JP4814599B2 - Authentication apparatus, authentication target apparatus, and authentication method - Google Patents

Description

  The present invention relates to an authentication apparatus that is connected to a battery and authenticates the battery, and an authentication apparatus that is connected to another apparatus and performs authentication with the other apparatus.

  In recent years, various home appliances have become highly functional, and there are an increasing number of home appliances whose functions can be expanded by connecting peripheral devices. In such products, it may be necessary to determine whether or not the peripheral device is a genuine product (genuine product) in order to avoid troubles such as a user accidentally connecting another company's product.

  Therefore, it is generally considered that authentication processing used in the computer system is performed between the main body of the home appliance and the peripheral device, and applied to confirming whether it is a genuine product. For example, Patent Document 1 discloses an example of a general challenge-response type authentication.

In recent years, manufacturers of non-genuine (non-genuine) batteries have appeared, and there are increasing cases of problems such as unstable power supply due to differences in electrical ratings. For this reason, the necessity of authenticating whether a battery is a regular product is also increasing. For this purpose, for example, the battery authentication method disclosed in Patent Document 2 may be adopted.
Japanese Patent Laid-Open No. 11-163853 JP 2000-517487

  However, unlike home appliances, there are products that generate large electrical noise during operation. Therefore, in order to increase the certainty of the authentication process, a method of repeatedly performing authentication can be considered.

  However, if the authentication process is repeated, the amount of data exchanged between the peripheral device and the main body increases, and the communication load increases. In home appliances, etc., it is necessary to preferentially execute processing related to the function of the home appliance itself, so it is desirable to increase the communication load not directly related to the function of the home appliance with the peripheral device. Absent.

  The present invention has been made in view of the above circumstances, and an object thereof is to provide an authentication apparatus capable of reducing the amount of data exchanged for authentication and reducing the communication load.

  In addition, regarding the battery, the conventional battery authentication method does not take into consideration battery-specific problems such as a state where the battery is not charged.

  Another object of the present invention has been made in view of the above circumstances, and is to provide an authentication device that takes into consideration problems peculiar to batteries.

  The present invention for solving the problems of the conventional example is an authentication system including a battery and an authentication device for authenticating the battery, wherein the authentication device includes a battery connection unit connected to the battery; A receiving unit that accepts a power supply from the external power source when connected to the external power source, and performs an authentication process for authenticating the battery connected to the battery connecting unit, and is external to the receiving unit. The authentication apparatus is characterized in that the content of the authentication process varies depending on whether or not power is supplied from the power supply.

  In addition, the present invention for solving the problems of the conventional example includes a battery connecting portion that is connected to a battery, and a receiving portion that receives a power supply from the external power source when connected to an external power source. An authentication device that performs an authentication process for authenticating a battery connected to the battery connection unit, and the contents of the authentication process differ depending on whether or not power is supplied from an external power source to the receiving unit. It is characterized by that.

  In these, the authentication process is repeatedly performed during a repetition period, and the repetition period of the authentication process may be varied depending on whether or not the receiving unit accepts power supply from an external power source. In addition, the authentication process may be repeatedly performed a plurality of times, and the repetition interval and the number of repetitions may be varied depending on whether or not the receiving unit accepts power supply from an external power source. In this case, when the authentication of the battery by the authentication process fails for the number of repetitions, a failure process for turning off the power of the authentication apparatus may be executed.

  Moreover, when the battery authentication by the authentication process fails, a failure process for turning off the power of the authentication apparatus may be executed.

  Furthermore, a control method according to an aspect of the present invention provides an authentication apparatus including a battery connection unit that is connected to a battery and a reception unit that receives a power supply from the external power source when connected to an external power source. A control method for performing an authentication process as to whether or not a battery connected to the battery connection unit is a genuine product, wherein an authentication process is performed depending on whether the receiving unit accepts a power supply from an external power source. It is characterized by different contents.

  The present invention for solving the problems of the above-described conventional example is an authentication system including an authentication requesting apparatus and an authentication target apparatus that hold a common encryption key, and the authentication requesting apparatus includes a code relationship Generating information and transmitting it to the device to be authenticated, obtaining a challenge code based on the code-related information, generating comparison encryption information in which the challenge code is encrypted with the encryption key, The authentication object device accepts the code related information, acquires a challenge code based on the received code related information, encrypts the acquired challenge code with the encryption key, and generates encrypted information. Transmitting the encryption related information related to the generated encryption information to the authentication request side device, and the authentication request side device generates the encryption related information and the generated Performing comparison processing of the authentication target device by comparing comparison encryption related information related to comparison encryption information, the code related information is a part of the challenge code, and / or The encryption-related information is a part of the encryption information.

  Another aspect of the present invention is an authentication target device that is connected to an authentication requesting device and transmits information related to authentication in response to an authentication request from the authentication requesting device, and includes a code from the authentication requesting device. Means for receiving relation information; code acquisition means for acquiring a challenge code based on the received code relation information; means for encrypting the challenge code to generate encryption information; and the generated encryption information Means for transmitting to the authentication request side device, the code related information is a part of the challenge code, and / or the cryptographic related information is a part of the encrypted information. It is characterized by being part.

  Here, the code-related information is a part of the challenge code, and the code acquisition unit joins the common-part information common to that held by the authentication request side device and the code-related information. The challenge code may be generated and acquired.

  In addition, in order to authenticate the authentication requesting side device, a second code related information is generated and transmitted to the authentication requesting device, and a part of the encrypted information obtained by encrypting the second challenge code Are obtained from the authentication request side device, based on the second code relation information, a second challenge code is obtained, and the generated second challenge code is encrypted for comparison. Means for generating encryption information; and a portion of the comparison encryption information corresponding to a part of the acquired encryption information is extracted as comparison partial information, and the comparison partial information and the acquired Means for comparing a part of the encrypted information, and if the comparison partial information and the acquired part of the encrypted information are different as a result of the comparison, the comparison partial information The first argument given for A value corresponding to the result of the operation is transmitted, and when the comparison partial information and a part of the acquired encrypted information match, a predetermined second value is given to the comparison partial information. A value corresponding to the result of performing the logical operation may be transmitted.

