JP4547597B2 - Information processing system, information processing apparatus and method, recording medium, and program - Google Patents

Description

  The present invention relates to an information processing system, an information processing apparatus and method, a recording medium, and a program, and in particular, provides a service only to a specific user or a specific user via a network easily and reliably. The present invention relates to an information processing system, an information processing apparatus and method, a recording medium, and a program that enable only a user to receive a service.

  Function providing services via networks are widely used.

  When an access right is set for each user on a device such as an FTP (File Transfer Protocol) server or an HTTP (Hyper Text Transfer Protocol) server, the device administrator (owner) is a user who allows access. Next, create a user account on the device, set a password, and set user rights. Furthermore, the administrator of the device communicates the created account and password to the user.

  A user who uses a device via the Internet remembers the account and password transmitted from the administrator, and correctly enters the account and password of the device when using the device.

  Prior to using the service of the client service server on the Internet, the user pre-registers the user personal information including the unique identification information of the portable information terminal in the client service server, and then the user passes through the client service server using the terminal. A system that uses a content server is known (for example, see Patent Document 1). In this system, the terminal transmits the encrypted unique identification information to the client service server, and the client service server decrypts the encrypted unique identification information and performs user authentication based on the unique identification information. Then, it is confirmed whether or not the user is registered in the billing proxy service server. If both are OK, the provision of service to the user of the portable information terminal by the content server is permitted.

JP 2002-64483 A

  In the case of such a system, in order to use a plurality of devices, the user has to remember an account and a password for each device.

  Therefore, for example, an instant messaging service via a central server such as Jabber (trademark) can be used for connection with the other party. In this case, an authentication program is not particularly required for an application program in which all communication with the other party is performed via the central server.

  However, in an application program that uses P2P (Peer to Peer) directly for actual data transfer and operations using messaging via the central server only for address exchange with the other party, the address is exchanged on the instant messaging service. There was a problem that it was not possible to check whether the other party and the other party who directly connected with P2P are the same party.

In the information processing system of the present invention, the first information processing apparatus includes a message including the network address of the second information processing apparatus and the key generated by the second information processing apparatus via the instant messaging system. The first reception control means for controlling the reception of the first information processing apparatus, the specific information for identifying the first information processing apparatus used in the instant messaging system, and the key are transmitted to the second information processing apparatus via the network, and Transmission control means for requesting the second information processing apparatus to execute the predetermined process, and whether or not the second information processing apparatus accepts a request for execution of the predetermined process from the first information processing apparatus. Recording means for recording the reception determination information, the specific information acquired via the instant messaging system, and the key in association with each other; Second reception control means for controlling reception of the specific information and key transmitted from the first information processing apparatus via the network, and acceptance determination information, specific information, and key recorded in the recording means And whether or not the first information processing apparatus is a partner registered in the instant messaging system and accepting a request for execution of a predetermined process based on the specific information and the key received from the first information processing apparatus It is characterized by comprising determination means for determining whether or not and execution means for executing a predetermined process in accordance with a determination result by the determination means .

The first information processing apparatus according to the present invention is used in the instant messaging system acquired through the instant messaging system, reception determination information indicating whether or not to accept a request for execution of a predetermined process from another information processing apparatus. Recording means for associating and recording the specific information for identifying the other information processing apparatus and the key generated by the information processing apparatus and transmitted to the other information processing apparatus via the instant messaging system, via the network Reception control means for controlling reception of a request for execution of a predetermined process including specific information and a key transmitted from another information processing apparatus; acceptance determination information recorded in the recording means; specific information; Based on the key and the specific information and key received from the other information processing apparatus, the other information processing apparatus Comprising registered in tanto messaging system, and a determination unit configured to determine whether a party that accepts the request for execution of a predetermined process in accordance with the determination result by the determination means, and execution means for executing a predetermined processing It is characterized by that.

The reception control unit further controls reception of the first message requesting authentication from another information processing apparatus via the instant messaging system, and the determination unit includes the specific information included in the first message. Determining whether or not the information is recorded in the recording unit, and requesting execution of a predetermined process from another information processing apparatus based on the reception determination information recorded in association with the specific information in the recording unit. When it is further determined whether or not to accept, the specific information included in the first message is recorded in the recording means, and it is determined to accept a request for execution of a predetermined process from another information processing apparatus Controlling transmission of a second message including its own address and key to another information processing apparatus via an instant messaging system and key generation means for generating a key And that the transmission control means may be further provided.

The reception control means controls the reception of a request for executing a predetermined process including at least one of the encrypted specific information and the key , and decrypts the encrypted specific information or key. Means may further be provided.

Reception determination information indicating whether or not the first information processing method , the first recording medium program, or the first program of the present invention receives a request for execution of a predetermined process from another information processing apparatus; Specific information obtained through the instant messaging system and identifying other information processing apparatus used in the instant messaging system, and a key generated by the information processing apparatus and transmitted to the other information processing apparatus through the instant messaging system Recording control step for recording the information in association with the recording means, and reception control for controlling reception of a request for executing a predetermined process including specific information and a key transmitted from another information processing apparatus via the network Step, acceptance determination information, specific information and key recorded in the recording means, and other information A determination step of determining whether another information processing apparatus is a partner registered in the instant messaging system and accepting a request for execution of a predetermined process based on the specific information and the key received from the processing apparatus; And an execution step of executing a predetermined process in accordance with a determination result obtained by the process of the determination step .

The second information processing apparatus of the present invention controls reception of the first message including the network address of the other information processing apparatus and the key generated by the other information processing apparatus via the instant messaging system. Specific information for identifying an information processing device used in the instant messaging system and a key are transmitted to another information processing device via a network based on the reception control means and the address, and the other information processing device is predetermined. Transmission control means for requesting execution of the above processing .

Transmission control means may be adapted to further control via the instant messaging system, the other information processing apparatus destined, the transmission of the second message for requesting transmission and authentication of the first message.

The second information processing method , the second recording medium program, or the second program of the present invention is generated by the network address of another information processing apparatus and the other information processing apparatus via the instant messaging system. Receiving control step for controlling the reception of the message including the generated key, the specific information for identifying the information processing device used in the instant messaging system based on the address, and the key to the other information processing device via the network And a transmission control step for requesting another information processing apparatus to execute a predetermined process .

  The network is a mechanism in which at least two devices are connected and information can be transmitted from one device to another device. The devices that communicate via the network may be independent devices, or may be internal blocks that constitute one device.

  The communication is not only wireless communication and wired communication, but also communication in which wireless communication and wired communication are mixed, that is, wireless communication is performed in one section and wired communication is performed in another section. May be. Further, communication from one device to another device may be performed by wired communication, and communication from another device to one device may be performed by wireless communication.

  The information processing apparatus may be an independent apparatus or a block that performs information processing.

  In the information processing system of the present invention, a message including the network address and key of the second information processing apparatus is received via the instant messaging system, and the second information based on the address is received via the network. Specific information and a key for identifying the first information processing apparatus of the instant messaging system, which are addressed to the processing apparatus, are transmitted. Then, the specific information and the key transmitted from the first information processing apparatus via the network are received, and whether or not the first information processing apparatus is a legitimate partner based on the specific information and the key. Is determined.

  In the first information processing apparatus and method, the first recording medium, and the first program of the present invention, other information processing of the instant messaging system transmitted from another information processing apparatus via a network Specific information and a key specifying the device are received, and based on the specific information and the key, it is determined whether or not another information processing device is a legitimate partner.

  In the second information processing apparatus and method, the second recording medium, and the second program of the present invention, a message including the address and key of another information processing apparatus is received via the instant messaging system, and the network The specific information and the key for identifying the user of the instant messaging system addressed to the other information processing apparatus based on the address are transmitted.

  There is no need to request an account or password, and it is possible to easily and reliably determine whether or not the other party is a legitimate party, thus providing a service only to a specific party. Or only specific parties can use the service.

  FIG. 1 is a block diagram showing a configuration of an embodiment of a service providing system 11 according to the present invention. The television receiver 2 with a hard disk recorder owned by the user 1 is connected to the Internet 3 and is connected to a personal computer 5 owned by the user 4 via the Internet 3. The Internet 3 is an example of a wireless or wired (including optical fiber) network, and includes a local area network or a dedicated line.

  The television receiver 2 with a hard disk recorder exchanges messages with the personal computer 5 by an instant messaging system.

  The instant messaging system includes a server 6 as an instant messaging service server. Clients such as a television receiver 2 with a hard disk recorder and a personal computer 5 are connected to the system at a predetermined timing via the Internet 3. An example of a protocol that provides an instant messaging function is Jabber Protocol (trademark). The server 6 provides services such as user registration to the instant messaging system, client login, provision of information indicating the status of other clients, or message transfer to the client. That is, the server 6 has a so-called messaging service function.

