted by a transmission-sided communication terminal, a security process operation is carried out under environment of a communication terminal having a possibility of using the data with respect to threats caused by computer viruses and the like, which are operated in an illegal manner and are operable in correspondence with various sorts of platforms, and thus, safety characteristics with respect to the data can be assured. When a portable telephone 101 transmits data, a data analyzing unit 113 extracts identification information of a communication counter terminal 103 described in transmission data, and selects a predetermined verifying operation in response to an environment of the communication counter terminal 103 by referring to a permission information database 114.

Abstract: It is possible to provide a privilege for data communication without requiring a troublesome user operation and to realize an information provision system for ensuring anonymousness of the user for a site. A terminal device 10 includes secure communication means 11 which establishes a safety communication session and performs data communication with an information server, electronic gift rule management means 12 which holds an electronic gift rule for defining an electronic gift condition, and data processing means 13 which processes data transmitted/received to/from the information server based on the electronic gift rule under the safety communication session and generates an electronic gift. The electronic gift generated by the data processing means is reflected on the electronic value.

Abstract: In the key management software having a key database with a tree structure, a high-speed data encryption/decryption process is achieved by changing the tree structure without reducing the security strength when deleting or adding a key from/to the tree structure. The key management software 135 having the key database 146 with the tree structure, when deleting or adding a key from/to the tree structure, refers to the encryption strength comparison table 170 and the process time comparison table 180 to change the tree structure without reducing the security strength. This reduces the number of times an encrypted key is loaded onto the encryption/decryption processing device 134 during the data encryption/decryption process, thus achieving a high-speed data encryption/decryption.

Abstract: A method is provided for flexibly setting a shared counter shared by a plurality of security modules sharing a counter in tree structures, while curbing the amount of secure memory used. The shared counter is realized by a first counter group having a tree structure managed by a first secure module and a second counter group having a tree structure managed by a second secure module sharing a node in the tree structure of the first counter group and a node in the tree structure of the second counter group. The method of sharing using tree structures enables flexibly addition, deletion and access restriction setting of modules that use the shared counter.

Abstract: A ticket management system is provided which can perform adjustments using a ticket to which non-updatable value information is assigned together with an electronic value, according to a payment form. The ticket management system includes an IC tag attached to a money ticket, a money ticket management server and a mobile terminal. The IC tag holds a money ticket ID for identifying the money ticket and reads the money ticket ID. The money ticket management server includes a storage unit, receives the money ticket ID from the mobile terminal and writes a valid money ticket ID to the storage unit. The mobile terminal includes a storage unit, acquires the money ticket ID held in the IC tag, transmits the acquired money ticket ID to the money ticket management server, and writes amount information of the money ticket identified by the valid money ticket ID to the storage unit.

Abstract: One embodiment of the present invention is an optical sheet including a lens sheet having a plurality of microlenses arranged on a front surface thereof and a plurality of projections located at a back side thereof, a projection being located between light transmission parts, and a part corresponding to the microlens being the light transmission part; and a plurality of light reflection layers provided on top of the plurality of projections. A light refracted by the side surface of the projection exits in an oblique direction towards a plane of the optical sheet. Thereby, the view angle can be broadened.

Abstract: One embodiment of the present invention is an optical sheet including a lens sheet having a plurality of microlenses arranged on a front surface thereof and a plurality of projections located at a back side thereof, a projection being located between light transmission parts, and a part corresponding to the microlens being the light transmission part; and a plurality of light reflection layers provided on top of the plurality of projections. A light refracted by the side surface of the projection exits in an oblique direction towards a plane of the optical sheet. Thereby, the view angle can be broadened.

Abstract: To perform rapid and sure connection processing in a wireless communication system that performs communication in compliance with a wireless communication method having a congestion control function. A starting station transmits a discovery request frame and determines whether or not data is received from other communication devices in response to transmitted data. As a result of receiving data and checking FCS (Field Check Sequence), if it is detected that a received frame has been destroyed, or if no data is received from the other communication devices, a transmission distance control part decides a new transmission distance and sends a command to control transmission power to a power control part of a transmitting part, and the power control part transmits the discovery request frame again on the basis of the newly decided transmission distance to repeat discovery processing. This prevents a collision of responses from plural communication devices and ensures discoveries of other communication devices.

Abstract: A network electronic ticket 1003 is provided in an electronic ticket 1000. Start page data 1016, a ticket owner secret key 1017, an electronic ticket possession certificate 1018, and a network service program 1019 are provided in the network electronic ticket 1003, the network service program 1019 controls various types of processing and an electronic ticket storage terminal, and the ticket owner secret key 1017 and the electronic ticket possession certificate 1018 are used for authentication processing with an information providing apparatus on a network, whereby it is made possible to connect to the network from the electronic ticket itself and receive information service.