Abstract: Provided is a group subordinate terminal in a key updating system that includes a server and a group of terminals including: a group managing terminal; and group subordinate terminals including the group subordinate terminal, the group subordinate terminal comprising: a group withdrawal request processing unit which transmits a group withdrawal request to the group managing terminal in response to an instruction to update its apparatus-unique key, the group withdrawal request requesting for withdrawal of the group subordinate terminal from the group; an update apparatus-unique key requesting unit which requests for another apparatus-unique key by transmitting to the server a group withdrawal certificate indicating that the withdrawal of the group subordinate terminal from the group of terminals is completed through invalidation of its group key; and an update processing unit which updates the apparatus-unique key held in an apparatus-unique key holding unit to the another apparatus-unique key obtained from th

Abstract: Provided are a utilization apparatus, a server apparatus, and a key utilization system which enable the utilization apparatus to control deletion of the old key without using a secure clock and allow encrypted communications irrespective of whether the accessed server has updated its key or not. In key utilization system 1, one or more server apparatuses 5-1 to 5-n each provide service to an apparatus having an apparatus key corresponding with a server key. Update apparatus 2 distributes an update server key to each server apparatus and a new apparatus key to key utilization apparatus 3. CRL distribution apparatus 4 distributes to key utilization apparatus 3 a CRL indicating one or more server apparatuses which have completed key-updating. Key utilization apparatus 3 holds both the old and new apparatus key, judges whether the server apparatuses monitored using the CRL have completed key-updating, and if affirmative, deletes the old apparatus key.

Abstract: A program obfuscator of the present invention divides a target program into a plurality of blocks and determines program instructions allocated according to an input/output relation between the blocks, in order to diffuse and allocate the program instructions for calculating a value of secret information in various places of the program. More specifically, with regard to a variable for calculating the secret information transferred to and from the blocks, a value of the variable when outputted from a block is equalized to a value of the variable when inputted to a next block. A random variable conversion instruction is added to each of the blocks so that a value of the variable when outputted from each block is in a range of a value expected as an input to the next block.

Abstract: It is an object of the present invention to provide an obfuscation device that can achieve both sufficient obfuscation and the appropriate instruction block to be executed. In the obfuscation device, a first instruction generating unit, for each of the first process and the second process, generates an initialization instruction for securing a management area for managing the identification information indicating an instruction block that should be executed next so as to proceed with the process, and to store the initialization instruction in said storage unit.

Abstract: Provided is an obfuscating apparatus for making a program analysis more difficult. The obfuscating apparatus creates a table for inputting the same number of arguments, for multiplying and squaring operations, and sets the output values of the table so that the outputs may depend on those arguments. To the squaring operations, more specifically, there are added and tabulated the adding operations using the arguments necessary only for the multiplications, so that the number of arguments is equalized to that of the multiplications. In this case, moreover, the outputs depend on all the arguments, so that the presence/absence of the added argument is unknown unlike the case, in which dummy arguments not to be actually processed are added.

Abstract: Provided is a program conversion apparatus for generating a secret holding program, which disables a malicious analyzer from analyzing the an original program easily.

Abstract: A tampering-prevention-process generation apparatus (110) which generates a program that reliably protects a code targeted for protection is an apparatus that generates an output process instruction group (160) to be executed by an execution processing apparatus (130) in order to protect a first process instruction (140) which causes the execution processing apparatus (130) to assign a value to an assign-target variable.

Abstract: When performing secure processing using confidential information that needs to be confidential, the secure processing device according to the present invention prevents the confidential information from being exposed by an unauthorized analysis such as a memory dump.

Abstract: An obfuscation evaluation method which sufficiently evaluates an obfuscation performed on a program. The obfuscation evaluation method includes: a step (S424) of executing an obfuscated code module (204) produced by obfuscating an original code module (200) of a program, and generating a trace output file (218) by logging a result of the execution; and a step (S428) of identifying the degree of obfuscation of the obfuscated code module (204) by evaluating the trace output file (218).

Abstract: A program obfuscating device for generating obfuscated program from which unauthorized analyzer cannot obtain confidential information easily.

Abstract: To provide a program conversion device capable of executing a program that includes a secret operation for decrypting encrypted data using secret information without exposure of the secret information in a memory thereby to improve confidentiality in execution of the program.

Abstract: The present invention comprises a program generation apparatus for generating an obfuscated program difficult to analyze from outside and a program execution apparatus for executing the program. The program generation apparatus comprises: an acquisition unit operable to acquire a 1st program including one or more instructions, the 1st program causing a process by executing the instructions in a predetermined order to obtain a result; a generation unit operable to generate a 2nd program based on the 1st program; and an output unit operable to output the 2nd program. Here, the 2nd program causes a process that is different from the process caused by the 1st program and varies according to current information determined at execution of the 2nd program in order to obtain a result identical to the result of the 1st program.