  When receiving the service of the instant messaging system, the user 1 operates the television receiver 2 with a hard disk recorder to acquire an instant messaging ID for identifying the user 1 and register a password in the instant messaging system. Request to 6. When the instant messaging ID is obtained and the password is registered, the user 1 proves the identity to the server 6 by presenting the instant messaging ID and the password to the server 6, and the instant messaging system You can log in to (and receive the service).

  Similarly, when the user 4 is provided with the service of the instant messaging system, the user 4 operates the personal computer 5 to acquire the instant messaging ID for identifying the user 4 and register the password in the server 6 in the instant messaging system. Request. When the instant messaging ID is obtained and the password is registered, the user 4 proves the identity to the server 6 by presenting the instant messaging ID and the password to the server 6, and the instant messaging system You can log in to

  Thus, when logging into the instant messaging system, user 1 or user 4 is authenticated by the instant messaging ID and password.

  In the instant messaging system, the server 6 and the television receiver 2 with a hard disk recorder, which is a client, exchange messages securely by exchanging encrypted messages using SSL (Secure Sockets Layer) or the like. Similarly, the server 6 and the personal computer 5 as a client exchange messages securely by exchanging encrypted messages using SSL or the like.

  Further, when a message is directly sent from the television receiver 2 with a hard disk recorder to the personal computer 5, the message is encrypted and sent via the Internet 3. Conversely, when a message is sent directly from the personal computer 5 to the television receiver 2 with a hard disk recorder, the encrypted message is sent via the Internet 3.

  That is, the television receiver 2 with a hard disk recorder and the personal computer 5 can exchange messages securely via the Internet 3 and the server 6. Therefore, even if a third party obtains a message transmitted through the Internet 3, it cannot be decrypted and cannot know its contents.

  More specifically, when the user 1 or the user 4 presents the instant messaging ID and password to the server 6 and logs in, the television receiver 2 with a hard disk recorder operated by the user 1 or the user 4 or a personal computer. 5 is to send the instant messaging ID and password to the server 6.

  The user 1 or the user 4 sends the instant messaging ID and password to the server 6 via the television receiver 2 with a hard disk recorder or the personal computer 5, logs in to the instant messaging system, and exchanges messages with the server 6. You can create a list of instant messaging IDs of the people you want to do. For example, in Jabber, a list of instant messaging IDs of the parties with whom messages are exchanged is called Roster. Hereinafter, a list made up of instant messaging IDs of the parties with whom messages are exchanged is referred to as a user registration list.

  Each user can specify and register any of the users participating in the instant messaging system in his / her user registration list. For example, the user 1 can register the user 4 in his / her user registration list. When the server 6 is instructed by the user 1 to add the user 4 to the user registration list, the server 6 registers the instant messaging ID of the user 4 in the user registration list. Similarly, when the user 4 instructs the user registration list of the user 4 to register the user 1, the server 6 registers the instant messaging ID of the user 1 in the user registration list of the user 4.

  When Jabber is used for the server 6, the server 6 relays only the message with the other party registered in the user registration list. Therefore, each user can communicate safely only with a specific user permitted by himself.

  If necessary, it is possible to instruct the user 6 to cancel the registration of another user from his own user registration list. Upon receiving this instruction, the server 6 instantiates the user specified by the user registration list of the user. Delete the ID.

  The television receiver 2 with a hard disk recorder accesses the personal computer 5 by the address on the Internet 3 of the user 4 notified from the server 6, and the personal computer 5 is on the Internet 3 of the user 1 notified from the server 6. To the television receiver 2 with a hard disk recorder. As a result, both can thereafter exchange messages directly (by P2P (Peer to Peer)).

  If the identity can be proved by the instant messaging ID and password, each user can access the user registration list created by the server 6 (the instant messaging ID described in the list can be used). ). For example, by operating the personal computer 5, the user 4 can log in to the instant messaging system with his / her instant messaging ID and password, and cause the personal computer 5 to access the user registration list. Further, for example, the user 4 operates the PDA 7 owned by the user 4, logs in to the instant messaging system through the personal computer 5 with his / her instant messaging ID and password, and causes the server 6 to create the PDA 7. The user registration list can be accessed.

  In the service providing system of the present invention, when a secure instant messaging system is used to allow a device connected to the Internet 3 to exchange information necessary for authentication and a function is provided to another device, the secure service is provided. The other party is authenticated based on the information exchanged by the instant messaging system.

  Hereinafter, a case where the service by the television receiver 2 with a hard disk recorder is provided to the personal computer 5 will be described as an example.

  The television receiver 2 with a hard disk recorder acquires its own user registration list from the server 6 via the Internet 3. If the user 4 is registered in the user registration list, the instant messaging ID is recorded. Then, the television receiver 2 with a hard disk recorder sets the access authority in association with the instant messaging ID of the user 4 based on the instruction from the user 1. The access authority is information indicating whether or not a request from the other party is accepted.

  When a message of a secure instant messaging system as an authentication request is transmitted from the personal computer 5 via the Internet 3, the television receiver 2 with a hard disk recorder receives the message and is included in the message. It is determined whether or not an instant messaging ID corresponding to the instant messaging ID is recorded in the access right setting list. When it is determined that an instant messaging ID corresponding to the instant messaging ID included in the message is recorded in the access right setting list, the television receiver 2 with a hard disk recorder is further identified by the instant messaging ID. It is determined whether or not the other party is registered as a user having access authority.

  When it is determined that the other party has access authority, the television receiver device 2 with a hard disk recorder generates (issues) a key for the user 4 who is the owner of the personal computer 5, and uses the generated key for the instant of the user 4. Record in the key list corresponding to the messaging ID. Here, the key can be a random number of a predetermined number of bits generated each time. The key can be, for example, a random number represented by 64 bits to 256 bits.

  The television receiver 2 with a hard disk recorder transmits a message of a secure instant messaging system as a response to the authentication request from the personal computer 5 to the personal computer 5 via the Internet 3. The message transmitted to the personal computer 5 includes the address of the television receiver 2 with a hard disk recorder (for example, an address described in the URL (Uniform Resource Locator) system) and the key generated for the user 4. ing.

  The personal computer 5 obtains the address of the television receiver 2 with a hard disk recorder and the key for the user 4 by receiving a message from the television receiver 2 with a hard disk recorder.

  When the personal computer 5 requests the television receiver 2 with a hard disk recorder to perform processing (service) such as reservation recording of a program or provision of video data of a program that has already been recorded, the personal computer 5 Then, an operation request including a request for a desired process is transmitted to the television receiver 2 with a hard disk recorder together with the instant messaging ID of the user 4 and the received key via the Internet 3. The operation request is transmitted without going through the instant messaging system. That is, the operation request is directly transmitted from the personal computer 5 to the television receiver device 2 with a hard disk recorder via the Internet 3.

  The television receiver 2 with a hard disk recorder receives the operation request, the instant messaging ID, and the key transmitted from the personal computer 5, and the other party who has transmitted the operation request based on the instant messaging ID and the key is authorized. It is determined whether or not it is the other party (the other party to whom the key has been sent).

  In this case, in the television receiver 2 with a hard disk recorder, the instant messaging ID corresponding to the received instant messaging ID is recorded in the access right setting list, and the key corresponding to the received key (for example, the same Key) is recorded in the key list, it is determined that the personal computer 5 that has transmitted the operation request is the authorized partner.

  When it is determined that the personal computer 5 is a legitimate partner, the television receiver device 2 with a hard disk recorder determines whether the partner has access authority. When the other party has access authority, the television receiver device 2 with a hard disk recorder receives an operation request and executes processing corresponding thereto.

  In this way, the television receiver device 2 with a hard disk recorder does not need to request the personal computer 5 to input an account or a password, and whether or not the personal computer 5 is a legitimate partner. Can be determined easily and reliably.

  For example, the personal computer 5 is configured as shown in FIG. A CPU (Central Processing Unit) 21 executes various processes according to a program recorded in a ROM (Read Only Memory) 22 or a recording unit 28. A RAM (Random Access Memory) 23 appropriately stores programs executed by the CPU 21 and data. The CPU 21, ROM 22, and RAM 23 are connected to each other by a bus 24.

  An input / output interface 25 is also connected to the CPU 21 via the bus 24. The input / output interface 25 is connected to an input unit 26 including a keyboard, a mouse, and a microphone, and an output unit 27 including a display and a speaker. The CPU 21 executes various processes in response to commands input from the input unit 26. Then, the CPU 21 outputs an image, sound, or the like obtained as a result of the processing to the output unit 27. Further, the CPU 21 executes a program to be described later, and causes the communication unit 29 to transmit various data (such as an instant messaging ID and a password), or data (such as an address and a key) transmitted via the Internet 3. ). The CPU 21 acquires data received via the communication unit 29.