  Further, another aspect of the present invention is an authentication method in a device connected to an authentication request side device, the step of receiving code relationship information from the authentication request side device, and based on the received code relationship information, Obtaining a challenge code; encrypting the challenge code; generating encrypted information; transmitting cryptographic relation information related to the generated encrypted information to the authentication requesting apparatus; The code-related information is a part of the challenge code, and / or the encryption-related information is a part of the encrypted information.

  Furthermore, the present invention for solving the problems of the above-described conventional example is an authentication requesting side device, which is connected to a battery and a power supply from the external power supply when connected to an external power supply. An authentication request side device that performs an authentication process for authenticating a battery connected to the battery connection unit, generates code-related information, and transmits the code-related information to the battery. Obtaining a challenge code based on the code relationship information, generating comparison encryption information obtained by encrypting the challenge code with the encryption key, and obtaining a challenge code acquired based on the transmitted code relationship information, The encryption information encrypted with the encryption key is acquired on the battery side, the encryption-related information acquired from the battery, and the generated comparison encryption information The battery-related authentication process is performed by comparing the encryption-related information for comparison related to the code, the code-related information is part of the challenge code, and / or the encryption-related information is the encryption It is a part of information.

  Here, the content of the authentication process may be varied depending on whether power is supplied from the external power source to the receiving unit. Further, the authentication process may be repeated during a repetition period, and the repetition period of the authentication process may be varied depending on whether or not the receiving unit accepts power supply from an external power source.

  Further, the authentication process may be repeated a plurality of times, and the repetition interval and the number of repetitions may be varied depending on whether or not the receiving unit accepts power supply from an external power source. In this case, when the authentication of the battery by the authentication process fails for the number of repetitions, a failure process for turning off the battery power may be executed.

  Further, when the battery authentication by the authentication process fails, a failure process for turning off the battery power may be executed.

  A first embodiment of the present invention will be described with reference to the drawings. The authentication device according to the first embodiment of the present invention is, for example, a consumer game machine, and includes a control unit 11 such as a CPU, a storage unit 12, an operation unit 13, a display control unit 14, and a communication unit 15. And an optical disk drive 16 and a power supply control unit 17, and are connected to the battery 3.

  The control unit 11 operates according to a program stored in the storage unit 12. This control part 11 performs the process relevant to a game. In the present embodiment, the control unit 11 performs processing as an authentication device. Specific processing contents of the control unit 11 as an authentication device will be described later.

  The storage unit 12 is a RAM, for example, and holds a game program read from the optical disc drive 16. The storage unit 12 includes a non-volatile storage element and stores a program as an authentication requesting side device. Furthermore, the storage unit 12 also operates as a work memory for the control unit 11.

  The operation unit 13 is a game controller, and outputs the instruction operation content of the player to the control unit 11. The display control unit 14 is a graphic board, and displays a game screen on a display device such as a liquid crystal display in accordance with an instruction input from the control unit 11. The communication unit 15 is, for example, a serial communication port or the like, and is connected to the battery 3 to exchange information. Specifically, the communication unit 15 transmits information to the battery 3 in accordance with an instruction input from the control unit 11. Further, the communication unit 15 outputs information received from the battery 3 side to the control unit 11.

  The optical disk drive 16 is, for example, a DVD-ROM drive or a Blu-ray disk drive, and reads information such as a program from a storage medium such as a DVD or a Blu-ray disk and outputs the information to the control unit 11.

  The power control unit 17 is connected to the battery 3 and includes a power control circuit 21, a charging circuit 22, and a power supply circuit 23 as shown in FIG. The power supply control circuit 21 controls the supply of power supplied from the battery 3 and the power supply circuit 23 to each unit such as the control unit 11. For example, when the player performs an operation to turn on the power, the power control circuit 21 starts supplying power to each unit, and when the operation to turn off the power is performed, or the power from the control unit 11 should be turned off. When there is an instruction (power-off instruction), the power supply to each unit is stopped.

  The charging circuit 22 performs an operation of charging the battery 3 if the battery 3 is connected when power is supplied from the power supply circuit 23. The power supply circuit 23 is, for example, a regulator or the like, and is an operation for receiving a DC power supply voltage generated as an external power supply based on, for example, power from a household outlet and outputting it to the power supply control circuit 21 or the charging circuit 22. It is carried out. The power supply circuit 23 corresponds to the receiving unit of the present invention.

  When the battery 3 is connected and the power supply circuit 23 is not supplied with external power, the power controller 17 supplies the power supplied from the battery 3 to each unit. If the power supply circuit 23 is supplied with an external power supply, the power supplied from the external power supply is supplied to each unit. Further, when the power supply circuit 23 is supplied with external power, if the battery 3 is connected, the battery 3 is charged.

  As illustrated in FIG. 3, the battery 3 includes a control unit 31, a storage unit 32, and a communication unit 33. The control unit 31 is a CPU or the like and operates according to a program stored in the storage unit 32. This control part 31 performs the process for providing the information (battery residual amount, temperature, etc.) regarding a battery. Further, the control unit 31 performs processing for realizing an authentication function. Processing for realizing the authentication function of the control unit 31 will be described later.

  The storage unit 32 includes a storage element such as a flash ROM (Read Only Memory) or a RAM (Random Access Memory). The storage unit 32 stores a program executed by the control unit 31. The storage unit 32 also operates as a work memory for storing various data necessary for the process of the control unit 31.

  The communication unit 33 is connected to the authentication device 1 side. The communication unit 33 is, for example, a serial communication port. The communication unit 33 transmits information to the authentication device 1 in accordance with an instruction input from the control unit 31. In addition, the communication unit 33 outputs information received from the authentication device 1 to the control unit 31.