Abstract: It is troublesome for a distributor (server) to manage a plurality of programs of different obfuscated levels that are suitable for various devices, including ones having a high-speed CPU but with low security level (PCs) and ones having a low-speed CPU but with high security level (consumer products). A program conversion device generates a program by obfuscating an original program, and also generates and encrypts conversion parameters for inverse conversion of the obfuscated program. The program conversion device distributes the obfuscated program together with the encrypted conversion parameters. To execute the obfuscated program, a device having a high security level decrypts the encrypted parameters by using a decryption key stored in advance, applies inverse conversion to the obfuscated program by using the decrypted conversion parameters, and executes the program resulting from the inverse conversion.

Abstract: An encrypted-data decrypting apparatus that provides enhanced security protection for programs and data while they are in the processes of decryption to execution after having been encrypted. When a decrypted partial program needs to be loaded into the shared memory M, the controlling unit 11 loads it into an area indicated by the memory location information. According to the memory location information, a plurality of partial programs are sequentially loaded into an area so that one partial program gets overwritten by another; therefore, none of the partial programs exists in the memory for a long time, and thus there is less possibility of having the partial programs referred to illegitimately. In addition, since every time some data is decrypted, the decryption support program authenticating unit 13 confirms authenticity of the decryption support program P, it is possible to prevent having illegitimate references in which the decryption support program is abused.

Abstract: An encrypted-data decrypting apparatus that provides enhanced security protection for programs and data while they are in the processes of decryption to execution after having been encrypted. When a decrypted partial program needs to be loaded into the shared memory M, the controlling unit 11 loads it into an area indicated by the memory location information. According to the memory location information, a plurality of partial programs are sequentially loaded into an area so that one partial program gets overwritten by another; therefore, none of the partial programs exists in the memory for a long time, and thus there is less possibility of having the partial programs referred to illegitimately. In addition, since every time some data is decrypted, the decryption support program authenticating unit 13 confirms authenticity of the decryption support program P, it is possible to prevent having illegitimate references in which the decryption support program is abused.

Abstract: An intelligent cash box system is provided which comprises: a validator 2 attached in a bill handling apparatus 1; a detection sensor 45 mounted in validator 2; a control circuit 47 connected to detection sensor 45; a card 3 bearing at least a code recorded on card 3 for identifying bill handling apparatus 1; a stacker 4 attached to validator 2 for accumulating bills 44 considered as genuine by validator 2; and an intelligent storage 5 provided in stacker 4. The card 3 can be inserted into validator 2 so that detection sensor 45 detects the code on card 3 and bill information on bill 44, and forwards the code and bill information to control circuit 47 which then transmits the code and bill information to intelligent storage 5 for storage therein.

Abstract: A method and apparatus for renewing software in a software-controlled machine is provided wherein a sensor 16 detects external command information to shift an operation control circuit 50 from an operating mode to a renewal mode, and then detects external operating data on software to store same from the sensor 16 in a program memory 53 of the renewal mode for easy renewal of the software in accordance with renewal control program. Then, the operation control circuit 50 is shifted from the renewal mode to the operating mode to operate the machine with the renewed operating data.

Abstract: A paper sheet handling apparatus, includes: an identifying unit 20 which forwards and identifies a paper sheet A that is inserted from an opening portion 22 formed in its front plane; a collecting unit 30 which stores the identified paper sheet A; a paying-out unit 40 which stores a paying-out paper sheet B to be paid out to the opening portion 22 in a certain case; a forwarding unit 50 which forwards the paper sheet A and the paying-out paper sheet B, between each of the identifying unit 20, the collecting unit 30 and the paying-out unit 40; an outer frame 10 which holds each unit of the identifying unit 20 disposed on its front side, the forwarding unit 50 disposed on the inner side from it, the collecting unit 30 disposed below these identifying unit 20 and forwarding unit 50 and on the front side, and the paying-out unit 40 disposed on the inner side from the collecting unit 30, in which to the outer frame 10, at least the collecting unit 30 and the paying-out unit 40 are detachably attached from its fron

Abstract: A bill handling apparatus is provided that comprises an intelligent cash box system for transmitting information from a validator 2 to a stacker 4. The intelligent cash box system comprises a card 3 bearing a code recorded on the card 3 for identifying the bill handling apparatus, and an intelligent storage 5 provided in the stacker 4. The card 3 can be inserted into an inlet 11 of the validator 2 to detect the code by a detection sensor 45 and store the code in a control circuit 47 as code information. Bill information includes data of the bills received in a storage chamber 30 of the stacker 4 and is transmitted from the control circuit 47 to the intelligent storage 5. The intelligent storage 5 is in communication with the control circuit 47 of the validator 2 to receive the code information and bill information from the control means 47 and store these information in the intelligent storage 5.