  The recording unit 28 connected to the input / output interface 25 is composed of, for example, a hard disk and records programs executed by the CPU 21 and various data. The communication unit 29 communicates with an external device such as the server 6 or the television receiver device 2 with a hard disk recorder via the Internet 3 or other networks.

  A program may be acquired via the communication unit 29 and recorded in the recording unit 28.

  A drive 30 is connected to the input / output interface 25 as necessary. When the magnetic disk 51, the optical disk 52, the magneto-optical disk 53, the semiconductor memory 54, or the like is mounted, the drive 30 drives them and acquires programs and data recorded therein. The acquired program and data are transferred to the recording unit 28 and recorded as necessary.

  FIG. 3 is a block diagram showing a configuration example of the television receiver 2 with a hard disk recorder. The television receiver 2 with a hard disk recorder can be configured by adding a tuner and a display unit to the same configuration as the personal computer 5.

  That is, the CPU 71 executes various processes according to programs recorded in the ROM 72 or the recording unit 78. The RAM 73 appropriately stores programs executed by the CPU 71 and data. These CPU 71, ROM 72, and RAM 73 are connected to each other by a bus 74.

  An input / output interface 75 is also connected to the CPU 71 via a bus 74. The input / output interface 75 is connected to an input unit 76 including a receiving unit that receives commands from various switches or remote controllers, and an output unit 77 including an LED (Light Emitting Diode) or a liquid crystal display device. The CPU 71 executes various processes in response to commands input from the input unit 76. The CPU 71 executes a program to be described later, and causes the communication unit 79 to transmit various data (such as an address and a key) or to receive data (such as a user registration list) transmitted via the Internet 3. . The CPU 71 acquires data received via the communication unit 79.

  The recording unit 78 connected to the input / output interface 75 includes, for example, a hard disk, and records various data such as a program executed by the CPU 71 or video data of a program. The communication unit 79 communicates with an external device such as the server 6 or the personal computer 5 via the Internet 3 or other networks.

  A program may be acquired via the communication unit 79 and recorded in the recording unit 78.

  The tuner 80 receives a broadcast from a broadcast station, demodulates the received broadcast video signal and the like, supplies it to the display unit 81, and records the video data in the recording unit 78 via the input / output interface 75. The display unit 81 includes a plasma display device or a liquid crystal display device and a speaker, and displays an image and outputs sound based on the video signal supplied from the tuner 80. The display unit 81 displays an image based on the video data recorded in the recording unit 78 and outputs sound.

  The communication unit 79 can transmit the video data recorded in the recording unit 78 to an external device such as the personal computer 5 via the Internet 3 or other networks.

  A drive 82 is connected to the input / output interface 75 as necessary. When the magnetic disk 91, the optical disk 92, the magneto-optical disk 93, the semiconductor memory 94, or the like is mounted, the drive 82 drives them to acquire programs and data recorded therein. The acquired program and data are transferred to the recording unit 78 and recorded as necessary.

  FIG. 4 is a diagram showing programs that the television receiver 2 with a hard disk recorder has. The television receiver 2 with a hard disk recorder has a service providing program 101 and an instant messenger program 102.

  The service providing program 101 is a program that provides services to external devices via the Internet 3 in response to requests from external devices such as the personal computer 5. Providing a service means providing a function. The service is, for example, reserved recording, provision of already recorded video data, or release of schedule information.

  The instant messenger program 102 is a client program of the instant messaging system and requests the server 6 to log in, requests information indicating the status of another client, or the personal computer 5 via the Internet 3. Send messages addressed to other clients. The instant messenger program 102 also receives a message from another client such as the personal computer 5 transmitted from the server 6 via the Internet 3.

  Further, the instant messenger program 102 acquires a user registration list including the instant messaging ID of the user 4 from the server 6.

  The instant messenger program 102 transmits a message addressed to another client such as the personal computer 5 or supplies the received message to the service providing program 101 in response to a request from the service providing program 101. The instant messenger program 102 supplies the user registration list acquired from the server 6 to the service providing program 101.

  The service providing program 101 includes an access right setting program 121, an authentication program 122, an operation request receiving program 123, an access right setting list 124, a key list 125, and a reception control program 126.

  The access right setting program 121 requests the instant messenger program 102 to acquire a user registration list, and generates an access right setting list 124 from the server 6 based on the user registration list acquired by the instant messenger program 102.

  When the instant messenger program 102 receives a message as an authentication request transmitted from the personal computer 5, the authentication program 122 provides a service for a request from the user 4 based on the access right setting list 124. If it is determined whether or not to provide a service in response to a request from the user 4, a key for the user 4 is generated, and an authentication response including the address of the television receiver with a hard disk recorder 2 and the generated key Is sent to the instant messenger program 102. The generated key is stored in the key list 125.

  The operation request reception program 123 is a program that executes processing for providing a service to an external device. For example, when the reception control program 126 receives an operation request transmitted from the personal computer 5 and added with the instant messaging ID and key of the user 4, the operation request reception program 123 uses the instant messaging ID and key as a basis. In addition, it is determined whether or not the personal computer 5 is a legitimate partner (the partner who transmitted the key), and if it is determined that the personal computer 5 is a legitimate partner, an operation request from the personal computer 5 is accepted. Execute the process.

  For example, when it is determined that the personal computer 5 is a legitimate partner, the operation request reception program 123 further determines whether or not to accept a request from the personal computer 5 based on the access right list 125. If it is determined that a request from the personal computer 5 is accepted, processing corresponding to the operation request from the personal computer 5 is executed.

  The reception control program 126 receives the operation request added with the instant messaging ID and key of the user 4 transmitted from the personal computer 5, and operates the operation request with the received instant messaging ID and key of the user 4. This is supplied to the request reception program 123.

  FIG. 5 is a diagram showing programs that the personal computer 5 has. The personal computer 5 has a service request program 151 and an instant messenger program 152.

  The service request program 151 is a program that requests external devices such as the television receiver 2 with a hard disk recorder via the Internet 3 to provide a service.

  The instant messenger program 152 is a client program of the instant messaging system, and requests the server 6 to log in via the Internet 3, requests information indicating the status of other clients, or a television with a hard disk recorder. A message addressed to another client such as the image receiving device 2 is transmitted. The instant messenger program 152 receives messages from other clients such as the television receiver 2 with a hard disk recorder, which are transmitted from the server 6 via the Internet 3.

  The instant messenger program 152 transmits a message addressed to another client such as the television receiver device 2 with a hard disk recorder or supplies the received message to the service request program 151 in response to a request from the service request program 151.

  Further, the instant messenger program 152 acquires the instant messaging ID of the user 4 from the server 6 and records it.

  The service request program 151 includes an authentication program 171, an operation request program 172, and an address / key list 173.

  The authentication program 171 causes the instant messenger program 152 to transmit a message as an authentication request addressed to another client such as the television receiver device 2 with a hard disk recorder. When the television receiver 2 with a hard disk recorder is authenticated, that is, when it is determined that a service is provided in response to a request from the user 4, the television receiver 2 with a hard disk recorder is received from the television receiver 2 with a hard disk recorder. Since the message as the authentication response including the address of the device 2 and the key for the user 4 is transmitted, the authentication program 171 causes the instant messenger program 152 to receive the message as the authentication response, and the TV with the hard disk recorder The address of John receiver 2 and the key for user 4 are acquired.

  The authentication program 171 stores the address of the television receiver 2 with a hard disk recorder and the key for the user 4 in the address / key list 173 in relation to each other. As a result, the address / key list 173 stores the address of the device that can receive the service and the key for this.

  The operation request program 172 is a program that requests a service from a device that provides the service. For example, when requesting a service to the television receiver 2 with a hard disk recorder, the operation request program 172 reads the address of the television receiver 2 with a hard disk recorder 2 and the key for the user 4 from the address / key list 173. Then, the operation request program 172 sends an operation request to which the instant messaging ID and the key of the user 4 are added via the Internet 3 based on the address of the television receiver 2 with a hard disk recorder, to the television receiver 2 with a hard disk recorder. Send to.

  The operation request is directly transmitted without going through the server 6 as an instant messaging system.

  If the instant messaging ID and key added to the operation request are valid, the television receiver device 2 with a hard disk recorder provides a service to the personal computer 5 in response to a request from the operation request program 172.

  FIG. 6 is a flowchart for explaining access right setting processing of the television receiver 2 with a hard disk recorder that executes the service providing program 101 and the instant messenger program 102.

  Note that before this processing is performed, the user 1 becomes a member of the instant messaging system and receives assignment of a password and an instant messaging ID. Then, using the password and the instant messaging ID, the user 1 accesses the server 6 from the television receiver 2 with a hard disk recorder via the Internet 3 and registers the other party who wants to communicate via the instant messaging system as a user. Register in the list.