  Functionally, the authentication device 1 according to the present embodiment includes a battery authentication unit 61, a failure counter 62, an interval value buffer 63, and an external power supply determination unit 64, as shown in FIG. Is done.

  The battery authentication unit 61 waits for the time interval stored in the interval value buffer 63 and executes a process of authenticating the battery. For example, there are various authentication methods such as a challenge-response method disclosed in Patent Document 1 and a method using a password. Further, when the authentication fails, the battery authentication unit 61 increments the failure counter 62 and outputs a signal indicating that the authentication has failed to the external power supply determination unit 64. Further, when the authentication is successful, the battery authentication unit 61 resets the failure counter 62 to “0”, and causes the interval value buffer 63 to store an interval value set in advance as a value to be set at the time of success.

  Further, the battery authentication unit 61 executes a failure process when the value of the failure counter 62 exceeds a predetermined number of times threshold. This process will be described later.

  The failure counter 62 is initially reset to “0”. The failure counter 62 increments the value according to an instruction from the battery authentication unit 61 and resets it to “0”. The interval value buffer 63 holds an interval value.

  The external power supply determination unit 64 receives an input of a signal indicating that the authentication has failed from the battery authentication unit 61, and determines whether or not the power control unit 17 is supplied with external power. If the external power supply is received, a predetermined interval value as an interval value when the external power is supplied is stored in the interval value buffer 63. If the external power supply is not received, a predetermined interval value is stored in the interval value buffer 63 when the external power is not supplied.

  In the present embodiment, the above functions are realized by software. That is, an example of processing as the authentication device of the control unit 11 and processing for realizing the authentication function of the control unit 31 of the battery 3 will be described below. As described above, there are various types of authentication processing, such as a challenge-response method disclosed in Patent Document 1, a method using a password, and any of them may be used. The control unit 11 stores a flag representing the authentication result in the storage unit 12. For example, this flag is assumed to be “0” when the authentication is successful and “1” when the authentication fails.

  When the authentication fails, the control unit 11 of the authentication apparatus and the control unit 31 of the battery 3 execute the authentication process again. In addition, even when the authentication is successful, the authentication process may be performed again after a certain period of time.

  One characteristic of the present embodiment is that the control unit 11 varies the contents of the authentication process depending on whether or not the power control unit 17 is supplied with external power. Specifically, when the power is turned on, the control unit 11 checks whether or not the battery 3 is connected, and if the battery 3 is connected, starts the processing shown in FIG. Here, the description will be made assuming that a storage area for storing a failure counter that holds the number of consecutive authentication failures is secured in the storage unit 12 in advance, but the failure counter is stored in a register of the CPU that operates as the control unit 11. You may keep it.

  Then, the battery 3 is authenticated (S1), and it is checked whether the battery 3 has been successfully authenticated (whether it has been determined that the battery 3 is a genuine product) (S2). That is, it is checked whether or not the flag relating to authentication is “1” (a value indicating the previous authentication failure). If it is determined that the authentication has failed, the failure counter is incremented by one (S3). Then, it is determined whether or not the power control unit 17 is supplied with external power (S4).

  Here, if the power supply control unit 17 is not supplied with external power, the authentication processing repetition interval is set to a first predetermined interval value (for example, 100 milliseconds), and the authentication failure frequency threshold is set to the first threshold value. The threshold value is set to “30 times” (S5). Then, the control unit 11 checks whether or not the value of the failure counter has exceeded the set number of times threshold (S6), and if it has exceeded, executes the process at the time of failure (S7) and ends the process. That is, when a failure occurs continuously for a set number of times threshold (repetition count), the failure process is executed, for example, the apparatus is turned off.

  On the other hand, if the set number of times threshold is not exceeded in the process S6, the process is interrupted for the time set for the authentication process repeat interval (S8), and the time set for the authentication process repeat interval has elapsed. Then, the process returns to the process S1 to continue the process.

  In step S4, when the power control unit 17 is supplied with external power, the authentication processing repetition interval is set to a second predetermined interval value (for example, 500 milliseconds), and the number of authentication failure times is set. The threshold value is set to the second threshold value “600 times” (S9), the process proceeds to process S6 and the process is continued.

  That is, the predetermined interval value (repetition interval) is different from the number threshold (repetition number) depending on whether or not external power is supplied, and the authentication processing repetition period is different. For example, even when the battery 3 is a genuine product, there is almost no remaining amount, and the control unit 31 cannot be operated. That is, if the control unit 31 is not operating, even if a random number value is transmitted from the authentication device 1 to the battery 3, the encryption information cannot be transmitted from the battery 3, and the authentication device 1 authenticates the battery 3. It will be judged as a failure. Therefore, here, while the external power supply is supplied and the battery 3 is charged, the authentication interval is set longer, and the number of times of authentication is increased so that the control is performed even if the battery 3 is initially empty. The repetition period of the authentication process is extended until the unit 31 is charged to such an extent that it can be operated.

  Further, when it is determined that the authentication of the battery 3 is successful in the process S2, the control unit 11 resets the failure counter to “0” (S10). Then, the repeat interval of the authentication process is set to a third predetermined interval value (for example, 30 seconds) (S11), the process at the time of success is executed (S12), the process proceeds to process S8 and the process is continued.

  The failure process in the process S7 may be, for example, a process of instructing the power supply control unit 17 to turn off the power and turning off the power of the authentication device, or “unusable” to the display control unit 14. It is good also as a process which makes such a display and stops the process which concerns on a game.

  Further, the success process in the process S12 may be the start of a game process, for example. Further, when the game process has already been started, it is not always necessary to perform any process in this successful process.

  Furthermore, the failure counter storage area may be secured on the nonvolatile memory of the storage unit 12 so that the contents thereof are retained even when the power is turned off. In this way, for example, an operation such as connecting or disconnecting an external power supply or an operation such as periodically interrupting the game and turning the power on again causes the failure counter to be reset halfway, and the game is played intermittently. It can also be prevented from continuing.

  According to the present embodiment, in authenticating a battery as a main body that supplies power, a process in consideration of problems peculiar to battery authentication, such as being unable to authenticate the battery when the battery is not charged. It can be.

  The second embodiment of the present invention will be described with reference to the drawings. The authentication target apparatus according to the present embodiment is realized using the peripheral device 4. Here, as shown in FIG. 6, the peripheral device 4 includes a control unit 41, a storage unit 42, and a communication unit 43, and is connected to the main body 5. In addition, the peripheral device 4 may have a configuration (not shown) for providing a function as a peripheral device.

  The control unit 41 is a CPU or the like and operates according to a program stored in the storage unit 42. This control part 41 performs the process which implement | achieves the function as a peripheral device. For example, if the peripheral device 4 is an operation device such as a controller, the control unit 41 performs processing for transmitting information related to the user's instruction operation to the main body 5 side. In the case of a storage device such as a memory card, a process of holding information received from the main body 5 side, a process of providing information held in response to a request from the main body 5 side, and the like are performed. In addition, the peripheral device 4 corresponds to various devices such as a communication device, an imaging device, a power supply device, an acoustic device, and the like.

  In addition, the control unit 41 performs processing for realizing a function as an authentication target device. Specifically, in order to realize the function as the authentication target device, the control unit 41 accepts input of code-related information that is the basis of the challenge code, acquires the challenge code, and encrypts the challenge code Processing to generate information is being executed. The processing for realizing the function of the authentication target device of the control unit 41 will be described in detail later.

  The storage unit 42 includes a storage element such as a flash ROM (Read Only Memory) or a RAM (Random Access Memory). The storage unit 42 stores a program executed by the control unit 41. The storage unit 42 also operates as a work memory for storing various data necessary for the process of the control unit 41.

  The communication unit 43 is connected to the main body 5 side. The communication unit 43 is, for example, a serial communication port. The communication unit 43 transmits information to the main body 5 according to an instruction input from the control unit 41. In addition, the communication unit 43 outputs information received from the main body 5 side to the control unit 41.

  The main body 5 is, for example, a consumer game machine, and as shown in FIG. 7, a control unit 51 such as a CPU, a storage unit 52, an operation unit 53, a display control unit 54, a communication unit 55, and an optical disc drive 56.

  The control unit 51 operates according to a program stored in the storage unit 52. Specifically, the control unit 51 executes a process related to the game. In the present embodiment, the control unit 51 operates as an authentication request side device. Specific processing contents of the control unit 51 as the authentication requesting side device will be described later.

  The storage unit 52 is, for example, a RAM and holds a game program read from the optical disc drive 56. The storage unit 52 includes a non-volatile storage element and stores a program as an authentication requesting side device. Furthermore, the storage unit 52 also operates as a work memory for the control unit 51.

  The operation unit 53 is a game controller, and outputs instruction contents of the player to the control unit 51. The display control unit 54 is a graphic board, and displays and outputs a game screen on a display device such as a home television in accordance with an instruction input from the control unit 51. The communication unit 55 is a serial communication port, for example, and is connected to the communication unit 43 of the peripheral device 4 to exchange information. Specifically, the communication unit 55 transmits information to the peripheral device 4 in accordance with an instruction input from the control unit 51. In addition, the communication unit 55 outputs information received from the peripheral device 4 side to the control unit 51.

  The optical disc drive 56 is, for example, a DVD-ROM drive or a Blu-ray disc drive, and reads information such as a program from a storage medium such as a DVD or a Blu-ray disc and outputs the information to the control unit 51.

  Here, processing for realizing the function of the authentication target device in the control unit 41 of the peripheral device 4 will be described. In the present embodiment, a plurality of encryption key candidates k0, k1,... Are stored in the storage unit 42 of the peripheral device 4 in advance.

  Functionally, the control unit 41 includes an authentication request processing unit 71 and a main body side authentication unit 72 as illustrated in FIG.

  Here, the authentication request processing unit 71 accepts input of code-related information that is a source of the challenge code from the main body 5 side as the authentication requesting side device via the communication unit 43. The authentication request processing unit 71 accepts input of encryption key specifying information for specifying one of the encryption keys from the main body 5 side, and the encryption specified by the encryption key specifying information (for example, key number N). The activation key kN is read from the storage unit 42.

  Here, it is assumed that the code related information is a part of the challenge code. Specifically, when a 128-bit challenge code is used as the challenge code, the main body 5 transmits 64 bits corresponding to the first half (upper) of the 128-bit length as the code-related information. The authentication request processing unit 71 generates and acquires a challenge code based on the code related information.

  That is, in the present embodiment, a plurality of first constant value groups C10, C11,... Are stored in the storage unit 42, and the first constant value C1N corresponding to the key number N received as the encryption key specifying information is stored. Is read from the storage unit 42, and the read first code C1N is concatenated with the received code related information to generate a challenge code. As described above, when the code-related information is 64 bits for the 128-bit challenge code, the first constant values C10, C11,... Are all 64-bit constants. This first constant value is common part information in the present invention.

  Then, the authentication request processing unit 71 uses the encryption key kN read from the storage unit 42 to generate encrypted information obtained by encrypting the generated challenge code.

  Further, the authentication request processing unit 71 extracts a predetermined part (for example, the latter half (lower) part) of the encryption information as the encryption related information. Then, the extracted encryption related information is transmitted to the main body 5. Specifically, if the challenge code is 128 bits long and the encryption algorithm is related to an encryption method that does not change the code length of the information to be encrypted, the encrypted information is also It is 128 bits long. The authentication request processing unit 71 transmits a predetermined part of the 128-bit encryption information, for example, the latter 64 bits to the main body 5 side.