  When each user accesses the server 6, an authentication process is performed to determine whether or not the user is a member using the password and the instant messaging ID. If the authentication is not obtained, the user is denied access. Only the user who has been authenticated is allowed access, and the subsequent processing can be executed.

  After the first authentication is obtained, in step S11, the access right setting program 121 of the service providing program 101 causes the instant messenger program 102 to acquire the user registration list of the user 1 from the server 6. The user registration list is supplied to the access right setting program 121 of the service providing program 101.

  FIG. 7 is a diagram showing an example of the user registration list acquired in this way. As shown in FIG. 7, the user registration list includes the instant messaging ID of the user with whom the user 1 of the television receiver 2 with a hard disk recorder exchanges messages. As described above, for example, when the user 1 is instructed to register another user such as the user 4, the server 6 stores the instant messaging ID of the instructed other user in the user registration list. After the user 1 logs in to the instant messaging system, when a user registration list is requested from the user 1, the server 6 displays the user registration list of the user 1 in accordance with the request, the user 1 (the television receiver 2 with a hard disk recorder). ) To provide.

  The example of the user registration list shown in FIG. 7 includes the instant messaging ID of user B, the instant messaging ID of user X, the instant messaging ID of user Y, and the instant messaging ID of user Z. For example, user B in FIG. 7 corresponds to user 4 whose instant messaging ID is user 4 's instant messaging ID.

  In step S12, the access right setting program 121 reads the access right setting list 124 that has already been recorded, and whether or not an instant messaging ID that is not registered in the access right setting list 124 is included in the user registration list ( Whether or not an instant messaging ID that is not recorded in the access right setting list 124 is included in the user registration list). If it is determined in step S12 that an unregistered instant messaging ID is included in the access right setting list 124, the process proceeds to step S13, and the access right setting program 121 executes the unregistered instant messaging ID. Is added to the access right setting list 124 (recorded in the access right setting list 124), and the process proceeds to step S14.

  If the access right setting list 124 has not been recorded yet, that is, when the access right setting process is executed for the first time, the access right setting program 121 generates the access right setting list 124 in step S13, and the user All instant messaging IDs included in the registration list are stored in the access right setting list 124.

  In step S14, the access right setting program 121 sets “no authority” as the default for the access authority corresponding to the newly added instant messaging ID, and the process ends. More specifically, in step S14, the access right setting program 121 sets “no authority” to the access right setting list 124 as the access right related to the instant messaging ID recorded in the access right setting list 124 in the process of step S13. Record.

  In step S14, the access right setting program 121 prompts the user 1 to input the access authority, and based on the signal from the input unit 76 corresponding to the operation of the user 1, the access authority is “no authority” and “authority”. Any one of “Yes” may be recorded.

  FIG. 8 is a diagram showing an example of the access right setting list 124 to which the access right is added in this way. The access right setting list 124 describes an instant messaging ID and an access right related to the instant messaging ID. The access authority, which is an example of the acceptance determination information, can be “authorized” or “unauthorized”, for example. “Authorized” indicates that a request from a partner specified by the instant messaging ID is accepted, and “No authority” indicates that a request from the partner specified by the instant messaging ID is not accepted.

  In the example shown in FIG. 8, “authorized” access authority is recorded in relation to the instant messaging ID of the user B, and “unauthorized” access authority is recorded in relation to the instant messaging ID of the user X. The access authority “authorized” is recorded in relation to the instant messaging ID of the user Y, and the access authority “unauthorized” is recorded in relation to the instant messaging ID of the user Z.

  For example, when the instant messaging ID of the user Z is recorded in the access right setting list 124 in the process of step S13, the access right related to the instant messaging ID of the user Z is displayed in the access right setting list 124 in step S14. “Unauthorized” is recorded.

  As described above, when a new instant messaging ID is newly acquired, “no authority” is set as an access authority by default for the acquired instant messaging ID.

  If it is determined in step S12 that an instant messaging ID that has not been registered in the access right setting list 124 is not included in the user registration list, it is not necessary to register a new instant messaging ID, so steps S13 and S14 are performed. This process is skipped and the process ends.

  Based on a signal from the input unit 76 corresponding to an operation by the user 1 or corresponding to a command from the remote controller, the access right setting program 121 edits the access right setting list 124 to obtain a desired instant messaging ID. It is possible to set the access authority related to the “authorized”, or conversely, set the access authority to “unauthorized”.

  Next, referring to the flowcharts of FIGS. 9 to 11, the television receiver with a hard disk recorder 2 that executes the service providing program 101 and the instant messenger program 102, the server 6, and the service request program 151 and the instant messenger program 152 are described. An authentication process that is executed first when logging in by the personal computer 5 to be executed will be described.

  When there is an access instruction from the user 4, in step S1001, the instant messenger program 152 sends the server 6 to the communication unit 29 via the Internet 3 based on the request from the authentication program 171 of the service request program 151. To send instant messaging ID and password. Note that the instant messaging ID and password are input to the personal computer 5 by, for example, an operation on the input unit 26 by the user 1.

  In step S2001, the server 6 receives the instant messaging ID and password transmitted from the personal computer 5. If the instant messaging ID and password are registered correspondingly, the user of the personal computer 5 is a legitimate user. Therefore, in step S2002, the server 6 executes login processing of the user of the personal computer 5 and The status of participation in an instant messaging system (for example, the instant messaging system) of another user's device (for example, the television receiver 2 with a hard disk recorder) registered in the user registration list of the user 4 via the Internet 3 Information indicating whether the user is logged in, not logged in, or logged in but away from the desk) is transmitted to the personal computer 5.

  In step S2003, the server 6 is a user who has registered the user 4 in the user registration list of the user among the users registered in the user registration list of the user 4 of the personal computer 5, and is now logged in. The user who has been logged in is notified, and the user's device (for example, the television receiver with a hard disk recorder 2 of the user 1) is notified that the user 4 has logged in.

  In step S3001, the instant messenger program 102 of the television receiver 2 with a hard disk recorder receives this notification. Then, this is displayed on the display unit 81 by the reception control program 126.

  If the instant messaging ID and the password are not registered in association with each other, the user of the personal computer 5 is not a legitimate user. Therefore, the login process of the user of the personal computer 5 and the processes after step S2002 are not executed, and the process finish.

  In step S <b> 1002, the instant messenger program 152 receives the information transmitted from the server 6 and indicating the state of participation in the instant messaging system of other devices including the television receiver device 2 with a hard disk recorder. Information indicating the status of participation of other devices in the instant messaging system is supplied to the authentication program 171 of the service request program 151.

  In order for the personal computer 5 to send a message to the television receiver 2 with a hard disk recorder on a peer-to-peer basis, in step S1003, the instant messenger program 152 is transmitted to the server 6 via the Internet 3 with the television receiver 2 with a hard disk recorder. Request an address on the Internet 3 That is, the instant messenger program 152 causes the communication unit 29 to send a request for the address of the television receiver 2 with a hard disk recorder to the server 6 via the Internet 3. In step S2004, the server 6 receives the request for the address of the television receiver 2 with a hard disk recorder transmitted from the personal computer 5.

  In step S2005, the server 6 transmits the address of the television receiver 2 with a hard disk recorder to the personal computer 5 via the Internet 3. This address is detected by the server 6 when the television receiver 2 with a hard disk recorder logs in. In step S1004, the instant messenger program 152 causes the communication unit 29 to receive the address of the television receiver 2 with a hard disk recorder transmitted from the server 6, and obtains the address of the television receiver 2 with a hard disk recorder. .

  The personal computer 5 can transmit a message to the television receiver 2 with a hard disk recorder peer-to-peer via the Internet 3 by acquiring the address of the television receiver 2 with a hard disk recorder in the process of step S1004. become able to.

  On the other hand, in order for the television receiver 2 with a hard disk recorder to transmit a message to the personal computer 5 on a peer-to-peer basis, the instant messenger program 102 is sent to the server 6 via the Internet 3 in step S3002. The request for the address of the personal computer 5 is transmitted. In step S2006, the server 6 receives the request for the address of the personal computer 5 transmitted from the television receiver 2 with a hard disk recorder.

  In step S2007, the server 6 transmits the address of the personal computer 5 to the television receiver 2 with a hard disk recorder via the Internet 3. In step S3003, the instant messenger program 102 causes the communication unit 79 to receive the address of the personal computer 5 transmitted from the server 6.

  The television receiver device 2 with the hard disk recorder can transmit a message to the personal computer 5 via the Internet 3 on a peer-to-peer basis by acquiring the address of the personal computer 5 in the process of step S3003.

  In step S1005, the authentication program 171 of the service request program 151 sends the instant messenger program 152 to the television receiver 2 with a hard disk recorder, which is the counterpart device, via the Internet 3, and the television receiver 2 with a hard disk recorder. Send a message requesting an address as an authentication request. That is, the instant messenger program 152 uses the address acquired in the process of step S1004 to communicate with the communication unit 29 via the Internet 3 peer-to-peer (without the server 6) as an authentication request. A message addressed to John image receiving apparatus 2 is transmitted including the instant messaging ID of personal computer 5. The message transmitted by the instant messenger program 152 is encrypted by a method such as SSL.

  In step S3004, the instant messenger program 102 causes the communication unit 79 to receive a message requesting the address of the television receiver 2 with a hard disk recorder as an authentication request transmitted from the personal computer 5. The received message is supplied to the authentication program 122 of the service providing program 101. The received message has the instant messaging ID of the personal computer 5 attached thereto.

  In step S3005, the authentication program 122 determines whether the request is an authentication request from a user registered in the access right setting list 124, that is, the instant messaging ID same as the instant messaging ID attached to the authentication request is the access right. When it is determined whether or not it is recorded in the setting list 124, and it is determined that the request is recorded in the access right setting list 124, that is, an authentication request from a legitimate user registered in the access right setting list 124. The process proceeds to step S3006.

  In step S3006, the authentication program 122 determines whether the access right of the user who transmitted the authentication request is set to “authorized”, that is, to the same instant messaging ID as the instant messaging ID attached to the authentication request. It is determined whether or not the associated access authority “authorized” indicating acceptance of a request from the other party is recorded in the access authority setting list 124. In other words, in step S3006, it is determined whether or not to accept a request from the other party based on the access authority that is an example of the acceptance determination information.

  In step S3006, it is determined that the access right of the user who has transmitted the authentication request is set to “authorized”, that is, the access right that is “authorized” is recorded in the access right setting list 124. If it is determined that the request from the other party is accepted, the process proceeds to step S3007, and the authentication program 122 generates a key for the user 4 who has transmitted the authentication request. The key is, for example, a random number of 64 bits to 256 bits that is generated and changed each time.

  Next, in step S3008, the authentication program 122 records the key generated in the process of step S3007 in the key list 125 in association with (associating with) the instant messaging ID of the user 4 who has transmitted the authentication request. .

  FIG. 12 is a diagram illustrating an example of the key list 125. In the key list 125 shown in FIG. 12, a key B for user 4 who is user B is recorded in relation to the instant messaging ID of user B, and for user X in relation to the instant messaging ID of user X. A key X is recorded.

  For example, when an authentication request is received from the user B who is the user 4, a key B for the user B who is the user 4 is generated. Therefore, in the key list 125, the key is related to the instant messaging ID of the user B. B will be recorded.

  Next, in step S3009, the authentication program 122 causes the instant messenger program 102 to return a message as an authentication response to the personal computer 5. That is, since the authentication program 122 supplies the instant messenger program 102 with the address of the television receiver 2 with a hard disk recorder and the key generated at step S3007, the instant messenger program 102 is sent to the personal computer 5 with a TV with a hard disk recorder. A message as an authentication response including the address of the John receiver 2 and the key for the other party who has transmitted the authentication request is generated, and the communication unit 79 transmits the generated message. The message as the authentication response is encrypted by a method such as SSL.

  In step S1006, the instant messenger program 152 transmits a message including the address of the television receiver 2 with a hard disk recorder 2 and the key for the user 4 as an authentication response transmitted from the television receiver 2 with a hard disk recorder. The communication unit 29 receives the data and the process ends. The received message is supplied to the authentication program 171 of the service request program 151. The authentication program 171 records the address and key of the television receiver 2 with a hard disk recorder in the address / key list 173. Since the address and key are encrypted, they are decrypted and recorded by the authentication program 171.

  Even if the message is acquired by a third party during transmission on the Internet 3, since the message is encrypted, the address and key of the television receiver 2 with a hard disk recorder are not known to the third party.

  On the other hand, in step S3005, the same instant messaging ID as the instant messaging ID attached to the authentication request is not recorded in the access right setting list 124, that is, it is not an authentication request from a user registered in the access right setting list 124. If it is determined that the request is an authentication request from a partner who has not exchanged a message (because it is not a legitimate partner), an authentication request cannot be accepted, and the process proceeds to step S3010. To terminate the process.

  If it is determined in step S3006 that the access right of the user who has transmitted the authentication request is set to “no authority”, that is, even if it is a partner to exchange messages, a request from that partner is not accepted. If it is determined that the request is from the other party who has exchanged the message but the request is not accepted, the process proceeds to step S3010, and the authentication program 122 executes error processing, Ends.

  For example, in step S3010, the authentication program 122 transmits a message indicating that authentication cannot be accepted to the personal computer 5. An address or key is not added to the message indicating that authentication cannot be accepted.

  Thus, when the request is from a user who is not registered, or when the access authority is set to not accept the request from the other party, the other party cannot acquire the address and key. As a result, it is not possible to request a service in the service provision process described later.

  In other words, only when the request is from a registered legitimate user and the access authority is set to accept the request from the other party, the other party who has requested authentication can request the service. You can get the address and key you need. Therefore, it is possible to prevent impersonation of a person other than the legitimate user by acquiring the address and key of the television receiver 2 with a hard disk recorder by a person other than the legitimate user.

  A message transmitted from the personal computer 5 to the television receiver 2 with a hard disk recorder or a message transmitted from the television receiver 2 with a hard disk recorder to the personal computer 5 may be transmitted via the server 6. Good. However, the load on the server 6 can be reduced if transmission is performed by P2P.

  As described above, the personal computer 5 that has acquired the address and key executes the process shown in the flowchart of FIG. 13 when using the television receiver 2 with a hard disk recorder.

  In step S1021, the operation request program 172 of the service request program 151 receives the address of the television receiver 2 with a hard disk recorder, which is received from the television receiver 2 with a hard disk recorder and recorded from the address / key list 173, and Read the key. Further, the operation request program 172 acquires the instant messaging ID of the user 4 from the instant messenger program 152. Then, the operation request program 172 generates an operation request to which the instant messaging ID of the user 4 and the read key are added, and sends the communication unit 29 to the address of the television receiver 2 with a hard disk recorder that is also read. From the Internet 3.

  In step S3021, the reception control program 126 of the service providing program 101 receives the operation request to which the instant messaging ID of the user 4 and the key assigned by the user 1 are added, transmitted from the personal computer 5 to the communication unit 79. Let This operation request is supplied to the operation request receiving program 123.

  In step S3022, the operation request reception program 123 determines whether the request is a request from the user registered in the access right setting list 124, that is, the same instant messaging ID as the instant messaging ID added to the received operation request. Is recorded in the access right setting list 124, and it is determined that the request is a request from the user registered in the access right setting list 124, that is, the instant messaging ID is stored in the access right setting list 124. If recorded, the process advances to step S3023.

  In step S <b> 3023, the operation request reception program 123 determines whether a key for this user is recorded in the key list 125. More specifically, the operation request reception program 123 determines whether or not a key related to the same instant messaging ID as the instant messaging ID added to the received operation request is recorded in the key list 125. Thus, it is determined whether or not a key for this user is recorded.

  If it is determined in step S <b> 3023 that the key for this user is recorded, the process proceeds to step S <b> 3024, and the operation request reception program 123 includes the key added to the operation request and the key recorded in the key list 125. It is determined whether or not. More specifically, the operation request receiving program 123 is recorded in the key list 125 in association with the key added to the operation request and the same instant messaging ID as the instant messaging ID added to the operation request. It is determined whether or not the existing key matches.

  If it is determined in step S3024 that the key added to the operation request matches the key recorded in the key list 125, the process proceeds to step S3025, and the operation request receiving program 123 is given authority to this user. In other words, in the access right setting list 124, it is determined whether or not the access authority of “authorized” is recorded in relation to the same instant messaging ID as the instant messaging ID added to the operation request. To do.

  If it is determined in step S3025 that the user is authorized, that is, in the access right setting list 124, “authority” is related to the same instant messaging ID as the instant messaging ID added to the operation request. If it is determined that the access authority “Yes” is recorded, the process proceeds to step S3026, and the operation request receiving program 123 indicates that the user 4 of the personal computer 5 is a legitimate user and receives a request from the personal computer 5. Is set, the operation request from the personal computer 5 is received, the requested processing, for example, the reservation recording processing or the transmission of recorded video data is executed, and the service provision processing is executed. Ends.

  If it is determined in step S3022 that the request is not from a user registered in the access right setting list 124, that is, if the instant messaging ID is not recorded in the access right setting list 124, the user 4 of the personal computer 5 is authorized. In step S3027, the operation request reception program 123 executes error processing, and the process ends. Specifically, the error process in step S3027 is a process of transmitting a message indicating that an operation request cannot be accepted to the personal computer 5, for example.