  The main body side authentication unit 72 generates second code relation information related to a challenge code (second challenge code) for authenticating the main body 5 in order to authenticate the main body 5 as the authentication requesting side device. Specifically, a numerical value of a predetermined bit length is generated by a random number routine, and the random number value is transmitted as second code relation information to the main body 5 side via the communication unit 43.

  The main body side authentication unit 72 further generates a second challenge code based on the generated code relation information. In the present embodiment, a plurality of second constant value groups C20, C21,... Are stored in the storage unit 42, and the second constant value C2N corresponding to the key number N previously received as the encryption key specifying information is stored. Read from the storage unit 42. Then, the second constant value C2N is concatenated with the generated code relation information to generate a second challenge code. Thus, by determining a part of the second challenge code at random and setting the remaining part as a constant value, it is possible to reduce the amount of communication related to transmission / reception of the second challenge code.

  The main body side authentication unit 72 encrypts the second challenge code stored in the storage unit 42 using the encryption key kN specified by the encryption key specifying information received when performing the processing as the authentication device. Then, comparison encryption information is generated.

  Further, the main body side authentication unit 72 compares a part of the information obtained by encrypting the second challenge code on the main body 5 side with a predetermined part of the comparison encryption information. As in the example described above, when the latter half 64 bits are extracted as a predetermined part, the main body side authentication unit 72 extracts the latter half 64 bits of the comparison encryption information, The extracted 64-bit length information is compared with the encryption-related information (64-bit length) received from the main body 5 side.

  If they match, the main body side authentication unit 72 determines that the main body 5 is an approved main body, for example, a genuine main body, and notifies the main body 5 of that fact. When the main body side authentication unit 72 determines that the predetermined part of the comparison encryption information and the encryption related information received from the main body 5 side do not match, that is, the main body 5 is approved. Even when it is determined that there is no device, the fact is notified to the main body 5 side.

  Next, the operation of the control unit 51 of the main body 5 that operates as the authentication requesting side device will be described. The storage unit 52 of the main body 5 stores the encryption key kN. This encryption key is the same as one of a plurality of encryption keys stored in the storage unit 42 on the peripheral device 4 side as the authentication device. Further, encryption key specifying information (for example, key number N), which is information necessary for specifying the encryption key on the peripheral device 4 side, is held in the storage unit 52.

  The processing executed by the control unit 51 of the main body 5 functionally includes a peripheral device authentication unit 75 and an authentication request processing unit 76, as shown in FIG.

  The peripheral device authentication unit 75 generates code related information that is the basis of the challenge code. Specifically, a random number routine having a predetermined bit length is generated by a random number routine, and the random number value is transmitted as code-related information to the peripheral device 4 side via the communication unit 55. The peripheral device authentication unit 75 transmits encryption key specifying information (for example, key number N) for specifying the encryption key kN to the peripheral device 4 side.

  The peripheral device authentication unit 75 further generates a challenge code based on the generated code related information. In the present embodiment, the first constant value C1i used on the peripheral device 4 side is stored in the storage unit 52. In this example, since the peripheral device 4 uses the first constant value C1N specified by the encryption key specifying information (key number N), the storage unit 52 holds the first constant value C1N.

  The peripheral device authentication unit 75 generates a challenge code by concatenating the generated code-related information with the first constant value C1N stored in the storage unit 52. Thus, by determining a part of the challenge code at random and setting the remaining part as a constant value, it is possible to reduce the amount of communication related to transmission / reception of the challenge code.

  The peripheral device authentication unit 75 encrypts the generated challenge code with the encryption key kN stored in the storage unit 52 to generate comparison encryption information.

  The peripheral device authentication unit 75 receives a predetermined part of the result of encryption using the encryption key kN on the peripheral device 4 side from the peripheral device 4 side as encryption-related information. Then, a predetermined part of the comparison encryption information is compared with the encryption-related information received from the peripheral device 4 side. As in the example described above, when the latter half 64 bits are to be extracted as a predetermined part, the peripheral device authentication unit 75 extracts the latter half 64 bits of the comparison encryption information, The extracted 64-bit length information is compared with encryption-related information (64-bit length) received from the peripheral device 1 side.

  If they match, it is determined that the peripheral device 4 is an approved peripheral device, for example, a genuine peripheral device.

  On the main body 5 side, the second constant value C2N used on the peripheral device 4 side is held. Then, the authentication request processing unit 76 generates and acquires a second challenge code by concatenating the second constant value C2N to the second code related information received from the main body side authentication unit 72 of the peripheral device 4.

  The authentication request processing unit 76 reads the encryption key kN from the storage unit 52, encrypts the generated second challenge code using the encryption key kN, and generates encrypted information. Further, the authentication request processing unit 76 extracts a predetermined part (for example, the latter half) of the encrypted information as encryption related information, and transmits the extracted encryption related information to the peripheral device 4.

  Although the case where both the process for authenticating the peripheral device 4 and the process for the peripheral device 4 to authenticate the main body 5 has been described here, it is sufficient that the main body 5 performs the process of authenticating the peripheral device 4. If so, that's fine. In this case, the main body side authentication unit 72 in the peripheral device 4 and the authentication request processing unit 76 in the main body 5 are not necessarily required.

  That is, the control unit 41 accepts input of code-related information that is a source of the challenge code from the main body 5 side as the authentication requesting side device via the communication unit 43. Further, the control unit 41 receives an input of encryption key specifying information for specifying one of the encryption keys from the main body 5 side, and is specified by the encryption key specifying information (for example, key number N). The key kN is read from the storage unit 42.

  Here, it is assumed that the code related information is a part of the challenge code. Specifically, when a 128-bit challenge code is used as the challenge code, the main body 5 transmits 64 bits corresponding to the first half (upper) of the 128-bit length as the code-related information. The control unit 41 generates and acquires a challenge code based on the code related information.