  Similarly, when it is determined in step S3023 that the key for this user is not recorded, and in step S3024, the key added to the operation request and the key recorded in the key list 125 are If it is determined that they do not match, the user 4 of the personal computer 5 is not a legitimate user, so the process proceeds to step S3027, and the operation request reception program 123 executes an error process and the process ends.

  Furthermore, if it is determined in step S3025 that the user is not authorized, the request from the personal computer 5 is not accepted, so the process proceeds to step S3027, and the operation request accepting program 123 executes error processing. The process ends.

  Note that the processing of step S3025 is omitted, and when it is determined in step S3024 that the key added to the operation request matches the key recorded in the key list 125, the operation request reception program 123 The request may be received and the requested process may be executed.

  That is, in this case, it is determined whether or not the user 4 of the personal computer 5 is a legitimate user in the processing of steps S3022 to S3024, and it is determined that the user 4 of the personal computer 5 is a legitimate user. An operation request from the personal computer 5 is accepted, and a service is provided to the personal computer 5.

  However, as shown in FIG. 13, when the user 4 of the personal computer 5 is a legitimate user, in the process of step S3025, access authority that is reception determination information recorded in relation to the instant messaging ID is further provided. Based on the above, it is possible to determine whether or not a request from the user 4 of the personal computer 5 is accepted, and to set whether or not the user can be used more finely among the users registered in the user registration list. Will be able to.

  In addition, in this way, for example, once the request from the user 4 is set to be accepted and the key is used illegally even after the authentication process is performed, the user 1 is changed from the user 4 The authority can be changed so that the request can be rejected.

  As described above, a user providing a service needs to create a user account for each device by using the instant messaging ID of the instant messaging system as it is as a user account when another user uses the service. Disappears.

  Since the user registration list is acquired from the instant messaging system and the instant messaging ID is acquired from the user registration list, the user of the device providing the service does not need to input the other party's instant messaging ID one by one.

  Further, since the user does not need to know the instant messaging ID of the other party directly, the received ID can be recorded but not displayed. Thereby, unauthorized use of ID can be prevented.

  Furthermore, for example, by setting reception determination information such as access authority, the provider can determine whether or not the service can be used and the range of operations that can be used for each partner user.

  Since an authentication request is transmitted via an instant messaging system that cannot be impersonated or falsified, user authentication can be performed without entering a password or the like.

  In response to an authentication request from a user with usage rights, a randomly generated key is returned via a secure instant messaging system, so there is almost no risk of the key being stolen by a third party. There is no need to request a service via the instant messaging system, and the service provider can confirm that the other party is an authenticated user if access is provided with a key.

  On the service requesting side, it is not necessary to remember an account and password for each service received, and it is not necessary to input an account and a password each time a service is requested. As a result, the service requester can quickly request the service.

  If a secure environment is not so necessary, encryption can be omitted. Even so, the safety based on this point is only slightly impaired, and other effects can be obtained as well.

  Further, by the above-described processing, not only the personal computer 5 but also the user 4 can operate the PDA 7 to request the television receiver 2 with a hard disk recorder to provide a function.

  Furthermore, if the personal computer 5 executes the service providing program and the television receiver 2 with hard disk recorder executes the service request program, the personal computer 5 provides a function to the television receiver 2 with hard disk recorder. can do. In this case, the personal computer 5 and the television receiver 2 with a hard disk recorder can provide functions to each other.

  As described above, when processing is executed in response to an operation request from the personal computer 5, the television receiver 2 with a hard disk recorder can provide a service to the personal computer 5. .

  In addition, it controls the reception of instant messaging ID and key as specific information that identifies the user of the instant messaging system transmitted from the other party via the network. In the personal computer 5, it is not necessary to request an input of an account or a password, and the other party is a legitimate party in the television receiver 2 with a hard disk recorder. It becomes possible to determine whether or not.

  The access authority is not limited to “authorized” or “unauthorized”, and the number of authority can be increased. For example, the access authority may be “partially usable”, “all usable”, “unusable”, or the like. Further, for example, the access authority may be “reading only video data”, “recording new video data”, “rewriting video data”, and the like. For example, when the access authority is “reading only video data”, a request for recording or rewriting video data is not accepted, and a request for reading video data is accepted. For example, when the access authority is “recording of new video data”, a request for reading video data, a request for recording new video data, and a request for rewriting video data are accepted.

  Furthermore, the access authority can be set for all users at once. For example, based on a signal from the input unit 76 corresponding to the user 1 command, the access right setting program 121 sets all access authorities for all users in the access right setting list 124 to “authorized” or vice versa. In addition, all can be set to “no authority”.

  Further, as shown in FIGS. 14 and 15, the access right list 124 can record the group name in relation to the user's instant messaging ID. The access authority can be set for each group. In the example shown in FIG. 14, the instant messaging ID of user B, the instant messaging ID of user X, and the instant messaging ID of user Z are related to the group name that is group α, and the instant messaging ID of user Y is Associated with the group name which is group β.

  In the example shown in FIG. 15, “authorized” is set as the access authority related to the group name that is the group α, and “no authority” is set as the access authority related to the group name that is the group β. Yes.

  In this case, when it is an authentication request from the user B who is the user 4 in step S3006, the authentication program 122 in the access right list 124 is a group α which is a group name associated with the instant messaging ID of the user B. In addition, read “authorized” which is the access authority related to the group name which is the group α, and determine whether or not to accept the request from the other party based on the read access authority. It is determined that the request is accepted. On the other hand, when the authentication request is from the user Y, the authentication program 122 reads the group β, which is the group name associated with the instant messaging ID of the user Y, in the access right list 124, and is further the group β. “No authority”, which is an access authority related to the group name, is read out, and based on the read access authority, it is determined whether or not a request from the partner is accepted, and it is determined that a request from the partner is not accepted.

  It becomes possible to set the access authority of a large number of users with fewer operations.

  Also, the access authority, which is an example of the acceptance determination information, may be set for each service as shown in FIG. For example, when the television receiver 2 with a hard disk recorder provides a recording service (for example, reserved recording) and a reproduction service (for example, provision of recorded video data), the access right setting list 124 includes The service to be provided and the access authority may be recorded in relation to the user's instant messaging ID.

  For example, since the service that is recording and the access authority that is “authorized” are recorded in relation to the instant messaging ID of user B, when the recording process is requested by user B, the TV with a hard disk recorder The John image receiving device 2 provides a recording service. In addition, since the playback service and the “authorized” access right are recorded in relation to the instant messaging ID of the user Y, when the playback process is requested by the user Y, the TV with a hard disk recorder The John image receiving device 2 provides a reproduction service.

  For example, when playback processing is requested by the user B, the service that is playback and the access authority that is “authorized” are not recorded in relation to the instant messaging ID of the user B. The John image receiving device 2 does not provide a reproduction service. In addition, when the recording process is requested by the user Y, the recording service and the access authority “authorized” are not recorded in relation to the instant messaging ID of the user Y. The John image receiving device 2 does not provide a recording service.

  An access right setting list 124 may be provided for each service. For example, one access right setting list 124 may be provided for a service that is a reproduction, and another access right setting list 124 may be provided for a service that is a recording.

  Furthermore, a key may be generated for each counterpart device. For example, different keys are generated and assigned to the personal computer 5 and the PDA 7 so that the user 4 can request a service from the PDA 7 which is a device other than the personal computer 5 to the television receiver 2 with a hard disk recorder. May be.

  The key may be provided with an expiration date. This facilitates management of the service provided.

  FIG. 17 is a diagram illustrating an example of a key list 125 that records keys for each device with an expiration date. In this case, for example, in the process of step S1005, the personal computer 5 transmits a message as an authentication request to the television receiver 2 with a hard disk recorder, to which zzz, which is its own device ID, is attached. In step S3008, the television receiver 2 with a hard disk recorder records the device ID and the key B1, which are zzz, in association with the instant messaging ID. When the PDA 7 sends a message as an authentication request with yyy, which is its own device ID, the television receiver 2 with a hard disk recorder associates the instant messaging ID with the device ID that is yyy. And record the key B2.

  In the service providing process, in step S1021, the personal computer 5 transmits an operation request to which the device ID, the instant messaging ID, and the key B1, which are zzz, are added, to the television receiver 2 with a hard disk recorder. The television receiver 2 with a hard disk recorder further determines whether or not a device ID that is a device ID zzz is recorded in the key list 125, and records a device ID that is a device ID zzz in the key list 125. When it is determined that the device ID is received, an operation request is received and the process is executed. When it is determined that the device ID that is the device ID that is zzz is not recorded in the key list 125, the operation request is not received.