  That is, in the present embodiment, a plurality of first constant value groups C10, C11,... Are stored in the storage unit 42, and the first constant value C1N corresponding to the key number N received as the encryption key specifying information is stored. Is read from the storage unit 42, and the read first code C1N is concatenated with the received code related information to generate a challenge code. As described above, when the code-related information is 64 bits for the 128-bit challenge code, the first constant values C10, C11,... Are all 64-bit constants. This first constant value is common part information in the present invention.

  The control unit 41 uses the encryption key kN read from the storage unit 42 to generate encryption information obtained by encrypting the generated challenge code.

  The control unit 41 extracts a predetermined part (for example, the second half (lower) part) of the encryption information as encryption-related information. Then, the extracted encryption related information is transmitted to the main body 5. Specifically, if the challenge code is 128 bits long and the encryption algorithm is related to an encryption method that does not change the code length of the information to be encrypted, the encrypted information is also It is 128 bits long. The control unit 41 transmits a predetermined part of the 128-bit encryption information, for example, the latter 64 bits, to the main body 5 side.

  The operation of the control unit 51 of the main body 5 is as follows. The storage unit 52 of the main body 5 stores the encryption key kN. This encryption key is the same as one of the plurality of encryption keys stored in the storage unit 42 on the peripheral device 4 side as the authentication target device. Further, encryption key specifying information (for example, key number N), which is information necessary for specifying the encryption key on the peripheral device 4 side, is held in the storage unit 52.

  The control unit 51 generates code relationship information that is the basis of the challenge code. Specifically, a random number routine having a predetermined bit length is generated by a random number routine, and the random number value is transmitted as code-related information to the peripheral device 4 side via the communication unit 55. Further, the control unit 51 transmits encryption key specifying information (for example, key number N) for specifying the encryption key kN to the peripheral device 4 side.

  The control unit 51 further generates a challenge code based on the generated code relation information. In the present embodiment, the first constant value C1i used on the peripheral device 4 side is stored in the storage unit 52. In this example, since the peripheral device 4 uses the first constant value C1N specified by the encryption key specifying information (key number N), the storage unit 52 holds the first constant value C1N.

  The control unit 51 concatenates the generated code relation information with the first constant value C1N stored in the storage unit 52 to generate a challenge code. Thus, by determining a part of the challenge code at random and setting the remaining part as a constant value, it is possible to reduce the amount of communication related to transmission / reception of the challenge code.

  The control unit 51 encrypts the generated challenge code with the encryption key kN stored in the storage unit 52 to generate comparison encryption information.

  Further, the control unit 51 receives, as encryption-related information, a predetermined part of the result of encryption using the encryption key kN on the peripheral device 4 side from the peripheral device 4 side. Then, a predetermined part of the comparison encryption information is compared with the encryption-related information received from the peripheral device 4 side. As in the example described above, when the latter half 64 bits are to be extracted as a predetermined part, the control unit 51 extracts the latter half 64 bits of the comparison encryption information, and the extraction is performed. The 64-bit length information is compared with the encryption-related information (64-bit length) received from the peripheral device 4 side.

  If they match, it is determined that the peripheral device 4 is an approved peripheral device, for example, a genuine peripheral device.

  Here, the processing example in which the main body 5 authenticates the peripheral device 4 has been described. However, the peripheral device 4 may perform processing for authenticating the main body 5 following the above processing. In this case, since the control unit 41 of the peripheral device 4 authenticates the main body 5 as the authentication requesting side device, the second code related information related to the challenge code (second challenge code) for authenticating the main body 5 is obtained. Generate. Specifically, a numerical value of a predetermined bit length is generated by a random number routine, and the random number value is transmitted as second code relation information to the main body 5 side via the communication unit 43.

  The control unit 41 further generates a second challenge code based on the generated code relation information. In the present embodiment, a plurality of second constant value groups C20, C21,... Are stored in the storage unit 42, and the second constant value C2N corresponding to the key number N previously received as the encryption key specifying information is stored. Read from the storage unit 42. Then, the second constant value C2N is concatenated with the generated code relation information to generate a second challenge code. Thus, by determining a part of the second challenge code at random and setting the remaining part as a constant value, it is possible to reduce the amount of communication related to transmission / reception of the second challenge code.

  The control unit 41 encrypts the second challenge code stored in the storage unit 42 using the encryption key kN specified by the encryption key specifying information received when performing the process as the authentication target device, Comparison encryption information is generated.

  The control unit 51 of the main body 5 holds the second constant value C2N used on the peripheral device 4 side. Then, a second challenge code is generated and acquired by concatenating the second constant value C2N to the received second code relation information.

  The control unit 51 reads the encryption key kN from the storage unit 52, encrypts the generated second challenge code using the encryption key kN, and generates encryption information. Further, the control unit 51 extracts a predetermined part (for example, the latter half) of the encryption information as encryption related information, and transmits the extracted encryption related information to the peripheral device 4.

  The control unit 41 on the peripheral device 4 side receives the encryption related information transmitted by the main body 5. Then, a predetermined part of the comparison encryption information is compared with the encryption-related information received from the main body 5 side. As in the example described above, in the case where the latter half 64 bits are extracted as a predetermined part, the control unit 41 extracts the latter half 64 bits of the comparison encryption information, and the extraction is performed. The 64-bit length information is compared with the encryption-related information (64-bit length) received from the main body 5 side.

  If they match, the peripheral device 4 determines that the main body 5 is an approved main body, for example, a genuine main body, and notifies the main body 5 to that effect. In addition, when the control unit 41 determines that the predetermined part of the comparison encryption information and the encryption-related information received from the main body 5 side do not match, that is, a device in which the main body 5 is not approved. Even when it is determined that, the fact is notified to the main body 5 side.