  Note that a device name may be used instead of the device ID.

  In step S3023, the television receiver 2 with a hard disk recorder may determine whether a key for the device ID is recorded.

  When the expiration date is set for the key in the key list 125, the television receiver 2 with a hard disk recorder acquires the date and time from a real time clock (not shown), and the expiration date is passed from the key list 125. Delete (and delete) the keys (and data related to the instant messaging ID, etc.). By appropriately setting the expiration date, it is possible to prevent an unauthorized operation request from being received from the person who acquired the instant messaging ID and key transmitted via the Internet 3.

  By shortening the period until the expiration date for the key in the key list 125 (for example, 30 minutes), the key can be used as a so-called session key. If the key is a session key, even if a key that is a session key is obtained by another person, the possibility of unauthorized use of the service by impersonation can be reduced. Can be sent as is.

  The key may be deleted when one service is provided after the authentication process.

  Furthermore, in the authentication process described with reference to FIGS. 9 to 11, when the television receiver device 2 with a hard disk recorder receives an authentication request transmitted from the server 6, it simultaneously transmits a message from the server 6. May be acquired, and the session ID may be recorded in the access right setting list 124 in association with the instant messaging ID. In this case, the session ID is attached to the authentication response and transmitted to the other party.

  In the service provision process, an operation request with a session ID is requested, and only when the session ID attached to the operation request matches the session ID recorded in the access right setting list 124 Can be provided.

  The personal computer 5 may transmit the encrypted operation request to the television receiver device 2 with a hard disk recorder. FIG. 18 is a flowchart for explaining service provision processing when an operation request is encrypted.

  In step S1041, the operation request program 172 of the service request program 151 receives the address of the television receiver 2 with a hard disk recorder recorded from the address / key list 173 and received from the television receiver 2 with a hard disk recorder. Read the key. Further, the operation request program 172 acquires the instant messaging ID of the user 4 from the instant messenger program 152. Then, the operation request program 172 generates an operation request to which the user 4's instant messaging ID and key are added.

  In step S1042, the operation request program 172 encrypts the generated operation request with a key. In this case, the encryption method may be a common key encryption method such as DES (Data Encryption Standard) or IDEA (International Data Encription Algorithm).

  In step S1043, the operation request program 172 causes the communication unit 29 to transmit the encrypted operation request to the address of the television receiver with a hard disk recorder 2 via the Internet 3.

  In step S3041, the reception control program 126 of the service providing program 101 causes the communication unit 79 to receive the encrypted operation request transmitted from the personal computer 5. The encrypted operation request is supplied to the operation request receiving program 123.

  In step S3042, the operation request receiving program 123 decrypts the operation request to which the user 4's instant messaging ID and key are added using the key recorded in the key list 125.

  Each of the processes in steps S3043 to S3048 is the same as each of the processes in steps S3022 to S3027 of FIG.

  As described above, by encrypting the operation request, the operation request transmitted via the Internet 3 is acquired by a third party, and the instant messaging ID and the key are illegally used by the third party. Can be prevented.

  Note that the instant messaging ID and key may be encrypted, or one of the instant messaging ID and key may be encrypted.

  Furthermore, authentication may be performed by issuing a digest and exchanging it using a key shared between the television receiver 2 with a hard disk recorder and the personal computer 5.

  For example, a common hash function is stored in advance in the operation request program 172 and the reception control program 126. Before sending the instant messaging ID and key, the operation request program 172 generates a random number, obtains a hash value (digest) by applying a hash function to the random number, and uses the random number and the hash value for the television with a hard disk recorder. The image is transmitted to the image receiving device 2. The reception control program 126 receives the random number and the hash value transmitted from the personal computer 5, applies a hash function to the received random number, obtains a hash value, and the received hash value matches the obtained hash value. It is determined whether or not to do. If it is determined that the received hash value matches the obtained hash value, the reception control program 126 authenticates the personal computer 5.

  The authentication method is not limited to the method using a digest.

  FIG. 19 is a flowchart for explaining service providing processing when challenge-and-response authentication is performed. In step S1061, the operation request program 172 of the service request program 151 requests authentication from the television receiver device 2 with a hard disk recorder. In this case, the instant messaging ID is transmitted from the personal computer 5 to the television receiver device 2 with a hard disk recorder.

  When authentication is requested from the personal computer 5, the reception control program 126 of the service providing program 101 executes challenge and response authentication processing in step S3061. In step S1062, the operation request program 172 executes challenge-and-response authentication processing.

  More specifically, the reception control program 126 reads a key recorded in association with the instant messaging ID transmitted from the personal computer 5 from the key list 125. The reception control program 126 generates a random number and transmits the generated random number to the personal computer 5 as a challenge code.

  When a challenge code is transmitted from the television receiver 2 with a hard disk recorder, the operation request program 172 receives the challenge code and encrypts the received challenge code with the key recorded in the address / key list 173. To generate a response. The operation request program 172 transmits the generated response to the television receiver device 2 with a hard disk recorder.

  When a response is transmitted from the personal computer 5, the reception control program 126 receives the response, compares the received response with a value obtained by encrypting the generated random number with a key, and compares the received response with the generated random number. Is matched with the value encrypted with the key, the personal computer 5 is authenticated as an appropriate partner. The reception control program 126 does not authenticate the personal computer 5 as an appropriate partner (authenticates as an inappropriate partner) when the received response does not match the value obtained by encrypting the generated random number with the key.

  In step S1063, the operation request program 172 sends an operation request with the instant messaging ID and key of the user 4 to the communication unit 29 via the Internet 3 to the address of the television receiver 2 with a hard disk recorder. Let

  When the personal computer 5 is authenticated, in step S3062, the reception control program 126 causes the communication unit 79 to receive the operation request to which the instant messaging ID and key of the user 4 are transmitted, which is transmitted from the personal computer 5. The process proceeds to step S3063.

  If the personal computer 5 is not authenticated, in step S3062, the reception control program 126 discards the received operation request, the following processing is skipped, and processing for the operation request is not executed.

  Since the processes in steps S3063 to S3068 are the same as the processes in steps S3022 to S3027 in FIG.

  In this way, the television receiver device 2 with a hard disk recorder can accept only an operation request from an authenticated partner. The operation request may be encrypted with the session key using the response as the session key.

  By doing so, it becomes possible to eliminate impersonation more powerfully.

  Impersonation can be prevented when it is determined whether or not the other party is a legitimate party based on specific information identifying the user of the instant messaging system transmitted from the other party via the network. it can.

  It also controls the reception of specific information and keys that identify users of instant messaging systems sent from the other party over the network, and whether or not the other party is a legitimate partner based on the specific information and key. It is not necessary to request the input of an account or password, etc., and whether or not the other party is a legitimate party can be easily and reliably determined. The service can be provided only to the other party, or only the specific party can use the service.

  The series of processes described above can be executed by hardware or can be executed by software. When a series of processing is executed by software, a program constituting the software may execute various functions by installing a computer incorporated in dedicated hardware or various programs. For example, it is installed from a recording medium in a general-purpose personal computer.

  As shown in FIG. 2 or FIG. 3, the recording medium is distributed to provide a program to the user separately from the computer, and the magnetic disk 51 or the magnetic disk 91 (flexible disk) on which the program is recorded. Optical disc 52 or optical disc 92 (including CD-ROM (Compact Disc-Read Only Memory) and DVD (Digital Versatile Disc)), magneto-optical disc 53 or magneto-optical disc 93 (MD (Mini-Disc) (trademark)) ROM22 or ROM72 in which a program is recorded, which is provided to the user in a state of being incorporated in a computer in advance, as well as being configured by a package medium including the semiconductor memory 54 or the semiconductor memory 94, and the like. The hard disk included in the recording unit 28 or the recording unit 78 is configured.

  The program for executing the series of processes described above is installed in a computer via a wired or wireless communication medium such as a local area network, the Internet, or digital satellite broadcasting via an interface such as a router or a modem as necessary. You may be made to do.

  Further, in the present specification, the step of describing the program stored in the recording medium is not limited to the processing performed in chronological order according to the described order, but is not necessarily performed in chronological order. It also includes processes that are executed individually.

  In the present specification, the system represents the entire apparatus constituted by a plurality of apparatuses.