  One of the characteristic features of this embodiment is that the establishment or non-establishment of authentication is notified by data using a predetermined part of the comparison encryption information. Specifically, the notification that the main body 5 has been authenticated is performed by transmitting a predetermined part of the comparison encryption information as authentication establishment data to the main body 5 as it is. Informing that the authentication of the main body 5 has failed, data obtained by logically negating a predetermined part of each bit of the comparison encryption information is used as authentication failure data, and this authentication failure data is sent to the main body 5 side. To do. The logical negation means an operation in which a bit that is “1” is “0” and a bit that is “0” is “1”. Here, the logical operation that leaves each bit of the data as it is corresponds to the second logical operation of the present invention, and the logical operation that logically negates each bit of the data corresponds to the first logical operation of the present invention. .

  On the main body 5 side, the received authentication establishment data is compared with the transmitted encryption-related information, and if they match, it is determined that they have been authenticated.

  That is, as the authentication success data and the authentication failure data, predetermined constant values such as “1” or “0” may be used. However, when a constant value is used, information indicating that the main body side has been authenticated can be transmitted by, for example, transmitting a constant value of authentication establishment data with an MOD chip that has been illegally manufactured. . In order to prevent such security vulnerabilities, instead of a constant value, authentication establishment data is obtained by using a predetermined part of the comparison encryption information, which is different information for each authentication process. And authentication failure data.

  According to the present embodiment, the challenge code and the encrypted information obtained by encrypting the challenge code are not transmitted / received, but a part of them is transmitted / received, so the amount of data exchanged for authentication is reduced. This can contribute to a reduction in communication load.

  Next, operations of the peripheral device 4 and the main body 5 as the authentication target device and the authentication request side device of the present invention will be described with reference to FIG. FIG. 10 is a flowchart showing a communication flow between the peripheral device 4 and the main body 5. Initially, the storage unit 52 of the main body 5 stores the encryption key k0 corresponding to the encryption key specifying information N = 0 and the first constant value C10 as the encryption key, the first constant value, and the second constant value, respectively. And a second constant value C20 is stored.

  When the peripheral device 4 is connected, the main body 5 generates a 64-bit random number value R1 (S21), and encryption key specifying information for specifying the encryption key k0 (here, the key number “0”). Then, the random number value R1 as the code related information is transmitted to the peripheral device 4 side (S22).

  On the main body 5 side, a challenge code is generated by concatenating the first constant value C10 to the random value R1 which is the code related information generated in the process S1 (S23). Here, the symbol “||” is used with the connection as a symbol. That is, the challenge code is “R1 || C10”.

The main body 5 encrypts the generated challenge code “R1 || C10” with the encryption key k0 to generate comparison encryption information (S24). Here, if the encryption of the target data d with the encryption key k is expressed as ENC (k, d), the comparison encryption information is ENC (k0,
(R1 || C10)).

  The peripheral device 4 side receives the input of the code-related information R1 received from the main body 5 side and the key number “0” that is the encryption key specification information, and the encryption key specified by the encryption key specification information k0 and the first constant value C10 are read from the storage unit 42. The code relationship information R1 and the first constant value C10 are concatenated to generate a challenge code “R1 || C10” (S25).

  The peripheral device 4 encrypts the generated challenge code “R1 || C10” using the encryption key k0, and generates encryption information, ENC (k0, (R1 || C10)).

  The peripheral device 4 extracts a predetermined part (for example, the lower 64 bits) of the encryption information ENC (k0, (R1 || C10)) as encryption related information (S26). The extracted encryption-related information is transmitted to the main body 5 (S27).

  The main body 5 receives this encryption related information. Then, it is checked whether or not the predetermined part (lower 64 bits) of the comparison encryption information generated in process S24 matches the received encryption related information, and the peripheral device 4 side is authenticated (S28).

  Since the encryption key k0 and the first constant value C10 are generally unknown to the unauthorized manufacturer of the peripheral device, the challenge code cannot be generated, and the encryption information cannot be generated. Therefore, generally, a predetermined part (lower 64 bits) of the comparison encryption information and the received encryption related information do not match in the process S28, and it can be determined that the peripheral device 4 side is illegal.

  Further, the peripheral device 4 may generate second code related information related to a challenge code (second challenge code) for authenticating the main body 5 (S29). Specifically, a random number routine generates a random value R2 having a 64-bit length, and transmits the random value R2 as second code related information together with the encryption related information in step S27.

  On the peripheral device 4 side, a second challenge code is generated based on the second code relation information R2. Here, the second constant value C20 corresponding to the key number “0”, which is the encryption key specifying information transmitted in the process S22, is read from the storage unit. Then, the second constant value C20 is concatenated with the second code relation information R2 to generate a second challenge code “R2 || C20” (S30).

The peripheral device 4 encrypts the second challenge code by using the encryption key k0 specified by the key number “0” that is the encryption key specifying information, and the comparison encryption information ENC (k0,
(R2 || C20)) is generated (S31).

  On the main body 5 side, a second challenge code “R2 || C20” is generated and obtained by concatenating the second constant value C20 to the second code relation information R2 transmitted in step S27 (S32). . The main body 5 encrypts the generated second challenge code using the encryption key k0, and generates encrypted information ENC (k0, (R2 || C20)). The main body 5 extracts a predetermined part (lower 64 bits) of the encrypted information as encryption related information (S33), and transmits the extracted encryption related information to the peripheral device 4 (S34).

  The peripheral device 4 receives the encryption-related information transmitted by the main body 5, the predetermined part (lower 64 bits) of the comparison encryption information generated in the processing S 31, and the encryption-related information received from the main body 5 side. (S35). Then, the result of the determination is transmitted to the main body 5 (S36).

  As described above, when the predetermined part (lower 64 bits) of the comparison encryption information generated in the process S31 matches the encryption-related information received from the main body 5, the comparison generated in the process S31 is performed. A predetermined part of the encryption information for authentication is transmitted as it is to the main body 5 as authentication establishment data.

  If the predetermined part (lower 64 bits) of the comparison encryption information generated in the process S31 does not match the encryption-related information received from the main body 5 side, the comparison encryption generated in the process S31 Data obtained by logically negating a predetermined part of each bit of the authentication information is used as authentication failure data, and this authentication failure data is sent to the main body 5 side.

  The main body 5 checks whether or not the main body 5 itself has been authenticated based on the determination result transmitted in the process S36 (S37). Specifically, the main body 5 compares a predetermined part of the encrypted information transmitted in step S33 with the information related to the determination result transmitted in step S36. If they match, the main body 5 itself is authenticated. Judge that. Further, if the data obtained by logically negating each predetermined bit of the encrypted information transmitted in the process S33 matches the information related to the determination result transmitted in the process S36, the main body 5 itself is authenticated. Judge that it was not.

  If the encryption key k0 etc. is leaked, the main body 5 is collected, and the encryption key stored in the storage unit 52, for example, the encryption key k1 specified by the key number “1”, the first It is overwritten by changing to a constant value C11 and a second constant value C21 (both of which are held in advance on the peripheral device 4 side). Then, the encryption key specifying information is changed to “1”. As a result, the encryption key and the like can be updated without collecting the peripheral devices 4 that circulate more than the main body 5.

  While the main body 5 and the peripheral device 4 are connected to each other, the communication shown in FIG. 10 may be repeated at predetermined timings. If the main body 5 cannot be authenticated in step S28, the main unit 5 may return to step S21 and repeat the process. Similarly, if the main body 5 determines in step S37 that the main body 5 itself has not been authenticated, the main body 5 may return to step S21 and repeat the process.

  Further, in the description so far, it is assumed that a part of each of the challenge code and the encryption information used for the authentication process is transmitted / received, but the entire one of them is transmitted. It is good. In this way, when the whole is transmitted for either one, the burden increases for the amount of communication, but the security level is increased if, for example, the entire encrypted information is transmitted to determine match / mismatch be able to.

  Further, when a part of the challenge code is transmitted as the code relation information, the order of joining the code relation information R and the constant value C is not limited to the order of “R || C” as described above. C || R "may be used. Further, the joining order in the process in which the main body 5 authenticates the peripheral device 4 (process corresponding to steps S21 to S28 in FIG. 10) and the process in which the peripheral device 4 authenticates the main body 5 (corresponding to steps S29 to S37 in FIG. 10). The order of joining in the processing) may be different.

1 is a configuration block diagram illustrating an example of an authentication device according to a first embodiment of the present invention. It is a block diagram showing an example of a power control unit according to the first embodiment of the present invention. It is a block diagram showing an example of a battery according to the first embodiment of the present invention. It is a functional block diagram showing the example of the authentication apparatus which concerns on the 1st Embodiment of this invention. It is a flowchart figure showing the operation example of the authentication apparatus which concerns on the 1st Embodiment of this invention. It is a block diagram showing the outline example of the peripheral device 4 which concerns on the 2nd Embodiment of this invention. It is a block diagram showing an example of a main body 5 according to the second embodiment of the present invention. It is a functional block diagram showing the example of the peripheral device 4 which concerns on the 2nd Embodiment of this invention. It is a functional block diagram showing the example of the main body 5 which concerns on the 2nd Embodiment of this invention. It is a flowchart which shows the flow of communication between the peripheral device 4 and the main body 5 which concern on the 2nd Embodiment of this invention.

Explanation of symbols

  3 Battery, 4 Peripheral device, 5 Main body, 11, 31, 41, 51 Control unit, 12, 32, 42, 52 Storage unit, 13, 53 Operation unit, 14, 54 Display control unit, 15, 33, 43, 55 Communication unit 16, 56 Optical disc drive, 17 Power control unit, 21 Power control circuit, 22 Charging circuit, 23 Power supply circuit, 61 Battery authentication unit, 62 Failure counter, 63 Interval value buffer, 64 External power supply determination unit, 71 Authentication request processing unit, 72 Main unit side authentication unit, 75 Peripheral device authentication unit, 76 Authentication request processing unit.

Claims (6)

An authentication system including a battery and an authentication device for authenticating the battery,
The authentication device
A battery connection connected to the battery;
A receiving unit for receiving a power supply from the external power supply when connected to the external power supply,
An authentication process for authenticating a battery connected to the battery connecting portion, between the repetition period, repeatedly performed, by determining whether the power supply from the external power is supplied to the receiving unit, the repetition period of the authentication process An authentication system characterized by being an authentication device to be differentiated. A battery connection to connect to the battery;
A receiving unit for receiving a power supply from the external power supply when connected to the external power supply,
An authentication apparatus that repeatedly performs an authentication process for authenticating a battery connected to the battery connection unit during a repetition period ,
An authentication apparatus characterized in that the repetition period of the authentication process is varied depending on whether power is supplied from an external power source to the receiving unit. The authentication device according to claim 2 ,
Authentication device prior Symbol receiving unit, by whether to accept the power supply from an external power source, and wherein varying the repetition interval and number of repetitions. The authentication device according to claim 3 ,
An authentication apparatus that executes a failure process for turning off the power of the authentication apparatus when the battery authentication by the authentication process fails for the number of repetitions. The authentication device according to claim 2 or 3 ,
An authentication apparatus that executes a failure process for turning off the power of the authentication apparatus when battery authentication by the authentication process fails. A battery connection to connect to the battery;
An authentication unit including a receiving unit that receives power supply from the external power source when connected to the external power source, and performs authentication processing to determine whether or not the battery connected to the battery connection unit is a genuine product. A control method for repeatedly performing a repeat period , wherein the repeat unit of the authentication process is made different depending on whether or not the receiving unit accepts power supply from an external power source. Control method.

Images