It is a block diagram which shows the structure of one Embodiment of the service provision system which concerns on this invention. It is a block diagram which shows the structural example of the personal computer of FIG. It is a block diagram which shows the structural example of the television receiver with a hard disk recorder of FIG. It is a figure which shows the program which the television receiver with a hard disk recorder of FIG. 1 has. It is a figure which shows the program which the personal computer of FIG. 1 has. 10 is a flowchart illustrating access right setting processing. It is a figure which shows the example of a user registration list. It is a figure which shows the example of an access right setting list. It is a flowchart explaining the process of authentication. It is a flowchart explaining the process of authentication. It is a flowchart explaining the process of authentication. It is a figure which shows the example of a key list. It is a flowchart explaining the process of service provision. It is a figure which shows the other example of an access right setting list. It is a figure which shows the other example of an access right setting list. It is a figure which shows the other example of an access right setting list. It is a figure which shows the other example of a key list. It is a flowchart explaining the other process of service provision. It is a flowchart explaining the other process of service provision.

Explanation of symbols

  2 TV receiver with hard disk recorder, 3 Internet, 5 personal computer, 6 server, 7 PDA, 21 CPU, 22 ROM, 23 RAM, 28 recording unit, 29 communication unit, 51 magnetic disk, 52 optical disk, 53 magneto-optical disk , 54 Semiconductor memory, 71 CPU, 72 ROM, 73 RAM, 78 Recording unit, 79 Communication unit, 91 Magnetic disk, 92 Optical disk, 93 Magneto-optical disk, 94 Semiconductor memory, 101 Service providing program, 102 Instant messenger program, 121 Access Right setting program, 122 authentication program, 123 operation request reception program, 124 access right setting list, 125 key list, 126 reception Your program, 151 service request program, 152 instant messenger program, 171 certification program, 172 operation request program, 173 address / key list

Claims (12)

In an information processing system comprising a first information processing apparatus and a second information processing apparatus connected to each other via a network,
The first information processing apparatus includes:
First reception control means for controlling reception of a message including an address of the network of the second information processing apparatus and a key generated by the second information processing apparatus via an instant messaging system;
Specific information for identifying the first information processing device used in the instant messaging system and the key are transmitted to the second information processing device via the network, and the second information processing device is predetermined. Transmission control means for requesting execution of the process
With
The second information processing apparatus
The reception determination information indicating whether or not to accept a request for execution of the predetermined processing from the first information processing apparatus, the specific information acquired via the instant messaging system, and the key are recorded in association with each other. Recording means;
Second reception control means for controlling reception of the specific information and the key transmitted from the first information processing apparatus via the network;
The acceptance determination information recorded in the recording means, the specific information, and said key, on the basis of said identification information and the key received from the first information processing apparatus, the first information processing apparatus Is a determination unit that determines whether or not it is a partner that is registered in the instant messaging system and receives a request to execute the predetermined process ;
Execution means for executing the predetermined processing in accordance with a determination result by the determination means;
The information processing system comprising: a. In an information processing apparatus connected to an instant messaging system via a network,
Acceptance determination information indicating whether or not to accept a request for execution of a predetermined process from another information processing apparatus, and specify the other information processing apparatus used in the instant messaging system acquired via the instant messaging system Recording means for associating and recording the specific information to be generated and the key generated by the information processing apparatus and transmitted to the other information processing apparatus via the instant messaging system;
Reception control means for controlling reception of a request for execution of the predetermined process, including the specific information and the key, transmitted from the other information processing apparatus via the network;
The acceptance determination information recorded in the recording means, the specific information, and said key, on the basis of said identification information and the key received from the other information processing apparatus, the other information processing apparatus, A determination means for determining whether or not a partner is registered in the instant messaging system and receives a request for execution of the predetermined process ;
Execution means for executing the predetermined processing in accordance with a determination result by the determination means;
The information processing apparatus comprising: a. The reception control means further controls reception of a first message requesting authentication from the other information processing apparatus via the instant messaging system;
The determination unit determines whether or not the specific information included in the first message is recorded in the recording unit, and is recorded in the recording unit in association with the specific information. Based on the acceptance determination information, further determine whether to accept a request for execution of the predetermined processing from the other information processing apparatus,
When it is determined that the specific information included in the first message is recorded in the recording unit and a request for execution of the predetermined process is received from the other information processing apparatus, the key is A key generation means for generating;
Said via instant messaging system, according to claim 2, further comprising a transmission control means for controlling the transmission to the other information processing apparatus of a second message containing the own address and the key Information processing device. The reception control means controls reception of a request for execution of the predetermined process including the specific information and the key at least one of which is encrypted,
The information processing apparatus according to claim 2, further comprising the specific information or decoding means for decoding the key is encrypted. In an information processing method of an information processing apparatus connected to an instant messaging system via a network,
Acceptance determination information indicating whether or not to accept a request for execution of a predetermined process from another information processing apparatus, and specify the other information processing apparatus used in the instant messaging system acquired via the instant messaging system Specific information to be recorded, and a recording control step of causing the recording unit to record the associated key generated by the information processing apparatus and transmitted to the other information processing apparatus via the instant messaging system;
A reception control step for controlling reception of a request for execution of the predetermined process including the specific information and the key transmitted from the other information processing apparatus via the network;
The acceptance determination information recorded in the recording means, the specific information, and said key, on the basis of said identification information and the key received from the other information processing apparatus, the other information processing apparatus, A determination step of determining whether or not a partner that is registered in the instant messaging system and receives a request to execute the predetermined process ;
An information processing method comprising: an execution step of executing the predetermined process according to a determination result obtained by the process of the determination step . To an information processing device connected to an instant messaging system via a network ,
Acceptance determination information indicating whether or not to accept a request for execution of a predetermined process from another information processing apparatus, and specify the other information processing apparatus used in the instant messaging system acquired via the instant messaging system Specific information to be recorded, and a recording control step of causing the recording unit to record the associated key generated by the information processing apparatus and transmitted to the other information processing apparatus via the instant messaging system;
A reception control step for controlling reception of a request for execution of the predetermined process including the specific information and the key transmitted from the other information processing apparatus via the network;
The acceptance determination information recorded in the recording means, the specific information, and said key, on the basis of said identification information and the key received from the other information processing apparatus, the other information processing apparatus, A determination step of determining whether or not a partner that is registered in the instant messaging system and receives a request to execute the predetermined process ;
A recording medium on which a program is recorded that causes a process including an execution step to execute the predetermined process in accordance with a determination result obtained by the process of the determination step . To an information processing device connected to an instant messaging system via a network ,
Acceptance determination information indicating whether or not to accept a request for execution of a predetermined process from another information processing apparatus, and specify the other information processing apparatus used in the instant messaging system acquired via the instant messaging system Specific information to be recorded, and a recording control step of causing the recording unit to record the associated key generated by the information processing apparatus and transmitted to the other information processing apparatus via the instant messaging system;
A reception control step for controlling reception of a request for execution of the predetermined process including the specific information and the key transmitted from the other information processing apparatus via the network;
The acceptance determination information recorded in the recording means, the specific information, and said key, on the basis of said identification information and the key received from the other information processing apparatus, the other information processing apparatus, A determination step of determining whether or not a partner that is registered in the instant messaging system and receives a request to execute the predetermined process ;
A program for executing a process including an execution step for executing the predetermined process according to a determination result obtained by the process of the determination step . In an information processing apparatus connected to an instant messaging system via a network,
Said via instant messaging system, and the address of the network in the other information processing apparatus, a reception control means for controlling the reception of the first message including a key generated by the other information processing apparatus,
Based on the address, the specific information for identifying the information processing device used in the instant messaging system and the key are transmitted to the other information processing device via the network, and the other information processing device the information processing apparatus characterized by comprising a transmission control means for requesting execution of the predetermined process. The transmission control means further controls transmission of the first message to the other information processing apparatus and the transmission of the second message requesting authentication via the instant messaging system. The information processing apparatus according to claim 8 . In an information processing method of an information processing apparatus connected to an instant messaging system via a network,
Said via instant messaging system, and the address of the network in the other information processing apparatus, a reception control step of controlling the reception of a message including a key generated by the other information processing apparatus,
Based on the address, the specific information for identifying the information processing device used in the instant messaging system and the key are transmitted to the other information processing device via the network, and the other information processing device A transmission control step for requesting execution of predetermined processing . To an information processing device connected to an instant messaging system via a network ,
Said via instant messaging system, and the address of the network in the other information processing apparatus, a reception control step of controlling the reception of a message including a key generated by the other information processing apparatus,
Based on the address, the specific information for identifying the information processing device used in the instant messaging system and the key are transmitted to the other information processing device via the network, and the other information processing device recording medium in which the program for causing to execute a processing including a transmission control step of requesting execution of the predetermined process are recorded. To an information processing device connected to an instant messaging system via a network ,
Said via instant messaging system, and the address of the network in the other information processing apparatus, a reception control step of controlling the reception of a message including a key generated by the other information processing apparatus,
Based on the address, the specific information for identifying the information processing device used in the instant messaging system and the key are transmitted to the other information processing device via the network, and the other information processing device a program characterized by executing the processing including a transmission control step of requesting execution of the predetermined process.

Images